grpc
/
grpc-java
mirror of https://github.com/grpc/grpc-java.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,594 Commits 79 Branches 186 Tags 175 MiB
Commit Graph

61 Commits

Author SHA1 Message Date
Sebastian Schmidt e4b666aaeb Fixing typo in SECURITY.md 
See https://en.wikipedia.org/wiki/Cipher_suite
 2019-06-11 22:33:30 -07:00
Chengyuan Zhang f81201024e
upgrade netty version to 4.1.35 and netty-tcnative version to 2.0.25 (#5818) 2019-06-03 11:40:59 -07:00
Eric Anderson 2b7269b68c SECURITY.md: Add Fedora 30 package installation instructions 
Fixes #5688
 2019-05-14 15:37:43 -07:00
Jihun Cho aed4e40b60
netty: bump netty version to 4.1.34.Final (#5449) 2019-03-08 15:58:48 -08:00
Eric Anderson 2dc00cec4a SECURITY.md: Fix syntax and typos in mutual TLS interceptor example 
Fixes #4905
 2019-03-07 16:53:34 -07:00
Nguyen Quang Huy 05d5e4802a doc: Change http to https for security links 
For security, we should change http into https links.

Co-Authored-By: Nguyen Van Trung [trungnvfet@outlook.com](mailto:trungnvfet@outlook.com)
Signed-off-by: Nguyen Quang Huy [huynq0911@gmail.com](mailto:huynq0911@gmail.com)
 2019-02-27 17:25:42 -08:00
Eric Anderson 0d97507919
SECURITY.md: Don't suggest users to use Jetty ALPN 
I fixed many of these elsewhere in the document via 4ba168f28, but I
didn't update the troubleshooting section previously.
 2019-02-27 16:32:59 -07:00
Eric Anderson 1da3f65e7b SECURITY.md: tcnative/ALPN works on Alpine 
In testing, I discovered that Alpine does in fact work. Update the
documentation with the error you might see if you are simply missing a
package (for Googling) as well as fixes.
 2019-02-27 15:19:49 -07:00
ZHANG Dapeng d0ecc08705
all: fix lint 2019-01-31 09:31:13 -08:00
Eric Anderson 4ba168f28a
SECURITY.md: Rewrite/reflow our recommendations 
Much of these sections pre-dated gRPC 1.0 and Java 9. Modernize them to be more
on-point and clear.
 2019-01-28 16:26:44 -08:00
Carl Mastrangelo edede01da6
netty: bump to 4.1.32 and tcnative 2.0.20 2018-12-05 14:41:30 -08:00
ZHANG Dapeng e9ba65a42e
all: sync tcnative version 
The helloworld TLS example can not run properly with the outdated examples/build.gradle.
 2018-12-03 13:19:17 -08:00
Carl Mastrangelo 5362017c5a
netty: update to 4.1.30 and tcn 2.0.17 2018-10-11 16:31:14 -07:00
Carl Mastrangelo 7d455964f6
all: update to netty 4.1.27 and tcnative 2.0.12 2018-07-20 16:36:00 -07:00
DmPanov 49d7e5fd0b examples: replace client certificate in trust store in 'Hello world example with TLS with mutual auth' 
... with proper CA certificate to fix SSLV3_ALERT_HANDSHAKE_FAILURE in two host with different IPs setup, switch to required client auth to fail on incorrect configuration
 2018-06-13 12:30:57 -07:00
Carl Mastrangelo 4388d901c8
netty: update to 4.1.25 
Updates #4495
 2018-05-23 17:16:45 -07:00
Stephane Maarek 277c33c37f SECURITY.md: updated netty from 2.0.6 to 2.0.7 
Master currently is for grpc >= 0.11 so it doesn't make sense that the SECURITY.md instructs to use the 2.0.6 (which triggers an error) - see https://github.com/grpc/grpc-java/issues/3989
 2018-05-14 10:48:34 -07:00
Eric Anderson 41e98ef72b SECURITY.md: Add reference to grpc-netty-shaded 
Many people going to the troubleshooting section would be fixed by
swapping to grpc-netty-shaded, so we should call that out.
 2018-04-03 08:45:03 -07:00
Ray Tsang ae42d666ad SECURITY.md: Added more troubleshooting instructions 2018-03-23 11:05:57 -07:00
Eric Anderson cb2f62bbbf SECURITY.md: Update "known combinations" table for Netty bump 2018-03-07 13:39:47 -08:00
Eric Anderson 8c51683af1 SECURITY.md: Mention netty-handler instead of codec-http2 
netty-handler has SslHandler which is really the piece that needs to
agree with netty-tcnative. But as I mention, all of netty should be a
consistent version, otherwise it may randomly break due to internal API
changes.
 2018-02-14 14:52:04 -08:00
Eric Gribkoff 722d6f0bea
okhttp: support Conscrypt security provider 2018-01-31 10:45:27 -08:00
Garrett Jones 7cdd35c270 SECURITY.md: Fix netty-codec-http2 typo 2017-12-01 12:48:46 -08:00
Carl Mastrangelo 09307ce191
netty: update to 4.1.17-Final 2017-11-28 13:52:23 -08:00
Eric Anderson 47821fa74e SECURITY.md: Avoid needing to update tcnative table every release 
This also fixes an oversight for the 1.0.2+ releases, since they had a
different netty version.
 2017-11-17 13:16:14 -08:00
Ray Tsang 80a8c8f3d7 netty: Updated ALPN error message and added troubleshooting procedures 2017-11-01 13:01:43 -07:00
Eric Gribkoff e1fd615df8
SECURITY.md: provider must be installed before channel creation 2017-10-31 16:22:07 -07:00
zpencer fedef8f866 SECURITY: tcnative version should be 2.0.6.Final (#3611) 2017-10-24 13:29:18 -07:00
Sudharaka Palamakumbura b2bcaccb34 Fix typo in SECURITY.md 2017-10-13 19:35:24 -07:00
zpencer b579528c89 Update README to reference 1.6.1 (#3428) 2017-08-31 15:24:33 -07:00
Carl Mastrangelo 2175004363 all: recommend latest os maven detector 2017-07-18 10:44:37 -07:00
xuwei-k 6038b0987e update netty-tcnative version in SECURITY.md 2017-06-12 09:41:03 -07:00
Carl Mastrangelo ecbacf0856 all: fix bad ref to ServerCall 2017-05-26 14:27:53 -07:00
Carl Mastrangelo 0c0ce37bbd all: upgrade to netty 4.1.8 and tcnative Fork26 2017-01-30 12:40:46 -08:00
Carl Mastrangelo d5eb248737 all: bump to netty 4.1.7 2017-01-19 15:24:26 -08:00
Jorg Heymans 5408b92fd4 documentation: fix SECURITY.md example 2017-01-11 13:28:07 -08:00
Jakob Buchgraber 6fa63a6371 netty: Upgrade to 4.1.6 and tcnative Fork23. Fixes #2224 (#2349) 2016-10-20 00:24:58 +02:00
ZHANG Dapeng e46cb8193f Update OAuth section in SECURITY.md (#2319) 
Replace the deprecated `ClientAuthInterceptor` with `CallCredentials`
 2016-09-30 14:17:42 -07:00
Eric Anderson 60715a5674 docs: Suggest using Fork19 of tcnative 
Fork17 fails with:
java.lang.NoClassDefFoundError:
org/apache/tomcat/jni/CertificateRequestedCallback

I've also seen issues of it failing silently, other than connection
hanging (which I've not dug into). Since we're using Fork19 ourselves,
we should have our users do the same.
 2016-09-29 17:31:52 -07:00
Eric Anderson 8f3173617c docs: Avoid using bindService() 
bindService() is generally not necessary and the static version is
deprecated.
 2016-07-16 17:45:22 -07:00
Doug Clark 121549697f docs: update documentation for client TLS in SECURITY.md 2016-06-09 08:41:47 -07:00
Eric Anderson 03d9450968 netty: Use uber boringssl jar 2016-06-08 10:26:49 -07:00
ZHANG Dapeng aed886d8de use Jetty ALPN agent instead of Jetty ALPN 
#1497
 2016-05-02 14:01:36 -07:00
Eric Anderson 569dcb502e Remove last vestiges of ChannelImpl/ServerImpl from security doc 2016-03-14 11:47:30 -07:00
nmittler 86fd2523ec Update to latest netty and tcnative. 2016-02-20 14:50:06 -08:00
Eric Anderson d95576804e Revert "Update to latest tcnative release" 
This reverts commit 1751536410.

It causes an java.lang.AbstractMethodError
 2016-02-19 09:15:12 -08:00
nmittler 1751536410 Update to latest tcnative release 2016-02-19 08:45:01 -08:00
nmittler 1dce8df077 Switching to netty-tcnative-boringssl-static 2016-02-16 13:11:45 -08:00
Matt Hildebrand 6af2ddafe5 Update netty-tcnative to 1.1.33.Fork11. 2016-01-30 17:56:01 -05:00
nmittler 2b4120032c Making choice of OpenSSL more explicit in SECURITY doc 2016-01-21 15:01:35 -08:00