Make OpenSSL engine configurable
SercanKaraoglu opened this issue · comments
Here SSL is initialized with static null value https://github.com/netty/netty-tcnative/blob/main/openssl-classes/src/main/java/io/netty/internal/tcnative/Library.java#L176
Instead make this configurable via for example jvm parameters so that users can customize OpenSSL engines
There is another constructor you can use: https://github.com/netty/netty-tcnative/blob/main/openssl-classes/src/main/java/io/netty/internal/tcnative/Library.java#L187
from end user point of view this is how I am initializing right now:
getChannelInitializer(workerGroup, handler,
SslContextBuilder.forClient()
.sslProvider(SslProvider.OPENSSL_REFCNT)
.trustManager(InsecureTrustManagerFactory.INSTANCE)
.build()
How can I set it to use spesific engine then?
You can use -Dio.netty.handler.ssl.openssl.engine=enginename
.
awesome! that's what I was looking for. Thank you