Add option to send SNI header in TLS ClientHello message [#4894] #5439

megglos · 2023-05-05T09:59:03Z

PR description

Adds an option to send an SNI header on a TLS ClientHello message. Given the existing exposed options for the TLSConfiguration, I went for the --Xp2p-tls-* prefix for the new sni header option, instead of p2p-tls-clienthello-sni as it was stated in #4894 . Please let me know if you prefer otherwise.

add --Xp2p-tls-clienthello-sni option to enable the SNI header

Fixed Issue(s)

fixes #4894

github-actions · 2023-05-05T09:59:13Z

I thought about documentation and added the doc-change-required label to this PR if updates are required.
I have considered running ./gradlew acceptanceTestNonMainnet locally if my PR affects non-mainnet modules.
I thought about the changelog and included a changelog update if required.
If my PR includes database changes (e.g. KeyValueSegmentIdentifier) I have thought about compatibility and performed forwards and backwards compatibility tests

…#4894) * add --Xp2p-tls-clienthello-sni option to enable the SNI header Issue hyperledger#4894 Signed-off-by: Sebastian Bathke <sebastian.bathke@gmail.com>

megglos · 2023-05-06T12:32:53Z

it needs the label doc-change-required as well (somehow I can't add labels)

macfarla

LGTM

pinges

LGTM

Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>

* Update dependencies - commons-net (hyperledger#5444) * update antlr and commons-net dependencies Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com> * revert antlr uprev Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com> * comment Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com> --------- Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com> * Add option to send SNI header in TLS ClientHello message (hyperledger#4894) (hyperledger#5439) * add --Xp2p-tls-clienthello-sni option to enable the SNI header Issue hyperledger#4894 Signed-off-by: Sebastian Bathke <sebastian.bathke@gmail.com> Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com> Co-authored-by: Sebastian Bathke <sebastian.bathke@gmail.com> Co-authored-by: Sally MacFarlane <macfarla.github@gmail.com> * ZkTrieLogFactoryImpl, rebased off of main Signed-off-by: garyschulte <garyschulte@gmail.com> * code before account Signed-off-by: garyschulte <garyschulte@gmail.com> * trielog shipping observer Signed-off-by: garyschulte <garyschulte@gmail.com> * use hex encoding in trielog shipping, add a TESTING default ZkTrieLogObserver to AbstractTrieLogManager Signed-off-by: garyschulte <garyschulte@gmail.com> * fix unintended recursion Signed-off-by: garyschulte <garyschulte@gmail.com> * filter out self destruct storage changes in ZkTrieLogImpl Signed-off-by: garyschulte <garyschulte@gmail.com> * store both slotHash and slotKey, defer to shomei to handle it as it sees fit Signed-off-by: garyschulte <garyschulte@gmail.com> * reorder trielog storage to differentiate between ZERO slot key and null slot key Signed-off-by: garyschulte <garyschulte@gmail.com> * do not filter unchanged accounts for zktrielogfactory Signed-off-by: garyschulte <garyschulte@gmail.com> * use blockHeader during trielog construction, add blockNumber to trielog, add blockHeader to trielogaddedevent Signed-off-by: garyschulte <garyschulte@gmail.com> * add blockNumber to rpc call to shomei Signed-off-by: garyschulte <garyschulte@gmail.com> * add isSyncing to the trieLogParameter and ZkTrieLogObserver Signed-off-by: garyschulte <garyschulte@gmail.com> * initial plumbing for trielog shipping plugin Signed-off-by: garyschulte <garyschulte@gmail.com> * halfway through generics hell Signed-off-by: garyschulte <garyschulte@gmail.com> * TrieLogs in plugin data Signed-off-by: garyschulte <garyschulte@gmail.com> * end of friday, green build with plugin refactoring, still need to add TrieLog Plugin Service Signed-off-by: garyschulte <garyschulte@gmail.com> * remove errant reference to ZkTrieLogFactory Signed-off-by: garyschulte <garyschulte@gmail.com> * adding dagger-wired plugincontext and TrieLogService Signed-off-by: garyschulte <garyschulte@gmail.com> * javadoc and fixes Signed-off-by: garyschulte <garyschulte@gmail.com> * add plugin observer subscription Signed-off-by: garyschulte <garyschulte@gmail.com> * plugin-api hash Signed-off-by: garyschulte <garyschulte@gmail.com> * fix besuComponent ref, move addService up into BesuContext Signed-off-by: garyschulte <garyschulte@gmail.com> * add TrieLogRangePair composition of blocknumber and TrieLog, use that for getTrieLogByRange return Signed-off-by: garyschulte <garyschulte@gmail.com> * javadoc Signed-off-by: garyschulte <garyschulte@gmail.com> * move TrieLog from datatypes to plugin-api Signed-off-by: garyschulte <garyschulte@gmail.com> * add blockHash to TrieLogRangeTuple Signed-off-by: garyschulte <garyschulte@gmail.com> --------- Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com> Signed-off-by: Sebastian Bathke <sebastian.bathke@gmail.com> Signed-off-by: garyschulte <garyschulte@gmail.com> Co-authored-by: Sally MacFarlane <macfarla.github@gmail.com> Co-authored-by: Sebastian Bathke <sebastian.bathke@camunda.com> Co-authored-by: Sebastian Bathke <sebastian.bathke@gmail.com>

…#4894) (hyperledger#5439) * add --Xp2p-tls-clienthello-sni option to enable the SNI header Issue hyperledger#4894 Signed-off-by: Sebastian Bathke <sebastian.bathke@gmail.com> Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com> Co-authored-by: Sebastian Bathke <sebastian.bathke@gmail.com> Co-authored-by: Sally MacFarlane <macfarla.github@gmail.com>

megglos force-pushed the 4894-tls-sni-header branch 2 times, most recently from ed54779 to 941a489 Compare May 5, 2023 19:07

Add option to send SNI header in TLS ClientHello message (hyperledger…

cfc422f

…#4894) * add --Xp2p-tls-clienthello-sni option to enable the SNI header Issue hyperledger#4894 Signed-off-by: Sebastian Bathke <sebastian.bathke@gmail.com>

megglos force-pushed the 4894-tls-sni-header branch from 941a489 to cfc422f Compare May 6, 2023 12:29

megglos marked this pull request as ready for review May 6, 2023 12:32

macfarla added the doc-change-required Indicates an issue or PR that requires doc to be updated label May 7, 2023

macfarla approved these changes May 10, 2023

View reviewed changes

pinges approved these changes May 10, 2023

View reviewed changes

merge from main

8846eda

Signed-off-by: Sally MacFarlane <macfarla.github@gmail.com>

macfarla enabled auto-merge (squash) May 10, 2023 05:30

macfarla merged commit 18405fc into hyperledger:main May 10, 2023

alexandratran removed the doc-change-required Indicates an issue or PR that requires doc to be updated label May 19, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add option to send SNI header in TLS ClientHello message [#4894] #5439

Add option to send SNI header in TLS ClientHello message [#4894] #5439

megglos commented May 5, 2023 •

edited

Loading

github-actions bot commented May 5, 2023 •

edited by macfarla

Loading

megglos commented May 6, 2023

macfarla left a comment

pinges left a comment

Add option to send SNI header in TLS ClientHello message [#4894] #5439

Add option to send SNI header in TLS ClientHello message [#4894] #5439

Conversation

megglos commented May 5, 2023 • edited Loading

PR description

Fixed Issue(s)

github-actions bot commented May 5, 2023 • edited by macfarla Loading

megglos commented May 6, 2023

macfarla left a comment

Choose a reason for hiding this comment

pinges left a comment

Choose a reason for hiding this comment

megglos commented May 5, 2023 •

edited

Loading

github-actions bot commented May 5, 2023 •

edited by macfarla

Loading