Clojurians
#immutant
<
2015-11-18
>

This page is not created by, affiliated with, or supported by Slack Technologies, Inc.

jcrossley313:11:37

@jaen: what version of openssl are you using?

jaen13:11:01

@jcrossley3:

╰─$ openssl version
OpenSSL 1.0.2d 9 Jul 2015

jaen13:11:08

That said, browser can't connect either

jcrossley313:11:16

@jaen: i have things connecting via ssl using undertow's key/trust stores, but i don't see the http2 request headers in either FF or chrome

jcrossley313:11:00

@jaen: i'm using an older openssl, which may be my problem. let me push my changes and have you try.

jaen13:11:58

Hmm, you say you're using key/trust stores (I assume directly). Maybe less-awful-ssl is setting it up from the keys wrong?

jcrossley313:11:47

mayhap. i tried creating my own and failed with the same errors i was getting with your creds.

jcrossley313:11:16

there are a lot of moving parts here, including jvm and openssl versions

jaen13:11:21

Right. I hoped it could just work™ and was kinda stumped, even though I tried to follow the less-awful-ssl readme you linked to as a way to set that up. Is there any alternative you suggest? Say, creating those key/trust stores you speak of (I don't really know what they are, in Ruby you just dealt with plain ceritifcate files)

jcrossley313:11:45

@jaen: PR sent

jaen14:11:11

Interesting

jaen14:11:16

Openssl connects properly

jaen14:11:22

But browser says no data is sent

jaen14:11:00

Non-ssl port works properly

jaen14:11:13

Is the behaviour the same for you?

jaen14:11:50

Oh, curl works. Interesting, so it's just browser that complains.

jaen14:11:52

Oh, it has to have the protocol, I used just localhost:8443

jaen14:11:44

Though yeah, no HTTP2 enabled. Is the way I try to enable it proper, or is there something I'm missing?

jaen14:11:38

Because that is all result of me source-diving, so I might have missed something with there not being documentation on how to enable it

jaen14:11:47

(or at the very least I couldn't find it)

jcrossley314:11:39

i'm not sure, tbh. need to research a bit more. i was hoping your openssl version would've been enough to do the trick, but i'm never that lucky. :simple_smile:

jaen14:11:37

I see. But if I understand correctly since SSL is working then there must be something else missing to enable HTTP2, right?

jcrossley314:11:51

i think so, yeah

jcrossley314:11:37

once we figure that out, we'll add an :http? option to encapsulate that

jcrossley314:11:31

for some reason, i didn't think undertow would require any config since http2 really should be driven by the browser

jcrossley314:11:21

that's why we called it "experimental support" -- sorry for giving you the wrong impression there, but i appreciate you forcing us to fix it. :simple_smile:

jaen14:11:33

Sure, no problem

jaen14:11:04

That's nothing really pressing though, since it's just a university project and I just wanted to be fancy.

jaen14:11:15

I'll keep an eye on it and thanks for the help!

jcrossley314:11:17

i can respect that :simple_smile:

jaen14:11:11

Ok, I have to run, thanks again!