New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unable to use TLS termination over Nginx #363
Comments
@seanmonstar looks like something to do with |
To clarify, the error occurs in the tonic client? How do you configure it? |
Currently without the I was able to reproduce this issue using Tonic examples using the following steps:
This will return an unimplemented error, which seems to be just because the hello world server is implemented differently than the tls server. However it seems to work over Nginx when the tls_config is manually specified.
It's worth noting that when you remove tls_config from the client builder and point directly to the tls server you get a broken pipe error instead of invalid frame error. |
Ended up fixing the problem by stuffing in a default ClientTlsConfig object into the connection when the URL scheme has
|
I've filed hyperium/h2#470 about the frame size error. |
Thanks @seanmonstar! @LucioFranco what do you think about an improvement to tonic where TLS is assumed based on the URI scheme? The above snippet I posted for my workaround feels kind of silly. It seems like I shouldn't have to pass in a dummy config object if tonic is already smart enough to auto-configure that once it's passed in. This is just ergonomics though. |
That could work this is what I believe the other connectors do as well. |
Closing in-favor of #418 |
Bug Report
The Tonic generated gRPC client has protocol errors when communicating with Tonic server over Nginx with TLS termination.
Version
Platform
Description
When attempting to use our Tonic generated client we encounter the following error when using TLS termination with Nginx.
Other gRPC clients in Typescript and Go are able to communicate with the Tonic server without any problems. Only the Tonic based rust client has this issue.
The text was updated successfully, but these errors were encountered: