-
Notifications
You must be signed in to change notification settings - Fork 2.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Mailer TLS-configuration, possible SSL-Hanshake-Exception since Quarkus 3.12 #42050
Comments
/cc @cescoffier (mailer), @radcortez (config) |
@geoand I remembered we discussed something similar, but I cannot remember where. In the case of the mailer, because of the |
I vaguely remember something similar, but can't remember exactly... Maybe it was for OTel? |
Actually..... @wernert75 can you try with:
To avoid the ambiguity, we explicitly disable TLS if |
Ah no, it was for Redis |
@wernert75 When you have time, can you confirm, I will document the breaking change. |
This configuration works: quarkus.mailer.from=[email protected] quarkus.mailer.tls=false BUT this configuration works not (SSLHandshakeException): quarkus.mailer.from=[email protected] quarkus.mailer.start-tls=REQUIRED In the end, it is primarily a configuration issue. With 3.11 it worked with the not quite consistent configuration. With 3.12 it then failed unexpectedly. A note in the documentation or in the log output would certainly be sufficient |
Thanks for your reactivity, @wernert75! Totally agree! I will update the documentation and add it to the list of breaking changes. |
Describe the bug
Given a Mail-Server uses STARTTLS, no TLS
the following configuration worked until Quarkus 3.11.x. Since 3.12.x this configuration leads to a SSL-Handshake-Exception.
quarkus.mailer.from=[email protected]
quarkus.mailer.host=localhost
quarkus.mailer.port=25
qauarkus.mailer.mock=false
quarkus.tls.trust-all=true
Switch quarkus.tls.trust-all to false, or remove the property, make the configuration works.
It seems, only the trust-all=true configuration property enables TLS. Even if it's not configured.
Expected behavior
Mails should be send without throwing an exception, even if trust-all=true
Actual behavior
Mailer throws SSL-Handshake-Exception
How to Reproduce?
See description.
Output of
uname -a
orver
No response
Output of
java -version
No response
Quarkus version or git rev
No response
Build tool (ie. output of
mvnw --version
orgradlew --version
)No response
Additional information
No response
The text was updated successfully, but these errors were encountered: