Skip to content

deps: Explicitly pin netty to 4.1.119.Final to fix R2DBC with MariaDB#2175

Closed
hessjcg wants to merge 1 commit intomainfrom
fix-pin-netty-version
Closed

deps: Explicitly pin netty to 4.1.119.Final to fix R2DBC with MariaDB#2175
hessjcg wants to merge 1 commit intomainfrom
fix-pin-netty-version

Conversation

@hessjcg
Copy link
Copy Markdown
Collaborator

@hessjcg hessjcg commented Jul 14, 2025

The MariaDB R2DBC drivers are not compatible with Netty 4.2. We have tried several versions of the Netty library, but none seem to work. This causes integration tests to fail with the error below. This problem is not caught by the current unit test suite.

We are configuring our tools to ignore updates past Netty 4.1.119.Final.


23:02:08.659 [reactor-tcp-epoll-2] WARN  o.m.r.m.flow.AuthenticationFlow - Authentication failed
--
  | io.r2dbc.spi.R2dbcNonTransientResourceException: Connection error
  | at org.mariadb.r2dbc.client.SimpleClient.handleConnectionError(SimpleClient.java:282)
  | at org.mariadb.r2dbc.client.SimpleClient.sendResumeError(SimpleClient.java:291)
  | at org.mariadb.r2dbc.client.SimpleClient.receiveResumeError(SimpleClient.java:298)
  | at reactor.core.publisher.FluxOnErrorResume$ResumeSubscriber.onError(FluxOnErrorResume.java:94)
  | at reactor.core.publisher.FluxMap$MapSubscriber.onError(FluxMap.java:134)
  | at reactor.netty.channel.FluxReceive.terminateReceiver(FluxReceive.java:480)
  | at reactor.netty.channel.FluxReceive.drainReceiver(FluxReceive.java:275)
  | at reactor.netty.channel.FluxReceive.onInboundError(FluxReceive.java:468)
  | at reactor.netty.channel.ChannelOperations.onInboundError(ChannelOperations.java:514)
  | at reactor.netty.channel.ChannelOperationsHandler.exceptionCaught(ChannelOperationsHandler.java:153)
  | at io.netty.channel.AbstractChannelHandlerContext.invokeExceptionCaught(AbstractChannelHandlerContext.java:289)
  | at io.netty.channel.AbstractChannelHandlerContext.fireExceptionCaught(AbstractChannelHandlerContext.java:271)
  | at io.netty.handler.ssl.SslHandler.exceptionCaught(SslHandler.java:1238)
  | at io.netty.channel.AbstractChannelHandlerContext.invokeExceptionCaught(AbstractChannelHandlerContext.java:289)
  | at io.netty.channel.AbstractChannelHandlerContext.fireChannelRead(AbstractChannelHandlerContext.java:359)
  | at io.netty.channel.DefaultChannelPipeline$HeadContext.channelRead(DefaultChannelPipeline.java:1429)
  | at io.netty.channel.DefaultChannelPipeline.fireChannelRead(DefaultChannelPipeline.java:918)
  | at io.netty.channel.epoll.AbstractEpollStreamChannel$EpollStreamUnsafe.epollInReady(AbstractEpollStreamChannel.java:799)
  | at io.netty.channel.epoll.EpollEventLoop.processReady(EpollEventLoop.java:501)
  | at io.netty.channel.epoll.EpollEventLoop.run(EpollEventLoop.java:399)
  | at io.netty.util.concurrent.SingleThreadEventExecutor$5.run(SingleThreadEventExecutor.java:1073)
  | at io.netty.util.internal.ThreadExecutorMap$2.run(ThreadExecutorMap.java:74)
  | at io.netty.util.concurrent.FastThreadLocalRunnable.run(FastThreadLocalRunnable.java:30)
  | at java.base/java.lang.Thread.run(Thread.java:840)
  | Caused by: io.netty.handler.codec.DecoderException: javax.net.ssl.SSLHandshakeException: No subject alternative names present
  | at io.netty.handler.codec.ByteToMessageDecoder.callDecode(ByteToMessageDecoder.java:500)
  | at io.netty.handler.codec.ByteToMessageDecoder.channelRead(ByteToMessageDecoder.java:290)
  | at io.netty.channel.AbstractChannelHandlerContext.fireChannelRead(AbstractChannelHandlerContext.java:356)
  | ... 9 common frames omitted
  | Caused by: javax.net.ssl.SSLHandshakeException: No subject alternative names present
  | at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:131)
  | at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:383)
  | at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:326)
  | at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:321)
  | at java.base/sun.security.ssl.CertificateMessage$T12CertificateConsumer.checkServerCerts(CertificateMessage.java:654)
  | at java.base/sun.security.ssl.CertificateMessage$T12CertificateConsumer.onCertificate(CertificateMessage.java:473)
  | at java.base/sun.security.ssl.CertificateMessage$T12CertificateConsumer.consume(CertificateMessage.java:369)
  | at java.base/sun.security.ssl.SSLHandshake.consume(SSLHandshake.java:396)
  | at java.base/sun.security.ssl.HandshakeContext.dispatch(HandshakeContext.java:480)
  | at java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask$DelegatedAction.run(SSLEngineImpl.java:1277)
  | at java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask$DelegatedAction.run(SSLEngineImpl.java:1264)
  | at java.base/java.security.AccessController.doPrivileged(AccessController.java:712)
  | at java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask.run(SSLEngineImpl.java:1209)
  | at io.netty.handler.ssl.SslHandler.runDelegatedTasks(SslHandler.java:1716)
  | at io.netty.handler.ssl.SslHandler.unwrap(SslHandler.java:1562)
  | at io.netty.handler.ssl.SslHandler.decodeJdkCompatible(SslHandler.java:1398)
  | at io.netty.handler.ssl.SslHandler.decode(SslHandler.java:1449)
  | at io.netty.handler.codec.ByteToMessageDecoder.decodeRemovalReentryProtection(ByteToMessageDecoder.java:530)
  | at io.netty.handler.codec.ByteToMessageDecoder.callDecode(ByteToMessageDecoder.java:469)
  | ... 11 common frames omitted
  | Caused by: java.security.cert.CertificateException: No subject alternative names present
  | at java.base/sun.security.util.HostnameChecker.matchIP(HostnameChecker.java:142)
  | at java.base/sun.security.util.HostnameChecker.match(HostnameChecker.java:101)
  | at java.base/sun.security.ssl.X509TrustManagerImpl.checkIdentity(X509TrustManagerImpl.java:467)
  | at java.base/sun.security.ssl.X509TrustManagerImpl.checkIdentity(X509TrustManagerImpl.java:433)
  | at java.base/sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:292)
  | at java.base/sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:144)
  | at com.google.cloud.sql.core.InstanceCheckingTrustManger.checkServerTrusted(InstanceCheckingTrustManger.java:99)
  | at java.base/sun.security.ssl.CertificateMessage$T12CertificateConsumer.checkServerCerts(CertificateMessage.java:632)
  | ... 25 common frames omitted
  | [INFO]
  | [INFO] Results:
  | [INFO]
  | [ERROR] Errors:
  | [ERROR]   R2dbcMariadbIamAuthIntegrationTests.pooledConnectionTest » R2dbcNonTransientResource Fail to establish connection to [10.119.0.5:3307] : Connection error
  | [ERROR]   R2dbcMariadbIntegrationTests.pooledConnectionTest » R2dbcNonTransientResource Fail to establish connection to [34.72.43.231:3307] : Connection error
  | [INFO]
  | [ERROR] Tests run: 2, Failures: 0, Errors: 2, Skipped: 0
  | [INFO]

@hessjcg hessjcg requested a review from a team as a code owner July 14, 2025 23:26
@hessjcg hessjcg requested a review from kgala2 July 14, 2025 23:26
@hessjcg
Copy link
Copy Markdown
Collaborator Author

hessjcg commented Aug 12, 2025

Closing as obsolete. We will use the ./build.sh deps going to update Java dependencies going forward.

@hessjcg hessjcg closed this Aug 12, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kgala2 kgala2 Awaiting requested review from kgala2

Assignees

@kgala2 kgala2

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@hessjcg @kgala2