.build()
    val request2 = Request.Builder().url(server.url("/")).build()
    val response2 = client.newCall(request2).execute()
    assertThat(response1.handshake).isNotSameAs(
      response2.handshake,
    )
    response2.body.close()
  }

  @Test
  fun unmatchingPinnedCertificate() {
    enableTls()
    server.enqueue(MockResponse())

now allows providing the user uid. ([#49677](https://github.com/kubernetes/kubernetes/pull/49677), [@dims](https://github.com/dims))

* After a kubelet rotates its client cert, it now closes its connections to the API server to force a handshake using the new cert. Previously, the kubelet could keep its existing connection open, even if the cert used for that connection was expired and rejected by the API server. ([#49899](https://github.com/kubernetes/kubernetes/pull/49899), [@ericchia...

- `client-go`, using log level 9, traces the following events of a HTTP request:
      - DNS lookup
      - TCP dialing
      - TLS handshake
      - Time to get a connection from the pool
      - Time to process a request ([#105156](https://github.com/kubernetes/kubernetes/pull/105156), [@aojea](https://github.com/aojea))

### Documentation

   * long, streams created while we await the pong will reuse broken connections and inevitably
   * fail. If it is too short, slow connections will be marked as failed and extra TCP and TLS
   * handshakes will be required.
   *
   * The deadline is currently hardcoded. We may make this configurable in the future!
   */
  internal fun sendDegradedPingLater() {
    withLock {

hash: s.hash, } } // ClientHandshakeTraff derives the client_handshake_traffic_secret from // the handshake secret and the transcript up to the ServerHello. func (s *HandshakeSecret) ClientHandshakeTraff(transcript fips140.Hash) []byte { return deriveSecret(s.hash, s.secret, clientHandshakeTraff, transcript) } // ServerHandshakeTraff derives the server_handshake_traffic_secret from // the handshake secret and the transcript up to the ServerHello. func (s *HandshakeSecret) ServerHandshakeTraff(transcript...

derived), hash: s.hash, } } // ClientHandshakeTraff derives the client_handshake_traffic_secret from // the handshake secret and the transcript up to the ServerHello. func (s *HandshakeSecret) ClientHandshakeTraff(transcript hash.Hash) []byte { return deriveSecret(s.hash, s.secret, clientHandshakeTraff, transcript) } // ServerHandshakeTraff derives the server_handshake_traffic_secret from // the handshake secret and the transcript up to the ServerHello. func (s *HandshakeSecret) ServerHandshakeTraff(transcript...

pkg crypto/tls, method (*Config) BuildNameToCertificate()
pkg crypto/tls, method (*Conn) Close() error
pkg crypto/tls, method (*Conn) ConnectionState() ConnectionState
pkg crypto/tls, method (*Conn) Handshake() error
pkg crypto/tls, method (*Conn) LocalAddr() net.Addr
pkg crypto/tls, method (*Conn) OCSPResponse() []uint8
pkg crypto/tls, method (*Conn) Read([]uint8) (int, error)
pkg crypto/tls, method (*Conn) RemoteAddr() net.Addr