Add support for HA Proxy Protocol TLV's

TLV's are supported in netty, but currently not accessible to vert.x
users.
Here the TLV's are exposed in `NetSocket#tlvs`

Author: damianorenfer

vertx-core/src/main/java/io/vertx/core/http/HttpConnection.java

@@ -16,6 +16,7 @@
 import io.vertx.core.Handler;
 import io.vertx.core.buffer.Buffer;
 import io.vertx.core.net.SocketAddress;
+import io.vertx.core.net.TLV;
 
 import javax.net.ssl.SSLPeerUnverifiedException;
 import javax.net.ssl.SSLSession;
@@ -298,4 +299,10 @@ default List<Certificate> peerCertificates() throws SSLPeerUnverifiedException {
    */
   String indicatedServerName();
 
+  /**
+   * @return the type-length-values present in the TCP header, mainly used for HA Proxy Protocol v2
+   */
+  @GenIgnore()
+  List<TLV> tlvs();
+
 }

vertx-core/src/main/java/io/vertx/core/http/impl/HttpNetSocket.java

@@ -21,11 +21,13 @@
 import io.vertx.core.net.NetSocket;
 import io.vertx.core.net.SSLOptions;
 import io.vertx.core.net.SocketAddress;
+import io.vertx.core.net.TLV;
 import io.vertx.core.streams.ReadStream;
 import io.vertx.core.streams.WriteStream;
 
 import javax.net.ssl.SSLSession;
 import java.time.Duration;
+import java.util.List;
 
 /**
  * @author <a href="mailto:julien@julienviet.com">Julien Viet</a>
@@ -229,6 +231,11 @@ public SocketAddress localAddress(boolean real) {
     return stream.connection().localAddress(real);
   }
 
+  @Override
+  public List<TLV> tlvs() {
+    return stream.connection().tlvs();
+  }
+
   @Override
   public Future<Void> close() {
     return end();

vertx-core/src/main/java/io/vertx/core/http/impl/UnpooledHttpClientConnection.java

@@ -21,12 +21,13 @@
 import io.vertx.core.internal.ContextInternal;
 import io.vertx.core.internal.PromiseInternal;
 import io.vertx.core.net.SocketAddress;
+import io.vertx.core.net.TLV;
 
 import javax.net.ssl.SSLSession;
 import java.time.Duration;
 import java.util.ArrayDeque;
 import java.util.Deque;
-import java.util.concurrent.TimeUnit;
+import java.util.List;
 
 /**
  * An un-pooled HTTP client connection that maintains a queue for pending requests that cannot be served
@@ -207,6 +208,11 @@ public String indicatedServerName() {
     return actual.indicatedServerName();
   }
 
+  @Override
+  public List<TLV> tlvs() {
+    return actual.tlvs();
+  }
+
   /**
    * Create an HTTP stream.
    *

vertx-core/src/main/java/io/vertx/core/http/impl/http3/Http3Connection.java

@@ -26,6 +26,7 @@
 import io.vertx.core.internal.quic.QuicConnectionInternal;
 import io.vertx.core.internal.quic.QuicStreamInternal;
 import io.vertx.core.net.SocketAddress;
+import io.vertx.core.net.TLV;
 
 import javax.net.ssl.SSLSession;
 import java.time.Duration;
@@ -332,4 +333,9 @@ public HttpConnection pingHandler(@Nullable Handler<Buffer> handler) {
   public HttpConnection exceptionHandler(Handler<Throwable> handler) {
     return this;
   }
+
+  @Override
+  public List<TLV> tlvs() {
+    return connection.tlvs();
+  }
 }

vertx-core/src/main/java/io/vertx/core/http/impl/tcp/Http2UpgradeClientConnection.java

@@ -33,11 +33,13 @@
 import io.vertx.core.internal.logging.LoggerFactory;
 import io.vertx.core.net.HostAndPort;
 import io.vertx.core.net.SocketAddress;
+import io.vertx.core.net.TLV;
 import io.vertx.core.spi.metrics.ClientMetrics;
-import io.vertx.core.spi.metrics.HttpClientMetrics;
+
 
 import javax.net.ssl.SSLSession;
 import java.time.Duration;
+import java.util.List;
 
 /**
  * A connection that attempts to perform a protocol upgrade to H2C. The connection might use HTTP/1 or H2C
@@ -901,6 +903,11 @@ public String indicatedServerName() {
     return current.indicatedServerName();
   }
 
+  @Override
+  public List<TLV> tlvs() {
+    return current.tlvs();
+  }
+
   @Override
   public String toString() {
     return getClass().getSimpleName() + "[current=" + current.getClass().getSimpleName() + "]";

vertx-core/src/main/java/io/vertx/core/net/NetSocket.java

@@ -316,5 +316,11 @@ default List<Certificate> peerCertificates() throws SSLPeerUnverifiedException {
    */
   String applicationLayerProtocol();
 
+  /**
+   * @return the type-length-values present in the TCP header, mainly used for HA Proxy Protocol v2
+   */
+  @GenIgnore()
+  List<TLV> tlvs();
+
 }
 

vertx-core/src/main/java/io/vertx/core/net/QuicConnection.java

@@ -18,6 +18,7 @@
 
 import javax.net.ssl.SSLSession;
 import java.time.Duration;
+import java.util.List;
 
 /**
  * <p>A Quic connection between a client and a server, providing support for handling or creating Quic {@link QuicStream streams}</p>
@@ -176,4 +177,10 @@ default Future<Void> shutdown(Duration timeout) {
    */
   SocketAddress localAddress();
 
+  /**
+   * @return the type-length-values present in the TCP header, mainly used for HA Proxy Protocol v2
+   */
+  @GenIgnore()
+  List<TLV> tlvs();
+
 }

vertx-core/src/main/java/io/vertx/core/net/TLV.java

@@ -0,0 +1,19 @@
+/*
+ * Copyright (c) 2011-2026 Contributors to the Eclipse Foundation
+ *
+ * This program and the accompanying materials are made available under the
+ * terms of the Eclipse Public License 2.0 which is available at
+ * http://www.eclipse.org/legal/epl-2.0, or the Apache License, Version 2.0
+ * which is available at https://www.apache.org/licenses/LICENSE-2.0.
+ *
+ * SPDX-License-Identifier: EPL-2.0 OR Apache-2.0
+ */
+package io.vertx.core.net;
+
+import io.vertx.core.buffer.Buffer;
+
+public interface TLV {
+  Buffer type();
+
+  Buffer value();
+}

vertx-core/src/main/java/io/vertx/core/net/impl/ConnectionBase.java

@@ -27,11 +27,13 @@
 import io.vertx.core.internal.net.NetSocketInternal;
 import io.vertx.core.internal.net.SslHandshakeCompletionHandler;
 import io.vertx.core.net.SocketAddress;
+import io.vertx.core.net.TLV;
 import io.vertx.core.spi.metrics.NetworkMetrics;
 import io.vertx.core.spi.metrics.TransportMetrics;
 
 import javax.net.ssl.SSLSession;
 import java.net.InetSocketAddress;
+import java.util.List;
 
 /**
  * Abstract base class for connections managed by a vertx instance. This base implementation does not handle
@@ -53,6 +55,7 @@ public abstract class ConnectionBase {
   public static final VertxException CLOSED_EXCEPTION = NetSocketInternal.CLOSED_EXCEPTION;
   public static final AttributeKey<SocketAddress> REMOTE_ADDRESS_OVERRIDE = AttributeKey.valueOf("RemoteAddressOverride");
   public static final AttributeKey<SocketAddress> LOCAL_ADDRESS_OVERRIDE = AttributeKey.valueOf("LocalAddressOverride");
+  public static final AttributeKey<List<TLV>> TLVS = AttributeKey.valueOf("TLVS");
   private static final Logger log = LoggerFactory.getLogger(ConnectionBase.class);
 
   protected final VertxInternal vertx;
@@ -426,4 +429,8 @@ public SocketAddress localAddress(boolean real) {
     }
   }
 
+  public List<TLV> tlvs() {
+    return channel.hasAttr(TLVS) ? channel.attr(TLVS).getAndSet(null) : null;
+  }
+
 }

vertx-core/src/main/java/io/vertx/core/net/impl/HAProxyMessageCompletionHandler.java

@@ -11,9 +11,12 @@
 import io.vertx.core.internal.logging.Logger;
 import io.vertx.core.internal.logging.LoggerFactory;
 import io.vertx.core.net.SocketAddress;
+import io.vertx.core.net.TLV;
 
 import java.io.IOException;
 import java.util.List;
+import java.util.Objects;
+import java.util.stream.Collectors;
 
 public class HAProxyMessageCompletionHandler extends MessageToMessageDecoder<HAProxyMessage> {
   //Public because its used in tests
@@ -71,6 +74,11 @@ protected void decode(ChannelHandlerContext ctx, HAProxyMessage msg, List<Object
           ctx.channel().attr(ConnectionBase.LOCAL_ADDRESS_OVERRIDE)
             .set(createAddress(protocol, msg.destinationAddress(), msg.destinationPort()));
         }
+
+        if (msg.tlvs() != null) {
+          ctx.channel().attr(ConnectionBase.TLVS)
+            .set(createTLVs(msg.tlvs()));
+        }
       }
       ctx.pipeline().remove(this);
       promise.setSuccess(ctx.channel());
@@ -103,4 +111,11 @@ private SocketAddress createAddress(HAProxyProxiedProtocol protocol, String sour
         throw new IllegalStateException("Should never happen");
     }
   }
+
+  private List<TLV> createTLVs(List<io.netty.handler.codec.haproxy.HAProxyTLV> haProxyTLVs) {
+    return haProxyTLVs.stream()
+      .filter(Objects::nonNull)
+      .map(HAProxyTLV::from)
+      .collect(Collectors.toList());
+  }
 }