Enable SSL_MODE_ENABLE_FALSE_START if jdkCompatibilityMode is false (#10407)

Motivation: To reduce latency and RTTs we should use TLS False Start when jdkCompatibilityMode is not required and its supported Modifications: Use SSL_MODE_ENABLE_FALSE_START when jdkCompatibilityMode is false Result: Less RTTs and so lower latency when TLS False Start is supported
2020-08-18 19:00:08 +02:00 · 2020-08-18 19:00:08 +02:00 · 514d349e1f
commit 514d349e1f
parent 68dbc7703a
2 changed files with 3 additions and 2 deletions
--- a/handler/src/main/java/io/netty/handler/ssl/ReferenceCountedOpenSslEngine.java
+++ b/handler/src/main/java/io/netty/handler/ssl/ReferenceCountedOpenSslEngine.java
@ -258,7 +258,8 @@ public class ReferenceCountedOpenSslEngine extends SSLEngine implements Referenc
                }

                if (!jdkCompatibilityMode) {
-                    SSL.setMode(ssl, SSL.getMode(ssl) | SSL.SSL_MODE_ENABLE_PARTIAL_WRITE);
+                    SSL.setMode(ssl, SSL.getMode(ssl) | SSL.SSL_MODE_ENABLE_PARTIAL_WRITE
+                            | SSL.SSL_MODE_ENABLE_FALSE_START);
                }

                int opts = SSL.getOptions(ssl);
--- a/pom.xml
+++ b/pom.xml
@ -347,7 +347,7 @@
    <!-- keep in sync with PlatformDependent#ALLOWED_LINUX_OS_CLASSIFIERS -->
    <os.detection.classifierWithLikes>fedora,suse,arch</os.detection.classifierWithLikes>
    <tcnative.artifactId>netty-tcnative</tcnative.artifactId>
-    <tcnative.version>2.0.31.Final</tcnative.version>
+    <tcnative.version>2.0.33.Final</tcnative.version>
    <tcnative.classifier>${os.detected.classifier}</tcnative.classifier>
    <conscrypt.groupId>org.conscrypt</conscrypt.groupId>
    <conscrypt.artifactId>conscrypt-openjdk-uber</conscrypt.artifactId>