andreacavalli/netty5
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Only call JNI methods if really needed

Browse Source 
Motivation:

Calling JNI methods is pretty expensive, so we should only do if needed.

Modifications:

Lazy call methods if needed.

Result:

Better performance.
This commit is contained in:
Norman Maurer 2014-11-26 10:13:50 +01:00 committed by Trustin Lee
parent 3cbeb46b3e
commit 6bfeb42563
1 changed files with 43 additions and 25 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

68
handler/src/main/java/io/netty/handler/ssl/OpenSslEngine.java
View File

@ -118,6 +118,8 @@ public final class OpenSslEngine extends SSLEngine {
private static final AtomicIntegerFieldUpdater<OpenSslEngine> DESTROYED_UPDATER; private static final AtomicIntegerFieldUpdater<OpenSslEngine> DESTROYED_UPDATER;
private static final AtomicReferenceFieldUpdater<OpenSslEngine, SSLSession> SESSION_UPDATER; private static final AtomicReferenceFieldUpdater<OpenSslEngine, SSLSession> SESSION_UPDATER;
private static final String INVALID_CIPHER = "SSL_NULL_WITH_NULL_NULL";
// OpenSSL state // OpenSSL state
private long ssl; private long ssl;
private long networkBIO; private long networkBIO;
@ -133,7 +135,7 @@ public final class OpenSslEngine extends SSLEngine {
// Use an invalid cipherSuite until the handshake is completed // Use an invalid cipherSuite until the handshake is completed
// See http://docs.oracle.com/javase/7/docs/api/javax/net/ssl/SSLEngine.html#getSession() // See http://docs.oracle.com/javase/7/docs/api/javax/net/ssl/SSLEngine.html#getSession()
private volatile String cipher = "SSL_NULL_WITH_NULL_NULL"; private volatile String cipher;
private volatile String applicationProtocol; private volatile String applicationProtocol;
// We store this outside of the SslSession so we not need to create an instance during verifyCertificates(...) // We store this outside of the SslSession so we not need to create an instance during verifyCertificates(...)
@ -1007,14 +1009,34 @@ public final class OpenSslEngine extends SSLEngine {
@Override @Override
public String getCipherSuite() { public String getCipherSuite() {
if (!handshakeFinished) {
return INVALID_CIPHER;
}
if (cipher == null) {
String c = toJavaCipherSuite(SSL.getCipherForSSL(ssl));
if (c != null) {
cipher = c;
}
}
return cipher; return cipher;
} }
@Override @Override
public String getProtocol() { public String getProtocol() {
String applicationProtocol = OpenSslEngine.this.applicationProtocol; String applicationProtocol = OpenSslEngine.this.applicationProtocol;
String version = SSL.getVersion(ssl);
if (applicationProtocol == null) { if (applicationProtocol == null) {
applicationProtocol = SSL.getNextProtoNegotiated(ssl);
if (applicationProtocol == null) {
applicationProtocol = fallbackApplicationProtocol;
}
if (applicationProtocol != null) {
OpenSslEngine.this.applicationProtocol = applicationProtocol.replace(':', '_');
} else {
OpenSslEngine.this.applicationProtocol = "";
}
}
String version = SSL.getVersion(ssl);
if (applicationProtocol.isEmpty()) {
return version; return version;
} else { } else {
return version + ':' + applicationProtocol; return version + ':' + applicationProtocol;
@ -1136,28 +1158,6 @@ public final class OpenSslEngine extends SSLEngine {
// Check to see if we have finished handshaking // Check to see if we have finished handshaking
if (SSL.isInInit(ssl) == 0) { if (SSL.isInInit(ssl) == 0) {
handshakeFinished = true; handshakeFinished = true;
String c = SSL.getCipherForSSL(ssl);
if (c != null) {
String protocol = toProtocolFamily(SSL.getVersion(ssl));
String converted = CipherSuiteConverter.toJava(c, protocol);
if (converted != null) {
c = converted;
} else {
c = protocol + '_' + c.replace('-', '_');
}
// OpenSSL returns the ciphers seperated by '-' but the JDK SSLEngine does by '_', so replace '-'
// with '_' to match the behaviour.
cipher = c;
}
String applicationProtocol = SSL.getNextProtoNegotiated(ssl);
if (applicationProtocol == null) {
applicationProtocol = fallbackApplicationProtocol;
}
if (applicationProtocol != null) {
this.applicationProtocol = applicationProtocol.replace(':', '_');
} else {
this.applicationProtocol = null;
}
return FINISHED; return FINISHED;
} }
@ -1180,10 +1180,28 @@ public final class OpenSslEngine extends SSLEngine {
return NOT_HANDSHAKING; return NOT_HANDSHAKING;
} }
/**
* Converts the specified OpenSSL cipher suite to the Java cipher suite.
*/
private String toJavaCipherSuite(String openSslCipherSuite) {
if (openSslCipherSuite == null) {
return null;
}
String prefix = toJavaCipherSuitePrefix(SSL.getVersion(ssl));
String converted = CipherSuiteConverter.toJava(openSslCipherSuite, prefix);
if (converted != null) {
openSslCipherSuite = converted;
} else {
openSslCipherSuite = prefix + '_' + openSslCipherSuite.replace('-', '_');
}
return openSslCipherSuite;
}
/** /**
* Converts the protocol version string returned by {@link SSL#getVersion(long)} to protocol family string. * Converts the protocol version string returned by {@link SSL#getVersion(long)} to protocol family string.
*/ */
private static String toProtocolFamily(String protocolVersion) { private static String toJavaCipherSuitePrefix(String protocolVersion) {
final char c; final char c;
if (protocolVersion == null || protocolVersion.length() == 0) { if (protocolVersion == null || protocolVersion.length() == 0) {
c = 0; c = 0;