netty5

History

Cory Benfield e0094b2f89 Don't loop over TLS records for SNI (#7479 ) Motivation: The AbstractSniHandler previously was willing to tolerate up to three non-handshake records before a ClientHello that contained an SNI extension field. This is, so far as I can tell, completely unnecessary: no TLS implementation will be sending alerts or change cipher spec messages before ClientHello. Given that it was not possible to determine why this loop is in the code to begin with, it's probably just best to remove it. Modifications: Remove the for loop. Result: The AbstractSniHandler will more rapidly determine whether it should pass the records on to the default SSL handler. Co-authored-by: Norman Maurer <norman_maurer@apple.com>	2019-07-01 11:23:31 +02:00
..
src	Don't loop over TLS records for SNI (#7479 )	2019-07-01 11:23:31 +02:00
pom.xml	Correcting Maven Dependencies (#8622 )	2018-12-06 09:02:00 +01:00

Cory Benfield e0094b2f89 Don't loop over TLS records for SNI (#7479 )

Motivation:

The AbstractSniHandler previously was willing to tolerate up to three
non-handshake records before a ClientHello that contained an SNI
extension field. This is, so far as I can tell, completely
unnecessary: no TLS implementation will be sending alerts or change
cipher spec messages before ClientHello.

Given that it was not possible to determine why this loop is in
the code to begin with, it's probably just best to remove it.

Modifications:

Remove the for loop.

Result:

The AbstractSniHandler will more rapidly determine whether it should
pass the records on to the default SSL handler.

Co-authored-by: Norman Maurer <norman_maurer@apple.com>

2019-07-01 11:23:31 +02:00

src

Don't loop over TLS records for SNI (#7479 )

2019-07-01 11:23:31 +02:00

pom.xml

Correcting Maven Dependencies (#8622 )

2018-12-06 09:02:00 +01:00