[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[libmicrohttpd] branch master updated: connection_https: disabled back T
|
From: |
gnunet |
|
Subject: |
[libmicrohttpd] branch master updated: connection_https: disabled back TCP_NODELAY optimisation |
|
Date: |
Sun, 11 Apr 2021 14:53:50 +0200 |
This is an automated email from the git hooks/post-receive script.
karlson2k pushed a commit to branch master
in repository libmicrohttpd.
The following commit(s) were added to refs/heads/master by this push:
new 2704ce98 connection_https: disabled back TCP_NODELAY optimisation
2704ce98 is described below
commit 2704ce98953d8609e7ce53ecbbf1de6c0060c3bb
Author: Evgeny Grin (Karlson2k) <k2k@narod.ru>
AuthorDate: Sun Apr 11 15:51:28 2021 +0300
connection_https: disabled back TCP_NODELAY optimisation
---
ChangeLog | 6 ++++++
src/microhttpd/connection_https.c | 18 ++++++++++--------
2 files changed, 16 insertions(+), 8 deletions(-)
diff --git a/ChangeLog b/ChangeLog
index 3ae48113..383eed63 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,9 @@
+Sun 11 Apr 2021 15:44:00 MSK
+ Updated test TLS certificates to not expired modern versions, restored
+ HTTPS examples compatibility with modern browsers.
+ TCP_NODELAY is not pre-enabled for HTTPS connection as it actually
+ does not speed-up TLS handshakes on moders OSes. -EG
+
Thu 01 Apr 2021 21:29:46 MSK
Fixed MD5 digest authorization broken when compiled without variable
length arrays support (notably with MSVC).
diff --git a/src/microhttpd/connection_https.c
b/src/microhttpd/connection_https.c
index ff1812c4..3d4b0bdb 100644
--- a/src/microhttpd/connection_https.c
+++ b/src/microhttpd/connection_https.c
@@ -1,6 +1,7 @@
/*
This file is part of libmicrohttpd
Copyright (C) 2007, 2008, 2010 Daniel Pittman and Christian Grothoff
+ Copyright (C) 2015-2021 Karlson2k (Evgeny Grin)
This library is free software; you can redistribute it and/or
modify it under the terms of the GNU Lesser General Public
@@ -24,6 +25,7 @@
* compiled if ENABLE_HTTPS is set.
* @author Sagie Amir
* @author Christian Grothoff
+ * @author Karlson2k (Evgeny Grin)
*/
#include "internal.h"
@@ -108,16 +110,16 @@ MHD_run_tls_handshake_ (struct MHD_Connection *connection)
if ((MHD_TLS_CONN_INIT == connection->tls_state) ||
(MHD_TLS_CONN_HANDSHAKING == connection->tls_state))
{
- /* GnuTLS uses sendmsg() (when available) to send outgoing message
- * by single system call therefore there is no need to wait for
- * additional data after sendmsg(). TLS handshake requires several packets
- * exchange so set TCP_NODELAY here to avoid delay before each outgoing
- * packet is pushed to the network from kernel network buffers.
- * As a drawback, this may result in a larger number of IP packet being
- * send on platforms without sendmsg() support, but luckily such platforms
- * are now rare and they don't provide best performance anyway. */
+#if 0
+ /* According to real-live testing, Nagel's Algorithm is not blocking
+ * partial packets on just connected sockets on modern OSes. As TLS setup
+ * is performed as the fist action upon socket connection, the next
+ * optimisation typically is not required. If any specific OS will
+ * require this optimization, it could be enabled by allowing the next
+ * lines for this specific OS. */
if (_MHD_ON != connection->sk_nodelay)
MHD_connection_set_nodelay_state_ (connection, true);
+#endif
ret = gnutls_handshake (connection->tls_session);
if (ret == GNUTLS_E_SUCCESS)
{
--
To stop receiving notification emails like this one, please contact
gnunet@gnunet.org.
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [libmicrohttpd] branch master updated: connection_https: disabled back TCP_NODELAY optimisation,
gnunet <=