Page MenuHomeFreeBSD

Fix downgrading of TOE TLS sockets to plain TOE.
ClosedPublic

Authored by jhb on Dec 3 2020, 9:31 PM.
Tags
None
Referenced Files
Unknown Object (File)
Oct 19 2024, 10:52 PM
Unknown Object (File)
Sep 27 2024, 10:03 PM
Unknown Object (File)
Sep 26 2024, 12:46 AM
Unknown Object (File)
Sep 21 2024, 8:50 PM
Unknown Object (File)
Sep 21 2024, 8:50 PM
Unknown Object (File)
Sep 21 2024, 8:50 PM
Unknown Object (File)
Sep 21 2024, 8:40 PM
Unknown Object (File)
Sep 21 2024, 6:20 AM
Subscribers

Details

Summary

If a TOE TLS socket ends up using an unsupported TLS version or
ciphersuite, it must be downgraded to a "plain" TOE socket with
TLS encryption/decryption performed on the host. The previous
implementation of this fallback was incomplete and resulted in
hung connections.

Diff Detail

Lint
Lint Passed
Unit
No Test Coverage
Build Status
Buildable 35176
Build 32126: arc lint + arc unit