You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@mesos.apache.org by "Joseph Wu (Jira)" <ji...@apache.org> on 2019/12/17 23:28:00 UTC

[jira] [Commented] (MESOS-10073) Implement SSL downgrade on the native SSL socket

    [ https://issues.apache.org/jira/browse/MESOS-10073?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16998672#comment-16998672 ] 

Joseph Wu commented on MESOS-10073:
-----------------------------------

Review guarding against usage of this feature, until we implement downgrade:
https://reviews.apache.org/r/71923/

> Implement SSL downgrade on the native SSL socket
> ------------------------------------------------
>
>                 Key: MESOS-10073
>                 URL: https://issues.apache.org/jira/browse/MESOS-10073
>             Project: Mesos
>          Issue Type: Task
>            Reporter: Joseph Wu
>            Priority: Minor
>              Labels: foundations, ssl
>
> The new SSL socket implementation (the non-libevent one) does not currently implement the SSL downgrade hack.  We could probably use {{peek}} to achieve the same result, or modify our socket BIO to look at the first few bytes.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)