ssl - Java TLS Session Reuse after closed connection -


i have java tls client can send series of requests server, each followed response server.

however, there many different servers. "multi-message" servers keep connection open after first request, subsequent requests can sent on first connection. others "single-message" servers close connection after each message , new connection required subsequent messages. there no priori way client know type of server talking to, nor fix servers.

it desirable single-message serves able resume session without full handshake.

my original client code tried send subsequent requests down same connection. if failed opened new connection server. handle both single , multi-message servers.

however, failure when sending second message single-message severs seems kill session resumption.

my dirty work around notice if message fails , assume talking single-message server, in case client explicitly closes socket after each response has been received. enables subsequent connections resume sessions.

but there has better way. testing isinputshutdown or isconnected not help, unsurprisingly, there timing issues. connection failure single-message server happens during read of response, after write of request, presumably due buffering.

any ideas appreciated?

your initial solution correct in case of plaintext: ioexception: connection reset peer when sending second message, , can recover accordingly reconnecting.

however in tls case won't work, not ioexception: connection reset peer socketexception, due fatal tls unexpected_message alert. rfc 2246 #7.2 states:

alert messages level of fatal result in immediate termination of connection. in case, other connections corresponding session may continue, the session identifier must invalidated, preventing failed session being used establish new connections.

[my emphasis], because failed session deemed insecure, and

unexpected_message

an inappropriate message received. alert fatal , should never observed in communication between proper implementations.

your second solution seems appropriate me.

nb:

  • isinputshutdown() can never true, can't call shutdowninput() on sslsocket.
  • isconnected() never false once socket has been connected.
  • both tell state of socket, not of connection, trying them futile. , has nothing 'timing issues'.

-

Comments

Post a Comment

Popular posts from this blog

scala - 'wrong top statement declaration' when using slick in IntelliJ -

Image
i'm porting project scala 2.9 2.10, therefore have use slick instead of scalaquery. i'm using slick 2.1.0 since supports ms access. according this tutorial , upgrade guide changed robs object class , added val robs : why error message wrong top statement declaration , how rid of it? edit: i'm new scala... according this question seems can't put val outside of methods or classes, right? code above directly in packge. right approach slick then? should move code in class or trait? according this changed val robs = tablequery[robs] to object robs extends tablequery(new robs(_)) {} . no warnings or errors anymore. :)
Read more

c# - DevExpress.Wpf.Grid.InfiniteGridSizeException was unhandled -

Image
when using devexpress, see error: devexpress.wpf.grid.infinitegridsizeexception unhandled message="by default, infinite grid height not allowed since grid rows rendered , hence grid work slowly. fix issue, should place grid container give finite height grid, or should manually specify grid's height or maxheight. note can avoid exception setting gridcontrol.allowinfinitegridsize static property true, in case grid run slowly." the problem dxgrid has infinite height. to fix, set height non-infinite. snoop absolutely invaluable this: if "height" xaml element infinite (i.e. 0 or nan ), can set using one of following: option 1: height="{binding path=actualheight, relativesource={relativesource mode=findancestor, ancestortype=uielement}}" option 2: verticalalignment="stretch" option 3: height="auto" hint: use verticalalignment="stretch" if child of grid <rowdefinition height=
Read more

PySide and Qt Properties: Connecting signals from Python to QML -

i trying run simple pyside appliccation design made in qml. call function in qml python in separated thread. i have following qml view: import qt 4.7 rectangle { visible: true width: 100; height: 100 color: "lightgrey" text { id: datestr objectname: "datestr" x: 10 y: 10 text: "init text" font.pixelsize: 12 function updatedata(text) { datestr.text = qstr(text) console.log("you said: " + text) } } } here application: some imports.... #!/usr/bin/python import sys import time pyside import qtdeclarative, qtcore pyside.qtgui import qapplication pyside.qtdeclarative import qdeclarativeview the qthread worker.... #worker thread class worker(qtcore.qthread): updateprogress = qtcore.signal(int) def __init__(self, child): qtcore.qthread.__init__(self) self.child = child def run(self):
Read more