[jira] [Commented] (MESOS-10073) Implement SSL downgrade on the native SSL socket

Joseph Wu (Jira) Tue, 17 Dec 2019 15:28:34 -0800


    [ 
https://issues.apache.org/jira/browse/MESOS-10073?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16998672#comment-16998672
 ]


Joseph Wu commented on MESOS-10073:
-----------------------------------

Review guarding against usage of this feature, until we implement downgrade:
https://reviews.apache.org/r/71923/

> Implement SSL downgrade on the native SSL socket
> ------------------------------------------------
>
>                 Key: MESOS-10073
>                 URL: https://issues.apache.org/jira/browse/MESOS-10073
>             Project: Mesos
>          Issue Type: Task
>            Reporter: Joseph Wu
>            Priority: Minor
>              Labels: foundations, ssl
>
> The new SSL socket implementation (the non-libevent one) does not currently 
> implement the SSL downgrade hack.  We could probably use {{peek}} to achieve 
> the same result, or modify our socket BIO to look at the first few bytes.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (MESOS-10073) Implement SSL downgrade on the native SSL socket

Reply via email to