Here is the updated version:
http://cr.openjdk.java.net/~xuelei/7093601/jep-dtls-v01.txt
The updates include:
1. added that PMTU discovery is not a goal to consider PMTU discovery in
this JEP.
2. Updated the description section so that it is easier to understand.
Thanks,
Xuelei
On 3/20/2014
On 03/20/2014 01:31 AM, Matthew Hall wrote:
Is there an existing method for determining valid PMTU from inside of Java? If
not then supplying correct segment size to whatever DTLSEngine (or however
it's named) class would be non-trivial and could require native code.
If there is not such
; WOW64; rv:24.0) Gecko/20100101
Thunderbird/24.3.0
| MIME-Version: 1.0
| To: Matthew Hall mh...@mhcomputing.net
| CC: OpenJDK security-dev@openjdk.java.net
| Subject: Re: Review Request of JDK Enhancement Proposal: DTLS
| References: 532a25ea.7040...@oracle.com
20140320003158.ga5...@mhcomputing.net
);
break;
#endif
On Fri, Mar 21, 2014 at 07:46:22PM -0400, Christos Zoulas wrote:
On Mar 22, 7:38am, xuelei@oracle.com (Xuelei Fan) wrote:
-- Subject: Re: Review Request of JDK Enhancement Proposal: DTLS
| Networking experts, any suggestion?
I have not seen pmtu
On Mar 21, 11:48pm, mh...@mhcomputing.net (Matthew Hall) wrote:
-- Subject: Re: Review Request of JDK Enhancement Proposal: DTLS
| The following bug and source code [1] are present in OpenSSL:
|
| http://rt.openssl.org/Ticket/Display.html?id=1929
This link is not public. Can you post a summary
.
--
Sent from my mobile device.
On March 22, 2014 8:30:28 AM PDT, chris...@zoulas.com wrote:
On Mar 21, 11:48pm, mh...@mhcomputing.net (Matthew Hall) wrote:
-- Subject: Re: Review Request of JDK Enhancement Proposal: DTLS
| The following bug and source code [1] are present in OpenSSL:
|
| http
On Mar 22, 9:39am, mh...@mhcomputing.net (Matthew Hall) wrote:
-- Subject: Re: Review Request of JDK Enhancement Proposal: DTLS
| Sorry about the hiccup. Supposedly the bug will work if you get in with user
guest PW guest.
Thanks.
christos
Networking experts, any suggestion?
Xuelei
On 3/21/2014 8:28 AM, Matthew Hall wrote:
On Fri, Mar 21, 2014 at 06:58:50AM +0800, Xuelei Fan wrote:
here. Although MTU is not PMTU, but it is normally correct.
I would state, not normally correct, but frequently correct.
In case of IPSEC, SSL
On Mar 22, 7:38am, xuelei@oracle.com (Xuelei Fan) wrote:
-- Subject: Re: Review Request of JDK Enhancement Proposal: DTLS
| Networking experts, any suggestion?
I have not seen pmtu exposed at the application layer before. Has anyone
else?
christos
|
| Xuelei
|
| On 3/21/2014 8:28 AM
On 3/19/2014 5:50 PM, Xuelei Fan wrote:
I was wondering to expose this
application layer as a configurable parameter.
Just to make sure we're talking about the same thing, you're pointing out:
1. The need for determining the PMTU for the various protocol types.
(UDP/DCCP/TCP/SCTP/etc)
You are right.
Probably(As I have not designed the API, let me use probably), PMTU
would be a configuration parameter. NetworkInterface.getMTU() can help
here. Although MTU is not PMTU, but it is normally correct. In case
of corner cases where the configured MTU does not work, probably, the
On Fri, Mar 21, 2014 at 06:58:50AM +0800, Xuelei Fan wrote:
here. Although MTU is not PMTU, but it is normally correct.
I would state, not normally correct, but frequently correct.
In case of IPSEC, SSL VPN, IPv6, GRE, etc. this will not be true. Many of
these are used for Site-to-Site VPN,
Hi,
Please review the JDK Enhancement Proposal, Support Datagram Transport
Layer Security (DTLS) version 1.0 (RFC 4347) and 1.2 (RFC 6347) in the
JSSE API and the SunJSSE security provider. Detailed, please refer to
the draft JEP:
http://cr.openjdk.java.net/~xuelei/7093601/jep-dtls-v00.txt
Feel
Xuelei,
Is there an existing method for determining valid PMTU from inside of Java? If
not then supplying correct segment size to whatever DTLSEngine (or however
it's named) class would be non-trivial and could require native code.
If there is not such support, then a separate spec would be
PMTU is a key point of the design. I was wondering to expose this
application layer as a configurable parameter. If it is too big (or not
configured), DTLSEngine(let call it temporarily) will downgrade the size
automatically, just as the previous messages get lost.
It's good point that need a
15 matches
Mail list logo
