Post Reply

openssl 1.0.1i update for DSC/407/PDROID/PCM

OP hunderteins

17th August 2014, 08:19 PM   |  #1  
OP Senior Member
Thanks Meter: 335
 
179 posts
Join Date:Joined: Sep 2009
Hello,

this is openssl-1.0.1i with a patch against core.jar to support SSL_MODE_HANDSHAKE_CUTTHROUGH.

I tried this on MokeeOS_RMG2v0.6RC2-signed.zip but I only got rejects on the patch, so I need confirmation, that someone want's this and is willing to test it.

Have fun,
hunderteins
17th August 2014, 10:40 PM   |  #2  
Strephon Alkhalikoi's Avatar
Senior Member
Thanks Meter: 421
 
1,396 posts
Join Date:Joined: Aug 2010
More
What exactly does the handshake cutthrough do?
18th August 2014, 08:23 AM   |  #3  
OP Senior Member
Thanks Meter: 335
 
179 posts
Join Date:Joined: Sep 2009
Quote:
Originally Posted by Strephon Alkhalikoi

What exactly does the handshake cutthrough do?

GB brings this patch with openssl.
https://android.googlesource.com/pla...tthrough.patch

The constant for SSL_MODE_HANDSHAKE_CUTTHROUGH is defined 0x00000040L aka decimal 64.

In openss-1.0.1i SSL_MODE_SEND_SERVERHELLO_TIME is defined 0x00000040L, so SSL_MODE_HANDSHAKE_CUTTHROUGH goes up to 0x00000080L.
https://android.googlesource.com/pla...tthrough.patch

Our GB-framework uses this constant in org/apache/harmony/xnet/provider/jsse/NativeCrypto.java. SSL_MODE_HANDSHAKE_CUTTHROUGH is set to 0x40 (dec 64). I just changed that to 0x80 to work with openssl-1.0.1i

What it does? Basically it speeds up the SSL-handshake when connected to older server with SSLv3.

All clear?
hunderteins
The Following User Says Thank You to hunderteins For This Useful Post: [ View ]
18th August 2014, 11:49 PM   |  #4  
Strephon Alkhalikoi's Avatar
Senior Member
Thanks Meter: 421
 
1,396 posts
Join Date:Joined: Aug 2010
More
Crystal.

/10 char
Post Reply Subscribe to Thread
Previous Thread Next Thread
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes