Support delegating task when using ReferenceCountedOpenSslEngine. by normanmaurer · Pull Request #8859 · netty/netty

normanmaurer · 2019-02-11T10:42:18Z

Motivation:

SSLEngine API has a notion of tasks that may be expensive and offload these to another thread. We did not support this when using our native implementation but can now for various operations during the handshake.

Modifications:

Support offloading tasks during the handshake when using our native SSLEngine implementation
Correctly handle the case when NEED_TASK is returned and nothing was consumed / produced yet

Result:

Be able to offload long running tasks from the EventLoop when using SslHandler with our native SSLEngine.

normanmaurer · 2019-02-11T10:42:29Z

This depends on netty/netty-tcnative#430

normanmaurer · 2019-02-11T10:43:44Z

/cc @njhill @johnou @doom369

ejona86

Looks good, although I don't think I'd be able to notice any bugs.

johnou · 2019-02-12T10:54:48Z

handler/src/main/java/io/netty/handler/ssl/ReferenceCountedOpenSslContext.java

                SSLContext.enableOcsp(ctx, isClient());
            }
+
+            // TODO: Make the configurable.


default on / off?

I think I will make if off for now and allow to configure it with a System property... WDYT @ejona86 @johnou . Alternative I could allow to configure it via the OpenSslContext

Is it just that we want to avoid unstable code, or is there a reason to believe it would have a performance cost?

@ejona86 its more to allow to test it a bit more before make it default. I also still need to do some performance tests but I suspect the impact should be almost zero.

Then system property sounds good. When we are comfortable we change the default. When it is "proven" we remove the option.

Alright I introduced the system property "io.netty.handler.ssl.openssl.useTasks"

handler/src/main/java/io/netty/handler/ssl/ReferenceCountedOpenSslEngine.java

normanmaurer · 2019-02-25T08:52:43Z

@netty-bot test this please

normanmaurer · 2019-02-25T18:45:16Z

@netty-bot test this please

normanmaurer · 2019-02-25T19:02:56Z

Let me merge this once we release netty-tcnative 2.0.21.Final

normanmaurer · 2019-02-27T14:08:19Z

@netty-bot test this please

carl-mastrangelo

LGTM

Motivation: SSLEngine API has a notion of tasks that may be expensive and offload these to another thread. We did not support this when using our native implementation but can now for various operations during the handshake. Modifications: - Support offloading tasks during the handshake when using our native SSLEngine implementation - Correctly handle the case when NEED_TASK is returned and nothing was consumed / produced yet Result: Be able to offload long running tasks from the EventLoop when using SslHandler with our native SSLEngine.

tomerd · 2019-03-02T07:15:36Z

@netty-bot test this please

) Motivation: SSLEngine API has a notion of tasks that may be expensive and offload these to another thread. We did not support this when using our native implementation but can now for various operations during the handshake. Modifications: - Support offloading tasks during the handshake when using our native SSLEngine implementation - Correctly handle the case when NEED_TASK is returned and nothing was consumed / produced yet Result: Be able to offload long running tasks from the EventLoop when using SslHandler with our native SSLEngine.

normanmaurer requested review from carl-mastrangelo, ejona86, slandelle and trustin and removed request for carl-mastrangelo February 11, 2019 10:42

normanmaurer force-pushed the task_openssl branch from ecbb0eb to f2c1721 Compare February 11, 2019 14:58

ejona86 approved these changes Feb 11, 2019

View reviewed changes

johnou reviewed Feb 12, 2019

View reviewed changes

handler/src/main/java/io/netty/handler/ssl/ReferenceCountedOpenSslEngine.java Outdated Show resolved Hide resolved

normanmaurer force-pushed the task_openssl branch from 6fbc574 to 6e3d4ce Compare February 18, 2019 13:15

johnou approved these changes Feb 25, 2019

View reviewed changes

normanmaurer force-pushed the task_openssl branch 3 times, most recently from 71df563 to f1c2fe0 Compare March 1, 2019 13:55

carl-mastrangelo approved these changes Mar 2, 2019

View reviewed changes

normanmaurer force-pushed the task_openssl branch from f1c2fe0 to 20454a1 Compare March 2, 2019 06:32

normanmaurer merged commit 39fcdb3 into 4.1 Mar 5, 2019

normanmaurer deleted the task_openssl branch March 7, 2019 12:19

Uh oh!

Conversation

normanmaurer commented Feb 11, 2019

Uh oh!

normanmaurer commented Feb 11, 2019

Uh oh!

normanmaurer commented Feb 11, 2019

Uh oh!

ejona86 left a comment

Choose a reason for hiding this comment

Uh oh!

johnou Feb 12, 2019

Choose a reason for hiding this comment

Uh oh!

normanmaurer Feb 12, 2019

Choose a reason for hiding this comment

Uh oh!

ejona86 Feb 12, 2019

Choose a reason for hiding this comment

Uh oh!

normanmaurer Feb 12, 2019

Choose a reason for hiding this comment

Uh oh!

ejona86 Feb 12, 2019

Choose a reason for hiding this comment

Uh oh!

normanmaurer Feb 12, 2019

Choose a reason for hiding this comment

Uh oh!

Uh oh!

normanmaurer commented Feb 25, 2019

Uh oh!

normanmaurer commented Feb 25, 2019

Uh oh!

normanmaurer commented Feb 25, 2019

Uh oh!

normanmaurer commented Feb 27, 2019

Uh oh!

carl-mastrangelo left a comment

Choose a reason for hiding this comment

Uh oh!

tomerd commented Mar 2, 2019

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants