[Cyberduck-trac] [Cyberduck] #5087: Reuse Session key on Data connection
Cyberduck
trac at trac.cyberduck.ch
Fri Sep 17 14:18:56 CEST 2010
#5087: Reuse Session key on Data connection
----------------------------+-----------------------------------------------
Reporter: abrax5 | Owner: dkocher
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: ftp-tls | Version: 3.5.1
Severity: normal | Resolution:
Keywords: proftpd | Platform: Mac OS X 10.6
Architecture: Intel |
----------------------------+-----------------------------------------------
Comment (by abrax5):
I'm not really that familiar with Java, but looking at this:
http://download.oracle.com/javase/6/docs/api/javax/net/ssl/SSLContext.html
The protected constructor for an SSLContext allows you to specify an
SSLContextSpi. Maybe we could override SSLContext implementation with one
that uses an SSLContextSpi derived from the default one, that just differs
in what it would return for {{{engineGetClientSessionContext()}}}. This
method returns an SSLSessionContext which allows enumerating SessionIDs.
These are just some rough ideas, but may through this path we could tell
the TLS engine to try reusing a session. We don't really need access to
the masterSecret of the session, I think. We just need to make sure that
the TLS engine can find the old ID and advertise the reuse ID to the
server in the CLIENT_HELLO msg.
--
Ticket URL: <http://trac.cyberduck.ch/ticket/5087#comment:8>
Cyberduck <http://cyberduck.ch>
FTP, SFTP, WebDAV, Cloud Files, Google Docs, Azure and S3 Browser for Mac OS X.
More information about the Cyberduck-trac
mailing list