Trigger channel read for TLS handshake only on the server-side

Motivation: `SslHandler` automatically initiates the handshake and manages reads on the client-side. We need to initiate read only on the server-side. Modifications: - `DefaultNettyConnection.doChannelActive` read only if `!isClient`; - Assert that channel is active when `AlpnChannelHandler` or `SniCompleteChannelHandler` are added and the read is forced; Result: No unnecessary read on client-side channels.
apple · Sep 28, 2023 · 0e60bb8 · 0e60bb8
1 parent 0310f54
commit 0e60bb8
Show file tree

Hide file tree

Showing 3 changed files with 7 additions and 3 deletions.
diff --git a/servicetalk-http-netty/src/main/java/io/servicetalk/http/netty/AlpnChannelSingle.java b/servicetalk-http-netty/src/main/java/io/servicetalk/http/netty/AlpnChannelSingle.java
@@ -74,6 +74,7 @@ private static final class AlpnChannelHandler extends ApplicationProtocolNegotia
         public void handlerAdded(final ChannelHandlerContext ctx) throws Exception {
             super.handlerAdded(ctx);
             if (forceRead) {
+                assert ctx.channel().isActive();
                 // Force a read to get the SSL handshake started. We initialize pipeline before
                 // SslHandshakeCompletionEvent will complete, therefore, no data will be propagated before we finish
                 // initialization.

diff --git a/servicetalk-http-netty/src/main/java/io/servicetalk/http/netty/SniCompleteChannelSingle.java b/servicetalk-http-netty/src/main/java/io/servicetalk/http/netty/SniCompleteChannelSingle.java
@@ -50,6 +50,7 @@ private static final class SniCompleteChannelHandler extends ChannelInboundHandl
         @Override
         public void handlerAdded(final ChannelHandlerContext ctx) throws Exception {
             super.handlerAdded(ctx);
+            assert ctx.channel().isActive();
             // Force a read to get the SSL handshake started. We initialize pipeline before
             // SslHandshakeCompletionEvent will complete, therefore, no data will be propagated before we finish
             // initialization.

diff --git a/...nternal/src/main/java/io/servicetalk/transport/netty/internal/DefaultNettyConnection.java b/...nternal/src/main/java/io/servicetalk/transport/netty/internal/DefaultNettyConnection.java
@@ -982,9 +982,11 @@ public void channelInactive(ChannelHandlerContext ctx) {
 
         private void doChannelActive(ChannelHandlerContext ctx) {
             if (waitForSslHandshake) {
-                // Force a read to get the SSL handshake started, any application data that makes it past the SslHandler
-                // will be queued in the NettyChannelPublisher.
-                ctx.read();
+                if (!connection.isClient) {
+                    // Force a read to get the SSL handshake started, any application data that makes it past the
+                    // SslHandler will be queued in the NettyChannelPublisher.
+                    ctx.read();
+                }
             } else if (subscriber != null) {
                 completeSubscriber();
             }