You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Nov 6, 2021. It is now read-only.
Bugs like #28 are hard to debug, and now that SSL 2/3 is no longer allowed in iOS 10 anyway, CKHTTPConnection is doing less but still getting in the way.
Things that CKHTTPConnection does that would be lost:
Forcing TLS 1.2 instead of 1.1 or 1.0
TLS cipher suite selection
Passing TLS negotiated protocol and cipher info to the SSLCertificate that gets passed up to the WebViewTab, which is visible to the user when viewing the certificate
Things that it does that can still be done elsewhere:
Javascript injection can be done via NSURLConnection in connection:didReceiveData:
TLS certificate processing (and HPKP in support HPKP #25) can be done in connection:willSendRequestForAuthenticationChallenge:
HTTP keep-alive would be done by default, I believe
HTTP authentication should still be possible in connection:willSendRequestForAuthenticationChallenge:
An alternative would be to use NSURLConnection for most things but any hosts with a HostSettings for specifying TLS or a new setting for limited ciphers could use CKHTTPConnection.
The text was updated successfully, but these errors were encountered:
Bugs like #28 are hard to debug, and now that SSL 2/3 is no longer allowed in iOS 10 anyway,
CKHTTPConnection
is doing less but still getting in the way.Things that
CKHTTPConnection
does that would be lost:SSLCertificate
that gets passed up to theWebViewTab
, which is visible to the user when viewing the certificateThings that it does that can still be done elsewhere:
NSURLConnection
inconnection:didReceiveData:
connection:willSendRequestForAuthenticationChallenge:
connection:willSendRequestForAuthenticationChallenge:
An alternative would be to use
NSURLConnection
for most things but any hosts with aHostSettings
for specifying TLS or a new setting for limited ciphers could useCKHTTPConnection
.The text was updated successfully, but these errors were encountered: