Disable Nagle on Linux and TLS cut through support

net/third_party/nss/ssl/sslsecur.c

 /*
  * Various SSL functions.
  *
  * ***** BEGIN LICENSE BLOCK *****
  * Version: MPL 1.1/GPL 2.0/LGPL 2.1
  *
  * The contents of this file are subject to the Mozilla Public License Version
  * 1.1 (the "License"); you may not use this file except in compliance with
  * the License. You may obtain a copy of the License at
  * http://www.mozilla.org/MPL/
@@ skipping 130 matching lines @@
                 (!ss->firstHsDone) &&              /* only first time */
                 (ss->version < SSL_LIBRARY_VERSION_3_0)) {  /* not ssl3 */
                 ss->firstHsDone     = PR_TRUE;
                 (ss->handshakeCallback)(ss->fd, ss->handshakeCallbackData);
             }
             ss->firstHsDone         = PR_TRUE;
             ss->gs.writeOffset = 0;
             ss->gs.readOffset  = 0;
             break;
         }
+        if (ss->version >= SSL_LIBRARY_VERSION_3_0 &&
+            ssl3_CanFalseStart(ss) &&
+            (ss->ssl3.hs.ws == wait_change_cipher ||

[wtc, 2010/02/20 00:39:51]

Let's test ss->ssl3.hs.ws before ssl3_CanFalseStart(ss)
so that we can short-circuit ssl3_CanFalseStart(ss) when
it's not necessary.

+             ss->ssl3.hs.ws == wait_new_session_ticket)) {
+            break;
+        }
         rv = (*ss->handshake)(ss);
         ++loopCount;
     /* This code must continue to loop on SECWouldBlock, 
      * or any positive value.   See XXX_1 comments.
      */
     } while (rv != SECFailure);         /* was (rv >= 0); XXX_1 */
 
     PORT_Assert(ss->opt.noLocks || !ssl_HaveRecvBufLock(ss));
     PORT_Assert(ss->opt.noLocks || !ssl_HaveXmitBufLock(ss));
 
@@ skipping 1360 matching lines @@
     if (!ss) {
         SSL_DBG(("%d: SSL[%d]: bad socket in SNISocketConfigHook",
                  SSL_GETPID(), fd));
         return SECFailure;
     }
 
     ss->sniSocketConfig = func;
     ss->sniSocketConfigArg = arg;
     return SECSuccess;
 }