Dealing with blocking nature of method handleNewFlow of NETransparentProxyProvider

how to not block future flow while it is taking longer to process current flow?

The trick is to allow the flow and then block all of its traffic until you’ve decided what to do.

The is often easier if you use a content filter where, once you decide to allow the flow, you can return an .allow() verdict and then get out of the loop.

Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"

The trick is to allow the flow and then block all of its traffic until you’ve decided what to do.

@DTS Engineer As per this trick, lets say we returns true to allow the flow, later on different queue/thread we decided to handover the flow to kernel, that's not possible right?

in this case, only options left are to close the flow, or send it to actual destination, or send it to proxy. No way it can be handed over to kernel which happens after returning false from this method.

As per this trick, lets say we returns true to allow the flow, later on different queue/thread we decided to handover the flow to kernel, that's not possible right?

Correct.

… in a transparent proxy provider. In a content filter provider you can do that.

Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"