Skip to content

tls: fix bugs of double TLS#48796

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
ywave620 wants to merge 4 commits into from
Closed

tls: fix bugs of double TLS #48796

ywave620 wants to merge 4 commits into from

Conversation

@ywave620
Copy link
Contributor

@ywave620ywave620 commented Jul 16, 2023
edited
Loading

Fixs two issues in TLSWrap, one of them is reported in #30896 (a 3 years log bug ...).

  1. TLSWrap has exactly one StreamListener, however, that StreamListener can be replaced. We have not been rigorous enough here: if an active write has not been finished before the transition, the finish callback of it will be wrongly fired the successor StreamListener.

  2. A TLSWrap does not allow more than one active write, as checked in the assertion about current_write in TLSWrap::DoWrite().

However, when users make use of an existing tls.TLSSocket to establish double TLS, by
either

tls.connect({socket: tlssock})

or

tlsServer.emit('connection',tlssock)

we have both of the user provided tls.TLSSocket, tlssock and a brand new created TLSWrap writing to the TLSWrap bound to tlssock, which easily violates the constranint because two writers have no idea of each other.

The design of the fix is:
when a TLSWrap is created on top of a user provided socket, do not send any data to the socket until all existing writes of the socket are done and ensure registered callbacks of those writes can be fired.

@ywave620
tls: fix bugs of double TLS
63c8fb0
Fixs two issues in `TLSWrap`, one of them is reported in nodejs#30896. 1. `TLSWrap` has exactly one `StreamListener`, however, that `StreamListener` can be replaced. We have not been rigorous enough here: if an active write has not been finished before the transition, the finish callback of it will be wrongly fired the successor `StreamListener`. 2. A `TLSWrap` does not allow more than one active write, as checked in the assertion about current_write in `TLSWrap::DoWrite()`. However, when users make use of an existing `tls.TLSSocket` to establish double TLS, by either tls.connect({socket: tlssock}) or tlsServer.emit('connection', tlssock) we have both of the user provided `tls.TLSSocket`, tlssock and a brand new created `TLSWrap` writing to the `TLSWrap` bound to tlssock, which easily violates the constranint because two writers have no idea of each other. The design of the fix is: when a `TLSWrap` is created on top of a user provided socket, do not send any data to the socket until all existing writes of the socket are done and ensure registered callbacks of those writes can be fired.
@nodejs-github-bot
Copy link
Collaborator

nodejs-github-bot commented Jul 16, 2023

Review requested:

  • @nodejs/crypto

@nodejs-github-botnodejs-github-bot added c++ Issues and PRs that require attention from people who are familiar with C++. lib / src Issues and PRs related to general changes in the lib or src directory. needs-ci PRs that need a full CI run. labels Jul 16, 2023
@lpincalpinca added the request-ci Add this label to start a Jenkins CI on a PR. label Jul 16, 2023
@github-actionsgithub-actionsbot removed the request-ci Add this label to start a Jenkins CI on a PR. label Jul 16, 2023
@nodejs-github-bot
Copy link
Collaborator

nodejs-github-bot commented Jul 16, 2023

CI: https://ci.nodejs.org/job/node-test-pull-request/52787/

mscdex
mscdex reviewed Jul 16, 2023
View reviewed changes
@github-actionsgithub-actionsbot mentioned this pull request Jul 17, 2023
Open
25 tasks
@ywave620
tls: fix bugs of double TLS
8ce31c6
Remove unnecessary saving of `this` for arrow function.
@github-actionsgithub-actionsbot mentioned this pull request Jul 18, 2023
Open
26 tasks
@ywave620
Copy link
ContributorAuthor

ywave620 commented Jul 18, 2023

leftover processes found in the github hooked CI Test ASan / test-asan

ps awwx | grep Release/node | grep -v grep | cat 105758 ? tl 0:00 /home/runner/work/node/node/out/Release/node /home/runner/work/node/node/test/parallel/test-cluster-primary-error.js cluster 105791 ? S 0:00 /home/runner/work/node/node/out/Release/node /home/runner/work/node/node/test/parallel/test-cluster-primary-error.js cluster make[1]: *** [Makefile:554: test-ci] Error 1 make: *** [Makefile:579: run-ci] Error 2 Error: Process completed with exit code 2.

But it seems like these failures have nothing to do with this PR. Could somebody rerun the CI?

@github-actionsgithub-actionsbot mentioned this pull request Jul 19, 2023
Open
25 tasks
@ywave620
Copy link
ContributorAuthor

ywave620 commented Jul 20, 2023

cc @nodejs/crypto

@lpincalpinca added the request-ci Add this label to start a Jenkins CI on a PR. label Jul 20, 2023
@github-actionsgithub-actionsbot removed the request-ci Add this label to start a Jenkins CI on a PR. label Jul 20, 2023
@nodejs-github-bot
Copy link
Collaborator

nodejs-github-bot commented Jul 20, 2023

CI: https://ci.nodejs.org/job/node-test-pull-request/52877/

@mhdawsonmhdawson added the request-ci Add this label to start a Jenkins CI on a PR. label Jul 21, 2023
@github-actionsgithub-actionsbot removed the request-ci Add this label to start a Jenkins CI on a PR. label Jul 21, 2023
@nodejs-github-bot
Copy link
Collaborator

nodejs-github-bot commented Jul 21, 2023

CI: https://ci.nodejs.org/job/node-test-pull-request/52893/

This was referenced Jul 22, 2023
Open
Open
@nodejs-github-bot
Copy link
Collaborator

nodejs-github-bot commented Jul 23, 2023

CI: https://ci.nodejs.org/job/node-test-pull-request/52903/

This was referenced Jul 24, 2023
Open
Open
@nodejs-github-bot
Copy link
Collaborator

nodejs-github-bot commented Jul 25, 2023

CI: https://ci.nodejs.org/job/node-test-pull-request/52930/

This was referenced Jul 26, 2023
Open
Open
@github-actionsgithub-actionsbot mentioned this pull request Jul 28, 2023
Open
19 tasks
jasnell
jasnell reviewed Jul 28, 2023
View reviewed changes
src/crypto/crypto_tls.h
StreamBase* stream,
SecureContext* sc);
SecureContext* sc,
bool stream_has_active_write);
Copy link
Member

@jasnelljasnellJul 28, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Non-blocking nit: I'm generally not a fan of bool arguments to methods, largely because just seeing the true or false a the callsite tends not to be descriptive enough to let folks know what the impact is. I certainly won't block this change because of it, but I'd prefer a enum arg here instead.

@mhdawson
Copy link
Member

mhdawson commented Jul 28, 2023

Landed in 662fe0be9d8e

@mhdawson
Copy link
Member

mhdawson commented Jul 28, 2023

arg, just noticed there was a suggestion on the PR after I landed it. @jasnell sorry about that.

@ywave620 any chance you could open a new PR to address that.

@github-actionsgithub-actionsbot mentioned this pull request Jul 29, 2023
Open
23 tasks
@ywave620
Copy link
ContributorAuthor

ywave620 commented Jul 29, 2023

arg, just noticed there was a suggestion on the PR after I landed it. @jasnell sorry about that.

@ywave620 any chance you could open a new PR to address that.

Totally ok

@github-actionsgithub-actionsbot mentioned this pull request Jul 30, 2023
Open
21 tasks
@ywave620ywave620 mentioned this pull request Jul 30, 2023
Closed
@ywave620
Copy link
ContributorAuthor

ywave620 commented Jul 30, 2023

@ywave620 any chance you could open a new PR to address that.

#48969. @mhdawson PTAL

@mhdawson
Copy link
Member

mhdawson commented Aug 2, 2023

@ywave620 many thanks

@mhdawson
Copy link
Member

mhdawson commented Aug 2, 2023

@ywave620 I had landed your original version in this PR. What I'd hope for was a PR that just addressed the remaining suggestion from @jasnell

Sign up for freeto join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ShogunPandaShogunPandaShogunPanda approved these changes

@jasnelljasnelljasnell approved these changes

+1 more reviewer

@mscdexmscdexmscdex left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

c++Issues and PRs that require attention from people who are familiar with C++.lib / srcIssues and PRs related to general changes in the lib or src directory.needs-ciPRs that need a full CI run.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

7 participants

@ywave620@nodejs-github-bot@mhdawson@mscdex@ShogunPanda@jasnell@lpinca