Handshake timeout may never be scheduled if handshake starts via a flush #8493
Comments
|
The same is also true when |
normanmaurer
added a commit
that referenced
this issue
Nov 11, 2018
…ush or starttls is used. Motivation: We did not correctly schedule the handshake timeout if the handshake was either started by a flush(...) or if starttls was used. Modifications: - Correctly setup timeout in all cases - Add unit tests. Result: Fixes #8493.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Reported by @tbrooks8:
A client (like my case) initiates the handshake in a flush call. The client hello message is generated and flushed. The SSLEngine now returns a handshake status of NEED_UNWRAP.
The channelActive call happens, since the handshake status is not HandshakeStatus.NOT_HANDSHAKING (line 1740), the method returns immediately without scheduling a timeout. There is now no timeout for this handshake.
The flush route for starting a handshake does not called startHandshakeProcessing. That is only called when the handler is added and the channel is already active or in the channelActive call. The flush route allows for the SSLEngine handshake to start prior to these things happening. And then the status of the engine, causes the handshake(final Promise newHandshakePromise) method to exit early.
This was reported as part of #8486
The text was updated successfully, but these errors were encountered: