8274736: Concurrent read/close of SSLSockets causes SSLSessions to be invalidated unnecessarily

[jnimeh]

This fix handles cases where two or more threads may be acting on a single SSLSocket instance. In cases where one thread closes the socket while the other is in the middle of a read, a SocketException is appropriately thrown, but it results in SSLSession invalidation even though the session was legitimately negotiated at an earlier point in time and should remain in the cache.

JBS: https://bugs.openjdk.java.net/browse/JDK-8274736

---

Progress

• Change must not contain extraneous whitespace
• Commit message must refer to an issue
• Change must be properly reviewed

Issue

• JDK-8274736: Concurrent read/close of SSLSockets causes SSLSessions to be invalidated unnecessarily

Reviewers

• Xue-Lei Andrew Fan (@XueleiFan - Reviewer) ⚠️ Review applies to a68781f
• Bradford Wetmore (@bradfordwetmore - Reviewer)

Reviewing

Using git

Checkout this PR locally:
$ git fetch https://git.openjdk.java.net/jdk pull/6197/head:pull/6197
$ git checkout pull/6197

Update a local copy of the PR:
$ git checkout pull/6197
$ git pull https://git.openjdk.java.net/jdk pull/6197/head

Using Skara CLI tools

Checkout this PR locally:
$ git pr checkout 6197

View PR using the GUI difftool:
$ git pr show -t 6197

Using diff file

Download this PR as a diff file:
https://git.openjdk.java.net/jdk/pull/6197.diff

[bridgekeeper]

👋 Welcome back jnimeh! A progress list of the required criteria for merging this PR into master will be added to the body of your pull request. There are additional pull request commands available for use with this pull request.

[openjdk]

@jnimeh The following label will be automatically applied to this pull request:

• security

When this pull request is ready to be reviewed, an "RFR" email will be sent to the corresponding mailing list. If you would like to change these labels, use the /label pull request command.

[mlbridge]

Webrevs

• 04: Full - Incremental (b44e861f)
• 03: Full - Incremental (5ddd0535)
• 02: Full - Incremental (a68781f2)
• 01: Full - Incremental (8d7af4b1)
• 00: Full (dc54c60e)

[openjdk]

@jnimeh This change now passes all automated pre-integration checks.

ℹ️ This project also has non-automated pre-integration requirements. Please see the file CONTRIBUTING.md for details.

After integration, the commit message for the final commit will be:

8274736: Concurrent read/close of SSLSockets causes SSLSessions to be invalidated unnecessarily

Reviewed-by: xuelei, wetmore

You can use pull request commands such as /summary, /contributor and /issue to adjust it as needed.

At the time when this comment was updated there had been 302 new commits pushed to the master branch:

• 0699220: 8268882: C2: assert(n->outcnt() != 0 || C->top() == n || n->is_Proj()) failed: No dead instructions after post-alloc
• d7012fb: 8276880: Remove java/lang/RuntimeTests/exec/ExecWithDir as unnecessary
• f9024d0: 8230130: javadoc search result dialog shows cut off headers for long results
• 055de6f: 8223358: Incorrect HTML structure in annotation pages
• a60e912: 8198626: java/awt/KeyboardFocusmanager/TypeAhead/TestDialogTypeAhead.html fails on mac
• dde959d: 8276808: java/nio/channels/Channels/TransferTo.java timed out
• daf77eb: 8276337: Use override specifier in HeapDumper
• 93692ea: 8274395: Use enhanced-for instead of plain 'for' in jdk.internal.jvmstat
• e35abe3: 8256208: Javadoc's generated overview does not show classes of unnamed package
• f65db88: 8276841: Add support for Visual Studio 2022
• ... and 292 more: https://git.openjdk.java.net/jdk/compare/fd10f1996ef94529b5b12e547957cd904ade1956...master

As there are no conflicts, your changes will automatically be rebased on top of these commits when integrating. If you prefer to avoid this automatic rebasing, please check the documentation for the /integrate command for further details.

➡️ To integrate this PR with the above commit message to the master branch, type /integrate in a new comment.

[bradfordwetmore]

Minor nit. Can you keep these under 80 chars?

[jnimeh]

No problem.

[jnimeh]

/integrate

[openjdk]

Going to push as commit 8822d41.
Since your change was applied there have been 304 commits pushed to the master branch:

• c1e41fe: 8276842: G1: Only calculate size in bytes from words when needed
• c8b0ee6: 8276833: G1: Make G1EvacFailureRegions::par_iterate const
• 0699220: 8268882: C2: assert(n->outcnt() != 0 || C->top() == n || n->is_Proj()) failed: No dead instructions after post-alloc
• d7012fb: 8276880: Remove java/lang/RuntimeTests/exec/ExecWithDir as unnecessary
• f9024d0: 8230130: javadoc search result dialog shows cut off headers for long results
• 055de6f: 8223358: Incorrect HTML structure in annotation pages
• a60e912: 8198626: java/awt/KeyboardFocusmanager/TypeAhead/TestDialogTypeAhead.html fails on mac
• dde959d: 8276808: java/nio/channels/Channels/TransferTo.java timed out
• daf77eb: 8276337: Use override specifier in HeapDumper
• 93692ea: 8274395: Use enhanced-for instead of plain 'for' in jdk.internal.jvmstat
• ... and 294 more: https://git.openjdk.java.net/jdk/compare/fd10f1996ef94529b5b12e547957cd904ade1956...master

Your commit was automatically rebased without conflicts.

[openjdk]

@jnimeh Pushed as commit 8822d41.

💡 You may see a message that your pull request was closed with unmerged commits. This can be safely ignored.