8274524: SSLSocket.close() hangs if it is called during the ssl handshake #7432
Conversation
|
👋 Welcome back abakhtin! A progress list of the required criteria for merging this PR into |
|
@alexeybakhtin The following label will be automatically applied to this pull request:
When this pull request is ready to be reviewed, an "RFR" email will be sent to the corresponding mailing list. If you would like to change these labels, use the /label pull request command. |
Webrevs
|
| int soTimeout = getSoTimeout(); | ||
| try { | ||
| if (soTimeout == 0) | ||
| setSoTimeout(DEFAULT_SKIP_TIMEOUT); |
There was a problem hiding this comment.
This set will impact the socket overall behavior unexpectedly, not just the close() method.
Maybe, an input stream level synchronization is missed in the SSLSocketInputRecord method, so that logic of deplete could be interrupted.
There was a problem hiding this comment.
Hi @XueleiFan,
Not quite sure What could be wrong with setting SO_TIMEOUT during the socketClose() operation. We still close the socket and SO_TIMEOUT will be restored just after skip() operation is completed. These changes could affect the parallel read of the handshake records (we hold appInput.readLock during the skip) but we still close the socket and interrupt connection in this case.
If you still think these changes are incorrect, What do you think about the most first version of the patch: d1c2a4f
This version adds a new lock in the SSLSocketInputRecord and protects the parallel execution of the read and skip operations.
There was a problem hiding this comment.
If I understand the issue correctly, the problem is about that the skip method cannot get the right length if the input stream could be accessed in another thread.
- get the available input stream bytes length;
- a third thread read the input stream, and the input stream get changed;
- skip up to the bytes length in step 1.
- the skip() method hangs on waiting for more bytes.
I think we could focus on on address the synchronization problem, because the problem could result in other weird behaviors we don't know yet.
For the SO_TIMEOUT, I think it is a good workaround. But I'm not sure if it will impact other behaviors or not. Besides, I know you are trying to use a small timeout, but it is still blocked and it not easy to find a number fit all situation that does not impact the performance.
As I commented in the 1st version, I'm not sure of the locks logic in the patch, which changes the behavior of SSLSocket.
I may suggest to an input stream level synchronization. I know the update could take a while, and may not be able to integrate in time. If you want to fix the issue as soon as possible, I'm OK to move ahead with your current direction, but please set the SO_TIMEOUT to as minimal as possible, for example 1 ms; and have a comment that this is a temporary/workaround solution.
There was a problem hiding this comment.
Thank you again for your detailed response and comments.
Your assumption about this issue is right and I think SO_TIMEOUT should be an acceptable solution.
I've changed DEFAULT_SKIP_TIMEOUT to 1 ms and added comments about a temporary workaround.
If you don't mind, I'd like to commit it asap because this patch should be backported to the early versions.
No regressions were found on the sun/security/ssl tests.
|
@alexeybakhtin This change now passes all automated pre-integration checks. ℹ️ This project also has non-automated pre-integration requirements. Please see the file CONTRIBUTING.md for details. After integration, the commit message for the final commit will be: You can use pull request commands such as /summary, /contributor and /issue to adjust it as needed. At the time when this comment was updated there had been 1639 new commits pushed to the
As there are no conflicts, your changes will automatically be rebased on top of these commits when integrating. If you prefer to avoid this automatic rebasing, please check the documentation for the /integrate command for further details. ➡️ To integrate this PR with the above commit message to the |
|
/integrate |
|
Going to push as commit 58dae60.
Your commit was automatically rebased without conflicts. |
openjdk
bot
removed
ready
|
@alexeybakhtin Pushed as commit 58dae60. 💡 You may see a message that your pull request was closed with unmerged commits. This can be safely ignored. |
2 participants
Please review the patch for the JDK-8274524
SSLSocket.close() could cause an intermittent hang of the socket read operation. It happens in case of SO_TIMEOUT is set to 0 (infinite timeout).
SSLSocket.close() reads from the socket as part of the skip() operation to prevent TCP Connection reset (see JDK-8268965). Socket reads are performed in a loop for small chunks. These read operations could cause a deadlock, in case of SO_TIMEOUT = 0
I suggest to force non-zero SO_TIMEOUT during the skip() operation to prevent such deadlock
This is a second iteration of review. Previous PR was closed without integration: #5760
Progress
Issue
Reviewers
Reviewing
Using
gitCheckout this PR locally:
$ git fetch https://git.openjdk.java.net/jdk pull/7432/head:pull/7432$ git checkout pull/7432Update a local copy of the PR:
$ git checkout pull/7432$ git pull https://git.openjdk.java.net/jdk pull/7432/headUsing Skara CLI tools
Checkout this PR locally:
$ git pr checkout 7432View PR using the GUI difftool:
$ git pr show -t 7432Using diff file
Download this PR as a diff file:
https://git.openjdk.java.net/jdk/pull/7432.diff