Skip to content

Commit

Permalink
net: Fix RST and thread crash due to multiple HS errors
Browse files Browse the repository at this point in the history
  • Loading branch information
@ohsayan
ohsayan committed Apr 8, 2024
1 parent e4dc0b4 commit 32e250b
Show file tree
Hide file tree
Showing 3 changed files with 80 additions and 17 deletions.
5 changes: 5 additions & 0 deletions CHANGELOG.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,6 +9,11 @@ All changes in this project will be noted in this file.
- Skyhash/2: Restored support for pipelines
- Enable online (runtime) recovery of transactional failures due to disk errors

### Fixes

- Fixed an issue where an incorrect handshake with multiple errors cause the client connection
to be terminated without yielding an error

## Version 0.8.1

### Additions
Expand Down
56 changes: 39 additions & 17 deletions server/src/engine/net/protocol/handshake.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -50,6 +50,34 @@ pub enum ProtocolError {
RejectAuth = 5,
}

impl ProtocolError {
#[cold]
unsafe fn get_error(
invalid_first_byte: bool,
invalid_hs_version: bool,
invalid_proto_version: bool,
invalid_exchange_mode: bool,
invalid_query_mode: bool,
invalid_auth_mode: bool,
) -> ProtocolError {
if invalid_first_byte {
ProtocolError::CorruptedHSPacket
} else if invalid_hs_version {
ProtocolError::RejectHSVersion
} else if invalid_proto_version {
ProtocolError::RejectProtocol
} else if invalid_exchange_mode {
ProtocolError::RejectExchangeMode
} else if invalid_query_mode {
ProtocolError::RejectQueryMode
} else if invalid_auth_mode {
ProtocolError::RejectAuth
} else {
impossible!()
}
}
}

/*
handshake meta
*/
Expand Down Expand Up @@ -290,23 +318,17 @@ impl<'a> CHandshake<'a> {
| invalid_query_mode
| invalid_auth_mode,
) {
static ERROR: [ProtocolError; 6] = [
ProtocolError::CorruptedHSPacket,
ProtocolError::RejectHSVersion,
ProtocolError::RejectProtocol,
ProtocolError::RejectExchangeMode,
ProtocolError::RejectQueryMode,
ProtocolError::RejectAuth,
];
return HandshakeResult::Error(
ERROR[((invalid_first_byte as u8 * 1)
| (invalid_hs_version as u8 * 2)
| (invalid_proto_version as u8 * 3)
| (invalid_exchange_mode as u8 * 4)
| (invalid_query_mode as u8 * 5)
| (invalid_auth_mode as u8) * 6) as usize
- 1usize],
);
return HandshakeResult::Error(unsafe {
// UNSAFE(@ohsayan): it is guaranteed by the branch that one or more of these booleans are true
ProtocolError::get_error(
invalid_first_byte,
invalid_hs_version,
invalid_proto_version,
invalid_exchange_mode,
invalid_query_mode,
invalid_auth_mode,
)
});
}
// init header
let static_header = CHandshakeStatic::new(
Expand Down
36 changes: 36 additions & 0 deletions server/src/engine/net/protocol/tests.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -61,6 +61,42 @@ const STATIC_HANDSHAKE_WITH_AUTH: CHandshakeStatic = CHandshakeStatic::new(
handshake with no state changes
*/

#[test]
fn handshake_with_multiple_errors() {
for (bad_hs, error) in [
// all incorrect
(
b"H\xFF\xFF\xFF\xFF\xFF5\n8\nsayanpass1234",
ProtocolError::RejectHSVersion,
),
// protocol and continuing bytes
(
b"H\x00\xFF\xFF\xFF\xFF5\n8\nsayanpass1234",
ProtocolError::RejectProtocol,
),
// xchg and continuing bytes
(
b"H\x00\x00\xFF\xFF\xFF5\n8\nsayanpass1234",
ProtocolError::RejectExchangeMode,
),
// qmode and continuing bytes
(
b"H\x00\x00\x00\xFF\xFF5\n8\nsayanpass1234",
ProtocolError::RejectQueryMode,
),
// auth
(
b"H\x00\x00\x00\x00\xFF5\n8\nsayanpass1234",
ProtocolError::RejectAuth,
),
] {
assert_eq!(
CHandshake::resume_with(&mut BufferedScanner::new(bad_hs), HandshakeState::Initial),
HandshakeResult::Error(error)
);
}
}

#[test]
fn parse_staged_with_auth() {
for i in 0..FULL_HANDSHAKE_WITH_AUTH.len() {
Expand Down

0 comments on commit 32e250b

Please sign in to comment.