Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enabled TLS 1.1 and 1.2 support on platforms >= 16 and <= 20 #2185

Merged
merged 1 commit into from Sep 17, 2018
Merged

Enabled TLS 1.1 and 1.2 support on platforms >= 16 and <= 20 #2185

merged 1 commit into from Sep 17, 2018

Conversation

grendello
Copy link
Member

Context: #1615

It turns out that the older platforms do support TLS 1.1 and 1.2 protocols but
that they don't enable it by default. Thanks to code provided by
https://github.com/gameleon-dev in the issue linked to above we now support it
too.

Updated the TLS 1.2 tests to enable them on platforms >= 16

@grendello grendello mentioned this pull request Sep 14, 2018
Closed
@jonpryor
Copy link
Member

Thanks to code provided by https://github.com/gameleon-dev

Where/how was that code provided?

jonpryor
jonpryor reviewed Sep 14, 2018
View reviewed changes
src/Mono.Android/Mono.Android.csproj Outdated
@@ -335,6 +335,8 @@
<Compile Include="Xamarin.Android.Net\AuthModuleBasic.cs" />
<Compile Include="Xamarin.Android.Net\AuthModuleDigest.cs" />
<Compile Include="Xamarin.Android.Net\IAndroidAuthenticationModule.cs" />
<Compile Include="Xamarin.Android.Net\OldAndroidSSLSocketFactory.cs" />

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why the empty line?

jonpryor
jonpryor reviewed Sep 14, 2018
View reviewed changes
src/Mono.Android/Xamarin.Android.Net/OldAndroidSSLSocketFactory.cs Outdated

protected override void Dispose (bool disposing)
{
factory.Dispose ();
Copy link
Member

@jonpryor jonpryor Sep 14, 2018
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You should not do this.

The problem is "reference sharing": every AndroidClientHandler instance (on API-16..20 devices) will have an OldAndroidSSLSocketFactory instance -- so let's call it N instances of AndroidClientHandler & OldAndroidSSLSocketFactory -- each of which will refer to the same SSLSocketFactory value returned by SSLSocketFactory.Default.

This results in "unintentional spooky action at a distance", a'la:

var a = new AndroidClientHandler (...);
var b = new AndroidClientHandler (...);

a.Dispose(); /* ...or otherwise cause `a.httpsConnection.SSLSocketFactory.Dispose()` to be invoked */
/* use `b` */

Once a.httpsConnection.SSLSocketFactory has been disposed, b.httpsConnection.SSLSocketFactory can no longer be used either, because even though the httpsConnection.SSLSocketFactory instances differ, OldAndroidSSLSocketFactory.factory for all instances refers to the same instance, and when that instance was disposed from a, b can no longer use it.

@grendello
Copy link
Member Author

Thanks to code provided by https://github.com/gameleon-dev

Where/how was that code provided?

See the commit message:

Thanks to code provided by
https://github.com/gameleon-dev in the **issue linked to above** we now support it
too.

@grendello
Copy link
Member Author

build

@grendello
Enabled TLS 1.1 and 1.2 support on platforms >= 16 and <= 20
d4c72b8 
Context: xamarin#1615

It turns out that the older platforms do support TLS 1.1 and 1.2 protocols but
that they don't enable it by default. Thanks to code provided by
https://github.com/gameleon-dev in the issue linked to above we now support it
too.

Updated the TLS 1.2 tests to enable them on platforms >= 16
@grendello
Copy link
Member Author

build

1 similar comment
@grendello
Copy link
Member Author

build

@jonpryor jonpryor merged commit d8f1783 into xamarin:master Sep 17, 2018
@grendello grendello deleted the issue1615 branch September 17, 2018 18:22
@zwaap zwaap mentioned this pull request Mar 27, 2019
Closed
@leonluc-dev leonluc-dev mentioned this pull request Apr 4, 2019
Merged
@ooikengsiang ooikengsiang mentioned this pull request Apr 17, 2019
Open
@github-actions github-actions bot locked and limited conversation to collaborators Feb 2, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@jonpryor jonpryor jonpryor left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@grendello @jonpryor