RFR: 8258753: StartTlsResponse.close() hangs due to synchronization issues
Xue-Lei Andrew Fan
xuelei at openjdk.java.net
Wed Mar 24 16:33:39 UTC 2021
On Thu, 18 Mar 2021 07:07:56 GMT, Prajwal Kumaraswamy <pkumaraswamy at openjdk.org> wrote:
> **Scenario:**
> 1. Issue occurs in a muti-threaded environment where SSL socket read() and close() are invoked in parallel.
> 2. SSL socket read is already called.
> 2. close() calls waitForCloseNotify() -> decode() ->....-> socketRead0() to read the close_notify acknowledgment.
> 3. Since there is no synchronization between these read operations, the thread which had already invoked read(), reads the close_notify acknowledgment.
> 4. The thread (which calls waitForCloseNotify() -> read() ) waits indefinitely in socketRead0() and hangs.
> 5. Reproduced and tested the fix against a real time MS AD LDAP server.
Marked as reviewed by xuelei (Reviewer).
-------------
PR: https://git.openjdk.java.net/jdk/pull/3068
More information about the security-dev
mailing list