Skip to content

Prevent calling SSL_set_session in the middle of handshake #8600

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
maskit merged 1 commit into from
Feb 1, 2022
Merged

Prevent calling SSL_set_session in the middle of handshake #8600

maskit merged 1 commit into from
Feb 1, 2022

Conversation

@maskit
Copy link
Member

@maskit maskit commented Jan 12, 2022
edited
Loading

ATS crashes if origin session cache is used with BoringSSL, because BoringSSL doesn't allow you to call SSL_set_session after starting handshake.

The crash is not 100% reproducible and I was only able to reproduce it on 9.2.x, but the change should make sense on master as well.

https://www.openssl.org/docs/man1.1.1/man3/SSL_set_session.html

If there is already a session set inside ssl (because it was set with SSL_set_session() before or because the same ssl was already used for a connection), SSL_SESSION_free() will be called for that session. If that old session is still open, it is considered bad and will be removed from the session cache (if used). A session is considered open, if SSL_shutdown(3) was not called for the connection (or at least SSL_set_shutdown(3) was used to set the SSL_SENT_SHUTDOWN state).

https://commondatastorage.googleapis.com/chromium-boringssl-docs/ssl.h.html#SSL_set_session

It is an error to call this function after the handshake has begun.

The change is very small if you hide whitespace (indent) changes.

@maskit
Prevent calling SSL_set_session in the middle of handshake
e0229aa 
ATS crahses if origin session cache is used with BoringSSL, because BoringSSL
doesn't allow you to call SSL_set_session after starting handshake.
@maskit maskit added this to the 10.0.0 milestone Jan 12, 2022
@maskit maskit requested a review from duke8253 January 12, 2022 02:16
@maskit maskit self-assigned this Jan 12, 2022
@maskit maskit requested a review from bryancall as a code owner January 12, 2022 02:16
@maskit maskit merged commit 53f5869 into apache:master Feb 1, 2022
zwoop pushed a commit that referenced this pull request Feb 2, 2022
@maskit @zwoop
Prevent calling SSL_set_session in the middle of handshake (#8600)
0010505 
ATS crahses if origin session cache is used with BoringSSL, because BoringSSL
doesn't allow you to call SSL_set_session after starting handshake.

(cherry picked from commit 53f5869)
@zwoop
Copy link
Contributor

zwoop commented Feb 2, 2022

Cherry-picked to v9.2.x

@zwoop zwoop modified the milestones: 10.0.0, 9.2.0 Feb 2, 2022
moonchen pushed a commit to moonchen/trafficserver that referenced this pull request Mar 17, 2022
@zwoop
Merge remote-tracking branch 'asf/9.2.x' into 9.2.x
0877d2f 
* asf/9.2.x:
  Updated ChangeLog
  Prevent calling SSL_set_session in the middle of handshake (apache#8600)
  Change the function signature of safe_[get|set]sockopt (apache#8331)
  Revert fixes for apache#8539 (apache#8637)
  Update descriptions of sni.yaml.default (apache#8568)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bryancall bryancall bryancall approved these changes

@duke8253 duke8253 Awaiting requested review from duke8253

Assignees

@maskit maskit

Labels

Crash TLS

Projects

None yet

Milestone

9.2.0

Development

Successfully merging this pull request may close these issues.

3 participants

@maskit @zwoop @bryancall