You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@mesos.apache.org by "Benjamin Mahler (JIRA)" <ji...@apache.org> on 2016/07/27 01:24:20 UTC

[jira] [Created] (MESOS-5913) Stale socket FD usage when using libevent + SSL.

Benjamin Mahler created MESOS-5913:
--------------------------------------

             Summary: Stale socket FD usage when using libevent + SSL.
                 Key: MESOS-5913
                 URL: https://issues.apache.org/jira/browse/MESOS-5913
             Project: Mesos
          Issue Type: Bug
          Components: libprocess
            Reporter: Benjamin Mahler
            Assignee: Benjamin Mahler
            Priority: Blocker


[~jgehrcke] reported seeing garbage data being sent on sockets when hitting the master or agents with a lot of HTTP requests.

I was able to reproduce this locally by running HTTP requests while hammering the code with HTTPS requests.

Looking at the code, it appears that accepted SSL sockets may be used after they are closed (see [here|https://github.com/apache/mesos/blob/dbc5a19149655cde2b76dca4af73c4a7b22529dd/3rdparty/libprocess/src/libevent_ssl_socket.cpp#L94-L156]).

This code may call {{SSL_shutdown}} after {{Socket::~Impl}} closes the fd. This means that if the fd is re-used, we may accidentally write a TLS Alert message to the re-used fd.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)