Skip to content

fix: corrupt tls handshake caused by buffer over read #39

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Mar 9, 2023
Merged

fix: corrupt tls handshake caused by buffer over read #39

merged 3 commits into from
Mar 9, 2023

Conversation

@sunng87
Copy link
Contributor

@sunng87 sunng87 commented Feb 21, 2023
edited
Loading

I hereby agree to the terms of the CLA available at: https://databend.rs/dev/policies/cla/

Summary

This change fixes occasional issue with tls handshake. Due to the issue with truncating wrong part of buffer in reader, the rest part of bytes are dropped. Tls stream will end up with invalid partial handshake packet and throws "received corrupt message" error.

Why this only happens on Tls?

Because Tls is the only scenario that client sends two consecutive packets. A normal request-response packet requires reader to read to the end of a packet so it never leaves remaining data.

@sunng87
Copy link
Contributor Author

sunng87 commented Feb 22, 2023

The audit check error is not related to my changes.

@sunng87 sunng87 mentioned this pull request Feb 23, 2023
Merged
2 tasks
@sunng87 sunng87 reopened this Feb 24, 2023
@sundy-li
Copy link
Member

sundy-li commented Mar 3, 2023

Oh, there are three places of these codes, but this pr only solves one place?

@sunng87
Copy link
Contributor Author

sunng87 commented Mar 5, 2023

Do you mean the unsafe block? It's not the key issue here. Just because I changed the remaining buffer so the unsafe block in AsyncRead impl can be removed. The usage of truncate is root cause for this bug.

@sundy-li sundy-li requested a review from PsiACE March 9, 2023 07:21
PsiACE
PsiACE approved these changes Mar 9, 2023
View reviewed changes
Copy link
Contributor

@PsiACE PsiACE left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

thanks

@PsiACE PsiACE merged commit 4f6400c into databendlabs:main Mar 9, 2023
@sunng87
Copy link
Contributor Author

sunng87 commented Mar 9, 2023

@sundy-li @PsiACE could you cut a release for this? thank you!

@sunng87 sunng87 mentioned this pull request Apr 10, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sundy-li sundy-li sundy-li approved these changes

+1 more reviewer

@PsiACE PsiACE PsiACE approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@sunng87 @sundy-li @PsiACE