Uploaded image for project: 'Traffic Server'
  1. Traffic Server
  2. TS-3597

TLS can fail accept / handshake since commit 2a8bb593fd

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Critical
    • Resolution: Fixed
    • None
    • 5.3.1, 6.0.0
    • SSL
    • None

    Description

      At least under certain conditions (slightly unclear,but possible a race with multiple NUMA nodes), we fail to accept / TLS handshake. I've tracked this down to the commit from 2a8bb593fdd7ca9125efad76e27f3f17f5bca794.

      The commit prior to this does not expose the problem. gancho also discovered that this problem is only triggered when accept thread is off (0).

      Also from gancho, when this reproduces, a command like e.g. this will fail the handshake completely (no ciphers):

      openssl s_client -connect 10.1.2.3:443 -tls1 -servername some.host.com

      Also, since this only happens with accept thread off (0), which implies accept on every ET_NET thread, maybe there's some sort of race condition going on here? That's just a wild speculation though.

      Attachments

        1. TS-3597.diff
          2 kB
          Susan Hinrichs

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. TS-3603 Debug Assert occurs in UnixNetVConnection::set_enabled when accept_threads are disabled

          • Major - Major loss of function.
          • Closed

          Activity

            People

              shinrich Susan Hinrichs
              zwoop Leif Hedstrom
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: