Fixes #4217 - SslConnection.DecryptedEnpoint.flush eternal busy loop. #4218
Conversation
Releasing the encrypted output buffer so that it can be re-acquired with an expanded capacity. Signed-off-by: Simone Bordet <[email protected]>
|
@gregw in Handling case BUFFER_OVERFLOW:
if (BufferUtil.isEmpty(_decryptedInput))
{
releaseDecryptedInputBuffer();
continue;
}
throw new IllegalStateException();The idea is that we release the too small application buffer we decrypt into, and loop around to get a new The same problem may happen in The change to handle the |
|
I now think that we should only do the reallocate loop if we know the buffer size has changed. We should do for both fill and flush |
Releasing the decrypted input buffer so that it can be re-acquired with an expanded capacity. Looping around only if the buffer size has changed. Signed-off-by: Simone Bordet <[email protected]>
| SSLSession hsSession = _sslEngine.getHandshakeSession(); | ||
| SSLSession session = _sslEngine.getSession(); | ||
| int size = session.getApplicationBufferSize(); | ||
| if (hsSession == null) |
There was a problem hiding this comment.
is it worthwhile doing
if (hsSession == null || hsSession == session)
or can they never be the same?
There was a problem hiding this comment.
Good point, will add that.
|
Also would be good to have a test, even one that just sent a hand crafted 5 byte frame. |
|
@gregw will try to craft a test case... the test that I removed was failing because it was not causing the buffer expansion and now that |
Updates after review. Added test case. Signed-off-by: Simone Bordet <[email protected]>
|
@gregw updated and wrote a test case. |
sbordet
deleted the
jetty-9.4.x-4217-tls_flush_buffer_overflow_busy_loop
branch
#4217
Releasing the encrypted output buffer so that it can be re-acquired
with an expanded capacity.
Signed-off-by: Simone Bordet [email protected]