Closed
Bug 1282779
Opened 8 years ago
Closed 8 years ago
Copy ALPN infos in ssl_DupSocket
Categories
(NSS :: Libraries, defect, P1)
Tracking
(Not tracked)
RESOLVED
FIXED
3.26
People
(Reporter: franziskus, Assigned: franziskus)
Details
Attachments
(1 file)
9.67 KB,
patch
|
ekr
:
review+
ttaubert
:
review+
|
Details | Diff | Splinter Review |
ssl_DupSocket doesn't duplicate ALPN information and thus makes ALPN not usable in server settings such as mod_nss.
Assignee | ||
Comment 1•8 years ago
|
||
Attachment #8765915 -
Flags: review?(ttaubert)
Attachment #8765915 -
Flags: review?(ekr)
Comment 2•8 years ago
|
||
Comment on attachment 8765915 [details] [diff] [review] copy_alpn_in_dupsocket.patch Review of attachment 8765915 [details] [diff] [review]: ----------------------------------------------------------------- LGTM ::: external_tests/ssl_gtest/tls_connect.cc @@ +378,5 @@ > client_->EnableAlpn(val, len); > server_->EnableAlpn(val, len); > } > > +void TlsConnectTestBase::SetupModelSockets() { EnsureModelSockets @@ +385,5 @@ > + client_model_ = new TlsAgent(TlsAgent::kClient, TlsAgent::CLIENT, mode_); > + } > + if (!server_model_) { > + server_model_ = new TlsAgent(TlsAgent::kServerRsa, TlsAgent::SERVER, mode_); > + } There's no non-error way that one of these can be nonzero, so I would just check that one is zero and ASSERT_EQ the other. @@ +389,5 @@ > + } > + > + // Initialise agents. > + EXPECT_TRUE(client_model_->Init()); > + EXPECT_TRUE(server_model_->Init()); I would ASSERT_TRUE() because bad shit is going to happen below. @@ +393,5 @@ > + EXPECT_TRUE(server_model_->Init()); > + > + // Set desired properties on the models. > + // For now only ALPN. > + static const uint8_t val[] = { 0x01, 0x62, 0x01, 0x61 }; Let's find some way to share the value here with the other EnableAlpn() thingy. ::: lib/ssl/sslsock.c @@ +325,5 @@ > ss->canFalseStartCallback = os->canFalseStartCallback; > ss->canFalseStartCallbackData = os->canFalseStartCallbackData; > ss->pkcs11PinArg = os->pkcs11PinArg; > + ss->nextProtoCallback = os->nextProtoCallback; > + ss->nextProtoArg = os->nextProtoArg; This looks like a long-standing bug?
Attachment #8765915 -
Flags: review?(ekr) → review+
Comment 3•8 years ago
|
||
Comment on attachment 8765915 [details] [diff] [review] copy_alpn_in_dupsocket.patch Review of attachment 8765915 [details] [diff] [review]: ----------------------------------------------------------------- lgtm with ekr's comment addressed as well
Attachment #8765915 -
Flags: review?(ttaubert) → review+
Assignee | ||
Comment 4•8 years ago
|
||
> This looks like a long-standing bug? yeah, looks like alpn never worked with a model socket. landed as https://hg.mozilla.org/projects/nss/rev/ea61f0660c31
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → FIXED
Target Milestone: --- → 3.26
You need to log in
before you can comment on or make changes to this bug.
Description
•