Closed
Bug 132899
Opened 22 years ago
Closed 22 years ago
ssl_SecureSend sets PR_WOULD_BLOCK_ERROR after partial write
Categories
(NSS :: Libraries, defect, P1)
Tracking
(Not tracked)
RESOLVED
FIXED
3.3.3
People
(Reporter: bugz, Assigned: nelson)
References
Details
Attachments
(1 file)
|
978 bytes,
patch
|
Details | Diff | Splinter Review |
The following code occurs in ssl_SecureSend(): http://lxr.mozilla.org/mozilla/source/security/nss/lib/ssl/sslsecur.c#1002 1015 ssl_GetXmitBufLock(ss); 1016 if (ss->pendingBuf.len != 0) { 1017 PORT_Assert(ss->pendingBuf.len > 0); 1018 rv = ssl_SendSavedWriteData(ss, &ss->pendingBuf, ssl_DefSend); 1019 if (ss->pendingBuf.len != 0) { 1020 PORT_Assert(ss->pendingBuf.len > 0); 1021 PORT_SetError(PR_WOULD_BLOCK_ERROR); This should not be PR_WOULD_BLOCK_ERROR, but a real error. Or, perhaps, it should only be PR_WOULD_BLOCK_ERROR if rv < 0. 1022 rv = SECFailure; 1023 } 1024 } 1025 ssl_ReleaseXmitBufLock(ss); 1026 if (rv < 0) { 1027 return rv; 1028 }
|
Reporter | |
Comment 1•22 years ago
|
||
This is based on what someone told me. The full description is that a client closes a connection, and the server loops forever trying to send to a broken socket. The user noticed that PR_Writev is returning -1 with PR_WOULD_BLOCK_ERROR, causing the caller to continue to poll.
|
|
Reporter | |
Comment 2•22 years ago
|
||
patch checked in. I will try to have the customer test this ASAP.
|
|
Reporter | |
Comment 3•22 years ago
|
||
comment #2 was not meant for this bug. After discussing with Wan-Teh, we believe this code is correct. The user is most likely seeing incorrect behavior from bug 132889, not a problem in ssl_SecureSend. Marking invalid.
Status: NEW → RESOLVED
Closed: 22 years ago
Resolution: --- → INVALID
|
Assignee | |
Comment 4•22 years ago
|
||
This code looks wrong to me.
If this is a non-blocking socket, and there was data left unsent by
a previous write attempt, then ss->pendingBuf.len will be != 0 on line
1016. Then ssl_SecureSend calls ssl_SendSavedWriteData which calls
ssl_DefSend to attempt the write.
There are 4 cases for the values returned by ssl_DefSend:
a) rv == len, it sent all the data.
b) 0 < rv < len, it sent some but not all data.
c) rv < 0, err == PR_WOULD_BLOCK_ERROR
d) rv < 0, some other error
ssl_SendSavedWriteData returns the same value returned by ssl_DefSend.
ssl_SecureSend wants to return SECFailure with error PR_WOULD_BLOCK_ERROR
in cases b and c above, but not in case d. Currently the code returns
SECFailure with PR_WOULD_BLOCK_ERROR for cases b, c and d.
So, I think the correction is to change the test following the call to
ssl_SendSavedWriteData() from
if (ss->pendingBuf.len != 0) {
to
if (rv >= 0 && ss->pendingBuf.len != 0) {
Status: RESOLVED → REOPENED
Resolution: INVALID → ---
|
|
Assignee | |
Comment 5•22 years ago
|
||
reassigning to myself.
Assignee: wtc → nelsonb
Status: REOPENED → NEW
Priority: -- → P1
Target Milestone: --- → 3.4
|
|
Assignee | |
Updated•22 years ago
|
Status: NEW → ASSIGNED
|
||
Comment 6•22 years ago
|
||
r=wtc. Thank you, Nelson, for catching this error that Ian and I missed :-)
|
|
Assignee | |
Comment 7•22 years ago
|
||
Checking in sslsecur.c; /cvsroot/mozilla/security/nss/lib/ssl/sslsecur.c,v <-- sslsecur.c new revision: 1.17; previous revision: 1.16 done
Status: ASSIGNED → RESOLVED
Closed: 22 years ago → 22 years ago
Resolution: --- → FIXED
|
|
Reporter | |
Comment 8•22 years ago
|
||
for posterity, this patch has the bugfix, and was the one used for the 3.3 branch.
|
|
Reporter | |
Comment 9•22 years ago
|
||
The fix for this bug was rolled back into 3.3.3.
Target Milestone: 3.4 → 3.3.3
Version: 3.4 → 3.0
You need to log in
before you can comment on or make changes to this bug.
Description
•