Home
last modified time | relevance | path

Searched hist:1812 (Results 1 – 2 of 2) sorted by relevance

/unit/src/
H A Dnxt_openssl.cdiff 1812:71adb995a9af Mon Mar 15 11:57:00 UTC 2021 Valentin Bartenev <vbart@nginx.com> Fixed TLS connection shutdown on errors.

An immediate return statement on connection errors was mistakenly added to the
beginning of nxt_openssl_conn_io_shutdown() in ecd3c5bbf7d8, breaking the TLS
connection finalization procedure. As a result, a TLS connection was left
unfinalized if it had been closed prematurely or a fatal protocol error had
occurred, which caused memory and socket descriptor leakage.

Moreover, in some cases (notably, on handshake errors in tests with kqueue on
macOS) the read event was triggered later and nxt_h1p_conn_error() was called
the second time; after the change in af93c866b4f0, the latter call crashed the
router process in an attempt to remove a connection from the idle queue twice.
/unit/docs/
H A Dchanges.xmldiff 1812:71adb995a9af Mon Mar 15 11:57:00 UTC 2021 Valentin Bartenev <vbart@nginx.com> Fixed TLS connection shutdown on errors.

An immediate return statement on connection errors was mistakenly added to the
beginning of nxt_openssl_conn_io_shutdown() in ecd3c5bbf7d8, breaking the TLS
connection finalization procedure. As a result, a TLS connection was left
unfinalized if it had been closed prematurely or a fatal protocol error had
occurred, which caused memory and socket descriptor leakage.

Moreover, in some cases (notably, on handshake errors in tests with kqueue on
macOS) the read event was triggered later and nxt_h1p_conn_error() was called
the second time; after the change in af93c866b4f0, the latter call crashed the
router process in an attempt to remove a connection from the idle queue twice.