Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8256818

SSLSocket that is never bound or connected leaks socket resources

    XMLWordPrintable

Details

    • b26
    • 13
    • b27
    • Verified

    Backports

      Description

        There is a flaw in sun.security.ssl.SSLSocketImpl::close() which leads to leaking socket resources after JDK-8224829.

        The close method calls duplexCloseOutput() and duplexCloseInput(). In case of an exception in any of these methods, the call to closeSocket() is bypassed, and the underlying Socket may not be closed.

        This manifests in a real life leak after JDK-8224829 has introduced a call to getSoLinger() on the path of duplexCloseOutput -> closeNotify. If socket impl / OS socket hadn't been created yet it is done at that place. But then after duplexCloseOutput eventually fails with a SocketException since the socket wasn't connected, closing fails to call Socket::close().

        This problem can be reproduced by this code:
        SSLSocket sslSocket = (SSLSocket)SSLSocketFactory.getDefault().createSocket();
        sslSocket.getSSLParameters();
        sslSocket.close();

        This is what happens when SSLContext.getDefault().getDefaultSSLParameters() is called, with close() being eventually called by the finalizer.

        Attachments

          Issue Links

            backported by

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8258261 SSLSocket that is never bound or connected leaks socket resources

            • P2 - Crashes, loss of data, severe memory leak.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8259013 SSLSocket that is never bound or connected leaks socket resources

            • P2 - Crashes, loss of data, severe memory leak.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8262626 SSLSocket that is never bound or connected leaks socket resources

            • P2 - Crashes, loss of data, severe memory leak.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8257949 SSLSocket that is never bound or connected leaks socket resources

            • P2 - Crashes, loss of data, severe memory leak.
            • Closed

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8257950 SSLSocket that is never bound or connected leaks socket resources

            • P2 - Crashes, loss of data, severe memory leak.
            • Closed

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8258904 SSLSocket that is never bound or connected leaks socket resources

            • P2 - Crashes, loss of data, severe memory leak.
            • Closed

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8259329 SSLSocket that is never bound or connected leaks socket resources

            • P2 - Crashes, loss of data, severe memory leak.
            • Closed
            relates to

            Bug - A problem which impairs or prevents the functions of the product. JDK-8236464 SO_LINGER option is ignored by SSLSocket in JDK 11

            • P3 - Major loss of function.
            • Closed

            Bug - A problem which impairs or prevents the functions of the product. JDK-8257670 sun/security/ssl/SSLSocketImpl/SSLSocketLeak.java reports leaks

            • P3 - Major loss of function.
            • Resolved

            Bug - A problem which impairs or prevents the functions of the product. JDK-8257884 Re-enable sun/security/ssl/SSLSocketImpl/SSLSocketLeak.java as automatic test

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Bug - A problem which impairs or prevents the functions of the product. JDK-8224829 AsyncSSLSocketClose.java has timing issue

            • P3 - Major loss of function.
            • Closed
            links to

            Web Link 8u backport review thread

            Web Link 11u backport review thread

            Commit Commit openjdk/jdk/93b6ab56

            Review Review openjdk/jdk/1363

            Activity

              People

                clanger Christoph Langer
                clanger Christoph Langer
                Votes:
                0 Vote for this issue
                Watchers:
                8 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved: