Remove tls.createSecurePair usage, closes #515 #689
Conversation
|
Heya 👋 Thanks for preparing this pull request - this is looking great! I looked into the crash on Node.js <= 7, and this is caused by some weird interaction between When looking at the TLSSocket code between node v4-v7, and node v8+, it's easy to spot the cause of the crash: This here is the code for earlier node versions: https://github.com/nodejs/node/blob/99af46e92ccde6a42dbaec1d51bca8b6d8e43236/lib/_tls_wrap.js#L260-L266 You can see that the code explicitly checks whether the given socket is an instance of Unfortunately, In later node versions, these lines were changed to the following: Here, the nodejs/node#12799 was the pull request that fixed the crash, and the bug report over in nodejs/node#3655 mentions the same error message, but with different preconditions. I was thinking about how using @addaleax Any suggestions on how to workaround this issue? As it stands, |
|
@addaleax Maybe it would make sense if |
This is because new TLSSocket(duplexpair.socket1) crashes on node 6: Assertion failed: (uv__stream_fd(stream) >= 0), function uv_read_start, file ../deps/uv/src/unix/stream.c, line 1517. Abort trap: 6
joux3
force-pushed
the
remove-securepair2
branch
from
ff5d5eb
to
5b2dc1a
Compare
The changes replace
tls.createSecurePairwithTLSSocket & DuplexPairon Node 8 and newer.Some notes:
TLSSocketwhen aDuplexPairsocket passed to the constructor. Therefore the oldtls.createSecurePairis still used for anything before Node 8.the Sinon fake timers used inFaking justconnection-retry-test.jssomehow breakDuplexPairinternally, the bytes just aren't passed through it. Removing the timer faking does not cause the tests to fail when using an encrypted connection, but it does cause a failure when using an unencrypted connection (so probably just based on luck regarding timing). Any ideas how to address this? Use the fake timers if the connection used is unencrypted? Or maybe debug the root cause further?setTimeoutseems to fixDuplexPair.