Skip to content

[Apple] Lock over the same object in SafeDeleteSslContext to serialize access to the buffers #117982

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 24, 2025
Merged

[Apple] Lock over the same object in SafeDeleteSslContext to serialize access to the buffers #117982

merged 1 commit into from
Jul 24, 2025

Conversation

kotlarmilos
Copy link
Member

Description

OSX SafeDeleteSslContext takes lock on different object in managed callbacks and other methods. In the callbacks, the lock is SafeDeleteSslContext, while in Dispose and other methods the lock is SafeSslHandle.

This PR adds a _lock to ensure synchronization across all methods that access shared buffers. The issue was identified while working on #117950.

@Copilot Copilot AI review requested due to automatic review settings July 23, 2025 14:27
Copilot
Copilot AI reviewed Jul 23, 2025
View reviewed changes
Copy link
Contributor

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR addresses a synchronization issue in the OSX SafeDeleteSslContext class where different methods were using different lock objects, potentially causing race conditions when accessing shared buffer resources. The change introduces a dedicated _lock object to ensure consistent synchronization across all methods that access the _inputBuffer and _outputBuffer fields.

Key changes:

  • Introduces a dedicated _lock object for thread synchronization
  • Replaces inconsistent lock targets (_sslContext vs SafeDeleteSslContext instance) with the new _lock object
  • Ensures all buffer access operations are properly synchronized

@kotlarmilos kotlarmilos added the os-ios Apple iOS label Jul 23, 2025
@kotlarmilos kotlarmilos added this to the 10.0.0 milestone Jul 23, 2025
@dotnet-policy-service Dotnet Policy Service
Copy link
Contributor

Tagging subscribers to 'os-ios': @vitek-karas, @kotlarmilos, @ivanpovazan, @steveisok, @akoeplinger
See info in area-owners.md if you want to be subscribed.

ManickaP
ManickaP approved these changes Jul 23, 2025
View reviewed changes
Copy link
Member

@ManickaP ManickaP left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you!

This was referenced Jul 23, 2025
Open
Closed
Open
@kotlarmilos kotlarmilos merged commit 5c4ebcc into dotnet:main Jul 24, 2025
84 of 89 checks passed
@MihuBot MihuBot mentioned this pull request Jul 25, 2025
Open
@github-actions github-actions bot locked and limited conversation to collaborators Aug 23, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

Copilot code review Copilot Copilot left review comments

@ManickaP ManickaP ManickaP approved these changes

@simonrozsival simonrozsival Awaiting requested review from simonrozsival

@vitek-karas vitek-karas Awaiting requested review from vitek-karas

@wfurt wfurt Awaiting requested review from wfurt

@MihaZupan MihaZupan Awaiting requested review from MihaZupan

Assignees

@kotlarmilos kotlarmilos

Labels
area-System.Net.Security os-ios Apple iOS
Projects
None yet
Milestone
10.0.0
Development

Successfully merging this pull request may close these issues.
2 participants
@kotlarmilos @ManickaP