session: extra checks in session validation

author Srikanth Akula <srakula@cisco.com>

Mon, 18 Nov 2019 19:49:58 +0000 (11:49 -0800)

committer Florin Coras <florin.coras@gmail.com>

Mon, 18 Nov 2019 23:48:00 +0000 (23:48 +0000)
author Srikanth Akula <srakula@cisco.com>
Mon, 18 Nov 2019 19:49:58 +0000 (11:49 -0800)
committer Florin Coras <florin.coras@gmail.com>
Mon, 18 Nov 2019 23:48:00 +0000 (23:48 +0000)
diff --git a/src/vnet/session/session.c b/src/vnet/session/session.c

index 163f4d2..0751739 100644 (file)
--- a/src/vnet/session/session.c
+++ b/src/vnet/session/session.c
@@ -205,6 +205,32 @@ session_free (session_t * s)
    pool_put (session_main.wrk[s->thread_index].sessions, s);
  }
  
+u8
+session_is_valid (u32 si, u8 thread_index)
+{
+  session_t *s;
+  transport_connection_t *tc;
+
+  s = pool_elt_at_index (session_main.wrk[thread_index].sessions, si);
+
+  if (!s)
+    return 1;
+
+  if (s->thread_index != thread_index || s->session_index != si)
+    return 0;
+
+  if (s->session_state == SESSION_STATE_TRANSPORT_DELETED
+      || s->session_state <= SESSION_STATE_LISTENING)
+    return 1;
+
+  tc = session_get_transport (s);
+  if (s->connection_index != tc->c_index
+      || s->thread_index != tc->thread_index || tc->s_index != si)
+    return 0;
+
+  return 1;
+}
+
  static void
  session_cleanup_notify (session_t * s, session_cleanup_ntf_t ntf)
  {
diff --git a/src/vnet/session/session.h b/src/vnet/session/session.h

index e239818..7b7addb 100644 (file)
--- a/src/vnet/session/session.h
+++ b/src/vnet/session/session.h
@@ -286,22 +286,10 @@ session_evt_alloc_old (session_worker_t * wrk)
    return elt;
  }
  
-always_inline u8
-session_is_valid (u32 si, u8 thread_index)
-{
-  session_t *s;
-  s = pool_elt_at_index (session_main.wrk[thread_index].sessions, si);
-  if (s->session_state == SESSION_STATE_CLOSED)
-    return 1;
-
-  if (s->thread_index != thread_index || s->session_index != si)
-    return 0;
-  return 1;
-}
-
  session_t *session_alloc (u32 thread_index);
  void session_free (session_t * s);
  void session_free_w_fifos (session_t * s);
+u8 session_is_valid (u32 si, u8 thread_index);
  
  always_inline session_t *
  session_get (u32 si, u32 thread_index)
diff --git a/src/vnet/tls/tls.c b/src/vnet/tls/tls.c

index 166ec1d..cfe2c3a 100644 (file)
--- a/src/vnet/tls/tls.c
+++ b/src/vnet/tls/tls.c
@@ -428,7 +428,7 @@ tls_session_accept_callback (session_t * tls_session)
    /* Preallocate app session. Avoids allocating a session post handshake
     * on tls_session rx and potentially invalidating the session pool */
    app_session = session_alloc (ctx->c_thread_index);
-  app_session->session_state = SESSION_STATE_CLOSED;
+  app_session->session_state = SESSION_STATE_CREATED;
    ctx->c_s_index = app_session->session_index;
  
    TLS_DBG (1, "Accept on listener %u new connection [%u]%x",
@@ -495,7 +495,7 @@ tls_session_connected_callback (u32 tls_app_index, u32 ho_ctx_index,
    /* Preallocate app session. Avoids allocating a session post handshake
     * on tls_session rx and potentially invalidating the session pool */
    app_session = session_alloc (ctx->c_thread_index);
-  app_session->session_state = SESSION_STATE_CLOSED;
+  app_session->session_state = SESSION_STATE_CREATED;
    ctx->c_s_index = app_session->session_index;
  
    return tls_ctx_init_client (ctx);
author	Srikanth Akula <srakula@cisco.com>
	Mon, 18 Nov 2019 19:49:58 +0000 (11:49 -0800)
committer	Florin Coras <florin.coras@gmail.com>
	Mon, 18 Nov 2019 23:48:00 +0000 (23:48 +0000)
src/vnet/session/session.c		patch \| blob \| history
src/vnet/session/session.h		patch \| blob \| history
src/vnet/tls/tls.c		patch \| blob \| history