Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

network(), syslog(): Fixed a potential crash for TLS destinations during reload #418

Open
wants to merge 9 commits into
base: main
Choose a base branch
from
Open

network(), syslog(): Fixed a potential crash for TLS destinations during reload #418

wants to merge 9 commits into from

Conversation

sodomelle
Copy link
Contributor

Fixes syslog-ng/syslog-ng#5018

It is possible to keep TLS connections alive during reload.
In that case the LogWriter instance is persisted in cfg persist.
This LogWriter's signal slot connector wasn't updated based on the new configuration, which could cause a crash.
The signal slot connector is updated, so the newly configured verifier is used, instead of the old one.

Note that the fix in syslog-ng/syslog-ng#5087 has a security issue, as in that PR, the connector's lifetime is extended, but the verifier plugins are deregistered during reload, which silently disables all TLS verifiers without the user knowing.

sodomelle added a commit to sodomelle/axosyslog that referenced this pull request Dec 16, 2024
@sodomelle
NEWS: Add entry for axoflow#418
876423b 
Signed-off-by: Tamás Kosztyu <tamas.kosztyu@axoflow.com>
@sodomelle sodomelle force-pushed the tls-destination-crash branch from fe77161 to 876423b Compare December 16, 2024 08:45
sodomelle added a commit to sodomelle/axosyslog that referenced this pull request Dec 16, 2024
@sodomelle
NEWS: Add entry for axoflow#418
d6e22e8 
Signed-off-by: Tamás Kosztyu <tamas.kosztyu@axoflow.com>
@sodomelle sodomelle force-pushed the tls-destination-crash branch from 876423b to d6e22e8 Compare December 16, 2024 08:47
sodomelle added a commit to sodomelle/axosyslog that referenced this pull request Dec 16, 2024
@sodomelle
NEWS: Add entry for axoflow#418
223da2c 
Signed-off-by: Tamás Kosztyu <tamas.kosztyu@axoflow.com>
@sodomelle sodomelle force-pushed the tls-destination-crash branch from d6e22e8 to 223da2c Compare December 16, 2024 09:00
sodomelle added a commit to sodomelle/axosyslog that referenced this pull request Dec 16, 2024
@sodomelle
NEWS: Add entry for axoflow#418
0dea14b 
Signed-off-by: Tamás Kosztyu <tamas.kosztyu@axoflow.com>
@sodomelle sodomelle force-pushed the tls-destination-crash branch from 223da2c to 0dea14b Compare December 16, 2024 09:08
mitzkia
mitzkia reviewed Dec 16, 2024
View reviewed changes
Copy link
Contributor

@mitzkia mitzkia left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks a lot for the Light feature update and a new testcase.
I have added some review notes.

...t/functional_tests/destination_drivers/network_destination/test_tls_verifier_reload_crash.py Outdated Show resolved Hide resolved
...t/functional_tests/destination_drivers/network_destination/test_tls_verifier_reload_crash.py Outdated Show resolved Hide resolved
tests/light/shared_files/valid-ca.crt Show resolved Hide resolved
tests/light/src/common/network.py Outdated Show resolved Hide resolved
tests/light/src/driver_io/network/network_io.py Show resolved Hide resolved
sodomelle added a commit to sodomelle/axosyslog that referenced this pull request Dec 16, 2024
@sodomelle
NEWS: Add entry for axoflow#418
24567d0 
Signed-off-by: Tamás Kosztyu <tamas.kosztyu@axoflow.com>
@sodomelle sodomelle force-pushed the tls-destination-crash branch from 0dea14b to 24567d0 Compare December 16, 2024 11:24
sodomelle added a commit to sodomelle/axosyslog that referenced this pull request Dec 16, 2024
@sodomelle
NEWS: Add entry for axoflow#418
4f3d2fb 
Signed-off-by: Tamás Kosztyu <tamas.kosztyu@axoflow.com>
@sodomelle sodomelle force-pushed the tls-destination-crash branch from 24567d0 to 4f3d2fb Compare December 16, 2024 15:43
@sodomelle sodomelle requested a review from mitzkia December 16, 2024 15:43
MrAnno and others added 9 commits December 16, 2024 17:12
@MrAnno @sodomelle
light: initial TLS destination support
98cc220 
Signed-off-by: László Várady <laszlo.varady@axoflow.com>
@MrAnno @sodomelle
light: Add test case for tls verifier crash
3e92f16 
Signed-off-by: Tamás Kosztyu <tamas.kosztyu@axoflow.com>
Signed-off-by: László Várady <laszlo.varady@axoflow.com>
@sodomelle
transport: Rename getter with side effect
8b9edfc 
Signed-off-by: Tamás Kosztyu <tamas.kosztyu@axoflow.com>
@sodomelle
logwriter: add new getter for proto
062f848 
Signed-off-by: Tamás Kosztyu <tamas.kosztyu@axoflow.com>
@sodomelle
transport-tls: add new getter for LogTransport's TLSSession
0b81021 
Signed-off-by: Tamás Kosztyu <tamas.kosztyu@axoflow.com>
@sodomelle
afsocket: making ReloadStoreItem type public
c1b0bc8 
Signed-off-by: Tamás Kosztyu <tamas.kosztyu@axoflow.com>
@sodomelle
afsocket: allow extending the connection restore capabilities
bab549b 
Signed-off-by: Tamás Kosztyu <tamas.kosztyu@axoflow.com>
@sodomelle
afsocket: update the TLS verifier during reload to fix a crash
15ada05 
It is possible to keep TLS connections alive during reload.
In that case the LogWriter instance is persisted in cfg persist.
This LogWriter's signal slot connector wasn't updated based on the
new configuration, which could cause a crash.
The signal slot connector is updated, so the newly configured
verifier is used, instead of the old one.

Signed-off-by: Tamás Kosztyu <tamas.kosztyu@axoflow.com>
@sodomelle
NEWS: Add entry for axoflow#418
fec4647 
Signed-off-by: Tamás Kosztyu <tamas.kosztyu@axoflow.com>
@sodomelle sodomelle force-pushed the tls-destination-crash branch from 4f3d2fb to fec4647 Compare December 16, 2024 16:12
bazsi
bazsi reviewed Dec 16, 2024
View reviewed changes
lib/transport/transport-tls.c
@@ -237,6 +237,14 @@ log_transport_tls_write_method(LogTransport *s, const gpointer buf, gsize buflen
return -1;
}

TLSSession *
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We should add the very least add an assertion to check if this is indeed a logtransporttls instance

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bazsi bazsi bazsi left review comments

@MrAnno MrAnno Awaiting requested review from MrAnno

@alltilla alltilla Awaiting requested review from alltilla

@mitzkia mitzkia Awaiting requested review from mitzkia

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Syslog-ng Service crashes in g_hash_table_lookup function after syslog-ng-ctl reload
4 participants
@sodomelle @bazsi @mitzkia @MrAnno