[jboss-jira] [JBoss JIRA] (JGRP-2315) ASYNC_ENCRYPT: Race condition in cipher queue usage can cause message descryption failures
Paul Ferraro (Jira)
issues at jboss.org
Thu Nov 29 11:00:03 EST 2018
Paul Ferraro created JGRP-2315:
----------------------------------
Summary: ASYNC_ENCRYPT: Race condition in cipher queue usage can cause message descryption failures
Key: JGRP-2315
URL: https://issues.jboss.org/browse/JGRP-2315
Project: JGroups
Issue Type: Bug
Affects Versions: 4.0.15
Reporter: Paul Ferraro
Assignee: Bela Ban
If a message is received that needs to be decrypted, or if a message need to be encrypted, a cipher is taken from the queue. However, if a new coordinator concurrently sends a new secret key, it will clear and recreate the cipher queues. If the previous operation then puts its cipher back on the queue, the queue will now contain a cipher with the old secret key. This will result in random message decryption failures when a message encryption/decryption pulls the outdated cipher from the queue.
--
This message was sent by Atlassian Jira
(v7.12.1#712002)
More information about the jboss-jira
mailing list