net/mbedtls_net_connect: Preventing double close problem

[ThePassionate]

In the test examples and real usage scenarios, 'mbedtls_net_free' is called after 'mbedtls_net_connect' fails, which will cause the problem of double close the same fd. It is possible to close this closed fd which has been applied by other link.

Description

hi all. We found that in the scenario of sudden network disconnection, ‘mbedtls_net_connect’ will close fd after the connection fails, and then call ‘mbedtls_net_free’ to close it again. There is a risk of double close here. At first, we suspected that it was used incorrectly, but after referring to the implementation and case in the programs directory, we did not find that it was a usage error. Therefore, we suggest to mark fd as unavailable after closing it to prevent fd from being used by other programs during the interval between 'mbedtls_net_connect' and 'mbedtls_net_free'.

PR checklist

Please remove the segment/s on either side of the | symbol as appropriate, and add any relevant link/s to the end of the line.
If the provided content is part of the present PR remove the # symbol.

• changelog provided | not required because:
• development PR here
• framework PR not required
• 3.6 PR provided [Backport 3.6] net/mbedtls_net_connect: Preventing double close problem #9714
• 2.28 PR provided [Backport 2.28] net/mbedtls_net_connect: Preventing double close problem #9715
• tests not required because: minor change, testing would require help from the OS

Resolves #9710

Notes for the submitter

Please refer to the contributing guidelines, especially the
checklist for PR contributors.

Help make review efficient:

• Multiple simple commits
  • please structure your PR into a series of small commits, each of which does one thing
• Avoid force-push
  • please do not force-push to update your PR - just add new commit(s)
• See our Guidelines for Contributors for more details about the review process.

[davidhorstmann-arm]

Change looks good to me, thanks!

Would you be able to add a ChangeLog entry and raise backport PRs against the mbedtls-3.6 and mbedtls-2.28 branches?

For ChangeLog guidance, see the ChangeLog readme. This would count in the Bugfix category.

[ThePassionate]

Change looks good to me, thanks!

Would you be able to add a ChangeLog entry and raise backport PRs against the mbedtls-3.6 and mbedtls-2.28 branches?

For ChangeLog guidance, see the ChangeLog readme. This would count in the Bugfix category.

Thanks for your reply! Changelog has been added, and backport PRs has been submitted with #9714 and #9715. Thanks again.

[davidhorstmann-arm]

LGTM, thanks!

[gowthamsk-arm]

LGTM

[davidhorstmann-arm]

The CI is failing on the other PRs as the ChangeLog needs a newline at the end. Otherwise looks good to me.

[davidhorstmann-arm]

LGTM, approving even though this technically includes my own change as the change is a line-ending only.

[ThePassionate]

The CI is failing on the other PRs as the ChangeLog needs a newline at the end. Otherwise looks good to me.

Thanks, i will fix that in backport PRs.