lavf/tls_securetransport: handle incomplete reads gracefully

Signed-off-by: Aman Gupta <aman at tmm1.net>
pull/272/head
Rodger Combs 7 years ago
parent e7e7d56a85
commit a36a3d7fec
  1. 16
      libavformat/tls_securetransport.c

@ -54,7 +54,7 @@ static int print_tls_error(URLContext *h, int ret)
TLSContext *c = h->priv_data;
switch (ret) {
case errSSLWouldBlock:
break;
return AVERROR(EAGAIN);
case errSSLXCertChainInvalid:
av_log(h, AV_LOG_ERROR, "Invalid certificate chain\n");
return AVERROR(EIO);
@ -197,7 +197,8 @@ static OSStatus tls_read_cb(SSLConnectionRef connection, void *data, size_t *dat
{
URLContext *h = (URLContext*)connection;
TLSContext *c = h->priv_data;
int read = ffurl_read_complete(c->tls_shared.tcp, data, *dataLength);
size_t requested = *dataLength;
int read = ffurl_read(c->tls_shared.tcp, data, requested);
if (read <= 0) {
*dataLength = 0;
switch(AVUNERROR(read)) {
@ -214,6 +215,9 @@ static OSStatus tls_read_cb(SSLConnectionRef connection, void *data, size_t *dat
}
} else {
*dataLength = read;
if (read < requested)
return errSSLWouldBlock;
else
return noErr;
}
}
@ -326,13 +330,14 @@ static int tls_open(URLContext *h, const char *uri, int flags, AVDictionary **op
if (peerTrust)
CFRelease(peerTrust);
}
if (status == noErr)
if (status == noErr) {
break;
} else if (status != errSSLWouldBlock) {
av_log(h, AV_LOG_ERROR, "Unable to negotiate TLS/SSL session: %i\n", (int)status);
ret = AVERROR(EIO);
goto fail;
}
}
return 0;
fail:
@ -348,6 +353,9 @@ static int map_ssl_error(OSStatus status, size_t processed)
case errSSLClosedGraceful:
case errSSLClosedNoNotify:
return 0;
case errSSLWouldBlock:
if (processed > 0)
return processed;
default:
return (int)status;
}

Loading…
Cancel
Save