RepoMirrors/ffmpeg
1
0
Fork 0
mirror of https://git.ffmpeg.org/ffmpeg.git synced 2025-04-11 03:32:39 +00:00
Code Issues Projects Releases Wiki Activity

lavf/tls_securetransport: handle incomplete reads gracefully

Browse Source 
Signed-off-by: Aman Gupta <aman at tmm1.net>
This commit is contained in:
Rodger Combs 2017-11-13 14:46:17 -06:00
parent e7e7d56a85
commit a36a3d7fec
1 changed files with 16 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
libavformat/tls_securetransport.c
View File

@ -54,7 +54,7 @@ static int print_tls_error(URLContext *h, int ret)
TLSContext *c = h->priv_data; TLSContext *c = h->priv_data;
switch (ret) { switch (ret) {
case errSSLWouldBlock: case errSSLWouldBlock:
break; return AVERROR(EAGAIN);
case errSSLXCertChainInvalid: case errSSLXCertChainInvalid:
av_log(h, AV_LOG_ERROR, "Invalid certificate chain\n"); av_log(h, AV_LOG_ERROR, "Invalid certificate chain\n");
return AVERROR(EIO); return AVERROR(EIO);
@ -197,7 +197,8 @@ static OSStatus tls_read_cb(SSLConnectionRef connection, void *data, size_t *dat
{ {
URLContext *h = (URLContext*)connection; URLContext *h = (URLContext*)connection;
TLSContext *c = h->priv_data; TLSContext *c = h->priv_data;
int read = ffurl_read_complete(c->tls_shared.tcp, data, *dataLength); size_t requested = *dataLength;
int read = ffurl_read(c->tls_shared.tcp, data, requested);
if (read <= 0) { if (read <= 0) {
*dataLength = 0; *dataLength = 0;
switch(AVUNERROR(read)) { switch(AVUNERROR(read)) {
@ -214,6 +215,9 @@ static OSStatus tls_read_cb(SSLConnectionRef connection, void *data, size_t *dat
} }
} else { } else {
*dataLength = read; *dataLength = read;
if (read < requested)
return errSSLWouldBlock;
else
return noErr; return noErr;
} }
} }
@ -326,13 +330,14 @@ static int tls_open(URLContext *h, const char *uri, int flags, AVDictionary **op
if (peerTrust) if (peerTrust)
CFRelease(peerTrust); CFRelease(peerTrust);
} }
if (status == noErr) if (status == noErr) {
break; break;
} else if (status != errSSLWouldBlock) {
av_log(h, AV_LOG_ERROR, "Unable to negotiate TLS/SSL session: %i\n", (int)status); av_log(h, AV_LOG_ERROR, "Unable to negotiate TLS/SSL session: %i\n", (int)status);
ret = AVERROR(EIO); ret = AVERROR(EIO);
goto fail; goto fail;
} }
}
return 0; return 0;
fail: fail:
@ -348,6 +353,9 @@ static int map_ssl_error(OSStatus status, size_t processed)
case errSSLClosedGraceful: case errSSLClosedGraceful:
case errSSLClosedNoNotify: case errSSLClosedNoNotify:
return 0; return 0;
case errSSLWouldBlock:
if (processed > 0)
return processed;
default: default:
return (int)status; return (int)status;
} }