min
/
boring2
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #17 from nox/handshake-error 

Improve error printing
This commit is contained in:
Ivan Nikulin 2021-03-09 17:43:44 +00:00 committed by GitHub
parent adb00bde17 8fc84f01e0
commit 2667b0fdee
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
4 changed files with 64 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
boring/src/error.rs
View File

@ -66,7 +66,7 @@ impl fmt::Display for ErrorStack {
let mut first = true;
for err in &self.0 {
if !first {
fmt.write_str(", ")?;
fmt.write_str("\n--\n")?;
}
write!(fmt, "{}", err)?;
first = false;

63
boring/src/ssl/error.rs
View File

@ -4,6 +4,7 @@ use std::error;
use std::error::Error as StdError;
use std::fmt;
use std::io;
use std::path::Path;
use error::ErrorStack;
use ssl::MidHandshakeSslStream;
@ -150,29 +151,63 @@ impl<S: fmt::Debug> StdError for HandshakeError<S> {
}
}
impl<S: fmt::Debug> fmt::Display for HandshakeError<S> {
impl<S> fmt::Display for HandshakeError<S> {
fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
match *self {
HandshakeError::SetupFailure(ref e) => write!(f, "stream setup failed: {}", e)?,
HandshakeError::Failure(ref s) => {
write!(f, "the handshake failed: {}", s.error())?;
let verify = s.ssl().verify_result();
if verify != X509VerifyResult::OK {
write!(f, ": {}", verify)?;
}
HandshakeError::SetupFailure(ref e) => {
write!(f, "TLS stream setup failed:\n\n{}", e)
}
HandshakeError::Failure(ref s) => fmt_mid_handshake_error(s, f, "TLS handshake failed"),
HandshakeError::WouldBlock(ref s) => {
write!(f, "the handshake was interrupted: {}", s.error())?;
let verify = s.ssl().verify_result();
if verify != X509VerifyResult::OK {
write!(f, ": {}", verify)?;
}
fmt_mid_handshake_error(s, f, "TLS handshake interrupted")
}
}
Ok(())
}
}
fn fmt_mid_handshake_error(
s: &MidHandshakeSslStream<impl Sized>,
f: &mut fmt::Formatter,
prefix: &str,
) -> fmt::Result {
match s.ssl().verify_result() {
X509VerifyResult::OK => write!(f, "{}", prefix)?,
verify => write!(f, "{}: cert verification failed - {}", prefix, verify)?,
}
if let Some(error) = s.error().io_error() {
return write!(f, " ({})", error);
}
if let Some(error) = s.error().ssl_error() {
let errors = error.errors();
if errors.is_empty() {
return Ok(());
}
f.write_str(":\n")?;
for error in errors {
let path = error.file();
let file = Path::new(path)
.file_name()
.and_then(|name| name.to_str())
.unwrap_or(path);
write!(
f,
"\n{} [{}] ({}:{})",
error.reason().unwrap_or("unknown error"),
error.code(),
file,
error.line()
)?;
}
}
Ok(())
}
impl<S> From<ErrorStack> for HandshakeError<S> {
fn from(e: ErrorStack) -> HandshakeError<S> {
HandshakeError::SetupFailure(e)

5
boring/src/ssl/mod.rs
View File

@ -2876,6 +2876,11 @@ impl<S> MidHandshakeSslStream<S> {
self.stream.into_inner()
}
/// Returns both the error and the source data stream, consuming `self`.
pub fn into_parts(self) -> (Error, S) {
(self.error, self.stream.into_inner())
}
/// Restarts the handshake process.
///
/// This corresponds to [`SSL_do_handshake`].

10
tokio-boring/src/lib.rs
View File

@ -277,13 +277,21 @@ impl<S> HandshakeError<S> {
}
}
/// Converts error to the source data stream tha was used for the handshake.
/// Converts error to the source data stream that was used for the handshake.
pub fn into_source_stream(self) -> Option<S> {
match self.0 {
ssl::HandshakeError::Failure(s) => Some(s.into_source_stream().stream),
_ => None,
}
}
/// Returns a reference to the source data stream.
pub fn as_source_stream(&self) -> Option<&S> {
match &self.0 {
ssl::HandshakeError::Failure(s) => Some(&s.get_ref().stream),
_ => None,
}
}
}
impl<S> fmt::Debug for HandshakeError<S>