Correctly handle ssl requests split into multiple ip (EJABS-1460)

2024-12-24 17:29:28 +01:00 · 2011-03-15 13:52:35 +01:00 · 2011-03-15 13:52:35 +01:00 · dcb068c7ad
commit dcb068c7ad
parent 2d32d2f25e
1 changed files with 27 additions and 34 deletions
--- a/src/tls/tls_drv.c
+++ b/src/tls/tls_drv.c
@ -391,6 +391,7 @@ static int tls_drv_control(ErlDrvData handle,
 	 break;
      case SET_DECRYPTED_OUTPUT:
 	 die_unless(d->ssl, "SSL not initialized");
+
 	 res = SSL_write(d->ssl, buf, len);
 	 if (res <= 0) 
 	 {
@ -408,9 +409,8 @@ static int tls_drv_control(ErlDrvData handle,
 	 break;
      case GET_ENCRYPTED_OUTPUT:
 	 die_unless(d->ssl, "SSL not initialized");
-	 size = BUF_SIZE + 1;
 	 rlen = 1;
-	 b = driver_alloc_binary(size);
+	 b = driver_alloc_binary(rlen + BUF_SIZE);
 	 b->orig_bytes[0] = 0;
 	 while ((res = BIO_read(d->bio_write,
 				b->orig_bytes + rlen, BUF_SIZE)) > 0)
@ -418,8 +418,7 @@ static int tls_drv_control(ErlDrvData handle,
 	    //printf("%d bytes of encrypted data read from state machine\r\n", res);

 	    rlen += res;
-	    size += BUF_SIZE;
-	    b = driver_realloc_binary(b, size);
+	    b = driver_realloc_binary(b, rlen + BUF_SIZE);
 	 }
 	 b = driver_realloc_binary(b, rlen);
 	 *rbuf = (char *)b;
@ -431,10 +430,9 @@ static int tls_drv_control(ErlDrvData handle,
 	    if (res <= 0)
 	       die_unless(SSL_get_error(d->ssl, res) == SSL_ERROR_WANT_READ,
 			  "SSL_do_handshake failed");
-	 } else {
-	    size = BUF_SIZE + 1;
+	 }
          rlen = 1;
-	    b = driver_alloc_binary(size);
+          b = driver_alloc_binary(rlen + BUF_SIZE);
          b->orig_bytes[0] = 0;

          while ((res = SSL_read(d->ssl,
@ -442,26 +440,21 @@ static int tls_drv_control(ErlDrvData handle,
          {
              //printf("%d bytes of decrypted data read from state machine\r\n",res);
              rlen += res;
-	       size += BUF_SIZE;
-	       b = driver_realloc_binary(b, size);
+              b = driver_realloc_binary(b, rlen + BUF_SIZE);
          }

          if (res < 0)
          {
              int err = SSL_get_error(d->ssl, res);

-	       if (err == SSL_ERROR_WANT_READ)
+              if (err != SSL_ERROR_WANT_READ)
              {
-		  //printf("SSL_read wants more data\r\n");
-		  //return 0;
-	       }
              // TODO
              }
+          }
          b = driver_realloc_binary(b, rlen);
          *rbuf = (char *)b;
          return rlen;
-	 }
-	 break;
      case GET_PEER_CERTIFICATE:
 	 cert = SSL_get_peer_certificate(d->ssl);
 	 if (cert == NULL)