[#4725] Ensure correct cause of handshake error is included in the SSLHandshakeException when using OpenSslEngine.

Motivation:

We need to ensure we add the correct handshake error to the SSLHandshakeException before throwing it when failing the
handshake.

Modifications:

Use the correct error string when creating the SSLHandshakeException.

Result:

Correct SSLHandshakeException message included.
This commit is contained in:
Norman Maurer 2016-01-18 20:42:37 +01:00
parent 18765a3bf7
commit ef2cf4625d

View File

@ -750,6 +750,8 @@ public final class OpenSslEngine extends SSLEngine {
} }
private SSLEngineResult sslReadErrorResult(int err, int bytesConsumed, int bytesProduced) throws SSLException { private SSLEngineResult sslReadErrorResult(int err, int bytesConsumed, int bytesProduced) throws SSLException {
String errStr = SSL.getErrorString(err);
// Check if we have a pending handshakeException and if so see if we need to consume all pending data from the // Check if we have a pending handshakeException and if so see if we need to consume all pending data from the
// BIO first or can just shutdown and throw it now. // BIO first or can just shutdown and throw it now.
// This is needed so we ensure close_notify etc is correctly send to the remote peer. // This is needed so we ensure close_notify etc is correctly send to the remote peer.
@ -758,11 +760,11 @@ public final class OpenSslEngine extends SSLEngine {
if (handshakeException == null && handshakeState != HandshakeState.FINISHED) { if (handshakeException == null && handshakeState != HandshakeState.FINISHED) {
// we seems to have data left that needs to be transfered and so the user needs // we seems to have data left that needs to be transfered and so the user needs
// call wrap(...). Store the error so we can pick it up later. // call wrap(...). Store the error so we can pick it up later.
handshakeException = new SSLHandshakeException(SSL.getLastError()); handshakeException = new SSLHandshakeException(errStr);
} }
return new SSLEngineResult(OK, NEED_WRAP, bytesConsumed, bytesProduced); return new SSLEngineResult(OK, NEED_WRAP, bytesConsumed, bytesProduced);
} }
throw shutdownWithError("SSL_read", SSL.getErrorString(err)); throw shutdownWithError("SSL_read", errStr);
} }
private int pendingAppData() { private int pendingAppData() {