Merge pull request #17 from nox/handshake-error

inikulin · web-flow · commit 2667b0fdee83 · 2021-03-09T17:43:44.000Z
Improve error printing
diff --git a/boring/src/error.rs b/boring/src/error.rs
@@ -66,7 +66,7 @@ impl fmt::Display for ErrorStack {
         let mut first = true;
         for err in &self.0 {
             if !first {
-                fmt.write_str(", ")?;
+                fmt.write_str("\n--\n")?;
             }
             write!(fmt, "{}", err)?;
             first = false;
diff --git a/boring/src/ssl/error.rs b/boring/src/ssl/error.rs
@@ -4,6 +4,7 @@ use std::error;
 use std::error::Error as StdError;
 use std::fmt;
 use std::io;
+use std::path::Path;
 
 use error::ErrorStack;
 use ssl::MidHandshakeSslStream;
@@ -150,29 +151,63 @@ impl<S: fmt::Debug> StdError for HandshakeError<S> {
     }
 }
 
-impl<S: fmt::Debug> fmt::Display for HandshakeError<S> {
+impl<S> fmt::Display for HandshakeError<S> {
     fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
         match *self {
-            HandshakeError::SetupFailure(ref e) => write!(f, "stream setup failed: {}", e)?,
-            HandshakeError::Failure(ref s) => {
-                write!(f, "the handshake failed: {}", s.error())?;
-                let verify = s.ssl().verify_result();
-                if verify != X509VerifyResult::OK {
-                    write!(f, ": {}", verify)?;
-                }
+            HandshakeError::SetupFailure(ref e) => {
+                write!(f, "TLS stream setup failed:\n\n{}", e)
             }
+            HandshakeError::Failure(ref s) => fmt_mid_handshake_error(s, f, "TLS handshake failed"),
             HandshakeError::WouldBlock(ref s) => {
-                write!(f, "the handshake was interrupted: {}", s.error())?;
-                let verify = s.ssl().verify_result();
-                if verify != X509VerifyResult::OK {
-                    write!(f, ": {}", verify)?;
-                }
+                fmt_mid_handshake_error(s, f, "TLS handshake interrupted")
             }
         }
-        Ok(())
     }
 }
 
+fn fmt_mid_handshake_error(
+    s: &MidHandshakeSslStream<impl Sized>,
+    f: &mut fmt::Formatter,
+    prefix: &str,
+) -> fmt::Result {
+    match s.ssl().verify_result() {
+        X509VerifyResult::OK => write!(f, "{}", prefix)?,
+        verify => write!(f, "{}: cert verification failed - {}", prefix, verify)?,
+    }
+
+    if let Some(error) = s.error().io_error() {
+        return write!(f, " ({})", error);
+    }
+
+    if let Some(error) = s.error().ssl_error() {
+        let errors = error.errors();
+
+        if errors.is_empty() {
+            return Ok(());
+        }
+
+        f.write_str(":\n")?;
+
+        for error in errors {
+            let path = error.file();
+            let file = Path::new(path)
+                .file_name()
+                .and_then(|name| name.to_str())
+                .unwrap_or(path);
+
+            write!(
+                f,
+                "\n{} [{}] ({}:{})",
+                error.reason().unwrap_or("unknown error"),
+                error.code(),
+                file,
+                error.line()
+            )?;
+        }
+    }
+    Ok(())
+}
+
 impl<S> From<ErrorStack> for HandshakeError<S> {
     fn from(e: ErrorStack) -> HandshakeError<S> {
         HandshakeError::SetupFailure(e)
diff --git a/boring/src/ssl/mod.rs b/boring/src/ssl/mod.rs
@@ -2876,6 +2876,11 @@ impl<S> MidHandshakeSslStream<S> {
         self.stream.into_inner()
     }
 
+    /// Returns both the error and the source data stream, consuming `self`.
+    pub fn into_parts(self) -> (Error, S) {
+        (self.error, self.stream.into_inner())
+    }
+
     /// Restarts the handshake process.
     ///
     /// This corresponds to [`SSL_do_handshake`].
diff --git a/tokio-boring/src/lib.rs b/tokio-boring/src/lib.rs
@@ -277,13 +277,21 @@ impl<S> HandshakeError<S> {
         }
     }
 
-    /// Converts error to the source data stream tha was used for the handshake.
+    /// Converts error to the source data stream that was used for the handshake.
     pub fn into_source_stream(self) -> Option<S> {
         match self.0 {
             ssl::HandshakeError::Failure(s) => Some(s.into_source_stream().stream),
             _ => None,
         }
     }
+
+    /// Returns a reference to the source data stream.
+    pub fn as_source_stream(&self) -> Option<&S> {
+        match &self.0 {
+            ssl::HandshakeError::Failure(s) => Some(&s.get_ref().stream),
+            _ => None,
+        }
+    }
 }
 
 impl<S> fmt::Debug for HandshakeError<S>

Original file line number	Diff line number	Diff line change
`@@ -66,7 +66,7 @@ impl fmt::Display for ErrorStack {`
`66`	`66`	`let mut first = true;`
`67`	`67`	`for err in &self.0 {`
`68`	`68`	`if !first {`
`69`		`- fmt.write_str(", ")?;`
	`69`	`+ fmt.write_str("\n--\n")?;`
`70`	`70`	`}`
`71`	`71`	`write!(fmt, "{}", err)?;`
`72`	`72`	`first = false;`
Original file line number	Diff line number	Diff line change
`@@ -277,13 +277,21 @@ impl<S> HandshakeError<S> {`
`277`	`277`	`}`
`278`	`278`	`}`
`279`	`279`
`280`		`- /// Converts error to the source data stream tha was used for the handshake.`
	`280`	`+ /// Converts error to the source data stream that was used for the handshake.`
`281`	`281`	`pub fn into_source_stream(self) -> Option<S> {`
`282`	`282`	`match self.0 {`
`283`	`283`	`ssl::HandshakeError::Failure(s) => Some(s.into_source_stream().stream),`
`284`	`284`	`_ => None,`
`285`	`285`	`}`
`286`	`286`	`}`
	`287`	`+`
	`288`	`+ /// Returns a reference to the source data stream.`
	`289`	`+ pub fn as_source_stream(&self) -> Option<&S> {`
	`290`	`+ match &self.0 {`
	`291`	`+ ssl::HandshakeError::Failure(s) => Some(&s.get_ref().stream),`
	`292`	`+ _ => None,`
	`293`	`+ }`
	`294`	`+ }`
`287`	`295`	`}`
`288`	`296`
`289`	`297`	`impl<S> fmt::Debug for HandshakeError<S>`