diff options
| author | Anthony Ramine <n.oxyde@gmail.com> | 2017-03-29 15:30:12 +0200 |
|---|---|---|
| committer | Anthony Ramine <n.oxyde@gmail.com> | 2017-03-29 18:01:01 +0200 |
| commit | 3ed32f80780152806b38f3a16634f7d1922fd129 (patch) | |
| tree | 45eb49f3253434f93646cca91284b02d725d2923 /components/net | |
| parent | 3345b83fb370536a354ce82bb3493576f873d822 (diff) | |
| download | servo-3ed32f80780152806b38f3a16634f7d1922fd129.tar.gz servo-3ed32f80780152806b38f3a16634f7d1922fd129.zip | |
Introduce NetworkError::from_hyper_error and from_ssl_error
Diffstat (limited to 'components/net')
| -rw-r--r-- | components/net/http_loader.rs | 60 |
1 files changed, 1 insertions, 59 deletions
diff --git a/components/net/http_loader.rs b/components/net/http_loader.rs index ec8bfed9666..3b4b9e89af1 100644 --- a/components/net/http_loader.rs +++ b/components/net/http_loader.rs @@ -35,9 +35,7 @@ use net_traits::hosts::replace_host; use net_traits::request::{CacheMode, CredentialsMode, Destination, Origin}; use net_traits::request::{RedirectMode, Referrer, Request, RequestMode, ResponseTainting}; use net_traits::response::{HttpsState, Response, ResponseBody, ResponseType}; -use openssl; use openssl::ssl::SslStream; -use openssl::ssl::error::{OpensslError, SslError}; use resource_thread::AuthCache; use servo_url::{ImmutableOrigin, ServoUrl}; use std::collections::HashSet; @@ -140,34 +138,7 @@ impl NetworkHttpRequestFactory { fn create(&self, url: ServoUrl, method: Method, headers: Headers) -> Result<HyperRequest<Fresh>, NetworkError> { let connection = HyperRequest::with_connector(method, url.clone().into_url(), self); - - if let Err(HttpError::Ssl(ref error)) = connection { - let error: &(Error + Send + 'static) = &**error; - if let Some(&SslError::OpenSslErrors(ref errors)) = error.downcast_ref::<SslError>() { - if errors.iter().any(is_cert_verify_error) { - let mut error_report = vec![format!("ssl error ({}):", openssl::version::version())]; - let mut suggestion = None; - for err in errors { - if is_unknown_message_digest_err(err) { - suggestion = Some("<b>Servo recommends upgrading to a newer OpenSSL version.</b>"); - } - error_report.push(format_ssl_error(err)); - } - - if let Some(suggestion) = suggestion { - error_report.push(suggestion.to_owned()); - } - - let error_report = error_report.join("<br>\n"); - return Err(NetworkError::SslValidation(url, error_report)); - } - } - } - - let mut request = match connection { - Ok(req) => req, - Err(e) => return Err(NetworkError::Internal(e.description().to_owned())), - }; + let mut request = connection.map_err(|e| NetworkError::from_hyper_error(&url, e))?; *request.headers_mut() = headers; Ok(request) @@ -505,35 +476,6 @@ fn obtain_response(request_factory: &NetworkHttpRequestFactory, } } -// FIXME: This incredibly hacky. Make it more robust, and at least test it. -fn is_cert_verify_error(error: &OpensslError) -> bool { - match error { - &OpensslError::UnknownError { ref library, ref function, ref reason } => { - library == "SSL routines" && - function.to_uppercase() == "SSL3_GET_SERVER_CERTIFICATE" && - reason == "certificate verify failed" - } - } -} - -fn is_unknown_message_digest_err(error: &OpensslError) -> bool { - match error { - &OpensslError::UnknownError { ref library, ref function, ref reason } => { - library == "asn1 encoding routines" && - function == "ASN1_item_verify" && - reason == "unknown message digest algorithm" - } - } -} - -fn format_ssl_error(error: &OpensslError) -> String { - match error { - &OpensslError::UnknownError { ref library, ref function, ref reason } => { - format!("{}: {} - {}", library, function, reason) - } - } -} - /// [HTTP fetch](https://fetch.spec.whatwg.org#http-fetch) pub fn http_fetch(request: Rc<Request>, cache: &mut CorsCache, |