Skip to content

Commit bf2f80b

Browse files
rdlowreyrdlowrey
committed
Merge branch 'PHP-5.4' into PHP-5.5
* PHP-5.4: Bug #41631: Fix regression from first attempt (6569db8) Bug #67965: Fix blocking behavior in non-blocking crypto streams
2 parents b9ac5e2 + 3728449 commit bf2f80b

File tree

1 file changed

+14
-12
lines changed

1 file changed

+14
-12
lines changed

ext/openssl/xp_ssl.c

Lines changed: 14 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -249,7 +249,7 @@ static size_t php_openssl_sockop_read(php_stream *stream, char *buf, size_t coun
249249
to hang forever. To avoid this scenario we poll with a timeout before performing
250250
the actual read. If it times out we're finished.
251251
*/
252-
if (sock->is_blocked) {
252+
if (sock->is_blocked && SSL_pending(sslsock->ssl_handle) == 0) {
253253
php_openssl_stream_wait_for_data(sock);
254254
if (sock->timeout_event) {
255255
stream->eof = 1;
@@ -881,17 +881,19 @@ static int php_openssl_sockop_cast(php_stream *stream, int castas, void **ret TS
881881

882882
case PHP_STREAM_AS_FD_FOR_SELECT:
883883
if (ret) {
884-
if (sslsock->ssl_active) {
885-
/* OpenSSL has an internal buffer which select() cannot see. If we don't
886-
fetch it into the stream's buffer, no activity will be reported on the
887-
stream even though there is data waiting to be read - but we only fetch
888-
the number of bytes OpenSSL has ready to give us since we weren't asked
889-
for any data at this stage. This is only likely to cause issues with
890-
non-blocking streams, but it's harmless to always do it. */
891-
int bytes;
892-
while ((bytes = SSL_pending(sslsock->ssl_handle)) > 0) {
893-
php_stream_fill_read_buffer(stream, (size_t)bytes);
894-
}
884+
/* OpenSSL has an internal buffer which select() cannot see. If we don't
885+
* fetch it into the stream's buffer, no activity will be reported on the
886+
* stream even though there is data waiting to be read - but we only fetch
887+
* the lower of bytes OpenSSL has ready to give us or chunk_size since we
888+
* weren't asked for any data at this stage. This is only likely to cause
889+
* issues with non-blocking streams, but it's harmless to always do it. */
890+
size_t pending;
891+
if (stream->writepos == stream->readpos
892+
&& sslsock->ssl_active
893+
&& (pending = (size_t)SSL_pending(sslsock->ssl_handle)) > 0) {
894+
php_stream_fill_read_buffer(stream, pending < stream->chunk_size
895+
? pending
896+
: stream->chunk_size);
895897
}
896898

897899
*(php_socket_t *)ret = sslsock->s.socket;

0 commit comments

Comments
 (0)