diff options
author | Jorge Canizales <jcanizales@google.com> | 2015-08-05 18:50:08 -0700 |
---|---|---|
committer | Jorge Canizales <jcanizales@google.com> | 2015-08-05 19:40:47 -0700 |
commit | 8c5318a6d122e9b933abc43780c131838cebac80 (patch) | |
tree | 893da5ee46dbd7ff399db577d45a2c8aa7db3ace /src/objective-c/GRPCClient/private | |
parent | 145f865ce04659bf8759ac66f80ae9ef1c029d74 (diff) |
Return nil instead of assert when the test certs can’t be read
Diffstat (limited to 'src/objective-c/GRPCClient/private')
-rw-r--r-- | src/objective-c/GRPCClient/private/GRPCHost.m | 2 | ||||
-rw-r--r-- | src/objective-c/GRPCClient/private/GRPCSecureChannel.m | 38 |
2 files changed, 28 insertions, 12 deletions
diff --git a/src/objective-c/GRPCClient/private/GRPCHost.m b/src/objective-c/GRPCClient/private/GRPCHost.m index 452283c76e..781eab20c5 100644 --- a/src/objective-c/GRPCClient/private/GRPCHost.m +++ b/src/objective-c/GRPCClient/private/GRPCHost.m @@ -100,7 +100,7 @@ } - (grpc_call *)unmanagedCallWithPath:(NSString *)path completionQueue:(GRPCCompletionQueue *)queue { - if (!queue || !path) { + if (!queue || !path || !self.channel) { return NULL; } return grpc_channel_create_call(self.channel.unmanagedChannel, diff --git a/src/objective-c/GRPCClient/private/GRPCSecureChannel.m b/src/objective-c/GRPCClient/private/GRPCSecureChannel.m index 310fdb67c2..d3c4d41a13 100644 --- a/src/objective-c/GRPCClient/private/GRPCSecureChannel.m +++ b/src/objective-c/GRPCClient/private/GRPCSecureChannel.m @@ -35,11 +35,18 @@ #include <grpc/grpc_security.h> -static grpc_credentials *CertificatesAtPath(NSString *path) { - NSData *certsData = [NSData dataWithContentsOfFile:path]; - NSCAssert(certsData.length, @"No data read from %@", path); - NSString *certsString = [[NSString alloc] initWithData:certsData encoding:NSUTF8StringEncoding]; - return grpc_ssl_credentials_create(certsString.UTF8String, NULL); +// Returns NULL if the file at path couldn't be read. In that case, if errorPtr isn't NULL, +// *errorPtr will be an object describing what went wrong. +static grpc_credentials *CertificatesAtPath(NSString *path, NSError **errorPtr) { + NSString *certsContent = [NSString stringWithContentsOfFile:path + encoding:NSASCIIStringEncoding + error:errorPtr]; + if (!certsContent) { + // Passing NULL to grpc_ssl_credentials_create produces behavior we don't want, so return. + return NULL; + } + const char * asCString = [certsContent cStringUsingEncoding:NSASCIIStringEncoding]; + return grpc_ssl_credentials_create(asCString, NULL); } @implementation GRPCSecureChannel @@ -55,15 +62,24 @@ static grpc_credentials *CertificatesAtPath(NSString *path) { static grpc_credentials *kDefaultCertificates; static dispatch_once_t loading; dispatch_once(&loading, ^{ + NSString *defaultPath = @"gRPCCertificates.bundle/roots"; // .pem // Do not use NSBundle.mainBundle, as it's nil for tests of library projects. NSBundle *bundle = [NSBundle bundleForClass:self.class]; - NSString *certsPath = [bundle pathForResource:@"gRPCCertificates.bundle/roots" ofType:@"pem"]; - NSAssert(certsPath.length, - @"gRPCCertificates.bundle/roots.pem not found under %@. This file, with the root " - "certificates, is needed to establish TLS (HTTPS) connections.", bundle.bundlePath); - kDefaultCertificates = CertificatesAtPath(certsPath); + NSString *path = [bundle pathForResource:defaultPath ofType:@"pem"]; + NSError *error; + kDefaultCertificates = CertificatesAtPath(path, &error); + NSAssert(kDefaultCertificates, @"Could not read %@/%@.pem. This file, with the root " + "certificates, is needed to establish secure (TLS) connections. Because the file is " + "distributed with the gRPC library, this error is usually a sign that the library " + "wasn't configured correctly for your project. Error: %@", + bundle.bundlePath, defaultPath, error); }); - grpc_credentials *certificates = path ? CertificatesAtPath(path) : kDefaultCertificates; + + //TODO(jcanizales): Add NSError** parameter to the initializer. + grpc_credentials *certificates = path ? CertificatesAtPath(path, NULL) : kDefaultCertificates; + if (!certificates) { + return nil; + } // Ritual to pass the SSL host name override to the C library. grpc_channel_args channelArgs; |