141 lines
3.0 KiB
Go
141 lines
3.0 KiB
Go
package handshake
|
|
|
|
import (
|
|
"context"
|
|
"github.com/anyproto/any-sync/net/secureservice/handshake/handshakeproto"
|
|
"io"
|
|
)
|
|
|
|
func OutgoingHandshake(ctx context.Context, conn io.ReadWriteCloser, peerId string, cc CredentialChecker) (result Result, err error) {
|
|
if ctx == nil {
|
|
ctx = context.Background()
|
|
}
|
|
h := newHandshake()
|
|
done := make(chan struct{})
|
|
var (
|
|
res Result
|
|
resErr error
|
|
)
|
|
go func() {
|
|
defer close(done)
|
|
res, resErr = outgoingHandshake(h, conn, peerId, cc)
|
|
}()
|
|
select {
|
|
case <-done:
|
|
return res, resErr
|
|
case <-ctx.Done():
|
|
_ = conn.Close()
|
|
err = ctx.Err()
|
|
return
|
|
}
|
|
}
|
|
|
|
func outgoingHandshake(h *handshake, conn io.ReadWriteCloser, peerId string, cc CredentialChecker) (result Result, err error) {
|
|
defer h.release()
|
|
h.conn = conn
|
|
localCred := cc.MakeCredentials(peerId)
|
|
if err = h.writeCredentials(localCred); err != nil {
|
|
h.tryWriteErrAndClose(err)
|
|
return
|
|
}
|
|
msg, err := h.readMsg(msgTypeAck, msgTypeCred)
|
|
if err != nil {
|
|
h.tryWriteErrAndClose(err)
|
|
return
|
|
}
|
|
if msg.ack != nil {
|
|
if msg.ack.Error == handshakeproto.Error_InvalidCredentials {
|
|
err = ErrPeerDeclinedCredentials
|
|
return
|
|
}
|
|
err = HandshakeError{e: msg.ack.Error}
|
|
return
|
|
}
|
|
|
|
if result, err = cc.CheckCredential(peerId, msg.cred); err != nil {
|
|
h.tryWriteErrAndClose(err)
|
|
return
|
|
}
|
|
|
|
if err = h.writeAck(handshakeproto.Error_Null); err != nil {
|
|
h.tryWriteErrAndClose(err)
|
|
return
|
|
}
|
|
|
|
msg, err = h.readMsg(msgTypeAck)
|
|
if err != nil {
|
|
h.tryWriteErrAndClose(err)
|
|
return
|
|
}
|
|
if msg.ack.Error == handshakeproto.Error_Null {
|
|
return result, nil
|
|
} else {
|
|
_ = h.conn.Close()
|
|
err = HandshakeError{e: msg.ack.Error}
|
|
return
|
|
}
|
|
}
|
|
|
|
func IncomingHandshake(ctx context.Context, conn io.ReadWriteCloser, peerId string, cc CredentialChecker) (result Result, err error) {
|
|
if ctx == nil {
|
|
ctx = context.Background()
|
|
}
|
|
h := newHandshake()
|
|
done := make(chan struct{})
|
|
var (
|
|
res Result
|
|
resError error
|
|
)
|
|
go func() {
|
|
defer close(done)
|
|
res, resError = incomingHandshake(h, conn, peerId, cc)
|
|
}()
|
|
select {
|
|
case <-done:
|
|
return res, resError
|
|
case <-ctx.Done():
|
|
_ = conn.Close()
|
|
err = ctx.Err()
|
|
return
|
|
}
|
|
}
|
|
|
|
func incomingHandshake(h *handshake, conn io.ReadWriteCloser, peerId string, cc CredentialChecker) (result Result, err error) {
|
|
defer h.release()
|
|
h.conn = conn
|
|
|
|
msg, err := h.readMsg(msgTypeCred)
|
|
if err != nil {
|
|
h.tryWriteErrAndClose(err)
|
|
return
|
|
}
|
|
if result, err = cc.CheckCredential(peerId, msg.cred); err != nil {
|
|
h.tryWriteErrAndClose(err)
|
|
return
|
|
}
|
|
|
|
if err = h.writeCredentials(cc.MakeCredentials(peerId)); err != nil {
|
|
h.tryWriteErrAndClose(err)
|
|
return
|
|
}
|
|
|
|
msg, err = h.readMsg(msgTypeAck)
|
|
if err != nil {
|
|
h.tryWriteErrAndClose(err)
|
|
return
|
|
}
|
|
if msg.ack.Error != handshakeproto.Error_Null {
|
|
if msg.ack.Error == handshakeproto.Error_InvalidCredentials {
|
|
err = ErrPeerDeclinedCredentials
|
|
return
|
|
}
|
|
err = HandshakeError{e: msg.ack.Error}
|
|
return
|
|
}
|
|
if err = h.writeAck(handshakeproto.Error_Null); err != nil {
|
|
h.tryWriteErrAndClose(err)
|
|
return
|
|
}
|
|
return
|
|
}
|