YGGverse/aquatic
1
0
Fork 0
mirror of https://github.com/YGGverse/aquatic.git synced 2026-03-31 17:55:36 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

WIP: aquatic_ws: start work on wss (ws with tls)

Browse source
This commit is contained in:
Joakim Frostegård 2020-05-12 18:48:50 +02:00
parent 289658815c
commit de9a32840f
4 changed files with 181 additions and 77 deletions
Download patch file Download diff file Expand all files Collapse all files

1
Cargo.lock generated
View file

@ -98,6 +98,7 @@ dependencies = [
"indexmap", "indexmap",
"mimalloc", "mimalloc",
"mio", "mio",
"native-tls",
"net2", "net2",
"parking_lot", "parking_lot",
"quickcheck", "quickcheck",

1
aquatic_ws/Cargo.toml
View file

@ -21,6 +21,7 @@ hashbrown = { version = "0.7", features = ["serde"] }
indexmap = "1" indexmap = "1"
mimalloc = { version = "0.1", default-features = false } mimalloc = { version = "0.1", default-features = false }
mio = { version = "0.7", features = ["tcp", "os-poll", "os-util"] } mio = { version = "0.7", features = ["tcp", "os-poll", "os-util"] }
native-tls = "0.2"
net2 = "0.2" net2 = "0.2"
parking_lot = "0.10" parking_lot = "0.10"
rand = { version = "0.7", features = ["small_rng"] } rand = { version = "0.7", features = ["small_rng"] }

4
aquatic_ws/src/lib/config.rs
View file

@ -32,6 +32,8 @@ pub struct NetworkConfig {
pub peer_announce_interval: usize, // FIXME: should this really be in NetworkConfig? pub peer_announce_interval: usize, // FIXME: should this really be in NetworkConfig?
pub poll_event_capacity: usize, pub poll_event_capacity: usize,
pub poll_timeout_milliseconds: u64, pub poll_timeout_milliseconds: u64,
pub pkcs12_path: String,
pub pkcs12_password: String,
} }
@ -92,6 +94,8 @@ impl Default for NetworkConfig {
peer_announce_interval: 120, peer_announce_interval: 120,
poll_event_capacity: 4096, poll_event_capacity: 4096,
poll_timeout_milliseconds: 50, poll_timeout_milliseconds: 50,
pkcs12_path: "".into(),
pkcs12_password: "".into(),
} }
} }
} }

252
aquatic_ws/src/lib/network.rs
View file

@ -1,3 +1,5 @@
use std::fs::File;
use std::io::Read;
use std::net::{SocketAddr}; use std::net::{SocketAddr};
use std::time::{Duration, Instant}; use std::time::{Duration, Instant};
use std::io::ErrorKind; use std::io::ErrorKind;
@ -5,6 +7,7 @@ use std::io::ErrorKind;
use tungstenite::WebSocket; use tungstenite::WebSocket;
use tungstenite::handshake::{MidHandshake, HandshakeError, server::{ServerHandshake, NoCallback}}; use tungstenite::handshake::{MidHandshake, HandshakeError, server::{ServerHandshake, NoCallback}};
use hashbrown::HashMap; use hashbrown::HashMap;
use native_tls::{Identity, TlsAcceptor, TlsStream};
use net2::{TcpBuilder, unix::UnixTcpBuilderExt}; use net2::{TcpBuilder, unix::UnixTcpBuilderExt};
use mio::{Events, Poll, Interest, Token}; use mio::{Events, Poll, Interest, Token};
@ -15,23 +18,28 @@ use crate::config::Config;
use crate::protocol::*; use crate::protocol::*;
pub struct Connection { pub type Stream = TlsStream<TcpStream>;
valid_until: ValidUntil,
stage: ConnectionStage,
pub struct PeerConnection {
pub ws: WebSocket<Stream>,
pub peer_addr: SocketAddr,
pub valid_until: ValidUntil,
} }
pub enum ConnectionStage { pub enum ConnectionStage {
Stream(TcpStream), TcpStream(TcpStream),
MidHandshake(MidHandshake<ServerHandshake<TcpStream, DebugCallback>>), TlsMidHandshake(native_tls::MidHandshakeTlsStream<TcpStream>),
TlsStream(Stream),
WsHandshake(MidHandshake<ServerHandshake<Stream, DebugCallback>>),
Established(PeerConnection), Established(PeerConnection),
} }
pub struct PeerConnection { pub struct Connection {
pub ws: WebSocket<TcpStream>, valid_until: ValidUntil,
pub peer_addr: SocketAddr, stage: ConnectionStage,
pub valid_until: ValidUntil,
} }
@ -55,6 +63,62 @@ impl ::tungstenite::handshake::server::Callback for DebugCallback {
} }
fn close_and_deregister_connection(
poll: &mut Poll,
connection: &mut Connection,
){
match connection.stage {
ConnectionStage::TcpStream(ref mut stream) => {
poll.registry()
.deregister(stream)
.unwrap();
},
ConnectionStage::TlsMidHandshake(ref mut handshake) => {
poll.registry()
.deregister(handshake.get_mut())
.unwrap();
},
ConnectionStage::TlsStream(ref mut stream) => {
poll.registry()
.deregister(stream.get_mut())
.unwrap();
},
ConnectionStage::WsHandshake(ref mut handshake) => {
poll.registry()
.deregister(handshake.get_mut().get_mut().get_mut())
.unwrap();
},
ConnectionStage::Established(ref mut peer_connection) => {
if peer_connection.ws.can_read(){
peer_connection.ws.close(None).unwrap();
// Needs to be done after ws.close()
if let Err(err) = peer_connection.ws.write_pending(){
dbg!(err);
}
}
poll.registry()
.deregister(peer_connection.ws.get_mut().get_mut())
.unwrap();
},
}
}
fn remove_connection_if_exists(
poll: &mut Poll,
connections: &mut ConnectionMap,
token: Token,
){
if let Some(mut connection) = connections.remove(&token){
close_and_deregister_connection(poll, &mut connection);
connections.remove(&token);
}
}
// Close and remove inactive connections // Close and remove inactive connections
pub fn remove_inactive_connections( pub fn remove_inactive_connections(
poll: &mut Poll, poll: &mut Poll,
@ -64,30 +128,7 @@ pub fn remove_inactive_connections(
connections.retain(|_, connection| { connections.retain(|_, connection| {
if connection.valid_until.0 < now { if connection.valid_until.0 < now {
match connection.stage { close_and_deregister_connection(poll, connection);
ConnectionStage::Stream(ref mut stream) => {
poll.registry()
.deregister(stream)
.unwrap();
},
ConnectionStage::MidHandshake(ref mut handshake) => {
poll.registry()
.deregister(handshake.get_mut().get_mut())
.unwrap();
},
ConnectionStage::Established(ref mut peer_connection) => {
peer_connection.ws.close(None).unwrap();
// Needs to be done after ws.close()
if let Err(err) = peer_connection.ws.write_pending(){
dbg!(err);
}
poll.registry()
.deregister(peer_connection.ws.get_mut())
.unwrap();
},
}
println!("closing connection, it is inactive"); println!("closing connection, it is inactive");
@ -128,6 +169,27 @@ fn create_listener(config: &Config) -> ::std::net::TcpListener {
} }
fn create_tls_acceptor(
config: &Config,
) -> TlsAcceptor {
let mut identity_bytes = Vec::new();
let mut file = File::open(&config.network.pkcs12_path)
.expect("open pkcs12 file");
file.read_to_end(&mut identity_bytes).expect("read pkcs12 file");
let identity = Identity::from_pkcs12(
&mut identity_bytes,
&config.network.pkcs12_password
).expect("create pkcs12 identity");
let acceptor = TlsAcceptor::new(identity)
.expect("create TlsAcceptor");
acceptor
}
pub fn run_socket_worker( pub fn run_socket_worker(
config: Config, config: Config,
socket_worker_index: usize, socket_worker_index: usize,
@ -146,6 +208,8 @@ pub fn run_socket_worker(
.register(&mut listener, Token(0), Interest::READABLE) .register(&mut listener, Token(0), Interest::READABLE)
.unwrap(); .unwrap();
let tls_acceptor = create_tls_acceptor(&config);
let mut connections: ConnectionMap = HashMap::new(); let mut connections: ConnectionMap = HashMap::new();
let mut poll_token_counter = Token(0usize); let mut poll_token_counter = Token(0usize);
@ -169,9 +233,10 @@ pub fn run_socket_worker(
&mut poll_token_counter &mut poll_token_counter
); );
} else if event.is_readable(){ } else if event.is_readable(){
run_handshake_and_read_messages( run_handshakes_and_read_messages(
socket_worker_index, socket_worker_index,
&in_message_sender, &in_message_sender,
&tls_acceptor,
&mut poll, &mut poll,
&mut connections, &mut connections,
token, token,
@ -196,37 +261,6 @@ pub fn run_socket_worker(
} }
/// FIXME: close ws if not closed? Would be good in some cases, like when
/// connection removed because token has wrapped back, and generally when the
/// reason for removal is not that ws is already closed.
fn remove_connection_if_exists(
poll: &mut Poll,
connections: &mut ConnectionMap,
token: Token,
){
if let Some(connection) = connections.remove(&token){
match connection.stage {
ConnectionStage::Stream(mut stream) => {
poll.registry()
.deregister(&mut stream)
.unwrap();
},
ConnectionStage::MidHandshake(mut handshake) => {
poll.registry()
.deregister(handshake.get_mut().get_mut())
.unwrap();
}
ConnectionStage::Established(mut peer_connection) => {
poll.registry()
.deregister(peer_connection.ws.get_mut())
.unwrap();
}
};
connections.remove(&token);
}
}
fn accept_new_streams( fn accept_new_streams(
listener: &mut TcpListener, listener: &mut TcpListener,
@ -254,7 +288,7 @@ fn accept_new_streams(
let connection = Connection { let connection = Connection {
valid_until, valid_until,
stage: ConnectionStage::Stream(stream) stage: ConnectionStage::TcpStream(stream)
}; };
connections.insert(token, connection); connections.insert(token, connection);
@ -271,17 +305,57 @@ fn accept_new_streams(
} }
pub fn handle_handshake_result( pub fn handle_tls_handshake_result(
connections: &mut ConnectionMap, connections: &mut ConnectionMap,
poll_token: Token, poll_token: Token,
valid_until: ValidUntil, valid_until: ValidUntil,
result: Result<WebSocket<TcpStream>, HandshakeError<ServerHandshake<TcpStream, DebugCallback>>> , result: Result<TlsStream<TcpStream>, native_tls::HandshakeError<TcpStream>>,
) -> bool {
match result {
Ok(stream) => {
println!("handshake established");
let connection = Connection {
valid_until,
stage: ConnectionStage::TlsStream(stream)
};
connections.insert(poll_token, connection);
false
},
Err(native_tls::HandshakeError::WouldBlock(handshake)) => {
println!("interrupted");
let connection = Connection {
valid_until,
stage: ConnectionStage::TlsMidHandshake(handshake),
};
connections.insert(poll_token, connection);
true
},
Err(native_tls::HandshakeError::Failure(err)) => {
dbg!(err);
false
}
}
}
pub fn handle_ws_handshake_result(
connections: &mut ConnectionMap,
poll_token: Token,
valid_until: ValidUntil,
result: Result<WebSocket<Stream>, HandshakeError<ServerHandshake<Stream, DebugCallback>>> ,
) -> bool { ) -> bool {
match result { match result {
Ok(mut ws) => { Ok(mut ws) => {
println!("handshake established"); println!("handshake established");
let peer_addr = ws.get_mut().peer_addr().unwrap(); let peer_addr = ws.get_mut().get_mut().peer_addr().unwrap();
let peer_connection = PeerConnection { let peer_connection = PeerConnection {
ws, ws,
@ -303,7 +377,7 @@ pub fn handle_handshake_result(
let connection = Connection { let connection = Connection {
valid_until, valid_until,
stage: ConnectionStage::MidHandshake(handshake), stage: ConnectionStage::WsHandshake(handshake),
}; };
connections.insert(poll_token, connection); connections.insert(poll_token, connection);
@ -319,9 +393,10 @@ pub fn handle_handshake_result(
} }
pub fn run_handshake_and_read_messages( pub fn run_handshakes_and_read_messages(
socket_worker_index: usize, socket_worker_index: usize,
in_message_sender: &InMessageSender, in_message_sender: &InMessageSender,
tls_acceptor: &TlsAcceptor,
poll: &mut Poll, poll: &mut Poll,
connections: &mut ConnectionMap, connections: &mut ConnectionMap,
poll_token: Token, poll_token: Token,
@ -331,9 +406,8 @@ pub fn run_handshake_and_read_messages(
loop { loop {
let established = match connections.get(&poll_token).map(|c| &c.stage){ let established = match connections.get(&poll_token).map(|c| &c.stage){
Some(ConnectionStage::Stream(_)) => false,
Some(ConnectionStage::MidHandshake(_)) => false,
Some(ConnectionStage::Established(_)) => true, Some(ConnectionStage::Established(_)) => true,
Some(_) => false,
None => break, None => break,
}; };
@ -341,13 +415,37 @@ pub fn run_handshake_and_read_messages(
let conn = connections.remove(&poll_token).unwrap(); let conn = connections.remove(&poll_token).unwrap();
match conn.stage { match conn.stage {
ConnectionStage::Stream(stream) => { ConnectionStage::TcpStream(stream) => {
let stop_loop = handle_tls_handshake_result(
connections,
poll_token,
valid_until,
tls_acceptor.accept(stream)
);
if stop_loop {
break;
}
},
ConnectionStage::TlsMidHandshake(handshake) => {
let stop_loop = handle_tls_handshake_result(
connections,
poll_token,
valid_until,
handshake.handshake()
);
if stop_loop {
break;
}
},
ConnectionStage::TlsStream(stream) => {
let handshake_result = ::tungstenite::server::accept_hdr( let handshake_result = ::tungstenite::server::accept_hdr(
stream, stream,
DebugCallback DebugCallback
); );
let stop_loop = handle_handshake_result( let stop_loop = handle_ws_handshake_result(
connections, connections,
poll_token, poll_token,
valid_until, valid_until,
@ -358,8 +456,8 @@ pub fn run_handshake_and_read_messages(
break; break;
} }
}, },
ConnectionStage::MidHandshake(handshake) => { ConnectionStage::WsHandshake(handshake) => {
let stop_loop = handle_handshake_result( let stop_loop = handle_ws_handshake_result(
connections, connections,
poll_token, poll_token,
valid_until, valid_until,