Главная Обзор Помощь
Вход
yosoyhendrix
/
psiphon-tunnel-core
зеркало из https://github.com/Psiphon-Labs/psiphon-tunnel-core
1
0
Ответвить 0
Файлы Задачи 0 Вики
Дерево: beb281b43f
Ветки Метки
psiphon-tunnel-...
/
replace
/
dtls
/
flight2handler.go

flight2handler.go 2.2 KB
История Исходник

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071 
  1. // SPDX-FileCopyrightText: 2023 The Pion community <https://pion.ly>
    2. 

  2. // SPDX-License-Identifier: MIT
    3. 

  3. 

  4. package dtls
    5. 

  5. 

  6. import (
    7. 

  7. 	"bytes"
    8. 

  8. 	"context"
    9. 

  9. 	"errors"
    10. 

  10. 

  11. 	"github.com/pion/dtls/v2/pkg/protocol"
    12. 

  12. 	"github.com/pion/dtls/v2/pkg/protocol/alert"
    13. 

  13. 	"github.com/pion/dtls/v2/pkg/protocol/handshake"
    14. 

  14. 	"github.com/pion/dtls/v2/pkg/protocol/recordlayer"
    15. 

  15. )
    16. 

  16. 

  17. func flight2Parse(ctx context.Context, c flightConn, state *State, cache *handshakeCache, cfg *handshakeConfig) (flightVal, *alert.Alert, error) {
    18. 

  18. 	seq, msgs, ok := cache.fullPullMap(state.handshakeRecvSequence, state.cipherSuite,
    19. 

  19. 		handshakeCachePullRule{handshake.TypeClientHello, cfg.initialEpoch, true, false},
    20. 

  20. 	)
    21. 

  21. 	if !ok {
    22. 

  22. 		// Client may retransmit the first ClientHello when HelloVerifyRequest is dropped.
    23. 

  23. 		// Parse as flight 0 in this case.
    24. 

  24. 		return flight0Parse(ctx, c, state, cache, cfg)
    25. 

  25. 	}
    26. 

  26. 	state.handshakeRecvSequence = seq
    27. 

  27. 

  28. 	var clientHello *handshake.MessageClientHello
    29. 

  29. 

  30. 	// Validate type
    31. 

  31. 	if clientHello, ok = msgs[handshake.TypeClientHello].(*handshake.MessageClientHello); !ok {
    32. 

  32. 		return 0, &alert.Alert{Level: alert.Fatal, Description: alert.InternalError}, nil
    33. 

  33. 	}
    34. 

  34. 

  35. 	if !clientHello.Version.Equal(protocol.Version1_2) {
    36. 

  36. 		return 0, &alert.Alert{Level: alert.Fatal, Description: alert.ProtocolVersion}, errUnsupportedProtocolVersion
    37. 

  37. 	}
    38. 

  38. 

  39. 	if len(clientHello.Cookie) == 0 {
    40. 

  40. 		return 0, nil, nil
    41. 

  41. 	}
    42. 

  42. 	if !bytes.Equal(state.cookie, clientHello.Cookie) {
    43. 

  43. 		return 0, &alert.Alert{Level: alert.Fatal, Description: alert.AccessDenied}, errCookieMismatch
    44. 

  44. 	}
    45. 

  45. 	return flight4, nil, nil
    46. 

  46. }
    47. 

  47. 

  48. func flight2Generate(_ context.Context, _ flightConn, state *State, _ *handshakeCache, _ *handshakeConfig) ([]*packet, *alert.Alert, error) {
    49. 

  49. 

  50. 	// [Psiphon]
    51. 

  51. 	// With SetDTLSInsecureSkipHelloVerify set, this should never be called,
    52. 

  52. 	// so handshake randomization is not implemented here.
    53. 

  53. 	return nil, nil, errors.New("unexpected flight2Generate call")
    54. 

  54. 

  55. 	state.handshakeSendSequence = 0
    56. 

  56. 	return []*packet{
    57. 

  57. 		{
    58. 

  58. 			record: &recordlayer.RecordLayer{
    59. 

  59. 				Header: recordlayer.Header{
    60. 

  60. 					Version: protocol.Version1_2,
    61. 

  61. 				},
    62. 

  62. 				Content: &handshake.Handshake{
    63. 

  63. 					Message: &handshake.MessageHelloVerifyRequest{
    64. 

  64. 						Version: protocol.Version1_2,
    65. 

  65. 						Cookie:  state.cookie,
    66. 

  66. 					},
    67. 

  67. 				},
    68. 

  68. 			},
    69. 

  69. 		},
    70. 

  70. 	}, nil, nil
    71. 

  71. }
    72.