Achieve first working Announce registration for Guests
This commit is contained in:
@@ -13,7 +13,6 @@ futures = "0.3"
|
||||
rcgen = "0.12.0"
|
||||
tokio-rustls = "0.25.0"
|
||||
rustls-pemfile = "2.0.0"
|
||||
serde = { version = "1.0", features = ["derive"] }
|
||||
rmp-serde = "1.1.2"
|
||||
tracing = "0.1"
|
||||
console-subscriber = "0.2.0"
|
||||
tracing-subscriber = "0.3"
|
||||
@@ -1,37 +1,35 @@
|
||||
use std::sync::Arc;
|
||||
use futures::SinkExt;
|
||||
use futures::{StreamExt, SinkExt};
|
||||
use tokio::net::TcpStream;
|
||||
use tokio_rustls::rustls::{ClientConfig, RootCertStore};
|
||||
use tokio_rustls::rustls::pki_types::{ServerName};
|
||||
use tokio_rustls::rustls::pki_types::{ServerName, CertificateDer, PrivatePkcs8KeyDer};
|
||||
use tokio_rustls::TlsConnector;
|
||||
use tokio_util::codec::{Framed, LengthDelimitedCodec};
|
||||
use serde::{Serialize, Deserialize};
|
||||
use libbonknet::{load_cert, load_prkey, FromServerMessage};
|
||||
use libbonknet::*;
|
||||
use tracing::{info, error};
|
||||
|
||||
#[derive(Debug, Serialize, Deserialize)]
|
||||
enum ClientMessage {
|
||||
Response { status_code: u32, msg: Option<String> },
|
||||
Announce { name: String },
|
||||
Required { id: String },
|
||||
NotRequired { id: String },
|
||||
}
|
||||
|
||||
#[tokio::main]
|
||||
async fn main() -> std::io::Result<()> {
|
||||
let client_name = "Polnareffland1";
|
||||
// Tracing Subscriber
|
||||
let subscriber = tracing_subscriber::FmtSubscriber::new();
|
||||
tracing::subscriber::set_global_default(subscriber).unwrap();
|
||||
// Root certs to verify the server is the right one
|
||||
let mut broker_root_cert_store = RootCertStore::empty();
|
||||
let broker_root_cert_der = load_cert("certs/broker_root_cert.pem").unwrap();
|
||||
broker_root_cert_store.add(broker_root_cert_der).unwrap();
|
||||
// Auth Cert to send the server who am I
|
||||
// Public CA that will be used to generate the Server certificate
|
||||
let root_server_cert = load_cert("certs/server_root_cert.pem").unwrap();
|
||||
let server_cert = load_cert("certs/server_cert.pem").unwrap();
|
||||
let server_prkey = load_prkey("certs/server_key.pem").unwrap();
|
||||
// Guest CA
|
||||
let root_guestserver_cert = load_cert("certs/guestserver_root_cert.pem").unwrap();
|
||||
// Certificate used to do the first authentication
|
||||
let guestserver_cert = load_cert("certs/guestserver_cert.pem").unwrap();
|
||||
let guestserver_prkey = load_prkey("certs/guestserver_key.pem").unwrap();
|
||||
// Load TLS Config
|
||||
let tlsconfig = ClientConfig::builder()
|
||||
.with_root_certificates(broker_root_cert_store)
|
||||
.with_root_certificates(broker_root_cert_store.clone())
|
||||
// .with_no_client_auth();
|
||||
.with_client_auth_cert(vec![server_cert, root_server_cert], server_prkey.into())
|
||||
.with_client_auth_cert(vec![guestserver_cert, root_guestserver_cert], guestserver_prkey.into())
|
||||
.unwrap();
|
||||
let connector = TlsConnector::from(Arc::new(tlsconfig));
|
||||
let dnsname = ServerName::try_from("localhost").unwrap();
|
||||
@@ -40,14 +38,72 @@ async fn main() -> std::io::Result<()> {
|
||||
let stream = connector.connect(dnsname, stream).await?;
|
||||
|
||||
let mut transport = Framed::new(stream, LengthDelimitedCodec::new());
|
||||
|
||||
let msg1 = FromServerMessage::WhoAmI;
|
||||
transport.send(rmp_serde::to_vec(&msg1).unwrap().into()).await.unwrap();
|
||||
for i in 0..10 {
|
||||
let msg = FromServerMessage::ChangeName { name: format!("{client_name}-{i}") };
|
||||
transport.send(rmp_serde::to_vec(&msg).unwrap().into()).await.unwrap();
|
||||
tokio::time::sleep(std::time::Duration::from_secs(1)).await;
|
||||
let msg = FromGuestServerMessage::Announce { name: "cicciopizza".into() };
|
||||
transport.send(rmp_serde::to_vec(&msg).unwrap().into()).await.unwrap();
|
||||
let mut myserver_cert: Option<CertificateDer> = None;
|
||||
let mut myserver_prkey: Option<PrivatePkcs8KeyDer> = None;
|
||||
match transport.next().await {
|
||||
None => {
|
||||
info!("None in the transport.next() ???");
|
||||
}
|
||||
Some(item) => match item {
|
||||
Ok(buf) => {
|
||||
use ToGuestServerMessage::*;
|
||||
let msg: ToGuestServerMessage = rmp_serde::from_slice(&buf).unwrap();
|
||||
info!("{:?}", msg);
|
||||
match msg {
|
||||
OkAnnounce { server_cert, server_prkey } => {
|
||||
info!("Ok Announce");
|
||||
let (server_cert, server_prkey) = okannounce_to_cert(server_cert, server_prkey);
|
||||
myserver_cert = Some(server_cert);
|
||||
myserver_prkey = Some(server_prkey);
|
||||
}
|
||||
FailedNameAlreadyOccupied => {
|
||||
error!("Failed Announce");
|
||||
return Ok(());
|
||||
}
|
||||
}
|
||||
}
|
||||
Err(e) => {
|
||||
error!("Error: {:?}", e);
|
||||
}
|
||||
}
|
||||
}
|
||||
if let (Some(server_cert), Some(server_prkey)) = (myserver_cert, myserver_prkey) {
|
||||
let tlsconfig = ClientConfig::builder()
|
||||
.with_root_certificates(broker_root_cert_store)
|
||||
.with_client_auth_cert(vec![server_cert, root_server_cert], server_prkey.into())
|
||||
.unwrap();
|
||||
let connector = TlsConnector::from(Arc::new(tlsconfig));
|
||||
let dnsname = ServerName::try_from("localhost").unwrap();
|
||||
|
||||
let stream = TcpStream::connect("localhost:2541").await?;
|
||||
let stream = connector.connect(dnsname, stream).await?;
|
||||
let transport = Framed::new(stream, LengthDelimitedCodec::new());
|
||||
transport.for_each(|item| async move {
|
||||
match item {
|
||||
Ok(buf) => {
|
||||
use ToServerMessage::*;
|
||||
let msg: ToServerMessage = rmp_serde::from_slice(&buf).unwrap();
|
||||
match msg {
|
||||
Required { id } => {
|
||||
info!("I'm required with Connection ID {}", id);
|
||||
}
|
||||
YouAre(name) => match name {
|
||||
YouAreValues::Registered { name } => {
|
||||
info!("I am {}", name);
|
||||
}
|
||||
YouAreValues::NotRegistered => {
|
||||
info!("I'm not registered");
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
Err(e) => {
|
||||
error!("Error: {:?}", e);
|
||||
}
|
||||
}
|
||||
}).await;
|
||||
}
|
||||
Ok(())
|
||||
}
|
||||
Reference in New Issue
Block a user