Home Explore Help
Register Sign In
Apq
/
dockerfiles
mirror of https://github.com/stilleshan/dockerfiles.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: bc08f87b78
Branches Tags
dockerfiles
/
anylink
/
server
/
handler
/
dtls.go

dtls.go 2.2 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596 
  1. package handler
    2. 

  2. 

  3. import (
    4. 

  4. 	"context"
    5. 

  5. 	"crypto/tls"
    6. 

  6. 	"encoding/hex"
    7. 

  7. 	"errors"
    8. 

  8. 	"net"
    9. 

  9. 	"time"
    10. 

  10. 

  11. 	"github.com/bjdgyc/anylink/base"
    12. 

  12. 	"github.com/bjdgyc/anylink/sessdata"
    13. 

  13. 	"github.com/pion/dtls/v2"
    14. 

  14. 	"github.com/pion/dtls/v2/pkg/crypto/selfsign"
    15. 

  15. 	"github.com/pion/logging"
    16. 

  16. )
    17. 

  17. 

  18. func startDtls() {
    19. 

  19. 	if !base.Cfg.ServerDTLS {
    20. 

  20. 		return
    21. 

  21. 	}
    22. 

  22. 

  23. 	certificate, err := selfsign.GenerateSelfSigned()
    24. 

  24. 	if err != nil {
    25. 

  25. 		panic(err)
    26. 

  26. 	}
    27. 

  27. 	logf := logging.NewDefaultLoggerFactory()
    28. 

  28. 	logf.Writer = base.GetBaseLw()
    29. 

  29. 	// logf.DefaultLogLevel = logging.LogLevelTrace
    30. 

  30. 	logf.DefaultLogLevel = logging.LogLevelInfo
    31. 

  31. 

  32. 	// https://github.com/pion/dtls/pull/369
    33. 

  33. 	sessStore := &sessionStore{}
    34. 

  34. 

  35. 	config := &dtls.Config{
    36. 

  36. 		Certificates:         []tls.Certificate{certificate},
    37. 

  37. 		InsecureSkipVerify:   true,
    38. 

  38. 		ExtendedMasterSecret: dtls.DisableExtendedMasterSecret,
    39. 

  39. 		CipherSuites:         []dtls.CipherSuiteID{dtls.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256},
    40. 

  40. 		LoggerFactory:        logf,
    41. 

  41. 		MTU:                  BufferSize,
    42. 

  42. 		SessionStore:         sessStore,
    43. 

  43. 		ConnectContextMaker: func() (context.Context, func()) {
    44. 

  44. 			return context.WithTimeout(context.Background(), 5*time.Second)
    45. 

  45. 		},
    46. 

  46. 	}
    47. 

  47. 

  48. 	addr, err := net.ResolveUDPAddr("udp", base.Cfg.ServerDTLSAddr)
    49. 

  49. 	if err != nil {
    50. 

  50. 		panic(err)
    51. 

  51. 	}
    52. 

  52. 	ln, err := dtls.Listen("udp", addr, config)
    53. 

  53. 	if err != nil {
    54. 

  54. 		panic(err)
    55. 

  55. 	}
    56. 

  56. 

  57. 	base.Info("listen DTLS server", addr)
    58. 

  58. 

  59. 	for {
    60. 

  60. 		conn, err := ln.Accept()
    61. 

  61. 		if err != nil {
    62. 

  62. 			base.Error("DTLS Accept error", err)
    63. 

  63. 			continue
    64. 

  64. 		}
    65. 

  65. 

  66. 		go func() {
    67. 

  67. 			// time.Sleep(1 * time.Second)
    68. 

  68. 			cc := conn.(*dtls.Conn)
    69. 

  69. 			sessid := hex.EncodeToString(cc.ConnectionState().SessionID)
    70. 

  70. 			sess := sessdata.Dtls2Sess(sessid)
    71. 

  71. 			LinkDtls(conn, sess.CSess)
    72. 

  72. 		}()
    73. 

  73. 	}
    74. 

  74. }
    75. 

  75. 

  76. // https://github.com/pion/dtls/blob/master/session.go
    77. 

  77. type sessionStore struct{}
    78. 

  78. 

  79. func (ms *sessionStore) Set(key []byte, s dtls.Session) error {
    80. 

  80. 	return nil
    81. 

  81. }
    82. 

  82. 

  83. func (ms *sessionStore) Get(key []byte) (dtls.Session, error) {
    84. 

  84. 	k := hex.EncodeToString(key)
    85. 

  85. 	secret := sessdata.Dtls2MasterSecret(k)
    86. 

  86. 	if secret == "" {
    87. 

  87. 		return dtls.Session{}, errors.New("Dtls2MasterSecret is nil")
    88. 

  88. 	}
    89. 

  89. 

  90. 	masterSecret, _ := hex.DecodeString(secret)
    91. 

  91. 	return dtls.Session{ID: key, Secret: masterSecret}, nil
    92. 

  92. }
    93. 

  93. 

  94. func (ms *sessionStore) Del(key []byte) error {
    95. 

  95. 	return nil
    96. 

  96. }
    97.