smegmesh/pkg/conn/conn.go

117 lines
2.7 KiB
Go
Raw Normal View History

2023-10-01 20:01:35 +02:00
// conn manages gRPC connections between peers.
// Includes timers.
package conn
import (
"context"
2023-10-01 20:01:35 +02:00
"crypto/tls"
"errors"
"time"
2023-10-01 20:01:35 +02:00
"github.com/tim-beatham/wgmesh/pkg/lib"
2023-10-01 20:01:35 +02:00
logging "github.com/tim-beatham/wgmesh/pkg/log"
"github.com/tim-beatham/wgmesh/pkg/rpc"
2023-10-01 20:01:35 +02:00
"google.golang.org/grpc"
"google.golang.org/grpc/credentials"
"google.golang.org/grpc/metadata"
2023-10-01 20:01:35 +02:00
)
// PeerConnection interfacing for a secure connection between
// two peers.
type PeerConnection interface {
Connect() error
Close() error
Authenticate(meshId string) error
GetClient() (*grpc.ClientConn, error)
CreateAuthContext(meshId string) (context.Context, error)
2023-10-01 20:01:35 +02:00
}
type WgCtrlConnection struct {
clientConfig *tls.Config
conn *grpc.ClientConn
endpoint string
// tokens maps a meshID to the corresponding token
tokens map[string]string
2023-10-01 20:01:35 +02:00
}
func NewWgCtrlConnection(clientConfig *tls.Config, server string) (*WgCtrlConnection, error) {
var conn WgCtrlConnection
conn.tokens = make(map[string]string)
conn.clientConfig = clientConfig
conn.endpoint = server
return &conn, nil
}
func (c *WgCtrlConnection) Authenticate(meshId string) error {
conn, err := grpc.Dial(c.endpoint,
grpc.WithTransportCredentials(credentials.NewTLS(c.clientConfig)))
defer conn.Close()
2023-10-01 20:01:35 +02:00
if err != nil {
return err
2023-10-01 20:01:35 +02:00
}
ctx, cancel := context.WithTimeout(context.Background(), time.Second)
2023-10-01 20:01:35 +02:00
client := rpc.NewAuthenticationClient(conn)
defer cancel()
2023-10-01 20:01:35 +02:00
authRequest := rpc.JoinAuthMeshRequest{
MeshId: meshId,
Alias: lib.GetOutboundIP().String(),
2023-10-01 20:01:35 +02:00
}
reply, err := client.JoinMesh(ctx, &authRequest)
2023-10-01 20:01:35 +02:00
if err != nil {
return err
}
2023-10-01 20:01:35 +02:00
c.tokens[meshId] = *reply.Token
return nil
2023-10-01 20:01:35 +02:00
}
// ConnectWithToken: Connects to a new gRPC peer given the address of the other server.
func (c *WgCtrlConnection) Connect() error {
conn, err := grpc.Dial(c.endpoint,
grpc.WithTransportCredentials(credentials.NewTLS(c.clientConfig)),
)
2023-10-01 20:01:35 +02:00
if err != nil {
logging.ErrorLog.Printf("Could not connect: %s\n", err.Error())
return err
2023-10-01 20:01:35 +02:00
}
c.conn = conn
return nil
2023-10-01 20:01:35 +02:00
}
// Close: Closes the client connections
func (c *WgCtrlConnection) Close() error {
return c.conn.Close()
}
// GetClient: Gets the client connection
func (c *WgCtrlConnection) GetClient() (*grpc.ClientConn, error) {
var err error = nil
if c.conn == nil {
err = errors.New("The client's config does not exist")
}
return c.conn, err
}
// TODO: Implement a mechanism to attach a security token
func (c *WgCtrlConnection) CreateAuthContext(meshId string) (context.Context, error) {
token, ok := c.tokens[meshId]
if !ok {
return nil, errors.New("MeshID: " + meshId + " does not exist")
}
ctx := context.Background()
return metadata.AppendToOutgoingContext(ctx, "authorization", token), nil
2023-10-01 20:01:35 +02:00
}