Luca Fulchir
e2874451d1
Return error from parsing the encrypted ReqData
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-06-09 20:05:59 +02:00
Luca Fulchir
4df73b658a
Correctly test for equality the DirSync::Req
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-06-09 20:01:18 +02:00
Luca Fulchir
a6fda8180d
DNSSEC: move keys before addresses
...
it was kinda stupid to keep the keys *after* the addresses
but have the addresses keep an index to the array of pubkeys anyway
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-06-09 19:09:41 +02:00
Luca Fulchir
5625bd95a4
Test request serialization
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-06-09 19:06:58 +02:00
Luca Fulchir
55e10a60c6
Fix Dnssec record serializing/deserializing
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-06-09 14:55:49 +02:00
Luca Fulchir
787e11e8e4
Fixes for Hati
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-06-07 11:07:46 +02:00
Luca Fulchir
6da5464c68
Helpers for dnssec
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-06-06 22:37:34 +02:00
Luca Fulchir
3e09b9cee0
Send initial dirsync packet and handshake timeout
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-06-05 10:33:25 +02:00
Luca Fulchir
289c6c318e
More work on Dirsync request sending
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-06-05 09:18:32 +02:00
Luca Fulchir
9634fbba31
Move enc::sym::Secret to enc::Secret
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-06-01 12:56:52 +02:00
Luca Fulchir
5b338c8758
More on negotiation and dnssec record verification
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-06-01 12:52:43 +02:00
Luca Fulchir
08d2755656
KeyExchange->KeyExchangeKind for consistency
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-06-01 11:48:32 +02:00
Luca Fulchir
ac213a6528
More work on key exhcnage negotiation
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-06-01 11:41:10 +02:00
Luca Fulchir
1bae4c9953
DNSSEC: add ciphers/key exchanges/hkdfs
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-05-30 15:50:48 +02:00
Luca Fulchir
c6a3bf0820
More work on connect(), use our own Random
...
We use :💍 :rand::SystemRandom, but we need to wrap it
for a couple of traits needed by ::x25519_dalek
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-05-30 10:52:54 +02:00
Luca Fulchir
a3430f1813
Initial connections: share auth.server connection
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-05-28 18:23:14 +02:00
Luca Fulchir
110a346551
dnssec: use the proper enc::asym types
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-05-28 15:26:17 +02:00
Luca Fulchir
e581cb064a
Update architecture.md
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-05-27 11:10:29 +02:00
Luca Fulchir
1259996201
Connect boilerplate, cleanup
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-05-27 10:57:15 +02:00
Luca Fulchir
e71167224c
Track auth and service connections client side
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-05-26 15:02:21 +02:00
Luca Fulchir
4287540695
Upgrade flakes to 23.05
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-05-24 22:32:41 +02:00
Luca Fulchir
810cc16ce6
More thread-pinning work.
...
No more Arc<Connection>, Rc<Connection> is better on the same thread.
Track the thread number so we can generate the correct connection IDs
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-05-24 17:30:15 +02:00
Luca Fulchir
9b33ed8828
Refactor, more pinned-thread work
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-05-24 15:45:37 +02:00
Luca Fulchir
c0d6cf1824
Per-thread work loop
...
This will let us have a lot less locking.
We can do better in the future with ebpf and pinning connection to
a specific CPU with multiple listen() points on the same address,
but good enough for now
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-05-23 18:20:08 +02:00
Luca Fulchir
28cbe2ae20
more refactoring
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-05-22 15:05:17 +02:00
Luca Fulchir
ace56f32e7
refactor lib.rs in other files
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-05-17 12:05:13 +02:00
Luca Fulchir
a5f18ac533
DirSync::Resp work
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-05-17 10:26:39 +02:00
Luca Fulchir
7a129dbe90
Handhsake DirSync RespInner
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-05-11 11:28:30 +02:00
Luca Fulchir
d1e1006143
update flakes, randomize mutex
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-03-01 18:20:03 +01:00
Luca Fulchir
7bddc9bf55
ConnTrack with ciphers
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-26 10:44:21 +01:00
Luca Fulchir
f53ef95c73
Track new connection
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-25 22:25:52 +01:00
Luca Fulchir
bfe99b4c9c
Strong types for server/receiver and send packet
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-25 16:33:48 +01:00
Luca Fulchir
4157c207a3
DirSync response serialization
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-25 15:36:14 +01:00
Luca Fulchir
59394959bd
MPMC queue to distribute work on threads
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-24 22:00:56 +01:00
Luca Fulchir
0d33033c0b
SocketList: arcswap the list of SocketList
...
faster socket add/remove, so that we can search this list
to find with wich socket we should send
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-23 21:57:21 +01:00
Luca Fulchir
c3aff3e8df
Preparation work to write/encrypt response
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-22 21:10:00 +01:00
Luca Fulchir
9e1312b149
More work on authentication
...
Still lots of unfinished stuff
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-22 12:30:00 +01:00
Luca Fulchir
f5a605867e
token check function stubs
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-21 22:06:17 +01:00
Luca Fulchir
bb348f392e
Connect decrypt to the handshake req
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-17 23:30:19 +01:00
Luca Fulchir
1d5316c738
chacha20poly1305 decryption
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-17 23:09:49 +01:00
Luca Fulchir
a39767d32b
More work on ciphers and hkdf
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-17 14:59:02 +01:00
Luca Fulchir
238a0a5516
More work on handshake. obviously unfinished
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-16 19:11:45 +01:00
Luca Fulchir
e3af78eaba
Initial half-done Handshake stubs
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-15 15:50:54 +01:00
Luca Fulchir
70038b8558
License, ConnectionID, flake update
...
Clarified license with Apache2-with-LLVM exception
Initial connection id, updated flakes
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-15 11:14:13 +01:00
Luca Fulchir
fd76ec9983
Split resolving and decoding
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-09 12:12:09 +01:00
Luca Fulchir
2c00e57bc6
Public Key try_from_str
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-08 23:41:03 +01:00
Luca Fulchir
342a58272c
Decoding from string for Address
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-08 22:48:58 +01:00
Luca Fulchir
3797ca869d
DNSSEC resolver, record encoding/decoding
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-08 19:03:31 +01:00
Luca Fulchir
3e4ef61edb
DNSSEC resolver initialization
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-04 16:21:16 +01:00
Luca Fulchir
104cbb6126
Stub for libFenrir
...
Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>
2023-02-03 19:18:34 +01:00