handshake_dir_sync #2

luca.fulchir · 2023-06-17T09:38:03Z

luca.fulchir commented

2023-06-17 09:38:03 +00:00

Finally broken and fixed enough stuff that we have a working handshake between client and server!

luca.fulchir added 33 commits 2023-06-17 09:38:04 +00:00

Handhsake DirSync RespInner 7a129dbe90

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

DirSync::Resp work a5f18ac533

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

refactor lib.rs in other files ace56f32e7

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

more refactoring 28cbe2ae20

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Per-thread work loop c0d6cf1824

This will let us have a lot less locking.
We can do better in the future with ebpf and pinning connection to
a specific CPU with multiple listen() points on the same address,
but good enough for now

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Refactor, more pinned-thread work 9b33ed8828

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

More thread-pinning work. 810cc16ce6

No more Arc<Connection>, Rc<Connection> is better on the same thread.
Track the thread number so we can generate the correct connection IDs

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Upgrade flakes to 23.05 4287540695

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Track auth and service connections client side e71167224c

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Connect boilerplate, cleanup 1259996201

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Update architecture.md e581cb064a

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

dnssec: use the proper enc::asym types 110a346551

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Initial connections: share auth.server connection a3430f1813

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

More work on connect(), use our own Random c6a3bf0820

We use :💍:rand::SystemRandom, but we need to wrap it
for a couple of traits needed by ::x25519_dalek

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

DNSSEC: add ciphers/key exchanges/hkdfs 1bae4c9953

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

More work on key exhcnage negotiation ac213a6528

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

KeyExchange->KeyExchangeKind for consistency 08d2755656

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

More on negotiation and dnssec record verification 5b338c8758

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Move enc::sym::Secret to enc::Secret 9634fbba31

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

More work on Dirsync request sending 289c6c318e

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Send initial dirsync packet and handshake timeout 3e09b9cee0

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Helpers for dnssec 6da5464c68

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Fixes for Hati 787e11e8e4

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Fix Dnssec record serializing/deserializing 55e10a60c6

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Test request serialization 5625bd95a4

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

DNSSEC: move keys before addresses a6fda8180d

it was kinda stupid to keep the keys *after* the addresses
but have the addresses keep an index to the array of pubkeys anyway

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Correctly test for equality the DirSync::Req 4df73b658a

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Return error from parsing the encrypted ReqData e2874451d1

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Add the git pre-commit hook a32dfe098f

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Test (de)serialization of DirSync::Resp faaf8762c7

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Cleanup & incomplete tests aff1c313f5

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

Test and fix shutdowns b682068dca

we have a Quick but partial shutdown, which lets the async "threads"
work in the background and shutdown after a bit more time

and the graceful/full shutdown, which waits for everything.

Unfortunately `Drop` can't manage async and blocks everything,
no way to yeld either, so if we only have a thread
we would deadlock if we tried to stop things gracefully

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

TONS of bugfixing. Add tests. Client now connects 866edc2d7d

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

luca.fulchir added this to the Handshakes Support milestone 2023-06-17 09:38:55 +00:00

luca.fulchir added this to the Kanboard project 2023-06-17 09:38:59 +00:00

luca.fulchir added the

enhancement

label 2023-06-17 09:39:19 +00:00

luca.fulchir added 1 commit 2023-06-17 12:07:31 +00:00

Remove some warnings 376e8fb833

Signed-off-by: Luca Fulchir <luca.fulchir@runesauth.com>

luca.fulchir self-assigned this 2023-06-17 12:13:11 +00:00

luca.fulchir added a new dependency 2023-06-20 16:26:30 +00:00

#4 namespace

dexter commented

2023-06-27 19:48:33 +00:00

LGTM

luca.fulchir closed this pull request

2023-06-28 16:54:19 +00:00

luca.fulchir reopened this pull request

2023-06-28 16:56:31 +00:00

luca.fulchir manually merged commit d6825980fd into main

2023-06-28 16:56:32 +00:00

Sign in to join this conversation.

No reviewers

No Label

No Milestone

No project

No Assignees

2 Participants

Notifications

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Blocks

#4 namespace

RunesAuth/libFenrir

Reference: RunesAuth/libFenrir#2