Last active
August 15, 2023 04:36
-
-
Save FZambia/07dca3a7a75a264746101cd5657f1150 to your computer and use it in GitHub Desktop.
Experimenting with QUIC and WebTransport in Go, see original post: https://centrifugal.github.io/centrifugo/blog/quic_web_transport/
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "context" | |
| "crypto/tls" | |
| "encoding/binary" | |
| "errors" | |
| "io" | |
| "log" | |
| "net/url" | |
| "github.com/lucas-clemente/quic-go" | |
| ) | |
| const ( | |
| // https://tools.ietf.org/html/draft-vvv-webtransport-quic-02#section-3.1 | |
| alpnQuicTransport = "wq-vvv-01" | |
| // https://tools.ietf.org/html/draft-vvv-webtransport-quic-02#section-3.2 | |
| maxClientIndicationLength = 65535 | |
| ) | |
| type clientIndicationKey int16 | |
| const ( | |
| clientIndicationKeyOrigin clientIndicationKey = 0 | |
| clientIndicationKeyPath = 1 | |
| ) | |
| // ClientIndication, see https://tools.ietf.org/html/draft-vvv-webtransport-quic-02#section-3.2 | |
| type ClientIndication struct { | |
| // Origin indication value. | |
| Origin string | |
| // Path indication value. | |
| Path string | |
| } | |
| // Config for WebTransportServerQuic. | |
| type Config struct { | |
| // ListenAddr sets an address to bind server to. | |
| ListenAddr string | |
| // TLSCertPath defines a path to .crt cert file. | |
| TLSCertPath string | |
| // TLSKeyPath defines a path to .key cert file | |
| TLSKeyPath string | |
| // AllowedOrigins represents list of allowed origins to connect from. | |
| AllowedOrigins []string | |
| } | |
| // WebTransportServerQuic can handle WebTransport QUIC connections. | |
| // This example only shows bidirectional streams in action. Unidirectional | |
| // stream communication is also possible but not implemented here. For unreliable | |
| // communication with UDP datagram mentioned in | |
| // https://tools.ietf.org/html/draft-vvv-webtransport-quic-02#section-5 | |
| // quic-go should implement https://tools.ietf.org/html/draft-ietf-quic-datagram-00 | |
| // draft (there is an ongoing pull request – see https://github.com/lucas-clemente/quic-go/pull/2162). | |
| type WebTransportServerQuic struct { | |
| config Config | |
| } | |
| // NewWebTransportServerQuic creates new WebTransportServerQuic. | |
| func NewWebTransportServerQuic(config Config) *WebTransportServerQuic { | |
| return &WebTransportServerQuic{ | |
| config: config, | |
| } | |
| } | |
| // Run server. | |
| func (s *WebTransportServerQuic) Run() error { | |
| listener, err := quic.ListenAddr(s.config.ListenAddr, s.generateTLSConfig(), nil) | |
| if err != nil { | |
| return err | |
| } | |
| for { | |
| sess, err := listener.Accept(context.Background()) | |
| if err != nil { | |
| return err | |
| } | |
| log.Printf("session accepted: %s", sess.RemoteAddr().String()) | |
| go func() { | |
| defer func() { | |
| _ = sess.CloseWithError(0, "bye") | |
| log.Printf("close session: %s", sess.RemoteAddr().String()) | |
| }() | |
| s.handleSession(sess) | |
| }() | |
| } | |
| } | |
| func (s *WebTransportServerQuic) handleSession(sess quic.Session) { | |
| stream, err := sess.AcceptUniStream(context.Background()) | |
| if err != nil { | |
| log.Println(err) | |
| return | |
| } | |
| log.Printf("unidirectional stream accepted, id: %d", stream.StreamID()) | |
| indication, err := receiveClientIndication(stream) | |
| if err != nil { | |
| log.Println(err) | |
| return | |
| } | |
| log.Printf("client indication: %+v", indication) | |
| if err := s.validateClientIndication(indication); err != nil { | |
| log.Println(err) | |
| return | |
| } | |
| err = s.communicate(sess) | |
| if err != nil { | |
| log.Println(err) | |
| return | |
| } | |
| } | |
| func (s *WebTransportServerQuic) communicate(sess quic.Session) error { | |
| for { | |
| stream, err := sess.AcceptStream(context.Background()) | |
| if err != nil { | |
| return err | |
| } | |
| log.Printf("bidirectional stream accepted: %d", stream.StreamID()) | |
| if _, err := io.Copy(loggingWriter{stream}, loggingReader{stream}); err != nil { | |
| return err | |
| } | |
| log.Printf("bidirectional stream closed: %d", stream.StreamID()) | |
| } | |
| } | |
| // The client indication is a sequence of key-value pairs that are | |
| // formatted in the following way: | |
| // | |
| // 0 1 2 3 | |
| // 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 | |
| // +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | |
| // | Key (16) | Length (16) | | |
| // +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | |
| // | Value (*) ... | |
| // +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | |
| func receiveClientIndication(stream quic.ReceiveStream) (ClientIndication, error) { | |
| var clientIndication ClientIndication | |
| reader := io.LimitReader(stream, maxClientIndicationLength) | |
| done := false | |
| for { | |
| if done { | |
| break | |
| } | |
| var key int16 | |
| err := binary.Read(reader, binary.BigEndian, &key) | |
| if err != nil { | |
| if err == io.EOF { | |
| done = true | |
| } else { | |
| return clientIndication, err | |
| } | |
| } | |
| var valueLength int16 | |
| err = binary.Read(reader, binary.BigEndian, &valueLength) | |
| if err != nil { | |
| return clientIndication, err | |
| } | |
| buf := make([]byte, valueLength) | |
| n, err := reader.Read(buf) | |
| if err != nil { | |
| if err == io.EOF { | |
| done = true | |
| } else { | |
| return clientIndication, err | |
| } | |
| } | |
| if int16(n) != valueLength { | |
| return clientIndication, errors.New("read less than expected") | |
| } | |
| value := string(buf) | |
| switch clientIndicationKey(key) { | |
| case clientIndicationKeyOrigin: | |
| clientIndication.Origin = value | |
| case clientIndicationKeyPath: | |
| clientIndication.Path = value | |
| default: | |
| log.Printf("skip unknown client indication key: %d: %s", key, value) | |
| } | |
| } | |
| return clientIndication, nil | |
| } | |
| func (s *WebTransportServerQuic) generateTLSConfig() *tls.Config { | |
| cert, err := tls.LoadX509KeyPair(s.config.TLSCertPath, s.config.TLSKeyPath) | |
| if err != nil { | |
| log.Fatal(err) | |
| } | |
| return &tls.Config{ | |
| Certificates: []tls.Certificate{cert}, | |
| NextProtos: []string{alpnQuicTransport}, | |
| } | |
| } | |
| var errBadOrigin = errors.New("bad origin") | |
| func (s *WebTransportServerQuic) validateClientIndication(indication ClientIndication) error { | |
| u, err := url.Parse(indication.Origin) | |
| if err != nil { | |
| return errBadOrigin | |
| } | |
| if !stringInSlice(u.Host, s.config.AllowedOrigins) { | |
| return errBadOrigin | |
| } | |
| return nil | |
| } | |
| func stringInSlice(a string, list []string) bool { | |
| for _, b := range list { | |
| if b == a { | |
| return true | |
| } | |
| } | |
| return false | |
| } | |
| // A wrapper for io.Writer that also logs the message. | |
| type loggingWriter struct{ io.Writer } | |
| func (w loggingWriter) Write(b []byte) (int, error) { | |
| log.Printf("---> %s", string(b)) | |
| return w.Writer.Write(b) | |
| } | |
| // A wrapper for io.Reader that also logs the message. | |
| type loggingReader struct{ io.Reader } | |
| func (r loggingReader) Read(buf []byte) (n int, err error) { | |
| n, err = r.Reader.Read(buf) | |
| if n > 0 { | |
| log.Printf("<--- %s", string(buf[:n])) | |
| } | |
| return | |
| } | |
| func main() { | |
| server := NewWebTransportServerQuic(Config{ | |
| ListenAddr: "0.0.0.0:4433", | |
| TLSCertPath: "server.crt", | |
| TLSKeyPath: "server.key", | |
| AllowedOrigins: []string{"localhost", "googlechrome.github.io"}, | |
| }) | |
| if err := server.Run(); err != nil { | |
| log.Fatal(err) | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment