tls_handshakes: add endpoint addresses to handshake list (#711)

* tls_handshakes: add IP addresses

* tls_handshakes: extract ip from tcp-connect

* tls_handshake: switched to trace event

* saver.go: get remoteAddr before handshake

Not sure whether this is strictly necessary, but I'd rather take the
remoteAddr before calling Handshake, just in case a future version
of the handshake closes the `conn`. In such a case, `conn.RemoteAddr`
would return `nil` and we would crash here.

This occurred to me while reading once again the diff before merging.

Co-authored-by: decfox <decfox>
Co-authored-by: Simone Basso <bassosimone@gmail.com>
This commit is contained in:
DecFox 2022-05-06 14:39:54 +05:30 committed by GitHub
parent b81af5b058
commit a72cc7151c
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
4 changed files with 6 additions and 0 deletions

View File

@ -314,6 +314,7 @@ func NewTLSHandshakesList(begin time.Time, events []trace.Event) []TLSHandshake
continue continue
} }
out = append(out, TLSHandshake{ out = append(out, TLSHandshake{
Address: ev.Address,
CipherSuite: ev.TLSCipherSuite, CipherSuite: ev.TLSCipherSuite,
Failure: NewFailure(ev.Err), Failure: NewFailure(ev.Err),
NegotiatedProtocol: ev.TLSNegotiatedProto, NegotiatedProtocol: ev.TLSNegotiatedProto,

View File

@ -526,6 +526,7 @@ func TestNewTLSHandshakesList(t *testing.T) {
Err: websocket.ErrReadLimit, Err: websocket.ErrReadLimit,
Time: begin.Add(17 * time.Millisecond), Time: begin.Add(17 * time.Millisecond),
}, { }, {
Address: "131.252.210.176:443",
Name: "tls_handshake_done", Name: "tls_handshake_done",
Err: io.EOF, Err: io.EOF,
NoTLSVerify: false, NoTLSVerify: false,
@ -542,6 +543,7 @@ func TestNewTLSHandshakesList(t *testing.T) {
}}, }},
}, },
want: []archival.TLSHandshake{{ want: []archival.TLSHandshake{{
Address: "131.252.210.176:443",
CipherSuite: "SUITE", CipherSuite: "SUITE",
Failure: archival.NewFailure(io.EOF), Failure: archival.NewFailure(io.EOF),
NegotiatedProtocol: "h2", NegotiatedProtocol: "h2",

View File

@ -29,9 +29,11 @@ func (h SaverTLSHandshaker) Handshake(
TLSServerName: config.ServerName, TLSServerName: config.ServerName,
Time: start, Time: start,
}) })
remoteAddr := conn.RemoteAddr().String()
tlsconn, state, err := h.TLSHandshaker.Handshake(ctx, conn, config) tlsconn, state, err := h.TLSHandshaker.Handshake(ctx, conn, config)
stop := time.Now() stop := time.Now()
h.Saver.Write(trace.Event{ h.Saver.Write(trace.Event{
Address: remoteAddr,
Duration: stop.Sub(start), Duration: stop.Sub(start),
Err: err, Err: err,
Name: "tls_handshake_done", Name: "tls_handshake_done",

View File

@ -163,6 +163,7 @@ type ArchivalTCPConnectStatus struct {
// //
// See https://github.com/ooni/spec/blob/master/data-formats/df-006-tlshandshake.md // See https://github.com/ooni/spec/blob/master/data-formats/df-006-tlshandshake.md
type ArchivalTLSOrQUICHandshakeResult struct { type ArchivalTLSOrQUICHandshakeResult struct {
Address string `json:"address"`
CipherSuite string `json:"cipher_suite"` CipherSuite string `json:"cipher_suite"`
Failure *string `json:"failure"` Failure *string `json:"failure"`
NegotiatedProtocol string `json:"negotiated_protocol"` NegotiatedProtocol string `json:"negotiated_protocol"`