Add SSL support (#42)

myzhan · Jan 12, 2023 · d6eed4c · d6eed4c
1 parent 87e7b8e
commit d6eed4c
Show file tree

Hide file tree

Showing 3 changed files with 62 additions and 8 deletions.
diff --git a/client.go b/client.go
@@ -51,9 +51,16 @@ func (c *client) initProtocols(proto protocols.MessageProtocol) {
 }
 
 func (c *client) initTransports(addr string, config *Config) (err error) {
- c.transport, err = transports.NewSocket(addr, config.Timeout)
- if err != nil {
- return err
+ if config.TLSConfig == nil {
+ c.transport, err = transports.NewSocket(addr, config.Timeout)
+ if err != nil {
+ return err
+ }
+ } else {
+ c.transport, err = transports.NewSSLSocket(addr, config.TLSConfig)
+ if err != nil {
+ return err
+ }
  }
 
  if config.BufferSize > 0 {

diff --git a/config.go b/config.go
@@ -1,6 +1,9 @@
 package avroipc
 
-import "time"
+import (
+ "crypto/tls"
+ "time"
+)
 
 // Config provides a configuration for the client. Use the NewConfig method
 // to create an instance of the Config and set all necessary parameters of
@@ -36,6 +39,11 @@ type Config struct {
  //
  // Defaults to zero which means that the compression will be disabled.
  CompressionLevel int
+
+ // Use TLS Config
+ //
+ // Defaults to false
+ TLSConfig *tls.Config
 }
 
 // NewConfig returns a pointer to a new Config instance that is used to
@@ -44,11 +52,13 @@ type Config struct {
 // options in a single command. A NewConfig call may be also chained with
 // other methods to inline config creations.
 //
-// config := NewConfig()
-// config.WithTimeout(3*time.Second)
-// client, err := NewClientWithConfig(config)
+// config := NewConfig()
+// config.WithTimeout(3*time.Second)
+// client, err := NewClientWithConfig(config)
+//
 // or just
-// client, err := NewClientWithConfig(NewConfig().WithTimeout(3*time.Second))
+//
+// client, err := NewClientWithConfig(NewConfig().WithTimeout(3*time.Second))
 func NewConfig() *Config {
  return &Config{}
 }
@@ -76,3 +86,8 @@ func (c *Config) WithCompressionLevel(l int) *Config {
  c.CompressionLevel = l
  return c
 }
+
+func (c *Config) WithTLSConfig(cfg *tls.Config) *Config {
+ c.TLSConfig = cfg
+ return c
+}
diff --git a/transports/sslsocket.go b/transports/sslsocket.go
@@ -0,0 +1,32 @@
+package transports
+
+import (
+ "crypto/tls"
+ "fmt"
+ "net"
+)
+
+type sslsocket struct {
+ net.Conn
+}
+
+var _ Transport = new(sslsocket)
+
+func NewSSLSocket(hostPort string, tlsConfig *tls.Config) (Transport, error) {
+ addr, err := net.ResolveTCPAddr("tcp", hostPort)
+ if err != nil {
+ return nil, err
+ }
+
+ s := &sslsocket{}
+ s.Conn, err = tls.Dial(addr.Network(), addr.String(), tlsConfig)
+ if err != nil {
+ return nil, fmt.Errorf("TLS connection failed: %w", err)
+ }
+
+ return s, nil
+}
+
+func (s *sslsocket) Flush() error {
+ return nil
+}