1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
|
package eduvpn
import (
"fmt"
"io/ioutil"
"net/http"
)
func getFileUrl(url string) ([]byte, error) {
// Do a Get request to the specified url
resp, reqErr := http.Get(url)
if reqErr != nil {
return nil, detailedVPNError{errRequestFileError, fmt.Sprintf("request failed for file url %s", url), reqErr}
}
// Close the response body at the end
defer resp.Body.Close()
// Check if http response code is ok
if resp.StatusCode != http.StatusOK {
return nil, detailedVPNError{errRequestFileHTTPError, fmt.Sprintf("http status not ok for file url %s", url), nil}
}
// Read the body
body, readErr := ioutil.ReadAll(resp.Body)
if readErr != nil {
return nil, detailedVPNError{errRequestFileReadError, fmt.Sprintf("error reading body from file url %s", url), readErr}
}
return body, nil
}
// Helper function that gets a disco json
// TODO: Verify signature
func getDiscoFile(jsonFile string) (string, error) {
// Get json data
fileUrl := "https://disco.eduvpn.org/v2/" + jsonFile
fileBody, error := getFileUrl(fileUrl)
if error != nil {
return "", error
}
// Get signature
sigUrl := fileUrl + ".minisig"
sigBody, error := getFileUrl(sigUrl)
if error != nil {
return "", error
}
// Verify signature
// TODO: Handle this by keeping track of the previous sign time
// Wrappers must do this?
var previousSigTime uint64 = 0
forcePrehash := false
verifySuccess, verifyErr := Verify(string(sigBody), fileBody, jsonFile, previousSigTime, forcePrehash)
if !verifySuccess || verifyErr != nil {
return "", detailedVPNError{errVerifySigError, "Signature is not valid", verifyErr}
}
return string(fileBody), nil
}
// Get the organization list
func GetOrganizationsList() (string, error) {
body, err := getDiscoFile("organization_list.json")
if err != nil {
return "", err.(detailedRequestError).ToRequestError()
}
return body, nil
}
// Get the server list
func GetServersList() (string, error) {
body, err := getDiscoFile("server_list.json")
if err != nil {
return "", err.(detailedRequestError).ToRequestError()
}
return body, nil
}
// RequestErrorCode Simplified error code for public interface.
type RequestErrorCode = VPNErrorCode
type RequestError = VPNError
// detailedRequestErrorCode used for unit tests.
type detailedRequestErrorCode = detailedVPNErrorCode
type detailedRequestError = detailedVPNError
const (
ErrRequestFileError RequestErrorCode = iota + 1
ErrVerifySigError
)
const (
errRequestFileError detailedRequestErrorCode = iota + 1
errRequestFileHTTPError
errRequestFileReadError
errVerifySigError
)
func (err detailedRequestError) ToRequestError() RequestError {
return RequestError{err.Code.ToRequestErrorCode(), err}
}
func (code detailedRequestErrorCode) ToRequestErrorCode() RequestErrorCode {
switch code {
case errRequestFileError:
case errRequestFileReadError:
case errRequestFileHTTPError:
return ErrRequestFileError
case errVerifySigError:
return ErrVerifySigError
}
panic("invalid detailedRequestErrorCode")
}
|
