Home Explore Help
Sign In
golang
/
nebula
mirror of https://github.com/slackhq/nebula
2
0
Fork 0
Files Issues 0 Wiki
Branch: add-http-pprof
Branches Tags
nebula
/
handshake.go

handshake.go 870 B
Permalink History Raw

12345678910111213141516171819202122232425262728293031 
  1. package nebula
    2. 

  2. 

  3. import (
    4. 

  4. 	"github.com/slackhq/nebula/header"
    5. 

  5. 	"github.com/slackhq/nebula/udp"
    6. 

  6. )
    7. 

  7. 

  8. func HandleIncomingHandshake(f *Interface, addr *udp.Addr, via *ViaSender, packet []byte, h *header.H, hostinfo *HostInfo) {
    9. 

  9. 	// First remote allow list check before we know the vpnIp
    10. 

  10. 	if addr != nil {
    11. 

  11. 		if !f.lightHouse.GetRemoteAllowList().AllowUnknownVpnIp(addr.IP) {
    12. 

  12. 			f.l.WithField("udpAddr", addr).Debug("lighthouse.remote_allow_list denied incoming handshake")
    13. 

  13. 			return
    14. 

  14. 		}
    15. 

  15. 	}
    16. 

  16. 

  17. 	switch h.Subtype {
    18. 

  18. 	case header.HandshakeIXPSK0:
    19. 

  19. 		switch h.MessageCounter {
    20. 

  20. 		case 1:
    21. 

  21. 			ixHandshakeStage1(f, addr, via, packet, h)
    22. 

  22. 		case 2:
    23. 

  23. 			newHostinfo, _ := f.handshakeManager.QueryIndex(h.RemoteIndex)
    24. 

  24. 			tearDown := ixHandshakeStage2(f, addr, via, newHostinfo, packet, h)
    25. 

  25. 			if tearDown && newHostinfo != nil {
    26. 

  26. 				f.handshakeManager.DeleteHostInfo(newHostinfo)
    27. 

  27. 			}
    28. 

  28. 		}
    29. 

  29. 	}
    30. 

  30. 

  31. }
    32.