crypto/tls

3 years ago · a9873001f7
3 changed files with 31 additions and 24 deletions
--- a/proxy/config.go
+++ b/proxy/config.go
@ -60,6 +60,9 @@ type Stratum struct {
 	Listen   string `json:"listen"`
 	Timeout  string `json:"timeout"`
 	MaxConn  int    `json:"maxConn"`
+	TLS      bool   `json:"tls`
+	CertFile string `json:"certFile`
+	KeyFile  string `json:"keyFile`
 }

 type Upstream struct {
--- a/proxy/proxy.go
+++ b/proxy/proxy.go
@ -34,13 +34,6 @@ type ProxyServer struct {
 	sessionsMu sync.RWMutex
 	sessions   map[*Session]struct{}
 	timeout    time.Duration
-	Extranonce string
-}
-
-type jobDetails struct {
-	JobID      string
-	SeedHash   string
-	HeaderHash string
 }

 type Session struct {
@ -49,11 +42,9 @@ type Session struct {

 	// Stratum
 	sync.Mutex
-	conn           *net.TCPConn
+	conn           net.Conn
 	login          string
  lastErr error
-	subscriptionID string
-	JobDeatils     jobDetails
 }

 func NewProxy(cfg *Config, backend *storage.RedisClient) *ProxyServer {
--- a/proxy/stratum.go
+++ b/proxy/stratum.go
@ -2,6 +2,7 @@ package proxy

 import (
 	"bufio"
+  "crypto/tls"
 	"encoding/json"
 	"errors"
 	"io"
@ -17,14 +18,26 @@ const (
 )

 func (s *ProxyServer) ListenTCP() {
-	timeout := util.MustParseDuration(s.config.Proxy.Stratum.Timeout)
-	s.timeout = timeout
-
-	addr, err := net.ResolveTCPAddr("tcp4", s.config.Proxy.Stratum.Listen)
+	s.timeout = util.MustParseDuration(s.config.Proxy.Stratum.Timeout)
+
+	var err error
+	var server net.Listener
+	setKeepAlive := func(net.Conn) {}
+	if s.config.Proxy.Stratum.TLS {
+		var cert tls.Certificate
+		cert, err = tls.LoadX509KeyPair(s.config.Proxy.Stratum.CertFile, s.config.Proxy.Stratum.KeyFile)
 		if err != nil {
-		log.Fatalf("Error: %v", err)
+			log.Fatalln("Error loading certificate:", err)
+		}
+		tlsCfg := &tls.Config{Certificates: []tls.Certificate{cert}}
+		server, err = tls.Listen("tcp4", s.config.Proxy.Stratum.Listen, tlsCfg)
+	} else {
+		server, err = net.Listen("tcp4", s.config.Proxy.Stratum.Listen)
+		setKeepAlive = func(conn net.Conn) {
+			conn.(*net.TCPConn).SetKeepAlive(true)
+		}
 	}
-	server, err := net.ListenTCP("tcp4", addr)
+ 
 	if err != nil {
 		log.Fatalf("Error: %v", err)
 	}
@ -35,11 +48,11 @@ func (s *ProxyServer) ListenTCP() {
 	n := 0

 	for {
-		conn, err := server.AcceptTCP()
+		conn, err := server.Accept()
 		if err != nil {
 			continue
 		}
-		conn.SetKeepAlive(true)
+		setKeepAlive(conn)

 		ip, _, _ := net.SplitHostPort(conn.RemoteAddr().String())

@ -168,7 +181,7 @@ func (cs *Session) sendTCPError(id json.RawMessage, reply *ErrorReply) error {
 	return errors.New(reply.Message)
 }

-func (self *ProxyServer) setDeadline(conn *net.TCPConn) {
+func (self *ProxyServer) setDeadline(conn net.Conn) {
 	conn.SetDeadline(time.Now().Add(self.timeout))
 }