xmpp-rs-mirror/src/client/auth.rs

use std::mem::replace;
use std::str::FromStr;
use futures::{Future, Poll, Async, sink, Stream};
use tokio_io::{AsyncRead, AsyncWrite};
use sasl::common::Credentials;
use sasl::common::scram::{Sha1, Sha256};
use sasl::client::Mechanism;
use sasl::client::mechanisms::{Scram, Plain, Anonymous};
use minidom::Element;
use xmpp_parsers::sasl::{Auth, Challenge, Response, Success, Failure, Mechanism as XMPPMechanism};
use try_from::TryFrom;

use xmpp_codec::Packet;
use xmpp_stream::XMPPStream;
use stream_start::StreamStart;
use {Error, AuthError, ProtocolError};

const NS_XMPP_SASL: &str = "urn:ietf:params:xml:ns:xmpp-sasl";


pub struct ClientAuth<S: AsyncWrite> {
    state: ClientAuthState<S>,
    mechanism: Box<Mechanism>,
}

enum ClientAuthState<S: AsyncWrite> {
    WaitSend(sink::Send<XMPPStream<S>>),
    WaitRecv(XMPPStream<S>),
    Start(StreamStart<S>),
    Invalid,
}

impl<S: AsyncWrite> ClientAuth<S> {
    pub fn new(stream: XMPPStream<S>, creds: Credentials) -> Result<Self, Error> {
        let mechs: Vec<Box<Mechanism>> = vec![
            Box::new(Scram::<Sha256>::from_credentials(creds.clone()).unwrap()),
            Box::new(Scram::<Sha1>::from_credentials(creds.clone()).unwrap()),
            Box::new(Plain::from_credentials(creds).unwrap()),
            Box::new(Anonymous::new()),
        ];

        let mech_names: Vec<String> =
            match stream.stream_features.get_child("mechanisms", NS_XMPP_SASL) {
                None =>
                    return Err(AuthError::NoMechanism.into()),
                Some(mechs) =>
                    mechs.children()
                    .filter(|child| child.is("mechanism", NS_XMPP_SASL))
                    .map(|mech_el| mech_el.text())
                    .collect(),
            };
        // println!("SASL mechanisms offered: {:?}", mech_names);

        for mut mech in mechs {
            let name = mech.name().to_owned();
            if mech_names.iter().any(|name1| *name1 == name) {
                // println!("SASL mechanism selected: {:?}", name);
                let initial = match mech.initial() {
                    Ok(initial) => initial,
                    Err(e) => return Err(AuthError::Sasl(e).into()),
                };
                let mut this = ClientAuth {
                    state: ClientAuthState::Invalid,
                    mechanism: mech,
                };
                let mechanism = match XMPPMechanism::from_str(&name) {
                    Ok(mechanism) => mechanism,
                    Err(e) => return Err(ProtocolError::Parsers(e).into()),
                };
                this.send(
                    stream,
                    Auth {
                        mechanism,
                        data: initial,
                    }
                );
                return Ok(this);
            }
        }

        Err(AuthError::NoMechanism.into())
    }

    fn send<N: Into<Element>>(&mut self, stream: XMPPStream<S>, nonza: N) {
        let send = stream.send_stanza(nonza);

        self.state = ClientAuthState::WaitSend(send);
    }
}

impl<S: AsyncRead + AsyncWrite> Future for ClientAuth<S> {
    type Item = XMPPStream<S>;
    type Error = Error;

    fn poll(&mut self) -> Poll<Self::Item, Self::Error> {
        let state = replace(&mut self.state, ClientAuthState::Invalid);

        match state {
            ClientAuthState::WaitSend(mut send) =>
                match send.poll() {
                    Ok(Async::Ready(stream)) => {
                        self.state = ClientAuthState::WaitRecv(stream);
                        self.poll()
                    },
                    Ok(Async::NotReady) => {
                        self.state = ClientAuthState::WaitSend(send);
                        Ok(Async::NotReady)
                    },
                    Err(e) =>
                        Err(e.into()),
                },
            ClientAuthState::WaitRecv(mut stream) =>
                match stream.poll() {
                    Ok(Async::Ready(Some(Packet::Stanza(stanza)))) => {
                        if let Ok(challenge) = Challenge::try_from(stanza.clone()) {
                            let response = self.mechanism.response(&challenge.data)
                                .map_err(AuthError::Sasl)?;
                            self.send(stream, Response { data: response });
                            self.poll()
                        } else if let Ok(_) = Success::try_from(stanza.clone()) {
                            let start = stream.restart();
                            self.state = ClientAuthState::Start(start);
                            self.poll()
                        } else if let Ok(failure) = Failure::try_from(stanza) {
                            Err(AuthError::Fail(failure.defined_condition).into())
                        } else {
                            Ok(Async::NotReady)
                        }
                    }
                    Ok(Async::Ready(_event)) => {
                        // println!("ClientAuth ignore {:?}", _event);
                        Ok(Async::NotReady)
                    },
                    Ok(_) => {
                        self.state = ClientAuthState::WaitRecv(stream);
                        Ok(Async::NotReady)
                    },
                    Err(e) =>
                        Err(ProtocolError::Parser(e).into())
                },
            ClientAuthState::Start(mut start) =>
                match start.poll() {
                    Ok(Async::Ready(stream)) =>
                        Ok(Async::Ready(stream)),
                    Ok(Async::NotReady) => {
                        self.state = ClientAuthState::Start(start);
                        Ok(Async::NotReady)
                    },
                    Err(e) =>
                        Err(e.into())
                },
            ClientAuthState::Invalid =>
                unreachable!(),
        }
    }
}
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`use std::mem::replace;`
client::auth: update xmpp-parsers usage 2018-08-02 23:11:55 +00:00			`use std::str::FromStr;`
more replacement with xmpp-parsers 2018-08-01 23:01:41 +00:00			`use futures::{Future, Poll, Async, sink, Stream};`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`use tokio_io::{AsyncRead, AsyncWrite};`
			`use sasl::common::Credentials;`
don’t use wildcard use 2017-07-18 20:54:10 +00:00			`use sasl::common::scram::{Sha1, Sha256};`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`use sasl::client::Mechanism;`
don’t use wildcard use 2017-07-18 20:54:10 +00:00			`use sasl::client::mechanisms::{Scram, Plain, Anonymous};`
more replacement with xmpp-parsers 2018-08-01 23:01:41 +00:00			`use minidom::Element;`
replace parts of client::auth with xmpp-parsers 2018-08-02 16:12:41 +00:00			`use xmpp_parsers::sasl::{Auth, Challenge, Response, Success, Failure, Mechanism as XMPPMechanism};`
			`use try_from::TryFrom;`
add client_auth using sasl 2017-06-05 23:29:20 +00:00
don’t use wildcard use 2017-07-18 20:54:10 +00:00			`use xmpp_codec::Packet;`
			`use xmpp_stream::XMPPStream;`
			`use stream_start::StreamStart;`
unstringify Error type 2018-09-06 15:46:06 +00:00			`use {Error, AuthError, ProtocolError};`
add client_auth using sasl 2017-06-05 23:29:20 +00:00
			`const NS_XMPP_SASL: &str = "urn:ietf:params:xml:ns:xmpp-sasl";`

unstringify Error type 2018-09-06 15:46:06 +00:00
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`pub struct ClientAuth<S: AsyncWrite> {`
			`state: ClientAuthState<S>,`
			`mechanism: Box<Mechanism>,`
			`}`

			`enum ClientAuthState<S: AsyncWrite> {`
			`WaitSend(sink::Send<XMPPStream<S>>),`
			`WaitRecv(XMPPStream<S>),`
client_auth: add stream restart 2017-06-05 23:38:48 +00:00			`Start(StreamStart<S>),`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`Invalid,`
			`}`

			`impl<S: AsyncWrite> ClientAuth<S> {`
unstringify Error type 2018-09-06 15:46:06 +00:00			`pub fn new(stream: XMPPStream<S>, creds: Credentials) -> Result<Self, Error> {`
client::auth: update xmpp-parsers usage 2018-08-02 23:11:55 +00:00			`let mechs: Vec<Box<Mechanism>> = vec![`
			`Box::new(Scram::<Sha256>::from_credentials(creds.clone()).unwrap()),`
			`Box::new(Scram::<Sha1>::from_credentials(creds.clone()).unwrap()),`
			`Box::new(Plain::from_credentials(creds).unwrap()),`
			`Box::new(Anonymous::new()),`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`];`

			`let mech_names: Vec<String> =`
switch from rustxml to minidom, doesn't work 2017-07-17 18:53:00 +00:00			`match stream.stream_features.get_child("mechanisms", NS_XMPP_SASL) {`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`None =>`
unstringify Error type 2018-09-06 15:46:06 +00:00			`return Err(AuthError::NoMechanism.into()),`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`Some(mechs) =>`
switch from rustxml to minidom, doesn't work 2017-07-17 18:53:00 +00:00			`mechs.children()`
			`.filter(\|child\| child.is("mechanism", NS_XMPP_SASL))`
			`.map(\|mech_el\| mech_el.text())`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`.collect(),`
			`};`
comment debug output 2018-08-02 23:14:21 +00:00			`// println!("SASL mechanisms offered: {:?}", mech_names);`
add client_auth using sasl 2017-06-05 23:29:20 +00:00
client::auth: update xmpp-parsers usage 2018-08-02 23:11:55 +00:00			`for mut mech in mechs {`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`let name = mech.name().to_owned();`
			`if mech_names.iter().any(\|name1\| *name1 == name) {`
comment debug output 2018-08-02 23:14:21 +00:00			`// println!("SASL mechanism selected: {:?}", name);`
unstringify Error type 2018-09-06 15:46:06 +00:00			`let initial = match mech.initial() {`
			`Ok(initial) => initial,`
			`Err(e) => return Err(AuthError::Sasl(e).into()),`
			`};`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`let mut this = ClientAuth {`
			`state: ClientAuthState::Invalid,`
			`mechanism: mech,`
			`};`
unstringify Error type 2018-09-06 15:46:06 +00:00			`let mechanism = match XMPPMechanism::from_str(&name) {`
			`Ok(mechanism) => mechanism,`
			`Err(e) => return Err(ProtocolError::Parsers(e).into()),`
			`};`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`this.send(`
			`stream,`
replace parts of client::auth with xmpp-parsers 2018-08-01 23:44:48 +00:00			`Auth {`
			`mechanism,`
			`data: initial,`
			`}`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`);`
			`return Ok(this);`
			`}`
			`}`

unstringify Error type 2018-09-06 15:46:06 +00:00			`Err(AuthError::NoMechanism.into())`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`}`

replace parts of client::auth with xmpp-parsers 2018-08-01 23:44:48 +00:00			`fn send<N: Into<Element>>(&mut self, stream: XMPPStream<S>, nonza: N) {`
add XMPPStream.send_stanza() convenience method 2018-08-01 22:19:06 +00:00			`let send = stream.send_stanza(nonza);`
add client_auth using sasl 2017-06-05 23:29:20 +00:00
			`self.state = ClientAuthState::WaitSend(send);`
			`}`
			`}`

			`impl<S: AsyncRead + AsyncWrite> Future for ClientAuth<S> {`
			`type Item = XMPPStream<S>;`
unstringify Error type 2018-09-06 15:46:06 +00:00			`type Error = Error;`
add client_auth using sasl 2017-06-05 23:29:20 +00:00
			`fn poll(&mut self) -> Poll<Self::Item, Self::Error> {`
			`let state = replace(&mut self.state, ClientAuthState::Invalid);`

			`match state {`
			`ClientAuthState::WaitSend(mut send) =>`
			`match send.poll() {`
			`Ok(Async::Ready(stream)) => {`
			`self.state = ClientAuthState::WaitRecv(stream);`
			`self.poll()`
			`},`
			`Ok(Async::NotReady) => {`
			`self.state = ClientAuthState::WaitSend(send);`
			`Ok(Async::NotReady)`
			`},`
			`Err(e) =>`
unstringify Error type 2018-09-06 15:46:06 +00:00			`Err(e.into()),`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`},`
			`ClientAuthState::WaitRecv(mut stream) =>`
			`match stream.poll() {`
replace parts of client::auth with xmpp-parsers 2018-08-02 16:12:41 +00:00			`Ok(Async::Ready(Some(Packet::Stanza(stanza)))) => {`
			`if let Ok(challenge) = Challenge::try_from(stanza.clone()) {`
unstringify Error type 2018-09-06 15:46:06 +00:00			`let response = self.mechanism.response(&challenge.data)`
			`.map_err(AuthError::Sasl)?;`
replace parts of client::auth with xmpp-parsers 2018-08-02 16:12:41 +00:00			`self.send(stream, Response { data: response });`
			`self.poll()`
			`} else if let Ok(_) = Success::try_from(stanza.clone()) {`
			`let start = stream.restart();`
			`self.state = ClientAuthState::Start(start);`
			`self.poll()`
			`} else if let Ok(failure) = Failure::try_from(stanza) {`
unstringify Error type 2018-09-06 15:46:06 +00:00			`Err(AuthError::Fail(failure.defined_condition).into())`
replace parts of client::auth with xmpp-parsers 2018-08-02 16:12:41 +00:00			`} else {`
			`Ok(Async::NotReady)`
			`}`
			`}`
comment debug output 2018-08-02 23:14:21 +00:00			`Ok(Async::Ready(_event)) => {`
			`// println!("ClientAuth ignore {:?}", _event);`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`Ok(Async::NotReady)`
			`},`
			`Ok(_) => {`
			`self.state = ClientAuthState::WaitRecv(stream);`
			`Ok(Async::NotReady)`
			`},`
			`Err(e) =>`
unstringify Error type 2018-09-06 15:46:06 +00:00			`Err(ProtocolError::Parser(e).into())`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`},`
client_auth: add stream restart 2017-06-05 23:38:48 +00:00			`ClientAuthState::Start(mut start) =>`
			`match start.poll() {`
			`Ok(Async::Ready(stream)) =>`
			`Ok(Async::Ready(stream)),`
			`Ok(Async::NotReady) => {`
			`self.state = ClientAuthState::Start(start);`
			`Ok(Async::NotReady)`
			`},`
			`Err(e) =>`
unstringify Error type 2018-09-06 15:46:06 +00:00			`Err(e.into())`
client_auth: add stream restart 2017-06-05 23:38:48 +00:00			`},`
add client_auth using sasl 2017-06-05 23:29:20 +00:00			`ClientAuthState::Invalid =>`
			`unreachable!(),`
			`}`
			`}`
			`}`