File: Types.hs

package info (click to toggle)
haskell-crypton-connection 0.4.5-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 88 kB
  • sloc: haskell: 352; makefile: 2
file content (120 lines) | stat: -rw-r--r-- 4,085 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
 
-- |
-- Module      : Network.Connection.Types
-- License     : BSD-style
-- Maintainer  : Vincent Hanquez <vincent@snarc.org>
-- Stability   : experimental
-- Portability : portable
--
-- connection types
module Network.Connection.Types
where

import Control.Concurrent.MVar (MVar)

import Data.ByteString (ByteString)
import Data.Default
import Data.X509.CertificateStore

import Network.Socket (PortNumber, Socket)
import qualified Network.TLS as TLS
import qualified Network.TLS.Extra as TLS

import System.IO (Handle)

-- | Simple backend enumeration, either using a raw connection or a tls connection.
data ConnectionBackend
    = ConnectionStream Handle
    | ConnectionSocket Socket
    | ConnectionTLS TLS.Context

-- | Hostname This could either be a name string (punycode encoded) or an ipv4/ipv6
type HostName = String

-- | Connection Parameters to establish a Connection.
--
-- The strict minimum is an hostname and the port.
--
-- If you need to establish a TLS connection, you should make sure
-- connectionUseSecure is correctly set.
--
-- If you need to connect through a SOCKS, you should make sure
-- connectionUseSocks is correctly set.
data ConnectionParams = ConnectionParams
    { connectionHostname :: HostName
    -- ^ host name to connect to.
    , connectionPort :: PortNumber
    -- ^ port number to connect to.
    , connectionUseSecure :: Maybe TLSSettings
    -- ^ optional TLS parameters.
    , connectionUseSocks :: Maybe ProxySettings
    -- ^ optional Proxy/Socks configuration.
    }

-- | Proxy settings for the connection.
--
-- OtherProxy handles specific application-level proxies like HTTP proxies.
--
-- The simple SOCKS settings is just the hostname and portnumber of the SOCKS proxy server.
--
-- That's for now the only settings in the SOCKS package,
-- socks password, or any sort of other authentications is not yet implemented.
data ProxySettings
    = SockSettingsSimple HostName PortNumber
    | SockSettingsEnvironment (Maybe String)
    | OtherProxy HostName PortNumber

type SockSettings = ProxySettings

-- | TLS Settings that can be either expressed as simple settings,
-- or as full blown TLS.Params settings.
--
-- Unless you need access to parameters that are not accessible through the
-- simple settings, you should use TLSSettingsSimple.
data TLSSettings
    = TLSSettingsSimple
        { settingDisableCertificateValidation :: Bool
        -- ^ Disable certificate verification completely,
        --   this make TLS/SSL vulnerable to a MITM attack.
        --   not recommended to use, but for testing.
        , settingDisableSession :: Bool
        -- ^ Disable session management. TLS/SSL connections
        --   will always re-established their context.
        --   Not Implemented Yet.
        , settingUseServerName :: Bool
        -- ^ Use server name extension. Not Implemented Yet.
        , settingClientSupported :: TLS.Supported
        -- ^ Used for the 'TLS.clientSupported'
        --   member of 'TLS.ClientParams'.
        }
    | -- \^ Simple TLS settings. recommended to use.

      -- | full blown TLS Settings directly using TLS.Params. for power users.
      TLSSettings TLS.ClientParams
    deriving (Show)

instance Default TLSSettings where
    def =
        TLSSettingsSimple
            False
            False
            False
            def{TLS.supportedCiphers = TLS.ciphersuite_default}

type ConnectionID = (HostName, PortNumber)

-- | This opaque type represent a connection to a destination.
data Connection = Connection
    { connectionBackend :: MVar ConnectionBackend
    , connectionBuffer :: MVar (Maybe ByteString)
    -- ^ this is set to 'Nothing' on EOF
    , connectionID :: ConnectionID
    -- ^ return a simple tuple of the port and hostname that we're connected to.
    }

-- | Shared values (certificate store, sessions, ..) between connections
--
-- At the moment, this is only strictly needed to shared sessions and certificates
-- when using a TLS enabled connection.
data ConnectionContext = ConnectionContext
    { globalCertificateStore :: !CertificateStore
    }