go-gemini/examples/client/client.go

133 lines
3.0 KiB
Go
Raw Normal View History

2020-09-21 15:23:51 -06:00
// +build example
package main
import (
"bufio"
2020-09-26 14:38:26 -06:00
"crypto/x509"
2020-09-21 15:23:51 -06:00
"fmt"
"os"
"git.sr.ht/~adnano/go-gemini"
2020-09-21 15:23:51 -06:00
)
2020-09-25 17:53:50 -06:00
var (
2020-09-27 17:45:48 -06:00
scanner = bufio.NewScanner(os.Stdin)
client *gemini.Client
2020-09-25 17:53:50 -06:00
)
2020-09-21 15:23:51 -06:00
func init() {
2020-09-27 17:45:48 -06:00
// Initialize the client
client = &gemini.Client{}
2020-09-27 17:45:48 -06:00
client.KnownHosts.Load() // Load known hosts
client.TrustCertificate = func(hostname string, cert *x509.Certificate, knownHosts *gemini.KnownHosts) error {
err := knownHosts.Lookup(hostname, cert)
2020-09-26 14:38:26 -06:00
if err != nil {
switch err {
case gemini.ErrCertificateNotTrusted:
// Alert the user that the certificate is not trusted
2020-09-27 17:45:48 -06:00
fmt.Printf("Warning: Certificate for %s is not trusted!\n", hostname)
2020-09-26 14:38:26 -06:00
fmt.Println("This could indicate a Man-in-the-Middle attack.")
case gemini.ErrCertificateUnknown:
// Prompt the user to trust the certificate
2020-09-27 17:45:48 -06:00
trust := trustCertificate(cert)
switch trust {
case trustOnce:
2020-09-26 14:38:26 -06:00
// Temporarily trust the certificate
2020-09-27 15:41:41 -06:00
knownHosts.AddTemporary(hostname, cert)
2020-09-26 14:38:26 -06:00
return nil
2020-09-27 17:45:48 -06:00
case trustAlways:
2020-09-26 14:38:26 -06:00
// Add the certificate to the known hosts file
knownHosts.Add(hostname, cert)
2020-09-26 14:38:26 -06:00
return nil
}
}
}
return err
}
}
2020-09-27 17:45:48 -06:00
// sendRequest sends a request to the given url.
func sendRequest(req *gemini.Request) error {
2020-09-25 21:06:54 -06:00
resp, err := client.Send(req)
2020-09-21 15:23:51 -06:00
if err != nil {
2020-09-27 17:45:48 -06:00
return err
2020-09-21 15:23:51 -06:00
}
switch resp.Status / 10 {
case gemini.StatusClassInput:
fmt.Printf("%s: ", resp.Meta)
scanner.Scan()
2020-09-27 17:45:48 -06:00
req.URL.RawQuery = scanner.Text()
return sendRequest(req)
2020-09-21 15:23:51 -06:00
case gemini.StatusClassSuccess:
2020-09-27 17:45:48 -06:00
fmt.Print(string(resp.Body))
return nil
2020-09-21 15:23:51 -06:00
case gemini.StatusClassRedirect:
2020-09-27 17:45:48 -06:00
fmt.Println("Redirecting to ", resp.Meta)
req, err := gemini.NewRequest(resp.Meta)
if err != nil {
return err
}
return sendRequest(req)
2020-09-21 15:23:51 -06:00
case gemini.StatusClassTemporaryFailure:
2020-09-27 17:45:48 -06:00
return fmt.Errorf("Temporary failure: %s", resp.Meta)
2020-09-21 15:23:51 -06:00
case gemini.StatusClassPermanentFailure:
2020-09-27 17:45:48 -06:00
return fmt.Errorf("Permanent failure: %s", resp.Meta)
2020-09-21 15:23:51 -06:00
case gemini.StatusClassClientCertificateRequired:
2020-09-27 17:45:48 -06:00
fmt.Println("Generating client certificate for", req.Hostname())
return nil // TODO: Generate and store client certificate
2020-09-21 15:23:51 -06:00
default:
2020-09-27 17:45:48 -06:00
return fmt.Errorf("Protocol error: Server sent an invalid response")
2020-09-21 15:23:51 -06:00
}
}
2020-09-27 17:45:48 -06:00
type trust int
const (
trustAbort trust = iota
trustOnce
trustAlways
)
const trustPrompt = `The certificate offered by this server is of unknown trust. Its fingerprint is:
%s
2020-09-26 14:38:26 -06:00
2020-09-27 17:45:48 -06:00
If you knew the fingerprint to expect in advance, verify that this matches.
Otherwise, this should be safe to trust.
[t]rust always; trust [o]nce; [a]bort
=> `
func trustCertificate(cert *x509.Certificate) trust {
fmt.Printf(trustPrompt, gemini.Fingerprint(cert))
2020-09-26 14:38:26 -06:00
scanner.Scan()
2020-09-27 17:45:48 -06:00
switch scanner.Text() {
case "t":
return trustAlways
case "o":
return trustOnce
default:
return trustAbort
}
2020-09-26 14:38:26 -06:00
}
2020-09-21 15:23:51 -06:00
func main() {
if len(os.Args) < 2 {
2020-09-27 17:45:48 -06:00
fmt.Println("usage: %s gemini://...", os.Args[0])
os.Exit(1)
}
url := os.Args[1]
req, err := gemini.NewRequest(url)
if err != nil {
fmt.Println(err)
os.Exit(1)
}
if err := sendRequest(req); err != nil {
fmt.Println(err)
os.Exit(1)
2020-09-21 15:23:51 -06:00
}
}