impl: uquic with utls

2025-04-03 20:27:35 +03:00 · 2023-07-29 23:45:16 -06:00 · 2023-07-29 23:45:16 -06:00 · fca46117e4
commit fca46117e4
parent 251b3afe6e
56 changed files with 445 additions and 88 deletions
--- a/http3/client.go
+++ b/http3/client.go
@ -2,7 +2,6 @@ package http3

 import (
 	"context"
-	"crypto/tls"
 	"errors"
 	"fmt"
 	"io"
@ -13,6 +12,10 @@ import (
 	"sync/atomic"
 	"time"

+	ctls "crypto/tls"
+
+	tls "github.com/refraction-networking/utls"
+
 	"github.com/quic-go/quic-go"
 	"github.com/quic-go/quic-go/internal/protocol"
 	"github.com/quic-go/quic-go/internal/utils"
@ -424,7 +427,25 @@ func (c *client) doRequest(req *http.Request, conn quic.EarlyConnection, str qui
 		return nil, newStreamError(ErrCodeMessageError, err)
 	}
 	connState := conn.ConnectionState().TLS
-	res.TLS = &connState
+
+	// [UQUIC] copy utls.ConnectionState to crypto/tls.ConnectionState
+	cryptoConnState := &ctls.ConnectionState{
+		Version:                     connState.Version,
+		HandshakeComplete:           connState.HandshakeComplete,
+		DidResume:                   connState.DidResume,
+		CipherSuite:                 connState.CipherSuite,
+		NegotiatedProtocol:          connState.NegotiatedProtocol,
+		NegotiatedProtocolIsMutual:  connState.NegotiatedProtocolIsMutual,
+		ServerName:                  connState.ServerName,
+		PeerCertificates:            connState.PeerCertificates,
+		VerifiedChains:              connState.VerifiedChains,
+		SignedCertificateTimestamps: connState.SignedCertificateTimestamps,
+		OCSPResponse:                connState.OCSPResponse,
+		TLSUnique:                   connState.TLSUnique,
+	}
+	res.TLS = cryptoConnState
+	// [/UQUIC]
+
 	res.Request = req
 	// Check that the server doesn't send more data in DATA frames than indicated by the Content-Length header (if set).
 	// See section 4.1.2 of RFC 9114.