add go-and-tls13

Author: bigwhite

go-and-tls13/benchmark/benchmark_test.go

@@ -0,0 +1,55 @@
+package main
+
+import (
+	"crypto/tls"
+	"testing"
+)
+
+func tls12_dial() error {
+	conf := &tls.Config{
+		InsecureSkipVerify: true,
+		MaxVersion:         tls.VersionTLS12,
+	}
+
+	conn, err := tls.Dial("tcp", "localhost:8443", conf)
+	if err != nil {
+		return err
+	}
+	conn.Close()
+	return nil
+}
+
+func tls13_dial() error {
+	conf := &tls.Config{
+		InsecureSkipVerify: true,
+	}
+
+	conn, err := tls.Dial("tcp", "localhost:8443", conf)
+	if err != nil {
+		return err
+	}
+	conn.Close()
+	return nil
+}
+
+func BenchmarkTls13(b *testing.B) {
+	b.ReportAllocs()
+
+	for i := 0; i < b.N; i++ {
+		err := tls13_dial()
+		if err != nil {
+			panic(err)
+		}
+	}
+}
+
+func BenchmarkTls12(b *testing.B) {
+	b.ReportAllocs()
+
+	for i := 0; i < b.N; i++ {
+		err := tls12_dial()
+		if err != nil {
+			panic(err)
+		}
+	}
+}

go-and-tls13/benchmark/go.mod

@@ -0,0 +1,3 @@
+module demo
+
+go 1.19

go-and-tls13/client.go

@@ -0,0 +1,34 @@
+package main
+
+import (
+	"crypto/tls"
+	"log"
+)
+
+func main() {
+	conf := &tls.Config{
+		InsecureSkipVerify: true,
+	}
+
+	conn, err := tls.Dial("tcp", "localhost:8443", conf)
+	if err != nil {
+		log.Println(err)
+		return
+	}
+	defer conn.Close()
+
+	n, err := conn.Write([]byte("hello, world from client\n"))
+	if err != nil {
+		log.Println(n, err)
+		return
+	}
+
+	buf := make([]byte, 100)
+	n, err = conn.Read(buf)
+	if err != nil {
+		log.Println(n, err)
+		return
+	}
+
+	println(string(buf[:n]))
+}

go-and-tls13/client_tls12.go

@@ -0,0 +1,35 @@
+package main
+
+import (
+	"crypto/tls"
+	"fmt"
+)
+
+func main() {
+	conf := &tls.Config{
+		InsecureSkipVerify: true,
+		MaxVersion:         tls.VersionTLS12,
+	}
+
+	conn, err := tls.Dial("tcp", "localhost:8443", conf)
+	if err != nil {
+		fmt.Println(err)
+		return
+	}
+	defer conn.Close()
+
+	n, err := conn.Write([]byte("hello\n"))
+	if err != nil {
+		fmt.Println(n, err)
+		return
+	}
+
+	buf := make([]byte, 100)
+	n, err = conn.Read(buf)
+	if err != nil {
+		fmt.Println(n, err)
+		return
+	}
+
+	println(string(buf[:n]))
+}

go-and-tls13/server.crt

@@ -0,0 +1,17 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

go-and-tls13/server.go

@@ -0,0 +1,53 @@
+package main
+
+import (
+	"bufio"
+	"crypto/tls"
+	"fmt"
+	"net"
+)
+
+func main() {
+	cer, err := tls.LoadX509KeyPair("server.crt", "server.key")
+	if err != nil {
+		fmt.Println(err)
+		return
+	}
+
+	config := &tls.Config{Certificates: []tls.Certificate{cer}}
+	ln, err := tls.Listen("tcp", "localhost:8443", config)
+	if err != nil {
+		fmt.Println(err)
+		return
+	}
+	defer ln.Close()
+
+	for {
+		conn, err := ln.Accept()
+		if err != nil {
+			fmt.Println(err)
+			continue
+		}
+		go handleConnection(conn)
+	}
+}
+
+func handleConnection(conn net.Conn) {
+	defer conn.Close()
+	r := bufio.NewReader(conn)
+	for {
+		msg, err := r.ReadString('\n')
+		if err != nil {
+			fmt.Println(err)
+			return
+		}
+
+		println(msg)
+
+		n, err := conn.Write([]byte("hello, world from server\n"))
+		if err != nil {
+			fmt.Println(n, err)
+			return
+		}
+	}
+}

go-and-tls13/server.key

@@ -0,0 +1,27 @@
+-----BEGIN RSA PRIVATE KEY-----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+-----END RSA PRIVATE KEY-----

go-and-tls13/server_config_ciphersuite.go

@@ -0,0 +1,56 @@
+package main
+
+import (
+	"bufio"
+	"crypto/tls"
+	"fmt"
+	"net"
+)
+
+func main() {
+	cer, err := tls.LoadX509KeyPair("server.crt", "server.key")
+	if err != nil {
+		fmt.Println(err)
+		return
+	}
+
+	config := &tls.Config{
+		Certificates: []tls.Certificate{cer},
+		CipherSuites: []uint16{tls.TLS_CHACHA20_POLY1305_SHA256},
+	}
+	ln, err := tls.Listen("tcp", "localhost:8443", config)
+	if err != nil {
+		fmt.Println(err)
+		return
+	}
+	defer ln.Close()
+
+	for {
+		conn, err := ln.Accept()
+		if err != nil {
+			fmt.Println(err)
+			continue
+		}
+		go handleConnection(conn)
+	}
+}
+
+func handleConnection(conn net.Conn) {
+	defer conn.Close()
+	r := bufio.NewReader(conn)
+	for {
+		msg, err := r.ReadString('\n')
+		if err != nil {
+			fmt.Println(err)
+			return
+		}
+
+		println(msg)
+
+		n, err := conn.Write([]byte("hello, world from server\n"))
+		if err != nil {
+			fmt.Println(n, err)
+			return
+		}
+	}
+}

go-and-tls13/server_tls12.go

@@ -0,0 +1,57 @@
+package main
+
+import (
+	"bufio"
+	"crypto/tls"
+	"fmt"
+	"net"
+)
+
+func main() {
+	cer, err := tls.LoadX509KeyPair("server.crt", "server.key")
+	if err != nil {
+		fmt.Println(err)
+		return
+	}
+
+	config := &tls.Config{
+		Certificates: []tls.Certificate{cer},
+		MaxVersion:   tls.VersionTLS12,
+	}
+
+	ln, err := tls.Listen("tcp", "localhost:8443", config)
+	if err != nil {
+		fmt.Println(err)
+		return
+	}
+	defer ln.Close()
+
+	for {
+		conn, err := ln.Accept()
+		if err != nil {
+			fmt.Println(err)
+			continue
+		}
+		go handleConnection(conn)
+	}
+}
+
+func handleConnection(conn net.Conn) {
+	defer conn.Close()
+	r := bufio.NewReader(conn)
+	for {
+		msg, err := r.ReadString('\n')
+		if err != nil {
+			fmt.Println(err)
+			return
+		}
+
+		println(msg)
+
+		n, err := conn.Write([]byte("hello, world from server\n"))
+		if err != nil {
+			fmt.Println(n, err)
+			return
+		}
+	}
+}