handle TLS attack

included net attack count on non supported tls connection counted as attack for tls without client cert and missing quote on tls client cert
2025-01-01 23:37:32 +00:00 · 2025-01-01 23:37:32 +00:00 · 9e9036280d
commit 9e9036280d
parent 8226f03e7c
1 changed files with 8 additions and 1 deletions
--- a/src/grpc/server.rs
+++ b/src/grpc/server.rs
@ -93,7 +93,14 @@ impl NodeServer {

                let conn = if let Err(e) = conn {
                    println!("Error accepting TLS connection: {e}");
-                    if e.to_string().contains("HandshakeFailure") {
+                    let attack_error_messages = [
+                        "HandshakeFailure",
+                        "peer sent no certificates", // "NoCertificatesPresented",
+                        "Not found quote extension",
+                    ];
+
+                    let err_str = e.to_string();
+                    if attack_error_messages.iter().any(|att_er_str| err_str.contains(att_er_str)) {
                        state.increase_net_attacks().await;
                    }
                    return;