Add handshake timeout, and minor buffer initialization fix

ssrlive · ssrlive · commit 3a62c4178c5f · 2025-12-30T10:23:23.000+08:00
- Add `authenticate_with_timeout` to `IncomingConnection` for handshake timeouts
- Change `authenticate` to return `crate::Result` and wrap unsupported handshake error with `crate::Error::Io`
- Use precomputed `len` when creating `BytesMut` in `StreamOperation::write_to_stream`
diff --git a/src/protocol/mod.rs b/src/protocol/mod.rs
@@ -64,7 +64,8 @@ pub trait StreamOperation {
         Self: Sized;
 
     fn write_to_stream<W: std::io::Write>(&self, w: &mut W) -> std::io::Result<()> {
-        let mut buf = bytes::BytesMut::with_capacity(self.len());
+        let len = self.len();
+        let mut buf = bytes::BytesMut::with_capacity(len);
         self.write_to_buf(&mut buf);
         w.write_all(&buf)
     }
diff --git a/src/server/connection/mod.rs b/src/server/connection/mod.rs
@@ -94,6 +94,13 @@ impl<O: 'static> IncomingConnection<O> {
         self.stream.set_ttl(ttl)
     }
 
+    /// Set a timeout for the SOCKS5 handshake.
+    pub async fn authenticate_with_timeout(self, timeout: Duration) -> crate::Result<(Authenticated, O)> {
+        tokio::time::timeout(timeout, self.authenticate())
+            .await
+            .map_err(|_| crate::Error::String("handshake timeout".into()))?
+    }
+
     /// Perform a SOCKS5 authentication handshake using the given
     /// [`AuthExecutor`](crate::server::auth::AuthExecutor) adapter.
     ///
@@ -102,7 +109,7 @@ impl<O: 'static> IncomingConnection<O> {
     /// Otherwise, the error and the original [`TcpStream`](https://docs.rs/tokio/latest/tokio/net/struct.TcpStream.html) is returned.
     ///
     /// Note that this method will not implicitly close the connection even if the handshake failed.
-    pub async fn authenticate(mut self) -> std::io::Result<(Authenticated, O)> {
+    pub async fn authenticate(mut self) -> crate::Result<(Authenticated, O)> {
         let request = handshake::Request::retrieve_from_async_stream(&mut self.stream).await?;
         if let Some(method) = self.evaluate_request(&request) {
             let response = handshake::Response::new(method);
@@ -113,7 +120,7 @@ impl<O: 'static> IncomingConnection<O> {
             let response = handshake::Response::new(AuthMethod::NoAcceptableMethods);
             response.write_to_async_stream(&mut self.stream).await?;
             let err = "No available handshake method provided by client";
-            Err(std::io::Error::new(std::io::ErrorKind::Unsupported, err))
+            Err(crate::Error::Io(std::io::Error::new(std::io::ErrorKind::Unsupported, err)))
         }
     }
 

Original file line number	Diff line number	Diff line change
`@@ -64,7 +64,8 @@ pub trait StreamOperation {`
`64`	`64`	`Self: Sized;`
`65`	`65`
`66`	`66`	`fn write_to_stream<W: std::io::Write>(&self, w: &mut W) -> std::io::Result<()> {`
`67`		`- let mut buf = bytes::BytesMut::with_capacity(self.len());`
	`67`	`+ let len = self.len();`
	`68`	`+ let mut buf = bytes::BytesMut::with_capacity(len);`
`68`	`69`	`self.write_to_buf(&mut buf);`
`69`	`70`	`w.write_all(&buf)`
`70`	`71`	`}`