service implementation

2018-10-16 15:14:34 +03:00 · 2018-10-16 15:14:34 +03:00 · 33423558c5
commit 33423558c5
4 changed files with 372 additions and 0 deletions
--- a/p2p/host/autonat/ci/Jenkinsfile
+++ b/p2p/host/autonat/ci/Jenkinsfile
@ -0,0 +1 @@
+golang()
--- a/p2p/host/autonat/proto.go
+++ b/p2p/host/autonat/proto.go
@ -0,0 +1,24 @@
+package autonat
+
+import (
+	pb "github.com/libp2p/go-libp2p-autonat/pb"
+
+	logging "github.com/ipfs/go-log"
+	ma "github.com/multiformats/go-multiaddr"
+)
+
+var log = logging.Logger("autonat-svc")
+
+func newDialResponseOK(addr ma.Multiaddr) *pb.Message_DialResponse {
+	dr := new(pb.Message_DialResponse)
+	dr.Status = pb.Message_OK.Enum()
+	dr.Addr = addr.Bytes()
+	return dr
+}
+
+func newDialResponseError(status pb.Message_ResponseStatus, text string) *pb.Message_DialResponse {
+	dr := new(pb.Message_DialResponse)
+	dr.Status = status.Enum()
+	dr.StatusText = &text
+	return dr
+}
--- a/p2p/host/autonat/svc.go
+++ b/p2p/host/autonat/svc.go
@ -0,0 +1,215 @@
+package autonat
+
+import (
+	"context"
+	"sync"
+	"time"
+
+	pb "github.com/libp2p/go-libp2p-autonat/pb"
+
+	ggio "github.com/gogo/protobuf/io"
+	libp2p "github.com/libp2p/go-libp2p"
+	autonat "github.com/libp2p/go-libp2p-autonat"
+	host "github.com/libp2p/go-libp2p-host"
+	inet "github.com/libp2p/go-libp2p-net"
+	peer "github.com/libp2p/go-libp2p-peer"
+	pstore "github.com/libp2p/go-libp2p-peerstore"
+	ma "github.com/multiformats/go-multiaddr"
+)
+
+const P_CIRCUIT = 290
+
+var (
+	AutoNATServiceDialTimeout   = 42 * time.Second
+	AutoNATServiceResetInterval = 1 * time.Minute
+
+	AutoNATServiceThrottle = 3
+)
+
+// AutoNATService provides NAT autodetection services to other peers
+type AutoNATService struct {
+	ctx    context.Context
+	dialer host.Host
+
+	// rate limiter
+	mx   sync.Mutex
+	reqs map[peer.ID]int
+}
+
+// NewAutoNATService creates a new AutoNATService instance attached to a host
+func NewAutoNATService(ctx context.Context, h host.Host, opts ...libp2p.Option) (*AutoNATService, error) {
+	opts = append(opts, libp2p.NoListenAddrs)
+	dialer, err := libp2p.New(ctx, opts...)
+	if err != nil {
+		return nil, err
+	}
+
+	as := &AutoNATService{
+		ctx:    ctx,
+		dialer: dialer,
+		reqs:   make(map[peer.ID]int),
+	}
+	h.SetStreamHandler(autonat.AutoNATProto, as.handleStream)
+
+	go as.resetRateLimiter()
+
+	return as, nil
+}
+
+func (as *AutoNATService) handleStream(s inet.Stream) {
+	defer s.Close()
+
+	pid := s.Conn().RemotePeer()
+	log.Debugf("New stream from %s", pid.Pretty())
+
+	r := ggio.NewDelimitedReader(s, inet.MessageSizeMax)
+	w := ggio.NewDelimitedWriter(s)
+
+	var req pb.Message
+	var res pb.Message
+
+	err := r.ReadMsg(&req)
+	if err != nil {
+		log.Debugf("Error reading message from %s: %s", pid.Pretty(), err.Error())
+		s.Reset()
+		return
+	}
+
+	t := req.GetType()
+	if t != pb.Message_DIAL {
+		log.Debugf("Unexpected message from %s: %s (%d)", pid.Pretty(), t.String(), t)
+		s.Reset()
+		return
+	}
+
+	dr := as.handleDial(pid, s.Conn().RemoteMultiaddr(), req.GetDial().GetPeer())
+	res.Type = pb.Message_DIAL_RESPONSE.Enum()
+	res.DialResponse = dr
+
+	err = w.WriteMsg(&res)
+	if err != nil {
+		log.Debugf("Error writing response to %s: %s", pid.Pretty(), err.Error())
+		s.Reset()
+		return
+	}
+}
+
+func (as *AutoNATService) handleDial(p peer.ID, obsaddr ma.Multiaddr, mpi *pb.Message_PeerInfo) *pb.Message_DialResponse {
+	if mpi == nil {
+		return newDialResponseError(pb.Message_E_BAD_REQUEST, "missing peer info")
+	}
+
+	mpid := mpi.GetId()
+	if mpid != nil {
+		mp, err := peer.IDFromBytes(mpid)
+		if err != nil {
+			return newDialResponseError(pb.Message_E_BAD_REQUEST, "bad peer id")
+		}
+
+		if mp != p {
+			return newDialResponseError(pb.Message_E_BAD_REQUEST, "peer id mismatch")
+		}
+	}
+
+	addrs := make([]ma.Multiaddr, 0)
+	seen := make(map[string]struct{})
+
+	// add observed addr to the list of addresses to dial
+	if !as.skipDial(obsaddr) {
+		addrs = append(addrs, obsaddr)
+		seen[obsaddr.String()] = struct{}{}
+	}
+
+	for _, maddr := range mpi.GetAddrs() {
+		addr, err := ma.NewMultiaddrBytes(maddr)
+		if err != nil {
+			log.Debugf("Error parsing multiaddr: %s", err.Error())
+			continue
+		}
+
+		if as.skipDial(addr) {
+			continue
+		}
+
+		str := addr.String()
+		_, ok := seen[str]
+		if ok {
+			continue
+		}
+
+		addrs = append(addrs, addr)
+		seen[str] = struct{}{}
+	}
+
+	if len(addrs) == 0 {
+		return newDialResponseError(pb.Message_E_DIAL_ERROR, "no dialable addresses")
+	}
+
+	return as.doDial(pstore.PeerInfo{ID: p, Addrs: addrs})
+}
+
+func (as *AutoNATService) skipDial(addr ma.Multiaddr) bool {
+	// skip relay addresses
+	_, err := addr.ValueForProtocol(P_CIRCUIT)
+	if err == nil {
+		return true
+	}
+
+	// skip private network (unroutable) addresses
+	if !autonat.IsPublicAddr(addr) {
+		return true
+	}
+
+	return false
+}
+
+func (as *AutoNATService) doDial(pi pstore.PeerInfo) *pb.Message_DialResponse {
+	// rate limit check
+	as.mx.Lock()
+	count := as.reqs[pi.ID]
+	if count >= AutoNATServiceThrottle {
+		as.mx.Unlock()
+		return newDialResponseError(pb.Message_E_DIAL_REFUSED, "too many dials")
+	}
+	as.reqs[pi.ID] = count + 1
+	as.mx.Unlock()
+
+	ctx, cancel := context.WithTimeout(as.ctx, AutoNATServiceDialTimeout)
+	defer cancel()
+
+	err := as.dialer.Connect(ctx, pi)
+	if err != nil {
+		log.Debugf("error dialing %s: %s", pi.ID.Pretty(), err.Error())
+		// wait for the context to timeout to avoid leaking timing information
+		// this renders the service ineffective as a port scanner
+		<-ctx.Done()
+		return newDialResponseError(pb.Message_E_DIAL_ERROR, "dial failed")
+	}
+
+	conns := as.dialer.Network().ConnsToPeer(pi.ID)
+	if len(conns) == 0 {
+		log.Errorf("supposedly connected to %s, but no connection to peer", pi.ID.Pretty())
+		return newDialResponseError(pb.Message_E_INTERNAL_ERROR, "internal service error")
+	}
+
+	ra := conns[0].RemoteMultiaddr()
+	as.dialer.Network().ClosePeer(pi.ID)
+	return newDialResponseOK(ra)
+}
+
+func (as *AutoNATService) resetRateLimiter() {
+	ticker := time.NewTicker(AutoNATServiceResetInterval)
+	defer ticker.Stop()
+
+	for {
+		select {
+		case <-ticker.C:
+			as.mx.Lock()
+			as.reqs = make(map[peer.ID]int)
+			as.mx.Unlock()
+
+		case <-as.ctx.Done():
+			return
+		}
+	}
+}
--- a/p2p/host/autonat/svc_test.go
+++ b/p2p/host/autonat/svc_test.go
@ -0,0 +1,132 @@
+package autonat
+
+import (
+	"context"
+	"net"
+	"testing"
+	"time"
+
+	libp2p "github.com/libp2p/go-libp2p"
+	autonat "github.com/libp2p/go-libp2p-autonat"
+	host "github.com/libp2p/go-libp2p-host"
+	pstore "github.com/libp2p/go-libp2p-peerstore"
+)
+
+func makeAutoNATService(ctx context.Context, t *testing.T) (host.Host, *AutoNATService) {
+	h, err := libp2p.New(ctx, libp2p.ListenAddrStrings("/ip4/127.0.0.1/tcp/0"))
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	as, err := NewAutoNATService(ctx, h)
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	return h, as
+}
+
+func makeAutoNATClient(ctx context.Context, t *testing.T) (host.Host, autonat.AutoNATClient) {
+	h, err := libp2p.New(ctx, libp2p.ListenAddrStrings("/ip4/127.0.0.1/tcp/0"))
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	cli := autonat.NewAutoNATClient(h)
+	return h, cli
+}
+
+func connect(t *testing.T, a, b host.Host) {
+	pinfo := pstore.PeerInfo{ID: a.ID(), Addrs: a.Addrs()}
+	err := b.Connect(context.Background(), pinfo)
+	if err != nil {
+		t.Fatal(err)
+	}
+}
+
+// Note: these tests assume that the host has only private inet addresses!
+func TestAutoNATServiceDialError(t *testing.T) {
+	ctx, cancel := context.WithCancel(context.Background())
+	defer cancel()
+
+	save := AutoNATServiceDialTimeout
+	AutoNATServiceDialTimeout = 1 * time.Second
+
+	hs, _ := makeAutoNATService(ctx, t)
+	hc, ac := makeAutoNATClient(ctx, t)
+	connect(t, hs, hc)
+
+	_, err := ac.DialBack(ctx, hs.ID())
+	if err == nil {
+		t.Fatal("Dial back succeeded unexpectedly!")
+	}
+
+	if !autonat.IsDialError(err) {
+		t.Fatal(err)
+	}
+
+	AutoNATServiceDialTimeout = save
+}
+
+func TestAutoNATServiceDialSuccess(t *testing.T) {
+	ctx, cancel := context.WithCancel(context.Background())
+	defer cancel()
+
+	save := autonat.Private4
+	autonat.Private4 = []*net.IPNet{}
+
+	hs, _ := makeAutoNATService(ctx, t)
+	hc, ac := makeAutoNATClient(ctx, t)
+	connect(t, hs, hc)
+
+	_, err := ac.DialBack(ctx, hs.ID())
+	if err != nil {
+		t.Fatalf("Dial back failed: %s", err.Error())
+	}
+
+	autonat.Private4 = save
+}
+
+func TestAutoNATServiceDialRateLimiter(t *testing.T) {
+	ctx, cancel := context.WithCancel(context.Background())
+	defer cancel()
+
+	save1 := AutoNATServiceDialTimeout
+	AutoNATServiceDialTimeout = 1 * time.Second
+	save2 := AutoNATServiceResetInterval
+	AutoNATServiceResetInterval = 1 * time.Second
+	save3 := AutoNATServiceThrottle
+	AutoNATServiceThrottle = 1
+	save4 := autonat.Private4
+	autonat.Private4 = []*net.IPNet{}
+
+	hs, _ := makeAutoNATService(ctx, t)
+	hc, ac := makeAutoNATClient(ctx, t)
+	connect(t, hs, hc)
+
+	_, err := ac.DialBack(ctx, hs.ID())
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	_, err = ac.DialBack(ctx, hs.ID())
+	if err == nil {
+		t.Fatal("Dial back succeeded unexpectedly!")
+	}
+
+	if !autonat.IsDialRefused(err) {
+		t.Fatal(err)
+	}
+
+	time.Sleep(2 * time.Second)
+
+	_, err = ac.DialBack(ctx, hs.ID())
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	AutoNATServiceDialTimeout = save1
+	AutoNATServiceResetInterval = save2
+	AutoNATServiceThrottle = save3
+	autonat.Private4 = save4
+}