2018-07-04 13:51:47 +03:00
|
|
|
package stream
|
|
|
|
|
|
|
|
import (
|
|
|
|
"context"
|
|
|
|
"errors"
|
|
|
|
"fmt"
|
|
|
|
"net"
|
|
|
|
|
2019-06-09 09:24:20 +02:00
|
|
|
"github.com/libp2p/go-libp2p-core/mux"
|
|
|
|
"github.com/libp2p/go-libp2p-core/peer"
|
|
|
|
"github.com/libp2p/go-libp2p-core/pnet"
|
|
|
|
"github.com/libp2p/go-libp2p-core/sec"
|
|
|
|
"github.com/libp2p/go-libp2p-core/transport"
|
|
|
|
|
2018-07-04 13:51:47 +03:00
|
|
|
filter "github.com/libp2p/go-maddr-filter"
|
|
|
|
manet "github.com/multiformats/go-multiaddr-net"
|
|
|
|
)
|
|
|
|
|
|
|
|
// ErrNilPeer is returned when attempting to upgrade an outbound connection
|
|
|
|
// without specifying a peer ID.
|
|
|
|
var ErrNilPeer = errors.New("nil peer")
|
|
|
|
|
|
|
|
// AcceptQueueLength is the number of connections to fully setup before not accepting any new connections
|
|
|
|
var AcceptQueueLength = 16
|
|
|
|
|
|
|
|
// Upgrader is a multistream upgrader that can upgrade an underlying connection
|
|
|
|
// to a full transport connection (secure and multiplexed).
|
|
|
|
type Upgrader struct {
|
|
|
|
Protector pnet.Protector
|
2019-06-09 09:24:20 +02:00
|
|
|
Secure sec.SecureTransport
|
|
|
|
Muxer mux.Multiplexer
|
2018-07-04 13:51:47 +03:00
|
|
|
Filters *filter.Filters
|
|
|
|
}
|
|
|
|
|
|
|
|
// UpgradeListener upgrades the passed multiaddr-net listener into a full libp2p-transport listener.
|
|
|
|
func (u *Upgrader) UpgradeListener(t transport.Transport, list manet.Listener) transport.Listener {
|
|
|
|
ctx, cancel := context.WithCancel(context.Background())
|
|
|
|
l := &listener{
|
|
|
|
Listener: list,
|
|
|
|
upgrader: u,
|
|
|
|
transport: t,
|
|
|
|
threshold: newThreshold(AcceptQueueLength),
|
2019-06-09 09:24:20 +02:00
|
|
|
incoming: make(chan transport.CapableConn),
|
2018-07-04 13:51:47 +03:00
|
|
|
cancel: cancel,
|
|
|
|
ctx: ctx,
|
|
|
|
}
|
|
|
|
go l.handleIncoming()
|
|
|
|
return l
|
|
|
|
}
|
|
|
|
|
|
|
|
// UpgradeOutbound upgrades the given outbound multiaddr-net connection into a
|
|
|
|
// full libp2p-transport connection.
|
2019-06-09 09:24:20 +02:00
|
|
|
func (u *Upgrader) UpgradeOutbound(ctx context.Context, t transport.Transport, maconn manet.Conn, p peer.ID) (transport.CapableConn, error) {
|
2018-07-04 13:51:47 +03:00
|
|
|
if p == "" {
|
|
|
|
return nil, ErrNilPeer
|
|
|
|
}
|
|
|
|
return u.upgrade(ctx, t, maconn, p)
|
|
|
|
}
|
|
|
|
|
|
|
|
// UpgradeInbound upgrades the given inbound multiaddr-net connection into a
|
|
|
|
// full libp2p-transport connection.
|
2019-06-09 09:24:20 +02:00
|
|
|
func (u *Upgrader) UpgradeInbound(ctx context.Context, t transport.Transport, maconn manet.Conn) (transport.CapableConn, error) {
|
2018-07-04 13:51:47 +03:00
|
|
|
return u.upgrade(ctx, t, maconn, "")
|
|
|
|
}
|
|
|
|
|
2019-06-09 09:24:20 +02:00
|
|
|
func (u *Upgrader) upgrade(ctx context.Context, t transport.Transport, maconn manet.Conn, p peer.ID) (transport.CapableConn, error) {
|
2018-07-04 13:51:47 +03:00
|
|
|
if u.Filters != nil && u.Filters.AddrBlocked(maconn.RemoteMultiaddr()) {
|
|
|
|
log.Debugf("blocked connection from %s", maconn.RemoteMultiaddr())
|
|
|
|
maconn.Close()
|
|
|
|
return nil, fmt.Errorf("blocked connection from %s", maconn.RemoteMultiaddr())
|
|
|
|
}
|
|
|
|
|
|
|
|
var conn net.Conn = maconn
|
|
|
|
if u.Protector != nil {
|
|
|
|
pconn, err := u.Protector.Protect(conn)
|
|
|
|
if err != nil {
|
|
|
|
conn.Close()
|
2019-06-09 09:24:20 +02:00
|
|
|
return nil, fmt.Errorf("failed to setup private network protector: %s", err)
|
2018-07-04 13:51:47 +03:00
|
|
|
}
|
|
|
|
conn = pconn
|
|
|
|
} else if pnet.ForcePrivateNetwork {
|
|
|
|
log.Error("tried to dial with no Private Network Protector but usage" +
|
|
|
|
" of Private Networks is forced by the enviroment")
|
|
|
|
return nil, pnet.ErrNotInPrivateNetwork
|
|
|
|
}
|
|
|
|
sconn, err := u.setupSecurity(ctx, conn, p)
|
|
|
|
if err != nil {
|
|
|
|
conn.Close()
|
2019-06-09 09:24:20 +02:00
|
|
|
return nil, fmt.Errorf("failed to negotiate security protocol: %s", err)
|
2018-07-04 13:51:47 +03:00
|
|
|
}
|
|
|
|
smconn, err := u.setupMuxer(ctx, sconn, p)
|
|
|
|
if err != nil {
|
2019-06-09 09:24:20 +02:00
|
|
|
sconn.Close()
|
|
|
|
return nil, fmt.Errorf("failed to negotiate security stream multiplexer: %s", err)
|
2018-07-04 13:51:47 +03:00
|
|
|
}
|
|
|
|
return &transportConn{
|
2019-06-09 09:24:20 +02:00
|
|
|
MuxedConn: smconn,
|
2018-07-04 13:51:47 +03:00
|
|
|
ConnMultiaddrs: maconn,
|
|
|
|
ConnSecurity: sconn,
|
|
|
|
transport: t,
|
|
|
|
}, nil
|
|
|
|
}
|
|
|
|
|
2019-06-09 09:24:20 +02:00
|
|
|
func (u *Upgrader) setupSecurity(ctx context.Context, conn net.Conn, p peer.ID) (sec.SecureConn, error) {
|
2018-07-04 13:51:47 +03:00
|
|
|
if p == "" {
|
|
|
|
return u.Secure.SecureInbound(ctx, conn)
|
|
|
|
}
|
|
|
|
return u.Secure.SecureOutbound(ctx, conn, p)
|
|
|
|
}
|
|
|
|
|
2019-06-09 09:24:20 +02:00
|
|
|
func (u *Upgrader) setupMuxer(ctx context.Context, conn net.Conn, p peer.ID) (mux.MuxedConn, error) {
|
2018-07-04 13:51:47 +03:00
|
|
|
// TODO: The muxer should take a context.
|
|
|
|
done := make(chan struct{})
|
|
|
|
|
2019-06-09 09:24:20 +02:00
|
|
|
var smconn mux.MuxedConn
|
2018-07-04 13:51:47 +03:00
|
|
|
var err error
|
|
|
|
go func() {
|
|
|
|
defer close(done)
|
|
|
|
smconn, err = u.Muxer.NewConn(conn, p == "")
|
|
|
|
}()
|
|
|
|
|
|
|
|
select {
|
|
|
|
case <-done:
|
|
|
|
return smconn, err
|
|
|
|
case <-ctx.Done():
|
2019-06-09 09:24:20 +02:00
|
|
|
// interrupt this process
|
|
|
|
conn.Close()
|
|
|
|
// wait to finish
|
|
|
|
<-done
|
2018-07-04 13:51:47 +03:00
|
|
|
return nil, ctx.Err()
|
|
|
|
}
|
|
|
|
}
|