mirror of
https://github.com/waku-org/nwaku.git
synced 2025-01-21 12:20:50 +00:00
ba418ab5ba
* DOS protection of non relay protocols - rate limit phase3: - Enhanced TokenBucket to be able to add compensation tokens based on previous usage percentage, - per peer rate limiter 'PeerRateLimier' applied on waku_filter_v2 with opinionated default of acceptable request rate - Add traffic metrics to filter message push - RequestRateLimiter added to combine simple token bucket limiting of request numbers but consider per peer usage over time and prevent some peers to over use the service (although currently rule violating peers will not be disconnected by this time only their requests will get not served) - TimedMap utility created (inspired and taken from libp2p TimedCache) which serves as forgiving feature for peers had been overusing the service. - Added more tests - Fix rebase issues - Applied new RequestRateLimiter for store and legacy_store and lightpush * Incorporate review comments, typos, file/class naming and placement changes. * Add issue link reference of the original issue with nim-chronos TokenBucket * Make TimedEntry of TimedMap private and not mixable with similar named in libp2p * Fix review comments, renamings, const instead of values and more comments.
281 lines
8.3 KiB
Nim
281 lines
8.3 KiB
Nim
{.used.}
|
|
|
|
import
|
|
std/sequtils,
|
|
stew/byteutils,
|
|
stew/shims/net,
|
|
testutils/unittests,
|
|
presto,
|
|
presto/client as presto_client,
|
|
libp2p/crypto/crypto
|
|
|
|
import
|
|
waku/[
|
|
waku_api/message_cache,
|
|
waku_core,
|
|
waku_node,
|
|
node/peer_manager,
|
|
waku_lightpush/common,
|
|
waku_api/rest/server,
|
|
waku_api/rest/client,
|
|
waku_api/rest/responses,
|
|
waku_api/rest/lightpush/types,
|
|
waku_api/rest/lightpush/handlers as lightpush_api,
|
|
waku_api/rest/lightpush/client as lightpush_api_client,
|
|
waku_relay,
|
|
common/rate_limit/setting,
|
|
],
|
|
../testlib/wakucore,
|
|
../testlib/wakunode,
|
|
../testlib/testutils
|
|
|
|
proc testWakuNode(): WakuNode =
|
|
let
|
|
privkey = generateSecp256k1Key()
|
|
bindIp = parseIpAddress("0.0.0.0")
|
|
extIp = parseIpAddress("127.0.0.1")
|
|
port = Port(0)
|
|
|
|
return newTestWakuNode(privkey, bindIp, port, some(extIp), some(port))
|
|
|
|
type RestLightPushTest = object
|
|
serviceNode: WakuNode
|
|
pushNode: WakuNode
|
|
consumerNode: WakuNode
|
|
restServer: WakuRestServerRef
|
|
client: RestClientRef
|
|
|
|
proc init(
|
|
T: type RestLightPushTest, rateLimit: RateLimitSetting = (0, 0.millis)
|
|
): Future[T] {.async.} =
|
|
var testSetup = RestLightPushTest()
|
|
testSetup.serviceNode = testWakuNode()
|
|
testSetup.pushNode = testWakuNode()
|
|
testSetup.consumerNode = testWakuNode()
|
|
|
|
await allFutures(
|
|
testSetup.serviceNode.start(),
|
|
testSetup.pushNode.start(),
|
|
testSetup.consumerNode.start(),
|
|
)
|
|
|
|
await testSetup.consumerNode.mountRelay()
|
|
await testSetup.serviceNode.mountRelay()
|
|
await testSetup.serviceNode.mountLightPush(rateLimit)
|
|
testSetup.pushNode.mountLightPushClient()
|
|
|
|
testSetup.serviceNode.peerManager.addServicePeer(
|
|
testSetup.consumerNode.peerInfo.toRemotePeerInfo(), WakuRelayCodec
|
|
)
|
|
|
|
await testSetup.serviceNode.connectToNodes(
|
|
@[testSetup.consumerNode.peerInfo.toRemotePeerInfo()]
|
|
)
|
|
|
|
testSetup.pushNode.peerManager.addServicePeer(
|
|
testSetup.serviceNode.peerInfo.toRemotePeerInfo(), WakuLightPushCodec
|
|
)
|
|
|
|
var restPort = Port(0)
|
|
let restAddress = parseIpAddress("127.0.0.1")
|
|
testSetup.restServer = WakuRestServerRef.init(restAddress, restPort).tryGet()
|
|
restPort = testSetup.restServer.httpServer.address.port
|
|
# update with bound port for client use
|
|
|
|
installLightPushRequestHandler(testSetup.restServer.router, testSetup.pushNode)
|
|
|
|
testSetup.restServer.start()
|
|
|
|
testSetup.client = newRestHttpClient(initTAddress(restAddress, restPort))
|
|
|
|
return testSetup
|
|
|
|
proc shutdown(self: RestLightPushTest) {.async.} =
|
|
await self.restServer.stop()
|
|
await self.restServer.closeWait()
|
|
await allFutures(self.serviceNode.stop(), self.pushNode.stop())
|
|
|
|
suite "Waku v2 Rest API - lightpush":
|
|
asyncTest "Push message request":
|
|
# Given
|
|
let restLightPushTest = await RestLightPushTest.init()
|
|
|
|
restLightPushTest.consumerNode.subscribe(
|
|
(kind: PubsubSub, topic: DefaultPubsubTopic)
|
|
)
|
|
restLightPushTest.serviceNode.subscribe(
|
|
(kind: PubsubSub, topic: DefaultPubsubTopic)
|
|
)
|
|
require:
|
|
toSeq(restLightPushTest.serviceNode.wakuRelay.subscribedTopics).len == 1
|
|
|
|
# When
|
|
let message: RelayWakuMessage = fakeWakuMessage(
|
|
contentTopic = DefaultContentTopic, payload = toBytes("TEST-1")
|
|
)
|
|
.toRelayWakuMessage()
|
|
|
|
let requestBody =
|
|
PushRequest(pubsubTopic: some(DefaultPubsubTopic), message: message)
|
|
let response = await restLightPushTest.client.sendPushRequest(requestBody)
|
|
|
|
echo "response", $response
|
|
|
|
# Then
|
|
check:
|
|
response.status == 200
|
|
$response.contentType == $MIMETYPE_TEXT
|
|
|
|
await restLightPushTest.shutdown()
|
|
|
|
asyncTest "Push message bad-request":
|
|
# Given
|
|
let restLightPushTest = await RestLightPushTest.init()
|
|
|
|
restLightPushTest.serviceNode.subscribe(
|
|
(kind: PubsubSub, topic: DefaultPubsubTopic)
|
|
)
|
|
require:
|
|
toSeq(restLightPushTest.serviceNode.wakuRelay.subscribedTopics).len == 1
|
|
|
|
# When
|
|
let badMessage1: RelayWakuMessage = fakeWakuMessage(
|
|
contentTopic = DefaultContentTopic, payload = toBytes("")
|
|
)
|
|
.toRelayWakuMessage()
|
|
let badRequestBody1 =
|
|
PushRequest(pubsubTopic: some(DefaultPubsubTopic), message: badMessage1)
|
|
|
|
let badMessage2: RelayWakuMessage =
|
|
fakeWakuMessage(contentTopic = "", payload = toBytes("Sthg")).toRelayWakuMessage()
|
|
let badRequestBody2 =
|
|
PushRequest(pubsubTopic: some(DefaultPubsubTopic), message: badMessage2)
|
|
|
|
let badRequestBody3 =
|
|
PushRequest(pubsubTopic: none(PubsubTopic), message: badMessage2)
|
|
|
|
var response: RestResponse[string]
|
|
|
|
response = await restLightPushTest.client.sendPushRequest(badRequestBody1)
|
|
|
|
echo "response", $response
|
|
|
|
# Then
|
|
check:
|
|
response.status == 400
|
|
$response.contentType == $MIMETYPE_TEXT
|
|
response.data.startsWith("Invalid content body")
|
|
|
|
# when
|
|
response = await restLightPushTest.client.sendPushRequest(badRequestBody2)
|
|
|
|
# Then
|
|
check:
|
|
response.status == 400
|
|
$response.contentType == $MIMETYPE_TEXT
|
|
response.data.startsWith("Invalid content body")
|
|
|
|
# when
|
|
response = await restLightPushTest.client.sendPushRequest(badRequestBody3)
|
|
|
|
# Then
|
|
check:
|
|
response.status == 400
|
|
$response.contentType == $MIMETYPE_TEXT
|
|
response.data.startsWith("Invalid content body")
|
|
|
|
await restLightPushTest.shutdown()
|
|
|
|
# disabled due to this bug in nim-chronos https://github.com/status-im/nim-chronos/issues/500
|
|
xasyncTest "Request rate limit push message":
|
|
# Given
|
|
let budgetCap = 3
|
|
let tokenPeriod = 500.millis
|
|
let restLightPushTest = await RestLightPushTest.init((budgetCap, tokenPeriod))
|
|
|
|
restLightPushTest.consumerNode.subscribe(
|
|
(kind: PubsubSub, topic: DefaultPubsubTopic)
|
|
)
|
|
restLightPushTest.serviceNode.subscribe(
|
|
(kind: PubsubSub, topic: DefaultPubsubTopic)
|
|
)
|
|
require:
|
|
toSeq(restLightPushTest.serviceNode.wakuRelay.subscribedTopics).len == 1
|
|
|
|
# When
|
|
let pushProc = proc() {.async.} =
|
|
let message: RelayWakuMessage = fakeWakuMessage(
|
|
contentTopic = DefaultContentTopic, payload = toBytes("TEST-1")
|
|
)
|
|
.toRelayWakuMessage()
|
|
|
|
let requestBody =
|
|
PushRequest(pubsubTopic: some(DefaultPubsubTopic), message: message)
|
|
let response = await restLightPushTest.client.sendPushRequest(requestBody)
|
|
|
|
echo "response", $response
|
|
|
|
# Then
|
|
check:
|
|
response.status == 200
|
|
$response.contentType == $MIMETYPE_TEXT
|
|
|
|
let pushRejectedProc = proc() {.async.} =
|
|
let message: RelayWakuMessage = fakeWakuMessage(
|
|
contentTopic = DefaultContentTopic, payload = toBytes("TEST-1")
|
|
)
|
|
.toRelayWakuMessage()
|
|
|
|
let requestBody =
|
|
PushRequest(pubsubTopic: some(DefaultPubsubTopic), message: message)
|
|
let response = await restLightPushTest.client.sendPushRequest(requestBody)
|
|
|
|
echo "response", $response
|
|
|
|
# Then
|
|
check:
|
|
response.status == 429
|
|
|
|
await pushProc()
|
|
await pushProc()
|
|
await pushProc()
|
|
await pushRejectedProc()
|
|
|
|
await sleepAsync(tokenPeriod)
|
|
|
|
for runCnt in 0 ..< 3:
|
|
let startTime = Moment.now()
|
|
for sendCnt in 0 ..< budgetCap:
|
|
await pushProc()
|
|
|
|
let endTime = Moment.now()
|
|
let elapsed: Duration = (endTime - startTime)
|
|
await sleepAsync(tokenPeriod - elapsed)
|
|
|
|
await restLightPushTest.shutdown()
|
|
|
|
## TODO: Re-work this test when lightpush protocol change is done: https://github.com/waku-org/pm/issues/93
|
|
## This test is similar when no available peer exists for publish. Currently it is returning success,
|
|
## that makes this test not useful.
|
|
# asyncTest "Push message request service not available":
|
|
# # Given
|
|
# let restLightPushTest = await RestLightPushTest.init()
|
|
|
|
# # When
|
|
# let message : RelayWakuMessage = fakeWakuMessage(contentTopic = DefaultContentTopic,
|
|
# payload = toBytes("TEST-1")).toRelayWakuMessage()
|
|
|
|
# let requestBody = PushRequest(pubsubTopic: some("NoExistTopic"),
|
|
# message: message)
|
|
# let response = await restLightPushTest.client.sendPushRequest(requestBody)
|
|
|
|
# echo "response", $response
|
|
|
|
# # Then
|
|
# check:
|
|
# response.status == 503
|
|
# $response.contentType == $MIMETYPE_TEXT
|
|
# response.data == "Failed to request a message push: Can not publish to any peers"
|
|
|
|
# await restLightPushTest.shutdown()
|