mirror of
https://github.com/libp2p/go-libp2p.git
synced 2025-09-26 20:21:26 +08:00
6249e685e9
This introduces a new GatedMaListener type which gates conns accepted from a manet.Listener with a gater and creates the rcmgr scope for it. Explicitly passing the scope allows for many guardrails that the previous interface assertion didn't. This breaks the previous responsibility of the upgradeListener method into two, one gating the connection initially, and the other upgrading the connection with a security and muxer selection. This split makes it easy to gate the connection with the resource manager as early as possible. This is especially true for websocket because we want to gate the connection just after the TCP connection is established, and not after the tls handshake + websocket upgrade is completed.
354 lines
9.7 KiB
Go
354 lines
9.7 KiB
Go
package tcp
|
|
|
|
import (
|
|
"context"
|
|
"errors"
|
|
"fmt"
|
|
"net"
|
|
"os"
|
|
"runtime"
|
|
"syscall"
|
|
"time"
|
|
|
|
"github.com/libp2p/go-libp2p/core/network"
|
|
"github.com/libp2p/go-libp2p/core/peer"
|
|
"github.com/libp2p/go-libp2p/core/transport"
|
|
"github.com/libp2p/go-libp2p/p2p/net/reuseport"
|
|
"github.com/libp2p/go-libp2p/p2p/transport/tcpreuse"
|
|
|
|
logging "github.com/ipfs/go-log/v2"
|
|
ma "github.com/multiformats/go-multiaddr"
|
|
mafmt "github.com/multiformats/go-multiaddr-fmt"
|
|
manet "github.com/multiformats/go-multiaddr/net"
|
|
)
|
|
|
|
const defaultConnectTimeout = 5 * time.Second
|
|
|
|
var log = logging.Logger("tcp-tpt")
|
|
|
|
const keepAlivePeriod = 30 * time.Second
|
|
|
|
type canKeepAlive interface {
|
|
SetKeepAlive(bool) error
|
|
SetKeepAlivePeriod(time.Duration) error
|
|
}
|
|
|
|
var _ canKeepAlive = &net.TCPConn{}
|
|
|
|
// Deprecated: Use tcpreuse.ReuseportIsAvailable
|
|
var ReuseportIsAvailable = tcpreuse.ReuseportIsAvailable
|
|
|
|
func tryKeepAlive(conn net.Conn, keepAlive bool) {
|
|
keepAliveConn, ok := conn.(canKeepAlive)
|
|
if !ok {
|
|
log.Errorf("can't set TCP keepalives. net.Conn of type %T doesn't support SetKeepAlive", conn)
|
|
return
|
|
}
|
|
if err := keepAliveConn.SetKeepAlive(keepAlive); err != nil {
|
|
// Sometimes we seem to get "invalid argument" results from this function on Darwin.
|
|
// This might be due to a closed connection, but I can't reproduce that on Linux.
|
|
//
|
|
// But there's nothing we can do about invalid arguments, so we'll drop this to a
|
|
// debug.
|
|
if errors.Is(err, os.ErrInvalid) || errors.Is(err, syscall.EINVAL) {
|
|
log.Debugw("failed to enable TCP keepalive", "error", err)
|
|
} else {
|
|
log.Errorw("failed to enable TCP keepalive", "error", err)
|
|
}
|
|
return
|
|
}
|
|
|
|
if runtime.GOOS != "openbsd" {
|
|
if err := keepAliveConn.SetKeepAlivePeriod(keepAlivePeriod); err != nil {
|
|
log.Errorw("failed set keepalive period", "error", err)
|
|
}
|
|
}
|
|
}
|
|
|
|
// try to set linger on the connection, if possible.
|
|
func tryLinger(conn net.Conn, sec int) {
|
|
type canLinger interface {
|
|
SetLinger(int) error
|
|
}
|
|
|
|
if lingerConn, ok := conn.(canLinger); ok {
|
|
_ = lingerConn.SetLinger(sec)
|
|
}
|
|
}
|
|
|
|
type tcpGatedMaListener struct {
|
|
transport.GatedMaListener
|
|
sec int
|
|
}
|
|
|
|
func (ll *tcpGatedMaListener) Accept() (manet.Conn, network.ConnManagementScope, error) {
|
|
c, scope, err := ll.GatedMaListener.Accept()
|
|
if err != nil {
|
|
if scope != nil {
|
|
log.Errorf("BUG: got non-nil scope but also an error: %s", err)
|
|
scope.Done()
|
|
}
|
|
return nil, nil, err
|
|
}
|
|
tryLinger(c, ll.sec)
|
|
tryKeepAlive(c, true)
|
|
return c, scope, nil
|
|
}
|
|
|
|
type Option func(*TcpTransport) error
|
|
|
|
func DisableReuseport() Option {
|
|
return func(tr *TcpTransport) error {
|
|
tr.disableReuseport = true
|
|
return nil
|
|
}
|
|
}
|
|
|
|
func WithConnectionTimeout(d time.Duration) Option {
|
|
return func(tr *TcpTransport) error {
|
|
tr.connectTimeout = d
|
|
return nil
|
|
}
|
|
}
|
|
|
|
func WithMetrics() Option {
|
|
return func(tr *TcpTransport) error {
|
|
tr.enableMetrics = true
|
|
return nil
|
|
}
|
|
}
|
|
|
|
// WithDialerForAddr sets a custom dialer for the given address.
|
|
// If set, it will be the *ONLY* dialer used.
|
|
func WithDialerForAddr(d DialerForAddr) Option {
|
|
return func(tr *TcpTransport) error {
|
|
tr.overrideDialerForAddr = d
|
|
return nil
|
|
}
|
|
}
|
|
|
|
type ContextDialer interface {
|
|
DialContext(ctx context.Context, network, address string) (net.Conn, error)
|
|
}
|
|
|
|
// DialerForAddr is a function that returns a dialer for a given address.
|
|
// Implementations must return either a ContextDialer or an error. It is
|
|
// invalid to return nil, nil.
|
|
type DialerForAddr func(raddr ma.Multiaddr) (ContextDialer, error)
|
|
|
|
// TcpTransport is the TCP transport.
|
|
type TcpTransport struct {
|
|
// Connection upgrader for upgrading insecure stream connections to
|
|
// secure multiplex connections.
|
|
upgrader transport.Upgrader
|
|
|
|
// optional custom dialer to use for dialing. If set, it will be the *ONLY* dialer
|
|
// used. The transport will not attempt to reuse the listen port to
|
|
// dial or the shared TCP transport for dialing.
|
|
overrideDialerForAddr DialerForAddr
|
|
|
|
disableReuseport bool // Explicitly disable reuseport.
|
|
enableMetrics bool
|
|
|
|
// share and demultiplex TCP listeners across multiple transports
|
|
sharedTcp *tcpreuse.ConnMgr
|
|
|
|
// TCP connect timeout
|
|
connectTimeout time.Duration
|
|
|
|
rcmgr network.ResourceManager
|
|
|
|
reuse reuseport.Transport
|
|
|
|
metricsCollector *aggregatingCollector
|
|
}
|
|
|
|
var _ transport.Transport = &TcpTransport{}
|
|
var _ transport.DialUpdater = &TcpTransport{}
|
|
|
|
// NewTCPTransport creates a tcp transport object that tracks dialers and listeners
|
|
// created.
|
|
func NewTCPTransport(upgrader transport.Upgrader, rcmgr network.ResourceManager, sharedTCP *tcpreuse.ConnMgr, opts ...Option) (*TcpTransport, error) {
|
|
if rcmgr == nil {
|
|
rcmgr = &network.NullResourceManager{}
|
|
}
|
|
tr := &TcpTransport{
|
|
upgrader: upgrader,
|
|
connectTimeout: defaultConnectTimeout, // can be set by using the WithConnectionTimeout option
|
|
rcmgr: rcmgr,
|
|
sharedTcp: sharedTCP,
|
|
}
|
|
for _, o := range opts {
|
|
if err := o(tr); err != nil {
|
|
return nil, err
|
|
}
|
|
}
|
|
return tr, nil
|
|
}
|
|
|
|
var dialMatcher = mafmt.And(mafmt.IP, mafmt.Base(ma.P_TCP))
|
|
|
|
// CanDial returns true if this transport believes it can dial the given
|
|
// multiaddr.
|
|
func (t *TcpTransport) CanDial(addr ma.Multiaddr) bool {
|
|
return dialMatcher.Matches(addr)
|
|
}
|
|
|
|
func (t *TcpTransport) customDial(ctx context.Context, raddr ma.Multiaddr) (manet.Conn, error) {
|
|
// get the net.Dial friendly arguments from the remote addr
|
|
rnet, rnaddr, err := manet.DialArgs(raddr)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
dialer, err := t.overrideDialerForAddr(raddr)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
if dialer == nil {
|
|
return nil, fmt.Errorf("dialer for address %s is nil", raddr)
|
|
}
|
|
|
|
// ok, Dial!
|
|
var nconn net.Conn
|
|
switch rnet {
|
|
case "tcp", "tcp4", "tcp6", "udp", "udp4", "udp6", "unix":
|
|
nconn, err = dialer.DialContext(ctx, rnet, rnaddr)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
default:
|
|
return nil, fmt.Errorf("unrecognized network: %s", rnet)
|
|
}
|
|
|
|
return manet.WrapNetConn(nconn)
|
|
}
|
|
|
|
func (t *TcpTransport) maDial(ctx context.Context, raddr ma.Multiaddr) (manet.Conn, error) {
|
|
// Apply the deadline iff applicable
|
|
if t.connectTimeout > 0 {
|
|
var cancel context.CancelFunc
|
|
ctx, cancel = context.WithTimeout(ctx, t.connectTimeout)
|
|
defer cancel()
|
|
}
|
|
|
|
if t.overrideDialerForAddr != nil {
|
|
return t.customDial(ctx, raddr)
|
|
}
|
|
|
|
if t.sharedTcp != nil {
|
|
return t.sharedTcp.DialContext(ctx, raddr)
|
|
}
|
|
|
|
if t.UseReuseport() {
|
|
return t.reuse.DialContext(ctx, raddr)
|
|
}
|
|
var d manet.Dialer
|
|
return d.DialContext(ctx, raddr)
|
|
}
|
|
|
|
// Dial dials the peer at the remote address.
|
|
func (t *TcpTransport) Dial(ctx context.Context, raddr ma.Multiaddr, p peer.ID) (transport.CapableConn, error) {
|
|
return t.DialWithUpdates(ctx, raddr, p, nil)
|
|
}
|
|
|
|
func (t *TcpTransport) DialWithUpdates(ctx context.Context, raddr ma.Multiaddr, p peer.ID, updateChan chan<- transport.DialUpdate) (transport.CapableConn, error) {
|
|
connScope, err := t.rcmgr.OpenConnection(network.DirOutbound, true, raddr)
|
|
if err != nil {
|
|
log.Debugw("resource manager blocked outgoing connection", "peer", p, "addr", raddr, "error", err)
|
|
return nil, err
|
|
}
|
|
|
|
c, err := t.dialWithScope(ctx, raddr, p, connScope, updateChan)
|
|
if err != nil {
|
|
connScope.Done()
|
|
return nil, err
|
|
}
|
|
return c, nil
|
|
}
|
|
|
|
func (t *TcpTransport) dialWithScope(ctx context.Context, raddr ma.Multiaddr, p peer.ID, connScope network.ConnManagementScope, updateChan chan<- transport.DialUpdate) (transport.CapableConn, error) {
|
|
if err := connScope.SetPeer(p); err != nil {
|
|
log.Debugw("resource manager blocked outgoing connection for peer", "peer", p, "addr", raddr, "error", err)
|
|
return nil, err
|
|
}
|
|
conn, err := t.maDial(ctx, raddr)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
// Set linger to 0 so we never get stuck in the TIME-WAIT state. When
|
|
// linger is 0, connections are _reset_ instead of closed with a FIN.
|
|
// This means we can immediately reuse the 5-tuple and reconnect.
|
|
tryLinger(conn, 0)
|
|
tryKeepAlive(conn, true)
|
|
c := conn
|
|
if t.enableMetrics {
|
|
var err error
|
|
c, err = newTracingConn(conn, t.metricsCollector, true)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
}
|
|
if updateChan != nil {
|
|
select {
|
|
case updateChan <- transport.DialUpdate{Kind: transport.UpdateKindHandshakeProgressed, Addr: raddr}:
|
|
default:
|
|
// It is better to skip the update than to delay upgrading the connection
|
|
}
|
|
}
|
|
direction := network.DirOutbound
|
|
if ok, isClient, _ := network.GetSimultaneousConnect(ctx); ok && !isClient {
|
|
direction = network.DirInbound
|
|
}
|
|
return t.upgrader.Upgrade(ctx, t, c, direction, p, connScope)
|
|
}
|
|
|
|
// UseReuseport returns true if reuseport is enabled and available.
|
|
func (t *TcpTransport) UseReuseport() bool {
|
|
return !t.disableReuseport && tcpreuse.ReuseportIsAvailable()
|
|
}
|
|
|
|
func (t *TcpTransport) unsharedMAListen(laddr ma.Multiaddr) (manet.Listener, error) {
|
|
if t.UseReuseport() {
|
|
return t.reuse.Listen(laddr)
|
|
}
|
|
return manet.Listen(laddr)
|
|
}
|
|
|
|
// Listen listens on the given multiaddr.
|
|
func (t *TcpTransport) Listen(laddr ma.Multiaddr) (transport.Listener, error) {
|
|
var list transport.GatedMaListener
|
|
var err error
|
|
if t.sharedTcp != nil {
|
|
list, err = t.sharedTcp.DemultiplexedListen(laddr, tcpreuse.DemultiplexedConnType_MultistreamSelect)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
} else {
|
|
mal, err := t.unsharedMAListen(laddr)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
list = t.upgrader.GateMaListener(mal)
|
|
}
|
|
|
|
if t.enableMetrics {
|
|
// TODO: Fix this: The tcpListener wrapping should happen on both enableMetrics and disabledMetrics path
|
|
list = newTracingListener(&tcpGatedMaListener{list, 0}, t.metricsCollector)
|
|
}
|
|
return t.upgrader.UpgradeGatedMaListener(t, list), nil
|
|
}
|
|
|
|
// Protocols returns the list of terminal protocols this transport can dial.
|
|
func (t *TcpTransport) Protocols() []int {
|
|
return []int{ma.P_TCP}
|
|
}
|
|
|
|
// Proxy always returns false for the TCP transport.
|
|
func (t *TcpTransport) Proxy() bool {
|
|
return false
|
|
}
|
|
|
|
func (t *TcpTransport) String() string {
|
|
return "TCP"
|
|
}
|