zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6839 Commits
183 Branches
291 MiB
Tree: 6353862ac0
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '6353862ac0'
${ noResults }
tendermint/privval/tcp.go

214 lines
4.6 KiB
Raw Normal View History

privval: Add IPCPV and fix SocketPV (#2568) Ref: #2563 I added IPC as an unencrypted alternative to SocketPV. Besides I fixed the following aspects of SocketPV: Added locking since we are operating on a single socket The connection deadline is extended every time a successful packet exchange happens; otherwise the connection would always die permanently x seconds after the connection was established. Added a ping/heartbeat mechanism to keep the connection alive; native TCP keepalives do not work in this use-case * Extend the SecureConn socket to extend its deadline * Add locking & ping/heartbeat packets to SocketPV * Implement IPC PV and abstract socket signing * Refactored IPC and SocketPV * Implement @melekes comments * Fixes to rebase
6 years ago
 
  1. package privval
  2. 

  3. import (
  4. 	"errors"
  5. 	"net"
  6. 	"time"
  7. 

  8. 	"github.com/tendermint/tendermint/crypto/ed25519"
  9. 	cmn "github.com/tendermint/tendermint/libs/common"
  10. 	"github.com/tendermint/tendermint/libs/log"
  11. 	p2pconn "github.com/tendermint/tendermint/p2p/conn"
  12. 	"github.com/tendermint/tendermint/types"
  13. )
  14. 

  15. const (
  16. 	defaultAcceptDeadlineSeconds = 3
  17. 	defaultConnDeadlineSeconds   = 3
  18. 	defaultConnHeartBeatSeconds  = 2
  19. 	defaultDialRetries           = 10
  20. )
  21. 

  22. // Socket errors.

  23. var (
  24. 	ErrDialRetryMax       = errors.New("dialed maximum retries")
  25. 	ErrConnTimeout        = errors.New("remote signer timed out")
  26. 	ErrUnexpectedResponse = errors.New("received unexpected response")
  27. )
  28. 

  29. var (
  30. 	acceptDeadline = time.Second * defaultAcceptDeadlineSeconds
  31. 	connTimeout    = time.Second * defaultConnDeadlineSeconds
  32. 	connHeartbeat  = time.Second * defaultConnHeartBeatSeconds
  33. )
  34. 

  35. // TCPValOption sets an optional parameter on the SocketPV.

  36. type TCPValOption func(*TCPVal)
  37. 

  38. // TCPValAcceptDeadline sets the deadline for the TCPVal listener.

  39. // A zero time value disables the deadline.

  40. func TCPValAcceptDeadline(deadline time.Duration) TCPValOption {
  41. 	return func(sc *TCPVal) { sc.acceptDeadline = deadline }
  42. }
  43. 

  44. // TCPValConnTimeout sets the read and write timeout for connections

  45. // from external signing processes.

  46. func TCPValConnTimeout(timeout time.Duration) TCPValOption {
  47. 	return func(sc *TCPVal) { sc.connTimeout = timeout }
  48. }
  49. 

  50. // TCPValHeartbeat sets the period on which to check the liveness of the

  51. // connected Signer connections.

  52. func TCPValHeartbeat(period time.Duration) TCPValOption {
  53. 	return func(sc *TCPVal) { sc.connHeartbeat = period }
  54. }
  55. 

  56. // TCPVal implements PrivValidator, it uses a socket to request signatures

  57. // from an external process.

  58. type TCPVal struct {
  59. 	cmn.BaseService
  60. 	*RemoteSignerClient
  61. 

  62. 	addr           string
  63. 	acceptDeadline time.Duration
  64. 	connTimeout    time.Duration
  65. 	connHeartbeat  time.Duration
  66. 	privKey        ed25519.PrivKeyEd25519
  67. 

  68. 	conn       net.Conn
  69. 	listener   net.Listener
  70. 	cancelPing chan struct{}
  71. 	pingTicker *time.Ticker
  72. }
  73. 

  74. // Check that TCPVal implements PrivValidator.

  75. var _ types.PrivValidator = (*TCPVal)(nil)
  76. 

  77. // NewTCPVal returns an instance of TCPVal.

  78. func NewTCPVal(
  79. 	logger log.Logger,
  80. 	socketAddr string,
  81. 	privKey ed25519.PrivKeyEd25519,
  82. ) *TCPVal {
  83. 	sc := &TCPVal{
  84. 		addr:           socketAddr,
  85. 		acceptDeadline: acceptDeadline,
  86. 		connTimeout:    connTimeout,
  87. 		connHeartbeat:  connHeartbeat,
  88. 		privKey:        privKey,
  89. 	}
  90. 

  91. 	sc.BaseService = *cmn.NewBaseService(logger, "TCPVal", sc)
  92. 

  93. 	return sc
  94. }
  95. 

  96. // OnStart implements cmn.Service.

  97. func (sc *TCPVal) OnStart() error {
  98. 	if err := sc.listen(); err != nil {
  99. 		sc.Logger.Error("OnStart", "err", err)
  100. 		return err
  101. 	}
  102. 

  103. 	conn, err := sc.waitConnection()
  104. 	if err != nil {
  105. 		sc.Logger.Error("OnStart", "err", err)
  106. 		return err
  107. 	}
  108. 

  109. 	sc.conn = conn
  110. 

  111. 	sc.RemoteSignerClient = NewRemoteSignerClient(sc.conn)
  112. 

  113. 	// Start a routine to keep the connection alive

  114. 	sc.cancelPing = make(chan struct{}, 1)
  115. 	sc.pingTicker = time.NewTicker(sc.connHeartbeat)
  116. 	go func() {
  117. 		for {
  118. 			select {
  119. 			case <-sc.pingTicker.C:
  120. 				err := sc.Ping()
  121. 				if err != nil {
  122. 					sc.Logger.Error(
  123. 						"Ping",
  124. 						"err", err,
  125. 					)
  126. 				}
  127. 			case <-sc.cancelPing:
  128. 				sc.pingTicker.Stop()
  129. 				return
  130. 			}
  131. 		}
  132. 	}()
  133. 

  134. 	return nil
  135. }
  136. 

  137. // OnStop implements cmn.Service.

  138. func (sc *TCPVal) OnStop() {
  139. 	if sc.cancelPing != nil {
  140. 		close(sc.cancelPing)
  141. 	}
  142. 

  143. 	if sc.conn != nil {
  144. 		if err := sc.conn.Close(); err != nil {
  145. 			sc.Logger.Error("OnStop", "err", err)
  146. 		}
  147. 	}
  148. 

  149. 	if sc.listener != nil {
  150. 		if err := sc.listener.Close(); err != nil {
  151. 			sc.Logger.Error("OnStop", "err", err)
  152. 		}
  153. 	}
  154. }
  155. 

  156. func (sc *TCPVal) acceptConnection() (net.Conn, error) {
  157. 	conn, err := sc.listener.Accept()
  158. 	if err != nil {
  159. 		if !sc.IsRunning() {
  160. 			return nil, nil // Ignore error from listener closing.

  161. 		}
  162. 		return nil, err
  163. 

  164. 	}
  165. 

  166. 	conn, err = p2pconn.MakeSecretConnection(conn, sc.privKey)
  167. 	if err != nil {
  168. 		return nil, err
  169. 	}
  170. 

  171. 	return conn, nil
  172. }
  173. 

  174. func (sc *TCPVal) listen() error {
  175. 	ln, err := net.Listen(cmn.ProtocolAndAddress(sc.addr))
  176. 	if err != nil {
  177. 		return err
  178. 	}
  179. 

  180. 	sc.listener = newTCPTimeoutListener(
  181. 		ln,
  182. 		sc.acceptDeadline,
  183. 		sc.connTimeout,
  184. 		sc.connHeartbeat,
  185. 	)
  186. 

  187. 	return nil
  188. }
  189. 

  190. // waitConnection uses the configured wait timeout to error if no external

  191. // process connects in the time period.

  192. func (sc *TCPVal) waitConnection() (net.Conn, error) {
  193. 	var (
  194. 		connc = make(chan net.Conn, 1)
  195. 		errc  = make(chan error, 1)
  196. 	)
  197. 

  198. 	go func(connc chan<- net.Conn, errc chan<- error) {
  199. 		conn, err := sc.acceptConnection()
  200. 		if err != nil {
  201. 			errc <- err
  202. 			return
  203. 		}
  204. 

  205. 		connc <- conn
  206. 	}(connc, errc)
  207. 

  208. 	select {
  209. 	case conn := <-connc:
  210. 		return conn, nil
  211. 	case err := <-errc:
  212. 		return nil, err
  213. 	}
  214. }