zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6952 Commits
183 Branches
291 MiB
Tree: 6a80412a01
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '6a80412a01'
${ noResults }
tendermint/privval/tcp.go

216 lines
4.7 KiB
Raw Normal View History

privval: Add IPCPV and fix SocketPV (#2568) Ref: #2563 I added IPC as an unencrypted alternative to SocketPV. Besides I fixed the following aspects of SocketPV: Added locking since we are operating on a single socket The connection deadline is extended every time a successful packet exchange happens; otherwise the connection would always die permanently x seconds after the connection was established. Added a ping/heartbeat mechanism to keep the connection alive; native TCP keepalives do not work in this use-case * Extend the SecureConn socket to extend its deadline * Add locking & ping/heartbeat packets to SocketPV * Implement IPC PV and abstract socket signing * Refactored IPC and SocketPV * Implement @melekes comments * Fixes to rebase
6 years ago
Remove privval.GetAddress(), memoize pubkey (#2948) privval: remove GetAddress(), memoize pubkey
6 years ago
privval: Add IPCPV and fix SocketPV (#2568) Ref: #2563 I added IPC as an unencrypted alternative to SocketPV. Besides I fixed the following aspects of SocketPV: Added locking since we are operating on a single socket The connection deadline is extended every time a successful packet exchange happens; otherwise the connection would always die permanently x seconds after the connection was established. Added a ping/heartbeat mechanism to keep the connection alive; native TCP keepalives do not work in this use-case * Extend the SecureConn socket to extend its deadline * Add locking & ping/heartbeat packets to SocketPV * Implement IPC PV and abstract socket signing * Refactored IPC and SocketPV * Implement @melekes comments * Fixes to rebase
6 years ago
 
  1. package privval
  2. 

  3. import (
  4. 	"errors"
  5. 	"net"
  6. 	"time"
  7. 

  8. 	"github.com/tendermint/tendermint/crypto/ed25519"
  9. 	cmn "github.com/tendermint/tendermint/libs/common"
  10. 	"github.com/tendermint/tendermint/libs/log"
  11. 	p2pconn "github.com/tendermint/tendermint/p2p/conn"
  12. 	"github.com/tendermint/tendermint/types"
  13. )
  14. 

  15. const (
  16. 	defaultAcceptDeadlineSeconds = 3
  17. 	defaultConnDeadlineSeconds   = 3
  18. 	defaultConnHeartBeatSeconds  = 2
  19. 	defaultDialRetries           = 10
  20. )
  21. 

  22. // Socket errors.

  23. var (
  24. 	ErrDialRetryMax       = errors.New("dialed maximum retries")
  25. 	ErrConnTimeout        = errors.New("remote signer timed out")
  26. 	ErrUnexpectedResponse = errors.New("received unexpected response")
  27. )
  28. 

  29. var (
  30. 	acceptDeadline = time.Second * defaultAcceptDeadlineSeconds
  31. 	connTimeout    = time.Second * defaultConnDeadlineSeconds
  32. 	connHeartbeat  = time.Second * defaultConnHeartBeatSeconds
  33. )
  34. 

  35. // TCPValOption sets an optional parameter on the SocketPV.

  36. type TCPValOption func(*TCPVal)
  37. 

  38. // TCPValAcceptDeadline sets the deadline for the TCPVal listener.

  39. // A zero time value disables the deadline.

  40. func TCPValAcceptDeadline(deadline time.Duration) TCPValOption {
  41. 	return func(sc *TCPVal) { sc.acceptDeadline = deadline }
  42. }
  43. 

  44. // TCPValConnTimeout sets the read and write timeout for connections

  45. // from external signing processes.

  46. func TCPValConnTimeout(timeout time.Duration) TCPValOption {
  47. 	return func(sc *TCPVal) { sc.connTimeout = timeout }
  48. }
  49. 

  50. // TCPValHeartbeat sets the period on which to check the liveness of the

  51. // connected Signer connections.

  52. func TCPValHeartbeat(period time.Duration) TCPValOption {
  53. 	return func(sc *TCPVal) { sc.connHeartbeat = period }
  54. }
  55. 

  56. // TCPVal implements PrivValidator, it uses a socket to request signatures

  57. // from an external process.

  58. type TCPVal struct {
  59. 	cmn.BaseService
  60. 	*RemoteSignerClient
  61. 

  62. 	addr           string
  63. 	acceptDeadline time.Duration
  64. 	connTimeout    time.Duration
  65. 	connHeartbeat  time.Duration
  66. 	privKey        ed25519.PrivKeyEd25519
  67. 

  68. 	conn       net.Conn
  69. 	listener   net.Listener
  70. 	cancelPing chan struct{}
  71. 	pingTicker *time.Ticker
  72. }
  73. 

  74. // Check that TCPVal implements PrivValidator.

  75. var _ types.PrivValidator = (*TCPVal)(nil)
  76. 

  77. // NewTCPVal returns an instance of TCPVal.

  78. func NewTCPVal(
  79. 	logger log.Logger,
  80. 	socketAddr string,
  81. 	privKey ed25519.PrivKeyEd25519,
  82. ) *TCPVal {
  83. 	sc := &TCPVal{
  84. 		addr:           socketAddr,
  85. 		acceptDeadline: acceptDeadline,
  86. 		connTimeout:    connTimeout,
  87. 		connHeartbeat:  connHeartbeat,
  88. 		privKey:        privKey,
  89. 	}
  90. 

  91. 	sc.BaseService = *cmn.NewBaseService(logger, "TCPVal", sc)
  92. 

  93. 	return sc
  94. }
  95. 

  96. // OnStart implements cmn.Service.

  97. func (sc *TCPVal) OnStart() error {
  98. 	if err := sc.listen(); err != nil {
  99. 		sc.Logger.Error("OnStart", "err", err)
  100. 		return err
  101. 	}
  102. 

  103. 	conn, err := sc.waitConnection()
  104. 	if err != nil {
  105. 		sc.Logger.Error("OnStart", "err", err)
  106. 		return err
  107. 	}
  108. 

  109. 	sc.conn = conn
  110. 	sc.RemoteSignerClient, err = NewRemoteSignerClient(sc.conn)
  111. 	if err != nil {
  112. 		return err
  113. 	}
  114. 

  115. 	// Start a routine to keep the connection alive

  116. 	sc.cancelPing = make(chan struct{}, 1)
  117. 	sc.pingTicker = time.NewTicker(sc.connHeartbeat)
  118. 	go func() {
  119. 		for {
  120. 			select {
  121. 			case <-sc.pingTicker.C:
  122. 				err := sc.Ping()
  123. 				if err != nil {
  124. 					sc.Logger.Error(
  125. 						"Ping",
  126. 						"err", err,
  127. 					)
  128. 				}
  129. 			case <-sc.cancelPing:
  130. 				sc.pingTicker.Stop()
  131. 				return
  132. 			}
  133. 		}
  134. 	}()
  135. 

  136. 	return nil
  137. }
  138. 

  139. // OnStop implements cmn.Service.

  140. func (sc *TCPVal) OnStop() {
  141. 	if sc.cancelPing != nil {
  142. 		close(sc.cancelPing)
  143. 	}
  144. 

  145. 	if sc.conn != nil {
  146. 		if err := sc.conn.Close(); err != nil {
  147. 			sc.Logger.Error("OnStop", "err", err)
  148. 		}
  149. 	}
  150. 

  151. 	if sc.listener != nil {
  152. 		if err := sc.listener.Close(); err != nil {
  153. 			sc.Logger.Error("OnStop", "err", err)
  154. 		}
  155. 	}
  156. }
  157. 

  158. func (sc *TCPVal) acceptConnection() (net.Conn, error) {
  159. 	conn, err := sc.listener.Accept()
  160. 	if err != nil {
  161. 		if !sc.IsRunning() {
  162. 			return nil, nil // Ignore error from listener closing.

  163. 		}
  164. 		return nil, err
  165. 

  166. 	}
  167. 

  168. 	conn, err = p2pconn.MakeSecretConnection(conn, sc.privKey)
  169. 	if err != nil {
  170. 		return nil, err
  171. 	}
  172. 

  173. 	return conn, nil
  174. }
  175. 

  176. func (sc *TCPVal) listen() error {
  177. 	ln, err := net.Listen(cmn.ProtocolAndAddress(sc.addr))
  178. 	if err != nil {
  179. 		return err
  180. 	}
  181. 

  182. 	sc.listener = newTCPTimeoutListener(
  183. 		ln,
  184. 		sc.acceptDeadline,
  185. 		sc.connTimeout,
  186. 		sc.connHeartbeat,
  187. 	)
  188. 

  189. 	return nil
  190. }
  191. 

  192. // waitConnection uses the configured wait timeout to error if no external

  193. // process connects in the time period.

  194. func (sc *TCPVal) waitConnection() (net.Conn, error) {
  195. 	var (
  196. 		connc = make(chan net.Conn, 1)
  197. 		errc  = make(chan error, 1)
  198. 	)
  199. 

  200. 	go func(connc chan<- net.Conn, errc chan<- error) {
  201. 		conn, err := sc.acceptConnection()
  202. 		if err != nil {
  203. 			errc <- err
  204. 			return
  205. 		}
  206. 

  207. 		connc <- conn
  208. 	}(connc, errc)
  209. 

  210. 	select {
  211. 	case conn := <-connc:
  212. 		return conn, nil
  213. 	case err := <-errc:
  214. 		return nil, err
  215. 	}
  216. }