[hippotat] / server

#!/usr/bin/python3

import signal
signal.signal(signal.SIGINT, signal.SIG_DFL)

import sys
import os

import twisted
import twisted.internet
import twisted.internet.endpoints
from twisted.internet import reactor
from twisted.web.server import NOT_DONE_YET
from twisted.logger import LogLevel

#import twisted.web.server import Site
#from twisted.web.resource import Resource

from optparse import OptionParser
from configparser import ConfigParser
from configparser import NoOptionError

import collections

import syslog

from hippotit import *

clients = { }

defcfg = '''
[DEFAULT]
max_batch_down = 65536
max_queue_time = 10
max_request_time = 54

[virtual]
mtu = 1500
# network
# [host]
# [relay]

[server]
ipif = userv root ipif %(host)s,%(relay)s,%(mtu)s,slip %(network)s
addrs = 127.0.0.1 ::1
port = 8099

[limits]
max_batch_down = 262144
max_queue_time = 121
max_request_time = 121
'''

#---------- error handling ----------

def crash(err):
  print('CRASH ', err, file=sys.stderr)
  try: reactor.stop()
  except twisted.internet.error.ReactorNotRunning: pass

def crash_on_defer(defer):
  defer.addErrback(lambda err: crash(err))

def crash_on_critical(event):
  if event.get('log_level') >= LogLevel.critical:
    crash(twisted.logger.formatEvent(event))

#---------- "router" ----------

def route(packet, saddr, daddr):
  print('TRACE ', saddr, daddr, packet)
  try: client = clients[daddr]
  except KeyError: dclient = None
  if dclient is not None:
    dclient.queue_outbound(packet)
  elif saddr.is_link_local or daddr.is_link_local:
    log_discard(packet, saddr, daddr, 'link-local')
  elif daddr == host or daddr not in network:
    print('TRACE INBOUND ', saddr, daddr, packet)
    queue_inbound(packet)
  elif daddr == relay:
    log_discard(packet, saddr, daddr, 'relay')
  else:
    log_discard(packet, saddr, daddr, 'no client')

def log_discard(packet, saddr, daddr, why):
  print('DROP ', saddr, daddr, why)
#  syslog.syslog(syslog.LOG_DEBUG,
#                'discarded packet %s -> %s (%s)' % (saddr, daddr, why))

#---------- ipif (slip subprocess) ----------

class IpifProcessProtocol(twisted.internet.protocol.ProcessProtocol):
  def __init__(self):
    self._buffer = b''
  def connectionMade(self): pass
  def outReceived(self, data):
    #print('RECV ', repr(data))
    self._buffer += data
    packets = slip.decode(self._buffer)
    self._buffer = packets.pop()
    for packet in packets:
      if not len(packet): continue
      (saddr, daddr) = packet_addrs(packet)
      route(packet, saddr, daddr)
  def processEnded(self, status):
    status.raiseException()

def start_ipif():
  global ipif
  ipif = IpifProcessProtocol()
  reactor.spawnProcess(ipif,
                       '/bin/sh',['sh','-xc', ipif_command],
                       childFDs={0:'w', 1:'r', 2:2})

def queue_inbound(packet):
  ipif.transport.write(slip.delimiter)
  ipif.transport.write(slip.encode(packet))
  ipif.transport.write(slip.delimiter)

#---------- client ----------

class Client():
  def __init__(self, ip, cs):
    # instance data members
    self._ip = ip
    self._cs = cs
    self.pw = cfg.get(cs, 'password')
    self._rq = collections.deque() # requests
    self._pq = collections.deque() # packets
    # plus from config:
    #  .max_batch_down
    #  .max_queue_time
    #  .max_request_time
    for k in ('max_batch_down','max_queue_time','max_request_time'):
      req = cfg.getint(cs, k)
      limit = cfg.getint('limits',k)
      self.__dict__[k] = min(req, limit)

    def process_arriving_data(self, d):
      for packet in slip.decode(d):
        (saddr, daddr) = packet_addrs(packet)
        if saddr != self._ip:
          raise ValueError('wrong source address %s' % saddr)
        route(packet, saddr, daddr)

    def _req_cancel(self, request):
      request.finish()

    def _req_error(self, err, request):
      self._req_cancel(request)

    def queue_outbound(self, packet):
      self._pq.append((time.monotonic(), packet))

    def http_request(self, request):
      request.setHeader('Content-Type','application/octet-stream')
      reactor.callLater(self.max_request_time, self._req_cancel, request)
      request.notifyFinish().addErrback(self._req_error, request)
      self._rq.append(request)
      self._check_outbound()

    def _check_outbound(self):
      while True:
        try: request = self._rq[0]
        except IndexError: request = None
        if request and request.finished:
          self._rq.popleft()
          continue

        # now request is an unfinished request, or None
        try: (queuetime, packet) = self._pq[0]
        except IndexError:
          # no packets, oh well
          break

        age = time.monotonic() - queuetime
        if age > self.max_queue_time:
          self._pq.popleft()
          continue

        if request is None:
          # no request
          break

        # request, and also some non-expired packets
        while True:
          try: (dummy, packet) = self._pq[0]
          except IndexError: break

          encoded = slip.encode(packet)
          
          if request.sentLength > 0:
            if (request.sentLength + len(slip.delimiter)
                + len(encoded) > self.max_batch_down):
              break
            request.write(slip.delimiter)

          request.write(encoded)
          self._pq.popLeft()

        assert(request.sentLength)
        self._rq.popLeft()
        request.finish()
        # round again, looking for more to do

class IphttpResource(twisted.web.resource.Resource):
  isLeaf = True
  def render_POST(self, request):
    # find client, update config, etc.
    ci = ipaddr(request.args['i'])
    c = clients[ci]
    pw = request.args['pw']
    if pw != c.pw: raise ValueError('bad password')

    # update config
    for r, w in (('mbd', 'max_batch_down'),
                 ('mqt', 'max_queue_time'),
                 ('mrt', 'max_request_time')):
      try: v = request.args[r]
      except KeyError: continue
      v = int(v)
      c.__dict__[w] = v

    try: d = request.args['d']
    except KeyError: d = ''

    c.process_arriving_data(d)
    c.new_request(request)

  def render_GET(self, request):
    return b'<html><body>hippotit</body></html>'

def start_http():
  resource = IphttpResource()
  site = twisted.web.server.Site(resource)
  for addrspec in cfg.get('server','addrs').split():
    try:
      addr = ipaddress.IPv4Address(addrspec)
      endpointfactory = twisted.internet.endpoints.TCP4ServerEndpoint
    except AddressValueError:
      addr = ipaddress.IPv6Address(addrspec)
      endpointfactory = twisted.internet.endpoints.TCP6ServerEndpoint
    ep = endpointfactory(reactor, cfg.getint('server','port'), addr)
    crash_on_defer(ep.listen(site))

#---------- config and setup ----------
        
def process_cfg():
  global network
  global host
  global relay
  global ipif_command

  network = ipnetwork(cfg.get('virtual','network'))
  if network.num_addresses < 3 + 2:
    raise ValueError('network needs at least 2^3 addresses')

  try:
    host = cfg.get('virtual','host')
  except NoOptionError:
    host = next(network.hosts())

  try:
    relay = cfg.get('virtual','relay')
  except NoOptionError:
    for search in network.hosts():
      if search == host: continue
      relay = search
      break

  for cs in cfg.sections():
    if not (':' in cs or '.' in cs): continue
    ci = ipaddr(cs)
    if ci not in network:
      raise ValueError('client %s not in network' % ci)
    if ci in clients:
      raise ValueError('multiple client cfg sections for %s' % ci)
    clients[ci] = Client(ci, cs)

  global mtu
  mtu = cfg.get('virtual','mtu')

  iic_vars = { }
  for k in ('host','relay','mtu','network'):
    iic_vars[k] = globals()[k]

  ipif_command = cfg.get('server','ipif', vars=iic_vars)

def startup():
  global cfg

  op = OptionParser()
  op.add_option('-c', '--config', dest='configfile',
                default='/etc/hippottd/server.conf')
  global opts
  (opts, args) = op.parse_args()
  if len(args): op.error('no non-option arguments please')

  twisted.logger.globalLogPublisher.addObserver(crash_on_critical)

  cfg = ConfigParser()
  cfg.read_string(defcfg)
  cfg.read(opts.configfile)
  process_cfg()

  start_ipif()
  start_http()

startup()
reactor.run()
print('CRASHED (end)', file=sys.stderr)
Commit	Line	Data
094ee3a2	1	#!/usr/bin/python3
3fba9787	2
aa663282 IJ	3	import signal
	4	signal.signal(signal.SIGINT, signal.SIG_DFL)
	5
e2d41dc1 IJ	6	import sys
	7	import os
	8
5bae5ba3	9	import twisted
e2d41dc1 IJ	10	import twisted.internet
	11	import twisted.internet.endpoints
	12	from twisted.internet import reactor
	13	from twisted.web.server import NOT_DONE_YET
	14	from twisted.logger import LogLevel
	15
5da7763e IJ	16	#import twisted.web.server import Site
5da7763e IJ	17	#from twisted.web.resource import Resource
3fba9787	18
e75e9c17 IJ	19	from optparse import OptionParser
	20	from configparser import ConfigParser
	21	from configparser import NoOptionError
3fba9787	22
0ac316c8 IJ	23	import collections
0ac316c8 IJ	24
c4b6d990 IJ	25	import syslog
c4b6d990 IJ	26
b0cfbfce	27	from hippotit import *
3fba9787	28
b0cfbfce	29	clients = { }
3fba9787	30
e75e9c17	31	defcfg = '''
094ee3a2 IJ	32	[DEFAULT]
	33	max_batch_down = 65536
	34	max_queue_time = 10
	35	max_request_time = 54
	36
e75e9c17 IJ	37	[virtual]
	38	mtu = 1500
	39	# network
	40	# [host]
	41	# [relay]
	42
	43	[server]
e2d41dc1	44	ipif = userv root ipif %(host)s,%(relay)s,%(mtu)s,slip %(network)s
5da7763e	45	addrs = 127.0.0.1 ::1
aa663282	46	port = 8099
e75e9c17	47
094ee3a2 IJ	48	[limits]
	49	max_batch_down = 262144
	50	max_queue_time = 121
	51	max_request_time = 121
ec88b1f1 IJ	52	'''
ec88b1f1 IJ	53
aa663282 IJ	54	#---------- error handling ----------
	55
	56	def crash(err):
	57	print('CRASH ', err, file=sys.stderr)
	58	try: reactor.stop()
	59	except twisted.internet.error.ReactorNotRunning: pass
	60
	61	def crash_on_defer(defer):
	62	defer.addErrback(lambda err: crash(err))
	63
	64	def crash_on_critical(event):
	65	if event.get('log_level') >= LogLevel.critical:
	66	crash(twisted.logger.formatEvent(event))
	67
5da7763e IJ	68	#---------- "router" ----------
5da7763e IJ	69
ec0c4d95 IJ	70	def route(packet, saddr, daddr):
ec0c4d95 IJ	71	print('TRACE ', saddr, daddr, packet)
5da7763e IJ	72	try: client = clients[daddr]
	73	except KeyError: dclient = None
	74	if dclient is not None:
	75	dclient.queue_outbound(packet)
3a6076b4	76	elif saddr.is_link_local or daddr.is_link_local:
ec0c4d95	77	log_discard(packet, saddr, daddr, 'link-local')
e2d41dc1	78	elif daddr == host or daddr not in network:
ec0c4d95	79	print('TRACE INBOUND ', saddr, daddr, packet)
5da7763e	80	queue_inbound(packet)
e2d41dc1	81	elif daddr == relay:
5da7763e IJ	82	log_discard(packet, saddr, daddr, 'relay')
	83	else:
	84	log_discard(packet, saddr, daddr, 'no client')
	85
	86	def log_discard(packet, saddr, daddr, why):
3a6076b4	87	print('DROP ', saddr, daddr, why)
ec0c4d95 IJ	88	# syslog.syslog(syslog.LOG_DEBUG,
ec0c4d95 IJ	89	# 'discarded packet %s -> %s (%s)' % (saddr, daddr, why))
5da7763e IJ	90
	91	#---------- ipif (slip subprocess) ----------
	92
5bae5ba3 IJ	93	class IpifProcessProtocol(twisted.internet.protocol.ProcessProtocol):
	94	def __init__(self):
	95	self._buffer = b''
	96	def connectionMade(self): pass
	97	def outReceived(self, data):
ce7f1431	98	#print('RECV ', repr(data))
2b95da16	99	self._buffer += data
b0cfbfce	100	packets = slip.decode(self._buffer)
2b95da16	101	self._buffer = packets.pop()
5bae5ba3	102	for packet in packets:
ec0c4d95	103	if not len(packet): continue
5bae5ba3	104	(saddr, daddr) = packet_addrs(packet)
ec0c4d95	105	route(packet, saddr, daddr)
5da7763e IJ	106	def processEnded(self, status):
5da7763e IJ	107	status.raiseException()
5bae5ba3 IJ	108
5bae5ba3 IJ	109	def start_ipif():
5da7763e IJ	110	global ipif
	111	ipif = IpifProcessProtocol()
	112	reactor.spawnProcess(ipif,
ce7f1431	113	'/bin/sh',['sh','-xc', ipif_command],
5bae5ba3 IJ	114	childFDs={0:'w', 1:'r', 2:2})
5bae5ba3 IJ	115
5da7763e	116	def queue_inbound(packet):
b0cfbfce IJ	117	ipif.transport.write(slip.delimiter)
	118	ipif.transport.write(slip.encode(packet))
	119	ipif.transport.write(slip.delimiter)
ce7f1431	120
5da7763e	121	#---------- client ----------
c4b6d990	122
ec88b1f1	123	class Client():
c4b6d990	124	def __init__(self, ip, cs):
ec88b1f1 IJ	125	# instance data members
	126	self._ip = ip
	127	self._cs = cs
	128	self.pw = cfg.get(cs, 'password')
0ac316c8 IJ	129	self._rq = collections.deque() # requests
0ac316c8 IJ	130	self._pq = collections.deque() # packets
c4b6d990 IJ	131	# plus from config:
	132	# .max_batch_down
	133	# .max_queue_time
	134	# .max_request_time
ec88b1f1 IJ	135	for k in ('max_batch_down','max_queue_time','max_request_time'):
ec88b1f1 IJ	136	req = cfg.getint(cs, k)
094ee3a2	137	limit = cfg.getint('limits',k)
c4b6d990 IJ	138	self.__dict__[k] = min(req, limit)
	139
	140	def process_arriving_data(self, d):
b0cfbfce	141	for packet in slip.decode(d):
5bae5ba3	142	(saddr, daddr) = packet_addrs(packet)
c4b6d990 IJ	143	if saddr != self._ip:
c4b6d990 IJ	144	raise ValueError('wrong source address %s' % saddr)
ec0c4d95	145	route(packet, saddr, daddr)
ec88b1f1	146
c4b6d990 IJ	147	def _req_cancel(self, request):
	148	request.finish()
	149
	150	def _req_error(self, err, request):
	151	self._req_cancel(request)
	152
0ac316c8	153	def queue_outbound(self, packet):
094ee3a2	154	self._pq.append((time.monotonic(), packet))
0ac316c8	155
c4b6d990 IJ	156	def http_request(self, request):
	157	request.setHeader('Content-Type','application/octet-stream')
	158	reactor.callLater(self.max_request_time, self._req_cancel, request)
	159	request.notifyFinish().addErrback(self._req_error, request)
0ac316c8 IJ	160	self._rq.append(request)
	161	self._check_outbound()
	162
	163	def _check_outbound(self):
	164	while True:
	165	try: request = self._rq[0]
	166	except IndexError: request = None
	167	if request and request.finished:
	168	self._rq.popleft()
	169	continue
	170
	171	# now request is an unfinished request, or None
	172	try: (queuetime, packet) = self._pq[0]
e2d41dc1	173	except IndexError:
0ac316c8	174	# no packets, oh well
094ee3a2 IJ	175	break
	176
	177	age = time.monotonic() - queuetime
	178	if age > self.max_queue_time:
	179	self._pq.popleft()
0ac316c8 IJ	180	continue
0ac316c8 IJ	181
094ee3a2 IJ	182	if request is None:
	183	# no request
	184	break
	185
	186	# request, and also some non-expired packets
	187	while True:
	188	try: (dummy, packet) = self._pq[0]
	189	except IndexError: break
	190
b0cfbfce	191	encoded = slip.encode(packet)
094ee3a2 IJ	192
094ee3a2 IJ	193	if request.sentLength > 0:
b0cfbfce	194	if (request.sentLength + len(slip.delimiter)
094ee3a2 IJ	195	+ len(encoded) > self.max_batch_down):
094ee3a2 IJ	196	break
b0cfbfce	197	request.write(slip.delimiter)
094ee3a2 IJ	198
	199	request.write(encoded)
	200	self._pq.popLeft()
	201
	202	assert(request.sentLength)
	203	self._rq.popLeft()
	204	request.finish()
	205	# round again, looking for more to do
ec88b1f1	206
5da7763e	207	class IphttpResource(twisted.web.resource.Resource):
c1e4910b	208	isLeaf = True
5da7763e IJ	209	def render_POST(self, request):
5da7763e IJ	210	# find client, update config, etc.
e2d41dc1	211	ci = ipaddr(request.args['i'])
5da7763e IJ	212	c = clients[ci]
	213	pw = request.args['pw']
	214	if pw != c.pw: raise ValueError('bad password')
	215
	216	# update config
	217	for r, w in (('mbd', 'max_batch_down'),
	218	('mqt', 'max_queue_time'),
	219	('mrt', 'max_request_time')):
	220	try: v = request.args[r]
	221	except KeyError: continue
	222	v = int(v)
	223	c.__dict__[w] = v
	224
	225	try: d = request.args['d']
	226	except KeyError: d = ''
	227
	228	c.process_arriving_data(d)
	229	c.new_request(request)
	230
8e279651	231	def render_GET(self, request):
b11c6e7a	232	return b'<html><body>hippotit</body></html>'
8e279651	233
5da7763e IJ	234	def start_http():
5da7763e IJ	235	resource = IphttpResource()
b11c6e7a	236	site = twisted.web.server.Site(resource)
e2d41dc1	237	for addrspec in cfg.get('server','addrs').split():
5da7763e IJ	238	try:
	239	addr = ipaddress.IPv4Address(addrspec)
	240	endpointfactory = twisted.internet.endpoints.TCP4ServerEndpoint
	241	except AddressValueError:
	242	addr = ipaddress.IPv6Address(addrspec)
	243	endpointfactory = twisted.internet.endpoints.TCP6ServerEndpoint
	244	ep = endpointfactory(reactor, cfg.getint('server','port'), addr)
b11c6e7a	245	crash_on_defer(ep.listen(site))
5da7763e IJ	246
	247	#---------- config and setup ----------
	248
3fba9787 IJ	249	def process_cfg():
3fba9787 IJ	250	global network
e75e9c17 IJ	251	global host
e75e9c17 IJ	252	global relay
5bae5ba3	253	global ipif_command
3fba9787	254
ec88b1f1	255	network = ipnetwork(cfg.get('virtual','network'))
e75e9c17 IJ	256	if network.num_addresses < 3 + 2:
	257	raise ValueError('network needs at least 2^3 addresses')
	258
3fba9787	259	try:
e75e9c17 IJ	260	host = cfg.get('virtual','host')
e75e9c17 IJ	261	except NoOptionError:
e2d41dc1	262	host = next(network.hosts())
e75e9c17 IJ	263
	264	try:
	265	relay = cfg.get('virtual','relay')
e2d41dc1	266	except NoOptionError:
e75e9c17	267	for search in network.hosts():
e2d41dc1	268	if search == host: continue
e75e9c17 IJ	269	relay = search
e75e9c17 IJ	270	break
3fba9787	271
ec88b1f1 IJ	272	for cs in cfg.sections():
ec88b1f1 IJ	273	if not (':' in cs or '.' in cs): continue
e2d41dc1	274	ci = ipaddr(cs)
ec88b1f1 IJ	275	if ci not in network:
	276	raise ValueError('client %s not in network' % ci)
	277	if ci in clients:
	278	raise ValueError('multiple client cfg sections for %s' % ci)
	279	clients[ci] = Client(ci, cs)
3fba9787	280
e2d41dc1 IJ	281	global mtu
	282	mtu = cfg.get('virtual','mtu')
	283
5bae5ba3 IJ	284	iic_vars = { }
	285	for k in ('host','relay','mtu','network'):
	286	iic_vars[k] = globals()[k]
	287
	288	ipif_command = cfg.get('server','ipif', vars=iic_vars)
	289
e75e9c17	290	def startup():
e2d41dc1 IJ	291	global cfg
e2d41dc1 IJ	292
e75e9c17 IJ	293	op = OptionParser()
	294	op.add_option('-c', '--config', dest='configfile',
	295	default='/etc/hippottd/server.conf')
	296	global opts
	297	(opts, args) = op.parse_args()
	298	if len(args): op.error('no non-option arguments please')
	299
e2d41dc1 IJ	300	twisted.logger.globalLogPublisher.addObserver(crash_on_critical)
e2d41dc1 IJ	301
e75e9c17	302	cfg = ConfigParser()
5bae5ba3	303	cfg.read_string(defcfg)
e2d41dc1	304	cfg.read(opts.configfile)
5bae5ba3 IJ	305	process_cfg()
	306
	307	start_ipif()
	308	start_http()
e2d41dc1 IJ	309
	310	startup()
	311	reactor.run()
aa663282	312	print('CRASHED (end)', file=sys.stderr)