[hippotat] / server

#!/usr/bin/python3

import sys
import os

import twisted
import twisted.internet
import twisted.internet.endpoints
from twisted.internet import reactor
from twisted.web.server import NOT_DONE_YET
from twisted.logger import LogLevel

import ipaddress
from ipaddress import AddressValueError

#import twisted.web.server import Site
#from twisted.web.resource import Resource

from optparse import OptionParser
from configparser import ConfigParser
from configparser import NoOptionError

import collections

import syslog

clients = { }

def ipaddr(input):
  try:
    r = ipaddress.IPv4Address(input)
  except AddressValueError:
    r = ipaddress.IPv6Address(input)
  return r

def ipnetwork(input):
  try:
    r = ipaddress.IPv4Network(input)
  except NetworkValueError:
    r = ipaddress.IPv6Network(input)
  return r

defcfg = '''
[DEFAULT]
max_batch_down = 65536
max_queue_time = 10
max_request_time = 54

[virtual]
mtu = 1500
# network
# [host]
# [relay]

[server]
ipif = userv root ipif %(host)s,%(relay)s,%(mtu)s,slip %(network)s
addrs = 127.0.0.1 ::1
port = 80

[limits]
max_batch_down = 262144
max_queue_time = 121
max_request_time = 121
'''

#---------- "router" ----------

def route(packet, daddr):
  try: client = clients[daddr]
  except KeyError: dclient = None
  if dclient is not None:
    dclient.queue_outbound(packet)
  elif daddr == host or daddr not in network:
    queue_inbound(packet)
  elif daddr == relay:
    log_discard(packet, saddr, daddr, 'relay')
  else:
    log_discard(packet, saddr, daddr, 'no client')

def log_discard(packet, saddr, daddr, why):
  syslog.syslog(syslog.LOG_DEBUG,
                'discarded packet %s -> %s (%s)' % (saddr, daddr, why))

#---------- ipif (slip subprocess) ----------

class IpifProcessProtocol(twisted.internet.protocol.ProcessProtocol):
  def __init__(self):
    self._buffer = b''
  def connectionMade(self): pass
  def outReceived(self, data):
    buffer += data
    packets = slip_decode(buffer)
    buffer = packets.pop()
    for packet in packets:
      (saddr, daddr) = packet_addrs(packet)
      route(packet, daddr)
  def processEnded(self, status):
    status.raiseException()

def start_ipif():
  global ipif
  ipif = IpifProcessProtocol()
  reactor.spawnProcess(ipif,
                       '/bin/sh',['sh','-c', ipif_command],
                       childFDs={0:'w', 1:'r', 2:2})

def queue_inbound(packet):
  ipif.transport.write(slip_delimiter)
  ipif.transport.write(slip_encode(packet))
  ipif.transport.write(slip_delimiter)

#---------- client ----------

class Client():
  def __init__(self, ip, cs):
    # instance data members
    self._ip = ip
    self._cs = cs
    self.pw = cfg.get(cs, 'password')
    self._rq = collections.deque() # requests
    self._pq = collections.deque() # packets
    # plus from config:
    #  .max_batch_down
    #  .max_queue_time
    #  .max_request_time
    for k in ('max_batch_down','max_queue_time','max_request_time'):
      req = cfg.getint(cs, k)
      limit = cfg.getint('limits',k)
      self.__dict__[k] = min(req, limit)

    def process_arriving_data(self, d):
      for packet in slip_decode(d):
        (saddr, daddr) = packet_addrs(packet)
        if saddr != self._ip:
          raise ValueError('wrong source address %s' % saddr)
        route(packet, daddr)

    def _req_cancel(self, request):
      request.finish()

    def _req_error(self, err, request):
      self._req_cancel(request)

    def queue_outbound(self, packet):
      self._pq.append((time.monotonic(), packet))

    def http_request(self, request):
      request.setHeader('Content-Type','application/octet-stream')
      reactor.callLater(self.max_request_time, self._req_cancel, request)
      request.notifyFinish().addErrback(self._req_error, request)
      self._rq.append(request)
      self._check_outbound()

    def _check_outbound(self):
      while True:
        try: request = self._rq[0]
        except IndexError: request = None
        if request and request.finished:
          self._rq.popleft()
          continue

        # now request is an unfinished request, or None
        try: (queuetime, packet) = self._pq[0]
        except IndexError:
          # no packets, oh well
          break

        age = time.monotonic() - queuetime
        if age > self.max_queue_time:
          self._pq.popleft()
          continue

        if request is None:
          # no request
          break

        # request, and also some non-expired packets
        while True:
          try: (dummy, packet) = self._pq[0]
          except IndexError: break

          encoded = slip_encode(packet)
          
          if request.sentLength > 0:
            if (request.sentLength + len(slip_delimiter)
                + len(encoded) > self.max_batch_down):
              break
            request.write(slip_delimiter)

          request.write(encoded)
          self._pq.popLeft()

        assert(request.sentLength)
        self._rq.popLeft()
        request.finish()
        # round again, looking for more to do

class IphttpResource(twisted.web.resource.Resource):
  def render_POST(self, request):
    # find client, update config, etc.
    ci = ipaddr(request.args['i'])
    c = clients[ci]
    pw = request.args['pw']
    if pw != c.pw: raise ValueError('bad password')

    # update config
    for r, w in (('mbd', 'max_batch_down'),
                 ('mqt', 'max_queue_time'),
                 ('mrt', 'max_request_time')):
      try: v = request.args[r]
      except KeyError: continue
      v = int(v)
      c.__dict__[w] = v

    try: d = request.args['d']
    except KeyError: d = ''

    c.process_arriving_data(d)
    c.new_request(request)

def start_http():
  resource = IphttpResource()
  sitefactory = twisted.web.server.Site(resource)
  for addrspec in cfg.get('server','addrs').split():
    try:
      addr = ipaddress.IPv4Address(addrspec)
      endpointfactory = twisted.internet.endpoints.TCP4ServerEndpoint
    except AddressValueError:
      addr = ipaddress.IPv6Address(addrspec)
      endpointfactory = twisted.internet.endpoints.TCP6ServerEndpoint
    ep = endpointfactory(reactor, cfg.getint('server','port'), addr)
    ep.listen(sitefactory)

#---------- config and setup ----------
        
def process_cfg():
  global network
  global host
  global relay
  global ipif_command

  network = ipnetwork(cfg.get('virtual','network'))
  if network.num_addresses < 3 + 2:
    raise ValueError('network needs at least 2^3 addresses')

  try:
    host = cfg.get('virtual','host')
  except NoOptionError:
    host = next(network.hosts())

  try:
    relay = cfg.get('virtual','relay')
  except NoOptionError:
    for search in network.hosts():
      if search == host: continue
      relay = search
      break

  for cs in cfg.sections():
    if not (':' in cs or '.' in cs): continue
    ci = ipaddr(cs)
    if ci not in network:
      raise ValueError('client %s not in network' % ci)
    if ci in clients:
      raise ValueError('multiple client cfg sections for %s' % ci)
    clients[ci] = Client(ci, cs)

  global mtu
  mtu = cfg.get('virtual','mtu')

  iic_vars = { }
  for k in ('host','relay','mtu','network'):
    iic_vars[k] = globals()[k]

  ipif_command = cfg.get('server','ipif', vars=iic_vars)

def crash_on_critical(event):
  if event.get('log_level') >= LogLevel.critical:
    print('crashing: ', twisted.logger.formatEvent(event), file=sys.stderr)
    #print('crashing!', file=sys.stderr)
    #os._exit(1)
    try: reactor.stop()
    except twisted.internet.error.ReactorNotRunning: pass

def startup():
  global cfg

  op = OptionParser()
  op.add_option('-c', '--config', dest='configfile',
                default='/etc/hippottd/server.conf')
  global opts
  (opts, args) = op.parse_args()
  if len(args): op.error('no non-option arguments please')

  twisted.logger.globalLogPublisher.addObserver(crash_on_critical)

  cfg = ConfigParser()
  cfg.read_string(defcfg)
  cfg.read(opts.configfile)
  process_cfg()

  start_ipif()
  start_http()

startup()
reactor.run()
Commit	Line	Data
094ee3a2	1	#!/usr/bin/python3
3fba9787	2
e2d41dc1 IJ	3	import sys
	4	import os
	5
5bae5ba3	6	import twisted
e2d41dc1 IJ	7	import twisted.internet
	8	import twisted.internet.endpoints
	9	from twisted.internet import reactor
	10	from twisted.web.server import NOT_DONE_YET
	11	from twisted.logger import LogLevel
	12
	13	import ipaddress
	14	from ipaddress import AddressValueError
5bae5ba3	15
5da7763e IJ	16	#import twisted.web.server import Site
5da7763e IJ	17	#from twisted.web.resource import Resource
3fba9787	18
e75e9c17 IJ	19	from optparse import OptionParser
	20	from configparser import ConfigParser
	21	from configparser import NoOptionError
3fba9787	22
0ac316c8 IJ	23	import collections
0ac316c8 IJ	24
c4b6d990 IJ	25	import syslog
c4b6d990 IJ	26
3fba9787 IJ	27	clients = { }
3fba9787 IJ	28
e2d41dc1	29	def ipaddr(input):
3fba9787	30	try:
ec88b1f1	31	r = ipaddress.IPv4Address(input)
3fba9787	32	except AddressValueError:
ec88b1f1	33	r = ipaddress.IPv6Address(input)
3fba9787 IJ	34	return r
	35
	36	def ipnetwork(input):
	37	try:
ec88b1f1	38	r = ipaddress.IPv4Network(input)
3fba9787	39	except NetworkValueError:
ec88b1f1	40	r = ipaddress.IPv6Network(input)
3fba9787 IJ	41	return r
3fba9787 IJ	42
e75e9c17	43	defcfg = '''
094ee3a2 IJ	44	[DEFAULT]
	45	max_batch_down = 65536
	46	max_queue_time = 10
	47	max_request_time = 54
	48
e75e9c17 IJ	49	[virtual]
	50	mtu = 1500
	51	# network
	52	# [host]
	53	# [relay]
	54
	55	[server]
e2d41dc1	56	ipif = userv root ipif %(host)s,%(relay)s,%(mtu)s,slip %(network)s
5da7763e IJ	57	addrs = 127.0.0.1 ::1
5da7763e IJ	58	port = 80
e75e9c17	59
094ee3a2 IJ	60	[limits]
	61	max_batch_down = 262144
	62	max_queue_time = 121
	63	max_request_time = 121
ec88b1f1 IJ	64	'''
ec88b1f1 IJ	65
5da7763e IJ	66	#---------- "router" ----------
5da7763e IJ	67
e2d41dc1	68	def route(packet, daddr):
5da7763e IJ	69	try: client = clients[daddr]
	70	except KeyError: dclient = None
	71	if dclient is not None:
	72	dclient.queue_outbound(packet)
e2d41dc1	73	elif daddr == host or daddr not in network:
5da7763e	74	queue_inbound(packet)
e2d41dc1	75	elif daddr == relay:
5da7763e IJ	76	log_discard(packet, saddr, daddr, 'relay')
	77	else:
	78	log_discard(packet, saddr, daddr, 'no client')
	79
	80	def log_discard(packet, saddr, daddr, why):
	81	syslog.syslog(syslog.LOG_DEBUG,
	82	'discarded packet %s -> %s (%s)' % (saddr, daddr, why))
	83
	84	#---------- ipif (slip subprocess) ----------
	85
5bae5ba3 IJ	86	class IpifProcessProtocol(twisted.internet.protocol.ProcessProtocol):
	87	def __init__(self):
	88	self._buffer = b''
	89	def connectionMade(self): pass
	90	def outReceived(self, data):
	91	buffer += data
	92	packets = slip_decode(buffer)
	93	buffer = packets.pop()
	94	for packet in packets:
	95	(saddr, daddr) = packet_addrs(packet)
	96	route(packet, daddr)
5da7763e IJ	97	def processEnded(self, status):
5da7763e IJ	98	status.raiseException()
5bae5ba3 IJ	99
5bae5ba3 IJ	100	def start_ipif():
5da7763e IJ	101	global ipif
	102	ipif = IpifProcessProtocol()
	103	reactor.spawnProcess(ipif,
e2d41dc1	104	'/bin/sh',['sh','-c', ipif_command],
5bae5ba3 IJ	105	childFDs={0:'w', 1:'r', 2:2})
5bae5ba3 IJ	106
5da7763e IJ	107	def queue_inbound(packet):
	108	ipif.transport.write(slip_delimiter)
	109	ipif.transport.write(slip_encode(packet))
	110	ipif.transport.write(slip_delimiter)
5bae5ba3	111
5da7763e	112	#---------- client ----------
c4b6d990	113
ec88b1f1	114	class Client():
c4b6d990	115	def __init__(self, ip, cs):
ec88b1f1 IJ	116	# instance data members
	117	self._ip = ip
	118	self._cs = cs
	119	self.pw = cfg.get(cs, 'password')
0ac316c8 IJ	120	self._rq = collections.deque() # requests
0ac316c8 IJ	121	self._pq = collections.deque() # packets
c4b6d990 IJ	122	# plus from config:
	123	# .max_batch_down
	124	# .max_queue_time
	125	# .max_request_time
ec88b1f1 IJ	126	for k in ('max_batch_down','max_queue_time','max_request_time'):
ec88b1f1 IJ	127	req = cfg.getint(cs, k)
094ee3a2	128	limit = cfg.getint('limits',k)
c4b6d990 IJ	129	self.__dict__[k] = min(req, limit)
	130
	131	def process_arriving_data(self, d):
	132	for packet in slip_decode(d):
5bae5ba3	133	(saddr, daddr) = packet_addrs(packet)
c4b6d990 IJ	134	if saddr != self._ip:
	135	raise ValueError('wrong source address %s' % saddr)
	136	route(packet, daddr)
ec88b1f1	137
c4b6d990 IJ	138	def _req_cancel(self, request):
	139	request.finish()
	140
	141	def _req_error(self, err, request):
	142	self._req_cancel(request)
	143
0ac316c8	144	def queue_outbound(self, packet):
094ee3a2	145	self._pq.append((time.monotonic(), packet))
0ac316c8	146
c4b6d990 IJ	147	def http_request(self, request):
	148	request.setHeader('Content-Type','application/octet-stream')
	149	reactor.callLater(self.max_request_time, self._req_cancel, request)
	150	request.notifyFinish().addErrback(self._req_error, request)
0ac316c8 IJ	151	self._rq.append(request)
	152	self._check_outbound()
	153
	154	def _check_outbound(self):
	155	while True:
	156	try: request = self._rq[0]
	157	except IndexError: request = None
	158	if request and request.finished:
	159	self._rq.popleft()
	160	continue
	161
	162	# now request is an unfinished request, or None
	163	try: (queuetime, packet) = self._pq[0]
e2d41dc1	164	except IndexError:
0ac316c8	165	# no packets, oh well
094ee3a2 IJ	166	break
	167
	168	age = time.monotonic() - queuetime
	169	if age > self.max_queue_time:
	170	self._pq.popleft()
0ac316c8 IJ	171	continue
0ac316c8 IJ	172
094ee3a2 IJ	173	if request is None:
	174	# no request
	175	break
	176
	177	# request, and also some non-expired packets
	178	while True:
	179	try: (dummy, packet) = self._pq[0]
	180	except IndexError: break
	181
	182	encoded = slip_encode(packet)
	183
	184	if request.sentLength > 0:
	185	if (request.sentLength + len(slip_delimiter)
	186	+ len(encoded) > self.max_batch_down):
	187	break
	188	request.write(slip_delimiter)
	189
	190	request.write(encoded)
	191	self._pq.popLeft()
	192
	193	assert(request.sentLength)
	194	self._rq.popLeft()
	195	request.finish()
	196	# round again, looking for more to do
ec88b1f1	197
5da7763e IJ	198	class IphttpResource(twisted.web.resource.Resource):
	199	def render_POST(self, request):
	200	# find client, update config, etc.
e2d41dc1	201	ci = ipaddr(request.args['i'])
5da7763e IJ	202	c = clients[ci]
	203	pw = request.args['pw']
	204	if pw != c.pw: raise ValueError('bad password')
	205
	206	# update config
	207	for r, w in (('mbd', 'max_batch_down'),
	208	('mqt', 'max_queue_time'),
	209	('mrt', 'max_request_time')):
	210	try: v = request.args[r]
	211	except KeyError: continue
	212	v = int(v)
	213	c.__dict__[w] = v
	214
	215	try: d = request.args['d']
	216	except KeyError: d = ''
	217
	218	c.process_arriving_data(d)
	219	c.new_request(request)
	220
	221	def start_http():
	222	resource = IphttpResource()
	223	sitefactory = twisted.web.server.Site(resource)
e2d41dc1	224	for addrspec in cfg.get('server','addrs').split():
5da7763e IJ	225	try:
	226	addr = ipaddress.IPv4Address(addrspec)
	227	endpointfactory = twisted.internet.endpoints.TCP4ServerEndpoint
	228	except AddressValueError:
	229	addr = ipaddress.IPv6Address(addrspec)
	230	endpointfactory = twisted.internet.endpoints.TCP6ServerEndpoint
	231	ep = endpointfactory(reactor, cfg.getint('server','port'), addr)
	232	ep.listen(sitefactory)
	233
	234	#---------- config and setup ----------
	235
3fba9787 IJ	236	def process_cfg():
3fba9787 IJ	237	global network
e75e9c17 IJ	238	global host
e75e9c17 IJ	239	global relay
5bae5ba3	240	global ipif_command
3fba9787	241
ec88b1f1	242	network = ipnetwork(cfg.get('virtual','network'))
e75e9c17 IJ	243	if network.num_addresses < 3 + 2:
	244	raise ValueError('network needs at least 2^3 addresses')
	245
3fba9787	246	try:
e75e9c17 IJ	247	host = cfg.get('virtual','host')
e75e9c17 IJ	248	except NoOptionError:
e2d41dc1	249	host = next(network.hosts())
e75e9c17 IJ	250
	251	try:
	252	relay = cfg.get('virtual','relay')
e2d41dc1	253	except NoOptionError:
e75e9c17	254	for search in network.hosts():
e2d41dc1	255	if search == host: continue
e75e9c17 IJ	256	relay = search
e75e9c17 IJ	257	break
3fba9787	258
ec88b1f1 IJ	259	for cs in cfg.sections():
ec88b1f1 IJ	260	if not (':' in cs or '.' in cs): continue
e2d41dc1	261	ci = ipaddr(cs)
ec88b1f1 IJ	262	if ci not in network:
	263	raise ValueError('client %s not in network' % ci)
	264	if ci in clients:
	265	raise ValueError('multiple client cfg sections for %s' % ci)
	266	clients[ci] = Client(ci, cs)
3fba9787	267
e2d41dc1 IJ	268	global mtu
	269	mtu = cfg.get('virtual','mtu')
	270
5bae5ba3 IJ	271	iic_vars = { }
	272	for k in ('host','relay','mtu','network'):
	273	iic_vars[k] = globals()[k]
	274
	275	ipif_command = cfg.get('server','ipif', vars=iic_vars)
	276
e2d41dc1 IJ	277	def crash_on_critical(event):
	278	if event.get('log_level') >= LogLevel.critical:
	279	print('crashing: ', twisted.logger.formatEvent(event), file=sys.stderr)
	280	#print('crashing!', file=sys.stderr)
	281	#os._exit(1)
	282	try: reactor.stop()
	283	except twisted.internet.error.ReactorNotRunning: pass
	284
e75e9c17	285	def startup():
e2d41dc1 IJ	286	global cfg
e2d41dc1 IJ	287
e75e9c17 IJ	288	op = OptionParser()
	289	op.add_option('-c', '--config', dest='configfile',
	290	default='/etc/hippottd/server.conf')
	291	global opts
	292	(opts, args) = op.parse_args()
	293	if len(args): op.error('no non-option arguments please')
	294
e2d41dc1 IJ	295	twisted.logger.globalLogPublisher.addObserver(crash_on_critical)
e2d41dc1 IJ	296
e75e9c17	297	cfg = ConfigParser()
5bae5ba3	298	cfg.read_string(defcfg)
e2d41dc1	299	cfg.read(opts.configfile)
5bae5ba3 IJ	300	process_cfg()
	301
	302	start_ipif()
	303	start_http()
e2d41dc1 IJ	304
	305	startup()
	306	reactor.run()