Mirrors
/
nebula
mirror of https://github.com/slackhq/nebula.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
nebula/lighthouse_test.go

470 lines
15 KiB
Go
Raw Normal View History

Public Release
2019-11-19 10:00:20 -07:00
package nebula
import (
Dns static lookerupper (#796) * Support lighthouse DNS names, and regularly resolve the name in a background goroutine to discover DNS updates.
2023-05-09 09:22:08 -06:00
"context"
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
"encoding/binary"
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
"fmt"
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
"net/netip"
Public Release
2019-11-19 10:00:20 -07:00
"testing"
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
"github.com/slackhq/nebula/config"
Rework some things into packages (#489)
2021-11-03 19:54:04 -06:00
"github.com/slackhq/nebula/header"
Move util to test, contextual errors to util (#575)
2021-11-10 20:47:38 -07:00
"github.com/slackhq/nebula/test"
Public Release
2019-11-19 10:00:20 -07:00
"github.com/stretchr/testify/assert"
Fix reconfig freeze attempting to send to an unbuffered, unread channel (#886) * Fixes a reocnfig freeze where the reconfig attempts to send to an unbuffered channel with no readers. Only create stop channel when a DNS goroutine is created, and only send when the channel exists. Buffer to size 1 so that the stop message can be immediately sent even if the goroutine is busy doing DNS lookups.
2023-05-31 14:05:46 -06:00
"gopkg.in/yaml.v2"
Public Release
2019-11-19 10:00:20 -07:00
)
IPv6 support for outside (udp) (#369)
2021-03-18 19:37:24 -06:00
//TODO: Add a test to ensure udpAddr is copied and not reused
func TestOldIPv4Only(t *testing.T) {
// This test ensures our new ipv6 enabled LH protobuf IpAndPorts works with the old style to enable backwards compatibility
b := []byte{8, 129, 130, 132, 80, 16, 10}
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
var m Ip4AndPort
Update dependencies - 2022-04 (#664) Updated github.com/kardianos/service https://github.com/kardianos/service/compare/v1.2.0...v1.2.1 Updated github.com/miekg/dns https://github.com/miekg/dns/compare/v1.1.43...v1.1.48 Updated github.com/prometheus/client_golang https://github.com/prometheus/client_golang/compare/v1.11.0...v1.12.1 Updated github.com/prometheus/common https://github.com/prometheus/common/compare/v0.32.1...v0.33.0 Updated github.com/stretchr/testify https://github.com/stretchr/testify/compare/v1.7.0...v1.7.1 Updated golang.org/x/crypto https://github.com/golang/crypto/compare/5770296d904e...ae2d96664a29 Updated golang.org/x/net https://github.com/golang/net/compare/69e39bad7dc2...749bd193bc2b Updated golang.org/x/sys https://github.com/golang/sys/compare/7861aae1554b...289d7a0edf71 Updated golang.zx2c4.com/wireguard/windows v0.5.1...v0.5.3 Updated google.golang.org/protobuf v1.27.1...v1.28.0
2022-04-18 10:12:25 -06:00
err := m.Unmarshal(b)
IPv6 support for outside (udp) (#369)
2021-03-18 19:37:24 -06:00
assert.NoError(t, err)
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
ip := netip.MustParseAddr("10.1.1.1")
bp := ip.As4()
assert.Equal(t, binary.BigEndian.Uint32(bp[:]), m.GetIp())
IPv6 support for outside (udp) (#369)
2021-03-18 19:37:24 -06:00
}
Public Release
2019-11-19 10:00:20 -07:00
func TestNewLhQuery(t *testing.T) {
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
myIp, err := netip.ParseAddr("192.1.1.1")
assert.NoError(t, err)
Public Release
2019-11-19 10:00:20 -07:00
// Generating a new lh query should work
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
a := NewLhQueryByInt(myIp)
Public Release
2019-11-19 10:00:20 -07:00
// The result should be a nebulameta protobuf
assert.IsType(t, &NebulaMeta{}, a)
// It should also Marshal fine
Update dependencies - 2022-04 (#664) Updated github.com/kardianos/service https://github.com/kardianos/service/compare/v1.2.0...v1.2.1 Updated github.com/miekg/dns https://github.com/miekg/dns/compare/v1.1.43...v1.1.48 Updated github.com/prometheus/client_golang https://github.com/prometheus/client_golang/compare/v1.11.0...v1.12.1 Updated github.com/prometheus/common https://github.com/prometheus/common/compare/v0.32.1...v0.33.0 Updated github.com/stretchr/testify https://github.com/stretchr/testify/compare/v1.7.0...v1.7.1 Updated golang.org/x/crypto https://github.com/golang/crypto/compare/5770296d904e...ae2d96664a29 Updated golang.org/x/net https://github.com/golang/net/compare/69e39bad7dc2...749bd193bc2b Updated golang.org/x/sys https://github.com/golang/sys/compare/7861aae1554b...289d7a0edf71 Updated golang.zx2c4.com/wireguard/windows v0.5.1...v0.5.3 Updated google.golang.org/protobuf v1.27.1...v1.28.0
2022-04-18 10:12:25 -06:00
b, err := a.Marshal()
Public Release
2019-11-19 10:00:20 -07:00
assert.Nil(t, err)
// and then Unmarshal fine
n := &NebulaMeta{}
Update dependencies - 2022-04 (#664) Updated github.com/kardianos/service https://github.com/kardianos/service/compare/v1.2.0...v1.2.1 Updated github.com/miekg/dns https://github.com/miekg/dns/compare/v1.1.43...v1.1.48 Updated github.com/prometheus/client_golang https://github.com/prometheus/client_golang/compare/v1.11.0...v1.12.1 Updated github.com/prometheus/common https://github.com/prometheus/common/compare/v0.32.1...v0.33.0 Updated github.com/stretchr/testify https://github.com/stretchr/testify/compare/v1.7.0...v1.7.1 Updated golang.org/x/crypto https://github.com/golang/crypto/compare/5770296d904e...ae2d96664a29 Updated golang.org/x/net https://github.com/golang/net/compare/69e39bad7dc2...749bd193bc2b Updated golang.org/x/sys https://github.com/golang/sys/compare/7861aae1554b...289d7a0edf71 Updated golang.zx2c4.com/wireguard/windows v0.5.1...v0.5.3 Updated google.golang.org/protobuf v1.27.1...v1.28.0
2022-04-18 10:12:25 -06:00
err = n.Unmarshal(b)
Public Release
2019-11-19 10:00:20 -07:00
assert.Nil(t, err)
}
add tests and improve error
2019-11-23 16:55:23 -07:00
func Test_lhStaticMapping(t *testing.T) {
Move util to test, contextual errors to util (#575)
2021-11-10 20:47:38 -07:00
l := test.NewLogger()
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
myVpnNet := netip.MustParsePrefix("10.128.0.1/16")
add tests and improve error
2019-11-23 16:55:23 -07:00
lh1 := "10.128.0.2"
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
c := config.NewC(l)
c.Settings["lighthouse"] = map[interface{}]interface{}{"hosts": []interface{}{lh1}}
c.Settings["static_host_map"] = map[interface{}]interface{}{lh1: []interface{}{"1.1.1.1:4242"}}
Dns static lookerupper (#796) * Support lighthouse DNS names, and regularly resolve the name in a background goroutine to discover DNS updates.
2023-05-09 09:22:08 -06:00
_, err := NewLightHouseFromConfig(context.Background(), l, c, myVpnNet, nil, nil)
add tests and improve error
2019-11-23 16:55:23 -07:00
assert.Nil(t, err)
lh2 := "10.128.0.3"
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
c = config.NewC(l)
c.Settings["lighthouse"] = map[interface{}]interface{}{"hosts": []interface{}{lh1, lh2}}
c.Settings["static_host_map"] = map[interface{}]interface{}{lh1: []interface{}{"100.1.1.1:4242"}}
Dns static lookerupper (#796) * Support lighthouse DNS names, and regularly resolve the name in a background goroutine to discover DNS updates.
2023-05-09 09:22:08 -06:00
_, err = NewLightHouseFromConfig(context.Background(), l, c, myVpnNet, nil, nil)
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
assert.EqualError(t, err, "lighthouse 10.128.0.3 does not have a static_host_map entry")
add tests and improve error
2019-11-23 16:55:23 -07:00
}
Send the lh update worker into its own routine instead of taking over the reload routine (#935)
2023-07-27 13:38:10 -06:00
func TestReloadLighthouseInterval(t *testing.T) {
l := test.NewLogger()
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
myVpnNet := netip.MustParsePrefix("10.128.0.1/16")
Send the lh update worker into its own routine instead of taking over the reload routine (#935)
2023-07-27 13:38:10 -06:00
lh1 := "10.128.0.2"
c := config.NewC(l)
c.Settings["lighthouse"] = map[interface{}]interface{}{
"hosts": []interface{}{lh1},
"interval": "1s",
}
c.Settings["static_host_map"] = map[interface{}]interface{}{lh1: []interface{}{"1.1.1.1:4242"}}
lh, err := NewLightHouseFromConfig(context.Background(), l, c, myVpnNet, nil, nil)
assert.NoError(t, err)
lh.ifce = &mockEncWriter{}
// The first one routine is kicked off by main.go currently, lets make sure that one dies
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
assert.NoError(t, c.ReloadConfigString("lighthouse:\n interval: 5"))
Send the lh update worker into its own routine instead of taking over the reload routine (#935)
2023-07-27 13:38:10 -06:00
assert.Equal(t, int64(5), lh.interval.Load())
// Subsequent calls are killed off by the LightHouse.Reload function
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
assert.NoError(t, c.ReloadConfigString("lighthouse:\n interval: 10"))
Send the lh update worker into its own routine instead of taking over the reload routine (#935)
2023-07-27 13:38:10 -06:00
assert.Equal(t, int64(10), lh.interval.Load())
// If this completes then nothing is stealing our reload routine
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
assert.NoError(t, c.ReloadConfigString("lighthouse:\n interval: 11"))
Send the lh update worker into its own routine instead of taking over the reload routine (#935)
2023-07-27 13:38:10 -06:00
assert.Equal(t, int64(11), lh.interval.Load())
}
Lighthouse handler optimizations (#320) We noticed that the number of memory allocations LightHouse.HandleRequest creates for each call can seriously impact performance for high traffic lighthouses. This PR introduces a benchmark in the first commit and then optimizes memory usage by creating a LightHouseHandler struct. This struct allows us to re-use memory between each lighthouse request (one instance per UDP listener go-routine).
2020-11-23 12:50:01 -07:00
func BenchmarkLighthouseHandleRequest(b *testing.B) {
Move util to test, contextual errors to util (#575)
2021-11-10 20:47:38 -07:00
l := test.NewLogger()
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
myVpnNet := netip.MustParsePrefix("10.128.0.1/0")
Lighthouse handler optimizations (#320) We noticed that the number of memory allocations LightHouse.HandleRequest creates for each call can seriously impact performance for high traffic lighthouses. This PR introduces a benchmark in the first commit and then optimizes memory usage by creating a LightHouseHandler struct. This struct allows us to re-use memory between each lighthouse request (one instance per UDP listener go-routine).
2020-11-23 12:50:01 -07:00
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
c := config.NewC(l)
Dns static lookerupper (#796) * Support lighthouse DNS names, and regularly resolve the name in a background goroutine to discover DNS updates.
2023-05-09 09:22:08 -06:00
lh, err := NewLightHouseFromConfig(context.Background(), l, c, myVpnNet, nil, nil)
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
if !assert.NoError(b, err) {
b.Fatal()
}
Lighthouse handler optimizations (#320) We noticed that the number of memory allocations LightHouse.HandleRequest creates for each call can seriously impact performance for high traffic lighthouses. This PR introduces a benchmark in the first commit and then optimizes memory usage by creating a LightHouseHandler struct. This struct allows us to re-use memory between each lighthouse request (one instance per UDP listener go-routine).
2020-11-23 12:50:01 -07:00
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
hAddr := netip.MustParseAddrPort("4.5.6.7:12345")
hAddr2 := netip.MustParseAddrPort("4.5.6.7:12346")
vpnIp3 := netip.MustParseAddr("0.0.0.3")
lh.addrMap[vpnIp3] = NewRemoteList(nil)
lh.addrMap[vpnIp3].unlockedSetV4(
vpnIp3,
vpnIp3,
Refactor remotes and handshaking to give every address a fair shot (#437)
2021-04-14 12:50:09 -06:00
[]*Ip4AndPort{
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
NewIp4AndPortFromNetIP(hAddr.Addr(), hAddr.Port()),
NewIp4AndPortFromNetIP(hAddr2.Addr(), hAddr2.Port()),
Refactor remotes and handshaking to give every address a fair shot (#437)
2021-04-14 12:50:09 -06:00
},
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
func(netip.Addr, *Ip4AndPort) bool { return true },
Refactor remotes and handshaking to give every address a fair shot (#437)
2021-04-14 12:50:09 -06:00
)
Lighthouse handler optimizations (#320) We noticed that the number of memory allocations LightHouse.HandleRequest creates for each call can seriously impact performance for high traffic lighthouses. This PR introduces a benchmark in the first commit and then optimizes memory usage by creating a LightHouseHandler struct. This struct allows us to re-use memory between each lighthouse request (one instance per UDP listener go-routine).
2020-11-23 12:50:01 -07:00
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
rAddr := netip.MustParseAddrPort("1.2.2.3:12345")
rAddr2 := netip.MustParseAddrPort("1.2.2.3:12346")
vpnIp2 := netip.MustParseAddr("0.0.0.3")
lh.addrMap[vpnIp2] = NewRemoteList(nil)
lh.addrMap[vpnIp2].unlockedSetV4(
vpnIp3,
vpnIp3,
Refactor remotes and handshaking to give every address a fair shot (#437)
2021-04-14 12:50:09 -06:00
[]*Ip4AndPort{
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
NewIp4AndPortFromNetIP(rAddr.Addr(), rAddr.Port()),
NewIp4AndPortFromNetIP(rAddr2.Addr(), rAddr2.Port()),
Refactor remotes and handshaking to give every address a fair shot (#437)
2021-04-14 12:50:09 -06:00
},
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
func(netip.Addr, *Ip4AndPort) bool { return true },
Refactor remotes and handshaking to give every address a fair shot (#437)
2021-04-14 12:50:09 -06:00
)
Lighthouse handler optimizations (#320) We noticed that the number of memory allocations LightHouse.HandleRequest creates for each call can seriously impact performance for high traffic lighthouses. This PR introduces a benchmark in the first commit and then optimizes memory usage by creating a LightHouseHandler struct. This struct allows us to re-use memory between each lighthouse request (one instance per UDP listener go-routine).
2020-11-23 12:50:01 -07:00
mw := &mockEncWriter{}
b.Run("notfound", func(b *testing.B) {
lhh := lh.NewRequestHandler()
req := &NebulaMeta{
Type: NebulaMeta_HostQuery,
Details: &NebulaMetaDetails{
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
VpnIp: 4,
Ip4AndPorts: nil,
Lighthouse handler optimizations (#320) We noticed that the number of memory allocations LightHouse.HandleRequest creates for each call can seriously impact performance for high traffic lighthouses. This PR introduces a benchmark in the first commit and then optimizes memory usage by creating a LightHouseHandler struct. This struct allows us to re-use memory between each lighthouse request (one instance per UDP listener go-routine).
2020-11-23 12:50:01 -07:00
},
}
Update dependencies - 2022-04 (#664) Updated github.com/kardianos/service https://github.com/kardianos/service/compare/v1.2.0...v1.2.1 Updated github.com/miekg/dns https://github.com/miekg/dns/compare/v1.1.43...v1.1.48 Updated github.com/prometheus/client_golang https://github.com/prometheus/client_golang/compare/v1.11.0...v1.12.1 Updated github.com/prometheus/common https://github.com/prometheus/common/compare/v0.32.1...v0.33.0 Updated github.com/stretchr/testify https://github.com/stretchr/testify/compare/v1.7.0...v1.7.1 Updated golang.org/x/crypto https://github.com/golang/crypto/compare/5770296d904e...ae2d96664a29 Updated golang.org/x/net https://github.com/golang/net/compare/69e39bad7dc2...749bd193bc2b Updated golang.org/x/sys https://github.com/golang/sys/compare/7861aae1554b...289d7a0edf71 Updated golang.zx2c4.com/wireguard/windows v0.5.1...v0.5.3 Updated google.golang.org/protobuf v1.27.1...v1.28.0
2022-04-18 10:12:25 -06:00
p, err := req.Marshal()
Lighthouse handler optimizations (#320) We noticed that the number of memory allocations LightHouse.HandleRequest creates for each call can seriously impact performance for high traffic lighthouses. This PR introduces a benchmark in the first commit and then optimizes memory usage by creating a LightHouseHandler struct. This struct allows us to re-use memory between each lighthouse request (one instance per UDP listener go-routine).
2020-11-23 12:50:01 -07:00
assert.NoError(b, err)
for n := 0; n < b.N; n++ {
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
lhh.HandleRequest(rAddr, vpnIp2, p, mw)
Lighthouse handler optimizations (#320) We noticed that the number of memory allocations LightHouse.HandleRequest creates for each call can seriously impact performance for high traffic lighthouses. This PR introduces a benchmark in the first commit and then optimizes memory usage by creating a LightHouseHandler struct. This struct allows us to re-use memory between each lighthouse request (one instance per UDP listener go-routine).
2020-11-23 12:50:01 -07:00
}
})
b.Run("found", func(b *testing.B) {
lhh := lh.NewRequestHandler()
req := &NebulaMeta{
Type: NebulaMeta_HostQuery,
Details: &NebulaMetaDetails{
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
VpnIp: 3,
Ip4AndPorts: nil,
Lighthouse handler optimizations (#320) We noticed that the number of memory allocations LightHouse.HandleRequest creates for each call can seriously impact performance for high traffic lighthouses. This PR introduces a benchmark in the first commit and then optimizes memory usage by creating a LightHouseHandler struct. This struct allows us to re-use memory between each lighthouse request (one instance per UDP listener go-routine).
2020-11-23 12:50:01 -07:00
},
}
Update dependencies - 2022-04 (#664) Updated github.com/kardianos/service https://github.com/kardianos/service/compare/v1.2.0...v1.2.1 Updated github.com/miekg/dns https://github.com/miekg/dns/compare/v1.1.43...v1.1.48 Updated github.com/prometheus/client_golang https://github.com/prometheus/client_golang/compare/v1.11.0...v1.12.1 Updated github.com/prometheus/common https://github.com/prometheus/common/compare/v0.32.1...v0.33.0 Updated github.com/stretchr/testify https://github.com/stretchr/testify/compare/v1.7.0...v1.7.1 Updated golang.org/x/crypto https://github.com/golang/crypto/compare/5770296d904e...ae2d96664a29 Updated golang.org/x/net https://github.com/golang/net/compare/69e39bad7dc2...749bd193bc2b Updated golang.org/x/sys https://github.com/golang/sys/compare/7861aae1554b...289d7a0edf71 Updated golang.zx2c4.com/wireguard/windows v0.5.1...v0.5.3 Updated google.golang.org/protobuf v1.27.1...v1.28.0
2022-04-18 10:12:25 -06:00
p, err := req.Marshal()
Lighthouse handler optimizations (#320) We noticed that the number of memory allocations LightHouse.HandleRequest creates for each call can seriously impact performance for high traffic lighthouses. This PR introduces a benchmark in the first commit and then optimizes memory usage by creating a LightHouseHandler struct. This struct allows us to re-use memory between each lighthouse request (one instance per UDP listener go-routine).
2020-11-23 12:50:01 -07:00
assert.NoError(b, err)
for n := 0; n < b.N; n++ {
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
lhh.HandleRequest(rAddr, vpnIp2, p, mw)
Lighthouse handler optimizations (#320) We noticed that the number of memory allocations LightHouse.HandleRequest creates for each call can seriously impact performance for high traffic lighthouses. This PR introduces a benchmark in the first commit and then optimizes memory usage by creating a LightHouseHandler struct. This struct allows us to re-use memory between each lighthouse request (one instance per UDP listener go-routine).
2020-11-23 12:50:01 -07:00
}
})
}
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
func TestLighthouse_Memory(t *testing.T) {
Move util to test, contextual errors to util (#575)
2021-11-10 20:47:38 -07:00
l := test.NewLogger()
Rework some things into packages (#489)
2021-11-03 19:54:04 -06:00
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
myUdpAddr0 := netip.MustParseAddrPort("10.0.0.2:4242")
myUdpAddr1 := netip.MustParseAddrPort("192.168.0.2:4242")
myUdpAddr2 := netip.MustParseAddrPort("172.16.0.2:4242")
myUdpAddr3 := netip.MustParseAddrPort("100.152.0.2:4242")
myUdpAddr4 := netip.MustParseAddrPort("24.15.0.2:4242")
myUdpAddr5 := netip.MustParseAddrPort("192.168.0.2:4243")
myUdpAddr6 := netip.MustParseAddrPort("192.168.0.2:4244")
myUdpAddr7 := netip.MustParseAddrPort("192.168.0.2:4245")
myUdpAddr8 := netip.MustParseAddrPort("192.168.0.2:4246")
myUdpAddr9 := netip.MustParseAddrPort("192.168.0.2:4247")
myUdpAddr10 := netip.MustParseAddrPort("192.168.0.2:4248")
myUdpAddr11 := netip.MustParseAddrPort("192.168.0.2:4249")
myVpnIp := netip.MustParseAddr("10.128.0.2")
theirUdpAddr0 := netip.MustParseAddrPort("10.0.0.3:4242")
theirUdpAddr1 := netip.MustParseAddrPort("192.168.0.3:4242")
theirUdpAddr2 := netip.MustParseAddrPort("172.16.0.3:4242")
theirUdpAddr3 := netip.MustParseAddrPort("100.152.0.3:4242")
theirUdpAddr4 := netip.MustParseAddrPort("24.15.0.3:4242")
theirVpnIp := netip.MustParseAddr("10.128.0.3")
Rework some things into packages (#489)
2021-11-03 19:54:04 -06:00
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
c := config.NewC(l)
c.Settings["lighthouse"] = map[interface{}]interface{}{"am_lighthouse": true}
c.Settings["listen"] = map[interface{}]interface{}{"port": 4242}
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
lh, err := NewLightHouseFromConfig(context.Background(), l, c, netip.MustParsePrefix("10.128.0.1/24"), nil, nil)
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
assert.NoError(t, err)
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
lhh := lh.NewRequestHandler()
// Test that my first update responds with just that
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
newLHHostUpdate(myUdpAddr0, myVpnIp, []netip.AddrPort{myUdpAddr1, myUdpAddr2}, lhh)
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
r := newLHHostRequest(myUdpAddr0, myVpnIp, myVpnIp, lhh)
assertIp4InArray(t, r.msg.Details.Ip4AndPorts, myUdpAddr1, myUdpAddr2)
// Ensure we don't accumulate addresses
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
newLHHostUpdate(myUdpAddr0, myVpnIp, []netip.AddrPort{myUdpAddr3}, lhh)
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
r = newLHHostRequest(myUdpAddr0, myVpnIp, myVpnIp, lhh)
assertIp4InArray(t, r.msg.Details.Ip4AndPorts, myUdpAddr3)
// Grow it back to 2
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
newLHHostUpdate(myUdpAddr0, myVpnIp, []netip.AddrPort{myUdpAddr1, myUdpAddr4}, lhh)
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
r = newLHHostRequest(myUdpAddr0, myVpnIp, myVpnIp, lhh)
assertIp4InArray(t, r.msg.Details.Ip4AndPorts, myUdpAddr1, myUdpAddr4)
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
// Update a different host and ask about it
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
newLHHostUpdate(theirUdpAddr0, theirVpnIp, []netip.AddrPort{theirUdpAddr1, theirUdpAddr2, theirUdpAddr3, theirUdpAddr4}, lhh)
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
r = newLHHostRequest(theirUdpAddr0, theirVpnIp, theirVpnIp, lhh)
assertIp4InArray(t, r.msg.Details.Ip4AndPorts, theirUdpAddr1, theirUdpAddr2, theirUdpAddr3, theirUdpAddr4)
// Have both hosts ask about the other
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
r = newLHHostRequest(theirUdpAddr0, theirVpnIp, myVpnIp, lhh)
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
assertIp4InArray(t, r.msg.Details.Ip4AndPorts, myUdpAddr1, myUdpAddr4)
r = newLHHostRequest(myUdpAddr0, myVpnIp, theirVpnIp, lhh)
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
assertIp4InArray(t, r.msg.Details.Ip4AndPorts, theirUdpAddr1, theirUdpAddr2, theirUdpAddr3, theirUdpAddr4)
// Make sure we didn't get changed
r = newLHHostRequest(myUdpAddr0, myVpnIp, myVpnIp, lhh)
assertIp4InArray(t, r.msg.Details.Ip4AndPorts, myUdpAddr1, myUdpAddr4)
More LH cleanup (#429)
2021-04-01 09:23:31 -06:00
// Ensure proper ordering and limiting
Refactor remotes and handshaking to give every address a fair shot (#437)
2021-04-14 12:50:09 -06:00
// Send 12 addrs, get 10 back, the last 2 removed, allowing the duplicate to remain (clients dedupe)
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
newLHHostUpdate(
myUdpAddr0,
myVpnIp,
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
[]netip.AddrPort{
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
myUdpAddr1,
myUdpAddr2,
myUdpAddr3,
myUdpAddr4,
myUdpAddr5,
myUdpAddr5, //Duplicated on purpose
myUdpAddr6,
myUdpAddr7,
myUdpAddr8,
myUdpAddr9,
myUdpAddr10,
myUdpAddr11, // This should get cut
}, lhh)
Refactor remotes and handshaking to give every address a fair shot (#437)
2021-04-14 12:50:09 -06:00
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
r = newLHHostRequest(myUdpAddr0, myVpnIp, myVpnIp, lhh)
assertIp4InArray(
t,
r.msg.Details.Ip4AndPorts,
Refactor remotes and handshaking to give every address a fair shot (#437)
2021-04-14 12:50:09 -06:00
myUdpAddr1, myUdpAddr2, myUdpAddr3, myUdpAddr4, myUdpAddr5, myUdpAddr5, myUdpAddr6, myUdpAddr7, myUdpAddr8, myUdpAddr9,
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
)
More LH cleanup (#429)
2021-04-01 09:23:31 -06:00
// Make sure we won't add ips in our vpn network
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
bad1 := netip.MustParseAddrPort("10.128.0.99:4242")
bad2 := netip.MustParseAddrPort("10.128.0.100:4242")
good := netip.MustParseAddrPort("1.128.0.99:4242")
newLHHostUpdate(myUdpAddr0, myVpnIp, []netip.AddrPort{bad1, bad2, good}, lhh)
More LH cleanup (#429)
2021-04-01 09:23:31 -06:00
r = newLHHostRequest(myUdpAddr0, myVpnIp, myVpnIp, lhh)
assertIp4InArray(t, r.msg.Details.Ip4AndPorts, good)
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
}
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
func TestLighthouse_reload(t *testing.T) {
l := test.NewLogger()
c := config.NewC(l)
c.Settings["lighthouse"] = map[interface{}]interface{}{"am_lighthouse": true}
c.Settings["listen"] = map[interface{}]interface{}{"port": 4242}
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
lh, err := NewLightHouseFromConfig(context.Background(), l, c, netip.MustParsePrefix("10.128.0.1/24"), nil, nil)
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
assert.NoError(t, err)
Fix reconfig freeze attempting to send to an unbuffered, unread channel (#886) * Fixes a reocnfig freeze where the reconfig attempts to send to an unbuffered channel with no readers. Only create stop channel when a DNS goroutine is created, and only send when the channel exists. Buffer to size 1 so that the stop message can be immediately sent even if the goroutine is busy doing DNS lookups.
2023-05-31 14:05:46 -06:00
nc := map[interface{}]interface{}{
"static_host_map": map[interface{}]interface{}{
"10.128.0.2": []interface{}{"1.1.1.1:4242"},
},
}
rc, err := yaml.Marshal(nc)
assert.NoError(t, err)
c.ReloadConfigString(string(rc))
err = lh.reload(c, false)
assert.NoError(t, err)
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
}
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
func newLHHostRequest(fromAddr netip.AddrPort, myVpnIp, queryVpnIp netip.Addr, lhh *LightHouseHandler) testLhReply {
//TODO: IPV6-WORK
bip := queryVpnIp.As4()
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
req := &NebulaMeta{
Type: NebulaMeta_HostQuery,
Details: &NebulaMetaDetails{
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
VpnIp: binary.BigEndian.Uint32(bip[:]),
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
},
}
b, err := req.Marshal()
if err != nil {
panic(err)
}
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
filter := NebulaMeta_HostQueryReply
w := &testEncWriter{
metaFilter: &filter,
}
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
lhh.HandleRequest(fromAddr, myVpnIp, b, w)
return w.lastReply
}
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
func newLHHostUpdate(fromAddr netip.AddrPort, vpnIp netip.Addr, addrs []netip.AddrPort, lhh *LightHouseHandler) {
//TODO: IPV6-WORK
bip := vpnIp.As4()
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
req := &NebulaMeta{
Type: NebulaMeta_HostUpdateNotification,
Details: &NebulaMetaDetails{
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
VpnIp: binary.BigEndian.Uint32(bip[:]),
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
Ip4AndPorts: make([]*Ip4AndPort, len(addrs)),
},
}
for k, v := range addrs {
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
req.Details.Ip4AndPorts[k] = NewIp4AndPortFromNetIP(v.Addr(), v.Port())
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
}
b, err := req.Marshal()
if err != nil {
panic(err)
}
w := &testEncWriter{}
lhh.HandleRequest(fromAddr, vpnIp, b, w)
}
Refactor remotes and handshaking to give every address a fair shot (#437)
2021-04-14 12:50:09 -06:00
//TODO: this is a RemoteList test
//func Test_lhRemoteAllowList(t *testing.T) {
Move util to test, contextual errors to util (#575)
2021-11-10 20:47:38 -07:00
// l := NewLogger()
Refactor remotes and handshaking to give every address a fair shot (#437)
2021-04-14 12:50:09 -06:00
// c := NewConfig(l)
// c.Settings["remoteallowlist"] = map[interface{}]interface{}{
// "10.20.0.0/12": false,
// }
// allowList, err := c.GetAllowList("remoteallowlist", false)
// assert.Nil(t, err)
//
// lh1 := "10.128.0.2"
// lh1IP := net.ParseIP(lh1)
//
// udpServer, _ := NewListener(l, "0.0.0.0", 0, true)
//
// lh := NewLightHouse(l, true, &net.IPNet{IP: net.IP{0, 0, 0, 1}, Mask: net.IPMask{255, 255, 255, 0}}, []uint32{ip2int(lh1IP)}, 10, 10003, udpServer, false, 1, false)
// lh.SetRemoteAllowList(allowList)
//
// // A disallowed ip should not enter the cache but we should end up with an empty entry in the addrMap
// remote1IP := net.ParseIP("10.20.0.3")
// remotes := lh.unlockedGetRemoteList(ip2int(remote1IP))
// remotes.unlockedPrependV4(ip2int(remote1IP), NewIp4AndPort(remote1IP, 4242))
// assert.NotNil(t, lh.addrMap[ip2int(remote1IP)])
// assert.Empty(t, lh.addrMap[ip2int(remote1IP)].CopyAddrs([]*net.IPNet{}))
//
// // Make sure a good ip enters the cache and addrMap
// remote2IP := net.ParseIP("10.128.0.3")
// remote2UDPAddr := NewUDPAddr(remote2IP, uint16(4242))
// lh.addRemoteV4(ip2int(remote2IP), ip2int(remote2IP), NewIp4AndPort(remote2UDPAddr.IP, uint32(remote2UDPAddr.Port)), false, false)
// assertUdpAddrInArray(t, lh.addrMap[ip2int(remote2IP)].CopyAddrs([]*net.IPNet{}), remote2UDPAddr)
//
// // Another good ip gets into the cache, ordering is inverted
// remote3IP := net.ParseIP("10.128.0.4")
// remote3UDPAddr := NewUDPAddr(remote3IP, uint16(4243))
// lh.addRemoteV4(ip2int(remote2IP), ip2int(remote2IP), NewIp4AndPort(remote3UDPAddr.IP, uint32(remote3UDPAddr.Port)), false, false)
// assertUdpAddrInArray(t, lh.addrMap[ip2int(remote2IP)].CopyAddrs([]*net.IPNet{}), remote2UDPAddr, remote3UDPAddr)
//
// // If we exceed the length limit we should only have the most recent addresses
// addedAddrs := []*udpAddr{}
// for i := 0; i < 11; i++ {
// remoteUDPAddr := NewUDPAddr(net.IP{10, 128, 0, 4}, uint16(4243+i))
// lh.addRemoteV4(ip2int(remote2IP), ip2int(remote2IP), NewIp4AndPort(remoteUDPAddr.IP, uint32(remoteUDPAddr.Port)), false, false)
// // The first entry here is a duplicate, don't add it to the assert list
// if i != 0 {
// addedAddrs = append(addedAddrs, remoteUDPAddr)
// }
// }
//
// // We should only have the last 10 of what we tried to add
// assert.True(t, len(addedAddrs) >= 10, "We should have tried to add at least 10 addresses")
// assertUdpAddrInArray(
// t,
// lh.addrMap[ip2int(remote2IP)].CopyAddrs([]*net.IPNet{}),
// addedAddrs[0],
// addedAddrs[1],
// addedAddrs[2],
// addedAddrs[3],
// addedAddrs[4],
// addedAddrs[5],
// addedAddrs[6],
// addedAddrs[7],
// addedAddrs[8],
// addedAddrs[9],
// )
//}
Ensure mutex is unlocked when adding remote IP. (#406) Currently, if you use the remote allow list config, as soon as you attempt to create a tunnel to a node that has a blocked IP address, a mutex is locked and never unlocked. This happens even if the node has an allowed remote IP address in addition to the blocked remote IP address. This pull request ensures that the lighthouse mutex is unlocked whenever we attempt to add a remote IP.
2021-03-16 10:41:35 -06:00
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
type testLhReply struct {
Rework some things into packages (#489)
2021-11-03 19:54:04 -06:00
nebType header.MessageType
nebSubType header.MessageSubType
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
vpnIp netip.Addr
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
msg *NebulaMeta
}
add tests and improve error
2019-11-23 16:55:23 -07:00
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
type testEncWriter struct {
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
lastReply testLhReply
metaFilter *NebulaMeta_MessageType
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
}
Public Release
2019-11-19 10:00:20 -07:00
update EncReader and EncWriter interface function args to have concrete types (#844) * Update LightHouseHandlerFunc to remove EncWriter param. * Move EncWriter to interface * EncReader, too
2023-04-07 12:28:37 -06:00
func (tw *testEncWriter) SendVia(via *HostInfo, relay *Relay, ad, nb, out []byte, nocopy bool) {
Relay (#678) Co-authored-by: Wade Simmons <wsimmons@slack-corp.com>
2022-06-21 12:35:23 -06:00
}
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
func (tw *testEncWriter) Handshake(vpnIp netip.Addr) {
Relay (#678) Co-authored-by: Wade Simmons <wsimmons@slack-corp.com>
2022-06-21 12:35:23 -06:00
}
Rehandshaking (#838) Co-authored-by: Brad Higgins <brad@defined.net> Co-authored-by: Wade Simmons <wadey@slack-corp.com>
2023-05-04 14:16:37 -06:00
func (tw *testEncWriter) SendMessageToHostInfo(t header.MessageType, st header.MessageSubType, hostinfo *HostInfo, p, _, _ []byte) {
msg := &NebulaMeta{}
err := msg.Unmarshal(p)
if tw.metaFilter == nil || msg.Type == *tw.metaFilter {
tw.lastReply = testLhReply{
nebType: t,
nebSubType: st,
vpnIp: hostinfo.vpnIp,
msg: msg,
}
}
if err != nil {
panic(err)
}
}
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
func (tw *testEncWriter) SendMessageToVpnIp(t header.MessageType, st header.MessageSubType, vpnIp netip.Addr, p, _, _ []byte) {
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
msg := &NebulaMeta{}
Update dependencies - 2022-04 (#664) Updated github.com/kardianos/service https://github.com/kardianos/service/compare/v1.2.0...v1.2.1 Updated github.com/miekg/dns https://github.com/miekg/dns/compare/v1.1.43...v1.1.48 Updated github.com/prometheus/client_golang https://github.com/prometheus/client_golang/compare/v1.11.0...v1.12.1 Updated github.com/prometheus/common https://github.com/prometheus/common/compare/v0.32.1...v0.33.0 Updated github.com/stretchr/testify https://github.com/stretchr/testify/compare/v1.7.0...v1.7.1 Updated golang.org/x/crypto https://github.com/golang/crypto/compare/5770296d904e...ae2d96664a29 Updated golang.org/x/net https://github.com/golang/net/compare/69e39bad7dc2...749bd193bc2b Updated golang.org/x/sys https://github.com/golang/sys/compare/7861aae1554b...289d7a0edf71 Updated golang.zx2c4.com/wireguard/windows v0.5.1...v0.5.3 Updated google.golang.org/protobuf v1.27.1...v1.28.0
2022-04-18 10:12:25 -06:00
err := msg.Unmarshal(p)
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
if tw.metaFilter == nil || msg.Type == *tw.metaFilter {
tw.lastReply = testLhReply{
nebType: t,
nebSubType: st,
vpnIp: vpnIp,
msg: msg,
}
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
}
Public Release
2019-11-19 10:00:20 -07:00
if err != nil {
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
panic(err)
Public Release
2019-11-19 10:00:20 -07:00
}
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
}
Public Release
2019-11-19 10:00:20 -07:00
Lighthouse performance pass (#418)
2021-03-31 16:32:02 -06:00
// assertIp4InArray asserts every address in want is at the same position in have and that the lengths match
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
func assertIp4InArray(t *testing.T, have []*Ip4AndPort, want ...netip.AddrPort) {
Lighthouse reload support (#649) Co-authored-by: John Maguire <contact@johnmaguire.me>
2022-03-14 11:35:13 -06:00
if !assert.Len(t, have, len(want)) {
return
}
Refactor remotes and handshaking to give every address a fair shot (#437)
2021-04-14 12:50:09 -06:00
for k, w := range want {
Switch most everything to netip in prep for ipv6 in the overlay (#1173)
2024-07-31 09:18:56 -06:00
//TODO: IPV6-WORK
h := AddrPortFromIp4AndPort(have[k])
if !(h == w) {
assert.Fail(t, fmt.Sprintf("Response did not contain: %v at %v, found %v", w, k, h))
Refactor remotes and handshaking to give every address a fair shot (#437)
2021-04-14 12:50:09 -06:00
}
}
}