mirror of
https://github.com/QuilibriumNetwork/ceremonyclient.git
synced 2026-02-21 10:27:26 +08:00
dbd95bd9e9
* v2.1.0 [omit consensus and adjacent] - this commit will be amended with the full release after the file copy is complete * 2.1.0 main node rollup
251 lines
8.4 KiB
Go
251 lines
8.4 KiB
Go
package swarm
|
|
|
|
import (
|
|
"fmt"
|
|
"testing"
|
|
|
|
ma "github.com/multiformats/go-multiaddr"
|
|
"github.com/stretchr/testify/require"
|
|
)
|
|
|
|
func tStringCast(s string) ma.Multiaddr {
|
|
st, _ := ma.StringCast(s)
|
|
return st
|
|
}
|
|
|
|
func TestBlackHoleSuccessCounterReset(t *testing.T) {
|
|
n := 10
|
|
bhf := &BlackHoleSuccessCounter{N: n, MinSuccesses: 2, Name: "test"}
|
|
var i = 0
|
|
// calls up to n should be probing
|
|
for i = 1; i <= n; i++ {
|
|
if bhf.HandleRequest() != blackHoleStateProbing {
|
|
t.Fatalf("expected calls up to n to be probes")
|
|
}
|
|
if bhf.State() != blackHoleStateProbing {
|
|
t.Fatalf("expected state to be probing got %s", bhf.State())
|
|
}
|
|
bhf.RecordResult(false)
|
|
}
|
|
|
|
// after threshold calls every nth call should be a probe
|
|
for i = n + 1; i < 42; i++ {
|
|
result := bhf.HandleRequest()
|
|
if (i%n == 0 && result != blackHoleStateProbing) || (i%n != 0 && result != blackHoleStateBlocked) {
|
|
t.Fatalf("expected every nth dial to be a probe")
|
|
}
|
|
if bhf.State() != blackHoleStateBlocked {
|
|
t.Fatalf("expected state to be blocked, got %s", bhf.State())
|
|
}
|
|
}
|
|
|
|
bhf.RecordResult(true)
|
|
// check if calls up to n are probes again
|
|
for i = 0; i < n; i++ {
|
|
if bhf.HandleRequest() != blackHoleStateProbing {
|
|
t.Fatalf("expected black hole detector state to reset after success")
|
|
}
|
|
if bhf.State() != blackHoleStateProbing {
|
|
t.Fatalf("expected state to be probing got %s", bhf.State())
|
|
}
|
|
bhf.RecordResult(false)
|
|
}
|
|
|
|
// next call should be blocked
|
|
if bhf.HandleRequest() != blackHoleStateBlocked {
|
|
t.Fatalf("expected dial to be blocked")
|
|
if bhf.State() != blackHoleStateBlocked {
|
|
t.Fatalf("expected state to be blocked, got %s", bhf.State())
|
|
}
|
|
}
|
|
}
|
|
|
|
func TestBlackHoleSuccessCounterSuccessFraction(t *testing.T) {
|
|
n := 10
|
|
tests := []struct {
|
|
minSuccesses, successes int
|
|
result BlackHoleState
|
|
}{
|
|
{minSuccesses: 5, successes: 5, result: blackHoleStateAllowed},
|
|
{minSuccesses: 3, successes: 3, result: blackHoleStateAllowed},
|
|
{minSuccesses: 5, successes: 4, result: blackHoleStateBlocked},
|
|
{minSuccesses: 5, successes: 7, result: blackHoleStateAllowed},
|
|
{minSuccesses: 3, successes: 1, result: blackHoleStateBlocked},
|
|
{minSuccesses: 0, successes: 0, result: blackHoleStateAllowed},
|
|
{minSuccesses: 10, successes: 10, result: blackHoleStateAllowed},
|
|
}
|
|
for i, tc := range tests {
|
|
t.Run(fmt.Sprintf("case-%d", i), func(t *testing.T) {
|
|
bhf := BlackHoleSuccessCounter{N: n, MinSuccesses: tc.minSuccesses}
|
|
for i := 0; i < tc.successes; i++ {
|
|
bhf.RecordResult(true)
|
|
}
|
|
for i := 0; i < n-tc.successes; i++ {
|
|
bhf.RecordResult(false)
|
|
}
|
|
got := bhf.HandleRequest()
|
|
if got != tc.result {
|
|
t.Fatalf("expected %d got %d", tc.result, got)
|
|
}
|
|
})
|
|
}
|
|
}
|
|
|
|
func TestBlackHoleDetectorInApplicableAddress(t *testing.T) {
|
|
udpF := &BlackHoleSuccessCounter{N: 10, MinSuccesses: 5}
|
|
ipv6F := &BlackHoleSuccessCounter{N: 10, MinSuccesses: 5}
|
|
bhd := &blackHoleDetector{udp: udpF, ipv6: ipv6F}
|
|
addrs := []ma.Multiaddr{
|
|
tStringCast("/ip4/1.2.3.4/tcp/1234"),
|
|
tStringCast("/ip4/1.2.3.4/tcp/1233"),
|
|
tStringCast("/ip6/::1/udp/1234/quic-v1"),
|
|
tStringCast("/ip4/192.168.1.5/udp/1234/quic-v1"),
|
|
}
|
|
for i := 0; i < 1000; i++ {
|
|
filteredAddrs, _ := bhd.FilterAddrs(addrs)
|
|
require.ElementsMatch(t, addrs, filteredAddrs)
|
|
for j := 0; j < len(addrs); j++ {
|
|
bhd.RecordResult(addrs[j], false)
|
|
}
|
|
}
|
|
}
|
|
|
|
func TestBlackHoleDetectorUDPDisabled(t *testing.T) {
|
|
ipv6F := &BlackHoleSuccessCounter{N: 10, MinSuccesses: 5}
|
|
bhd := &blackHoleDetector{ipv6: ipv6F}
|
|
publicAddr := tStringCast("/ip4/1.2.3.4/udp/1234/quic-v1")
|
|
privAddr := tStringCast("/ip4/192.168.1.5/udp/1234/quic-v1")
|
|
for i := 0; i < 100; i++ {
|
|
bhd.RecordResult(publicAddr, false)
|
|
}
|
|
wantAddrs := []ma.Multiaddr{publicAddr, privAddr}
|
|
wantRemovedAddrs := make([]ma.Multiaddr, 0)
|
|
|
|
gotAddrs, gotRemovedAddrs := bhd.FilterAddrs(wantAddrs)
|
|
require.ElementsMatch(t, wantAddrs, gotAddrs)
|
|
require.ElementsMatch(t, wantRemovedAddrs, gotRemovedAddrs)
|
|
}
|
|
|
|
func TestBlackHoleDetectorIPv6Disabled(t *testing.T) {
|
|
udpF := &BlackHoleSuccessCounter{N: 10, MinSuccesses: 5}
|
|
bhd := &blackHoleDetector{udp: udpF}
|
|
publicAddr := tStringCast("/ip6/2001::1/tcp/1234")
|
|
privAddr := tStringCast("/ip6/::1/tcp/1234")
|
|
for i := 0; i < 100; i++ {
|
|
bhd.RecordResult(publicAddr, false)
|
|
}
|
|
|
|
wantAddrs := []ma.Multiaddr{publicAddr, privAddr}
|
|
wantRemovedAddrs := make([]ma.Multiaddr, 0)
|
|
|
|
gotAddrs, gotRemovedAddrs := bhd.FilterAddrs(wantAddrs)
|
|
require.ElementsMatch(t, wantAddrs, gotAddrs)
|
|
require.ElementsMatch(t, wantRemovedAddrs, gotRemovedAddrs)
|
|
}
|
|
|
|
func TestBlackHoleDetectorProbes(t *testing.T) {
|
|
bhd := &blackHoleDetector{
|
|
udp: &BlackHoleSuccessCounter{N: 2, MinSuccesses: 1, Name: "udp"},
|
|
ipv6: &BlackHoleSuccessCounter{N: 3, MinSuccesses: 1, Name: "ipv6"},
|
|
}
|
|
udp6Addr := tStringCast("/ip6/2001::1/udp/1234/quic-v1")
|
|
addrs := []ma.Multiaddr{udp6Addr}
|
|
for i := 0; i < 3; i++ {
|
|
bhd.RecordResult(udp6Addr, false)
|
|
}
|
|
for i := 1; i < 100; i++ {
|
|
filteredAddrs, _ := bhd.FilterAddrs(addrs)
|
|
if i%2 == 0 || i%3 == 0 {
|
|
if len(filteredAddrs) == 0 {
|
|
t.Fatalf("expected probe to be allowed irrespective of the state of other black hole filter")
|
|
}
|
|
} else {
|
|
if len(filteredAddrs) != 0 {
|
|
t.Fatalf("expected dial to be blocked %s", filteredAddrs)
|
|
}
|
|
}
|
|
}
|
|
|
|
}
|
|
|
|
func TestBlackHoleDetectorAddrFiltering(t *testing.T) {
|
|
udp6Pub := tStringCast("/ip6/2001::1/udp/1234/quic-v1")
|
|
udp6Pri := tStringCast("/ip6/::1/udp/1234/quic-v1")
|
|
udp4Pub := tStringCast("/ip4/1.2.3.4/udp/1234/quic-v1")
|
|
udp4Pri := tStringCast("/ip4/192.168.1.5/udp/1234/quic-v1")
|
|
tcp6Pub := tStringCast("/ip6/2001::1/tcp/1234/quic-v1")
|
|
tcp6Pri := tStringCast("/ip6/::1/tcp/1234/quic-v1")
|
|
tcp4Pub := tStringCast("/ip4/1.2.3.4/tcp/1234/quic-v1")
|
|
tcp4Pri := tStringCast("/ip4/192.168.1.5/tcp/1234/quic-v1")
|
|
|
|
makeBHD := func(udpBlocked, ipv6Blocked bool) *blackHoleDetector {
|
|
bhd := &blackHoleDetector{
|
|
udp: &BlackHoleSuccessCounter{N: 100, MinSuccesses: 10, Name: "udp"},
|
|
ipv6: &BlackHoleSuccessCounter{N: 100, MinSuccesses: 10, Name: "ipv6"},
|
|
}
|
|
for i := 0; i < 100; i++ {
|
|
bhd.RecordResult(udp4Pub, !udpBlocked)
|
|
}
|
|
for i := 0; i < 100; i++ {
|
|
bhd.RecordResult(tcp6Pub, !ipv6Blocked)
|
|
}
|
|
return bhd
|
|
}
|
|
|
|
allInput := []ma.Multiaddr{udp6Pub, udp6Pri, udp4Pub, udp4Pri, tcp6Pub, tcp6Pri,
|
|
tcp4Pub, tcp4Pri}
|
|
|
|
udpBlockedOutput := []ma.Multiaddr{udp6Pri, udp4Pri, tcp6Pub, tcp6Pri, tcp4Pub, tcp4Pri}
|
|
udpPublicAddrs := []ma.Multiaddr{udp6Pub, udp4Pub}
|
|
bhd := makeBHD(true, false)
|
|
gotAddrs, gotRemovedAddrs := bhd.FilterAddrs(allInput)
|
|
require.ElementsMatch(t, udpBlockedOutput, gotAddrs)
|
|
require.ElementsMatch(t, udpPublicAddrs, gotRemovedAddrs)
|
|
|
|
ip6BlockedOutput := []ma.Multiaddr{udp6Pri, udp4Pub, udp4Pri, tcp6Pri, tcp4Pub, tcp4Pri}
|
|
ip6PublicAddrs := []ma.Multiaddr{udp6Pub, tcp6Pub}
|
|
bhd = makeBHD(false, true)
|
|
gotAddrs, gotRemovedAddrs = bhd.FilterAddrs(allInput)
|
|
require.ElementsMatch(t, ip6BlockedOutput, gotAddrs)
|
|
require.ElementsMatch(t, ip6PublicAddrs, gotRemovedAddrs)
|
|
|
|
bothBlockedOutput := []ma.Multiaddr{udp6Pri, udp4Pri, tcp6Pri, tcp4Pub, tcp4Pri}
|
|
bothPublicAddrs := []ma.Multiaddr{udp6Pub, tcp6Pub, udp4Pub}
|
|
bhd = makeBHD(true, true)
|
|
gotAddrs, gotRemovedAddrs = bhd.FilterAddrs(allInput)
|
|
require.ElementsMatch(t, bothBlockedOutput, gotAddrs)
|
|
require.ElementsMatch(t, bothPublicAddrs, gotRemovedAddrs)
|
|
}
|
|
|
|
func TestBlackHoleDetectorReadOnlyMode(t *testing.T) {
|
|
udpF := &BlackHoleSuccessCounter{N: 10, MinSuccesses: 5}
|
|
ipv6F := &BlackHoleSuccessCounter{N: 10, MinSuccesses: 5}
|
|
bhd := &blackHoleDetector{udp: udpF, ipv6: ipv6F, readOnly: true}
|
|
publicAddr := tStringCast("/ip4/1.2.3.4/udp/1234/quic-v1")
|
|
privAddr := tStringCast("/ip6/::1/tcp/1234")
|
|
for i := 0; i < 100; i++ {
|
|
bhd.RecordResult(publicAddr, true)
|
|
}
|
|
allAddr := []ma.Multiaddr{privAddr, publicAddr}
|
|
// public addr filtered because state is probing
|
|
wantAddrs := []ma.Multiaddr{privAddr}
|
|
wantRemovedAddrs := []ma.Multiaddr{publicAddr}
|
|
|
|
gotAddrs, gotRemovedAddrs := bhd.FilterAddrs(allAddr)
|
|
require.ElementsMatch(t, wantAddrs, gotAddrs)
|
|
require.ElementsMatch(t, wantRemovedAddrs, gotRemovedAddrs)
|
|
|
|
// a non readonly shared state black hole detector
|
|
nbhd := &blackHoleDetector{udp: bhd.udp, ipv6: bhd.ipv6, readOnly: false}
|
|
for i := 0; i < 100; i++ {
|
|
nbhd.RecordResult(publicAddr, true)
|
|
}
|
|
// no addresses filtered because state is allowed
|
|
wantAddrs = []ma.Multiaddr{privAddr, publicAddr}
|
|
wantRemovedAddrs = []ma.Multiaddr{}
|
|
|
|
gotAddrs, gotRemovedAddrs = bhd.FilterAddrs(allAddr)
|
|
require.ElementsMatch(t, wantAddrs, gotAddrs)
|
|
require.ElementsMatch(t, wantRemovedAddrs, gotRemovedAddrs)
|
|
}
|