qos_net 0.6.0

Socket to TCP proxy for QuorumOS enclave network access
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231

//! Protocol proxy for our remote QOS net proxy
use std::{sync::Arc, time::Duration};

use borsh::BorshDeserialize;
use futures::Future;
use qos_core::{
	io::{IOError, Listener, StreamPool},
	server::{PermittedStream, SocketServer, SocketServerError},
};
use tokio::sync::Semaphore;

use crate::{
	error::QosNetError, proxy_connection::ProxyConnection, proxy_msg::ProxyMsg,
};

// maximum time a single proxy request can take
const PROXY_CLIENT_TIMEOUT: Duration = Duration::from_secs(10);

const MEGABYTE: usize = 1024 * 1024;
const MAX_ENCODED_MSG_LEN: usize = 128 * MEGABYTE;

/// Socket<>TCP proxy to enable remote connections
pub struct Proxy {
	tcp_connection: Option<ProxyConnection>,
	sock_stream: PermittedStream,
}

impl Proxy {
	/// Create a new `Proxy` from the given `Stream`, with empty tcp_connection
	pub fn new(sock_stream: PermittedStream) -> Self {
		Self { tcp_connection: None, sock_stream }
	}

	/// Create a new connection by resolving a name into an IP
	/// address. The TCP connection is opened and saved in internal state.
	async fn connect_by_name(
		&mut self,
		hostname: String,
		port: u16,
		dns_resolvers: Vec<String>,
		dns_port: u16,
	) -> ProxyMsg {
		match ProxyConnection::new_from_name(
			hostname.clone(),
			port,
			dns_resolvers.clone(),
			dns_port,
		)
		.await
		{
			Ok(conn) => {
				let remote_ip = conn.ip.clone();
				self.tcp_connection = Some(conn);
				println!("Connection to {hostname}@{remote_ip} established");
				ProxyMsg::ConnectResponse { remote_ip }
			}
			Err(e) => {
				println!("error while establishing connection: {e:?}");
				ProxyMsg::ProxyError(e)
			}
		}
	}

	/// Create a new connection, targeting an IP address directly.
	/// address. The TCP connection is opened and saved in internal state.
	async fn connect_by_ip(&mut self, ip: String, port: u16) -> ProxyMsg {
		match ProxyConnection::new_from_ip(ip.clone(), port).await {
			Ok(conn) => {
				let remote_ip = conn.ip.clone();
				self.tcp_connection = Some(conn);
				println!("Connection to {ip} established");
				ProxyMsg::ConnectResponse { remote_ip }
			}
			Err(e) => {
				println!("error while establishing connection: {e:?}");
				ProxyMsg::ProxyError(e)
			}
		}
	}

	// processes given `ProxyMsg` if it's a connection request or returns a `ProxyError` otherwise.
	async fn process_req(&mut self, req_bytes: Vec<u8>) -> Vec<u8> {
		if req_bytes.len() > MAX_ENCODED_MSG_LEN {
			return borsh::to_vec(&ProxyMsg::ProxyError(
				QosNetError::OversizedPayload,
			))
			.expect("ProtocolMsg can always be serialized. qed.");
		}

		let resp = match ProxyMsg::try_from_slice(&req_bytes) {
			Ok(req) => match req {
				ProxyMsg::StatusRequest => ProxyMsg::StatusResponse(0),
				ProxyMsg::ConnectByNameRequest {
					hostname,
					port,
					dns_resolvers,
					dns_port,
				} => {
					self.connect_by_name(
						hostname,
						port,
						dns_resolvers,
						dns_port,
					)
					.await
				}
				ProxyMsg::ConnectByIpRequest { ip, port } => {
					self.connect_by_ip(ip, port).await
				}
				ProxyMsg::ProxyError(err) => ProxyMsg::ProxyError(err),
				_ => ProxyMsg::ProxyError(QosNetError::InvalidMsg),
			},
			Err(_) => ProxyMsg::ProxyError(QosNetError::InvalidMsg),
		};

		borsh::to_vec(&resp)
			.expect("Protocol message can always be serialized. qed!")
	}
}

impl Proxy {
	async fn run(&mut self) -> Result<(), IOError> {
		// Only try to process ProxyMsg content on the USOCK/VSOCK if we're not connected to TCP yet.
		// If we're connected, we should be a "dumb pipe" using the `tokio::io::copy_bidirectional`
		// which is handled in the connect functions above
		if self.tcp_connection.is_some() {
			return Err(IOError::UnexpectedProxyConnection);
		}

		// ensure we timeout the entire proxy request within 10s
		match tokio::time::timeout(PROXY_CLIENT_TIMEOUT, {
			self.connect_and_stream()
		})
		.await
		{
			Ok(result) => result,
			Err(err) => {
				eprintln!("proxy timeout: {err}");
				Err(IOError::RecvTimeout)
			}
		}
	}

	async fn connect_and_stream(&mut self) -> Result<(), IOError> {
		let req_bytes = self.sock_stream.recv().await?;
		let resp_bytes = self.process_req(req_bytes).await;

		if let Err(err) = self.sock_stream.send(&resp_bytes).await {
			self.tcp_connection = None; // ensure we clear this socket's tcp state if we errored after we assigned it
			return Err(err);
		}

		if let Some(tcp_connection) = &mut self.tcp_connection {
			let result = tokio::io::copy_bidirectional(
				&mut self.sock_stream.stream(),
				&mut tcp_connection.tcp_stream,
			)
			.await
			.map(|_| ())
			.map_err(IOError::from);

			// Once the "dumb pipe" is closed we need to clear our tcp_connection and refresh
			// the proxy socket stream by using shutdown
			self.tcp_connection = None;

			result
		} else {
			Err(IOError::MissingProxyConnection)
		}
	}
}

/// Trait for proxy server implementations.
pub trait ProxyServer {
	/// Listen for incoming connections on the proxy server.
	fn listen_proxy(
		pool: StreamPool,
		max_connections: usize,
	) -> impl Future<Output = Result<Box<Self>, SocketServerError>> + Send;
}

impl ProxyServer for SocketServer {
	/// Listen on a tcp proxy server in a way that allows the USOCK/VSOCK to be used as a
	/// dumb pipe after getting the `connect*` calls. Allows up to `max_connections`.
	async fn listen_proxy(
		pool: StreamPool,
		max_connections: usize,
	) -> Result<Box<Self>, SocketServerError> {
		println!("`SocketServer` proxy listening on pool size {}", pool.len());

		let listeners = pool.listen()?;

		let mut tasks = Vec::new();
		for listener in listeners {
			let task = tokio::spawn(async move {
				accept_loop_proxy(listener, max_connections).await
			});

			tasks.push(task);
		}

		Ok(Box::new(Self { pool, tasks, max_connections }))
	}
}

async fn accept_loop_proxy(
	listener: Listener,
	max_connections: usize,
) -> Result<(), SocketServerError> {
	let connections = Arc::new(Semaphore::const_new(max_connections));
	loop {
		println!("Proxy::accept_loop_proxy accepting connection");
		let stream =
			PermittedStream::accept(&listener, connections.clone()).await?;
		println!("Proxy::accept_loop_proxy new connection accepted");

		tokio::task::spawn(async move {
			let mut proxy = Proxy::new(stream);

			match proxy.run().await {
				Ok(()) => {
					println!("Proxy::run done");
				}
				Err(IOError::RecvConnectionClosed) => {} // expected, do not log and just re-accept
				Err(err) => {
					eprintln!("Error on proxy run {err:?} rerunning");
				}
			}
		});
	}
}