mirror of
https://github.com/XRPLF/clio.git
synced 2025-12-03 18:15:51 +00:00
cyan317
@@ -48,13 +48,24 @@ public:
|
||||
template <typename SweepHandler>
|
||||
class BasicDOSGuard : public BaseDOSGuard
|
||||
{
|
||||
mutable std::mutex mtx_; // protects ipFetchCount_
|
||||
std::unordered_map<std::string, std::uint32_t> ipFetchCount_;
|
||||
// Accumulated state per IP, state will be reset accordingly
|
||||
struct ClientState
|
||||
{
|
||||
// accumulated transfered byte
|
||||
std::uint32_t transferedByte = 0;
|
||||
// accumulated served requests count
|
||||
std::uint32_t requestsCount = 0;
|
||||
};
|
||||
|
||||
mutable std::mutex mtx_;
|
||||
// accumulated states map
|
||||
std::unordered_map<std::string, ClientState> ipState_;
|
||||
std::unordered_map<std::string, std::uint32_t> ipConnCount_;
|
||||
std::unordered_set<std::string> const whitelist_;
|
||||
|
||||
std::uint32_t const maxFetches_;
|
||||
std::uint32_t const maxConnCount_;
|
||||
std::uint32_t const maxRequestCount_;
|
||||
clio::Logger log_{"RPC"};
|
||||
|
||||
public:
|
||||
@@ -68,6 +79,7 @@ public:
|
||||
: whitelist_{getWhitelist(config)}
|
||||
, maxFetches_{config.valueOr("dos_guard.max_fetches", 100000000u)}
|
||||
, maxConnCount_{config.valueOr("dos_guard.max_connections", 1u)}
|
||||
, maxRequestCount_{config.valueOr("dos_guard.max_requests", 10u)}
|
||||
{
|
||||
sweepHandler.setup(this);
|
||||
}
|
||||
@@ -98,25 +110,33 @@ public:
|
||||
if (whitelist_.contains(ip))
|
||||
return true;
|
||||
|
||||
std::unique_lock lck(mtx_);
|
||||
bool fetchesOk = true;
|
||||
bool connsOk = true;
|
||||
{
|
||||
auto it = ipFetchCount_.find(ip);
|
||||
if (it != ipFetchCount_.end())
|
||||
fetchesOk = it->second <= maxFetches_;
|
||||
}
|
||||
{
|
||||
std::unique_lock lck(mtx_);
|
||||
if (ipState_.find(ip) != ipState_.end())
|
||||
{
|
||||
auto [transferedByte, requests] = ipState_.at(ip);
|
||||
if (transferedByte > maxFetches_ || requests > maxRequestCount_)
|
||||
{
|
||||
log_.warn()
|
||||
<< "Dosguard:Client surpassed the rate limit. ip = "
|
||||
<< ip << " Transfered Byte:" << transferedByte
|
||||
<< " Requests:" << requests;
|
||||
return false;
|
||||
}
|
||||
}
|
||||
auto it = ipConnCount_.find(ip);
|
||||
if (it != ipConnCount_.end())
|
||||
{
|
||||
connsOk = it->second <= maxConnCount_;
|
||||
if (it->second > maxConnCount_)
|
||||
{
|
||||
log_.warn()
|
||||
<< "Dosguard:Client surpassed the rate limit. ip = "
|
||||
<< ip << " Concurrent connection:" << it->second;
|
||||
return false;
|
||||
}
|
||||
}
|
||||
}
|
||||
if (!fetchesOk || !connsOk)
|
||||
log_.warn() << "Client surpassed the rate limit. ip = " << ip;
|
||||
|
||||
return fetchesOk && connsOk;
|
||||
return true;
|
||||
}
|
||||
|
||||
/**
|
||||
@@ -170,11 +190,32 @@ public:
|
||||
|
||||
{
|
||||
std::unique_lock lck(mtx_);
|
||||
auto it = ipFetchCount_.find(ip);
|
||||
if (it == ipFetchCount_.end())
|
||||
ipFetchCount_[ip] = numObjects;
|
||||
else
|
||||
it->second += numObjects;
|
||||
ipState_[ip].transferedByte += numObjects;
|
||||
}
|
||||
|
||||
return isOk(ip);
|
||||
}
|
||||
|
||||
/**
|
||||
* @brief Adds one request for the given ip address.
|
||||
*
|
||||
* If the total sums up to a value equal or larger than maxRequestCount_
|
||||
* the operation is no longer allowed and false is returned; true is
|
||||
* returned otherwise.
|
||||
*
|
||||
* @param ip
|
||||
* @return true
|
||||
* @return false
|
||||
*/
|
||||
[[maybe_unused]] bool
|
||||
request(std::string const& ip) noexcept
|
||||
{
|
||||
if (whitelist_.contains(ip))
|
||||
return true;
|
||||
|
||||
{
|
||||
std::unique_lock lck(mtx_);
|
||||
ipState_[ip].requestsCount++;
|
||||
}
|
||||
|
||||
return isOk(ip);
|
||||
@@ -188,7 +229,7 @@ public:
|
||||
clear() noexcept override
|
||||
{
|
||||
std::unique_lock lck(mtx_);
|
||||
ipFetchCount_.clear();
|
||||
ipState_.clear();
|
||||
}
|
||||
|
||||
private:
|
||||
|
||||
@@ -238,6 +238,27 @@ public:
|
||||
if (ec)
|
||||
return httpFail(ec, "read");
|
||||
|
||||
auto ip = derived().ip();
|
||||
|
||||
if (!ip)
|
||||
{
|
||||
return;
|
||||
}
|
||||
|
||||
auto const httpResponse = [&](http::status status,
|
||||
std::string content_type,
|
||||
std::string message) {
|
||||
http::response<http::string_body> res{status, req_.version()};
|
||||
res.set(
|
||||
http::field::server,
|
||||
"clio-server-" + Build::getClioVersionString());
|
||||
res.set(http::field::content_type, content_type);
|
||||
res.keep_alive(req_.keep_alive());
|
||||
res.body() = std::string(message);
|
||||
res.prepare_payload();
|
||||
return res;
|
||||
};
|
||||
|
||||
if (boost::beast::websocket::is_upgrade(req_))
|
||||
{
|
||||
upgraded_ = true;
|
||||
@@ -260,10 +281,16 @@ public:
|
||||
workQueue_);
|
||||
}
|
||||
|
||||
auto ip = derived().ip();
|
||||
|
||||
if (!ip)
|
||||
return;
|
||||
// to avoid overwhelm work queue, the request limit check should be
|
||||
// before posting to queue the web socket creation will be guarded via
|
||||
// connection limit
|
||||
if (!dosGuard_.request(ip.value()))
|
||||
{
|
||||
return lambda_(httpResponse(
|
||||
http::status::service_unavailable,
|
||||
"text/plain",
|
||||
"Server is overloaded"));
|
||||
}
|
||||
|
||||
perfLog_.debug() << tag() << "Received request from ip = " << *ip
|
||||
<< " - posting to WorkQueue";
|
||||
@@ -293,17 +320,11 @@ public:
|
||||
{
|
||||
// Non-whitelist connection rejected due to full connection
|
||||
// queue
|
||||
http::response<http::string_body> res{
|
||||
http::status::ok, req_.version()};
|
||||
res.set(
|
||||
http::field::server,
|
||||
"clio-server-" + Build::getClioVersionString());
|
||||
res.set(http::field::content_type, "application/json");
|
||||
res.keep_alive(req_.keep_alive());
|
||||
res.body() = boost::json::serialize(
|
||||
RPC::makeError(RPC::RippledError::rpcTOO_BUSY));
|
||||
res.prepare_payload();
|
||||
lambda_(std::move(res));
|
||||
lambda_(httpResponse(
|
||||
http::status::ok,
|
||||
"application/json",
|
||||
boost::json::serialize(
|
||||
RPC::makeError(RPC::RippledError::rpcTOO_BUSY))));
|
||||
}
|
||||
}
|
||||
|
||||
@@ -380,12 +401,6 @@ handle_request(
|
||||
return send(httpResponse(
|
||||
http::status::bad_request, "text/html", "Expected a POST request"));
|
||||
|
||||
if (!dosGuard.isOk(ip))
|
||||
return send(httpResponse(
|
||||
http::status::service_unavailable,
|
||||
"text/plain",
|
||||
"Server is overloaded"));
|
||||
|
||||
try
|
||||
{
|
||||
perfLog.debug() << http->tag()
|
||||
|
||||
@@ -452,19 +452,22 @@ public:
|
||||
}(std::move(msg));
|
||||
|
||||
boost::json::object request;
|
||||
if (!raw.is_object())
|
||||
return sendError(
|
||||
RPC::RippledError::rpcINVALID_PARAMS, nullptr, request);
|
||||
request = raw.as_object();
|
||||
|
||||
auto id = request.contains("id") ? request.at("id") : nullptr;
|
||||
|
||||
if (!dosGuard_.isOk(*ip))
|
||||
// dosGuard served request++ and check ip address
|
||||
// dosGuard should check before any request, even invalid request
|
||||
if (!dosGuard_.request(*ip))
|
||||
{
|
||||
sendError(RPC::RippledError::rpcSLOW_DOWN, id, request);
|
||||
sendError(RPC::RippledError::rpcSLOW_DOWN, nullptr, request);
|
||||
}
|
||||
else if (!raw.is_object())
|
||||
{
|
||||
// handle invalid request and async read again
|
||||
sendError(RPC::RippledError::rpcINVALID_PARAMS, nullptr, request);
|
||||
}
|
||||
else
|
||||
{
|
||||
request = raw.as_object();
|
||||
|
||||
auto id = request.contains("id") ? request.at("id") : nullptr;
|
||||
perfLog_.debug() << tag() << "Adding to work queue";
|
||||
|
||||
if (!queue_.postCoro(
|
||||
|
||||
Reference in New Issue
Block a user