personal_interest_mirrors/nebula
1
0
Fork 0
mirror of https://github.com/slackhq/nebula.git synced 2025-11-11 15:53:57 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

Guard e2e udp and tun channels when closed (#934)

Browse Source
This commit is contained in:
Nate Brown 2023-07-26 12:52:14 -05:00 committed by GitHub
parent e5af94e27a
commit 9c6592b159
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with 32 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
e2e/handshakes_test.go
View File

@ -410,6 +410,8 @@ func TestStage1RaceRelays(t *testing.T) {
p := r.RouteForAllUntilTxTun(myControl) p := r.RouteForAllUntilTxTun(myControl)
_ = p _ = p
r.FlushAll()
myControl.Stop() myControl.Stop()
theirControl.Stop() theirControl.Stop()
relayControl.Stop() relayControl.Stop()

13
overlay/tun_tester.go
View File

@ -8,6 +8,7 @@ import (
"io" "io"
"net" "net"
"os" "os"
"sync/atomic"
"github.com/sirupsen/logrus" "github.com/sirupsen/logrus"
"github.com/slackhq/nebula/cidr" "github.com/slackhq/nebula/cidr"
@ -21,6 +22,7 @@ type TestTun struct {
routeTree *cidr.Tree4 routeTree *cidr.Tree4
l *logrus.Logger l *logrus.Logger
closed atomic.Bool
rxPackets chan []byte // Packets to receive into nebula rxPackets chan []byte // Packets to receive into nebula
TxPackets chan []byte // Packets transmitted outside by nebula TxPackets chan []byte // Packets transmitted outside by nebula
} }
@ -50,6 +52,10 @@ func newTunFromFd(_ *logrus.Logger, _ int, _ *net.IPNet, _ int, _ []Route, _ int
// These are unencrypted ip layer frames destined for another nebula node. // These are unencrypted ip layer frames destined for another nebula node.
// packets should exit the udp side, capture them with udpConn.Get // packets should exit the udp side, capture them with udpConn.Get
func (t *TestTun) Send(packet []byte) { func (t *TestTun) Send(packet []byte) {
if t.closed.Load() {
return
}
if t.l.Level >= logrus.DebugLevel { if t.l.Level >= logrus.DebugLevel {
t.l.WithField("dataLen", len(packet)).Debug("Tun receiving injected packet") t.l.WithField("dataLen", len(packet)).Debug("Tun receiving injected packet")
} }
@ -98,6 +104,10 @@ func (t *TestTun) Name() string {
} }
func (t *TestTun) Write(b []byte) (n int, err error) { func (t *TestTun) Write(b []byte) (n int, err error) {
if t.closed.Load() {
return 0, io.ErrClosedPipe
}
packet := make([]byte, len(b), len(b)) packet := make([]byte, len(b), len(b))
copy(packet, b) copy(packet, b)
t.TxPackets <- packet t.TxPackets <- packet
@ -105,7 +115,10 @@ func (t *TestTun) Write(b []byte) (n int, err error) {
} }
func (t *TestTun) Close() error { func (t *TestTun) Close() error {
if t.closed.CompareAndSwap(false, true) {
close(t.rxPackets) close(t.rxPackets)
close(t.TxPackets)
}
return nil return nil
} }

13
udp/udp_tester.go
View File

@ -5,7 +5,9 @@ package udp
import ( import (
"fmt" "fmt"
"io"
"net" "net"
"sync/atomic"
"github.com/sirupsen/logrus" "github.com/sirupsen/logrus"
"github.com/slackhq/nebula/config" "github.com/slackhq/nebula/config"
@ -42,6 +44,7 @@ type TesterConn struct {
RxPackets chan *Packet // Packets to receive into nebula RxPackets chan *Packet // Packets to receive into nebula
TxPackets chan *Packet // Packets transmitted outside by nebula TxPackets chan *Packet // Packets transmitted outside by nebula
closed atomic.Bool
l *logrus.Logger l *logrus.Logger
} }
@ -58,6 +61,10 @@ func NewListener(l *logrus.Logger, ip net.IP, port int, _ bool, _ int) (Conn, er
// this is an encrypted packet or a handshake message in most cases // this is an encrypted packet or a handshake message in most cases
// packets were transmitted from another nebula node, you can send them with Tun.Send // packets were transmitted from another nebula node, you can send them with Tun.Send
func (u *TesterConn) Send(packet *Packet) { func (u *TesterConn) Send(packet *Packet) {
if u.closed.Load() {
return
}
h := &header.H{} h := &header.H{}
if err := h.Parse(packet.Data); err != nil { if err := h.Parse(packet.Data); err != nil {
panic(err) panic(err)
@ -92,6 +99,10 @@ func (u *TesterConn) Get(block bool) *Packet {
//********************************************************************************************************************// //********************************************************************************************************************//
func (u *TesterConn) WriteTo(b []byte, addr *Addr) error { func (u *TesterConn) WriteTo(b []byte, addr *Addr) error {
if u.closed.Load() {
return io.ErrClosedPipe
}
p := &Packet{ p := &Packet{
Data: make([]byte, len(b), len(b)), Data: make([]byte, len(b), len(b)),
FromIp: make([]byte, 16), FromIp: make([]byte, 16),
@ -142,7 +153,9 @@ func (u *TesterConn) Rebind() error {
} }
func (u *TesterConn) Close() error { func (u *TesterConn) Close() error {
if u.closed.CompareAndSwap(false, true) {
close(u.RxPackets) close(u.RxPackets)
close(u.TxPackets) close(u.TxPackets)
}
return nil return nil
} }