forked from glycerine/goq
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathreplay.go
157 lines (133 loc) · 3.53 KB
/
replay.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
package main
import (
"fmt"
"math/rand"
"time"
"github.com/glycerine/rbtree"
)
// prevent replay attacks by detecting jobs with
// timestamps that are too old or Nonce's that are not unique
type Nonce int64
type NonceRegistry struct {
TSrc TimeSource
TimeTree *rbtree.Tree
NonceHash map[Nonce]Ntm
InvalidAfterDur Ntm // in nanoseconds
}
type RealTimeSource struct{}
func NewRealTimeSource() *RealTimeSource {
return &RealTimeSource{}
}
func (rts *RealTimeSource) Now() Ntm {
return Ntm(time.Now().UnixNano())
}
type TimeSource interface {
Now() Ntm
}
func NewNonceRegistry(tsrc TimeSource) *NonceRegistry {
return &NonceRegistry{
TSrc: tsrc,
TimeTree: rbtree.NewTree(func(a, b rbtree.Item) int {
return int(a.(*Job).Sendtime - b.(*Job).Sendtime)
}),
NonceHash: make(map[Nonce]Ntm),
InvalidAfterDur: Ntm(3600e9), // 1 hour (in nanoseconds)
}
}
func (n *NonceRegistry) IsBadStamp(j *Job) bool {
n.GCReg()
if n.tooOld(j) {
if ShowSig {
TSPrintf("\n detected job tooOld(): %s\n", j)
TSPrintf("debug: NonceRegistry = %s\n", n)
}
return true
}
if _, ok := n.NonceHash[Nonce(j.Sendernonce)]; ok {
if ShowSig {
TSPrintf("\n detected replay of duplicate nonce: %x from job: %s\n", j.Sendernonce, j)
TSPrintf("debug: NonceRegistry = %s\n", n)
}
return true
}
return false
}
func (n *NonceRegistry) AddedOkay(j *Job) bool {
//VPrintf("debug: In AddedOkay(j.Sendernonce=%x): NonceRegistry = %s\n", j.Sendernonce, n)
if j == nil {
panic("j cannot be nil")
}
if n.IsBadStamp(j) {
return false
}
n.TimeTree.Insert(j)
n.NonceHash[Nonce(j.Sendernonce)] = Ntm(j.Sendtime)
return true
}
func (n *NonceRegistry) String() string {
s := n.TimeTreeAsString()
s += "\nNonceHash:\n"
for k, v := range n.NonceHash {
s += fmt.Sprintf(" Nonce: %x, Ntm: %s (%d)\n", k, time.Unix(int64(v/1e9), int64(v%1e9)), v)
}
return s
}
func (n *NonceRegistry) TimeTreeAsString() string {
r := "\n"
for it := n.TimeTree.Min(); !it.Limit(); it = it.Next() {
j := it.Item().(*Job)
r += fmt.Sprintf(" TimeTree: Ntm:%s (%d) Job.Nonce: %x\n", time.Unix(j.Sendtime/1e9, j.Sendtime%1e9), j.Sendtime, j.Sendernonce)
}
return r
}
func (n *NonceRegistry) tooOld(j *Job) bool {
now := n.TSrc.Now()
if j.Sendtime == 0 {
return true
}
if now-Ntm(j.Sendtime) >= n.InvalidAfterDur {
return true
}
return false
}
func (n *NonceRegistry) TooNew(j *Job) (bool, Ntm) {
now := n.TSrc.Now()
fut := Ntm(j.Sendtime) - now
if fut > n.InvalidAfterDur {
// reject jobs from the future
return true, fut
}
return false, fut
}
// GCReg: garbage collect old entries
// returns the number of timestamp points that were scanned in the tree.
func (n *NonceRegistry) GCReg() int {
scanned := 0
it := n.TimeTree.Min()
for !it.Limit() {
j := it.Item().(*Job)
scanned++
if n.tooOld(j) {
//fmt.Printf("CGReg detected stale job in registry, deleting: %s\n", j)
nonce := Nonce(j.Sendernonce)
// advance before deleting...
it = it.Next()
n.TimeTree.DeleteWithKey(j)
// bound the size of our NonceHash here.
// We are limited to just the young jobs' Sendernonce.
delete(n.NonceHash, nonce)
} else {
// no need to go further into younger jobs. Avoid full linear scan.
break
//fmt.Printf("\nskipping scan of job with even younger time: %d\n", j.Sendtime)
//it = it.Next()
}
}
return scanned
}
// called from NewJob, can't call in SignJob() because that
// is used for verification too.
func StampJob(j *Job) {
j.Sendtime = int64(time.Now().UnixNano())
j.Sendernonce = int64(rand.Int())
}