Cloak/internal/multiplex/stream.go

package multiplex

import (
	"errors"
	"io"
	"net"
	"time"

	"sync"
	"sync/atomic"

	log "github.com/sirupsen/logrus"
)

var ErrBrokenStream = errors.New("broken stream")

// Stream implements net.Conn. It represents an optionally-ordered, full-duplex, self-contained connection.
// If the session it belongs to runs in ordered mode, it provides ordering guarantee regardless of the underlying
// connection used.
// If the underlying connections the session uses are reliable, Stream is reliable. If they are not, Stream does not
// guarantee reliability.
type Stream struct {
	id uint32

	session *Session

	// a buffer (implemented as an asynchronous buffered pipe) to put data we've received from recvFrame but hasn't
	// been read by the consumer through Read or WriteTo.
	recvBuf recvBuffer

	writingM     sync.Mutex
	writingFrame Frame // we do the allocation here to save repeated allocations in Write and ReadFrom

	// atomic
	closed uint32

	// When we want order guarantee (i.e. session.Unordered is false),
	// we assign each stream a fixed underlying connection.
	// If the underlying connections the session uses provide ordering guarantee (most likely TCP),
	// recvBuffer (implemented by streamBuffer under ordered mode) will not receive out-of-order packets
	// so it won't have to use its priority queue to sort it.
	// This is not used in unordered connection mode
	assignedConn net.Conn

	readFromTimeout time.Duration
}

func makeStream(sesh *Session, id uint32) *Stream {
	stream := &Stream{
		id:      id,
		session: sesh,
		writingFrame: Frame{
			StreamID: id,
			Seq:      0,
			Closing:  closingNothing,
		},
	}

	if sesh.Unordered {
		stream.recvBuf = NewDatagramBufferedPipe()
	} else {
		stream.recvBuf = NewStreamBuffer()
	}

	return stream
}

func (s *Stream) isClosed() bool { return atomic.LoadUint32(&s.closed) == 1 }

// receive a readily deobfuscated Frame so its payload can later be Read
func (s *Stream) recvFrame(frame *Frame) error {
	toBeClosed, err := s.recvBuf.Write(frame)
	if toBeClosed {
		err = s.passiveClose()
		if errors.Is(err, errRepeatStreamClosing) {
			log.Debug(err)
			return nil
		}
		return err
	}
	return err
}

// Read implements io.Read
func (s *Stream) Read(buf []byte) (n int, err error) {
	//log.Tracef("attempting to read from stream %v", s.id)
	if len(buf) == 0 {
		return 0, nil
	}

	n, err = s.recvBuf.Read(buf)
	log.Tracef("%v read from stream %v with err %v", n, s.id, err)
	if err == io.EOF {
		return n, ErrBrokenStream
	}
	return
}

// WriteTo continuously write data Stream has received into the writer w.
func (s *Stream) WriteTo(w io.Writer) (int64, error) {
	// will keep writing until the underlying buffer is closed
	n, err := s.recvBuf.WriteTo(w)
	log.Tracef("%v read from stream %v with err %v", n, s.id, err)
	if err == io.EOF {
		return n, ErrBrokenStream
	}
	return n, nil
}

func (s *Stream) obfuscateAndSend(buf []byte, payloadOffsetInBuf int) error {
	cipherTextLen, err := s.session.obfuscate(&s.writingFrame, buf, payloadOffsetInBuf)
	s.writingFrame.Seq++
	if err != nil {
		return err
	}

	_, err = s.session.sb.send(buf[:cipherTextLen], &s.assignedConn)
	if err != nil {
		if err == errBrokenSwitchboard {
			s.session.SetTerminalMsg(err.Error())
			s.session.passiveClose()
		}
		return err
	}
	return nil
}

// Write implements io.Write
func (s *Stream) Write(in []byte) (n int, err error) {
	s.writingM.Lock()
	defer s.writingM.Unlock()
	if s.isClosed() {
		return 0, ErrBrokenStream
	}

	for n < len(in) {
		var framePayload []byte
		if len(in)-n <= s.session.maxStreamUnitWrite {
			// if we can fit remaining data of in into one frame
			framePayload = in[n:]
		} else {
			// if we have to split
			if s.session.Unordered {
				// but we are not allowed to
				err = io.ErrShortBuffer
				return
			}
			framePayload = in[n : s.session.maxStreamUnitWrite+n]
		}
		s.writingFrame.Payload = framePayload
		buf := s.session.streamObfsBufPool.Get().(*[]byte)
		err = s.obfuscateAndSend(*buf, 0)
		s.session.streamObfsBufPool.Put(buf)
		if err != nil {
			return
		}
		n += len(framePayload)
	}
	return
}

// ReadFrom continuously read data from r and send it off, until either r returns error or nothing has been read
// for readFromTimeout amount of time
func (s *Stream) ReadFrom(r io.Reader) (n int64, err error) {
	for {
		if s.readFromTimeout != 0 {
			if rder, ok := r.(net.Conn); !ok {
				log.Warn("ReadFrom timeout is set but reader doesn't implement SetReadDeadline")
			} else {
				rder.SetReadDeadline(time.Now().Add(s.readFromTimeout))
			}
		}
		buf := s.session.streamObfsBufPool.Get().(*[]byte)
		read, er := r.Read((*buf)[frameHeaderLength : frameHeaderLength+s.session.maxStreamUnitWrite])
		if er != nil {
			return n, er
		}

		// the above read may have been unblocked by another goroutine calling stream.Close(), so we need
		// to check that here
		if s.isClosed() {
			return n, ErrBrokenStream
		}

		s.writingM.Lock()
		s.writingFrame.Payload = (*buf)[frameHeaderLength : frameHeaderLength+read]
		err = s.obfuscateAndSend(*buf, frameHeaderLength)
		s.writingM.Unlock()
		s.session.streamObfsBufPool.Put(buf)

		if err != nil {
			return
		}
		n += int64(read)
	}
}

func (s *Stream) passiveClose() error {
	return s.session.closeStream(s, false)
}

// active close. Close locally and tell the remote that this stream is being closed
func (s *Stream) Close() error {
	s.writingM.Lock()
	defer s.writingM.Unlock()

	return s.session.closeStream(s, true)
}

func (s *Stream) LocalAddr() net.Addr  { return s.session.addrs.Load().([]net.Addr)[0] }
func (s *Stream) RemoteAddr() net.Addr { return s.session.addrs.Load().([]net.Addr)[1] }

func (s *Stream) SetWriteToTimeout(d time.Duration)  { s.recvBuf.SetWriteToTimeout(d) }
func (s *Stream) SetReadDeadline(t time.Time) error  { s.recvBuf.SetReadDeadline(t); return nil }
func (s *Stream) SetReadFromTimeout(d time.Duration) { s.readFromTimeout = d }

var errNotImplemented = errors.New("Not implemented")

// the following functions are purely for implementing net.Conn interface.
// they are not used
// TODO: implement the following
func (s *Stream) SetDeadline(t time.Time) error      { return errNotImplemented }
func (s *Stream) SetWriteDeadline(t time.Time) error { return errNotImplemented }
Multiplex initial commit 2018-10-05 22:44:20 +00:00			`package multiplex`

			`import (`
			`"errors"`
Experimental support for UDP 2019-08-14 09:04:27 +00:00			`"io"`
make Session implement net.Listener 2019-07-23 10:06:49 +00:00			`"net"`
			`"time"`

Multiplex initial commit 2018-10-05 22:44:20 +00:00			`"sync"`
General improvements 2018-10-23 19:47:58 +00:00			`"sync/atomic"`
format using goimports 2023-03-06 16:51:05 +00:00
			`log "github.com/sirupsen/logrus"`
Multiplex initial commit 2018-10-05 22:44:20 +00:00			`)`

Redo the header obfuscation. Fix hiccups caused by short packets 2019-01-06 01:40:27 +00:00			`var ErrBrokenStream = errors.New("broken stream")`
Multiplex initial commit 2018-10-05 22:44:20 +00:00
Rename variables for clarity 2020-10-18 14:36:40 +00:00			`// Stream implements net.Conn. It represents an optionally-ordered, full-duplex, self-contained connection.`
			`// If the session it belongs to runs in ordered mode, it provides ordering guarantee regardless of the underlying`
			`// connection used.`
			`// If the underlying connections the session uses are reliable, Stream is reliable. If they are not, Stream does not`
			`// guarantee reliability.`
Multiplex initial commit 2018-10-05 22:44:20 +00:00			`type Stream struct {`
			`id uint32`

			`session *Session`

Rename variables for clarity 2020-10-18 14:36:40 +00:00			`// a buffer (implemented as an asynchronous buffered pipe) to put data we've received from recvFrame but hasn't`
Remove redundant lazy allocation 2020-12-31 23:53:22 +00:00			`// been read by the consumer through Read or WriteTo.`
Refactor frameSorter and datagramBuffer under one interface 2019-08-22 10:48:10 +00:00			`recvBuf recvBuffer`
Refactor frame sorter 2019-08-05 12:32:53 +00:00
Achieve zero allocation when writing data through stream 2020-12-22 13:16:48 +00:00			`writingM sync.Mutex`
			`writingFrame Frame // we do the allocation here to save repeated allocations in Write and ReadFrom`
Untested client 2018-10-07 17:09:45 +00:00
More comments 2019-08-20 21:43:04 +00:00			`// atomic`
Stream optimisations 2019-07-28 10:58:45 +00:00			`closed uint32`
Buffer reuse in obfs 2019-08-04 09:38:49 +00:00
Rename variables for clarity 2020-10-18 14:36:40 +00:00			`// When we want order guarantee (i.e. session.Unordered is false),`
			`// we assign each stream a fixed underlying connection.`
			`// If the underlying connections the session uses provide ordering guarantee (most likely TCP),`
			`// recvBuffer (implemented by streamBuffer under ordered mode) will not receive out-of-order packets`
			`// so it won't have to use its priority queue to sort it.`
More comments 2019-08-20 21:43:04 +00:00			`// This is not used in unordered connection mode`
Redo the implementation of switchboard and remove the need for connId 2020-12-28 01:10:24 +00:00			`assignedConn net.Conn`
Implement WriteTo and ReadFrom timeouts 2020-04-14 12:31:24 +00:00
Rename variables for clarity 2020-10-18 14:36:40 +00:00			`readFromTimeout time.Duration`
Multiplex initial commit 2018-10-05 22:44:20 +00:00			`}`

Assign connId only when needed 2020-04-12 11:51:00 +00:00			`func makeStream(sesh Session, id uint32) Stream {`
Multiplex initial commit 2018-10-05 22:44:20 +00:00			`stream := &Stream{`
Assign connId only when needed 2020-04-12 11:51:00 +00:00			`id: id,`
			`session: sesh,`
Achieve zero allocation when writing data through stream 2020-12-22 13:16:48 +00:00			`writingFrame: Frame{`
			`StreamID: id,`
			`Seq: 0,`
			`Closing: closingNothing,`
			`},`
Multiplex initial commit 2018-10-05 22:44:20 +00:00			`}`
Refactor frame sorter 2019-08-05 12:32:53 +00:00
Remove redundant lazy allocation 2020-12-31 23:53:22 +00:00			`if sesh.Unordered {`
			`stream.recvBuf = NewDatagramBufferedPipe()`
			`} else {`
			`stream.recvBuf = NewStreamBuffer()`
			`}`

Multiplex initial commit 2018-10-05 22:44:20 +00:00			`return stream`
			`}`

Stream optimisations 2019-07-28 10:58:45 +00:00			`func (s *Stream) isClosed() bool { return atomic.LoadUint32(&s.closed) == 1 }`

Refactor for clarity and add comments 2020-10-18 13:42:47 +00:00			`// receive a readily deobfuscated Frame so its payload can later be Read`
Only allocate and copy frame object into sorter heap when necessary (out of order frame) 2020-12-22 19:39:13 +00:00			`func (s Stream) recvFrame(frame Frame) error {`
Remove redundant lazy allocation 2020-12-31 23:53:22 +00:00			`toBeClosed, err := s.recvBuf.Write(frame)`
Improve stream closing logic and add tests 2020-01-22 21:12:32 +00:00			`if toBeClosed {`
Log repeat stream closing on Debug level 2020-04-20 22:54:41 +00:00			`err = s.passiveClose()`
			`if errors.Is(err, errRepeatStreamClosing) {`
			`log.Debug(err)`
			`return nil`
			`}`
			`return err`
Improve stream closing logic and add tests 2020-01-22 21:12:32 +00:00			`}`
			`return err`
Refactor switchboard configuration and add unordered option 2019-08-11 23:48:20 +00:00			`}`
Refactor switchboard 2019-08-05 13:33:20 +00:00
More comments 2019-08-20 21:43:04 +00:00			`// Read implements io.Read`
Stream optimisations 2019-07-28 10:58:45 +00:00			`func (s *Stream) Read(buf []byte) (n int, err error) {`
Add more trace logs 2019-08-06 10:19:47 +00:00			`//log.Tracef("attempting to read from stream %v", s.id)`
Fix infinite loop. Baseline 2018-10-16 20:13:19 +00:00			`if len(buf) == 0 {`
Change behaviour of stream.Write(nil) 2020-04-08 17:16:54 +00:00			`return 0, nil`
Multiplex initial commit 2018-10-05 22:44:20 +00:00			`}`
Experimental support for UDP 2019-08-14 09:04:27 +00:00
Remove redundant lazy allocation 2020-12-31 23:53:22 +00:00			`n, err = s.recvBuf.Read(buf)`
Lock stream sending in all cases 2020-04-13 15:39:19 +00:00			`log.Tracef("%v read from stream %v with err %v", n, s.id, err)`
Remove unnecessary Len check 2019-08-30 19:39:23 +00:00			`if err == io.EOF {`
			`return n, ErrBrokenStream`
Fix infinite loop. Baseline 2018-10-16 20:13:19 +00:00			`}`
Remove unnecessary Len check 2019-08-30 19:39:23 +00:00			`return`
Implement stream WriteTo 2020-04-12 11:43:24 +00:00			`}`
Remove unnecessary Len check 2019-08-30 19:39:23 +00:00
Rename variables for clarity 2020-10-18 14:36:40 +00:00			`// WriteTo continuously write data Stream has received into the writer w.`
Implement stream WriteTo 2020-04-12 11:43:24 +00:00			`func (s *Stream) WriteTo(w io.Writer) (int64, error) {`
			`// will keep writing until the underlying buffer is closed`
Remove redundant lazy allocation 2020-12-31 23:53:22 +00:00			`n, err := s.recvBuf.WriteTo(w)`
Implement stream ReadFrom (flimsy) 2020-04-12 22:01:30 +00:00			`log.Tracef("%v read from stream %v with err %v", n, s.id, err)`
Make WriteTo return the correct errors 2020-04-12 15:34:49 +00:00			`if err == io.EOF {`
			`return n, ErrBrokenStream`
			`}`
			`return n, nil`
Multiplex initial commit 2018-10-05 22:44:20 +00:00			`}`

Use sync.Pool for obfuscation buffer 2020-12-24 11:35:29 +00:00			`func (s *Stream) obfuscateAndSend(buf []byte, payloadOffsetInBuf int) error {`
Refactor obfuscate and deobfuscate functions to reduce a layer of indirection 2020-12-26 00:49:36 +00:00			`cipherTextLen, err := s.session.obfuscate(&s.writingFrame, buf, payloadOffsetInBuf)`
Use sync.Pool for obfuscation buffer 2020-12-24 11:35:29 +00:00			`s.writingFrame.Seq++`
Implement stream ReadFrom (flimsy) 2020-04-12 22:01:30 +00:00			`if err != nil {`
			`return err`
			`}`

Redo the implementation of switchboard and remove the need for connId 2020-12-28 01:10:24 +00:00			`_, err = s.session.sb.send(buf[:cipherTextLen], &s.assignedConn)`
Implement stream ReadFrom (flimsy) 2020-04-12 22:01:30 +00:00			`if err != nil {`
			`if err == errBrokenSwitchboard {`
			`s.session.SetTerminalMsg(err.Error())`
			`s.session.passiveClose()`
			`}`
			`return err`
			`}`
			`return nil`
			`}`

More comments 2019-08-20 21:43:04 +00:00			`// Write implements io.Write`
Stream optimisations 2019-07-28 10:58:45 +00:00			`func (s *Stream) Write(in []byte) (n int, err error) {`
Synchronise stream.Write 2020-04-12 00:34:21 +00:00			`s.writingM.Lock()`
			`defer s.writingM.Unlock()`
Stream optimisations 2019-07-28 10:58:45 +00:00			`if s.isClosed() {`
Redo the header obfuscation. Fix hiccups caused by short packets 2019-01-06 01:40:27 +00:00			`return 0, ErrBrokenStream`
Multiplex initial commit 2018-10-05 22:44:20 +00:00			`}`

Framing in Stream.Write to prevent silent short write 2020-04-10 17:48:36 +00:00			`for n < len(in) {`
			`var framePayload []byte`
			`if len(in)-n <= s.session.maxStreamUnitWrite {`
Rename variables for clarity 2020-10-18 14:36:40 +00:00			`// if we can fit remaining data of in into one frame`
Framing in Stream.Write to prevent silent short write 2020-04-10 17:48:36 +00:00			`framePayload = in[n:]`
			`} else {`
Rename variables for clarity 2020-10-18 14:36:40 +00:00			`// if we have to split`
			`if s.session.Unordered {`
			`// but we are not allowed to`
Refactor udp piping and add tests 2020-04-11 21:37:15 +00:00			`err = io.ErrShortBuffer`
			`return`
			`}`
Framing in Stream.Write to prevent silent short write 2020-04-10 17:48:36 +00:00			`framePayload = in[n : s.session.maxStreamUnitWrite+n]`
			`}`
Achieve zero allocation when writing data through stream 2020-12-22 13:16:48 +00:00			`s.writingFrame.Payload = framePayload`
Use sync.Pool for obfuscation buffer 2020-12-24 11:35:29 +00:00			`buf := s.session.streamObfsBufPool.Get().(*[]byte)`
			`err = s.obfuscateAndSend(*buf, 0)`
			`s.session.streamObfsBufPool.Put(buf)`
Framing in Stream.Write to prevent silent short write 2020-04-10 17:48:36 +00:00			`if err != nil {`
Implement stream ReadFrom (flimsy) 2020-04-12 22:01:30 +00:00			`return`
Fix potential deadlocks 2019-10-08 22:11:16 +00:00			`}`
Implement stream ReadFrom (flimsy) 2020-04-12 22:01:30 +00:00			`n += len(framePayload)`
			`}`
			`return`
			`}`
Multiplex initial commit 2018-10-05 22:44:20 +00:00
Rename variables for clarity 2020-10-18 14:36:40 +00:00			`// ReadFrom continuously read data from r and send it off, until either r returns error or nothing has been read`
			`// for readFromTimeout amount of time`
Implement stream ReadFrom (flimsy) 2020-04-12 22:01:30 +00:00			`func (s *Stream) ReadFrom(r io.Reader) (n int64, err error) {`
			`for {`
Rename variables for clarity 2020-10-18 14:36:40 +00:00			`if s.readFromTimeout != 0 {`
Implement WriteTo and ReadFrom timeouts 2020-04-14 12:31:24 +00:00			`if rder, ok := r.(net.Conn); !ok {`
			`log.Warn("ReadFrom timeout is set but reader doesn't implement SetReadDeadline")`
			`} else {`
Rename variables for clarity 2020-10-18 14:36:40 +00:00			`rder.SetReadDeadline(time.Now().Add(s.readFromTimeout))`
Implement WriteTo and ReadFrom timeouts 2020-04-14 12:31:24 +00:00			`}`
			`}`
Use sync.Pool for obfuscation buffer 2020-12-24 11:35:29 +00:00			`buf := s.session.streamObfsBufPool.Get().(*[]byte)`
			`read, er := r.Read((*buf)[frameHeaderLength : frameHeaderLength+s.session.maxStreamUnitWrite])`
Implement stream ReadFrom (flimsy) 2020-04-12 22:01:30 +00:00			`if er != nil {`
			`return n, er`
			`}`
Fix race condition in steam closing. Fall back to temp buffer allocation 2020-12-23 22:33:01 +00:00
			`// the above read may have been unblocked by another goroutine calling stream.Close(), so we need`
			`// to check that here`
Implement stream ReadFrom (flimsy) 2020-04-12 22:01:30 +00:00			`if s.isClosed() {`
Lock stream sending in all cases 2020-04-13 15:39:19 +00:00			`return n, ErrBrokenStream`
			`}`

			`s.writingM.Lock()`
Use sync.Pool for obfuscation buffer 2020-12-24 11:35:29 +00:00			`s.writingFrame.Payload = (*buf)[frameHeaderLength : frameHeaderLength+read]`
			`err = s.obfuscateAndSend(*buf, frameHeaderLength)`
Lock stream sending in all cases 2020-04-13 15:39:19 +00:00			`s.writingM.Unlock()`
Use sync.Pool for obfuscation buffer 2020-12-24 11:35:29 +00:00			`s.session.streamObfsBufPool.Put(buf)`
Lock stream sending in all cases 2020-04-13 15:39:19 +00:00
Framing in Stream.Write to prevent silent short write 2020-04-10 17:48:36 +00:00			`if err != nil {`
			`return`
			`}`
Implement stream ReadFrom (flimsy) 2020-04-12 22:01:30 +00:00			`n += int64(read)`
Framing in Stream.Write to prevent silent short write 2020-04-10 17:48:36 +00:00			`}`
Multiplex initial commit 2018-10-05 22:44:20 +00:00			`}`

Introduce a special Session closing frame 2019-10-14 14:34:14 +00:00			`func (s *Stream) passiveClose() error {`
			`return s.session.closeStream(s, false)`
Stream closing is now ordered 2018-10-27 22:35:46 +00:00			`}`

			`// active close. Close locally and tell the remote that this stream is being closed`
Stream optimisations 2019-07-28 10:58:45 +00:00			`func (s *Stream) Close() error {`
Lock stream sending in all cases 2020-04-13 15:39:19 +00:00			`s.writingM.Lock()`
			`defer s.writingM.Unlock()`

Introduce a special Session closing frame 2019-10-14 14:34:14 +00:00			`return s.session.closeStream(s, true)`
General improvements 2018-10-23 19:47:58 +00:00			`}`
make Session implement net.Listener 2019-07-23 10:06:49 +00:00
Stream optimisations 2019-07-28 10:58:45 +00:00			`func (s *Stream) LocalAddr() net.Addr { return s.session.addrs.Load().([]net.Addr)[0] }`
			`func (s *Stream) RemoteAddr() net.Addr { return s.session.addrs.Load().([]net.Addr)[1] }`
make Session implement net.Listener 2019-07-23 10:06:49 +00:00
Remove redundant lazy allocation 2020-12-31 23:53:22 +00:00			`func (s *Stream) SetWriteToTimeout(d time.Duration) { s.recvBuf.SetWriteToTimeout(d) }`
			`func (s *Stream) SetReadDeadline(t time.Time) error { s.recvBuf.SetReadDeadline(t); return nil }`
Rename variables for clarity 2020-10-18 14:36:40 +00:00			`func (s *Stream) SetReadFromTimeout(d time.Duration) { s.readFromTimeout = d }`
Refactor for clarity and add comments 2020-10-18 13:42:47 +00:00
			`var errNotImplemented = errors.New("Not implemented")`

Rename variables for clarity 2020-10-18 14:36:40 +00:00			`// the following functions are purely for implementing net.Conn interface.`
			`// they are not used`
			`// TODO: implement the following`
Refactor for clarity and add comments 2020-10-18 13:42:47 +00:00			`func (s *Stream) SetDeadline(t time.Time) error { return errNotImplemented }`
Stream optimisations 2019-07-28 10:58:45 +00:00			`func (s *Stream) SetWriteDeadline(t time.Time) error { return errNotImplemented }`