1a4ff6a500
While right now it is not allowed for the user to overwrite any entries in the default policy from the JSON, this should be possible (and easy) in the future.
489 lines
14 KiB
Go
489 lines
14 KiB
Go
package ipfscluster
|
|
|
|
import (
|
|
"encoding/base64"
|
|
"encoding/hex"
|
|
"encoding/json"
|
|
"errors"
|
|
"fmt"
|
|
"os"
|
|
"path/filepath"
|
|
"reflect"
|
|
"sync"
|
|
"time"
|
|
|
|
"github.com/kelseyhightower/envconfig"
|
|
|
|
"github.com/ipfs/ipfs-cluster/config"
|
|
|
|
crypto "github.com/libp2p/go-libp2p-crypto"
|
|
peer "github.com/libp2p/go-libp2p-peer"
|
|
pnet "github.com/libp2p/go-libp2p-pnet"
|
|
ma "github.com/multiformats/go-multiaddr"
|
|
)
|
|
|
|
const configKey = "cluster"
|
|
|
|
// Configuration defaults
|
|
const (
|
|
DefaultConfigCrypto = crypto.RSA
|
|
DefaultConfigKeyLength = 2048
|
|
DefaultListenAddr = "/ip4/0.0.0.0/tcp/9096"
|
|
DefaultStateSyncInterval = 600 * time.Second
|
|
DefaultIPFSSyncInterval = 130 * time.Second
|
|
DefaultMonitorPingInterval = 15 * time.Second
|
|
DefaultPeerWatchInterval = 5 * time.Second
|
|
DefaultReplicationFactor = -1
|
|
DefaultLeaveOnShutdown = false
|
|
DefaultDisableRepinning = false
|
|
DefaultPeerstoreFile = "peerstore"
|
|
)
|
|
|
|
// Config is the configuration object containing customizable variables to
|
|
// initialize the main ipfs-cluster component. It implements the
|
|
// config.ComponentConfig interface.
|
|
type Config struct {
|
|
config.Saver
|
|
lock sync.Mutex
|
|
peerstoreLock sync.Mutex
|
|
|
|
// Libp2p ID and private key for Cluster communication (including)
|
|
// the Consensus component.
|
|
ID peer.ID
|
|
PrivateKey crypto.PrivKey
|
|
|
|
// User-defined peername for use as human-readable identifier.
|
|
Peername string
|
|
|
|
// Cluster secret for private network. Peers will be in the same cluster if and
|
|
// only if they have the same ClusterSecret. The cluster secret must be exactly
|
|
// 64 characters and contain only hexadecimal characters (`[0-9a-f]`).
|
|
Secret []byte
|
|
|
|
// RPCPolicy defines access control to RPC endpoints.
|
|
RPCPolicy map[string]RPCEndpointType
|
|
|
|
// Leave Cluster on shutdown. Politely informs other peers
|
|
// of the departure and removes itself from the consensus
|
|
// peer set. The Cluster size will be reduced by one.
|
|
LeaveOnShutdown bool
|
|
|
|
// Listen parameters for the Cluster libp2p Host. Used by
|
|
// the RPC and Consensus components.
|
|
ListenAddr ma.Multiaddr
|
|
|
|
// Time between syncs of the consensus state to the
|
|
// tracker state. Normally states are synced anyway, but this helps
|
|
// when new nodes are joining the cluster. Reduce for faster
|
|
// consistency, increase with larger states.
|
|
StateSyncInterval time.Duration
|
|
|
|
// Number of seconds between syncs of the local state and
|
|
// the state of the ipfs daemon. This ensures that cluster
|
|
// provides the right status for tracked items (for example
|
|
// to detect that a pin has been removed. Reduce for faster
|
|
// consistency, increase when the number of pinned items is very
|
|
// large.
|
|
IPFSSyncInterval time.Duration
|
|
|
|
// ReplicationFactorMax indicates the target number of nodes
|
|
// that should pin content. For exampe, a replication_factor of
|
|
// 3 will have cluster allocate each pinned hash to 3 peers if
|
|
// possible.
|
|
// See also ReplicationFactorMin. A ReplicationFactorMax of -1
|
|
// will allocate to every available node.
|
|
ReplicationFactorMax int
|
|
|
|
// ReplicationFactorMin indicates the minimum number of healthy
|
|
// nodes pinning content. If the number of nodes available to pin
|
|
// is less than this threshold, an error will be returned.
|
|
// In the case of peer health issues, content pinned will be
|
|
// re-allocated if the threshold is crossed.
|
|
// For exampe, a ReplicationFactorMin of 2 will allocate at least
|
|
// two peer to hold content, and return an error if this is not
|
|
// possible.
|
|
ReplicationFactorMin int
|
|
|
|
// MonitorPingInterval is the frequency with which a cluster peer pings
|
|
// the monitoring component. The ping metric has a TTL set to the double
|
|
// of this value.
|
|
MonitorPingInterval time.Duration
|
|
|
|
// PeerWatchInterval is the frequency that we use to watch for changes
|
|
// in the consensus peerset and save new peers to the configuration
|
|
// file. This also affects how soon we realize that we have
|
|
// been removed from a cluster.
|
|
PeerWatchInterval time.Duration
|
|
|
|
// If true, DisableRepinning, ensures that no repinning happens
|
|
// when a node goes down.
|
|
// This is useful when doing certain types of maintainance, or simply
|
|
// when not wanting to rely on the monitoring system which needs a revamp.
|
|
DisableRepinning bool
|
|
|
|
// Peerstore file specifies the file on which we persist the
|
|
// libp2p host peerstore addresses. This file is regularly saved.
|
|
PeerstoreFile string
|
|
|
|
// Tracing flag used to skip tracing specific paths when not enabled.
|
|
Tracing bool
|
|
}
|
|
|
|
// configJSON represents a Cluster configuration as it will look when it is
|
|
// saved using JSON. Most configuration keys are converted into simple types
|
|
// like strings, and key names aim to be self-explanatory for the user.
|
|
type configJSON struct {
|
|
ID string `json:"id"`
|
|
Peername string `json:"peername"`
|
|
PrivateKey string `json:"private_key"`
|
|
Secret string `json:"secret"`
|
|
LeaveOnShutdown bool `json:"leave_on_shutdown"`
|
|
ListenMultiaddress string `json:"listen_multiaddress"`
|
|
StateSyncInterval string `json:"state_sync_interval"`
|
|
IPFSSyncInterval string `json:"ipfs_sync_interval"`
|
|
ReplicationFactorMin int `json:"replication_factor_min"`
|
|
ReplicationFactorMax int `json:"replication_factor_max"`
|
|
MonitorPingInterval string `json:"monitor_ping_interval"`
|
|
PeerWatchInterval string `json:"peer_watch_interval"`
|
|
DisableRepinning bool `json:"disable_repinning"`
|
|
PeerstoreFile string `json:"peerstore_file,omitempty"`
|
|
}
|
|
|
|
// ConfigKey returns a human-readable string to identify
|
|
// a cluster Config.
|
|
func (cfg *Config) ConfigKey() string {
|
|
return configKey
|
|
}
|
|
|
|
// Default fills in all the Config fields with
|
|
// default working values. This means, it will
|
|
// generate a valid random ID, PrivateKey and
|
|
// Secret.
|
|
func (cfg *Config) Default() error {
|
|
cfg.setDefaults()
|
|
|
|
// pid and private key generation --
|
|
priv, pub, err := crypto.GenerateKeyPair(
|
|
DefaultConfigCrypto,
|
|
DefaultConfigKeyLength)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
pid, err := peer.IDFromPublicKey(pub)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
cfg.ID = pid
|
|
cfg.PrivateKey = priv
|
|
// --
|
|
|
|
// cluster secret
|
|
clusterSecret, err := pnet.GenerateV1Bytes()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
cfg.Secret = (*clusterSecret)[:]
|
|
// --
|
|
|
|
cfg.RPCPolicy = DefaultRPCPolicy
|
|
return nil
|
|
}
|
|
|
|
// ApplyEnvVars fills in any Config fields found
|
|
// as environment variables.
|
|
func (cfg *Config) ApplyEnvVars() error {
|
|
jcfg, err := cfg.toConfigJSON()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
err = envconfig.Process(cfg.ConfigKey(), jcfg)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
return cfg.applyConfigJSON(jcfg)
|
|
}
|
|
|
|
// Validate will check that the values of this config
|
|
// seem to be working ones.
|
|
func (cfg *Config) Validate() error {
|
|
if cfg.ID == "" {
|
|
return errors.New("cluster.ID not set")
|
|
}
|
|
|
|
if cfg.PrivateKey == nil {
|
|
return errors.New("no cluster.private_key set")
|
|
}
|
|
|
|
if !cfg.ID.MatchesPrivateKey(cfg.PrivateKey) {
|
|
return errors.New("cluster.ID does not match the private_key")
|
|
}
|
|
|
|
if cfg.ListenAddr == nil {
|
|
return errors.New("cluster.listen_addr is indefined")
|
|
}
|
|
|
|
if cfg.StateSyncInterval <= 0 {
|
|
return errors.New("cluster.state_sync_interval is invalid")
|
|
}
|
|
|
|
if cfg.IPFSSyncInterval <= 0 {
|
|
return errors.New("cluster.ipfs_sync_interval is invalid")
|
|
}
|
|
|
|
if cfg.MonitorPingInterval <= 0 {
|
|
return errors.New("cluster.monitoring_interval is invalid")
|
|
}
|
|
|
|
if cfg.PeerWatchInterval <= 0 {
|
|
return errors.New("cluster.peer_watch_interval is invalid")
|
|
}
|
|
|
|
rfMax := cfg.ReplicationFactorMax
|
|
rfMin := cfg.ReplicationFactorMin
|
|
|
|
if err := isReplicationFactorValid(rfMin, rfMax); err != nil {
|
|
return err
|
|
}
|
|
|
|
return isPolicyValid(cfg.RPCPolicy)
|
|
}
|
|
|
|
func isReplicationFactorValid(rplMin, rplMax int) error {
|
|
// check Max and Min are correct
|
|
if rplMin == 0 || rplMax == 0 {
|
|
return errors.New("cluster.replication_factor_min and max must be set")
|
|
}
|
|
|
|
if rplMin > rplMax {
|
|
return errors.New("cluster.replication_factor_min is larger than max")
|
|
}
|
|
|
|
if rplMin < -1 {
|
|
return errors.New("cluster.replication_factor_min is wrong")
|
|
}
|
|
|
|
if rplMax < -1 {
|
|
return errors.New("cluster.replication_factor_max is wrong")
|
|
}
|
|
|
|
if (rplMin == -1 && rplMax != -1) || (rplMin != -1 && rplMax == -1) {
|
|
return errors.New("cluster.replication_factor_min and max must be -1 when one of them is")
|
|
}
|
|
return nil
|
|
}
|
|
|
|
type svcIdComponent interface {
|
|
SvcID() string
|
|
}
|
|
|
|
func isPolicyValid(p map[string]RPCEndpointType) error {
|
|
rpcComponents := []svcIdComponent{
|
|
&ClusterRPCAPI{},
|
|
&PinTrackerRPCAPI{},
|
|
&IPFSConnectorRPCAPI{},
|
|
&ConsensusRPCAPI{},
|
|
&PeerMonitorRPCAPI{},
|
|
}
|
|
|
|
total := 0
|
|
for _, c := range rpcComponents {
|
|
t := reflect.TypeOf(c)
|
|
for i := 0; i < t.NumMethod(); i++ {
|
|
total++
|
|
method := t.Method(i)
|
|
if method.Name == "SvcID" {
|
|
continue
|
|
}
|
|
name := fmt.Sprintf("%s.%s", c.SvcID(), method.Name)
|
|
_, ok := p[name]
|
|
if !ok {
|
|
return fmt.Errorf("RPCPolicy is missing the %s method", name)
|
|
}
|
|
}
|
|
}
|
|
if len(p) != total {
|
|
logger.Warning("defined RPC policy has more entries than needed")
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// this just sets non-generated defaults
|
|
func (cfg *Config) setDefaults() {
|
|
hostname, err := os.Hostname()
|
|
if err != nil {
|
|
hostname = ""
|
|
}
|
|
cfg.Peername = hostname
|
|
|
|
addr, _ := ma.NewMultiaddr(DefaultListenAddr)
|
|
cfg.ListenAddr = addr
|
|
cfg.LeaveOnShutdown = DefaultLeaveOnShutdown
|
|
cfg.StateSyncInterval = DefaultStateSyncInterval
|
|
cfg.IPFSSyncInterval = DefaultIPFSSyncInterval
|
|
cfg.ReplicationFactorMin = DefaultReplicationFactor
|
|
cfg.ReplicationFactorMax = DefaultReplicationFactor
|
|
cfg.MonitorPingInterval = DefaultMonitorPingInterval
|
|
cfg.PeerWatchInterval = DefaultPeerWatchInterval
|
|
cfg.DisableRepinning = DefaultDisableRepinning
|
|
cfg.PeerstoreFile = "" // empty so it gets ommited.
|
|
}
|
|
|
|
// LoadJSON receives a raw json-formatted configuration and
|
|
// sets the Config fields from it. Note that it should be JSON
|
|
// as generated by ToJSON().
|
|
func (cfg *Config) LoadJSON(raw []byte) error {
|
|
jcfg := &configJSON{}
|
|
err := json.Unmarshal(raw, jcfg)
|
|
if err != nil {
|
|
logger.Error("Error unmarshaling cluster config")
|
|
return err
|
|
}
|
|
|
|
cfg.setDefaults()
|
|
|
|
return cfg.applyConfigJSON(jcfg)
|
|
}
|
|
|
|
func (cfg *Config) applyConfigJSON(jcfg *configJSON) error {
|
|
config.SetIfNotDefault(jcfg.PeerstoreFile, &cfg.PeerstoreFile)
|
|
|
|
id, err := peer.IDB58Decode(jcfg.ID)
|
|
if err != nil {
|
|
err = fmt.Errorf("error decoding cluster ID: %s", err)
|
|
return err
|
|
}
|
|
cfg.ID = id
|
|
|
|
config.SetIfNotDefault(jcfg.Peername, &cfg.Peername)
|
|
|
|
pkb, err := base64.StdEncoding.DecodeString(jcfg.PrivateKey)
|
|
if err != nil {
|
|
err = fmt.Errorf("error decoding private_key: %s", err)
|
|
return err
|
|
}
|
|
pKey, err := crypto.UnmarshalPrivateKey(pkb)
|
|
if err != nil {
|
|
err = fmt.Errorf("error parsing private_key ID: %s", err)
|
|
return err
|
|
}
|
|
cfg.PrivateKey = pKey
|
|
|
|
clusterSecret, err := DecodeClusterSecret(jcfg.Secret)
|
|
if err != nil {
|
|
err = fmt.Errorf("error loading cluster secret from config: %s", err)
|
|
return err
|
|
}
|
|
cfg.Secret = clusterSecret
|
|
|
|
clusterAddr, err := ma.NewMultiaddr(jcfg.ListenMultiaddress)
|
|
if err != nil {
|
|
err = fmt.Errorf("error parsing cluster_listen_multiaddress: %s", err)
|
|
return err
|
|
}
|
|
cfg.ListenAddr = clusterAddr
|
|
|
|
rplMin := jcfg.ReplicationFactorMin
|
|
rplMax := jcfg.ReplicationFactorMax
|
|
config.SetIfNotDefault(rplMin, &cfg.ReplicationFactorMin)
|
|
config.SetIfNotDefault(rplMax, &cfg.ReplicationFactorMax)
|
|
|
|
err = config.ParseDurations("cluster",
|
|
&config.DurationOpt{Duration: jcfg.StateSyncInterval, Dst: &cfg.StateSyncInterval, Name: "state_sync_interval"},
|
|
&config.DurationOpt{Duration: jcfg.IPFSSyncInterval, Dst: &cfg.IPFSSyncInterval, Name: "ipfs_sync_interval"},
|
|
&config.DurationOpt{Duration: jcfg.MonitorPingInterval, Dst: &cfg.MonitorPingInterval, Name: "monitor_ping_interval"},
|
|
&config.DurationOpt{Duration: jcfg.PeerWatchInterval, Dst: &cfg.PeerWatchInterval, Name: "peer_watch_interval"},
|
|
)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
cfg.LeaveOnShutdown = jcfg.LeaveOnShutdown
|
|
cfg.DisableRepinning = jcfg.DisableRepinning
|
|
|
|
return cfg.Validate()
|
|
}
|
|
|
|
// ToJSON generates a human-friendly version of Config.
|
|
func (cfg *Config) ToJSON() (raw []byte, err error) {
|
|
jcfg, err := cfg.toConfigJSON()
|
|
if err != nil {
|
|
return
|
|
}
|
|
|
|
raw, err = json.MarshalIndent(jcfg, "", " ")
|
|
return
|
|
}
|
|
|
|
func (cfg *Config) toConfigJSON() (jcfg *configJSON, err error) {
|
|
// Multiaddress String() may panic
|
|
defer func() {
|
|
if r := recover(); r != nil {
|
|
err = fmt.Errorf("%s", r)
|
|
}
|
|
}()
|
|
|
|
jcfg = &configJSON{}
|
|
|
|
// Private Key
|
|
pkeyBytes, err := cfg.PrivateKey.Bytes()
|
|
if err != nil {
|
|
return
|
|
}
|
|
pKey := base64.StdEncoding.EncodeToString(pkeyBytes)
|
|
|
|
// Set all configuration fields
|
|
jcfg.ID = cfg.ID.Pretty()
|
|
jcfg.Peername = cfg.Peername
|
|
jcfg.PrivateKey = pKey
|
|
jcfg.Secret = EncodeProtectorKey(cfg.Secret)
|
|
jcfg.ReplicationFactorMin = cfg.ReplicationFactorMin
|
|
jcfg.ReplicationFactorMax = cfg.ReplicationFactorMax
|
|
jcfg.LeaveOnShutdown = cfg.LeaveOnShutdown
|
|
jcfg.ListenMultiaddress = cfg.ListenAddr.String()
|
|
jcfg.StateSyncInterval = cfg.StateSyncInterval.String()
|
|
jcfg.IPFSSyncInterval = cfg.IPFSSyncInterval.String()
|
|
jcfg.MonitorPingInterval = cfg.MonitorPingInterval.String()
|
|
jcfg.PeerWatchInterval = cfg.PeerWatchInterval.String()
|
|
jcfg.DisableRepinning = cfg.DisableRepinning
|
|
jcfg.PeerstoreFile = cfg.PeerstoreFile
|
|
|
|
return
|
|
}
|
|
|
|
// GetPeerstorePath returns the full path of the
|
|
// PeerstoreFile, obtained by concatenating that value
|
|
// with BaseDir of the configuration, if set.
|
|
// An empty string is returned when BaseDir is not set.
|
|
func (cfg *Config) GetPeerstorePath() string {
|
|
if cfg.BaseDir == "" {
|
|
return ""
|
|
}
|
|
|
|
filename := DefaultPeerstoreFile
|
|
if cfg.PeerstoreFile != "" {
|
|
filename = cfg.PeerstoreFile
|
|
}
|
|
|
|
return filepath.Join(cfg.BaseDir, filename)
|
|
}
|
|
|
|
// DecodeClusterSecret parses a hex-encoded string, checks that it is exactly
|
|
// 32 bytes long and returns its value as a byte-slice.x
|
|
func DecodeClusterSecret(hexSecret string) ([]byte, error) {
|
|
secret, err := hex.DecodeString(hexSecret)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
switch secretLen := len(secret); secretLen {
|
|
case 0:
|
|
logger.Warning("Cluster secret is empty, cluster will start on unprotected network.")
|
|
return nil, nil
|
|
case 32:
|
|
return secret, nil
|
|
default:
|
|
return nil, fmt.Errorf("input secret is %d bytes, cluster secret should be 32", secretLen)
|
|
}
|
|
}
|