forked from I2P_Developers/i2p.i2p

* Added support for 'dynamic keys' mode, where the router creates a new router identity whenever it detects a substantial change in its public address (read: SSU IP or port). This only offers minimal additional protection against trivial attackers, but should provide functional improvement for people who have periodic IP changes, since their new router address would not be shitlisted while their old one would be. * Added further infrastructure for restricted route operation, but its use is not recommended.
389 lines
16 KiB
Java
389 lines
16 KiB
Java
package net.i2p.router.web;
|
|
|
|
import java.io.BufferedReader;
|
|
import java.io.ByteArrayOutputStream;
|
|
import java.io.IOException;
|
|
import java.io.InputStream;
|
|
import java.io.InputStreamReader;
|
|
import java.io.File;
|
|
import java.io.FileOutputStream;
|
|
|
|
import java.net.URL;
|
|
import java.net.URLConnection;
|
|
|
|
import java.util.HashSet;
|
|
import java.util.Iterator;
|
|
import java.util.Set;
|
|
|
|
import net.i2p.time.Timestamper;
|
|
import net.i2p.router.transport.udp.UDPTransport;
|
|
import net.i2p.router.Router;
|
|
import net.i2p.data.RouterInfo;
|
|
import net.i2p.router.web.ConfigServiceHandler.UpdateWrapperManagerTask;
|
|
import net.i2p.router.web.ConfigServiceHandler.UpdateWrapperManagerAndRekeyTask;
|
|
|
|
/**
|
|
* Handler to deal with form submissions from the main config form and act
|
|
* upon the values.
|
|
*
|
|
*/
|
|
public class ConfigNetHandler extends FormHandler {
|
|
private String _hostname;
|
|
private boolean _guessRequested;
|
|
private boolean _reseedRequested;
|
|
private boolean _saveRequested;
|
|
private boolean _recheckReachabilityRequested;
|
|
private boolean _timeSyncEnabled;
|
|
private boolean _requireIntroductions;
|
|
private boolean _hiddenMode;
|
|
private boolean _dynamicKeys;
|
|
private String _tcpPort;
|
|
private String _udpPort;
|
|
private String _inboundRate;
|
|
private String _inboundBurstRate;
|
|
private String _inboundBurst;
|
|
private String _outboundRate;
|
|
private String _outboundBurstRate;
|
|
private String _outboundBurst;
|
|
private String _reseedFrom;
|
|
private String _sharePct;
|
|
|
|
protected void processForm() {
|
|
if (_guessRequested) {
|
|
guessHostname();
|
|
} else if (_reseedRequested) {
|
|
reseed();
|
|
} else if (_saveRequested) {
|
|
saveChanges();
|
|
} else if (_recheckReachabilityRequested) {
|
|
recheckReachability();
|
|
} else {
|
|
// noop
|
|
}
|
|
}
|
|
|
|
public void setGuesshost(String moo) { _guessRequested = true; }
|
|
public void setReseed(String moo) { _reseedRequested = true; }
|
|
public void setSave(String moo) { _saveRequested = true; }
|
|
public void setEnabletimesync(String moo) { _timeSyncEnabled = true; }
|
|
public void setRecheckReachability(String moo) { _recheckReachabilityRequested = true; }
|
|
public void setRequireIntroductions(String moo) { _requireIntroductions = true; }
|
|
public void setHiddenMode(String moo) { _hiddenMode = true; }
|
|
public void setDynamicKeys(String moo) { _dynamicKeys = true; }
|
|
|
|
public void setHostname(String hostname) {
|
|
_hostname = (hostname != null ? hostname.trim() : null);
|
|
}
|
|
public void setTcpPort(String port) {
|
|
_tcpPort = (port != null ? port.trim() : null);
|
|
}
|
|
public void setUdpPort(String port) {
|
|
_udpPort = (port != null ? port.trim() : null);
|
|
}
|
|
public void setInboundrate(String rate) {
|
|
_inboundRate = (rate != null ? rate.trim() : null);
|
|
}
|
|
public void setInboundburstrate(String rate) {
|
|
_inboundBurstRate = (rate != null ? rate.trim() : null);
|
|
}
|
|
public void setInboundburstfactor(String factor) {
|
|
_inboundBurst = (factor != null ? factor.trim() : null);
|
|
}
|
|
public void setOutboundrate(String rate) {
|
|
_outboundRate = (rate != null ? rate.trim() : null);
|
|
}
|
|
public void setOutboundburstrate(String rate) {
|
|
_outboundBurstRate = (rate != null ? rate.trim() : null);
|
|
}
|
|
public void setOutboundburstfactor(String factor) {
|
|
_outboundBurst = (factor != null ? factor.trim() : null);
|
|
}
|
|
public void setReseedfrom(String url) {
|
|
_reseedFrom = (url != null ? url.trim() : null);
|
|
}
|
|
public void setSharePercentage(String pct) {
|
|
_sharePct = (pct != null ? pct.trim() : null);
|
|
}
|
|
|
|
private static final String IP_PREFIX = "<h1>Your IP is ";
|
|
private static final String IP_SUFFIX = " <br></h1>";
|
|
private void guessHostname() {
|
|
BufferedReader reader = null;
|
|
try {
|
|
URL url = new URL("http://www.whatismyip.com/");
|
|
URLConnection con = url.openConnection();
|
|
con.connect();
|
|
reader = new BufferedReader(new InputStreamReader(con.getInputStream()));
|
|
String line = null;
|
|
while ( (line = reader.readLine()) != null) {
|
|
if (line.startsWith(IP_PREFIX)) {
|
|
int end = line.indexOf(IP_SUFFIX);
|
|
if (end == -1) {
|
|
addFormError("Unable to guess the host (BAD_SUFFIX)");
|
|
return;
|
|
}
|
|
String ip = line.substring(IP_PREFIX.length(), end);
|
|
addFormNotice("Host guess: " + ip);
|
|
return;
|
|
}
|
|
}
|
|
addFormError("Unable to guess the host (NO_PREFIX)");
|
|
} catch (IOException ioe) {
|
|
addFormError("Unable to guess the host (IO_ERROR)");
|
|
_context.logManager().getLog(ConfigNetHandler.class).error("Unable to guess the host", ioe);
|
|
} finally {
|
|
if (reader != null) try { reader.close(); } catch (IOException ioe) {}
|
|
}
|
|
}
|
|
|
|
private static final String DEFAULT_SEED_URL = "http://dev.i2p.net/i2pdb/";
|
|
/**
|
|
* Reseed has been requested, so lets go ahead and do it. Fetch all of
|
|
* the routerInfo-*.dat files from the specified URL (or the default) and
|
|
* save them into this router's netDb dir.
|
|
*
|
|
*/
|
|
private void reseed() {
|
|
String seedURL = DEFAULT_SEED_URL;
|
|
if (_reseedFrom != null)
|
|
seedURL = _reseedFrom;
|
|
try {
|
|
URL dir = new URL(seedURL);
|
|
String content = new String(readURL(dir));
|
|
Set urls = new HashSet();
|
|
int cur = 0;
|
|
while (true) {
|
|
int start = content.indexOf("href=\"routerInfo-", cur);
|
|
if (start < 0)
|
|
break;
|
|
|
|
int end = content.indexOf(".dat\">", start);
|
|
String name = content.substring(start+"href=\"routerInfo-".length(), end);
|
|
urls.add(name);
|
|
cur = end + 1;
|
|
}
|
|
|
|
int fetched = 0;
|
|
int errors = 0;
|
|
for (Iterator iter = urls.iterator(); iter.hasNext(); ) {
|
|
try {
|
|
fetchSeed(seedURL, (String)iter.next());
|
|
fetched++;
|
|
} catch (Exception e) {
|
|
errors++;
|
|
}
|
|
}
|
|
addFormNotice("Reseeded with " + fetched + " peers (and " + errors + " failures)");
|
|
} catch (Throwable t) {
|
|
_context.logManager().getLog(ConfigNetHandler.class).error("Error reseeding", t);
|
|
addFormError("Error reseeding (RESEED_EXCEPTION)");
|
|
}
|
|
}
|
|
|
|
private void fetchSeed(String seedURL, String peer) throws Exception {
|
|
URL url = new URL(seedURL + (seedURL.endsWith("/") ? "" : "/") + "routerInfo-" + peer + ".dat");
|
|
|
|
byte data[] = readURL(url);
|
|
writeSeed(peer, data);
|
|
}
|
|
|
|
private byte[] readURL(URL url) throws Exception {
|
|
ByteArrayOutputStream baos = new ByteArrayOutputStream(1024);
|
|
URLConnection con = url.openConnection();
|
|
InputStream in = con.getInputStream();
|
|
byte buf[] = new byte[1024];
|
|
while (true) {
|
|
int read = in.read(buf);
|
|
if (read < 0)
|
|
break;
|
|
baos.write(buf, 0, read);
|
|
}
|
|
in.close();
|
|
return baos.toByteArray();
|
|
}
|
|
|
|
private void writeSeed(String name, byte data[]) throws Exception {
|
|
// props taken from KademliaNetworkDatabaseFacade...
|
|
String dirName = _context.getProperty("router.networkDatabase.dbDir", "netDb");
|
|
File netDbDir = new File(dirName);
|
|
if (!netDbDir.exists()) {
|
|
boolean ok = netDbDir.mkdirs();
|
|
if (ok)
|
|
addFormNotice("Network database directory created: " + dirName);
|
|
else
|
|
addFormNotice("Error creating network database directory: " + dirName);
|
|
}
|
|
FileOutputStream fos = new FileOutputStream(new File(netDbDir, "routerInfo-" + name + ".dat"));
|
|
fos.write(data);
|
|
fos.close();
|
|
}
|
|
|
|
private void recheckReachability() {
|
|
_context.commSystem().recheckReachability();
|
|
addFormNotice("Rechecking router reachability...");
|
|
}
|
|
|
|
/**
|
|
* The user made changes to the network config and wants to save them, so
|
|
* lets go ahead and do so.
|
|
*
|
|
*/
|
|
private void saveChanges() {
|
|
boolean restartRequired = false;
|
|
|
|
if ( (_hostname != null) && (_hostname.length() > 0) ) {
|
|
String oldHost = _context.router().getConfigSetting(ConfigNetHelper.PROP_I2NP_TCP_HOSTNAME);
|
|
if ( (oldHost == null) || (!oldHost.equalsIgnoreCase(_hostname)) ) {
|
|
_context.router().setConfigSetting(ConfigNetHelper.PROP_I2NP_TCP_HOSTNAME, _hostname);
|
|
addFormNotice("Updating hostname from " + oldHost + " to " + _hostname);
|
|
restartRequired = true;
|
|
}
|
|
}
|
|
if ( (_tcpPort != null) && (_tcpPort.length() > 0) ) {
|
|
String oldPort = _context.router().getConfigSetting(ConfigNetHelper.PROP_I2NP_TCP_PORT);
|
|
if ( (oldPort == null) && (_tcpPort.equals("8887")) ) {
|
|
// still on default.. noop
|
|
} else if ( (oldPort == null) || (!oldPort.equalsIgnoreCase(_tcpPort)) ) {
|
|
// its not the default OR it has changed
|
|
_context.router().setConfigSetting(ConfigNetHelper.PROP_I2NP_TCP_PORT, _tcpPort);
|
|
addFormNotice("Updating TCP port from " + oldPort + " to " + _tcpPort);
|
|
restartRequired = true;
|
|
}
|
|
}
|
|
if ( (_udpPort != null) && (_udpPort.length() > 0) ) {
|
|
String oldPort = _context.router().getConfigSetting(ConfigNetHelper.PROP_I2NP_UDP_PORT);
|
|
if ( (oldPort == null) && (_udpPort.equals("8887")) ) {
|
|
// still on default.. noop
|
|
} else if ( (oldPort == null) || (!oldPort.equalsIgnoreCase(_udpPort)) ) {
|
|
// its not the default OR it has changed
|
|
_context.router().setConfigSetting(ConfigNetHelper.PROP_I2NP_TCP_PORT, _udpPort);
|
|
addFormNotice("Updating UDP port from " + oldPort + " to " + _udpPort);
|
|
restartRequired = true;
|
|
}
|
|
}
|
|
|
|
updateRates();
|
|
|
|
if (_sharePct != null) {
|
|
String old = _context.router().getConfigSetting(ConfigNetHelper.PROP_SHARE_PERCENTAGE);
|
|
if ( (old == null) || (!old.equalsIgnoreCase(_sharePct)) ) {
|
|
_context.router().setConfigSetting(ConfigNetHelper.PROP_SHARE_PERCENTAGE, _sharePct);
|
|
addFormNotice("Updating bandwidth share percentage");
|
|
}
|
|
}
|
|
|
|
// If hidden mode value changes, restart is required
|
|
if (_hiddenMode && "false".equalsIgnoreCase(_context.getProperty(Router.PROP_HIDDEN, "false"))) {
|
|
_context.router().setConfigSetting(Router.PROP_HIDDEN, "true");
|
|
_context.router().getRouterInfo().addCapability(RouterInfo.CAPABILITY_HIDDEN);
|
|
addFormNotice("Gracefully restarting into Hidden Router Mode. Make sure you have no 0-1 length "
|
|
+ "<a href=\"configtunnels.jsp\">tunnels!</a>");
|
|
hiddenSwitch();
|
|
}
|
|
|
|
if (!_hiddenMode && "true".equalsIgnoreCase(_context.getProperty(Router.PROP_HIDDEN, "false"))) {
|
|
_context.router().removeConfigSetting(Router.PROP_HIDDEN);
|
|
_context.router().getRouterInfo().delCapability(RouterInfo.CAPABILITY_HIDDEN);
|
|
addFormNotice("Gracefully restarting to exit Hidden Router Mode");
|
|
hiddenSwitch();
|
|
}
|
|
|
|
if (_dynamicKeys) {
|
|
_context.router().setConfigSetting(Router.PROP_DYNAMIC_KEYS, "true");
|
|
} else {
|
|
_context.router().removeConfigSetting(Router.PROP_DYNAMIC_KEYS);
|
|
}
|
|
|
|
if (_requireIntroductions) {
|
|
_context.router().setConfigSetting(UDPTransport.PROP_FORCE_INTRODUCERS, "true");
|
|
addFormNotice("Requiring SSU introduers");
|
|
} else {
|
|
_context.router().removeConfigSetting(UDPTransport.PROP_FORCE_INTRODUCERS);
|
|
}
|
|
|
|
if (true || _timeSyncEnabled) {
|
|
// Time sync enable, means NOT disabled
|
|
_context.router().setConfigSetting(Timestamper.PROP_DISABLED, "false");
|
|
} else {
|
|
_context.router().setConfigSetting(Timestamper.PROP_DISABLED, "true");
|
|
}
|
|
|
|
boolean saved = _context.router().saveConfig();
|
|
if (saved)
|
|
addFormNotice("Configuration saved successfully");
|
|
else
|
|
addFormNotice("Error saving the configuration (applied but not saved) - please see the error logs");
|
|
|
|
if (restartRequired) {
|
|
addFormNotice("Performing a soft restart");
|
|
_context.router().restart();
|
|
addFormNotice("Soft restart complete");
|
|
}
|
|
}
|
|
|
|
private void hiddenSwitch() {
|
|
// Full restart required to generate new keys
|
|
_context.router().addShutdownTask(new UpdateWrapperManagerAndRekeyTask(Router.EXIT_GRACEFUL_RESTART));
|
|
_context.router().shutdownGracefully(Router.EXIT_GRACEFUL_RESTART);
|
|
}
|
|
|
|
private void updateRates() {
|
|
boolean updated = false;
|
|
if ( (_inboundRate != null) && (_inboundRate.length() > 0) ) {
|
|
_context.router().setConfigSetting(ConfigNetHelper.PROP_INBOUND_KBPS, _inboundRate);
|
|
updated = true;
|
|
}
|
|
if ( (_outboundRate != null) && (_outboundRate.length() > 0) ) {
|
|
_context.router().setConfigSetting(ConfigNetHelper.PROP_OUTBOUND_KBPS, _outboundRate);
|
|
updated = true;
|
|
}
|
|
if ( (_inboundBurstRate != null) && (_inboundBurstRate.length() > 0) ) {
|
|
_context.router().setConfigSetting(ConfigNetHelper.PROP_INBOUND_BURST_KBPS, _inboundBurstRate);
|
|
updated = true;
|
|
}
|
|
if ( (_outboundBurstRate != null) && (_outboundBurstRate.length() > 0) ) {
|
|
_context.router().setConfigSetting(ConfigNetHelper.PROP_OUTBOUND_BURST_KBPS, _outboundBurstRate);
|
|
updated = true;
|
|
}
|
|
|
|
String inBurstRate = _context.router().getConfigSetting(ConfigNetHelper.PROP_INBOUND_BURST_KBPS);
|
|
|
|
if (_inboundBurst != null) {
|
|
int rateKBps = 0;
|
|
int burstSeconds = 0;
|
|
try {
|
|
rateKBps = Integer.parseInt(inBurstRate);
|
|
burstSeconds = Integer.parseInt(_inboundBurst);
|
|
} catch (NumberFormatException nfe) {
|
|
// ignore
|
|
}
|
|
if ( (rateKBps > 0) && (burstSeconds > 0) ) {
|
|
int kb = rateKBps * burstSeconds;
|
|
_context.router().setConfigSetting(ConfigNetHelper.PROP_INBOUND_BURST, "" + kb);
|
|
updated = true;
|
|
}
|
|
}
|
|
|
|
String outBurstRate = _context.router().getConfigSetting(ConfigNetHelper.PROP_OUTBOUND_BURST_KBPS);
|
|
|
|
if (_outboundBurst != null) {
|
|
int rateKBps = 0;
|
|
int burstSeconds = 0;
|
|
try {
|
|
rateKBps = Integer.parseInt(outBurstRate);
|
|
burstSeconds = Integer.parseInt(_outboundBurst);
|
|
} catch (NumberFormatException nfe) {
|
|
// ignore
|
|
}
|
|
if ( (rateKBps > 0) && (burstSeconds > 0) ) {
|
|
int kb = rateKBps * burstSeconds;
|
|
_context.router().setConfigSetting(ConfigNetHelper.PROP_OUTBOUND_BURST, "" + kb);
|
|
updated = true;
|
|
}
|
|
}
|
|
|
|
if (updated)
|
|
addFormNotice("Updated bandwidth limits");
|
|
}
|
|
}
|