mirror of
https://gitlab.com/pulsechaincom/prysm-pulse.git
synced 2025-01-06 01:32:18 +00:00
932e68571b
* expose p2p private key for static peering * Review revisions * Use testutil.TempDir() * Use testing.T to report fatal errors
106 lines
2.7 KiB
Go
106 lines
2.7 KiB
Go
package p2p
|
|
|
|
import (
|
|
"fmt"
|
|
"io/ioutil"
|
|
"net"
|
|
"os"
|
|
|
|
"github.com/libp2p/go-libp2p"
|
|
crypto "github.com/libp2p/go-libp2p-crypto"
|
|
peer "github.com/libp2p/go-libp2p-peer"
|
|
filter "github.com/libp2p/go-maddr-filter"
|
|
ma "github.com/multiformats/go-multiaddr"
|
|
"github.com/prysmaticlabs/prysm/shared/iputils"
|
|
)
|
|
|
|
// buildOptions for the libp2p host.
|
|
// TODO(287): Expand on these options and provide the option configuration via flags.
|
|
func buildOptions(cfg *ServerConfig) []libp2p.Option {
|
|
|
|
ip, err := iputils.ExternalIPv4()
|
|
if err != nil {
|
|
log.Errorf("Could not get IPv4 address: %v", err)
|
|
}
|
|
|
|
listen, err := ma.NewMultiaddr(fmt.Sprintf("/ip4/%s/tcp/%d", ip, cfg.Port))
|
|
if err != nil {
|
|
log.Errorf("Failed to p2p listen: %v", err)
|
|
}
|
|
|
|
return []libp2p.Option{
|
|
libp2p.ListenAddrs(listen),
|
|
libp2p.EnableRelay(), // Allows dialing to peers via relay.
|
|
optionConnectionManager(cfg.MaxPeers),
|
|
whitelistSubnet(cfg.WhitelistCIDR),
|
|
privKey(cfg.PrvKey),
|
|
}
|
|
}
|
|
|
|
// whitelistSubnet adds a whitelist multiaddress filter for a given CIDR subnet.
|
|
// Example: 192.168.0.0/16 may be used to accept only connections on your local
|
|
// network.
|
|
func whitelistSubnet(cidr string) libp2p.Option {
|
|
if cidr == "" {
|
|
return func(_ *libp2p.Config) error {
|
|
return nil
|
|
}
|
|
}
|
|
|
|
return func(cfg *libp2p.Config) error {
|
|
_, ipnet, err := net.ParseCIDR(cidr)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if cfg.Filters == nil {
|
|
cfg.Filters = filter.NewFilters()
|
|
}
|
|
cfg.Filters.AddFilter(*ipnet, filter.ActionAccept)
|
|
|
|
return nil
|
|
}
|
|
}
|
|
|
|
// Adds a private key to the libp2p option if the option was provided.
|
|
// If the private key file is missing or cannot be read, or if the
|
|
// private key contents cannot be marshaled, an exception is thrown.
|
|
func privKey(prvKey string) libp2p.Option {
|
|
if prvKey == "" {
|
|
return func(_ *libp2p.Config) error {
|
|
return nil
|
|
}
|
|
}
|
|
|
|
return func(cfg *libp2p.Config) error {
|
|
if _, err := os.Stat(prvKey); os.IsNotExist(err) {
|
|
log.WithField("private key file", prvKey).Warn("Could not read private key, file is missing or unreadable")
|
|
return err
|
|
}
|
|
bytes, err := ioutil.ReadFile(prvKey)
|
|
if err != nil {
|
|
log.WithError(err).Error("Error reading private key from file")
|
|
return err
|
|
}
|
|
keyBytes, err := crypto.ConfigDecodeKey(string(bytes))
|
|
if err != nil {
|
|
log.WithError(err).Error("Error decoding private key")
|
|
return err
|
|
}
|
|
key, err := crypto.UnmarshalPrivateKey(keyBytes)
|
|
if err != nil {
|
|
log.WithError(err).Error("Error unmarshalling private key")
|
|
return err
|
|
}
|
|
pubKey, err := peer.IDFromPrivateKey(key)
|
|
|
|
if err != nil {
|
|
log.Errorf("Could not print public key: %v", err)
|
|
return err
|
|
}
|
|
log.WithField("public key", pubKey.Pretty()).Info("Private key loaded. Announcing public key.")
|
|
|
|
return cfg.Apply(libp2p.Identity(key))
|
|
}
|
|
}
|