Add configurable keepalive

Hannes Tribus · Hannes Tribus · commit ff7f15bd6885 · 2021-08-12T13:51:04.000+02:00
diff --git a/Makefile b/Makefile
@@ -92,7 +92,7 @@ release: check test clean build package
 build:
 	mkdir -p ${OUTPUT_DIR}
 	CGO_ENABLED=0 GOARM=5 gox -ldflags "-w -X main.version=$(GIT_COMMIT)" \
-	-os=${OS} -arch=${ARCH} -osarch=${OSARCH} -output "${OUTPUT_DIR}/pkg/{{.OS}}_{{.Arch}}/{{.Dir}}" \
+	-mod=vendor -os=${OS} -arch=${ARCH} -osarch=${OSARCH} -output "${OUTPUT_DIR}/pkg/{{.OS}}_{{.Arch}}/{{.Dir}}" \
 	./cmd/tunnel ./cmd/tunneld
 
 .PHONY: package
diff --git a/README.md b/README.md
@@ -173,6 +173,13 @@ Configuration options:
     * `multiplier`: interval multiplier if reconnect failed, *default:* `1.5`
     * `max_interval`: maximal time client would wait before redialing the server, *default:* `1m`
     * `max_time`: maximal time client would try to reconnect to the server if connection was lost, set `0` to never stop trying, *default:* `15m`
+* `keep_alive`**
+     * `idle_time`: how long to wait on an idle tcp connection before sending a keepalive packet, *default:* `15 min`
+     * `count`: how many keepalive packets to send before declaring that the tcp connection is down, *default:* `8`
+     * `interval`: the amount of time to wait between sending consequent keepalive packets, *default:* `5 sec`
+
+ \** Keep alive configuration not available for window since on windows it can only be either on or off.
+ It is defaulted to on and cannot be turned off via configuration.
 
 ## Configuration - Server
 
diff --git a/backoff.go b/backoff.go
diff --git a/client.go b/client.go
@@ -16,6 +16,7 @@ import (
 
 	"golang.org/x/net/http2"
 
+	"github.com/hons82/go-http-tunnel/connection"
 	"github.com/hons82/go-http-tunnel/log"
 	"github.com/hons82/go-http-tunnel/proto"
 )
@@ -32,14 +33,16 @@ type ClientConfig struct {
 	DialTLS func(network, addr string, config *tls.Config) (net.Conn, error)
 	// Backoff specifies backoff policy on server connection retry. If nil
 	// when dial fails it will not be retried.
-	Backoff Backoff
+	Backoff connection.Backoff
 	// Tunnels specifies the tunnels client requests to be opened on server.
 	Tunnels map[string]*proto.Tunnel
 	// Proxy is ProxyFunc responsible for transferring data between server
 	// and local services.
 	Proxy ProxyFunc
 	// Logger is optional logger. If nil logging is disabled.
 	Logger log.Logger
+	// Used to configure the tcp keepalive for the client -> server tcp connection
+	KeepAlive connection.KeepAliveConfig
 }
 
 // Client is responsible for creating connection to the server, handling control
@@ -172,7 +175,11 @@ func (c *Client) dial() (net.Conn, error) {
 			conn, err = d.Dial(network, addr)
 
 			if err == nil {
-				err = keepAlive(conn)
+				c.logger.Log(
+					"level", 1,
+					"msg", fmt.Sprintf("Setting up keep alive using config: %v", c.config.KeepAlive.String()),
+				)
+				err = c.config.KeepAlive.Set(conn)
 			}
 			if err == nil {
 				conn = tls.Client(conn, tlsConfig)
diff --git a/client_test.go b/client_test.go
@@ -13,6 +13,7 @@ import (
 	"time"
 
 	"github.com/golang/mock/gomock"
+	"github.com/hons82/go-http-tunnel/connection"
 	"github.com/hons82/go-http-tunnel/proto"
 	"github.com/hons82/go-http-tunnel/tunnelmock"
 )
@@ -30,6 +31,9 @@ func TestClient_Dial(t *testing.T) {
 		},
 		Tunnels: map[string]*proto.Tunnel{"test": {}},
 		Proxy:   Proxy(ProxyFuncs{}),
+		KeepAlive: connection.KeepAliveConfig{
+			KeepAliveInterval: connection.DefaultKeepAliveInterval,
+		},
 	})
 	if err != nil {
 		t.Fatal(err)
@@ -68,6 +72,9 @@ func TestClient_DialBackoff(t *testing.T) {
 		Backoff:         b,
 		Tunnels:         map[string]*proto.Tunnel{"test": {}},
 		Proxy:           Proxy(ProxyFuncs{}),
+		KeepAlive: connection.KeepAliveConfig{
+			KeepAliveInterval: connection.DefaultKeepAliveInterval,
+		},
 	})
 	if err != nil {
 		t.Fatal(err)
diff --git a/cmd/tunnel/config.go b/cmd/tunnel/config.go
@@ -8,29 +8,13 @@ import (
 	"fmt"
 	"io/ioutil"
 	"path/filepath"
-	"time"
 
 	"gopkg.in/yaml.v2"
 
+	"github.com/hons82/go-http-tunnel/connection"
 	"github.com/hons82/go-http-tunnel/proto"
 )
 
-// Default backoff configuration.
-const (
-	DefaultBackoffInterval    = 500 * time.Millisecond
-	DefaultBackoffMultiplier  = 1.5
-	DefaultBackoffMaxInterval = 60 * time.Second
-	DefaultBackoffMaxTime     = 15 * time.Minute
-)
-
-// BackoffConfig defines behavior of staggering reconnection retries.
-type BackoffConfig struct {
-	Interval    time.Duration `yaml:"interval"`
-	Multiplier  float64       `yaml:"multiplier"`
-	MaxInterval time.Duration `yaml:"max_interval"`
-	MaxTime     time.Duration `yaml:"max_time"`
-}
-
 // Tunnel defines a tunnel.
 type Tunnel struct {
 	Protocol   string `yaml:"proto,omitempty"`
@@ -42,12 +26,13 @@ type Tunnel struct {
 
 // ClientConfig is a tunnel client configuration.
 type ClientConfig struct {
-	ServerAddr string             `yaml:"server_addr"`
-	TLSCrt     string             `yaml:"tls_crt"`
-	TLSKey     string             `yaml:"tls_key"`
-	RootCA     string             `yaml:"root_ca"`
-	Backoff    BackoffConfig      `yaml:"backoff"`
-	Tunnels    map[string]*Tunnel `yaml:"tunnels"`
+	ServerAddr string                     `yaml:"server_addr"`
+	TLSCrt     string                     `yaml:"tls_crt"`
+	TLSKey     string                     `yaml:"tls_key"`
+	RootCA     string                     `yaml:"root_ca"`
+	Tunnels    map[string]*Tunnel         `yaml:"tunnels"`
+	Backoff    connection.BackoffConfig   `yaml:"backoff"`
+	KeepAlive  connection.KeepAliveConfig `yaml:"keep_alive"`
 }
 
 func loadClientConfigFromFile(file string) (*ClientConfig, error) {
@@ -57,14 +42,10 @@ func loadClientConfigFromFile(file string) (*ClientConfig, error) {
 	}
 
 	c := ClientConfig{
-		TLSCrt: filepath.Join(filepath.Dir(file), "client.crt"),
-		TLSKey: filepath.Join(filepath.Dir(file), "client.key"),
-		Backoff: BackoffConfig{
-			Interval:    DefaultBackoffInterval,
-			Multiplier:  DefaultBackoffMultiplier,
-			MaxInterval: DefaultBackoffMaxInterval,
-			MaxTime:     DefaultBackoffMaxTime,
-		},
+		TLSCrt:    filepath.Join(filepath.Dir(file), "client.crt"),
+		TLSKey:    filepath.Join(filepath.Dir(file), "client.key"),
+		Backoff:   *connection.NewDefaultBackoffConfig(),
+		KeepAlive: *connection.NewDefaultKeepAliveConfig(),
 	}
 
 	if err = yaml.Unmarshal(buf, &c); err != nil {
diff --git a/cmd/tunnel/tunnel.go b/cmd/tunnel/tunnel.go
@@ -18,7 +18,8 @@ import (
 	"gopkg.in/yaml.v2"
 
 	"github.com/cenkalti/backoff"
-	"github.com/hons82/go-http-tunnel"
+	tunnel "github.com/hons82/go-http-tunnel"
+	"github.com/hons82/go-http-tunnel/connection"
 	"github.com/hons82/go-http-tunnel/id"
 	"github.com/hons82/go-http-tunnel/log"
 	"github.com/hons82/go-http-tunnel/proto"
@@ -108,6 +109,7 @@ func main() {
 		Tunnels:         tunnels(config.Tunnels),
 		Proxy:           proxy(config.Tunnels, logger),
 		Logger:          logger,
+		KeepAlive:       config.KeepAlive,
 	})
 	if err != nil {
 		fatal("failed to create client: %s", err)
@@ -149,7 +151,7 @@ func tlsConfig(config *ClientConfig) (*tls.Config, error) {
 	}, nil
 }
 
-func expBackoff(c BackoffConfig) *backoff.ExponentialBackOff {
+func expBackoff(c connection.BackoffConfig) *backoff.ExponentialBackOff {
 	b := backoff.NewExponentialBackOff()
 	b.InitialInterval = c.Interval
 	b.Multiplier = c.Multiplier
diff --git a/cmd/tunneld/options.go b/cmd/tunneld/options.go
@@ -48,6 +48,7 @@ type options struct {
 	tlsKey     string
 	rootCA     string
 	clients    string
+	keepAlive  string
 	logLevel   int
 	version    bool
 }
@@ -62,6 +63,7 @@ func parseArgs() *options {
 	tlsKey := flag.String("tlsKey", "server.key", "Path to a TLS key file")
 	rootCA := flag.String("rootCA", "", "Path to the trusted certificate chian used for client certificate authentication, if empty any client certificate is accepted")
 	clients := flag.String("clients", "", "Comma-separated list of tunnel client ids, if empty accept all clients")
+	keepAlive := flag.String("keepAlive", "5s", "TCP keep alive configuration")
 	logLevel := flag.Int("log-level", 1, "Level of messages to log, 0-3")
 	version := flag.Bool("version", false, "Prints tunneld version")
 	flag.Parse()
@@ -76,6 +78,7 @@ func parseArgs() *options {
 		tlsKey:     *tlsKey,
 		rootCA:     *rootCA,
 		clients:    *clients,
+		keepAlive:  *keepAlive,
 		logLevel:   *logLevel,
 		version:    *version,
 	}
diff --git a/cmd/tunneld/tunneld.go b/cmd/tunneld/tunneld.go
@@ -16,7 +16,8 @@ import (
 
 	"golang.org/x/net/http2"
 
-	"github.com/hons82/go-http-tunnel"
+	tunnel "github.com/hons82/go-http-tunnel"
+	"github.com/hons82/go-http-tunnel/connection"
 	"github.com/hons82/go-http-tunnel/id"
 	"github.com/hons82/go-http-tunnel/log"
 )
@@ -40,13 +41,19 @@ func main() {
 
 	autoSubscribe := opts.clients == ""
 
+	keepAlive, err := connection.Parse(opts.keepAlive)
+	if err != nil {
+		fatal("failed to parse KeepaliveConfig: %s", err)
+	}
+
 	// setup server
 	server, err := tunnel.NewServer(&tunnel.ServerConfig{
 		Addr:          opts.tunnelAddr,
 		SNIAddr:       opts.sniAddr,
 		AutoSubscribe: autoSubscribe,
 		TLSConfig:     tlsconf,
 		Logger:        logger,
+		KeepAlive:     *keepAlive,
 	})
 	if err != nil {
 		fatal("failed to create server: %s", err)
diff --git a/connection/backoff.go b/connection/backoff.go
@@ -0,0 +1,44 @@
+// Copyright (C) 2017 Michał Matczuk
+// Use of this source code is governed by an AGPL-style
+// license that can be found in the LICENSE file.
+
+package connection
+
+import "time"
+
+// Backoff defines behavior of staggering reconnection retries.
+type Backoff interface {
+	// Next returns the duration to sleep before retrying to reconnect.
+	// If the returned value is negative, the retry is aborted.
+	NextBackOff() time.Duration
+
+	// Reset is used to signal a reconnection was successful and next
+	// call to Next should return desired time duration for 1st reconnection
+	// attempt.
+	Reset()
+}
+
+func NewDefaultBackoffConfig() *BackoffConfig {
+	return &BackoffConfig{
+		Interval:    DefaultBackoffInterval,
+		Multiplier:  DefaultBackoffMultiplier,
+		MaxInterval: DefaultBackoffMaxInterval,
+		MaxTime:     DefaultBackoffMaxTime,
+	}
+}
+
+// Default backoff configuration.
+const (
+	DefaultBackoffInterval    = 500 * time.Millisecond
+	DefaultBackoffMultiplier  = 1.5
+	DefaultBackoffMaxInterval = 60 * time.Second
+	DefaultBackoffMaxTime     = 15 * time.Minute
+)
+
+// BackoffConfig defines behavior of staggering reconnection retries.
+type BackoffConfig struct {
+	Interval    time.Duration `yaml:"interval"`
+	Multiplier  float64       `yaml:"multiplier"`
+	MaxInterval time.Duration `yaml:"max_interval"`
+	MaxTime     time.Duration `yaml:"max_time"`
+}
diff --git a/connection/keepalive.go b/connection/keepalive.go
@@ -0,0 +1,66 @@
+// Copyright (C) 2017 Michał Matczuk
+// Use of this source code is governed by an AGPL-style
+// license that can be found in the LICENSE file.
+
+package connection
+
+import (
+	"fmt"
+	"net"
+	"time"
+)
+
+// Default keepAlive configuration.
+const (
+	DefaultKeepAliveInterval = 5 * time.Second
+)
+
+// KeepAliveConfig defines if and how the keepAlive package is sent.
+type KeepAliveConfig struct {
+	KeepAliveInterval time.Duration `yaml:"interval"`
+}
+
+func (k *KeepAliveConfig) Set(conn net.Conn) error {
+	return keepAlive(conn, k.KeepAliveInterval)
+}
+
+func (k *KeepAliveConfig) String() string {
+	return fmt.Sprintf("KeepAlive { interval: %v }", (*k).KeepAliveInterval)
+}
+
+func Parse(interval string) (*KeepAliveConfig, error) {
+	_interval, err := time.ParseDuration(interval)
+	if err != nil {
+		return nil, fmt.Errorf("failed to parse keepalive interval [%s], [%v]", interval, err)
+	}
+	return &KeepAliveConfig{
+		KeepAliveInterval: _interval,
+	}, nil
+}
+
+func NewDefaultKeepAliveConfig() *KeepAliveConfig {
+	return &KeepAliveConfig{
+		KeepAliveInterval: DefaultKeepAliveInterval,
+	}
+}
+
+func SetDefaultKeepAlive(conn net.Conn) error {
+	return keepAlive(conn, DefaultKeepAliveInterval)
+}
+
+func keepAlive(conn net.Conn, interval time.Duration) error {
+	c, ok := conn.(*net.TCPConn)
+	if !ok {
+		return fmt.Errorf("bad connection type: %T", c)
+	}
+
+	if err := c.SetKeepAlive(interval > 0); err != nil {
+		return err
+	}
+
+	if err := c.SetKeepAlivePeriod(interval); err != nil {
+		return err
+	}
+
+	return nil
+}
diff --git a/go.mod b/go.mod
@@ -5,7 +5,6 @@ go 1.13
 require (
 	github.com/calmh/luhn v2.0.0+incompatible
 	github.com/cenkalti/backoff v2.1.1+incompatible
-	github.com/felixge/tcpkeepalive v0.0.0-20160804073959-5bb0b2dea91e
 	github.com/golang/mock v1.2.0
 	github.com/inconshreveable/go-vhost v0.0.0-20160627193104-06d84117953b
 	golang.org/x/net v0.0.0-20171123081856-c7086645de24
diff --git a/go.sum b/go.sum
@@ -2,8 +2,6 @@ github.com/calmh/luhn v2.0.0+incompatible h1:xHkbAc8FBgMiGUaKsiYcwtf8xhSXVtRKA2N
 github.com/calmh/luhn v2.0.0+incompatible/go.mod h1:70IGmMi0GKRs073gl/oH5/yiJnTt61h35YQhvo/k3Cc=
 github.com/cenkalti/backoff v2.1.1+incompatible h1:tKJnvO2kl0zmb/jA5UKAt4VoEVw1qxKWjE/Bpp46npY=
 github.com/cenkalti/backoff v2.1.1+incompatible/go.mod h1:90ReRw6GdpyfrHakVjL/QHaoyV4aDUVVkXQJJJ3NXXM=
-github.com/felixge/tcpkeepalive v0.0.0-20160804073959-5bb0b2dea91e h1:mVIjvOd7NckIwf9J4hLB2YWXBYjhREF4vBeZXZ8mrWM=
-github.com/felixge/tcpkeepalive v0.0.0-20160804073959-5bb0b2dea91e/go.mod h1:z0yk3Pix6k848RFizhkU4uY36ts5pB1t3toBwudGbBo=
 github.com/golang/mock v1.2.0 h1:28o5sBqPkBsMGnC6b4MvE2TzSr5/AT4c/1fLqVGIwlk=
 github.com/golang/mock v1.2.0/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
 github.com/inconshreveable/go-vhost v0.0.0-20160627193104-06d84117953b h1:IpLPmn6Re21F0MaV6Zsc5RdSE6KuoFpWmHiUSEs3PrE=
diff --git a/integration_test.go b/integration_test.go
diff --git a/keepalive.go b/keepalive.go
diff --git a/keepalive_windows.go b/keepalive_windows.go
diff --git a/server.go b/server.go
diff --git a/tcpproxy.go b/tcpproxy.go
