setting a proxy overrides listen_interfaces

2020-04-03 02:57:00 +02:00 · 2020-04-03 02:57:00 +02:00 · 05e6501f16
parent f8d0bd18e4
commit 05e6501f16
4 changed files with 103 additions and 74 deletions
--- a/1
+++ b/1
@ -1,3 +1,4 @@
+	* simplify proxy handling. A proxy now overrides listen_interfaces
 	* fix issues when configured to use a non-default choking algorithm
 	* fix issue in reading resume data
 	* revert NXDOMAIN change from 1.2.4
--- a/include/libtorrent/aux_/session_impl.hpp
+++ b/include/libtorrent/aux_/session_impl.hpp
@ -151,6 +151,10 @@ namespace aux {
 		// listen on an unspecified address (either IPv4 or IPv6)
 		static constexpr listen_socket_flags_t was_expanded = 2_bit;

+		// there's a proxy configured, and this is the only one interface
+		// representing that one proxy
+		static constexpr listen_socket_flags_t proxy = 3_bit;
+
 		listen_socket_t() = default;

 		// listen_socket_t should not be copied or moved because
--- a/include/libtorrent/settings_pack.hpp
+++ b/include/libtorrent/settings_pack.hpp
@ -284,7 +284,14 @@ namespace aux {
 			listen_interfaces,

 			// when using a proxy, this is the hostname where the proxy is running
-			// see proxy_type.
+			// see proxy_type. Note that when using a proxy, the
+			// settings_pack::listen_interfaces setting is overridden and only a
+			// single interface is created, just to contact the proxy. This
+			// means a proxy cannot be combined with SSL torrents or multiple
+			// listen interfaces. This proxy listen interface will not accept
+			// incoming TCP connections, will not map ports with any gateway and
+			// will not enable local service discovery. All traffic is supposed
+			// to be channeled through the proxy.
 			proxy_hostname,

 			// when using a proxy, these are the credentials (if any) to use when
--- a/src/session_impl.cpp
+++ b/src/session_impl.cpp
@ -201,6 +201,7 @@ namespace aux {
 	constexpr listen_socket_flags_t listen_socket_t::accept_incoming;
 	constexpr listen_socket_flags_t listen_socket_t::local_network;
 	constexpr listen_socket_flags_t listen_socket_t::was_expanded;
+	constexpr listen_socket_flags_t listen_socket_t::proxy;

 	constexpr ip_source_t session_interface::source_dht;
 	constexpr ip_source_t session_interface::source_peer;
@ -321,6 +322,9 @@ namespace aux {

 	bool listen_socket_t::can_route(address const& addr) const
 	{
+		// if this is a proxy, we assume it can reach everything
+		if (flags & proxy) return true;
+
 		if (is_v4(local_endpoint) != addr.is_v4()) return false;

 		if (local_endpoint.address().is_v6()
@ -1348,7 +1352,11 @@ namespace {
 #endif
 			(pack.has_val(settings_pack::listen_interfaces)
 				&& pack.get_str(settings_pack::listen_interfaces)
-					!= m_settings.get_str(settings_pack::listen_interfaces));
+					!= m_settings.get_str(settings_pack::listen_interfaces))
+			|| (pack.has_val(settings_pack::proxy_type)
+				&& pack.get_int(settings_pack::proxy_type)
+					!= m_settings.get_int(settings_pack::proxy_type))
+			;

 #ifndef TORRENT_DISABLE_LOGGING
 		session_log("applying settings pack, reopen_listen_port=%s"
@ -1380,12 +1388,13 @@ namespace {
 #ifndef TORRENT_DISABLE_LOGGING
 		if (should_log())
 		{
-			session_log("attempting to open listen socket to: %s on device: %s %s%s%s%s"
+			session_log("attempting to open listen socket to: %s on device: %s %s%s%s%s%s"
 				, print_endpoint(bind_ep).c_str(), lep.device.c_str()
 				, (lep.ssl == transport::ssl) ? "ssl " : ""
 				, (lep.flags & listen_socket_t::local_network) ? "local-network " : ""
 				, (lep.flags & listen_socket_t::accept_incoming) ? "accept-incoming " : "no-incoming "
-				, (lep.flags & listen_socket_t::was_expanded) ? "expanded-ip " : "");
+				, (lep.flags & listen_socket_t::was_expanded) ? "expanded-ip " : ""
+				, (lep.flags & listen_socket_t::proxy) ? "proxy " : "");
 		}
 #endif

@ -1825,6 +1834,22 @@ namespace {
 		// of a new socket failing to bind due to a conflict with a stale socket
 		std::vector<listen_endpoint_t> eps;

+		if (m_settings.get_int(settings_pack::proxy_type) != settings_pack::none)
+		{
+			// we will be able to accept incoming connections over UDP. so use
+			// one of the ports the user specified to use a constistent port
+			// across sessions. If the user did not specify any ports, pick one
+			// at random
+			int const port = m_listen_interfaces.empty()
+				? int(random(63000) + 2000)
+				: m_listen_interfaces.front().port;
+			listen_endpoint_t ep(address_v4::any(), port, {}
+				, transport::plaintext, listen_socket_t::proxy);
+			eps.emplace_back(ep);
+		}
+		else
+		{
+
 			listen_socket_flags_t const flags
 				= (m_settings.get_int(settings_pack::proxy_type) != settings_pack::none)
 				? listen_socket_flags_t{}
@ -1880,6 +1905,7 @@ namespace {

 			expand_unspecified_address(ifs, routes, eps);
 			expand_devices(ifs, eps);
+		}

 		auto remove_iter = partition_listen_sockets(eps, m_listen_sockets);

@ -5391,13 +5417,15 @@ namespace {
 		if (m_listen_sockets.empty()) return 0;
 		if (sock)
 		{
-			if (!(sock->flags & listen_socket_t::accept_incoming)) return 0;
 			// if we're using a proxy, we won't be able to accept any TCP
 			// connections. We may be able to accept uTP connections though, so
 			// announce the UDP port instead
-			if (m_settings.get_int(settings_pack::proxy_type) != settings_pack::none)
+			if (sock->flags & listen_socket_t::proxy)
 				return std::uint16_t(sock->udp_external_port());
-			else
+
+			if (!(sock->flags & listen_socket_t::accept_incoming))
+				return 0;
+
 			return std::uint16_t(sock->tcp_external_port());
 		}

@ -5406,13 +5434,8 @@ namespace {
 		{
 			if (!(s->flags & listen_socket_t::accept_incoming)) continue;
 			if (s->ssl == transport::plaintext)
-			{
-				if (m_settings.get_int(settings_pack::proxy_type) != settings_pack::none)
-					return std::uint16_t(s->udp_external_port());
-				else
 				return std::uint16_t(s->tcp_external_port());
 		}
-		}
 		return 0;
 #else
 		sock = m_listen_sockets.front().get();
@ -5434,13 +5457,6 @@ namespace {
 		if (sock)
 		{
 			if (!(sock->flags & listen_socket_t::accept_incoming)) return 0;
-
-			// if we're using a proxy, we won't be able to accept any TCP
-			// connections. We may be able to accept uTP connections though, so
-			// announce the UDP port instead
-			if (m_settings.get_int(settings_pack::proxy_type) != settings_pack::none)
-				return std::uint16_t(sock->udp_external_port());
-			else
 			return std::uint16_t(sock->tcp_external_port());
 		}

@ -5451,13 +5467,8 @@ namespace {
 		{
 			if (!(s->flags & listen_socket_t::accept_incoming)) continue;
 			if (s->ssl == transport::ssl)
-			{
-				if (m_settings.get_int(settings_pack::proxy_type) != settings_pack::none)
-					return std::uint16_t(s->udp_external_port());
-				else
 				return std::uint16_t(s->tcp_external_port());
 		}
-		}
 #else
 		TORRENT_UNUSED(sock);
 #endif
@ -5543,7 +5554,9 @@ namespace {
 		if (is_v6(s.local_endpoint) && is_local(s.local_endpoint.address()))
 			return;

-		if (!s.natpmp_mapper && !(s.flags & listen_socket_t::local_network))
+		if (!s.natpmp_mapper
+			&& !(s.flags & listen_socket_t::local_network)
+			&& !(s.flags & listen_socket_t::proxy))
 		{
 			// the natpmp constructor may fail and call the callbacks
 			// into the session_impl.
@ -6730,6 +6743,9 @@ namespace {

 		for (auto& s : m_listen_sockets)
 		{
+			// we're not looking for local peers when we're using a proxy. We
+			// want all traffic to go through the proxy
+			if (s->flags & listen_socket_t::proxy) continue;
 			if (s->lsd) continue;
 			s->lsd = std::make_shared<lsd>(m_io_service, *this, s->local_endpoint.address()
 				, s->netmask);
@ -6775,7 +6791,8 @@ namespace {
 		// there's no point in starting the UPnP mapper for a network that isn't
 		// connected to the internet. The whole point is to forward ports through
 		// the gateway
-		if (s.flags & listen_socket_t::local_network)
+		if ((s.flags & listen_socket_t::local_network)
+			|| (s.flags & listen_socket_t::proxy))
 			return;

 		if (!s.upnp_mapper)