From 1ea8dd1cfbc95aff4b0ee6a468d5908bba8ed293 Mon Sep 17 00:00:00 2001 From: Gus Eggert Date: Mon, 5 Dec 2022 17:01:41 -0500 Subject: [PATCH] routing/http: feat: limit the resp body payload --- routing/http/client/client.go | 8 ++- routing/http/client/transport.go | 38 +++++++++++++ routing/http/client/transport_test.go | 77 +++++++++++++++++++++++++++ 3 files changed, 122 insertions(+), 1 deletion(-) create mode 100644 routing/http/client/transport.go create mode 100644 routing/http/client/transport_test.go diff --git a/routing/http/client/client.go b/routing/http/client/client.go index f20b9327b..de37c9a49 100644 --- a/routing/http/client/client.go +++ b/routing/http/client/client.go @@ -72,9 +72,15 @@ func WithProviderInfo(peerID peer.ID, addrs []multiaddr.Multiaddr) option { // New creates a content routing API client. // The Provider and identity parameters are option. If they are nil, the `Provide` method will not function. func New(baseURL string, opts ...option) (*client, error) { + defaultHTTPClient := &http.Client{ + Transport: &ResponseBodyLimitedTransport{ + RoundTripper: http.DefaultTransport, + LimitBytes: 1 << 20, + }, + } client := &client{ baseURL: baseURL, - httpClient: http.DefaultClient, + httpClient: defaultHTTPClient, validator: ipns.Validator{}, clock: clock.New(), } diff --git a/routing/http/client/transport.go b/routing/http/client/transport.go new file mode 100644 index 000000000..ea9920463 --- /dev/null +++ b/routing/http/client/transport.go @@ -0,0 +1,38 @@ +package client + +import ( + "fmt" + "io" + "net/http" +) + +type ResponseBodyLimitedTransport struct { + http.RoundTripper + LimitBytes int64 +} + +func (r *ResponseBodyLimitedTransport) RoundTrip(req *http.Request) (*http.Response, error) { + resp, err := r.RoundTripper.RoundTrip(req) + if resp != nil && resp.Body != nil { + resp.Body = &limitReadCloser{ + limit: r.LimitBytes, + ReadCloser: resp.Body, + } + } + return resp, err +} + +type limitReadCloser struct { + limit int64 + bytesRead int64 + io.ReadCloser +} + +func (l *limitReadCloser) Read(p []byte) (int, error) { + n, err := l.ReadCloser.Read(p) + l.bytesRead += int64(n) + if l.bytesRead > l.limit { + return 0, fmt.Errorf("reached read limit of %d bytes after reading %d bytes", l.limit, l.bytesRead) + } + return n, err +} diff --git a/routing/http/client/transport_test.go b/routing/http/client/transport_test.go new file mode 100644 index 000000000..9e50a76ed --- /dev/null +++ b/routing/http/client/transport_test.go @@ -0,0 +1,77 @@ +package client + +import ( + "io" + "net/http" + "net/http/httptest" + "testing" + + "github.com/stretchr/testify/assert" + "github.com/stretchr/testify/require" +) + +type testServer struct { + bytesToWrite int +} + +func (s *testServer) ServeHTTP(w http.ResponseWriter, r *http.Request) { + bytes := make([]byte, s.bytesToWrite) + for i := 0; i < s.bytesToWrite; i++ { + bytes[i] = 'a' + } + _, err := w.Write(bytes) + if err != nil { + panic(err) + } +} + +func TestResponseBodyLimitedTransport(t *testing.T) { + for _, c := range []struct { + name string + limit int64 + serverSend int + + expErr string + }{ + { + name: "under the limit should succeed", + limit: 1 << 20, + serverSend: 1 << 19, + }, + { + name: "over the limit should fail", + limit: 1 << 20, + serverSend: 1 << 21, + expErr: "reached read limit of 1048576 bytes after reading", + }, + { + name: "exactly on the limit should succeed", + limit: 1 << 20, + serverSend: 1 << 20, + }, + } { + t.Run(c.name, func(t *testing.T) { + server := httptest.NewServer(&testServer{bytesToWrite: c.serverSend}) + t.Cleanup(server.Close) + + client := server.Client() + client.Transport = &ResponseBodyLimitedTransport{ + LimitBytes: c.limit, + RoundTripper: client.Transport, + } + + resp, err := client.Get(server.URL) + require.NoError(t, err) + defer resp.Body.Close() + + _, err = io.ReadAll(resp.Body) + + if c.expErr == "" { + assert.NoError(t, err) + } else { + assert.Contains(t, err.Error(), c.expErr) + } + + }) + } +}