Gitiles
Code Review Sign In
realtimeroboticsgroup.org / RealtimeRoboticsGroup / test / b0e439d87c7916e369da7c0d32d141bb001570b3^! / . / aos / network / message_bridge_protocol.cc
commitb0e439d87c7916e369da7c0d32d141bb001570b3[log] [tgz]
authorAustin Schuh <austin.schuh@bluerivertech.com>Mon May 15 10:55:40 2023 -0700
committerAustin Schuh <austin.schuh@bluerivertech.com>Mon May 15 14:41:06 2023 -0700
tree0b6666adaa04a1b14720fe09eb3b1999f58684ac
parent4ec3e75f0b2b07f0cdfdaf6edc84430c9b462ce4 [diff] [blame]
Only allow message_bridge to connect with matching config sha256

We've been seeing a ton of crashes becasue the config doesn't match, and
a node is out of range, or the client is asking for a channel which
doesn't exist.  Honestly, there is no real use case at this point in
time for accepting connections from clients who aren't running the same
code.  We can't read the logs if we were to allow it, and the effort
required to support that is massive.  We'll probably run into send too
fast issues, would run into flatbuffer version problems (maybe), and all
sorts of other problems.  The cost to reward ratio doesn't work.

So, as part of connecting, send the sha256 sum of the config.  The
server will disconnect any clients who don't have a matching config, and
increment a counter in the status message.

Change-Id: I99520713efc644252f2c7cf5dc53720c4fc19974
Signed-off-by: Austin Schuh <austin.schuh@bluerivertech.com>

diff --git a/aos/network/message_bridge_protocol.cc b/aos/network/message_bridge_protocol.cc
index 87114ed..a0c68d4 100644
--- a/aos/network/message_bridge_protocol.cc
+++ b/aos/network/message_bridge_protocol.cc

@@ -13,7 +13,8 @@
 
 aos::FlatbufferDetachedBuffer<aos::message_bridge::Connect> MakeConnectMessage(
     const Configuration *config, const Node *my_node,
-    std::string_view remote_name, const UUID &boot_uuid) {
+    std::string_view remote_name, const UUID &boot_uuid,
+    std::string_view config_sha256) {
   CHECK(config->has_nodes()) << ": Config must have nodes to transfer.";
 
   flatbuffers::FlatBufferBuilder fbb;
@@ -46,10 +47,14 @@
   flatbuffers::Offset<flatbuffers::Vector<flatbuffers::Offset<Channel>>>
       channels_offset = fbb.CreateVector(channel_offsets);
 
+  flatbuffers::Offset<flatbuffers::String> config_sha256_offset =
+      fbb.CreateString(config_sha256);
+
   Connect::Builder connect_builder(fbb);
   connect_builder.add_channels_to_transfer(channels_offset);
   connect_builder.add_node(node_offset);
   connect_builder.add_boot_uuid(boot_uuid_offset);
+  connect_builder.add_config_sha256(config_sha256_offset);
   fbb.Finish(connect_builder.Finish());
 
   return fbb.Release();