allow 127.0.0.1 in bindTo #851
Conversation
ArneBab
force-pushed
the
allow-127.0.0.1-in-bindTo
branch
from
aa8bc85 to
f9b449a
Compare
ArneBab
force-pushed
the
allow-127.0.0.1-in-bindTo
branch
from
a168b0d to
86bca5f
Compare
|
I now added a config option for this. |
ArneBab
force-pushed
the
allow-127.0.0.1-in-bindTo
branch
from
86bca5f to
f783938
Compare
src/freenet/node/NodeIPDetector.java
Outdated
|
|
||
| @Override | ||
| public void set(Boolean val) throws NodeNeedRestartException { | ||
| if (allowBindToLocalhost != val) { |
There was a problem hiding this comment.
This will throw a NullPointerException if val is null.
src/freenet/node/NodeIPDetector.java
Outdated
| @Override | ||
| public void set(Boolean val) throws NodeNeedRestartException { | ||
| if (allowBindToLocalhost != val) { | ||
| synchronized(this) { |
There was a problem hiding this comment.
This synchronization is broken, as long as there are places where allowBindToLocalhost is accessed without synchronization, such as in the get() method.
There was a problem hiding this comment.
This change belongs to a different pull request, doesn’t it?
|
Binding to localhost already works for darknet node, at least I can decode 127.0.0.1:port from my base64 encoded physical.udp line, so this feature is only related to opennet mode. In this case, shouldn't we register config as We could add a comment that it should probably (not mandatory) be used along with Also, would be good to add A sane description would be for this config param (of please someone make it shorter if possible, I'm not too good at shorting phrases): "In Opennet mode it would be impossible for someone else to connect to your node using the localhost loopback address. This feature is needed if you use other applications that provides a reachable address of any sort and proxies that to localhost. Currently this node has no way to guess those kind of addresses and add them to your physical.udp line, and there might be no other peers that can reach certain type of addresses. Set this to "true" only if you know what you are doing". It would be really neat if this would make it into the next. Covers at least few use cases reported on FMS. |
| * @param set accepts the new value and return an Exception or null (if no exception) | ||
| */ | ||
| public static <T> ConfigCallback<T> from(Supplier<T> get, Function<T, Exception> set) { | ||
| return new ConfigCallback<T>() { |
There was a problem hiding this comment.
Did somebody forget to write a test for this? 🤣
There was a problem hiding this comment.
Yes. That was „I can do this quickly before going to bed“ 😓
| * | ||
| * @param set accepts the new value and return an Exception or null (if no exception) | ||
| */ | ||
| public static <T> ConfigCallback<T> from(Supplier<T> get, Function<T, Exception> set) { |
There was a problem hiding this comment.
I get why you’re doing this but functions returning exceptions rub me all kinds of wrong ways. I’d prefer something like this:
public interface ConfigConsumer<T> {
void accept(T value) throws InvalidConfigValueException, NodeNeedRestartException;
}This way we don’t need casting in the set() method, and we don’t have to return anything from the Consumer.
There was a problem hiding this comment.
that’s much nicer — thank you!
src/freenet/node/NodeIPDetector.java
Outdated
| @@ -63,7 +65,7 @@ public void shouldUpdate(){ | |||
| /** Explicit forced IP address in string form because we want to keep it even if it's invalid and therefore unused */ | |||
| String overrideIPAddressString; | |||
| /** config: allow bindTo localhost? */ | |||
| boolean allowBindToLocalhost; | |||
| Boolean allowBindToLocalhost; | |||
There was a problem hiding this comment.
Is this actually necessary? The compiler should take care of all the boxing/unboxing…
There was a problem hiding this comment.
No it isn’t — thank you!
| import freenet.config.ConfigCallback; | ||
|
|
||
| /** | ||
| * A callback to be called when a config value of integer type changes. | ||
| * Also reports the current value. | ||
| */ | ||
| public abstract class BooleanCallback extends ConfigCallback<Boolean> { | ||
| public static BooleanCallback fromBoolean(Supplier<Boolean> get, Function<Boolean, Exception> set) { | ||
| return (BooleanCallback) ConfigCallback.from(get, set); |
There was a problem hiding this comment.
Uhm… this is not how casting works. ConfigCallback.from returns a ConfigCallback object, no amount of casting will magically turn it into a BooleanCallback.
You know, you would have caught that if you had written tests for this. 😠
ArneBab
force-pushed
the
allow-127.0.0.1-in-bindTo
branch
from
ec8a54f to
94d4685
Compare
|
accidentally merged, then undid that merging |
|
I didn’t find a way to actually undo the closing here, so please check here: #951 I’m sorry for the inconvenience :-( |
For a Tor bridge that excludes all other IPs from the noderef to avoid spilling the real IP