new dump_limit_window parameter: limit dump size within a time window

Author: cyrilst

Makefile

@@ -1,4 +1,4 @@
-SSHPROXY_VERSION ?= 1.2.0
+SSHPROXY_VERSION ?= 1.3.0
 SSHPROXY_GIT_URL ?= github.com/cea-hpc/sshproxy
 
 prefix		?= /usr

README.asciidoc

@@ -75,10 +75,11 @@ license. See the included files +Licence_CeCILL-B_V1-en.txt+ (English version)
 and +Licence_CeCILL-B_V1-fr.txt+ (French version) or visit
 http://www.cecill.info for details.
 
-Author
-------
+Authors
+-------
 
 Arnaud Guignard <[email protected]>
+Cyril Servant <[email protected]>
 
 Documentation
 -------------

cmd/sshproxy-dumpd/sshproxy-dumpd.go

@@ -1,5 +1,6 @@
 // Copyright 2015-2020 CEA/DAM/DIF
-//  Contributor: Arnaud Guignard <[email protected]>
+//  Author: Arnaud Guignard <[email protected]>
+//  Contributor: Cyril Servant <[email protected]>
 //
 // This software is governed by the CeCILL-B license under French law and
 // abiding by the rules of distribution of free software.  You can  use,

cmd/sshproxy-replay/sshproxy-replay.go

@@ -1,5 +1,6 @@
 // Copyright 2015-2020 CEA/DAM/DIF
-//  Contributor: Arnaud Guignard <[email protected]>
+//  Author: Arnaud Guignard <[email protected]>
+//  Contributor: Cyril Servant <[email protected]>
 //
 // This software is governed by the CeCILL-B license under French law and
 // abiding by the rules of distribution of free software.  You can  use,

cmd/sshproxy/commands.go

@@ -1,5 +1,6 @@
 // Copyright 2015-2020 CEA/DAM/DIF
-//  Contributor: Arnaud Guignard <[email protected]>
+//  Author: Arnaud Guignard <[email protected]>
+//  Contributor: Cyril Servant <[email protected]>
 //
 // This software is governed by the CeCILL-B license under French law and
 // abiding by the rules of distribution of free software.  You can  use,

cmd/sshproxy/recorder.go

@@ -1,5 +1,6 @@
 // Copyright 2015-2020 CEA/DAM/DIF
-//  Contributor: Arnaud Guignard <[email protected]>
+//  Author: Arnaud Guignard <[email protected]>
+//  Contributor: Cyril Servant <[email protected]>
 //
 // This software is governed by the CeCILL-B license under French law and
 // abiding by the rules of distribution of free software.  You can  use,
@@ -98,6 +99,7 @@ type Recorder struct {
 	command               string             // initial user command
 	dumpfile              string             // path to filename where the raw records are dumped
 	dumpLimitSize         uint64             // number of bytes beyond which records are no longer dumped
+	dumpLimitWindow       time.Duration      // time window in which dump size is accounted
 	writer                *record.Writer     // *record.Writer where the raw records are dumped
 }
 
@@ -106,7 +108,7 @@ type Recorder struct {
 // If dumpfile is not empty, the intercepted raw data will be written in this
 // file. Logging of basic statistics will be done every logStatsInterval seconds. Bandwidth will be updated in etcd every etcdStatsInterval seconds.
 // It will stop recording when the context is cancelled.
-func NewRecorder(conninfo *ConnInfo, dumpfile, command string, etcdStatsInterval time.Duration, logStatsInterval time.Duration, dumpLimitSize uint64) *Recorder {
+func NewRecorder(conninfo *ConnInfo, dumpfile, command string, etcdStatsInterval time.Duration, logStatsInterval time.Duration, dumpLimitSize uint64, dumpLimitWindow time.Duration) *Recorder {
 	ch := make(chan record.Record)
 
 	return &Recorder{
@@ -122,6 +124,7 @@ func NewRecorder(conninfo *ConnInfo, dumpfile, command string, etcdStatsInterval
 		command:           command,
 		dumpfile:          dumpfile,
 		dumpLimitSize:     dumpLimitSize,
+		dumpLimitWindow:   dumpLimitWindow,
 		writer:            nil,
 	}
 }
@@ -231,6 +234,12 @@ func (r *Recorder) Run(ctx context.Context, cli *utils.Client, etcdPath string)
 			}
 		}()
 	}
+	bw := uint64(0)
+	bwBuf := uint64(0)
+	var bwTimeout <-chan time.Time
+	if r.dumpLimitWindow != 0 {
+		bwTimeout = time.After(r.dumpLimitWindow)
+	}
 	if r.etcdStatsInterval != 0 {
 		go func() {
 			for {
@@ -252,16 +261,22 @@ func (r *Recorder) Run(ctx context.Context, cli *utils.Client, etcdPath string)
 					r.bandwidth[i] = buf[i] / uint64(r.etcdStatsInterval.Seconds())
 					buf[i] = 0
 				}
+			case <-bwTimeout:
+				bwTimeout = time.After(r.dumpLimitWindow)
+				bw = bwBuf
+				bwBuf = 0
 			case rec := <-r.ch:
 				buf[rec.Fd] += uint64(rec.Size)
 				r.totals[rec.Fd] += uint64(rec.Size)
 				if r.writer != nil {
-					r.dump(rec)
-					if r.dumpLimitSize != 0 && r.totals[rec.Fd] > r.dumpLimitSize {
+					if r.dumpLimitSize == 0 || (bw < r.dumpLimitSize && bwBuf < r.dumpLimitSize) {
+						r.dump(rec)
+					} else if r.dumpLimitWindow == 0 {
 						fd.Close()
 						fd = nil
 						r.writer = nil
 					}
+					bwBuf += uint64(rec.Size)
 				}
 			case <-ctx.Done():
 				return
@@ -270,15 +285,21 @@ func (r *Recorder) Run(ctx context.Context, cli *utils.Client, etcdPath string)
 	} else {
 		for {
 			select {
+			case <-bwTimeout:
+				bwTimeout = time.After(r.dumpLimitWindow)
+				bw = bwBuf
+				bwBuf = 0
 			case rec := <-r.ch:
 				r.totals[rec.Fd] += uint64(rec.Size)
 				if r.writer != nil {
-					r.dump(rec)
-					if r.dumpLimitSize != 0 && r.totals[rec.Fd] > r.dumpLimitSize {
+					if r.dumpLimitSize == 0 || (bw < r.dumpLimitSize && bwBuf < r.dumpLimitSize) {
+						r.dump(rec)
+					} else if r.dumpLimitWindow == 0 {
 						fd.Close()
 						fd = nil
 						r.writer = nil
 					}
+					bwBuf += uint64(rec.Size)
 				}
 			case <-ctx.Done():
 				return

cmd/sshproxy/sshproxy.go

@@ -1,5 +1,6 @@
 // Copyright 2015-2020 CEA/DAM/DIF
-//  Contributor: Arnaud Guignard <[email protected]>
+//  Author: Arnaud Guignard <[email protected]>
+//  Contributor: Cyril Servant <[email protected]>
 //
 // This software is governed by the CeCILL-B license under French law and
 // abiding by the rules of distribution of free software.  You can  use,
@@ -301,6 +302,7 @@ func mainExitCode() int {
 	log.Debugf("config.check_interval = %s", config.CheckInterval.Duration())
 	log.Debugf("config.dump = %s", config.Dump)
 	log.Debugf("config.dump_limit_size = %d", config.DumpLimitSize)
+	log.Debugf("config.dump_limit_window = %s", config.DumpLimitWindow.Duration())
 	log.Debugf("config.etcd_stats_interval = %s", config.EtcdStatsInterval.Duration())
 	log.Debugf("config.log_stats_interval = %s", config.LogStatsInterval.Duration())
 	log.Debugf("config.etcd = %+v", config.Etcd)
@@ -423,6 +425,10 @@ func mainExitCode() int {
 				"-oForwardAgent=no", "-oPermitLocalCommand=no",
 				"-oClearAllForwardings=yes", "-oProtocol=2",
 				"-s", "--", host, "sftp")
+			if config.Dump != "" {
+				// We don't want to dump sftp connections
+				config.Dump = "etcd"
+			}
 		} else {
 			if interactiveCommand {
 				// Force TTY allocation because the user probably asked for it.
@@ -438,7 +444,7 @@ func mainExitCode() int {
 
 	var recorder *Recorder
 	if config.Dump != "" {
-		recorder = NewRecorder(conninfo, config.Dump, originalCmd, config.EtcdStatsInterval.Duration(), config.LogStatsInterval.Duration(), config.DumpLimitSize)
+		recorder = NewRecorder(conninfo, config.Dump, originalCmd, config.EtcdStatsInterval.Duration(), config.LogStatsInterval.Duration(), config.DumpLimitSize, config.DumpLimitWindow.Duration())
 
 		wg.Add(1)
 		go func() {

cmd/sshproxyctl/sshproxyctl.go

@@ -1,5 +1,6 @@
 // Copyright 2015-2020 CEA/DAM/DIF
-//  Contributor: Arnaud Guignard <[email protected]>
+//  Author: Arnaud Guignard <[email protected]>
+//  Contributor: Cyril Servant <[email protected]>
 //
 // This software is governed by the CeCILL-B license under French law and
 // abiding by the rules of distribution of free software.  You can  use,

config/sshproxy.yaml

@@ -28,19 +28,32 @@
 # 'TCP:host:port' (the TCP is case sensitive), e.g. 'TCP:collector:5555'.
 #dump: ""
 
-# Maximum size of a dump (bytes). Beyond the limit, records are no more dumped.
-# Defaults to 0 (no limit).
+# Maximum amount of bytes of a dump. Setting the 'dump_limit_window' option
+# will limit the amount of bytes per window. This option is only useful if the
+# 'dump' option is set to a file or to a network address. Defaults to 0 (no
+# limit).
 #dump_limit_size: 0
 
+# Duration of a dump measurement window. "0" by default, the string can contain
+# a unit suffix such as 'h', 'm' and 's' (e.g. "2m30s"). When set to "0", a
+# dump will stop once it's too big (and the dump's file descriptor will be
+# closed. When set to a duration, the dump will pause when there is too much
+# data transferred in the current window (or the previous), and will resume
+# when few enough data are transferred during the previous window and the
+# current one. This option is only useful when the 'dump_limit_size' option is
+# set.
+#dump_limit_window: "0"
+
 # Interval at which basic statistics of transferred bytes are logged.
-# "0" by default, the string can contain a unit suffix such as 'h', 'm' and
-# 's' (e.g. "2m30s"). These statistics are only available when the 'dump'
-# option is set.
+# "0" by default (i.e. disabled), the string can contain a unit suffix such as
+# 'h', 'm' and 's' (e.g. "2m30s"). These statistics are only available when the
+# 'dump' option is set.
 #log_stats_interval: "0"
 
-# Interval at which bandwidth is updated in etcd. 0 by default, the string can
-# contain a unit suffix such as 'h', 'm' and 's' (e.g. "2m30s"). These
-# statistics are only available when the 'dump' option is set.
+# Interval at which bandwidth is updated in etcd. "0" by default (i.e.
+# disabled), the string can contain a unit suffix such as 'h', 'm' and 's'
+# (e.g. "2m30s"). These statistics are only available when the 'dump' option is
+# set.
 #etcd_stats_interval: "0"
 
 # A command can be launched in the background for the session duration.

doc/sshproxy-dumpd.txt

@@ -44,7 +44,8 @@ SEE ALSO
 
 AUTHORS
 -------
-sshproxy-dumpd was written by Arnaud Guignard <arnaud[email protected]>.
+sshproxy-dumpd was written by Arnaud Guignard <arnaud[email protected]> and
+Cyril Servant <cyril[email protected]>.
 
 COPYING
 -------