pan: policy-based path-aware SCION application library

This is a first version of the pan "Path-Aware Networking" library.

The pan library represents the path selection process for SCION
connections by Policies, which filter and order the paths based on the
information included in the path metadata, and Selectors, which
dynamically select the final path for each packet sent.
This gives a relatively simple interface for applications that directly
translates to an application user interface (e.g. command line
interface), and connections can automatically failover in case of SCMP
errors messages. The pan library can do the work for querying and
updating path information in the background.
A small number of default Policies and Selectors are built-in. In the
future, we might add more of these out of the box, but the idea is that
applications can also define custom Policies and Selectors.
See the package documentation for more information.

Currently uses inet.af/netaddr to represent IP addresses. This will be
replaced by the very similar net/netip once this becomes available,
expectedly in go-1.18.
Other than this, pan attempts to not expose external libraries in its
API and provide a self-contained interface.

All applications in scion-apps have been converted to pan, but these
changes will be committed separately.

Known issues in this first version:
- the DefaultReplySelector, i.e. the path selector on the listening
  side, is susceptible to session hijacking by spoofing source
  address.
- the stats DB is intentionally kept private as this requires more
  thought. For now, applications need to store their own stats separate
  from pans internal store.
- internal state of DefaultReplySelector and stats DB are never cleaned
  up and can grow without bounds.
- far too many globals

Add package quicutil:
- single stream quic utilities
  Using a single quic stream is common in our demo applications.
  Add a utility function for this, extracted from previous internal
  implementation in shttp.
  Incompatible to the previous version in shttp. Now either side can
  start sending (by using two unidirectional streams), plus it can now
  reliably close. The listener is also more robust; previously, if a
  remote session was opened without ever opening a stream, this would
  have blocked the listener Accept indefinitely.
- generate self-signed certificate (previously in appquic)

Updated example code:
- extend helloworld example and port to pan.
- add helloquic example, using pan

Misc:
- integration: use addr= instead of only ia= as "ready signal"
- remove appnet/appquic from main README as these packages are slated for removal.
- bugfixes backported to appnet: fix SplitHostPort (bad regex capture
  group index), extend addrFromString to work with addresses without the
  optional brackets.

Author: matzf

Makefile

@@ -12,7 +12,7 @@ DESTDIR = $(shell set -a; eval $$( go env ); gopath=$${GOPATH%:*}; echo $${GOBIN
 # HINT: build with TAGS=norains to build without rains support
 TAGS =
 
-all: lint build
+all: build lint
 
 build: scion-bat \
 	scion-bwtestclient scion-bwtestserver \
@@ -23,6 +23,7 @@ build: scion-bat \
 	scion-webapp \
 	scion-web-gateway \
 	example-helloworld \
+	example-helloquic \
 	example-hellodrkey \
 	example-shttp-client example-shttp-server example-shttp-fileserver example-shttp-proxy
 
@@ -97,6 +98,10 @@ scion-web-gateway:
 example-helloworld:
 	go build -tags=$(TAGS) -o $(BIN)/$@ ./_examples/helloworld/
 
+.PHONY: example-helloquic
+example-helloquic:
+	go build -tags=$(TAGS) -o $(BIN)/$@ ./_examples/helloquic/
+
 .PHONY: example-shttp-client
 example-shttp-client:
 	go build -tags=$(TAGS) -o $(BIN)/$@ ./_examples/shttp/client

README.md

@@ -93,13 +93,16 @@ resolver, in the form `<ISD>-<AS>,[<IP>]`.
 
 ## _examples
 
-The directory _examples contains a minimal "hello, world" application using SCION that sends one packet from a client to a server,
-as well as a simple "hello DRKey" application, showing how to use DRKey.
-The directory also contains small example programs that show how HTTP can be used over SCION/QUIC for servers, proxies, and clients.
-
-More documentation is available in the [helloworld README](_examples/helloworld/README.md), in the [hellodrkey README](_examples/hellodrkey/README.md)
-and in the [shttp README](_examples/shttp/README.md).
+The directory _examples contains examples for the usage of the SCION libraries.
 
+* [_examples/helloworld](_examples/helloworld/README.md):
+  A minimal "hello, world" application using UDP over SCION.
+* [_examples/helloquic](_examples/helloquic/README.md):
+  Example for the use of QUIC over SCION.
+* [_examples/hellodrkey](_examples/hellodrkey/README.md):
+  Example for the the use of DRKey.
+* [_examples/shttp](_examples/shttp/README.md):
+  Examples for using HTTP over SCION/QUIC, examples for servers, proxies, and clients.
 
 ## bat
 
@@ -124,10 +127,10 @@ netcat contains a SCION port of the netcat application. See the [netcat README](
 
 Pkg contains underlaying library code for scion-apps.
 
-- appnet: simplified and functionally extended wrapper interfaces for the SCION core libraries
-- appquic: a simple interface to use QUIC over SCION
+- pan: Policy-based, path aware networking library, wrapper for the SCION core libraries
 - shttp: glue library to use net/http libraries for HTTP over SCION
 - shttp3: glue library to use quic-go/http3 for HTTP/3 over SCION
+- quicutil: contains utilities for working with QUIC
 - integration: a simple framework to support intergration testing for the demo applications in this repository
 
 

_examples/helloquic/README.md

@@ -0,0 +1,17 @@
+# Hello QUIC
+
+A simple echo server, demonstrating the use of QUIC over SCION.
+The client creates a QUIC stream per echo request. The server reads the
+entire stream content and echos it back to the client.
+
+Server:
+```
+go run helloquic.go -port 1234
+```
+
+Client:
+```
+go run helloquic.go -remote 17-ffaa:1:a,[127.0.0.1]:1234
+```
+
+Replace `17-ffaa:1:a` with the address of the AS in which the server is running.

_examples/helloquic/helloquic.go

@@ -0,0 +1,146 @@
+// Copyright 2021 ETH Zurich
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//   http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package main
+
+import (
+	"context"
+	"crypto/tls"
+	"errors"
+	"flag"
+	"fmt"
+	"io/ioutil"
+	"os"
+	"time"
+
+	"github.com/lucas-clemente/quic-go"
+	"inet.af/netaddr"
+
+	"github.com/netsec-ethz/scion-apps/pkg/pan"
+	"github.com/netsec-ethz/scion-apps/pkg/quicutil"
+)
+
+func main() {
+	var err error
+	// get local and remote addresses from program arguments:
+	var listen pan.IPPortValue
+	flag.Var(&listen, "listen", "[Server] local IP:port to listen on")
+	remoteAddr := flag.String("remote", "", "[Client] Remote (i.e. the server's) SCION Address (e.g. 17-ffaa:1:1,[127.0.0.1]:12345)")
+	count := flag.Uint("count", 1, "[Client] Number of messages to send")
+	flag.Parse()
+
+	if (listen.Get().Port() > 0) == (len(*remoteAddr) > 0) {
+		check(fmt.Errorf("Either specify -port for server or -remote for client"))
+	}
+
+	if listen.Get().Port() > 0 {
+		err = runServer(listen.Get())
+		check(err)
+	} else {
+		err = runClient(*remoteAddr, int(*count))
+		check(err)
+	}
+}
+
+func runServer(listen netaddr.IPPort) error {
+	tlsCfg := &tls.Config{
+		Certificates: quicutil.MustGenerateSelfSignedCert(),
+		NextProtos:   []string{"hello-quic"},
+	}
+	listener, err := pan.ListenQUIC(context.Background(), listen, nil, tlsCfg, nil)
+	if err != nil {
+		return err
+	}
+	defer listener.Close()
+	fmt.Println(listener.Addr())
+
+	for {
+		session, err := listener.Accept(context.Background())
+		if err != nil {
+			return err
+		}
+		fmt.Println("New session", session.RemoteAddr())
+		go func() {
+			err := workSession(session)
+			if err != nil && !errors.Is(err, &quic.ApplicationError{}) {
+				fmt.Println("Error in session", session.RemoteAddr(), err)
+			}
+		}()
+	}
+}
+
+func workSession(session quic.Session) error {
+	for {
+		stream, err := session.AcceptStream(context.Background())
+		if err != nil {
+			return err
+		}
+		defer stream.Close()
+		data, err := ioutil.ReadAll(stream)
+		if err != nil {
+			return err
+		}
+		fmt.Printf("%s\n", data)
+		_, err = stream.Write([]byte("gotcha: "))
+		_, err = stream.Write(data)
+		if err != nil {
+			return err
+		}
+		stream.Close()
+	}
+}
+
+func runClient(address string, count int) error {
+	addr, err := pan.ResolveUDPAddr(address)
+	if err != nil {
+		return err
+	}
+	tlsCfg := &tls.Config{
+		InsecureSkipVerify: true,
+		NextProtos:         []string{"hello-quic"},
+	}
+	// Set Pinging Selector with active probing on two paths
+	selector := &pan.PingingSelector{
+		Interval: 2 * time.Second,
+		Timeout:  time.Second,
+	}
+	selector.SetActive(2)
+	session, err := pan.DialQUIC(context.Background(), netaddr.IPPort{}, addr, nil, selector, "", tlsCfg, nil)
+	if err != nil {
+		return err
+	}
+	for i := 0; i < count; i++ {
+		stream, err := session.OpenStream()
+		if err != nil {
+			return err
+		}
+		_, err = stream.Write([]byte(fmt.Sprintf("hi dude, %d", i)))
+		if err != nil {
+			return err
+		}
+		stream.Close()
+		reply, err := ioutil.ReadAll(stream)
+		fmt.Printf("%s\n", reply)
+	}
+	session.CloseWithError(quic.ApplicationErrorCode(0), "")
+	return nil
+}
+
+// Check just ensures the error is nil, or complains and quits
+func check(e error) {
+	if e != nil {
+		fmt.Fprintln(os.Stderr, "Fatal error:", e)
+		os.Exit(1)
+	}
+}

_examples/helloworld/README.md

@@ -1,6 +1,7 @@
 # Hello World
 
-A simple application using SCION that sends one packet from a client to a server.
+A simple application using SCION that sends one packet from a client to a server
+which replies back.
 
 Server:
 ```
@@ -18,14 +19,15 @@ Replace `17-ffaa:1:a` with the address of the AS in which the server is running.
 
 This SCION application is very simple, and it demonstrates what is needed to send data using SCION:
 
-1. Validate command-line arguments.
 
 Server:
-2. Open listener connection (appnet.ListenPort).
-3. Read packets from connection.
-4. Close listener connection.
+1. Open listener connection (`pan.ListenUDP`).
+1. Read packets from connection (`conn.ReadFrom`).
+1. Write reply packet (`conn.WriteTo`).
+1. Close listener connection.
 
 Client:
-2. Open client connection (appnet.Dial).
-3. Write packet to connection.
-4. Close client connection.
+1. Open client connection (`pan.Dial`).
+1. Write packet to connection (`conn.Write`).
+1. Read reply packet (`conn.Read`), with timeout
+1. Close client connection.

_examples/helloworld/helloworld.go

@@ -15,39 +15,47 @@
 package main
 
 import (
+	"context"
+	"errors"
 	"flag"
 	"fmt"
 	"os"
+	"time"
 
-	"github.com/netsec-ethz/scion-apps/pkg/appnet"
+	"inet.af/netaddr"
+
+	"github.com/netsec-ethz/scion-apps/pkg/pan"
 )
 
 func main() {
 	var err error
 	// get local and remote addresses from program arguments:
-	port := flag.Uint("port", 0, "[Server] local port to listen on")
+	var listen pan.IPPortValue
+	flag.Var(&listen, "listen", "[Server] local IP:port to listen on")
 	remoteAddr := flag.String("remote", "", "[Client] Remote (i.e. the server's) SCION Address (e.g. 17-ffaa:1:1,[127.0.0.1]:12345)")
+	count := flag.Uint("count", 1, "[Client] Number of messages to send")
 	flag.Parse()
 
-	if (*port > 0) == (len(*remoteAddr) > 0) {
-		check(fmt.Errorf("Either specify -port for server or -remote for client"))
+	if (listen.Get().Port() > 0) == (len(*remoteAddr) > 0) {
+		check(fmt.Errorf("Either specify -listen for server or -remote for client"))
 	}
 
-	if *port > 0 {
-		err = runServer(uint16(*port))
+	if listen.Get().Port() > 0 {
+		err = runServer(listen.Get())
 		check(err)
 	} else {
-		err = runClient(*remoteAddr)
+		err = runClient(*remoteAddr, int(*count))
 		check(err)
 	}
 }
 
-func runServer(port uint16) error {
-	conn, err := appnet.ListenPort(port)
+func runServer(listen netaddr.IPPort) error {
+	conn, err := pan.ListenUDP(context.Background(), listen, nil)
 	if err != nil {
 		return err
 	}
 	defer conn.Close()
+	fmt.Println(conn.LocalAddr())
 
 	buffer := make([]byte, 16*1024)
 	for {
@@ -57,28 +65,48 @@ func runServer(port uint16) error {
 		}
 		data := buffer[:n]
 		fmt.Printf("Received %s: %s\n", from, data)
+		msg := fmt.Sprintf("take it back! %s", time.Now().Format("15:04:05.0"))
+		n, err = conn.WriteTo([]byte(msg), from)
+		fmt.Printf("Wrote %d bytes.\n", n)
 	}
 }
 
-func runClient(address string) error {
-	conn, err := appnet.Dial(address)
+func runClient(address string, count int) error {
+	addr, err := pan.ResolveUDPAddr(address)
 	if err != nil {
 		return err
 	}
-	defer conn.Close()
-
-	nBytes, err := conn.Write([]byte("hello world"))
+	conn, err := pan.DialUDP(context.Background(), netaddr.IPPort{}, addr, nil, nil)
 	if err != nil {
 		return err
 	}
-	fmt.Printf("Done. Wrote %d bytes.\n", nBytes)
+	defer conn.Close()
+
+	for i := 0; i < count; i++ {
+		nBytes, err := conn.Write([]byte(fmt.Sprintf("hello world %s", time.Now().Format("15:04:05.0"))))
+		if err != nil {
+			return err
+		}
+		fmt.Printf("Wrote %d bytes.\n", nBytes)
+
+		buffer := make([]byte, 16*1024)
+		conn.SetReadDeadline(time.Now().Add(1 * time.Second))
+		n, err := conn.Read(buffer)
+		if errors.Is(err, os.ErrDeadlineExceeded) {
+			continue
+		} else if err != nil {
+			return err
+		}
+		data := buffer[:n]
+		fmt.Printf("Received reply: %s\n", data)
+	}
 	return nil
 }
 
 // Check just ensures the error is nil, or complains and quits
 func check(e error) {
 	if e != nil {
-		fmt.Fprintln(os.Stderr, "Fatal error. Exiting.", "err", e)
+		fmt.Fprintln(os.Stderr, "Fatal error:", e)
 		os.Exit(1)
 	}
 }

_examples/helloworld/helloworld_integration_test.go

@@ -34,14 +34,14 @@ func TestHelloworldSample(t *testing.T) {
 	cmd := integration.AppBinPath(bin)
 	// Server
 	serverPort := "12345"
-	serverArgs := []string{"-port", serverPort}
+	serverArgs := []string{"-listen", ":" + serverPort}
 
 	// Client
 	clientArgs := []string{"-remote", integration.DstAddrPattern + ":" + serverPort}
 
 	in := integration.NewAppsIntegration(cmd, cmd, clientArgs, serverArgs)
-	in.ServerOutMatch = integration.Contains("hello world")
-	in.ClientOutMatch = integration.Contains("Done. Wrote 11 bytes.")
+	in.ServerOutMatch = integration.RegExp("(?m)^Received .*: hello world .*\nWrote 24 bytes")
+	in.ClientOutMatch = integration.RegExp("(?m)^Wrote 22 bytes.\nReceived reply: take it back! .*")
 	// Cartesian product of src and dst IAs, a random permutation
 	// restricted to a subset to reduce the number of tests to run without significant
 	// loss of coverage