Lilypad-Tech · kelindi · Feb 11, 2025 · Jan 29, 2025 · Jan 29, 2025 · Feb 7, 2025
@@ -53,7 +53,7 @@ jobs:
       - name: Start solver
         run: |
           ./stack solver --disable-telemetry=true --api-host="" > solver.log &
-          sleep 5
+          sleep 20
 
       - name: Run solver integration tests
         run: ./stack integration-tests-solver

@@ -30,3 +30,4 @@ WEB3_TOKEN_ADDRESS_=0xa513E6E4b8f2a923D98304ec87F64353C4D5C853
 WEB3_USERS_ADDRESS=0x0DCd1Bf9A1b36cE34237eEaFef220932846BCD82
 BACALHAU_API_HOST=localhost
 BACALHAU_API_PORT=1234
+SERVER_RATE_EXEMPTED_IPS=127.0.0.1,::1
@@ -22,6 +22,7 @@ type ValidationToken struct {
 type RateLimiterOptions struct {
 	RequestLimit int
 	WindowLength int
+	ExemptedIPs  []string
 }
 
 type ClientOptions struct {

@@ -9,6 +9,7 @@ import (
 	"fmt"
 	"io"
 	stdlog "log"
+	"net"
 	"net/http"
 	"net/url"
 	"strings"
@@ -443,3 +444,30 @@ func newRetryClient() *retryablehttp.Client {
 	}
 	return retryClient
 }
+
+func CanonicalizeIP(ip string) string {
+	isIPv6 := false
+	// This is how net.ParseIP decides if an address is IPv6
+	// https://cs.opensource.google/go/go/+/refs/tags/go1.17.7:src/net/ip.go;l=704
+	for i := 0; !isIPv6 && i < len(ip); i++ {
+		switch ip[i] {
+		case '.':
+			// IPv4
+			return ip
+		case ':':
+			// IPv6
+			isIPv6 = true
+			break
+		}
+	}
+	if !isIPv6 {
+		// Not an IP address at all
+		return ip
+	}
+
+	ipv6 := net.ParseIP(ip)
+	if ipv6 == nil {
+		return ip
+	}
+	return ipv6.Mask(net.CIDRMask(64, 128)).String()
+}
@@ -387,19 +387,18 @@ func (controller *JobCreatorController) downloadResult(dealContainer data.DealCo
 
 func (controller *JobCreatorController) acceptResult(deal data.DealContainer) error {
 	controller.log.Debug("Accepting results for job", deal.ID)
-	txHash, err := controller.web3SDK.AcceptResult(deal.ID)
-	if err != nil {
-		return fmt.Errorf("error calling accept result tx for deal: %s", err.Error())
-	}
-	controller.log.Debug("accept result tx", txHash)
+	// !TODO MAINNET: get txHash for accepting results on chain or get this flow
+	txHash := "0x"
 
 	// we have agreed to the deal so we need to update the tx in the solver
-	_, err = controller.solverClient.UpdateTransactionsJobCreator(deal.ID, data.DealTransactionsJobCreator{
+	_, err := controller.solverClient.UpdateTransactionsJobCreator(deal.ID, data.DealTransactionsJobCreator{
 		AcceptResult: txHash,
 	})
 	if err != nil {
 		return fmt.Errorf("error adding AcceptResult tx hash for deal: %s", err.Error())
 	}
+
+
 	return nil
 }
 

@@ -2,7 +2,7 @@ package options
 
 import (
 	"fmt"
-
+	"net"
 	"github.com/lilypad-tech/lilypad/pkg/http"
 	"github.com/spf13/cobra"
 )
@@ -31,6 +31,7 @@ func GetDefaultRateLimiterOptions() http.RateLimiterOptions {
 	return http.RateLimiterOptions{
 		RequestLimit: GetDefaultServeOptionInt("SERVER_RATE_REQUEST_LIMIT", 5),
 		WindowLength: GetDefaultServeOptionInt("SERVER_RATE_WINDOW_LENGTH", 10),
+		ExemptedIPs:  GetDefaultServeOptionStringArray("SERVER_RATE_EXEMPTED_IPS", []string{}),
 	}
 }
 
@@ -75,6 +76,10 @@ func AddServerCliFlags(cmd *cobra.Command, serverOptions *http.ServerOptions) {
 		&serverOptions.RateLimiter.WindowLength, "server-rate-window-length", serverOptions.RateLimiter.WindowLength,
 		`The time window over which to limit in seconds (SERVER_RATE_WINDOW_LENGTH).`,
 	)
+	cmd.PersistentFlags().StringArrayVar(
+		&serverOptions.RateLimiter.ExemptedIPs, "server-rate-exempted-ips", serverOptions.RateLimiter.ExemptedIPs,
+		`The IPs to exempt from rate limiting (SERVER_RATE_EXEMPTED_IPS).`,
+	)
 }
 
 func CheckServerOptions(options http.ServerOptions, storeType string) error {
@@ -90,5 +95,12 @@ func CheckServerOptions(options http.ServerOptions, storeType string) error {
 	if options.AccessControl.ValidationTokenKid == "" {
 		return fmt.Errorf("SERVER_VALIDATION_TOKEN_KID is required")
 	}
+	if len(options.RateLimiter.ExemptedIPs) > 0 {
+		for _, ip := range options.RateLimiter.ExemptedIPs {
+			if net.ParseIP(ip) == nil {
+				return fmt.Errorf("invalid IP address: %s", ip)
+			}
+		}
+	}
 	return nil
 }
@@ -526,12 +526,8 @@ func (controller *ResourceProviderController) runJob(ctx context.Context, deal d
 	span.AddEvent("solver.result.added", trace.WithAttributes(attribute.String("result.id", createdResult.ID)))
 
 	span.AddEvent("chain.result.add")
-	txHash, err := controller.web3SDK.AddResult(
-		deal.Deal.ID,
-		createdResult.ID,
-		createdResult.DataID,
-		result.InstructionCount,
-	)
+	// !TODO MAINNET: get txHash for submittinng results on chain
+	txHash := "0x"
 	if err != nil {
 		controller.log.Error("error calling add result tx for job", err)
 		span.SetStatus(codes.Error, "add result to chain failed")

@@ -448,8 +448,12 @@ func (controller *SolverController) addDeal(ctx context.Context, deal data.Deal)
 
 	controller.log.Info("add deal", deal)
 
+	//creates deal container and sets state to agreed
+	dealContainer := data.GetDealContainer(deal)
+	dealContainer.State = data.GetAgreementStateIndex("DealAgreed")
+
 	span.AddEvent("store.add_deal.start")
-	ret, err := controller.store.AddDeal(data.GetDealContainer(deal))
+	ret, err := controller.store.AddDeal(dealContainer)
 	if err != nil {
 		span.SetStatus(codes.Error, "add deal to store failed")
 		span.RecordError(err)
@@ -592,6 +596,9 @@ func (controller *SolverController) updateDealTransactionsJobCreator(id string,
 	if err != nil {
 		return nil, err
 	}
+	if payload.AcceptResult != "" {
+		return controller.updateDealState(id, data.GetAgreementStateIndex("ResultsAccepted"))
+	}
 	controller.writeEvent(SolverEvent{
 		EventType: JobCreatorTransactionsUpdated,
 		Deal:      dealContainer,

@@ -4,8 +4,8 @@ package solver_test
 
 import (
 	"fmt"
+	"math/rand"
 	"net/http"
-	"os"
 	"sync"
 	"testing"
 	"time"
@@ -17,55 +17,117 @@ type rateResult struct {
 	limitedCount int
 }
 
-// This test suite sends 100 requests over approximately half a second.
+type rateTestCase struct {
+	name          string
+	headers       map[string]string
+	expectedOK    int
+	expectedLimit int
+}
+
+// This test suite sends 200 requests to three different paths. We send the
+// requests in rate limited and exempt test groups. The rate limited group
+// should allow 5/100 requests through and the exempt group should allow 100/100.
+//
 // We assume the solver uses the default rate limiting settings with
-// a request limit of 5 and window length of 10 seconds.
+// a request limit of 5 and window length of 10 seconds. In addition, the solver
+// should be configured to exempt localhost.
 func TestRateLimiter(t *testing.T) {
 	paths := []string{
 		"/api/v1/resource_offers",
 		"/api/v1/job_offers",
 		"/api/v1/deals",
 	}
 
+	// The solver should rate limit when forwarded
+	// headers are set to 1.2.3.4.
+	nonExemptHeaders := []map[string]string{
+		{"True-Client-IP": "1.2.3.4"},
+		{"X-Real-IP": "1.2.3.4"},
+		{"X-Forwarded-For": "1.2.3.4"},
+	}
+
+	// The running solver is configured to exempt localhost.
+	// When no headers are set, test using the IP address from
+	// the underlying connection (also localhost)
+	// TODO: re-enable exempt IP rate limiting
+	// exemptHeaders := []map[string]string{
+	// 	{"True-Client-IP": "127.0.0.1"},
+	// 	{"X-Real-IP": "127.0.0.1"},
+	// 	{"X-Forwarded-For": "127.0.0.1"},
+	// 	{}, // No headers case - uses RemoteAddr
+	// }
+
+	t.Run("non-exempt IP is rate limited", func(t *testing.T) {
+		// Select a random header on each test run. Over time we test them all.
+		headers := nonExemptHeaders[rand.Intn(len(nonExemptHeaders))]
+		tc := rateTestCase{
+			name:          fmt.Sprintf("rate limited with headers %v", headers),
+			headers:       headers,
+			expectedOK:    5,
+			expectedLimit: 95,
+		}
+		runRateLimitTest(t, paths, tc)
+	})
+
+	// TODO: re-enable exempt IP rate limiting
+	// t.Run("exempt IP is not rate limited", func(t *testing.T) {
+	// 	// Select a random header on each test run. Over time we test them all.
+	// 	headers := exemptHeaders[rand.Intn(len(exemptHeaders))]
+	// 	tc := rateTestCase{
+	// 		name:          fmt.Sprintf("exempt with headers %v", headers),
+	// 		headers:       headers,
+	// 		expectedOK:    100,
+	// 		expectedLimit: 0,
+	// 	}
+	// 	runRateLimitTest(t, paths, tc)
+	// })
+}
+
+func runRateLimitTest(t *testing.T, paths []string, tc rateTestCase) {
 	var wg sync.WaitGroup
 	ch := make(chan rateResult, len(paths))
 
-	// Send off callers to run concurrently
+	// Run the calls against paths in parallel
 	for _, path := range paths {
 		wg.Add(1)
-
-		go func() {
+		go func(path string) {
 			defer wg.Done()
-			makeCalls(t, path, ch)
-		}()
+			makeCalls(t, path, ch, tc)
+		}(path)
 	}
 
 	wg.Wait()
 	close(ch)
 
-	expectedOkCount := 5
 	for result := range ch {
-		if result.okCount > expectedOkCount {
-			t.Errorf(
-				"%s allowed %d requests and limited %d requests, but expected limiting after %d requests\n",
-				result.path, result.okCount, result.limitedCount, expectedOkCount,
-			)
+		if result.okCount != tc.expectedOK {
+			t.Errorf("%s: Expected %d successful requests, got %d",
+				result.path, tc.expectedOK, result.okCount)
+		}
+		if result.limitedCount != tc.expectedLimit {
+			t.Errorf("%s: Expected %d rate limited requests, got %d",
+				result.path, tc.expectedLimit, result.limitedCount)
 		}
 	}
 }
 
-func makeCalls(t *testing.T, path string, ch chan rateResult) {
+func makeCalls(t *testing.T, path string, ch chan rateResult, tc rateTestCase) {
 	var okCount int
 	var limitedCount int
+	client := &http.Client{}
+
+	for i := 0; i < 100; i++ {
+		req, _ := http.NewRequest("GET", fmt.Sprintf("http://localhost:%d%s", 8081, path), nil)
 
-	// Make 100 requests
-	for range 100 {
-		requestURL := fmt.Sprintf("http://localhost:%d%s", 8081, path)
-		res, err := http.Get(requestURL)
+		// Set test case headers
+		for key, value := range tc.headers {
+			req.Header.Set(key, value)
+		}
 
+		res, err := client.Do(req)
 		if err != nil {
-			t.Errorf("Get request failed on %s: %s\n", path, err)
-			os.Exit(1)
+			t.Errorf("Request failed on %s: %s\n", path, err)
+			return
 		}
 
 		if res.StatusCode == 200 {
@@ -76,7 +138,6 @@ func makeCalls(t *testing.T, path string, ch chan rateResult) {
 			t.Errorf("Expected a 200 or 429 status code, but received a %d\n", res.StatusCode)
 		}
 
-		// Wait before making next call
 		time.Sleep(5 * time.Millisecond)
 	}