gitlord
/
synapse
mirror of https://github.com/matrix-org/synapse.git
1
0
Fork 0
Code Issues 0 Releases 671 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
23441 Commits
842 Branches
407 MiB
 
 
 
 
 
 
Branch: develop
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'develop'
${ noResults }
synapse/tests/api/test_ratelimiting.py

444 lines
16 KiB
Raw Permalink Blame History 

  1. from synapse.api.ratelimiting import LimitExceededError, Ratelimiter

  2. from synapse.appservice import ApplicationService

  3. from synapse.config.ratelimiting import RatelimitSettings

  4. from synapse.types import create_requester

  5. 

  6. from tests import unittest

  7. 

  8. 

  9. class TestRatelimiter(unittest.HomeserverTestCase):

  10.     def test_allowed_via_can_do_action(self) -> None:

  11.         limiter = Ratelimiter(

  12.             store=self.hs.get_datastores().main,

  13.             clock=self.clock,

  14.             cfg=RatelimitSettings(key="", per_second=0.1, burst_count=1),

  15.         )

  16.         allowed, time_allowed = self.get_success_or_raise(

  17.             limiter.can_do_action(None, key="test_id", _time_now_s=0)

  18.         )

  19.         self.assertTrue(allowed)

  20.         self.assertEqual(10.0, time_allowed)

  21. 

  22.         allowed, time_allowed = self.get_success_or_raise(

  23.             limiter.can_do_action(None, key="test_id", _time_now_s=5)

  24.         )

  25.         self.assertFalse(allowed)

  26.         self.assertEqual(10.0, time_allowed)

  27. 

  28.         allowed, time_allowed = self.get_success_or_raise(

  29.             limiter.can_do_action(None, key="test_id", _time_now_s=10)

  30.         )

  31.         self.assertTrue(allowed)

  32.         self.assertEqual(20.0, time_allowed)

  33. 

  34.     def test_allowed_appservice_ratelimited_via_can_requester_do_action(self) -> None:

  35.         appservice = ApplicationService(

  36.             token="fake_token",

  37.             id="foo",

  38.             rate_limited=True,

  39.             sender="@as:example.com",

  40.         )

  41.         as_requester = create_requester("@user:example.com", app_service=appservice)

  42. 

  43.         limiter = Ratelimiter(

  44.             store=self.hs.get_datastores().main,

  45.             clock=self.clock,

  46.             cfg=RatelimitSettings(

  47.                 key="",

  48.                 per_second=0.1,

  49.                 burst_count=1,

  50.             ),

  51.         )

  52.         allowed, time_allowed = self.get_success_or_raise(

  53.             limiter.can_do_action(as_requester, _time_now_s=0)

  54.         )

  55.         self.assertTrue(allowed)

  56.         self.assertEqual(10.0, time_allowed)

  57. 

  58.         allowed, time_allowed = self.get_success_or_raise(

  59.             limiter.can_do_action(as_requester, _time_now_s=5)

  60.         )

  61.         self.assertFalse(allowed)

  62.         self.assertEqual(10.0, time_allowed)

  63. 

  64.         allowed, time_allowed = self.get_success_or_raise(

  65.             limiter.can_do_action(as_requester, _time_now_s=10)

  66.         )

  67.         self.assertTrue(allowed)

  68.         self.assertEqual(20.0, time_allowed)

  69. 

  70.     def test_allowed_appservice_via_can_requester_do_action(self) -> None:

  71.         appservice = ApplicationService(

  72.             token="fake_token",

  73.             id="foo",

  74.             rate_limited=False,

  75.             sender="@as:example.com",

  76.         )

  77.         as_requester = create_requester("@user:example.com", app_service=appservice)

  78. 

  79.         limiter = Ratelimiter(

  80.             store=self.hs.get_datastores().main,

  81.             clock=self.clock,

  82.             cfg=RatelimitSettings(

  83.                 key="",

  84.                 per_second=0.1,

  85.                 burst_count=1,

  86.             ),

  87.         )

  88.         allowed, time_allowed = self.get_success_or_raise(

  89.             limiter.can_do_action(as_requester, _time_now_s=0)

  90.         )

  91.         self.assertTrue(allowed)

  92.         self.assertEqual(-1, time_allowed)

  93. 

  94.         allowed, time_allowed = self.get_success_or_raise(

  95.             limiter.can_do_action(as_requester, _time_now_s=5)

  96.         )

  97.         self.assertTrue(allowed)

  98.         self.assertEqual(-1, time_allowed)

  99. 

  100.         allowed, time_allowed = self.get_success_or_raise(

  101.             limiter.can_do_action(as_requester, _time_now_s=10)

  102.         )

  103.         self.assertTrue(allowed)

  104.         self.assertEqual(-1, time_allowed)

  105. 

  106.     def test_allowed_via_ratelimit(self) -> None:

  107.         limiter = Ratelimiter(

  108.             store=self.hs.get_datastores().main,

  109.             clock=self.clock,

  110.             cfg=RatelimitSettings(key="", per_second=0.1, burst_count=1),

  111.         )

  112. 

  113.         # Shouldn't raise

  114.         self.get_success_or_raise(limiter.ratelimit(None, key="test_id", _time_now_s=0))

  115. 

  116.         # Should raise

  117.         with self.assertRaises(LimitExceededError) as context:

  118.             self.get_success_or_raise(

  119.                 limiter.ratelimit(None, key="test_id", _time_now_s=5)

  120.             )

  121.         self.assertEqual(context.exception.retry_after_ms, 5000)

  122. 

  123.         # Shouldn't raise

  124.         self.get_success_or_raise(

  125.             limiter.ratelimit(None, key="test_id", _time_now_s=10)

  126.         )

  127. 

  128.     def test_allowed_via_can_do_action_and_overriding_parameters(self) -> None:

  129.         """Test that we can override options of can_do_action that would otherwise fail

  130.         an action

  131.         """

  132.         # Create a Ratelimiter with a very low allowed rate_hz and burst_count

  133.         limiter = Ratelimiter(

  134.             store=self.hs.get_datastores().main,

  135.             clock=self.clock,

  136.             cfg=RatelimitSettings(key="", per_second=0.1, burst_count=1),

  137.         )

  138. 

  139.         # First attempt should be allowed

  140.         allowed, time_allowed = self.get_success_or_raise(

  141.             limiter.can_do_action(

  142.                 None,

  143.                 ("test_id",),

  144.                 _time_now_s=0,

  145.             )

  146.         )

  147.         self.assertTrue(allowed)

  148.         self.assertEqual(10.0, time_allowed)

  149. 

  150.         # Second attempt, 1s later, will fail

  151.         allowed, time_allowed = self.get_success_or_raise(

  152.             limiter.can_do_action(

  153.                 None,

  154.                 ("test_id",),

  155.                 _time_now_s=1,

  156.             )

  157.         )

  158.         self.assertFalse(allowed)

  159.         self.assertEqual(10.0, time_allowed)

  160. 

  161.         # But, if we allow 10 actions/sec for this request, we should be allowed

  162.         # to continue.

  163.         allowed, time_allowed = self.get_success_or_raise(

  164.             limiter.can_do_action(None, ("test_id",), _time_now_s=1, rate_hz=10.0)

  165.         )

  166.         self.assertTrue(allowed)

  167.         self.assertEqual(1.1, time_allowed)

  168. 

  169.         # Similarly if we allow a burst of 10 actions

  170.         allowed, time_allowed = self.get_success_or_raise(

  171.             limiter.can_do_action(None, ("test_id",), _time_now_s=1, burst_count=10)

  172.         )

  173.         self.assertTrue(allowed)

  174.         self.assertEqual(1.0, time_allowed)

  175. 

  176.     def test_allowed_via_ratelimit_and_overriding_parameters(self) -> None:

  177.         """Test that we can override options of the ratelimit method that would otherwise

  178.         fail an action

  179.         """

  180.         # Create a Ratelimiter with a very low allowed rate_hz and burst_count

  181.         limiter = Ratelimiter(

  182.             store=self.hs.get_datastores().main,

  183.             clock=self.clock,

  184.             cfg=RatelimitSettings(key="", per_second=0.1, burst_count=1),

  185.         )

  186. 

  187.         # First attempt should be allowed

  188.         self.get_success_or_raise(

  189.             limiter.ratelimit(None, key=("test_id",), _time_now_s=0)

  190.         )

  191. 

  192.         # Second attempt, 1s later, will fail

  193.         with self.assertRaises(LimitExceededError) as context:

  194.             self.get_success_or_raise(

  195.                 limiter.ratelimit(None, key=("test_id",), _time_now_s=1)

  196.             )

  197.         self.assertEqual(context.exception.retry_after_ms, 9000)

  198. 

  199.         # But, if we allow 10 actions/sec for this request, we should be allowed

  200.         # to continue.

  201.         self.get_success_or_raise(

  202.             limiter.ratelimit(None, key=("test_id",), _time_now_s=1, rate_hz=10.0)

  203.         )

  204. 

  205.         # Similarly if we allow a burst of 10 actions

  206.         self.get_success_or_raise(

  207.             limiter.ratelimit(None, key=("test_id",), _time_now_s=1, burst_count=10)

  208.         )

  209. 

  210.     def test_pruning(self) -> None:

  211.         limiter = Ratelimiter(

  212.             store=self.hs.get_datastores().main,

  213.             clock=self.clock,

  214.             cfg=RatelimitSettings(key="", per_second=0.1, burst_count=1),

  215.         )

  216.         self.get_success_or_raise(

  217.             limiter.can_do_action(None, key="test_id_1", _time_now_s=0)

  218.         )

  219. 

  220.         self.assertIn("test_id_1", limiter.actions)

  221. 

  222.         self.get_success_or_raise(

  223.             limiter.can_do_action(None, key="test_id_2", _time_now_s=10)

  224.         )

  225. 

  226.         self.assertNotIn("test_id_1", limiter.actions)

  227. 

  228.     def test_db_user_override(self) -> None:

  229.         """Test that users that have ratelimiting disabled in the DB aren't

  230.         ratelimited.

  231.         """

  232.         store = self.hs.get_datastores().main

  233. 

  234.         user_id = "@user:test"

  235.         requester = create_requester(user_id)

  236. 

  237.         self.get_success(

  238.             store.db_pool.simple_insert(

  239.                 table="ratelimit_override",

  240.                 values={

  241.                     "user_id": user_id,

  242.                     "messages_per_second": None,

  243.                     "burst_count": None,

  244.                 },

  245.                 desc="test_db_user_override",

  246.             )

  247.         )

  248. 

  249.         limiter = Ratelimiter(

  250.             store=store,

  251.             clock=self.clock,

  252.             cfg=RatelimitSettings("", per_second=0.1, burst_count=1),

  253.         )

  254. 

  255.         # Shouldn't raise

  256.         for _ in range(20):

  257.             self.get_success_or_raise(limiter.ratelimit(requester, _time_now_s=0))

  258. 

  259.     def test_multiple_actions(self) -> None:

  260.         limiter = Ratelimiter(

  261.             store=self.hs.get_datastores().main,

  262.             clock=self.clock,

  263.             cfg=RatelimitSettings(

  264.                 key="",

  265.                 per_second=0.1,

  266.                 burst_count=3,

  267.             ),

  268.         )

  269.         # Test that 4 actions aren't allowed with a maximum burst of 3.

  270.         allowed, time_allowed = self.get_success_or_raise(

  271.             limiter.can_do_action(None, key="test_id", n_actions=4, _time_now_s=0)

  272.         )

  273.         self.assertFalse(allowed)

  274. 

  275.         # Test that 3 actions are allowed with a maximum burst of 3.

  276.         allowed, time_allowed = self.get_success_or_raise(

  277.             limiter.can_do_action(None, key="test_id", n_actions=3, _time_now_s=0)

  278.         )

  279.         self.assertTrue(allowed)

  280.         self.assertEqual(10.0, time_allowed)

  281. 

  282.         # Test that, after doing these 3 actions, we can't do any more actions without

  283.         # waiting.

  284.         allowed, time_allowed = self.get_success_or_raise(

  285.             limiter.can_do_action(None, key="test_id", n_actions=1, _time_now_s=0)

  286.         )

  287.         self.assertFalse(allowed)

  288.         self.assertEqual(10.0, time_allowed)

  289. 

  290.         # Test that after waiting we would be able to do only 1 action.

  291.         # Note that we don't actually do it (update=False) here.

  292.         allowed, time_allowed = self.get_success_or_raise(

  293.             limiter.can_do_action(

  294.                 None,

  295.                 key="test_id",

  296.                 update=False,

  297.                 n_actions=1,

  298.                 _time_now_s=10,

  299.             )

  300.         )

  301.         self.assertTrue(allowed)

  302.         # We would be able to do the 5th action at t=20.

  303.         self.assertEqual(20.0, time_allowed)

  304. 

  305.         # Attempt (but fail) to perform TWO actions at t=10.

  306.         # Those would be the 4th and 5th actions.

  307.         allowed, time_allowed = self.get_success_or_raise(

  308.             limiter.can_do_action(None, key="test_id", n_actions=2, _time_now_s=10)

  309.         )

  310.         self.assertFalse(allowed)

  311.         # The returned time allowed for the next action is now even though we weren't

  312.         # allowed to perform the action because whilst we don't allow 2 actions,

  313.         # we could still do 1.

  314.         self.assertEqual(10.0, time_allowed)

  315. 

  316.         # Test that after waiting until t=20, we can do perform 2 actions.

  317.         # These are the 4th and 5th actions.

  318.         allowed, time_allowed = self.get_success_or_raise(

  319.             limiter.can_do_action(None, key="test_id", n_actions=2, _time_now_s=20)

  320.         )

  321.         self.assertTrue(allowed)

  322.         # We would be able to do the 6th action at t=30.

  323.         self.assertEqual(30.0, time_allowed)

  324. 

  325.     def test_rate_limit_burst_only_given_once(self) -> None:

  326.         """

  327.         Regression test against a bug that meant that you could build up

  328.         extra tokens by timing requests.

  329.         """

  330.         limiter = Ratelimiter(

  331.             store=self.hs.get_datastores().main,

  332.             clock=self.clock,

  333.             cfg=RatelimitSettings("", per_second=0.1, burst_count=3),

  334.         )

  335. 

  336.         def consume_at(time: float) -> bool:

  337.             success, _ = self.get_success_or_raise(

  338.                 limiter.can_do_action(requester=None, key="a", _time_now_s=time)

  339.             )

  340.             return success

  341. 

  342.         # Use all our 3 burst tokens

  343.         self.assertTrue(consume_at(0.0))

  344.         self.assertTrue(consume_at(0.1))

  345.         self.assertTrue(consume_at(0.2))

  346. 

  347.         # Wait to recover 1 token (10 seconds at 0.1 Hz).

  348.         self.assertTrue(consume_at(10.1))

  349. 

  350.         # Check that we get rate limited after using that token.

  351.         self.assertFalse(consume_at(11.1))

  352. 

  353.     def test_record_action_which_doesnt_fill_bucket(self) -> None:

  354.         limiter = Ratelimiter(

  355.             store=self.hs.get_datastores().main,

  356.             clock=self.clock,

  357.             cfg=RatelimitSettings(

  358.                 "",

  359.                 per_second=0.1,

  360.                 burst_count=3,

  361.             ),

  362.         )

  363. 

  364.         # Observe two actions, leaving room in the bucket for one more.

  365.         limiter.record_action(requester=None, key="a", n_actions=2, _time_now_s=0.0)

  366. 

  367.         # We should be able to take a new action now.

  368.         success, _ = self.get_success_or_raise(

  369.             limiter.can_do_action(requester=None, key="a", _time_now_s=0.0)

  370.         )

  371.         self.assertTrue(success)

  372. 

  373.         # ... but not two.

  374.         success, _ = self.get_success_or_raise(

  375.             limiter.can_do_action(requester=None, key="a", _time_now_s=0.0)

  376.         )

  377.         self.assertFalse(success)

  378. 

  379.     def test_record_action_which_fills_bucket(self) -> None:

  380.         limiter = Ratelimiter(

  381.             store=self.hs.get_datastores().main,

  382.             clock=self.clock,

  383.             cfg=RatelimitSettings(

  384.                 "",

  385.                 per_second=0.1,

  386.                 burst_count=3,

  387.             ),

  388.         )

  389. 

  390.         # Observe three actions, filling up the bucket.

  391.         limiter.record_action(requester=None, key="a", n_actions=3, _time_now_s=0.0)

  392. 

  393.         # We should be unable to take a new action now.

  394.         success, _ = self.get_success_or_raise(

  395.             limiter.can_do_action(requester=None, key="a", _time_now_s=0.0)

  396.         )

  397.         self.assertFalse(success)

  398. 

  399.         # If we wait 10 seconds to leak a token, we should be able to take one action...

  400.         success, _ = self.get_success_or_raise(

  401.             limiter.can_do_action(requester=None, key="a", _time_now_s=10.0)

  402.         )

  403.         self.assertTrue(success)

  404. 

  405.         # ... but not two.

  406.         success, _ = self.get_success_or_raise(

  407.             limiter.can_do_action(requester=None, key="a", _time_now_s=10.0)

  408.         )

  409.         self.assertFalse(success)

  410. 

  411.     def test_record_action_which_overfills_bucket(self) -> None:

  412.         limiter = Ratelimiter(

  413.             store=self.hs.get_datastores().main,

  414.             clock=self.clock,

  415.             cfg=RatelimitSettings(

  416.                 "",

  417.                 per_second=0.1,

  418.                 burst_count=3,

  419.             ),

  420.         )

  421. 

  422.         # Observe four actions, exceeding the bucket.

  423.         limiter.record_action(requester=None, key="a", n_actions=4, _time_now_s=0.0)

  424. 

  425.         # We should be prevented from taking a new action now.

  426.         success, _ = self.get_success_or_raise(

  427.             limiter.can_do_action(requester=None, key="a", _time_now_s=0.0)

  428.         )

  429.         self.assertFalse(success)

  430. 

  431.         # If we wait 10 seconds to leak a token, we should be unable to take an action

  432.         # because the bucket is still full.

  433.         success, _ = self.get_success_or_raise(

  434.             limiter.can_do_action(requester=None, key="a", _time_now_s=10.0)

  435.         )

  436.         self.assertFalse(success)

  437. 

  438.         # But after another 10 seconds we leak a second token, giving us room for

  439.         # action.

  440.         success, _ = self.get_success_or_raise(

  441.             limiter.can_do_action(requester=None, key="a", _time_now_s=20.0)

  442.         )

  443.         self.assertTrue(success)