# Lab 4 -- P2P Socket Programming

In [None]:
# Private/will be removed
import py_compile
py_compile.compile(file='test_lab4_private.py', cfile='test_lab4.pyc')

## Introduction

In this lab, you will modify your application to support peer-to-peer chat. 
In addition, you will capture and analyze the network traffic generated by your application. 
Finally, you will find the description of the first lab delivery. 



### Lab setup

In this lab, you will use the same "docker-compose" setup as in the previous two labs. 
Refer back to lab2 for instructions on how to setup the environment.

- You will use the DNS server from lab2 to resolve your domain names. **Make sure that the DNS server is running properly before starting this lab, and that you can use the DNS server of your team's domain name in **client1, client2 and client3** containers**.


- [Figure 1](#figure_1) shows the network topology for this lab. You will use the "webserver" container as the server for your chat application. Then, you will use the "client1", "client2" and "client3" containers as clients for your chat application. 


<a id='figure_1'></a>

|<img src="figures/lab_setup.jpg" width="800" height="400" />|
|:--:| 
| *Figure 1: Lab3 setup* |


# Milestone 1 -- Peer-to-Peer Chat



Modify the chatroom application to support peer-to-peer communication. 

In addition to the features of the application in Milestone 1, the peer-to-peer chat application should also:

The server: 

- Keep track of the clients that are connected to the server.

- Send the list of connected clients to each client when:
  - A new client connects to the server.
  - A client disconnects from the server.

The client:

- Receive the list of connected clients from the server and update the list of peers.

- Send a message to a specific peer using a UDP socket.


## Background

By now, you should be familiar with the basic concepts of object-oriented and socket programming in python. 
Also, you should use the same IDE setup for editing your python code as in the previous lab. 




- Figure 3 shows a simple workflow of peer-to-peer communication using UDP sockets.

<a id='figure_2'></a>

|<img src="figures/udp_socket.jpg" width="800" height="600" />|
|:--:| 
| *Figure 2: Workflow of peer-to-peer communication using UDP sockets* |


- When sending a list (of clients), we need to serialize the list into a string. 
We can use the `json` module to do that. 
For example: `json.dumps(list_of_clients)` will serialize the list of clients into a string. 
On the client side, we can use `json.loads(data)` to deserialize the string into a list.

- When the server sends consecutive messages to the client, the client might receive them as a single message. 
For example, when the server sends the welcome message and the list of clients, the client might receive them as a single message. 
For simplicity, we use a delay of 0.5 seconds `time.sleep(0.5)` to make sure that the client receives the messages separately. 
Feel free to explore other solutions, such as:
  - Use a line-oriented protocol (each message is terminated by a newline character).
  - Use a length-prefixed message format (each message starts with a length field, followed by the message data).
  - Use a fixed-length message format (each message has a fixed length, by padding the message with spaces if needed).



## Task 1.1 --  Chat Server

You can find the starter code for this task in the file "chatroom_p2p_server.py" in the "~/labs/lab4" folder. 
The code is already partially implemented.

Below you can follow a general description of that file.

  <div class="alert alert-block alert-info">
      <b>Note:</b> You should be able to complete the template code, by replacing the <code style="color: black;">=== YOUR CODE HERE ===</code> comments with a <b>single</b> line of code.
  </div>


```python

# ChatRoomP2PServer class
class ChatRoomP2PServer:

# This class defines the behavior of the chatroom p2p server
# It should perform the following:
#   - TCP socket creation and data binding (in `def __init__`)
#   - broadcast messages to all connected clients except the sender (in `def broadcast`)
#   - remove a client from the list of active connections (in `def remove`)
#   - manage the list of connected clients (in `def broadcast_list_of_clients`)
#   - handle client connections (in `def run`), including:
#     - validating usernames
#     - adding clients to the server's active connections list
#     - manage incoming and broadcasting messages from connected clients
#     - ensure proper cleanup of resources and updates the list of active clients

(...)
  

if __name__ == '__main__':
        
# This is the main method called by python when you run your code
# You will have to:
#   - define the configuration parameters for the ChatRoomP2PServer class from above, such as:
#       - Server IP address 
#       - Server port number (greater than 1024)
#       - Buffer size for receiving messages
#       - Maximum number of allowed clients
#   - create a new instance of that class
#   - start the main thread 

(...)

```


## Task 1.2 --  Chat Client


You can find the starter code for this task in the file "chatroom_p2p_client.py" in the "~/labs/lab4" folder. 
The code is already partially implemented. 
You need to complete the missing parts, indicated by the `=== YOUR CODE HERE ===` comments.

Below you can follow a general description of that file.

```python

# ChatRoomP2PClient class
class ChatRoomP2PClient:

# This class defines the behavior of the chatroom p2p client
# It should perform the following:
#   - initialize TCP and UDP sockets and bind UDP socket (in `def __init__`)
#   - update the list of connected peers (in `def update_peers`)
#   - handle message exchange with the server, P2P, user input and closing the socket connection (in `def run`)

(...)
  

if __name__ == '__main__':
        
# This is the main method called by python when you run your code
# You will have to:
#   - define the configuration parameters for the ChatRoomP2PClient class from above, such as:
#       - Server IP address and port number
#       - Buffer size for receiving messages
#       - Client IP address and p2p port
#   - create a new instance of that class
#   - start the main thread 

(...)
```


- After completing the above code, copy the file "chatroom_p2p_server.py" to the "webserver" container:

    <div style="background: #f8f8f8; overflow:auto;width:auto;border:solid gray;border-width:.1em .1em .1em .8em;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%;color: black;">scp chatroom_p2p_server.py 10.20.30.3:~/chatroom_p2p_server.py</pre></div>

- Copy the file "chatroom_p2p_client.py" to "client1", "client2", and "client3" containers:

    <div style="background: #f8f8f8; overflow:auto;width:auto;border:solid gray;border-width:.1em .1em .1em .8em;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%;color: black;">
    for x in 11 12 13; do
        scp chatroom_p2p_client.py 10.20.30.$x:~/chatroom_p2p_client.py
    done </pre></div>

- Run the python files in their respective containers:

    <div style="background: #f8f8f8; overflow:auto;width:auto;border:solid gray;border-width:.1em .1em .1em .8em;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%;color: black;">python3 ===FILE_NAME===</pre></div><br>

- Verify that the chatroom works as expected. 

<div class="alert alert-block alert-info">
  <b>Note:</b> Make sure you show to your TA that your Chat Room application works as expected.
</div>


In [None]:
from test_lab4 import TestLab4
check_progress = TestLab4()

# Milestone 2 -- Capturing and Analyzing Network Traffic

## Task 2.1 -- Traffic Capture
 


* Start a packet capture with `tcpdump` on your chat server and dumpt the capture to a "chatserver.pcap" file, then start your "chatroom_p2p_server.py" code.

* Start packet capturing on the "client1" container and dump the capture to the file named "client1.pcap", then start your "chatroom_p2p_client.py" code.

* Send messages to the chatroom and to other clients (p2p messages). 
Then stop the packet capture on the server and the client.

* Copy the capture files to your "ntnu_server" in the "lab4" folder.

  <div class="alert alert-block alert-info">
    <b>Tip:</b> Use <b>tmux</b> to navigate more easily between containers. Also, try to <b>minimize</b> the time spent while using tcpdump.
  </div>

## Task 2.2 -- Analyzing TCP Traffic


* Open your "chatserver.pcap" in Wireshark and display only TCP packets from "client1" and "client2": `(ip.addr == 10.20.30.11 || ip.addr == 10.20.30.12) && tcp`.

* Disable the display of relative sequence numbers in wireshark: **Edit**$\rightarrow$**Preferences**$\rightarrow$ expand **Protocols** $\rightarrow$ **TCP** $\rightarrow$ untick the box for  **Relative sequence numbers**

    <div class="alert alert-block alert-info">
        <b>Note:</b> By default, Wireshark keeps track of all TCP sessions and converts all Sequence Numbers, and Acknowledge Numbers into relative numbers. This means that instead of displaying the real/absolute numbers, Wireshark will display numbers relative to the first seen segment for that conversation.
    </div>

* Navigate to **Statistics** $\rightarrow$ **Flow Graph**. 
Tick the box of **Limit to display filter**, then select **TCP Flows** from **Flow type**. 
This will display a sequence diagram of the TCP packets exchanged between the clients and the server. 
It will also display the sequence and Acknowledgement numbers on the right-hand side.

* Answer the following questions:
  - What is the sequence number of the TCP SYN segment used to initiate the first TCP connection between "client1" and the server? 
  - What is the sequence number of SYNACK segment sent by the server to the client in reply to the SYN?
  - What is the value of the ACKnowledgement field in the SYNACK segment?

In [None]:
# What is the sequence number of the TCP SYN segment used to initiate the first TCP connection between "client1" and the server? 
SYN_sequence_number =  #your answer (as an integer)

# What is the sequence number of SYNACK segment sent by the server to the client in reply to the SYN?
SYNACK_sequence_number =  #your answer (as an integer)

# What is the value of the ACKnowledgement field in the SYNACK segment?
SYNACK_ACKnowledgement_number =  #your answer (as an integer)

check_progress.test_4_1(SYN_sequence_number, SYNACK_sequence_number, SYNACK_ACKnowledgement_number)

## Task 2.3 -- Analyzing UDP Traffic

* Open "client1.pcap" file in Wireshark and display only UDP packets from and to the other client (`ip.addr == 10.20.30.12 && udp`).
Then answer the following questions:
  - Select one UDP packet from your trace (corresponding to a chat message). 
  From this packet, determine how many fields are in the UDP header.
  - What is the length (in bytes) of a UDP header field?
  - What is the maximum number of bytes that can be included in a UDP payload?
  - What is the largest possible source port number?
  - What is the protocol number for UDP?

In [None]:
# How many fields are in the UDP header?
number_of_fields_in_UDP_header =  #your answer (as an integer) 

# What is the length (in bytes) of a UDP header field?
length_of_header_field =  #your answer (as an integer) 

# What is the maximum number of bytes that can be included in a UDP payload?
maximum_number_of_bytes_in_UDP_payload =  #your answer (as an integer) 

# What is the largest possible source port number?
largest_possible_source_port_number =  #your answer (as an integer) 

# What is the protocol number for UDP?
protocol_number_for_UDP =  #your answer (as an integer) 

check_progress.test_4_2(number_of_fields_in_UDP_header, 
                        length_of_header_field, 
                        maximum_number_of_bytes_in_UDP_payload, 
                        largest_possible_source_port_number, 
                        protocol_number_for_UDP)

# Milestone 3 -- Delivery 1

As a part of the first lab delivery, focus on answering <span style="font-size: 25px;">Q1.</span> and <span style="font-size: 25px;">Q2.</span>

Questions labeled **Bonus** and **Extra** are optional. They are designed for those who are ahead and eager to take on additional challenges.


<span style="font-size: 25px;">Q1. </span> Modify the server and client programs from Milestone 1 to also support user authentication. 
Your application should support the following **additional** features:

The server application should:

- Maintain a list of usernames and passwords.

- When a client connects to the server, the server should prompt the client for either login or register.

- If the client selects login, the server should:
  - Prompt the client for a username and password.
  - If the username and password are valid, the server should send the list of connected clients to the client.
  - If the username and password are invalid, the server should close the connection.

- If the client selects register, the server should:
  - Prompt the client for a username and password.
  - If the username is not already in use, the server should add the username and password to the list of usernames and passwords and send the list of connected clients to the client.
  - If the username is already in use, the server should close the connection.

- The server should store the passwords in a hashed format (not in plain text). You can use the [`hashlib`](https://docs.python.org/3/library/hashlib.html) module to hash the passwords ([Hint](https://stackoverflow.com/a/56915300/893857)).

The client application should:

- Prompt the user for either login or register.

- If the user selects login, the client should:
  - Prompt the user for a username and password.
  - Send the username and password to the server.
  - If the username and password are valid, the client should display the list of connected clients.
  - If the username and password are invalid, the client should display an error message and exit.

- If the user selects register, the client should:
  - Prompt the user for a username and password.
  - Send the username and password to the server.
  - If the username is not already in use, the client should display the list of connected clients.
  - If the username is already in use, the client should display an error message and exit.

- Finally, as you prepare to test your application, you can take into account if the following actions are according to the requirements:
  - Registration and authentication of client1. 
  - Registration and authenticaton of client2. 
  - Registration and authentication of client3.
  - Correct storing of usernames and password. 
  - Communication with the server and P2P communication between two clients.
  - Behaviour of the application when the username is already in use. 
  - Login of a client after being "offline". 


<div class="alert alert-block alert-info">
    <b>Note:</b> These steps should only <b>assist</b> you in the testing process to verify if your application works as expected.
    When your application allows execution of all the actions, make sure you <u>show your TA</u> that your application works as required.
</div>


**Bonus** <span style="font-size: 25px;"> Q.</span>  Modify your client and server programs such that the server is not "locked" during the authentication of the first client. 

<span style="font-size: 25px;">Q2. </span>  Write a report (in fewer than two pages, including the sequence diagram) explaining the flow of the chat application you have built in <span style="font-size: 25px;">Q1</span>. 
Your report should at least address the following points:

* How hostnames and addresses get resolved.

* How TCP and UDP sockets are created (protocol family, type of service) and associated with addresses.

* How a server socket handles multiple incoming connections. 

* Highlight the difference between connection-oriented and connectionless.

* Based on your application, draw a sequence diagram of __all packet transactions__ between the clients and the server (one diagram only) when a new client connects and sends one direct message. 

  <div class="alert alert-block alert-info">
      <b>Hint:</b> Refer back to task 2.2
  </div>

* If your code in <span style="font-size: 25px;">Q1. </span>  is not working, explain why it is not working and how you have tried to fix it.

* If you completed Bonus <span style="font-size: 25px;">Q. </span> briefly explain your modifications.

* **Extra**<span style="font-size: 25px;"> Q.</span> Assess whether your application could be experiencing a Denial-of-service (DoS) attack. Briefly discuss how can you modify your code to improve the security of your chat room application and reduce its vulnerability to such attacks. 


<div class="alert alert-block alert-info">
    <b>Tip:</b> Your explanations should be specific to your application. <b>Do not</b> write a generic explanation from the textbook, Internet, or ChatGPT.
</div>


<div class="alert alert-block alert-info">
    <b>Note:</b> Check the Blackboard (Course work) and submit a <u>PDF report</u> along with the <u>Python files</u>.
</div>

