Reject overflowing connection with status code 429

test-utils/src/types.rs

@@ -88,22 +88,33 @@ impl std::fmt::Debug for WebSocketTestClient {
 	}
 }
 
+#[derive(Debug)]
+pub enum WebSocketTestError {
+	Redirect,
+	RejectedWithStatusCode(u16),
+	Soketto(SokettoError),
+}
+
+impl From<io::Error> for WebSocketTestError {
+	fn from(err: io::Error) -> Self {
+		WebSocketTestError::Soketto(SokettoError::Io(err))
+	}
+}
+
 impl WebSocketTestClient {
-	pub async fn new(url: SocketAddr) -> Result<Self, SokettoError> {
+	pub async fn new(url: SocketAddr) -> Result<Self, WebSocketTestError> {
 		let socket = TcpStream::connect(url).await?;
 		let mut client = handshake::Client::new(BufReader::new(BufWriter::new(socket.compat())), "test-client", "/");
 		match client.handshake().await {
 			Ok(handshake::ServerResponse::Accepted { .. }) => {
 				let (tx, rx) = client.into_builder().finish();
 				Ok(Self { tx, rx })
 			}
-			Ok(handshake::ServerResponse::Redirect { .. }) => {
-				Err(SokettoError::Io(io::Error::new(io::ErrorKind::Other, "Redirection not supported in tests")))
+			Ok(handshake::ServerResponse::Redirect { .. }) => Err(WebSocketTestError::Redirect),
+			Ok(handshake::ServerResponse::Rejected { status_code }) => {
+				Err(WebSocketTestError::RejectedWithStatusCode(status_code))
 			}
-			Ok(handshake::ServerResponse::Rejected { .. }) => {
-				Err(SokettoError::Io(io::Error::new(io::ErrorKind::Other, "Rejected")))
-			}
-			Err(err) => Err(err),
+			Err(err) => Err(WebSocketTestError::Soketto(err)),
 		}
 	}
 

ws-server/src/server.rs

@@ -86,13 +86,17 @@ impl Server {
 
 					if connections.count() >= self.cfg.max_connections as usize {
 						log::warn!("Too many connections. Try again in a while.");
+						connections.add(Box::pin(handshake(socket, Handshake::Reject { status_code: 429 })));
 						continue;
 					}
 
 					let methods = &methods;
 					let cfg = &self.cfg;
 
-					connections.add(Box::pin(handshake(socket, id, methods, cfg, &stop_monitor)));
+					connections.add(Box::pin(handshake(
+						socket,
+						Handshake::Accept { conn_id: id, methods, cfg, stop_monitor: &stop_monitor },
+					)));
 
 					id = id.wrapping_add(1);
 				}
@@ -139,49 +143,59 @@ impl<'a> Future for Incoming<'a> {
 	}
 }
 
-async fn handshake(
-	socket: tokio::net::TcpStream,
-	conn_id: ConnectionId,
-	methods: &Methods,
-	cfg: &Settings,
-	stop_monitor: &StopMonitor,
-) -> Result<(), Error> {
+enum Handshake<'a> {
+	Reject { status_code: u16 },
+	Accept { conn_id: ConnectionId, methods: &'a Methods, cfg: &'a Settings, stop_monitor: &'a StopMonitor },
+}
+
+async fn handshake(socket: tokio::net::TcpStream, details: Handshake<'_>) -> Result<(), Error> {
 	// For each incoming background_task we perform a handshake.
 	let mut server = SokettoServer::new(BufReader::new(BufWriter::new(socket.compat())));
 
-	let key = {
-		let req = server.receive_request().await?;
-		let host_check = cfg.allowed_hosts.verify("Host", Some(req.headers().host));
-		let origin_check = cfg.allowed_origins.verify("Origin", req.headers().origin);
-
-		host_check.and(origin_check).map(|()| req.key())
-	};
-
-	match key {
-		Ok(key) => {
-			let accept = Response::Accept { key, protocol: None };
-			server.send_response(&accept).await?;
-		}
-		Err(error) => {
-			let reject = Response::Reject { status_code: 403 };
+	match details {
+		Handshake::Reject { status_code } => {
+			// Forced rejection, don't need to read anything from the socket
+			let reject = Response::Reject { status_code };
 			server.send_response(&reject).await?;
 
-			return Err(error);
+			Ok(())
 		}
-	}
+		Handshake::Accept { conn_id, methods, cfg, stop_monitor } => {
+			let key = {
+				let req = server.receive_request().await?;
+				let host_check = cfg.allowed_hosts.verify("Host", Some(req.headers().host));
+				let origin_check = cfg.allowed_origins.verify("Origin", req.headers().origin);
 
-	let join_result = tokio::spawn(background_task(
-		server,
-		conn_id,
-		methods.clone(),
-		cfg.max_request_body_size,
-		stop_monitor.clone(),
-	))
-	.await;
-
-	match join_result {
-		Err(_) => Err(Error::Custom("Background task was aborted".into())),
-		Ok(result) => result,
+				host_check.and(origin_check).map(|()| req.key())
+			};
+
+			match key {
+				Ok(key) => {
+					let accept = Response::Accept { key, protocol: None };
+					server.send_response(&accept).await?;
+				}
+				Err(error) => {
+					let reject = Response::Reject { status_code: 403 };
+					server.send_response(&reject).await?;
+
+					return Err(error);
+				}
+			}
+
+			let join_result = tokio::spawn(background_task(
+				server,
+				conn_id,
+				methods.clone(),
+				cfg.max_request_body_size,
+				stop_monitor.clone(),
+			))
+			.await;
+
+			match join_result {
+				Err(_) => Err(Error::Custom("Background task was aborted".into())),
+				Ok(result) => result,
+			}
+		}
 	}
 }
 

ws-server/src/tests.rs

@@ -31,7 +31,7 @@ use crate::{future::StopHandle, RpcModule, WsServerBuilder};
 use anyhow::anyhow;
 use futures_util::FutureExt;
 use jsonrpsee_test_utils::helpers::*;
-use jsonrpsee_test_utils::types::{Id, TestContext, WebSocketTestClient};
+use jsonrpsee_test_utils::types::{Id, TestContext, WebSocketTestClient, WebSocketTestError};
 use jsonrpsee_test_utils::TimeoutFutureExt;
 use serde_json::Value as JsonValue;
 use std::fmt;
@@ -203,12 +203,7 @@ async fn can_set_max_connections() {
 	assert!(conn2.is_ok());
 	// Third connection is rejected
 	assert!(conn3.is_err());
-
-	let err = match conn3 {
-		Err(soketto::handshake::Error::Io(err)) => err,
-		_ => panic!("Invalid error kind; expected std::io::Error"),
-	};
-	assert_eq!(err.kind(), std::io::ErrorKind::ConnectionReset);
+	assert!(matches!(conn3, Err(WebSocketTestError::RejectedWithStatusCode(429))));
 
 	// Decrement connection count
 	drop(conn2);