Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

don't add peers with only private addresses to your routing table #360

Merged
merged 6 commits into from
Jun 26, 2019
Merged

don't add peers with only private addresses to your routing table #360

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
9387b5a
don't add peers with only private addresses to your routing table
whyrusleeping Jun 25, 2019
03293e8
add more filters
whyrusleeping Jun 25, 2019
c6cd6d5
use less wasteful update method
whyrusleeping Jun 25, 2019
8bf0863
address PR review
whyrusleeping Jun 26, 2019
f34a5b1
rejig for query filtering.
raulk Jun 26, 2019
9bc949d
rejig v2.
raulk Jun 26, 2019
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
81 changes: 79 additions & 2 deletions dht.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -29,9 +29,12 @@ import (
logging "github.com/ipfs/go-log"
goprocess "github.com/jbenet/goprocess"
goprocessctx "github.com/jbenet/goprocess/context"
circuit "github.com/libp2p/go-libp2p-circuit"
kb "github.com/libp2p/go-libp2p-kbucket"
record "github.com/libp2p/go-libp2p-record"
recpb "github.com/libp2p/go-libp2p-record/pb"
ma "github.com/multiformats/go-multiaddr"
manet "github.com/multiformats/go-multiaddr-net"
base32 "github.com/whyrusleeping/base32"
)

Expand Down Expand Up @@ -274,8 +277,82 @@ func (dht *IpfsDHT) putLocal(key string, rec *recpb.Record) error {
// Update signals the routingTable to Update its last-seen status
// on the given peer.
func (dht *IpfsDHT) Update(ctx context.Context, p peer.ID) {
logger.Event(ctx, "updatePeer", p)
dht.routingTable.Update(p)
conns := dht.host.Network().ConnsToPeer(p)
switch len(conns) {
default:
logger.Warning("unclear if we should add peer with multiple open connections to us to our routing table")
case 0:
logger.Error("called update on a peer with no connection")
case 1:
dht.UpdateConn(ctx, conns[0])
}
}

func (dht *IpfsDHT) UpdateConn(ctx context.Context, c network.Conn) {
if dht.shouldAddPeerToRoutingTable(c) {
logger.Event(ctx, "updatePeer", c.RemotePeer())
dht.routingTable.Update(c.RemotePeer())
}
}

func (dht *IpfsDHT) shouldAddPeerToRoutingTable(c network.Conn) bool {
if isRelayAddr(c.RemoteMultiaddr()) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We should only check this for outbound connections. If we're behind a relay and operating in client mode, we still want to use relayed peers in our DHT.

return false
}
if c.Stat().Direction == network.DirOutbound {
// we established this connection, so they're definitely diallable.
return true
}

ai := dht.host.Peerstore().PeerInfo(c.RemotePeer())
if dht.peerIsOnSameSubnet(c) {
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

if we do this here, we don't return false for peers with no addresses at all, or peers with relay addresses.

Copy link
Member

@raulk raulk Jun 26, 2019
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

peers with relay addrs are caught in L299. let me look at the 0-addr case.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

wait no, they're covered iff we're connected to them via a relay, but not if we are directly connected but they advertise relay addrs.

// TODO: for now, we can't easily tell if the peer on our subnet
// is dialable or not, so don't discriminate.
magik6k marked this conversation as resolved.
Show resolved Hide resolved

// We won't return these peers in queries unless the requester's
// remote addr is also private.
return len(ai.Addrs) > 0
}

return dht.isPubliclyRoutable(ai)
}

func (dht *IpfsDHT) isPubliclyRoutable(ai peer.AddrInfo) bool {
if len(ai.Addrs) == 0 {
return false
}

var hasPublicAddr bool
for _, a := range ai.Addrs {
if isRelayAddr(a) {
return false
}
if manet.IsPublicAddr(a) {
hasPublicAddr = true
}
}
return hasPublicAddr
}

// taken from go-libp2p/p2p/host/relay
func isRelayAddr(a ma.Multiaddr) bool {
isRelay := false

ma.ForEach(a, func(c ma.Component) bool {
switch c.Protocol().Code {
case circuit.P_CIRCUIT:
isRelay = true
return false
default:
return true
}
})

return isRelay
}

func (dht *IpfsDHT) peerIsOnSameSubnet(c network.Conn) bool {
return manet.IsPrivateAddr(c.RemoteMultiaddr())
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

How is this checking if we're on the same subnet as the peer? How about a manet.IsPrivateAddr(c.RemoteMultiaddr()) && c.RemoteMultiaddr() in addrs check here?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

if we are connected to someone, and the connection is a private IP address, we must be on the same subnet as them, as private IPs are never routed outside of their subnet

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

duh, of course

}

// FindLocal looks for a peer with a given ID connected to this dht and returns the peer and the table it was found in.
Expand Down
10 changes: 5 additions & 5 deletions dht_net.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -139,7 +139,7 @@ func (dht *IpfsDHT) handleNewMessage(s network.Stream) bool {
return false
}

dht.updateFromMessage(ctx, mPeer, &req)
dht.updateFromMessage(ctx, s.Conn(), &req)

if resp == nil {
continue
Expand Down Expand Up @@ -179,7 +179,7 @@ func (dht *IpfsDHT) sendRequest(ctx context.Context, p peer.ID, pmes *pb.Message
}

// update the peer (on valid msgs only)
dht.updateFromMessage(ctx, p, rpmes)
dht.updateFromMessage(ctx, ms.s.Conn(), rpmes)

stats.Record(
ctx,
Expand Down Expand Up @@ -218,11 +218,11 @@ func (dht *IpfsDHT) sendMessage(ctx context.Context, p peer.ID, pmes *pb.Message
return nil
}

func (dht *IpfsDHT) updateFromMessage(ctx context.Context, p peer.ID, mes *pb.Message) error {
func (dht *IpfsDHT) updateFromMessage(ctx context.Context, c network.Conn, mes *pb.Message) error {
// Make sure that this node is actually a DHT server, not just a client.
protos, err := dht.peerstore.SupportsProtocols(p, dht.protocolStrs()...)
protos, err := dht.peerstore.SupportsProtocols(c.RemotePeer(), dht.protocolStrs()...)
if err == nil && len(protos) > 0 {
dht.Update(ctx, p)
dht.UpdateConn(ctx, c)
}
return nil
}
Expand Down
5 changes: 5 additions & 0 deletions ext_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -33,6 +33,9 @@ func TestGetFailures(t *testing.T) {
if err != nil {
t.Fatal(err)
}

// TODO: replace with identify event bus event
time.Sleep(time.Millisecond * 100)
d.Update(ctx, hosts[1].ID())

// Reply with failures to every message
Expand Down Expand Up @@ -302,6 +305,8 @@ func TestMultipleQueries(t *testing.T) {
t.Fatal(err)
}

// TODO: need to wait for Identify Event from event bus
time.Sleep(time.Millisecond * 100)
d.Update(ctx, hosts[1].ID())

// It would be nice to be able to just get a value and succeed but then
Expand Down
2 changes: 2 additions & 0 deletions go.mod
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,7 @@ require (
github.com/ipfs/go-todocounter v0.0.1
github.com/jbenet/goprocess v0.1.3
github.com/libp2p/go-libp2p v0.1.0
github.com/libp2p/go-libp2p-circuit v0.1.0
github.com/libp2p/go-libp2p-core v0.0.1
github.com/libp2p/go-libp2p-kbucket v0.2.0
github.com/libp2p/go-libp2p-peerstore v0.1.0
Expand All @@ -21,6 +22,7 @@ require (
github.com/mr-tron/base58 v1.1.2
github.com/multiformats/go-multiaddr v0.0.4
github.com/multiformats/go-multiaddr-dns v0.0.2
github.com/multiformats/go-multiaddr-net v0.0.1
github.com/multiformats/go-multistream v0.1.0
github.com/stretchr/testify v1.3.0
github.com/whyrusleeping/base32 v0.0.0-20170828182744-c30ac30633cc
Expand Down
1 change: 1 addition & 0 deletions go.sum
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -111,6 +111,7 @@ github.com/libp2p/go-libp2p v0.1.0/go.mod h1:6D/2OBauqLUoqcADOJpn9WbKqvaM07tDw68
github.com/libp2p/go-libp2p-autonat v0.1.0/go.mod h1:1tLf2yXxiE/oKGtDwPYWTSYG3PtvYlJmg7NeVtPRqH8=
github.com/libp2p/go-libp2p-blankhost v0.1.1 h1:X919sCh+KLqJcNRApj43xCSiQRYqOSI88Fdf55ngf78=
github.com/libp2p/go-libp2p-blankhost v0.1.1/go.mod h1:pf2fvdLJPsC1FsVrNP3DUUvMzUts2dsLLBEpo1vW1ro=
github.com/libp2p/go-libp2p-circuit v0.1.0 h1:eniLL3Y9aq/sryfyV1IAHj5rlvuyj3b7iz8tSiZpdhY=
github.com/libp2p/go-libp2p-circuit v0.1.0/go.mod h1:Ahq4cY3V9VJcHcn1SBXjr78AbFkZeIRmfunbA7pmFh8=
github.com/libp2p/go-libp2p-core v0.0.1 h1:HSTZtFIq/W5Ue43Zw+uWZyy2Vl5WtF0zDjKN8/DT/1I=
github.com/libp2p/go-libp2p-core v0.0.1/go.mod h1:g/VxnTZ/1ygHxH3dKok7Vno1VfpvGcGip57wjTU4fco=
Expand Down
4 changes: 2 additions & 2 deletions notif.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -32,7 +32,7 @@ func (nn *netNotifiee) Connected(n network.Network, v network.Conn) {
dht.plk.Lock()
defer dht.plk.Unlock()
if dht.host.Network().Connectedness(p) == network.Connected {
dht.Update(dht.Context(), p)
dht.UpdateConn(dht.Context(), v)
}
return
}
Expand Down Expand Up @@ -71,7 +71,7 @@ func (nn *netNotifiee) testConnection(v network.Conn) {
dht.plk.Lock()
defer dht.plk.Unlock()
if dht.host.Network().Connectedness(p) == network.Connected {
dht.Update(dht.Context(), p)
dht.UpdateConn(dht.Context(), v)
}
}

Expand Down