Implementation of gossipsub v1.1 - Hardening #263

vyzo · 2020-03-02T13:58:45Z

This PR implements the Hardening extensions as defined by Gossipsub v1.1 Specification

What is left to do

plug peer score into gossipsub algorithms
flood publishing option
adaptive gossip disemmination
(re)transmission limit for IWANT requests
fill in the peer score calculation details
Increase the code coverage with unit tests (Unit /Regression tests for gossipsub v1.1 #281 Improve test coverage #287)
Testground testing

gossipsub.go

vyzo · 2020-03-09T12:12:02Z

Summoning @yusefnapora @raulk @Stebalien @Kubuxu @whyrusleeping

This is ready for review (modulo unit tests).

pubsub.go

whyrusleeping · 2020-03-11T08:29:52Z

pubsub.go

@@ -775,6 +784,12 @@ func (p *PubSub) handleIncomingRPC(rpc *RPC) {
 		}
 	}

+	// ask the router to vet the peer before commiting any processing resources
+	if !p.rt.AcceptFrom(rpc.from) {
+		log.Warningf("received message from router graylisted peer %s. Dropping RPC", rpc.from)


should we do something if we get a bunch of these?

we could blacklist i guess, but then we'd have to count stuff.

gossipsub.go

whyrusleeping · 2020-03-15T19:50:04Z

score.go

+	go ps.background(gs.p.ctx)
+}
+
+func (ps *peerScore) Score(p peer.ID) float64 {


As far as I can tell, this gets called for every single message received. It seems to me like it may get rather resource intensive. Let's keep this in mind and observe CPU profiles during tests

Yes, the Score method gets called a lot. It should be relatively lightweight to compute, but good point about looking at CPU profiles.

We also should watch lock contention there.

schomatis · 2020-03-16T05:01:05Z

score.go

+	}
+
+	// check that we have an app specific score; the weight can be anything (but expected positive)
+	if p.AppSpecificScore == nil {


Let's also check AppSpecificWeight here, or maybe even remove it altogether, as this is an app-controlled function that can regulate its own score values (in contrast with the other weights that modulate pubsub behavior).

That's a good suggestion, we can consider removing the app specific weight and just keep the score function.

+1 to removing AppSpecificWeight, I don't see it adding anything.

gossipsub.go

score.go

vyzo · 2020-03-16T16:26:32Z

also merged in #268 as this fixes a tracing bug.

vyzo · 2020-03-17T12:19:38Z

Add a WithPeerScoreDebug option to enable periodic inspection/dumping of the peer scores.

vyzo · 2020-03-23T07:54:02Z

Some improvements of the backoff handling:

we now extend the backoff when pruning because of backoff or a negative score; we also check the exact expiration.
backoff is cleaned up every 15 heartbeat ticks to amortize the cost of iterating over the maps.

gossipsub.go

score.go

…ther peer

…ection

instead of trying to piggyback with outgoing messages

Co-Authored-By: Raúl Kripalani <[email protected]>

It was removing all old addresses, not just the ones in the new addres slice

Also, don't track loopback addrs.

vyzo · 2020-04-18T07:53:09Z

Rebased on master for merging.

daviddias · 2020-04-18T13:56:24Z

YEaasasssss!!! Phenomenal work everyone!!!

vyzo requested review from Stebalien, raulk, whyrusleeping, Kubuxu and yusefnapora March 2, 2020 13:58

willscott reviewed Mar 2, 2020

View reviewed changes

gossipsub.go Show resolved Hide resolved

raulk changed the title ~~[WIP] gossipsub hardeninng~~ [WIP] gossipsub hardening Mar 3, 2020

yusefnapora reviewed Mar 10, 2020

View reviewed changes

pubsub.go Show resolved Hide resolved

whyrusleeping reviewed Mar 11, 2020

View reviewed changes

gossipsub.go Show resolved Hide resolved

vyzo mentioned this pull request Mar 12, 2020

gossipsub v1.1 specification libp2p/specs#254

Merged

whyrusleeping reviewed Mar 15, 2020

View reviewed changes