zecfoundation
/
zebra
mirror of https://github.com/ZcashFoundation/zebra.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
zebra/zebra-network/src/meta_addr.rs

289 lines
10 KiB
Rust
Raw Normal View History

Introduce a `MetaAddr` type replacing `NetworkAddress`. The `NetworkAddress` type was a `(Services, SocketAddr)` pair as used in the `version` handshake message, described as the `net_addr` struct in the Bitcoin wiki protocol documentation. However, all of the other uses of the `net_addr` struct are a `(Timestamp, Services, SocketAddr)` pair (where the timestamp is the last-seen time of the peer), and the timestamp is omitted only during the `version` messages, which are used only during the handshake, so it seems better to include the timestamp field and omit it during serialization of `version` packets.
2019-09-12 03:36:50 -07:00
//! An address-with-metadata type used in Bitcoin networking.
Rewrite AddressBook to use a BTreeSet. The previous implementation failed when timestamps were duplicated between peers, because there was not a 1-1 relationship between timestamps and peers.
2019-10-17 21:19:23 -07:00
use std::{
cmp::{Ord, Ordering},
io::{Read, Write},
net::SocketAddr,
};
Introduce a `MetaAddr` type replacing `NetworkAddress`. The `NetworkAddress` type was a `(Services, SocketAddr)` pair as used in the `version` handshake message, described as the `net_addr` struct in the Bitcoin wiki protocol documentation. However, all of the other uses of the `net_addr` struct are a `(Timestamp, Services, SocketAddr)` pair (where the timestamp is the last-seen time of the peer), and the timestamp is omitted only during the `version` messages, which are used only during the handshake, so it seems better to include the timestamp field and omit it during serialization of `version` packets.
2019-09-12 03:36:50 -07:00
Add addr, getaddr serialization.
2019-09-25 16:20:02 -07:00
use byteorder::{LittleEndian, ReadBytesExt, WriteBytesExt};
use chrono::{DateTime, TimeZone, Utc};
use zebra_chain::serialization::{
Implement Trusted Vector Preallocation (#1920) * Implement SafePreallocate. Resolves #1880 * Add proptests for SafePreallocate * Apply suggestions from code review Comments which did not include replacement code will be addressed in a follow-up commit. Co-authored-by: teor <teor@riseup.net> * Rename [Safe-> Trusted]Allocate. Add doc and tests Add tests to show that the largest allowed vec under TrustedPreallocate is small enough to fit in a Zcash block/message (depending on type). Add doc comments to all TrustedPreallocate test cases. Tighten bounds on max_trusted_alloc for some types. Note - this commit does NOT include TrustedPreallocate impls for JoinSplitData, String, and Script. These impls will be added in a follow up commit * Implement SafePreallocate. Resolves #1880 * Add proptests for SafePreallocate * Apply suggestions from code review Comments which did not include replacement code will be addressed in a follow-up commit. Co-authored-by: teor <teor@riseup.net> * Rename [Safe-> Trusted]Allocate. Add doc and tests Add tests to show that the largest allowed vec under TrustedPreallocate is small enough to fit in a Zcash block/message (depending on type). Add doc comments to all TrustedPreallocate test cases. Tighten bounds on max_trusted_alloc for some types. Note - this commit does NOT include TrustedPreallocate impls for JoinSplitData, String, and Script. These impls will be added in a follow up commit * Impl TrustedPreallocate for Joinsplit * Impl ZcashDeserialize for Vec<u8> * Arbitrary, TrustedPreallocate, Serialize, and tests for Spend<SharedAnchor> Co-authored-by: teor <teor@riseup.net>
2021-04-05 16:49:42 -07:00
ReadZcashExt, SerializationError, TrustedPreallocate, WriteZcashExt, ZcashDeserialize,
ZcashSerialize,
Add addr, getaddr serialization.
2019-09-25 16:20:02 -07:00
};
Implement Trusted Vector Preallocation (#1920) * Implement SafePreallocate. Resolves #1880 * Add proptests for SafePreallocate * Apply suggestions from code review Comments which did not include replacement code will be addressed in a follow-up commit. Co-authored-by: teor <teor@riseup.net> * Rename [Safe-> Trusted]Allocate. Add doc and tests Add tests to show that the largest allowed vec under TrustedPreallocate is small enough to fit in a Zcash block/message (depending on type). Add doc comments to all TrustedPreallocate test cases. Tighten bounds on max_trusted_alloc for some types. Note - this commit does NOT include TrustedPreallocate impls for JoinSplitData, String, and Script. These impls will be added in a follow up commit * Implement SafePreallocate. Resolves #1880 * Add proptests for SafePreallocate * Apply suggestions from code review Comments which did not include replacement code will be addressed in a follow-up commit. Co-authored-by: teor <teor@riseup.net> * Rename [Safe-> Trusted]Allocate. Add doc and tests Add tests to show that the largest allowed vec under TrustedPreallocate is small enough to fit in a Zcash block/message (depending on type). Add doc comments to all TrustedPreallocate test cases. Tighten bounds on max_trusted_alloc for some types. Note - this commit does NOT include TrustedPreallocate impls for JoinSplitData, String, and Script. These impls will be added in a follow up commit * Impl TrustedPreallocate for Joinsplit * Impl ZcashDeserialize for Vec<u8> * Arbitrary, TrustedPreallocate, Serialize, and tests for Spend<SharedAnchor> Co-authored-by: teor <teor@riseup.net>
2021-04-05 16:49:42 -07:00
use crate::protocol::{external::MAX_PROTOCOL_MESSAGE_LEN, types::PeerServices};
Introduce a `MetaAddr` type replacing `NetworkAddress`. The `NetworkAddress` type was a `(Services, SocketAddr)` pair as used in the `version` handshake message, described as the `net_addr` struct in the Bitcoin wiki protocol documentation. However, all of the other uses of the `net_addr` struct are a `(Timestamp, Services, SocketAddr)` pair (where the timestamp is the last-seen time of the peer), and the timestamp is omitted only during the `version` messages, which are used only during the handshake, so it seems better to include the timestamp field and omit it during serialization of `version` packets.
2019-09-12 03:36:50 -07:00
use PeerAddrState::*
2021-03-25 01:34:52 -07:00
use PeerAddrState::*;
Add InventoryHash and MetaAddr proptests (#1985) * Make proptest dependencies consistent between chain and network * Implement Arbitrary for InventoryHash and use it in tests * Impl Arbitrary for MetaAddr and use it in tests Also test some extreme times in MetaAddr sanitization.
2021-04-07 10:13:52 -07:00
#[cfg(any(test, feature = "proptest-impl"))]
use proptest_derive::Arbitrary;
#[cfg(any(test, feature = "proptest-impl"))]
mod arbitrary;
Move the preallocate tests into their own files (#1977) * Move the preallocate tests into their own files And move the MetaAddr proptest into its own file. Also do some minor formatting and cleanups. Co-authored-by: Deirdre Connolly <durumcrustulum@gmail.com>
2021-04-06 19:32:27 -07:00
#[cfg(test)]
mod tests;
Fix candidate set address state handling (#1709) Design: - Add a `PeerAddrState` to each `MetaAddr` - Use a single peer set for all peers, regardless of state - Implement time-based liveness as an `AddressBook` method, rather than a `PeerAddrState` variant - Delete `AddressBook.by_state` Implementation: - Simplify `AddressBook` changes using `update` and `take` modifier methods - Simplify the `AddressBook` iterator implementation, replacing it with methods that are more obviously correct - Consistently collect peer set metrics Documentation: - Expand and update the peer set documentation We can optimise later, but for now we want simple code that is more obviously correct.
2021-02-17 17:18:32 -08:00
/// Peer connection state, based on our interactions with the peer.
///
/// Zebra also tracks how recently a peer has sent us messages, and derives peer
/// liveness based on the current time. This derived state is tracked using
/// [`AddressBook::maybe_connected_peers`] and
/// [`AddressBook::reconnection_peers`].
#[derive(Copy, Clone, Debug, Eq, PartialEq)]
Add InventoryHash and MetaAddr proptests (#1985) * Make proptest dependencies consistent between chain and network * Implement Arbitrary for InventoryHash and use it in tests * Impl Arbitrary for MetaAddr and use it in tests Also test some extreme times in MetaAddr sanitization.
2021-04-07 10:13:52 -07:00
#[cfg_attr(any(test, feature = "proptest-impl"), derive(Arbitrary))]
Fix candidate set address state handling (#1709) Design: - Add a `PeerAddrState` to each `MetaAddr` - Use a single peer set for all peers, regardless of state - Implement time-based liveness as an `AddressBook` method, rather than a `PeerAddrState` variant - Delete `AddressBook.by_state` Implementation: - Simplify `AddressBook` changes using `update` and `take` modifier methods - Simplify the `AddressBook` iterator implementation, replacing it with methods that are more obviously correct - Consistently collect peer set metrics Documentation: - Expand and update the peer set documentation We can optimise later, but for now we want simple code that is more obviously correct.
2021-02-17 17:18:32 -08:00
pub enum PeerAddrState {
/// The peer has sent us a valid message.
///
/// Peers remain in this state, even if they stop responding to requests.
/// (Peer liveness is derived from the `last_seen` timestamp, and the current
/// time.)
Responded,
/// The peer's address has just been fetched from a DNS seeder, or via peer
/// gossip, but we haven't attempted to connect to it yet.
NeverAttempted,
/// The peer's TCP connection failed, or the peer sent us an unexpected
/// Zcash protocol message, so we failed the connection.
Failed,
/// We just started a connection attempt to this peer.
AttemptPending,
}
impl Default for PeerAddrState {
fn default() -> Self {
use PeerAddrState::*
2021-03-25 01:34:52 -07:00
NeverAttempted
Fix candidate set address state handling (#1709) Design: - Add a `PeerAddrState` to each `MetaAddr` - Use a single peer set for all peers, regardless of state - Implement time-based liveness as an `AddressBook` method, rather than a `PeerAddrState` variant - Delete `AddressBook.by_state` Implementation: - Simplify `AddressBook` changes using `update` and `take` modifier methods - Simplify the `AddressBook` iterator implementation, replacing it with methods that are more obviously correct - Consistently collect peer set metrics Documentation: - Expand and update the peer set documentation We can optimise later, but for now we want simple code that is more obviously correct.
2021-02-17 17:18:32 -08:00
}
}
impl Ord for PeerAddrState {
/// `PeerAddrState`s are sorted in approximate reconnection attempt
/// order, ignoring liveness.
///
/// See [`CandidateSet`] and [`MetaAddr::cmp`] for more details.
fn cmp(&self, other: &Self) -> Ordering {
match (self, other) {
(Responded, Responded)
| (NeverAttempted, NeverAttempted)
| (Failed, Failed)
| (AttemptPending, AttemptPending) => Ordering::Equal,
// We reconnect to `Responded` peers that have stopped sending messages,
// then `NeverAttempted` peers, then `Failed` peers
(Responded, _) => Ordering::Less,
(_, Responded) => Ordering::Greater,
(NeverAttempted, _) => Ordering::Less,
(_, NeverAttempted) => Ordering::Greater,
(Failed, _) => Ordering::Less,
(_, Failed) => Ordering::Greater,
// AttemptPending is covered by the other cases
}
}
}
impl PartialOrd for PeerAddrState {
fn partial_cmp(&self, other: &Self) -> Option<Ordering> {
Some(self.cmp(other))
}
}
Introduce a `MetaAddr` type replacing `NetworkAddress`. The `NetworkAddress` type was a `(Services, SocketAddr)` pair as used in the `version` handshake message, described as the `net_addr` struct in the Bitcoin wiki protocol documentation. However, all of the other uses of the `net_addr` struct are a `(Timestamp, Services, SocketAddr)` pair (where the timestamp is the last-seen time of the peer), and the timestamp is omitted only during the `version` messages, which are used only during the handshake, so it seems better to include the timestamp field and omit it during serialization of `version` packets.
2019-09-12 03:36:50 -07:00
/// An address with metadata on its advertised services and last-seen time.
Replace `Version` `MetaAddr` with `(Services, SocketAddr)`. (#12) * Replace Version MetaAddr by (Services, SocketAddr). The version handshake message doesn't include last-seen timestamps for the address fields, unlike other messages, so instead of modeling the message data with a `MetaAddr` (which includes a timestamp), we should just use a tuple. * Simplify try_read_version implementation. Because we no longer need to construct fake timestamps for the `MetaAddr` fields, we don't need to use any of the parsed fields while parsing later fields, and we can neatly wrap up the entire parsing logic into a single expression. * fmt I didn't have the toolchain-specified `rustfmt` because I was mostly offline and couldn't download it.
2019-09-19 09:38:02 -07:00
///
Introduce a `MetaAddr` type replacing `NetworkAddress`. The `NetworkAddress` type was a `(Services, SocketAddr)` pair as used in the `version` handshake message, described as the `net_addr` struct in the Bitcoin wiki protocol documentation. However, all of the other uses of the `net_addr` struct are a `(Timestamp, Services, SocketAddr)` pair (where the timestamp is the last-seen time of the peer), and the timestamp is omitted only during the `version` messages, which are used only during the handshake, so it seems better to include the timestamp field and omit it during serialization of `version` packets.
2019-09-12 03:36:50 -07:00
/// [Bitcoin reference](https://en.bitcoin.it/wiki/Protocol_documentation#Network_address)
Add missing derives to newtypes.
2019-09-15 12:11:07 -07:00
#[derive(Copy, Clone, Debug, Eq, PartialEq)]
Introduce a `MetaAddr` type replacing `NetworkAddress`. The `NetworkAddress` type was a `(Services, SocketAddr)` pair as used in the `version` handshake message, described as the `net_addr` struct in the Bitcoin wiki protocol documentation. However, all of the other uses of the `net_addr` struct are a `(Timestamp, Services, SocketAddr)` pair (where the timestamp is the last-seen time of the peer), and the timestamp is omitted only during the `version` messages, which are used only during the handshake, so it seems better to include the timestamp field and omit it during serialization of `version` packets.
2019-09-12 03:36:50 -07:00
pub struct MetaAddr {
/// The peer's address.
Make MetaAddr fields public.
2019-09-14 08:56:43 -07:00
pub addr: SocketAddr,
Fix candidate set address state handling (#1709) Design: - Add a `PeerAddrState` to each `MetaAddr` - Use a single peer set for all peers, regardless of state - Implement time-based liveness as an `AddressBook` method, rather than a `PeerAddrState` variant - Delete `AddressBook.by_state` Implementation: - Simplify `AddressBook` changes using `update` and `take` modifier methods - Simplify the `AddressBook` iterator implementation, replacing it with methods that are more obviously correct - Consistently collect peer set metrics Documentation: - Expand and update the peer set documentation We can optimise later, but for now we want simple code that is more obviously correct.
2021-02-17 17:18:32 -08:00
Make MetaAddr fields public.
2019-09-14 08:56:43 -07:00
/// The services advertised by the peer.
Fix candidate set address state handling (#1709) Design: - Add a `PeerAddrState` to each `MetaAddr` - Use a single peer set for all peers, regardless of state - Implement time-based liveness as an `AddressBook` method, rather than a `PeerAddrState` variant - Delete `AddressBook.by_state` Implementation: - Simplify `AddressBook` changes using `update` and `take` modifier methods - Simplify the `AddressBook` iterator implementation, replacing it with methods that are more obviously correct - Consistently collect peer set metrics Documentation: - Expand and update the peer set documentation We can optimise later, but for now we want simple code that is more obviously correct.
2021-02-17 17:18:32 -08:00
///
/// The exact meaning depends on `last_connection_state`:
/// - `Responded`: the services advertised by this peer, the last time we
/// performed a handshake with it
/// - `NeverAttempted`: the unverified services provided by the remote peer
/// that sent us this address
/// - `Failed` or `AttemptPending`: unverified services via another peer,
/// or services advertised in a previous handshake
///
/// ## Security
///
/// `services` from `NeverAttempted` peers may be invalid due to outdated
/// records, older peer versions, or buggy or malicious peers.
Rename `Services` to `PeerServices`. This field is called `services` in Bitcoin and Zcash, but because we use that word internally for other purposes, calling it `PeerServices` disambiguates the meaning to "the services advertised by the peer", rather than, e.g., a `tower::Service`.
2019-09-30 11:40:44 -07:00
pub services: PeerServices,
Fix candidate set address state handling (#1709) Design: - Add a `PeerAddrState` to each `MetaAddr` - Use a single peer set for all peers, regardless of state - Implement time-based liveness as an `AddressBook` method, rather than a `PeerAddrState` variant - Delete `AddressBook.by_state` Implementation: - Simplify `AddressBook` changes using `update` and `take` modifier methods - Simplify the `AddressBook` iterator implementation, replacing it with methods that are more obviously correct - Consistently collect peer set metrics Documentation: - Expand and update the peer set documentation We can optimise later, but for now we want simple code that is more obviously correct.
2021-02-17 17:18:32 -08:00
Make MetaAddr.last_seen into a private field
2021-03-25 01:36:06 -07:00
/// The last time we interacted with this peer.
///
/// See `get_last_seen` for details.
last_seen: DateTime<Utc>,
/// The outcome of our most recent communication attempt with this peer.
pub last_connection_state: PeerAddrState,
}
impl MetaAddr {
/// Create a new `MetaAddr` from the deserialized fields in an `Addr`
/// message.
pub fn new_gossiped(
addr: &SocketAddr,
services: &PeerServices,
last_seen: &DateTime<Utc>,
) -> MetaAddr {
MetaAddr {
addr: *addr,
services: *services,
last_seen: *last_seen,
// the state is Zebra-specific, it isn't part of the Zcash network protocol
last_connection_state: NeverAttempted,
}
}
/// Create a new `MetaAddr` for a peer that has just `Responded`.
pub fn new_responded(addr: &SocketAddr, services: &PeerServices) -> MetaAddr {
MetaAddr {
addr: *addr,
services: *services,
last_seen: Utc::now(),
last_connection_state: Responded,
}
}
Add more methods for creating MetaAddrs This refactor lets us remove `MetaAddr::update_last_seen()`.
2021-03-25 03:14:52 -07:00
/// Create a new `MetaAddr` for a peer that we want to reconnect to.
pub fn new_reconnect(addr: &SocketAddr, services: &PeerServices) -> MetaAddr {
MetaAddr {
addr: *addr,
services: *services,
last_seen: Utc::now(),
last_connection_state: AttemptPending,
}
}
/// Create a new `MetaAddr` for a peer that has just had an error.
pub fn new_errored(addr: &SocketAddr, services: &PeerServices) -> MetaAddr {
MetaAddr {
addr: *addr,
services: *services,
last_seen: Utc::now(),
last_connection_state: Failed,
}
}
/// Create a new `MetaAddr` for a peer that has just shut down.
pub fn new_shutdown(addr: &SocketAddr, services: &PeerServices) -> MetaAddr {
// TODO: if the peer shut down in the Responded state, preserve that
// state. All other states should be treated as (timeout) errors.
MetaAddr::new_errored(addr, services)
}
Fix candidate set address state handling (#1709) Design: - Add a `PeerAddrState` to each `MetaAddr` - Use a single peer set for all peers, regardless of state - Implement time-based liveness as an `AddressBook` method, rather than a `PeerAddrState` variant - Delete `AddressBook.by_state` Implementation: - Simplify `AddressBook` changes using `update` and `take` modifier methods - Simplify the `AddressBook` iterator implementation, replacing it with methods that are more obviously correct - Consistently collect peer set metrics Documentation: - Expand and update the peer set documentation We can optimise later, but for now we want simple code that is more obviously correct.
2021-02-17 17:18:32 -08:00
/// The last time we interacted with this peer.
///
/// The exact meaning depends on `last_connection_state`:
/// - `Responded`: the last time we processed a message from this peer
/// - `NeverAttempted`: the unverified time provided by the remote peer
/// that sent us this address
/// - `Failed`: the last time we marked the peer as failed
/// - `AttemptPending`: the last time we queued the peer for a reconnection
/// attempt
///
/// ## Security
///
/// `last_seen` times from `NeverAttempted` peers may be invalid due to
/// clock skew, or buggy or malicious peers.
Make MetaAddr.last_seen into a private field
2021-03-25 01:36:06 -07:00
pub fn get_last_seen(&self) -> DateTime<Utc> {
self.last_seen
}
Fix candidate set address state handling (#1709) Design: - Add a `PeerAddrState` to each `MetaAddr` - Use a single peer set for all peers, regardless of state - Implement time-based liveness as an `AddressBook` method, rather than a `PeerAddrState` variant - Delete `AddressBook.by_state` Implementation: - Simplify `AddressBook` changes using `update` and `take` modifier methods - Simplify the `AddressBook` iterator implementation, replacing it with methods that are more obviously correct - Consistently collect peer set metrics Documentation: - Expand and update the peer set documentation We can optimise later, but for now we want simple code that is more obviously correct.
2021-02-17 17:18:32 -08:00
Rewrite MetaAddr::sanitize so it's harder to misuse `sanitize` could be misused in two ways: * accidentally modifying the addresses in the address book itself * forgetting to sanitize new fields added to `MetaAddr` This change prevents accidental modification by taking `&self`, and explicitly creates a new sanitized `MetaAddr` with all fields listed.
2021-03-25 00:47:25 -07:00
/// Return a sanitized version of this `MetaAddr`, for sending to a remote peer.
pub fn sanitize(&self) -> MetaAddr {
Sanitize outbound address responses. This aims to prevent a remote peer from inspecting timings of all messages received by this node.
2019-11-13 14:03:12 -08:00
let interval = crate::constants::TIMESTAMP_TRUNCATION_SECONDS;
Make MetaAddr.last_seen into a private field
2021-03-25 01:36:06 -07:00
let ts = self.get_last_seen().timestamp();
Rewrite MetaAddr::sanitize so it's harder to misuse `sanitize` could be misused in two ways: * accidentally modifying the addresses in the address book itself * forgetting to sanitize new fields added to `MetaAddr` This change prevents accidental modification by taking `&self`, and explicitly creates a new sanitized `MetaAddr` with all fields listed.
2021-03-25 00:47:25 -07:00
let last_seen = Utc.timestamp(ts - ts.rem_euclid(interval), 0);
MetaAddr {
addr: self.addr,
Add InventoryHash and MetaAddr proptests (#1985) * Make proptest dependencies consistent between chain and network * Implement Arbitrary for InventoryHash and use it in tests * Impl Arbitrary for MetaAddr and use it in tests Also test some extreme times in MetaAddr sanitization.
2021-04-07 10:13:52 -07:00
// services are sanitized during parsing, so we don't need to make
// any changes here
Rewrite MetaAddr::sanitize so it's harder to misuse `sanitize` could be misused in two ways: * accidentally modifying the addresses in the address book itself * forgetting to sanitize new fields added to `MetaAddr` This change prevents accidental modification by taking `&self`, and explicitly creates a new sanitized `MetaAddr` with all fields listed.
2021-03-25 00:47:25 -07:00
services: self.services,
last_seen,
// the state isn't sent to the remote peer, but sanitize it anyway
last_connection_state: Default::default(),
}
Sanitize outbound address responses. This aims to prevent a remote peer from inspecting timings of all messages received by this node.
2019-11-13 14:03:12 -08:00
}
}
Rewrite AddressBook to use a BTreeSet. The previous implementation failed when timestamps were duplicated between peers, because there was not a 1-1 relationship between timestamps and peers.
2019-10-17 21:19:23 -07:00
impl Ord for MetaAddr {
Fix candidate set address state handling (#1709) Design: - Add a `PeerAddrState` to each `MetaAddr` - Use a single peer set for all peers, regardless of state - Implement time-based liveness as an `AddressBook` method, rather than a `PeerAddrState` variant - Delete `AddressBook.by_state` Implementation: - Simplify `AddressBook` changes using `update` and `take` modifier methods - Simplify the `AddressBook` iterator implementation, replacing it with methods that are more obviously correct - Consistently collect peer set metrics Documentation: - Expand and update the peer set documentation We can optimise later, but for now we want simple code that is more obviously correct.
2021-02-17 17:18:32 -08:00
/// `MetaAddr`s are sorted in approximate reconnection attempt order, but
/// with `Responded` peers sorted first as a group.
///
/// This order should not be used for reconnection attempts: use
/// [`AddressBook::reconnection_peers`] instead.
///
/// See [`CandidateSet`] for more details.
Rewrite AddressBook to use a BTreeSet. The previous implementation failed when timestamps were duplicated between peers, because there was not a 1-1 relationship between timestamps and peers.
2019-10-17 21:19:23 -07:00
fn cmp(&self, other: &Self) -> Ordering {
Fix candidate set address state handling (#1709) Design: - Add a `PeerAddrState` to each `MetaAddr` - Use a single peer set for all peers, regardless of state - Implement time-based liveness as an `AddressBook` method, rather than a `PeerAddrState` variant - Delete `AddressBook.by_state` Implementation: - Simplify `AddressBook` changes using `update` and `take` modifier methods - Simplify the `AddressBook` iterator implementation, replacing it with methods that are more obviously correct - Consistently collect peer set metrics Documentation: - Expand and update the peer set documentation We can optimise later, but for now we want simple code that is more obviously correct.
2021-02-17 17:18:32 -08:00
use std::net::IpAddr::{V4, V6};
Make MetaAddr.last_seen into a private field
2021-03-25 01:36:06 -07:00
let oldest_first = self.get_last_seen().cmp(&other.get_last_seen());
Fix candidate set address state handling (#1709) Design: - Add a `PeerAddrState` to each `MetaAddr` - Use a single peer set for all peers, regardless of state - Implement time-based liveness as an `AddressBook` method, rather than a `PeerAddrState` variant - Delete `AddressBook.by_state` Implementation: - Simplify `AddressBook` changes using `update` and `take` modifier methods - Simplify the `AddressBook` iterator implementation, replacing it with methods that are more obviously correct - Consistently collect peer set metrics Documentation: - Expand and update the peer set documentation We can optimise later, but for now we want simple code that is more obviously correct.
2021-02-17 17:18:32 -08:00
let newest_first = oldest_first.reverse();
let connection_state = self.last_connection_state.cmp(&other.last_connection_state);
let reconnection_time = match self.last_connection_state {
Responded => oldest_first,
NeverAttempted => newest_first,
Failed => oldest_first,
AttemptPending => oldest_first,
};
let ip_numeric = match (self.addr.ip(), other.addr.ip()) {
(V4(a), V4(b)) => a.octets().cmp(&b.octets()),
(V6(a), V6(b)) => a.octets().cmp(&b.octets()),
(V4(_), V6(_)) => Ordering::Less,
(V6(_), V4(_)) => Ordering::Greater,
};
connection_state
.then(reconnection_time)
Rewrite AddressBook to use a BTreeSet. The previous implementation failed when timestamps were duplicated between peers, because there was not a 1-1 relationship between timestamps and peers.
2019-10-17 21:19:23 -07:00
// The remainder is meaningless as an ordering, but required so that we
// have a total order on `MetaAddr` values: self and other must compare
// as Ordering::Equal iff they are equal.
Fix candidate set address state handling (#1709) Design: - Add a `PeerAddrState` to each `MetaAddr` - Use a single peer set for all peers, regardless of state - Implement time-based liveness as an `AddressBook` method, rather than a `PeerAddrState` variant - Delete `AddressBook.by_state` Implementation: - Simplify `AddressBook` changes using `update` and `take` modifier methods - Simplify the `AddressBook` iterator implementation, replacing it with methods that are more obviously correct - Consistently collect peer set metrics Documentation: - Expand and update the peer set documentation We can optimise later, but for now we want simple code that is more obviously correct.
2021-02-17 17:18:32 -08:00
.then(ip_numeric)
Rewrite AddressBook to use a BTreeSet. The previous implementation failed when timestamps were duplicated between peers, because there was not a 1-1 relationship between timestamps and peers.
2019-10-17 21:19:23 -07:00
.then(self.addr.port().cmp(&other.addr.port()))
.then(self.services.bits().cmp(&other.services.bits()))
}
}
impl PartialOrd for MetaAddr {
fn partial_cmp(&self, other: &Self) -> Option<Ordering> {
Some(self.cmp(other))
}
}
Add addr, getaddr serialization.
2019-09-25 16:20:02 -07:00
impl ZcashSerialize for MetaAddr {
Make ZcashSerialize infallible mod its Writer. Closes #158. As discussed on the issue, this makes it possible to safely serialize data into hashes, and encourages serializable data to make illegal states unrepresentable.
2020-02-05 14:32:10 -08:00
fn zcash_serialize<W: Write>(&self, mut writer: W) -> Result<(), std::io::Error> {
Make MetaAddr.last_seen into a private field
2021-03-25 01:36:06 -07:00
writer.write_u32::<LittleEndian>(self.get_last_seen().timestamp() as u32)?;
Replace PeerServices(u64) with a bitflags struct. This gives considerably better ergonomics.
2019-09-30 11:58:32 -07:00
writer.write_u64::<LittleEndian>(self.services.bits())?;
Add addr, getaddr serialization.
2019-09-25 16:20:02 -07:00
writer.write_socket_addr(self.addr)?;
Ok(())
}
}
impl ZcashDeserialize for MetaAddr {
fn zcash_deserialize<R: Read>(mut reader: R) -> Result<Self, SerializationError> {
Make MetaAddr.last_seen into a private field
2021-03-25 01:36:06 -07:00
let last_seen = Utc.timestamp(reader.read_u32::<LittleEndian>()? as i64, 0);
let services = PeerServices::from_bits_truncate(reader.read_u64::<LittleEndian>()?);
let addr = reader.read_socket_addr()?;
Ok(MetaAddr::new_gossiped(&addr, &services, &last_seen))
Add addr, getaddr serialization.
2019-09-25 16:20:02 -07:00
}
}
Move the preallocate tests into their own files (#1977) * Move the preallocate tests into their own files And move the MetaAddr proptest into its own file. Also do some minor formatting and cleanups. Co-authored-by: Deirdre Connolly <durumcrustulum@gmail.com>
2021-04-06 19:32:27 -07:00
Implement Trusted Vector Preallocation (#1920) * Implement SafePreallocate. Resolves #1880 * Add proptests for SafePreallocate * Apply suggestions from code review Comments which did not include replacement code will be addressed in a follow-up commit. Co-authored-by: teor <teor@riseup.net> * Rename [Safe-> Trusted]Allocate. Add doc and tests Add tests to show that the largest allowed vec under TrustedPreallocate is small enough to fit in a Zcash block/message (depending on type). Add doc comments to all TrustedPreallocate test cases. Tighten bounds on max_trusted_alloc for some types. Note - this commit does NOT include TrustedPreallocate impls for JoinSplitData, String, and Script. These impls will be added in a follow up commit * Implement SafePreallocate. Resolves #1880 * Add proptests for SafePreallocate * Apply suggestions from code review Comments which did not include replacement code will be addressed in a follow-up commit. Co-authored-by: teor <teor@riseup.net> * Rename [Safe-> Trusted]Allocate. Add doc and tests Add tests to show that the largest allowed vec under TrustedPreallocate is small enough to fit in a Zcash block/message (depending on type). Add doc comments to all TrustedPreallocate test cases. Tighten bounds on max_trusted_alloc for some types. Note - this commit does NOT include TrustedPreallocate impls for JoinSplitData, String, and Script. These impls will be added in a follow up commit * Impl TrustedPreallocate for Joinsplit * Impl ZcashDeserialize for Vec<u8> * Arbitrary, TrustedPreallocate, Serialize, and tests for Spend<SharedAnchor> Co-authored-by: teor <teor@riseup.net>
2021-04-05 16:49:42 -07:00
/// A serialized meta addr has a 4 byte time, 8 byte services, 16 byte IP addr, and 2 byte port
const META_ADDR_SIZE: usize = 4 + 8 + 16 + 2;
Move the preallocate tests into their own files (#1977) * Move the preallocate tests into their own files And move the MetaAddr proptest into its own file. Also do some minor formatting and cleanups. Co-authored-by: Deirdre Connolly <durumcrustulum@gmail.com>
2021-04-06 19:32:27 -07:00
Implement Trusted Vector Preallocation (#1920) * Implement SafePreallocate. Resolves #1880 * Add proptests for SafePreallocate * Apply suggestions from code review Comments which did not include replacement code will be addressed in a follow-up commit. Co-authored-by: teor <teor@riseup.net> * Rename [Safe-> Trusted]Allocate. Add doc and tests Add tests to show that the largest allowed vec under TrustedPreallocate is small enough to fit in a Zcash block/message (depending on type). Add doc comments to all TrustedPreallocate test cases. Tighten bounds on max_trusted_alloc for some types. Note - this commit does NOT include TrustedPreallocate impls for JoinSplitData, String, and Script. These impls will be added in a follow up commit * Implement SafePreallocate. Resolves #1880 * Add proptests for SafePreallocate * Apply suggestions from code review Comments which did not include replacement code will be addressed in a follow-up commit. Co-authored-by: teor <teor@riseup.net> * Rename [Safe-> Trusted]Allocate. Add doc and tests Add tests to show that the largest allowed vec under TrustedPreallocate is small enough to fit in a Zcash block/message (depending on type). Add doc comments to all TrustedPreallocate test cases. Tighten bounds on max_trusted_alloc for some types. Note - this commit does NOT include TrustedPreallocate impls for JoinSplitData, String, and Script. These impls will be added in a follow up commit * Impl TrustedPreallocate for Joinsplit * Impl ZcashDeserialize for Vec<u8> * Arbitrary, TrustedPreallocate, Serialize, and tests for Spend<SharedAnchor> Co-authored-by: teor <teor@riseup.net>
2021-04-05 16:49:42 -07:00
impl TrustedPreallocate for MetaAddr {
fn max_allocation() -> u64 {
// Since a maximal serialized Vec<MetAddr> uses at least three bytes for its length (2MB messages / 30B MetaAddr implies the maximal length is much greater than 253)
// the max allocation can never exceed (MAX_PROTOCOL_MESSAGE_LEN - 3) / META_ADDR_SIZE
((MAX_PROTOCOL_MESSAGE_LEN - 3) / META_ADDR_SIZE) as u64
}
}