Skip to content
This repository has been archived by the owner on Jun 20, 2024. It is now read-only.

Iowar/improve.0 #20

Merged
merged 8 commits into from
Oct 2, 2023
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
207 changes: 207 additions & 0 deletions pkg/p2p/libp2p/conngater.go
Original file line number Diff line number Diff line change
@@ -0,0 +1,207 @@
package libp2p

import (
"math/big"

"github.com/libp2p/go-libp2p/core/control"
"github.com/libp2p/go-libp2p/core/network"
"github.com/libp2p/go-libp2p/core/peer"
"github.com/multiformats/go-multiaddr"
"github.com/primevprotocol/mev-commit/pkg/p2p"
"github.com/primevprotocol/mev-commit/pkg/register"
)

type connectionAllowance int

const (
Undecided connectionAllowance = iota
DenyUnresolvedAddress
DenyBadRegisterCall
DenyBlockedPeer
DenyNotEnoughStake
DenySearcherToSearcher
Accept
)

//var connectionAllowanceStrings = map[connectionAllowance]string{
// Undecided: "Undecided",
// DenyUnresolvedAddress: "DenyUnresolvedAddress",
// DenyBadRegisterCall: "DenyBadRegisterCall",
// DenyBlockedPeer: "DenyBlockedPeer",
// DenyNotEnoughStake: "DenyNotEnoughStake",
// DenySearcherToSearcher: "DenySearcherToSearcher",
// Accept: "Allow",
//}

func (c connectionAllowance) isDeny() bool {
return !(c == Accept || c == Undecided)
}

// make sure the connections are between builder<>builder, builder<>searcher!
type ConnectionGater interface {
// InterceptPeerDial intercepts peer dialing
InterceptPeerDial(p peer.ID) (allow bool)
// InterceptAddrDial intercepts address dialing
InterceptAddrDial(peer.ID, multiaddr.Multiaddr) (allow bool)
// InterceptAccept intercepts connection acceptance
InterceptAccept(network.ConnMultiaddrs) (allow bool)
// InterceptSecured intercepts secured connection
InterceptSecured(network.Direction, peer.ID, network.ConnMultiaddrs) (allow bool)
// InterceptUpgraded intercepts upgraded connection
InterceptUpgraded(network.Conn) (allow bool, reason control.DisconnectReason)
}

type connectionGater struct {
register register.Register
selfType p2p.PeerType
minimumStake *big.Int
}

// newConnectionGater creates a new instance of ConnectionGater
func newConnectionGater(register register.Register, selfType p2p.PeerType, minimumStake *big.Int) ConnectionGater {
return &connectionGater{
register: register,
selfType: selfType,
minimumStake: minimumStake,
}
}

// checkPeerTrusted determines the trust status of a peer
func (cg *connectionGater) checkPeerTrusted(p peer.ID) connectionAllowance {
// TODO: Implement the logic to determine whether the peer is trusted or not
return Undecided
}

// TODO @iowar blocker implementation: consult the team
// checkPeerBlocked checks if a peer is blocked and returns the appropriate connection allowance status
func (cg *connectionGater) checkPeerBlocked(p peer.ID) connectionAllowance {
// // check if the peer is in the list of blocked peers, and deny the connection if found
// for _, peerID := range cg.blocker.list() {
// if p == peerID {
// return DenyBlockedPeer
// }
// }
//
// if the peer is not in the blocked list, allow the connection
return Accept
}

// checkPeerStake checks if a peer has enough stake and returns the appropriate
// connection allowance status
func (cg *connectionGater) checkPeerStake(p peer.ID) connectionAllowance {
// get eth address
ethAddress, err := GetEthAddressFromPeerID(p)
if err != nil {
return DenyUnresolvedAddress
}

// get stake
stake, err := cg.register.GetStake(ethAddress)
if err != nil {
return DenyBadRegisterCall
}

enoughStake := stake.Cmp(cg.minimumStake) >= 0

// possible s<>s connection
// ! s<>s connection
if (cg.selfType == p2p.PeerTypeSearcher) && !enoughStake {
return DenySearcherToSearcher
}

// Reject potential s<>s connections and accept the remaining requests,
// allowing authentication during the handshake phase
return Accept
}

// resolveConnectionAllowance resolves the connection allowance based on trusted and blocked statuses
func resolveConnectionAllowance(
trustedStatus connectionAllowance,
blockedStatus connectionAllowance,
) connectionAllowance {
// if the peer's trusted status is 'Undecided', resolve the connection allowance based on the blocked status
if trustedStatus == Undecided {
return blockedStatus
}
return trustedStatus
}

// checks if a peer is allowed to dial/accept
func (cg *connectionGater) checkAllowedPeer(p peer.ID) connectionAllowance {
return resolveConnectionAllowance(cg.checkPeerTrusted(p), cg.checkPeerBlocked(p))
}

// InterceptPeerDial intercepts the process of dialing a peer
//
// all peer dialing attempts are allowed
func (cg *connectionGater) InterceptPeerDial(p peer.ID) bool {
allowance := cg.checkAllowedPeer(p)
if allowance.isDeny() {
return false
}

return !cg.checkPeerStake(p).isDeny()
}

// InterceptAddrDial intercepts the process of dialing an address
//
// all address dialing attempts are allowed
// TODO rate limiter
func (cg *connectionGater) InterceptAddrDial(p peer.ID, addr multiaddr.Multiaddr) bool {
allowance := cg.checkAllowedPeer(p)
return !allowance.isDeny()
}

// InterceptAccept intercepts the process of accepting a connection
//
// all connection acceptance attempts are allowed
func (cg *connectionGater) InterceptAccept(connMultiaddrs network.ConnMultiaddrs) bool {
return true
}

// InterceptSecured intercepts a secured connection, regardless of its direction (inbound/outbound)
func (cg *connectionGater) InterceptSecured(dir network.Direction, p peer.ID, connMultiaddrs network.ConnMultiaddrs) bool {
allowance := cg.checkAllowedPeer(p)
if allowance.isDeny() {
return false
}

// note: we are indifferent to the direction (inbound/outbound)
// if you want to manipulate (inbound/outbound) connections, make the change
// note:if it is desired to not establish a connection with a peer,
// ensure that it is rejected in both incoming and outgoing connections
if dir == network.DirInbound {
return cg.validateInboundConnection(p, connMultiaddrs)
} else {
return cg.validateOutboundConnection(p, connMultiaddrs)
}
}

// InterceptUpgraded intercepts the process of upgrading a connection
//
// all connection upgrade attempts are allowed
func (cg *connectionGater) InterceptUpgraded(conn network.Conn) (bool, control.DisconnectReason) {
return true, control.DisconnectReason(0)
}

// validateInboundConnection validates an inbound connection by extracting its
// public key and performing stake validation if the validation succeeds and
// the peer's stake is greater than minimal stake, the connection is allowed
// otherwise, the connection is rejected
func (cg *connectionGater) validateInboundConnection(p peer.ID, connMultiaddrs network.ConnMultiaddrs) bool {
//cg.metrics.IncomingConnectionCount.Inc()

allowance := cg.checkPeerStake(p)
return !allowance.isDeny()
}

// validateOutboundConnection validates an outbound connection by extracting
// its public key and performing stake validation if the validation succeeds
// and the peer's stake is greater than minimal stake, the connection is
// allowed otherwise, the connection is rejected
func (cg *connectionGater) validateOutboundConnection(p peer.ID, connMultiaddrs network.ConnMultiaddrs) bool {
//cg.metrics.OutgoingConnectionCount.Inc()

allowance := cg.checkPeerStake(p)
return !allowance.isDeny()
}
7 changes: 7 additions & 0 deletions pkg/p2p/libp2p/libp2p.go
Original file line number Diff line number Diff line change
Expand Up @@ -86,8 +86,11 @@ func New(opts *Options) (*Service, error) {
return nil, err
}

conngtr := newConnectionGater(opts.Register, opts.PeerType, opts.MinimumStake)

host, err := libp2p.New(
libp2p.ListenAddrStrings(fmt.Sprintf("/ip4/0.0.0.0/tcp/%d", opts.ListenPort)),
libp2p.ConnectionGater(conngtr),
libp2p.Identity(libp2pKey),
libp2p.ConnectionManager(connmgr),
libp2p.DefaultTransports,
Expand All @@ -101,6 +104,10 @@ func New(opts *Options) (*Service, error) {
return nil, err
}

for _, addr := range host.Addrs() {
opts.Logger.Info("p2p address", "addr", addr, "host_address", host.ID().Pretty())
}

ethAddress, err := GetEthAddressFromPeerID(host.ID())
if err != nil {
return nil, err
Expand Down
2 changes: 2 additions & 0 deletions pkg/topology/topology.go
Original file line number Diff line number Diff line change
Expand Up @@ -96,6 +96,8 @@ func (t *topology) Disconnected(p p2p.Peer) {
t.mu.Lock()
defer t.mu.Unlock()

t.logger.Info("disconnected", "peer", p)

switch p.Type {
case p2p.PeerTypeBuilder:
delete(t.builders, p.EthAddress)
Expand Down