Skip to content
This repository has been archived by the owner on Jun 20, 2024. It is now read-only.

Iowar/improve.0 #20

Merged
merged 8 commits into from
Oct 2, 2023
+216 −0
Merged

Iowar/improve.0 #20

Show file tree
Hide file tree
Changes from 7 commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
ef8a4ad
log p2p address
iowar Sep 30, 2023
56e1ee8
log disconnected peer
iowar Sep 30, 2023
64b940f
gater activated [status=allowed]
iowar Sep 30, 2023
6dd004a
gater logic between b<>s & b<>b
iowar Sep 30, 2023
c7d5628
todo blocker
iowar Sep 30, 2023
57e1582
reject s<>s connections
iowar Sep 30, 2023
d65735f
fixed
iowar Oct 1, 2023
8da9243
fixed logger
iowar Oct 2, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
207 changes: 207 additions & 0 deletions pkg/p2p/libp2p/conngater.go
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,207 @@
package libp2p

import (
"math/big"

"github.com/libp2p/go-libp2p/core/control"
"github.com/libp2p/go-libp2p/core/network"
"github.com/libp2p/go-libp2p/core/peer"
"github.com/multiformats/go-multiaddr"
"github.com/primevprotocol/mev-commit/pkg/p2p"
"github.com/primevprotocol/mev-commit/pkg/register"
)

type connectionAllowance int

const (
Undecided connectionAllowance = iota
DenyUnresolvedAddress
DenyBadRegisterCall
DenyBlockedPeer
DenyNotEnoughStake
DenySearcherToSearcher
Accept
)

//var connectionAllowanceStrings = map[connectionAllowance]string{
// Undecided: "Undecided",
// DenyUnresolvedAddress: "DenyUnresolvedAddress",
// DenyBadRegisterCall: "DenyBadRegisterCall",
// DenyBlockedPeer: "DenyBlockedPeer",
// DenyNotEnoughStake: "DenyNotEnoughStake",
// DenySearcherToSearcher: "DenySearcherToSearcher",
// Accept: "Allow",
//}

func (c connectionAllowance) isDeny() bool {
return !(c == Accept || c == Undecided)
}

// make sure the connections are between builder<>builder, builder<>searcher!
type ConnectionGater interface {
// InterceptPeerDial intercepts peer dialing
InterceptPeerDial(p peer.ID) (allow bool)
// InterceptAddrDial intercepts address dialing
InterceptAddrDial(peer.ID, multiaddr.Multiaddr) (allow bool)
// InterceptAccept intercepts connection acceptance
InterceptAccept(network.ConnMultiaddrs) (allow bool)
// InterceptSecured intercepts secured connection
InterceptSecured(network.Direction, peer.ID, network.ConnMultiaddrs) (allow bool)
// InterceptUpgraded intercepts upgraded connection
InterceptUpgraded(network.Conn) (allow bool, reason control.DisconnectReason)
}

type connectionGater struct {
register register.Register
selfType p2p.PeerType
minimumStake *big.Int
}

// newConnectionGater creates a new instance of ConnectionGater
func newConnectionGater(register register.Register, selfType p2p.PeerType, minimumStake *big.Int) ConnectionGater {
return &connectionGater{
register: register,
selfType: selfType,
minimumStake: minimumStake,
}
}

// checkPeerTrusted determines the trust status of a peer
func (cg *connectionGater) checkPeerTrusted(p peer.ID) connectionAllowance {
// TODO: Implement the logic to determine whether the peer is trusted or not
return Undecided
}

// TODO @iowar blocker implementation: consult the team
// checkPeerBlocked checks if a peer is blocked and returns the appropriate connection allowance status
func (cg *connectionGater) checkPeerBlocked(p peer.ID) connectionAllowance {
// // check if the peer is in the list of blocked peers, and deny the connection if found
// for _, peerID := range cg.blocker.list() {
// if p == peerID {
// return DenyBlockedPeer
// }
// }
//
// if the peer is not in the blocked list, allow the connection
return Accept
}

// checkPeerStake checks if a peer has enough stake and returns the appropriate
// connection allowance status
func (cg *connectionGater) checkPeerStake(p peer.ID) connectionAllowance {
// get eth address
ethAddress, err := GetEthAddressFromPeerID(p)
if err != nil {
return DenyUnresolvedAddress
}

// get stake
stake, err := cg.register.GetStake(ethAddress)
if err != nil {
return DenyBadRegisterCall
}

enoughStake := stake.Cmp(cg.minimumStake) >= 0

// possible s<>s connection
// ! s<>s connection
if (cg.selfType == p2p.PeerTypeSearcher) && !enoughStake {
return DenySearcherToSearcher
}

// Reject potential s<>s connections and accept the remaining requests,
// allowing authentication during the handshake phase
return Accept
}

// resolveConnectionAllowance resolves the connection allowance based on trusted and blocked statuses
func resolveConnectionAllowance(
trustedStatus connectionAllowance,
blockedStatus connectionAllowance,
) connectionAllowance {
// if the peer's trusted status is 'Undecided', resolve the connection allowance based on the blocked status
if trustedStatus == Undecided {
return blockedStatus
}
return trustedStatus
}

// checks if a peer is allowed to dial/accept
func (cg *connectionGater) checkAllowedPeer(p peer.ID) connectionAllowance {
return resolveConnectionAllowance(cg.checkPeerTrusted(p), cg.checkPeerBlocked(p))
}

// InterceptPeerDial intercepts the process of dialing a peer
//
// all peer dialing attempts are allowed
func (cg *connectionGater) InterceptPeerDial(p peer.ID) bool {
allowance := cg.checkAllowedPeer(p)
if allowance.isDeny() {
return false
}

return !cg.checkPeerStake(p).isDeny()
}

// InterceptAddrDial intercepts the process of dialing an address
//
// all address dialing attempts are allowed
// TODO rate limiter
func (cg *connectionGater) InterceptAddrDial(p peer.ID, addr multiaddr.Multiaddr) bool {
allowance := cg.checkAllowedPeer(p)
return !allowance.isDeny()
}

// InterceptAccept intercepts the process of accepting a connection
//
// all connection acceptance attempts are allowed
func (cg *connectionGater) InterceptAccept(connMultiaddrs network.ConnMultiaddrs) bool {
return true
}

// InterceptSecured intercepts a secured connection, regardless of its direction (inbound/outbound)
func (cg *connectionGater) InterceptSecured(dir network.Direction, p peer.ID, connMultiaddrs network.ConnMultiaddrs) bool {
allowance := cg.checkAllowedPeer(p)
if allowance.isDeny() {
return false
}

// note: we are indifferent to the direction (inbound/outbound)
// if you want to manipulate (inbound/outbound) connections, make the change
// note:if it is desired to not establish a connection with a peer,
// ensure that it is rejected in both incoming and outgoing connections
if dir == network.DirInbound {
return cg.validateInboundConnection(p, connMultiaddrs)
} else {
return cg.validateOutboundConnection(p, connMultiaddrs)
}
}

// InterceptUpgraded intercepts the process of upgrading a connection
//
// all connection upgrade attempts are allowed
func (cg *connectionGater) InterceptUpgraded(conn network.Conn) (bool, control.DisconnectReason) {
return true, control.DisconnectReason(0)
}

// validateInboundConnection validates an inbound connection by extracting its
// public key and performing stake validation if the validation succeeds and
// the peer's stake is greater than minimal stake, the connection is allowed
// otherwise, the connection is rejected
func (cg *connectionGater) validateInboundConnection(p peer.ID, connMultiaddrs network.ConnMultiaddrs) bool {
//cg.metrics.IncomingConnectionCount.Inc()

allowance := cg.checkPeerStake(p)
return !allowance.isDeny()
}

// validateOutboundConnection validates an outbound connection by extracting
// its public key and performing stake validation if the validation succeeds
// and the peer's stake is greater than minimal stake, the connection is
// allowed otherwise, the connection is rejected
func (cg *connectionGater) validateOutboundConnection(p peer.ID, connMultiaddrs network.ConnMultiaddrs) bool {
//cg.metrics.OutgoingConnectionCount.Inc()

allowance := cg.checkPeerStake(p)
return !allowance.isDeny()
}
10 changes: 10 additions & 0 deletions pkg/p2p/libp2p/libp2p.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -86,8 +86,11 @@ func New(opts *Options) (*Service, error) {
return nil, err
}

conngtr := newConnectionGater(opts.Register, opts.PeerType, opts.MinimumStake)

host, err := libp2p.New(
libp2p.ListenAddrStrings(fmt.Sprintf("/ip4/0.0.0.0/tcp/%d", opts.ListenPort)),
libp2p.ConnectionGater(conngtr),
libp2p.Identity(libp2pKey),
libp2p.ConnectionManager(connmgr),
libp2p.DefaultTransports,
Expand All @@ -101,6 +104,13 @@ func New(opts *Options) (*Service, error) {
return nil, err
}

for _, addr := range host.Addrs() {
opts.Logger.With(
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Logger.With is used to create a new logger with persistent fields. If you just want to add key-values to the log, the correct way is to add them as part of arguments.

opts.Logger.Info("p2p address", "addr", addr, "host_address", host.ID().Pretty())

"addr", addr,
"host", host.ID().Pretty(),
).Info("p2p address")
}

ethAddress, err := GetEthAddressFromPeerID(host.ID())
if err != nil {
return nil, err
Expand Down
2 changes: 2 additions & 0 deletions pkg/topology/topology.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -96,6 +96,8 @@ func (t *topology) Disconnected(p p2p.Peer) {
t.mu.Lock()
defer t.mu.Unlock()

t.logger.With("peer", p).Info("disconnected")
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same as above.


switch p.Type {
case p2p.PeerTypeBuilder:
delete(t.builders, p.EthAddress)
Expand Down