prevent evicted peers from reconnecting too quickly

eqlabs · Feb 8, 2024 · 8d88389 · 8d88389
1 parent b1abfe1
commit 8d88389
Show file tree

Hide file tree

Showing 3 changed files with 132 additions and 0 deletions.
diff --git a/crates/p2p/src/behaviour.rs b/crates/p2p/src/behaviour.rs
@@ -79,6 +79,7 @@ impl NetworkBehaviour for Behaviour {
         remote_addr: &Multiaddr,
     ) -> Result<THandler<Self>, ConnectionDenied> {
         self.check_duplicate_connection(peer)?;
+        self.prevent_evicted_peer_reconnections(peer)?;
 
         // Is the peer connecting over a relay?
         let is_relayed = remote_addr.iter().any(|p| p == Protocol::P2pCircuit);
@@ -115,6 +116,7 @@ impl NetworkBehaviour for Behaviour {
         role_override: Endpoint,
     ) -> Result<THandler<Self>, ConnectionDenied> {
         self.check_duplicate_connection(peer)?;
+        self.prevent_evicted_peer_reconnections(peer)?;
         self.inner
             .handle_established_outbound_connection(connection_id, peer, addr, role_override)
     }
@@ -299,6 +301,17 @@ impl NetworkBehaviour for Behaviour {
             return Err(ConnectionDenied::new(anyhow!("reconnect too quickly")));
         }
 
+        // Attempt to extract peer ID from the multiaddr.
+        let peer_id = remote_addr.iter().find_map(|p| match p {
+            Protocol::P2p(id) => Some(id),
+            _ => None,
+        });
+
+        // If we can extract the peer ID, prevent evicted peers from reconnecting too quickly.
+        if let Some(peer_id) = peer_id {
+            self.prevent_evicted_peer_reconnections(peer_id)?;
+        }
+
         // Limit the number of inbound peer connections. Different limits apply to direct peers
         // and peers connecting over a relay.
         //
@@ -339,6 +352,8 @@ impl NetworkBehaviour for Behaviour {
                 // This really is an outbound connection, and not a connection that requires
                 // hole-punching.
 
+                self.prevent_evicted_peer_reconnections(peer_id)?;
+
                 self.evict_outbound_peer()?;
 
                 self.peers.upsert(
@@ -527,6 +542,31 @@ impl Behaviour {
         Ok(())
     }
 
+    /// Prevent evicted peers from reconnecting too quickly.
+    fn prevent_evicted_peer_reconnections(&self, peer_id: PeerId) -> Result<(), ConnectionDenied> {
+        let timeout = if cfg!(test) {
+            Duration::from_secs(1)
+        } else {
+            Duration::from_secs(30)
+        };
+        match self.peers.get(peer_id) {
+            Some(Peer {
+                evicted: true,
+                connectivity:
+                    Connectivity::Disconnected {
+                        disconnected_at, ..
+                    },
+                ..
+            }) if disconnected_at.elapsed() < timeout => {
+                tracing::debug!(%peer_id, "Evicted peer attempting to reconnect too quickly, disconnecting");
+                Err(ConnectionDenied::new(anyhow!(
+                    "evicted peer reconnecting too quickly"
+                )))
+            }
+            _ => Ok(()),
+        }
+    }
+
     pub fn not_useful(&mut self, peer_id: PeerId) {
         self.peers.update(peer_id, |peer| {
             peer.useful = false;

diff --git a/crates/p2p/src/peers.rs b/crates/p2p/src/peers.rs
@@ -46,6 +46,7 @@ impl Peer {
         })
     }
 
+    /// The connection time of the peer, if he is connected.
     pub fn connected_at(&self) -> Option<Instant> {
         match self.connectivity {
             Connectivity::Connected { connected_at, .. } => Some(connected_at),

diff --git a/crates/p2p/src/tests.rs b/crates/p2p/src/tests.rs
@@ -833,6 +833,97 @@ async fn outbound_peer_eviction() {
     assert!(peers.contains_key(&inbound2.peer_id));
 }
 
+/// Ensure that evicted peers can't reconnect too quickly.
+#[test_log::test(tokio::test)]
+async fn evicted_peer_reconnection() {
+    let cfg = Config {
+        direct_connection_timeout: Duration::from_secs(0),
+        relay_connection_timeout: Duration::from_secs(0),
+        ip_whitelist: vec!["::1/0".parse().unwrap(), "0.0.0.0/0".parse().unwrap()],
+        max_inbound_direct_peers: 1000,
+        max_inbound_relayed_peers: 0,
+        max_outbound_peers: 1,
+        // Don't open connections automatically.
+        low_watermark: 0,
+        bootstrap: BootstrapConfig {
+            period: Duration::from_millis(500),
+            start_offset: Duration::from_secs(10),
+        },
+        eviction_timeout: Duration::from_secs(15 * 60),
+        inbound_connections_rate_limit: RateLimit {
+            max: 1000,
+            interval: Duration::from_secs(1),
+        },
+    };
+
+    let mut peer1 = TestPeer::new(cfg.clone(), Keypair::generate_ed25519());
+    let mut peer2 = TestPeer::new(cfg.clone(), Keypair::generate_ed25519());
+    let mut peer3 = TestPeer::new(cfg, Keypair::generate_ed25519());
+
+    let addr1 = peer1.start_listening().await.unwrap();
+    tracing::info!(%peer1.peer_id, %addr1);
+    let addr2 = peer2.start_listening().await.unwrap();
+    tracing::info!(%peer2.peer_id, %addr2);
+    let addr3 = peer3.start_listening().await.unwrap();
+    tracing::info!(%peer3.peer_id, %addr3);
+
+    // Connect peer1 to peer2, then to peer3. Because the outbound connection limit is 1, peer2 will
+    // be evicted when peer1 connects to peer3.
+    peer1
+        .client
+        .dial(peer2.peer_id, addr2.clone())
+        .await
+        .unwrap();
+    peer1.client.not_useful(peer2.peer_id).await;
+    peer1.client.dial(peer3.peer_id, addr3).await.unwrap();
+
+    // Check that peer2 got evicted.
+    wait_for_event(&mut peer1.event_receiver, |event| match event {
+        Event::Test(TestEvent::ConnectionClosed { remote, .. }) if remote == peer2.peer_id => {
+            Some(())
+        }
+        _ => None,
+    })
+    .await;
+
+    // Mark peer3 as not useful, and hence a candidate for eviction.
+    peer1.client.not_useful(peer3.peer_id).await;
+
+    // Try to reconnect too quickly.
+    let result = peer1.client.dial(peer2.peer_id, addr2.clone()).await;
+    assert!(result.is_err());
+
+    exhaust_events(&mut peer2.event_receiver).await;
+
+    // In this case there is no peer ID when connecting, so the connection gets closed after being
+    // established.
+    peer2
+        .client
+        .dial(peer1.peer_id, addr1.clone())
+        .await
+        .unwrap();
+    wait_for_event(&mut peer2.event_receiver, |event| match event {
+        Event::Test(TestEvent::ConnectionClosed { remote, .. }) if remote == peer1.peer_id => {
+            Some(())
+        }
+        _ => None,
+    })
+    .await;
+
+    // peer2 can be reconnected after a timeout.
+    tokio::time::sleep(Duration::from_secs(1)).await;
+    peer1.client.dial(peer2.peer_id, addr2).await.unwrap();
+
+    // peer3 gets evicted.
+    wait_for_event(&mut peer1.event_receiver, |event| match event {
+        Event::Test(TestEvent::ConnectionClosed { remote, .. }) if remote == peer3.peer_id => {
+            Some(())
+        }
+        _ => None,
+    })
+    .await;
+}
+
 /// Test that peers can only connect if they are whitelisted.
 #[test_log::test(tokio::test)]
 async fn ip_whitelist() {