accept a priority ordered list of addresses for dial requests

libp2p · Apr 21, 2023 · f2a431c · f2a431c
2 parents d663611 + 0ff8ac6
commit f2a431c
Showing 1 changed file with 100 additions and 70 deletions.
diff --git a/autonat/autonat-v2.md b/autonat/autonat-v2.md
@@ -3,7 +3,7 @@
 
 | Lifecycle Stage | Maturity                 | Status | Latest Revision |
 |-----------------|--------------------------|--------|-----------------|
-| 1A              | Working Draft            | Active | r1, 2023-04-12  |
+| 1A              | Working Draft            | Active | r2, 2023-04-15  |
 
 Authors: [@sukunrt]
 
@@ -19,71 +19,92 @@ Interest Group: [@marten-seemann], [@marcopolo], [@mxinden]
 
 A priori, a node cannot know if it is behind a NAT / firewall or if it is
 publicly reachable. Knowing its NAT status is essential for the node to be
-well-behaved in the network: A node that's behind a doesn't need to
-advertise its (undialable) addresses to the rest of the network, preventing
+well-behaved in the network: A node that's behind a NAT / firewall doesn't need
+to advertise its (undialable) addresses to the rest of the network, preventing
 superfluous dials from other peers. Furthermore, it might actively seek to
 improve its connectivity by finding a relay server, which would allow other
 peers to establish a relayed connection.
 
-`autonat v2` allows nodes to determine reachability for individual addresses. 
-Using `autonat v2` nodes can build an address pipeline where they can test 
-individual addresses discovered by different sources like identify, upnp 
-mappings, circuit addresses etc for reachability.
+In `autonat v2` client sends a priority ordered list of addresses. On receiving
+this list the server dials the first address on the list that it is capable of
+dialing. `autonat v2` allows nodes to determine reachability for individual
+addresses. Using `autonat v2` nodes can build an address pipeline where they can
+test individual addresses discovered by different sources like identify, upnp
+mappings, circuit addresses etc for reachability. Having a priority ordered list
+of addresses provides the ability to verify low priority addresses.
+Implementations can generate low priority address guesses and add them to
+requests for high priority addresses as a nice to have. This is especially
+helpful when introducing a new transport. Initially, such a transport will not
+be widely supported in the network. Requests for verifying such addresses can be
+reused to get information about other addresses
 
 Compared to `autonat v1` there are two major differences
-1. `autonat v1` allowed testing reachability for the node. `autonat v2` allows for testing reachability for an individual address
-2. `autonat v2` provides a mechanism for nodes to verify whether the peer 
+1. `autonat v1` allowed testing reachability for the node. `autonat v2` allows
+testing reachability for an individual address
+2. `autonat v2` provides a mechanism for nodes to verify whether the peer
 actually successfully dialled an address.
 
 
 ## AutoNAT V2 Protocol
 
-A node wishing to determine reachability of a particular adddress sends a 
-`DialRequest` message to peer B on a stream with protocol ID
-`/libp2p/autonat/2.0.0/dial-request`. This `DialRequest` message has the 
-address and a uint64 nonce. 
+A node wishing to determine reachability of its adddresses sends a `DialRequest`
+message to a peer on a stream with protocol ID
+`/libp2p/autonat/2.0.0/dial-request`. 
 
-Upon receiving this message the peer attempts to dial the address and opens a 
-stream with  Protocol ID `/libp2p/autonat/2.0.0/dial-attempt` and sends a 
-`DialAttempt` message with the nonce received in the `DialRequest`. The peer 
-MUST NOT dial any address other than the address provided in the `DialRequest` 
-message.
+This `DialRequest` message has a list of `AddressDialRequest`s. Each item in
+this list contains an address and a fixed64 nonce. The list is ordered in
+descending order of priority for verfication.
 
-Upon completion of the dial attempt, the peer sends a `DialResponse` to the 
-initiator node on the `/libp2p/autonat/2.0.0/dial-request` stream.
+Upon receiving this message the peer attempts to dial the first address from the
+list that it is capable of dialing. It dials this address, opens a stream with
+Protocol ID `/libp2p/autonat/2.0.0/dial-attempt` and sends a `DialAttempt`
+message with the nonce received in the corresponding `AddressDialRequest`. The
+peer MUST NOT dial any address other than the first address in the list that it
+is capable of dialing.
+
+Upon completion of the dial attempt, the peer sends a `DialResponse` message to
+the initiator node on the `/libp2p/autonat/2.0.0/dial-request` stream with the
+index(0 based) of the address that it attempted to dial and the appropriate
+`ResponseStatus`. see [Requirements For
+ResponseStatus](#requirements-for-responsestatus)
+
+The initiator MUST check that the nonce received in the `DialAttempt` is the
+same as the nonce the initiator sent in the `AddressDialRequest` for the address
+index received in `DialResponse`. If the nonce is different, the initiator MUST
+discard this response.
 
-The initiator SHOULD check that the nonce received in the `Dial` message is the 
-same as the nonce the initiator sent in the `DialRequest` message. If the nonce 
-received in the `Dial` message is different the initiator MUST discard this 
-`DialResponse`
 
 ### Requirements for ResponseStatus
 
-The `ResponseStatus` sent by the peer in the `DialResponse` message MUST be set
+On receiving a `DialRequest` the peer selects the first address on the list it
+is capable of dialing. This address is referred to as _addr_. The
+`ResponseStatus` sent by the peer in the `DialResponse` message MUST be set
 according to the following requirements
 
-`OK`: the peer was able to dial the address successfully.
-`E_DIAL_ERROR`: the peer attempted a dial and was unable to connect.
-`E_DIAL_REFUSED`: the peer could have dialed the address but didn't attempt a 
-dial because of rate limiting, resource limit reached or blacklisting.
-`E_TRANSPORT_NOT_SUPPORTED`: the peer didn't dial because it didn't have the
-ability to dial the requested transport.
-`E_BAD_REQUEST`: the peer didn't dial because it was unable to decode the 
-message. This includes inability to decode the requested address to dial.
-`E_INTERNAL_ERROR`: error not classified within the above error codes occured 
-on peer that prevented it from completing the request.
-
-Implementations MUST count `OK` as a successful dial and MUST only count 
-`E_DIAL_ERROR` as an unsuccessful dial. Implementations MUST discard error codes
-other than these two in calculating the reachability of the requested address. 
+`OK`: the peer was able to dial _addr_ successfully.
+
+`E_DIAL_ERROR`: the peer attempted to dial _addr_ and was unable to connect. 
+
+`E_DIAL_REFUSED`: the peer didn't attempt a dial because of rate limiting,
+resource limit reached or blacklisting.
+
+`E_TRANSPORT_NOT_SUPPORTED`: the peer didn't have the ability to dial any of the
+requested addresses.
+
+`E_BAD_REQUEST`: the peer didn't attempt a dial because it was unable to decode
+the message. This includes inability to decode the requested address to dial.
+
+`E_INTERNAL_ERROR`: error not classified within the above error codes occured on
+peer that prevented it from completing the request.
+
 
 ### Consideration for DDOS Prevention
 
 In order to prevent attacks like the one described in [RFC 3489, Section
 12.1.1](https://www.rfc-editor.org/rfc/rfc3489#section-12.1.1) (see excerpt
 below), implementations MUST NOT dial any multiaddress unless it is based on the
-IP address the requesting node is observed as. This restriction as well implies 
-that implementations MUST NOT accept dial requests via relayed connections as 
+IP address the requesting node is observed as. This restriction as well implies
+that implementations MUST NOT accept dial requests via relayed connections as
 one can not validate the IP address of the requesting node.
 
 > RFC 3489 12.1.1 Attack I: DDOS Against a Target
@@ -104,18 +125,24 @@ For any given address, implementations SHOULD do the following
 - periodically recheck reachability status
 - query multiple peers to determine reachability
 
-The suggested heuristic for implementations is to consider an address 
-reachable if more than 3 peers report a successful dial and to consider an 
-address unreachable if more than 3 peers report unsuccessful dials. 
+The suggested heuristic for implementations is to consider an address reachable
+if more than 3 peers report a successful dial and to consider an address
+unreachable if more than 3 peers report unsuccessful dials. 
 
 Implementations are free to use different heuristics than this one
 
 
-## Protobufs
+## RPC Messages
 
 All RPC messages sent over a stream are prefixed with the message length in
 bytes, encoded as an unsigned variable length integer as defined by the
-[multiformats unsigned-varint spec][uvarint-spec].
+[multiformats unsigned-varint spec][uvarint-spec]. 
+
+All RPC messages are of type `Message`. A `DialRequest` message is sent as a
+`Message` with the `dialRequest` field set and the `type` field set to
+`DIAL_REQUEST`. Other message types `DialResponse` and `DialAttempt` are handled
+similarly.
+
 
 ```proto
 syntax = "proto3";
@@ -127,37 +154,40 @@ message Message {
     DIAL_ATTEMPT  = 2;
   }
 
-  enum ResponseStatus {
-    OK                        = 0;
-    E_DIAL_ERROR              = 100;
-    E_DIAL_REFUSED            = 101;
-    E_TRANSPORT_NOT_SUPPORTED = 102;
-    E_BAD_REQUEST             = 200;
-    E_INTERNAL_ERROR          = 300;
-  }
+  MessageType type          = 1;
+  DialRequest dialRequest   = 2;
+  DialResponse dialResponse = 3;
+  DialAttempt dialAttempt   = 4;
+}
 
-  message DialRequest {
-    bytes addr = 1;
-    fixed64 nonce = 2;
-  }
+message AddressDialRequest {
+  bytes addr = 1;
+  fixed64 nonce = 2;
+}
 
-  message DialResponse {
-    ResponseStatus status = 1;
-    string statusText = 2;
-  }
+message DialRequest {
+  repeated AddressDialRequest addressDialRequests = 1;
+}
 
-  message DialAttempt {
+message DialAttempt {
     fixed64 nonce = 1;
-  }
+}
 
-  MessageType type = 1;
-  DialRequest dialRequest = 2;
-  DialResponse dialResponse = 3;
-  DialAttempt dialAttempt = 4;
+message DialResponse {
+  enum ResponseStatus {
+      OK                        = 0;
+      E_DIAL_ERROR              = 100;
+      E_DIAL_REFUSED            = 101;
+      E_TRANSPORT_NOT_SUPPORTED = 102;
+      E_BAD_REQUEST             = 200;
+      E_INTERNAL_ERROR          = 300;
+    }
+
+    ResponseStatus status = 1;
+    string statusText = 2;
+    int32 addrIdx = 3;
 }
 ```
 
 [uvarint-spec]: https://github.com/multiformats/unsigned-varint
 
-
-