On Ping packet received, the node that sent the request is now added to the NodeTable without going through another Ping/Pong round.

Instead of a separate bool, I think making discovery_round an Option<u16> is cleaner.

Definitly, thanks!

The rationale for requiring exactly BUCKET_SIZE results is discussed here and matches behavior in Geth. Can you explain why you prefer not to expire if there is an insufficient number of responses?

So the issue was for networks where you don't have more than 15 nodes. The requests would time out, and you would start rejecting every node since they are not well connected enough.
Actually, I don't think it matches Geth behaviour; from what I've read, it seems that it only errors if you receive 16 or more nodes, nothing regarding expiration.
Anyway, I think it actually make sense to not expire a request that have been answered, even if it's less answers than expected.

OK, that makes sense.

This code in Geth is where it seems to me it would timeout FIND_NODE requests with insufficient results.

So I think that the first bit is checking that the result is actually < 16 (it errors if nreceived >= bucketSize) ; and the second I'm not 100% sure but I think it's a general timeout mechanism, not related to FindNode

Where do you see that it errors? In my reading of it, this code marks the request as complete once nreceived >= bucketSize and does nothing (waiting for more responses) if it's not.

Hm I think you are right, sorry I misread the code... Even so, I think the mechanism in this PR is better.

Hmm, why use from at all? If the ping was sent to request.node and we got a response, seems like we should just keep using that.

Can you include in the comment the Parity version that this was fixed in so this can be removed eventually?

I think it was added in #8042 and shipped in 1.11.0. AFAIK geth just ignores this value.

I'm pretty see Geth checks the hash. See here.

nit: This comment seems obvious to me from the code below.

So this line should be deleted and replaced with the one below, right?

Yeah actually it should be, but the thing is that anyway this field should not be used, but old Parity versions (older than this PR, that is) use it in order to get the node's address. So this is a temporary fix so that older Parity versions don't brake completely. I'll add a comment, thanks for the heads up.

Why the change from add_node to update_node? According to this, the node should only be added to the routing table after we receive a PONG (not just a PING).

To quote your link: When a ping packet is received, the recipient should reply with a pong packet. It may also consider the sender for addition into the node table.

IMO it's just another unnecessary round of Ping-Pong.

Yes, add_node considers the sender for inclusion, but only after obtaining Endpoint Proof, as it is referred to in the doc.

I disagree that it is unnecessary. The purpose of PINGing the node is to ensure that it is listening at the network address it claims to be and participating in the protocol. When receiving a single UDP packet, the origin address can be spoofed, or the packet could be sent without the sender actually listening on the network. The linked document details the difficulty of verifying that a peer is honestly running a discovery server, but PINGing is a good heuristic.

Note that Geth doesn't Ping back on received Ping, it just adds it to their NodeTable .

I don't really know how devp2p works, but I guess that it is useful to wait for the PONG, as nodes behind a NAT (which is probably not uncommon) may report an unreachable address.

Why is this different from ping_from? It makes more sense to me to respond to the endpoint that the sender claims is their address than mixing and matching it with the from SocketAddr.

Actually, this isn't really used from the implementations that I've read, but I think the idea is that the recipient of the Pong knows what we think his address is. There is no point in copying a field of the packet he just sent us, he probably knows it already.

Well, it's used below as the entry that add_node is called on. Whereas I think ping_from is a better choice.

Sorry I thought it was to on_pong method.

It would be actually quite a bad idea to use the ping_from that we have been sent, since it's mostly the peer local address, such as V4(0.0.0.0:42786) or V6([::]:30303)

When would this be the case? Iterating through the whole in_flight_pings map on every unexpected PONG doesn't seem like a good idea to me.

If there's a good reason for this, the map might as well be keyed on the ping hash (except that it would be harder to maintain compatibility with the deprecated_echo_hash thing).

So this is to cater for the fact that the node answering your Ping might not have the NodeID you've been told. Another mechanism would be to Ping back any unknown received Pong ; I can try that if it sounds better.

If the NodeID is wrong, then the address (NodeID + Network Endpoint) is wrong, so I think it's fine to just drop the PONG.

Consider also that the sender of the PONG will likely PING back to us after receiving the PING, from which we can get the correct NodeID, so this unlikely case should resolve itself anyway.

Okay I'll remove it from now. Note that Geth doesn't Ping back on received Ping, it just adds it to their NodeTable .

These two bools look like their doing the same thing? Could we ever be discovering == true but started_discovering == false?

So started_discovery is used in order to start the first round of discovery ever. The idea is that it is set to false at the beginning, then we add some peers (bootnodes), ping them, and as soon as the pings are answered or timedout, we start the first discovery round. Then we start a new round every 10s or 30s depending on the number of peers. Without this, we would have to wait for an extra 10s for it to run for the first time.
The discovering bool is used to prevent starting a new discovery round while there is already one going.

I see, much clearer now. Can't really think of a better name, maybe s/started_discovering/discovery_initiated/. Or just a comment here?

Sounds better, thanks!

nit: node_id={:#x}

nit: use node_id={:#x}

This is here just for the rlp-decoding of the subsequent values right? Maybe just use _?

It was actually just in case we figure out why this value is useful, as I cannot.

These two booleans look like they're doing the same thing, i.e. could we ever be in a state where discovering is true and started_discovering is false?

nit: you can use {#:x} instead of 0x{:x}

Maybe we should check error here and remove from in_flight_ping if there is an error.

It will just go expired after a few 100ms, so I think it's fine as-is.

Here we change a bit our code. Previously (if I am not mistaken), it was done in on_pong only if !node.endpoint.is_valid(). I think it is better to use socket address directly like done here (getting info from the transport layer), yet let's keep this change in mind.

s/brake/break/

nit: This comment feels unnecessary to me given the line below.