Skip to content

In (strCommand == "tx"), return if AlreadyHave()#6588

Merged
jgarzik merged 1 commit into
bitcoin:masterfrom
dgenr8:already_have
Oct 1, 2015
Merged

In (strCommand == "tx"), return if AlreadyHave()#6588
jgarzik merged 1 commit into
bitcoin:masterfrom
dgenr8:already_have

Conversation

@dgenr8
Copy link
Copy Markdown
Contributor

@dgenr8 dgenr8 commented Aug 25, 2015

A live DoS attack observed by several nodes in recent days involved repeated rejection of duplicate transactions.

Add a call to AlreadyHave when an unsolicited full tx is received, as was the case in the observed attack. AlreadyHave uses the recentRejects filter.

I tested this change on mainnet while the actual attack was still underway.

The recentRejects filter is cleared when the tip is updated, so nothing stops attacker from re-transmitting a load of rejectable txes after a new block, and in fact our attacker was doing this. But the duplicates are stopped between blocks and the attack could get arbitrarily heavy if multiple attacking peers were involved.

@dgenr8 dgenr8 mentioned this pull request Aug 25, 2015
Merged
@sipa
Copy link
Copy Markdown
Member

sipa commented Aug 25, 2015

Concept ACK

@dajohi
Copy link
Copy Markdown
Contributor

dajohi commented Aug 26, 2015

What are you thoughts on disallowing unsolicited tx's -- peers that send a tx without a getdata request. That would break bitcoinj though.

@gavinandresen
Copy link
Copy Markdown
Contributor

gavinandresen commented Aug 27, 2015

Untested ACK.

laanwj
laanwj reviewed Sep 3, 2015
View reviewed changes
Comment thread src/main.cpp Outdated
Copy link
Copy Markdown
Member

@laanwj laanwj Sep 3, 2015

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nit: can you please keep the style the same here

@laanwj
Copy link
Copy Markdown
Member

laanwj commented Sep 3, 2015

utACK, nice catch

@laanwj laanwj added the P2P label Sep 3, 2015
@dgenr8
In (strCommand == "tx"), return if AlreadyHave()
9524c4d 
The main effect is to exit processing for recently-rejected hashes,
in case they are pushed to us without prior advertisement.  This
behavior was seen in the wild.

An additional effect is to do early checks for mempool or mapOrphan
existence.  No logging or nDoS tracking is needed for failures of
these checks.
@dgenr8
Copy link
Copy Markdown
Contributor Author

dgenr8 commented Sep 3, 2015

@laanwj done

@btcdrak
Copy link
Copy Markdown
Contributor

btcdrak commented Sep 7, 2015

utACK

1 similar comment
@dcousens
Copy link
Copy Markdown
Contributor

dcousens commented Sep 8, 2015

utACK

@jgarzik
Copy link
Copy Markdown
Contributor

jgarzik commented Oct 1, 2015

tested ACK

@jgarzik jgarzik merged commit 9524c4d into bitcoin:master Oct 1, 2015
jgarzik added a commit that referenced this pull request Oct 1, 2015
@jgarzik
Merge pull request #6588
cf9bb11
This was referenced Oct 6, 2015
Merged
Merged
@dgenr8 dgenr8 deleted the already_have branch September 19, 2018 14:27
@bitcoin bitcoin locked as resolved and limited conversation to collaborators Sep 8, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

P2P

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

8 participants

@dgenr8 @sipa @dajohi @gavinandresen @laanwj @btcdrak @dcousens @jgarzik