retrieve: block unsolicited chunk deliveries #1875

acud · 2019-10-11T10:41:03Z

This PR adds a Ruid to the retrieve protocol messages in order to block unsolicited chunk deliveries (which is an attack vector on several swarm properties)

fixes #1800

network/retrieval/peer.go

network/retrieval/retrieve_test.go

network/retrieval/peer.go

network/retrieval/retrieve_test.go

janos

LGTM. Thanks for addressing my comments.

network/retrieval/peer.go

janos · 2019-10-15T11:24:39Z

@acud some of network tests are failing, probably because of the new protocol version.

mortelli

this looks great.

other than:

rebasing/merging with master
making the tests pass

i have only very minor comments.

network/retrieval/peer.go

network/retrieval/retrieve.go

simulation/examples/cluster/cluster_test.go

network/retrieval/retrieve_test.go

mortelli · 2019-10-15T17:43:37Z

tagging @janos for this question as well:

is it impossible for a node to request 2 chunks from the same address parallelly enough so that both requests are sent out before a chunk delivery message arrives for any one of them?

janos · 2019-10-15T19:10:36Z

tagging @janos for this question as well:

is it impossible for a node to request 2 chunks from the same address parallelly enough so that both requests are sent out before a chunk delivery message arrives for any one of them?

@mortelli yes, it is possible. Retrieval protocol is handling messages asynchronously.

mortelli · 2019-10-15T19:44:45Z

tagging @janos for this question as well:
is it impossible for a node to request 2 chunks from the same address parallelly enough so that both requests are sent out before a chunk delivery message arrives for any one of them?

@mortelli yes, it is possible. Retrieval protocol is handling messages asynchronously.

Thanks.

While we're at it... what does ruid really mean? is it short for request ID?

janos · 2019-10-15T20:08:32Z

While we're at it... what does ruid really mean? is it short for request ID?

Yes, that is correct, request (or retrieval) unique id. There is no check for uniqueness, but for short lived requests as we have here, random int32 would be fine, I suppose.

acud · 2019-10-16T15:43:27Z

@acud some of network tests are failing, probably because of the new protocol version.

why on earth do we have tests that depend on the protocol version.........

network/retrieval/retrieve.go

Eknir

I left two comments about security.

How random is the random number?
Is there a possibility of sniffing on outgoing messages from a peer and thus figuring out his current outstanding requests.

It is important that this is absolutely watertight, as the rewards from hacking this is up to the total liquid balance currently outstanding in the network => high.

mortelli · 2019-10-17T12:47:08Z

network/retrieval/retrieve.go

 	err = protoPeer.Send(ctx, ret)
 	if err != nil {
-		protoPeer.logger.Error("error sending retrieve request to peer", "err", err)
+		protoPeer.logger.Error("error sending retrieve request to peer", "ruid", ret.Ruid, "err", err)


are you ok with logging and returning the error here?

well, if i don't log the error here i lose the context of the peer address which is appended to the log line (since we are using the peer logger here)

I know that I am a bit late, but we should use error annotations instead both logging them and returning to the caller.

Eknir

Looks good, thanks for this work!
Some minor outstanding comments still--please consider them, but definitely not a blocker/

retrieve: add ruid to retrieve request

86397e8

acud added bug enhancement in progress incentives labels Oct 11, 2019

acud self-assigned this Oct 11, 2019

acud added 4 commits October 13, 2019 00:15

network/retrieval: wip add unsolicited chunk tests

294fc1a

retrieval: first test case done

f561b3f

retrieval: more tests

eba8072

simulation/examples: disable kubernetes test from running locally

cc0f4c0

acud added ready for review and removed in progress labels Oct 13, 2019

acud requested review from janos, zelig, Eknir, holisticode and mortelli October 13, 2019 03:22

acud force-pushed the retrieve-block-unsolicited branch 3 times, most recently from 2dfbae7 to b5c9e56 Compare October 13, 2019 03:34

acud changed the title ~~retrieve: add ruid to retrieve request~~ retrieve: block unsolicited chunk deliveries Oct 13, 2019

retrieval: minor refinements

5959975

acud force-pushed the retrieve-block-unsolicited branch from b5c9e56 to 5959975 Compare October 13, 2019 06:56

janos reviewed Oct 14, 2019

View reviewed changes

network/retrieval: address PR comments

324073a

janos approved these changes Oct 14, 2019

View reviewed changes

network/retrieval/peer.go Show resolved Hide resolved

network: bump proto versions

aa26f6e

mortelli approved these changes Oct 15, 2019

View reviewed changes

network: address pr comments

9cb945c