status-im
/
nimbus-eth1
mirror of https://github.com/status-im/nimbus-eth1.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

Don't send the processed bitlist if contentQueue is full (#1835) 

This would lead to sending an AcceptMessage with a zeroed out
connection id but still potentially bits set in the bitlist.
Requesting nodes could try to open up an uTP connection that
would never be accepted on the responder side.
This commit is contained in:
Kim De Mey 2023-10-20 18:03:20 +02:00 committed by GitHub
parent f365e0d472
commit 9563beea56
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 9 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
fluffy/network/wire/portal_protocol.nim
View File

@ -350,6 +350,14 @@ proc handleFindContent(
encodeMessage(ContentMessage(contentMessageType: enrsType, enrs: enrs))
proc handleOffer(p: PortalProtocol, o: OfferMessage, srcId: NodeId): seq[byte] =
# Early return when our contentQueue is full. This means there is a backlog
# of content to process and potentially gossip around. Don't accept more
# data in this case.
if p.stream.contentQueue.full():
return encodeMessage(AcceptMessage(
connectionId: Bytes2([byte 0x00, 0x00]),
contentKeys: ContentKeysBitList.init(o.contentKeys.len)))
var contentKeysBitList = ContentKeysBitList.init(o.contentKeys.len)
var contentKeys = ContentKeysList.init(@[])
# TODO: Do we need some protection against a peer offering lots (64x) of
@ -370,7 +378,7 @@ proc handleOffer(p: PortalProtocol, o: OfferMessage, srcId: NodeId): seq[byte] =
return @[]
let connectionId =
if contentKeysBitList.countOnes() != 0 and not p.stream.contentQueue.full():
if contentKeysBitList.countOnes() != 0:
p.stream.addContentOffer(srcId, contentKeys)
else:
# When the node does not accept any of the content offered, reply with an