2020-07-17 08:58:51 +00:00
|
|
|
package sync
|
|
|
|
|
|
|
|
import (
|
|
|
|
"reflect"
|
|
|
|
"sync"
|
2022-10-20 21:40:13 +00:00
|
|
|
"time"
|
2020-07-17 08:58:51 +00:00
|
|
|
|
2022-10-07 07:24:51 +00:00
|
|
|
"github.com/libp2p/go-libp2p/core/network"
|
2020-07-17 08:58:51 +00:00
|
|
|
"github.com/pkg/errors"
|
2022-08-16 12:20:13 +00:00
|
|
|
"github.com/prysmaticlabs/prysm/v3/beacon-chain/p2p"
|
|
|
|
p2ptypes "github.com/prysmaticlabs/prysm/v3/beacon-chain/p2p/types"
|
|
|
|
"github.com/prysmaticlabs/prysm/v3/cmd/beacon-chain/flags"
|
2022-10-20 21:40:13 +00:00
|
|
|
leakybucket "github.com/prysmaticlabs/prysm/v3/container/leaky-bucket"
|
2020-07-17 08:58:51 +00:00
|
|
|
"github.com/sirupsen/logrus"
|
2020-10-26 21:17:07 +00:00
|
|
|
"github.com/trailofbits/go-mutexasserts"
|
2020-07-17 08:58:51 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
const defaultBurstLimit = 5
|
|
|
|
|
2022-10-20 21:40:13 +00:00
|
|
|
const leakyBucketPeriod = 1 * time.Second
|
|
|
|
|
|
|
|
// Only allow in 2 batches per minute.
|
|
|
|
const blockBucketPeriod = 30 * time.Second
|
|
|
|
|
2021-02-16 07:45:34 +00:00
|
|
|
// Dummy topic to validate all incoming rpc requests.
|
|
|
|
const rpcLimiterTopic = "rpc-limiter-topic"
|
|
|
|
|
2020-07-17 08:58:51 +00:00
|
|
|
type limiter struct {
|
|
|
|
limiterMap map[string]*leakybucket.Collector
|
|
|
|
p2p p2p.P2P
|
|
|
|
sync.RWMutex
|
|
|
|
}
|
|
|
|
|
|
|
|
// Instantiates a multi-rpc protocol rate limiter, providing
|
|
|
|
// separate collectors for each topic.
|
|
|
|
func newRateLimiter(p2pProvider p2p.P2P) *limiter {
|
|
|
|
// add encoding suffix
|
|
|
|
addEncoding := func(topic string) string {
|
|
|
|
return topic + p2pProvider.Encoding().ProtocolSuffix()
|
|
|
|
}
|
|
|
|
// Initialize block limits.
|
|
|
|
allowedBlocksPerSecond := float64(flags.Get().BlockBatchLimit)
|
|
|
|
allowedBlocksBurst := int64(flags.Get().BlockBatchLimitBurstFactor * flags.Get().BlockBatchLimit)
|
|
|
|
|
|
|
|
// Set topic map for all rpc topics.
|
|
|
|
topicMap := make(map[string]*leakybucket.Collector, len(p2p.RPCTopicMappings))
|
|
|
|
// Goodbye Message
|
2022-10-20 21:40:13 +00:00
|
|
|
topicMap[addEncoding(p2p.RPCGoodByeTopicV1)] = leakybucket.NewCollector(1, 1, leakyBucketPeriod, false /* deleteEmptyBuckets */)
|
2021-06-02 05:44:34 +00:00
|
|
|
// MetadataV0 Message
|
2022-10-20 21:40:13 +00:00
|
|
|
topicMap[addEncoding(p2p.RPCMetaDataTopicV1)] = leakybucket.NewCollector(1, defaultBurstLimit, leakyBucketPeriod, false /* deleteEmptyBuckets */)
|
|
|
|
topicMap[addEncoding(p2p.RPCMetaDataTopicV2)] = leakybucket.NewCollector(1, defaultBurstLimit, leakyBucketPeriod, false /* deleteEmptyBuckets */)
|
2020-07-17 08:58:51 +00:00
|
|
|
// Ping Message
|
2022-10-20 21:40:13 +00:00
|
|
|
topicMap[addEncoding(p2p.RPCPingTopicV1)] = leakybucket.NewCollector(1, defaultBurstLimit, leakyBucketPeriod, false /* deleteEmptyBuckets */)
|
2020-07-17 08:58:51 +00:00
|
|
|
// Status Message
|
2022-10-20 21:40:13 +00:00
|
|
|
topicMap[addEncoding(p2p.RPCStatusTopicV1)] = leakybucket.NewCollector(1, defaultBurstLimit, leakyBucketPeriod, false /* deleteEmptyBuckets */)
|
2020-07-17 08:58:51 +00:00
|
|
|
|
|
|
|
// Use a single collector for block requests
|
2022-10-20 21:40:13 +00:00
|
|
|
blockCollector := leakybucket.NewCollector(allowedBlocksPerSecond, allowedBlocksBurst, blockBucketPeriod, false /* deleteEmptyBuckets */)
|
2021-09-09 15:12:49 +00:00
|
|
|
// Collector for V2
|
2022-10-20 21:40:13 +00:00
|
|
|
blockCollectorV2 := leakybucket.NewCollector(allowedBlocksPerSecond, allowedBlocksBurst, blockBucketPeriod, false /* deleteEmptyBuckets */)
|
2020-07-17 08:58:51 +00:00
|
|
|
|
|
|
|
// BlocksByRoots requests
|
2021-05-15 00:58:56 +00:00
|
|
|
topicMap[addEncoding(p2p.RPCBlocksByRootTopicV1)] = blockCollector
|
2021-09-09 15:12:49 +00:00
|
|
|
topicMap[addEncoding(p2p.RPCBlocksByRootTopicV2)] = blockCollectorV2
|
2020-07-17 08:58:51 +00:00
|
|
|
|
|
|
|
// BlockByRange requests
|
2021-05-15 00:58:56 +00:00
|
|
|
topicMap[addEncoding(p2p.RPCBlocksByRangeTopicV1)] = blockCollector
|
2021-09-09 15:12:49 +00:00
|
|
|
topicMap[addEncoding(p2p.RPCBlocksByRangeTopicV2)] = blockCollectorV2
|
2020-07-17 08:58:51 +00:00
|
|
|
|
2021-02-16 07:45:34 +00:00
|
|
|
// General topic for all rpc requests.
|
2022-10-20 21:40:13 +00:00
|
|
|
topicMap[rpcLimiterTopic] = leakybucket.NewCollector(5, defaultBurstLimit*2, leakyBucketPeriod, false /* deleteEmptyBuckets */)
|
2021-02-16 07:45:34 +00:00
|
|
|
|
2020-07-17 08:58:51 +00:00
|
|
|
return &limiter{limiterMap: topicMap, p2p: p2pProvider}
|
|
|
|
}
|
|
|
|
|
|
|
|
// Returns the current topic collector for the provided topic.
|
|
|
|
func (l *limiter) topicCollector(topic string) (*leakybucket.Collector, error) {
|
|
|
|
l.RLock()
|
|
|
|
defer l.RUnlock()
|
|
|
|
return l.retrieveCollector(topic)
|
|
|
|
}
|
|
|
|
|
|
|
|
// validates a request with the accompanying cost.
|
|
|
|
func (l *limiter) validateRequest(stream network.Stream, amt uint64) error {
|
|
|
|
l.RLock()
|
|
|
|
defer l.RUnlock()
|
|
|
|
|
|
|
|
topic := string(stream.Protocol())
|
|
|
|
|
|
|
|
collector, err := l.retrieveCollector(topic)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
key := stream.Conn().RemotePeer().String()
|
|
|
|
remaining := collector.Remaining(key)
|
2020-09-01 19:09:09 +00:00
|
|
|
// Treat each request as a minimum of 1.
|
|
|
|
if amt == 0 {
|
|
|
|
amt = 1
|
|
|
|
}
|
2020-07-17 08:58:51 +00:00
|
|
|
if amt > uint64(remaining) {
|
2020-07-29 09:26:46 +00:00
|
|
|
l.p2p.Peers().Scorers().BadResponsesScorer().Increment(stream.Conn().RemotePeer())
|
2020-11-18 04:17:42 +00:00
|
|
|
writeErrorResponseToStream(responseCodeInvalidRequest, p2ptypes.ErrRateLimited.Error(), stream, l.p2p)
|
|
|
|
return p2ptypes.ErrRateLimited
|
2020-07-17 08:58:51 +00:00
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2021-02-16 07:45:34 +00:00
|
|
|
// This is used to validate all incoming rpc streams from external peers.
|
|
|
|
func (l *limiter) validateRawRpcRequest(stream network.Stream) error {
|
|
|
|
l.RLock()
|
|
|
|
defer l.RUnlock()
|
|
|
|
|
|
|
|
topic := rpcLimiterTopic
|
|
|
|
|
|
|
|
collector, err := l.retrieveCollector(topic)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
key := stream.Conn().RemotePeer().String()
|
|
|
|
remaining := collector.Remaining(key)
|
|
|
|
// Treat each request as a minimum of 1.
|
|
|
|
amt := int64(1)
|
|
|
|
if amt > remaining {
|
|
|
|
l.p2p.Peers().Scorers().BadResponsesScorer().Increment(stream.Conn().RemotePeer())
|
|
|
|
writeErrorResponseToStream(responseCodeInvalidRequest, p2ptypes.ErrRateLimited.Error(), stream, l.p2p)
|
|
|
|
return p2ptypes.ErrRateLimited
|
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2020-07-17 08:58:51 +00:00
|
|
|
// adds the cost to our leaky bucket for the topic.
|
|
|
|
func (l *limiter) add(stream network.Stream, amt int64) {
|
|
|
|
l.Lock()
|
|
|
|
defer l.Unlock()
|
|
|
|
|
|
|
|
topic := string(stream.Protocol())
|
|
|
|
log := l.topicLogger(topic)
|
|
|
|
|
|
|
|
collector, err := l.retrieveCollector(topic)
|
|
|
|
if err != nil {
|
2020-11-23 18:29:27 +00:00
|
|
|
log.Errorf("collector with topic '%s' does not exist", topic)
|
2020-07-17 08:58:51 +00:00
|
|
|
return
|
|
|
|
}
|
|
|
|
key := stream.Conn().RemotePeer().String()
|
|
|
|
collector.Add(key, amt)
|
|
|
|
}
|
|
|
|
|
2021-02-16 07:45:34 +00:00
|
|
|
// adds the cost to our leaky bucket for the peer.
|
|
|
|
func (l *limiter) addRawStream(stream network.Stream) {
|
|
|
|
l.Lock()
|
|
|
|
defer l.Unlock()
|
|
|
|
|
|
|
|
topic := rpcLimiterTopic
|
|
|
|
log := l.topicLogger(topic)
|
|
|
|
|
|
|
|
collector, err := l.retrieveCollector(topic)
|
|
|
|
if err != nil {
|
|
|
|
log.Errorf("collector with topic '%s' does not exist", topic)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
key := stream.Conn().RemotePeer().String()
|
|
|
|
collector.Add(key, 1)
|
|
|
|
}
|
|
|
|
|
2020-07-17 08:58:51 +00:00
|
|
|
// frees all the collectors and removes them.
|
|
|
|
func (l *limiter) free() {
|
|
|
|
l.Lock()
|
|
|
|
defer l.Unlock()
|
|
|
|
|
|
|
|
tempMap := map[uintptr]bool{}
|
|
|
|
for t, collector := range l.limiterMap {
|
|
|
|
// Check if collector has already been cleared off
|
|
|
|
// as all collectors are not distinct from each other.
|
|
|
|
ptr := reflect.ValueOf(collector).Pointer()
|
|
|
|
if tempMap[ptr] {
|
|
|
|
// Remove from map
|
|
|
|
delete(l.limiterMap, t)
|
|
|
|
continue
|
|
|
|
}
|
|
|
|
collector.Free()
|
|
|
|
// Remove from map
|
|
|
|
delete(l.limiterMap, t)
|
|
|
|
tempMap[ptr] = true
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// not to be used outside the rate limiter file as it is unsafe for concurrent usage
|
|
|
|
// and is protected by a lock on all of its usages here.
|
|
|
|
func (l *limiter) retrieveCollector(topic string) (*leakybucket.Collector, error) {
|
2020-10-26 21:17:07 +00:00
|
|
|
if !mutexasserts.RWMutexLocked(&l.RWMutex) && !mutexasserts.RWMutexRLocked(&l.RWMutex) {
|
|
|
|
return nil, errors.New("limiter.retrieveCollector: caller must hold read/write lock")
|
|
|
|
}
|
2020-07-17 08:58:51 +00:00
|
|
|
collector, ok := l.limiterMap[topic]
|
|
|
|
if !ok {
|
|
|
|
return nil, errors.Errorf("collector does not exist for topic %s", topic)
|
|
|
|
}
|
|
|
|
return collector, nil
|
|
|
|
}
|
|
|
|
|
2021-12-07 17:52:39 +00:00
|
|
|
func (_ *limiter) topicLogger(topic string) *logrus.Entry {
|
2020-07-17 08:58:51 +00:00
|
|
|
return log.WithField("rate limiter", topic)
|
|
|
|
}
|