mirrors/tendermint
1
0
Fork 0
mirror of https://github.com/tendermint/tendermint.git synced 2026-01-05 13:05:09 +00:00
Code Issues Packages Projects Releases Wiki Activity

p2p: limit the number of incoming connections

Browse Source 
to p2p.max_num_inbound_peers + len(p2p.unconditional_peer_ids)
This commit is contained in:
Anton Kaliaev
2020-04-03 15:37:20 +04:00
committed by Tess Rinearson
parent ff87bd912f
commit e2d6859afd
3 changed files with 64 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
node/node.go
View File

@@ -471,6 +471,11 @@ func createTransport(
} }
p2p.MultiplexTransportConnFilters(connFilters...)(transport) p2p.MultiplexTransportConnFilters(connFilters...)(transport)
// Limit the number of incoming connections.
max := config.P2P.MaxNumInboundPeers + len(splitAndTrimEmpty(config.P2P.UnconditionalPeerIDs, ",", " "))
p2p.MultiplexTransportMaxIncomingConnections(max)(transport)
return transport, peerFilters return transport, peerFilters
} }

16
p2p/transport.go
View File

@@ -7,6 +7,7 @@ import (
"time" "time"
"github.com/pkg/errors" "github.com/pkg/errors"
"golang.org/x/net/netutil"
"github.com/tendermint/tendermint/crypto" "github.com/tendermint/tendermint/crypto"
"github.com/tendermint/tendermint/p2p/conn" "github.com/tendermint/tendermint/p2p/conn"
@@ -122,11 +123,18 @@ func MultiplexTransportResolver(resolver IPResolver) MultiplexTransportOption {
return func(mt *MultiplexTransport) { mt.resolver = resolver } return func(mt *MultiplexTransport) { mt.resolver = resolver }
} }
// MultiplexTransportMaxIncomingConnections sets the maximum number of
// simultaneous connections (incoming). Default: 0 (unlimited)
func MultiplexTransportMaxIncomingConnections(n int) MultiplexTransportOption {
return func(mt *MultiplexTransport) { mt.maxIncomingConnections = n }
}
// MultiplexTransport accepts and dials tcp connections and upgrades them to // MultiplexTransport accepts and dials tcp connections and upgrades them to
// multiplexed peers. // multiplexed peers.
type MultiplexTransport struct { type MultiplexTransport struct {
netAddr NetAddress netAddr NetAddress
listener net.Listener listener net.Listener
maxIncomingConnections int // see MaxIncomingConnections
acceptc chan accept acceptc chan accept
closec chan struct{} closec chan struct{}
@@ -240,6 +248,10 @@ func (mt *MultiplexTransport) Listen(addr NetAddress) error {
return err return err
} }
if mt.maxIncomingConnections > 0 {
ln = netutil.LimitListener(ln, mt.maxIncomingConnections)
}
mt.netAddr = addr mt.netAddr = addr
mt.listener = ln mt.listener = ln

45
p2p/transport_test.go
View File

@@ -5,6 +5,7 @@ import (
"math/rand" "math/rand"
"net" "net"
"reflect" "reflect"
"strings"
"testing" "testing"
"time" "time"
@@ -134,6 +135,50 @@ func TestTransportMultiplexConnFilterTimeout(t *testing.T) {
} }
} }
func TestTransportMultiplexMaxIncomingConnections(t *testing.T) {
mt := newMultiplexTransport(
emptyNodeInfo(),
NodeKey{
PrivKey: ed25519.GenPrivKey(),
},
)
id := mt.nodeKey.ID()
MultiplexTransportMaxIncomingConnections(0)(mt)
addr, err := NewNetAddressString(IDAddressString(id, "127.0.0.1:0"))
if err != nil {
t.Fatal(err)
}
if err := mt.Listen(*addr); err != nil {
t.Fatal(err)
}
errc := make(chan error)
go func() {
addr := NewNetAddress(id, mt.listener.Addr())
_, err := addr.Dial()
if err != nil {
errc <- err
return
}
close(errc)
}()
if err := <-errc; err != nil {
t.Errorf("connection failed: %v", err)
}
_, err = mt.Accept(peerConfig{})
if err == nil || !strings.Contains(err.Error(), "connection reset by peer") {
t.Errorf("expected connection reset by peer error, got %v", err)
}
}
func TestTransportMultiplexAcceptMultiple(t *testing.T) { func TestTransportMultiplexAcceptMultiple(t *testing.T) {
mt := testSetupMultiplexTransport(t) mt := testSetupMultiplexTransport(t)
laddr := NewNetAddress(mt.nodeKey.ID(), mt.listener.Addr()) laddr := NewNetAddress(mt.nodeKey.ID(), mt.listener.Addr())