Network fixes, use testnet for network tests

- testing mainnet connectivity should be done by monitoring, not by the
  tests in this repo
- several network fixes, and refactoring to account for testnet

Author: PeterSurda

Dockerfile

@@ -33,7 +33,7 @@ USER bitmessage
 # Generate default config
 RUN pybitmessage -t
 # But don't include anything else
-RUN rm -f knownnodes.dat messages.dat debuglog singleton.lock
+RUN rm -f knownnodes.dat messages.dat debug.log singleton.lock
 
 ENTRYPOINT ["launcher.sh"]
 CMD ["-d"]

buildscripts/bootstrap/start-loadbalancer.sh

@@ -2,7 +2,8 @@
 
 apt -y install curl jq ipvsadm libyajl2
 
-EXTIP=$(curl -s telnetmyip.com|jq -r .ip)
+EXTIP=$(ip route get 8.8.8.8 | \
+    awk '{for(i=1;i<=NF;i++) if($i=="src") print $(i+1); exit}')
 if [ ! -e .env ]; then
     THREADS=$(nproc --all)
     PASSWORD=$(tr -dc a-zA-Z0-9 < /dev/urandom | head -c32 && echo)

src/class_objectProcessor.py

@@ -1026,7 +1026,7 @@ def ackDataHasAValidHeader(ackData):
 
         magic, command, payloadLength, checksum = protocol.Header.unpack(
             ackData[:protocol.Header.size])
-        if magic != protocol.magic:
+        if magic != protocol.get_magic():
             logger.info('Ackdata magic bytes were wrong. Not sending ackData.')
             return False
         payload = ackData[protocol.Header.size:]

src/default.ini

@@ -14,6 +14,8 @@ blackwhitelist = black
 startonlogon = False
 showtraynotifications = True
 startintray = False
+defaultnoncetrialsperbyte = 1000
+defaultpayloadlengthextrabytes = 1000
 socksproxytype = none
 sockshostname = localhost
 socksport = 9050

src/network/__init__.py

@@ -46,9 +46,9 @@ def start(config, state):  # pylint: disable=too-many-locals
     readKnownNodes()
     pool.connectToStream(1)
     threads_to_start = list()
-    threads_to_start.append(BMNetworkThread)
+    threads_to_start.extend((AddrThread, BMNetworkThread))
     if not config.safeGetBoolean('bootstrap', 'threads'):
-        threads_to_start.extend([InvThread, AddrThread,
+        threads_to_start.extend([InvThread,
                                  DownloadThread, UploadThread])
     for thread_class in threads_to_start:
         thread = thread_class(pool)

src/network/bmproto.py

@@ -85,7 +85,7 @@ def state_bm_header(self):
         self.magic, self.command, self.payloadLength, self.checksum = \
             protocol.Header.unpack(self.read_buf[:protocol.Header.size])
         self.command = self.command.rstrip(b'\x00').decode('ascii', 'replace')
-        if self.magic != protocol.magic:
+        if self.magic != protocol.get_magic():
             # skip 1 byte in order to sync
             self.set_state("bm_header", length=1)
             self.bm_proto_reset()
@@ -453,8 +453,7 @@ def _decode_addr(self):
 
     def bm_command_addr(self):
         """Incoming addresses, process them"""
-        if config.safeGetBoolean('bootstrap', 'commands'):
-            return
+        is_bootstrap = config.safeGetBoolean('bootstrap', 'commands')
         # not using services
         for seenTime, stream, _, ip, port in self._decode_addr():
             ip = bytes(ip)
@@ -473,8 +472,14 @@ def bm_command_addr(self):
                 peer = Peer(decodedIP, port)
 
                 with knownnodes.knownNodesLock:
-                    # isnew =
-                    knownnodes.addKnownNode(stream, peer, seenTime)
+                    if is_bootstrap:
+                        # Insert as unverified: just over 6h old so it
+                        # won't be advertised until we connect to it
+                        knownnodes.addKnownNode(
+                            stream, peer,
+                            time.time() - knownnodes.BOOTSTRAP_INSERT_AGE)
+                    else:
+                        knownnodes.addKnownNode(stream, peer, seenTime)
 
                 # since we don't track peers outside of knownnodes,
                 # only spread if in knownnodes to prevent flood

src/network/connectionchooser.py

@@ -4,6 +4,7 @@
 # pylint: disable=too-many-branches
 import logging
 import random
+import time
 
 from six.moves import queue
 
@@ -71,11 +72,20 @@ def chooseConnection(stream):
                 # don't connect to local IPs when using SOCKS
                 if not protocol.checkIPAddress(encodedAddr, False):
                     continue
+        roll = random.random()  # nosec B311
         if rating > 1:
             rating = 1
-        try:
-            if 0.05 / (1.0 - rating) > random.random():  # nosec B311
+        if config.safeGetBoolean('bootstrap', 'commands'):
+            # Bootstrap server: age-based selection with cooldown
+            age = time.time() - peer_info.get('lastseen', 0)
+            if age < knownnodes.BOOTSTRAP_RETRY_COOLDOWN:
+                continue  # 1h cooldown
+            prob = float(knownnodes.BOOTSTRAP_RETRY_COOLDOWN) / age
+        else:
+            try:
+                prob = 0.05 / (1.0 - rating)
+            except ZeroDivisionError:
                 return peer
-        except ZeroDivisionError:
+        if prob > roll:
             return peer
     raise ValueError

src/network/connectionpool.py

@@ -238,7 +238,10 @@ def startBootstrappers(self):
         bootstrapper = bootstrap(connection_base)
         if not hostname:
             port = random.choice([8080, 8444])  # nosec B311
-            hostname = 'bootstrap%s.bitmessage.org' % port
+            if config.safeGetBoolean('bootstrap', 'testnet'):
+                hostname = 'bootstrap%s.testnet.bitmessage.org' % port
+            else:
+                hostname = 'bootstrap%s.bitmessage.org' % port
         else:
             port = 8444
         self.addConnection(bootstrapper(hostname, port))
@@ -301,8 +304,9 @@ def loop(self):  # pylint: disable=too-many-branches,too-many-statements
                 1 for c in self.outboundConnections.values()
                 if (c.connected and c.fullyEstablished))
             pending = len(self.outboundConnections) - established
-            if established < config.safeGetInt(
-                    'bitmessagesettings', 'maxoutboundconnections'):
+            maxOutbound = config.safeGetInt(
+                'bitmessagesettings', 'maxoutboundconnections')
+            if established < maxOutbound:
                 for i in range(
                         state.maximumNumberOfHalfOpenConnections - pending):
                     try:
@@ -312,7 +316,9 @@ def loop(self):  # pylint: disable=too-many-branches,too-many-statements
                         continue
                     if chosen in self.outboundConnections:
                         continue
-                    if chosen.host in self.inboundConnections:
+                    if chosen.host in self.inboundConnections \
+                            and not config.safeGetBoolean(
+                                'bootstrap', 'dup_ip'):
                         continue
                     # don't connect to self
                     if chosen in state.ownAddresses:
@@ -325,7 +331,9 @@ def loop(self):  # pylint: disable=too-many-branches,too-many-statements
                     for j in self.outboundConnections.values():
                         if host_network_group == j.network_group:
                             same_group = True
-                            if chosen.host == j.destination.host:
+                            if chosen.host == j.destination.host \
+                                    and not config.safeGetBoolean(
+                                        'bootstrap', 'commands'):
                                 knownnodes.decreaseRating(chosen)
                             break
                     if same_group:
@@ -398,12 +406,15 @@ def loop(self):  # pylint: disable=too-many-branches,too-many-statements
             if i.fullyEstablished:
                 minTx -= self.idleTimeout - 20
             if i.lastTx < minTx:
-                if i.fullyEstablished:
-                    i.append_write_buf(protocol.CreatePacket('ping'))
-                else:
+                if not i.fullyEstablished:
                     i.close_reason = "Timeout (%is)" % (
                         time.time() - i.lastTx)
                     i.set_state("close")
+                elif config.safeGetBoolean('bootstrap', 'commands'):
+                    i.close_reason = "Bootstrap idle"
+                    i.set_state("close")
+                else:
+                    i.append_write_buf(protocol.CreatePacket('ping'))
         for i in (
             self.connections()
             + list(self.listeningSockets.values()) + list(self.udpSockets.values())

src/network/knownnodes.py

@@ -34,6 +34,13 @@
 
 knownNodesActual = False
 
+# Bootstrap server address management thresholds
+BOOTSTRAP_INSERT_AGE = 21660
+"""6h + 1min: unverified addresses are inserted with this age"""
+
+BOOTSTRAP_RETRY_COOLDOWN = 3600
+"""1 hour: don't retry connecting to a peer within this window"""
+
 logger = logging.getLogger('default')
 
 DEFAULT_NODES = (
@@ -78,8 +85,12 @@ def json_deserialize_knownnodes(source):
         info = node['info']
         peer = Peer(str(peer['host']), peer.get('port', 8444))
         knownNodes[node['stream']][peer] = info
+        default_nodes = (
+            TESTNET_NODES if config.safeGetBoolean('bootstrap', 'testnet')
+            else DEFAULT_NODES
+        )
         if not (knownNodesActual
-                or info.get('self')) and peer not in DEFAULT_NODES:
+                or info.get('self')) and peer not in default_nodes:
             knownNodesActual = True
 
 

src/network/tcp.py

@@ -92,6 +92,35 @@ def __init__(self, address=None, sock=None):
         self.bm_proto_reset()
         self.set_state("bm_header", expectBytes=protocol.Header.size)
 
+    def _host_is_global(self):
+        """Is this connection's address useful for knownnodes?
+
+        Returns True if the peer address is a real, globally routable
+        address that is worth sharing with the network.
+        """
+        # SOCKS proxy IP: not the real peer address
+        if protocol.checkSocksIP(self.destination.host):
+            return False
+        # Local/private IP: not useful to announce to the network
+        if self.local:
+            return False
+        return True
+
+    def _getPeer(self):
+        """Return the peer address suitable for knownnodes.
+
+        For outbound connections, use destination as-is.
+        For inbound connections, use the advertised listening port
+        from the version message instead of the ephemeral source port.
+        Falls back to destination if version was not yet received.
+        """
+        if self.isOutbound:
+            return self.destination
+        try:
+            return Peer(self.destination.host, self.peerNode.port)
+        except AttributeError:
+            return self.destination
+
     def antiIntersectionDelay(self, initial=False):
         """
         This is a defense against the so called intersection attacks.
@@ -162,18 +191,25 @@ def set_connection_fully_established(self):
         ))
         self.antiIntersectionDelay(True)
         self.fullyEstablished = True
+        peer = self._getPeer()
         # The connection having host suitable for knownnodes
-        if self.isOutbound or not self.local and not state.socksIP:
-            knownnodes.increaseRating(self.destination)
+        if self._host_is_global():
+            if self.isOutbound:
+                knownnodes.increaseRating(peer)
+                lastseen = time.time()
+            elif config.safeGetBoolean('bootstrap', 'commands'):
+                lastseen = time.time() - knownnodes.BOOTSTRAP_INSERT_AGE
+            else:
+                lastseen = time.time()
             knownnodes.addKnownNode(
-                self.streams, self.destination, time.time())
+                self.streams, peer, lastseen)
             dandelion_ins.maybeAddStem(self, invQueue)
         if not config.safeGetBoolean('bootstrap', 'addr'):
             self.sendAddr()
         if not config.safeGetBoolean('bootstrap', 'inv'):
             self.sendBigInv()
 
-    def sendAddr(self):
+    def sendAddr(self):  # pylint: disable=too-many-locals
         """Send a partial list of known addresses to peer."""
         # We are going to share a maximum number of 1000 addrs (per overlapping
         # stream) with our peer. 500 from overlapping streams, 250 from the
@@ -191,11 +227,14 @@ def sendAddr(self):
                         continue
                     # only if more recent than 3 hours
                     # and having positive or neutral rating
+                    is_bootstrap = config.safeGetBoolean(
+                        'bootstrap', 'commands')
                     filtered = [
                         (k, v) for k, v in nodes.items()
                         if v["lastseen"] > int(time.time())
                         - maximumAgeOfNodesThatIAdvertiseToOthers
-                        and v["rating"] >= 0 and not k.host.endswith('.onion')
+                        and (is_bootstrap or v["rating"] >= 0)
+                        and not k.host.endswith('.onion')
                     ]
                     # sent 250 only if the remote isn't interested in it
                     elemCount = min(
@@ -285,20 +324,21 @@ def handle_write(self):
 
     def handle_close(self):
         """Callback for connection being closed."""
-        host_is_global = self.isOutbound or not self.local and not state.socksIP
+        host_is_global = self._host_is_global()
         if self.fullyEstablished:
             UISignalQueue.put((
                 'updateNetworkStatusTab',
                 (self.isOutbound, False, self.destination)
             ))
             if host_is_global:
-                knownnodes.addKnownNode(
-                    self.streams, self.destination, time.time())
+                if self.isOutbound:
+                    knownnodes.addKnownNode(
+                        self.streams, self._getPeer(), time.time())
                 dandelion_ins.maybeRemoveStem(self)
         else:
             self.checkTimeOffsetNotification()
-            if host_is_global:
-                knownnodes.decreaseRating(self.destination)
+            if host_is_global and self.isOutbound:
+                knownnodes.decreaseRating(self._getPeer())
         BMProto.handle_close(self)