Branch data Line data Source code
1 : : // Copyright (c) 2009-2010 Satoshi Nakamoto
2 : : // Copyright (c) 2009-present The Bitcoin Core developers
3 : : // Distributed under the MIT software license, see the accompanying
4 : : // file COPYING or http://www.opensource.org/licenses/mit-license.php.
5 : :
6 : : #ifndef BITCOIN_NET_H
7 : : #define BITCOIN_NET_H
8 : :
9 : : #include <bip324.h>
10 : : #include <chainparams.h>
11 : : #include <common/bloom.h>
12 : : #include <compat/compat.h>
13 : : #include <consensus/amount.h>
14 : : #include <crypto/siphash.h>
15 : : #include <hash.h>
16 : : #include <i2p.h>
17 : : #include <kernel/messagestartchars.h>
18 : : #include <net_permissions.h>
19 : : #include <netaddress.h>
20 : : #include <netbase.h>
21 : : #include <netgroup.h>
22 : : #include <node/connection_types.h>
23 : : #include <node/protocol_version.h>
24 : : #include <policy/feerate.h>
25 : : #include <protocol.h>
26 : : #include <random.h>
27 : : #include <semaphore_grant.h>
28 : : #include <span.h>
29 : : #include <streams.h>
30 : : #include <sync.h>
31 : : #include <uint256.h>
32 : : #include <util/check.h>
33 : : #include <util/sock.h>
34 : : #include <util/threadinterrupt.h>
35 : :
36 : : #include <atomic>
37 : : #include <condition_variable>
38 : : #include <cstdint>
39 : : #include <deque>
40 : : #include <functional>
41 : : #include <list>
42 : : #include <map>
43 : : #include <memory>
44 : : #include <optional>
45 : : #include <queue>
46 : : #include <string_view>
47 : : #include <thread>
48 : : #include <unordered_set>
49 : : #include <vector>
50 : :
51 : : class AddrMan;
52 : : class BanMan;
53 : : class CChainParams;
54 : : class CNode;
55 : : class CScheduler;
56 : : struct bilingual_str;
57 : :
58 : : /** Time after which to disconnect, after waiting for a ping response (or inactivity). */
59 : : static constexpr std::chrono::minutes TIMEOUT_INTERVAL{20};
60 : : /** Run the feeler connection loop once every 2 minutes. **/
61 : : static constexpr auto FEELER_INTERVAL = 2min;
62 : : /** Run the extra block-relay-only connection loop once every 5 minutes. **/
63 : : static constexpr auto EXTRA_BLOCK_RELAY_ONLY_PEER_INTERVAL = 5min;
64 : : /** Maximum length of incoming protocol messages (no message over 4 MB is currently acceptable). */
65 : : static const unsigned int MAX_PROTOCOL_MESSAGE_LENGTH = 4 * 1000 * 1000;
66 : : /** Maximum length of the user agent string in `version` message */
67 : : static const unsigned int MAX_SUBVERSION_LENGTH = 256;
68 : : /** Maximum number of automatic outgoing nodes over which we'll relay everything (blocks, tx, addrs, etc) */
69 : : static const int MAX_OUTBOUND_FULL_RELAY_CONNECTIONS = 8;
70 : : /** Maximum number of addnode outgoing nodes */
71 : : static const int MAX_ADDNODE_CONNECTIONS = 8;
72 : : /** Maximum number of block-relay-only outgoing connections */
73 : : static const int MAX_BLOCK_RELAY_ONLY_CONNECTIONS = 2;
74 : : /** Maximum number of feeler connections */
75 : : static const int MAX_FEELER_CONNECTIONS = 1;
76 : : /** Maximum number of private broadcast connections */
77 : : static constexpr size_t MAX_PRIVATE_BROADCAST_CONNECTIONS{64};
78 : : /** -listen default */
79 : : static const bool DEFAULT_LISTEN = true;
80 : : /** The maximum number of peer connections to maintain. */
81 : : static const unsigned int DEFAULT_MAX_PEER_CONNECTIONS = 125;
82 : : /** The default for -maxuploadtarget. 0 = Unlimited */
83 : : static const std::string DEFAULT_MAX_UPLOAD_TARGET{"0M"};
84 : : /** Default for blocks only*/
85 : : static const bool DEFAULT_BLOCKSONLY = false;
86 : : /** -peertimeout default */
87 : : static const int64_t DEFAULT_PEER_CONNECT_TIMEOUT = 60;
88 : : /** Default for -privatebroadcast. */
89 : : static constexpr bool DEFAULT_PRIVATE_BROADCAST{false};
90 : : /** Number of file descriptors required for message capture **/
91 : : static const int NUM_FDS_MESSAGE_CAPTURE = 1;
92 : : /** Interval for ASMap Health Check **/
93 : : static constexpr std::chrono::hours ASMAP_HEALTH_CHECK_INTERVAL{24};
94 : :
95 : : static constexpr bool DEFAULT_FORCEDNSSEED{false};
96 : : static constexpr bool DEFAULT_DNSSEED{true};
97 : : static constexpr bool DEFAULT_FIXEDSEEDS{true};
98 : : static const size_t DEFAULT_MAXRECEIVEBUFFER = 5 * 1000;
99 : : static const size_t DEFAULT_MAXSENDBUFFER = 1 * 1000;
100 : :
101 : : static constexpr bool DEFAULT_V2_TRANSPORT{true};
102 : :
103 : : typedef int64_t NodeId;
104 : :
105 [ # # ]: 30175 : struct AddedNodeParams {
106 : : std::string m_added_node;
107 : : bool m_use_v2transport;
108 : : };
109 : :
110 : 1700 : struct AddedNodeInfo {
111 : : AddedNodeParams m_params;
112 : : CService resolvedAddress;
113 : : bool fConnected;
114 : : bool fInbound;
115 : : };
116 : :
117 : : class CNodeStats;
118 : : class CClientUIInterface;
119 : :
120 : 1046899 : struct CSerializedNetMsg {
121 [ + + ]: 643365 : CSerializedNetMsg() = default;
122 : 233248 : CSerializedNetMsg(CSerializedNetMsg&&) = default;
123 : 522435 : CSerializedNetMsg& operator=(CSerializedNetMsg&&) = default;
124 : : // No implicit copying, only moves.
125 : : CSerializedNetMsg(const CSerializedNetMsg& msg) = delete;
126 : : CSerializedNetMsg& operator=(const CSerializedNetMsg&) = delete;
127 : :
128 : 360785 : CSerializedNetMsg Copy() const
129 : : {
130 [ + - ]: 360785 : CSerializedNetMsg copy;
131 [ + - ]: 360785 : copy.data = data;
132 [ + - ]: 360785 : copy.m_type = m_type;
133 : 360785 : return copy;
134 : 0 : }
135 : :
136 : : std::vector<unsigned char> data;
137 : : std::string m_type;
138 : :
139 : : /** Compute total memory usage of this object (own memory + any dynamic memory). */
140 : : size_t GetMemoryUsage() const noexcept;
141 : : };
142 : :
143 : : /**
144 : : * Look up IP addresses from all interfaces on the machine and add them to the
145 : : * list of local addresses to self-advertise.
146 : : * The loopback interface is skipped.
147 : : */
148 : : void Discover();
149 : :
150 : : uint16_t GetListenPort();
151 : :
152 : : enum
153 : : {
154 : : LOCAL_NONE, // unknown
155 : : LOCAL_IF, // address a local interface listens on
156 : : LOCAL_BIND, // address explicit bound to
157 : : LOCAL_MAPPED, // address reported by PCP
158 : : LOCAL_MANUAL, // address explicitly specified (-externalip=)
159 : :
160 : : LOCAL_MAX
161 : : };
162 : :
163 : : /** Returns a local address that we should advertise to this peer. */
164 : : std::optional<CService> GetLocalAddrForPeer(CNode& node);
165 : :
166 : : void ClearLocal();
167 : : bool AddLocal(const CService& addr, int nScore = LOCAL_NONE);
168 : : bool AddLocal(const CNetAddr& addr, int nScore = LOCAL_NONE);
169 : : void RemoveLocal(const CService& addr);
170 : : bool SeenLocal(const CService& addr);
171 : : bool IsLocal(const CService& addr);
172 : : CService GetLocalAddress(const CNode& peer);
173 : :
174 : : extern bool fDiscover;
175 : : extern bool fListen;
176 : :
177 : : /** Subversion as sent to the P2P network in `version` messages */
178 : : extern std::string strSubVersion;
179 : :
180 : : struct LocalServiceInfo {
181 : : int nScore;
182 : : uint16_t nPort;
183 : : };
184 : :
185 : : extern GlobalMutex g_maplocalhost_mutex;
186 : : extern std::map<CNetAddr, LocalServiceInfo> mapLocalHost GUARDED_BY(g_maplocalhost_mutex);
187 : :
188 : : extern const std::string NET_MESSAGE_TYPE_OTHER;
189 : : using mapMsgTypeSize = std::map</* message type */ std::string, /* total bytes */ uint64_t>;
190 : :
191 : : class CNodeStats
192 : : {
193 : : public:
194 : : NodeId nodeid;
195 : : std::chrono::seconds m_last_send;
196 : : std::chrono::seconds m_last_recv;
197 : : std::chrono::seconds m_last_tx_time;
198 : : std::chrono::seconds m_last_block_time;
199 : : std::chrono::seconds m_connected;
200 : : std::string m_addr_name;
201 : : int nVersion;
202 : : std::string cleanSubVer;
203 : : bool fInbound;
204 : : // We requested high bandwidth connection to peer
205 : : bool m_bip152_highbandwidth_to;
206 : : // Peer requested high bandwidth connection
207 : : bool m_bip152_highbandwidth_from;
208 : : int m_starting_height;
209 : : uint64_t nSendBytes;
210 : : mapMsgTypeSize mapSendBytesPerMsgType;
211 : : uint64_t nRecvBytes;
212 : : mapMsgTypeSize mapRecvBytesPerMsgType;
213 : : NetPermissionFlags m_permission_flags;
214 : : std::chrono::microseconds m_last_ping_time;
215 : : std::chrono::microseconds m_min_ping_time;
216 : : // Our address, as reported by the peer
217 : : std::string addrLocal;
218 : : // Address of this peer
219 : : CAddress addr;
220 : : // Bind address of our side of the connection
221 : : CService addrBind;
222 : : // Network the peer connected through
223 : : Network m_network;
224 : : uint32_t m_mapped_as;
225 : : ConnectionType m_conn_type;
226 : : /** Transport protocol type. */
227 : : TransportProtocolType m_transport_type;
228 : : /** BIP324 session id string in hex, if any. */
229 : : std::string m_session_id;
230 : : };
231 : :
232 : :
233 : : /** Transport protocol agnostic message container.
234 : : * Ideally it should only contain receive time, payload,
235 : : * type and size.
236 : : */
237 : 985009 : class CNetMessage
238 : : {
239 : : public:
240 : : DataStream m_recv; //!< received message data
241 : : std::chrono::microseconds m_time{0}; //!< time of message receipt
242 : : uint32_t m_message_size{0}; //!< size of the payload
243 : : uint32_t m_raw_message_size{0}; //!< used wire size of the message (including header/checksum)
244 : : std::string m_type;
245 : :
246 [ + - ]: 479586 : explicit CNetMessage(DataStream&& recv_in) : m_recv(std::move(recv_in)) {}
247 : : // Only one CNetMessage object will exist for the same message on either
248 : : // the receive or processing queue. For performance reasons we therefore
249 : : // delete the copy constructor and assignment operator to avoid the
250 : : // possibility of copying CNetMessage objects.
251 : 505423 : CNetMessage(CNetMessage&&) = default;
252 : : CNetMessage(const CNetMessage&) = delete;
253 : : CNetMessage& operator=(CNetMessage&&) = default;
254 : : CNetMessage& operator=(const CNetMessage&) = delete;
255 : :
256 : : /** Compute total memory usage of this object (own memory + any dynamic memory). */
257 : : size_t GetMemoryUsage() const noexcept;
258 : : };
259 : :
260 : : /** The Transport converts one connection's sent messages to wire bytes, and received bytes back. */
261 : 128672 : class Transport {
262 : : public:
263 : : virtual ~Transport() = default;
264 : :
265 [ + + ]: 24438 : struct Info
266 : : {
267 : : TransportProtocolType transport_type;
268 : : std::optional<uint256> session_id;
269 : : };
270 : :
271 : : /** Retrieve information about this transport. */
272 : : virtual Info GetInfo() const noexcept = 0;
273 : :
274 : : // 1. Receiver side functions, for decoding bytes received on the wire into transport protocol
275 : : // agnostic CNetMessage (message type & payload) objects.
276 : :
277 : : /** Returns true if the current message is complete (so GetReceivedMessage can be called). */
278 : : virtual bool ReceivedMessageComplete() const = 0;
279 : :
280 : : /** Feed wire bytes to the transport.
281 : : *
282 : : * @return false if some bytes were invalid, in which case the transport can't be used anymore.
283 : : *
284 : : * Consumed bytes are chopped off the front of msg_bytes.
285 : : */
286 : : virtual bool ReceivedBytes(std::span<const uint8_t>& msg_bytes) = 0;
287 : :
288 : : /** Retrieve a completed message from transport.
289 : : *
290 : : * This can only be called when ReceivedMessageComplete() is true.
291 : : *
292 : : * If reject_message=true is returned the message itself is invalid, but (other than false
293 : : * returned by ReceivedBytes) the transport is not in an inconsistent state.
294 : : */
295 : : virtual CNetMessage GetReceivedMessage(std::chrono::microseconds time, bool& reject_message) = 0;
296 : :
297 : : // 2. Sending side functions, for converting messages into bytes to be sent over the wire.
298 : :
299 : : /** Set the next message to send.
300 : : *
301 : : * If no message can currently be set (perhaps because the previous one is not yet done being
302 : : * sent), returns false, and msg will be unmodified. Otherwise msg is enqueued (and
303 : : * possibly moved-from) and true is returned.
304 : : */
305 : : virtual bool SetMessageToSend(CSerializedNetMsg& msg) noexcept = 0;
306 : :
307 : : /** Return type for GetBytesToSend, consisting of:
308 : : * - std::span<const uint8_t> to_send: span of bytes to be sent over the wire (possibly empty).
309 : : * - bool more: whether there will be more bytes to be sent after the ones in to_send are
310 : : * all sent (as signaled by MarkBytesSent()).
311 : : * - const std::string& m_type: message type on behalf of which this is being sent
312 : : * ("" for bytes that are not on behalf of any message).
313 : : */
314 : : using BytesToSend = std::tuple<
315 : : std::span<const uint8_t> /*to_send*/,
316 : : bool /*more*/,
317 : : const std::string& /*m_type*/
318 : : >;
319 : :
320 : : /** Get bytes to send on the wire, if any, along with other information about it.
321 : : *
322 : : * As a const function, it does not modify the transport's observable state, and is thus safe
323 : : * to be called multiple times.
324 : : *
325 : : * @param[in] have_next_message If true, the "more" return value reports whether more will
326 : : * be sendable after a SetMessageToSend call. It is set by the caller when they know
327 : : * they have another message ready to send, and only care about what happens
328 : : * after that. The have_next_message argument only affects this "more" return value
329 : : * and nothing else.
330 : : *
331 : : * Effectively, there are three possible outcomes about whether there are more bytes
332 : : * to send:
333 : : * - Yes: the transport itself has more bytes to send later. For example, for
334 : : * V1Transport this happens during the sending of the header of a
335 : : * message, when there is a non-empty payload that follows.
336 : : * - No: the transport itself has no more bytes to send, but will have bytes to
337 : : * send if handed a message through SetMessageToSend. In V1Transport this
338 : : * happens when sending the payload of a message.
339 : : * - Blocked: the transport itself has no more bytes to send, and is also incapable
340 : : * of sending anything more at all now, if it were handed another
341 : : * message to send. This occurs in V2Transport before the handshake is
342 : : * complete, as the encryption ciphers are not set up for sending
343 : : * messages before that point.
344 : : *
345 : : * The boolean 'more' is true for Yes, false for Blocked, and have_next_message
346 : : * controls what is returned for No.
347 : : *
348 : : * @return a BytesToSend object. The to_send member returned acts as a stream which is only
349 : : * ever appended to. This means that with the exception of MarkBytesSent (which pops
350 : : * bytes off the front of later to_sends), operations on the transport can only append
351 : : * to what is being returned. Also note that m_type and to_send refer to data that is
352 : : * internal to the transport, and calling any non-const function on this object may
353 : : * invalidate them.
354 : : */
355 : : virtual BytesToSend GetBytesToSend(bool have_next_message) const noexcept = 0;
356 : :
357 : : /** Report how many bytes returned by the last GetBytesToSend() have been sent.
358 : : *
359 : : * bytes_sent cannot exceed to_send.size() of the last GetBytesToSend() result.
360 : : *
361 : : * If bytes_sent=0, this call has no effect.
362 : : */
363 : : virtual void MarkBytesSent(size_t bytes_sent) noexcept = 0;
364 : :
365 : : /** Return the memory usage of this transport attributable to buffered data to send. */
366 : : virtual size_t GetSendMemoryUsage() const noexcept = 0;
367 : :
368 : : // 3. Miscellaneous functions.
369 : :
370 : : /** Whether upon disconnections, a reconnect with V1 is warranted. */
371 : : virtual bool ShouldReconnectV1() const noexcept = 0;
372 : : };
373 : :
374 : : class V1Transport final : public Transport
375 : : {
376 : : private:
377 : : const MessageStartChars m_magic_bytes;
378 : : const NodeId m_node_id; // Only for logging
379 : : mutable Mutex m_recv_mutex; //!< Lock for receive state
380 : : mutable CHash256 hasher GUARDED_BY(m_recv_mutex);
381 : : mutable uint256 data_hash GUARDED_BY(m_recv_mutex);
382 : : bool in_data GUARDED_BY(m_recv_mutex); // parsing header (false) or data (true)
383 : : DataStream hdrbuf GUARDED_BY(m_recv_mutex){}; // partially received header
384 : : CMessageHeader hdr GUARDED_BY(m_recv_mutex); // complete header
385 : : DataStream vRecv GUARDED_BY(m_recv_mutex){}; // received message data
386 : : unsigned int nHdrPos GUARDED_BY(m_recv_mutex);
387 : : unsigned int nDataPos GUARDED_BY(m_recv_mutex);
388 : :
389 : : const uint256& GetMessageHash() const EXCLUSIVE_LOCKS_REQUIRED(m_recv_mutex);
390 : : int readHeader(std::span<const uint8_t> msg_bytes) EXCLUSIVE_LOCKS_REQUIRED(m_recv_mutex);
391 : : int readData(std::span<const uint8_t> msg_bytes) EXCLUSIVE_LOCKS_REQUIRED(m_recv_mutex);
392 : :
393 : 611936 : void Reset() EXCLUSIVE_LOCKS_REQUIRED(m_recv_mutex) {
394 : 611936 : AssertLockHeld(m_recv_mutex);
395 [ - + ]: 611936 : vRecv.clear();
396 [ - + ]: 611936 : hdrbuf.clear();
397 : 611936 : hdrbuf.resize(24);
398 : 611936 : in_data = false;
399 : 611936 : nHdrPos = 0;
400 : 611936 : nDataPos = 0;
401 : 611936 : data_hash.SetNull();
402 : 611936 : hasher.Reset();
403 : 611936 : }
404 : :
405 : 1181052 : bool CompleteInternal() const noexcept EXCLUSIVE_LOCKS_REQUIRED(m_recv_mutex)
406 : : {
407 : 1181052 : AssertLockHeld(m_recv_mutex);
408 [ + - ]: 1181052 : if (!in_data) return false;
409 [ - + ]: 1138890 : return hdr.nMessageSize == nDataPos;
410 : : }
411 : :
412 : : /** Lock for sending state. */
413 : : mutable Mutex m_send_mutex;
414 : : /** The header of the message currently being sent. */
415 : : std::vector<uint8_t> m_header_to_send GUARDED_BY(m_send_mutex);
416 : : /** The data of the message currently being sent. */
417 : : CSerializedNetMsg m_message_to_send GUARDED_BY(m_send_mutex);
418 : : /** Whether we're currently sending header bytes or message bytes. */
419 : : bool m_sending_header GUARDED_BY(m_send_mutex) {false};
420 : : /** How many bytes have been sent so far (from m_header_to_send, or from m_message_to_send.data). */
421 : : size_t m_bytes_sent GUARDED_BY(m_send_mutex) {0};
422 : :
423 : : public:
424 : : explicit V1Transport(const NodeId node_id) noexcept;
425 : :
426 : 741192 : bool ReceivedMessageComplete() const override EXCLUSIVE_LOCKS_REQUIRED(!m_recv_mutex)
427 : : {
428 : 741192 : AssertLockNotHeld(m_recv_mutex);
429 [ - - - - ]: 2181414 : return WITH_LOCK(m_recv_mutex, return CompleteInternal());
[ + - + +
+ - ]
430 : : }
431 : :
432 : : Info GetInfo() const noexcept override;
433 : :
434 : 809957 : bool ReceivedBytes(std::span<const uint8_t>& msg_bytes) override EXCLUSIVE_LOCKS_REQUIRED(!m_recv_mutex)
435 : : {
436 : 809957 : AssertLockNotHeld(m_recv_mutex);
437 : 809957 : LOCK(m_recv_mutex);
438 [ + + + - : 809957 : int ret = in_data ? readData(msg_bytes) : readHeader(msg_bytes);
+ - ]
439 [ + + ]: 809957 : if (ret < 0) {
440 [ + - ]: 68765 : Reset();
441 : : } else {
442 : 741192 : msg_bytes = msg_bytes.subspan(ret);
443 : : }
444 [ + - ]: 809957 : return ret >= 0;
445 : 809957 : }
446 : :
447 : : CNetMessage GetReceivedMessage(std::chrono::microseconds time, bool& reject_message) override EXCLUSIVE_LOCKS_REQUIRED(!m_recv_mutex);
448 : :
449 : : bool SetMessageToSend(CSerializedNetMsg& msg) noexcept override EXCLUSIVE_LOCKS_REQUIRED(!m_send_mutex);
450 : : BytesToSend GetBytesToSend(bool have_next_message) const noexcept override EXCLUSIVE_LOCKS_REQUIRED(!m_send_mutex);
451 : : void MarkBytesSent(size_t bytes_sent) noexcept override EXCLUSIVE_LOCKS_REQUIRED(!m_send_mutex);
452 : : size_t GetSendMemoryUsage() const noexcept override EXCLUSIVE_LOCKS_REQUIRED(!m_send_mutex);
453 : 0 : bool ShouldReconnectV1() const noexcept override { return false; }
454 : : };
455 : :
456 : : class V2Transport final : public Transport
457 : : {
458 : : private:
459 : : /** Contents of the version packet to send. BIP324 stipulates that senders should leave this
460 : : * empty, and receivers should ignore it. Future extensions can change what is sent as long as
461 : : * an empty version packet contents is interpreted as no extensions supported. */
462 : : static constexpr std::array<std::byte, 0> VERSION_CONTENTS = {};
463 : :
464 : : /** The length of the V1 prefix to match bytes initially received by responders with to
465 : : * determine if their peer is speaking V1 or V2. */
466 : : static constexpr size_t V1_PREFIX_LEN = 16;
467 : :
468 : : // The sender side and receiver side of V2Transport are state machines that are transitioned
469 : : // through, based on what has been received. The receive state corresponds to the contents of,
470 : : // and bytes received to, the receive buffer. The send state controls what can be appended to
471 : : // the send buffer and what can be sent from it.
472 : :
473 : : /** State type that defines the current contents of the receive buffer and/or how the next
474 : : * received bytes added to it will be interpreted.
475 : : *
476 : : * Diagram:
477 : : *
478 : : * start(responder)
479 : : * |
480 : : * | start(initiator) /---------\
481 : : * | | | |
482 : : * v v v |
483 : : * KEY_MAYBE_V1 -> KEY -> GARB_GARBTERM -> VERSION -> APP -> APP_READY
484 : : * |
485 : : * \-------> V1
486 : : */
487 : : enum class RecvState : uint8_t {
488 : : /** (Responder only) either v2 public key or v1 header.
489 : : *
490 : : * This is the initial state for responders, before data has been received to distinguish
491 : : * v1 from v2 connections. When that happens, the state becomes either KEY (for v2) or V1
492 : : * (for v1). */
493 : : KEY_MAYBE_V1,
494 : :
495 : : /** Public key.
496 : : *
497 : : * This is the initial state for initiators, during which the other side's public key is
498 : : * received. When that information arrives, the ciphers get initialized and the state
499 : : * becomes GARB_GARBTERM. */
500 : : KEY,
501 : :
502 : : /** Garbage and garbage terminator.
503 : : *
504 : : * Whenever a byte is received, the last 16 bytes are compared with the expected garbage
505 : : * terminator. When that happens, the state becomes VERSION. If no matching terminator is
506 : : * received in 4111 bytes (4095 for the maximum garbage length, and 16 bytes for the
507 : : * terminator), the connection aborts. */
508 : : GARB_GARBTERM,
509 : :
510 : : /** Version packet.
511 : : *
512 : : * A packet is received, and decrypted/verified. If that fails, the connection aborts. The
513 : : * first received packet in this state (whether it's a decoy or not) is expected to
514 : : * authenticate the garbage received during the GARB_GARBTERM state as associated
515 : : * authenticated data (AAD). The first non-decoy packet in this state is interpreted as
516 : : * version negotiation (currently, that means ignoring the contents, but it can be used for
517 : : * negotiating future extensions), and afterwards the state becomes APP. */
518 : : VERSION,
519 : :
520 : : /** Application packet.
521 : : *
522 : : * A packet is received, and decrypted/verified. If that succeeds, the state becomes
523 : : * APP_READY and the decrypted contents is kept in m_recv_decode_buffer until it is
524 : : * retrieved as a message by GetMessage(). */
525 : : APP,
526 : :
527 : : /** Nothing (an application packet is available for GetMessage()).
528 : : *
529 : : * Nothing can be received in this state. When the message is retrieved by GetMessage,
530 : : * the state becomes APP again. */
531 : : APP_READY,
532 : :
533 : : /** Nothing (this transport is using v1 fallback).
534 : : *
535 : : * All receive operations are redirected to m_v1_fallback. */
536 : : V1,
537 : : };
538 : :
539 : : /** State type that controls the sender side.
540 : : *
541 : : * Diagram:
542 : : *
543 : : * start(responder)
544 : : * |
545 : : * | start(initiator)
546 : : * | |
547 : : * v v
548 : : * MAYBE_V1 -> AWAITING_KEY -> READY
549 : : * |
550 : : * \-----> V1
551 : : */
552 : : enum class SendState : uint8_t {
553 : : /** (Responder only) Not sending until v1 or v2 is detected.
554 : : *
555 : : * This is the initial state for responders. The send buffer is empty.
556 : : * When the receiver determines whether this
557 : : * is a V1 or V2 connection, the sender state becomes AWAITING_KEY (for v2) or V1 (for v1).
558 : : */
559 : : MAYBE_V1,
560 : :
561 : : /** Waiting for the other side's public key.
562 : : *
563 : : * This is the initial state for initiators. The public key and garbage is sent out. When
564 : : * the receiver receives the other side's public key and transitions to GARB_GARBTERM, the
565 : : * sender state becomes READY. */
566 : : AWAITING_KEY,
567 : :
568 : : /** Normal sending state.
569 : : *
570 : : * In this state, the ciphers are initialized, so packets can be sent. When this state is
571 : : * entered, the garbage terminator and version packet are appended to the send buffer (in
572 : : * addition to the key and garbage which may still be there). In this state a message can be
573 : : * provided if the send buffer is empty. */
574 : : READY,
575 : :
576 : : /** This transport is using v1 fallback.
577 : : *
578 : : * All send operations are redirected to m_v1_fallback. */
579 : : V1,
580 : : };
581 : :
582 : : /** Cipher state. */
583 : : BIP324Cipher m_cipher;
584 : : /** Whether we are the initiator side. */
585 : : const bool m_initiating;
586 : : /** NodeId (for debug logging). */
587 : : const NodeId m_nodeid;
588 : : /** Encapsulate a V1Transport to fall back to. */
589 : : V1Transport m_v1_fallback;
590 : :
591 : : /** Lock for receiver-side fields. */
592 : : mutable Mutex m_recv_mutex ACQUIRED_BEFORE(m_send_mutex);
593 : : /** In {VERSION, APP}, the decrypted packet length, if m_recv_buffer.size() >=
594 : : * BIP324Cipher::LENGTH_LEN. Unspecified otherwise. */
595 : : uint32_t m_recv_len GUARDED_BY(m_recv_mutex) {0};
596 : : /** Receive buffer; meaning is determined by m_recv_state. */
597 : : std::vector<uint8_t> m_recv_buffer GUARDED_BY(m_recv_mutex);
598 : : /** AAD expected in next received packet (currently used only for garbage). */
599 : : std::vector<uint8_t> m_recv_aad GUARDED_BY(m_recv_mutex);
600 : : /** Buffer to put decrypted contents in, for converting to CNetMessage. */
601 : : std::vector<uint8_t> m_recv_decode_buffer GUARDED_BY(m_recv_mutex);
602 : : /** Current receiver state. */
603 : : RecvState m_recv_state GUARDED_BY(m_recv_mutex);
604 : :
605 : : /** Lock for sending-side fields. If both sending and receiving fields are accessed,
606 : : * m_recv_mutex must be acquired before m_send_mutex. */
607 : : mutable Mutex m_send_mutex ACQUIRED_AFTER(m_recv_mutex);
608 : : /** The send buffer; meaning is determined by m_send_state. */
609 : : std::vector<uint8_t> m_send_buffer GUARDED_BY(m_send_mutex);
610 : : /** How many bytes from the send buffer have been sent so far. */
611 : : uint32_t m_send_pos GUARDED_BY(m_send_mutex) {0};
612 : : /** The garbage sent, or to be sent (MAYBE_V1 and AWAITING_KEY state only). */
613 : : std::vector<uint8_t> m_send_garbage GUARDED_BY(m_send_mutex);
614 : : /** Type of the message being sent. */
615 : : std::string m_send_type GUARDED_BY(m_send_mutex);
616 : : /** Current sender state. */
617 : : SendState m_send_state GUARDED_BY(m_send_mutex);
618 : : /** Whether we've sent at least 24 bytes (which would trigger disconnect for V1 peers). */
619 : : bool m_sent_v1_header_worth GUARDED_BY(m_send_mutex) {false};
620 : :
621 : : /** Change the receive state. */
622 : : void SetReceiveState(RecvState recv_state) noexcept EXCLUSIVE_LOCKS_REQUIRED(m_recv_mutex);
623 : : /** Change the send state. */
624 : : void SetSendState(SendState send_state) noexcept EXCLUSIVE_LOCKS_REQUIRED(m_send_mutex);
625 : : /** Given a packet's contents, find the message type (if valid), and strip it from contents. */
626 : : static std::optional<std::string> GetMessageType(std::span<const uint8_t>& contents) noexcept;
627 : : /** Determine how many received bytes can be processed in one go (not allowed in V1 state). */
628 : : size_t GetMaxBytesToProcess() noexcept EXCLUSIVE_LOCKS_REQUIRED(m_recv_mutex);
629 : : /** Put our public key + garbage in the send buffer. */
630 : : void StartSendingHandshake() noexcept EXCLUSIVE_LOCKS_REQUIRED(m_send_mutex);
631 : : /** Process bytes in m_recv_buffer, while in KEY_MAYBE_V1 state. */
632 : : void ProcessReceivedMaybeV1Bytes() noexcept EXCLUSIVE_LOCKS_REQUIRED(m_recv_mutex, !m_send_mutex);
633 : : /** Process bytes in m_recv_buffer, while in KEY state. */
634 : : bool ProcessReceivedKeyBytes() noexcept EXCLUSIVE_LOCKS_REQUIRED(m_recv_mutex, !m_send_mutex);
635 : : /** Process bytes in m_recv_buffer, while in GARB_GARBTERM state. */
636 : : bool ProcessReceivedGarbageBytes() noexcept EXCLUSIVE_LOCKS_REQUIRED(m_recv_mutex);
637 : : /** Process bytes in m_recv_buffer, while in VERSION/APP state. */
638 : : bool ProcessReceivedPacketBytes() noexcept EXCLUSIVE_LOCKS_REQUIRED(m_recv_mutex);
639 : :
640 : : public:
641 : : static constexpr uint32_t MAX_GARBAGE_LEN = 4095;
642 : :
643 : : /** Construct a V2 transport with securely generated random keys.
644 : : *
645 : : * @param[in] nodeid the node's NodeId (only for debug log output).
646 : : * @param[in] initiating whether we are the initiator side.
647 : : */
648 : : V2Transport(NodeId nodeid, bool initiating) noexcept;
649 : :
650 : : /** Construct a V2 transport with specified keys and garbage (test use only). */
651 : : V2Transport(NodeId nodeid, bool initiating, const CKey& key, std::span<const std::byte> ent32, std::vector<uint8_t> garbage) noexcept;
652 : :
653 : : // Receive side functions.
654 : : bool ReceivedMessageComplete() const noexcept override EXCLUSIVE_LOCKS_REQUIRED(!m_recv_mutex);
655 : : bool ReceivedBytes(std::span<const uint8_t>& msg_bytes) noexcept override EXCLUSIVE_LOCKS_REQUIRED(!m_recv_mutex, !m_send_mutex);
656 : : CNetMessage GetReceivedMessage(std::chrono::microseconds time, bool& reject_message) noexcept override EXCLUSIVE_LOCKS_REQUIRED(!m_recv_mutex);
657 : :
658 : : // Send side functions.
659 : : bool SetMessageToSend(CSerializedNetMsg& msg) noexcept override EXCLUSIVE_LOCKS_REQUIRED(!m_send_mutex);
660 : : BytesToSend GetBytesToSend(bool have_next_message) const noexcept override EXCLUSIVE_LOCKS_REQUIRED(!m_send_mutex);
661 : : void MarkBytesSent(size_t bytes_sent) noexcept override EXCLUSIVE_LOCKS_REQUIRED(!m_send_mutex);
662 : : size_t GetSendMemoryUsage() const noexcept override EXCLUSIVE_LOCKS_REQUIRED(!m_send_mutex);
663 : :
664 : : // Miscellaneous functions.
665 : : bool ShouldReconnectV1() const noexcept override EXCLUSIVE_LOCKS_REQUIRED(!m_recv_mutex, !m_send_mutex);
666 : : Info GetInfo() const noexcept override EXCLUSIVE_LOCKS_REQUIRED(!m_recv_mutex);
667 : : };
668 : :
669 [ + - ]: 96572 : struct CNodeOptions
670 : : {
671 : : NetPermissionFlags permission_flags = NetPermissionFlags::None;
672 : : std::unique_ptr<i2p::sam::Session> i2p_sam_session = nullptr;
673 : : bool prefer_evict = false;
674 : : size_t recv_flood_size{DEFAULT_MAXRECEIVEBUFFER * 1000};
675 : : bool use_v2transport = false;
676 : : };
677 : :
678 : : /** Information about a peer */
679 : : class CNode
680 : : {
681 : : public:
682 : : /** Transport serializer/deserializer. The receive side functions are only called under cs_vRecv, while
683 : : * the sending side functions are only called under cs_vSend. */
684 : : const std::unique_ptr<Transport> m_transport;
685 : :
686 : : const NetPermissionFlags m_permission_flags;
687 : :
688 : : /**
689 : : * Socket used for communication with the node.
690 : : * May not own a Sock object (after `CloseSocketDisconnect()` or during tests).
691 : : * `shared_ptr` (instead of `unique_ptr`) is used to avoid premature close of
692 : : * the underlying file descriptor by one thread while another thread is
693 : : * poll(2)-ing it for activity.
694 : : * @see https://github.com/bitcoin/bitcoin/issues/21744 for details.
695 : : */
696 : : std::shared_ptr<Sock> m_sock GUARDED_BY(m_sock_mutex);
697 : :
698 : : /** Sum of GetMemoryUsage of all vSendMsg entries. */
699 : : size_t m_send_memusage GUARDED_BY(cs_vSend){0};
700 : : /** Total number of bytes sent on the wire to this peer. */
701 : : uint64_t nSendBytes GUARDED_BY(cs_vSend){0};
702 : : /** Messages still to be fed to m_transport->SetMessageToSend. */
703 : : std::deque<CSerializedNetMsg> vSendMsg GUARDED_BY(cs_vSend);
704 : : Mutex cs_vSend;
705 : : Mutex m_sock_mutex;
706 : : Mutex cs_vRecv;
707 : :
708 : : uint64_t nRecvBytes GUARDED_BY(cs_vRecv){0};
709 : :
710 : : std::atomic<std::chrono::seconds> m_last_send{0s};
711 : : std::atomic<std::chrono::seconds> m_last_recv{0s};
712 : : //! Unix epoch time at peer connection
713 : : const std::chrono::seconds m_connected;
714 : : // Address of this peer
715 : : const CAddress addr;
716 : : // Bind address of our side of the connection
717 : : const CService addrBind;
718 : : const std::string m_addr_name;
719 : : /** The pszDest argument provided to ConnectNode(). Only used for reconnections. */
720 : : const std::string m_dest;
721 : : //! Whether this peer is an inbound onion, i.e. connected via our Tor onion service.
722 : : const bool m_inbound_onion;
723 : : std::atomic<int> nVersion{0};
724 : : Mutex m_subver_mutex;
725 : : /**
726 : : * cleanSubVer is a sanitized string of the user agent byte array we read
727 : : * from the wire. This cleaned string can safely be logged or displayed.
728 : : */
729 : : std::string cleanSubVer GUARDED_BY(m_subver_mutex){};
730 : : const bool m_prefer_evict{false}; // This peer is preferred for eviction.
731 : 930708 : bool HasPermission(NetPermissionFlags permission) const {
732 [ + - # # : 932651 : return NetPermissions::HasFlag(m_permission_flags, permission);
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # #
# ][ + + -
- + - + +
- - + + +
- - - + +
+ + + + +
+ - - - -
+ + - - +
+ ]
733 : : }
734 : : /** fSuccessfullyConnected is set to true on receiving VERACK from the peer. */
735 : : std::atomic_bool fSuccessfullyConnected{false};
736 : : // Setting fDisconnect to true will cause the node to be disconnected the
737 : : // next time DisconnectNodes() runs
738 : : std::atomic_bool fDisconnect{false};
739 : : CountingSemaphoreGrant<> grantOutbound;
740 : : std::atomic<int> nRefCount{0};
741 : :
742 : : const uint64_t nKeyedNetGroup;
743 : : std::atomic_bool fPauseRecv{false};
744 : : std::atomic_bool fPauseSend{false};
745 : :
746 : : /** Network key used to prevent fingerprinting our node across networks.
747 : : * Influenced by the network and the bind address (+ bind port for inbounds) */
748 : : const uint64_t m_network_key;
749 : :
750 : : const ConnectionType m_conn_type;
751 : :
752 : : /** Move all messages from the received queue to the processing queue. */
753 : : void MarkReceivedMsgsForProcessing()
754 : : EXCLUSIVE_LOCKS_REQUIRED(!m_msg_process_queue_mutex);
755 : :
756 : : /** Poll the next message from the processing queue of this connection.
757 : : *
758 : : * Returns std::nullopt if the processing queue is empty, or a pair
759 : : * consisting of the message and a bool that indicates if the processing
760 : : * queue has more entries. */
761 : : std::optional<std::pair<CNetMessage, bool>> PollMessage()
762 : : EXCLUSIVE_LOCKS_REQUIRED(!m_msg_process_queue_mutex);
763 : :
764 : : /** Account for the total size of a sent message in the per msg type connection stats. */
765 : 128855 : void AccountForSentBytes(const std::string& msg_type, size_t sent_bytes)
766 : : EXCLUSIVE_LOCKS_REQUIRED(cs_vSend)
767 : : {
768 : 128855 : mapSendBytesPerMsgType[msg_type] += sent_bytes;
769 : 128855 : }
770 : :
771 : 44662 : bool IsOutboundOrBlockRelayConn() const {
772 [ + - + ]: 44662 : switch (m_conn_type) {
773 : : case ConnectionType::OUTBOUND_FULL_RELAY:
774 : : case ConnectionType::BLOCK_RELAY:
775 : : return true;
776 : 20561 : case ConnectionType::INBOUND:
777 : 20561 : case ConnectionType::MANUAL:
778 : 20561 : case ConnectionType::ADDR_FETCH:
779 : 20561 : case ConnectionType::FEELER:
780 : 20561 : case ConnectionType::PRIVATE_BROADCAST:
781 : 20561 : return false;
782 : : } // no default case, so the compiler can warn about missing cases
783 : :
784 : 0 : assert(false);
785 : : }
786 : :
787 : 1492 : bool IsFullOutboundConn() const {
788 [ # # # # : 1492 : return m_conn_type == ConnectionType::OUTBOUND_FULL_RELAY;
# # ][ - -
+ + # # ]
789 : : }
790 : :
791 : 0 : bool IsManualConn() const {
792 [ # # ]: 0 : return m_conn_type == ConnectionType::MANUAL;
793 : : }
794 : :
795 : 87840 : bool IsManualOrFullOutboundConn() const
796 : : {
797 [ + - + ]: 87840 : switch (m_conn_type) {
798 : : case ConnectionType::INBOUND:
799 : : case ConnectionType::FEELER:
800 : : case ConnectionType::BLOCK_RELAY:
801 : : case ConnectionType::ADDR_FETCH:
802 : : case ConnectionType::PRIVATE_BROADCAST:
803 : : return false;
804 : 24049 : case ConnectionType::OUTBOUND_FULL_RELAY:
805 : 24049 : case ConnectionType::MANUAL:
806 : 24049 : return true;
807 : : } // no default case, so the compiler can warn about missing cases
808 : :
809 : 0 : assert(false);
810 : : }
811 : :
812 : 78555 : bool IsBlockOnlyConn() const {
813 [ # # # # : 78555 : return m_conn_type == ConnectionType::BLOCK_RELAY;
# # # # #
# # # ][ +
+ + + + +
- - + + +
+ ][ + + ]
814 : : }
815 : :
816 : 14415 : bool IsFeelerConn() const {
817 [ + + ]: 14415 : return m_conn_type == ConnectionType::FEELER;
818 : : }
819 : :
820 : 26297 : bool IsAddrFetchConn() const {
821 [ + + + + : 26297 : return m_conn_type == ConnectionType::ADDR_FETCH;
+ + ]
822 : : }
823 : :
824 : 341767 : bool IsPrivateBroadcastConn() const
825 : : {
826 [ + + # # : 341767 : return m_conn_type == ConnectionType::PRIVATE_BROADCAST;
# # # # #
# # # # #
# # # # ]
[ - + + +
+ + - + -
+ - + - +
+ + + + ]
827 : : }
828 : :
829 : 4010843 : bool IsInboundConn() const {
830 [ + + + + : 3990285 : return m_conn_type == ConnectionType::INBOUND;
+ - + + +
+ - - # #
# # # # #
# # # # #
# # # # ]
[ + + + +
+ + + + +
+ + + + +
+ + + + +
+ + + + +
- - + + ]
831 : : }
832 : :
833 : 22457 : bool ExpectServicesFromConn() const {
834 [ + - + ]: 22457 : switch (m_conn_type) {
835 : : case ConnectionType::INBOUND:
836 : : case ConnectionType::MANUAL:
837 : : case ConnectionType::FEELER:
838 : : return false;
839 : 7399 : case ConnectionType::OUTBOUND_FULL_RELAY:
840 : 7399 : case ConnectionType::BLOCK_RELAY:
841 : 7399 : case ConnectionType::ADDR_FETCH:
842 : 7399 : case ConnectionType::PRIVATE_BROADCAST:
843 : 7399 : return true;
844 : : } // no default case, so the compiler can warn about missing cases
845 : :
846 : 0 : assert(false);
847 : : }
848 : :
849 : : /**
850 : : * Get network the peer connected through.
851 : : *
852 : : * Returns Network::NET_ONION for *inbound* onion connections,
853 : : * and CNetAddr::GetNetClass() otherwise. The latter cannot be used directly
854 : : * because it doesn't detect the former, and it's not the responsibility of
855 : : * the CNetAddr class to know the actual network a peer is connected through.
856 : : *
857 : : * @return network the peer connected through.
858 : : */
859 : : Network ConnectedThroughNetwork() const;
860 : :
861 : : /** Whether this peer connected through a privacy network. */
862 : : [[nodiscard]] bool IsConnectedThroughPrivacyNet() const;
863 : :
864 : : // We selected peer as (compact blocks) high-bandwidth peer (BIP152)
865 : : std::atomic<bool> m_bip152_highbandwidth_to{false};
866 : : // Peer selected us as (compact blocks) high-bandwidth peer (BIP152)
867 : : std::atomic<bool> m_bip152_highbandwidth_from{false};
868 : :
869 : : /** Whether this peer provides all services that we want. Used for eviction decisions */
870 : : std::atomic_bool m_has_all_wanted_services{false};
871 : :
872 : : /** Whether we should relay transactions to this peer. This only changes
873 : : * from false to true. It will never change back to false. */
874 : : std::atomic_bool m_relays_txs{false};
875 : :
876 : : /** Whether this peer has loaded a bloom filter. Used only in inbound
877 : : * eviction logic. */
878 : : std::atomic_bool m_bloom_filter_loaded{false};
879 : :
880 : : /** UNIX epoch time of the last block received from this peer that we had
881 : : * not yet seen (e.g. not already received from another peer), that passed
882 : : * preliminary validity checks and was saved to disk, even if we don't
883 : : * connect the block or it eventually fails connection. Used as an inbound
884 : : * peer eviction criterium in CConnman::AttemptToEvictConnection. */
885 : : std::atomic<std::chrono::seconds> m_last_block_time{0s};
886 : :
887 : : /** UNIX epoch time of the last transaction received from this peer that we
888 : : * had not yet seen (e.g. not already received from another peer) and that
889 : : * was accepted into our mempool. Used as an inbound peer eviction criterium
890 : : * in CConnman::AttemptToEvictConnection. */
891 : : std::atomic<std::chrono::seconds> m_last_tx_time{0s};
892 : :
893 : : /** Last measured round-trip time. Used only for RPC/GUI stats/debugging.*/
894 : : std::atomic<std::chrono::microseconds> m_last_ping_time{0us};
895 : :
896 : : /** Lowest measured round-trip time. Used as an inbound peer eviction
897 : : * criterium in CConnman::AttemptToEvictConnection. */
898 : : std::atomic<std::chrono::microseconds> m_min_ping_time{std::chrono::microseconds::max()};
899 : :
900 : : CNode(NodeId id,
901 : : std::shared_ptr<Sock> sock,
902 : : const CAddress& addrIn,
903 : : uint64_t nKeyedNetGroupIn,
904 : : uint64_t nLocalHostNonceIn,
905 : : const CService& addrBindIn,
906 : : const std::string& addrNameIn,
907 : : ConnectionType conn_type_in,
908 : : bool inbound_onion,
909 : : uint64_t network_key,
910 : : CNodeOptions&& node_opts = {});
911 : : CNode(const CNode&) = delete;
912 : : CNode& operator=(const CNode&) = delete;
913 : :
914 : 3838958 : NodeId GetId() const {
915 [ + + - - : 3804658 : return id;
+ + - - +
+ - - - -
- - # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # #
# # # # ]
[ - - - -
+ - - - -
- - - - -
- - + - -
- - - - -
- - - - -
- + - + -
- - - - +
- + - + -
- - - - +
- - - - -
- - + - -
- - - + -
+ - - - -
- - - - -
- - - - -
- - - - -
- - - - -
- - - - -
+ - + - -
- - - + -
- - - - +
- + - - -
- - - - -
- - - - -
- - - - +
- + - - -
- - - - -
- - - + -
- - - - -
- - - - -
- - - - -
- - - - -
- - - - -
- - - + -
- - - - +
- - - - -
+ - + - -
+ + - - -
- - - - ]
[ + - ]
916 : : }
917 : :
918 : 368766 : uint64_t GetLocalNonce() const {
919 [ + + ]: 368766 : return nLocalHostNonce;
920 : : }
921 : :
922 : 111239 : int GetRefCount() const
923 : : {
924 [ - + ]: 111239 : assert(nRefCount >= 0);
925 : 111239 : return nRefCount;
926 : : }
927 : :
928 : : /**
929 : : * Receive bytes from the buffer and deserialize them into messages.
930 : : *
931 : : * @param[in] msg_bytes The raw data
932 : : * @param[out] complete Set True if at least one message has been
933 : : * deserialized and is ready to be processed
934 : : * @return True if the peer should stay connected,
935 : : * False if the peer should be disconnected from.
936 : : */
937 : : bool ReceiveMsgBytes(std::span<const uint8_t> msg_bytes, bool& complete) EXCLUSIVE_LOCKS_REQUIRED(!cs_vRecv);
938 : :
939 : 16572 : void SetCommonVersion(int greatest_common_version)
940 : : {
941 [ - + ]: 16572 : Assume(m_greatest_common_version == INIT_PROTO_VERSION);
942 : 16572 : m_greatest_common_version = greatest_common_version;
943 : 16572 : }
944 : 83318 : int GetCommonVersion() const
945 : : {
946 [ + + + + : 83318 : return m_greatest_common_version;
+ + + + +
+ - - + +
- - ][ + + ]
947 : : }
948 : :
949 : : CService GetAddrLocal() const EXCLUSIVE_LOCKS_REQUIRED(!m_addr_local_mutex);
950 : : //! May not be called more than once
951 : : void SetAddrLocal(const CService& addrLocalIn) EXCLUSIVE_LOCKS_REQUIRED(!m_addr_local_mutex);
952 : :
953 : 987115 : CNode* AddRef()
954 : : {
955 [ - + ]: 42016 : nRefCount++;
956 [ - + ]: 987115 : return this;
957 : : }
958 : :
959 : 949576 : void Release()
960 : : {
961 [ # # ]: 4477 : nRefCount--;
962 : 4477 : }
963 : :
964 : : void CloseSocketDisconnect() EXCLUSIVE_LOCKS_REQUIRED(!m_sock_mutex);
965 : :
966 : : void CopyStats(CNodeStats& stats) EXCLUSIVE_LOCKS_REQUIRED(!m_subver_mutex, !m_addr_local_mutex, !cs_vSend, !cs_vRecv);
967 : :
968 [ # # # # : 3695 : std::string ConnectionTypeAsString() const { return ::ConnectionTypeAsString(m_conn_type); }
# # ][ - -
- - + - ]
969 : :
970 : : /**
971 : : * Helper function to optionally log the IP address.
972 : : *
973 : : * @param[in] log_ip whether to include the IP address
974 : : * @return " peeraddr=..." or ""
975 : : */
976 : : std::string LogIP(bool log_ip) const;
977 : :
978 : : /**
979 : : * Helper function to log disconnects.
980 : : *
981 : : * @param[in] log_ip whether to include the IP address
982 : : * @return "disconnecting peer=..." and optionally "peeraddr=..."
983 : : */
984 : : std::string DisconnectMsg(bool log_ip) const;
985 : :
986 : : /** A ping-pong round trip has completed successfully. Update latest and minimum ping times. */
987 : 4 : void PongReceived(std::chrono::microseconds ping_time) {
988 : 4 : m_last_ping_time = ping_time;
989 : 4 : m_min_ping_time = std::min(m_min_ping_time.load(), ping_time);
990 : 4 : }
991 : :
992 : : private:
993 : : const NodeId id;
994 : : const uint64_t nLocalHostNonce;
995 : : std::atomic<int> m_greatest_common_version{INIT_PROTO_VERSION};
996 : :
997 : : const size_t m_recv_flood_size;
998 : : std::list<CNetMessage> vRecvMsg; // Used only by SocketHandler thread
999 : :
1000 : : Mutex m_msg_process_queue_mutex;
1001 : : std::list<CNetMessage> m_msg_process_queue GUARDED_BY(m_msg_process_queue_mutex);
1002 : : size_t m_msg_process_queue_size GUARDED_BY(m_msg_process_queue_mutex){0};
1003 : :
1004 : : // Our address, as reported by the peer
1005 : : CService m_addr_local GUARDED_BY(m_addr_local_mutex);
1006 : : mutable Mutex m_addr_local_mutex;
1007 : :
1008 : : mapMsgTypeSize mapSendBytesPerMsgType GUARDED_BY(cs_vSend);
1009 : : mapMsgTypeSize mapRecvBytesPerMsgType GUARDED_BY(cs_vRecv);
1010 : :
1011 : : /**
1012 : : * If an I2P session is created per connection (for outbound transient I2P
1013 : : * connections) then it is stored here so that it can be destroyed when the
1014 : : * socket is closed. I2P sessions involve a data/transport socket (in `m_sock`)
1015 : : * and a control socket (in `m_i2p_sam_session`). For transient sessions, once
1016 : : * the data socket is closed, the control socket is not going to be used anymore
1017 : : * and is just taking up resources. So better close it as soon as `m_sock` is
1018 : : * closed.
1019 : : * Otherwise this unique_ptr is empty.
1020 : : */
1021 : : std::unique_ptr<i2p::sam::Session> m_i2p_sam_session GUARDED_BY(m_sock_mutex);
1022 : : };
1023 : :
1024 : : /**
1025 : : * Interface for message handling
1026 : : */
1027 [ + - ]: 18602 : class NetEventsInterface
1028 : : {
1029 : : public:
1030 : : /** Mutex for anything that is only accessed via the msg processing thread */
1031 : : static Mutex g_msgproc_mutex;
1032 : :
1033 : : /** Initialize a peer (setup state) */
1034 : : virtual void InitializeNode(const CNode& node, ServiceFlags our_services) = 0;
1035 : :
1036 : : /** Handle removal of a peer (clear state) */
1037 : : virtual void FinalizeNode(const CNode& node) = 0;
1038 : :
1039 : : /**
1040 : : * Callback to determine whether the given set of service flags are sufficient
1041 : : * for a peer to be "relevant".
1042 : : */
1043 : : virtual bool HasAllDesirableServiceFlags(ServiceFlags services) const = 0;
1044 : :
1045 : : /**
1046 : : * Process protocol messages received from a given node
1047 : : *
1048 : : * @param[in] pnode The node which we have received messages from.
1049 : : * @param[in] interrupt Interrupt condition for processing threads
1050 : : * @return True if there is more work to be done
1051 : : */
1052 : : virtual bool ProcessMessages(CNode* pnode, std::atomic<bool>& interrupt) EXCLUSIVE_LOCKS_REQUIRED(g_msgproc_mutex) = 0;
1053 : :
1054 : : /**
1055 : : * Send queued protocol messages to a given node.
1056 : : *
1057 : : * @param[in] pnode The node which we are sending messages to.
1058 : : * @return True if there is more work to be done
1059 : : */
1060 : : virtual bool SendMessages(CNode* pnode) EXCLUSIVE_LOCKS_REQUIRED(g_msgproc_mutex) = 0;
1061 : :
1062 : :
1063 : : protected:
1064 : : /**
1065 : : * Protected destructor so that instances can only be deleted by derived classes.
1066 : : * If that restriction is no longer desired, this should be made public and virtual.
1067 : : */
1068 : : ~NetEventsInterface() = default;
1069 : : };
1070 : :
1071 : : class CConnman
1072 : : {
1073 : : public:
1074 : :
1075 : : struct Options
1076 : : {
1077 : : ServiceFlags m_local_services = NODE_NONE;
1078 : : int m_max_automatic_connections = 0;
1079 : : CClientUIInterface* uiInterface = nullptr;
1080 : : NetEventsInterface* m_msgproc = nullptr;
1081 : : BanMan* m_banman = nullptr;
1082 : : unsigned int nSendBufferMaxSize = 0;
1083 : : unsigned int nReceiveFloodSize = 0;
1084 : : uint64_t nMaxOutboundLimit = 0;
1085 : : int64_t m_peer_connect_timeout = DEFAULT_PEER_CONNECT_TIMEOUT;
1086 : : std::vector<std::string> vSeedNodes;
1087 : : std::vector<NetWhitelistPermissions> vWhitelistedRangeIncoming;
1088 : : std::vector<NetWhitelistPermissions> vWhitelistedRangeOutgoing;
1089 : : std::vector<NetWhitebindPermissions> vWhiteBinds;
1090 : : std::vector<CService> vBinds;
1091 : : std::vector<CService> onion_binds;
1092 : : /// True if the user did not specify -bind= or -whitebind= and thus
1093 : : /// we should bind on `0.0.0.0` (IPv4) and `::` (IPv6).
1094 : : bool bind_on_any;
1095 : : bool m_use_addrman_outgoing = true;
1096 : : std::vector<std::string> m_specified_outgoing;
1097 : : std::vector<std::string> m_added_nodes;
1098 : : bool m_i2p_accept_incoming;
1099 : : bool whitelist_forcerelay = DEFAULT_WHITELISTFORCERELAY;
1100 : : bool whitelist_relay = DEFAULT_WHITELISTRELAY;
1101 : : bool m_capture_messages = false;
1102 : : };
1103 : :
1104 : 9639 : void Init(const Options& connOptions) EXCLUSIVE_LOCKS_REQUIRED(!m_added_nodes_mutex, !m_total_bytes_sent_mutex)
1105 : : {
1106 : 9639 : AssertLockNotHeld(m_total_bytes_sent_mutex);
1107 : :
1108 [ - + ]: 9639 : m_local_services = connOptions.m_local_services;
1109 : 9639 : m_max_automatic_connections = connOptions.m_max_automatic_connections;
1110 [ - + ]: 9639 : m_max_outbound_full_relay = std::min(MAX_OUTBOUND_FULL_RELAY_CONNECTIONS, m_max_automatic_connections);
1111 [ - + ]: 9639 : m_max_outbound_block_relay = std::min(MAX_BLOCK_RELAY_ONLY_CONNECTIONS, m_max_automatic_connections - m_max_outbound_full_relay);
1112 : 9639 : m_max_automatic_outbound = m_max_outbound_full_relay + m_max_outbound_block_relay + m_max_feeler;
1113 [ + - ]: 9639 : m_max_inbound = std::max(0, m_max_automatic_connections - m_max_automatic_outbound);
1114 : 9639 : m_use_addrman_outgoing = connOptions.m_use_addrman_outgoing;
1115 : 9639 : m_client_interface = connOptions.uiInterface;
1116 : 9639 : m_banman = connOptions.m_banman;
1117 : 9639 : m_msgproc = connOptions.m_msgproc;
1118 : 9639 : nSendBufferMaxSize = connOptions.nSendBufferMaxSize;
1119 : 9639 : nReceiveFloodSize = connOptions.nReceiveFloodSize;
1120 : 9639 : m_peer_connect_timeout = std::chrono::seconds{connOptions.m_peer_connect_timeout};
1121 : 9639 : {
1122 : 9639 : LOCK(m_total_bytes_sent_mutex);
1123 [ + - ]: 9639 : nMaxOutboundLimit = connOptions.nMaxOutboundLimit;
1124 : 9639 : }
1125 : 9639 : vWhitelistedRangeIncoming = connOptions.vWhitelistedRangeIncoming;
1126 : 9639 : vWhitelistedRangeOutgoing = connOptions.vWhitelistedRangeOutgoing;
1127 : 9639 : {
1128 : 9639 : LOCK(m_added_nodes_mutex);
1129 : : // Attempt v2 connection if we support v2 - we'll reconnect with v1 if our
1130 : : // peer doesn't support it or immediately disconnects us for another reason.
1131 [ + - ]: 9639 : const bool use_v2transport(GetLocalServices() & NODE_P2P_V2);
1132 [ - + ]: 9639 : for (const std::string& added_node : connOptions.m_added_nodes) {
1133 [ # # ]: 0 : m_added_node_params.push_back({added_node, use_v2transport});
1134 : : }
1135 : 9639 : }
1136 : 9639 : m_onion_binds = connOptions.onion_binds;
1137 : 9639 : whitelist_forcerelay = connOptions.whitelist_forcerelay;
1138 : 9639 : whitelist_relay = connOptions.whitelist_relay;
1139 : 9639 : m_capture_messages = connOptions.m_capture_messages;
1140 [ - - ]: 9639 : }
1141 : :
1142 : : // test only
1143 : : void SetCaptureMessages(bool cap) { m_capture_messages = cap; }
1144 : :
1145 : : CConnman(uint64_t seed0,
1146 : : uint64_t seed1,
1147 : : AddrMan& addrman,
1148 : : const NetGroupManager& netgroupman,
1149 : : const CChainParams& params,
1150 : : bool network_active = true,
1151 : : std::shared_ptr<CThreadInterrupt> interrupt_net = std::make_shared<CThreadInterrupt>());
1152 : :
1153 : : ~CConnman();
1154 : :
1155 : : bool Start(CScheduler& scheduler, const Options& options) EXCLUSIVE_LOCKS_REQUIRED(!m_total_bytes_sent_mutex, !m_added_nodes_mutex, !m_addr_fetches_mutex, !mutexMsgProc);
1156 : :
1157 : : void StopThreads();
1158 : : void StopNodes() EXCLUSIVE_LOCKS_REQUIRED(!m_reconnections_mutex);
1159 : 4819 : void Stop() EXCLUSIVE_LOCKS_REQUIRED(!m_reconnections_mutex)
1160 : : {
1161 : 4819 : AssertLockNotHeld(m_reconnections_mutex);
1162 [ # # ]: 4819 : StopThreads();
1163 [ # # ]: 4819 : StopNodes();
1164 : 0 : };
1165 : :
1166 : : void Interrupt() EXCLUSIVE_LOCKS_REQUIRED(!mutexMsgProc);
1167 [ + - ]: 4799 : bool GetNetworkActive() const { return fNetworkActive; };
[ # # # # ]
1168 [ # # ]: 0 : bool GetUseAddrmanOutgoing() const { return m_use_addrman_outgoing; };
1169 : : void SetNetworkActive(bool active);
1170 : :
1171 : : /**
1172 : : * Open a new P2P connection and initialize it with the PeerManager at `m_msgproc`.
1173 : : * @param[in] addrConnect Address to connect to, if `pszDest` is `nullptr`.
1174 : : * @param[in] fCountFailure Increment the number of connection attempts to this address in Addrman.
1175 : : * @param[in] grant_outbound Take ownership of this grant, to be released later when the connection is closed.
1176 : : * @param[in] pszDest Address to resolve and connect to.
1177 : : * @param[in] conn_type Type of the connection to open, must not be `ConnectionType::INBOUND`.
1178 : : * @param[in] use_v2transport Use P2P encryption, (aka V2 transport, BIP324).
1179 : : * @param[in] proxy_override Optional proxy to use and override normal proxy selection.
1180 : : * @retval true The connection was opened successfully.
1181 : : * @retval false The connection attempt failed.
1182 : : */
1183 : : bool OpenNetworkConnection(const CAddress& addrConnect,
1184 : : bool fCountFailure,
1185 : : CountingSemaphoreGrant<>&& grant_outbound,
1186 : : const char* pszDest,
1187 : : ConnectionType conn_type,
1188 : : bool use_v2transport,
1189 [ # # # # : 159350 : const std::optional<Proxy>& proxy_override = std::nullopt)
# # # # #
# # # #
# ][ # # ]
1190 : : EXCLUSIVE_LOCKS_REQUIRED(!m_unused_i2p_sessions_mutex);
1191 : :
1192 : : /// Group of private broadcast related members.
1193 [ + - ]: 4819 : class PrivateBroadcast
1194 : : {
1195 : : public:
1196 : : /**
1197 : : * Remember if we ever established at least one outbound connection to a
1198 : : * Tor peer, including sending and receiving P2P messages. If this is
1199 : : * true then the Tor proxy indeed works and is a proxy to the Tor network,
1200 : : * not a misconfigured ordinary SOCKS5 proxy as -proxy or -onion. If that
1201 : : * is the case, then we assume that connecting to an IPv4 or IPv6 address
1202 : : * via that proxy will be done through the Tor network and a Tor exit node.
1203 : : */
1204 : : std::atomic_bool m_outbound_tor_ok_at_least_once{false};
1205 : :
1206 : : /**
1207 : : * Semaphore used to guard against opening too many connections.
1208 : : * Opening private broadcast connections will be paused if this is equal to 0.
1209 : : */
1210 : : std::counting_semaphore<> m_sem_conn_max{MAX_PRIVATE_BROADCAST_CONNECTIONS};
1211 : :
1212 : : /**
1213 : : * Choose a network to open a connection to.
1214 : : * @param[out] proxy Optional proxy to override the normal proxy selection.
1215 : : * Will be set if !std::nullopt is returned. Could be set to `std::nullopt`
1216 : : * if there is no need to override the proxy that would be used for connecting
1217 : : * to the returned network.
1218 : : * @retval std::nullopt No network could be selected.
1219 : : * @retval !std::nullopt The network was selected and `proxy` is set (maybe to `std::nullopt`).
1220 : : */
1221 : : std::optional<Network> PickNetwork(std::optional<Proxy>& proxy) const;
1222 : :
1223 : : /// Get the pending number of connections to open.
1224 : : size_t NumToOpen() const;
1225 : :
1226 : : /**
1227 : : * Increment the number of new connections of type `ConnectionType::PRIVATE_BROADCAST`
1228 : : * to be opened by `CConnman::ThreadPrivateBroadcast()`.
1229 : : * @param[in] n Increment by this number.
1230 : : */
1231 : : void NumToOpenAdd(size_t n);
1232 : :
1233 : : /**
1234 : : * Decrement the number of new connections of type `ConnectionType::PRIVATE_BROADCAST`
1235 : : * to be opened by `CConnman::ThreadPrivateBroadcast()`.
1236 : : * @param[in] n Decrement by this number.
1237 : : * @return The number of connections that remain to be opened after the operation.
1238 : : */
1239 : : size_t NumToOpenSub(size_t n);
1240 : :
1241 : : /// Wait for the number of needed connections to become greater than 0.
1242 : : void NumToOpenWait() const;
1243 : :
1244 : : private:
1245 : : /**
1246 : : * Check if private broadcast can be done to IPv4 or IPv6 peers and if so via which proxy.
1247 : : * If private broadcast connections should not be opened to IPv4 or IPv6, then this will
1248 : : * return an empty optional.
1249 : : */
1250 : : std::optional<Proxy> ProxyForIPv4or6() const;
1251 : :
1252 : : /// Number of `ConnectionType::PRIVATE_BROADCAST` connections to open.
1253 : : std::atomic_size_t m_num_to_open{0};
1254 : : } m_private_broadcast;
1255 : :
1256 : : bool CheckIncomingNonce(uint64_t nonce);
1257 : : void ASMapHealthCheck();
1258 : :
1259 : : // alias for thread safety annotations only, not defined
1260 : : RecursiveMutex& GetNodesMutex() const LOCK_RETURNED(m_nodes_mutex);
1261 : :
1262 : : bool ForNode(NodeId id, std::function<bool(CNode* pnode)> func);
1263 : :
1264 : : void PushMessage(CNode* pnode, CSerializedNetMsg&& msg) EXCLUSIVE_LOCKS_REQUIRED(!m_total_bytes_sent_mutex);
1265 : :
1266 : : using NodeFn = std::function<void(CNode*)>;
1267 : 30405 : void ForEachNode(const NodeFn& func)
1268 : : {
1269 : 30405 : LOCK(m_nodes_mutex);
1270 [ + + ]: 2946628 : for (auto&& node : m_nodes) {
1271 [ + - - + ]: 2916223 : if (NodeFullyConnected(node))
1272 [ # # ]: 0 : func(node);
1273 : : }
1274 : 30405 : };
1275 : :
1276 : : void ForEachNode(const NodeFn& func) const
1277 : : {
1278 : : LOCK(m_nodes_mutex);
1279 : : for (auto&& node : m_nodes) {
1280 : : if (NodeFullyConnected(node))
1281 : : func(node);
1282 : : }
1283 : : };
1284 : :
1285 : : // Addrman functions
1286 : : /**
1287 : : * Return randomly selected addresses. This function does not use the address response cache and
1288 : : * should only be used in trusted contexts.
1289 : : *
1290 : : * An untrusted caller (e.g. from p2p) should instead use @ref GetAddresses to use the cache.
1291 : : *
1292 : : * @param[in] max_addresses Maximum number of addresses to return (0 = all).
1293 : : * @param[in] max_pct Maximum percentage of addresses to return (0 = all). Value must be from 0 to 100.
1294 : : * @param[in] network Select only addresses of this network (nullopt = all).
1295 : : * @param[in] filtered Select only addresses that are considered high quality (false = all).
1296 : : */
1297 : : std::vector<CAddress> GetAddressesUnsafe(size_t max_addresses, size_t max_pct, std::optional<Network> network, const bool filtered = true) const;
1298 : : /**
1299 : : * Return addresses from the per-requestor cache. If no cache entry exists, it is populated with
1300 : : * randomly selected addresses. This function can be used in untrusted contexts.
1301 : : *
1302 : : * A trusted caller (e.g. from RPC or a peer with addr permission) can use
1303 : : * @ref GetAddressesUnsafe to avoid using the cache.
1304 : : *
1305 : : * @param[in] requestor The requesting peer. Used to key the cache to prevent privacy leaks.
1306 : : * @param[in] max_addresses Maximum number of addresses to return (0 = all). Ignored when cache
1307 : : * already contains an entry for requestor.
1308 : : * @param[in] max_pct Maximum percentage of addresses to return (0 = all). Value must be
1309 : : * from 0 to 100. Ignored when cache already contains an entry for
1310 : : * requestor.
1311 : : */
1312 : : std::vector<CAddress> GetAddresses(CNode& requestor, size_t max_addresses, size_t max_pct);
1313 : :
1314 : : // This allows temporarily exceeding m_max_outbound_full_relay, with the goal of finding
1315 : : // a peer that is better than all our current peers.
1316 : : void SetTryNewOutboundPeer(bool flag);
1317 : : bool GetTryNewOutboundPeer() const;
1318 : :
1319 : : void StartExtraBlockRelayPeers();
1320 : :
1321 : : // Count the number of full-relay peer we have.
1322 : : int GetFullOutboundConnCount() const;
1323 : : // Return the number of outbound peers we have in excess of our target (eg,
1324 : : // if we previously called SetTryNewOutboundPeer(true), and have since set
1325 : : // to false, we may have extra peers that we wish to disconnect). This may
1326 : : // return a value less than (num_outbound_connections - num_outbound_slots)
1327 : : // in cases where some outbound connections are not yet fully connected, or
1328 : : // not yet fully disconnected.
1329 : : int GetExtraFullOutboundCount() const;
1330 : : // Count the number of block-relay-only peers we have over our limit.
1331 : : int GetExtraBlockRelayCount() const;
1332 : :
1333 : : bool AddNode(const AddedNodeParams& add) EXCLUSIVE_LOCKS_REQUIRED(!m_added_nodes_mutex);
1334 : : bool RemoveAddedNode(std::string_view node) EXCLUSIVE_LOCKS_REQUIRED(!m_added_nodes_mutex);
1335 : : bool AddedNodesContain(const CAddress& addr) const EXCLUSIVE_LOCKS_REQUIRED(!m_added_nodes_mutex);
1336 : : std::vector<AddedNodeInfo> GetAddedNodeInfo(bool include_connected) const EXCLUSIVE_LOCKS_REQUIRED(!m_added_nodes_mutex);
1337 : :
1338 : : /**
1339 : : * Attempts to open a connection. Currently only used from tests.
1340 : : *
1341 : : * @param[in] address Address of node to try connecting to
1342 : : * @param[in] conn_type ConnectionType::OUTBOUND, ConnectionType::BLOCK_RELAY,
1343 : : * ConnectionType::ADDR_FETCH or ConnectionType::FEELER
1344 : : * @param[in] use_v2transport Set to true if node attempts to connect using BIP 324 v2 transport protocol.
1345 : : * @return bool Returns false if there are no available
1346 : : * slots for this connection:
1347 : : * - conn_type not a supported ConnectionType
1348 : : * - Max total outbound connection capacity filled
1349 : : * - Max connection capacity for type is filled
1350 : : */
1351 : : bool AddConnection(const std::string& address, ConnectionType conn_type, bool use_v2transport) EXCLUSIVE_LOCKS_REQUIRED(!m_unused_i2p_sessions_mutex);
1352 : :
1353 : : size_t GetNodeCount(ConnectionDirection) const;
1354 : : std::map<CNetAddr, LocalServiceInfo> getNetLocalAddresses() const;
1355 : : uint32_t GetMappedAS(const CNetAddr& addr) const;
1356 : : void GetNodeStats(std::vector<CNodeStats>& vstats) const;
1357 : : bool DisconnectNode(std::string_view node);
1358 : : bool DisconnectNode(const CSubNet& subnet);
1359 : : bool DisconnectNode(const CNetAddr& addr);
1360 : : bool DisconnectNode(NodeId id);
1361 : :
1362 : : //! Used to convey which local services we are offering peers during node
1363 : : //! connection.
1364 : : //!
1365 : : //! The data returned by this is used in CNode construction,
1366 : : //! which is used to advertise which services we are offering
1367 : : //! that peer during `net_processing.cpp:PushNodeVersion()`.
1368 : : ServiceFlags GetLocalServices() const;
1369 : :
1370 : : //! Updates the local services that this node advertises to other peers
1371 : : //! during connection handshake.
1372 : 0 : void AddLocalServices(ServiceFlags services) { m_local_services = ServiceFlags(m_local_services | services); };
1373 : 0 : void RemoveLocalServices(ServiceFlags services) { m_local_services = ServiceFlags(m_local_services & ~services); }
1374 : :
1375 : : uint64_t GetMaxOutboundTarget() const EXCLUSIVE_LOCKS_REQUIRED(!m_total_bytes_sent_mutex);
1376 : : std::chrono::seconds GetMaxOutboundTimeframe() const;
1377 : :
1378 : : //! check if the outbound target is reached
1379 : : //! if param historicalBlockServingLimit is set true, the function will
1380 : : //! response true if the limit for serving historical blocks has been reached
1381 : : bool OutboundTargetReached(bool historicalBlockServingLimit) const EXCLUSIVE_LOCKS_REQUIRED(!m_total_bytes_sent_mutex);
1382 : :
1383 : : //! response the bytes left in the current max outbound cycle
1384 : : //! in case of no limit, it will always response 0
1385 : : uint64_t GetOutboundTargetBytesLeft() const EXCLUSIVE_LOCKS_REQUIRED(!m_total_bytes_sent_mutex);
1386 : :
1387 : : std::chrono::seconds GetMaxOutboundTimeLeftInCycle() const EXCLUSIVE_LOCKS_REQUIRED(!m_total_bytes_sent_mutex);
1388 : :
1389 : : uint64_t GetTotalBytesRecv() const;
1390 : : uint64_t GetTotalBytesSent() const EXCLUSIVE_LOCKS_REQUIRED(!m_total_bytes_sent_mutex);
1391 : :
1392 : : /** Get a unique deterministic randomizer. */
1393 : : CSipHasher GetDeterministicRandomizer(uint64_t id) const;
1394 : :
1395 : : void WakeMessageHandler() EXCLUSIVE_LOCKS_REQUIRED(!mutexMsgProc);
1396 : :
1397 : : /** Return true if we should disconnect the peer for failing an inactivity check. */
1398 : : bool ShouldRunInactivityChecks(const CNode& node, std::chrono::microseconds now) const;
1399 : :
1400 : : bool MultipleManualOrFullOutboundConns(Network net) const EXCLUSIVE_LOCKS_REQUIRED(m_nodes_mutex);
1401 : :
1402 : : private:
1403 [ - + + - ]: 56061 : struct ListenSocket {
1404 : : public:
1405 : : std::shared_ptr<Sock> sock;
1406 [ + - ]: 12791 : inline void AddSocketPermissionFlags(NetPermissionFlags& flags) const { NetPermissions::AddFlag(flags, m_permissions); }
1407 : 16493 : ListenSocket(std::shared_ptr<Sock> sock_, NetPermissionFlags permissions_)
1408 [ + - + - ]: 32986 : : sock{sock_}, m_permissions{permissions_}
1409 : : {
1410 : : }
1411 : :
1412 : : private:
1413 : : NetPermissionFlags m_permissions;
1414 : : };
1415 : :
1416 : : //! returns the time left in the current max outbound cycle
1417 : : //! in case of no limit, it will always return 0
1418 : : std::chrono::seconds GetMaxOutboundTimeLeftInCycle_() const EXCLUSIVE_LOCKS_REQUIRED(m_total_bytes_sent_mutex);
1419 : :
1420 : : bool BindListenPort(const CService& bindAddr, bilingual_str& strError, NetPermissionFlags permissions);
1421 : : bool Bind(const CService& addr, unsigned int flags, NetPermissionFlags permissions);
1422 : : bool InitBinds(const Options& options);
1423 : :
1424 : : void ThreadOpenAddedConnections() EXCLUSIVE_LOCKS_REQUIRED(!m_added_nodes_mutex, !m_unused_i2p_sessions_mutex, !m_reconnections_mutex);
1425 : : void AddAddrFetch(const std::string& strDest) EXCLUSIVE_LOCKS_REQUIRED(!m_addr_fetches_mutex);
1426 : : void ProcessAddrFetch() EXCLUSIVE_LOCKS_REQUIRED(!m_addr_fetches_mutex, !m_unused_i2p_sessions_mutex);
1427 : : void ThreadOpenConnections(std::vector<std::string> connect, std::span<const std::string> seed_nodes) EXCLUSIVE_LOCKS_REQUIRED(!m_addr_fetches_mutex, !m_added_nodes_mutex, !m_nodes_mutex, !m_unused_i2p_sessions_mutex, !m_reconnections_mutex);
1428 : : void ThreadMessageHandler() EXCLUSIVE_LOCKS_REQUIRED(!mutexMsgProc);
1429 : : void ThreadI2PAcceptIncoming();
1430 : : void ThreadPrivateBroadcast() EXCLUSIVE_LOCKS_REQUIRED(!m_unused_i2p_sessions_mutex);
1431 : : void AcceptConnection(const ListenSocket& hListenSocket);
1432 : :
1433 : : /**
1434 : : * Create a `CNode` object from a socket that has just been accepted and add the node to
1435 : : * the `m_nodes` member.
1436 : : * @param[in] sock Connected socket to communicate with the peer.
1437 : : * @param[in] permission_flags The peer's permissions.
1438 : : * @param[in] addr_bind The address and port at our side of the connection.
1439 : : * @param[in] addr The address and port at the peer's side of the connection.
1440 : : */
1441 : : void CreateNodeFromAcceptedSocket(std::unique_ptr<Sock>&& sock,
1442 : : NetPermissionFlags permission_flags,
1443 : : const CService& addr_bind,
1444 : : const CService& addr);
1445 : :
1446 : : void DisconnectNodes() EXCLUSIVE_LOCKS_REQUIRED(!m_reconnections_mutex, !m_nodes_mutex);
1447 : : void NotifyNumConnectionsChanged();
1448 : : /** Return true if the peer is inactive and should be disconnected. */
1449 : : bool InactivityCheck(const CNode& node, std::chrono::microseconds now) const;
1450 : :
1451 : : /**
1452 : : * Generate a collection of sockets to check for IO readiness.
1453 : : * @param[in] nodes Select from these nodes' sockets.
1454 : : * @return sockets to check for readiness
1455 : : */
1456 : : Sock::EventsPerSock GenerateWaitSockets(std::span<CNode* const> nodes);
1457 : :
1458 : : /**
1459 : : * Check connected and listening sockets for IO readiness and process them accordingly.
1460 : : */
1461 : : void SocketHandler() EXCLUSIVE_LOCKS_REQUIRED(!m_total_bytes_sent_mutex, !mutexMsgProc);
1462 : :
1463 : : /**
1464 : : * Do the read/write for connected sockets that are ready for IO.
1465 : : * @param[in] nodes Nodes to process. The socket of each node is checked against `what`.
1466 : : * @param[in] events_per_sock Sockets that are ready for IO.
1467 : : */
1468 : : void SocketHandlerConnected(const std::vector<CNode*>& nodes,
1469 : : const Sock::EventsPerSock& events_per_sock)
1470 : : EXCLUSIVE_LOCKS_REQUIRED(!m_total_bytes_sent_mutex, !mutexMsgProc);
1471 : :
1472 : : /**
1473 : : * Accept incoming connections, one from each read-ready listening socket.
1474 : : * @param[in] events_per_sock Sockets that are ready for IO.
1475 : : */
1476 : : void SocketHandlerListening(const Sock::EventsPerSock& events_per_sock);
1477 : :
1478 : : void ThreadSocketHandler() EXCLUSIVE_LOCKS_REQUIRED(!m_total_bytes_sent_mutex, !mutexMsgProc, !m_nodes_mutex, !m_reconnections_mutex);
1479 : : void ThreadDNSAddressSeed() EXCLUSIVE_LOCKS_REQUIRED(!m_addr_fetches_mutex, !m_nodes_mutex);
1480 : :
1481 : : uint64_t CalculateKeyedNetGroup(const CNetAddr& ad) const;
1482 : :
1483 : : /**
1484 : : * Determine whether we're already connected to a given "host:port".
1485 : : * Note that for inbound connections, the peer is likely using a random outbound
1486 : : * port on their side, so this will likely not match any inbound connections.
1487 : : * @param[in] host String of the form "host[:port]", e.g. "localhost" or "localhost:8333" or "1.2.3.4:8333".
1488 : : * @return true if connected to `host`.
1489 : : */
1490 : : bool AlreadyConnectedToHost(std::string_view host) const;
1491 : :
1492 : : /**
1493 : : * Determine whether we're already connected to a given address:port.
1494 : : * Note that for inbound connections, the peer is likely using a random outbound
1495 : : * port on their side, so this will likely not match any inbound connections.
1496 : : * @param[in] addr_port Address and port to check.
1497 : : * @return true if connected to addr_port.
1498 : : */
1499 : : bool AlreadyConnectedToAddressPort(const CService& addr_port) const;
1500 : :
1501 : : /**
1502 : : * Determine whether we're already connected to a given address.
1503 : : */
1504 : : bool AlreadyConnectedToAddress(const CNetAddr& addr) const;
1505 : :
1506 : : bool AttemptToEvictConnection();
1507 : :
1508 : : /**
1509 : : * Open a new P2P connection.
1510 : : * @param[in] addrConnect Address to connect to, if `pszDest` is `nullptr`.
1511 : : * @param[in] pszDest Address to resolve and connect to.
1512 : : * @param[in] fCountFailure Increment the number of connection attempts to this address in Addrman.
1513 : : * @param[in] conn_type Type of the connection to open, must not be `ConnectionType::INBOUND`.
1514 : : * @param[in] use_v2transport Use P2P encryption, (aka V2 transport, BIP324).
1515 : : * @param[in] proxy_override Optional proxy to use and override normal proxy selection.
1516 : : * @return Newly created CNode object or nullptr if the connection failed.
1517 : : */
1518 : : CNode* ConnectNode(CAddress addrConnect,
1519 : : const char* pszDest,
1520 : : bool fCountFailure,
1521 : : ConnectionType conn_type,
1522 : : bool use_v2transport,
1523 : : const std::optional<Proxy>& proxy_override)
1524 : : EXCLUSIVE_LOCKS_REQUIRED(!m_unused_i2p_sessions_mutex);
1525 : :
1526 : : void AddWhitelistPermissionFlags(NetPermissionFlags& flags, std::optional<CNetAddr> addr, const std::vector<NetWhitelistPermissions>& ranges) const;
1527 : :
1528 : : void DeleteNode(CNode* pnode);
1529 : :
1530 : : NodeId GetNewNodeId();
1531 : :
1532 : : /** (Try to) send data from node's vSendMsg. Returns (bytes_sent, data_left). */
1533 : : std::pair<size_t, bool> SocketSendData(CNode& node) const EXCLUSIVE_LOCKS_REQUIRED(node.cs_vSend);
1534 : :
1535 : : void DumpAddresses();
1536 : :
1537 : : // Network stats
1538 : : void RecordBytesRecv(uint64_t bytes);
1539 : : void RecordBytesSent(uint64_t bytes) EXCLUSIVE_LOCKS_REQUIRED(!m_total_bytes_sent_mutex);
1540 : :
1541 : : /**
1542 : : Return reachable networks for which we have no addresses in addrman and therefore
1543 : : may require loading fixed seeds.
1544 : : */
1545 : : std::unordered_set<Network> GetReachableEmptyNetworks() const;
1546 : :
1547 : : /**
1548 : : * Return vector of current BLOCK_RELAY peers.
1549 : : */
1550 : : std::vector<CAddress> GetCurrentBlockRelayOnlyConns() const;
1551 : :
1552 : : /**
1553 : : * Search for a "preferred" network, a reachable network to which we
1554 : : * currently don't have any OUTBOUND_FULL_RELAY or MANUAL connections.
1555 : : * There needs to be at least one address in AddrMan for a preferred
1556 : : * network to be picked.
1557 : : *
1558 : : * @param[out] network Preferred network, if found.
1559 : : *
1560 : : * @return bool Whether a preferred network was found.
1561 : : */
1562 : : bool MaybePickPreferredNetwork(std::optional<Network>& network);
1563 : :
1564 : : // Whether the node should be passed out in ForEach* callbacks
1565 : : static bool NodeFullyConnected(const CNode* pnode);
1566 : :
1567 : : uint16_t GetDefaultPort(Network net) const;
1568 : : uint16_t GetDefaultPort(const std::string& addr) const;
1569 : :
1570 : : // Network usage totals
1571 : : mutable Mutex m_total_bytes_sent_mutex;
1572 : : std::atomic<uint64_t> nTotalBytesRecv{0};
1573 : : uint64_t nTotalBytesSent GUARDED_BY(m_total_bytes_sent_mutex) {0};
1574 : :
1575 : : // outbound limit & stats
1576 : : uint64_t nMaxOutboundTotalBytesSentInCycle GUARDED_BY(m_total_bytes_sent_mutex) {0};
1577 : : std::chrono::seconds nMaxOutboundCycleStartTime GUARDED_BY(m_total_bytes_sent_mutex) {0};
1578 : : uint64_t nMaxOutboundLimit GUARDED_BY(m_total_bytes_sent_mutex);
1579 : :
1580 : : // P2P timeout in seconds
1581 : : std::chrono::seconds m_peer_connect_timeout;
1582 : :
1583 : : // Whitelisted ranges. Any node connecting from these is automatically
1584 : : // whitelisted (as well as those connecting to whitelisted binds).
1585 : : std::vector<NetWhitelistPermissions> vWhitelistedRangeIncoming;
1586 : : // Whitelisted ranges for outgoing connections.
1587 : : std::vector<NetWhitelistPermissions> vWhitelistedRangeOutgoing;
1588 : :
1589 : : unsigned int nSendBufferMaxSize{0};
1590 : : unsigned int nReceiveFloodSize{0};
1591 : :
1592 : : std::vector<ListenSocket> vhListenSocket;
1593 : : std::atomic<bool> fNetworkActive{true};
1594 : : bool fAddressesInitialized{false};
1595 : : AddrMan& addrman;
1596 : : const NetGroupManager& m_netgroupman;
1597 : : std::deque<std::string> m_addr_fetches GUARDED_BY(m_addr_fetches_mutex);
1598 : : Mutex m_addr_fetches_mutex;
1599 : :
1600 : : // connection string and whether to use v2 p2p
1601 : : std::vector<AddedNodeParams> m_added_node_params GUARDED_BY(m_added_nodes_mutex);
1602 : :
1603 : : mutable Mutex m_added_nodes_mutex;
1604 : : std::vector<CNode*> m_nodes GUARDED_BY(m_nodes_mutex);
1605 : : std::list<CNode*> m_nodes_disconnected;
1606 : : mutable RecursiveMutex m_nodes_mutex;
1607 : : std::atomic<NodeId> nLastNodeId{0};
1608 : : unsigned int nPrevNodeCount{0};
1609 : :
1610 : : // Stores number of full-tx connections (outbound and manual) per network
1611 : : std::array<unsigned int, Network::NET_MAX> m_network_conn_counts GUARDED_BY(m_nodes_mutex) = {};
1612 : :
1613 : : /**
1614 : : * Cache responses to addr requests to minimize privacy leak.
1615 : : * Attack example: scraping addrs in real-time may allow an attacker
1616 : : * to infer new connections of the victim by detecting new records
1617 : : * with fresh timestamps (per self-announcement).
1618 : : */
1619 [ + + ]: 6625 : struct CachedAddrResponse {
1620 : : std::vector<CAddress> m_addrs_response_cache;
1621 : : std::chrono::microseconds m_cache_entry_expiration{0};
1622 : : };
1623 : :
1624 : : /**
1625 : : * Addr responses stored in different caches
1626 : : * per (network, local socket) prevent cross-network node identification.
1627 : : * If a node for example is multi-homed under Tor and IPv6,
1628 : : * a single cache (or no cache at all) would let an attacker
1629 : : * to easily detect that it is the same node by comparing responses.
1630 : : * Indexing by local socket prevents leakage when a node has multiple
1631 : : * listening addresses on the same network.
1632 : : *
1633 : : * The used memory equals to 1000 CAddress records (or around 40 bytes) per
1634 : : * distinct Network (up to 5) we have/had an inbound peer from,
1635 : : * resulting in at most ~196 KB. Every separate local socket may
1636 : : * add up to ~196 KB extra.
1637 : : */
1638 : : std::map<uint64_t, CachedAddrResponse> m_addr_response_caches;
1639 : :
1640 : : /**
1641 : : * Services this node offers.
1642 : : *
1643 : : * This data is replicated in each Peer instance we create.
1644 : : *
1645 : : * This data is not marked const, but after being set it should not
1646 : : * change. Unless AssumeUTXO is started, in which case, the peer
1647 : : * will be limited until the background chain sync finishes.
1648 : : *
1649 : : * \sa Peer::our_services
1650 : : */
1651 : : std::atomic<ServiceFlags> m_local_services;
1652 : :
1653 : : std::unique_ptr<std::counting_semaphore<>> semOutbound;
1654 : : std::unique_ptr<std::counting_semaphore<>> semAddnode;
1655 : :
1656 : : /**
1657 : : * Maximum number of automatic connections permitted, excluding manual
1658 : : * connections but including inbounds. May be changed by the user and is
1659 : : * potentially limited by the operating system (number of file descriptors).
1660 : : */
1661 : : int m_max_automatic_connections;
1662 : :
1663 : : /*
1664 : : * Maximum number of peers by connection type. Might vary from defaults
1665 : : * based on -maxconnections init value.
1666 : : */
1667 : :
1668 : : // How many full-relay (tx, block, addr) outbound peers we want
1669 : : int m_max_outbound_full_relay;
1670 : :
1671 : : // How many block-relay only outbound peers we want
1672 : : // We do not relay tx or addr messages with these peers
1673 : : int m_max_outbound_block_relay;
1674 : :
1675 : : int m_max_addnode{MAX_ADDNODE_CONNECTIONS};
1676 : : int m_max_feeler{MAX_FEELER_CONNECTIONS};
1677 : : int m_max_automatic_outbound;
1678 : : int m_max_inbound;
1679 : :
1680 : : bool m_use_addrman_outgoing;
1681 : : CClientUIInterface* m_client_interface;
1682 : : NetEventsInterface* m_msgproc;
1683 : : /** Pointer to this node's banman. May be nullptr - check existence before dereferencing. */
1684 : : BanMan* m_banman;
1685 : :
1686 : : /**
1687 : : * Addresses that were saved during the previous clean shutdown. We'll
1688 : : * attempt to make block-relay-only connections to them.
1689 : : */
1690 : : std::vector<CAddress> m_anchors;
1691 : :
1692 : : /** SipHasher seeds for deterministic randomness */
1693 : : const uint64_t nSeed0, nSeed1;
1694 : :
1695 : : /** flag for waking the message processor. */
1696 : : bool fMsgProcWake GUARDED_BY(mutexMsgProc);
1697 : :
1698 : : std::condition_variable condMsgProc;
1699 : : Mutex mutexMsgProc;
1700 : : std::atomic<bool> flagInterruptMsgProc{false};
1701 : :
1702 : : /**
1703 : : * This is signaled when network activity should cease.
1704 : : * A copy of this is saved in `m_i2p_sam_session`.
1705 : : */
1706 : : const std::shared_ptr<CThreadInterrupt> m_interrupt_net;
1707 : :
1708 : : /**
1709 : : * I2P SAM session.
1710 : : * Used to accept incoming and make outgoing I2P connections from a persistent
1711 : : * address.
1712 : : */
1713 : : std::unique_ptr<i2p::sam::Session> m_i2p_sam_session;
1714 : :
1715 : : std::thread threadDNSAddressSeed;
1716 : : std::thread threadSocketHandler;
1717 : : std::thread threadOpenAddedConnections;
1718 : : std::thread threadOpenConnections;
1719 : : std::thread threadMessageHandler;
1720 : : std::thread threadI2PAcceptIncoming;
1721 : : std::thread threadPrivateBroadcast;
1722 : :
1723 : : /** flag for deciding to connect to an extra outbound peer,
1724 : : * in excess of m_max_outbound_full_relay
1725 : : * This takes the place of a feeler connection */
1726 : : std::atomic_bool m_try_another_outbound_peer;
1727 : :
1728 : : /** flag for initiating extra block-relay-only peer connections.
1729 : : * this should only be enabled after initial chain sync has occurred,
1730 : : * as these connections are intended to be short-lived and low-bandwidth.
1731 : : */
1732 : : std::atomic_bool m_start_extra_block_relay_peers{false};
1733 : :
1734 : : /**
1735 : : * A vector of -bind=<address>:<port>=onion arguments each of which is
1736 : : * an address and port that are designated for incoming Tor connections.
1737 : : */
1738 : : std::vector<CService> m_onion_binds;
1739 : :
1740 : : /**
1741 : : * flag for adding 'forcerelay' permission to whitelisted inbound
1742 : : * and manual peers with default permissions.
1743 : : */
1744 : : bool whitelist_forcerelay;
1745 : :
1746 : : /**
1747 : : * flag for adding 'relay' permission to whitelisted inbound
1748 : : * and manual peers with default permissions.
1749 : : */
1750 : : bool whitelist_relay;
1751 : :
1752 : : /**
1753 : : * flag for whether messages are captured
1754 : : */
1755 : : bool m_capture_messages{false};
1756 : :
1757 : : /**
1758 : : * Mutex protecting m_i2p_sam_sessions.
1759 : : */
1760 : : Mutex m_unused_i2p_sessions_mutex;
1761 : :
1762 : : /**
1763 : : * A pool of created I2P SAM transient sessions that should be used instead
1764 : : * of creating new ones in order to reduce the load on the I2P network.
1765 : : * Creating a session in I2P is not cheap, thus if this is not empty, then
1766 : : * pick an entry from it instead of creating a new session. If connecting to
1767 : : * a host fails, then the created session is put to this pool for reuse.
1768 : : */
1769 : : std::queue<std::unique_ptr<i2p::sam::Session>> m_unused_i2p_sessions GUARDED_BY(m_unused_i2p_sessions_mutex);
1770 : :
1771 : : /**
1772 : : * Mutex protecting m_reconnections.
1773 : : */
1774 : : Mutex m_reconnections_mutex;
1775 : :
1776 : : /** Struct for entries in m_reconnections. */
1777 : : struct ReconnectionInfo
1778 : : {
1779 : : CAddress addr_connect;
1780 : : CountingSemaphoreGrant<> grant;
1781 : : std::string destination;
1782 : : ConnectionType conn_type;
1783 : : bool use_v2transport;
1784 : : };
1785 : :
1786 : : /**
1787 : : * List of reconnections we have to make.
1788 : : */
1789 : : std::list<ReconnectionInfo> m_reconnections GUARDED_BY(m_reconnections_mutex);
1790 : :
1791 : : /** Attempt reconnections, if m_reconnections non-empty. */
1792 : : void PerformReconnections() EXCLUSIVE_LOCKS_REQUIRED(!m_reconnections_mutex, !m_unused_i2p_sessions_mutex);
1793 : :
1794 : : /**
1795 : : * Cap on the size of `m_unused_i2p_sessions`, to ensure it does not
1796 : : * unexpectedly use too much memory.
1797 : : */
1798 : : static constexpr size_t MAX_UNUSED_I2P_SESSIONS_SIZE{10};
1799 : :
1800 : : /**
1801 : : * RAII helper to atomically create a copy of `m_nodes` and add a reference
1802 : : * to each of the nodes. The nodes are released when this object is destroyed.
1803 : : */
1804 : : class NodesSnapshot
1805 : : {
1806 : : public:
1807 : 10648 : explicit NodesSnapshot(const CConnman& connman, bool shuffle)
1808 [ + - ]: 10648 : {
1809 : 10648 : {
1810 [ + - ]: 10648 : LOCK(connman.m_nodes_mutex);
1811 [ + - ]: 10648 : m_nodes_copy = connman.m_nodes;
1812 [ + + ]: 955747 : for (auto& node : m_nodes_copy) {
1813 : 945099 : node->AddRef();
1814 : : }
1815 : 0 : }
1816 [ - + ]: 10648 : if (shuffle) {
1817 : 0 : std::shuffle(m_nodes_copy.begin(), m_nodes_copy.end(), FastRandomContext{});
1818 : : }
1819 : 10648 : }
1820 : :
1821 : 10648 : ~NodesSnapshot()
1822 : : {
1823 [ + + ]: 955747 : for (auto& node : m_nodes_copy) {
1824 : 945099 : node->Release();
1825 : : }
1826 : 10648 : }
1827 : :
1828 : 10648 : const std::vector<CNode*>& Nodes() const
1829 : : {
1830 [ + - ]: 10648 : return m_nodes_copy;
1831 : : }
1832 : :
1833 : : private:
1834 : : std::vector<CNode*> m_nodes_copy;
1835 : : };
1836 : :
1837 : : const CChainParams& m_params;
1838 : :
1839 : : friend struct ConnmanTestMsg;
1840 : : };
1841 : :
1842 : : /** Defaults to `CaptureMessageToFile()`, but can be overridden by unit tests. */
1843 : : extern std::function<void(const CAddress& addr,
1844 : : const std::string& msg_type,
1845 : : std::span<const unsigned char> data,
1846 : : bool is_incoming)>
1847 : : CaptureMessage;
1848 : :
1849 : : #endif // BITCOIN_NET_H
|
