zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3046 Commits
183 Branches
291 MiB
Tree: 6e823c6e87
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '6e823c6e87'
${ noResults }
tendermint/p2p/docs/pex.md

94 lines
3.9 KiB
Raw Normal View History

more p2p docs
7 years ago
 
  1. # Peer Strategy and Exchange

  2. 

  3. Here we outline the design of the AddressBook
  4. and how it used by the Peer Exchange Reactor (PEX) to ensure we are connected
  5. to good peers and to gossip peers to others.
  6. 

  7. ## Peer Types

  8. 

  9. Certain peers are special in that they are specified by the user as `persistent`,
  10. which means we auto-redial them if the connection fails.
  11. Some such peers can additional be marked as `private`, which means
  12. we will not gossip them to others.
  13. 

  14. All others peers are tracked using an address book.
  15. 

  16. ## Discovery

  17. 

  18. Peer discovery begins with a list of seeds.
  19. When we have no peers, or have been unable to find enough peers from existing ones,
  20. we dial a randomly selected seed to get a list of peers to dial.
  21. 

  22. So long as we have less than `MaxPeers`, we periodically request additional peers
  23. from each of our own. If sufficient time goes by and we still can't find enough peers,
  24. we try the seeds again.
  25. 

  26. ## Address Book

  27. 

  28. Peers are tracked via their ID (their PubKey.Address()).
  29. For each ID, the address book keeps the most recent IP:PORT.
  30. Peers are added to the address book from the PEX when they first connect to us or
  31. when we hear about them from other peers.
  32. 

  33. The address book is arranged in sets of buckets, and distinguishes between
  34. vetted and unvetted peers. It keeps different sets of buckets for vetted and
  35. unvetted peers. Buckets provide randomization over peer selection.
  36. 

  37. A vetted peer can only be in one bucket. An unvetted peer can be in multiple buckets.
  38. 

  39. ## Vetting

  40. 

  41. When a peer is first added, it is unvetted.
  42. Marking a peer as vetted is outside the scope of the `p2p` package.
  43. For Tendermint, a Peer becomes vetted once it has contributed sufficiently
  44. at the consensus layer; ie. once it has sent us valid and not-yet-known
  45. votes and/or block parts for `NumBlocksForVetted` blocks.
  46. Other users of the p2p package can determine their own conditions for when a peer is marked vetted.
  47. 

  48. If a peer becomes vetted but there are already too many vetted peers,
  49. a randomly selected one of the vetted peers becomes unvetted.
  50. 

  51. If a peer becomes unvetted (either a new peer, or one that was previously vetted),
  52. a randomly selected one of the unvetted peers is removed from the address book.
  53. 

  54. More fine-grained tracking of peer behaviour can be done using
  55. a Trust Metric, but it's best to start with something simple.
  56. 

  57. ## Select Peers to Dial

  58. 

  59. When we need more peers, we pick them randomly from the addrbook with some
  60. configurable bias for unvetted peers. The bias should be lower when we have fewer peers,
  61. and can increase as we obtain more, ensuring that our first peers are more trustworthy,
  62. but always giving us the chance to discover new good peers.
  63. 

  64. ## Select Peers to Exchange

  65. 

  66. When we’re asked for peers, we select them as follows:
  67. - select at most `maxGetSelection` peers
  68. - try to select at least `minGetSelection` peers - if we have less than that, select them all.
  69. - select a random, unbiased `getSelectionPercent` of the peers
  70. 

  71. Send the selected peers. Note we select peers for sending without bias for vetted/unvetted.
  72. 

  73. ## Preventing Spam

  74. 

  75. There are various cases where we decide a peer has misbehaved and we disconnect from them.
  76. When this happens, the peer is removed from the address book and black listed for
  77. some amount of time. We call this "Disconnect and Mark".
  78. Note that the bad behaviour may be detected outside the PEX reactor itseld
  79. (for instance, in the mconnection, or another reactor), but it must be communicated to the PEX reactor
  80. so it can remove and mark the peer.
  81. 

  82. In the PEX, if a peer sends us unsolicited lists of peers,
  83. or if the peer sends too many requests for more peers in a given amount of time,
  84. we Disconnect and Mark.
  85. 

  86. ## Trust Metric

  87. 

  88. The quality of peers can be tracked in more fine-grained detail using a
  89. Proportional-Integral-Derrivative (PID) controller that incorporates
  90. current, past, and rate-of-change data to inform peer quality.
  91. 

  92. While a PID trust metric has been implemented, it remains for future work
  93. to use it in the PEX.
  94.