varun-r-mallya/py-libp2p
1
0
Fork 0
mirror of https://github.com/varun-r-mallya/py-libp2p.git synced 2026-02-12 16:10:57 +00:00
Code Issues Packages Projects Releases Wiki Activity

reject dht-msgs upon receiving invalid records

Browse Source
This commit is contained in:
lla-dane
2025-08-15 16:11:27 +05:30
parent efc899e872
commit 57d1c9d807
5 changed files with 89 additions and 24 deletions
Download Patch File Download Diff File Expand all files Collapse all files

45
libp2p/kad_dht/kad_dht.py
View File

@ -280,7 +280,12 @@ class KadDHT(Service):
logger.debug(f"Found {len(closest_peers)} peers close to target")
# Consume the source signed_peer_record if sent
success = maybe_consume_signed_record(message, self.host)
if not maybe_consume_signed_record(message, self.host):
logger.error(
"Received an invalid-signed-record, dropping the stream"
)
await stream.close()
return
# Build response message with protobuf
response = Message()
@ -336,7 +341,12 @@ class KadDHT(Service):
logger.debug(f"Received ADD_PROVIDER for key {key.hex()}")
# Consume the source signed-peer-record if sent
success = maybe_consume_signed_record(message, self.host)
if not maybe_consume_signed_record(message, self.host):
logger.error(
"Received an invalid-signed-record, dropping the stream"
)
await stream.close()
return
# Extract provider information
for provider_proto in message.providerPeers:
@ -366,9 +376,13 @@ class KadDHT(Service):
)
# Process the signed-records of provider if sent
success = maybe_consume_signed_record(
provider_proto, self.host
)
if not maybe_consume_signed_record(message, self.host):
logger.error(
"Received an invalid-signed-record,"
"dropping the stream"
)
await stream.close()
return
except Exception as e:
logger.warning(f"Failed to process provider info: {e}")
@ -393,7 +407,12 @@ class KadDHT(Service):
logger.debug(f"Received GET_PROVIDERS request for key {key.hex()}")
# Consume the source signed_peer_record if sent
success = maybe_consume_signed_record(message, self.host)
if not maybe_consume_signed_record(message, self.host):
logger.error(
"Received an invalid-signed-record, dropping the stream"
)
await stream.close()
return
# Find providers for the key
providers = self.provider_store.get_providers(key)
@ -482,7 +501,12 @@ class KadDHT(Service):
logger.debug(f"Received GET_VALUE request for key {key.hex()}")
# Consume the sender_signed_peer_record
success = maybe_consume_signed_record(message, self.host)
if not maybe_consume_signed_record(message, self.host):
logger.error(
"Received an invalid-signed-record, dropping the stream"
)
await stream.close()
return
value = self.value_store.get(key)
if value:
@ -571,7 +595,12 @@ class KadDHT(Service):
success = False
# Consume the source signed_peer_record if sent
success = maybe_consume_signed_record(message, self.host)
if not maybe_consume_signed_record(message, self.host):
logger.error(
"Received an invalid-signed-record, dropping the stream"
)
await stream.close()
return
try:
if not (key and value):