ban IP addresses if too many banned peers for this IP address (#1543)

## Issue Addressed #1283 ## Proposed Changes All peers with the same IP will be considered banned as long as there are more than 5 (constant) peers with this IP that have a score below the ban threshold. As soon as some of those 5 peers get unbanned (through decay) and if there are then less than 5 peers with a score below the threshold the IP will be considered not banned anymore.
2026-03-11 18:04:18 +00:00 · 2020-08-21 01:41:12 +00:00
parent ebb25b5569
commit 3f0a113c7f
2 changed files with 341 additions and 43 deletions
--- a/beacon_node/eth2_libp2p/src/peer_manager/peer_info.rs
+++ b/beacon_node/eth2_libp2p/src/peer_manager/peer_info.rs
@@ -7,6 +7,7 @@ use serde::{
    ser::{SerializeStructVariant, Serializer},
    Serialize,
 };
+use std::net::IpAddr;
 use std::time::Instant;
 use types::{EthSpec, SubnetId};
 use PeerConnectionStatus::*;
@@ -104,6 +105,8 @@ pub enum PeerConnectionStatus {
    Banned {
        /// moment when the peer was banned.
        since: Instant,
+        /// ip addresses this peer had a the moment of the ban
+        ip_addresses: Vec<IpAddr>,
    },
    /// We are currently dialing this peer.
    Dialing {
@@ -129,7 +132,7 @@ impl Serialize for PeerConnectionStatus {
                s.serialize_field("since", &since.elapsed().as_secs())?;
                s.end()
            }
-            Banned { since } => {
+            Banned { since, .. } => {
                let mut s = serializer.serialize_struct_variant("", 2, "Banned", 1)?;
                s.serialize_field("since", &since.elapsed().as_secs())?;
                s.end()
@@ -218,15 +221,16 @@ impl PeerConnectionStatus {
    }

    /// Modifies the status to Banned
-    pub fn ban(&mut self) {
+    pub fn ban(&mut self, ip_addresses: Vec<IpAddr>) {
        *self = Banned {
            since: Instant::now(),
+            ip_addresses,
        };
    }

    /// The score system has unbanned the peer. Update the connection status
    pub fn unban(&mut self) {
-        if let PeerConnectionStatus::Banned { since } = self {
+        if let PeerConnectionStatus::Banned { since, .. } = self {
            *self = PeerConnectionStatus::Disconnected { since: *since }
        }
    }