Merge pull request #988 from karalabe/fix-downloader-vulnerabilities

Fix downloader vulnerabilities

Merge pull request #988 from karalabe/fix-downloader-vulnerabilities
Fix downloader vulnerabilities
7d71a75d · Jeffrey Wilcke · c1f0d40e · 5c1a7b96 · 7d71a75d · 7d71a75d
Commit 7d71a75d authored May 15, 2015 by Jeffrey Wilcke
Showing with 336 additions and 122 deletions

downloader.go eth/downloader/downloader.go +109 -60

downloader_test.go eth/downloader/downloader_test.go +205 -45

queue.go eth/downloader/queue.go +18 -15

sync.go eth/sync.go +4 -2

No files found.
--- a/eth/downloader/downloader.go
+++ b/eth/downloader/downloader.go
--- a/eth/downloader/downloader_test.go
+++ b/eth/downloader/downloader_test.go
--- a/eth/downloader/queue.go
+++ b/eth/downloader/queue.go
@@ -122,24 +122,28 @@ func (q *queue) Has(hash common.Hash) bool {
 	return false
 }
-// Insert adds a set of hashes for the download queue for scheduling.
+// Insert adds a set of hashes for the download queue for scheduling, returning
-func (q *queue) Insert(hashes []common.Hash) {
+// the new hashes encountered.
+func (q *queue) Insert(hashes []common.Hash) []common.Hash {
 	q.lock.Lock()
 	defer q.lock.Unlock()
 	// Insert all the hashes prioritized in the arrival order
-	for i, hash := range hashes {
+	inserts := make([]common.Hash, 0, len(hashes))
-		index := q.hashCounter + i
+	for _, hash := range hashes {
+		// Skip anything we already have
 		if old, ok := q.hashPool[hash]; ok {
 			glog.V(logger.Warn).Infof("Hash %x already scheduled at index %v", hash, old)
 			continue
 		}
-		q.hashPool[hash] = index
+		// Update the counters and insert the hash
-		q.hashQueue.Push(hash, float32(index)) // Highest gets schedules first
+		q.hashCounter = q.hashCounter + 1
+		inserts = append(inserts, hash)
+		q.hashPool[hash] = q.hashCounter
+		q.hashQueue.Push(hash, float32(q.hashCounter)) // Highest gets schedules first
 	}
-	// Update the hash counter for the next batch of inserts
+	return inserts
-	q.hashCounter += len(hashes)
 }
 // GetHeadBlock retrieves the first block from the cache, or nil if it hasn't
@@ -296,18 +300,17 @@ func (q *queue) Deliver(id string, blocks []*types.Block) (err error) {
 	// Iterate over the downloaded blocks and add each of them
 	errs := make([]error, 0)
 	for _, block := range blocks {
-		// Skip any blocks that fall outside the cache range
-		index := int(block.NumberU64()) - q.blockOffset
-		if index >= len(q.blockCache) || index < 0 {
-			//fmt.Printf("block cache overflown (N=%v O=%v, C=%v)", block.Number(), q.blockOffset, len(q.blockCache))
-			continue
-		}
 		// Skip any blocks that were not requested
 		hash := block.Hash()
 		if _, ok := request.Hashes[hash]; !ok {
 			errs = append(errs, fmt.Errorf("non-requested block %v", hash))
 			continue
 		}
+		// If a requested block falls out of the range, the hash chain is invalid
+		index := int(block.NumberU64()) - q.blockOffset
+		if index >= len(q.blockCache) || index < 0 {
+			return ErrInvalidChain
+		}
 		// Otherwise merge the block and mark the hash block
 		q.blockCache[index] = block

--- a/eth/sync.go
+++ b/eth/sync.go
@@ -101,11 +101,13 @@ func (pm *ProtocolManager) synchronise(peer *peer) {
 	case downloader.ErrBusy:
 		glog.V(logger.Debug).Infof("Synchronisation already in progress")
-	case downloader.ErrTimeout:
+	case downloader.ErrTimeout, downloader.ErrBadPeer, downloader.ErrInvalidChain, downloader.ErrCrossCheckFailed:
-		glog.V(logger.Debug).Infof("Removing peer %v due to sync timeout", peer.id)
+		glog.V(logger.Debug).Infof("Removing peer %v: %v", peer.id, err)
 		pm.removePeer(peer)
 	case downloader.ErrPendingQueue:
 		glog.V(logger.Debug).Infoln("Synchronisation aborted:", err)
 	default:
 		glog.V(logger.Warn).Infof("Synchronisation failed: %v", err)
 	}