From e608cea2a5621547a6b1eb427835f80f6f536111 Mon Sep 17 00:00:00 2001 From: moneromooo-monero Date: Fri, 4 Dec 2020 13:59:51 +0000 Subject: [PATCH] p2p: drop peers that spam peer lists There's always some people who just want to abuse things --- src/cryptonote_config.h | 1 + src/p2p/net_node.inl | 5 +++++ 2 files changed, 6 insertions(+) diff --git a/src/cryptonote_config.h b/src/cryptonote_config.h index c7b736bec..1ba0f1ae1 100644 --- a/src/cryptonote_config.h +++ b/src/cryptonote_config.h @@ -136,6 +136,7 @@ #define P2P_DEFAULT_HANDSHAKE_INTERVAL 60 //secondes #define P2P_DEFAULT_PACKET_MAX_SIZE 50000000 //50000000 bytes maximum packet size #define P2P_DEFAULT_PEERS_IN_HANDSHAKE 250 +#define P2P_MAX_PEERS_IN_HANDSHAKE 250 #define P2P_DEFAULT_CONNECTION_TIMEOUT 5000 //5 seconds #define P2P_DEFAULT_SOCKS_CONNECT_TIMEOUT 45 // seconds #define P2P_DEFAULT_PING_CONNECTION_TIMEOUT 2000 //2 seconds diff --git a/src/p2p/net_node.inl b/src/p2p/net_node.inl index 609acb155..07fc64952 100644 --- a/src/p2p/net_node.inl +++ b/src/p2p/net_node.inl @@ -2028,6 +2028,11 @@ namespace nodetool template bool node_server::handle_remote_peerlist(const std::vector& peerlist, const epee::net_utils::connection_context_base& context) { + if (peerlist.size() > P2P_MAX_PEERS_IN_HANDSHAKE) + { + MWARNING(context << "peer sent " << peerlist.size() << " peers, considered spamming"); + return false; + } std::vector peerlist_ = peerlist; if(!sanitize_peerlist(peerlist_)) return false;