req-resp: Fix panic on connection closed for substream open failure by lexnv · Pull Request #291 · paritytech/litep2p

lexnv · 2024-11-26T12:23:14Z

When a new connection is reported to the request-response protocol, the protocol tracks the state of the connection if and only if it could open a substream with the remote peer.

We do not track the state of the connection in cases where the substream cannot be opened because the connection is closed.

A further ConnectionClosed event triggered a debug_assert assumption for this case. The assumption is wrong since opening substreams can fail which informs us that the connection is closed.

Connection details not tracked:

litep2p/src/protocol/request_response/mod.rs

Lines 267 to 284 in eed0f75

    
           Err(error) => { 
        
               tracing::warn!( 
        
                   target: LOG_TARGET, 
        
                   ?peer, 
        
                   protocol = %self.protocol, 
        
                   request_id = ?context.request_id, 
        
                   ?error, 
        
                   "failed to open substream", 
        
               ); 
        
               return self 
        
                   .report_request_failure( 
        
                       peer, 
        
                       context.request_id, 
        
                       RequestResponseError::Rejected(error.into()), 
        
                   ) 
        
                   .await; 
        
           }

Which later leads to panics:

litep2p/src/protocol/request_response/mod.rs

Lines 295 to 301 in d6fae55

    
           let Some(context) = self.peers.remove(&peer) else { 
        
               tracing::error!( 
        
                   target: LOG_TARGET, 
        
                   ?peer, 
        
                   "state mismatch: peer doesn't exist", 
        
               ); 
        
               debug_assert!(false);

Related to: #290

Signed-off-by: Alexandru Vasile <alexandru.vasile@parity.io>

## [0.8.2] - 2024-11-27 This release ensures that the provided peer identity is verified at the crypto/noise protocol level, enhancing security and preventing potential misuses. The release also includes a fix that caused `TransportService` component to panic on debug builds. ### Fixed - req-resp: Fix panic on connection closed for substream open failure ([#291](#291)) - crypto/noise: Verify crypto/noise signature payload ([#278](#278)) ### Changed - transport_service/logs: Provide less details for trace logs ([#292](#292)) cc @paritytech/networking --------- Signed-off-by: Alexandru Vasile <alexandru.vasile@parity.io>

This includes a critical fix for debug release versions of litep2p (which are running in Kusama as validators). While at it, have stopped the oncall pain of alerts around `incoming_connections_total`. We can rethink the metric expose of litep2p in Q1. ## [0.8.2] - 2024-11-27 This release ensures that the provided peer identity is verified at the crypto/noise protocol level, enhancing security and preventing potential misuses. The release also includes a fix that caused `TransportService` component to panic on debug builds. ### Fixed - req-resp: Fix panic on connection closed for substream open failure ([#291](paritytech/litep2p#291)) - crypto/noise: Verify crypto/noise signature payload ([#278](paritytech/litep2p#278)) ### Changed - transport_service/logs: Provide less details for trace logs ([#292](paritytech/litep2p#292)) ## Testing Done This has been extensively tested in Kusama on all validators, that are now running litep2p. Deployed PR: #6638 ### Litep2p Dashboards ![Screenshot 2024-11-26 at 19 19 41](https://github.com/user-attachments/assets/e00b2b2b-7e64-4d96-ab26-165e2b8d0dc9) ### Libp2p vs Litep2p CPU usage After deploying litep2p we have reduced CPU usage from around 300-400% to 200%, this is a significant boost in performance, freeing resources for other subcomponents to function more optimally. ![image(1)](https://github.com/user-attachments/assets/fa793df5-4d58-4601-963d-246e56dd2a26) cc @paritytech/sdk-node --------- Signed-off-by: Alexandru Vasile <alexandru.vasile@parity.io> Co-authored-by: GitHub Action <action@github.com>

This includes a critical fix for debug release versions of litep2p (which are running in Kusama as validators). While at it, have stopped the oncall pain of alerts around `incoming_connections_total`. We can rethink the metric expose of litep2p in Q1. ## [0.8.2] - 2024-11-27 This release ensures that the provided peer identity is verified at the crypto/noise protocol level, enhancing security and preventing potential misuses. The release also includes a fix that caused `TransportService` component to panic on debug builds. ### Fixed - req-resp: Fix panic on connection closed for substream open failure ([#291](paritytech/litep2p#291)) - crypto/noise: Verify crypto/noise signature payload ([#278](paritytech/litep2p#278)) ### Changed - transport_service/logs: Provide less details for trace logs ([#292](paritytech/litep2p#292)) ## Testing Done This has been extensively tested in Kusama on all validators, that are now running litep2p. Deployed PR: #6638 ### Litep2p Dashboards ![Screenshot 2024-11-26 at 19 19 41](https://github.com/user-attachments/assets/e00b2b2b-7e64-4d96-ab26-165e2b8d0dc9) ### Libp2p vs Litep2p CPU usage After deploying litep2p we have reduced CPU usage from around 300-400% to 200%, this is a significant boost in performance, freeing resources for other subcomponents to function more optimally. ![image(1)](https://github.com/user-attachments/assets/fa793df5-4d58-4601-963d-246e56dd2a26) cc @paritytech/sdk-node --------- Signed-off-by: Alexandru Vasile <alexandru.vasile@parity.io> Co-authored-by: GitHub Action <action@github.com> (cherry picked from commit 51c3e95)

This includes a critical fix for debug release versions of litep2p (which are running in Kusama as validators). While at it, have stopped the oncall pain of alerts around `incoming_connections_total`. We can rethink the metric expose of litep2p in Q1. ## [0.8.2] - 2024-11-27 This release ensures that the provided peer identity is verified at the crypto/noise protocol level, enhancing security and preventing potential misuses. The release also includes a fix that caused `TransportService` component to panic on debug builds. ### Fixed - req-resp: Fix panic on connection closed for substream open failure ([paritytech#291](paritytech/litep2p#291)) - crypto/noise: Verify crypto/noise signature payload ([paritytech#278](paritytech/litep2p#278)) ### Changed - transport_service/logs: Provide less details for trace logs ([paritytech#292](paritytech/litep2p#292)) ## Testing Done This has been extensively tested in Kusama on all validators, that are now running litep2p. Deployed PR: paritytech#6638 ### Litep2p Dashboards ![Screenshot 2024-11-26 at 19 19 41](https://github.com/user-attachments/assets/e00b2b2b-7e64-4d96-ab26-165e2b8d0dc9) ### Libp2p vs Litep2p CPU usage After deploying litep2p we have reduced CPU usage from around 300-400% to 200%, this is a significant boost in performance, freeing resources for other subcomponents to function more optimally. ![image(1)](https://github.com/user-attachments/assets/fa793df5-4d58-4601-963d-246e56dd2a26) cc @paritytech/sdk-node --------- Signed-off-by: Alexandru Vasile <alexandru.vasile@parity.io> Co-authored-by: GitHub Action <action@github.com>

req-resp: Remove debug assert for now

eed0f75

Signed-off-by: Alexandru Vasile <alexandru.vasile@parity.io>

dmitry-markin approved these changes Nov 26, 2024

View reviewed changes

lexnv added 2 commits November 27, 2024 14:58

req-resp: Update error message

6342ec4

Signed-off-by: Alexandru Vasile <alexandru.vasile@parity.io>

req-resp/tests: Adjust testing

dce1b6b

Signed-off-by: Alexandru Vasile <alexandru.vasile@parity.io>

lexnv changed the title ~~req-resp: Investigate state mismatch~~ req-resp: Fix panic on substream open failure Nov 27, 2024

lexnv changed the title ~~req-resp: Fix panic on substream open failure~~ req-resp: Fix panic on connection closed for substream open failure Nov 27, 2024

lexnv self-assigned this Nov 27, 2024

lexnv merged commit eb0d6f2 into master Nov 27, 2024

lexnv deleted the lexnv/investigate-mismatch branch November 27, 2024 13:11

This was referenced Nov 27, 2024

req-resp: Connection closed with peer that does not exist #290

Closed

chore: Release version 0.8.2 #293

Merged

lexnv mentioned this pull request Nov 27, 2024

chore: Update litep2p to v0.8.2 paritytech/polkadot-sdk#6677

Merged

lexnv mentioned this pull request Dec 11, 2024

[litep2p-milestone]: Improve litep2p robustness #140

Closed

68 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

req-resp: Fix panic on connection closed for substream open failure#291

req-resp: Fix panic on connection closed for substream open failure#291
lexnv merged 3 commits intomasterfrom
lexnv/investigate-mismatch

lexnv commented Nov 26, 2024 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

	Err(error) => {
	tracing::warn!(
	target: LOG_TARGET,
	?peer,
	protocol = %self.protocol,
	request_id = ?context.request_id,
	?error,
	"failed to open substream",
	);

	return self
	.report_request_failure(
	peer,
	context.request_id,
	RequestResponseError::Rejected(error.into()),
	)
	.await;
	}

	let Some(context) = self.peers.remove(&peer) else {
	tracing::error!(
	target: LOG_TARGET,
	?peer,
	"state mismatch: peer doesn't exist",
	);
	debug_assert!(false);

Conversation

lexnv commented Nov 26, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

lexnv commented Nov 26, 2024 •

edited

Loading