Add initial Eclipse attack simulation module with metrics collection #950
Conversation
|
@Fatumayattani : Thank you for opening the PR on eclipse attack simulation. Great effort indeed. CCing @acul71, @yashksaini-coder, @bomanaps for their thoughts and feedback. This PR will indeed impact the py-libp2p library. There is one CI/CD issue too, which is not related to your pull request. I investigated it and documented it at #949 . @yashksaini-coder , @sumanjeet0012 and @acul71 are fixing it. We will soon have all the CI/CD tests passing. @Fatumayattani : Will re-run CI/CD pipeline once the issue is fixed today or tomorrow. In the meantime, assigning you more projects and issues on py-libp2p. |
|
@Fatumayattani can I get the access for this ? |
|
Thank you @seetadev for the review and for coordinating on the CI/CD issue. I’ll re-run the checks once that’s resolved. @yashksaini-coder I’ve added you as a collaborator so you now have access to the feature/attack-simulation branch. Please let me know if you face any issues or need anything else to get started. Really appreciate everyone’s feedback and support in pushing this forward. |
|
@Fatumayattani @seetadev Hi, I've reviewed the PR, and executed the checks and all tests on my end. Everything is good, all test cases passed ✔️ and some new changes to fix the linting and minor errors. I will work on this for adding more attack simulation and review |
|
@Fatumayattani , @yashksaini-coder : Wonderful, great to hear. Appreciate your efforts. We will review this PR in detail. Re-ran the CI/CD pipeline. Since, it is an important module addition, wish to have feedback first from @acul71 , @lla-dane and @sumanjeet0012 . We will discuss with @pacrob and have his review after discussing in tomorrow's maintainer's call. |
There was a problem hiding this comment.
PR #950 Review: Eclipse Attack Simulation Module
Summary
This PR introduces a Network Attack Simulation module for py-libp2p with a well-designed dual-layer architecture for Eclipse attack testing.
Recommendation: ✅ APPROVE with mods
Implementation Analysis
✅ What's Working Well:
- Dual-layer architecture - Simulation + Real integration
- Real integration tests - 3/3 tests pass with actual libp2p hosts
- Comprehensive framework - Well-structured attack simulation foundation
- Test coverage - 9/9 tests pass (6 simulation + 3 real integration)
✅ Architecture Design:
- Simulation Layer: Fast framework validation with placeholder metrics (by design)
- Real Integration Layer: Comprehensive attack simulation with actual libp2p components
Current Assessment
- Test Coverage: 100% (9/9 tests pass)
- Code Quality: Excellent structure with real integration
- Documentation: Comprehensive README with clear usage examples
- Performance: Fast simulation (0.40s) + Real integration (2.06s)
- Functionality: ✅ COMPLETE - Both layers working as designed
Final Recommendation
✅ APPROVE but answer questions
and also wait is there a newsfragment?
(venv) luca@r17:~/PNL_Launchpad_Curriculum/Libp2p/py-libp2p$ l newsfragments/57
ls: cannot access 'newsfragments/57': No such file or directory
| 1. [Metrics and Analysis](#metrics-and-analysis) | ||
| 1. [Roadmap](#roadmap) | ||
| 1. [Eclipse Attack Flow](#eclipse-attack-flow) | ||
| 1. [Contributing](#contributing) |
There was a problem hiding this comment.
Why are all this 1s here not 1,2,3,....
There was a problem hiding this comment.
Just noticed the auto-tab completion
| "honest_nodes": 10, | ||
| "malicious_nodes": 3, | ||
| "attack_intensity": 0.5, | ||
| } |
There was a problem hiding this comment.
Did you try with different settings? are them handled ?
There was a problem hiding this comment.
Some logs with different settings?
You may want to open a discussion page, and only put a link here, to not over bloat the PR
There was a problem hiding this comment.
I will try with different settings and have the screenshot of the results in the Discussion page for this.
…lation' into feature/attack-simulation
for improved clarity and maintainability
…store result as json
|
Thanks everyone for the feedback and contributions. I’ve added the missing newsfragment. Kudos to @yashksaini-coder for running additional tests, and Discussion #960 contains the comprehensive Eclipse attack simulation results. Special thanks to @acul71 for the detailed review and @seetadev for coordinating the CI/CD workflow. Really appreciate everyone’s collaboration and support on this. |
| @@ -0,0 +1,171 @@ | |||
| class AttackMetrics: | |||
There was a problem hiding this comment.
This class is duplicated in utils/attack_metrics.py.
There was a problem hiding this comment.
Thanks @pacrob , I’ve removed the duplicate and now import AttackMetrics from utils/attack_metrics.py.
| std_dev = variance**0.5 | ||
| consistency_ratio = std_dev / mean_score if mean_score > 0 else 0 | ||
|
|
||
| print(".2f") |
There was a problem hiding this comment.
Removed the unnecessary print line to keep the tests clean.
| async def _connect_nodes(self, hosts: list[IHost]): | ||
| """Connect hosts in a simple topology""" | ||
| # Connect each host to the next one in a ring topology | ||
| for i in range(len(hosts)): | ||
| # Each node connects to 2 neighbors | ||
| for j in range(i + 1, min(i + 3, len(hosts))): | ||
| try: | ||
| peer_info = PeerInfo(hosts[j].get_id(), hosts[j].get_addrs()) | ||
| await hosts[i].connect(peer_info) | ||
| await trio.sleep(0.1) # Allow connection to establish | ||
| except Exception as e: | ||
| print(f"Connection failed between {i} and {j}: {e}") |
There was a problem hiding this comment.
This function doesn't appear to be used anywhere.
There was a problem hiding this comment.
Appreciate the note 🙏 we’re keeping this function for Phase 2 as it’ll be used in the topology and interop tests.
|
In general, I'm concerned about the huge amount of emojis and print statements in the new tests. In the current state, these just clutter up CI/logs. Consider converting them to logging statements. |
|
let me work on it, @pacrob |
|
@yashksaini-coder and @Fatumayattani : Thank you Yash for the initiative. Very important set of feedback points shared by @pacrob. CCing @acul71 to keep him in the loop of this PR. @pacrob : Thank you for sharing pointers and feedback. Completely agree with the improvements shared on the test suite front. Appreciate your support. Me and @acul71 will get this resolved soon. |
|
Thank you @pacrob 🙏 for the clear and helpful feedback. |
Appreciate it, once I get this fix up. I will ping you also we need to have a discussion post for this. |
…d clean up whitespace
| pytest tests/security/attack_simulation/test_eclipse_attack.py -v | ||
| pytest tests/security/attack_simulation/test_sybil_attack.py -v | ||
| pytest tests/security/attack_simulation/test_flooding_attack.py -v | ||
| pytest tests/security/attack_simulation/test_connection_exhaustion.py -v | ||
| pytest tests/security/attack_simulation/test_protocol_attack.py -v | ||
| pytest tests/security/attack_simulation/test_attack_analysis.py -v |
There was a problem hiding this comment.
Please review these and other files referenced in this README - many of them don't exist.
There was a problem hiding this comment.
I have removed as this was a previous stage change, no longer adding this.
|
@seetadev Requesting a CI/CD run all test cases and review have been addressed. Update the docs and refactoring done. |
|
@yashksaini-coder : Thank you so much to you and @Fatumayattani for your efforts. Appreciate it. It took me sometime to reach this PR as there were close to 12+ PRs in the review queue. Did re-run the CI/CD pipeline and all the test cases are passing. This PR is looking good. Doing a thorough review today. Also, asking @acul71 to do a peer review on this PR and share feedback points and improvements. We will discuss this with @pacrob tomorrow before doing a final review + merge, once all the improvements are addressed. |
|
Thank you @seetadev 🙏 |
|
Hi everyone 👋 Added two new attack simulation scenarios: Replay Attack and Routing Poisoning Attack. They’re organized under tests/security/attack_simulation/ to keep everything consistent with the existing structure. Also included a short screencast showing the tests running successfully. replay.mp4Appreciate any feedback or suggestions from the team. |
|
@Fatumayattani , @yashksaini-coder : Appreciate the efforts. Re-ran the CI/CD pipeline. Wish to share that we received some nice pointers from friends at FIL-oz and Polkadot: please visit #929 (comment) |
…trics - Introduced new attack types: Bootnode Poisoning, Long-Range Fork Replay, Invalid Block Propagation, and Finality Stall. - Updated README to reflect new features and configurations. - Added comprehensive mitigation strategies documentation. - Enhanced attack metrics to include new metrics for the extended threat model. - Improved configuration options for new attack types in `attack_configs.py`. - Refactored existing code for better readability and maintainability.
5 participants
What was wrong?
This PR implements the initial setup for the Network Attack Simulation module in py-libp2p, as discussed in [[Discussion #929]] and tracked under Issue #57. The primary focus is on Eclipse attack simulation, building the test network, simulating malicious peers, and establishing the framework for network attack testing.
How was it fixed?
Added
tests/security/attack_simulation/submodule containing:Eclipse attack:
malicious_peer.py– Simulates malicious peer behaviornetwork_builder.py– Builds test networks with honest and malicious nodesmetrics_collector.py– Collects attack metrics during simulationattack_scenarios.py– Defines different Eclipse attack scenariostest_eclipse_simulation.py– Test suite validating network setup and malicious behaviorUtilities:
attack_metrics.py)network_monitor.py)peer_behavior_simulator.py)Configuration:
attack_configs.py– Attack configuration optionsnetwork_topologies.py– Predefined network topologiesAdded README.md documenting module overview, structure, setup, usage, testing, metrics, roadmap, and Eclipse attack flow (Mermaid diagram)
All tests pass locally (6/6) confirming:
To-Do
Cute Animal Picture