Make Gossip DNS reject gossip messages if clockskew > tombstoneTimeout / 2 #1176

tomwilkie · 2015-07-17T10:48:51Z

5mins max clock skew seems too small to me; I suggest we make it bigger (and therefore make the DNS tombstone timeout larger).

nameserver/nameserver.go

 		return nil, nil, err
 	}

-	if err := entries.check(); err != nil {
+	if gossip.Timestamp < now()-int64(gossipWindow/time.Second) {
+		return nil, nil, fmt.Errorf("Refusing old gossip message: %d", gossip.Timestamp)


nameserver/nameserver.go

 		return nil, nil, err
 	}

-	if err := entries.check(); err != nil {
+	if delta := gossip.Timestamp - now(); delta > gossipWindow || delta < -gossipWindow {
+		return nil, nil, fmt.Errorf("Refusing old gossip message (delta %d): %d", delta, gossip.Timestamp)


bboreham · 2015-07-17T16:27:55Z

Apart from one nit this LOKTM

tomwilkie · 2015-07-20T09:53:38Z

@bboreham I've addressed your comment and after discussion with @rade increase the tombstone timeout on DNS to 30mins (allow a max clockskew of 15mins)

tomwilkie · 2015-07-20T11:24:51Z

Test failure is flakey TestNameservers so can safely be ignored. I'm looking into it.

…t / 2

LGTM

tomwilkie self-assigned this Jul 17, 2015

bboreham reviewed Jul 17, 2015
View reviewed changes

nameserver/nameserver.go

return nil, nil, err

}

if err := entries.check(); err != nil {

if gossip.Timestamp < now()-int64(gossipWindow/time.Second) {

return nil, nil, fmt.Errorf("Refusing old gossip message: %d", gossip.Timestamp)

This comment was marked as abuse.

Sign in to view

tomwilkie force-pushed the 1156-gossip-timestamp branch from 9980ab7 to 5398fb0 Compare July 17, 2015 12:45

tomwilkie mentioned this pull request Jul 17, 2015

Correctly stop the test gossip router to prevent complaints of data races in subsequent tests. #1183

Merged

rade assigned bboreham and unassigned tomwilkie Jul 17, 2015

bboreham reviewed Jul 17, 2015
View reviewed changes

bboreham assigned tomwilkie and unassigned bboreham Jul 17, 2015

tomwilkie force-pushed the 1156-gossip-timestamp branch from 5398fb0 to 9e0702d Compare July 20, 2015 09:51

tomwilkie assigned bboreham and unassigned tomwilkie Jul 20, 2015

Make Gossip DNS reject gossip messages if clockskew > tombstoneTimeou…

4e29dba

…t / 2

tomwilkie force-pushed the 1156-gossip-timestamp branch from 9e0702d to 4e29dba Compare July 20, 2015 13:12

bboreham added a commit that referenced this pull request Jul 20, 2015

Merge pull request #1176 from weaveworks/1156-gossip-timestamp

90b7c36

LGTM

bboreham merged commit 90b7c36 into master Jul 20, 2015

tomwilkie deleted the 1156-gossip-timestamp branch July 20, 2015 13:28

rade added this to the 1.1.0 milestone Jul 21, 2015

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Make Gossip DNS reject gossip messages if clockskew > tombstoneTimeout / 2 #1176

Make Gossip DNS reject gossip messages if clockskew > tombstoneTimeout / 2 #1176

tomwilkie commented Jul 17, 2015

This comment was marked as abuse.

This comment was marked as abuse.

bboreham commented Jul 17, 2015

tomwilkie commented Jul 20, 2015

tomwilkie commented Jul 20, 2015

Make Gossip DNS reject gossip messages if clockskew > tombstoneTimeout / 2 #1176

Make Gossip DNS reject gossip messages if clockskew > tombstoneTimeout / 2 #1176

Conversation

tomwilkie commented Jul 17, 2015

This comment was marked as abuse.

This comment was marked as abuse.

bboreham commented Jul 17, 2015

tomwilkie commented Jul 20, 2015

tomwilkie commented Jul 20, 2015