CalvinBackup/Shadowbroker
1
0
Fork 0
mirror of https://github.com/BigBodyCobain/Shadowbroker.git synced 2026-05-28 10:01:31 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
20807a2d628384f6e5b8145adbe6c71b532d7d2e
Shadowbroker/backend/tests/mesh
T
History
BigBodyCobain 31ebcb5cd9 Infonet sync: honor HTTP 429 Retry-After + exponential backoff 
Fixes the retry-storm that's been keeping the local node 429'd out of
the seed peer (the diagnosis we ran earlier in the session). Pre-fix:

  1. Sync hits the seed peer, gets HTTP 429 (Too Many Requests)
  2. _peer_sync_response stringifies the status into a ValueError
  3. _sync_from_peer catches it, error becomes the str() of the exc
  4. _run_public_sync_cycle calls finish_sync(error=..., failure_backoff_s=60)
  5. next_sync_due_at = now + 60s
  6. After 60s, sync runs again, hits same upstream that hasn't reset
     its rate-limit bucket, 429 again. Loop indefinitely.

Net effect: a node that hit one transient 429 would hammer the seed
every 60s forever, keeping the bucket full and never recovering. We
saw this in the live status dump: consecutive_failures=49,
last_sync_ok_at=0, retry storm sustained over the entire uptime.

What changed
------------
services/mesh/mesh_infonet_sync_support.py

  * New typed exception PeerSyncRateLimited carries the parsed
    Retry-After value out of the HTTP layer instead of stringifying
    everything into a generic ValueError.

  * New parse_retry_after_header() handles both RFC 7231 §7.1.3
    forms (delay-seconds and HTTP-date). Clamped at 1 hour so a
    hostile peer can't silence us for days.

  * New _failure_backoff_seconds() helper computes the next delay
    as max(exponential, retry_after_s). Schedule with default
    base=60s, cap=1800s:

      failure 1 -> 60s     (preserves pre-fix for transient blips)
      failure 2 -> 120s
      failure 3 -> 240s
      failure 4 -> 480s
      failure 5 -> 960s
      failure 6+ -> 1800s  (capped at 30 min)

    cap_s=0 explicitly disables exponential entirely — operators
    who want pure-Retry-After behavior have that option.

  * finish_sync now accepts retry_after_s and failure_backoff_cap_s
    kwargs. Backward-compatible: existing callers that don't pass
    retry_after_s get the same first-failure delay as before (the
    base value), only repeat failures grow.

main.py

  * _peer_sync_response detects 429 specifically, parses the
    Retry-After header, raises PeerSyncRateLimited(retry_after_s=N).
    Includes the response body prefix in the message so the
    operator's last_error finally shows something useful.

  * _sync_from_peer extended to return (ok, error, forked,
    retry_after_s) — the 4th tuple element is non-zero only when
    the upstream sent a parseable Retry-After. Existing call shape
    preserved: the lone caller in _run_public_sync_cycle was
    updated in the same commit.

  * _run_public_sync_cycle forwards retry_after_s into finish_sync.

Tests
-----
backend/tests/mesh/test_infonet_sync_429_backoff.py — 17 new tests:

  TestParseRetryAfter (7):
    - integer seconds form
    - HTTP-date form (computed as seconds-from-now)
    - HTTP-date in the past returns 0
    - empty / whitespace returns 0
    - malformed returns 0
    - clamps to 1 hour (hostile-peer cap)
    - negative returns 0

  TestFailureBackoffSeconds (5):
    - exponential growth schedule pins each level
    - retry_after wins when larger than exponential
    - exponential wins when larger than retry_after
    - cap_s=0 disables exponential entirely
    - zero inputs return zero

  TestFinishSyncBackoff (5):
    - first failure uses base unchanged (pre-fix back-compat)
    - consecutive_failures actually grow the delay
    - retry_after honored at low failure count
    - success resets consecutive_failures
    - last_error carries the HTTP status / Retry-After detail

All 24 existing sync-support / status-gate tests still pass. Other
failures in tests/mesh/ are pre-existing on origin/main and unrelated
to this change (verified by running the same tests against the
user's main worktree without these edits).

What the operator sees after this lands + a docker rebuild
----------------------------------------------------------
With the live 429 storm we diagnosed:

  Pre-fix: consecutive_failures keeps climbing 1/min forever,
           last_error empty or generic
  Post-fix: consecutive_failures grows, next_sync_due_at backs off
           exponentially (max 30 min), last_error explicitly carries
           "HTTP 429 from <peer> (retry_after=Ns): <body>" so the
           operator can see what's actually wrong. Once the upstream
           bucket drains and a sync succeeds, consecutive_failures
           resets to 0 and the schedule returns to the normal 300s
           interval.
2026-05-22 22:55:05 -06:00
..
fixtures
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
__init__.py
v0.9.6: InfoNet hashchain, Wormhole gate encryption, mesh reputation, 16 community contributors
2026-03-26 05:58:04 -06:00
REVIEW_SURFACE_CLOSEOUT.md
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
review_surface_contracts.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
run_private_adversarial_regression.ps1
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
run_review_surface_regression.ps1
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_5d_replay_persistence.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_adversarial_regression_harness.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_alias_history_bounds.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_compatibility_containment.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_dm_alias_grace_acceptance.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_dm_alias_rotation_binding.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_dm_alias_rotation_reason_guard.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_dm_ciphertext_padding.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_dm_mls_durable_state.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_dm_mls_restored_session_failclose.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_dm_poll_batch_limit.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_dm_selftest.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_dm_strong_path_tier.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_fault_injection.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_gate_envelope_authenticity.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_gate_legacy_migration.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_gate_mls_durable_state.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_gate_rns_envelope_distribution.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_gate_secret_rotation_guard.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_gate_segmented_storage.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_gate_session_stream.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_gate_signature_compat_and_router_policy.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_gate_state_resync.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_gate_write_cutover.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_infonet_sync_429_backoff.py
Infonet sync: honor HTTP 429 Retry-After + exponential backoff
2026-05-22 22:55:05 -06:00
test_ledger_policy_split.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_local_custody.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_lookup_handle_rotation.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_anonymous_mode.py
Harden infonet control surfaces
2026-05-18 11:22:38 -06:00
test_mesh_bootstrap_manifest.py
v0.9.6: InfoNet hashchain, Wormhole gate encryption, mesh reputation, 16 community contributors
2026-03-26 05:58:04 -06:00
test_mesh_canonical.py
v0.9.6: InfoNet hashchain, Wormhole gate encryption, mesh reputation, 16 community contributors
2026-03-26 05:58:04 -06:00
test_mesh_crypto.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_dm_consent_privacy.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_dm_mls.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_dm_request_sender_blinding_route.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_dm_request_sender_blinding.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_dm_security.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_dm_witness_fix.py
v0.9.6: InfoNet hashchain, Wormhole gate encryption, mesh reputation, 16 community contributors
2026-03-26 05:58:04 -06:00
test_mesh_endpoint_integrity.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_env_security_audit.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_gate_catalog.py
v0.9.6: InfoNet hashchain, Wormhole gate encryption, mesh reputation, 16 community contributors
2026-03-26 05:58:04 -06:00
test_mesh_gate_confidentiality.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_gate_mls.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_gate_secret_containment.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_hashchain_sequence.py
v0.9.6: InfoNet hashchain, Wormhole gate encryption, mesh reputation, 16 community contributors
2026-03-26 05:58:04 -06:00
test_mesh_ibf.py
v0.9.6: InfoNet hashchain, Wormhole gate encryption, mesh reputation, 16 community contributors
2026-03-26 05:58:04 -06:00
test_mesh_infonet_ingest.py
Harden infonet control surfaces
2026-05-18 11:22:38 -06:00
test_mesh_infonet_sync_support.py
Harden Infonet DM address flow and seed sync
2026-05-12 21:23:38 -06:00
test_mesh_invariants.py
v0.9.6: InfoNet hashchain, Wormhole gate encryption, mesh reputation, 16 community contributors
2026-03-26 05:58:04 -06:00
test_mesh_locator.py
v0.9.6: InfoNet hashchain, Wormhole gate encryption, mesh reputation, 16 community contributors
2026-03-26 05:58:04 -06:00
test_mesh_merkle.py
v0.9.6: InfoNet hashchain, Wormhole gate encryption, mesh reputation, 16 community contributors
2026-03-26 05:58:04 -06:00
test_mesh_node_bootstrap_runtime.py
Harden v0.9.75 wormhole node sync and telemetry panels
2026-05-06 14:04:16 -06:00
test_mesh_peer_store.py
Harden Infonet DM address flow and seed sync
2026-05-12 21:23:38 -06:00
test_mesh_privacy_hardening.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_protocol_hygiene.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_public_meshtastic_boundary.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_relay_policy.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_reputation_link.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_rns_concurrency.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_rns_private_dm.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_secure_storage.py
v0.9.6: InfoNet hashchain, Wormhole gate encryption, mesh reputation, 16 community contributors
2026-03-26 05:58:04 -06:00
test_mesh_sensitive_no_store.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_wormhole_endpoint_boundary.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_wormhole_hardening.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_wormhole_persona.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_wormhole_root_manifest.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_mesh_wormhole_root_transparency.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_meshtastic_mqtt_settings.py
Release v0.9.75 runtime and onboarding update
2026-05-06 01:15:54 -06:00
test_meshtastic_topics.py
Release v0.9.79 runtime and messaging update
2026-05-12 11:49:46 -06:00
test_mls_vectors.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_node_settings.py
Release v0.9.75 runtime and onboarding update
2026-05-06 01:15:54 -06:00
test_nonce_capacity_isolation.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_phase0_audit_diagnostics.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_phase2_dm_alias_keys.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_phase3_metadata_hardening.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_phase3_solo_gate_mode.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_phase3_tofu_hardening.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_phase3_tor_proof_hardening.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_phase4_replay_domains.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_phase5_release_profiles.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_phase6_protocol_context.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_phase7_gate_epoch_rotation.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_prekey_lookup_correlation.py
Harden infonet control surfaces
2026-05-18 11:22:38 -06:00
test_privacy_claims.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_privacy_core_attestation.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_privacy_core_cross_node.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_privacy_core_export_audit.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_privacy_core_ffi_invariants.py
v0.9.6: InfoNet hashchain, Wormhole gate encryption, mesh reputation, 16 community contributors
2026-03-26 05:58:04 -06:00
test_privacy_core_startup_policy.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_privacy_prewarm.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_private_adversarial_regression.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_private_dispatcher_reason_guard.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_private_dispatcher.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_private_metadata_exposure.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_private_release_outbox.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_private_transport_manager.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_runtime_smoke_lane.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s7a_dm_middleware_tier.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s7b_dm_sessionless_alias_recovery.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s8a_rns_cover_traffic.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s8b_auth_policy_table.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s9b_gate_store_hydration.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s10b_cover_dm_shape.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s11b_dm_trust_state.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s11b_router_trust_surface.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s12a_root_distribution_http.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s12b_transport_truth.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s13b_gate_identity_surface.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s13c_gate_envelope_policy.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s13d_legacy_envelope_fallback.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s14a_sas_repin_guard.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s14b_public_sync_gate_filter.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s15b_cover_ct_alignment.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s16a_dm_count_coarsening.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s16c_truth_and_reply_to_integrity.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_s16d_dm_invite_bootstrap.py
Harden infonet control surfaces
2026-05-18 11:22:38 -06:00
test_s16e_dm_contact_upsert_authority.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_secure_storage_passphrase.py
Fix Docker Infonet and Wormhole startup
2026-05-02 21:53:35 -06:00
test_secure_storage_rotation.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_signed_event_integrity_guard.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_signed_event_revocation_ttl.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_signed_write_decorator.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_signed_write_transport_matrix.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_sprint0_diagnostics.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_wormhole_envelope_binding.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00
test_wormhole_supervisor_hardening.py
release: prepare v0.9.7
2026-05-01 22:56:50 -06:00