@ntallar As you can see in the code, there is blacklisting disabled when receiving headers response. I think I would:

• create a JIRA ticket to revise whole response validation story and its relation to blacklisting
• make blacklisting tests ignored and marked with that ticket
• remove blacklisting line

WDYT?

@ntallar As you can see in the code, there is blacklisting disabled when receiving headers response. I think I would:

I agree with that plan! Maybe something like #771 but for the headers

It seems that current state of this branch introduces yet another reason for forks - a scenario where:

• fetcher receives a branch
• some of these blocks get rejected by rest of the network
• fetcher gets stuck because it's unable to fetch a branch which follows chain in queue

I see 2 solutions to that problem, the question is which seems to be better:

• just make sure that the chain is contiguous in terms of block numbers - ledger will import whatever possible and then force to fetcher to clear state up in case of no longer continued branch (at cost of blacklisting honest peer)
• count number of rejected responses and if it passes some threshold - reset fetcher state (or even restart the actor) so that invalid state is being invalidated and the accepted fork should be automatically picked

I'm leaning to the latter as it possibly could be used also in other scenarios where fetcher gets stuck for some reason

Wouldn't that scenario evolve into:

1. BlockImporter imports the blocks from fetcher so he removes it from there
2. Fetcher would then be able to fetch the blocks from the fork (though they would be unconcatenable)
3. When the blocks fail to be imported the InvalidateBlocksFrom message would kick in and result in the fetcher going back... eventually being able to solve the fork

The only problem I see is that blocks being mined in the middle are quite disruptive, as they invalidate the invalidation of the InvalidateBlocksFrom message. Maybe the fetcher should keep both

• a last block: with the last block number imported
• a block number to fetch

wdyt?

I wouldn't go for your alternatives, this code is already too complicated to add more workarounds, they seem too hacky imho:

1. I'm not sure which of the components from the ledger rely on the blocks passed being a branch, something could break in the middle if you break that assumption.
2. This is the safest of the two, though it only hides the problem as we are only restarting periodically

@ntallar Not really. In my case fetcher got stuck because of having a header from non-existing fork and being unable to make any progress.

As for approach #2 (cleaning up state/restarting) - indeed it doesn't solve the problem, but we still should be able to monitor such cases (log level error + monitoring) without leading to forking nodes. Please note that such approach to handling irrecoverable errors is at core of actors (which we use here) as well as is quite effective at keeping system operational.

Please note that such approach to handling irrecoverable errors is at core of actors (which we use here) as well as is quite effective at keeping system operational.

I'm sorry but I'm still not convinced. It's definitely a good last resource in case we don't manage to fix an issue, but this hasn't yet become a blocker

@ntallar Not really. In my case fetcher got stuck because of having a header from non-existing fork and being unable to make any progress.

I see now the issue you mentioned! Shouldn't we do a better handling of our BlockBodies response to address it? A simple alternative is dropping headers from the waitingHeaders when a body of a header is requested but not received. Maybe it can be a next step to #771