#i2p-dev (irc2p) [real time] | 2.12.0-14 | https://i2p.github.io/i2p.i2p/i2pupdate.zip | #translators for Weblate translation help

#i2p-dev

Online: 65

@eyedeekay

&zzz

+FreefallHeavens

+R4SAS

+RN

+RN_

+cims

+eche|off

+fa

+nilbog

+orignal

+postman

+psychopuck

+qend-irc2p

+rednode

+snex

Arch

Dann

Holmes

Irc2PGuest2724

Irc2PGuest28384

Irc2PGuest37550

Irc2PGuest56147

Irc2PGuest74608

Irc2PGuest89138

Onn4l7h

Onn4|7h

Over1

Sisyphus

Sleepy

T3s|4

T3s|4_

Xen_

Zapek

aargh4

acetone_

ahiru

anontor

calamares

david

dr4wd3_

duanin2

eche|on

ice_juice

justaper1

leopold

makoto

mareki2p

maylay

n2_

not_bob_afk

pinotto

poriori

profetikla

rapidash

rotten_egg

sahil

test3847473

uop23ip

user1

vivid_reader56

w8rabbit

wodencafe2

x74a6

zelgomer

fa zzz: Reading zzz.i2p/topics/3761 . My routers regularly automatically opt-in as FF. I can say my FF bandwidth usage is largely underused. At an average 2.7% of allocated bandwith limit.

zzz fa, please disable floodfill and report back in 3 days. Do not restart.

fa zzz: Done, ff disabled. What info should I gather now to compare with within 3 days?

zzz bandwidth

fa Done, I have the bandwidth usage graph for 3 days in svg.

fa 3 days is the ideal number in this case. The router has been on for roughly that amount of time. I will report back in 3d

zzz super

eyedeekay Been thinking about it. July 20 is probably the last chance I'll get before August travel, making it one of the only good options, any further than that and the next chance would be August 17 which would be almost 18 weeks

eyedeekay I think we can do July 20 though

zzz ok eyedeekay would a week earlier give us more room in case of issues?

eyedeekay the 20th ends up giving 13 days before I start flying, I think that's enough

zzz ok, please run it by i2pd and let us know

eyedeekay OK

zzz eyedeekay, see GH issue #150 asking for 2.12.0 release binaries on GH. Is that an official release product/location or not? seems hit or miss whether you do it?

eyedeekay Supposed to be automated, I've got CI stuff to do today so I'll make it part of that list

zzz ok thx

zzz more miscellany: did you get an answer from altonen about a public router?

eyedeekay No not yet but I bet if I ping him today and ask again I will

eyedeekay Mine will be on `23.128.248.109` by EOD

zzz will need router hash to find it

zzz also if both of you would publish a b32 for some eepsite (either on the public router or elsewhere) we can look for streaming/i2ptunnel issues too

eyedeekay Ack I'll make that part of the setup

zzz great. any predictions if we'll find any problems? ))

eyedeekay I expect that there will be opportunities for improvement discovered yeah, I don't think there's going to be any segfaults or remotely-triggerable crashes but I doubt we accounted for every possible malformed or malicious input

eyedeekay I've got a lot of "I think it's good" and "flexible but not tested under realistic conditions" type stuff around peer management

zzz I don't have any tools like that to send bad data or do 'remote fuzzing'

zzz that's much better developed and done locally

zzz I can force connect and i2pd can also

zzz i2pd's explict peer thing kinda turns into a tunnel build firehose, not sure if that's the intent or a side effect

eyedeekay All I've got like that is a "Bootstrap from RI" function to force joining through a specific RI

zzz I have my 'attack console' that can do netdb stuff but the UI is really confusing, I can never remember how

zzz needs work

eyedeekay Sounds fun to build something like that eventually but I haven't tried anything like that on Java since testing subDbs

zzz for starters I just plan on grepping my logs for the router hashes and keeping an eye out, not doing anything targeted

eyedeekay I'm just throwing out some hints to people who want to try and put something spicy in my router logs

eyedeekay I have also done very little fuzzing thusfar, and what was done before I got to go-i2p was on components that are mostly unused in the current version of the code

zzz afaik no part of java i2p has ever been fuzzed

eyedeekay go-streaming has had less attention than go-i2p, and go-i2p *mostly* treats I2CP inputs as trustworthy

zzz as it should. I2NP is the real concern, but much harder to fuzz

zzz would probably require some test jig to access the I2NP parser directly

eyedeekay Yeah I just haven't had time to get my head around setting up more fuzz

eyedeekay If somebody out there in the ether is trying to craft malformed inputs, maybe look at invalid forms of message fragmentation

zzz to do it right you'd need to use some fuzz definition language to define all the I2NP message formats

zzz I assume that's how real fuzzers work?

zzz *** knows nothing ***

eyedeekay I assume so as well, but I'll let you know once I actually do it ))

zzz good job for a new guy, or perhaps for LLM to turn a spec into a definition language

IRCaBot New messages won't show without JavaScript.
My JS code is small and simple. Check it at /realtimechat.js and come back with enabled!