Skip to content

feat(daemon): SYN rate-limit whitelist by source node ID (PILOT-343)#222

Merged
TeoSlayer merged 1 commit into
mainfrom
fix/pilot-343-syn-whitelist
Jun 7, 2026
Merged

feat(daemon): SYN rate-limit whitelist by source node ID (PILOT-343)#222
TeoSlayer merged 1 commit into
mainfrom
fix/pilot-343-syn-whitelist

Conversation

@TeoSlayer

Copy link
Copy Markdown
Collaborator

Trusted-source bypass for both global + per-source SYN rate limits.

Adds an atomic.Pointer-backed source-node-ID whitelist that bypasses
BOTH allowSYN() and allowSYNFromSource() — the SEC-002 SYN-flood gates.
Used for trusted operator peers (paired daemons, test rigs) where
high-rate connection bursts are legitimate.

API: SetSYNWhitelist([]uint32) — safe to call at any time. Empty
whitelist by default preserves existing behaviour.
@TeoSlayer TeoSlayer requested a review from Alexgodoroja as a code owner June 7, 2026 07:23
@TeoSlayer TeoSlayer merged commit bdb7a23 into main Jun 7, 2026
9 checks passed
@TeoSlayer TeoSlayer deleted the fix/pilot-343-syn-whitelist branch June 7, 2026 07:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant