Skip to content

Add Seismic rate limiting #285

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
cdrappi wants to merge 12 commits into
base: seismic
Choose a base branch
from
Open

Add Seismic rate limiting #285

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
12 commits
Select commit Hold shift + click to select a range
64b9e66
add clean rate limiting dif
cdrappi Jan 13, 2026
683c94e
add more rate limiting files
cdrappi Jan 13, 2026
ccae837
cargo fmt
cdrappi Jan 13, 2026
98fc767
remove semis
cdrappi Jan 13, 2026
126292e
Merge branch 'seismic' of github.com:SeismicSystems/seismic-reth into…
cdrappi Jan 13, 2026
3e3860d
chanes from comments
mHaines9219 Jan 13, 2026
dedd732
Update rate_limiter.rs
cdrappi Jan 13, 2026
fbb1493
fix clippy
mHaines9219 Jan 13, 2026
69a8ba4
Merge branch 'rate-limiting-clean' of github.com:SeismicSystems/seism…
mHaines9219 Jan 13, 2026
dcec6a0
resolve warning
mHaines9219 Jan 13, 2026
7d7d586
resolve
mHaines9219 Jan 13, 2026
1498c18
pass tests
mHaines9219 Jan 13, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
48 changes: 46 additions & 2 deletions Cargo.lock
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

33 changes: 31 additions & 2 deletions bin/seismic-reth/src/main.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,10 +6,14 @@ use clap::Parser;
use jsonrpsee_http_client::HttpClientBuilder;
use reth::cli::Cli;
use reth_cli_commands::node::NoArgs;
use reth_node_builder::Node;
use reth_node_core::node_config::NodeConfig;
use reth_seismic_cli::chainspec::SeismicChainSpecParser;
use reth_seismic_node::node::SeismicNode;
use reth_seismic_rpc::ext::{EthApiExt, EthApiOverrideServer, SeismicApi, SeismicApiServer};
use reth_seismic_rpc::{
ext::{EthApiExt, EthApiOverrideServer, SeismicApi, SeismicApiServer},
rate_limiter::{RateLimitConfig, SeismicRateLimiter},
};
use reth_tracing::tracing::*;

use seismic_enclave::{
Expand Down Expand Up @@ -84,8 +88,33 @@ fn main() {
// building additional endpoints seismic api
let seismic_api = SeismicApi::new(purpose_keys.clone());

// Configure rate limiting
let rate_limiter = SeismicRateLimiter::new(RateLimitConfig {
requests_per_second: 100, // 100 requests per second per IP
burst_size: 50, // Allow bursts of up to 50 requests
limited_methods: None, // Empty = limit all methods (except exempt)
exempt_methods: vec![
"eth_chainId".to_string(),
"eth_blockNumber".to_string(),
"net_version".to_string(),
"web3_clientVersion".to_string(),
"seismic_getTeePublicKey".to_string(),
],
exempt_ips: vec![
// Add internal service IPs here if needed
// "127.0.0.1".parse().unwrap(),
],
});

info!(target: "reth::cli", "Rate limiting configured: 100 req/s, burst 50");

let seismic_node = SeismicNode::default();
let add_ons = seismic_node.add_ons().with_rpc_middleware(rate_limiter);

let node = builder
.node(SeismicNode::default())
.with_types::<SeismicNode>()
.with_components(seismic_node.components_builder())
.with_add_ons(add_ons)
.extend_rpc_modules(move |ctx| {
// replace eth_ namespace
ctx.modules.replace_configured(
Expand Down
1 change: 1 addition & 0 deletions crates/rpc/rpc-builder/Cargo.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -30,6 +30,7 @@ reth-transaction-pool.workspace = true
reth-storage-api.workspace = true
reth-chain-state.workspace = true
reth-evm.workspace = true
reth-seismic-rpc.workspace = true

# rpc/net
jsonrpsee = { workspace = true, features = ["server"] }
Expand Down
5 changes: 4 additions & 1 deletion crates/rpc/rpc-builder/src/lib.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -75,8 +75,8 @@ pub use reth_ipc::server::{
Builder as IpcServerBuilder, RpcServiceBuilder as IpcRpcServiceBuilder,
};
pub use reth_rpc_server_types::{constants, RethRpcModule, RpcModuleSelection};
use reth_seismic_rpc::rate_limiter::ClientIpExtractorLayer;
pub use tower::layer::util::{Identity, Stack};

/// Auth server utilities.
pub mod auth;

Expand Down Expand Up @@ -1317,6 +1317,7 @@ impl<RpcMiddleware> RpcServerConfig<RpcMiddleware> {
let server = ServerBuilder::new()
.set_http_middleware(
tower::ServiceBuilder::new()
.layer(ClientIpExtractorLayer)
.option_layer(Self::maybe_cors_layer(cors)?)
.option_layer(Self::maybe_jwt_layer(self.jwt_secret))
.option_layer(Self::maybe_compression_layer(
Expand Down Expand Up @@ -1371,6 +1372,7 @@ impl<RpcMiddleware> RpcServerConfig<RpcMiddleware> {
.set_config(config.ws_only().build())
.set_http_middleware(
tower::ServiceBuilder::new()
.layer(ClientIpExtractorLayer)
.option_layer(Self::maybe_cors_layer(self.ws_cors_domains.clone())?)
.option_layer(Self::maybe_jwt_layer(self.jwt_secret)),
)
Expand All @@ -1396,6 +1398,7 @@ impl<RpcMiddleware> RpcServerConfig<RpcMiddleware> {
.set_config(config.http_only().build())
.set_http_middleware(
tower::ServiceBuilder::new()
.layer(ClientIpExtractorLayer)
.option_layer(Self::maybe_cors_layer(self.http_cors_domains.clone())?)
.option_layer(Self::maybe_jwt_layer(self.jwt_secret))
.option_layer(Self::maybe_compression_layer(self.http_disable_compression)),
Expand Down
1 change: 1 addition & 0 deletions crates/rpc/rpc-builder/tests/it/main.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,7 @@
mod auth;
mod http;
mod middleware;
mod rate_limiter;
mod serde;
mod startup;
pub mod utils;
Expand Down
Loading
Loading