From e6640de20502176afeae132e9449c171601781eb Mon Sep 17 00:00:00 2001
From: Arvid Norberg <arvid@libtorrent.org>
Date: Thu, 26 May 2011 17:04:53 +0000
Subject: [PATCH] updated IP->ID formula for DHT

---
 docs/dht_sec.html                       | 133 +++++++++++++++++++----
 docs/dht_sec.rst                        | 134 +++++++++++++++++++++---
 docs/ip_id_v4.png                       | Bin 0 -> 4136 bytes
 docs/ip_id_v6.png                       | Bin 0 -> 4414 bytes
 docs/ips.py                             |  50 +++++++++
 include/libtorrent/kademlia/node_id.hpp |   3 +-
 src/kademlia/node_id.cpp                |  78 ++++++++++----
 src/kademlia/routing_table.cpp          |   2 +-
 src/kademlia/rpc_manager.cpp            |   4 +-
 src/kademlia/traversal_algorithm.cpp    |   2 +-
 10 files changed, 349 insertions(+), 57 deletions(-)
 create mode 100644 docs/ip_id_v4.png
 create mode 100644 docs/ip_id_v6.png
 create mode 100644 docs/ips.py

diff --git a/docs/dht_sec.html b/docs/dht_sec.html
index 10bfb2d80..e53a0faa4 100644
--- a/docs/dht_sec.html
+++ b/docs/dht_sec.html
@@ -58,10 +58,12 @@
 <p class="topic-title first">Table of contents</p>
 <ul class="simple">
 <li><a class="reference internal" href="#id1" id="id2">BitTorrent DHT security extension</a></li>
-<li><a class="reference internal" href="#node-ids" id="id3">node IDs</a></li>
-<li><a class="reference internal" href="#bootstrapping" id="id4">bootstrapping</a></li>
-<li><a class="reference internal" href="#enforcement" id="id5">enforcement</a></li>
-<li><a class="reference internal" href="#backwards-compatibility-and-transition" id="id6">backwards compatibility and transition</a></li>
+<li><a class="reference internal" href="#considerations" id="id3">considerations</a></li>
+<li><a class="reference internal" href="#node-id-restriction" id="id4">Node ID restriction</a></li>
+<li><a class="reference internal" href="#bootstrapping" id="id5">bootstrapping</a></li>
+<li><a class="reference internal" href="#enforcement" id="id6">enforcement</a></li>
+<li><a class="reference internal" href="#backwards-compatibility-and-transition" id="id7">backwards compatibility and transition</a></li>
+<li><a class="reference internal" href="#forward-compatibility" id="id8">forward compatibility</a></li>
 </ul>
 </div>
 <div class="section" id="id1">
@@ -78,18 +80,106 @@ peers.</p>
 <p>The proposed guard against this is to enforce restrictions on which node-ID
 a node can choose, based on its external IP address.</p>
 </div>
-<div class="section" id="node-ids">
-<h1>node IDs</h1>
-<p>The proposed formula for restricting node IDs is that the 4 first bytes of
-the node ID MUST match the 4 first bytes of <tt class="docutils literal"><span class="pre">SHA-1(IP_address)</span></tt>. That is,
-the raw, big endian, storage of the address, either IPv4 or IPv6, hashed
-with SHA-1.</p>
-<p>Example:</p>
+<div class="section" id="considerations">
+<h1>considerations</h1>
+<p>One straight forward scheme to tie the node ID to an IP would be to hash
+the IP and force the node ID to share the prefix of that hash. One main
+draw back of this approach is that an entities control over the DHT key
+space grows linearly with its control over the IP address space.</p>
+<p>In order to successfully launch an attack, you just need to find 8 IPs
+whose hash will be <em>closest</em> to the target info-hash. Given the current
+size of the DHT, that is quite likely to be possible by anyone in control
+of a /8 IP block.</p>
+<p>The size of the DHT is approximately 8.4 million nodes. This is estmiated
+by observing that a typical routing table typically has about 20 of its
+top routing table buckets full. That means the key space is dense enough
+to contain 8 nodes for every combination of the 20 top bits of node IDs.</p>
 <blockquote>
-An IP address 89.5.5.5 has a big endian byte representation of
-<tt class="docutils literal"><span class="pre">0x59</span> <span class="pre">0x05</span> <span class="pre">0x05</span> <span class="pre">0x05</span></tt>. The SHA-1 hash of this byte sequence is
-<tt class="docutils literal"><span class="pre">656d41da810a0a6d92fd2f6a8ba3b466e35ab368</span></tt>. The DHT node must choose
-a node ID which starts with <tt class="docutils literal"><span class="pre">656d41da</span></tt>.</blockquote>
+<tt class="docutils literal"><span class="pre">2^20</span> <span class="pre">*</span> <span class="pre">8</span> <span class="pre">=</span> <span class="pre">8388608</span></tt></blockquote>
+<p>By controlling that many IP addresses, an attacker could snoop any info-hash.
+By controlling 8 times that many IP addresses, an attacker could actually
+take over any info-hash.</p>
+<p>With IPv4, snooping would require a /8 IP block, giving access to 16.7 million
+Ips.</p>
+<p>Another problem with hashing the IP is that multiple users behind a NAT are
+forced to run their DHT nodes on the same node ID.</p>
+</div>
+<div class="section" id="node-id-restriction">
+<h1>Node ID restriction</h1>
+<p>In order to avoid the number node IDs controlled to grow linearly by the number
+of IPs, as well as allowing more than one node ID per external IP, the node
+ID can be restricted at each class level of the IP.</p>
+<p>The expression to calculate a valid ID prefix (from an IPv4 address) is:</p>
+<pre class="literal-block">
+sha1((A * (B * (C * (D * (rand() % 8) % 0x100) % 0x4000) % 0x100000)) % 0x4000000)
+</pre>
+<p>Where <tt class="docutils literal"><span class="pre">A</span></tt>, <tt class="docutils literal"><span class="pre">B</span></tt>, <tt class="docutils literal"><span class="pre">C</span></tt> and <tt class="docutils literal"><span class="pre">D</span></tt> are the four octets of an IPv4 address.</p>
+<p>The pattern is that the modulus constant is shifted left by 6 for each octet.
+It generalizes to IPv6 by only considering the first 64 bit of the IP (since
+the low 64 bits are controlled by the host) and shifting the modulus by 3 for
+each octet instead.</p>
+<p>The details of implementing this is to evaluate the expression, store the
+result in a big endian 32 bit integer and hash those 4 bytes with SHA-1.
+The first 4 bytes of the node ID used in the DHT MUST match the first 4
+bytes in the resulting hash. The last byte of the hash MUST match the
+random number used to generate the hash.</p>
+<img alt="ip_id_v4.png" src="ip_id_v4.png" />
+<img alt="ip_id_v6.png" src="ip_id_v6.png" />
+<p>Example code code for calculating a valid node ID:</p>
+<pre class="literal-block">
+uint8_t* ip; // our external IPv4 or IPv6 address (network byte order)
+int num_octets; // the number of octets to consider in ip (4 or 8)
+uint8_t node_id[20]; // resulting node ID
+
+uint32_t rand = rand() &amp; 0xff;
+uint32_t modulus = 0x100;
+uint32_t seed = rand &amp; 0x7;
+int mod_shift = 6 * 4 / num_octets; // 6 or 3, depending on IPv4 and IPv6
+while (num_octets)
+{
+        seed *= ip[num_octets];
+        seed &amp;= (modulus-1);
+        modulus &lt;&lt;= mod_shift;
+        --num_octets;
+}
+
+seed = htonl(seed);
+SHA_CTX ctx;
+SHA1_Init(&amp;ctx);
+SHA1_Update(&amp;ctx, (unsigned char*)&amp;seed, sizeof(seed));
+SHA1_Final(&amp;ctx, node_id);
+for (int i = 4; i &lt; 19; ++i) node_id[i] = rand();
+node_id[19] = rand;
+</pre>
+<p>Example code to verify a node ID:</p>
+<pre class="literal-block">
+uint8_t* ip; // incoming IPv4 or IPv6 address (network byte order)
+int num_octets; // the number of octets to consider in ip (4 or 8)
+uint8_t node_id[20]; // incoming node ID
+
+uint32_t modulus = 0x100;
+uint32_t seed = node_id[19] &amp; 0x7;
+int mod_shift = 6 * 4 / num_octets; // 6 or 3, depending on IPv4 and IPv6
+while (num_octets)
+{
+        seed *= ip[num_octets];
+        seed &amp;= (modulus-1);
+        modulus &lt;&lt;= mod_shift;
+        --num_octets;
+}
+
+seed = htonl(seed);
+SHA_CTX ctx;
+SHA1_Init(&amp;ctx);
+SHA1_Update(&amp;ctx, (unsigned char*)&amp;seed, sizeof(seed));
+uint8_t digest[20];
+SHA1_Final(&amp;ctx, digest);
+if (memcmp(digest, node_id, 4) != 0)
+        return false; // failed verification
+else
+        return true; // verification passed
+</pre>
+<p>test vectors:</p>
 </div>
 <div class="section" id="bootstrapping">
 <h1>bootstrapping</h1>
@@ -108,9 +198,9 @@ nodes, from separate searches, tells you your node ID is incorrect.</p>
 </div>
 <div class="section" id="enforcement">
 <h1>enforcement</h1>
-<p>Write tokens from peers whose node ID does not match its external IP should be
-considered dropped. In other words, a peer that uses a non-matching ID MUST
-never be used to store information on, regardless of which request. In the
+<p>Once enforced, write tokens from peers whose node ID does not match its external
+IP should be considered dropped. In other words, a peer that uses a non-matching
+ID MUST never be used to store information on, regardless of which request. In the
 original DHT specification only <tt class="docutils literal"><span class="pre">announce_peer</span></tt> stores data in the network,
 but any future extension which stores data in the network SHOULD use the same
 restriction.</p>
@@ -137,6 +227,13 @@ should not be blocked.</p>
 <p>Requests from peers whose node ID does not match their external IP should
 always be serviced, even after the transition period. The attack this protects
 from is storing data on an attacker's node, not servicing an attackers request.</p>
+</div>
+<div class="section" id="forward-compatibility">
+<h1>forward compatibility</h1>
+<p>If the total size of the DHT grows to the point where the inherent size limit
+in this proposal is too small, the modulus constants can be updated in a new
+proposal, and another transition period where both sets of modulus constants
+are accepted.</p>
 </div>
     </div>
     <div id="footer">
diff --git a/docs/dht_sec.rst b/docs/dht_sec.rst
index ca9f3894b..a1bd68639 100644
--- a/docs/dht_sec.rst
+++ b/docs/dht_sec.rst
@@ -26,20 +26,118 @@ peers.
 The proposed guard against this is to enforce restrictions on which node-ID
 a node can choose, based on its external IP address.
 
-node IDs
---------
+considerations
+--------------
 
-The proposed formula for restricting node IDs is that the 4 first bytes of
-the node ID MUST match the 4 first bytes of ``SHA-1(IP_address)``. That is,
-the raw, big endian, storage of the address, either IPv4 or IPv6, hashed
-with SHA-1.
+One straight forward scheme to tie the node ID to an IP would be to hash
+the IP and force the node ID to share the prefix of that hash. One main
+draw back of this approach is that an entities control over the DHT key
+space grows linearly with its control over the IP address space.
 
-Example:
+In order to successfully launch an attack, you just need to find 8 IPs
+whose hash will be *closest* to the target info-hash. Given the current
+size of the DHT, that is quite likely to be possible by anyone in control
+of a /8 IP block.
 
-	An IP address 89.5.5.5 has a big endian byte representation of
-	``0x59 0x05 0x05 0x05``. The SHA-1 hash of this byte sequence is
-	``656d41da810a0a6d92fd2f6a8ba3b466e35ab368``. The DHT node must choose
-	a node ID which starts with ``656d41da``.
+The size of the DHT is approximately 8.4 million nodes. This is estmiated
+by observing that a typical routing table typically has about 20 of its
+top routing table buckets full. That means the key space is dense enough
+to contain 8 nodes for every combination of the 20 top bits of node IDs.
+
+	``2^20 * 8 = 8388608``
+
+By controlling that many IP addresses, an attacker could snoop any info-hash.
+By controlling 8 times that many IP addresses, an attacker could actually
+take over any info-hash.
+
+With IPv4, snooping would require a /8 IP block, giving access to 16.7 million
+Ips.
+
+Another problem with hashing the IP is that multiple users behind a NAT are
+forced to run their DHT nodes on the same node ID.
+
+Node ID restriction
+-------------------
+
+In order to avoid the number node IDs controlled to grow linearly by the number
+of IPs, as well as allowing more than one node ID per external IP, the node
+ID can be restricted at each class level of the IP.
+
+The expression to calculate a valid ID prefix (from an IPv4 address) is::
+
+	sha1((A * (B * (C * (D * (rand() % 8) % 0x100) % 0x4000) % 0x100000)) % 0x4000000)
+
+Where ``A``, ``B``, ``C`` and ``D`` are the four octets of an IPv4 address.
+
+The pattern is that the modulus constant is shifted left by 6 for each octet.
+It generalizes to IPv6 by only considering the first 64 bit of the IP (since
+the low 64 bits are controlled by the host) and shifting the modulus by 3 for
+each octet instead.
+
+The details of implementing this is to evaluate the expression, store the
+result in a big endian 32 bit integer and hash those 4 bytes with SHA-1.
+The first 4 bytes of the node ID used in the DHT MUST match the first 4
+bytes in the resulting hash. The last byte of the hash MUST match the
+random number used to generate the hash.
+
+.. image:: ip_id_v4.png
+.. image:: ip_id_v6.png
+
+Example code code for calculating a valid node ID::
+
+	uint8_t* ip; // our external IPv4 or IPv6 address (network byte order)
+	int num_octets; // the number of octets to consider in ip (4 or 8)
+	uint8_t node_id[20]; // resulting node ID
+
+	uint32_t rand = rand() & 0xff;
+	uint32_t modulus = 0x100;
+	uint32_t seed = rand & 0x7;
+	int mod_shift = 6 * 4 / num_octets; // 6 or 3, depending on IPv4 and IPv6
+	while (num_octets)
+	{
+		seed *= ip[num_octets];
+		seed &= (modulus-1);
+		modulus <<= mod_shift;
+		--num_octets;
+	}
+
+	seed = htonl(seed);
+	SHA_CTX ctx;
+	SHA1_Init(&ctx);
+	SHA1_Update(&ctx, (unsigned char*)&seed, sizeof(seed));
+	SHA1_Final(&ctx, node_id);
+	for (int i = 4; i < 19; ++i) node_id[i] = rand();
+	node_id[19] = rand;
+
+Example code to verify a node ID::
+
+	uint8_t* ip; // incoming IPv4 or IPv6 address (network byte order)
+	int num_octets; // the number of octets to consider in ip (4 or 8)
+	uint8_t node_id[20]; // incoming node ID
+
+	uint32_t modulus = 0x100;
+	uint32_t seed = node_id[19] & 0x7;
+	int mod_shift = 6 * 4 / num_octets; // 6 or 3, depending on IPv4 and IPv6
+	while (num_octets)
+	{
+		seed *= ip[num_octets];
+		seed &= (modulus-1);
+		modulus <<= mod_shift;
+		--num_octets;
+	}
+
+	seed = htonl(seed);
+	SHA_CTX ctx;
+	SHA1_Init(&ctx);
+	SHA1_Update(&ctx, (unsigned char*)&seed, sizeof(seed));
+	uint8_t digest[20];
+	SHA1_Final(&ctx, digest);
+	if (memcmp(digest, node_id, 4) != 0)
+		return false; // failed verification
+	else
+		return true; // verification passed
+
+test vectors:
 
 bootstrapping
 -------------
@@ -61,9 +159,9 @@ nodes, from separate searches, tells you your node ID is incorrect.
 enforcement
 -----------
 
-Write tokens from peers whose node ID does not match its external IP should be
-considered dropped. In other words, a peer that uses a non-matching ID MUST
-never be used to store information on, regardless of which request. In the
+Once enforced, write tokens from peers whose node ID does not match its external
+IP should be considered dropped. In other words, a peer that uses a non-matching
+ID MUST never be used to store information on, regardless of which request. In the
 original DHT specification only ``announce_peer`` stores data in the network,
 but any future extension which stores data in the network SHOULD use the same
 restriction.
@@ -94,3 +192,11 @@ Requests from peers whose node ID does not match their external IP should
 always be serviced, even after the transition period. The attack this protects
 from is storing data on an attacker's node, not servicing an attackers request.
 
+forward compatibility
+---------------------
+
+If the total size of the DHT grows to the point where the inherent size limit
+in this proposal is too small, the modulus constants can be updated in a new
+proposal, and another transition period where both sets of modulus constants
+are accepted.
+
diff --git a/docs/ip_id_v4.png b/docs/ip_id_v4.png
new file mode 100644
index 0000000000000000000000000000000000000000..c3a209503d5a323b152e7b4d27ba1d94635d4bcf
GIT binary patch
literal 4136
zcmZWsc{r49`<^V3c`b>Nu{7BdgR;Dq$jFwYgqa>>njuoW$QapTETfR<WyqS!WE&a0
zD*KqSjU{AM_N6f~c5f+RzNz2$&v*Rp<366}xbEY;uIs$c`?{awxsx0(*oulkML-~s
zsNGpBClH7a0D<<wh530a>T_nrJOk!<-o={B<?>dFii&={Xdn=QO9OF1D=RbvsH+QP
zabt!{gMkPL8i9KPLr4LE5CjmHz>VP!lQlGWu88RYo*xtn)zi~+aB%SP@rj9v$;rv7
zt*xceXuZ9?EEbEGVog^!eI>o}<NO+OZJNtnnTX@QY^z#X;eG(|vVpGgo-s-(O4=!x
zf7>atvOzp5AW+}keh%mtMJ}j+kSmqJjd5Hf5V+Q$Z9?!uR>a!;{pMGGuM@#vzm69X
zU|ce2C2l1X^nRjfBHa;z^wS|ofe2Dk1O#sq2pAdx!zKLUkKh*ZCWc!S#HG==yn48_
zzE_27+_j>YeQn&fJ{mQOizwp4T3T9q_odl`Kw@v~tSnr@@|O!@vnn+Hu*R?Ka1Ez!
zR6rzDR4|gJk<HBdWr?}W&A+9RJRm$l{{Nu80WJ^07^QPTKYep$e|)5=SIL_8DS5kb
zI~=c@OG1!!B{Jx!=z%6a<VZf^9{py>u;(M$kgh|F4VoI|FZzR+$}#=KcP)@h0;5;m
z-%P2R#~tn2J1h_LYEiS4#2yWDWuHBnN1eSsllEr%u&ko0SJ21yYPCb*FZ$vw$W!}p
zQTk4jBkOQoqj!F~Q)8<wU$=uHsM6jzYX59sq|kmlB54m8vMUzWe26;gN$T}l9W1I9
z!emy!GYe+os3X((;xiIoRQh6j&`QVj9_dVGOj*y*oN0sZ^cKFYf&Vx<7|fr%b)De4
z-;zN6-|{ipOQidEE(>YnKx#>$V%Az8@9!6&*adB?YrL8gCaBFeU!Sod|K&A*Qp_|}
zksfh`Z8W~;`P$NH-ul|^6?Wl8v(a<1E1MTyPBNPAQ66)~H_ILy;w%B5{6@2{W<RWD
z4Y*Hf;Gk|ZXYI`mWt_I&ZB7$8>H&W|?M6_Swyi9ueR*6ASLkluq=@S)>pA~G2pcPv
zOnu!MPgQKM&fHv%J^y%_KMm5JF>(9s=q|AM!dvI;?ioP)EVQWgvI+gVcdW|e!DkN_
z(rYGKMW){G?&1$tpU*PhG7(pch=E3f#0ynZ%-6dnay8&+^iBpT&BfO%09hcDAbt9j
zO`;4UEB|y&G6P)U;no`H`a=TJRZM?h>vb*4TPshbjDAzhEw3CR+yk~dSQz;-ZD&WO
z$~k-SXW)AD@Y>+9xR<lLnwrAk5ampgIQEk|PTr*T;S_+97#Z#lR7NsqEdiQ-3Fhm5
zdTy@&f=6j*c*>G1Qfuh=yMlAyaQC{vnD;Qs_*3h@(r%pw?mR%4caPWSLncKuk4fsh
z=#ghZD;$85k`Elf8>v-u{N3#Z1W(r^J(q4l?PeWooMM_9u844yfICY>cC&!fXceOJ
zI<^_T9p3B^hA|I1=9`z;s}yOZ;t(-2y3i3wd{_FRzQ)ixzgdW$-1=Z%@4{z6>H(Qg
z&w65xVWpK(iRY->AHn@5Ukhz63fmVr-#6(gMFMs5ugB~!oO&pE6Ykaj{?qGoL@Vr|
zOPz4a))I-a*CSfU9!aFm`Z1F32e(I3y)_fyn(%Z!6VaMDD(Il+4Lk_jXWt2*EG=)p
zOEt|l&h3vZi14FE@M9g8n!xf%t<wpD!x+H|LkWmF9mV9s_T7g++=yq&iPJZ(%!g@B
za$Qt$VmxquDjaBDhrxq1>GH4lVPo%Um%G6zIark;M^tHbV(zKXNq+@fO$RLN&p7PZ
zeOb1{zsD=Ztem5rv&9Zyyo%JKr$!s%7YKtP*~oX5-M6wY{4Fv_ezvw|DYuo)U)%b9
z=G2jo<ao2y?S8uv7KV&&y51N9gY)-u{^*L8Q)~#K!8*Dbw!C1mLE%qA0|Ugt#e`0z
zl4|K9-L#=BQt>z8NASrTZRNh`%e+b)mQB-)1pn?}K95>{YF2zkvr9v>ygX|$bG4`7
z3=A%JHXiwAI+r>r6QFY4a-A<RU1ewlBb{d`P+^F~;=75Z)x(uz@kn2ucEog%cdz8J
zAZ(ctH`q&T9I<}de3tC^fOMC&A7&9Yk$9|PG;>wvuVMrMZIUcQpmcCAC>qW!FA6e=
zQ2S0dsmf@9n(_lFCu~;8$#eD05bah5{Nxr4PD3D(Df-e`jUk?v!W^{AX`zmL3HU)W
z&a^6WUx9Ipa-8=a0nO&h?#mt~_EP<hUK2hF0-A~VM|?se6>eT0Aq#KmlK2JTQR~m*
zE%~i3?YDodUM)FPrKRdfB>mJbDBU}w(G)-S@~z_+$KQfd8V9RBD4QJM43jgW;%%~V
zg5JS3Pi5>}T^E=DNn4>jTVryOJyswS3>$37<Tps!(ngnuJ#x2ZcLY!G4>dIEd`^ME
z*#Jp8ft545LB}gqYU_NdY?@-VN9R17X;P%Tpd4rup+j#54A)P{zn-xGU~RN{qJ~7)
zsmwpC4f(Lf&n!^&R->?rYJ-u{X9uAMC>_poU;MWTsmeqVuxLeMJ}1C4@U3NvS=fvn
z5}d#i5P!_?wOHoZTD7)*0$Hc(6hMV~G+kW~nIh{=8k+;n6v5+;w^+N+SBEY=<`G?S
zn(k+2R*@8n>sE)JgzvM~Xe$r3^|yBIPQWwChsL@aLKL?hzbEJI&S=Sf&G?L8@Nbw4
zS(wf{p5PJ;Q-zlKtZUQHJ$}+5nY(IC#W<V~eoky(9*U)YpC_Sxm_teTuhl;pBFC=|
zVF!;2xq%wx{7)uPiowOrO$5WQEaLMw#xJT(!pqjup_<Ri2O7+P90&w^f83sUOjz>>
zMa*xa{eqZcf`R#a7t~eLVtV(&6<67P?Txzp@g&|S=TK?&#(h!LbE5ZA>3$7L1Xa@H
zgMdL6<Pc=(Xy!%Yn`YBAWAHZ#Vf)y;I3B*oN+X}raWkD%=Nw2lPVv3C!4&^HTg3T5
z#c{Vj_oi%$u6tFDxfOceYj0?gV8Cj-EPwz))VT78-{fz20GEDR&3B%Z?~@92CEabh
z#{9%eTLPI!xkqDLvM(9jT7DCb{?n(lI&6^fwro?vhT`t@BnEpcV|p(6_AsDjTK;l$
zMtb#@O#2ts{wY%@)M;La*x>K9g{0Qaq8|FA%NtG{D`g<UyT~mYh2v9R3E3j2iC>eD
z);K3h?yIm)h21by-=t<x0`o}e&GqWWHkr`Vf^ILW&+9uIl~-SA)A+OXRraTUsM~82
zSXYksNP;fwEKz0YGXjhN?vzf9eaF@`6mD#rosA63i5+cD#b5J&*-@he=NOETDCl{&
zS8lH~;q=4x*(NWEc!kPn{k+cx7OASURsZNlRpA}3Iimwd7G~Pv^i`7r=pf&XX4ku4
z+Lh@#pBwho8jLvA7hC#{JP9wuRChcrKUcf+rxt~ClIc_6m0xUcJD{x;(`C#Bqaymv
zOoy{2ed*9~vezG*#|H#z@Dw%^_@=3;i~zL0JMp%OGnzF(QQq<_31fGOv^NIzb}2uS
zfanR8pR+t9PS+(=$@|7~pkVimDFkX60U*a2jNnwHYv<x;a@@R}iU%68t}U;(Asi7n
zfY;o_us!{druxq6v2~6Im=mHNE;EjRBkBI)N+K(%{il2z&$%wZ<J*}iCh)La{sZum
z=si6t`l`j^1~nKCM=r|k{u}5OqU>CZI8+oSPM~bZvJwl7MZQV&7(lc<J@h#PO;>Q8
zaxN~UIcQG}^=yx*OrMFqj&w(>g-jcxn(DGZ9S>qsEH|I_h8Pd<d1T2k`b;`OcG>*{
zcW>Vy$3Ssr5)C0dH<nMq9mKM*+j#{F`~x7`-uMQZqNLerkaYt)C^mZuc*_#(q&pGU
zlG1dGKl0)Qn>(`+;9)<C>}^8?>diXUpx*G}!(V-#Ky7HTsJtA&tLFFF2#ty#jVF0w
z%Z8qWtxmHP=No(dAF-DL2;~99(Ae;QvS&<nft;#pD=~Gn#=R+6(k~sJ6Ol)T+U$v+
zbtn^D6N|$Xd9b~-I6c|7>DKlk=b{5V#<Tt(9e{L_jOl@jbw5Q#SL$7Wcbo^Gb$AMC
zc1ly{oVS$V7Gfc$r#2z0e|0kSIsdN54KWlHh$KH=D+!WGw%Z3Z$9Q`khiUi8g=)U1
z;C2!}kT*q8qEqUd+Yj=5j*x_EHV=yHvdwSy|GZLV+@;T1YQ-u9ilg3g@#orj?Xh23
z36<?~kHIjsArcvkQwk|t{<UJA;5g)w=f@|1h8b5ZZs<@d7OM>)3DW6cluXRbceD>r
z$o5QXIzPKDo$5$^mmrI^KuuVrA|En;==lH5^zx&0f-6vNsxdRo&AktZ<m46}xWvjG
zNM{y*5drsrmBam0tw~I_&b42mM=XifX{f4JM+u7jJF(;~ADv1&>R1^e((xc_j4YRl
zQj~>JN?qAY<R5XE$F&i#3?^`?w!a(9#uc%3h1w%^W_=1ig7pC7LU*ZEGjUmcj=WAK
z#}@h7ChanH$S<ue{>u|wcE8O>N^NU`^tY0eCp?LCx=14*jtPWg4IVv4vg&&+)+bYn
zT}znu+W!|vtqCU7AAb~Ufz-p=0O`ov^X1iHXl?J`(9@ZII(0*g_3@`+A2#FUjZ_(Q
zI-BNtNgCo}ka>3m_!skESZ#I|h7}fYscC9aki^_k7Y3I{@Vx?qYZ_98m_U>Km*0sC
zf^duM$Kx1PQ`?++FZP3ryNk3k>UZOTO*sK9-p4^HtN5Rdo&6TTL{fsFVy70JuSiY;
za+ohcaQ_LTcYOc-(_c&YuKe`vm045VRL@wip<d2cdemxz(UBHiiK)m$JgBAa?T@{^
zwd;2S3wJ}8Q5@orN&GGC!q9T%*yab+nyuz*Ik^0-gOJtc4Es54>;dwVJQ0}{xsdZ(
zr##P1HX;<FaH*!_v$oR~>QN7W_^6jxU(3ndovduUy23rAw7IHaX{(fxxVGUagzfJA
zl=JVJR<%#3d=f5aq2PiGQMI=?PQ%W>U}w{YP2VOi*?qAp=@{LMVebXDj@@w6xq`LJ
z*SR_;_g3(KE-r+UqvNVL6SwFRkMHu?rivCy@NEj)7NR|ZOpr!DQ8C&lhIyyr4zQjT
zghHm{UR?dAzP>DIw7QatzJfCsi$4qaMGeehN<MgE6}IUY_H_!>zP3u6GEQZmn)C@D
zp<{!$J%U~jr3|X|M}9MmJ$a2tQY#Mn><X}-37FhCgz7&SWQPXocOU(MZEppO-&UoZ
zV4nfd#$b*VJh^NwuOfm>-|gPI8o%d%BG=%6c*5*%-hzmQ+9#Hrb)kRsAL#MIl3%y_
cUxQG+BP3#~N37B~EBwp0v%X;U;tVG4KdaXABme*a

literal 0
HcmV?d00001

diff --git a/docs/ip_id_v6.png b/docs/ip_id_v6.png
new file mode 100644
index 0000000000000000000000000000000000000000..c8dba4288208024d54b8240eae093db7fabc4e22
GIT binary patch
literal 4414
zcmZWscU03&vyLc;Aiaoyh@c=4MXD0uB_h2_Nl2tfM35o^5=y9%V!?<ghN99$S`r{c
zq=e8Sf>IR>)c}fggkY2ozc0S`et+C^_w3m@`<yd7&&<xu*?n-?&Rl>`nhyj530PW~
zID$Z22oPu=n0G%1IXz|gnzNC=Y~ySS000Nc&(HrWT0kHy&;kNL%gZfL(1#D8i+<mL
z7I_dB+JXhnd14=eKu|0Qzyk5Wmm*bFjw*EW6Gu;4T3Sm>%huM`$Hyl=K0Z4;`^}p-
zEiEnG-QCmE(;O2lP0h6BwDRE@7K}9s0L#n-pr*BQc^Mc2ajb!^bJlo;hYDvOy8OF;
zc=Tv6hYASPbFX(1^p_$4>irCervveqSy(J!3fjWnp3jJ4&EOhq1M2Sb|M~MZA1e<O
zftC}NpMeIL`OLJ-P*{LERvd&C7so<56N~k1!FmGNzx<&<K4*FY`N2R-3&8OQXz8iV
zWdW@Gnx0mmwWoy~13>cu`KG3(?tPD~K_H<KOOuPvkuQJdJjx)d9!?G`UIDsi(IiP>
ziw)a^ZPy6BT2lpltVK%FEg4Qc{{NV?T+&}W*^A7qXW#VDsR_(~79lhq^<<zN==-+T
zqzta`4+^5`?XfEOOh&x8P<%v|@hJ&KW%pl66fjF<u;g6@FlNM@YuXxQndP$^nP>R-
zE|lDy{j4Ee)^xDs0G-}al+*P-CTY6)HsB^vq2;djgwMq=p7a1`u({A{S*DqvdPz|Q
z<z7kSTaOdi+ICudG*sI_cJo$B3Of?Cvj9C&K&BhH4nL4Zarax{5M>K{jK=h37m(FQ
zOo6YEa?)G<m3I<c=E?;^Uwei1=2|0Ja?daf=7R+0rc7X4P2j2%ZJy`AN*}24@LdpU
z-~WjKRJp1|D$<zm%Ax8+on!g@v#O_pPMlBT9$hU$W13@)j(B^_-nrL*l4P_$GiUb=
zw8#CJ<%plEq;6$HSf^18;dw2t-~HY(a6@3j&glAJ_2y?f)teWJ=sRa*f+%6L-TZcX
zq}iVPc-9TP_e#p@-n!L95ito*StG}fk5)vF&R;7Ur7c%DjZr^nD}>nPy1qi{)9GBW
z;3Qap5IstK;%JVR;p*Cg!D^=?jj^38sst?-y-8Gl?IE0TD4|1oue;a9Smn-vtBgji
zcTW9(;to{|HhHMei&zJWYZXL2z?2mBWiGD=&*Ih7CcEG0x*%Y2tIdR()rvH7Wy#`<
z%ZfaBoe?%O{f$Nl@p?v1Df$Ds&QNo-=5iUn*Pupgr1qkd@xjS%D7@g6<FH-#*Y8St
zL8veVUb<IhuhwH=XMVvs1`rsplp5bQyDU!ArzDV}>ITRM{MPp3TFqON+3WQOIM@MV
zr6Os_7XF>iwf3OYKanh{EFGo%eU)IjHtZROP^%5oR@hX^=sEogim0;WzxF7^5#}1$
zcQBLP%oXjVlyrjWfLk66IW0E$(>q*Ft&mXeh*$;ZAYA21Av1a#kBPOzPK!av%b{I|
z)XpQ0{RxoSX}rl2{#HXmZ(}ADWJd+VE_B|vp)`~v+4be<@3Isw^hVXzL^&jdj$B4~
zD@sZ|)c?3_xYuw<P461BfQMKZ7n|6exx4oQOGbyt6fSG3N=RD6-Q7?R$!K#8s%yuI
zt^9gZgbk9xvr=XLZ1wyhYifgC#NvgoZYUG8s!1l2GEL851YhNLsT1brL;xgqJMILC
zuGwW`F6STtb4MVkg;E3Mi#Ps(z%L^FiDL*|rv)ziNxqBEufPJQlDWM{iacOb`f^n1
z4urk60Q`Q{7x>W4y=H>6>p|25*pLjZcB4hC&RF=<CAhF8@0_9<Z`Zl~2IVqUitVCW
zoCKYo*=@BlLo`y*)y%PMMi}>sKxl!(LK5SQ^}*8oT0+fea-2zqT_NUN<{n{`3bqwY
zS4k_<nq>{V?*v*2ojdjw&i`1OM~Hh-!@%t9R;zQ7D``cAljA9{Ori068!bX~Bm|oJ
zgd*D4zt0he$8Q`^DJ^LoXqsd2XJIn`QkehcMNS~M;{$$TJpMp<x|7WcqT+%E<lG8W
zeaie5qvO`&AhZU|xpWL+)EBjDNI2>vr+s<GFDMaz6ZiJ~ma%{Jz_IsPw{l$NLhpFF
znuo>Q?0O<9Ona===R@E(xX5aPC{RT6Zh;a-o=Py-+aArJ1e9EL3#(cWY00y)Jx&0(
zArfZTh4@mk)U0;a1TG?HdD6Z6kQ^^RKMwU>JUYS3CF^7Vs?`bbp*GlC2A^7b(Nv}}
zV#=bfbH(1o88(|Cgk+|5^{={YooIg^(B!51#)g&K+ds0#n*DftM9!!zVd~TK`<lZB
zAyPN@;v$JwkO<$Y>+@-JdeHpb#eY23eGiR`At9$Kgwe*Cgqm;^lY*uJcgQ^7P4skR
zd;)M)6eL9E7oYMAdmNl6`Taq<^o_klh;k&BAyDifS)~s}+;t!l1n3lgJ%mbX)#yc>
zPWw)hvk$LzHx03<-O!T$nVz7&^k_Vi$=zJ!by$oLwI79~r{k9|U~K?@t0XfVV<6_-
zmH9oE1ww-8;X95KGmy%;cJ->nh2i_d?(*RMSx$`hkmTWZi;N$hMf!sIiR&@Oy}PzM
z8FuDuy(6XD?}h|am~qzTO^ZJW12bo+E$ME3D`gU|zXZ*Da{C=zdcP<Kqj&nu-^?Ym
zTp_S~>*`-m`<nf{BiOyZC``-i?qA(KX-1Nc^x|;Jw?!<gDOaWidKjcUA?2Q)_0d!V
zSoi^f&53^0i+g0_jqL8uvgfxxc+bmMlJ||RQV+t<&!J8rVfJZjnnGt&yg3Yo<6b99
zEnWg14deMAhS()yco*}POg;2Cy>q5ySj;ml5gb79mpM+mgw%WPTm%tJ>+Q$f#+eGh
zYm5wTv>CJh$%o{0(!yD(QUSa~Gx*gD6MP-n@uwHN_~@efnIv?_zAQ|hYwWn$l5TSH
z^%TOwp68z*lZG&&i{|@uMEF^4D_Eam_N%NLW&XtFO|<6w)%JCRlTJG{b{&rtez!Fv
zujYD+czvG12)`Lgxef8Qth>f2X7T=?Sc$VqH?ps8jql-yN;Hi$B9))22z%uioS|$v
z9-+;~{d(<7MFr-nshxB>e7*WFk>3kEHzklx;AWAATPPIq1L3<DS^6u4nI=>aLBgp2
z2;mg9JgEr^J5K&osq6$R(h<BMY*&m>X{QRn?FGl5*nBRF>gHC6TnV-V2pLe%u>ExZ
z8RY7gI_DN|tjSMPn#ez#Pl+7d*}F~T=kJQ*R5Igs>$VI05&hcB0nfch_0fwGk8QmN
zC20+mR~K=xo<d`yG4gGB2emPxTrE(iGOxpQsR*{9WZ{K`4DoFo1pjs_Aoztqonb$T
zG76n3H|D?ac3s1HUsqhSn{i5n5y_&nCKPn<@0Vkgez%$qd&1;}YNc0)&jBT>5`NlZ
zf&dH#%gnWsPn!0bcl&;2M1sJ&^X9Y=Nmg~XN&yL3>_Au_So)gHPKjg|!Vn(C3;lG*
z62fz-E{Cp3;qt2)b_{glgN;A7Ht?t`9pH7I6WnxqcXUj(=q-1ZM@{9z-L!$y&;*@s
zyo7`o%I}w^$o7)8F#@SgO!?_IMR@wC%8`w5v*|$8oWBM<Q$DD6U}dT^^gYhmXMgK<
z%#lb<NH)Dx{mT;9=7*0d%NsQ@uooH`%aO5zUoeV47VZW=uyJAYIaCrB0q;w7Ym<$B
z4Mzhs;6uBVhT7iai8%g%rEviQwL%+@xwV+&?yB<JxVd0VO2zms|1;dXMJOu{gbXu_
zT;VyD^$b5RrKWT3PiMb_$orGtMX$m>e(tO$iw+2I+Q^TFv*#P-Cm>!T4VM_`{rIAH
zy6UNx$9)qz=kKC3Qk!KHI{QToX?J(p1Td$w^@f69s0!l1Ic?~~UGTAjqid;6J!l+W
zU|j$DyoITT(^^+k<`LVRzRg?b2vO5%{c6_cKgQRryw8&2WJuCIi+5$KM6dGcd(ZRA
zi&we|wgu#Sk>0}3L*ePd9?uQ3i>`Y^+OPQcY}>*^sm0+7G4qqLIffS8y4T_}XN!;g
zZQ4c;i(>K*<&vodY`4-UrnB^OW+Wx{ug(Pn#Jt191*wOt7B@=OWaYfV#_u=I#+~UC
z9G`c((k-;d%5loRG@<mBO%;(Gw8;2#N6FLn{FmrUdZ>$V3Rsn-{Gk(#W2D&N!an*h
zeW_oblcp2YQ!^Swwuj3?53C%$GU&z4@9hkJfk_b3zUbb!@}wx1uV%`}uF7j6h6`rc
z+%br=;(u64_<Sb2?Wx9~3RvB+V>dJ>v#)>CQbP9NUghVu`0q15d+W8mF$|O++b9qT
zQR($nRjFVb(CzZ#VINyNE3Z=L+%|`FnP`h*;qc_gp?7r2XTdYI&{BWhu-1mWB1K(h
zi@WdJVp7K8@p>GtYHpYE_!mm+C0#=@3186kr(*~@8gr|f!emo5sM^{3txd&Z)mTeZ
zqeqtBP^uwne*Au{!u={u@!BR|#qe*@4b>Pwl*n4wm8(>d?NPd8&)jcP>dZGTTa+o{
zGG4=mmp>79m>Gh-Guar|y!6%!%slSVNQRVXsu7ydtg~mpd>c^WoG|>_xGaTYeFXLX
zcKF7On7xN^mDpVB{wQ9xj5qJJf%GVwuilDl|Ef17l3(fR8?e84dT);_L<Z^J?i;DM
z>PJGF<2t)BkwpKQm8Qv0z^6LmsOiZYvtY}?k5s5<ZiS-cm_#w$>LQ$*bMVQe>C(=C
zareJ3n&){UH1p8#r!!7tk?m$`W9yQw+a~NX20b|8p@s`0jp3DbnuKl>L^AUA1+$b$
zbp&cqn}_o){r3LdZ?n9_a55z}NQCxSN9f3g$=w_C@*eRg-@QSfLkL`okd@~&M0VVW
zz;w-D*W;+<6vynq3D*NF1Ksbq|GAq@Paw#(8E{f4=ku|H-J)<~_`gpwS9`>=c>8R8
zdZ9!Jh7k5>n!*Tt5ftdI7k!%K*0whn9Wc6sM*VEPj~6PJiw&}Uk!N&mlg?%DO(KKl
zc#^m|zl=NkaJR|-{b?MgZ=_`DpSa2#dqt_+VaHLnYUQK2-b96M*7sO#@x)m9FXT-y
zL)Y)B_UYu-Mf}`|?t49Y8M(U?To(Fk`ZF`+)lh0p8nTfZ(-1Cg4ZN|eO(m@OYK~BC
zFjI|-pfjYUtY_uRK@Qnx`i6^x>}bi==Z2@tj2$C>=RbkB$4M5MSMM~A`MOhN;l~<k
zL#{6*xoQ05tL<)_sEB@651GdC2EwBfD=RI<XI<A}0uFYERoWt-ufEP6H(V5H9BZ-5
zQZmyvTg?dLLCW0dn~4!|H#Ac4&e`{kxE4IsgTTBk!QXV(f9CgnpRhGz#Pw3@klwfJ
zt`@M87kMjGni{Q>{aNo6X<<;q+pu5a>GMEw$r6LG(A$~8<D~LjnF`D$K12DLuA`l$
ze#e{;BZE5hG_cOA=}sxY*Gc!nM5)&KdxR!E4d?#7jNK$8TZS3-r6j=j7$Z`(<-mVK
z{6DgEI%@0Fv_@N;VVj*>(NHoroC~!YZCDHW4!7X#isf2p?g|w6WcDdSED2vTqb@rM
z7TxE+SrPqp*JZun9a2_!uU<8hJ{nt?Sv3~jL@u2^)50}WH_4|6K_6IrLetu>rjZlr
zV$)c!KiF|5YroiizOLhEUar5QQ(Z&Qj!LBAWUS?P`Y&p=2O=&z;H)yKN2U&IyG*AF
zNLspV2qZ<-)7jif-g4)8*ApXwmp=z58phbUcu(#(N5H1Lh3uKxx1q@Ybt&teQIUmy
Tc~&1u_%C8<YG+bm?3wT%X(_W>

literal 0
HcmV?d00001

diff --git a/docs/ips.py b/docs/ips.py
new file mode 100644
index 000000000..d2bf9d644
--- /dev/null
+++ b/docs/ips.py
@@ -0,0 +1,50 @@
+#/bin/python
+
+import os
+import sys
+
+def num_ids(bits, total_bits):
+
+	ret = 8;
+	modulus = 0x100
+	mod_shift = 6 * 32 / total_bits
+	while bits >= 0:
+		ret *= min(1 << bits, 256)
+		ret = min(ret, modulus)
+		bits -= 8
+		modulus <<= mod_shift
+	return ret
+
+f = open('ip_id_v4.dat', 'w+')
+for i in range(0, 33):
+	print >>f, '%d\t%d\t%d' % (i, num_ids(i, 32), 1 << i)
+f.close()
+
+f = open('ip_id_v6.dat', 'w+')
+for i in range(0, 65):
+	print >>f, '%d\t%d\t%d' % (i, num_ids(i, 64), 1 << i)
+f.close()
+
+f = open('ip_id.gnuplot', 'w+')
+
+f.write('''
+set term png size 600,300
+set output "ip_id_v4.png"
+set logscale y
+set title "Number of possible node IDs"
+set ylabel "possible node IDs"
+set xlabel "bits controlled in IPv4"
+set xtics 4
+set grid
+plot "ip_id_v4.dat" using 1:2 title "octet-wise modulus" with lines, \
+	"ip_id_v4.dat" using 1:3 title "hash of IP" with lines
+
+set output "ip_id_v6.png"
+set title "Number of possible node IDs"
+set xlabel "bits controlled in IPv6"
+plot "ip_id_v6.dat" using 1:2 title "octet-wise modulus" with lines, \
+	"ip_id_v6.dat" using 1:3 title "hash of IP" with lines
+''')
+f.close()
+os.system('gnuplot ip_id.gnuplot')
+
diff --git a/include/libtorrent/kademlia/node_id.hpp b/include/libtorrent/kademlia/node_id.hpp
index 8ed4e6616..d709422b2 100644
--- a/include/libtorrent/kademlia/node_id.hpp
+++ b/include/libtorrent/kademlia/node_id.hpp
@@ -56,7 +56,8 @@ bool TORRENT_EXPORT compare_ref(node_id const& n1, node_id const& n2, node_id co
 // usefult for finding out which bucket a node belongs to
 int TORRENT_EXPORT distance_exp(node_id const& n1, node_id const& n2);
 
-node_id TORRENT_EXPORT generate_id(address const& external_ip = address());
+node_id TORRENT_EXPORT generate_id(address const& external_ip);
+node_id TORRENT_EXPORT generate_random_id();
 
 bool TORRENT_EXPORT verify_id(node_id const& nid, address const& source_ip);
 
diff --git a/src/kademlia/node_id.cpp b/src/kademlia/node_id.cpp
index 138aece05..265b817e1 100644
--- a/src/kademlia/node_id.cpp
+++ b/src/kademlia/node_id.cpp
@@ -97,6 +97,60 @@ int distance_exp(node_id const& n1, node_id const& n2)
 
 struct static_ { static_() { std::srand((unsigned int)std::time(0)); } } static__;
 
+node_id generate_id_impl(address const& ip, boost::uint32_t r)
+{
+	boost::uint32_t seed = r & 0x7;
+	uint32_t modulus = 0x100;
+
+	boost::uint8_t* p = 0;
+	int num_octets = 0;
+	int mod_shift = 0;
+	
+	address_v4::bytes_type b4;
+#if TORRENT_USE_IPV6
+	address_v6::bytes_type b6;
+	if (ip.is_v6())
+	{
+		b6 = ip.to_v6().to_bytes();
+		p = &b6[0];
+		num_octets = 8;
+		mod_shift = 3;
+	}
+	else
+#endif
+	{
+		b4 = ip.to_v4().to_bytes();
+		p = &b4[0];
+		num_octets = 4;
+		mod_shift = 6;
+	}
+
+	while (num_octets)
+	{
+		seed *= p[num_octets];
+		seed &= (modulus-1);
+		modulus <<= mod_shift;
+		--num_octets;
+	}
+
+	seed = htonl(seed);
+
+	node_id id = hasher((const char*)&seed, sizeof(seed)).final();
+
+	for (int i = 4; i < 19; ++i) id[i] = rand();
+
+	id[19] = r;
+
+	return id;
+}
+
+node_id generate_random_id()
+{
+	char random[20];
+	for (int i = 0; i < 20; ++i) random[i] = rand();
+	return hasher(random, 20).final();
+}
+
 // verifies whether a node-id matches the IP it's used from
 // returns true if the node-id is OK coming from this source
 // and false otherwise.
@@ -105,29 +159,13 @@ bool verify_id(node_id const& nid, address const& source_ip)
 	// no need to verify local IPs, they would be incorrect anyway
 	if (is_local(source_ip)) return true;
 
-	node_id h;
-	hash_address(source_ip, h);
+	node_id h = generate_id_impl(source_ip, nid[19]);
 	return memcmp(&nid[0], &h[0], 4) == 0;
 }
-	
-node_id generate_id(address const& external_ip)
-{
-	node_id h;
-	char random[20];
-#ifdef _MSC_VER
-	std::generate(random, random + 20, &rand);
-#else
-	std::generate(random, random + 20, &std::rand);
-#endif
-	h = hasher(random, 20).final();
 
-	if (!is_local(external_ip))
-	{
-		node_id ph;
-		hash_address(external_ip, ph);
-		memcpy(&h[0], &ph[0], 4);
-	}
-	return h;
+node_id generate_id(address const& ip)
+{
+	return generate_id_impl(ip, rand());
 }
 
 } }  // namespace libtorrent::dht
diff --git a/src/kademlia/routing_table.cpp b/src/kademlia/routing_table.cpp
index bf26238c3..98519b55c 100644
--- a/src/kademlia/routing_table.cpp
+++ b/src/kademlia/routing_table.cpp
@@ -219,7 +219,7 @@ bool routing_table::need_refresh(node_id& target) const
 	if (now - m_last_refresh < seconds(45)) return false;
 
 	// generate a random node_id within the given bucket
-	target = generate_id(address());
+	target = generate_random_id();
 	int num_bits = std::distance(m_buckets.begin(), i) + 1;
 	node_id mask(0);
 	for (int i = 0; i < num_bits; ++i) mask[i/8] |= 0x80 >> (i&7);
diff --git a/src/kademlia/rpc_manager.cpp b/src/kademlia/rpc_manager.cpp
index a711ec7c8..8b434ce6d 100644
--- a/src/kademlia/rpc_manager.cpp
+++ b/src/kademlia/rpc_manager.cpp
@@ -40,7 +40,7 @@ POSSIBILITY OF SUCH DAMAGE.
 
 #include <libtorrent/io.hpp>
 #include <libtorrent/invariant_check.hpp>
-#include <libtorrent/kademlia/node_id.hpp> // for generate_id
+#include <libtorrent/kademlia/node_id.hpp> // for generate_random_id
 #include <libtorrent/kademlia/rpc_manager.hpp>
 #include <libtorrent/kademlia/logging.hpp>
 #include <libtorrent/kademlia/routing_table.hpp>
@@ -169,7 +169,7 @@ rpc_manager::rpc_manager(node_id const& our_id
 	, m_our_id(our_id)
 	, m_table(table)
 	, m_timer(time_now())
-	, m_random_number(generate_id())
+	, m_random_number(generate_random_id())
 	, m_allocated_observers(0)
 	, m_destructing(false)
 	, m_ext_ip(ext_ip)
diff --git a/src/kademlia/traversal_algorithm.cpp b/src/kademlia/traversal_algorithm.cpp
index 15e6df0ec..4ec62874b 100644
--- a/src/kademlia/traversal_algorithm.cpp
+++ b/src/kademlia/traversal_algorithm.cpp
@@ -107,7 +107,7 @@ void traversal_algorithm::add_entry(node_id const& id, udp::endpoint addr, unsig
 	observer_ptr o = new_observer(ptr, addr, id);
 	if (id.is_all_zeros())
 	{
-		o->set_id(generate_id());
+		o->set_id(generate_random_id());
 		o->flags |= observer::flag_no_id;
 	}