2023-04-15 21:38:47 +00:00
|
|
|
#![allow(unused_variables)]
|
2023-04-16 07:16:53 +00:00
|
|
|
#![allow(unreachable_code)]
|
|
|
|
#![allow(clippy::diverging_sub_expression)]
|
2023-04-15 21:38:47 +00:00
|
|
|
|
2023-08-25 01:55:59 +00:00
|
|
|
use core::{ops::Deref, future::Future};
|
2023-04-23 07:48:50 +00:00
|
|
|
use std::{
|
|
|
|
sync::Arc,
|
2023-04-23 22:55:43 +00:00
|
|
|
time::{SystemTime, Duration},
|
2023-09-25 22:23:39 +00:00
|
|
|
collections::HashMap,
|
2023-04-23 07:48:50 +00:00
|
|
|
};
|
2023-04-17 04:50:56 +00:00
|
|
|
|
2023-08-06 16:38:44 +00:00
|
|
|
use zeroize::{Zeroize, Zeroizing};
|
2023-04-25 07:14:42 +00:00
|
|
|
use rand_core::OsRng;
|
2023-04-16 07:16:53 +00:00
|
|
|
|
2023-09-01 03:39:36 +00:00
|
|
|
use ciphersuite::{
|
|
|
|
group::ff::{Field, PrimeField},
|
|
|
|
Ciphersuite, Ristretto,
|
|
|
|
};
|
|
|
|
use schnorr::SchnorrSignature;
|
2023-09-01 04:03:53 +00:00
|
|
|
use frost::Participant;
|
2023-04-15 21:38:47 +00:00
|
|
|
|
2023-07-18 05:53:51 +00:00
|
|
|
use serai_db::{DbTxn, Db};
|
|
|
|
use serai_env as env;
|
2023-05-10 04:46:51 +00:00
|
|
|
|
2023-08-24 23:06:22 +00:00
|
|
|
use serai_client::{primitives::NetworkId, Public, Serai};
|
2023-04-15 21:38:47 +00:00
|
|
|
|
2023-07-18 05:53:51 +00:00
|
|
|
use message_queue::{Service, client::MessageQueue};
|
|
|
|
|
2023-08-30 21:25:04 +00:00
|
|
|
use futures::stream::StreamExt;
|
2023-09-25 22:23:39 +00:00
|
|
|
use tokio::{
|
|
|
|
sync::{RwLock, mpsc},
|
|
|
|
time::sleep,
|
|
|
|
};
|
2023-04-23 07:48:50 +00:00
|
|
|
|
2023-05-09 02:20:51 +00:00
|
|
|
use ::tributary::{
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 04:28:23 +00:00
|
|
|
ReadWrite, ProvidedError, TransactionKind, TransactionTrait, Block, Tributary, TributaryReader,
|
2023-05-09 02:20:51 +00:00
|
|
|
};
|
2023-04-17 04:50:56 +00:00
|
|
|
|
2023-04-20 09:05:17 +00:00
|
|
|
mod tributary;
|
2023-09-25 19:42:39 +00:00
|
|
|
use crate::tributary::{
|
|
|
|
TributarySpec, SignData, Transaction, TributaryDb, NonceDecider, scanner::RecognizedIdType,
|
|
|
|
};
|
2023-04-16 04:51:56 +00:00
|
|
|
|
2023-04-23 08:31:00 +00:00
|
|
|
mod db;
|
|
|
|
use db::MainDb;
|
|
|
|
|
2023-04-16 04:51:56 +00:00
|
|
|
mod p2p;
|
|
|
|
pub use p2p::*;
|
|
|
|
|
2023-04-25 07:14:42 +00:00
|
|
|
use processor_messages::{key_gen, sign, coordinator, ProcessorMessage};
|
|
|
|
|
2023-05-10 03:44:41 +00:00
|
|
|
pub mod processors;
|
|
|
|
use processors::Processors;
|
2023-04-17 06:10:33 +00:00
|
|
|
|
2023-04-15 21:38:47 +00:00
|
|
|
mod substrate;
|
2023-04-11 23:04:53 +00:00
|
|
|
|
|
|
|
#[cfg(test)]
|
2023-04-23 02:27:12 +00:00
|
|
|
pub mod tests;
|
2023-04-11 23:04:53 +00:00
|
|
|
|
2023-04-24 03:15:15 +00:00
|
|
|
pub struct ActiveTributary<D: Db, P: P2p> {
|
2023-04-24 06:50:03 +00:00
|
|
|
pub spec: TributarySpec,
|
|
|
|
pub tributary: Arc<RwLock<Tributary<D, Transaction, P>>>,
|
2023-04-24 03:15:15 +00:00
|
|
|
}
|
|
|
|
|
2023-05-10 05:19:01 +00:00
|
|
|
type Tributaries<D, P> = HashMap<[u8; 32], ActiveTributary<D, P>>;
|
|
|
|
|
2023-09-25 22:27:16 +00:00
|
|
|
// Adds a tributary into the specified HashMap
|
|
|
|
async fn add_tributary<D: Db, Pro: Processors, P: P2p>(
|
2023-04-24 03:15:15 +00:00
|
|
|
db: D,
|
2023-04-16 07:16:53 +00:00
|
|
|
key: Zeroizing<<Ristretto as Ciphersuite>::F>,
|
2023-09-25 22:27:16 +00:00
|
|
|
processors: &Pro,
|
2023-04-16 07:16:53 +00:00
|
|
|
p2p: P,
|
2023-05-10 05:19:01 +00:00
|
|
|
tributaries: &mut Tributaries<D, P>,
|
2023-04-24 03:15:15 +00:00
|
|
|
spec: TributarySpec,
|
2023-04-24 10:50:40 +00:00
|
|
|
) -> TributaryReader<D, Transaction> {
|
2023-08-01 23:00:48 +00:00
|
|
|
log::info!("adding tributary {:?}", spec.set());
|
|
|
|
|
2023-04-24 03:15:15 +00:00
|
|
|
let tributary = Tributary::<_, Transaction, _>::new(
|
2023-08-30 21:25:04 +00:00
|
|
|
// TODO2: Use a db on a distinct volume to protect against DoS attacks
|
2023-04-24 03:15:15 +00:00
|
|
|
db,
|
|
|
|
spec.genesis(),
|
|
|
|
spec.start_time(),
|
2023-09-25 22:27:16 +00:00
|
|
|
key.clone(),
|
2023-04-24 03:15:15 +00:00
|
|
|
spec.validators(),
|
|
|
|
p2p,
|
|
|
|
)
|
|
|
|
.await
|
|
|
|
.unwrap();
|
|
|
|
|
2023-09-25 22:27:16 +00:00
|
|
|
// Trigger a DKG for the newly added Tributary
|
|
|
|
// If we're rebooting, we'll re-fire this message
|
|
|
|
// This is safe due to the message-queue deduplicating based off the intent system
|
|
|
|
let set = spec.set();
|
|
|
|
processors
|
|
|
|
.send(
|
|
|
|
set.network,
|
|
|
|
processor_messages::CoordinatorMessage::KeyGen(
|
|
|
|
processor_messages::key_gen::CoordinatorMessage::GenerateKey {
|
|
|
|
id: processor_messages::key_gen::KeyGenId { set, attempt: 0 },
|
|
|
|
params: frost::ThresholdParams::new(
|
|
|
|
spec.t(),
|
|
|
|
spec.n(),
|
|
|
|
spec
|
|
|
|
.i(Ristretto::generator() * key.deref())
|
|
|
|
.expect("adding a tribuary for a set we aren't in set for"),
|
|
|
|
)
|
|
|
|
.unwrap(),
|
|
|
|
},
|
|
|
|
),
|
|
|
|
)
|
|
|
|
.await;
|
|
|
|
|
2023-04-24 10:50:40 +00:00
|
|
|
let reader = tributary.reader();
|
|
|
|
|
2023-04-24 03:15:15 +00:00
|
|
|
tributaries.insert(
|
|
|
|
tributary.genesis(),
|
|
|
|
ActiveTributary { spec, tributary: Arc::new(RwLock::new(tributary)) },
|
|
|
|
);
|
2023-04-24 10:50:40 +00:00
|
|
|
|
|
|
|
reader
|
2023-04-24 03:15:15 +00:00
|
|
|
}
|
|
|
|
|
2023-05-10 03:44:41 +00:00
|
|
|
pub async fn scan_substrate<D: Db, Pro: Processors>(
|
2023-04-24 03:15:15 +00:00
|
|
|
db: D,
|
|
|
|
key: Zeroizing<<Ristretto as Ciphersuite>::F>,
|
2023-05-10 03:44:41 +00:00
|
|
|
processors: Pro,
|
2023-08-14 10:08:55 +00:00
|
|
|
serai: Arc<Serai>,
|
2023-09-25 22:23:39 +00:00
|
|
|
new_tributary_channel: mpsc::UnboundedSender<TributarySpec>,
|
2023-04-16 07:16:53 +00:00
|
|
|
) {
|
2023-08-01 23:00:48 +00:00
|
|
|
log::info!("scanning substrate");
|
|
|
|
|
2023-04-24 03:15:15 +00:00
|
|
|
let mut db = substrate::SubstrateDb::new(db);
|
2023-08-02 16:18:50 +00:00
|
|
|
let mut next_substrate_block = db.next_block();
|
2023-04-20 09:05:17 +00:00
|
|
|
|
2023-08-30 21:25:04 +00:00
|
|
|
let new_substrate_block_notifier = {
|
|
|
|
let serai = &serai;
|
|
|
|
move || async move {
|
|
|
|
loop {
|
|
|
|
match serai.newly_finalized_block().await {
|
|
|
|
Ok(sub) => return sub,
|
|
|
|
Err(e) => {
|
|
|
|
log::error!("couldn't communicate with serai node: {e}");
|
|
|
|
sleep(Duration::from_secs(5)).await;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
};
|
|
|
|
let mut substrate_block_notifier = new_substrate_block_notifier().await;
|
|
|
|
|
2023-04-24 03:15:15 +00:00
|
|
|
loop {
|
2023-08-30 21:25:04 +00:00
|
|
|
// await the next block, yet if our notifier had an error, re-create it
|
|
|
|
{
|
2023-08-30 21:57:33 +00:00
|
|
|
let Ok(next_block) =
|
|
|
|
tokio::time::timeout(Duration::from_secs(60), substrate_block_notifier.next()).await
|
|
|
|
else {
|
|
|
|
// Timed out, which may be because Serai isn't finalizing or may be some issue with the
|
|
|
|
// notifier
|
|
|
|
if serai.get_latest_block().await.map(|block| block.number()).ok() ==
|
|
|
|
Some(next_substrate_block.saturating_sub(1))
|
|
|
|
{
|
|
|
|
log::info!("serai hasn't finalized a block in the last 60s...");
|
|
|
|
} else {
|
|
|
|
substrate_block_notifier = new_substrate_block_notifier().await;
|
|
|
|
}
|
|
|
|
continue;
|
|
|
|
};
|
|
|
|
|
|
|
|
// next_block is a Option<Result>
|
|
|
|
if next_block.and_then(Result::ok).is_none() {
|
2023-08-30 21:25:04 +00:00
|
|
|
substrate_block_notifier = new_substrate_block_notifier().await;
|
|
|
|
continue;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2023-04-24 03:15:15 +00:00
|
|
|
match substrate::handle_new_blocks(
|
|
|
|
&mut db,
|
|
|
|
&key,
|
2023-04-26 04:10:06 +00:00
|
|
|
|db: &mut D, spec: TributarySpec| {
|
2023-08-08 19:12:47 +00:00
|
|
|
log::info!("creating new tributary for {:?}", spec.set());
|
|
|
|
|
2023-04-26 04:10:06 +00:00
|
|
|
// Save it to the database
|
|
|
|
MainDb::new(db).add_active_tributary(&spec);
|
|
|
|
|
|
|
|
// Add it to the queue
|
|
|
|
// If we reboot before this is read from the queue, the fact it was saved to the database
|
|
|
|
// means it'll be handled on reboot
|
2023-09-25 22:23:39 +00:00
|
|
|
new_tributary_channel.send(spec).unwrap();
|
2023-04-26 04:10:06 +00:00
|
|
|
},
|
2023-05-10 03:44:41 +00:00
|
|
|
&processors,
|
2023-04-24 03:15:15 +00:00
|
|
|
&serai,
|
2023-08-02 16:18:50 +00:00
|
|
|
&mut next_substrate_block,
|
2023-04-24 03:15:15 +00:00
|
|
|
)
|
|
|
|
.await
|
|
|
|
{
|
2023-08-30 21:25:04 +00:00
|
|
|
Ok(()) => {}
|
2023-04-24 03:15:15 +00:00
|
|
|
Err(e) => {
|
|
|
|
log::error!("couldn't communicate with serai node: {e}");
|
|
|
|
sleep(Duration::from_secs(5)).await;
|
2023-04-20 09:05:17 +00:00
|
|
|
}
|
2023-04-23 07:48:50 +00:00
|
|
|
}
|
2023-04-24 03:15:15 +00:00
|
|
|
}
|
|
|
|
}
|
2023-04-23 22:29:50 +00:00
|
|
|
|
2023-09-25 22:23:39 +00:00
|
|
|
#[allow(clippy::too_many_arguments, clippy::type_complexity)]
|
2023-08-25 01:55:59 +00:00
|
|
|
pub async fn scan_tributaries<
|
|
|
|
D: Db,
|
|
|
|
Pro: Processors,
|
|
|
|
P: P2p,
|
Replace ExternalBlock with Batch
The initial TODO was simply to use one ExternalBlock per all batches in the
block. This would require publishing ExternalBlock after the last batch,
requiring knowing the last batch. While we could add such a pipeline, it'd
require:
1) Initial preprocesses using a distinct message from BatchPreprocess
2) An additional message sent after all BatchPreprocess are sent
Unfortunately, both would require tweaks to the SubstrateSigner which aren't
worth the complexity compared to the solution here, at least, not at this time.
While this will cause, if a Tributary is signing a block whose total batch data
exceeds 25 kB, to use multiple transactions which could be optimized out by
'better' local data pipelining, that's an extreme edge case. Given the temporal
nature of each Tributary, it's also an acceptable edge.
This does no longer achieve synchrony over external blocks accordingly. While
signed batches have synchrony, as they embed their block hash, batches being
signed don't have cryptographic synchrony on their contents. This means
validators who are eclipsed may produce invalid shares, as they sign a
different batch. This will be introduced in a follow-up commit.
2023-09-01 02:48:02 +00:00
|
|
|
FRid: Future<Output = ()>,
|
2023-09-25 19:42:39 +00:00
|
|
|
RID: Clone + Fn(NetworkId, [u8; 32], RecognizedIdType, [u8; 32], u32) -> FRid,
|
2023-08-25 01:55:59 +00:00
|
|
|
>(
|
2023-04-24 03:15:15 +00:00
|
|
|
raw_db: D,
|
|
|
|
key: Zeroizing<<Ristretto as Ciphersuite>::F>,
|
2023-08-25 01:55:59 +00:00
|
|
|
recognized_id: RID,
|
2023-04-24 03:15:15 +00:00
|
|
|
p2p: P,
|
2023-05-10 03:44:41 +00:00
|
|
|
processors: Pro,
|
2023-08-14 10:08:55 +00:00
|
|
|
serai: Arc<Serai>,
|
2023-05-10 05:19:01 +00:00
|
|
|
tributaries: Arc<RwLock<Tributaries<D, P>>>,
|
2023-09-25 22:23:39 +00:00
|
|
|
mut new_tributary_channel: mpsc::UnboundedReceiver<TributarySpec>,
|
2023-04-24 03:15:15 +00:00
|
|
|
) {
|
2023-08-01 23:00:48 +00:00
|
|
|
log::info!("scanning tributaries");
|
|
|
|
|
2023-04-24 10:50:40 +00:00
|
|
|
let mut tributary_readers = vec![];
|
|
|
|
for ActiveTributary { spec, tributary } in tributaries.read().await.values() {
|
|
|
|
tributary_readers.push((spec.clone(), tributary.read().await.reader()));
|
|
|
|
}
|
|
|
|
|
2023-04-24 03:15:15 +00:00
|
|
|
// Handle new Tributary blocks
|
|
|
|
let mut tributary_db = tributary::TributaryDb::new(raw_db.clone());
|
|
|
|
loop {
|
|
|
|
// The following handle_new_blocks function may take an arbitrary amount of time
|
|
|
|
// Accordingly, it may take a long time to acquire a write lock on the tributaries table
|
2023-09-25 22:23:39 +00:00
|
|
|
// By definition of new_tributary_channel, we allow tributaries to be 'added' almost
|
|
|
|
// immediately, meaning the Substrate scanner won't become blocked on this
|
2023-04-24 03:15:15 +00:00
|
|
|
{
|
2023-09-25 22:23:39 +00:00
|
|
|
while let Ok(spec) = new_tributary_channel.try_recv() {
|
2023-04-24 10:50:40 +00:00
|
|
|
let reader = add_tributary(
|
2023-04-24 03:15:15 +00:00
|
|
|
raw_db.clone(),
|
|
|
|
key.clone(),
|
2023-09-25 22:27:16 +00:00
|
|
|
&processors,
|
2023-04-24 03:15:15 +00:00
|
|
|
p2p.clone(),
|
|
|
|
// This is a short-lived write acquisition, which is why it should be fine
|
|
|
|
&mut *tributaries.write().await,
|
2023-04-24 10:50:40 +00:00
|
|
|
spec.clone(),
|
2023-04-24 03:15:15 +00:00
|
|
|
)
|
|
|
|
.await;
|
2023-04-24 10:50:40 +00:00
|
|
|
|
|
|
|
tributary_readers.push((spec, reader));
|
2023-04-24 03:15:15 +00:00
|
|
|
}
|
2023-04-23 07:48:50 +00:00
|
|
|
}
|
|
|
|
|
2023-04-24 10:50:40 +00:00
|
|
|
for (spec, reader) in &tributary_readers {
|
2023-08-25 01:55:59 +00:00
|
|
|
tributary::scanner::handle_new_blocks::<_, _, _, _, _, _, P>(
|
2023-04-24 03:15:15 +00:00
|
|
|
&mut tributary_db,
|
|
|
|
&key,
|
2023-08-25 01:55:59 +00:00
|
|
|
recognized_id.clone(),
|
2023-05-10 03:44:41 +00:00
|
|
|
&processors,
|
2023-08-14 10:08:55 +00:00
|
|
|
|set, tx| {
|
|
|
|
let serai = serai.clone();
|
|
|
|
async move {
|
|
|
|
loop {
|
|
|
|
match serai.publish(&tx).await {
|
2023-08-14 12:18:19 +00:00
|
|
|
Ok(_) => {
|
|
|
|
log::info!("set key pair for {set:?}");
|
2023-08-14 10:53:20 +00:00
|
|
|
break;
|
2023-08-14 10:08:55 +00:00
|
|
|
}
|
|
|
|
// This is assumed to be some ephemeral error due to the assumed fault-free
|
|
|
|
// creation
|
2023-08-30 21:57:33 +00:00
|
|
|
// TODO2: Differentiate connection errors from invariants
|
2023-08-14 10:08:55 +00:00
|
|
|
Err(e) => {
|
2023-08-14 10:53:20 +00:00
|
|
|
// Check if this failed because the keys were already set by someone else
|
|
|
|
if matches!(serai.get_keys(spec.set()).await, Ok(Some(_))) {
|
2023-08-30 21:57:33 +00:00
|
|
|
log::info!("another coordinator set key pair for {:?}", set);
|
2023-08-14 10:53:20 +00:00
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
|
|
|
log::error!("couldn't connect to Serai node to publish set_keys TX: {:?}", e);
|
2023-08-14 10:08:55 +00:00
|
|
|
tokio::time::sleep(Duration::from_secs(10)).await;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
},
|
2023-04-23 20:56:23 +00:00
|
|
|
spec,
|
2023-04-24 10:50:40 +00:00
|
|
|
reader,
|
2023-04-23 20:56:23 +00:00
|
|
|
)
|
|
|
|
.await;
|
2023-04-23 08:31:00 +00:00
|
|
|
}
|
2023-04-23 07:48:50 +00:00
|
|
|
|
2023-04-24 03:15:15 +00:00
|
|
|
// Sleep for half the block time
|
2023-08-30 21:57:33 +00:00
|
|
|
// TODO2: Define a notification system for when a new block occurs
|
2023-04-24 03:15:15 +00:00
|
|
|
sleep(Duration::from_secs((Tributary::<D, Transaction, P>::block_time() / 2).into())).await;
|
|
|
|
}
|
|
|
|
}
|
2023-04-23 22:55:43 +00:00
|
|
|
|
2023-04-24 03:15:15 +00:00
|
|
|
pub async fn heartbeat_tributaries<D: Db, P: P2p>(
|
|
|
|
p2p: P,
|
2023-05-10 05:19:01 +00:00
|
|
|
tributaries: Arc<RwLock<Tributaries<D, P>>>,
|
2023-04-24 03:15:15 +00:00
|
|
|
) {
|
|
|
|
let ten_blocks_of_time =
|
2023-04-24 06:50:03 +00:00
|
|
|
Duration::from_secs((10 * Tributary::<D, Transaction, P>::block_time()).into());
|
2023-04-24 03:15:15 +00:00
|
|
|
|
|
|
|
loop {
|
2023-09-25 22:07:26 +00:00
|
|
|
let mut readers = vec![];
|
|
|
|
for tributary in tributaries.read().await.values() {
|
|
|
|
readers.push(tributary.tributary.read().await.reader());
|
|
|
|
}
|
|
|
|
|
2023-09-25 21:15:36 +00:00
|
|
|
for tributary in &readers {
|
|
|
|
let tip = tributary.tip();
|
|
|
|
let block_time =
|
|
|
|
SystemTime::UNIX_EPOCH + Duration::from_secs(tributary.time_of_block(&tip).unwrap_or(0));
|
2023-04-24 03:15:15 +00:00
|
|
|
|
|
|
|
// Only trigger syncing if the block is more than a minute behind
|
|
|
|
if SystemTime::now() > (block_time + Duration::from_secs(60)) {
|
|
|
|
log::warn!("last known tributary block was over a minute ago");
|
2023-08-08 19:12:47 +00:00
|
|
|
let mut msg = tip.to_vec();
|
|
|
|
// Also include the timestamp so LibP2p doesn't flag this as an old message re-circulating
|
|
|
|
let timestamp = SystemTime::now()
|
|
|
|
.duration_since(SystemTime::UNIX_EPOCH)
|
|
|
|
.expect("system clock is wrong")
|
|
|
|
.as_secs();
|
|
|
|
// Divide by the block time so if multiple parties send a Heartbeat, they're more likely to
|
|
|
|
// overlap
|
|
|
|
let time_unit = timestamp / u64::from(Tributary::<D, Transaction, P>::block_time());
|
|
|
|
msg.extend(time_unit.to_le_bytes());
|
|
|
|
P2p::broadcast(&p2p, P2pMessageKind::Heartbeat(tributary.genesis()), msg).await;
|
2023-04-24 03:15:15 +00:00
|
|
|
}
|
2023-04-23 20:56:23 +00:00
|
|
|
}
|
2023-04-23 07:48:50 +00:00
|
|
|
|
2023-04-24 03:15:15 +00:00
|
|
|
// Only check once every 10 blocks of time
|
|
|
|
sleep(ten_blocks_of_time).await;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
pub async fn handle_p2p<D: Db, P: P2p>(
|
2023-04-24 04:53:15 +00:00
|
|
|
our_key: <Ristretto as Ciphersuite>::G,
|
2023-04-24 03:15:15 +00:00
|
|
|
p2p: P,
|
2023-05-10 05:19:01 +00:00
|
|
|
tributaries: Arc<RwLock<Tributaries<D, P>>>,
|
2023-04-24 03:15:15 +00:00
|
|
|
) {
|
|
|
|
loop {
|
2023-04-24 04:53:15 +00:00
|
|
|
let mut msg = p2p.receive().await;
|
2023-08-31 06:35:50 +00:00
|
|
|
// Spawn a dedicated task to handle this message, ensuring any singularly latent message
|
|
|
|
// doesn't hold everything up
|
2023-09-01 02:09:29 +00:00
|
|
|
// TODO2: Move to one task per tributary (or two. One for Tendermint, one for Tributary)
|
2023-08-31 06:35:50 +00:00
|
|
|
tokio::spawn({
|
|
|
|
let p2p = p2p.clone();
|
|
|
|
let tributaries = tributaries.clone();
|
|
|
|
async move {
|
|
|
|
match msg.kind {
|
|
|
|
P2pMessageKind::KeepAlive => {}
|
|
|
|
|
|
|
|
P2pMessageKind::Tributary(genesis) => {
|
|
|
|
let tributaries = tributaries.read().await;
|
|
|
|
let Some(tributary) = tributaries.get(&genesis) else {
|
|
|
|
log::debug!("received p2p message for unknown network");
|
|
|
|
return;
|
|
|
|
};
|
2023-04-24 04:53:15 +00:00
|
|
|
|
2023-08-31 06:35:50 +00:00
|
|
|
log::trace!("handling message for tributary {:?}", tributary.spec.set());
|
|
|
|
if tributary.tributary.read().await.handle_message(&msg.msg).await {
|
|
|
|
P2p::broadcast(&p2p, msg.kind, msg.msg).await;
|
|
|
|
}
|
2023-04-24 04:53:15 +00:00
|
|
|
}
|
|
|
|
|
2023-08-31 06:35:50 +00:00
|
|
|
// TODO2: Rate limit this per timestamp
|
2023-09-01 04:59:10 +00:00
|
|
|
// And/or slash on Heartbeat which justifies a response, since the node obviously was
|
|
|
|
// offline and we must now use our bandwidth to compensate for them?
|
2023-08-31 06:35:50 +00:00
|
|
|
P2pMessageKind::Heartbeat(genesis) => {
|
|
|
|
if msg.msg.len() != 40 {
|
|
|
|
log::error!("validator sent invalid heartbeat");
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
let tributaries = tributaries.read().await;
|
|
|
|
let Some(tributary) = tributaries.get(&genesis) else {
|
|
|
|
log::debug!("received heartbeat message for unknown network");
|
|
|
|
return;
|
|
|
|
};
|
|
|
|
let tributary_read = tributary.tributary.read().await;
|
|
|
|
|
|
|
|
/*
|
|
|
|
// Have sqrt(n) nodes reply with the blocks
|
|
|
|
let mut responders = (tributary.spec.n() as f32).sqrt().floor() as u64;
|
|
|
|
// Try to have at least 3 responders
|
|
|
|
if responders < 3 {
|
|
|
|
responders = tributary.spec.n().min(3).into();
|
|
|
|
}
|
|
|
|
*/
|
|
|
|
|
|
|
|
// Have up to three nodes respond
|
|
|
|
let responders = u64::from(tributary.spec.n().min(3));
|
|
|
|
|
|
|
|
// Decide which nodes will respond by using the latest block's hash as a mutually agreed
|
|
|
|
// upon entropy source
|
|
|
|
// This isn't a secure source of entropy, yet it's fine for this
|
|
|
|
let entropy = u64::from_le_bytes(tributary_read.tip().await[.. 8].try_into().unwrap());
|
|
|
|
// If n = 10, responders = 3, we want start to be 0 ..= 7 (so the highest is 7, 8, 9)
|
|
|
|
// entropy % (10 + 1) - 3 = entropy % 8 = 0 ..= 7
|
|
|
|
let start =
|
|
|
|
usize::try_from(entropy % (u64::from(tributary.spec.n() + 1) - responders)).unwrap();
|
|
|
|
let mut selected = false;
|
|
|
|
for validator in
|
|
|
|
&tributary.spec.validators()[start .. (start + usize::try_from(responders).unwrap())]
|
|
|
|
{
|
|
|
|
if our_key == validator.0 {
|
|
|
|
selected = true;
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
if !selected {
|
|
|
|
log::debug!("received heartbeat and not selected to respond");
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
log::debug!("received heartbeat and selected to respond");
|
2023-04-24 06:50:03 +00:00
|
|
|
|
2023-08-31 06:35:50 +00:00
|
|
|
let reader = tributary_read.reader();
|
|
|
|
drop(tributary_read);
|
2023-04-24 10:50:40 +00:00
|
|
|
|
2023-08-31 06:35:50 +00:00
|
|
|
let mut latest = msg.msg[.. 32].try_into().unwrap();
|
|
|
|
while let Some(next) = reader.block_after(&latest) {
|
|
|
|
let mut res = reader.block(&next).unwrap().serialize();
|
|
|
|
res.extend(reader.commit(&next).unwrap());
|
|
|
|
// Also include the timestamp used within the Heartbeat
|
|
|
|
res.extend(&msg.msg[32 .. 40]);
|
|
|
|
p2p.send(msg.sender, P2pMessageKind::Block(tributary.spec.genesis()), res).await;
|
|
|
|
latest = next;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
P2pMessageKind::Block(genesis) => {
|
|
|
|
let mut msg_ref: &[u8] = msg.msg.as_ref();
|
|
|
|
let Ok(block) = Block::<Transaction>::read(&mut msg_ref) else {
|
|
|
|
log::error!("received block message with an invalidly serialized block");
|
|
|
|
return;
|
|
|
|
};
|
|
|
|
// Get just the commit
|
|
|
|
msg.msg.drain(.. (msg.msg.len() - msg_ref.len()));
|
|
|
|
msg.msg.drain((msg.msg.len() - 8) ..);
|
2023-04-24 04:53:15 +00:00
|
|
|
|
2023-05-09 20:58:53 +00:00
|
|
|
let tributaries = tributaries.read().await;
|
|
|
|
let Some(tributary) = tributaries.get(&genesis) else {
|
|
|
|
log::debug!("received block message for unknown network");
|
|
|
|
return;
|
|
|
|
};
|
|
|
|
|
2023-08-27 09:01:19 +00:00
|
|
|
let res = tributary.tributary.read().await.sync_block(block, msg.msg).await;
|
2023-05-09 20:58:53 +00:00
|
|
|
log::debug!("received block from {:?}, sync_block returned {}", msg.sender, res);
|
|
|
|
}
|
2023-08-31 06:35:50 +00:00
|
|
|
}
|
2023-04-24 04:53:15 +00:00
|
|
|
}
|
2023-08-31 06:35:50 +00:00
|
|
|
});
|
2023-04-20 09:05:17 +00:00
|
|
|
}
|
2023-04-24 03:15:15 +00:00
|
|
|
}
|
|
|
|
|
2023-09-25 22:07:26 +00:00
|
|
|
pub async fn publish_signed_transaction<D: Db, P: P2p>(
|
2023-05-09 02:20:51 +00:00
|
|
|
tributary: &Tributary<D, Transaction, P>,
|
|
|
|
tx: Transaction,
|
|
|
|
) {
|
2023-08-13 06:21:56 +00:00
|
|
|
log::debug!("publishing transaction {}", hex::encode(tx.hash()));
|
2023-05-09 02:20:51 +00:00
|
|
|
if let TransactionKind::Signed(signed) = tx.kind() {
|
2023-09-25 19:42:39 +00:00
|
|
|
// TODO: What if we try to publish TX with a nonce of 5 when the blockchain only has 3?
|
2023-05-09 02:20:51 +00:00
|
|
|
if tributary
|
|
|
|
.next_nonce(signed.signer)
|
|
|
|
.await
|
|
|
|
.expect("we don't have a nonce, meaning we aren't a participant on this tributary") >
|
|
|
|
signed.nonce
|
|
|
|
{
|
|
|
|
log::warn!("we've already published this transaction. this should only appear on reboot");
|
|
|
|
} else {
|
|
|
|
// We should've created a valid transaction
|
|
|
|
assert!(tributary.add_transaction(tx).await, "created an invalid transaction");
|
|
|
|
}
|
|
|
|
} else {
|
2023-09-25 22:07:26 +00:00
|
|
|
panic!("non-signed transaction passed to publish_signed_transaction");
|
2023-05-09 02:20:51 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2023-05-10 03:44:41 +00:00
|
|
|
pub async fn handle_processors<D: Db, Pro: Processors, P: P2p>(
|
2023-05-09 02:20:51 +00:00
|
|
|
mut db: D,
|
2023-04-25 07:14:42 +00:00
|
|
|
key: Zeroizing<<Ristretto as Ciphersuite>::F>,
|
2023-08-14 10:08:55 +00:00
|
|
|
serai: Arc<Serai>,
|
2023-05-10 03:44:41 +00:00
|
|
|
mut processors: Pro,
|
2023-05-10 05:19:01 +00:00
|
|
|
tributaries: Arc<RwLock<Tributaries<D, P>>>,
|
2023-04-25 07:14:42 +00:00
|
|
|
) {
|
|
|
|
let pub_key = Ristretto::generator() * key.deref();
|
|
|
|
|
|
|
|
loop {
|
2023-09-01 02:09:29 +00:00
|
|
|
// TODO: Dispatch this message to a task dedicated to handling this processor, preventing one
|
2023-09-01 04:16:43 +00:00
|
|
|
// processor from holding up all the others. This would require a peek method be added to the
|
|
|
|
// message-queue (to view multiple future messages at once)
|
|
|
|
// TODO: Do we handle having handled a message, by DB, yet having rebooted before `ack`ing it?
|
|
|
|
// Does the processor?
|
2023-05-10 03:44:41 +00:00
|
|
|
let msg = processors.recv().await;
|
2023-04-25 07:14:42 +00:00
|
|
|
|
2023-05-10 03:51:05 +00:00
|
|
|
// TODO2: This is slow, and only works as long as a network only has a single Tributary
|
|
|
|
// (which means there's a lack of multisig rotation)
|
2023-08-14 10:08:55 +00:00
|
|
|
let spec = {
|
|
|
|
let mut spec = None;
|
2023-05-10 03:51:05 +00:00
|
|
|
for tributary in tributaries.read().await.values() {
|
|
|
|
if tributary.spec.set().network == msg.network {
|
2023-08-14 10:08:55 +00:00
|
|
|
spec = Some(tributary.spec.clone());
|
2023-05-10 03:51:05 +00:00
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
2023-08-27 22:23:45 +00:00
|
|
|
spec.expect("received message from processor we don't have a tributary for")
|
2023-05-10 03:51:05 +00:00
|
|
|
};
|
2023-04-25 07:14:42 +00:00
|
|
|
|
2023-08-14 10:08:55 +00:00
|
|
|
let genesis = spec.genesis();
|
|
|
|
// TODO: We probably want to NOP here, not panic?
|
|
|
|
let my_i = spec.i(pub_key).expect("processor message for network we aren't a validator in");
|
|
|
|
|
2023-08-13 06:21:56 +00:00
|
|
|
let tx = match msg.msg.clone() {
|
2023-05-10 04:46:51 +00:00
|
|
|
ProcessorMessage::KeyGen(inner_msg) => match inner_msg {
|
2023-04-25 07:14:42 +00:00
|
|
|
key_gen::ProcessorMessage::Commitments { id, commitments } => {
|
|
|
|
Some(Transaction::DkgCommitments(id.attempt, commitments, Transaction::empty_signed()))
|
|
|
|
}
|
2023-09-01 04:03:53 +00:00
|
|
|
key_gen::ProcessorMessage::Shares { id, mut shares } => {
|
2023-08-14 10:08:55 +00:00
|
|
|
// Create a MuSig-based machine to inform Substrate of this key generation
|
2023-09-01 04:16:43 +00:00
|
|
|
let nonces = crate::tributary::dkg_confirmation_nonces(&key, &spec, id.attempt);
|
2023-09-01 04:03:53 +00:00
|
|
|
|
|
|
|
let mut tx_shares = Vec::with_capacity(shares.len());
|
|
|
|
for i in 1 ..= spec.n() {
|
|
|
|
let i = Participant::new(i).unwrap();
|
|
|
|
if i == my_i {
|
|
|
|
continue;
|
|
|
|
}
|
|
|
|
tx_shares
|
|
|
|
.push(shares.remove(&i).expect("processor didn't send share for another validator"));
|
|
|
|
}
|
|
|
|
|
2023-08-14 10:08:55 +00:00
|
|
|
Some(Transaction::DkgShares {
|
|
|
|
attempt: id.attempt,
|
2023-09-01 04:03:53 +00:00
|
|
|
shares: tx_shares,
|
2023-08-14 10:08:55 +00:00
|
|
|
confirmation_nonces: nonces,
|
|
|
|
signed: Transaction::empty_signed(),
|
|
|
|
})
|
2023-04-25 07:14:42 +00:00
|
|
|
}
|
2023-07-30 20:11:30 +00:00
|
|
|
key_gen::ProcessorMessage::GeneratedKeyPair { id, substrate_key, network_key } => {
|
2023-05-10 04:46:51 +00:00
|
|
|
assert_eq!(
|
|
|
|
id.set.network, msg.network,
|
2023-07-18 05:53:51 +00:00
|
|
|
"processor claimed to be a different network than it was for GeneratedKeyPair",
|
2023-05-10 04:46:51 +00:00
|
|
|
);
|
|
|
|
// TODO: Also check the other KeyGenId fields
|
|
|
|
|
2023-08-14 10:08:55 +00:00
|
|
|
// Tell the Tributary the key pair, get back the share for the MuSig signature
|
|
|
|
let mut txn = db.txn();
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 04:28:23 +00:00
|
|
|
let share = crate::tributary::generated_key_pair::<D>(
|
2023-08-14 10:08:55 +00:00
|
|
|
&mut txn,
|
|
|
|
&key,
|
|
|
|
&spec,
|
|
|
|
&(Public(substrate_key), network_key.try_into().unwrap()),
|
2023-09-01 04:16:43 +00:00
|
|
|
id.attempt,
|
2023-05-14 02:43:13 +00:00
|
|
|
);
|
2023-08-14 10:08:55 +00:00
|
|
|
txn.commit();
|
2023-05-10 04:46:51 +00:00
|
|
|
|
2023-08-14 10:08:55 +00:00
|
|
|
match share {
|
|
|
|
Ok(share) => {
|
|
|
|
Some(Transaction::DkgConfirmed(id.attempt, share, Transaction::empty_signed()))
|
2023-05-10 04:46:51 +00:00
|
|
|
}
|
2023-08-14 10:08:55 +00:00
|
|
|
Err(p) => todo!("participant {p:?} sent invalid DKG confirmation preprocesses"),
|
2023-05-10 04:46:51 +00:00
|
|
|
}
|
|
|
|
}
|
2023-04-25 07:14:42 +00:00
|
|
|
},
|
|
|
|
ProcessorMessage::Sign(msg) => match msg {
|
|
|
|
sign::ProcessorMessage::Preprocess { id, preprocess } => {
|
2023-05-09 02:20:51 +00:00
|
|
|
if id.attempt == 0 {
|
|
|
|
let mut txn = db.txn();
|
|
|
|
MainDb::<D>::save_first_preprocess(&mut txn, id.id, preprocess);
|
|
|
|
txn.commit();
|
|
|
|
|
|
|
|
None
|
|
|
|
} else {
|
|
|
|
Some(Transaction::SignPreprocess(SignData {
|
|
|
|
plan: id.id,
|
|
|
|
attempt: id.attempt,
|
|
|
|
data: preprocess,
|
|
|
|
signed: Transaction::empty_signed(),
|
|
|
|
}))
|
|
|
|
}
|
2023-04-25 07:14:42 +00:00
|
|
|
}
|
|
|
|
sign::ProcessorMessage::Share { id, share } => Some(Transaction::SignShare(SignData {
|
|
|
|
plan: id.id,
|
|
|
|
attempt: id.attempt,
|
|
|
|
data: share,
|
|
|
|
signed: Transaction::empty_signed(),
|
|
|
|
})),
|
2023-08-27 09:01:19 +00:00
|
|
|
sign::ProcessorMessage::Completed { key: _, id, tx } => {
|
2023-09-01 03:39:36 +00:00
|
|
|
let r = Zeroizing::new(<Ristretto as Ciphersuite>::F::random(&mut OsRng));
|
|
|
|
#[allow(non_snake_case)]
|
|
|
|
let R = <Ristretto as Ciphersuite>::generator() * r.deref();
|
|
|
|
let mut tx = Transaction::SignCompleted {
|
|
|
|
plan: id,
|
|
|
|
tx_hash: tx,
|
|
|
|
first_signer: pub_key,
|
|
|
|
signature: SchnorrSignature { R, s: <Ristretto as Ciphersuite>::F::ZERO },
|
|
|
|
};
|
|
|
|
let signed = SchnorrSignature::sign(&key, r, tx.sign_completed_challenge());
|
|
|
|
match &mut tx {
|
|
|
|
Transaction::SignCompleted { signature, .. } => {
|
|
|
|
*signature = signed;
|
|
|
|
}
|
|
|
|
_ => unreachable!(),
|
|
|
|
}
|
|
|
|
Some(tx)
|
2023-08-27 09:01:19 +00:00
|
|
|
}
|
2023-04-25 07:14:42 +00:00
|
|
|
},
|
2023-05-10 03:44:41 +00:00
|
|
|
ProcessorMessage::Coordinator(inner_msg) => match inner_msg {
|
|
|
|
coordinator::ProcessorMessage::SubstrateBlockAck { network, block, plans } => {
|
|
|
|
assert_eq!(
|
2023-05-10 04:46:51 +00:00
|
|
|
network, msg.network,
|
|
|
|
"processor claimed to be a different network than it was for SubstrateBlockAck",
|
2023-05-10 03:44:41 +00:00
|
|
|
);
|
2023-05-09 02:20:51 +00:00
|
|
|
|
|
|
|
// Safe to use its own txn since this is static and just needs to be written before we
|
|
|
|
// provide SubstrateBlock
|
|
|
|
let mut txn = db.txn();
|
2023-09-25 19:42:39 +00:00
|
|
|
// TODO: This needs to be scoped per multisig
|
2023-05-09 02:20:51 +00:00
|
|
|
TributaryDb::<D>::set_plan_ids(&mut txn, genesis, block, &plans);
|
|
|
|
txn.commit();
|
|
|
|
|
|
|
|
Some(Transaction::SubstrateBlock(block))
|
|
|
|
}
|
2023-08-14 15:57:38 +00:00
|
|
|
coordinator::ProcessorMessage::BatchPreprocess { id, block, preprocess } => {
|
2023-08-25 01:55:59 +00:00
|
|
|
log::info!(
|
|
|
|
"informed of batch (sign ID {}, attempt {}) for block {}",
|
|
|
|
hex::encode(id.id),
|
|
|
|
id.attempt,
|
|
|
|
hex::encode(block),
|
|
|
|
);
|
Replace ExternalBlock with Batch
The initial TODO was simply to use one ExternalBlock per all batches in the
block. This would require publishing ExternalBlock after the last batch,
requiring knowing the last batch. While we could add such a pipeline, it'd
require:
1) Initial preprocesses using a distinct message from BatchPreprocess
2) An additional message sent after all BatchPreprocess are sent
Unfortunately, both would require tweaks to the SubstrateSigner which aren't
worth the complexity compared to the solution here, at least, not at this time.
While this will cause, if a Tributary is signing a block whose total batch data
exceeds 25 kB, to use multiple transactions which could be optimized out by
'better' local data pipelining, that's an extreme edge case. Given the temporal
nature of each Tributary, it's also an acceptable edge.
This does no longer achieve synchrony over external blocks accordingly. While
signed batches have synchrony, as they embed their block hash, batches being
signed don't have cryptographic synchrony on their contents. This means
validators who are eclipsed may produce invalid shares, as they sign a
different batch. This will be introduced in a follow-up commit.
2023-09-01 02:48:02 +00:00
|
|
|
// If this is the first attempt instance, wait until we synchronize around the batch
|
|
|
|
// first
|
2023-05-09 02:20:51 +00:00
|
|
|
if id.attempt == 0 {
|
|
|
|
// Save the preprocess to disk so we can publish it later
|
|
|
|
// This is fine to use its own TX since it's static and just needs to be written
|
|
|
|
// before this message finishes it handling (or with this message's finished handling)
|
|
|
|
let mut txn = db.txn();
|
|
|
|
MainDb::<D>::save_first_preprocess(&mut txn, id.id, preprocess);
|
|
|
|
txn.commit();
|
|
|
|
|
2023-09-01 03:04:37 +00:00
|
|
|
Some(Transaction::Batch(block.0, id.id))
|
2023-05-09 02:20:51 +00:00
|
|
|
} else {
|
|
|
|
Some(Transaction::BatchPreprocess(SignData {
|
|
|
|
plan: id.id,
|
|
|
|
attempt: id.attempt,
|
|
|
|
data: preprocess,
|
|
|
|
signed: Transaction::empty_signed(),
|
|
|
|
}))
|
|
|
|
}
|
2023-04-25 07:14:42 +00:00
|
|
|
}
|
|
|
|
coordinator::ProcessorMessage::BatchShare { id, share } => {
|
|
|
|
Some(Transaction::BatchShare(SignData {
|
|
|
|
plan: id.id,
|
|
|
|
attempt: id.attempt,
|
|
|
|
data: share.to_vec(),
|
|
|
|
signed: Transaction::empty_signed(),
|
|
|
|
}))
|
|
|
|
}
|
|
|
|
},
|
2023-05-10 05:45:42 +00:00
|
|
|
ProcessorMessage::Substrate(inner_msg) => match inner_msg {
|
2023-08-25 00:30:50 +00:00
|
|
|
processor_messages::substrate::ProcessorMessage::Update { batch } => {
|
2023-05-10 05:45:42 +00:00
|
|
|
assert_eq!(
|
|
|
|
batch.batch.network, msg.network,
|
|
|
|
"processor sent us a batch for a different network than it was for",
|
|
|
|
);
|
|
|
|
// TODO: Check this key's key pair's substrate key is authorized to publish batches
|
2023-09-01 02:09:29 +00:00
|
|
|
|
|
|
|
// Save this batch to the disk
|
|
|
|
MainDb::new(&mut db).save_batch(batch);
|
|
|
|
|
|
|
|
/*
|
|
|
|
Use a dedicated task to publish batches due to the latency potentially incurred.
|
|
|
|
|
|
|
|
This does not guarantee the batch has actually been published when the message is
|
|
|
|
`ack`ed to message-queue. Accordingly, if we reboot, these batches would be dropped
|
|
|
|
(as we wouldn't see the `Update` again, triggering our re-attempt to publish).
|
|
|
|
|
|
|
|
The solution to this is to have the task try not to publish the batch which caused it
|
|
|
|
to be spawned, yet all saved batches which have yet to published. This does risk having
|
|
|
|
multiple tasks trying to publish all pending batches, yet these aren't notably complex.
|
|
|
|
*/
|
|
|
|
tokio::spawn({
|
|
|
|
let mut db = db.clone();
|
|
|
|
let serai = serai.clone();
|
|
|
|
let network = msg.network;
|
|
|
|
async move {
|
|
|
|
// Since we have a new batch, publish all batches yet to be published to Serai
|
|
|
|
// This handles the edge-case where batch n+1 is signed before batch n is
|
|
|
|
while let Some(batch) = {
|
|
|
|
// Get the next-to-execute batch ID
|
|
|
|
let next = {
|
|
|
|
let mut first = true;
|
|
|
|
loop {
|
|
|
|
if !first {
|
|
|
|
log::error!(
|
|
|
|
"couldn't connect to Serai node to get the next batch ID for {network:?}",
|
2023-08-27 01:36:13 +00:00
|
|
|
);
|
2023-09-01 02:09:29 +00:00
|
|
|
tokio::time::sleep(Duration::from_secs(5)).await;
|
2023-08-27 01:36:13 +00:00
|
|
|
}
|
2023-09-01 02:09:29 +00:00
|
|
|
first = false;
|
|
|
|
|
|
|
|
let Ok(latest_block) = serai.get_latest_block().await else { continue };
|
|
|
|
let Ok(last) =
|
|
|
|
serai.get_last_batch_for_network(latest_block.hash(), network).await
|
|
|
|
else {
|
|
|
|
continue;
|
|
|
|
};
|
|
|
|
break if let Some(last) = last { last + 1 } else { 0 };
|
2023-08-27 01:36:13 +00:00
|
|
|
}
|
2023-09-01 02:09:29 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
// If we have this batch, attempt to publish it
|
|
|
|
MainDb::new(&mut db).batch(network, next)
|
|
|
|
} {
|
|
|
|
let id = batch.batch.id;
|
|
|
|
let block = batch.batch.block;
|
|
|
|
|
|
|
|
let tx = Serai::execute_batch(batch);
|
|
|
|
// This publish may fail if this transactions already exists in the mempool, which
|
|
|
|
// is possible, or if this batch was already executed on-chain
|
|
|
|
// Either case will have eventual resolution and be handled by the above check on
|
|
|
|
// if this block should execute
|
|
|
|
if serai.publish(&tx).await.is_ok() {
|
|
|
|
log::info!("published batch {network:?} {id} (block {})", hex::encode(block));
|
2023-08-27 01:36:13 +00:00
|
|
|
}
|
2023-07-18 05:53:51 +00:00
|
|
|
}
|
2023-05-10 05:45:42 +00:00
|
|
|
}
|
2023-09-01 02:09:29 +00:00
|
|
|
});
|
2023-05-10 05:45:42 +00:00
|
|
|
|
|
|
|
None
|
|
|
|
}
|
2023-04-25 07:14:42 +00:00
|
|
|
},
|
|
|
|
};
|
|
|
|
|
|
|
|
// If this created a transaction, publish it
|
|
|
|
if let Some(mut tx) = tx {
|
2023-08-27 09:01:19 +00:00
|
|
|
log::trace!("processor message effected transaction {}", hex::encode(tx.hash()));
|
2023-04-25 07:14:42 +00:00
|
|
|
let tributaries = tributaries.read().await;
|
2023-08-27 09:01:19 +00:00
|
|
|
log::trace!("read global tributaries");
|
2023-04-25 07:14:42 +00:00
|
|
|
let Some(tributary) = tributaries.get(&genesis) else {
|
2023-04-25 19:05:58 +00:00
|
|
|
// TODO: This can happen since Substrate tells the Processor to generate commitments
|
|
|
|
// at the same time it tells the Tributary to be created
|
|
|
|
// There's no guarantee the Tributary will have been created though
|
|
|
|
panic!("processor is operating on tributary we don't have");
|
|
|
|
};
|
2023-04-25 07:14:42 +00:00
|
|
|
let tributary = tributary.tributary.read().await;
|
2023-08-27 09:01:19 +00:00
|
|
|
log::trace!("read specific tributary");
|
2023-04-25 07:14:42 +00:00
|
|
|
|
2023-05-09 02:20:51 +00:00
|
|
|
match tx.kind() {
|
|
|
|
TransactionKind::Provided(_) => {
|
2023-08-27 09:01:19 +00:00
|
|
|
log::trace!("providing transaction {}", hex::encode(tx.hash()));
|
2023-05-09 02:20:51 +00:00
|
|
|
let res = tributary.provide_transaction(tx).await;
|
|
|
|
if !(res.is_ok() || (res == Err(ProvidedError::AlreadyProvided))) {
|
|
|
|
panic!("provided an invalid transaction: {res:?}");
|
|
|
|
}
|
|
|
|
}
|
2023-09-02 04:50:54 +00:00
|
|
|
TransactionKind::Unsigned => {
|
|
|
|
log::trace!("publishing unsigned transaction {}", hex::encode(tx.hash()));
|
|
|
|
// Ignores the result since we can't differentiate already in-mempool from already
|
|
|
|
// on-chain from invalid
|
|
|
|
// TODO: Don't ignore the result
|
|
|
|
tributary.add_transaction(tx).await;
|
|
|
|
}
|
2023-05-09 02:20:51 +00:00
|
|
|
TransactionKind::Signed(_) => {
|
2023-08-13 06:21:56 +00:00
|
|
|
log::trace!("getting next nonce for Tributary TX in response to processor message");
|
2023-09-25 19:42:39 +00:00
|
|
|
|
|
|
|
let nonce = loop {
|
|
|
|
let Some(nonce) =
|
|
|
|
NonceDecider::<D>::nonce(&db, genesis, &tx).expect("signed TX didn't have nonce")
|
|
|
|
else {
|
|
|
|
// This can be None if:
|
|
|
|
// 1) We scanned the relevant transaction(s) in a Tributary block
|
|
|
|
// 2) The processor was sent a message and responded
|
|
|
|
// 3) The Tributary TXN has yet to be committed
|
|
|
|
log::warn!("nonce has yet to be saved for processor-instigated transaction");
|
|
|
|
sleep(Duration::from_millis(100)).await;
|
|
|
|
continue;
|
|
|
|
};
|
|
|
|
break nonce;
|
|
|
|
};
|
2023-05-09 02:20:51 +00:00
|
|
|
tx.sign(&mut OsRng, genesis, &key, nonce);
|
|
|
|
|
2023-09-25 22:07:26 +00:00
|
|
|
publish_signed_transaction(&tributary, tx).await;
|
2023-05-09 02:20:51 +00:00
|
|
|
}
|
|
|
|
}
|
2023-04-25 07:14:42 +00:00
|
|
|
}
|
2023-08-13 06:21:56 +00:00
|
|
|
|
|
|
|
processors.ack(msg).await;
|
2023-04-25 07:14:42 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2023-05-10 03:44:41 +00:00
|
|
|
pub async fn run<D: Db, Pro: Processors, P: P2p>(
|
2023-04-26 04:10:06 +00:00
|
|
|
mut raw_db: D,
|
2023-04-24 03:15:15 +00:00
|
|
|
key: Zeroizing<<Ristretto as Ciphersuite>::F>,
|
|
|
|
p2p: P,
|
2023-05-10 03:44:41 +00:00
|
|
|
processors: Pro,
|
2023-04-24 03:15:15 +00:00
|
|
|
serai: Serai,
|
|
|
|
) {
|
2023-08-14 10:08:55 +00:00
|
|
|
let serai = Arc::new(serai);
|
|
|
|
|
2023-09-25 22:23:39 +00:00
|
|
|
let (new_tributary_channel_send, new_tributary_channel_recv) = mpsc::unbounded_channel();
|
|
|
|
|
2023-04-24 03:15:15 +00:00
|
|
|
// Handle new Substrate blocks
|
2023-09-25 22:23:39 +00:00
|
|
|
tokio::spawn(scan_substrate(
|
|
|
|
raw_db.clone(),
|
|
|
|
key.clone(),
|
|
|
|
processors.clone(),
|
|
|
|
serai.clone(),
|
|
|
|
new_tributary_channel_send,
|
|
|
|
));
|
2023-04-24 03:15:15 +00:00
|
|
|
|
|
|
|
// Handle the Tributaries
|
|
|
|
|
|
|
|
// Arc so this can be shared between the Tributary scanner task and the P2P task
|
|
|
|
// Write locks on this may take a while to acquire
|
|
|
|
let tributaries = Arc::new(RwLock::new(HashMap::<[u8; 32], ActiveTributary<D, P>>::new()));
|
|
|
|
|
|
|
|
// Reload active tributaries from the database
|
2023-04-26 04:10:06 +00:00
|
|
|
for spec in MainDb::new(&mut raw_db).active_tributaries().1 {
|
2023-04-24 10:50:40 +00:00
|
|
|
let _ = add_tributary(
|
|
|
|
raw_db.clone(),
|
|
|
|
key.clone(),
|
2023-09-25 22:27:16 +00:00
|
|
|
&processors,
|
2023-04-24 10:50:40 +00:00
|
|
|
p2p.clone(),
|
|
|
|
&mut *tributaries.write().await,
|
|
|
|
spec,
|
|
|
|
)
|
|
|
|
.await;
|
2023-04-24 03:15:15 +00:00
|
|
|
}
|
|
|
|
|
2023-08-25 01:55:59 +00:00
|
|
|
// When we reach synchrony on an event requiring signing, send our preprocess for it
|
|
|
|
let recognized_id = {
|
2023-05-09 02:20:51 +00:00
|
|
|
let raw_db = raw_db.clone();
|
|
|
|
let key = key.clone();
|
|
|
|
let tributaries = tributaries.clone();
|
2023-09-25 19:42:39 +00:00
|
|
|
move |network, genesis, id_type, id, nonce| {
|
2023-08-25 01:55:59 +00:00
|
|
|
let raw_db = raw_db.clone();
|
|
|
|
let key = key.clone();
|
|
|
|
let tributaries = tributaries.clone();
|
|
|
|
async move {
|
2023-08-27 01:09:57 +00:00
|
|
|
// SubstrateBlockAck is fired before Preprocess, creating a race between Tributary ack
|
|
|
|
// of the SubstrateBlock and the sending of all Preprocesses
|
|
|
|
// This waits until the necessary preprocess is available
|
|
|
|
let get_preprocess = |raw_db, id| async move {
|
|
|
|
loop {
|
|
|
|
let Some(preprocess) = MainDb::<D>::first_preprocess(raw_db, id) else {
|
Replace ExternalBlock with Batch
The initial TODO was simply to use one ExternalBlock per all batches in the
block. This would require publishing ExternalBlock after the last batch,
requiring knowing the last batch. While we could add such a pipeline, it'd
require:
1) Initial preprocesses using a distinct message from BatchPreprocess
2) An additional message sent after all BatchPreprocess are sent
Unfortunately, both would require tweaks to the SubstrateSigner which aren't
worth the complexity compared to the solution here, at least, not at this time.
While this will cause, if a Tributary is signing a block whose total batch data
exceeds 25 kB, to use multiple transactions which could be optimized out by
'better' local data pipelining, that's an extreme edge case. Given the temporal
nature of each Tributary, it's also an acceptable edge.
This does no longer achieve synchrony over external blocks accordingly. While
signed batches have synchrony, as they embed their block hash, batches being
signed don't have cryptographic synchrony on their contents. This means
validators who are eclipsed may produce invalid shares, as they sign a
different batch. This will be introduced in a follow-up commit.
2023-09-01 02:48:02 +00:00
|
|
|
assert_eq!(id_type, RecognizedIdType::Plan);
|
2023-08-27 01:09:57 +00:00
|
|
|
sleep(Duration::from_millis(100)).await;
|
|
|
|
continue;
|
|
|
|
};
|
|
|
|
return preprocess;
|
|
|
|
}
|
|
|
|
};
|
|
|
|
|
Replace ExternalBlock with Batch
The initial TODO was simply to use one ExternalBlock per all batches in the
block. This would require publishing ExternalBlock after the last batch,
requiring knowing the last batch. While we could add such a pipeline, it'd
require:
1) Initial preprocesses using a distinct message from BatchPreprocess
2) An additional message sent after all BatchPreprocess are sent
Unfortunately, both would require tweaks to the SubstrateSigner which aren't
worth the complexity compared to the solution here, at least, not at this time.
While this will cause, if a Tributary is signing a block whose total batch data
exceeds 25 kB, to use multiple transactions which could be optimized out by
'better' local data pipelining, that's an extreme edge case. Given the temporal
nature of each Tributary, it's also an acceptable edge.
This does no longer achieve synchrony over external blocks accordingly. While
signed batches have synchrony, as they embed their block hash, batches being
signed don't have cryptographic synchrony on their contents. This means
validators who are eclipsed may produce invalid shares, as they sign a
different batch. This will be introduced in a follow-up commit.
2023-09-01 02:48:02 +00:00
|
|
|
let mut tx = match id_type {
|
|
|
|
RecognizedIdType::Batch => Transaction::BatchPreprocess(SignData {
|
|
|
|
plan: id,
|
|
|
|
attempt: 0,
|
|
|
|
data: get_preprocess(&raw_db, id).await,
|
|
|
|
signed: Transaction::empty_signed(),
|
|
|
|
}),
|
2023-05-09 02:20:51 +00:00
|
|
|
|
Replace ExternalBlock with Batch
The initial TODO was simply to use one ExternalBlock per all batches in the
block. This would require publishing ExternalBlock after the last batch,
requiring knowing the last batch. While we could add such a pipeline, it'd
require:
1) Initial preprocesses using a distinct message from BatchPreprocess
2) An additional message sent after all BatchPreprocess are sent
Unfortunately, both would require tweaks to the SubstrateSigner which aren't
worth the complexity compared to the solution here, at least, not at this time.
While this will cause, if a Tributary is signing a block whose total batch data
exceeds 25 kB, to use multiple transactions which could be optimized out by
'better' local data pipelining, that's an extreme edge case. Given the temporal
nature of each Tributary, it's also an acceptable edge.
This does no longer achieve synchrony over external blocks accordingly. While
signed batches have synchrony, as they embed their block hash, batches being
signed don't have cryptographic synchrony on their contents. This means
validators who are eclipsed may produce invalid shares, as they sign a
different batch. This will be introduced in a follow-up commit.
2023-09-01 02:48:02 +00:00
|
|
|
RecognizedIdType::Plan => Transaction::SignPreprocess(SignData {
|
|
|
|
plan: id,
|
|
|
|
attempt: 0,
|
|
|
|
data: get_preprocess(&raw_db, id).await,
|
|
|
|
signed: Transaction::empty_signed(),
|
|
|
|
}),
|
2023-08-25 01:55:59 +00:00
|
|
|
};
|
|
|
|
|
2023-09-25 19:42:39 +00:00
|
|
|
tx.sign(&mut OsRng, genesis, &key, nonce);
|
|
|
|
|
2023-08-25 01:55:59 +00:00
|
|
|
let tributaries = tributaries.read().await;
|
|
|
|
let Some(tributary) = tributaries.get(&genesis) else {
|
Replace ExternalBlock with Batch
The initial TODO was simply to use one ExternalBlock per all batches in the
block. This would require publishing ExternalBlock after the last batch,
requiring knowing the last batch. While we could add such a pipeline, it'd
require:
1) Initial preprocesses using a distinct message from BatchPreprocess
2) An additional message sent after all BatchPreprocess are sent
Unfortunately, both would require tweaks to the SubstrateSigner which aren't
worth the complexity compared to the solution here, at least, not at this time.
While this will cause, if a Tributary is signing a block whose total batch data
exceeds 25 kB, to use multiple transactions which could be optimized out by
'better' local data pipelining, that's an extreme edge case. Given the temporal
nature of each Tributary, it's also an acceptable edge.
This does no longer achieve synchrony over external blocks accordingly. While
signed batches have synchrony, as they embed their block hash, batches being
signed don't have cryptographic synchrony on their contents. This means
validators who are eclipsed may produce invalid shares, as they sign a
different batch. This will be introduced in a follow-up commit.
2023-09-01 02:48:02 +00:00
|
|
|
panic!("tributary we don't have came to consensus on an Batch");
|
2023-08-25 01:55:59 +00:00
|
|
|
};
|
|
|
|
let tributary = tributary.tributary.read().await;
|
2023-09-25 22:07:26 +00:00
|
|
|
publish_signed_transaction(&tributary, tx).await;
|
2023-05-09 02:20:51 +00:00
|
|
|
}
|
|
|
|
}
|
2023-08-25 01:55:59 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
// Handle new blocks for each Tributary
|
|
|
|
{
|
|
|
|
let raw_db = raw_db.clone();
|
|
|
|
tokio::spawn(scan_tributaries(
|
|
|
|
raw_db,
|
|
|
|
key.clone(),
|
|
|
|
recognized_id,
|
|
|
|
p2p.clone(),
|
|
|
|
processors.clone(),
|
|
|
|
serai.clone(),
|
|
|
|
tributaries.clone(),
|
2023-09-25 22:23:39 +00:00
|
|
|
new_tributary_channel_recv,
|
2023-08-25 01:55:59 +00:00
|
|
|
));
|
|
|
|
}
|
2023-04-24 03:15:15 +00:00
|
|
|
|
|
|
|
// Spawn the heartbeat task, which will trigger syncing if there hasn't been a Tributary block
|
|
|
|
// in a while (presumably because we're behind)
|
|
|
|
tokio::spawn(heartbeat_tributaries(p2p.clone(), tributaries.clone()));
|
|
|
|
|
|
|
|
// Handle P2P messages
|
2023-04-25 07:14:42 +00:00
|
|
|
tokio::spawn(handle_p2p(Ristretto::generator() * key.deref(), p2p, tributaries.clone()));
|
2023-04-15 21:38:47 +00:00
|
|
|
|
2023-04-25 07:14:42 +00:00
|
|
|
// Handle all messages from processors
|
2023-05-10 04:46:51 +00:00
|
|
|
handle_processors(raw_db, key, serai, processors, tributaries).await;
|
2023-04-15 21:38:47 +00:00
|
|
|
}
|
|
|
|
|
2023-04-11 13:21:35 +00:00
|
|
|
#[tokio::main]
|
2023-04-15 21:38:47 +00:00
|
|
|
async fn main() {
|
2023-08-13 08:30:49 +00:00
|
|
|
// Override the panic handler with one which will panic if any tokio task panics
|
|
|
|
{
|
|
|
|
let existing = std::panic::take_hook();
|
|
|
|
std::panic::set_hook(Box::new(move |panic| {
|
|
|
|
existing(panic);
|
|
|
|
const MSG: &str = "exiting the process due to a task panicking";
|
|
|
|
println!("{MSG}");
|
|
|
|
log::error!("{MSG}");
|
|
|
|
std::process::exit(1);
|
|
|
|
}));
|
|
|
|
}
|
|
|
|
|
2023-08-01 23:00:48 +00:00
|
|
|
if std::env::var("RUST_LOG").is_err() {
|
|
|
|
std::env::set_var("RUST_LOG", serai_env::var("RUST_LOG").unwrap_or_else(|| "info".to_string()));
|
|
|
|
}
|
|
|
|
env_logger::init();
|
|
|
|
|
|
|
|
log::info!("starting coordinator service...");
|
|
|
|
|
2023-07-26 01:39:29 +00:00
|
|
|
let db = serai_db::new_rocksdb(&env::var("DB_PATH").expect("path to DB wasn't specified"));
|
2023-04-17 06:10:33 +00:00
|
|
|
|
2023-08-06 16:38:44 +00:00
|
|
|
let key = {
|
|
|
|
let mut key_hex = serai_env::var("SERAI_KEY").expect("Serai key wasn't provided");
|
|
|
|
let mut key_vec = hex::decode(&key_hex).map_err(|_| ()).expect("Serai key wasn't hex-encoded");
|
|
|
|
key_hex.zeroize();
|
|
|
|
if key_vec.len() != 32 {
|
|
|
|
key_vec.zeroize();
|
|
|
|
panic!("Serai key had an invalid length");
|
|
|
|
}
|
|
|
|
let mut key_bytes = [0; 32];
|
|
|
|
key_bytes.copy_from_slice(&key_vec);
|
|
|
|
key_vec.zeroize();
|
|
|
|
let key = Zeroizing::new(<Ristretto as Ciphersuite>::F::from_repr(key_bytes).unwrap());
|
|
|
|
key_bytes.zeroize();
|
|
|
|
key
|
|
|
|
};
|
2023-08-08 19:12:47 +00:00
|
|
|
let p2p = LibP2p::new();
|
2023-04-17 06:10:33 +00:00
|
|
|
|
2023-07-21 18:00:03 +00:00
|
|
|
let processors = Arc::new(MessageQueue::from_env(Service::Coordinator));
|
2023-04-17 06:10:33 +00:00
|
|
|
|
2023-04-16 04:51:56 +00:00
|
|
|
let serai = || async {
|
|
|
|
loop {
|
2023-08-06 16:38:44 +00:00
|
|
|
let Ok(serai) = Serai::new(&format!(
|
2023-08-01 23:00:48 +00:00
|
|
|
"ws://{}:9944",
|
|
|
|
serai_env::var("SERAI_HOSTNAME").expect("Serai hostname wasn't provided")
|
2023-08-06 16:38:44 +00:00
|
|
|
))
|
2023-08-01 23:00:48 +00:00
|
|
|
.await
|
|
|
|
else {
|
2023-04-16 04:51:56 +00:00
|
|
|
log::error!("couldn't connect to the Serai node");
|
2023-04-17 06:10:33 +00:00
|
|
|
sleep(Duration::from_secs(5)).await;
|
2023-08-01 04:47:36 +00:00
|
|
|
continue;
|
2023-04-16 04:51:56 +00:00
|
|
|
};
|
2023-08-01 23:00:48 +00:00
|
|
|
log::info!("made initial connection to Serai node");
|
2023-04-16 04:51:56 +00:00
|
|
|
return serai;
|
|
|
|
}
|
|
|
|
};
|
2023-05-10 03:44:41 +00:00
|
|
|
run(db, key, p2p, processors, serai().await).await
|
2023-04-15 21:38:47 +00:00
|
|
|
}
|