Ecosystem/serai
Ecosystem/serai
1
0
Fork 0
mirror of https://github.com/serai-dex/serai.git synced 2025-02-03 19:56:36 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Litany of bug fixes

Browse source 
Also attempts to make the code more readable while updating/correcting 
documentation.
This commit is contained in:
Luke Parker 2022-10-17 10:37:30 -04:00
parent 5724f52816
commit 8b6eb1172f
No known key found for this signature in database
GPG key ID: F9F1386DB1E119B6
2 changed files with 118 additions and 102 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

201
substrate/tendermint/src/lib.rs
View file

@ -97,7 +97,7 @@ pub struct TendermintMachine<N: Network> {
round: Round, round: Round,
step: Step, step: Step,
locked: Option<(Round, N::Block)>, locked: Option<(Round, <N::Block as Block>::Id)>,
valid: Option<(Round, N::Block)>, valid: Option<(Round, N::Block)>,
timeouts: HashMap<Step, Instant>, timeouts: HashMap<Step, Instant>,
@ -117,7 +117,7 @@ pub struct TendermintHandle<N: Network> {
impl<N: Network + 'static> TendermintMachine<N> { impl<N: Network + 'static> TendermintMachine<N> {
fn timeout(&self, step: Step) -> Instant { fn timeout(&self, step: Step) -> Instant {
let mut round_time = Duration::from_secs(N::BLOCK_TIME.into()); let mut round_time = Duration::from_secs(N::BLOCK_TIME.into());
round_time *= self.round.0 + 1; round_time *= self.round.0.wrapping_add(1);
let step_time = round_time / 3; let step_time = round_time / 3;
let offset = match step { let offset = match step {
@ -136,6 +136,7 @@ impl<N: Network + 'static> TendermintMachine<N> {
let step = data.step(); let step = data.step();
let msg = Message { sender: self.proposer, number: self.number, round: self.round, data }; let msg = Message { sender: self.proposer, number: self.number, round: self.round, data };
let res = self.message(msg.clone()).await.unwrap(); let res = self.message(msg.clone()).await.unwrap();
// 27, 33, 41, 46, 60, 64
self.step = step; // TODO: Before or after the above handling call? self.step = step; // TODO: Before or after the above handling call?
let sig = self.signer.sign(&msg.encode()); let sig = self.signer.sign(&msg.encode());
@ -146,18 +147,17 @@ impl<N: Network + 'static> TendermintMachine<N> {
// 14-21 // 14-21
async fn round_propose(&mut self) { async fn round_propose(&mut self) {
if self.weights.proposer(self.number, self.round) == self.proposer { if self.weights.proposer(self.number, self.round) == self.proposer {
let (round, block) = if let Some((round, block)) = &self.valid { let (round, block) = self
(Some(*round), block.clone()) .valid
} else { .clone()
(None, self.personal_proposal.clone()) .map(|(r, b)| (Some(r), b))
}; .unwrap_or((None, self.personal_proposal.clone()));
debug_assert!(self.broadcast(Data::Proposal(round, block)).await.is_none()); debug_assert!(self.broadcast(Data::Proposal(round, block)).await.is_none());
} else { } else {
self.timeouts.insert(Step::Propose, self.timeout(Step::Propose)); self.timeouts.insert(Step::Propose, self.timeout(Step::Propose));
} }
} }
// 11-13
async fn round(&mut self, round: Round) { async fn round(&mut self, round: Round) {
dbg!(round); dbg!(round);
@ -166,6 +166,7 @@ impl<N: Network + 'static> TendermintMachine<N> {
self.start_time = self.timeout(Step::Precommit); self.start_time = self.timeout(Step::Precommit);
} }
// 11-13
// Clear timeouts // Clear timeouts
self.timeouts = HashMap::new(); self.timeouts = HashMap::new();
@ -174,7 +175,7 @@ impl<N: Network + 'static> TendermintMachine<N> {
self.round_propose().await; self.round_propose().await;
} }
// 1-9 // 53-54
async fn reset(&mut self, proposal: N::Block) { async fn reset(&mut self, proposal: N::Block) {
self.number.0 += 1; self.number.0 += 1;
self.start_time = Instant::now(); self.start_time = Instant::now();
@ -190,7 +191,6 @@ impl<N: Network + 'static> TendermintMachine<N> {
/// Create a new Tendermint machine, for the specified proposer, from the specified block, with /// Create a new Tendermint machine, for the specified proposer, from the specified block, with
/// the specified block as the one to propose next, returning a handle for the machine. /// the specified block as the one to propose next, returning a handle for the machine.
// 10
#[allow(clippy::new_ret_no_self)] #[allow(clippy::new_ret_no_self)]
pub fn new( pub fn new(
network: N, network: N,
@ -205,6 +205,7 @@ impl<N: Network + 'static> TendermintMachine<N> {
let signer = network.signature_scheme(); let signer = network.signature_scheme();
let weights = network.weights(); let weights = network.weights();
let network = Arc::new(RwLock::new(network)); let network = Arc::new(RwLock::new(network));
// 01-10
let mut machine = TendermintMachine { let mut machine = TendermintMachine {
network, network,
signer, signer,
@ -212,6 +213,7 @@ impl<N: Network + 'static> TendermintMachine<N> {
proposer, proposer,
number, number,
// TODO: Use a non-local start time
start_time: Instant::now(), start_time: Instant::now(),
personal_proposal: proposal, personal_proposal: proposal,
@ -246,7 +248,7 @@ impl<N: Network + 'static> TendermintMachine<N> {
// Precommit timeout // Precommit timeout
if t3 { if t3 {
machine.round(Round(machine.round.0 + 1)).await; machine.round(Round(machine.round.0.wrapping_add(1))).await;
} }
// If there's a message, handle it // If there's a message, handle it
@ -272,6 +274,7 @@ impl<N: Network + 'static> TendermintMachine<N> {
let commit = let commit =
Commit { validators, signature: N::SignatureScheme::aggregate(&sigs) }; Commit { validators, signature: N::SignatureScheme::aggregate(&sigs) };
debug_assert!(machine.network.read().await.verify_commit(block.id(), &commit)); debug_assert!(machine.network.read().await.verify_commit(block.id(), &commit));
let proposal = machine.network.write().await.add_block(block, commit); let proposal = machine.network.write().await.add_block(block, commit);
machine.reset(proposal).await machine.reset(proposal).await
} }
@ -289,43 +292,14 @@ impl<N: Network + 'static> TendermintMachine<N> {
} }
} }
// 49-54
fn check_committed(&mut self, round: Round) -> Option<N::Block> {
let proposer = self.weights.proposer(self.number, round);
// Get the proposal
if let Some(proposal) = self.log.get(round, proposer, Step::Propose) {
// Destructure
debug_assert!(matches!(proposal, Data::Proposal(..)));
if let Data::Proposal(_, block) = proposal {
// Check if it has gotten a sufficient amount of precommits
let (participants, weight) = self
.log
// Use a junk signature since message equality is irrelevant to the signature
.message_instances(round, Data::Precommit(Some((block.id(), self.signer.sign(&[])))));
let threshold = self.weights.threshold();
if weight >= threshold {
return Some(block.clone());
}
// 47-48
if participants >= threshold {
let timeout = self.timeout(Step::Precommit);
self.timeouts.entry(Step::Precommit).or_insert(timeout);
}
}
}
None
}
async fn message( async fn message(
&mut self, &mut self,
msg: Message<N::ValidatorId, N::Block, <N::SignatureScheme as SignatureScheme>::Signature>, msg: Message<N::ValidatorId, N::Block, <N::SignatureScheme as SignatureScheme>::Signature>,
) -> Result<Option<N::Block>, TendermintError<N::ValidatorId>> { ) -> Result<Option<N::Block>, TendermintError<N::ValidatorId>> {
// Verify the signature if this is a precommit
if let Data::Precommit(Some((id, sig))) = &msg.data { if let Data::Precommit(Some((id, sig))) = &msg.data {
if !self.signer.verify(msg.sender, id.as_ref(), sig.clone()) { if !self.signer.verify(msg.sender, id.as_ref(), sig.clone()) {
// Since we verified this validator actually sent the message, they're malicious
Err(TendermintError::Malicious(msg.sender))?; Err(TendermintError::Malicious(msg.sender))?;
} }
} }
@ -334,6 +308,7 @@ impl<N: Network + 'static> TendermintMachine<N> {
Err(TendermintError::Temporal)?; Err(TendermintError::Temporal)?;
} }
// Only let the proposer propose
if matches!(msg.data, Data::Proposal(..)) && if matches!(msg.data, Data::Proposal(..)) &&
(msg.sender != self.weights.proposer(msg.number, msg.round)) (msg.sender != self.weights.proposer(msg.number, msg.round))
{ {
@ -345,69 +320,114 @@ impl<N: Network + 'static> TendermintMachine<N> {
} }
// All functions, except for the finalizer and the jump, are locked to the current round // All functions, except for the finalizer and the jump, are locked to the current round
// Run the finalizer to see if it applies // Run the finalizer to see if it applies
// 49-52
if matches!(msg.data, Data::Proposal(..)) || matches!(msg.data, Data::Precommit(_)) { if matches!(msg.data, Data::Proposal(..)) || matches!(msg.data, Data::Precommit(_)) {
let block = self.check_committed(msg.round); let proposer = self.weights.proposer(self.number, msg.round);
if block.is_some() {
return Ok(block); // Get the proposal
if let Some(Data::Proposal(_, block)) = self.log.get(msg.round, proposer, Step::Propose) {
// Check if it has gotten a sufficient amount of precommits
// Use a junk signature since message equality disregards the signature
if self
.log
.has_consensus(msg.round, Data::Precommit(Some((block.id(), self.signer.sign(&[])))))
{
return Ok(Some(block.clone()));
}
} }
} }
// Else, check if we need to jump ahead // Else, check if we need to jump ahead
#[allow(clippy::comparison_chain)] #[allow(clippy::comparison_chain)]
if msg.round.0 < self.round.0 { if msg.round.0 < self.round.0 {
// Prior round, disregard if not finalizing
return Ok(None); return Ok(None);
} else if msg.round.0 > self.round.0 { } else if msg.round.0 > self.round.0 {
// 55-56 // 55-56
// Jump, enabling processing by the below code
if self.log.round_participation(self.round) > self.weights.fault_thresold() { if self.log.round_participation(self.round) > self.weights.fault_thresold() {
self.round(msg.round).await; self.round(msg.round).await;
} else { } else {
// Future round which we aren't ready to jump to, so return for now
return Ok(None); return Ok(None);
} }
} }
let proposal = self let proposer = self.weights.proposer(self.number, self.round);
.log if let Some(Data::Proposal(vr, block)) = self.log.get(self.round, proposer, Step::Propose) {
.get(self.round, self.weights.proposer(self.number, self.round), Step::Propose) // 22-33
.cloned();
if self.step == Step::Propose { if self.step == Step::Propose {
if let Some(proposal) = &proposal { // Delay error handling (triggering a slash) until after we vote.
debug_assert!(matches!(proposal, Data::Proposal(..))); let (valid, err) = match self.network.write().await.validate(block) {
if let Data::Proposal(vr, block) = proposal { Ok(_) => (true, Ok(())),
Err(BlockError::Temporal) => (false, Ok(())),
Err(BlockError::Fatal) => (false, Err(TendermintError::Malicious(proposer))),
};
// Create a raw vote which only requires block validity as a basis for the actual vote.
let raw_vote = Some(block.id()).filter(|_| valid);
// If locked is none, it has a round of -1 according to the protocol. That satisfies
// 23 and 29. If it's some, both are satisfied if they're for the same ID. If it's some
// with different IDs, the function on 22 rejects yet the function on 28 has one other
// condition
let locked = self.locked.as_ref().map(|(_, id)| id == &block.id()).unwrap_or(true);
let mut vote = raw_vote.filter(|_| locked);
if let Some(vr) = vr { if let Some(vr) = vr {
// 28-33 // Malformed message
if (vr.0 < self.round.0) && self.log.has_consensus(*vr, Data::Prevote(Some(block.id()))) if vr.0 >= self.round.0 {
{
debug_assert!(self
.broadcast(Data::Prevote(Some(block.id()).filter(|_| {
self
.locked
.as_ref()
.map(|(round, value)| (round.0 <= vr.0) || (block.id() == value.id()))
.unwrap_or(true)
})))
.await
.is_none());
} else {
Err(TendermintError::Malicious(msg.sender))?; Err(TendermintError::Malicious(msg.sender))?;
} }
if self.log.has_consensus(*vr, Data::Prevote(Some(block.id()))) {
// Allow differing locked values if the proposal has a newer valid round
// This is the other condition described above
if let Some((locked_round, _)) = self.locked.as_ref() {
vote = vote.or_else(|| raw_vote.filter(|_| locked_round.0 <= vr.0));
}
debug_assert!(self.broadcast(Data::Prevote(vote)).await.is_none());
}
} else { } else {
// 22-27 debug_assert!(self.broadcast(Data::Prevote(vote)).await.is_none());
self.network.write().await.validate(block).map_err(|e| match e { }
BlockError::Temporal => TendermintError::Temporal,
BlockError::Fatal => TendermintError::Malicious(msg.sender), err?;
})?; } else if self.valid.as_ref().map(|(round, _)| round != &self.round).unwrap_or(true) {
debug_assert!(self // 36-43
.broadcast(Data::Prevote(Some(block.id()).filter(|_| self.locked.is_none() ||
self.locked.as_ref().map(|locked| locked.1.id()) == Some(block.id())))) // The run once condition is implemented above. Sinve valid will always be set, it not
.await // being set, or only being set historically, means this has yet to be run
.is_none());
if self.log.has_consensus(self.round, Data::Prevote(Some(block.id()))) {
match self.network.write().await.validate(block) {
Ok(_) => (),
Err(BlockError::Temporal) => (),
Err(BlockError::Fatal) => Err(TendermintError::Malicious(proposer))?,
};
self.valid = Some((self.round, block.clone()));
if self.step == Step::Prevote {
self.locked = Some((self.round, block.id()));
return Ok(
self
.broadcast(Data::Precommit(Some((
block.id(),
self.signer.sign(block.id().as_ref()),
))))
.await,
);
} }
} }
} }
} }
if self.step == Step::Prevote { // The paper executes these checks when the step is prevote. Making sure this message warrants
// rerunning these checks is a sane optimization since message instances is a full iteration
// of the round map
if (self.step == Step::Prevote) && matches!(msg.data, Data::Prevote(_)) {
let (participation, weight) = self.log.message_instances(self.round, Data::Prevote(None)); let (participation, weight) = self.log.message_instances(self.round, Data::Prevote(None));
// 34-35 // 34-35
if participation >= self.weights.threshold() { if participation >= self.weights.threshold() {
@ -421,27 +441,12 @@ impl<N: Network + 'static> TendermintMachine<N> {
} }
} }
// 36-43 // 47-48
if (self.valid.is_none()) && ((self.step == Step::Prevote) || (self.step == Step::Precommit)) { if matches!(msg.data, Data::Precommit(_)) &&
if let Some(proposal) = proposal { self.log.has_participation(self.round, Step::Precommit)
debug_assert!(matches!(proposal, Data::Proposal(..))); {
if let Data::Proposal(_, block) = proposal { let timeout = self.timeout(Step::Precommit);
if self.log.has_consensus(self.round, Data::Prevote(Some(block.id()))) { self.timeouts.entry(Step::Precommit).or_insert(timeout);
self.valid = Some((self.round, block.clone()));
if self.step == Step::Prevote {
self.locked = self.valid.clone();
return Ok(
self
.broadcast(Data::Precommit(Some((
block.id(),
self.signer.sign(block.id().as_ref()),
))))
.await,
);
}
}
}
}
} }
Ok(None) Ok(None)

11
substrate/tendermint/src/message_log.rs
View file

@ -85,6 +85,17 @@ impl<N: Network> MessageLog<N> {
weight weight
} }
// Check if a supermajority of nodes have participated on a specific step
pub(crate) fn has_participation(&self, round: Round, step: Step) -> bool {
let mut participating = 0;
for (participant, msgs) in &self.log[&round] {
if msgs.get(&step).is_some() {
participating += self.weights.weight(*participant);
}
}
participating >= self.weights.threshold()
}
// Check if consensus has been reached on a specific piece of data // Check if consensus has been reached on a specific piece of data
pub(crate) fn has_consensus( pub(crate) fn has_consensus(
&self, &self,