2023-08-01 19:00:48 -04:00
|
|
|
#![allow(clippy::needless_pass_by_ref_mut)] // False positives
|
|
|
|
|
|
2023-08-14 06:54:04 -04:00
|
|
|
use std::{
|
|
|
|
|
sync::{OnceLock, Mutex},
|
|
|
|
|
time::Duration,
|
|
|
|
|
fs,
|
|
|
|
|
};
|
2023-08-01 19:00:48 -04:00
|
|
|
|
2023-08-06 12:38:44 -04:00
|
|
|
use zeroize::Zeroizing;
|
|
|
|
|
|
2023-08-01 19:00:48 -04:00
|
|
|
use ciphersuite::{group::ff::PrimeField, Ciphersuite, Ristretto};
|
|
|
|
|
|
|
|
|
|
use serai_client::primitives::NetworkId;
|
|
|
|
|
|
2023-08-06 12:38:44 -04:00
|
|
|
use messages::{CoordinatorMessage, ProcessorMessage};
|
|
|
|
|
use serai_message_queue::{Service, Metadata, client::MessageQueue};
|
|
|
|
|
|
2023-08-21 01:54:25 -04:00
|
|
|
use serai_client::Serai;
|
|
|
|
|
|
2023-08-02 12:18:50 -04:00
|
|
|
use dockertest::{
|
2023-10-23 06:59:38 -04:00
|
|
|
PullPolicy, Image, LogAction, LogPolicy, LogSource, LogOptions, StartPolicy,
|
|
|
|
|
TestBodySpecification, DockerOperations,
|
2023-08-02 12:18:50 -04:00
|
|
|
};
|
2023-08-01 19:00:48 -04:00
|
|
|
|
|
|
|
|
#[cfg(test)]
|
|
|
|
|
mod tests;
|
|
|
|
|
|
|
|
|
|
static UNIQUE_ID: OnceLock<Mutex<u16>> = OnceLock::new();
|
|
|
|
|
|
2023-08-06 12:38:44 -04:00
|
|
|
pub fn coordinator_instance(
|
|
|
|
|
name: &str,
|
|
|
|
|
message_queue_key: <Ristretto as Ciphersuite>::F,
|
2023-10-23 06:59:38 -04:00
|
|
|
) -> TestBodySpecification {
|
2023-08-01 19:00:48 -04:00
|
|
|
serai_docker_tests::build("coordinator".to_string());
|
|
|
|
|
|
2023-10-23 06:59:38 -04:00
|
|
|
TestBodySpecification::with_image(
|
2023-08-01 19:00:48 -04:00
|
|
|
Image::with_repository("serai-dev-coordinator").pull_policy(PullPolicy::Never),
|
|
|
|
|
)
|
2023-10-23 06:59:38 -04:00
|
|
|
.replace_env(
|
2023-08-01 19:00:48 -04:00
|
|
|
[
|
|
|
|
|
("MESSAGE_QUEUE_KEY".to_string(), hex::encode(message_queue_key.to_repr())),
|
|
|
|
|
("DB_PATH".to_string(), "./coordinator-db".to_string()),
|
2023-08-06 12:38:44 -04:00
|
|
|
("SERAI_KEY".to_string(), {
|
|
|
|
|
use serai_client::primitives::insecure_pair_from_name;
|
2023-08-06 13:42:16 -04:00
|
|
|
hex::encode(&insecure_pair_from_name(name).as_ref().secret.to_bytes()[.. 32])
|
2023-08-06 12:38:44 -04:00
|
|
|
}),
|
2023-08-08 15:12:47 -04:00
|
|
|
(
|
|
|
|
|
"RUST_LOG".to_string(),
|
|
|
|
|
"serai_coordinator=trace,".to_string() + "tributary_chain=trace," + "tendermint=trace",
|
|
|
|
|
),
|
2023-08-01 19:00:48 -04:00
|
|
|
]
|
|
|
|
|
.into(),
|
|
|
|
|
)
|
|
|
|
|
}
|
|
|
|
|
|
2023-10-23 06:59:38 -04:00
|
|
|
pub fn serai_composition(name: &str) -> TestBodySpecification {
|
2023-08-01 19:00:48 -04:00
|
|
|
serai_docker_tests::build("serai".to_string());
|
|
|
|
|
|
2023-10-23 06:59:38 -04:00
|
|
|
TestBodySpecification::with_image(
|
2023-08-06 12:38:44 -04:00
|
|
|
Image::with_repository("serai-dev-serai").pull_policy(PullPolicy::Never),
|
|
|
|
|
)
|
2023-10-23 06:59:38 -04:00
|
|
|
.replace_cmd(vec![
|
2023-08-06 12:38:44 -04:00
|
|
|
"serai-node".to_string(),
|
|
|
|
|
"--unsafe-rpc-external".to_string(),
|
|
|
|
|
"--rpc-cors".to_string(),
|
|
|
|
|
"all".to_string(),
|
|
|
|
|
"--chain".to_string(),
|
|
|
|
|
"local".to_string(),
|
|
|
|
|
format!("--{}", name.to_lowercase()),
|
2023-10-23 06:59:38 -04:00
|
|
|
])
|
|
|
|
|
.set_publish_all_ports(true)
|
2023-08-01 19:00:48 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
pub type Handles = (String, String, String);
|
2023-10-23 06:59:38 -04:00
|
|
|
pub fn coordinator_stack(
|
|
|
|
|
name: &str,
|
|
|
|
|
) -> (Handles, <Ristretto as Ciphersuite>::F, Vec<TestBodySpecification>) {
|
2023-08-01 19:00:48 -04:00
|
|
|
let serai_composition = serai_composition(name);
|
|
|
|
|
|
|
|
|
|
let (coord_key, message_queue_keys, message_queue_composition) =
|
|
|
|
|
serai_message_queue_tests::instance();
|
|
|
|
|
|
2023-08-06 12:38:44 -04:00
|
|
|
let coordinator_composition = coordinator_instance(name, coord_key);
|
2023-08-01 19:00:48 -04:00
|
|
|
|
|
|
|
|
// Give every item in this stack a unique ID
|
|
|
|
|
// Uses a Mutex as we can't generate a 8-byte random ID without hitting hostname length limits
|
2023-08-14 06:54:04 -04:00
|
|
|
let (first, unique_id) = {
|
2023-08-01 19:00:48 -04:00
|
|
|
let unique_id_mutex = UNIQUE_ID.get_or_init(|| Mutex::new(0));
|
|
|
|
|
let mut unique_id_lock = unique_id_mutex.lock().unwrap();
|
2023-08-14 06:54:04 -04:00
|
|
|
let first = *unique_id_lock == 0;
|
2023-10-23 06:59:38 -04:00
|
|
|
let unique_id = *unique_id_lock;
|
2023-08-01 19:00:48 -04:00
|
|
|
*unique_id_lock += 1;
|
2023-08-14 06:54:04 -04:00
|
|
|
(first, unique_id)
|
2023-08-01 19:00:48 -04:00
|
|
|
};
|
|
|
|
|
|
2023-08-14 06:54:04 -04:00
|
|
|
let logs_path = [std::env::current_dir().unwrap().to_str().unwrap(), ".test-logs", "coordinator"]
|
|
|
|
|
.iter()
|
|
|
|
|
.collect::<std::path::PathBuf>();
|
|
|
|
|
if first {
|
|
|
|
|
let _ = fs::remove_dir_all(&logs_path);
|
|
|
|
|
fs::create_dir_all(&logs_path).expect("couldn't create logs directory");
|
|
|
|
|
assert!(
|
|
|
|
|
fs::read_dir(&logs_path).expect("couldn't read the logs folder").next().is_none(),
|
|
|
|
|
"logs folder wasn't empty, despite removing it at the start of the run",
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
let logs_path = logs_path.to_str().unwrap().to_string();
|
|
|
|
|
|
2023-08-01 19:00:48 -04:00
|
|
|
let mut compositions = vec![];
|
|
|
|
|
let mut handles = vec![];
|
2023-10-23 06:59:38 -04:00
|
|
|
for (name, composition) in [
|
|
|
|
|
("serai_node", serai_composition),
|
|
|
|
|
("message_queue", message_queue_composition),
|
|
|
|
|
("coordinator", coordinator_composition),
|
|
|
|
|
] {
|
|
|
|
|
let handle = format!("coordinator-{name}-{unique_id}");
|
2023-08-14 06:54:04 -04:00
|
|
|
|
2023-08-01 19:00:48 -04:00
|
|
|
compositions.push(
|
2023-10-23 06:59:38 -04:00
|
|
|
composition.set_start_policy(StartPolicy::Strict).set_handle(handle.clone()).set_log_options(
|
|
|
|
|
Some(LogOptions {
|
2023-08-27 17:51:36 -04:00
|
|
|
action: if std::env::var("GITHUB_CI") == Ok("true".to_string()) {
|
|
|
|
|
LogAction::Forward
|
|
|
|
|
} else {
|
|
|
|
|
LogAction::ForwardToFile { path: logs_path.clone() }
|
|
|
|
|
},
|
2023-08-14 06:54:04 -04:00
|
|
|
policy: LogPolicy::Always,
|
2023-08-01 19:00:48 -04:00
|
|
|
source: LogSource::Both,
|
2023-10-23 06:59:38 -04:00
|
|
|
}),
|
|
|
|
|
),
|
2023-08-01 19:00:48 -04:00
|
|
|
);
|
2023-08-14 06:54:04 -04:00
|
|
|
|
2023-10-23 06:59:38 -04:00
|
|
|
handles.push(handle);
|
2023-08-01 19:00:48 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let coordinator_composition = compositions.last_mut().unwrap();
|
2023-10-23 06:59:38 -04:00
|
|
|
coordinator_composition.inject_container_name(handles[0].clone(), "SERAI_HOSTNAME");
|
|
|
|
|
coordinator_composition.inject_container_name(handles[1].clone(), "MESSAGE_QUEUE_RPC");
|
2023-08-01 19:00:48 -04:00
|
|
|
|
|
|
|
|
(
|
2023-10-23 06:59:38 -04:00
|
|
|
(handles[0].clone(), handles[1].clone(), handles[2].clone()),
|
2023-08-06 12:38:44 -04:00
|
|
|
message_queue_keys[&NetworkId::Bitcoin],
|
2023-08-01 19:00:48 -04:00
|
|
|
compositions,
|
|
|
|
|
)
|
|
|
|
|
}
|
2023-08-06 12:38:44 -04:00
|
|
|
|
|
|
|
|
pub struct Processor {
|
|
|
|
|
network: NetworkId,
|
|
|
|
|
|
2023-08-21 01:54:25 -04:00
|
|
|
serai_rpc: String,
|
2023-08-06 12:38:44 -04:00
|
|
|
#[allow(unused)]
|
|
|
|
|
message_queue_handle: String,
|
|
|
|
|
#[allow(unused)]
|
|
|
|
|
coordinator_handle: String,
|
|
|
|
|
|
|
|
|
|
next_send_id: u64,
|
|
|
|
|
next_recv_id: u64,
|
|
|
|
|
queue: MessageQueue,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl Processor {
|
|
|
|
|
pub async fn new(
|
|
|
|
|
network: NetworkId,
|
|
|
|
|
ops: &DockerOperations,
|
|
|
|
|
handles: (String, String, String),
|
|
|
|
|
processor_key: <Ristretto as Ciphersuite>::F,
|
|
|
|
|
) -> Processor {
|
|
|
|
|
let message_queue_rpc = ops.handle(&handles.1).host_port(2287).unwrap();
|
|
|
|
|
let message_queue_rpc = format!("{}:{}", message_queue_rpc.0, message_queue_rpc.1);
|
|
|
|
|
|
|
|
|
|
// Sleep until the Substrate RPC starts
|
|
|
|
|
let serai_rpc = ops.handle(&handles.0).host_port(9944).unwrap();
|
|
|
|
|
let serai_rpc = format!("ws://{}:{}", serai_rpc.0, serai_rpc.1);
|
|
|
|
|
// Bound execution to 60 seconds
|
|
|
|
|
for _ in 0 .. 60 {
|
2023-08-14 06:54:04 -04:00
|
|
|
tokio::time::sleep(Duration::from_secs(1)).await;
|
2023-08-21 01:54:25 -04:00
|
|
|
let Ok(client) = Serai::new(&serai_rpc).await else { continue };
|
2023-10-14 03:10:32 -04:00
|
|
|
if client.latest_block_hash().await.is_err() {
|
2023-08-06 12:38:44 -04:00
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// The Serai RPC may or may not be started
|
|
|
|
|
// Assume it is and continue, so if it's a few seconds late, it's still within tolerance
|
|
|
|
|
|
|
|
|
|
Processor {
|
|
|
|
|
network,
|
|
|
|
|
|
2023-08-21 01:54:25 -04:00
|
|
|
serai_rpc,
|
2023-08-06 12:38:44 -04:00
|
|
|
message_queue_handle: handles.1,
|
|
|
|
|
coordinator_handle: handles.2,
|
|
|
|
|
|
|
|
|
|
next_send_id: 0,
|
|
|
|
|
next_recv_id: 0,
|
|
|
|
|
queue: MessageQueue::new(
|
|
|
|
|
Service::Processor(network),
|
|
|
|
|
message_queue_rpc,
|
|
|
|
|
Zeroizing::new(processor_key),
|
|
|
|
|
),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2023-08-21 01:54:25 -04:00
|
|
|
pub async fn serai(&self) -> Serai {
|
|
|
|
|
Serai::new(&self.serai_rpc).await.unwrap()
|
|
|
|
|
}
|
|
|
|
|
|
2023-09-27 12:20:57 -04:00
|
|
|
/// Send a message to the coordinator as a processor.
|
2023-08-06 12:38:44 -04:00
|
|
|
pub async fn send_message(&mut self, msg: impl Into<ProcessorMessage>) {
|
|
|
|
|
let msg: ProcessorMessage = msg.into();
|
|
|
|
|
self
|
|
|
|
|
.queue
|
|
|
|
|
.queue(
|
|
|
|
|
Metadata {
|
|
|
|
|
from: Service::Processor(self.network),
|
|
|
|
|
to: Service::Coordinator,
|
|
|
|
|
intent: msg.intent(),
|
|
|
|
|
},
|
|
|
|
|
serde_json::to_string(&msg).unwrap().into_bytes(),
|
|
|
|
|
)
|
|
|
|
|
.await;
|
|
|
|
|
self.next_send_id += 1;
|
|
|
|
|
}
|
|
|
|
|
|
2023-09-27 12:20:57 -04:00
|
|
|
/// Receive a message from the coordinator as a processor.
|
2023-08-06 12:38:44 -04:00
|
|
|
pub async fn recv_message(&mut self) -> CoordinatorMessage {
|
Add a cosigning protocol to ensure finalizations are unique (#433)
* Add a function to deterministically decide which Serai blocks should be co-signed
Has a 5 minute latency between co-signs, also used as the maximal latency
before a co-sign is started.
* Get all active tributaries we're in at a specific block
* Add and route CosignSubstrateBlock, a new provided TX
* Split queued cosigns per network
* Rename BatchSignId to SubstrateSignId
* Add SubstrateSignableId, a meta-type for either Batch or Block, and modularize around it
* Handle the CosignSubstrateBlock provided TX
* Revert substrate_signer.rs to develop (and patch to still work)
Due to SubstrateSigner moving when the prior multisig closes, yet cosigning
occurring with the most recent key, a single SubstrateSigner can be reused.
We could manage multiple SubstrateSigners, yet considering the much lower
specifications for cosigning, I'd rather treat it distinctly.
* Route cosigning through the processor
* Add note to rename SubstrateSigner post-PR
I don't want to do so now in order to preserve the diff's clarity.
* Implement cosign evaluation into the coordinator
* Get tests to compile
* Bug fixes, mark blocks without cosigners available as cosigned
* Correct the ID Batch preprocesses are saved under, add log statements
* Create a dedicated function to handle cosigns
* Correct the flow around Batch verification/queueing
Verifying `Batch`s could stall when a `Batch` was signed before its
predecessors/before the block it's contained in was cosigned (the latter being
inevitable as we can't sign a block containing a signed batch before signing
the batch).
Now, Batch verification happens on a distinct async task in order to not block
the handling of processor messages. This task is the sole caller of verify in
order to ensure last_verified_batch isn't unexpectedly mutated.
When the processor message handler needs to access it, or needs to queue a
Batch, it associates the DB TXN with a lock preventing the other task from
doing so.
This lock, as currently implemented, is a poor and inefficient design. It
should be modified to the pattern used for cosign management. Additionally, a
new primitive of a DB-backed channel may be immensely valuable.
Fixes a standing potential deadlock and a deadlock introduced with the
cosigning protocol.
* Working full-stack tests
After the last commit, this only required extending a timeout.
* Replace "co-sign" with "cosign" to make finding text easier
* Update the coordinator tests to support cosigning
* Inline prior_batch calculation to prevent panic on rotation
Noticed when doing a final review of the branch.
2023-11-15 16:57:21 -05:00
|
|
|
// Set a timeout of an entire 6 minutes as cosigning may be delayed by up to 5 minutes
|
|
|
|
|
let msg =
|
|
|
|
|
tokio::time::timeout(Duration::from_secs(6 * 60), self.queue.next(Service::Coordinator))
|
|
|
|
|
.await
|
|
|
|
|
.unwrap();
|
2023-08-06 12:38:44 -04:00
|
|
|
assert_eq!(msg.from, Service::Coordinator);
|
|
|
|
|
assert_eq!(msg.id, self.next_recv_id);
|
2023-09-27 12:20:57 -04:00
|
|
|
self.queue.ack(Service::Coordinator, msg.id).await;
|
2023-08-06 12:38:44 -04:00
|
|
|
self.next_recv_id += 1;
|
|
|
|
|
serde_json::from_slice(&msg.msg).unwrap()
|
|
|
|
|
}
|
|
|
|
|
}
|