2023-04-12 16:06:14 -04:00
|
|
|
use core::ops::Deref;
|
2023-04-23 23:15:15 -04:00
|
|
|
use std::{sync::Arc, collections::HashMap};
|
2023-04-12 18:04:28 -04:00
|
|
|
|
|
|
|
|
use async_trait::async_trait;
|
2023-04-12 16:06:14 -04:00
|
|
|
|
|
|
|
|
use subtle::ConstantTimeEq;
|
|
|
|
|
use zeroize::{Zeroize, Zeroizing};
|
|
|
|
|
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 07:28:23 +03:00
|
|
|
use rand::{SeedableRng, seq::SliceRandom, rngs::OsRng};
|
2023-04-13 18:43:03 -04:00
|
|
|
use rand_chacha::ChaCha12Rng;
|
|
|
|
|
|
2023-04-12 16:06:14 -04:00
|
|
|
use transcript::{Transcript, RecommendedTranscript};
|
|
|
|
|
|
|
|
|
|
use ciphersuite::{
|
|
|
|
|
group::{
|
|
|
|
|
GroupEncoding,
|
|
|
|
|
ff::{Field, PrimeField},
|
|
|
|
|
},
|
|
|
|
|
Ciphersuite, Ristretto,
|
|
|
|
|
};
|
|
|
|
|
use schnorr::SchnorrSignature;
|
|
|
|
|
|
2023-04-14 14:11:19 -04:00
|
|
|
use serai_db::Db;
|
|
|
|
|
|
2023-04-12 18:04:28 -04:00
|
|
|
use scale::{Encode, Decode};
|
|
|
|
|
use tendermint::{
|
|
|
|
|
SignedMessageFor,
|
|
|
|
|
ext::{
|
|
|
|
|
BlockNumber, RoundNumber, Signer as SignerTrait, SignatureScheme, Weights, Block as BlockTrait,
|
2023-04-14 14:11:19 -04:00
|
|
|
BlockError as TendermintBlockError, Commit, Network,
|
2023-04-12 18:04:28 -04:00
|
|
|
},
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 07:28:23 +03:00
|
|
|
SlashEvent,
|
2023-04-12 18:04:28 -04:00
|
|
|
};
|
|
|
|
|
|
2023-04-23 23:15:15 -04:00
|
|
|
use tokio::{
|
|
|
|
|
sync::RwLock,
|
|
|
|
|
time::{Duration, sleep},
|
|
|
|
|
};
|
2023-04-12 18:04:28 -04:00
|
|
|
|
2023-04-13 18:43:03 -04:00
|
|
|
use crate::{
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 07:28:23 +03:00
|
|
|
TENDERMINT_MESSAGE, TRANSACTION_MESSAGE, BLOCK_MESSAGE, ReadWrite,
|
|
|
|
|
transaction::Transaction as TransactionTrait, Transaction, BlockHeader, Block, BlockError,
|
|
|
|
|
Blockchain, P2p, tendermint::tx::SlashVote,
|
2023-04-13 18:43:03 -04:00
|
|
|
};
|
2023-04-12 16:06:14 -04:00
|
|
|
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 07:28:23 +03:00
|
|
|
pub mod tx;
|
|
|
|
|
use tx::{TendermintTx, VoteSignature};
|
|
|
|
|
|
2023-04-12 16:06:14 -04:00
|
|
|
fn challenge(
|
|
|
|
|
genesis: [u8; 32],
|
|
|
|
|
key: [u8; 32],
|
|
|
|
|
nonce: &[u8],
|
|
|
|
|
msg: &[u8],
|
|
|
|
|
) -> <Ristretto as Ciphersuite>::F {
|
|
|
|
|
let mut transcript = RecommendedTranscript::new(b"Tributary Chain Tendermint Message");
|
|
|
|
|
transcript.append_message(b"genesis", genesis);
|
|
|
|
|
transcript.append_message(b"key", key);
|
|
|
|
|
transcript.append_message(b"nonce", nonce);
|
|
|
|
|
transcript.append_message(b"message", msg);
|
|
|
|
|
|
|
|
|
|
<Ristretto as Ciphersuite>::F::from_bytes_mod_order_wide(&transcript.challenge(b"schnorr").into())
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(Clone, PartialEq, Eq, Debug)]
|
2023-04-24 02:44:21 -04:00
|
|
|
pub struct Signer {
|
2023-04-12 16:06:14 -04:00
|
|
|
genesis: [u8; 32],
|
|
|
|
|
key: Zeroizing<<Ristretto as Ciphersuite>::F>,
|
|
|
|
|
}
|
|
|
|
|
|
2023-04-13 18:43:03 -04:00
|
|
|
impl Signer {
|
|
|
|
|
pub(crate) fn new(genesis: [u8; 32], key: Zeroizing<<Ristretto as Ciphersuite>::F>) -> Signer {
|
|
|
|
|
Signer { genesis, key }
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2023-04-12 18:04:28 -04:00
|
|
|
#[async_trait]
|
2023-04-12 16:06:14 -04:00
|
|
|
impl SignerTrait for Signer {
|
|
|
|
|
type ValidatorId = [u8; 32];
|
|
|
|
|
type Signature = [u8; 64];
|
|
|
|
|
|
|
|
|
|
/// Returns the validator's current ID. Returns None if they aren't a current validator.
|
|
|
|
|
async fn validator_id(&self) -> Option<Self::ValidatorId> {
|
|
|
|
|
Some((Ristretto::generator() * self.key.deref()).to_bytes())
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Sign a signature with the current validator's private key.
|
|
|
|
|
async fn sign(&self, msg: &[u8]) -> Self::Signature {
|
|
|
|
|
let mut nonce = Zeroizing::new(RecommendedTranscript::new(b"Tributary Chain Tendermint Nonce"));
|
|
|
|
|
nonce.append_message(b"genesis", self.genesis);
|
|
|
|
|
nonce.append_message(b"key", Zeroizing::new(self.key.deref().to_repr()).as_ref());
|
|
|
|
|
nonce.append_message(b"message", msg);
|
|
|
|
|
let mut nonce = nonce.challenge(b"nonce");
|
|
|
|
|
|
|
|
|
|
let mut nonce_arr = [0; 64];
|
|
|
|
|
nonce_arr.copy_from_slice(nonce.as_ref());
|
|
|
|
|
|
|
|
|
|
let nonce_ref: &mut [u8] = nonce.as_mut();
|
|
|
|
|
nonce_ref.zeroize();
|
|
|
|
|
let nonce_ref: &[u8] = nonce.as_ref();
|
|
|
|
|
assert_eq!(nonce_ref, [0; 64].as_ref());
|
|
|
|
|
|
|
|
|
|
let nonce =
|
|
|
|
|
Zeroizing::new(<Ristretto as Ciphersuite>::F::from_bytes_mod_order_wide(&nonce_arr));
|
|
|
|
|
nonce_arr.zeroize();
|
|
|
|
|
|
|
|
|
|
assert!(!bool::from(nonce.ct_eq(&<Ristretto as Ciphersuite>::F::ZERO)));
|
|
|
|
|
|
|
|
|
|
let challenge = challenge(
|
|
|
|
|
self.genesis,
|
|
|
|
|
(Ristretto::generator() * self.key.deref()).to_bytes(),
|
|
|
|
|
(Ristretto::generator() * nonce.deref()).to_bytes().as_ref(),
|
|
|
|
|
msg,
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
let sig = SchnorrSignature::<Ristretto>::sign(&self.key, nonce, challenge).serialize();
|
|
|
|
|
|
|
|
|
|
let mut res = [0; 64];
|
|
|
|
|
res.copy_from_slice(&sig);
|
|
|
|
|
res
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(Clone, PartialEq, Eq, Debug)]
|
2023-04-24 02:44:21 -04:00
|
|
|
pub struct Validators {
|
2023-04-12 16:06:14 -04:00
|
|
|
genesis: [u8; 32],
|
2023-04-13 18:43:03 -04:00
|
|
|
total_weight: u64,
|
2023-04-12 18:04:28 -04:00
|
|
|
weights: HashMap<[u8; 32], u64>,
|
|
|
|
|
robin: Vec<[u8; 32]>,
|
2023-04-12 16:06:14 -04:00
|
|
|
}
|
|
|
|
|
|
2023-04-13 18:43:03 -04:00
|
|
|
impl Validators {
|
|
|
|
|
pub(crate) fn new(
|
|
|
|
|
genesis: [u8; 32],
|
2023-04-22 10:49:52 -04:00
|
|
|
validators: Vec<(<Ristretto as Ciphersuite>::G, u64)>,
|
2023-04-14 15:51:43 -04:00
|
|
|
) -> Option<Validators> {
|
2023-04-13 18:43:03 -04:00
|
|
|
let mut total_weight = 0;
|
|
|
|
|
let mut weights = HashMap::new();
|
|
|
|
|
|
|
|
|
|
let mut transcript = RecommendedTranscript::new(b"Round Robin Randomization");
|
|
|
|
|
let mut robin = vec![];
|
|
|
|
|
for (validator, weight) in validators {
|
|
|
|
|
let validator = validator.to_bytes();
|
2023-04-14 15:51:43 -04:00
|
|
|
if weight == 0 {
|
|
|
|
|
return None;
|
|
|
|
|
}
|
2023-04-13 18:43:03 -04:00
|
|
|
total_weight += weight;
|
|
|
|
|
weights.insert(validator, weight);
|
|
|
|
|
|
|
|
|
|
transcript.append_message(b"validator", validator);
|
|
|
|
|
transcript.append_message(b"weight", weight.to_le_bytes());
|
|
|
|
|
robin.extend(vec![validator; usize::try_from(weight).unwrap()]);
|
|
|
|
|
}
|
|
|
|
|
robin.shuffle(&mut ChaCha12Rng::from_seed(transcript.rng_seed(b"robin")));
|
|
|
|
|
|
2023-04-14 15:51:43 -04:00
|
|
|
Some(Validators { genesis, total_weight, weights, robin })
|
2023-04-13 18:43:03 -04:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2023-04-12 18:04:28 -04:00
|
|
|
impl SignatureScheme for Validators {
|
2023-04-12 16:06:14 -04:00
|
|
|
type ValidatorId = [u8; 32];
|
|
|
|
|
type Signature = [u8; 64];
|
|
|
|
|
// TODO: Use half-aggregation.
|
|
|
|
|
type AggregateSignature = Vec<[u8; 64]>;
|
2023-04-12 18:04:28 -04:00
|
|
|
type Signer = Arc<Signer>;
|
2023-04-12 16:06:14 -04:00
|
|
|
|
|
|
|
|
#[must_use]
|
|
|
|
|
fn verify(&self, validator: Self::ValidatorId, msg: &[u8], sig: &Self::Signature) -> bool {
|
2023-04-12 18:04:28 -04:00
|
|
|
if !self.weights.contains_key(&validator) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2023-04-12 16:06:14 -04:00
|
|
|
let Ok(validator_point) = Ristretto::read_G::<&[u8]>(&mut validator.as_ref()) else {
|
|
|
|
|
return false;
|
|
|
|
|
};
|
|
|
|
|
let Ok(actual_sig) = SchnorrSignature::<Ristretto>::read::<&[u8]>(&mut sig.as_ref()) else {
|
|
|
|
|
return false;
|
|
|
|
|
};
|
|
|
|
|
actual_sig.verify(validator_point, challenge(self.genesis, validator, &sig[.. 32], msg))
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fn aggregate(sigs: &[Self::Signature]) -> Self::AggregateSignature {
|
|
|
|
|
sigs.to_vec()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[must_use]
|
|
|
|
|
fn verify_aggregate(
|
|
|
|
|
&self,
|
|
|
|
|
signers: &[Self::ValidatorId],
|
|
|
|
|
msg: &[u8],
|
|
|
|
|
sig: &Self::AggregateSignature,
|
|
|
|
|
) -> bool {
|
|
|
|
|
for (signer, sig) in signers.iter().zip(sig.iter()) {
|
|
|
|
|
if !self.verify(*signer, msg, sig) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
true
|
|
|
|
|
}
|
|
|
|
|
}
|
2023-04-12 18:04:28 -04:00
|
|
|
|
|
|
|
|
impl Weights for Validators {
|
|
|
|
|
type ValidatorId = [u8; 32];
|
|
|
|
|
|
|
|
|
|
fn total_weight(&self) -> u64 {
|
2023-04-13 18:43:03 -04:00
|
|
|
self.total_weight
|
2023-04-12 18:04:28 -04:00
|
|
|
}
|
|
|
|
|
fn weight(&self, validator: Self::ValidatorId) -> u64 {
|
|
|
|
|
self.weights[&validator]
|
|
|
|
|
}
|
|
|
|
|
fn proposer(&self, block: BlockNumber, round: RoundNumber) -> Self::ValidatorId {
|
|
|
|
|
let block = usize::try_from(block.0).unwrap();
|
|
|
|
|
let round = usize::try_from(round.0).unwrap();
|
|
|
|
|
// If multiple rounds are used, a naive block + round would cause the same index to be chosen
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 07:28:23 +03:00
|
|
|
// in quick succession.
|
2023-04-12 18:04:28 -04:00
|
|
|
// Accordingly, if we use additional rounds, jump halfway around.
|
|
|
|
|
// While this is still game-able, it's not explicitly reusing indexes immediately after each
|
|
|
|
|
// other.
|
|
|
|
|
self.robin
|
|
|
|
|
[(block + (if round == 0 { 0 } else { round + (self.robin.len() / 2) })) % self.robin.len()]
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(Clone, PartialEq, Eq, Debug, Encode, Decode)]
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 07:28:23 +03:00
|
|
|
pub struct TendermintBlock(pub Vec<u8>);
|
2023-04-12 18:04:28 -04:00
|
|
|
impl BlockTrait for TendermintBlock {
|
|
|
|
|
type Id = [u8; 32];
|
|
|
|
|
fn id(&self) -> Self::Id {
|
|
|
|
|
BlockHeader::read::<&[u8]>(&mut self.0.as_ref()).unwrap().hash()
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2023-04-13 18:43:03 -04:00
|
|
|
#[derive(Clone, Debug)]
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 07:28:23 +03:00
|
|
|
pub struct TendermintNetwork<D: Db, T: TransactionTrait, P: P2p> {
|
2023-04-13 18:43:03 -04:00
|
|
|
pub(crate) genesis: [u8; 32],
|
2023-04-14 14:11:19 -04:00
|
|
|
|
2023-04-13 18:43:03 -04:00
|
|
|
pub(crate) signer: Arc<Signer>,
|
|
|
|
|
pub(crate) validators: Arc<Validators>,
|
2023-04-14 14:11:19 -04:00
|
|
|
pub(crate) blockchain: Arc<RwLock<Blockchain<D, T>>>,
|
|
|
|
|
|
2023-04-13 18:43:03 -04:00
|
|
|
pub(crate) p2p: P,
|
2023-04-12 18:04:28 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[async_trait]
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 07:28:23 +03:00
|
|
|
impl<D: Db, T: TransactionTrait, P: P2p> Network for TendermintNetwork<D, T, P> {
|
2023-04-12 18:04:28 -04:00
|
|
|
type ValidatorId = [u8; 32];
|
|
|
|
|
type SignatureScheme = Arc<Validators>;
|
|
|
|
|
type Weights = Arc<Validators>;
|
|
|
|
|
type Block = TendermintBlock;
|
|
|
|
|
|
2023-04-23 18:29:50 -04:00
|
|
|
// These are in seconds and create a six-second block time.
|
|
|
|
|
// The block time is the latency on message delivery (where a message is some piece of data
|
|
|
|
|
// embedded in a transaction), hence why it should be kept low.
|
2023-04-12 18:04:28 -04:00
|
|
|
const BLOCK_PROCESSING_TIME: u32 = 3;
|
|
|
|
|
const LATENCY_TIME: u32 = 1;
|
|
|
|
|
|
|
|
|
|
fn signer(&self) -> Arc<Signer> {
|
|
|
|
|
self.signer.clone()
|
|
|
|
|
}
|
|
|
|
|
fn signature_scheme(&self) -> Arc<Validators> {
|
|
|
|
|
self.validators.clone()
|
|
|
|
|
}
|
|
|
|
|
fn weights(&self) -> Arc<Validators> {
|
|
|
|
|
self.validators.clone()
|
|
|
|
|
}
|
|
|
|
|
|
2023-04-13 18:43:03 -04:00
|
|
|
async fn broadcast(&mut self, msg: SignedMessageFor<Self>) {
|
|
|
|
|
let mut to_broadcast = vec![TENDERMINT_MESSAGE];
|
|
|
|
|
to_broadcast.extend(msg.encode());
|
2023-04-23 16:56:23 -04:00
|
|
|
self.p2p.broadcast(self.genesis, to_broadcast).await
|
2023-04-12 18:04:28 -04:00
|
|
|
}
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 07:28:23 +03:00
|
|
|
|
|
|
|
|
async fn slash(&mut self, validator: Self::ValidatorId, slash_event: SlashEvent<Self>) {
|
2023-04-12 18:04:28 -04:00
|
|
|
log::error!(
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 07:28:23 +03:00
|
|
|
"validator {} triggered a slash event on tributary {} (with evidence: {})",
|
2023-04-12 18:04:28 -04:00
|
|
|
hex::encode(validator),
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 07:28:23 +03:00
|
|
|
hex::encode(self.genesis),
|
|
|
|
|
matches!(slash_event, SlashEvent::WithEvidence(_, _)),
|
2023-04-12 18:04:28 -04:00
|
|
|
);
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 07:28:23 +03:00
|
|
|
|
|
|
|
|
let signer = self.signer();
|
|
|
|
|
let tx = match slash_event {
|
|
|
|
|
SlashEvent::WithEvidence(m1, m2) => {
|
|
|
|
|
// create an unsigned evidence tx
|
|
|
|
|
TendermintTx::SlashEvidence((m1, m2).encode())
|
|
|
|
|
}
|
|
|
|
|
SlashEvent::Id(reason, block, round) => {
|
|
|
|
|
// create a signed vote tx
|
|
|
|
|
let mut tx = TendermintTx::SlashVote(SlashVote {
|
|
|
|
|
id: (reason, block, round).encode().try_into().unwrap(),
|
|
|
|
|
target: validator.encode().try_into().unwrap(),
|
|
|
|
|
sig: VoteSignature::default(),
|
|
|
|
|
});
|
|
|
|
|
tx.sign(&mut OsRng, signer.genesis, &signer.key);
|
|
|
|
|
tx
|
|
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
// add tx to blockchain and broadcast to peers
|
|
|
|
|
// TODO: Make a function out of this following block
|
|
|
|
|
let mut to_broadcast = vec![TRANSACTION_MESSAGE];
|
|
|
|
|
tx.write(&mut to_broadcast).unwrap();
|
|
|
|
|
if self.blockchain.write().await.add_transaction::<Self>(
|
|
|
|
|
true,
|
|
|
|
|
Transaction::Tendermint(tx),
|
|
|
|
|
self.signature_scheme(),
|
|
|
|
|
) {
|
|
|
|
|
self.p2p.broadcast(signer.genesis, to_broadcast).await;
|
|
|
|
|
}
|
2023-04-12 18:04:28 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async fn validate(&mut self, block: &Self::Block) -> Result<(), TendermintBlockError> {
|
|
|
|
|
let block =
|
|
|
|
|
Block::read::<&[u8]>(&mut block.0.as_ref()).map_err(|_| TendermintBlockError::Fatal)?;
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 07:28:23 +03:00
|
|
|
self.blockchain.read().await.verify_block::<Self>(&block, self.signature_scheme()).map_err(
|
|
|
|
|
|e| match e {
|
|
|
|
|
BlockError::NonLocalProvided(_) => TendermintBlockError::Temporal,
|
|
|
|
|
_ => TendermintBlockError::Fatal,
|
|
|
|
|
},
|
|
|
|
|
)
|
2023-04-12 18:04:28 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async fn add_block(
|
|
|
|
|
&mut self,
|
2023-04-24 02:44:21 -04:00
|
|
|
serialized_block: Self::Block,
|
2023-04-13 18:43:03 -04:00
|
|
|
commit: Commit<Self::SignatureScheme>,
|
2023-04-12 18:04:28 -04:00
|
|
|
) -> Option<Self::Block> {
|
|
|
|
|
let invalid_block = || {
|
|
|
|
|
// There's a fatal flaw in the code, it's behind a hard fork, or the validators turned
|
|
|
|
|
// malicious
|
|
|
|
|
// All justify a halt to then achieve social consensus from
|
|
|
|
|
// TODO: Under multiple validator sets, a small validator set turning malicious knocks
|
|
|
|
|
// off the entire network. That's an unacceptable DoS.
|
|
|
|
|
panic!("validators added invalid block to tributary {}", hex::encode(self.genesis));
|
|
|
|
|
};
|
|
|
|
|
|
2023-04-14 14:11:19 -04:00
|
|
|
// Tendermint should only produce valid commits
|
2023-04-24 02:44:21 -04:00
|
|
|
assert!(self.verify_commit(serialized_block.id(), &commit));
|
2023-04-13 18:43:03 -04:00
|
|
|
|
2023-04-24 02:44:21 -04:00
|
|
|
let Ok(block) = Block::read::<&[u8]>(&mut serialized_block.0.as_ref()) else {
|
2023-04-12 18:04:28 -04:00
|
|
|
return invalid_block();
|
|
|
|
|
};
|
|
|
|
|
|
2023-04-24 02:44:21 -04:00
|
|
|
let encoded_commit = commit.encode();
|
2023-04-12 18:04:28 -04:00
|
|
|
loop {
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 07:28:23 +03:00
|
|
|
let block_res = self.blockchain.write().await.add_block::<Self>(
|
|
|
|
|
&block,
|
|
|
|
|
encoded_commit.clone(),
|
|
|
|
|
self.signature_scheme(),
|
|
|
|
|
);
|
2023-04-13 18:43:03 -04:00
|
|
|
match block_res {
|
2023-04-24 02:44:21 -04:00
|
|
|
Ok(()) => {
|
|
|
|
|
// If we successfully added this block, broadcast it
|
|
|
|
|
// TODO: Move this under the coordinator once we set up on new block notifications?
|
|
|
|
|
let mut msg = serialized_block.0;
|
|
|
|
|
msg.insert(0, BLOCK_MESSAGE);
|
|
|
|
|
msg.extend(encoded_commit);
|
|
|
|
|
self.p2p.broadcast(self.genesis, msg).await;
|
|
|
|
|
break;
|
|
|
|
|
}
|
2023-04-13 20:35:55 -04:00
|
|
|
Err(BlockError::NonLocalProvided(hash)) => {
|
2023-04-12 18:04:28 -04:00
|
|
|
log::error!(
|
|
|
|
|
"missing provided transaction {} which other validators on tributary {} had",
|
|
|
|
|
hex::encode(hash),
|
|
|
|
|
hex::encode(self.genesis)
|
|
|
|
|
);
|
2023-04-23 18:55:43 -04:00
|
|
|
sleep(Duration::from_secs(Self::block_time().into())).await;
|
2023-04-12 18:04:28 -04:00
|
|
|
}
|
|
|
|
|
_ => return invalid_block(),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
Slash malevolent validators (#294)
* add slash tx
* ignore unsigned tx replays
* verify that provided evidence is valid
* fix clippy + fmt
* move application tx handling to another module
* partially handle the tendermint txs
* fix pr comments
* support unsigned app txs
* add slash target to the votes
* enforce provided, unsigned, signed tx ordering within a block
* bug fixes
* add unit test for tendermint txs
* bug fixes
* update tests for tendermint txs
* add tx ordering test
* tidy up tx ordering test
* cargo +nightly fmt
* Misc fixes from rebasing
* Finish resolving clippy
* Remove sha3 from tendermint-machine
* Resolve a DoS in SlashEvidence's read
Also moves Evidence from Vec<Message> to (Message, Option<Message>). That
should meet all requirements while being a bit safer.
* Make lazy_static a dev-depend for tributary
* Various small tweaks
One use of sort was inefficient, sorting unsigned || signed when unsigned was
already properly sorted. Given how the unsigned TXs were given a nonce of 0, an
unstable sort may swap places with an unsigned TX and a signed TX with a nonce
of 0 (leading to a faulty block).
The extra protection added here sorts signed, then concats.
* Fix Tributary tests I broke, start review on tendermint/tx.rs
* Finish reviewing everything outside tests and empty_signature
* Remove empty_signature
empty_signature led to corrupted local state histories. Unfortunately, the API
is only sane with a signature.
We now use the actual signature, which risks creating a signature over a
malicious message if we have ever have an invariant producing malicious
messages. Prior, we only signed the message after the local machine confirmed
it was okay per the local view of consensus.
This is tolerated/preferred over a corrupt state history since production of
such messages is already an invariant. TODOs are added to make handling of this
theoretical invariant further robust.
* Remove async_sequential for tokio::test
There was no competition for resources forcing them to be run sequentially.
* Modify block order test to be statistically significant without multiple runs
* Clean tests
---------
Co-authored-by: Luke Parker <lukeparker5132@gmail.com>
2023-08-21 07:28:23 +03:00
|
|
|
Some(TendermintBlock(
|
|
|
|
|
self.blockchain.write().await.build_block::<Self>(self.signature_scheme()).serialize(),
|
|
|
|
|
))
|
2023-04-12 18:04:28 -04:00
|
|
|
}
|
|
|
|
|
}
|
