absolutebi/serai
1
0
Fork 0
mirror of https://github.com/serai-dex/serai.git synced 2025-12-08 12:19:24 +00:00
Code Issues Packages Projects Releases Wiki Activity

Use a gamma distribution for mixin selection

Browse Source
This commit is contained in:
Luke Parker
2022-05-04 08:18:43 -04:00
parent f856faa762
commit 0f481773df
6 changed files with 71 additions and 21 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
coins/monero/Cargo.toml
View File

@@ -11,6 +11,7 @@ lazy_static = "1"
thiserror = "1" thiserror = "1"
rand_core = "0.6" rand_core = "0.6"
rand_distr = "0.4"
tiny-keccak = { version = "2.0", features = ["keccak"] } tiny-keccak = { version = "2.0", features = ["keccak"] }
blake2 = "0.10" blake2 = "0.10"

32
coins/monero/src/rpc.rs
View File

@@ -8,7 +8,6 @@ use curve25519_dalek::edwards::{EdwardsPoint, CompressedEdwardsY};
use monero::{ use monero::{
Hash, Hash,
cryptonote::hash::Hashable,
blockdata::{ blockdata::{
transaction::{TxIn, Transaction}, transaction::{TxIn, Transaction},
block::Block block::Block
@@ -237,13 +236,30 @@ impl Rpc {
).collect() ).collect()
} }
pub async fn get_high_output(&self, height: usize) -> Result<u64, RpcError> { pub async fn get_output_distribution(&self, height: usize) -> Result<Vec<u64>, RpcError> {
let block = self.get_block(height).await?; #[allow(dead_code)]
Ok( #[derive(Deserialize, Debug)]
*self.get_o_indexes( pub struct Distribution {
*block.tx_hashes.last().unwrap_or(&block.miner_tx.hash()) distribution: Vec<u64>
).await?.last().ok_or(RpcError::InvalidTransaction)? }
)
#[allow(dead_code)]
#[derive(Deserialize, Debug)]
struct Distributions {
distributions: Vec<Distribution>
}
let mut distributions: JsonRpcResponse<Distributions> = self.rpc_call("json_rpc", Some(json!({
"method": "get_output_distribution",
"params": {
"binary": false,
"amounts": [0],
"cumulative": true,
"to_height": height
}
}))).await?;
Ok(distributions.result.distributions.swap_remove(0).distribution)
} }
pub async fn publish_transaction(&self, tx: &Transaction) -> Result<(), RpcError> { pub async fn publish_transaction(&self, tx: &Transaction) -> Result<(), RpcError> {

49
coins/monero/src/transaction/mixins.rs
View File

@@ -1,6 +1,9 @@
use std::collections::HashSet; use std::collections::HashSet;
use lazy_static::lazy_static;
use rand_core::{RngCore, CryptoRng}; use rand_core::{RngCore, CryptoRng};
use rand_distr::{Distribution, Gamma};
use curve25519_dalek::edwards::EdwardsPoint; use curve25519_dalek::edwards::EdwardsPoint;
@@ -8,23 +11,49 @@ use monero::VarInt;
use crate::{transaction::SpendableOutput, rpc::{RpcError, Rpc}}; use crate::{transaction::SpendableOutput, rpc::{RpcError, Rpc}};
const LOCK_WINDOW: usize = 10;
const RECENT_WINDOW: usize = 15;
const BLOCK_TIME: usize = 120;
const BLOCKS_PER_YEAR: usize = 365 * 24 * 60 * 60 / BLOCK_TIME;
const TIP_APPLICATION: f64 = (LOCK_WINDOW * BLOCK_TIME) as f64;
const MIXINS: usize = 11; const MIXINS: usize = 11;
lazy_static! {
static ref GAMMA: Gamma<f64> = Gamma::new(19.28, 1.0 / 1.61).unwrap();
}
async fn select_single<R: RngCore + CryptoRng>( async fn select_single<R: RngCore + CryptoRng>(
rng: &mut R, rng: &mut R,
rpc: &Rpc, rpc: &Rpc,
height: usize, height: usize,
distribution: &[u64],
high: u64, high: u64,
per_second: f64,
used: &mut HashSet<u64> used: &mut HashSet<u64>
) -> Result<(u64, [EdwardsPoint; 2]), RpcError> { ) -> Result<(u64, [EdwardsPoint; 2]), RpcError> {
let mut o; let mut o;
let mut output = None; let mut output = None;
while { while {
o = rng.next_u64() % u64::try_from(high).unwrap(); let mut age = GAMMA.sample(rng).exp();
used.contains(&o) || { if age > TIP_APPLICATION {
age -= TIP_APPLICATION;
} else {
age = (rng.next_u64() % u64::try_from(RECENT_WINDOW * BLOCK_TIME).unwrap()) as f64;
}
o = (age * per_second) as u64;
(o >= high) || {
o = high - 1 - o;
let i = distribution.partition_point(|s| *s < o);
let prev = if i == 0 { 0 } else { i - 1 };
let n = distribution[i] - distribution[prev];
o = distribution[prev] + (rng.next_u64() % n);
(n == 0) || used.contains(&o) || {
output = rpc.get_outputs(&[o], height).await?[0]; output = rpc.get_outputs(&[o], height).await?[0];
output.is_none() output.is_none()
} }
}
} {} } {}
used.insert(o); used.insert(o);
Ok((o, output.unwrap())) Ok((o, output.unwrap()))
@@ -55,11 +84,13 @@ pub(crate) async fn select<R: RngCore + CryptoRng>(
)); ));
} }
let high = rpc.get_high_output(height - 1).await?; let distribution = rpc.get_output_distribution(height).await?;
let high_f = high as f64; let high = distribution[distribution.len() - 1];
if (high_f as u64) != high { let per_second = {
panic!("Transaction output index exceeds f64"); let blocks = distribution.len().min(BLOCKS_PER_YEAR);
} let outputs = high - distribution[distribution.len().saturating_sub(blocks + 1)];
(outputs as f64) / ((blocks * BLOCK_TIME) as f64)
};
let mut used = HashSet::<u64>::new(); let mut used = HashSet::<u64>::new();
for o in &outputs { for o in &outputs {
@@ -70,7 +101,7 @@ pub(crate) async fn select<R: RngCore + CryptoRng>(
for (i, o) in outputs.iter().enumerate() { for (i, o) in outputs.iter().enumerate() {
let mut mixins = Vec::with_capacity(MIXINS); let mut mixins = Vec::with_capacity(MIXINS);
for _ in 0 .. MIXINS { for _ in 0 .. MIXINS {
mixins.push(select_single(rng, rpc, height, high, &mut used).await?); mixins.push(select_single(rng, rpc, height, &distribution, high, per_second, &mut used).await?);
} }
mixins.sort_by(|a, b| a.0.cmp(&b.0)); mixins.sort_by(|a, b| a.0.cmp(&b.0));
@@ -85,7 +116,7 @@ pub(crate) async fn select<R: RngCore + CryptoRng>(
// it'd increase the amount of mixins required to create this transaction and some banned // it'd increase the amount of mixins required to create this transaction and some banned
// outputs may be the best options // outputs may be the best options
used.remove(&mixins[m].0); used.remove(&mixins[m].0);
mixins[m] = select_single(rng, rpc, height, high, &mut used).await?; mixins[m] = select_single(rng, rpc, height, &distribution, high, per_second, &mut used).await?;
} }
mixins.sort_by(|a, b| a.0.cmp(&b.0)); mixins.sort_by(|a, b| a.0.cmp(&b.0));
} }

2
coins/monero/src/transaction/mod.rs
View File

@@ -207,7 +207,7 @@ async fn prepare_inputs<R: RngCore + CryptoRng>(
let mixins = mixins::select( let mixins = mixins::select(
rng, rng,
rpc, rpc,
rpc.get_height().await.map_err(|e| TransactionError::RpcError(e))?, rpc.get_height().await.map_err(|e| TransactionError::RpcError(e))? - 10,
inputs inputs
).await.map_err(|e| TransactionError::RpcError(e))?; ).await.map_err(|e| TransactionError::RpcError(e))?;

3
coins/monero/src/transaction/multisig.rs
View File

@@ -38,6 +38,7 @@ impl SignableTransaction {
rng: &mut R, rng: &mut R,
rpc: &Rpc, rpc: &Rpc,
keys: Rc<MultisigKeys<Ed25519>>, keys: Rc<MultisigKeys<Ed25519>>,
height: usize,
included: &[usize] included: &[usize]
) -> Result<TransactionMachine, TransactionError> { ) -> Result<TransactionMachine, TransactionError> {
let mut our_images = vec![]; let mut our_images = vec![];
@@ -75,7 +76,7 @@ impl SignableTransaction {
let mixins = mixins::select( let mixins = mixins::select(
&mut transcript.seeded_rng(b"mixins", None), &mut transcript.seeded_rng(b"mixins", None),
rpc, rpc,
rpc.get_height().await.map_err(|e| TransactionError::RpcError(e))?, height,
&self.inputs &self.inputs
).await.map_err(|e| TransactionError::RpcError(e))?; ).await.map_err(|e| TransactionError::RpcError(e))?;

1
coins/monero/tests/send_multisig.rs
View File

@@ -60,6 +60,7 @@ pub async fn send_multisig() {
&mut OsRng, &mut OsRng,
&rpc, &rpc,
keys[i - 1].clone(), keys[i - 1].clone(),
rpc.get_height().await.unwrap() - 10,
&(1 ..= THRESHOLD).collect::<Vec<usize>>() &(1 ..= THRESHOLD).collect::<Vec<usize>>()
).await.unwrap() ).await.unwrap()
); );