Use proper messages for ValidatorSets/InInstructions pallet

Provides a DST, and associated metadata as beneficial. Also utilizes MuSig's context to session-bind. Since set_keys_messages also binds to set, this is semi-redundant, yet that's appreciated.
2025-12-08 20:29:23 +00:00 · 2023-05-13 04:20:13 -04:00
parent 663b5f4b50
commit 47f8766da6
17 changed files with 102 additions and 70 deletions
--- a/substrate/validator-sets/pallet/Cargo.toml
+++ b/substrate/validator-sets/pallet/Cargo.toml
@@ -14,9 +14,6 @@ rustdoc-args = ["--cfg", "docsrs"]
 [dependencies]
 hashbrown = { version = "0.13", default-features = false }

-ciphersuite = { version = "0.3", path = "../../../crypto/ciphersuite", default-features = false, features = ["ristretto"] }
-dkg = { version = "0.4", path = "../../../crypto/dkg", default-features = false }
-
 scale = { package = "parity-scale-codec", version = "3", default-features = false, features = ["derive"] }
 scale-info = { version = "2", default-features = false, features = ["derive"] }

@@ -31,12 +28,12 @@ validator-sets-primitives = { path = "../primitives", default-features = false }

 [features]
 std = [
-  "ciphersuite/std",
-  "dkg/std",
-
  "scale/std",
  "scale-info/std",

+  "sp-core/std",
+  "sp-application-crypto/std",
+
  "frame-system/std",
  "frame-support/std",

--- a/substrate/validator-sets/pallet/src/lib.rs
+++ b/substrate/validator-sets/pallet/src/lib.rs
@@ -69,23 +69,14 @@ pub mod pallet {
  #[pallet::genesis_build]
  impl<T: Config> GenesisBuild<T> for GenesisConfig<T> {
    fn build(&self) {
-      use ciphersuite::{group::GroupEncoding, Ciphersuite, Ristretto};
-
-      let hash_set = self.participants.iter().map(|key| key.0).collect::<hashbrown::HashSet<[u8; 32]>>();
-      if hash_set.len() != self.participants.len()
-      {
+      let hash_set =
+        self.participants.iter().map(|key| key.0).collect::<hashbrown::HashSet<[u8; 32]>>();
+      if hash_set.len() != self.participants.len() {
        panic!("participants contained duplicates");
      }

      let mut participants = Vec::new();
-      let mut keys = Vec::new();
      for participant in self.participants.clone() {
-        keys.push(
-          <Ristretto as Ciphersuite>::read_G::<&[u8]>(
-            &mut participant.0.as_ref(),
-          )
-          .expect("invalid participant"),
-        );
        participants.push((participant, self.bond));
      }
      let participants = BoundedVec::try_from(participants).unwrap();
@@ -99,7 +90,7 @@ pub mod pallet {
          Some(ValidatorSetData { bond: self.bond, network, participants: participants.clone() }),
        );

-        MuSigKeys::<T>::set(set, Some(Public(dkg::musig::musig_key::<Ristretto>(&keys).unwrap().to_bytes())));
+        MuSigKeys::<T>::set(set, Some(musig_key(set, &self.participants)));
        Pallet::<T>::deposit_event(Event::NewSet { set })
      }
    }
@@ -128,7 +119,7 @@ pub mod pallet {
      let Some(musig_key) = MuSigKeys::<T>::get(set) else {
        Err(Error::NonExistentValidatorSet)?
      };
-      if !musig_key.verify(&key_pair.encode(), signature) {
+      if !musig_key.verify(&set_keys_message(&set, key_pair), signature) {
        Err(Error::BadSignature)?;
      }

@@ -179,7 +170,9 @@ pub mod pallet {
      let set = ValidatorSet { session, network: *network };
      match Self::verify_signature(set, key_pair, signature) {
        Err(Error::AlreadyGeneratedKeys) => Err(InvalidTransaction::Stale)?,
-        Err(Error::NonExistentValidatorSet) | Err(Error::BadSignature) => Err(InvalidTransaction::BadProof)?,
+        Err(Error::NonExistentValidatorSet) | Err(Error::BadSignature) => {
+          Err(InvalidTransaction::BadProof)?
+        }
        Err(Error::__Ignore(_, _)) => unreachable!(),
        Ok(()) => (),
      }