casper-node 2.0.3

The Casper blockchain node
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297

use std::{collections::BTreeMap, fmt::Debug};

use datasize::DataSize;
use serde::{Deserialize, Serialize};

use either::Either;

use crate::{
    components::consensus::{
        protocols::zug::{Proposal, RoundId},
        traits::{ConsensusNetworkMessage, Context, ValidatorSecret},
        utils::ValidatorIndex,
    },
    utils::ds,
};

#[allow(clippy::arithmetic_side_effects)]
mod relaxed {
    // This module exists solely to exempt the `EnumDiscriminants` macro generated code from the
    // module-wide `clippy::arithmetic_side_effects` lint.

    use datasize::DataSize;
    use serde::{Deserialize, Serialize};
    use strum::EnumDiscriminants;

    use crate::components::consensus::{
        protocols::zug::{proposal::Proposal, RoundId},
        traits::{ConsensusNetworkMessage, Context},
    };

    use super::{SignedMessage, SyncResponse};

    /// The content of a message in the main protocol, as opposed to the proposal, and to sync
    /// messages, which are somewhat decoupled from the rest of the protocol. These messages,
    /// along with the instance and round ID, are signed by the active validators.
    #[derive(
        Clone, Serialize, Deserialize, Debug, PartialEq, Eq, Hash, DataSize, EnumDiscriminants,
    )]
    #[serde(bound(
        serialize = "C::Hash: Serialize",
        deserialize = "C::Hash: Deserialize<'de>",
    ))]
    #[strum_discriminants(derive(strum::EnumIter))]
    pub(crate) enum Content<C>
    where
        C: Context,
    {
        /// By signing the echo of a proposal hash a validator affirms that this is the first (and
        /// usually only) proposal by the round leader that they have received. A quorum of echoes
        /// is a requirement for a proposal to become accepted.
        Echo(C::Hash),
        /// By signing a `true` vote a validator confirms that they have accepted a proposal in
        /// this round before the timeout. If there is a quorum of `true` votes, the
        /// proposal becomes finalized, together with its ancestors.
        ///
        /// A `false` vote means they timed out waiting for a proposal to get accepted. A quorum of
        /// `false` votes allows the next round's leader to make a proposal without waiting for
        /// this round's.
        Vote(bool),
    }

    /// All messages of the protocol.
    #[derive(
        DataSize, Clone, Serialize, Deserialize, Debug, PartialEq, Eq, Hash, EnumDiscriminants,
    )]
    #[serde(bound(
        serialize = "C::Hash: Serialize",
        deserialize = "C::Hash: Deserialize<'de>",
    ))]
    #[strum_discriminants(derive(strum::EnumIter))]
    pub(crate) enum Message<C>
    where
        C: Context,
    {
        /// Signatures, proposals and evidence the requester was missing.
        SyncResponse(SyncResponse<C>),
        /// A proposal for a new block. This does not contain any signature; instead, the proposer
        /// is expected to sign an echo with the proposal hash. Validators will drop any
        /// proposal they receive unless they either have a signed echo by the proposer and
        /// the proposer has not double-signed, or they have a quorum of echoes.
        Proposal {
            round_id: RoundId,
            instance_id: C::InstanceId,
            proposal: Proposal<C>,
            echo: SignedMessage<C>,
        },
        /// An echo or vote signed by an active validator.
        Signed(SignedMessage<C>),
        /// Two conflicting signatures by the same validator.
        Evidence(SignedMessage<C>, Content<C>, C::Signature),
    }

    impl<C: Context> ConsensusNetworkMessage for Message<C> {}
}
pub(crate) use relaxed::{Content, ContentDiscriminants, Message, MessageDiscriminants};

use super::registered_sync::RandomId;

impl<C: Context> Content<C> {
    /// Returns whether the two contents contradict each other. A correct validator is expected to
    /// never sign two contradictory contents in the same round.
    pub(crate) fn contradicts(&self, other: &Content<C>) -> bool {
        match (self, other) {
            (Content::Vote(vote0), Content::Vote(vote1)) => vote0 != vote1,
            (Content::Echo(hash0), Content::Echo(hash1)) => hash0 != hash1,
            _ => false,
        }
    }
}

// This has to be implemented manually because of the <C> generic parameter, which isn't
// necessarily `Copy` and that breaks the derive.
impl<C: Context> Copy for Content<C> {}

/// A vote or echo with a signature.
#[derive(Clone, Serialize, Deserialize, Debug, PartialEq, Eq, Hash, DataSize)]
#[serde(bound(
    serialize = "C::Hash: Serialize",
    deserialize = "C::Hash: Deserialize<'de>",
))]
pub(crate) struct SignedMessage<C>
where
    C: Context,
{
    pub(super) round_id: RoundId,
    pub(super) instance_id: C::InstanceId,
    pub(super) content: Content<C>,
    pub(super) validator_idx: ValidatorIndex,
    pub(super) signature: C::Signature,
}

impl<C: Context> SignedMessage<C> {
    /// Creates a new signed message with a valid signature.
    pub(crate) fn sign_new(
        round_id: RoundId,
        instance_id: C::InstanceId,
        content: Content<C>,
        validator_idx: ValidatorIndex,
        secret: &C::ValidatorSecret,
    ) -> SignedMessage<C> {
        let hash = Self::hash_fields(round_id, &instance_id, &content, validator_idx);
        SignedMessage {
            round_id,
            instance_id,
            content,
            validator_idx,
            signature: secret.sign(&hash),
        }
    }

    /// Creates a new signed message with the alternative content and signature.
    pub(crate) fn with(&self, content: Content<C>, signature: C::Signature) -> SignedMessage<C> {
        SignedMessage {
            content,
            signature,
            ..*self
        }
    }

    /// Returns whether the signature is valid.
    pub(crate) fn verify_signature(&self, validator_id: &C::ValidatorId) -> bool {
        let hash = Self::hash_fields(
            self.round_id,
            &self.instance_id,
            &self.content,
            self.validator_idx,
        );
        C::verify_signature(&hash, validator_id, &self.signature)
    }

    /// Returns the hash of all fields except the signature.
    fn hash_fields(
        round_id: RoundId,
        instance_id: &C::InstanceId,
        content: &Content<C>,
        validator_idx: ValidatorIndex,
    ) -> C::Hash {
        let serialized_fields =
            bincode::serialize(&(round_id, instance_id, content, validator_idx))
                .expect("failed to serialize fields");
        <C as Context>::hash(&serialized_fields)
    }
}

/// Partial information about the sender's protocol state. The receiver should send missing data.
///
/// The sender chooses a random peer and a random era, and includes in its `SyncRequest` message
/// information about received proposals, echoes and votes. The idea is to set the `i`-th bit
/// in the `u128` fields to `1` if we have a signature from the `i`-th validator.
///
/// To keep the size of these messages constant even if there are more than 128 validators, a
/// random interval is selected and only information about validators in that interval is
/// included: The bit with the lowest significance corresponds to validator number
/// `first_validator_idx`, and the one with the highest to
/// `(first_validator_idx + 127) % validator_count`.
///
/// For example if there are 500 validators and `first_validator_idx` is 450, the `u128`'s bits
/// refer to validators 450, 451, ..., 499, 0, 1, ..., 77.
#[derive(DataSize, Clone, Serialize, Deserialize, Debug, PartialEq, Eq, Hash)]
#[serde(bound(
    serialize = "C::Hash: Serialize",
    deserialize = "C::Hash: Deserialize<'de>",
))]
pub(crate) struct SyncRequest<C>
where
    C: Context,
{
    /// The round the information refers to.
    pub(crate) round_id: RoundId,
    /// The proposal hash with the most echoes (by weight).
    pub(crate) proposal_hash: Option<C::Hash>,
    /// Whether the sender has the proposal with that hash.
    pub(crate) has_proposal: bool,
    /// The index of the first validator covered by the bit fields below.
    pub(crate) first_validator_idx: ValidatorIndex,
    /// A bit field with 1 for every validator the sender has an echo from.
    pub(crate) echoes: u128,
    /// A bit field with 1 for every validator the sender has a `true` vote from.
    pub(crate) true_votes: u128,
    /// A bit field with 1 for every validator the sender has a `false` vote from.
    pub(crate) false_votes: u128,
    /// A bit field with 1 for every validator the sender has any signed message from.
    pub(crate) active: u128,
    /// A bit field with 1 for every validator the sender has evidence against.
    pub(crate) faulty: u128,
    pub(crate) instance_id: C::InstanceId,
    pub(crate) sync_id: RandomId,
}

impl<C: Context> ConsensusNetworkMessage for SyncRequest<C> {}

impl<C: Context> SyncRequest<C> {
    /// Creates a `SyncRequest` for a round in which we haven't received any messages yet.
    pub(super) fn new_empty_round(
        round_id: RoundId,
        first_validator_idx: ValidatorIndex,
        faulty: u128,
        active: u128,
        instance_id: C::InstanceId,
        sync_id: RandomId,
    ) -> Self {
        SyncRequest {
            round_id,
            proposal_hash: None,
            has_proposal: false,
            first_validator_idx,
            echoes: 0,
            true_votes: 0,
            false_votes: 0,
            active,
            faulty,
            instance_id,
            sync_id,
        }
    }
}

/// The response to a `SyncRequest`, containing proposals, signatures and evidence the requester is
/// missing.
#[derive(DataSize, Clone, Serialize, Deserialize, Debug, PartialEq, Eq, Hash)]
#[serde(bound(
    serialize = "C::Hash: Serialize",
    deserialize = "C::Hash: Deserialize<'de>",
))]
pub(crate) struct SyncResponse<C>
where
    C: Context,
{
    /// The round the information refers to.
    pub(crate) round_id: RoundId,
    /// The proposal in this round, or its hash.
    #[data_size(with = ds::maybe_either)]
    pub(crate) proposal_or_hash: Option<Either<Proposal<C>, C::Hash>>,
    /// Echo signatures the requester is missing.
    pub(crate) echo_sigs: BTreeMap<ValidatorIndex, C::Signature>,
    /// Vote signatures for `true` the requester is missing.
    pub(crate) true_vote_sigs: BTreeMap<ValidatorIndex, C::Signature>,
    /// Vote signatures for `false` the requester is missing.
    pub(crate) false_vote_sigs: BTreeMap<ValidatorIndex, C::Signature>,
    /// Signed messages that prove that a validator was active.
    pub(crate) signed_messages: Vec<SignedMessage<C>>,
    /// Evidence against faulty validators.
    pub(crate) evidence: Vec<(SignedMessage<C>, Content<C>, C::Signature)>,
    pub(crate) instance_id: C::InstanceId,
    pub(crate) sync_id: RandomId,
}

impl<C: Context> Message<C> {
    pub(super) fn instance_id(&self) -> &C::InstanceId {
        match self {
            Message::SyncResponse(SyncResponse { instance_id, .. })
            | Message::Signed(SignedMessage { instance_id, .. })
            | Message::Proposal { instance_id, .. }
            | Message::Evidence(SignedMessage { instance_id, .. }, ..) => instance_id,
        }
    }
}