Skip to content
This repository was archived by the owner on Nov 15, 2023. It is now read-only.

Slash Authorities for irrefutable misbehavior #84

Merged
rphmeier merged 21 commits into from
Mar 13, 2018
Merged

Slash Authorities for irrefutable misbehavior #84

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
21 commits
Select commit Hold shift + click to select a range
ca48875
double-commit and prepare misbehavior
rphmeier Feb 25, 2018
5332ae9
get misbehavior on completion
rphmeier Feb 25, 2018
4ed9009
collect misbehavior on drop, not only on success
rphmeier Feb 25, 2018
359bf82
kill unused transaction_index field
rphmeier Feb 25, 2018
9bb84bf
add primitive misbehavior report type
rphmeier Feb 25, 2018
ef9ac6b
add misbehavior report transaction
rphmeier Feb 25, 2018
7cb524b
store prior session
rphmeier Feb 26, 2018
38d0ff5
fix set_items
rphmeier Feb 26, 2018
1f88aa1
basic checks for misbehavior reports
rphmeier Feb 28, 2018
c8b69c2
crate for substrate bft misbehavior checking
rphmeier Feb 28, 2018
dc0b7f4
integrate misbehavior check crate
rphmeier Feb 28, 2018
74d1275
fix comment
rphmeier Mar 1, 2018
ea2e414
Merge branch 'master' into rh-slashing
rphmeier Mar 2, 2018
205a4d0
new wasm binaries
rphmeier Mar 2, 2018
6d0c53c
fix hash in test
rphmeier Mar 2, 2018
9ad5a69
import misbehavior transactions into queue
rphmeier Mar 2, 2018
2e0e38c
fix test build
rphmeier Mar 3, 2018
1217286
sign on digest and full proposal when proposing
rphmeier Mar 4, 2018
da8541d
detect proposal misbehavior
rphmeier Mar 4, 2018
497edcb
fix fallout
rphmeier Mar 4, 2018
a4dca1c
restore balance/bondage types
rphmeier Mar 12, 2018
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
get misbehavior on completion
  • Loading branch information
@rphmeier
rphmeier committed Feb 25, 2018
commit 5332ae9ecc9fe20d9d008682714bb6e117fa338a
108 changes: 53 additions & 55 deletions substrate/bft/src/generic/accumulator.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -126,9 +126,9 @@ struct VoteCounts {
#[derive(Debug, Clone)]
pub enum Misbehavior<Digest, Signature> {
/// Issued two conflicting prepare messages.
DoublePrepare((Digest, Signature), (Digest, Signature)),
DoublePrepare(usize, (Digest, Signature), (Digest, Signature)),
/// Issued two conflicting commit messages.
DoubleCommit((Digest, Signature), (Digest, Signature)),
DoubleCommit(usize, (Digest, Signature), (Digest, Signature)),
}

/// Accumulates messages for a given round of BFT consensus.
Expand All @@ -153,7 +153,6 @@ pub struct Accumulator<Candidate, Digest, AuthorityId, Signature>
vote_counts: HashMap<Digest, VoteCounts>,
advance_round: HashSet<AuthorityId>,
state: State<Candidate, Digest, Signature>,
misbehavior: HashMap<AuthorityId, Misbehavior<Digest, Signature>>,
}

impl<Candidate, Digest, AuthorityId, Signature> Accumulator<Candidate, Digest, AuthorityId, Signature>
Expand All @@ -175,7 +174,6 @@ impl<Candidate, Digest, AuthorityId, Signature> Accumulator<Candidate, Digest, A
vote_counts: HashMap::new(),
advance_round: HashSet::new(),
state: State::Begin,
misbehavior: HashMap::new(),
}
}

Expand All @@ -198,21 +196,15 @@ impl<Candidate, Digest, AuthorityId, Signature> Accumulator<Candidate, Digest, A
&self.state
}

/// Inspect the current observed misbehavior
pub fn misbehavior(&self) -> &HashMap<AuthorityId, Misbehavior<Digest, Signature>> {
&self.misbehavior
}

/// Import a message. Importing duplicates is fine, but the signature
/// and authorization should have already been checked.
pub fn import_message(
&mut self,
message: LocalizedMessage<Candidate, Digest, AuthorityId, Signature>,
)
{
) -> Result<(), Misbehavior<Digest, Signature>> {
// message from different round.
if message.message.round_number() != self.round_number {
return;
return Ok(());
}

let (sender, signature) = (message.sender, message.signature);
Expand All @@ -229,19 +221,21 @@ impl<Candidate, Digest, AuthorityId, Signature> Accumulator<Candidate, Digest, A
&mut self,
proposal: Candidate,
sender: AuthorityId,
) {
if sender != self.round_proposer || self.proposal.is_some() { return }
) -> Result<(), Misbehavior<Digest, Signature>> {
// TODO: find a way to check for proposal misbehavior without opening up DoS vectors.
if sender != self.round_proposer || self.proposal.is_some() { return Ok(()) }

self.proposal = Some(proposal.clone());
self.state = State::Proposed(proposal);
Ok(())
}

fn import_prepare(
&mut self,
digest: Digest,
sender: AuthorityId,
signature: Signature,
) {
) -> Result<(), Misbehavior<Digest, Signature>> {
// ignore any subsequent prepares by the same sender.
let threshold_prepared = match self.prepares.entry(sender.clone()) {
Entry::Vacant(vacant) => {
Expand All @@ -258,10 +252,11 @@ impl<Candidate, Digest, AuthorityId, Signature> Accumulator<Candidate, Digest, A
Entry::Occupied(occupied) => {
// if digest is different, that's misbehavior.
if occupied.get().0 != digest {
self.misbehavior.insert(
sender,
Misbehavior::DoublePrepare(occupied.get().clone(), (digest, signature))
);
return Err(Misbehavior::DoublePrepare(
self.round_number,
occupied.get().clone(),
(digest, signature)
));
}

None
Expand All @@ -287,14 +282,16 @@ impl<Candidate, Digest, AuthorityId, Signature> Accumulator<Candidate, Digest, A
signatures: signatures,
}));
}

Ok(())
}

fn import_commit(
&mut self,
digest: Digest,
sender: AuthorityId,
signature: Signature,
) {
) -> Result<(), Misbehavior<Digest, Signature>> {
// ignore any subsequent commits by the same sender.
let threshold_committed = match self.commits.entry(sender.clone()) {
Entry::Vacant(vacant) => {
Expand All @@ -311,10 +308,11 @@ impl<Candidate, Digest, AuthorityId, Signature> Accumulator<Candidate, Digest, A
Entry::Occupied(occupied) => {
// if digest is different, that's misbehavior.
if occupied.get().0 != digest {
self.misbehavior.insert(
sender,
Misbehavior::DoubleCommit(occupied.get().clone(), (digest, signature))
);
return Err(Misbehavior::DoubleCommit(
self.round_number,
occupied.get().clone(),
(digest, signature)
));
}

None
Expand All @@ -338,15 +336,17 @@ impl<Candidate, Digest, AuthorityId, Signature> Accumulator<Candidate, Digest, A
signatures: signatures,
}));
}

Ok(())
}

fn import_advance_round(
&mut self,
sender: AuthorityId,
) {
) -> Result<(), Misbehavior<Digest, Signature>> {
self.advance_round.insert(sender);

if self.advance_round.len() < self.threshold { return }
if self.advance_round.len() < self.threshold { return Ok(()) }

// allow transition to new round only if we haven't produced a justification
// yet.
Expand All @@ -355,7 +355,9 @@ impl<Candidate, Digest, AuthorityId, Signature> Accumulator<Candidate, Digest, A
State::Prepared(j) => State::Advanced(Some(j)),
State::Advanced(j) => State::Advanced(j),
State::Begin | State::Proposed(_) => State::Advanced(None),
}
};

Ok(())
}
}

Expand Down Expand Up @@ -415,15 +417,15 @@ mod tests {
sender: AuthorityId(5),
signature: Signature(999, 5),
message: Message::Propose(1, Candidate(999)),
});
}).unwrap();

assert_eq!(accumulator.state(), &State::Begin);

accumulator.import_message(LocalizedMessage {
sender: AuthorityId(8),
signature: Signature(999, 8),
message: Message::Propose(1, Candidate(999)),
});
}).unwrap();

assert_eq!(accumulator.state(), &State::Proposed(Candidate(999)));
}
Expand All @@ -437,7 +439,7 @@ mod tests {
sender: AuthorityId(8),
signature: Signature(999, 8),
message: Message::Propose(1, Candidate(999)),
});
}).unwrap();

assert_eq!(accumulator.state(), &State::Proposed(Candidate(999)));

Expand All @@ -446,7 +448,7 @@ mod tests {
sender: AuthorityId(i),
signature: Signature(999, i),
message: Message::Prepare(1, Digest(999)),
});
}).unwrap();

assert_eq!(accumulator.state(), &State::Proposed(Candidate(999)));
}
Expand All @@ -455,7 +457,7 @@ mod tests {
sender: AuthorityId(7),
signature: Signature(999, 7),
message: Message::Prepare(1, Digest(999)),
});
}).unwrap();

match accumulator.state() {
&State::Prepared(ref j) => assert_eq!(j.digest, Digest(999)),
Expand All @@ -472,7 +474,7 @@ mod tests {
sender: AuthorityId(8),
signature: Signature(999, 8),
message: Message::Propose(1, Candidate(999)),
});
}).unwrap();

assert_eq!(accumulator.state(), &State::Proposed(Candidate(999)));

Expand All @@ -481,7 +483,7 @@ mod tests {
sender: AuthorityId(i),
signature: Signature(999, i),
message: Message::Prepare(1, Digest(999)),
});
}).unwrap();

assert_eq!(accumulator.state(), &State::Proposed(Candidate(999)));
}
Expand All @@ -490,7 +492,7 @@ mod tests {
sender: AuthorityId(7),
signature: Signature(999, 7),
message: Message::Prepare(1, Digest(999)),
});
}).unwrap();

match accumulator.state() {
&State::Prepared(ref j) => assert_eq!(j.digest, Digest(999)),
Expand All @@ -502,7 +504,7 @@ mod tests {
sender: AuthorityId(i),
signature: Signature(999, i),
message: Message::Commit(1, Digest(999)),
});
}).unwrap();

match accumulator.state() {
&State::Prepared(_) => {},
Expand All @@ -514,7 +516,7 @@ mod tests {
sender: AuthorityId(7),
signature: Signature(999, 7),
message: Message::Commit(1, Digest(999)),
});
}).unwrap();

match accumulator.state() {
&State::Committed(ref j) => assert_eq!(j.digest, Digest(999)),
Expand All @@ -531,7 +533,7 @@ mod tests {
sender: AuthorityId(8),
signature: Signature(999, 8),
message: Message::Propose(1, Candidate(999)),
});
}).unwrap();

assert_eq!(accumulator.state(), &State::Proposed(Candidate(999)));

Expand All @@ -540,7 +542,7 @@ mod tests {
sender: AuthorityId(i),
signature: Signature(999, i),
message: Message::Prepare(1, Digest(999)),
});
}).unwrap();
}

match accumulator.state() {
Expand All @@ -553,7 +555,7 @@ mod tests {
sender: AuthorityId(i),
signature: Signature(999, i),
message: Message::AdvanceRound(1),
});
}).unwrap();

match accumulator.state() {
&State::Prepared(_) => {},
Expand All @@ -565,7 +567,7 @@ mod tests {
sender: AuthorityId(7),
signature: Signature(999, 7),
message: Message::AdvanceRound(1),
});
}).unwrap();

match accumulator.state() {
&State::Advanced(Some(_)) => {},
Expand All @@ -583,7 +585,7 @@ mod tests {
sender: AuthorityId(i),
signature: Signature(999, i),
message: Message::Prepare(1, Digest(999)),
});
}).unwrap();
}

match accumulator.state() {
Expand All @@ -596,7 +598,7 @@ mod tests {
sender: AuthorityId(i),
signature: Signature(999, i),
message: Message::Commit(1, Digest(999)),
});
}).unwrap();
}

match accumulator.state() {
Expand All @@ -615,7 +617,7 @@ mod tests {
sender: AuthorityId(i),
signature: Signature(1, i),
message: Message::AdvanceRound(1),
});
}).unwrap();
}

match accumulator.state() {
Expand All @@ -634,7 +636,7 @@ mod tests {
sender: AuthorityId(i),
signature: Signature(999, i),
message: Message::Commit(1, Digest(999)),
});
}).unwrap();
}

match accumulator.state() {
Expand All @@ -653,17 +655,15 @@ mod tests {
sender: AuthorityId(i),
signature: Signature(999, i),
message: Message::Prepare(1, Digest(999)),
});
}).unwrap();

assert!(!accumulator.misbehavior.contains_key(&AuthorityId(i)));

accumulator.import_message(LocalizedMessage {
let res = accumulator.import_message(LocalizedMessage {
sender: AuthorityId(i),
signature: Signature(123, i),
message: Message::Prepare(1, Digest(123)),
});

assert!(accumulator.misbehavior.contains_key(&AuthorityId(i)));
assert!(res.is_err());

}
}
Expand All @@ -678,17 +678,15 @@ mod tests {
sender: AuthorityId(i),
signature: Signature(999, i),
message: Message::Commit(1, Digest(999)),
});
}).unwrap();

assert!(!accumulator.misbehavior.contains_key(&AuthorityId(i)));

accumulator.import_message(LocalizedMessage {
let res = accumulator.import_message(LocalizedMessage {
sender: AuthorityId(i),
signature: Signature(123, i),
message: Message::Commit(1, Digest(123)),
});

assert!(accumulator.misbehavior.contains_key(&AuthorityId(i)));
assert!(res.is_err());

}
}
Expand Down
Loading