Skip to content

Commit

Permalink
Check initial unit control hashes early (#417)
Browse files Browse the repository at this point in the history
  • Loading branch information
@timorleph
timorleph authored Feb 28, 2024
1 parent d19e31f commit 2cec6cd
Show file tree
Hide file tree
Showing 3 changed files with 82 additions and 25 deletions.
2 changes: 1 addition & 1 deletion consensus/Cargo.toml
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
[package]
name = "aleph-bft"
version = "0.33.1"
version = "0.33.2"
edition = "2021"
authors = ["Cardinal Cryptography"]
categories = ["algorithms", "data-structures", "cryptography", "database"]
Expand Down
24 changes: 18 additions & 6 deletions consensus/src/testing/consensus.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ use crate::{
runway::{NotificationIn, NotificationOut},
testing::{complete_oneshot, gen_config, gen_delay_config, init_log},
units::{ControlHash, PreUnit, Unit, UnitCoord},
Hasher, NodeIndex, SpawnHandle, Terminator,
Hasher, NodeCount, NodeIndex, NodeMap, SpawnHandle, Terminator,
};
use aleph_bft_mock::{Hasher64, Spawner};
use codec::Encode;
Expand Down Expand Up @@ -221,8 +221,20 @@ async fn catches_wrong_control_hash() {
Terminator::create_root(exit_rx, "AlephBFT-consensus"),
),
);
let control_hash = ControlHash::new(&(vec![None; n_nodes]).into());
let bad_pu = PreUnit::<Hasher64>::new(1.into(), 0, control_hash);
let empty_control_hash = ControlHash::new(&(vec![None; n_nodes]).into());
let other_initial_units: Vec<_> = (1..n_nodes)
.map(NodeIndex)
.map(|creator| PreUnit::<Hasher64>::new(creator, 0, empty_control_hash.clone()))
.map(|pu| Unit::new(pu, rand::random()))
.collect();
let _ = tx_in
.send(NotificationIn::NewUnits(other_initial_units.clone()))
.await;
let mut parent_hashes = NodeMap::with_size(NodeCount(n_nodes));
for (id, unit) in other_initial_units.into_iter().enumerate() {
parent_hashes.insert(NodeIndex(id + 1), unit.hash());
}
let bad_pu = PreUnit::<Hasher64>::new(1.into(), 1, ControlHash::new(&parent_hashes));
let bad_control_hash: <Hasher64 as Hasher>::Hash = [0, 1, 0, 1, 0, 1, 0, 1];
assert!(
bad_control_hash != bad_pu.control_hash().combined_hash,
Expand All @@ -231,14 +243,14 @@ async fn catches_wrong_control_hash() {
let mut control_hash = bad_pu.control_hash().clone();
control_hash.combined_hash = bad_control_hash;
let bad_pu = PreUnit::new(bad_pu.creator(), bad_pu.round(), control_hash);
let bad_hash: <Hasher64 as Hasher>::Hash = [0, 1, 0, 1, 0, 1, 0, 1];
let bad_unit = Unit::new(bad_pu, bad_hash);
let some_hash: <Hasher64 as Hasher>::Hash = [0, 1, 0, 1, 0, 1, 0, 1];
let bad_unit = Unit::new(bad_pu, some_hash);
let _ = tx_in.send(NotificationIn::NewUnits(vec![bad_unit])).await;
loop {
let notification = rx_out.next().await.unwrap();
trace!(target: "consensus-test", "notification {:?}", notification);
if let NotificationOut::WrongControlHash(h) = notification {
assert_eq!(h, bad_hash, "Expected notification for our bad unit.");
assert_eq!(h, some_hash, "Expected notification for our bad unit.");
break;
}
}
Expand Down
81 changes: 63 additions & 18 deletions consensus/src/units/validator.rs
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
use crate::{
units::{FullUnit, PreUnit, SignedUnit, UncheckedSignedUnit},
Data, Hasher, Keychain, NodeCount, Round, SessionId, Signature, SignatureError,
units::{ControlHash, FullUnit, PreUnit, SignedUnit, UncheckedSignedUnit},
Data, Hasher, Keychain, NodeCount, NodeMap, Round, SessionId, Signature, SignatureError,
};
use std::{
fmt::{Display, Formatter, Result as FmtResult},
Expand All @@ -15,6 +15,7 @@ pub enum ValidationError<H: Hasher, D: Data, S: Signature> {
RoundTooHigh(FullUnit<H, D>),
WrongNumberOfMembers(PreUnit<H>),
RoundZeroWithParents(PreUnit<H>),
RoundZeroBadControlHash(PreUnit<H>),
NotEnoughParents(PreUnit<H>),
NotDescendantOfPreviousUnit(PreUnit<H>),
}
Expand All @@ -33,6 +34,9 @@ impl<H: Hasher, D: Data, S: Signature> Display for ValidationError<H, D, S> {
pu
),
RoundZeroWithParents(pu) => write!(f, "zero round unit with parents: {:?}", pu),
RoundZeroBadControlHash(pu) => {
write!(f, "zero round unit with wrong control hash: {:?}", pu)
}
NotEnoughParents(pu) => write!(
f,
"nonzero round unit with only {:?} parents: {:?}",
Expand Down Expand Up @@ -98,26 +102,38 @@ impl<K: Keychain> Validator<K> {
&self,
su: SignedUnit<H, D, K>,
) -> Result<H, D, K> {
// NOTE: at this point we cannot validate correctness of the control hash, in principle it could be
// just a random hash, but we still would not be able to deduce that by looking at the unit only.
let pre_unit = su.as_signable().as_pre_unit();
if pre_unit.n_members() != self.keychain.node_count() {
let n_members = pre_unit.n_members();
if n_members != self.keychain.node_count() {
return Err(ValidationError::WrongNumberOfMembers(pre_unit.clone()));
}
let round = pre_unit.round();
let n_parents = pre_unit.n_parents();
if round == 0 && n_parents > NodeCount(0) {
return Err(ValidationError::RoundZeroWithParents(pre_unit.clone()));
}
let threshold = self.threshold;
if round > 0 && n_parents < threshold {
return Err(ValidationError::NotEnoughParents(pre_unit.clone()));
}
let control_hash = &pre_unit.control_hash();
if round > 0 && !control_hash.parents_mask[pre_unit.creator()] {
return Err(ValidationError::NotDescendantOfPreviousUnit(
pre_unit.clone(),
));
match round {
0 => {
if n_parents > NodeCount(0) {
return Err(ValidationError::RoundZeroWithParents(pre_unit.clone()));
}
if pre_unit.control_hash().combined_hash
!= ControlHash::<H>::combine_hashes(&NodeMap::with_size(n_members))
{
return Err(ValidationError::RoundZeroBadControlHash(pre_unit.clone()));
}
}
// NOTE: at this point we cannot validate correctness of the control hash, in principle it could be
// just a random hash, but we still would not be able to deduce that by looking at the unit only.
_ => {
let threshold = self.threshold;
if n_parents < threshold {
return Err(ValidationError::NotEnoughParents(pre_unit.clone()));
}
let control_hash = &pre_unit.control_hash();
if !control_hash.parents_mask[pre_unit.creator()] {
return Err(ValidationError::NotDescendantOfPreviousUnit(
pre_unit.clone(),
));
}
}
}
Ok(su)
}
Expand All @@ -128,7 +144,9 @@ mod tests {
use super::{ValidationError::*, Validator as GenericValidator};
use crate::{
creation::Creator as GenericCreator,
units::{create_units, creator_set, preunit_to_unchecked_signed_unit, preunit_to_unit},
units::{
create_units, creator_set, preunit_to_unchecked_signed_unit, preunit_to_unit, PreUnit,
},
NodeCount, NodeIndex,
};
use aleph_bft_mock::{Hasher64, Keychain};
Expand Down Expand Up @@ -157,6 +175,33 @@ mod tests {
assert_eq!(unchecked_unit, checked_unit.into());
}

#[test]
fn detects_wrong_initial_control_hash() {
let n_members = NodeCount(7);
let threshold = NodeCount(5);
let creator_id = NodeIndex(0);
let session_id = 0;
let round = 0;
let max_round = 2;
let creator = Creator::new(creator_id, n_members);
let keychain = Keychain::new(n_members, creator_id);
let validator = Validator::new(session_id, keychain, max_round, threshold);
let (preunit, _) = creator
.create_unit(round)
.expect("Creation should succeed.");
let mut control_hash = preunit.control_hash().clone();
control_hash.combined_hash = [0, 1, 0, 1, 0, 1, 0, 1];
let preunit = PreUnit::new(preunit.creator(), preunit.round(), control_hash);
let unchecked_unit =
preunit_to_unchecked_signed_unit(preunit.clone(), session_id, &keychain);
let other_preunit = match validator.validate_unit(unchecked_unit.clone()) {
Ok(_) => panic!("Validated bad unit."),
Err(RoundZeroBadControlHash(unit)) => unit,
Err(e) => panic!("Unexpected error from validator: {:?}", e),
};
assert_eq!(other_preunit, preunit);
}

#[test]
fn detects_wrong_session_id() {
let n_members = NodeCount(7);
Expand Down

0 comments on commit 2cec6cd

Please sign in to comment.