Move timestamp verification into validity window package (#1895)

ava-labs · Jan 31, 2025 · 397710b · 397710b
1 parent 3b4e97f
commit 397710b
Show file tree

Hide file tree

Showing 10 changed files with 195 additions and 62 deletions.
diff --git a/chain/base.go b/chain/base.go
@@ -10,9 +10,14 @@ import (
 
 	"github.com/ava-labs/hypersdk/codec"
 	"github.com/ava-labs/hypersdk/consts"
+	"github.com/ava-labs/hypersdk/internal/validitywindow"
 )
 
-const BaseSize = consts.Uint64Len*2 + ids.IDLen
+const (
+	BaseSize = consts.Uint64Len*2 + ids.IDLen
+	// TODO: make this divisor configurable
+	validityWindowTimestampDivisor = consts.MillisecondsPerSecond
+)
 
 type Base struct {
 	// Timestamp is the expiry of the transaction (inclusive). Once this time passes and the
@@ -30,19 +35,10 @@ type Base struct {
 }
 
 func (b *Base) Execute(r Rules, timestamp int64) error {
-	switch {
-	case b.Timestamp%consts.MillisecondsPerSecond != 0:
-		// TODO: make this modulus configurable
-		return fmt.Errorf("%w: timestamp=%d", ErrMisalignedTime, b.Timestamp)
-	case b.Timestamp < timestamp: // tx: 100 block: 110
-		return fmt.Errorf("%w: tx timestamp (%d) < block timestamp (%d)", ErrTimestampTooLate, b.Timestamp, timestamp)
-	case b.Timestamp > timestamp+r.GetValidityWindow(): // tx: 100 block 10
-		return fmt.Errorf("%w: tx timestamp (%d) > block timestamp (%d) + validity window (%d)", ErrTimestampTooEarly, b.Timestamp, timestamp, r.GetValidityWindow())
-	case b.ChainID != r.GetChainID():
-		return ErrInvalidChainID
-	default:
-		return nil
+	if b.ChainID != r.GetChainID() {
+		return fmt.Errorf("%w: chainID=%s, expected=%s", ErrInvalidChainID, b.ChainID, r.GetChainID())
 	}
+	return validitywindow.VerifyTimestamp(b.Timestamp, timestamp, validityWindowTimestampDivisor, r.GetValidityWindow())
 }
 
 func (*Base) Size() int {
@@ -62,7 +58,7 @@ func UnmarshalBase(p *codec.Packer) (*Base, error) {
 	base.Timestamp = p.UnpackInt64(true)
 	if base.Timestamp%consts.MillisecondsPerSecond != 0 {
 		// TODO: make this modulus configurable
-		return nil, fmt.Errorf("%w: timestamp=%d", ErrMisalignedTime, base.Timestamp)
+		return nil, fmt.Errorf("%w: timestamp=%d", validitywindow.ErrMisalignedTime, base.Timestamp)
 	}
 	p.UnpackID(true, &base.ChainID)
 	base.MaxFee = p.UnpackUint64(true)

diff --git a/chain/errors.go b/chain/errors.go
@@ -48,7 +48,6 @@ var (
 	ErrActionNotActivated   = errors.New("action not activated")
 	ErrAuthNotActivated     = errors.New("auth not activated")
 	ErrAuthFailed           = errors.New("auth failed")
-	ErrMisalignedTime       = errors.New("misaligned time")
 	ErrInvalidActor         = errors.New("invalid actor")
 	ErrInvalidSponsor       = errors.New("invalid sponsor")
 	ErrTooManyActions       = errors.New("too many actions")

diff --git a/chain/pre_executor_test.go b/chain/pre_executor_test.go
@@ -142,7 +142,7 @@ func TestPreExecutor(t *testing.T) {
 				Auth: &mockAuth{},
 			},
 			validityWindow: &validitywindowtest.MockTimeValidityWindow[*chain.Transaction]{},
-			err:            chain.ErrTimestampTooLate,
+			err:            validitywindow.ErrTimestampExpired,
 		},
 	}
 

diff --git a/chain/transaction_test.go b/chain/transaction_test.go
@@ -20,6 +20,7 @@ import (
 	"github.com/ava-labs/hypersdk/crypto/ed25519"
 	"github.com/ava-labs/hypersdk/genesis"
 	"github.com/ava-labs/hypersdk/internal/fees"
+	"github.com/ava-labs/hypersdk/internal/validitywindow"
 	"github.com/ava-labs/hypersdk/state"
 	"github.com/ava-labs/hypersdk/utils"
 
@@ -370,21 +371,21 @@ func TestPreExecute(t *testing.T) {
 					},
 				},
 			},
-			err: chain.ErrMisalignedTime,
+			err: validitywindow.ErrMisalignedTime,
 		},
 		{
-			name: "base transaction timestamp too early (61ms > 60ms)",
+			name: "base transaction timestamp too far in future (61ms > 60ms)",
 			tx: &chain.Transaction{
 				TransactionData: chain.TransactionData{
 					Base: &chain.Base{
 						Timestamp: testRules.GetValidityWindow() + consts.MillisecondsPerSecond,
 					},
 				},
 			},
-			err: chain.ErrTimestampTooEarly,
+			err: validitywindow.ErrFutureTimestamp,
 		},
 		{
-			name: "base transaction timestamp too late (1ms < 2ms)",
+			name: "base transaction timestamp expired (1ms < 2ms)",
 			tx: &chain.Transaction{
 				TransactionData: chain.TransactionData{
 					Base: &chain.Base{
@@ -393,7 +394,7 @@ func TestPreExecute(t *testing.T) {
 				},
 			},
 			timestamp: 2 * consts.MillisecondsPerSecond,
-			err:       chain.ErrTimestampTooLate,
+			err:       validitywindow.ErrTimestampExpired,
 		},
 		{
 			name: "base transaction invalid chain id",

diff --git a/internal/validitywindow/validitywindow.go b/internal/validitywindow/validitywindow.go
@@ -22,6 +22,9 @@ import (
 var (
 	_                     Interface[emap.Item] = (*TimeValidityWindow[emap.Item])(nil)
 	ErrDuplicateContainer                      = errors.New("duplicate container")
+	ErrMisalignedTime                          = errors.New("misaligned time")
+	ErrTimestampExpired                        = errors.New("declared timestamp expired")
+	ErrFutureTimestamp                         = errors.New("declared timestamp too far in the future")
 )
 
 type GetTimeValidityWindowFunc func(timestamp int64) int64
@@ -179,3 +182,16 @@ func (v *TimeValidityWindow[T]) isRepeat(
 func (v *TimeValidityWindow[T]) calculateOldestAllowed(timestamp int64) int64 {
 	return max(0, timestamp-v.getTimeValidityWindow(timestamp))
 }
+
+func VerifyTimestamp(containerTimestamp int64, executionTimestamp int64, divisor int64, validityWindow int64) error {
+	switch {
+	case containerTimestamp%divisor != 0:
+		return fmt.Errorf("%w: timestamp (%d) %% divisor (%d) != 0", ErrMisalignedTime, containerTimestamp, divisor)
+	case containerTimestamp < executionTimestamp: // expiry: 100 block: 110
+		return fmt.Errorf("%w: timestamp (%d) < block timestamp (%d)", ErrTimestampExpired, containerTimestamp, executionTimestamp)
+	case containerTimestamp > executionTimestamp+validityWindow: // expiry: 100 block 10
+		return fmt.Errorf("%w: timestamp (%d) > block timestamp (%d) + validity window (%d)", ErrFutureTimestamp, containerTimestamp, executionTimestamp, validityWindow)
+	default:
+		return nil
+	}
+}
diff --git a/internal/validitywindow/validitywindow_test.go b/internal/validitywindow/validitywindow_test.go
@@ -298,6 +298,103 @@ func TestValidityWindowIsRepeat(t *testing.T) {
 	}
 }
 
+func TestVerifyTimestamp(t *testing.T) {
+	tests := []struct {
+		name               string
+		containerTimestamp int64
+		executionTimestamp int64
+		divisor            int64
+		validityWindow     int64
+		expectedErr        error
+	}{
+		{
+			name:               "container ts = execution ts",
+			containerTimestamp: 10,
+			executionTimestamp: 10,
+			divisor:            1,
+			validityWindow:     10,
+		},
+		{
+			name:               "container expired",
+			containerTimestamp: 9,
+			executionTimestamp: 10,
+			divisor:            1,
+			validityWindow:     10,
+			expectedErr:        ErrTimestampExpired,
+		},
+		{
+			name:               "container ts inside validity window",
+			containerTimestamp: 11,
+			executionTimestamp: 10,
+			divisor:            1,
+			validityWindow:     10,
+		},
+		{
+			name:               "container ts past validity window",
+			containerTimestamp: 21,
+			executionTimestamp: 10,
+			divisor:            1,
+			validityWindow:     10,
+			expectedErr:        ErrFutureTimestamp,
+		},
+		{
+			name:               "container ts is not multiple of divisor",
+			containerTimestamp: 11,
+			executionTimestamp: 10,
+			divisor:            2,
+			validityWindow:     10,
+			expectedErr:        ErrMisalignedTime,
+		},
+	}
+
+	for _, test := range tests {
+		t.Run(test.name, func(t *testing.T) {
+			r := require.New(t)
+			err := VerifyTimestamp(test.containerTimestamp, test.executionTimestamp, test.divisor, test.validityWindow)
+			r.ErrorIs(err, test.expectedErr)
+		})
+	}
+}
+
+// TestValidityWindowBoundaryLifespan tests that a container included at the validity window boundary transitions
+// seamlessly from failing veriifcation due to a duplicate within the validity window to failing because it expired.
+func TestValidityWindowBoundaryLifespan(t *testing.T) {
+	r := require.New(t)
+
+	chainIndex := &testChainIndex{}
+	validityWindowDuration := int64(10)
+	validityWindow := NewTimeValidityWindow(&logging.NoLog{}, trace.Noop, chainIndex, func(int64) int64 {
+		return validityWindowDuration
+	})
+
+	// Create accepted genesis block
+	genesisBlk := newExecutionBlock(0, 0, []int64{1})
+	chainIndex.set(genesisBlk.GetID(), genesisBlk)
+	validityWindow.Accept(genesisBlk)
+
+	blk1 := newExecutionBlock(1, 0, []int64{validityWindowDuration})
+	blk2 := newExecutionBlock(2, validityWindowDuration, []int64{validityWindowDuration})
+
+	// Verify a timestamp at the validity window boundary
+	r.NoError(VerifyTimestamp(validityWindowDuration, 0, 1, validityWindowDuration))
+
+	// Including the first block should pass
+	r.NoError(validityWindow.VerifyExpiryReplayProtection(context.Background(), blk1))
+	chainIndex.set(blk1.GetID(), blk1)
+
+	// Verify a timestamp at the validity window boundary fails for both a processing
+	// and accepted parent.
+	// Processing:
+	r.ErrorIs(validityWindow.VerifyExpiryReplayProtection(context.Background(), blk2), ErrDuplicateContainer)
+
+	// Accepted:
+	validityWindow.Accept(blk1)
+	r.ErrorIs(validityWindow.VerifyExpiryReplayProtection(context.Background(), blk2), ErrDuplicateContainer)
+
+	// Verify that after passing the validity window, the timestamp is no longer valid
+	r.ErrorIs(VerifyTimestamp(validityWindowDuration, validityWindowDuration+1, 1, validityWindowDuration), ErrTimestampExpired)
+}
+
 type testChainIndex struct {
 	blocks map[ids.ID]ExecutionBlock[container]
 }

diff --git a/vm/vm_test.go b/vm/vm_test.go
@@ -32,6 +32,7 @@ import (
 	"github.com/ava-labs/hypersdk/extension/externalsubscriber"
 	"github.com/ava-labs/hypersdk/genesis"
 	"github.com/ava-labs/hypersdk/internal/mempool"
+	"github.com/ava-labs/hypersdk/internal/validitywindow"
 	"github.com/ava-labs/hypersdk/keys"
 	"github.com/ava-labs/hypersdk/state"
 	"github.com/ava-labs/hypersdk/state/balance"
@@ -209,7 +210,7 @@ func TestSubmitTx(t *testing.T) {
 			targetErr: nil,
 		},
 		{
-			name: chain.ErrMisalignedTime.Error(),
+			name: validitywindow.ErrMisalignedTime.Error(),
 			makeTx: func(r *require.Assertions, network *vmtest.TestNetwork) *chain.Transaction {
 				unsignedTx := chain.NewTxData(
 					&chain.Base{
@@ -223,10 +224,10 @@ func TestSubmitTx(t *testing.T) {
 				r.NoError(err)
 				return tx
 			},
-			targetErr: chain.ErrMisalignedTime,
+			targetErr: validitywindow.ErrMisalignedTime,
 		},
 		{
-			name: chain.ErrTimestampTooLate.Error(),
+			name: validitywindow.ErrTimestampExpired.Error(),
 			makeTx: func(r *require.Assertions, network *vmtest.TestNetwork) *chain.Transaction {
 				unsignedTx := chain.NewTxData(
 					&chain.Base{
@@ -240,10 +241,10 @@ func TestSubmitTx(t *testing.T) {
 				r.NoError(err)
 				return tx
 			},
-			targetErr: chain.ErrTimestampTooLate,
+			targetErr: validitywindow.ErrTimestampExpired,
 		},
 		{
-			name: chain.ErrTimestampTooEarly.Error(),
+			name: validitywindow.ErrFutureTimestamp.Error(),
 			makeTx: func(r *require.Assertions, network *vmtest.TestNetwork) *chain.Transaction {
 				unsignedTx := chain.NewTxData(
 					&chain.Base{
@@ -257,7 +258,7 @@ func TestSubmitTx(t *testing.T) {
 				r.NoError(err)
 				return tx
 			},
-			targetErr: chain.ErrTimestampTooEarly,
+			targetErr: validitywindow.ErrFutureTimestamp,
 		},
 		{
 			name: "invalid auth",

diff --git a/x/dsmr/node.go b/x/dsmr/node.go
@@ -56,6 +56,14 @@ type Validator struct {
 	PublicKey *bls.PublicKey
 }
 
+type Rules interface {
+	GetValidityWindow() int64
+}
+
+type RuleFactory interface {
+	GetRules(t int64) Rules
+}
+
 func New[T Tx](
 	log logging.Logger,
 	nodeID ids.NodeID,
@@ -75,7 +83,7 @@ func New[T Tx](
 	quorumNum uint64,
 	quorumDen uint64,
 	timeValidityWindow TimeValidityWindow[*emapChunkCertificate],
-	validityWindowDuration time.Duration,
+	ruleFactory RuleFactory,
 ) (*Node[T], error) {
 	return &Node[T]{
 		ID:                            nodeID,
@@ -96,7 +104,7 @@ func New[T Tx](
 		storage:                       chunkStorage,
 		log:                           log,
 		validityWindow:                timeValidityWindow,
-		validityWindowDuration:        validityWindowDuration,
+		ruleFactory:                   ruleFactory,
 	}, nil
 }
 
@@ -121,6 +129,7 @@ type Node[T Tx] struct {
 	LastAccepted                 Block
 	networkID                    uint32
 	chainID                      ids.ID
+	ruleFactory                  RuleFactory
 	getChunkClient               *TypedClient[*dsmr.GetChunkRequest, Chunk[T], []byte]
 	chunkCertificateGossipClient *TypedClient[[]byte, []byte, *dsmr.ChunkCertificateGossip]
 	validators                   []Validator
@@ -133,7 +142,6 @@ type Node[T Tx] struct {
 	ChunkCertificateGossipHandler p2p.Handler
 	storage                       *ChunkStorage[T]
 	log                           logging.Logger
-	validityWindowDuration        time.Duration
 	validityWindow                TimeValidityWindow[*emapChunkCertificate]
 }