This repository has been archived by the owner on Nov 15, 2023. It is now read-only.
grandpa: report equivocations #3868
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
gavofyork
added
A0-please_review
|
We only need the key signing a report transaction to be an account key so that it can pay some fee, right? We've no existing mechanism for actions signed by session keys to change their controller account fees yet? We could maybe permit free reports by the grandpa ed25519 key if the deduplication works well enough, not so universally applicable though. We can chat about this when you like. :) |
…ctually make it work Squashed commit of the following: commit dc8d71c Author: Tomasz Drwięga <tomasz@parity.io> Date: Tue Dec 3 16:29:33 2019 +0100 Split the method to avoid confusing type error message. commit 0c4c037 Author: Tomasz Drwięga <tomasz@parity.io> Date: Tue Dec 3 16:19:55 2019 +0100 Make accounts optional, fix logic. commit d715f64 Author: Tomasz Drwięga <tomasz@parity.io> Date: Tue Dec 3 10:06:20 2019 +0100 Remove warning. commit 3f38218 Merge: f85b890 368318c Author: Tomasz Drwięga <tomasz@parity.io> Date: Tue Dec 3 07:08:05 2019 +0100 Merge branch 'master' into td-signed-transactions commit f85b890 Merge: f8c9540 d8d5da2 Author: Tomasz Drwięga <tomasz@parity.io> Date: Mon Dec 2 13:57:25 2019 +0100 Merge branch 'master' into td-signed-transactions commit f8c9540 Author: Tomasz Drwięga <tomasz@parity.io> Date: Mon Nov 25 17:34:52 2019 +0100 Forgotten import. commit a645b90 Author: Tomasz Drwięga <tomasz@parity.io> Date: Mon Nov 25 17:32:10 2019 +0100 Fix naming and bounds. commit bc28c60 Author: Tomasz Drwięga <tomasz@parity.io> Date: Mon Nov 25 17:01:05 2019 +0100 Add documentation to signed transactions and actually make them work.
rphmeier
approved these changes
May 6, 2020
bkchr
reviewed
May 6, 2020
| #[repr(u8)] | ||
| pub enum ReportEquivocationValidityError { | ||
| /// The proof provided in the report is not valid. | ||
| InvalidEquivocationProof = 1, |
There was a problem hiding this comment.
These errors should be unique for the whole runtime.
Now, it could happen that they overlap and will be useless.
There was a problem hiding this comment.
Where should they go then? Or do I just look for the next free u8?
| pallet-staking = { version = "2.0.0-dev", path = "../../../frame/staking" } | ||
| pallet-authority-discovery = { version = "2.0.0-dev", path = "../../../frame/authority-discovery" } | ||
| pallet-staking = { version = "2.0.0-dev", path = "../../../frame/staking" } | ||
| pallet-grandpa = { version = "2.0.0-dev", path = "../../../frame/grandpa" } |
There was a problem hiding this comment.
This should be in dev-dependencies, pallet-grandpa just used in tests.
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR adds equivocation reporting for GRANDPA. Equivocation detection is implemented in finality-grandpa crate and exposed through
Environmenthooks (prevote_equivocationandprecommit_equivocation).The GRANDPA runtime module is extended with a
report_equivocationmethod that takes an equivocation proof and a session membership proof. This method validates the membership proof using an abstractKeyOwnerProofSystem(historical session module currently) and the equivocation proof (different vote targets, valid signatures, etc.), if both are valid an offence is reported to an abstractReportOffencetype (offences module currently). Additionally, the methodsubmit_report_equivocation_extrinsiccreates and submits a signed transaction for reporting an equivocation.From the node-side, when we want to report an equivocation we need to create the session membership proof. In particular, the membership proof can only be created at a block when the given validator is part of the current session. We figure out the last block at which the current set id is active in a given chain by looking at previously signalled authority changes and create the membership proof at that block. We then call
submit_report_equivocation_extrinsicat the best block.Important
In order to report an equivocation we need to send a signed transaction, therefore we need to have some key available for this, taking into account that this is also the account that will be potentially rewarded. I created a new app-specific crypto ("fish") that should be used for all equivocation reporting tasks (this will also be used for BABE later on). Any comments on this?
The current implementation for generating membership proofs requires having state available for the block on which the session where the equivocation happened was valid. This is not problematic right now since we require validators to run as archive. A future implementation could leverage offchain workers for generating full membership proof tries when a session ends and storing them locally.
TODO:
submit_report_equivocation_extrinsiccall (needs to be offchain context but it's not easy to use that now outside of actual offchain workers)()to disable reporting, needed to integrate in node-template)polkadot companion: paritytech/polkadot#1000