zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8978 Commits
183 Branches
291 MiB
Tree: 051e127d38
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '051e127d38'
${ noResults }
tendermint/test/e2e/runner/evidence.go

274 lines
8.2 KiB
Raw Normal View History

e2e: add evidence generation and testing (#6276)
4 years ago
test: create common functions for easily producing tm data structures (#6435)
4 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
evidence: fix bug with hashes (#6375)
4 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
statesync: tune backfill process (#6565) This PR make some tweaks to backfill after running e2e tests: - Separates sync and backfill as two distinct processes that the node calls. The reason is because if sync fails then the node should fail but if backfill fails it is still possible to proceed. - Removes peers who don't have the block at a height from the local peer list. As the process goes backwards if a node doesn't have a block at a height they're likely pruning blocks and thus they won't have any prior ones either. - Sleep when we've run out of peers, then try again.
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
evidence: fix bug with hashes (#6375)
4 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
test: create common functions for easily producing tm data structures (#6435)
4 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
test: create common functions for easily producing tm data structures (#6435)
4 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
test: create common functions for easily producing tm data structures (#6435)
4 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
test: create common functions for easily producing tm data structures (#6435)
4 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
 
  1. package main
  2. 

  3. import (
  4. 	"bytes"
  5. 	"context"
  6. 	"fmt"
  7. 	"io/ioutil"
  8. 	"math/rand"
  9. 	"path/filepath"
  10. 	"time"
  11. 

  12. 	"github.com/tendermint/tendermint/crypto"
  13. 	"github.com/tendermint/tendermint/crypto/tmhash"
  14. 	"github.com/tendermint/tendermint/internal/test/factory"
  15. 	tmjson "github.com/tendermint/tendermint/libs/json"
  16. 	"github.com/tendermint/tendermint/privval"
  17. 	tmproto "github.com/tendermint/tendermint/proto/tendermint/types"
  18. 	e2e "github.com/tendermint/tendermint/test/e2e/pkg"
  19. 	"github.com/tendermint/tendermint/types"
  20. 	"github.com/tendermint/tendermint/version"
  21. )
  22. 

  23. // 1 in 4 evidence is light client evidence, the rest is duplicate vote evidence

  24. const lightClientEvidenceRatio = 4
  25. 

  26. // InjectEvidence takes a running testnet and generates an amount of valid

  27. // evidence and broadcasts it to a random node through the rpc endpoint `/broadcast_evidence`.

  28. // Evidence is random and can be a mixture of LightClientAttackEvidence and

  29. // DuplicateVoteEvidence.

  30. func InjectEvidence(testnet *e2e.Testnet, amount int) error {
  31. 	// select a random node

  32. 	targetNode := testnet.RandomNode()
  33. 

  34. 	logger.Info(fmt.Sprintf("Injecting evidence through %v (amount: %d)...", targetNode.Name, amount))
  35. 

  36. 	client, err := targetNode.Client()
  37. 	if err != nil {
  38. 		return err
  39. 	}
  40. 

  41. 	// request the latest block and validator set from the node

  42. 	blockRes, err := client.Block(context.Background(), nil)
  43. 	if err != nil {
  44. 		return err
  45. 	}
  46. 	lightEvidenceCommonHeight := blockRes.Block.Height
  47. 	waitHeight := blockRes.Block.Height + 3
  48. 	duplicateVoteHeight := waitHeight
  49. 

  50. 	nValidators := 100
  51. 	valRes, err := client.Validators(context.Background(), &lightEvidenceCommonHeight, nil, &nValidators)
  52. 	if err != nil {
  53. 		return err
  54. 	}
  55. 	valSet, err := types.ValidatorSetFromExistingValidators(valRes.Validators)
  56. 	if err != nil {
  57. 		return err
  58. 	}
  59. 

  60. 	// get the private keys of all the validators in the network

  61. 	privVals, err := getPrivateValidatorKeys(testnet)
  62. 	if err != nil {
  63. 		return err
  64. 	}
  65. 

  66. 	// wait for the node to reach the height above the forged height so that

  67. 	// it is able to validate the evidence

  68. 	status, err := waitForNode(targetNode, waitHeight, 15*time.Second)
  69. 	if err != nil {
  70. 		return err
  71. 	}
  72. 	duplicateVoteTime := status.SyncInfo.LatestBlockTime
  73. 

  74. 	var ev types.Evidence
  75. 	for i := 1; i <= amount; i++ {
  76. 		if i%lightClientEvidenceRatio == 0 {
  77. 			ev, err = generateLightClientAttackEvidence(
  78. 				privVals, lightEvidenceCommonHeight, valSet, testnet.Name, blockRes.Block.Time,
  79. 			)
  80. 		} else {
  81. 			ev, err = generateDuplicateVoteEvidence(
  82. 				privVals, duplicateVoteHeight, valSet, testnet.Name, duplicateVoteTime,
  83. 			)
  84. 		}
  85. 		if err != nil {
  86. 			return err
  87. 		}
  88. 

  89. 		_, err := client.BroadcastEvidence(context.Background(), ev)
  90. 		if err != nil {
  91. 			return err
  92. 		}
  93. 	}
  94. 

  95. 	logger.Info(fmt.Sprintf("Finished sending evidence (height %d)", blockRes.Block.Height+2))
  96. 

  97. 	return nil
  98. }
  99. 

  100. func getPrivateValidatorKeys(testnet *e2e.Testnet) ([]types.MockPV, error) {
  101. 	privVals := []types.MockPV{}
  102. 

  103. 	for _, node := range testnet.Nodes {
  104. 		if node.Mode == e2e.ModeValidator {
  105. 			privKeyPath := filepath.Join(testnet.Dir, node.Name, PrivvalKeyFile)
  106. 			privKey, err := readPrivKey(privKeyPath)
  107. 			if err != nil {
  108. 				return nil, err
  109. 			}
  110. 			// Create mock private validators from the validators private key. MockPV is

  111. 			// stateless which means we can double vote and do other funky stuff

  112. 			privVals = append(privVals, types.NewMockPVWithParams(privKey, false, false))
  113. 		}
  114. 	}
  115. 

  116. 	return privVals, nil
  117. }
  118. 

  119. // creates evidence of a lunatic attack. The height provided is the common height.

  120. // The forged height happens 2 blocks later.

  121. func generateLightClientAttackEvidence(
  122. 	privVals []types.MockPV,
  123. 	height int64,
  124. 	vals *types.ValidatorSet,
  125. 	chainID string,
  126. 	evTime time.Time,
  127. ) (*types.LightClientAttackEvidence, error) {
  128. 	// forge a random header

  129. 	forgedHeight := height + 2
  130. 	forgedTime := evTime.Add(1 * time.Second)
  131. 	header := makeHeaderRandom(chainID, forgedHeight)
  132. 	header.Time = forgedTime
  133. 

  134. 	// add a new bogus validator and remove an existing one to

  135. 	// vary the validator set slightly

  136. 	pv, conflictingVals, err := mutateValidatorSet(privVals, vals)
  137. 	if err != nil {
  138. 		return nil, err
  139. 	}
  140. 

  141. 	header.ValidatorsHash = conflictingVals.Hash()
  142. 

  143. 	// create a commit for the forged header

  144. 	blockID := makeBlockID(header.Hash(), 1000, []byte("partshash"))
  145. 	voteSet := types.NewVoteSet(chainID, forgedHeight, 0, tmproto.SignedMsgType(2), conflictingVals)
  146. 	commit, err := factory.MakeCommit(blockID, forgedHeight, 0, voteSet, pv, forgedTime)
  147. 	if err != nil {
  148. 		return nil, err
  149. 	}
  150. 

  151. 	ev := &types.LightClientAttackEvidence{
  152. 		ConflictingBlock: &types.LightBlock{
  153. 			SignedHeader: &types.SignedHeader{
  154. 				Header: header,
  155. 				Commit: commit,
  156. 			},
  157. 			ValidatorSet: conflictingVals,
  158. 		},
  159. 		CommonHeight:     height,
  160. 		TotalVotingPower: vals.TotalVotingPower(),
  161. 		Timestamp:        evTime,
  162. 	}
  163. 	ev.ByzantineValidators = ev.GetByzantineValidators(vals, &types.SignedHeader{
  164. 		Header: makeHeaderRandom(chainID, forgedHeight),
  165. 	})
  166. 	return ev, nil
  167. }
  168. 

  169. // generateDuplicateVoteEvidence picks a random validator from the val set and

  170. // returns duplicate vote evidence against the validator

  171. func generateDuplicateVoteEvidence(
  172. 	privVals []types.MockPV,
  173. 	height int64,
  174. 	vals *types.ValidatorSet,
  175. 	chainID string,
  176. 	time time.Time,
  177. ) (*types.DuplicateVoteEvidence, error) {
  178. 	// nolint:gosec // G404: Use of weak random number generator

  179. 	privVal := privVals[rand.Intn(len(privVals))]
  180. 

  181. 	valIdx, _ := vals.GetByAddress(privVal.PrivKey.PubKey().Address())
  182. 	voteA, err := factory.MakeVote(privVal, chainID, valIdx, height, 0, 2, makeRandomBlockID(), time)
  183. 	if err != nil {
  184. 		return nil, err
  185. 	}
  186. 	voteB, err := factory.MakeVote(privVal, chainID, valIdx, height, 0, 2, makeRandomBlockID(), time)
  187. 	if err != nil {
  188. 		return nil, err
  189. 	}
  190. 	return types.NewDuplicateVoteEvidence(voteA, voteB, time, vals), nil
  191. }
  192. 

  193. func readPrivKey(keyFilePath string) (crypto.PrivKey, error) {
  194. 	keyJSONBytes, err := ioutil.ReadFile(keyFilePath)
  195. 	if err != nil {
  196. 		return nil, err
  197. 	}
  198. 	pvKey := privval.FilePVKey{}
  199. 	err = tmjson.Unmarshal(keyJSONBytes, &pvKey)
  200. 	if err != nil {
  201. 		return nil, fmt.Errorf("error reading PrivValidator key from %v: %w", keyFilePath, err)
  202. 	}
  203. 

  204. 	return pvKey.PrivKey, nil
  205. }
  206. 

  207. func makeHeaderRandom(chainID string, height int64) *types.Header {
  208. 	return &types.Header{
  209. 		Version:            version.Consensus{Block: version.BlockProtocol, App: 1},
  210. 		ChainID:            chainID,
  211. 		Height:             height,
  212. 		Time:               time.Now(),
  213. 		LastBlockID:        makeBlockID([]byte("headerhash"), 1000, []byte("partshash")),
  214. 		LastCommitHash:     crypto.CRandBytes(tmhash.Size),
  215. 		DataHash:           crypto.CRandBytes(tmhash.Size),
  216. 		ValidatorsHash:     crypto.CRandBytes(tmhash.Size),
  217. 		NextValidatorsHash: crypto.CRandBytes(tmhash.Size),
  218. 		ConsensusHash:      crypto.CRandBytes(tmhash.Size),
  219. 		AppHash:            crypto.CRandBytes(tmhash.Size),
  220. 		LastResultsHash:    crypto.CRandBytes(tmhash.Size),
  221. 		EvidenceHash:       crypto.CRandBytes(tmhash.Size),
  222. 		ProposerAddress:    crypto.CRandBytes(crypto.AddressSize),
  223. 	}
  224. }
  225. 

  226. func makeRandomBlockID() types.BlockID {
  227. 	return makeBlockID(crypto.CRandBytes(tmhash.Size), 100, crypto.CRandBytes(tmhash.Size))
  228. }
  229. 

  230. func makeBlockID(hash []byte, partSetSize uint32, partSetHash []byte) types.BlockID {
  231. 	var (
  232. 		h   = make([]byte, tmhash.Size)
  233. 		psH = make([]byte, tmhash.Size)
  234. 	)
  235. 	copy(h, hash)
  236. 	copy(psH, partSetHash)
  237. 	return types.BlockID{
  238. 		Hash: h,
  239. 		PartSetHeader: types.PartSetHeader{
  240. 			Total: partSetSize,
  241. 			Hash:  psH,
  242. 		},
  243. 	}
  244. }
  245. 

  246. func mutateValidatorSet(privVals []types.MockPV, vals *types.ValidatorSet,
  247. ) ([]types.PrivValidator, *types.ValidatorSet, error) {
  248. 	newVal, newPrivVal := factory.RandValidator(false, 10)
  249. 

  250. 	var newVals *types.ValidatorSet
  251. 	if vals.Size() > 2 {
  252. 		newVals = types.NewValidatorSet(append(vals.Copy().Validators[:vals.Size()-1], newVal))
  253. 	} else {
  254. 		newVals = types.NewValidatorSet(append(vals.Copy().Validators, newVal))
  255. 	}
  256. 

  257. 	// we need to sort the priv validators with the same index as the validator set

  258. 	pv := make([]types.PrivValidator, newVals.Size())
  259. 	for idx, val := range newVals.Validators {
  260. 		found := false
  261. 		for _, p := range append(privVals, newPrivVal.(types.MockPV)) {
  262. 			if bytes.Equal(p.PrivKey.PubKey().Address(), val.Address) {
  263. 				pv[idx] = p
  264. 				found = true
  265. 				break
  266. 			}
  267. 		}
  268. 		if !found {
  269. 			return nil, nil, fmt.Errorf("missing priv validator for %v", val.Address)
  270. 		}
  271. 	}
  272. 

  273. 	return pv, newVals, nil
  274. }