zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7763 Commits
183 Branches
291 MiB
Tree: 2544a5cf3a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2544a5cf3a'
${ noResults }
tendermint/privval/signer_client.go

131 lines
3.4 KiB
Raw Normal View History

privval: refactor Remote signers (#3370) This PR is related to #3107 and a continuation of #3351 It is important to emphasise that in the privval original design, client/server and listening/dialing roles are inverted and do not follow a conventional interaction. Given two hosts A and B: Host A is listener/client Host B is dialer/server (contains the secret key) When A requires a signature, it needs to wait for B to dial in before it can issue a request. A only accepts a single connection and any failure leads to dropping the connection and waiting for B to reconnect. The original rationale behind this design was based on security. Host B only allows outbound connections to a list of whitelisted hosts. It is not possible to reach B unless B dials in. There are no listening/open ports in B. This PR results in the following changes: Refactors ping/heartbeat to avoid previously existing race conditions. Separates transport (dialer/listener) from signing (client/server) concerns to simplify workflow. Unifies and abstracts away the differences between unix and tcp sockets. A single signer endpoint implementation unifies connection handling code (read/write/close/connection obj) The signer request handler (server side) is customizable to increase testability. Updates and extends unit tests A high level overview of the classes is as follows: Transport (endpoints): The following classes take care of establishing a connection SignerDialerEndpoint SignerListeningEndpoint SignerEndpoint groups common functionality (read/write/timeouts/etc.) Signing (client/server): The following classes take care of exchanging request/responses SignerClient SignerServer This PR also closes #3601 Commits: * refactoring - work in progress * reworking unit tests * Encapsulating and fixing unit tests * Improve tests * Clean up * Fix/improve unit tests * clean up tests * Improving service endpoint * fixing unit test * fix linter issues * avoid invalid cache values (improve later?) * complete implementation * wip * improved connection loop * Improve reconnections + fixing unit tests * addressing comments * small formatting changes * clean up * Update node/node.go Co-Authored-By: jleni <juan.leni@zondax.ch> * Update privval/signer_client.go Co-Authored-By: jleni <juan.leni@zondax.ch> * Update privval/signer_client_test.go Co-Authored-By: jleni <juan.leni@zondax.ch> * check during initialization * dropping connecting when writing fails * removing break * use t.log instead * unifying and using cmn.GetFreePort() * review fixes * reordering and unifying drop connection * closing instead of signalling * refactored service loop * removed superfluous brackets * GetPubKey can return errors * Revert "GetPubKey can return errors" This reverts commit 68c06f19b4650389d7e5ab1659b318889028202c. * adding entry to changelog * Update CHANGELOG_PENDING.md Co-Authored-By: jleni <juan.leni@zondax.ch> * Update privval/signer_client.go Co-Authored-By: jleni <juan.leni@zondax.ch> * Update privval/signer_dialer_endpoint.go Co-Authored-By: jleni <juan.leni@zondax.ch> * Update privval/signer_dialer_endpoint.go Co-Authored-By: jleni <juan.leni@zondax.ch> * Update privval/signer_dialer_endpoint.go Co-Authored-By: jleni <juan.leni@zondax.ch> * Update privval/signer_dialer_endpoint.go Co-Authored-By: jleni <juan.leni@zondax.ch> * Update privval/signer_listener_endpoint_test.go Co-Authored-By: jleni <juan.leni@zondax.ch> * updating node.go * review fixes * fixes linter * fixing unit test * small fixes in comments * addressing review comments * addressing review comments 2 * reverting suggestion * Update privval/signer_client_test.go Co-Authored-By: Anton Kaliaev <anton.kalyaev@gmail.com> * Update privval/signer_client_test.go Co-Authored-By: Anton Kaliaev <anton.kalyaev@gmail.com> * Update privval/signer_listener_endpoint_test.go Co-Authored-By: Anton Kaliaev <anton.kalyaev@gmail.com> * do not expose brokenSignerDialerEndpoint * clean up logging * unifying methods shorten test time signer also drops * reenabling pings * improving testability + unit test * fixing go fmt + unit test * remove unused code * Addressing review comments * simplifying connection workflow * fix linter/go import issue * using base service quit * updating comment * Simplifying design + adjusting names * fixing linter issues * refactoring test harness + fixes * Addressing review comments * cleaning up * adding additional error check
5 years ago
 
  1. package privval
  2. 

  3. import (
  4. 	"time"
  5. 

  6. 	"github.com/pkg/errors"
  7. 

  8. 	"github.com/tendermint/tendermint/crypto"
  9. 	"github.com/tendermint/tendermint/types"
  10. )
  11. 

  12. // SignerClient implements PrivValidator.

  13. // Handles remote validator connections that provide signing services

  14. type SignerClient struct {
  15. 	endpoint *SignerListenerEndpoint
  16. }
  17. 

  18. var _ types.PrivValidator = (*SignerClient)(nil)
  19. 

  20. // NewSignerClient returns an instance of SignerClient.

  21. // it will start the endpoint (if not already started)

  22. func NewSignerClient(endpoint *SignerListenerEndpoint) (*SignerClient, error) {
  23. 	if !endpoint.IsRunning() {
  24. 		if err := endpoint.Start(); err != nil {
  25. 			return nil, errors.Wrap(err, "failed to start listener endpoint")
  26. 		}
  27. 	}
  28. 

  29. 	return &SignerClient{endpoint: endpoint}, nil
  30. }
  31. 

  32. // Close closes the underlying connection

  33. func (sc *SignerClient) Close() error {
  34. 	return sc.endpoint.Close()
  35. }
  36. 

  37. // IsConnected indicates with the signer is connected to a remote signing service

  38. func (sc *SignerClient) IsConnected() bool {
  39. 	return sc.endpoint.IsConnected()
  40. }
  41. 

  42. // WaitForConnection waits maxWait for a connection or returns a timeout error

  43. func (sc *SignerClient) WaitForConnection(maxWait time.Duration) error {
  44. 	return sc.endpoint.WaitForConnection(maxWait)
  45. }
  46. 

  47. //--------------------------------------------------------

  48. // Implement PrivValidator

  49. 

  50. // Ping sends a ping request to the remote signer

  51. func (sc *SignerClient) Ping() error {
  52. 	response, err := sc.endpoint.SendRequest(&PingRequest{})
  53. 

  54. 	if err != nil {
  55. 		sc.endpoint.Logger.Error("SignerClient::Ping", "err", err)
  56. 		return nil
  57. 	}
  58. 

  59. 	_, ok := response.(*PingResponse)
  60. 	if !ok {
  61. 		sc.endpoint.Logger.Error("SignerClient::Ping", "err", "response != PingResponse")
  62. 		return err
  63. 	}
  64. 

  65. 	return nil
  66. }
  67. 

  68. // GetPubKey retrieves a public key from a remote signer

  69. func (sc *SignerClient) GetPubKey() crypto.PubKey {
  70. 	response, err := sc.endpoint.SendRequest(&PubKeyRequest{})
  71. 	if err != nil {
  72. 		sc.endpoint.Logger.Error("SignerClient::GetPubKey", "err", err)
  73. 		return nil
  74. 	}
  75. 

  76. 	pubKeyResp, ok := response.(*PubKeyResponse)
  77. 	if !ok {
  78. 		sc.endpoint.Logger.Error("SignerClient::GetPubKey", "err", "response != PubKeyResponse")
  79. 		return nil
  80. 	}
  81. 

  82. 	if pubKeyResp.Error != nil {
  83. 		sc.endpoint.Logger.Error("failed to get private validator's public key", "err", pubKeyResp.Error)
  84. 		return nil
  85. 	}
  86. 

  87. 	return pubKeyResp.PubKey
  88. }
  89. 

  90. // SignVote requests a remote signer to sign a vote

  91. func (sc *SignerClient) SignVote(chainID string, vote *types.Vote) error {
  92. 	response, err := sc.endpoint.SendRequest(&SignVoteRequest{Vote: vote})
  93. 	if err != nil {
  94. 		sc.endpoint.Logger.Error("SignerClient::SignVote", "err", err)
  95. 		return err
  96. 	}
  97. 

  98. 	resp, ok := response.(*SignedVoteResponse)
  99. 	if !ok {
  100. 		sc.endpoint.Logger.Error("SignerClient::GetPubKey", "err", "response != SignedVoteResponse")
  101. 		return ErrUnexpectedResponse
  102. 	}
  103. 

  104. 	if resp.Error != nil {
  105. 		return resp.Error
  106. 	}
  107. 	*vote = *resp.Vote
  108. 

  109. 	return nil
  110. }
  111. 

  112. // SignProposal requests a remote signer to sign a proposal

  113. func (sc *SignerClient) SignProposal(chainID string, proposal *types.Proposal) error {
  114. 	response, err := sc.endpoint.SendRequest(&SignProposalRequest{Proposal: proposal})
  115. 	if err != nil {
  116. 		sc.endpoint.Logger.Error("SignerClient::SignProposal", "err", err)
  117. 		return err
  118. 	}
  119. 

  120. 	resp, ok := response.(*SignedProposalResponse)
  121. 	if !ok {
  122. 		sc.endpoint.Logger.Error("SignerClient::SignProposal", "err", "response != SignedProposalResponse")
  123. 		return ErrUnexpectedResponse
  124. 	}
  125. 	if resp.Error != nil {
  126. 		return resp.Error
  127. 	}
  128. 	*proposal = *resp.Proposal
  129. 

  130. 	return nil
  131. }