zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9184 Commits
183 Branches
291 MiB
Tree: c18470a5f1
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'c18470a5f1'
${ noResults }
tendermint/test/e2e/runner/evidence.go

320 lines
9.3 KiB
Raw Normal View History

e2e: add evidence generation and testing (#6276)
4 years ago
e2e: more consistent node selection during tests (#6857) In the transaction load generator, the e2e test harness previously distributed load randomly to hosts, which was a source of test non-determinism. This change distributes the load generation to the different nodes in the set in a round robin fashion, to produce more reliable results, but does not otherwise change the behavior of the test harness.
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
test: create common functions for easily producing tm data structures (#6435)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
evidence: fix bug with hashes (#6375)
4 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
e2e: use network size in load generator (#7019)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
e2e: more consistent node selection during tests (#6857) In the transaction load generator, the e2e test harness previously distributed load randomly to hosts, which was a source of test non-determinism. This change distributes the load generation to the different nodes in the set in a round robin fashion, to produce more reliable results, but does not otherwise change the behavior of the test harness.
3 years ago
e2e: use network size in load generator (#7019)
3 years ago
e2e: more reliable method for selecting node to inject evidence (#6880) In retrospect my previous implementation of this node, could get unlucky and never find the correct node. This method is more reliable.
3 years ago
e2e: do not inject evidence through light proxy (#6992) In the last run, there were two problems at the RPC layer returned from light nodes' RPC end points. I think exercising the light client proxy RPC system is something that can/should be done via unit testing, and that likely these errors are (in production) transient and (in CI) very likely to fail for test environment issues.
3 years ago
e2e: more consistent node selection during tests (#6857) In the transaction load generator, the e2e test harness previously distributed load randomly to hosts, which was a source of test non-determinism. This change distributes the load generation to the different nodes in the set in a round robin fashion, to produce more reliable results, but does not otherwise change the behavior of the test harness.
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
e2e: ensure evidence validator set matches nodes validator set (#6712)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
e2e: ensure evidence validator set matches nodes validator set (#6712)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
e2e: ensure evidence validator set matches nodes validator set (#6712)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
e2e: slow load processes with longer evidence timeouts (#6936) These are mostly the timeouts that I think we're still hitting in CI. At this point, the tests (on master) pass on my local machine (which is quite beefy) so I think this is just the first in (perhaps?) a sequence of changes that attempt to change timeouts and load patterns so that the tests pass in CI more reliably.
3 years ago
e2e: load generation and logging changes (#6912)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
e2e: load generation and logging changes (#6912)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
evidence: fix bug with hashes (#6375)
4 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
e2e: ensure evidence validator set matches nodes validator set (#6712)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
e2e: ensure evidence validator set matches nodes validator set (#6712)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
e2e: slow load processes with longer evidence timeouts (#6936) These are mostly the timeouts that I think we're still hitting in CI. At this point, the tests (on master) pass on my local machine (which is quite beefy) so I think this is just the first in (perhaps?) a sequence of changes that attempt to change timeouts and load patterns so that the tests pass in CI more reliably.
3 years ago
e2e: load generation and logging changes (#6912)
3 years ago
e2e: longer test harness timeouts (#6728)
3 years ago
e2e: load generation and logging changes (#6912)
3 years ago
e2e: longer test harness timeouts (#6728)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
test: create common functions for easily producing tm data structures (#6435)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
e2e: clean up generation of evidence (#6904)
3 years ago
test: create common functions for easily producing tm data structures (#6435)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
test: create common functions for easily producing tm data structures (#6435)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
e2e: clean up generation of evidence (#6904)
3 years ago
e2e: longer test harness timeouts (#6728)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
e2e: clean up generation of evidence (#6904)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
test: create common functions for easily producing tm data structures (#6435)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
 
  1. package main
  2. 

  3. import (
  4. 	"bytes"
  5. 	"context"
  6. 	"errors"
  7. 	"fmt"
  8. 	"io/ioutil"
  9. 	"math/rand"
  10. 	"path/filepath"
  11. 	"time"
  12. 

  13. 	"github.com/tendermint/tendermint/crypto"
  14. 	"github.com/tendermint/tendermint/crypto/tmhash"
  15. 	"github.com/tendermint/tendermint/internal/test/factory"
  16. 	tmjson "github.com/tendermint/tendermint/libs/json"
  17. 	"github.com/tendermint/tendermint/privval"
  18. 	tmproto "github.com/tendermint/tendermint/proto/tendermint/types"
  19. 	e2e "github.com/tendermint/tendermint/test/e2e/pkg"
  20. 	"github.com/tendermint/tendermint/types"
  21. 	"github.com/tendermint/tendermint/version"
  22. )
  23. 

  24. // 1 in 4 evidence is light client evidence, the rest is duplicate vote evidence

  25. const lightClientEvidenceRatio = 4
  26. 

  27. // InjectEvidence takes a running testnet and generates an amount of valid

  28. // evidence and broadcasts it to a random node through the rpc endpoint `/broadcast_evidence`.

  29. // Evidence is random and can be a mixture of LightClientAttackEvidence and

  30. // DuplicateVoteEvidence.

  31. func InjectEvidence(ctx context.Context, r *rand.Rand, testnet *e2e.Testnet, amount int) error {
  32. 	// select a random node

  33. 	var targetNode *e2e.Node
  34. 

  35. 	for _, idx := range r.Perm(len(testnet.Nodes)) {
  36. 		targetNode = testnet.Nodes[idx]
  37. 

  38. 		if targetNode.Mode == e2e.ModeSeed || targetNode.Mode == e2e.ModeLight {
  39. 			targetNode = nil
  40. 			continue
  41. 		}
  42. 

  43. 		break
  44. 	}
  45. 

  46. 	if targetNode == nil {
  47. 		return errors.New("could not find node to inject evidence into")
  48. 	}
  49. 

  50. 	logger.Info(fmt.Sprintf("Injecting evidence through %v (amount: %d)...", targetNode.Name, amount))
  51. 

  52. 	client, err := targetNode.Client()
  53. 	if err != nil {
  54. 		return err
  55. 	}
  56. 

  57. 	// request the latest block and validator set from the node

  58. 	blockRes, err := client.Block(context.Background(), nil)
  59. 	if err != nil {
  60. 		return err
  61. 	}
  62. 	evidenceHeight := blockRes.Block.Height
  63. 	waitHeight := blockRes.Block.Height + 3
  64. 

  65. 	nValidators := 100
  66. 	valRes, err := client.Validators(context.Background(), &evidenceHeight, nil, &nValidators)
  67. 	if err != nil {
  68. 		return err
  69. 	}
  70. 

  71. 	valSet, err := types.ValidatorSetFromExistingValidators(valRes.Validators)
  72. 	if err != nil {
  73. 		return err
  74. 	}
  75. 

  76. 	// get the private keys of all the validators in the network

  77. 	privVals, err := getPrivateValidatorKeys(testnet)
  78. 	if err != nil {
  79. 		return err
  80. 	}
  81. 

  82. 	wctx, cancel := context.WithTimeout(ctx, time.Minute)
  83. 	defer cancel()
  84. 

  85. 	// wait for the node to reach the height above the forged height so that

  86. 	// it is able to validate the evidence

  87. 	_, err = waitForNode(wctx, targetNode, waitHeight)
  88. 	if err != nil {
  89. 		return err
  90. 	}
  91. 

  92. 	var ev types.Evidence
  93. 	for i := 1; i <= amount; i++ {
  94. 		if i%lightClientEvidenceRatio == 0 {
  95. 			ev, err = generateLightClientAttackEvidence(
  96. 				privVals, evidenceHeight, valSet, testnet.Name, blockRes.Block.Time,
  97. 			)
  98. 		} else {
  99. 			ev, err = generateDuplicateVoteEvidence(
  100. 				privVals, evidenceHeight, valSet, testnet.Name, blockRes.Block.Time,
  101. 			)
  102. 		}
  103. 		if err != nil {
  104. 			return err
  105. 		}
  106. 

  107. 		_, err := client.BroadcastEvidence(context.Background(), ev)
  108. 		if err != nil {
  109. 			return err
  110. 		}
  111. 	}
  112. 

  113. 	wctx, cancel = context.WithTimeout(ctx, 30*time.Second)
  114. 	defer cancel()
  115. 

  116. 	// wait for the node to reach the height above the forged height so that

  117. 	// it is able to validate the evidence

  118. 	_, err = waitForNode(wctx, targetNode, blockRes.Block.Height+2)
  119. 	if err != nil {
  120. 		return err
  121. 	}
  122. 

  123. 	logger.Info(fmt.Sprintf("Finished sending evidence (height %d)", blockRes.Block.Height+2))
  124. 

  125. 	return nil
  126. }
  127. 

  128. func getPrivateValidatorKeys(testnet *e2e.Testnet) ([]types.MockPV, error) {
  129. 	privVals := []types.MockPV{}
  130. 

  131. 	for _, node := range testnet.Nodes {
  132. 		if node.Mode == e2e.ModeValidator {
  133. 			privKeyPath := filepath.Join(testnet.Dir, node.Name, PrivvalKeyFile)
  134. 			privKey, err := readPrivKey(privKeyPath)
  135. 			if err != nil {
  136. 				return nil, err
  137. 			}
  138. 			// Create mock private validators from the validators private key. MockPV is

  139. 			// stateless which means we can double vote and do other funky stuff

  140. 			privVals = append(privVals, types.NewMockPVWithParams(privKey, false, false))
  141. 		}
  142. 	}
  143. 

  144. 	return privVals, nil
  145. }
  146. 

  147. // creates evidence of a lunatic attack. The height provided is the common height.

  148. // The forged height happens 2 blocks later.

  149. func generateLightClientAttackEvidence(
  150. 	privVals []types.MockPV,
  151. 	height int64,
  152. 	vals *types.ValidatorSet,
  153. 	chainID string,
  154. 	evTime time.Time,
  155. ) (*types.LightClientAttackEvidence, error) {
  156. 	// forge a random header

  157. 	forgedHeight := height + 2
  158. 	forgedTime := evTime.Add(1 * time.Second)
  159. 	header := makeHeaderRandom(chainID, forgedHeight)
  160. 	header.Time = forgedTime
  161. 

  162. 	// add a new bogus validator and remove an existing one to

  163. 	// vary the validator set slightly

  164. 	pv, conflictingVals, err := mutateValidatorSet(privVals, vals)
  165. 	if err != nil {
  166. 		return nil, err
  167. 	}
  168. 

  169. 	header.ValidatorsHash = conflictingVals.Hash()
  170. 

  171. 	// create a commit for the forged header

  172. 	blockID := makeBlockID(header.Hash(), 1000, []byte("partshash"))
  173. 	voteSet := types.NewVoteSet(chainID, forgedHeight, 0, tmproto.SignedMsgType(2), conflictingVals)
  174. 	commit, err := factory.MakeCommit(blockID, forgedHeight, 0, voteSet, pv, forgedTime)
  175. 	if err != nil {
  176. 		return nil, err
  177. 	}
  178. 

  179. 	ev := &types.LightClientAttackEvidence{
  180. 		ConflictingBlock: &types.LightBlock{
  181. 			SignedHeader: &types.SignedHeader{
  182. 				Header: header,
  183. 				Commit: commit,
  184. 			},
  185. 			ValidatorSet: conflictingVals,
  186. 		},
  187. 		CommonHeight:     height,
  188. 		TotalVotingPower: vals.TotalVotingPower(),
  189. 		Timestamp:        evTime,
  190. 	}
  191. 	ev.ByzantineValidators = ev.GetByzantineValidators(vals, &types.SignedHeader{
  192. 		Header: makeHeaderRandom(chainID, forgedHeight),
  193. 	})
  194. 	return ev, nil
  195. }
  196. 

  197. // generateDuplicateVoteEvidence picks a random validator from the val set and

  198. // returns duplicate vote evidence against the validator

  199. func generateDuplicateVoteEvidence(
  200. 	privVals []types.MockPV,
  201. 	height int64,
  202. 	vals *types.ValidatorSet,
  203. 	chainID string,
  204. 	time time.Time,
  205. ) (*types.DuplicateVoteEvidence, error) {
  206. 	privVal, valIdx, err := getRandomValidatorIndex(privVals, vals)
  207. 	if err != nil {
  208. 		return nil, err
  209. 	}
  210. 	voteA, err := factory.MakeVote(privVal, chainID, valIdx, height, 0, 2, makeRandomBlockID(), time)
  211. 	if err != nil {
  212. 		return nil, err
  213. 	}
  214. 	voteB, err := factory.MakeVote(privVal, chainID, valIdx, height, 0, 2, makeRandomBlockID(), time)
  215. 	if err != nil {
  216. 		return nil, err
  217. 	}
  218. 	ev, err := types.NewDuplicateVoteEvidence(voteA, voteB, time, vals)
  219. 	if err != nil {
  220. 		return nil, fmt.Errorf("could not generate evidence: %w", err)
  221. 	}
  222. 

  223. 	return ev, nil
  224. }
  225. 

  226. // getRandomValidatorIndex picks a random validator from a slice of mock PrivVals that's

  227. // also part of the validator set, returning the PrivVal and its index in the validator set

  228. func getRandomValidatorIndex(privVals []types.MockPV, vals *types.ValidatorSet) (types.MockPV, int32, error) {
  229. 	for _, idx := range rand.Perm(len(privVals)) {
  230. 		pv := privVals[idx]
  231. 		valIdx, _ := vals.GetByAddress(pv.PrivKey.PubKey().Address())
  232. 		if valIdx >= 0 {
  233. 			return pv, valIdx, nil
  234. 		}
  235. 	}
  236. 	return types.MockPV{}, -1, errors.New("no private validator found in validator set")
  237. }
  238. 

  239. func readPrivKey(keyFilePath string) (crypto.PrivKey, error) {
  240. 	keyJSONBytes, err := ioutil.ReadFile(keyFilePath)
  241. 	if err != nil {
  242. 		return nil, err
  243. 	}
  244. 	pvKey := privval.FilePVKey{}
  245. 	err = tmjson.Unmarshal(keyJSONBytes, &pvKey)
  246. 	if err != nil {
  247. 		return nil, fmt.Errorf("error reading PrivValidator key from %v: %w", keyFilePath, err)
  248. 	}
  249. 

  250. 	return pvKey.PrivKey, nil
  251. }
  252. 

  253. func makeHeaderRandom(chainID string, height int64) *types.Header {
  254. 	return &types.Header{
  255. 		Version:            version.Consensus{Block: version.BlockProtocol, App: 1},
  256. 		ChainID:            chainID,
  257. 		Height:             height,
  258. 		Time:               time.Now(),
  259. 		LastBlockID:        makeBlockID([]byte("headerhash"), 1000, []byte("partshash")),
  260. 		LastCommitHash:     crypto.CRandBytes(tmhash.Size),
  261. 		DataHash:           crypto.CRandBytes(tmhash.Size),
  262. 		ValidatorsHash:     crypto.CRandBytes(tmhash.Size),
  263. 		NextValidatorsHash: crypto.CRandBytes(tmhash.Size),
  264. 		ConsensusHash:      crypto.CRandBytes(tmhash.Size),
  265. 		AppHash:            crypto.CRandBytes(tmhash.Size),
  266. 		LastResultsHash:    crypto.CRandBytes(tmhash.Size),
  267. 		EvidenceHash:       crypto.CRandBytes(tmhash.Size),
  268. 		ProposerAddress:    crypto.CRandBytes(crypto.AddressSize),
  269. 	}
  270. }
  271. 

  272. func makeRandomBlockID() types.BlockID {
  273. 	return makeBlockID(crypto.CRandBytes(tmhash.Size), 100, crypto.CRandBytes(tmhash.Size))
  274. }
  275. 

  276. func makeBlockID(hash []byte, partSetSize uint32, partSetHash []byte) types.BlockID {
  277. 	var (
  278. 		h   = make([]byte, tmhash.Size)
  279. 		psH = make([]byte, tmhash.Size)
  280. 	)
  281. 	copy(h, hash)
  282. 	copy(psH, partSetHash)
  283. 	return types.BlockID{
  284. 		Hash: h,
  285. 		PartSetHeader: types.PartSetHeader{
  286. 			Total: partSetSize,
  287. 			Hash:  psH,
  288. 		},
  289. 	}
  290. }
  291. 

  292. func mutateValidatorSet(privVals []types.MockPV, vals *types.ValidatorSet,
  293. ) ([]types.PrivValidator, *types.ValidatorSet, error) {
  294. 	newVal, newPrivVal := factory.RandValidator(false, 10)
  295. 

  296. 	var newVals *types.ValidatorSet
  297. 	if vals.Size() > 2 {
  298. 		newVals = types.NewValidatorSet(append(vals.Copy().Validators[:vals.Size()-1], newVal))
  299. 	} else {
  300. 		newVals = types.NewValidatorSet(append(vals.Copy().Validators, newVal))
  301. 	}
  302. 

  303. 	// we need to sort the priv validators with the same index as the validator set

  304. 	pv := make([]types.PrivValidator, newVals.Size())
  305. 	for idx, val := range newVals.Validators {
  306. 		found := false
  307. 		for _, p := range append(privVals, newPrivVal.(types.MockPV)) {
  308. 			if bytes.Equal(p.PrivKey.PubKey().Address(), val.Address) {
  309. 				pv[idx] = p
  310. 				found = true
  311. 				break
  312. 			}
  313. 		}
  314. 		if !found {
  315. 			return nil, nil, fmt.Errorf("missing priv validator for %v", val.Address)
  316. 		}
  317. 	}
  318. 

  319. 	return pv, newVals, nil
  320. }