zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8891 Commits
183 Branches
291 MiB
Tree: d2b78ec09b
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'd2b78ec09b'
${ noResults }
tendermint/test/e2e/runner/evidence.go

274 lines
8.2 KiB
Raw Normal View History

e2e: add evidence generation and testing (#6276)
4 years ago
test: create common functions for easily producing tm data structures (#6435)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
evidence: fix bug with hashes (#6375)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
evidence: fix bug with hashes (#6375)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
test: create common functions for easily producing tm data structures (#6435)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
test: create common functions for easily producing tm data structures (#6435)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
test: create common functions for easily producing tm data structures (#6435)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
test: create common functions for easily producing tm data structures (#6435)
3 years ago
e2e: add evidence generation and testing (#6276)
4 years ago
 
  1. package main
  2. 

  3. import (
  4. 	"bytes"
  5. 	"context"
  6. 	"fmt"
  7. 	"io/ioutil"
  8. 	"math/rand"
  9. 	"path/filepath"
  10. 	"time"
  11. 

  12. 	"github.com/tendermint/tendermint/crypto"
  13. 	"github.com/tendermint/tendermint/crypto/tmhash"
  14. 	"github.com/tendermint/tendermint/internal/test/factory"
  15. 	tmjson "github.com/tendermint/tendermint/libs/json"
  16. 	"github.com/tendermint/tendermint/privval"
  17. 	tmproto "github.com/tendermint/tendermint/proto/tendermint/types"
  18. 	e2e "github.com/tendermint/tendermint/test/e2e/pkg"
  19. 	"github.com/tendermint/tendermint/types"
  20. 	"github.com/tendermint/tendermint/version"
  21. )
  22. 

  23. // 1 in 4 evidence is light client evidence, the rest is duplicate vote evidence

  24. const lightClientEvidenceRatio = 4
  25. 

  26. // InjectEvidence takes a running testnet and generates an amount of valid

  27. // evidence and broadcasts it to a random node through the rpc endpoint `/broadcast_evidence`.

  28. // Evidence is random and can be a mixture of LightClientAttackEvidence and

  29. // DuplicateVoteEvidence.

  30. func InjectEvidence(testnet *e2e.Testnet, amount int) error {
  31. 	// select a random node

  32. 	targetNode := testnet.RandomNode()
  33. 

  34. 	logger.Info(fmt.Sprintf("Injecting evidence through %v (amount: %d)...", targetNode.Name, amount))
  35. 

  36. 	client, err := targetNode.Client()
  37. 	if err != nil {
  38. 		return err
  39. 	}
  40. 

  41. 	// request the latest block and validator set from the node

  42. 	blockRes, err := client.Block(context.Background(), nil)
  43. 	if err != nil {
  44. 		return err
  45. 	}
  46. 	lightEvidenceCommonHeight := blockRes.Block.Height
  47. 	waitHeight := blockRes.Block.Height + 3
  48. 	duplicateVoteHeight := waitHeight
  49. 

  50. 	nValidators := 100
  51. 	valRes, err := client.Validators(context.Background(), &lightEvidenceCommonHeight, nil, &nValidators)
  52. 	if err != nil {
  53. 		return err
  54. 	}
  55. 	valSet, err := types.ValidatorSetFromExistingValidators(valRes.Validators)
  56. 	if err != nil {
  57. 		return err
  58. 	}
  59. 

  60. 	// get the private keys of all the validators in the network

  61. 	privVals, err := getPrivateValidatorKeys(testnet)
  62. 	if err != nil {
  63. 		return err
  64. 	}
  65. 

  66. 	// wait for the node to reach the height above the forged height so that

  67. 	// it is able to validate the evidence

  68. 	status, err := waitForNode(targetNode, waitHeight, 10*time.Second)
  69. 	if err != nil {
  70. 		return err
  71. 	}
  72. 	duplicateVoteTime := status.SyncInfo.LatestBlockTime
  73. 

  74. 	var ev types.Evidence
  75. 	for i := 1; i <= amount; i++ {
  76. 		if i%lightClientEvidenceRatio == 0 {
  77. 			ev, err = generateLightClientAttackEvidence(
  78. 				privVals, lightEvidenceCommonHeight, valSet, testnet.Name, blockRes.Block.Time,
  79. 			)
  80. 		} else {
  81. 			ev, err = generateDuplicateVoteEvidence(
  82. 				privVals, duplicateVoteHeight, valSet, testnet.Name, duplicateVoteTime,
  83. 			)
  84. 		}
  85. 		if err != nil {
  86. 			return err
  87. 		}
  88. 

  89. 		_, err := client.BroadcastEvidence(context.Background(), ev)
  90. 		if err != nil {
  91. 			return err
  92. 		}
  93. 	}
  94. 

  95. 	logger.Info(fmt.Sprintf("Finished sending evidence (height %d)", blockRes.Block.Height+2))
  96. 

  97. 	return nil
  98. }
  99. 

  100. func getPrivateValidatorKeys(testnet *e2e.Testnet) ([]types.MockPV, error) {
  101. 	privVals := []types.MockPV{}
  102. 

  103. 	for _, node := range testnet.Nodes {
  104. 		if node.Mode == e2e.ModeValidator {
  105. 			privKeyPath := filepath.Join(testnet.Dir, node.Name, PrivvalKeyFile)
  106. 			privKey, err := readPrivKey(privKeyPath)
  107. 			if err != nil {
  108. 				return nil, err
  109. 			}
  110. 			// Create mock private validators from the validators private key. MockPV is

  111. 			// stateless which means we can double vote and do other funky stuff

  112. 			privVals = append(privVals, types.NewMockPVWithParams(privKey, false, false))
  113. 		}
  114. 	}
  115. 

  116. 	return privVals, nil
  117. }
  118. 

  119. // creates evidence of a lunatic attack. The height provided is the common height.

  120. // The forged height happens 2 blocks later.

  121. func generateLightClientAttackEvidence(
  122. 	privVals []types.MockPV,
  123. 	height int64,
  124. 	vals *types.ValidatorSet,
  125. 	chainID string,
  126. 	evTime time.Time,
  127. ) (*types.LightClientAttackEvidence, error) {
  128. 	// forge a random header

  129. 	forgedHeight := height + 2
  130. 	forgedTime := evTime.Add(1 * time.Second)
  131. 	header := makeHeaderRandom(chainID, forgedHeight)
  132. 	header.Time = forgedTime
  133. 

  134. 	// add a new bogus validator and remove an existing one to

  135. 	// vary the validator set slightly

  136. 	pv, conflictingVals, err := mutateValidatorSet(privVals, vals)
  137. 	if err != nil {
  138. 		return nil, err
  139. 	}
  140. 

  141. 	header.ValidatorsHash = conflictingVals.Hash()
  142. 

  143. 	// create a commit for the forged header

  144. 	blockID := makeBlockID(header.Hash(), 1000, []byte("partshash"))
  145. 	voteSet := types.NewVoteSet(chainID, forgedHeight, 0, tmproto.SignedMsgType(2), conflictingVals)
  146. 	commit, err := factory.MakeCommit(blockID, forgedHeight, 0, voteSet, pv, forgedTime)
  147. 	if err != nil {
  148. 		return nil, err
  149. 	}
  150. 

  151. 	ev := &types.LightClientAttackEvidence{
  152. 		ConflictingBlock: &types.LightBlock{
  153. 			SignedHeader: &types.SignedHeader{
  154. 				Header: header,
  155. 				Commit: commit,
  156. 			},
  157. 			ValidatorSet: conflictingVals,
  158. 		},
  159. 		CommonHeight:     height,
  160. 		TotalVotingPower: vals.TotalVotingPower(),
  161. 		Timestamp:        evTime,
  162. 	}
  163. 	ev.ByzantineValidators = ev.GetByzantineValidators(vals, &types.SignedHeader{
  164. 		Header: makeHeaderRandom(chainID, forgedHeight),
  165. 	})
  166. 	return ev, nil
  167. }
  168. 

  169. // generateDuplicateVoteEvidence picks a random validator from the val set and

  170. // returns duplicate vote evidence against the validator

  171. func generateDuplicateVoteEvidence(
  172. 	privVals []types.MockPV,
  173. 	height int64,
  174. 	vals *types.ValidatorSet,
  175. 	chainID string,
  176. 	time time.Time,
  177. ) (*types.DuplicateVoteEvidence, error) {
  178. 	// nolint:gosec // G404: Use of weak random number generator

  179. 	privVal := privVals[rand.Intn(len(privVals))]
  180. 

  181. 	valIdx, _ := vals.GetByAddress(privVal.PrivKey.PubKey().Address())
  182. 	voteA, err := factory.MakeVote(privVal, chainID, valIdx, height, 0, 2, makeRandomBlockID(), time)
  183. 	if err != nil {
  184. 		return nil, err
  185. 	}
  186. 	voteB, err := factory.MakeVote(privVal, chainID, valIdx, height, 0, 2, makeRandomBlockID(), time)
  187. 	if err != nil {
  188. 		return nil, err
  189. 	}
  190. 	return types.NewDuplicateVoteEvidence(voteA, voteB, time, vals), nil
  191. }
  192. 

  193. func readPrivKey(keyFilePath string) (crypto.PrivKey, error) {
  194. 	keyJSONBytes, err := ioutil.ReadFile(keyFilePath)
  195. 	if err != nil {
  196. 		return nil, err
  197. 	}
  198. 	pvKey := privval.FilePVKey{}
  199. 	err = tmjson.Unmarshal(keyJSONBytes, &pvKey)
  200. 	if err != nil {
  201. 		return nil, fmt.Errorf("error reading PrivValidator key from %v: %w", keyFilePath, err)
  202. 	}
  203. 

  204. 	return pvKey.PrivKey, nil
  205. }
  206. 

  207. func makeHeaderRandom(chainID string, height int64) *types.Header {
  208. 	return &types.Header{
  209. 		Version:            version.Consensus{Block: version.BlockProtocol, App: 1},
  210. 		ChainID:            chainID,
  211. 		Height:             height,
  212. 		Time:               time.Now(),
  213. 		LastBlockID:        makeBlockID([]byte("headerhash"), 1000, []byte("partshash")),
  214. 		LastCommitHash:     crypto.CRandBytes(tmhash.Size),
  215. 		DataHash:           crypto.CRandBytes(tmhash.Size),
  216. 		ValidatorsHash:     crypto.CRandBytes(tmhash.Size),
  217. 		NextValidatorsHash: crypto.CRandBytes(tmhash.Size),
  218. 		ConsensusHash:      crypto.CRandBytes(tmhash.Size),
  219. 		AppHash:            crypto.CRandBytes(tmhash.Size),
  220. 		LastResultsHash:    crypto.CRandBytes(tmhash.Size),
  221. 		EvidenceHash:       crypto.CRandBytes(tmhash.Size),
  222. 		ProposerAddress:    crypto.CRandBytes(crypto.AddressSize),
  223. 	}
  224. }
  225. 

  226. func makeRandomBlockID() types.BlockID {
  227. 	return makeBlockID(crypto.CRandBytes(tmhash.Size), 100, crypto.CRandBytes(tmhash.Size))
  228. }
  229. 

  230. func makeBlockID(hash []byte, partSetSize uint32, partSetHash []byte) types.BlockID {
  231. 	var (
  232. 		h   = make([]byte, tmhash.Size)
  233. 		psH = make([]byte, tmhash.Size)
  234. 	)
  235. 	copy(h, hash)
  236. 	copy(psH, partSetHash)
  237. 	return types.BlockID{
  238. 		Hash: h,
  239. 		PartSetHeader: types.PartSetHeader{
  240. 			Total: partSetSize,
  241. 			Hash:  psH,
  242. 		},
  243. 	}
  244. }
  245. 

  246. func mutateValidatorSet(privVals []types.MockPV, vals *types.ValidatorSet,
  247. ) ([]types.PrivValidator, *types.ValidatorSet, error) {
  248. 	newVal, newPrivVal := factory.RandValidator(false, 10)
  249. 

  250. 	var newVals *types.ValidatorSet
  251. 	if vals.Size() > 2 {
  252. 		newVals = types.NewValidatorSet(append(vals.Copy().Validators[:vals.Size()-1], newVal))
  253. 	} else {
  254. 		newVals = types.NewValidatorSet(append(vals.Copy().Validators, newVal))
  255. 	}
  256. 

  257. 	// we need to sort the priv validators with the same index as the validator set

  258. 	pv := make([]types.PrivValidator, newVals.Size())
  259. 	for idx, val := range newVals.Validators {
  260. 		found := false
  261. 		for _, p := range append(privVals, newPrivVal.(types.MockPV)) {
  262. 			if bytes.Equal(p.PrivKey.PubKey().Address(), val.Address) {
  263. 				pv[idx] = p
  264. 				found = true
  265. 				break
  266. 			}
  267. 		}
  268. 		if !found {
  269. 			return nil, nil, fmt.Errorf("missing priv validator for %v", val.Address)
  270. 		}
  271. 	}
  272. 

  273. 	return pv, newVals, nil
  274. }