mirror of
https://github.com/pezkuwichain/pezkuwi-subxt.git
synced 2026-06-14 00:31:07 +00:00
Make BEEFY client keystore generic over BEEFY AuthorityId type (#2258)
This is the significant step to make BEEFY client able to handle both ECDSA and (ECDSA, BLS) type signature. The idea is having BEEFY Client generic on crypto types makes migration to new types smoother. This makes the BEEFY Keystore generic over AuthorityId and extends its tests to cover the case when the AuthorityId is of type (ECDSA, BLS12-377) --------- Co-authored-by: Davide Galassi <davxy@datawok.net> Co-authored-by: Robert Hambrock <roberthambrock@gmail.com>
This commit is contained in:
drskalman
@@ -398,7 +398,7 @@ mod tests {
|
||||
assert_eq!(
|
||||
encoded,
|
||||
array_bytes::hex2bytes_unchecked(
|
||||
"046d68343048656c6c6f20576f726c642105000000000000000000000000000000000000000000000004300400000008558455ad81279df0795cc985580e4fb75d72d948d1107b2ac80a09abed4da8480c746cc321f2319a5e99a830e314d10dd3cd68ce3dc0c33c86e99bcb7816f9ba01667603fc041cf9d7147d22bf54b15e5778893d6986b71a929747befd3b4d233fbe668bc480e8865116b94db46ca25a01e03c71955f2582604e415da68f2c3c406b9d5f4ad416230ec5453f05ac16a50d8d0923dfb0413cc956ae3fa6334465bd1f2cacec8e9cd606438390fe2a29dc052d6e1f8105c337a86cdd9aaacdc496577f3db8c55ef9e6fd48f2c5c05a2274707491635d8ba3df64f324575b7b2a34487bca2324b6a0046395a71681be3d0c2a00df61d3b2be0963eb6caa243cc505d327aec73e1bb7ffe9a14b1354b0c406792ac6d6f47c06987c15dec9993f43eefa001d866fe0850d986702c414840f0d9ec0fdc04832ef91ae37c8d49e2f573ca50cb37f152801d489a19395cb04e5fc8f2ab6954b58a3bcc40ef9b6409d2ff7ef07"
|
||||
"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"
|
||||
)
|
||||
);
|
||||
}
|
||||
|
||||
@@ -32,20 +32,22 @@
|
||||
//! while GRANDPA uses `ed25519`.
|
||||
|
||||
mod commitment;
|
||||
pub mod mmr;
|
||||
mod payload;
|
||||
#[cfg(feature = "std")]
|
||||
mod test_utils;
|
||||
|
||||
pub mod mmr;
|
||||
pub mod witness;
|
||||
|
||||
/// Test utilities
|
||||
#[cfg(feature = "std")]
|
||||
pub mod test_utils;
|
||||
|
||||
pub use commitment::{Commitment, SignedCommitment, VersionedFinalityProof};
|
||||
pub use payload::{known_payloads, BeefyPayloadId, Payload, PayloadProvider};
|
||||
#[cfg(feature = "std")]
|
||||
pub use test_utils::*;
|
||||
|
||||
use codec::{Codec, Decode, Encode};
|
||||
use core::fmt::{Debug, Display};
|
||||
use scale_info::TypeInfo;
|
||||
use sp_application_crypto::RuntimeAppPublic;
|
||||
use sp_application_crypto::{AppCrypto, AppPublic, ByteArray, RuntimeAppPublic};
|
||||
use sp_core::H256;
|
||||
use sp_runtime::traits::{Hash, Keccak256, NumberFor};
|
||||
use sp_std::prelude::*;
|
||||
@@ -63,6 +65,25 @@ pub trait BeefyAuthorityId<MsgHash: Hash>: RuntimeAppPublic {
|
||||
fn verify(&self, signature: &<Self as RuntimeAppPublic>::Signature, msg: &[u8]) -> bool;
|
||||
}
|
||||
|
||||
/// Hasher used for BEEFY signatures.
|
||||
pub type BeefySignatureHasher = sp_runtime::traits::Keccak256;
|
||||
|
||||
/// A trait bound which lists all traits which are required to be implemented by
|
||||
/// a BEEFY AuthorityId type in order to be able to be used in BEEFY Keystore
|
||||
pub trait AuthorityIdBound:
|
||||
Codec
|
||||
+ Debug
|
||||
+ Clone
|
||||
+ AsRef<[u8]>
|
||||
+ ByteArray
|
||||
+ AppPublic
|
||||
+ AppCrypto
|
||||
+ RuntimeAppPublic
|
||||
+ Display
|
||||
+ BeefyAuthorityId<BeefySignatureHasher>
|
||||
{
|
||||
}
|
||||
|
||||
/// BEEFY cryptographic types for ECDSA crypto
|
||||
///
|
||||
/// This module basically introduces four crypto types:
|
||||
@@ -74,7 +95,7 @@ pub trait BeefyAuthorityId<MsgHash: Hash>: RuntimeAppPublic {
|
||||
/// Your code should use the above types as concrete types for all crypto related
|
||||
/// functionality.
|
||||
pub mod ecdsa_crypto {
|
||||
use super::{BeefyAuthorityId, Hash, RuntimeAppPublic, KEY_TYPE};
|
||||
use super::{AuthorityIdBound, BeefyAuthorityId, Hash, RuntimeAppPublic, KEY_TYPE};
|
||||
use sp_application_crypto::{app_crypto, ecdsa};
|
||||
use sp_core::crypto::Wraps;
|
||||
|
||||
@@ -101,6 +122,7 @@ pub mod ecdsa_crypto {
|
||||
}
|
||||
}
|
||||
}
|
||||
impl AuthorityIdBound for AuthorityId {}
|
||||
}
|
||||
|
||||
/// BEEFY cryptographic types for BLS crypto
|
||||
@@ -116,7 +138,7 @@ pub mod ecdsa_crypto {
|
||||
|
||||
#[cfg(feature = "bls-experimental")]
|
||||
pub mod bls_crypto {
|
||||
use super::{BeefyAuthorityId, Hash, RuntimeAppPublic, KEY_TYPE};
|
||||
use super::{AuthorityIdBound, BeefyAuthorityId, Hash, RuntimeAppPublic, KEY_TYPE};
|
||||
use sp_application_crypto::{app_crypto, bls377};
|
||||
use sp_core::{bls377::Pair as BlsPair, crypto::Wraps, Pair as _};
|
||||
|
||||
@@ -134,13 +156,14 @@ pub mod bls_crypto {
|
||||
{
|
||||
fn verify(&self, signature: &<Self as RuntimeAppPublic>::Signature, msg: &[u8]) -> bool {
|
||||
// `w3f-bls` library uses IETF hashing standard and as such does not expose
|
||||
// a choice of hash to field function.
|
||||
// a choice of hash-to-field function.
|
||||
// We are directly calling into the library to avoid introducing new host call.
|
||||
// and because BeefyAuthorityId::verify is being called in the runtime so we don't have
|
||||
|
||||
BlsPair::verify(signature.as_inner_ref(), msg, self.as_inner_ref())
|
||||
}
|
||||
}
|
||||
impl AuthorityIdBound for AuthorityId {}
|
||||
}
|
||||
|
||||
/// BEEFY cryptographic types for (ECDSA,BLS) crypto pair
|
||||
@@ -155,7 +178,7 @@ pub mod bls_crypto {
|
||||
/// functionality.
|
||||
#[cfg(feature = "bls-experimental")]
|
||||
pub mod ecdsa_bls_crypto {
|
||||
use super::{BeefyAuthorityId, Hash, RuntimeAppPublic, KEY_TYPE};
|
||||
use super::{AuthorityIdBound, BeefyAuthorityId, Hash, RuntimeAppPublic, KEY_TYPE};
|
||||
use sp_application_crypto::{app_crypto, ecdsa_bls377};
|
||||
use sp_core::{crypto::Wraps, ecdsa_bls377::Pair as EcdsaBlsPair};
|
||||
|
||||
@@ -187,6 +210,8 @@ pub mod ecdsa_bls_crypto {
|
||||
)
|
||||
}
|
||||
}
|
||||
|
||||
impl AuthorityIdBound for AuthorityId {}
|
||||
}
|
||||
|
||||
/// The `ConsensusEngineId` of BEEFY.
|
||||
|
||||
@@ -15,18 +15,24 @@
|
||||
// See the License for the specific language governing permissions and
|
||||
// limitations under the License.
|
||||
|
||||
#![cfg(feature = "std")]
|
||||
|
||||
use crate::{ecdsa_crypto, Commitment, EquivocationProof, Payload, ValidatorSetId, VoteMessage};
|
||||
use codec::Encode;
|
||||
#[cfg(feature = "bls-experimental")]
|
||||
use crate::ecdsa_bls_crypto;
|
||||
use crate::{
|
||||
ecdsa_crypto, AuthorityIdBound, BeefySignatureHasher, Commitment, EquivocationProof, Payload,
|
||||
ValidatorSetId, VoteMessage,
|
||||
};
|
||||
use sp_application_crypto::{AppCrypto, AppPair, RuntimeAppPublic, Wraps};
|
||||
use sp_core::{ecdsa, Pair};
|
||||
use std::collections::HashMap;
|
||||
use sp_runtime::traits::Hash;
|
||||
|
||||
use codec::Encode;
|
||||
use std::{collections::HashMap, marker::PhantomData};
|
||||
use strum::IntoEnumIterator;
|
||||
|
||||
/// Set of test accounts using [`crate::ecdsa_crypto`] types.
|
||||
#[allow(missing_docs)]
|
||||
#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash, strum::Display, strum::EnumIter)]
|
||||
pub enum Keyring {
|
||||
pub enum Keyring<AuthorityId> {
|
||||
Alice,
|
||||
Bob,
|
||||
Charlie,
|
||||
@@ -35,71 +41,110 @@ pub enum Keyring {
|
||||
Ferdie,
|
||||
One,
|
||||
Two,
|
||||
_Marker(PhantomData<AuthorityId>),
|
||||
}
|
||||
|
||||
impl Keyring {
|
||||
/// Trait representing BEEFY specific generation and signing behavior of authority id
|
||||
///
|
||||
/// Accepts custom hashing fn for the message and custom convertor fn for the signer.
|
||||
pub trait BeefySignerAuthority<MsgHash: Hash>: AppPair {
|
||||
/// Generate and return signature for `message` using custom hashing `MsgHash`
|
||||
fn sign_with_hasher(&self, message: &[u8]) -> <Self as AppCrypto>::Signature;
|
||||
}
|
||||
|
||||
impl<MsgHash> BeefySignerAuthority<MsgHash> for <ecdsa_crypto::AuthorityId as AppCrypto>::Pair
|
||||
where
|
||||
MsgHash: Hash,
|
||||
<MsgHash as Hash>::Output: Into<[u8; 32]>,
|
||||
{
|
||||
fn sign_with_hasher(&self, message: &[u8]) -> <Self as AppCrypto>::Signature {
|
||||
let hashed_message = <MsgHash as Hash>::hash(message).into();
|
||||
self.as_inner_ref().sign_prehashed(&hashed_message).into()
|
||||
}
|
||||
}
|
||||
|
||||
#[cfg(feature = "bls-experimental")]
|
||||
impl<MsgHash> BeefySignerAuthority<MsgHash> for <ecdsa_bls_crypto::AuthorityId as AppCrypto>::Pair
|
||||
where
|
||||
MsgHash: Hash,
|
||||
<MsgHash as Hash>::Output: Into<[u8; 32]>,
|
||||
{
|
||||
fn sign_with_hasher(&self, message: &[u8]) -> <Self as AppCrypto>::Signature {
|
||||
self.as_inner_ref().sign_with_hasher::<MsgHash>(&message).into()
|
||||
}
|
||||
}
|
||||
|
||||
/// Implement Keyring functionalities generically over AuthorityId
|
||||
impl<AuthorityId> Keyring<AuthorityId>
|
||||
where
|
||||
AuthorityId: AuthorityIdBound + From<<<AuthorityId as AppCrypto>::Pair as AppCrypto>::Public>,
|
||||
<AuthorityId as AppCrypto>::Pair: BeefySignerAuthority<BeefySignatureHasher>,
|
||||
<AuthorityId as RuntimeAppPublic>::Signature:
|
||||
Send + Sync + From<<<AuthorityId as AppCrypto>::Pair as AppCrypto>::Signature>,
|
||||
{
|
||||
/// Sign `msg`.
|
||||
pub fn sign(self, msg: &[u8]) -> ecdsa_crypto::Signature {
|
||||
// todo: use custom signature hashing type
|
||||
let msg = sp_crypto_hashing::keccak_256(msg);
|
||||
ecdsa::Pair::from(self).sign_prehashed(&msg).into()
|
||||
pub fn sign(&self, msg: &[u8]) -> <AuthorityId as RuntimeAppPublic>::Signature {
|
||||
let key_pair: <AuthorityId as AppCrypto>::Pair = self.pair();
|
||||
key_pair.sign_with_hasher(&msg).into()
|
||||
}
|
||||
|
||||
/// Return key pair.
|
||||
pub fn pair(self) -> ecdsa_crypto::Pair {
|
||||
ecdsa::Pair::from_string(self.to_seed().as_str(), None).unwrap().into()
|
||||
pub fn pair(&self) -> <AuthorityId as AppCrypto>::Pair {
|
||||
<AuthorityId as AppCrypto>::Pair::from_string(self.to_seed().as_str(), None)
|
||||
.unwrap()
|
||||
.into()
|
||||
}
|
||||
|
||||
/// Return public key.
|
||||
pub fn public(self) -> ecdsa_crypto::Public {
|
||||
self.pair().public()
|
||||
pub fn public(&self) -> AuthorityId {
|
||||
self.pair().public().into()
|
||||
}
|
||||
|
||||
/// Return seed string.
|
||||
pub fn to_seed(self) -> String {
|
||||
pub fn to_seed(&self) -> String {
|
||||
format!("//{}", self)
|
||||
}
|
||||
|
||||
/// Get Keyring from public key.
|
||||
pub fn from_public(who: &ecdsa_crypto::Public) -> Option<Keyring> {
|
||||
Self::iter().find(|&k| &ecdsa_crypto::Public::from(k) == who)
|
||||
pub fn from_public(who: &AuthorityId) -> Option<Keyring<AuthorityId>> {
|
||||
Self::iter().find(|k| k.public() == *who)
|
||||
}
|
||||
}
|
||||
|
||||
lazy_static::lazy_static! {
|
||||
static ref PRIVATE_KEYS: HashMap<Keyring, ecdsa_crypto::Pair> =
|
||||
Keyring::iter().map(|i| (i, i.pair())).collect();
|
||||
static ref PUBLIC_KEYS: HashMap<Keyring, ecdsa_crypto::Public> =
|
||||
PRIVATE_KEYS.iter().map(|(&name, pair)| (name, pair.public())).collect();
|
||||
static ref PRIVATE_KEYS: HashMap<Keyring<ecdsa_crypto::AuthorityId>, ecdsa_crypto::Pair> =
|
||||
Keyring::iter().map(|i| (i.clone(), i.pair())).collect();
|
||||
static ref PUBLIC_KEYS: HashMap<Keyring<ecdsa_crypto::AuthorityId>, ecdsa_crypto::Public> =
|
||||
PRIVATE_KEYS.iter().map(|(name, pair)| (name.clone(), sp_application_crypto::Pair::public(pair))).collect();
|
||||
}
|
||||
|
||||
impl From<Keyring> for ecdsa_crypto::Pair {
|
||||
fn from(k: Keyring) -> Self {
|
||||
impl From<Keyring<ecdsa_crypto::AuthorityId>> for ecdsa_crypto::Pair {
|
||||
fn from(k: Keyring<ecdsa_crypto::AuthorityId>) -> Self {
|
||||
k.pair()
|
||||
}
|
||||
}
|
||||
|
||||
impl From<Keyring> for ecdsa::Pair {
|
||||
fn from(k: Keyring) -> Self {
|
||||
impl From<Keyring<ecdsa_crypto::AuthorityId>> for ecdsa::Pair {
|
||||
fn from(k: Keyring<ecdsa_crypto::AuthorityId>) -> Self {
|
||||
k.pair().into()
|
||||
}
|
||||
}
|
||||
|
||||
impl From<Keyring> for ecdsa_crypto::Public {
|
||||
fn from(k: Keyring) -> Self {
|
||||
impl From<Keyring<ecdsa_crypto::AuthorityId>> for ecdsa_crypto::Public {
|
||||
fn from(k: Keyring<ecdsa_crypto::AuthorityId>) -> Self {
|
||||
(*PUBLIC_KEYS).get(&k).cloned().unwrap()
|
||||
}
|
||||
}
|
||||
|
||||
/// Create a new `EquivocationProof` based on given arguments.
|
||||
pub fn generate_equivocation_proof(
|
||||
vote1: (u64, Payload, ValidatorSetId, &Keyring),
|
||||
vote2: (u64, Payload, ValidatorSetId, &Keyring),
|
||||
vote1: (u64, Payload, ValidatorSetId, &Keyring<ecdsa_crypto::AuthorityId>),
|
||||
vote2: (u64, Payload, ValidatorSetId, &Keyring<ecdsa_crypto::AuthorityId>),
|
||||
) -> EquivocationProof<u64, ecdsa_crypto::Public, ecdsa_crypto::Signature> {
|
||||
let signed_vote = |block_number: u64,
|
||||
payload: Payload,
|
||||
validator_set_id: ValidatorSetId,
|
||||
keyring: &Keyring| {
|
||||
keyring: &Keyring<ecdsa_crypto::AuthorityId>| {
|
||||
let commitment = Commitment { validator_set_id, block_number, payload };
|
||||
let signature = keyring.sign(&commitment.encode());
|
||||
VoteMessage { commitment, id: keyring.public(), signature }
|
||||
|
||||
Reference in New Issue
Block a user