mirror of
https://github.com/pezkuwichain/pezkuwi-subxt.git
synced 2026-06-13 18:41:05 +00:00
babe: account for skipped epochs when handling equivocations (#13335)
* babe: account for skipped epochs when handling equivocations * typos * babe: enforce epoch index >= session index
This commit is contained in:
André Silva
@@ -39,6 +39,7 @@ use sp_runtime::{
|
||||
ConsensusEngineId, KeyTypeId, Permill,
|
||||
};
|
||||
use sp_session::{GetSessionNumber, GetValidatorCount};
|
||||
use sp_staking::SessionIndex;
|
||||
use sp_std::prelude::*;
|
||||
|
||||
use sp_consensus_babe::{
|
||||
@@ -102,7 +103,7 @@ impl EpochChangeTrigger for SameAuthoritiesForever {
|
||||
let authorities = <Pallet<T>>::authorities();
|
||||
let next_authorities = authorities.clone();
|
||||
|
||||
<Pallet<T>>::enact_epoch_change(authorities, next_authorities);
|
||||
<Pallet<T>>::enact_epoch_change(authorities, next_authorities, None);
|
||||
}
|
||||
}
|
||||
}
|
||||
@@ -316,6 +317,19 @@ pub mod pallet {
|
||||
#[pallet::storage]
|
||||
pub(super) type NextEpochConfig<T> = StorageValue<_, BabeEpochConfiguration>;
|
||||
|
||||
/// A list of the last 100 skipped epochs and the corresponding session index
|
||||
/// when the epoch was skipped.
|
||||
///
|
||||
/// This is only used for validating equivocation proofs. An equivocation proof
|
||||
/// must contains a key-ownership proof for a given session, therefore we need a
|
||||
/// way to tie together sessions and epoch indices, i.e. we need to validate that
|
||||
/// a validator was the owner of a given key on a given session, and what the
|
||||
/// active epoch index was during that session.
|
||||
#[pallet::storage]
|
||||
#[pallet::getter(fn skipped_epochs)]
|
||||
pub(super) type SkippedEpochs<T> =
|
||||
StorageValue<_, BoundedVec<(u64, SessionIndex), ConstU32<100>>, ValueQuery>;
|
||||
|
||||
#[cfg_attr(feature = "std", derive(Default))]
|
||||
#[pallet::genesis_config]
|
||||
pub struct GenesisConfig {
|
||||
@@ -577,6 +591,7 @@ impl<T: Config> Pallet<T> {
|
||||
pub fn enact_epoch_change(
|
||||
authorities: WeakBoundedVec<(AuthorityId, BabeAuthorityWeight), T::MaxAuthorities>,
|
||||
next_authorities: WeakBoundedVec<(AuthorityId, BabeAuthorityWeight), T::MaxAuthorities>,
|
||||
session_index: Option<SessionIndex>,
|
||||
) {
|
||||
// PRECONDITION: caller has done initialization and is guaranteed
|
||||
// by the session module to be called before this.
|
||||
@@ -602,6 +617,35 @@ impl<T: Config> Pallet<T> {
|
||||
T::EpochDuration::get(),
|
||||
);
|
||||
|
||||
let current_epoch_index = EpochIndex::<T>::get();
|
||||
if current_epoch_index.saturating_add(1) != epoch_index {
|
||||
// we are skipping epochs therefore we need to update the mapping
|
||||
// of epochs to session
|
||||
if let Some(session_index) = session_index {
|
||||
SkippedEpochs::<T>::mutate(|skipped_epochs| {
|
||||
if epoch_index < session_index as u64 {
|
||||
log::warn!(
|
||||
target: LOG_TARGET,
|
||||
"Current epoch index {} is lower than session index {}.",
|
||||
epoch_index,
|
||||
session_index,
|
||||
);
|
||||
|
||||
return
|
||||
}
|
||||
|
||||
if skipped_epochs.is_full() {
|
||||
// NOTE: this is O(n) but we currently don't have a bounded `VecDeque`.
|
||||
// this vector is bounded to a small number of elements so performance
|
||||
// shouldn't be an issue.
|
||||
skipped_epochs.remove(0);
|
||||
}
|
||||
|
||||
skipped_epochs.force_push((epoch_index, session_index));
|
||||
})
|
||||
}
|
||||
}
|
||||
|
||||
EpochIndex::<T>::put(epoch_index);
|
||||
Authorities::<T>::put(authorities);
|
||||
|
||||
@@ -816,6 +860,36 @@ impl<T: Config> Pallet<T> {
|
||||
this_randomness
|
||||
}
|
||||
|
||||
/// Returns the session index that was live when the given epoch happened,
|
||||
/// taking into account any skipped epochs.
|
||||
///
|
||||
/// This function is only well defined for epochs that actually existed,
|
||||
/// e.g. if we skipped from epoch 10 to 20 then a call for epoch 15 (which
|
||||
/// didn't exist) will return an incorrect session index.
|
||||
fn session_index_for_epoch(epoch_index: u64) -> SessionIndex {
|
||||
let skipped_epochs = SkippedEpochs::<T>::get();
|
||||
match skipped_epochs.binary_search_by_key(&epoch_index, |(epoch_index, _)| *epoch_index) {
|
||||
// we have an exact match so we just return the given session index
|
||||
Ok(index) => skipped_epochs[index].1,
|
||||
// we haven't found any skipped epoch before the given epoch,
|
||||
// so the epoch index and session index should match
|
||||
Err(0) => epoch_index.saturated_into::<u32>(),
|
||||
// we have found a skipped epoch before the given epoch
|
||||
Err(index) => {
|
||||
// the element before the given index should give us the skipped epoch
|
||||
// that's closest to the one we're trying to find the session index for
|
||||
let closest_skipped_epoch = skipped_epochs[index - 1];
|
||||
|
||||
// calculate the number of skipped epochs at this point by checking the difference
|
||||
// between the epoch and session indices. epoch index should always be greater or
|
||||
// equal to session index, this is because epochs can be skipped whereas sessions
|
||||
// can't (this is enforced when pushing into `SkippedEpochs`)
|
||||
let skipped_epochs = closest_skipped_epoch.0 - closest_skipped_epoch.1 as u64;
|
||||
epoch_index.saturating_sub(skipped_epochs).saturated_into::<u32>()
|
||||
},
|
||||
}
|
||||
}
|
||||
|
||||
fn do_report_equivocation(
|
||||
reporter: Option<T::AccountId>,
|
||||
equivocation_proof: EquivocationProof<T::Header>,
|
||||
@@ -832,12 +906,11 @@ impl<T: Config> Pallet<T> {
|
||||
let validator_set_count = key_owner_proof.validator_count();
|
||||
let session_index = key_owner_proof.session();
|
||||
|
||||
let epoch_index = (*slot.saturating_sub(GenesisSlot::<T>::get()) / T::EpochDuration::get())
|
||||
.saturated_into::<u32>();
|
||||
let epoch_index = *slot.saturating_sub(GenesisSlot::<T>::get()) / T::EpochDuration::get();
|
||||
|
||||
// check that the slot number is consistent with the session index
|
||||
// in the key ownership proof (i.e. slot is for that epoch)
|
||||
if epoch_index != session_index {
|
||||
if Self::session_index_for_epoch(epoch_index) != session_index {
|
||||
return Err(Error::<T>::InvalidKeyOwnershipProof.into())
|
||||
}
|
||||
|
||||
@@ -926,7 +999,10 @@ impl<T: Config> sp_runtime::BoundToRuntimeAppPublic for Pallet<T> {
|
||||
type Public = AuthorityId;
|
||||
}
|
||||
|
||||
impl<T: Config> OneSessionHandler<T::AccountId> for Pallet<T> {
|
||||
impl<T: Config> OneSessionHandler<T::AccountId> for Pallet<T>
|
||||
where
|
||||
T: pallet_session::Config,
|
||||
{
|
||||
type Key = AuthorityId;
|
||||
|
||||
fn on_genesis_session<'a, I: 'a>(validators: I)
|
||||
@@ -959,7 +1035,9 @@ impl<T: Config> OneSessionHandler<T::AccountId> for Pallet<T> {
|
||||
),
|
||||
);
|
||||
|
||||
Self::enact_epoch_change(bounded_authorities, next_bounded_authorities)
|
||||
let session_index = <pallet_session::Pallet<T>>::current_index();
|
||||
|
||||
Self::enact_epoch_change(bounded_authorities, next_bounded_authorities, Some(session_index))
|
||||
}
|
||||
|
||||
fn on_disabled(i: u32) {
|
||||
|
||||
Reference in New Issue
Block a user