// This file is part of Substrate. // Copyright (C) Parity Technologies (UK) Ltd. // SPDX-License-Identifier: Apache-2.0 // Licensed under the Apache License, Version 2.0 (the "License"); // you may not use this file except in compliance with the License. // You may obtain a copy of the License at // // http://www.apache.org/licenses/LICENSE-2.0 // // Unless required by applicable law or agreed to in writing, software // distributed under the License is distributed on an "AS IS" BASIS, // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. // See the License for the specific language governing permissions and // limitations under the License. //! # Aura Module //! //! - [`Config`] //! - [`Pallet`] //! //! ## Overview //! //! The Aura module extends Aura consensus by managing offline reporting. //! //! ## Interface //! //! ### Public Functions //! //! - `slot_duration` - Determine the Aura slot-duration based on the Timestamp module //! configuration. //! //! ## Related Modules //! //! - [Timestamp](../pallet_timestamp/index.html): The Timestamp module is used in Aura to track //! consensus rounds (via `slots`). #![cfg_attr(not(feature = "std"), no_std)] use codec::{Decode, Encode, MaxEncodedLen}; use frame_support::{ traits::{DisabledValidators, FindAuthor, Get, OnTimestampSet, OneSessionHandler}, BoundedSlice, BoundedVec, ConsensusEngineId, Parameter, }; use log; use sp_consensus_aura::{AuthorityIndex, ConsensusLog, Slot, AURA_ENGINE_ID}; use sp_runtime::{ generic::DigestItem, traits::{IsMember, Member, SaturatedConversion, Saturating, Zero}, RuntimeAppPublic, }; use sp_std::prelude::*; pub mod migrations; mod mock; mod tests; pub use pallet::*; const LOG_TARGET: &str = "runtime::aura"; /// A slot duration provider which infers the slot duration from the /// [`pallet_timestamp::Config::MinimumPeriod`] by multiplying it by two, to ensure /// that authors have the majority of their slot to author within. /// /// This was the default behavior of the Aura pallet and may be used for /// backwards compatibility. /// /// Note that this type is likely not useful without the `experimental` /// feature. pub struct MinimumPeriodTimesTwo(sp_std::marker::PhantomData); impl Get for MinimumPeriodTimesTwo { fn get() -> T::Moment { ::MinimumPeriod::get().saturating_mul(2u32.into()) } } #[frame_support::pallet] pub mod pallet { use super::*; use frame_support::pallet_prelude::*; use frame_system::pallet_prelude::*; #[pallet::config] pub trait Config: pallet_timestamp::Config + frame_system::Config { /// The identifier type for an authority. type AuthorityId: Member + Parameter + RuntimeAppPublic + MaybeSerializeDeserialize + MaxEncodedLen; /// The maximum number of authorities that the pallet can hold. type MaxAuthorities: Get; /// A way to check whether a given validator is disabled and should not be authoring blocks. /// Blocks authored by a disabled validator will lead to a panic as part of this module's /// initialization. type DisabledValidators: DisabledValidators; /// Whether to allow block authors to create multiple blocks per slot. /// /// If this is `true`, the pallet will allow slots to stay the same across sequential /// blocks. If this is `false`, the pallet will require that subsequent blocks always have /// higher slots than previous ones. /// /// Regardless of the setting of this storage value, the pallet will always enforce the /// invariant that slots don't move backwards as the chain progresses. /// /// The typical value for this should be 'false' unless this pallet is being augmented by /// another pallet which enforces some limitation on the number of blocks authors can create /// using the same slot. type AllowMultipleBlocksPerSlot: Get; /// The slot duration Aura should run with, expressed in milliseconds. /// The effective value of this type should not change while the chain is running. /// /// For backwards compatibility either use [`MinimumPeriodTimesTwo`] or a const. /// /// This associated type is only present when compiled with the `experimental` /// feature. #[cfg(feature = "experimental")] type SlotDuration: Get<::Moment>; } #[pallet::pallet] pub struct Pallet(sp_std::marker::PhantomData); #[pallet::hooks] impl Hooks> for Pallet { fn on_initialize(_: BlockNumberFor) -> Weight { if let Some(new_slot) = Self::current_slot_from_digests() { let current_slot = CurrentSlot::::get(); if T::AllowMultipleBlocksPerSlot::get() { assert!(current_slot <= new_slot, "Slot must not decrease"); } else { assert!(current_slot < new_slot, "Slot must increase"); } CurrentSlot::::put(new_slot); if let Some(n_authorities) = >::decode_len() { let authority_index = *new_slot % n_authorities as u64; if T::DisabledValidators::is_disabled(authority_index as u32) { panic!( "Validator with index {:?} is disabled and should not be attempting to author blocks.", authority_index, ); } } // TODO [#3398] Generate offence report for all authorities that skipped their // slots. T::DbWeight::get().reads_writes(2, 1) } else { T::DbWeight::get().reads(1) } } #[cfg(feature = "try-runtime")] fn try_state(_: BlockNumberFor) -> Result<(), sp_runtime::TryRuntimeError> { Self::do_try_state() } } /// The current authority set. #[pallet::storage] #[pallet::getter(fn authorities)] pub(super) type Authorities = StorageValue<_, BoundedVec, ValueQuery>; /// The current slot of this block. /// /// This will be set in `on_initialize`. #[pallet::storage] #[pallet::getter(fn current_slot)] pub(super) type CurrentSlot = StorageValue<_, Slot, ValueQuery>; #[pallet::genesis_config] #[derive(frame_support::DefaultNoBound)] pub struct GenesisConfig { pub authorities: Vec, } #[pallet::genesis_build] impl BuildGenesisConfig for GenesisConfig { fn build(&self) { Pallet::::initialize_authorities(&self.authorities); } } } impl Pallet { /// Change authorities. /// /// The storage will be applied immediately. /// And aura consensus log will be appended to block's log. /// /// This is a no-op if `new` is empty. pub fn change_authorities(new: BoundedVec) { if new.is_empty() { log::warn!(target: LOG_TARGET, "Ignoring empty authority change."); return } >::put(&new); let log = DigestItem::Consensus( AURA_ENGINE_ID, ConsensusLog::AuthoritiesChange(new.into_inner()).encode(), ); >::deposit_log(log); } /// Initial authorities. /// /// The storage will be applied immediately. /// /// The authorities length must be equal or less than T::MaxAuthorities. pub fn initialize_authorities(authorities: &[T::AuthorityId]) { if !authorities.is_empty() { assert!(>::get().is_empty(), "Authorities are already initialized!"); let bounded = >::try_from(authorities) .expect("Initial authority set must be less than T::MaxAuthorities"); >::put(bounded); } } /// Get the current slot from the pre-runtime digests. fn current_slot_from_digests() -> Option { let digest = frame_system::Pallet::::digest(); let pre_runtime_digests = digest.logs.iter().filter_map(|d| d.as_pre_runtime()); for (id, mut data) in pre_runtime_digests { if id == AURA_ENGINE_ID { return Slot::decode(&mut data).ok() } } None } /// Determine the Aura slot-duration based on the Timestamp module configuration. pub fn slot_duration() -> T::Moment { #[cfg(feature = "experimental")] { T::SlotDuration::get() } #[cfg(not(feature = "experimental"))] { // we double the minimum block-period so each author can always propose within // the majority of its slot. ::MinimumPeriod::get().saturating_mul(2u32.into()) } } /// Ensure the correctness of the state of this pallet. /// /// This should be valid before or after each state transition of this pallet. /// /// # Invariants /// /// ## `CurrentSlot` /// /// If we don't allow for multiple blocks per slot, then the current slot must be less than the /// maximal slot number. Otherwise, it can be arbitrary. /// /// ## `Authorities` /// /// * The authorities must be non-empty. /// * The current authority cannot be disabled. /// * The number of authorities must be less than or equal to `T::MaxAuthorities`. This however, /// is guarded by the type system. #[cfg(any(test, feature = "try-runtime"))] pub fn do_try_state() -> Result<(), sp_runtime::TryRuntimeError> { // We don't have any guarantee that we are already after `on_initialize` and thus we have to // check the current slot from the digest or take the last known slot. let current_slot = Self::current_slot_from_digests().unwrap_or_else(|| CurrentSlot::::get()); // Check that the current slot is less than the maximal slot number, unless we allow for // multiple blocks per slot. if !T::AllowMultipleBlocksPerSlot::get() { frame_support::ensure!( current_slot < u64::MAX, "Current slot has reached maximum value and cannot be incremented further.", ); } let authorities_len = >::decode_len().ok_or("Failed to decode authorities length")?; // Check that the authorities are non-empty. frame_support::ensure!(!authorities_len.is_zero(), "Authorities must be non-empty."); // Check that the current authority is not disabled. let authority_index = *current_slot % authorities_len as u64; frame_support::ensure!( !T::DisabledValidators::is_disabled(authority_index as u32), "Current validator is disabled and should not be attempting to author blocks.", ); Ok(()) } } impl sp_runtime::BoundToRuntimeAppPublic for Pallet { type Public = T::AuthorityId; } impl OneSessionHandler for Pallet { type Key = T::AuthorityId; fn on_genesis_session<'a, I: 'a>(validators: I) where I: Iterator, { let authorities = validators.map(|(_, k)| k).collect::>(); Self::initialize_authorities(&authorities); } fn on_new_session<'a, I: 'a>(changed: bool, validators: I, _queued_validators: I) where I: Iterator, { // instant changes if changed { let next_authorities = validators.map(|(_, k)| k).collect::>(); let last_authorities = Self::authorities(); if last_authorities != next_authorities { if next_authorities.len() as u32 > T::MaxAuthorities::get() { log::warn!( target: LOG_TARGET, "next authorities list larger than {}, truncating", T::MaxAuthorities::get(), ); } let bounded = >::truncate_from(next_authorities); Self::change_authorities(bounded); } } } fn on_disabled(i: u32) { let log = DigestItem::Consensus( AURA_ENGINE_ID, ConsensusLog::::OnDisabled(i as AuthorityIndex).encode(), ); >::deposit_log(log); } } impl FindAuthor for Pallet { fn find_author<'a, I>(digests: I) -> Option where I: 'a + IntoIterator, { for (id, mut data) in digests.into_iter() { if id == AURA_ENGINE_ID { let slot = Slot::decode(&mut data).ok()?; let author_index = *slot % Self::authorities().len() as u64; return Some(author_index as u32) } } None } } /// We can not implement `FindAuthor` twice, because the compiler does not know if /// `u32 == T::AuthorityId` and thus, prevents us to implement the trait twice. #[doc(hidden)] pub struct FindAccountFromAuthorIndex(sp_std::marker::PhantomData<(T, Inner)>); impl> FindAuthor for FindAccountFromAuthorIndex { fn find_author<'a, I>(digests: I) -> Option where I: 'a + IntoIterator, { let i = Inner::find_author(digests)?; let validators = >::authorities(); validators.get(i as usize).cloned() } } /// Find the authority ID of the Aura authority who authored the current block. pub type AuraAuthorId = FindAccountFromAuthorIndex>; impl IsMember for Pallet { fn is_member(authority_id: &T::AuthorityId) -> bool { Self::authorities().iter().any(|id| id == authority_id) } } impl OnTimestampSet for Pallet { fn on_timestamp_set(moment: T::Moment) { let slot_duration = Self::slot_duration(); assert!(!slot_duration.is_zero(), "Aura slot duration cannot be zero."); let timestamp_slot = moment / slot_duration; let timestamp_slot = Slot::from(timestamp_slot.saturated_into::()); assert!( CurrentSlot::::get() == timestamp_slot, "Timestamp slot must match `CurrentSlot`" ); } }