oxen-io/oxen-core
2
1
Fork 0
mirror of https://github.com/oxen-io/oxen-core.git synced 2023-12-14 02:22:56 +01:00
Code Issues Projects Releases Wiki Activity
oxen-core/src/cryptonote_protocol/quorumnet.cpp

1781 lines
80 KiB
C++
Raw Normal View History

Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
// Copyright (c) 2019-2020, The Loki Project
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
//
// All rights reserved.
//
// Redistribution and use in source and binary forms, with or without modification, are
// permitted provided that the following conditions are met:
//
// 1. Redistributions of source code must retain the above copyright notice, this list of
// conditions and the following disclaimer.
//
// 2. Redistributions in binary form must reproduce the above copyright notice, this list
// of conditions and the following disclaimer in the documentation and/or other
// materials provided with the distribution.
//
// 3. Neither the name of the copyright holder nor the names of its contributors may be
// used to endorse or promote products derived from this software without specific
// prior written permission.
//
// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY
// EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
// MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL
// THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
// PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
// INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
// STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF
// THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
#include "quorumnet.h"
Add snode revision soft forks & drop hard fork voting code Snode revisions are a secondary version that let us put out a mandatory update for snodes that isn't a hardfork (and so isn't mandatory for wallets/exchanges/etc.). The main point of this is to let us make a 9.2.0 release that includes new mandatory minimums of future versions of storage server (2.2.0) and lokinet (0.9.4) to bring upgrades to the network. This slightly changes the HF7 blocks to 0 (instead of 1) because, apparently, we weren't properly checking the HF value of the pre-first-hf genesis block at all before. (In practice this changes nothing because genesis blocks are v7 anyway). This also changes (slightly) how we check for hard forks: now if we skip some hard forks then we still want to know the height when a hard fork triggers. For example, if the hf tables contains {7,14} then we still need to know that the HF14 block height also is the height that activates HF9, 10, etc.
2021-06-18 01:06:51 +02:00
#include "cryptonote_basic/hardfork.h"
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
#include "cryptonote_core/cryptonote_core.h"
#include "cryptonote_core/service_node_voting.h"
#include "cryptonote_core/service_node_rules.h"
Blink WIP
2019-10-16 17:55:26 +02:00
#include "cryptonote_core/tx_blink.h"
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
#include "cryptonote_core/tx_pool.h"
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
#include "cryptonote_core/pulse.h"
shorten wire names
2021-01-28 01:07:57 +01:00
#include "cryptonote_core/uptime_proof.h"
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
#include "quorumnet_conn_matrix.h"
Blink WIP
2019-10-16 17:55:26 +02:00
#include "cryptonote_config.h"
Move randomness into new common/random.h This adds a thread-local, pre-seeded rng at `tools::rng` (to avoid the multiple places we are creating + seeding such an RNG currently). This also moves the portable uniform value and generic shuffle code there as well as neither function is specific to service nodes and this seems a logical place for them.
2019-11-03 18:58:09 +01:00
#include "common/random.h"
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
Rename lokimq -> oxenmq
2021-01-14 21:28:50 +01:00
#include <oxenmq/oxenmq.h>
Update oxenmq to latest oxen-mq+oxen-encoding All the encoding parts move to oxen-encoding recently; this updates to the latest version of oxen-mq, adds oxen-encoding, and converts everything to use oxenc headers rather than the oxenmq compatibility shims.
2022-02-10 19:25:55 +01:00
#include <oxenc/hex.h>
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
#include <shared_mutex>
Update for LokiMQ 1.1.0's changes (#1122) With the 1.1.0 update, rather than LokiMQ getting a callback that it invokes on connection to get auth level for the duration of that connection, it now checks authentication each time a command is invoked. This improves message reliability (because on an invocation failure the remote doesn't have to reconnect to be reauthenticated). This helps storage server greatly (which has some tricky initialization issue that requires it to initialize lokimq before it has the SN list); it is less needed for quorumnet communications (which have been all using connection-time authenciation for a while now), but this change does some one "weirdness" that a remote client may be unable to issue a command that they *can* issue if they reconnect. The lokid update here piggypacks the call into quorumnet in quorum_cop's `add_block` callback to make the call; this would be far cleaner if we replaced the callbacks with stateful std::function's instead of inherited base class pointers, but I didn't want to go that far in this PR.
2020-04-15 01:22:18 +02:00
#include <iterator>
quorumnet message for timestamp requests random sampling of service nodes, call timestamp lmq message checks timestamp of 5 service nodes, if local time is 30 seconds different from 80% of the nodes tested then warn user tracks external timesync status and timestamp participation of service nodes clean up includes new template struct for participation history, individual types for participation entry refactor checking participation update select_randomly, move the testing for variance overflow version locks, bump to 8.1.5 explicit casting for mac & clang note to remove after hard fork timestamp debugging log messages debugging messages for before timesync - before message sent logging errord with compiling print version and change add_command to add_request_command log if statement test std::to_string replaced with tools::view_guts for x25519 key check if my sn is active before sending timestamp requests logging the failures checking if statement for success of message more logging, if guards arn't passing more logging, successfully tests if service node might be out of sync more tests before we decide we are out of sync logging output if sn isn't passing tests if check_participation fails then disconnect print timestamp status remove saving variance from the participation history reduce MIN_TIME_IN_S_BEFORE_VOTING reset participation history on recommission undo reduction in startup time reduce log levels Set hardfork time in testnet
2020-12-01 01:56:43 +01:00
#include <time.h>
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
executable names changed
2021-01-04 04:19:42 +01:00
#undef OXEN_DEFAULT_LOG_CATEGORY
#define OXEN_DEFAULT_LOG_CATEGORY "qnet"
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
namespace quorumnet {
Blink WIP
2019-10-16 17:55:26 +02:00
namespace {
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
using namespace service_nodes;
Update oxenmq to latest oxen-mq+oxen-encoding All the encoding parts move to oxen-encoding recently; this updates to the latest version of oxen-mq, adds oxen-encoding, and converts everything to use oxenc headers rather than the oxenmq compatibility shims.
2022-02-10 19:25:55 +01:00
using namespace oxenc;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
Update oxenmq to latest oxen-mq+oxen-encoding All the encoding parts move to oxen-encoding recently; this updates to the latest version of oxen-mq, adds oxen-encoding, and converts everything to use oxenc headers rather than the oxenmq compatibility shims.
2022-02-10 19:25:55 +01:00
namespace send_option = oxenmq::send_option;
using oxenmq::Message;
using cryptonote::blink_tx;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
constexpr auto NUM_BLINK_QUORUMS = tools::enum_count<blink_tx::subquorum>;
static_assert(std::is_same<const uint8_t, decltype(NUM_BLINK_QUORUMS)>(), "unexpected underlying blink quorum count type");
using quorum_array = std::array<std::shared_ptr<const service_nodes::quorum>, NUM_BLINK_QUORUMS>;
using pending_signature = std::tuple<bool, uint8_t, int, crypto::signature>; // approval, subquorum, subquorum position, signature
struct pending_signature_hash {
size_t operator()(const pending_signature &s) const { return std::get<uint8_t>(s) + std::hash<crypto::signature>{}(std::get<crypto::signature>(s)); }
};
using pending_signature_set = std::unordered_set<pending_signature, pending_signature_hash>;
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
struct QnetState {
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
cryptonote::core &core;
Update oxenmq to latest oxen-mq+oxen-encoding All the encoding parts move to oxen-encoding recently; this updates to the latest version of oxen-mq, adds oxen-encoding, and converts everything to use oxenc headers rather than the oxenmq compatibility shims.
2022-02-10 19:25:55 +01:00
oxenmq::OxenMQ &omq{core.get_omq()};
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
// Track submitted blink txes here; unlike the blinks stored in the mempool we store these ones
// more liberally to track submitted blinks, even if unsigned/unacceptable, while the mempool
// only stores approved blinks.
boost->std: mutex, locks; C++17 lock vars Changes all boost mutexes, locks, and condition_variables to their stl equivalents. Changes all lock_guard/unique_lock/shared_lock to not specify the mutex type (C++17), e.g. std::lock_guard foo{mutex}; instead of std::lock_guard<oh::um::what::mutex> foo{mutex}; Also changes some related boost::thread calls to std::thread, and some related boost chrono calls to stl chrono. boost::thread isn't changed here to std::thread because some of the instances rely on some boost thread extensions.
2020-06-02 01:01:24 +02:00
std::shared_mutex mutex;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
struct blink_metadata {
std::shared_ptr<blink_tx> btxptr;
pending_signature_set pending_sigs;
Update oxenmq to latest oxen-mq+oxen-encoding All the encoding parts move to oxen-encoding recently; this updates to the latest version of oxen-mq, adds oxen-encoding, and converts everything to use oxenc headers rather than the oxenmq compatibility shims.
2022-02-10 19:25:55 +01:00
oxenmq::ConnectionID reply_conn;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
uint64_t reply_tag = 0;
};
quorumnet blink fix: reply using a ConnectionID instead of pubkey ConnectionID's are loki-mq's (new from quorumnet) way of replying to a specific connection; replying by pubkey now only works for service nodes, while sending via ConnectionID is designed to work for any connections. The existing code was using the pubkey, which failed to send a reply from the blink quorum when the initiator was not itself a service node.
2020-03-11 06:21:55 +01:00
// { height => { txhash => {blink_tx,conn,reply}, ... }, ... }
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
std::map<uint64_t, std::unordered_map<crypto::hash, blink_metadata>> blinks;
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
// FIXME:
//std::chrono::steady_clock::time_point last_blink_cleanup = std::chrono::steady_clock::now();
Blink WIP
2019-10-16 17:55:26 +02:00
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
std::mutex pulse_message_queue_mutex;
std::condition_variable pulse_message_queue_cv;
std::queue<pulse::message> pulse_message_queue;
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
QnetState(cryptonote::core &core) : core{core} {}
Abstract assert + reinterpret_cast
2019-12-13 04:35:05 +01:00
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
static QnetState &from(void* obj) {
Abstract assert + reinterpret_cast
2019-12-13 04:35:05 +01:00
assert(obj);
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
return *reinterpret_cast<QnetState*>(obj);
Abstract assert + reinterpret_cast
2019-12-13 04:35:05 +01:00
}
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
};
template <typename T>
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
std::string get_data_as_string(const T &key) {
static_assert(std::is_trivial<T>(), "cannot safely copy non-trivial class to string");
return {reinterpret_cast<const char *>(&key), sizeof(key)};
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
}
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
crypto::x25519_public_key x25519_from_string(std::string_view pubkey) {
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
crypto::x25519_public_key x25519_pub = crypto::x25519_public_key::null();
if (pubkey.size() == sizeof(crypto::x25519_public_key))
std::memcpy(x25519_pub.data, pubkey.data(), pubkey.size());
return x25519_pub;
}
Backport Fix bl.* commands from pulse to dev bl.* weren't being registered for non-service nodes. This fixes it by moving endpoint setup from quorumnet_new (SN-only) to a new quorumnet_init that does endpoint setup (for both SNs and non-SNs). (This is a backport of the changes applied on the pulse branch to get these fixes into `dev` for testing).
2020-08-21 09:01:37 +02:00
void setup_endpoints(cryptonote::core& core, void* obj);
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
void *new_qnetstate(cryptonote::core& core) {
Backport Fix bl.* commands from pulse to dev bl.* weren't being registered for non-service nodes. This fixes it by moving endpoint setup from quorumnet_new (SN-only) to a new quorumnet_init that does endpoint setup (for both SNs and non-SNs). (This is a backport of the changes applied on the pulse branch to get these fixes into `dev` for testing).
2020-08-21 09:01:37 +02:00
return new QnetState(core);
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
}
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
void delete_qnetstate(void *&obj) {
auto* qnet = static_cast<QnetState*>(obj);
delete qnet;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
obj = nullptr;
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
}
template <typename E>
Actually set the retrieved state change value Also adds a (too late) warning for not using the returned value.
2019-12-06 06:38:23 +01:00
#ifdef __GNUG__
[[gnu::warn_unused_result]]
#endif
Blink WIP
2019-10-16 17:55:26 +02:00
E get_enum(const bt_dict &d, const std::string &key) {
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
E result = static_cast<E>(get_int<std::underlying_type_t<E>>(d.at(key)));
Blink WIP
2019-10-16 17:55:26 +02:00
if (result < E::_count)
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
return result;
throw std::invalid_argument("invalid enum value for field " + key);
}
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
struct prepared_relay_destinations
{
std::string x25519_string;
std::string connect_string;
};
// Relay data to a random subset of the quorum up to num_peers. If the sender is
// a validator in the quorum, prefer peer_info to get a fully connected relay
// with redundancy.
// Returns the number of peers it actually prepared relay destinations.
template <typename It>
std::vector<prepared_relay_destinations>
peer_prepare_relay_to_quorum_subset(cryptonote::core &core, It quorum_begin, It quorum_end, size_t num_peers) {
// Lookup the x25519 and ZMQ connection string for all possible blink recipients so that we
// know where to send it to, and so that we can immediately exclude SNs that aren't active
// anymore.
std::unordered_set<crypto::public_key> candidates;
for (auto it = quorum_begin; it != quorum_end; it++)
candidates.insert((*it)->validators.begin(), (*it)->validators.end());
MDEBUG("Have " << candidates.size() << " SN candidates");
shorten wire names
2021-01-28 01:07:57 +01:00
std::vector<std::tuple<std::string, std::string, decltype(proof_info{}.proof->version)>> remotes; // {x25519 pubkey, connect string, version}
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
remotes.reserve(candidates.size());
core.get_service_node_list().for_each_service_node_info_and_proof(candidates.begin(), candidates.end(),
[&remotes](const auto &pubkey, const auto &info, const auto &proof) {
if (!info.is_active()) {
MTRACE("Not include inactive node " << pubkey);
return;
}
shorten wire names
2021-01-28 01:07:57 +01:00
if (!proof.pubkey_x25519 || !proof.proof->qnet_port || !proof.proof->public_ip) {
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
MTRACE("Not including node " << pubkey << ": missing x25519(" << to_hex(get_data_as_string(proof.pubkey_x25519)) << "), "
shorten wire names
2021-01-28 01:07:57 +01:00
"public_ip(" << epee::string_tools::get_ip_string_from_int32(proof.proof->public_ip) << "), or qnet port(" << proof.proof->qnet_port << ")");
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
return;
}
remotes.emplace_back(get_data_as_string(proof.pubkey_x25519),
shorten wire names
2021-01-28 01:07:57 +01:00
"tcp://" + epee::string_tools::get_ip_string_from_int32(proof.proof->public_ip) + ":" + std::to_string(proof.proof->qnet_port),
proof.proof->version);
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
});
// Select 4 random SNs to send the data to, but prefer SNs with newer versions because they may have network fixes.
MDEBUG("Have " << remotes.size() << " candidates after checking active status and connection details");
std::vector<size_t> indices(remotes.size());
std::iota(indices.begin(), indices.end(), 0);
std::shuffle(indices.begin(), indices.end(), tools::rng);
// Stable sort by version so that we keep the shuffled order within a version
using std::get;
std::stable_sort(indices.begin(), indices.end(), [&remotes](size_t a, size_t b) {
return get<2>(remotes[a]) > get<2>(remotes[b]); });
if (indices.size() > num_peers)
indices.resize(num_peers);
std::vector<prepared_relay_destinations> result;
result.reserve(indices.size());
for (size_t i : indices)
result.push_back({std::move(get<0>(remotes[i])), std::move(get<1>(remotes[i]))});
return result;
}
void peer_relay_to_prepared_destinations(cryptonote::core &core, std::vector<prepared_relay_destinations> const &destinations, std::string_view command, std::string &&data)
{
for (auto const &[x25519_string, connect_string]: destinations) {
MINFO("Relaying data to " << to_hex(x25519_string) << " @ " << connect_string);
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
core.get_omq().send(x25519_string, command, std::move(data), send_option::hint{connect_string});
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
}
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
/// Helper class to calculate and relay to peers of quorums.
///
/// TODO: add a wrapper that caches this so that looking up the same quorum peers within a certain
/// amount of time doesn't need to recalculate.
class peer_info {
public:
using exclude_set = std::unordered_set<crypto::public_key>;
/// Maps pubkeys to x25519 pubkeys and zmq connection strings
std::unordered_map<crypto::public_key, std::pair<crypto::x25519_public_key, std::string>> remotes;
/// Stores the x25519 string pubkeys to either zmq connection strings (for a "strong"
/// connection) or empty strings (for an opportunistic "weak" connection).
std::unordered_map<std::string /*x25519 pubkey*/, std::string /*conn location*/> peers;
/// The number of strong peers, that is, the count of `peers` that has a non-empty second value.
/// Will be the same as `peers.count()` if opportunistic connections are disabled.
int strong_peers;
/// The caller's positions in the given quorum(s), -1 if not found
std::vector<int> my_position;
/// The number of actual positions found in my_position (i.e. the number of elements of
/// `my_position` not equal to -1).
int my_position_count;
/// Singleton wrapper around peer_info
peer_info(
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
QnetState& qnet,
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
quorum_type q_type,
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
const quorum *quorum,
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
bool opportunistic = true,
quorumnet: Allow peer_info to send to quorum workers
2020-07-31 08:24:21 +02:00
exclude_set exclude = {},
bool include_workers = false
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
)
quorumnet: Allow peer_info to send to quorum workers
2020-07-31 08:24:21 +02:00
: peer_info(qnet, q_type, &quorum, &quorum + 1, opportunistic, std::move(exclude), include_workers) {}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
/// Constructs peer information for the given quorums and quorum position of the caller.
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
/// \param qnet - the QnetState reference
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
/// \param q_type - the type of quorum
/// \param qbegin, qend - the iterators to a set of pointers (or other deferenceable type) to quorums
/// \param opportunistic - if true then the peers to relay will also attempt to relay to any
/// incoming peers *if* those peers are already connected when the message is relayed.
/// \param exclude - can be specified as a set of peers that should be excluded from the peer
/// list. Typically for peers that we already know have the relayed information. This SN's
/// pubkey is always added to this exclude list.
template <typename QuorumIt>
peer_info(
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
QnetState& qnet,
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
quorum_type q_type,
QuorumIt qbegin, QuorumIt qend,
bool opportunistic = true,
quorumnet: Allow peer_info to send to quorum workers
2020-07-31 08:24:21 +02:00
std::unordered_set<crypto::public_key> exclude = {},
bool include_workers = false
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
)
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
: omq{qnet.omq} {
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
const auto& keys = qnet.core.get_service_keys();
assert(qnet.core.service_node());
Merge branch 'master' into MergeMasterToDev
2020-05-15 05:46:28 +02:00
const auto &my_pubkey = keys.pub;
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
exclude.insert(keys.pub);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
Simplify and fix peer lookups Peer lookup entries were only being done within a quorum, so when we added interquorum peers to the realy list we didn't find a lookup record and so only relayed to them if already connected. On mainnet, particularly with the recent changes that close idle connections faster, it's not uncommon to have no Q-to-Q' connections at all, which leads to blink timeouts. This commit simplifies the code to just look up everyone in the two quorums (except for ourselves and the SN that relayed it to us) because updating it to only look up the 7-8 nodes we might need instead of the full set of ~18 doesn't seem worth the miniscule lookup savings.
2020-05-01 01:42:48 +02:00
// - Find my position(s) in the quorum(s)
// - Build a list of all other quorum members so we can look them all up at once (i.e. to
// lock the required lookup mutex only once).
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
my_position_count = 0;
Simplify and fix peer lookups Peer lookup entries were only being done within a quorum, so when we added interquorum peers to the realy list we didn't find a lookup record and so only relayed to them if already connected. On mainnet, particularly with the recent changes that close idle connections faster, it's not uncommon to have no Q-to-Q' connections at all, which leads to blink timeouts. This commit simplifies the code to just look up everyone in the two quorums (except for ourselves and the SN that relayed it to us) because updating it to only look up the 7-8 nodes we might need instead of the full set of ~18 doesn't seem worth the miniscule lookup savings.
2020-05-01 01:42:48 +02:00
std::unordered_set<crypto::public_key> need_remotes;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
for (auto qit = qbegin; qit != qend; ++qit) {
auto &v = (*qit)->validators;
Simplify and fix peer lookups Peer lookup entries were only being done within a quorum, so when we added interquorum peers to the realy list we didn't find a lookup record and so only relayed to them if already connected. On mainnet, particularly with the recent changes that close idle connections faster, it's not uncommon to have no Q-to-Q' connections at all, which leads to blink timeouts. This commit simplifies the code to just look up everyone in the two quorums (except for ourselves and the SN that relayed it to us) because updating it to only look up the 7-8 nodes we might need instead of the full set of ~18 doesn't seem worth the miniscule lookup savings.
2020-05-01 01:42:48 +02:00
int my_pos = -1;
Fix signed-unsigned warning
2020-05-05 21:34:18 +02:00
for (size_t i = 0; i < v.size(); i++) {
if (v[i] == my_pubkey) my_pos = static_cast<int>(i);
Simplify and fix peer lookups Peer lookup entries were only being done within a quorum, so when we added interquorum peers to the realy list we didn't find a lookup record and so only relayed to them if already connected. On mainnet, particularly with the recent changes that close idle connections faster, it's not uncommon to have no Q-to-Q' connections at all, which leads to blink timeouts. This commit simplifies the code to just look up everyone in the two quorums (except for ourselves and the SN that relayed it to us) because updating it to only look up the 7-8 nodes we might need instead of the full set of ~18 doesn't seem worth the miniscule lookup savings.
2020-05-01 01:42:48 +02:00
else if (!exclude.count(v[i]))
need_remotes.insert(v[i]);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
Simplify and fix peer lookups Peer lookup entries were only being done within a quorum, so when we added interquorum peers to the realy list we didn't find a lookup record and so only relayed to them if already connected. On mainnet, particularly with the recent changes that close idle connections faster, it's not uncommon to have no Q-to-Q' connections at all, which leads to blink timeouts. This commit simplifies the code to just look up everyone in the two quorums (except for ourselves and the SN that relayed it to us) because updating it to only look up the 7-8 nodes we might need instead of the full set of ~18 doesn't seem worth the miniscule lookup savings.
2020-05-01 01:42:48 +02:00
my_position.push_back(my_pos);
if (my_pos >= 0) my_position_count++;
quorumnet: Allow peer_info to send to quorum workers
2020-07-31 08:24:21 +02:00
Quorumnet: Fix peer_info not sending to workers - Need to add the workers to the requested remotes before we call add_peer, which fails otherwise if the remotes have not been populated yet.
2020-08-04 09:42:23 +02:00
if (include_workers) {
quorumnet: Allow peer_info to send to quorum workers
2020-07-31 08:24:21 +02:00
auto &w = (*qit)->workers;
for (size_t i = 0; i < w.size(); i++) {
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
if (!exclude.count(w[i])) need_remotes.insert(w[i]);
quorumnet: Allow peer_info to send to quorum workers
2020-07-31 08:24:21 +02:00
}
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
// Lookup the x25519 and ZMQ connection string for all peers
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
qnet.core.get_service_node_list().for_each_service_node_info_and_proof(need_remotes.begin(), need_remotes.end(),
Store uptime proof data separately from states This extracts uptime proof data entirely from service node states, instead storing (some) proof data as its own first-class object in the code and backed by the database. We now persistently store: - timestamp - version - ip & ports - ed25519 pubkey and update it every time a proof is received. Upon restart, we load all the proofs from the database, which means we no longer lose last proof received times on restart, and always have the most recently received ip and port information (rather than only having whatever it was in the most recently stored state, which could be ~12 blocks ago). It also means we don't need to spam the network with proofs for up to half an hour after a restart because we now know when we last sent (and received) our own proof before restarting. This separation required some restructuring: most notably changing `state_t` to be constructed with a `service_node_list` pointer, which it needs both directly and for BlockchainDB access. Related to this is also eliminating the separate BlockchainDB pointer stored in service_node_list in favour of just accessing it via m_blockchain (which now has a new `has_db()` method to detect when it has been initialized).
2019-12-04 21:50:28 +01:00
[this](const auto &pubkey, const auto &info, const auto &proof) {
shorten wire names
2021-01-28 01:07:57 +01:00
if (info.is_active() && proof.pubkey_x25519 && proof.proof->qnet_port && proof.proof->public_ip)
Store uptime proof data separately from states This extracts uptime proof data entirely from service node states, instead storing (some) proof data as its own first-class object in the code and backed by the database. We now persistently store: - timestamp - version - ip & ports - ed25519 pubkey and update it every time a proof is received. Upon restart, we load all the proofs from the database, which means we no longer lose last proof received times on restart, and always have the most recently received ip and port information (rather than only having whatever it was in the most recently stored state, which could be ~12 blocks ago). It also means we don't need to spam the network with proofs for up to half an hour after a restart because we now know when we last sent (and received) our own proof before restarting. This separation required some restructuring: most notably changing `state_t` to be constructed with a `service_node_list` pointer, which it needs both directly and for BlockchainDB access. Related to this is also eliminating the separate BlockchainDB pointer stored in service_node_list in favour of just accessing it via m_blockchain (which now has a new `has_db()` method to detect when it has been initialized).
2019-12-04 21:50:28 +01:00
remotes.emplace(pubkey, std::make_pair(proof.pubkey_x25519,
shorten wire names
2021-01-28 01:07:57 +01:00
"tcp://" + epee::string_tools::get_ip_string_from_int32(proof.proof->public_ip) + ":" + std::to_string(proof.proof->qnet_port)));
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
});
Quorumnet: Fix peer_info not sending to workers - Need to add the workers to the requested remotes before we call add_peer, which fails otherwise if the remotes have not been populated yet.
2020-08-04 09:42:23 +02:00
compute_validator_peers(qbegin, qend, opportunistic);
if (include_workers) {
for (auto qit = qbegin; qit != qend; ++qit) {
auto &w = (*qit)->workers;
for (size_t i = 0; i < w.size(); i++)
add_peer(w[i]);
}
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
/// Relays a command and any number of serialized data to everyone we're supposed to relay to
template <typename... T>
Quorumnet: Update peer relay to accept string_view commands
2020-08-04 06:02:01 +02:00
void relay_to_peers(const std::string_view &cmd, const T &...data) {
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
relay_to_peers_impl(cmd, std::array<std::string, sizeof...(T)>{bt_serialize(data)...},
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
std::make_index_sequence<sizeof...(T)>{});
}
private:
Update oxenmq to latest oxen-mq+oxen-encoding All the encoding parts move to oxen-encoding recently; this updates to the latest version of oxen-mq, adds oxen-encoding, and converts everything to use oxenc headers rather than the oxenmq compatibility shims.
2022-02-10 19:25:55 +01:00
oxenmq::OxenMQ &omq;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
/// Looks up a pubkey in known remotes and adds it to `peers`. If strong, it is added with an
/// address, otherwise it is added with an empty address. If the element already exists, it
/// will be updated *if* it the existing entry is weak and `strong` is true, otherwise it will
/// be left as is. Returns true if a new entry was created or a weak entry was upgraded.
bool add_peer(const crypto::public_key &pubkey, bool strong = true) {
auto it = remotes.find(pubkey);
if (it != remotes.end()) {
std::string remote_addr = strong ? it->second.second : ""s;
auto ins = peers.emplace(get_data_as_string(it->second.first), std::move(remote_addr));
if (strong && !ins.second && ins.first->second.empty()) {
ins.first->second = it->second.second;
strong_peers++;
return true; // Upgraded weak to strong
}
if (strong && ins.second)
strong_peers++;
return ins.second;
}
return false;
}
// Build a map of x25519 keys -> connection strings of all our quorum peers we talk to; the
// connection string is non-empty only for *strong* peer (i.e. one we should connect to if not
// already connected) and empty if it's an opportunistic peer (i.e. only send along if we already
// have a connection).
template <typename QuorumIt>
Quorumnet: Fix peer_info not sending to workers - Need to add the workers to the requested remotes before we call add_peer, which fails otherwise if the remotes have not been populated yet.
2020-08-04 09:42:23 +02:00
void compute_validator_peers(QuorumIt qbegin, QuorumIt qend, bool opportunistic) {
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
// TODO: when we receive a new block, if our quorum starts soon we can tell SNNetwork to
// pre-connect (to save the time in handshaking when we get an actual blink tx).
strong_peers = 0;
size_t i = 0;
for (QuorumIt qit = qbegin; qit != qend; ++i, ++qit) {
if (my_position[i] < 0) {
MTRACE("Not in subquorum " << (i == 0 ? "Q" : "Q'"));
continue;
Improve inter-quorum relay trace debugging
2020-04-29 20:49:04 +02:00
} else {
MTRACE("I am in subquorum " << (i == 0 ? "Q" : "Q'") << " position " << my_position[i]);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
auto &validators = (*qit)->validators;
// Relay to all my outgoing targets within the quorum (connecting if not already connected)
for (int j : quorum_outgoing_conns(my_position[i], validators.size())) {
if (add_peer(validators[j]))
Improve inter-quorum relay trace debugging
2020-04-29 20:49:04 +02:00
MTRACE("Relaying within subquorum " << (i == 0 ? "Q" : "Q'") << "[" << my_position[i] << "] to [" << j << "] " << validators[j]);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
// Opportunistically relay to all my *incoming* sources within the quorum *if* I already
// have a connection open with them, but don't open a new connection if I don't.
for (int j : quorum_incoming_conns(my_position[i], validators.size())) {
if (add_peer(validators[j], false /*!strong*/))
Improve inter-quorum relay trace debugging
2020-04-29 20:49:04 +02:00
MTRACE("Optional opportunistic relay within quorum " << (i == 0 ? "Q" : "Q'") << "[" << my_position[i] << "] to [" << j << "] " << validators[j]);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
// Now establish strong interconnections between quorums, if we have multiple subquorums
// (i.e. blink quorums).
//
// If I'm in the last half* of the first quorum then I relay to the first half (roughly) of
// the next quorum. i.e. nodes 5-9 in Q send to nodes 0-4 in Q'. For odd numbers the last
// position gets left out (e.g. for 9 members total we would have 0-3 talk to 4-7 and no one
// talks to 8).
//
// (* - half here means half the size of the smaller quorum)
//
// We also skip this entirely if this SN is in both quorums since then we're already
// relaying to nodes in the next quorum. (Ideally we'd do the same if the recipient is in
// both quorums, but that's harder to figure out and so the special case isn't worth
// worrying about).
QuorumIt qnext = std::next(qit);
if (qnext != qend && my_position[i + 1] < 0) {
auto &next_validators = (*qnext)->validators;
int half = std::min<int>(validators.size(), next_validators.size()) / 2;
if (my_position[i] >= half && my_position[i] < half*2) {
Improve inter-quorum relay trace debugging
2020-04-29 20:49:04 +02:00
int next_pos = my_position[i] - half;
bool added = add_peer(next_validators[next_pos]);
MTRACE("Inter-quorum relay from Q[" << my_position[i] << "] (me) to Q'[" << next_pos << "] = " << next_validators[next_pos]
<< (added ? "" : " (skipping; already relaying to that SN)"));
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
} else {
Improve inter-quorum relay trace debugging
2020-04-29 20:49:04 +02:00
MTRACE("Q[" << my_position[i] << "] is not a Q -> Q' inter-quorum relay position");
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
Improve inter-quorum relay trace debugging
2020-04-29 20:49:04 +02:00
} else if (qnext != qend) {
MTRACE("Not doing inter-quorum relaying because I am in both quorums (Q[" << my_position[i] << "], Q'[" << my_position[i+1] << "])");
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
Fix inter-quorum relay Blink signatures were not being relayed properly from the Q quorum to the Q' quorum, and so Q' might never learn about the blink.
2020-04-29 20:04:35 +02:00
// Exactly the same connections as above, but in reverse: the first half of Q' sends to
// the second half of Q. Typically this will end up reusing an already open connection,
// but if there isn't such an open connection then we establish a new one.
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (qit != qbegin && my_position[i - 1] < 0) {
auto &prev_validators = (*std::prev(qit))->validators;
int half = std::min<int>(validators.size(), prev_validators.size()) / 2;
if (my_position[i] < half) {
Improve inter-quorum relay trace debugging
2020-04-29 20:49:04 +02:00
int prev_pos = half + my_position[i];
bool added = add_peer(prev_validators[prev_pos]);
MTRACE("Inter-quorum relay from Q'[" << my_position[i] << "] (me) to Q[" << prev_pos << "] = " << prev_validators[prev_pos]
<< (added ? "" : " (already relaying to that SN)"));
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
} else {
Improve inter-quorum relay trace debugging
2020-04-29 20:49:04 +02:00
MTRACE("Q'[" << my_position[i] << "] is not a Q' -> Q inter-quorum relay position");
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
Improve inter-quorum relay trace debugging
2020-04-29 20:49:04 +02:00
} else if (qit != qbegin) {
MTRACE("Not doing inter-quorum relaying because I am in both quorums (Q[" << my_position[i-1] << "], Q'[" << my_position[i] << "])");
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
}
}
/// Relays a command and pre-serialized data to everyone we're supposed to relay to
template<size_t N, size_t... I>
Quorumnet: Update peer relay to accept string_view commands
2020-08-04 06:02:01 +02:00
void relay_to_peers_impl(const std::string_view &cmd, std::array<std::string, N> relay_data, std::index_sequence<I...>) {
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
for (auto &peer : peers) {
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
MTRACE("Relaying " << cmd << " to peer " << to_hex(peer.first) << (peer.second.empty() ? " (if connected)"s : " @ " + peer.second));
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (peer.second.empty())
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
omq.send(peer.first, cmd, relay_data[I]..., send_option::optional{});
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
else
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
omq.send(peer.first, cmd, relay_data[I]..., send_option::hint{peer.second});
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
}
};
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
Blink WIP
2019-10-16 17:55:26 +02:00
bt_dict serialize_vote(const quorum_vote_t &vote) {
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
bt_dict result{
{"v", vote.version},
{"t", static_cast<uint8_t>(vote.type)},
{"h", vote.block_height},
{"g", static_cast<uint8_t>(vote.group)},
{"i", vote.index_in_group},
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
{"s", get_data_as_string(vote.signature)},
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
};
if (vote.type == quorum_type::checkpointing)
result["bh"] = std::string{vote.checkpoint.block_hash.data, sizeof(crypto::hash)};
else {
result["wi"] = vote.state_change.worker_index;
result["sc"] = static_cast<std::underlying_type_t<new_state>>(vote.state_change.state);
serializing and deserializing obligation votes
2021-01-20 03:57:11 +01:00
result["re"] = static_cast<uint16_t>(vote.state_change.reason);
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
}
return result;
}
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
quorum_vote_t deserialize_vote(std::string_view v) {
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
const auto &d = bt_deserialize<bt_dict>(v); // throws if not a bt_dict
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
quorum_vote_t vote;
vote.version = get_int<uint8_t>(d.at("v"));
Blink WIP
2019-10-16 17:55:26 +02:00
vote.type = get_enum<quorum_type>(d, "t");
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
vote.block_height = get_int<uint64_t>(d.at("h"));
Blink WIP
2019-10-16 17:55:26 +02:00
vote.group = get_enum<quorum_group>(d, "g");
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
if (vote.group == quorum_group::invalid) throw std::invalid_argument("invalid vote group");
vote.index_in_group = get_int<uint16_t>(d.at("i"));
Target macos 10.12 When targetting macos <10.14 macos won't allow use of anything from C++17 that throws, such as: - std::get on a variant - std::visit - std::optional::value() - std::any_cast This avoids all of these. For std::get, we either replace with std::get_if (where appropriate), or else use a `var::get` implementation of std::get added to lokimq (also updated here). (This `var` namespace is just an `std` alias everywhere *except* old target macos). For std::visit, likewise lokimq adds an var::visit implementation for old macos that we use. std::optional::value() uses weren't useful anyway as everywhere it calls them we've already checked that the option has a value, in which case we can use `*opt` (which doesn't check for contents and throw). std::any just has to be avoided as far as I can tell, but the one place we used it is only ever a block, so I just replaced it with a `const block*`.
2020-10-16 00:44:36 +02:00
auto &sig = var::get<std::string>(d.at("s"));
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
if (sig.size() != sizeof(vote.signature)) throw std::invalid_argument("invalid vote signature size");
std::memcpy(&vote.signature, sig.data(), sizeof(vote.signature));
if (vote.type == quorum_type::checkpointing) {
Target macos 10.12 When targetting macos <10.14 macos won't allow use of anything from C++17 that throws, such as: - std::get on a variant - std::visit - std::optional::value() - std::any_cast This avoids all of these. For std::get, we either replace with std::get_if (where appropriate), or else use a `var::get` implementation of std::get added to lokimq (also updated here). (This `var` namespace is just an `std` alias everywhere *except* old target macos). For std::visit, likewise lokimq adds an var::visit implementation for old macos that we use. std::optional::value() uses weren't useful anyway as everywhere it calls them we've already checked that the option has a value, in which case we can use `*opt` (which doesn't check for contents and throw). std::any just has to be avoided as far as I can tell, but the one place we used it is only ever a block, so I just replaced it with a `const block*`.
2020-10-16 00:44:36 +02:00
auto &bh = var::get<std::string>(d.at("bh"));
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
if (bh.size() != sizeof(vote.checkpoint.block_hash.data)) throw std::invalid_argument("invalid vote checkpoint block hash");
std::memcpy(vote.checkpoint.block_hash.data, bh.data(), sizeof(vote.checkpoint.block_hash.data));
} else {
vote.state_change.worker_index = get_int<uint16_t>(d.at("wi"));
Actually set the retrieved state change value Also adds a (too late) warning for not using the returned value.
2019-12-06 06:38:23 +01:00
vote.state_change.state = get_enum<new_state>(d, "sc");
serializing and deserializing obligation votes
2021-01-20 03:57:11 +01:00
vote.state_change.reason = get_int<uint16_t>(d.at("re"));
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
}
return vote;
}
Keep checkpoint votes over p2p Checkpoint votes were only going over quorumnet, which was quite broken as they need to go out universally: random nodes piece together the individual checkpoints to create checkpoints on their own, and so need to see all of the votes. With the current code only service nodes that participated in the specific quorum ever saw the checkpoint votes. This commit returns checkpoint vote distribution to distribution over p2p. We could, in theory, do checkpoint vote collection over quorumnet and then relay the set of votes as a pack to reduce p2p traffic a bit, but this wouldn't be a huge optimization since we'd still have to distribute all the votes over p2p at some point anyway, so leaving that as a future optimization for now. (Obligations votes, in contrast, don't need to be distributed at all -- if a vote results in a state change, the quorum members themselves can produce and distribute the state change tx).
2019-12-10 19:57:36 +01:00
void relay_obligation_votes(void *obj, const std::vector<service_nodes::quorum_vote_t> &votes) {
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
auto &qnet = QnetState::from(obj);
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
const auto& my_keys = qnet.core.get_service_keys();
assert(qnet.core.service_node());
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
MDEBUG("Starting relay of " << votes.size() << " votes");
Keep checkpoint votes over p2p Checkpoint votes were only going over quorumnet, which was quite broken as they need to go out universally: random nodes piece together the individual checkpoints to create checkpoints on their own, and so need to see all of the votes. With the current code only service nodes that participated in the specific quorum ever saw the checkpoint votes. This commit returns checkpoint vote distribution to distribution over p2p. We could, in theory, do checkpoint vote collection over quorumnet and then relay the set of votes as a pack to reduce p2p traffic a bit, but this wouldn't be a huge optimization since we'd still have to distribute all the votes over p2p at some point anyway, so leaving that as a future optimization for now. (Obligations votes, in contrast, don't need to be distributed at all -- if a vote results in a state change, the quorum members themselves can produce and distribute the state change tx).
2019-12-10 19:57:36 +01:00
std::vector<service_nodes::quorum_vote_t> relayed_votes;
relayed_votes.reserve(votes.size());
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
for (auto &vote : votes) {
Keep checkpoint votes over p2p Checkpoint votes were only going over quorumnet, which was quite broken as they need to go out universally: random nodes piece together the individual checkpoints to create checkpoints on their own, and so need to see all of the votes. With the current code only service nodes that participated in the specific quorum ever saw the checkpoint votes. This commit returns checkpoint vote distribution to distribution over p2p. We could, in theory, do checkpoint vote collection over quorumnet and then relay the set of votes as a pack to reduce p2p traffic a bit, but this wouldn't be a huge optimization since we'd still have to distribute all the votes over p2p at some point anyway, so leaving that as a future optimization for now. (Obligations votes, in contrast, don't need to be distributed at all -- if a vote results in a state change, the quorum members themselves can produce and distribute the state change tx).
2019-12-10 19:57:36 +01:00
if (vote.type != quorum_type::obligations) {
MERROR("Internal logic error: quorumnet asked to relay a " << vote.type << " vote, but should only be called with obligations votes");
continue;
}
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
auto quorum = qnet.core.get_service_node_list().get_quorum(vote.type, vote.block_height);
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
if (!quorum) {
Keep checkpoint votes over p2p Checkpoint votes were only going over quorumnet, which was quite broken as they need to go out universally: random nodes piece together the individual checkpoints to create checkpoints on their own, and so need to see all of the votes. With the current code only service nodes that participated in the specific quorum ever saw the checkpoint votes. This commit returns checkpoint vote distribution to distribution over p2p. We could, in theory, do checkpoint vote collection over quorumnet and then relay the set of votes as a pack to reduce p2p traffic a bit, but this wouldn't be a huge optimization since we'd still have to distribute all the votes over p2p at some point anyway, so leaving that as a future optimization for now. (Obligations votes, in contrast, don't need to be distributed at all -- if a vote results in a state change, the quorum members themselves can produce and distribute the state change tx).
2019-12-10 19:57:36 +01:00
MWARNING("Unable to relay vote: no " << vote.type << " quorum available for height " << vote.block_height);
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
continue;
}
Blink WIP
2019-10-16 17:55:26 +02:00
auto &quorum_voters = quorum->validators;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (quorum_voters.size() < service_nodes::min_votes_for_quorum_type(vote.type)) {
MWARNING("Invalid vote relay: " << vote.type << " quorum @ height " << vote.block_height <<
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
" does not have enough validators (" << quorum_voters.size() << ") to reach the minimum required votes ("
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
<< service_nodes::min_votes_for_quorum_type(vote.type) << ")");
continue;
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
}
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
peer_info pinfo{qnet, vote.type, quorum.get()};
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (!pinfo.my_position_count) {
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
MWARNING("Invalid vote relay: vote to relay does not include this service node");
continue;
}
Stop using old quorumnet aliases Now that we have forked, the old commands aren't needed anymore.
2020-04-01 18:47:18 +02:00
pinfo.relay_to_peers("quorum.vote_ob", serialize_vote(vote));
Keep checkpoint votes over p2p Checkpoint votes were only going over quorumnet, which was quite broken as they need to go out universally: random nodes piece together the individual checkpoints to create checkpoints on their own, and so need to see all of the votes. With the current code only service nodes that participated in the specific quorum ever saw the checkpoint votes. This commit returns checkpoint vote distribution to distribution over p2p. We could, in theory, do checkpoint vote collection over quorumnet and then relay the set of votes as a pack to reduce p2p traffic a bit, but this wouldn't be a huge optimization since we'd still have to distribute all the votes over p2p at some point anyway, so leaving that as a future optimization for now. (Obligations votes, in contrast, don't need to be distributed at all -- if a vote results in a state change, the quorum members themselves can produce and distribute the state change tx).
2019-12-10 19:57:36 +01:00
relayed_votes.push_back(vote);
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
}
Keep checkpoint votes over p2p Checkpoint votes were only going over quorumnet, which was quite broken as they need to go out universally: random nodes piece together the individual checkpoints to create checkpoints on their own, and so need to see all of the votes. With the current code only service nodes that participated in the specific quorum ever saw the checkpoint votes. This commit returns checkpoint vote distribution to distribution over p2p. We could, in theory, do checkpoint vote collection over quorumnet and then relay the set of votes as a pack to reduce p2p traffic a bit, but this wouldn't be a huge optimization since we'd still have to distribute all the votes over p2p at some point anyway, so leaving that as a future optimization for now. (Obligations votes, in contrast, don't need to be distributed at all -- if a vote results in a state change, the quorum members themselves can produce and distribute the state change tx).
2019-12-10 19:57:36 +01:00
MDEBUG("Relayed " << relayed_votes.size() << " votes");
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
qnet.core.set_service_node_votes_relayed(relayed_votes);
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
}
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
void handle_obligation_vote(Message& m, QnetState& qnet) {
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
MDEBUG("Received a relayed obligation vote from " << to_hex(m.conn.pubkey()));
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
Blink WIP
2019-10-16 17:55:26 +02:00
if (m.data.size() != 1) {
MINFO("Ignoring vote: expected 1 data part, not " << m.data.size());
return;
}
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
try {
Keep checkpoint votes over p2p Checkpoint votes were only going over quorumnet, which was quite broken as they need to go out universally: random nodes piece together the individual checkpoints to create checkpoints on their own, and so need to see all of the votes. With the current code only service nodes that participated in the specific quorum ever saw the checkpoint votes. This commit returns checkpoint vote distribution to distribution over p2p. We could, in theory, do checkpoint vote collection over quorumnet and then relay the set of votes as a pack to reduce p2p traffic a bit, but this wouldn't be a huge optimization since we'd still have to distribute all the votes over p2p at some point anyway, so leaving that as a future optimization for now. (Obligations votes, in contrast, don't need to be distributed at all -- if a vote results in a state change, the quorum members themselves can produce and distribute the state change tx).
2019-12-10 19:57:36 +01:00
std::vector<quorum_vote_t> vvote;
vvote.push_back(deserialize_vote(m.data[0]));
auto& vote = vvote.back();
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
Keep checkpoint votes over p2p Checkpoint votes were only going over quorumnet, which was quite broken as they need to go out universally: random nodes piece together the individual checkpoints to create checkpoints on their own, and so need to see all of the votes. With the current code only service nodes that participated in the specific quorum ever saw the checkpoint votes. This commit returns checkpoint vote distribution to distribution over p2p. We could, in theory, do checkpoint vote collection over quorumnet and then relay the set of votes as a pack to reduce p2p traffic a bit, but this wouldn't be a huge optimization since we'd still have to distribute all the votes over p2p at some point anyway, so leaving that as a future optimization for now. (Obligations votes, in contrast, don't need to be distributed at all -- if a vote results in a state change, the quorum members themselves can produce and distribute the state change tx).
2019-12-10 19:57:36 +01:00
if (vote.type != quorum_type::obligations) {
MWARNING("Received invalid non-obligations vote via quorumnet; ignoring");
return;
}
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
if (vote.block_height > qnet.core.get_current_blockchain_height()) {
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
MDEBUG("Ignoring vote: block height " << vote.block_height << " is too high");
return;
}
Keep checkpoint votes over p2p Checkpoint votes were only going over quorumnet, which was quite broken as they need to go out universally: random nodes piece together the individual checkpoints to create checkpoints on their own, and so need to see all of the votes. With the current code only service nodes that participated in the specific quorum ever saw the checkpoint votes. This commit returns checkpoint vote distribution to distribution over p2p. We could, in theory, do checkpoint vote collection over quorumnet and then relay the set of votes as a pack to reduce p2p traffic a bit, but this wouldn't be a huge optimization since we'd still have to distribute all the votes over p2p at some point anyway, so leaving that as a future optimization for now. (Obligations votes, in contrast, don't need to be distributed at all -- if a vote results in a state change, the quorum members themselves can produce and distribute the state change tx).
2019-12-10 19:57:36 +01:00
cryptonote::vote_verification_context vvc{};
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
qnet.core.add_service_node_vote(vote, vvc);
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
if (vvc.m_verification_failed)
{
MWARNING("Vote verification failed; ignoring vote");
return;
}
if (vvc.m_added_to_pool)
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
relay_obligation_votes(&qnet, std::move(vvote));
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
}
catch (const std::exception &e) {
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
MWARNING("Deserialization of vote from " << to_hex(m.conn.pubkey()) << " failed: " << e.what());
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
}
}
quorumnet message for timestamp requests random sampling of service nodes, call timestamp lmq message checks timestamp of 5 service nodes, if local time is 30 seconds different from 80% of the nodes tested then warn user tracks external timesync status and timestamp participation of service nodes clean up includes new template struct for participation history, individual types for participation entry refactor checking participation update select_randomly, move the testing for variance overflow version locks, bump to 8.1.5 explicit casting for mac & clang note to remove after hard fork timestamp debugging log messages debugging messages for before timesync - before message sent logging errord with compiling print version and change add_command to add_request_command log if statement test std::to_string replaced with tools::view_guts for x25519 key check if my sn is active before sending timestamp requests logging the failures checking if statement for success of message more logging, if guards arn't passing more logging, successfully tests if service node might be out of sync more tests before we decide we are out of sync logging output if sn isn't passing tests if check_participation fails then disconnect print timestamp status remove saving variance from the participation history reduce MIN_TIME_IN_S_BEFORE_VOTING reset participation history on recommission undo reduction in startup time reduce log levels Set hardfork time in testnet
2020-12-01 01:56:43 +01:00
void handle_timestamp(Message& m) {
MDEBUG("Received a timestamp request from " << to_hex(m.conn.pubkey()));
const time_t seconds = time(nullptr);
m.send_reply(std::to_string(seconds));
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
/// Gets an integer value out of a bt_dict, if present and fits (i.e. get_int<> succeeds); if not
Blink WIP
2019-10-16 17:55:26 +02:00
/// present or conversion falls, returns `fallback`.
template <typename I>
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
std::enable_if_t<std::is_integral<I>::value, I> get_or(bt_dict &d, const std::string &key, I fallback) {
Blink WIP
2019-10-16 17:55:26 +02:00
auto it = d.find(key);
if (it != d.end()) {
try { return get_int<I>(it->second); }
catch (...) {}
}
return fallback;
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
// Obtains the blink quorums, verifies that they are of an acceptable size, and verifies the given
// input quorum checksum matches the computed checksum for the quorums (if provided), otherwise sets
// the given output checksum (if provided) to the calculated value. Throws std::runtime_error on
// failure.
quorum_array get_blink_quorums(uint64_t blink_height, const service_node_list &snl, const uint64_t *input_checksum, uint64_t *output_checksum = nullptr) {
// We currently just use two quorums, Q and Q' in the whitepaper, but this code is designed to
// work fine with more quorums (but don't use a single subquorum; that could only be secure or
// reliable but not both).
quorum_array result;
uint64_t local_checksum = 0;
for (uint8_t qi = 0; qi < NUM_BLINK_QUORUMS; qi++) {
auto height = blink_tx::quorum_height(blink_height, static_cast<blink_tx::subquorum>(qi));
if (!height)
throw std::runtime_error("too early in blockchain to create a quorum");
result[qi] = snl.get_quorum(quorum_type::blink, height);
Handle no blink quorum result gracefully (#1006) Fixes a segfault if we get no quorum.
2020-01-09 02:54:22 +01:00
if (!result[qi])
throw std::runtime_error("failed to obtain a blink quorum");
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
auto &v = result[qi]->validators;
if (v.size() < BLINK_MIN_VOTES || v.size() > BLINK_SUBQUORUM_SIZE)
throw std::runtime_error("not enough blink nodes to form a quorum");
local_checksum += quorum_checksum(v, qi * BLINK_SUBQUORUM_SIZE);
}
MTRACE("Verified enough active blink nodes for a quorum; quorum checksum: " << local_checksum);
if (input_checksum) {
if (*input_checksum != local_checksum)
throw std::runtime_error("wrong quorum checksum: expected " + std::to_string(local_checksum) + ", received " + std::to_string(*input_checksum));
MTRACE("Blink quorum checksum matched");
}
if (output_checksum)
*output_checksum = local_checksum;
return result;
}
// Used when debugging is enabled to print known signatures.
// Prints [x x x ...] [x x x ...] for the quorums where each "x" is either "A" for an approval
// signature, "R" for a rejection signature, or "-" for no signature.
std::string debug_known_signatures(blink_tx &btx, quorum_array &blink_quorums) {
std::ostringstream os;
bool first = true;
for (uint8_t qi = 0; qi < blink_quorums.size(); qi++) {
if (qi > 0) os << ' ';
os << '[';
const auto q = static_cast<blink_tx::subquorum>(qi);
const int slots = blink_quorums[qi]->validators.size();
for (int i = 0; i < slots; i++) {
if (i > 0) os << ' ';
auto st = btx.get_signature_status(q, i);
os << (st == blink_tx::signature_status::approved ? 'A' : st == blink_tx::signature_status::rejected ? 'R' : '-');
}
os << ']';
}
return os.str();
}
/// Processes blink signatures; called immediately upon receiving a signature if we know about the
/// tx; otherwise signatures are stored until we learn about the tx and then processed.
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
void process_blink_signatures(QnetState &qnet, const std::shared_ptr<blink_tx> &btxptr, quorum_array &blink_quorums, uint64_t quorum_checksum, std::list<pending_signature> &&signatures,
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
uint64_t reply_tag, // > 0 if we are expected to send a status update if it becomes accepted/rejected
Update oxenmq to latest oxen-mq+oxen-encoding All the encoding parts move to oxen-encoding recently; this updates to the latest version of oxen-mq, adds oxen-encoding, and converts everything to use oxenc headers rather than the oxenmq compatibility shims.
2022-02-10 19:25:55 +01:00
oxenmq::ConnectionID reply_conn, // who we are supposed to send the status update to
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
const std::string &received_from = ""s /* x25519 of the peer that sent this, if available (to avoid trying to pointlessly relay back to them) */) {
Blink synchronization - Adds blink signature synchronization and storage through the regular p2p network - Adds wallet support (though this is still currently buggy and needs additional fixes - it sees the tx when it arrives in the mempool but isn't properly updating when the blink tx gets mined.)
2019-11-06 07:28:33 +01:00
auto &btx = *btxptr;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
// First check values and discard any signatures for positions we already have.
{
auto lock = btx.shared_lock(); // Don't take out a heavier unique lock until later when we are sure we need
for (auto it = signatures.begin(); it != signatures.end(); ) {
auto &pending = *it;
auto &qi = std::get<uint8_t>(pending);
auto &position = std::get<int>(pending);
auto subquorum = static_cast<blink_tx::subquorum>(qi);
auto &validators = blink_quorums[qi]->validators;
if (position < 0 || position >= (int) validators.size()) {
MWARNING("Invalid blink signature: subquorum position is invalid");
it = signatures.erase(it);
Minor style changes
2020-04-30 03:25:47 +02:00
} else if (btx.get_signature_status(subquorum, position) != blink_tx::signature_status::none) {
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
it = signatures.erase(it);
Minor style changes
2020-04-30 03:25:47 +02:00
} else {
++it;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
}
}
if (signatures.empty())
return;
// Now check and discard any invalid signatures (we can do this without holding a lock)
for (auto it = signatures.begin(); it != signatures.end(); ) {
auto &pending = *it;
auto &approval = std::get<bool>(pending);
auto &qi = std::get<uint8_t>(pending);
auto &position = std::get<int>(pending);
auto &signature = std::get<crypto::signature>(pending);
auto subquorum = static_cast<blink_tx::subquorum>(qi);
auto &validators = blink_quorums[qi]->validators;
if (!crypto::check_signature(btx.hash(approval), validators[position], signature)) {
MWARNING("Invalid blink signature: signature verification failed");
it = signatures.erase(it);
continue;
}
++it;
}
if (signatures.empty())
return;
Blink synchronization - Adds blink signature synchronization and storage through the regular p2p network - Adds wallet support (though this is still currently buggy and needs additional fixes - it sees the tx when it arrives in the mempool but isn't properly updating when the blink tx gets mined.)
2019-11-06 07:28:33 +01:00
bool became_approved = false, became_rejected = false;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
{
auto lock = btx.unique_lock();
Blink synchronization - Adds blink signature synchronization and storage through the regular p2p network - Adds wallet support (though this is still currently buggy and needs additional fixes - it sees the tx when it arrives in the mempool but isn't properly updating when the blink tx gets mined.)
2019-11-06 07:28:33 +01:00
bool already_approved = btx.approved(),
already_rejected = !already_approved && btx.rejected();
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
MTRACE("Before recording new signatures I have existing signatures: " << debug_known_signatures(btx, blink_quorums));
// Now actually add them (and do one last check on them)
for (auto it = signatures.begin(); it != signatures.end(); ) {
auto &pending = *it;
auto &approval = std::get<bool>(pending);
auto &qi = std::get<uint8_t>(pending);
auto &position = std::get<int>(pending);
auto &signature = std::get<crypto::signature>(pending);
auto subquorum = static_cast<blink_tx::subquorum>(qi);
auto &validators = blink_quorums[qi]->validators;
if (btx.add_prechecked_signature(subquorum, position, approval, signature)) {
Blink synchronization - Adds blink signature synchronization and storage through the regular p2p network - Adds wallet support (though this is still currently buggy and needs additional fixes - it sees the tx when it arrives in the mempool but isn't properly updating when the blink tx gets mined.)
2019-11-06 07:28:33 +01:00
MDEBUG("Validated and stored " << (approval ? "approval" : "rejection") << " signature for tx " << btx.get_txhash() << ", subquorum " << int{qi} << ", position " << position);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
++it;
}
else {
// Signature already present, which means it got added between the check above and now
// by another thread.
it = signatures.erase(it);
}
}
if (!signatures.empty()) {
MDEBUG("Updated signatures; now have signatures: " << debug_known_signatures(btx, blink_quorums));
Blink synchronization - Adds blink signature synchronization and storage through the regular p2p network - Adds wallet support (though this is still currently buggy and needs additional fixes - it sees the tx when it arrives in the mempool but isn't properly updating when the blink tx gets mined.)
2019-11-06 07:28:33 +01:00
if (!already_approved && !already_rejected) {
if (btx.approved()) {
became_approved = true;
} else if (btx.rejected()) {
became_rejected = true;
}
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
}
Blink synchronization - Adds blink signature synchronization and storage through the regular p2p network - Adds wallet support (though this is still currently buggy and needs additional fixes - it sees the tx when it arrives in the mempool but isn't properly updating when the blink tx gets mined.)
2019-11-06 07:28:33 +01:00
if (became_approved) {
MINFO("Accumulated enough signatures for blink tx: enabling tx relay");
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
auto &pool = qnet.core.get_pool();
Fix rare blink pool deadlock cryptonote_protocol_handler calls `pool.get_blink(hash)` while already holding a blink shared lock, which should have been `pool.get_blink(hash, true)` to avoid `get_blink` trying to take its own lock. That double lock is undefined behaviour and can cause a deadlock on the mutex, although it appears rare that it actually does. If it does, however, this eventually backs up into vote relaying during the idle loop, which then stalls the idle loop so we stop sending out uptime proofs (since that is also in the idle loop). A simple fix here is to add the `true` argument, but on reconsideration this extra argument to take or not take a lock is messy and error prone, so this commit instead removes the second argument entirely and instead documents which call must and must not hold a lock, getting rid of the three methods (get_blink, has_blink, and add_existing_blink) that had the `have_lock` argument. This ends up having only a small impact on calling code - the vast majority of callers already hold a lock, and the few that don't are easily adjusted.
2020-01-18 19:01:45 +01:00
{
auto lock = pool.blink_unique_lock();
pool.add_existing_blink(btxptr);
}
Blink synchronization - Adds blink signature synchronization and storage through the regular p2p network - Adds wallet support (though this is still currently buggy and needs additional fixes - it sees the tx when it arrives in the mempool but isn't properly updating when the blink tx gets mined.)
2019-11-06 07:28:33 +01:00
pool.set_relayable({{btx.get_txhash()}});
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
qnet.core.relay_txpool_transactions();
Blink synchronization - Adds blink signature synchronization and storage through the regular p2p network - Adds wallet support (though this is still currently buggy and needs additional fixes - it sees the tx when it arrives in the mempool but isn't properly updating when the blink tx gets mined.)
2019-11-06 07:28:33 +01:00
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (signatures.empty())
return;
peer_info::exclude_set relay_exclude;
if (!received_from.empty()) {
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
auto pubkey = qnet.core.get_service_node_list().get_pubkey_from_x25519(x25519_from_string(received_from));
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (pubkey)
relay_exclude.insert(std::move(pubkey));
}
// We added new signatures that we didn't have before, so relay those signatures to blink peers
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
peer_info pinfo{qnet, quorum_type::blink, blink_quorums.begin(), blink_quorums.end(), true /*opportunistic*/,
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
std::move(relay_exclude)};
MDEBUG("Relaying " << signatures.size() << " blink signatures to " << pinfo.strong_peers << " (strong) + " <<
(pinfo.peers.size() - pinfo.strong_peers) << " (opportunistic) blink peers");
bt_list i_list, p_list, r_list, s_list;
for (auto &s : signatures) {
i_list.emplace_back(std::get<uint8_t>(s));
p_list.emplace_back(std::get<int>(s));
r_list.emplace_back(std::get<bool>(s));
s_list.emplace_back(get_data_as_string(std::get<crypto::signature>(s)));
}
bt_dict blink_sign_data{
{"h", btx.height},
Blink synchronization - Adds blink signature synchronization and storage through the regular p2p network - Adds wallet support (though this is still currently buggy and needs additional fixes - it sees the tx when it arrives in the mempool but isn't properly updating when the blink tx gets mined.)
2019-11-06 07:28:33 +01:00
{"#", get_data_as_string(btx.get_txhash())},
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
{"q", quorum_checksum},
{"i", std::move(i_list)},
{"p", std::move(p_list)},
{"r", std::move(r_list)},
{"s", std::move(s_list)},
};
Stop using old quorumnet aliases Now that we have forked, the old commands aren't needed anymore.
2020-04-01 18:47:18 +02:00
pinfo.relay_to_peers("quorum.blink_sign", blink_sign_data);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
MTRACE("Done blink signature relay");
quorumnet blink fix: reply using a ConnectionID instead of pubkey ConnectionID's are loki-mq's (new from quorumnet) way of replying to a specific connection; replying by pubkey now only works for service nodes, while sending via ConnectionID is designed to work for any connections. The existing code was using the pubkey, which failed to send a reply from the blink quorum when the initiator was not itself a service node.
2020-03-11 06:21:55 +01:00
if (reply_tag && reply_conn) {
Blink synchronization - Adds blink signature synchronization and storage through the regular p2p network - Adds wallet support (though this is still currently buggy and needs additional fixes - it sees the tx when it arrives in the mempool but isn't properly updating when the blink tx gets mined.)
2019-11-06 07:28:33 +01:00
if (became_approved) {
MINFO("Blink tx became approved; sending result back to originating node");
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
qnet.omq.send(reply_conn, "bl.good", bt_serialize(bt_dict{{"!", reply_tag}}), send_option::optional{});
Blink synchronization - Adds blink signature synchronization and storage through the regular p2p network - Adds wallet support (though this is still currently buggy and needs additional fixes - it sees the tx when it arrives in the mempool but isn't properly updating when the blink tx gets mined.)
2019-11-06 07:28:33 +01:00
} else if (became_rejected) {
MINFO("Blink tx became rejected; sending result back to originating node");
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
qnet.omq.send(reply_conn, "bl.bad", bt_serialize(bt_dict{{"!", reply_tag}}), send_option::optional{});
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
}
}
Blink WIP
2019-10-16 17:55:26 +02:00
/// A "blink" message is used to submit a blink tx from a node to members of the blink quorum and
/// also used to relay the blink tx between quorum members. Fields are:
///
/// "!" - Non-zero positive integer value for a connecting node; we include the tag in any
/// response if present so that the initiator can associate the response to the request.
/// If there is no tag then there will be no success/error response. Only included in
/// node-to-SN submission but not SN-to-SN relaying (which doesn't return a response
/// message).
///
/// "h" - Blink authorization height for the transaction. Must be within 2 of the current
/// height for the tx to be accepted. Mandatory.
///
/// "q" - checksum of blink quorum members. Mandatory, and must match the receiving SN's
/// locally computed checksum of blink quorum members.
///
/// "t" - the serialized transaction data.
///
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
/// "#" - precomputed tx hash. This much match the actual hash of the transaction (the blink
/// submission will fail immediately if it does not).
Blink WIP
2019-10-16 17:55:26 +02:00
///
Update oxenmq to latest oxen-mq+oxen-encoding All the encoding parts move to oxen-encoding recently; this updates to the latest version of oxen-mq, adds oxen-encoding, and converts everything to use oxenc headers rather than the oxenmq compatibility shims.
2022-02-10 19:25:55 +01:00
void handle_blink(Message& m, QnetState& qnet) {
Blink WIP
2019-10-16 17:55:26 +02:00
// TODO: if someone sends an invalid tx (i.e. one that doesn't get to the distribution stage)
// then put a timeout on that IP during which new submissions from them are dropped for a short
// time.
// If an incoming connection:
// - We can refuse new connections from that IP in the ZAP handler
// - We can (somewhat hackily) disconnect by getting the raw fd via the SRCFD property of the
// message and close it.
// If an outgoing connection - refuse reconnections via ZAP and just close it.
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
MDEBUG("Received a blink tx from " << (m.conn.sn() ? "SN " : "non-SN ") << to_hex(m.conn.pubkey()));
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
assert(qnet.core.service_node());
if (!qnet.core.service_node())
return;
const auto& keys = qnet.core.get_service_keys();
Blink WIP
2019-10-16 17:55:26 +02:00
if (m.data.size() != 1) {
MINFO("Rejecting blink message: expected one data entry not " << m.data.size());
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
// No valid data and so no reply tag; we can't send a response
Blink WIP
2019-10-16 17:55:26 +02:00
return;
}
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
auto data = bt_deserialize<bt_dict>(m.data[0]);
Blink WIP
2019-10-16 17:55:26 +02:00
auto tag = get_or<uint64_t>(data, "!", 0);
Add snode revision soft forks & drop hard fork voting code Snode revisions are a secondary version that let us put out a mandatory update for snodes that isn't a hardfork (and so isn't mandatory for wallets/exchanges/etc.). The main point of this is to let us make a 9.2.0 release that includes new mandatory minimums of future versions of storage server (2.2.0) and lokinet (0.9.4) to bring upgrades to the network. This slightly changes the HF7 blocks to 0 (instead of 1) because, apparently, we weren't properly checking the HF value of the pre-first-hf genesis block at all before. (In practice this changes nothing because genesis blocks are v7 anyway). This also changes (slightly) how we check for hard forks: now if we skip some hard forks then we still want to know the height when a hard fork triggers. For example, if the hf tables contains {7,14} then we still need to know that the HF14 block height also is the height that activates HF9, 10, etc.
2021-06-18 01:06:51 +02:00
auto local_height = qnet.core.get_current_blockchain_height();
auto hf_version = get_network_version(qnet.core.get_nettype(), local_height);
Generic burn fee checking + blink burn fee checking This adds the ability for check_fee() to also check the burn amount. This requires passing extra info through `add_tx()` (and the various things that call it), so I took the: bool keeped_by_block, bool relayed, bool do_not_relay argument triplet, moved it into a struct in tx_pool.h, then added the other fee options there (along with some static factory functions for generating the typical sets of option). The majority of this commit is chasing that change through the codebase and test suite. This is used by blink but should also help LNS and other future burn transactions to verify a burn amount simply when adding the transation to the mempool. It supports a fixed burn amount, a burn amount as a multiple of the minimum tx fee, and also allows you to increase the minimum tx fee (so that, for example, we could require blink txes to pay miners 250% of the usual minimum (unimportant) priority tx fee. - Removed a useless core::add_new_tx() overload that wasn't used anywhere. Blink-specific changes: (I'd normally separate these into a separate commit, but they got interwoven fairly heavily with the above change). - changed the way blink burning is specified so that we have three knobs for fee adjustment (fixed burn fee; base fee multiple; and required miner tx fee). The fixed amount is currently 0, base fee is 400%, and require miner tx fee is simply 100% (i.e. no different than a normal transaction). This is the same as before this commit, but is changing how they are being specified in cryptonote_config.h. - blink tx fee, burn amount, and miner tx fee (if > 100%) now get checked before signing a blink tx. (These fee checks don't apply to anyone else -- when propagating over the network only the miner tx fee is checked). - Added a couple of checks for blink quorums: 1) make sure they have reached the blink hf; 2) make sure the submitted tx version conforms to the current hf min/max tx version. - print blink fee information in simplewallet's `fee` output - add "typical" fee calculations in the `fee` output: [wallet T6SCwL (has locked stakes)]: fee Current fee is 0.000000850 loki per byte + 0.020000000 loki per output No backlog at priority 1 No backlog at priority 2 No backlog at priority 3 No backlog at priority 4 Current blink fee is 0.000004250 loki per byte + 0.100000000 loki per output Estimated typical small transaction fees: 0.042125000 (unimportant), 0.210625000 (normal), 1.053125000 (elevated), 5.265625000 (priority), 0.210625000 (blink) where "small" here is the same tx size (2500 bytes + 2 outputs) used to estimate backlogs.
2019-11-09 04:14:15 +01:00
if (hf_version < HF_VERSION_BLINK) {
MWARNING("Rejecting blink message: blink is not available for hardfork " << (int) hf_version);
if (tag)
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
m.send_back("bl.nostart", bt_serialize(bt_dict{{"!", tag}, {"e", "Invalid blink authorization height"sv}}));
Generic burn fee checking + blink burn fee checking This adds the ability for check_fee() to also check the burn amount. This requires passing extra info through `add_tx()` (and the various things that call it), so I took the: bool keeped_by_block, bool relayed, bool do_not_relay argument triplet, moved it into a struct in tx_pool.h, then added the other fee options there (along with some static factory functions for generating the typical sets of option). The majority of this commit is chasing that change through the codebase and test suite. This is used by blink but should also help LNS and other future burn transactions to verify a burn amount simply when adding the transation to the mempool. It supports a fixed burn amount, a burn amount as a multiple of the minimum tx fee, and also allows you to increase the minimum tx fee (so that, for example, we could require blink txes to pay miners 250% of the usual minimum (unimportant) priority tx fee. - Removed a useless core::add_new_tx() overload that wasn't used anywhere. Blink-specific changes: (I'd normally separate these into a separate commit, but they got interwoven fairly heavily with the above change). - changed the way blink burning is specified so that we have three knobs for fee adjustment (fixed burn fee; base fee multiple; and required miner tx fee). The fixed amount is currently 0, base fee is 400%, and require miner tx fee is simply 100% (i.e. no different than a normal transaction). This is the same as before this commit, but is changing how they are being specified in cryptonote_config.h. - blink tx fee, burn amount, and miner tx fee (if > 100%) now get checked before signing a blink tx. (These fee checks don't apply to anyone else -- when propagating over the network only the miner tx fee is checked). - Added a couple of checks for blink quorums: 1) make sure they have reached the blink hf; 2) make sure the submitted tx version conforms to the current hf min/max tx version. - print blink fee information in simplewallet's `fee` output - add "typical" fee calculations in the `fee` output: [wallet T6SCwL (has locked stakes)]: fee Current fee is 0.000000850 loki per byte + 0.020000000 loki per output No backlog at priority 1 No backlog at priority 2 No backlog at priority 3 No backlog at priority 4 Current blink fee is 0.000004250 loki per byte + 0.100000000 loki per output Estimated typical small transaction fees: 0.042125000 (unimportant), 0.210625000 (normal), 1.053125000 (elevated), 5.265625000 (priority), 0.210625000 (blink) where "small" here is the same tx size (2500 bytes + 2 outputs) used to estimate backlogs.
2019-11-09 04:14:15 +01:00
return;
}
Blink WIP
2019-10-16 17:55:26 +02:00
// verify that height is within-2 of current height
auto blink_height = get_int<uint64_t>(data.at("h"));
if (blink_height < local_height - 2) {
MINFO("Rejecting blink tx because blink auth height is too low (" << blink_height << " vs. " << local_height << ")");
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (tag)
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
m.send_back("bl.nostart", bt_serialize(bt_dict{{"!", tag}, {"e", "Invalid blink authorization height"sv}}));
Blink WIP
2019-10-16 17:55:26 +02:00
return;
} else if (blink_height > local_height + 2) {
// TODO: if within some threshold (maybe 5-10?) we could hold it and process it once we are
// within 2.
MINFO("Rejecting blink tx because blink auth height is too high (" << blink_height << " vs. " << local_height << ")");
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (tag)
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
m.send_back("bl.nostart", bt_serialize(bt_dict{{"!", tag}, {"e", "Invalid blink authorization height"sv}}));
Blink WIP
2019-10-16 17:55:26 +02:00
return;
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
MTRACE("Blink tx auth height " << blink_height << " is valid (local height is " << local_height << ")");
Blink WIP
2019-10-16 17:55:26 +02:00
auto t_it = data.find("t");
if (t_it == data.end()) {
MINFO("Rejecting blink tx: no tx data included in request");
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (tag)
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
m.send_back("bl.nostart", bt_serialize(bt_dict{{"!", tag}, {"e", "No transaction included in blink request"sv}}));
Blink WIP
2019-10-16 17:55:26 +02:00
return;
}
Target macos 10.12 When targetting macos <10.14 macos won't allow use of anything from C++17 that throws, such as: - std::get on a variant - std::visit - std::optional::value() - std::any_cast This avoids all of these. For std::get, we either replace with std::get_if (where appropriate), or else use a `var::get` implementation of std::get added to lokimq (also updated here). (This `var` namespace is just an `std` alias everywhere *except* old target macos). For std::visit, likewise lokimq adds an var::visit implementation for old macos that we use. std::optional::value() uses weren't useful anyway as everywhere it calls them we've already checked that the option has a value, in which case we can use `*opt` (which doesn't check for contents and throw). std::any just has to be avoided as far as I can tell, but the one place we used it is only ever a block, so I just replaced it with a `const block*`.
2020-10-16 00:44:36 +02:00
const std::string &tx_data = var::get<std::string>(t_it->second);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
MTRACE("Blink tx data is " << tx_data.size() << " bytes");
Blink WIP
2019-10-16 17:55:26 +02:00
// "hash" is optional -- it lets us short-circuit processing the tx if we've already seen it,
// and is added internally by SN-to-SN forwards but not the original submitter. We don't trust
// the hash if we haven't seen it before -- this is only used to skip propagation and
// validation.
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
crypto::hash tx_hash;
Target macos 10.12 When targetting macos <10.14 macos won't allow use of anything from C++17 that throws, such as: - std::get on a variant - std::visit - std::optional::value() - std::any_cast This avoids all of these. For std::get, we either replace with std::get_if (where appropriate), or else use a `var::get` implementation of std::get added to lokimq (also updated here). (This `var` namespace is just an `std` alias everywhere *except* old target macos). For std::visit, likewise lokimq adds an var::visit implementation for old macos that we use. std::optional::value() uses weren't useful anyway as everywhere it calls them we've already checked that the option has a value, in which case we can use `*opt` (which doesn't check for contents and throw). std::any just has to be avoided as far as I can tell, but the one place we used it is only ever a block, so I just replaced it with a `const block*`.
2020-10-16 00:44:36 +02:00
auto &tx_hash_str = var::get<std::string>(data.at("#"));
Reply to a tagged blinks arriving after approval/rejection Fixes a bug where a blink TX submission could end up getting no bl_good/bl_bad reply from the quorum nodes it submitted to if they had already received the tx (i.e. from another quorum member) and the tx was already approved. There was code here to partially handle it by deferring the reply into the signature handling code, but that code only fired if an arriving signature flipped the result from unknown to approved/rejected. If it was *already* approved before it arrived at the blink member the reply wouldn't get sent. This was causing intermittent timeouts when sending because the submitting node is waiting for 3 confirming replies, but was randomly getting 1-4 based on the timing of submissions and quorum approval.
2019-12-09 06:29:38 +01:00
bool already_approved = false, already_rejected = false;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (tx_hash_str.size() == sizeof(crypto::hash)) {
std::memcpy(tx_hash.data, tx_hash_str.data(), sizeof(crypto::hash));
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
std::shared_lock lock{qnet.mutex};
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
auto bit = qnet.blinks.find(blink_height);
if (bit != qnet.blinks.end()) {
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
auto &umap = bit->second;
Blink WIP
2019-10-16 17:55:26 +02:00
auto it = umap.find(tx_hash);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (it != umap.end() && it->second.btxptr) {
Reply to a tagged blinks arriving after approval/rejection Fixes a bug where a blink TX submission could end up getting no bl_good/bl_bad reply from the quorum nodes it submitted to if they had already received the tx (i.e. from another quorum member) and the tx was already approved. There was code here to partially handle it by deferring the reply into the signature handling code, but that code only fired if an arriving signature flipped the result from unknown to approved/rejected. If it was *already* approved before it arrived at the blink member the reply wouldn't get sent. This was causing intermittent timeouts when sending because the submitting node is waiting for 3 confirming replies, but was randomly getting 1-4 based on the timing of submissions and quorum approval.
2019-12-09 06:29:38 +01:00
if (tag) {
// This is a direct blink submission, not a quorum-relayed submission
already_approved = it->second.btxptr->approved();
already_rejected = !already_approved && it->second.btxptr->rejected();
if (already_approved || already_rejected) {
// Quorum approved/rejected the tx before we received the submitted blink,
Stop using old quorumnet aliases Now that we have forked, the old commands aren't needed anymore.
2020-04-01 18:47:18 +02:00
// reply with a bl.good/bl.bad immediately (done below, outside the lock).
Reply to a tagged blinks arriving after approval/rejection Fixes a bug where a blink TX submission could end up getting no bl_good/bl_bad reply from the quorum nodes it submitted to if they had already received the tx (i.e. from another quorum member) and the tx was already approved. There was code here to partially handle it by deferring the reply into the signature handling code, but that code only fired if an arriving signature flipped the result from unknown to approved/rejected. If it was *already* approved before it arrived at the blink member the reply wouldn't get sent. This was causing intermittent timeouts when sending because the submitting node is waiting for 3 confirming replies, but was randomly getting 1-4 based on the timing of submissions and quorum approval.
2019-12-09 06:29:38 +01:00
MINFO("Submitted blink tx already " << (already_approved ? "approved" : "rejected") <<
"; sending result back to originating node");
} else {
// We've already seen it but are still waiting on more signatures to
// determine the result, so stash the tag & pubkey in the metadata to delay
// the reply until a signature comes in that flips it to approved/rejected
// status.
it->second.reply_tag = tag;
quorumnet blink fix: reply using a ConnectionID instead of pubkey ConnectionID's are loki-mq's (new from quorumnet) way of replying to a specific connection; replying by pubkey now only works for service nodes, while sending via ConnectionID is designed to work for any connections. The existing code was using the pubkey, which failed to send a reply from the blink quorum when the initiator was not itself a service node.
2020-03-11 06:21:55 +01:00
it->second.reply_conn = m.conn;
Reply to a tagged blinks arriving after approval/rejection Fixes a bug where a blink TX submission could end up getting no bl_good/bl_bad reply from the quorum nodes it submitted to if they had already received the tx (i.e. from another quorum member) and the tx was already approved. There was code here to partially handle it by deferring the reply into the signature handling code, but that code only fired if an arriving signature flipped the result from unknown to approved/rejected. If it was *already* approved before it arrived at the blink member the reply wouldn't get sent. This was causing intermittent timeouts when sending because the submitting node is waiting for 3 confirming replies, but was randomly getting 1-4 based on the timing of submissions and quorum approval.
2019-12-09 06:29:38 +01:00
return;
}
} else {
MDEBUG("Already seen and forwarded this blink tx, ignoring it.");
return;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
Blink WIP
2019-10-16 17:55:26 +02:00
}
}
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
MTRACE("Blink tx hash: " << to_hex(tx_hash.data));
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
} else {
MINFO("Rejecting blink tx: invalid tx hash included in request");
if (tag)
Stop using old quorumnet aliases Now that we have forked, the old commands aren't needed anymore.
2020-04-01 18:47:18 +02:00
m.send_back("bl.nostart", bt_serialize(bt_dict{{"!", tag}, {"e", "Invalid transaction hash"s}}));
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
return;
Blink WIP
2019-10-16 17:55:26 +02:00
}
Reply to a tagged blinks arriving after approval/rejection Fixes a bug where a blink TX submission could end up getting no bl_good/bl_bad reply from the quorum nodes it submitted to if they had already received the tx (i.e. from another quorum member) and the tx was already approved. There was code here to partially handle it by deferring the reply into the signature handling code, but that code only fired if an arriving signature flipped the result from unknown to approved/rejected. If it was *already* approved before it arrived at the blink member the reply wouldn't get sent. This was causing intermittent timeouts when sending because the submitting node is waiting for 3 confirming replies, but was randomly getting 1-4 based on the timing of submissions and quorum approval.
2019-12-09 06:29:38 +01:00
if (already_approved || already_rejected) {
Stop using old quorumnet aliases Now that we have forked, the old commands aren't needed anymore.
2020-04-01 18:47:18 +02:00
m.send_back(already_approved ? "bl.good" : "bl.bad", bt_serialize(bt_dict{{"!", tag}}), send_option::optional{});
Reply to a tagged blinks arriving after approval/rejection Fixes a bug where a blink TX submission could end up getting no bl_good/bl_bad reply from the quorum nodes it submitted to if they had already received the tx (i.e. from another quorum member) and the tx was already approved. There was code here to partially handle it by deferring the reply into the signature handling code, but that code only fired if an arriving signature flipped the result from unknown to approved/rejected. If it was *already* approved before it arrived at the blink member the reply wouldn't get sent. This was causing intermittent timeouts when sending because the submitting node is waiting for 3 confirming replies, but was randomly getting 1-4 based on the timing of submissions and quorum approval.
2019-12-09 06:29:38 +01:00
return;
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
quorum_array blink_quorums;
uint64_t checksum = get_int<uint64_t>(data.at("q"));
try {
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
blink_quorums = get_blink_quorums(blink_height, qnet.core.get_service_node_list(), &checksum);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
} catch (const std::runtime_error &e) {
MINFO("Rejecting blink tx: " << e.what());
if (tag)
Stop using old quorumnet aliases Now that we have forked, the old commands aren't needed anymore.
2020-04-01 18:47:18 +02:00
m.send_back("bl.nostart", bt_serialize(bt_dict{{"!", tag}, {"e", "Unable to retrieve blink quorum: "s + e.what()}}));
Blink WIP
2019-10-16 17:55:26 +02:00
return;
}
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
peer_info pinfo{qnet, quorum_type::blink, blink_quorums.begin(), blink_quorums.end(), true /*opportunistic*/,
{qnet.core.get_service_node_list().get_pubkey_from_x25519(x25519_from_string(m.conn.pubkey()))} // exclude the peer that just sent it to us
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
};
Blink WIP
2019-10-16 17:55:26 +02:00
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (pinfo.my_position_count > 0)
MTRACE("Found this SN in " << pinfo.my_position_count << " subquorums");
else {
Blink WIP
2019-10-16 17:55:26 +02:00
MINFO("Rejecting blink tx: this service node is not a member of the blink quorum!");
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (tag)
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
m.send_back("bl.nostart", bt_serialize(bt_dict{{"!", tag}, {"e", "Blink tx relayed to non-blink quorum member"sv}}));
Blink WIP
2019-10-16 17:55:26 +02:00
return;
}
Blink synchronization - Adds blink signature synchronization and storage through the regular p2p network - Adds wallet support (though this is still currently buggy and needs additional fixes - it sees the tx when it arrives in the mempool but isn't properly updating when the blink tx gets mined.)
2019-11-06 07:28:33 +01:00
auto btxptr = std::make_shared<blink_tx>(blink_height);
auto &btx = *btxptr;
Target macos 10.12 When targetting macos <10.14 macos won't allow use of anything from C++17 that throws, such as: - std::get on a variant - std::visit - std::optional::value() - std::any_cast This avoids all of these. For std::get, we either replace with std::get_if (where appropriate), or else use a `var::get` implementation of std::get added to lokimq (also updated here). (This `var` namespace is just an `std` alias everywhere *except* old target macos). For std::visit, likewise lokimq adds an var::visit implementation for old macos that we use. std::optional::value() uses weren't useful anyway as everywhere it calls them we've already checked that the option has a value, in which case we can use `*opt` (which doesn't check for contents and throw). std::any just has to be avoided as far as I can tell, but the one place we used it is only ever a block, so I just replaced it with a `const block*`.
2020-10-16 00:44:36 +02:00
auto &tx = var::get<cryptonote::transaction>(btx.tx);
Blink synchronization - Adds blink signature synchronization and storage through the regular p2p network - Adds wallet support (though this is still currently buggy and needs additional fixes - it sees the tx when it arrives in the mempool but isn't properly updating when the blink tx gets mined.)
2019-11-06 07:28:33 +01:00
// If any quorums are too small set the extra spaces to rejected (this also checks that no
// quorums are too big).
for (size_t qi = 0; qi < blink_quorums.size(); qi++)
btx.limit_signatures(static_cast<blink_tx::subquorum>(qi), blink_quorums[qi]->validators.size());
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
{
crypto::hash tx_hash_actual;
Blink synchronization - Adds blink signature synchronization and storage through the regular p2p network - Adds wallet support (though this is still currently buggy and needs additional fixes - it sees the tx when it arrives in the mempool but isn't properly updating when the blink tx gets mined.)
2019-11-06 07:28:33 +01:00
if (!cryptonote::parse_and_validate_tx_from_blob(tx_data, tx, tx_hash_actual)) {
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
MINFO("Rejecting blink tx: failed to parse transaction data");
if (tag)
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
m.send_back("bl.nostart", bt_serialize(bt_dict{{"!", tag}, {"e", "Failed to parse transaction data"sv}}));
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
return;
}
MTRACE("Successfully parsed transaction data");
if (tx_hash != tx_hash_actual) {
MINFO("Rejecting blink tx: submitted tx hash " << tx_hash << " did not match actual tx hash " << tx_hash_actual);
if (tag)
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
m.send_back("bl.nostart", bt_serialize(bt_dict{{"!", tag}, {"e", "Invalid transaction hash"sv}}));
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
return;
} else {
MTRACE("Pre-computed tx hash matches actual tx hash");
}
Blink WIP
2019-10-16 17:55:26 +02:00
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
// Abort if we don't have at least one strong peer to send it to. This can only happen if it's
// a brand new SN (not just restarted!) that hasn't received uptime proofs before.
if (!pinfo.strong_peers) {
MWARNING("Could not find connection info for any blink quorum peers. Aborting blink tx");
if (tag)
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
m.send_back("bl.nostart", bt_serialize(bt_dict{{"!", tag}, {"e", "No quorum peers are currently reachable"sv}}));
Blink WIP
2019-10-16 17:55:26 +02:00
return;
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
// See if we've already handled this blink tx, and if not, store it. Also check for any pending
// signatures for this blink tx that we received or processed before we got here with this tx.
std::list<pending_signature> signatures;
Blink WIP
2019-10-16 17:55:26 +02:00
{
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
std::unique_lock lock{qnet.mutex};
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
auto &bl_info = qnet.blinks[blink_height][tx_hash];
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (bl_info.btxptr) {
Blink WIP
2019-10-16 17:55:26 +02:00
MDEBUG("Already seen and forwarded this blink tx, ignoring it.");
return;
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
bl_info.btxptr = btxptr;
for (auto &sig : bl_info.pending_sigs)
signatures.push_back(std::move(sig));
bl_info.pending_sigs.clear();
if (tag > 0) {
bl_info.reply_tag = tag;
quorumnet blink fix: reply using a ConnectionID instead of pubkey ConnectionID's are loki-mq's (new from quorumnet) way of replying to a specific connection; replying by pubkey now only works for service nodes, while sending via ConnectionID is designed to work for any connections. The existing code was using the pubkey, which failed to send a reply from the blink quorum when the initiator was not itself a service node.
2020-03-11 06:21:55 +01:00
bl_info.reply_conn = m.conn;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
Blink WIP
2019-10-16 17:55:26 +02:00
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
MTRACE("Accepted new blink tx for verification");
Blink WIP
2019-10-16 17:55:26 +02:00
// The submission looks good. We distribute it first, *before* we start verifying the actual tx
// details, for two reasons: we want other quorum members to start verifying ASAP, and we want
// to propagate to peers even if the things below fail on this node (because our peers might
// succeed). We test the bits *above*, however, because if they fail we won't agree on the
// right quorum to send it to.
//
// FIXME - am I 100% sure I want to do the above? Verifying the TX would cut off being able to
// induce a node to broadcast a junk TX to other quorum members.
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
{
bt_dict blink_data{
{"h", blink_height},
{"q", checksum},
{"t", tx_data},
{"#", tx_hash_str},
};
MDEBUG("Relaying blink tx to " << pinfo.strong_peers << " strong and " << (pinfo.peers.size() - pinfo.strong_peers) << " opportunistic blink peers");
Stop using old quorumnet aliases Now that we have forked, the old commands aren't needed anymore.
2020-04-01 18:47:18 +02:00
pinfo.relay_to_peers("blink.submit", blink_data);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
Blink WIP
2019-10-16 17:55:26 +02:00
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
// Anything past this point always results in a success or failure signature getting sent to peers
// Check tx for validity
Generic burn fee checking + blink burn fee checking This adds the ability for check_fee() to also check the burn amount. This requires passing extra info through `add_tx()` (and the various things that call it), so I took the: bool keeped_by_block, bool relayed, bool do_not_relay argument triplet, moved it into a struct in tx_pool.h, then added the other fee options there (along with some static factory functions for generating the typical sets of option). The majority of this commit is chasing that change through the codebase and test suite. This is used by blink but should also help LNS and other future burn transactions to verify a burn amount simply when adding the transation to the mempool. It supports a fixed burn amount, a burn amount as a multiple of the minimum tx fee, and also allows you to increase the minimum tx fee (so that, for example, we could require blink txes to pay miners 250% of the usual minimum (unimportant) priority tx fee. - Removed a useless core::add_new_tx() overload that wasn't used anywhere. Blink-specific changes: (I'd normally separate these into a separate commit, but they got interwoven fairly heavily with the above change). - changed the way blink burning is specified so that we have three knobs for fee adjustment (fixed burn fee; base fee multiple; and required miner tx fee). The fixed amount is currently 0, base fee is 400%, and require miner tx fee is simply 100% (i.e. no different than a normal transaction). This is the same as before this commit, but is changing how they are being specified in cryptonote_config.h. - blink tx fee, burn amount, and miner tx fee (if > 100%) now get checked before signing a blink tx. (These fee checks don't apply to anyone else -- when propagating over the network only the miner tx fee is checked). - Added a couple of checks for blink quorums: 1) make sure they have reached the blink hf; 2) make sure the submitted tx version conforms to the current hf min/max tx version. - print blink fee information in simplewallet's `fee` output - add "typical" fee calculations in the `fee` output: [wallet T6SCwL (has locked stakes)]: fee Current fee is 0.000000850 loki per byte + 0.020000000 loki per output No backlog at priority 1 No backlog at priority 2 No backlog at priority 3 No backlog at priority 4 Current blink fee is 0.000004250 loki per byte + 0.100000000 loki per output Estimated typical small transaction fees: 0.042125000 (unimportant), 0.210625000 (normal), 1.053125000 (elevated), 5.265625000 (priority), 0.210625000 (blink) where "small" here is the same tx size (2500 bytes + 2 outputs) used to estimate backlogs.
2019-11-09 04:14:15 +01:00
bool approved;
Build/core test fixes, incoporate staking changes from LNS - Fix assert to use version_t::_count in service_node_list.cpp - Incoporate staking changes from LNS which revamp construct tx to derive more of the parameters from hf_version and type. This removes extraneous parameters that can be derived elsewhere. Also delegate setting loki_construct_tx_params into wallet2 atleast, so that callers into the wallet logic, like rpc server, simplewallet don't need bend backwards to get the HF version whereas the wallet has dedicated functions for determining the HF.
2019-11-29 04:36:43 +01:00
auto min = tx.get_min_version_for_hf(hf_version),
max = tx.get_max_version_for_hf(hf_version);
Generic burn fee checking + blink burn fee checking This adds the ability for check_fee() to also check the burn amount. This requires passing extra info through `add_tx()` (and the various things that call it), so I took the: bool keeped_by_block, bool relayed, bool do_not_relay argument triplet, moved it into a struct in tx_pool.h, then added the other fee options there (along with some static factory functions for generating the typical sets of option). The majority of this commit is chasing that change through the codebase and test suite. This is used by blink but should also help LNS and other future burn transactions to verify a burn amount simply when adding the transation to the mempool. It supports a fixed burn amount, a burn amount as a multiple of the minimum tx fee, and also allows you to increase the minimum tx fee (so that, for example, we could require blink txes to pay miners 250% of the usual minimum (unimportant) priority tx fee. - Removed a useless core::add_new_tx() overload that wasn't used anywhere. Blink-specific changes: (I'd normally separate these into a separate commit, but they got interwoven fairly heavily with the above change). - changed the way blink burning is specified so that we have three knobs for fee adjustment (fixed burn fee; base fee multiple; and required miner tx fee). The fixed amount is currently 0, base fee is 400%, and require miner tx fee is simply 100% (i.e. no different than a normal transaction). This is the same as before this commit, but is changing how they are being specified in cryptonote_config.h. - blink tx fee, burn amount, and miner tx fee (if > 100%) now get checked before signing a blink tx. (These fee checks don't apply to anyone else -- when propagating over the network only the miner tx fee is checked). - Added a couple of checks for blink quorums: 1) make sure they have reached the blink hf; 2) make sure the submitted tx version conforms to the current hf min/max tx version. - print blink fee information in simplewallet's `fee` output - add "typical" fee calculations in the `fee` output: [wallet T6SCwL (has locked stakes)]: fee Current fee is 0.000000850 loki per byte + 0.020000000 loki per output No backlog at priority 1 No backlog at priority 2 No backlog at priority 3 No backlog at priority 4 Current blink fee is 0.000004250 loki per byte + 0.100000000 loki per output Estimated typical small transaction fees: 0.042125000 (unimportant), 0.210625000 (normal), 1.053125000 (elevated), 5.265625000 (priority), 0.210625000 (blink) where "small" here is the same tx size (2500 bytes + 2 outputs) used to estimate backlogs.
2019-11-09 04:14:15 +01:00
if (tx.version < min || tx.version > max) {
approved = false;
MINFO("Blink TX " << tx_hash << " rejected because TX version " << tx.version << " invalid: TX version not between " << min << " and " << max);
} else {
bool already_in_mempool;
cryptonote::tx_verification_context tvc = {};
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
approved = qnet.core.get_pool().add_new_blink(btxptr, tvc, already_in_mempool);
Generic burn fee checking + blink burn fee checking This adds the ability for check_fee() to also check the burn amount. This requires passing extra info through `add_tx()` (and the various things that call it), so I took the: bool keeped_by_block, bool relayed, bool do_not_relay argument triplet, moved it into a struct in tx_pool.h, then added the other fee options there (along with some static factory functions for generating the typical sets of option). The majority of this commit is chasing that change through the codebase and test suite. This is used by blink but should also help LNS and other future burn transactions to verify a burn amount simply when adding the transation to the mempool. It supports a fixed burn amount, a burn amount as a multiple of the minimum tx fee, and also allows you to increase the minimum tx fee (so that, for example, we could require blink txes to pay miners 250% of the usual minimum (unimportant) priority tx fee. - Removed a useless core::add_new_tx() overload that wasn't used anywhere. Blink-specific changes: (I'd normally separate these into a separate commit, but they got interwoven fairly heavily with the above change). - changed the way blink burning is specified so that we have three knobs for fee adjustment (fixed burn fee; base fee multiple; and required miner tx fee). The fixed amount is currently 0, base fee is 400%, and require miner tx fee is simply 100% (i.e. no different than a normal transaction). This is the same as before this commit, but is changing how they are being specified in cryptonote_config.h. - blink tx fee, burn amount, and miner tx fee (if > 100%) now get checked before signing a blink tx. (These fee checks don't apply to anyone else -- when propagating over the network only the miner tx fee is checked). - Added a couple of checks for blink quorums: 1) make sure they have reached the blink hf; 2) make sure the submitted tx version conforms to the current hf min/max tx version. - print blink fee information in simplewallet's `fee` output - add "typical" fee calculations in the `fee` output: [wallet T6SCwL (has locked stakes)]: fee Current fee is 0.000000850 loki per byte + 0.020000000 loki per output No backlog at priority 1 No backlog at priority 2 No backlog at priority 3 No backlog at priority 4 Current blink fee is 0.000004250 loki per byte + 0.100000000 loki per output Estimated typical small transaction fees: 0.042125000 (unimportant), 0.210625000 (normal), 1.053125000 (elevated), 5.265625000 (priority), 0.210625000 (blink) where "small" here is the same tx size (2500 bytes + 2 outputs) used to estimate backlogs.
2019-11-09 04:14:15 +01:00
MINFO("Blink TX " << tx_hash << (approved ? " approved and added to mempool" : " rejected"));
if (!approved)
MDEBUG("TX rejected because: " << print_tx_verification_context(tvc));
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
auto hash_to_sign = btx.hash(approved);
crypto::signature sig;
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
generate_signature(hash_to_sign, keys.pub, keys.key, sig);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
// Now that we have the blink tx stored we can add our signature *and* any other pending
// signatures we are holding onto, then blast the entire thing to our peers.
Minor style changes
2020-04-30 03:25:47 +02:00
for (uint8_t qi = 0; qi < NUM_BLINK_QUORUMS; qi++)
if (pinfo.my_position[qi] >= 0)
signatures.emplace_back(approved, qi, pinfo.my_position[qi], sig);
Blink WIP
2019-10-16 17:55:26 +02:00
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
process_blink_signatures(qnet, btxptr, blink_quorums, checksum, std::move(signatures), tag, m.conn.pubkey());
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
Blink WIP
2019-10-16 17:55:26 +02:00
Make blink signature parsing single-pass This signature parsing code was bizarrely failing to parse what appears to be perfectly valid data, but only on one Debian buster system for unknown reasons, and not reproducible in a small test case with the exact data it received. Rewrote it to use on-the-fly data deserialization (which is more efficient anyway by avoiding heap memory allocation for deserialization).
2020-04-30 03:26:02 +02:00
template <typename Consume>
boost::variant -> std::variant A huge amount of this is repetitive: - `boost::get<T>(variant)` becomes `std::get<T>(variant)` - `boost::get<T>(variant_ptr)` becomes `std::get_if<T>(variant_ptr)` - `variant.type() == typeid(T)` becomes `std::holds_alternative<T>(variant)` There are also some simplifications to visitors using simpler stl visitors, or (simpler still) generic lambdas as visitors. Also adds boost serialization serializers for std::variant and std::optional.
2020-06-02 05:47:20 +02:00
void extract_signature_values(bt_dict_consumer& data, std::string_view key, std::list<pending_signature>& signatures, Consume consume) {
Make blink signature parsing single-pass This signature parsing code was bizarrely failing to parse what appears to be perfectly valid data, but only on one Debian buster system for unknown reasons, and not reproducible in a small test case with the exact data it received. Rewrote it to use on-the-fly data deserialization (which is more efficient anyway by avoiding heap memory allocation for deserialization).
2020-04-30 03:26:02 +02:00
if (!data.skip_until(key)) throw std::invalid_argument("Invalid blink signature data: missing required field '" + std::string{key} + "'");
auto list = data.consume_list_consumer();
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
auto it = signatures.begin();
Make blink signature parsing single-pass This signature parsing code was bizarrely failing to parse what appears to be perfectly valid data, but only on one Debian buster system for unknown reasons, and not reproducible in a small test case with the exact data it received. Rewrote it to use on-the-fly data deserialization (which is more efficient anyway by avoiding heap memory allocation for deserialization).
2020-04-30 03:26:02 +02:00
for (; !list.is_finished(); ++it) {
if (it == signatures.end()) throw std::invalid_argument("Invalid blink signature data: " + std::string{key} + " size > i size");
std::get<decltype(consume(list))>(*it) = consume(list);
}
if (it != signatures.end()) throw std::invalid_argument("Invalid blink signature data: " + std::string{key} + " size < i size");
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
Blink WIP
2019-10-16 17:55:26 +02:00
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
crypto::signature convert_string_view_bytes_to_signature(std::string_view sig_str)
{
if (sig_str.size() != sizeof(crypto::signature))
Pulse: Add random value hash stage
2020-08-11 10:14:17 +02:00
throw std::invalid_argument("Invalid signature data size: " + std::to_string(sig_str.size()));
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
crypto::signature result;
std::memcpy(&result, sig_str.data(), sizeof(crypto::signature));
if (!result) throw std::invalid_argument("Invalid signature data: null signature given");
return result;
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
/// A "blink_sign" message is used to relay signatures from one quorum member to other members.
/// Fields are:
///
/// "h" - Blink authorization height of the signature.
///
/// "#" - tx hash of the transaction.
///
/// "q" - checksum of blink quorum members. Mandatory, and must match the receiving SN's
/// locally computed checksum of blink quorum members.
///
/// "i" - list of quorum indices, i.e. 0 for the base quorum, 1 for the future quorum
///
/// "p" - list of quorum positions
///
/// "r" - list of blink signature results (0 if rejected, 1 if approved)
///
/// "s" - list of blink signatures
///
/// Each of "i", "p", "r", and "s" must be exactly the same length; each element at a position in
/// each list corresponds to the values at the same position of the other lists.
///
/// Signatures will be forwarded if new; known signatures will be ignored.
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
void handle_blink_signature(Message& m, QnetState& qnet) {
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
MDEBUG("Received a blink tx signature from SN " << to_hex(m.conn.pubkey()));
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (m.data.size() != 1)
throw std::runtime_error("Rejecting blink signature: expected one data entry not " + std::to_string(m.data.size()));
Make blink signature parsing single-pass This signature parsing code was bizarrely failing to parse what appears to be perfectly valid data, but only on one Debian buster system for unknown reasons, and not reproducible in a small test case with the exact data it received. Rewrote it to use on-the-fly data deserialization (which is more efficient anyway by avoiding heap memory allocation for deserialization).
2020-04-30 03:26:02 +02:00
// Note: this dict_consumer processes in ASCII-order. Also worth noting is that we skip over
// unknown values here (which could be helpful if we want to add fields in the future).
bt_dict_consumer data{m.data[0]};
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
Make blink signature parsing single-pass This signature parsing code was bizarrely failing to parse what appears to be perfectly valid data, but only on one Debian buster system for unknown reasons, and not reproducible in a small test case with the exact data it received. Rewrote it to use on-the-fly data deserialization (which is more efficient anyway by avoiding heap memory allocation for deserialization).
2020-04-30 03:26:02 +02:00
// # - hash (32 bytes)
if (!data.skip_until("#")) throw std::invalid_argument("Invalid blink signature data: missing required field '#'");
auto hash_str = data.consume_string_view();
if (hash_str.size() != sizeof(crypto::hash))
throw std::invalid_argument("Invalid blink signature data: invalid tx hash");
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
crypto::hash tx_hash;
Make blink signature parsing single-pass This signature parsing code was bizarrely failing to parse what appears to be perfectly valid data, but only on one Debian buster system for unknown reasons, and not reproducible in a small test case with the exact data it received. Rewrote it to use on-the-fly data deserialization (which is more efficient anyway by avoiding heap memory allocation for deserialization).
2020-04-30 03:26:02 +02:00
std::memcpy(tx_hash.data, hash_str.data(), sizeof(crypto::hash));
// h - height
if (!data.skip_until("h")) throw std::invalid_argument("Invalid blink signature data: missing required field 'h'");
uint64_t blink_height = data.consume_integer<uint64_t>();
if (!blink_height) throw std::invalid_argument("Invalid blink signature data: height cannot be 0");
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
std::list<pending_signature> signatures;
Make blink signature parsing single-pass This signature parsing code was bizarrely failing to parse what appears to be perfectly valid data, but only on one Debian buster system for unknown reasons, and not reproducible in a small test case with the exact data it received. Rewrote it to use on-the-fly data deserialization (which is more efficient anyway by avoiding heap memory allocation for deserialization).
2020-04-30 03:26:02 +02:00
// i - list of quorum indices
if (!data.skip_until("i")) throw std::invalid_argument("Invalid blink signature data: missing required field 'i'");
auto quorum_indices = data.consume_list_consumer();
while (!quorum_indices.is_finished()) {
uint8_t q = quorum_indices.consume_integer<uint8_t>();
if (q >= NUM_BLINK_QUORUMS)
throw std::invalid_argument("Invalid blink signature data: invalid quorum index " + std::to_string(q));
signatures.emplace_back();
std::get<uint8_t>(signatures.back()) = q;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
Make blink signature parsing single-pass This signature parsing code was bizarrely failing to parse what appears to be perfectly valid data, but only on one Debian buster system for unknown reasons, and not reproducible in a small test case with the exact data it received. Rewrote it to use on-the-fly data deserialization (which is more efficient anyway by avoiding heap memory allocation for deserialization).
2020-04-30 03:26:02 +02:00
// p - list of quorum positions
extract_signature_values(data, "p", signatures, [](bt_list_consumer& l) {
int pos = l.consume_integer<int>();
if (pos < 0 || pos >= BLINK_SUBQUORUM_SIZE) // This is only input validation: it might actually have to be smaller depending on the actual quorum (we check later)
throw std::invalid_argument("Invalid blink signature data: invalid quorum position " + std::to_string(pos));
return pos;
});
// q - quorum membership checksum
if (!data.skip_until("q")) throw std::invalid_argument("Invalid blink signature data: missing required field 'q'");
Deal with negative integer encodings Change the blink quorum checksum value on the wire to a positive uint64_t rather than the 2s complement int64_t encoded value that bt_value produces by default. Also updates the bt_dict_consumer code to handle the needed int64_t -> uint64_t conversion if a negative int64_t (from a previous lokid version) arrives on the wire.
2020-04-30 19:55:23 +02:00
// Before 7.1.8 we get a int64_t on the wire, using 2s-complement representation when the value
// is a uint64_t that exceeds the max of an int64_t so, if negative, pull it off and static cast
// it back (the static_cast assumes a 2s-complement architecture which isn't technically
// guaranteed until C++20, but is pretty much universal).
static_assert(sizeof(int64_t) == sizeof(uint64_t) && static_cast<uint64_t>(int64_t{-1}) == ~uint64_t{0},
"Non 2s-complement architecture not supported"); // Just in case
uint64_t checksum = data.is_negative_integer()
? static_cast<uint64_t>(data.consume_integer<int64_t>())
: data.consume_integer<uint64_t>(); // If not negative, read as uint64_t (so that we allow large positive uint64_t's on the wire)
Make blink signature parsing single-pass This signature parsing code was bizarrely failing to parse what appears to be perfectly valid data, but only on one Debian buster system for unknown reasons, and not reproducible in a small test case with the exact data it received. Rewrote it to use on-the-fly data deserialization (which is more efficient anyway by avoiding heap memory allocation for deserialization).
2020-04-30 03:26:02 +02:00
// r - list of 1/0 results (1 = approved, 0 = rejected)
extract_signature_values(data, "r", signatures, [](bt_list_consumer& l) { return l.consume_integer<bool>(); });
// s - list of 64-byte signatures
extract_signature_values(data, "s", signatures, [](bt_list_consumer& l) {
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
return convert_string_view_bytes_to_signature(l.consume_string_view());
Make blink signature parsing single-pass This signature parsing code was bizarrely failing to parse what appears to be perfectly valid data, but only on one Debian buster system for unknown reasons, and not reproducible in a small test case with the exact data it received. Rewrote it to use on-the-fly data deserialization (which is more efficient anyway by avoiding heap memory allocation for deserialization).
2020-04-30 03:26:02 +02:00
});
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
auto blink_quorums = get_blink_quorums(blink_height, qnet.core.get_service_node_list(), &checksum); // throws if bad quorum or checksum mismatch
Blink WIP
2019-10-16 17:55:26 +02:00
Blink synchronization - Adds blink signature synchronization and storage through the regular p2p network - Adds wallet support (though this is still currently buggy and needs additional fixes - it sees the tx when it arrives in the mempool but isn't properly updating when the blink tx gets mined.)
2019-11-06 07:28:33 +01:00
uint64_t reply_tag = 0;
Update oxenmq to latest oxen-mq+oxen-encoding All the encoding parts move to oxen-encoding recently; this updates to the latest version of oxen-mq, adds oxen-encoding, and converts everything to use oxenc headers rather than the oxenmq compatibility shims.
2022-02-10 19:25:55 +01:00
oxenmq::ConnectionID reply_conn;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
std::shared_ptr<blink_tx> btxptr;
Avoid potential data race in delayed signature storage
2019-11-08 05:37:13 +01:00
auto find_blink = [&]() {
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
auto height_it = qnet.blinks.find(blink_height);
if (height_it == qnet.blinks.end())
Avoid potential data race in delayed signature storage
2019-11-08 05:37:13 +01:00
return;
auto &blinks_at_height = height_it->second;
auto it = blinks_at_height.find(tx_hash);
if (it == blinks_at_height.end())
return;
auto &b_meta = it->second;
btxptr = b_meta.btxptr;
reply_tag = b_meta.reply_tag;
quorumnet blink fix: reply using a ConnectionID instead of pubkey ConnectionID's are loki-mq's (new from quorumnet) way of replying to a specific connection; replying by pubkey now only works for service nodes, while sending via ConnectionID is designed to work for any connections. The existing code was using the pubkey, which failed to send a reply from the blink quorum when the initiator was not itself a service node.
2020-03-11 06:21:55 +01:00
reply_conn = b_meta.reply_conn;
Avoid potential data race in delayed signature storage
2019-11-08 05:37:13 +01:00
};
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
{
Avoid potential data race in delayed signature storage
2019-11-08 05:37:13 +01:00
// Most of the time we'll already know about the blink and don't need a unique lock to
// extract info we need. If we fail, we'll stash the signature to be processed when we get
// the blink tx itself.
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
std::shared_lock lock{qnet.mutex};
Avoid potential data race in delayed signature storage
2019-11-08 05:37:13 +01:00
find_blink();
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
Blink WIP
2019-10-16 17:55:26 +02:00
Avoid potential data race in delayed signature storage
2019-11-08 05:37:13 +01:00
if (!btxptr) {
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
std::unique_lock lock{qnet.mutex};
Avoid potential data race in delayed signature storage
2019-11-08 05:37:13 +01:00
// We probably don't have it, so want to stash the signature until we received it. There's
// a chance, however, that another thread processed it while we were waiting for this
// exclusive mutex, so check it again before we stash a delayed signature.
find_blink();
if (!btxptr) {
MINFO("Blink tx not found in local blink cache; delaying signature verification");
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
auto &delayed = qnet.blinks[blink_height][tx_hash].pending_sigs;
Avoid potential data race in delayed signature storage
2019-11-08 05:37:13 +01:00
for (auto &sig : signatures)
delayed.insert(std::move(sig));
return;
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
Avoid potential data race in delayed signature storage
2019-11-08 05:37:13 +01:00
MINFO("Found blink tx in local blink cache");
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
process_blink_signatures(qnet, btxptr, blink_quorums, checksum, std::move(signatures), reply_tag, reply_conn, m.conn.pubkey());
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
using blink_response = std::pair<cryptonote::blink_result, std::string>;
struct blink_result_data {
crypto::hash hash;
std::promise<blink_response> promise;
std::chrono::high_resolution_clock::time_point expiry;
int remote_count;
std::atomic<int> nostart_count{0};
};
std::unordered_map<uint64_t, blink_result_data> pending_blink_results;
boost->std: mutex, locks; C++17 lock vars Changes all boost mutexes, locks, and condition_variables to their stl equivalents. Changes all lock_guard/unique_lock/shared_lock to not specify the mutex type (C++17), e.g. std::lock_guard foo{mutex}; instead of std::lock_guard<oh::um::what::mutex> foo{mutex}; Also changes some related boost::thread calls to std::thread, and some related boost chrono calls to stl chrono. boost::thread isn't changed here to std::thread because some of the instances rely on some boost thread extensions.
2020-06-02 01:01:24 +02:00
std::shared_mutex pending_blink_result_mutex;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
// Sanity check against runaway active pending blink submissions
constexpr size_t MAX_ACTIVE_PROMISES = 1000;
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
std::future<std::pair<cryptonote::blink_result, std::string>> send_blink(cryptonote::core& core, const std::string &tx_blob) {
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
std::promise<std::pair<cryptonote::blink_result, std::string>> promise;
auto future = promise.get_future();
cryptonote::transaction tx;
crypto::hash tx_hash;
uint64_t blink_tag = 0;
blink_result_data *brd = nullptr;
if (!cryptonote::parse_and_validate_tx_from_blob(tx_blob, tx, tx_hash)) {
promise.set_value(std::make_pair(cryptonote::blink_result::rejected, "Could not parse transaction data"));
} else {
auto now = std::chrono::high_resolution_clock::now();
bool found = false;
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
std::unique_lock lock{pending_blink_result_mutex};
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
for (auto it = pending_blink_results.begin(); it != pending_blink_results.end(); ) {
Don't shadow variable name Rename inner `brd` variable to avoid shadowing the outer scope `brd` variable.
2019-11-08 19:22:29 +01:00
auto &b_results = it->second;
Fix inverted logic on cache expiry (#1239) This was resulting in spurious timeouts when multiple blinks are pending quorum responses.
2020-08-31 03:42:29 +02:00
if (b_results.expiry < now) {
Don't shadow variable name Rename inner `brd` variable to avoid shadowing the outer scope `brd` variable.
2019-11-08 19:22:29 +01:00
try { b_results.promise.set_value(std::make_pair(cryptonote::blink_result::timeout, "Blink quorum timeout")); }
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
catch (const std::future_error &) { /* ignore */ }
it = pending_blink_results.erase(it);
} else {
Don't shadow variable name Rename inner `brd` variable to avoid shadowing the outer scope `brd` variable.
2019-11-08 19:22:29 +01:00
if (!found && b_results.hash == tx_hash)
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
found = true;
++it;
Blink WIP
2019-10-16 17:55:26 +02:00
}
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (found) {
promise.set_value(std::make_pair(cryptonote::blink_result::rejected, "Transaction was already submitted"));
} else if (pending_blink_results.size() >= MAX_ACTIVE_PROMISES) {
promise.set_value(std::make_pair(cryptonote::blink_result::rejected, "Node is busy, try again later"));
} else {
while (!brd) {
// Choose an unused tag randomly so that the blink tag value doesn't give anything away
Move randomness into new common/random.h This adds a thread-local, pre-seeded rng at `tools::rng` (to avoid the multiple places we are creating + seeding such an RNG currently). This also moves the portable uniform value and generic shuffle code there as well as neither function is specific to service nodes and this seems a logical place for them.
2019-11-03 18:58:09 +01:00
blink_tag = tools::rng();
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (blink_tag == 0 || pending_blink_results.count(blink_tag) > 0) continue;
brd = &pending_blink_results[blink_tag];
brd->hash = tx_hash;
brd->promise = std::move(promise);
brd->expiry = std::chrono::high_resolution_clock::now() + 30s;
}
}
}
Catch and propagate exceptions to promise This catches any exception thrown in the inner quorumnet blink code and sets it in the promise if it occurs, which propagates it out to core_rpc_server to catch and deal with.
2019-11-08 19:24:40 +01:00
if (!blink_tag) return future;
try {
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
uint64_t height = core.get_current_blockchain_height();
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
uint64_t checksum;
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
auto quorums = get_blink_quorums(height, core.get_service_node_list(), nullptr, &checksum);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
std::string data = bt_serialize<bt_dict>({
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
{"!", blink_tag},
{"#", get_data_as_string(tx_hash)},
{"h", height},
boost::variant -> std::variant A huge amount of this is repetitive: - `boost::get<T>(variant)` becomes `std::get<T>(variant)` - `boost::get<T>(variant_ptr)` becomes `std::get_if<T>(variant_ptr)` - `variant.type() == typeid(T)` becomes `std::holds_alternative<T>(variant)` There are also some simplifications to visitors using simpler stl visitors, or (simpler still) generic lambdas as visitors. Also adds boost serialization serializers for std::variant and std::optional.
2020-06-02 05:47:20 +02:00
{"q", checksum},
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
{"t", tx_blob}
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
});
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
auto destinations = peer_prepare_relay_to_quorum_subset(core, quorums.begin(), quorums.end(), 4 /*num_peers*/);
brd->remote_count = destinations.size();
peer_relay_to_prepared_destinations(core, destinations, "blink.submit"sv, std::move(data));
Catch and propagate exceptions to promise This catches any exception thrown in the inner quorumnet blink code and sets it in the promise if it occurs, which propagates it out to core_rpc_server to catch and deal with.
2019-11-08 19:24:40 +01:00
} catch (...) {
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
std::unique_lock lock{pending_blink_result_mutex};
Catch and propagate exceptions to promise This catches any exception thrown in the inner quorumnet blink code and sets it in the promise if it occurs, which propagates it out to core_rpc_server to catch and deal with.
2019-11-08 19:24:40 +01:00
auto it = pending_blink_results.find(blink_tag); // Look up again because `brd` might have been deleted
if (it != pending_blink_results.end()) {
try {
Review fixes - set the proper promise - reuse reference rather than repeating lookups - fix unneeded mempool lock
2019-11-26 16:53:16 +01:00
it->second.promise.set_exception(std::current_exception());
Catch and propagate exceptions to promise This catches any exception thrown in the inner quorumnet blink code and sets it in the promise if it occurs, which propagates it out to core_rpc_server to catch and deal with.
2019-11-08 19:24:40 +01:00
} catch (const std::future_error &) { /* ignore */ }
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
return future;
}
Return success/rejection response on first blink quorum response We really don't need to worry about confirming a bl_good or bl_bad: those are only sent once a blink quorum has itself verified the signature. While one rogue SN could technically lie, there isn't anything at risk if that happens: the recipient still does signature validation, and the lie will be corrected at the next wallet refresh. This keeps confirmations for bl_nostart, however: those can occur spuriously if one node is in a bad state, so continue not relaying those back unless we get a majority saying the same thing.
2019-12-09 06:54:33 +01:00
void common_blink_response(uint64_t tag, cryptonote::blink_result res, std::string msg, bool nostart = false) {
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
bool promise_set = false;
{
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
std::shared_lock lock{pending_blink_result_mutex};
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
auto it = pending_blink_results.find(tag);
if (it == pending_blink_results.end())
return; // Already handled, or obsolete
auto &pbr = it->second;
Return success/rejection response on first blink quorum response We really don't need to worry about confirming a bl_good or bl_bad: those are only sent once a blink quorum has itself verified the signature. While one rogue SN could technically lie, there isn't anything at risk if that happens: the recipient still does signature validation, and the lie will be corrected at the next wallet refresh. This keeps confirmations for bl_nostart, however: those can occur spuriously if one node is in a bad state, so continue not relaying those back unless we get a majority saying the same thing.
2019-12-09 06:54:33 +01:00
bool forward_response;
if (nostart) {
Stop using old quorumnet aliases Now that we have forked, the old commands aren't needed anymore.
2020-04-01 18:47:18 +02:00
// On a bl.nostart response wait until we have confirmation from a majority of the nodes
Return success/rejection response on first blink quorum response We really don't need to worry about confirming a bl_good or bl_bad: those are only sent once a blink quorum has itself verified the signature. While one rogue SN could technically lie, there isn't anything at risk if that happens: the recipient still does signature validation, and the lie will be corrected at the next wallet refresh. This keeps confirmations for bl_nostart, however: those can occur spuriously if one node is in a bad state, so continue not relaying those back unless we get a majority saying the same thing.
2019-12-09 06:54:33 +01:00
// we sent to because it could be a local blink quorum node error.
int count = ++pbr.nostart_count;
forward_response = count > pbr.remote_count / 2;
} else {
Stop using old quorumnet aliases Now that we have forked, the old commands aren't needed anymore.
2020-04-01 18:47:18 +02:00
// Otherwise on bl.good or bl.bad response we immediately send it back. In theory a
Return success/rejection response on first blink quorum response We really don't need to worry about confirming a bl_good or bl_bad: those are only sent once a blink quorum has itself verified the signature. While one rogue SN could technically lie, there isn't anything at risk if that happens: the recipient still does signature validation, and the lie will be corrected at the next wallet refresh. This keeps confirmations for bl_nostart, however: those can occur spuriously if one node is in a bad state, so continue not relaying those back unless we get a majority saying the same thing.
2019-12-09 06:54:33 +01:00
// service node could lie about this, but there's nothing actually at risk other than a
// false confirmation message returned to the sender which will get resolved at the next
// refresh (the recipient verifies blink signatures and isn't affected).
forward_response = true;
}
if (forward_response) {
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
try {
pbr.promise.set_value(std::make_pair(res, msg));
promise_set = true;
Blink WIP
2019-10-16 17:55:26 +02:00
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
catch (const std::future_error &) { /* ignore */ }
Blink WIP
2019-10-16 17:55:26 +02:00
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
if (promise_set) {
C++17 Switch loki dev branch to C++17 compilation, and update the code with various C++17 niceties. - stop including the (deprecated) lokimq/string_view.h header and instead switch everything to use std::string_view and `""sv` instead of `""_sv`. - std::string_view is much nicer than epee::span, so updated various loki-specific code to use it instead. - made epee "portable storage" serialization accept a std::string_view instead of const lvalue std::string so that we can avoid copying. - switched from mapbox::variant to std::variant - use `auto [a, b] = whatever()` instead of `T1 a; T2 b; std::tie(a, b) = whatever()` in a couple places (in the wallet code). - switch to std::lock(...) instead of boost::lock(...) for simultaneous lock acquisition. boost::lock() won't compile in C++17 mode when given locks of different types. - removed various pre-C++17 workarounds, e.g. for fold expressions, unused argument attributes, and byte-spannable object detection. - class template deduction means lock types no longer have to specify the mutex, so `std::unique_lock<std::mutex> lock{mutex}` can become `std::unique_lock lock{mutex}`. This will make switching any mutex types (e.g. from boost to std mutexes) far easier as you just have to update the type in the header and everything should work. This also makes the tools::unique_lock and tools::shared_lock methods redundant (which were a sort of poor-mans-pre-C++17 way to eliminate the redundancy) so they are now gone and replaced with direct unique_lock or shared_lock constructions. - Redid the LNS validation using a string_view; instead of using raw char pointers the code now uses a string view and chops off parts of the view as it validates. So, for instance, it starts with "abcd.loki", validates the ".loki" and chops the view to "abcd", then validates the first character and chops to "bcd", validates the last and chops to "bc", then can just check everything remaining for is-valid-middle-char. - LNS validation gained a couple minor validation checks in the process: - slightly tightened the requirement on lokinet addresses to require that the last character of the mapped address is 'y' or 'o' (the last base32z char holds only one significant bit). - In parse_owner_to_generic_owner made sure that the owner value has the correct size (otherwise we could up end not filling or overfilling the pubkey buffer). - Replaced base32z/base64/hex conversions with lokimq's versions which have a nicer interface, are better optimized, and don't depend on epee.
2020-05-13 20:12:49 +02:00
std::unique_lock lock{pending_blink_result_mutex};
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
pending_blink_results.erase(tag);
}
}
Blink WIP
2019-10-16 17:55:26 +02:00
Stop using old quorumnet aliases Now that we have forked, the old commands aren't needed anymore.
2020-04-01 18:47:18 +02:00
/// bl.nostart is sent back to the submitter when the tx doesn't get far enough to be distributed
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
/// among the quorum because of some failure (bad height, parse failure, etc.) It includes:
///
/// ! - the tag as included in the submission
/// e - an error message
///
/// It's possible for some nodes to accept and others to refuse, so we don't actually set the
/// promise unless we get a nostart response from a majority of the remotes.
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
void handle_blink_not_started(Message& m) {
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (m.data.size() != 1) {
MERROR("Bad blink not started response: expected one data entry not " << m.data.size());
return;
Blink WIP
2019-10-16 17:55:26 +02:00
}
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
auto data = bt_deserialize<bt_dict>(m.data[0]);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
auto tag = get_int<uint64_t>(data.at("!"));
Target macos 10.12 When targetting macos <10.14 macos won't allow use of anything from C++17 that throws, such as: - std::get on a variant - std::visit - std::optional::value() - std::any_cast This avoids all of these. For std::get, we either replace with std::get_if (where appropriate), or else use a `var::get` implementation of std::get added to lokimq (also updated here). (This `var` namespace is just an `std` alias everywhere *except* old target macos). For std::visit, likewise lokimq adds an var::visit implementation for old macos that we use. std::optional::value() uses weren't useful anyway as everywhere it calls them we've already checked that the option has a value, in which case we can use `*opt` (which doesn't check for contents and throw). std::any just has to be avoided as far as I can tell, but the one place we used it is only ever a block, so I just replaced it with a `const block*`.
2020-10-16 00:44:36 +02:00
auto& error = var::get<std::string>(data.at("e"));
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
MINFO("Received no-start blink response: " << error);
Blink WIP
2019-10-16 17:55:26 +02:00
Return success/rejection response on first blink quorum response We really don't need to worry about confirming a bl_good or bl_bad: those are only sent once a blink quorum has itself verified the signature. While one rogue SN could technically lie, there isn't anything at risk if that happens: the recipient still does signature validation, and the lie will be corrected at the next wallet refresh. This keeps confirmations for bl_nostart, however: those can occur spuriously if one node is in a bad state, so continue not relaying those back unless we get a majority saying the same thing.
2019-12-09 06:54:33 +01:00
common_blink_response(tag, cryptonote::blink_result::rejected, std::move(error), true /*nostart*/);
Blink WIP
2019-10-16 17:55:26 +02:00
}
Stop using old quorumnet aliases Now that we have forked, the old commands aren't needed anymore.
2020-04-01 18:47:18 +02:00
/// bl.bad gets returned once we know enough of the blink quorum has rejected the result to make it
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
/// unequivocal that it has been rejected. We require a failure response from a majority of the
/// remotes before setting the promise.
///
/// ! - the tag as included in the submission
///
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
void handle_blink_failure(Message &m) {
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (m.data.size() != 1) {
MERROR("Blink failure message not understood: expected one data entry not " << m.data.size());
return;
}
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
auto data = bt_deserialize<bt_dict>(m.data[0]);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
auto tag = get_int<uint64_t>(data.at("!"));
Blink WIP
2019-10-16 17:55:26 +02:00
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
// TODO - we ought to be able to signal an error message *sometimes*, e.g. if one of the remotes
// we sent it to rejected it then that remote can reply with a message. That gets a bit
Stop using old quorumnet aliases Now that we have forked, the old commands aren't needed anymore.
2020-04-01 18:47:18 +02:00
// complicated, though, in terms of maintaining internal state (since the bl.bad is sent on
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
// signature receipt, not at rejection time), so for now we don't include it.
Target macos 10.12 When targetting macos <10.14 macos won't allow use of anything from C++17 that throws, such as: - std::get on a variant - std::visit - std::optional::value() - std::any_cast This avoids all of these. For std::get, we either replace with std::get_if (where appropriate), or else use a `var::get` implementation of std::get added to lokimq (also updated here). (This `var` namespace is just an `std` alias everywhere *except* old target macos). For std::visit, likewise lokimq adds an var::visit implementation for old macos that we use. std::optional::value() uses weren't useful anyway as everywhere it calls them we've already checked that the option has a value, in which case we can use `*opt` (which doesn't check for contents and throw). std::any just has to be avoided as far as I can tell, but the one place we used it is only ever a block, so I just replaced it with a `const block*`.
2020-10-16 00:44:36 +02:00
//auto &error = var::get<std::string>(data.at("e"));
Blink WIP
2019-10-16 17:55:26 +02:00
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
MINFO("Received blink failure response");
Return success/rejection response on first blink quorum response We really don't need to worry about confirming a bl_good or bl_bad: those are only sent once a blink quorum has itself verified the signature. While one rogue SN could technically lie, there isn't anything at risk if that happens: the recipient still does signature validation, and the lie will be corrected at the next wallet refresh. This keeps confirmations for bl_nostart, however: those can occur spuriously if one node is in a bad state, so continue not relaying those back unless we get a majority saying the same thing.
2019-12-09 06:54:33 +01:00
common_blink_response(tag, cryptonote::blink_result::rejected, "Transaction rejected by quorum"s);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
Stop using old quorumnet aliases Now that we have forked, the old commands aren't needed anymore.
2020-04-01 18:47:18 +02:00
/// bl.good gets returned once we know enough of the blink quorum has accepted the result to make it
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
/// valid. We require a good response from a majority of the remotes before setting the promise.
///
/// ! - the tag as included in the submission
///
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
void handle_blink_success(Message& m) {
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
if (m.data.size() != 1) {
MERROR("Blink success message not understood: expected one data entry not " << m.data.size());
return;
}
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
auto data = bt_deserialize<bt_dict>(m.data[0]);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
auto tag = get_int<uint64_t>(data.at("!"));
MINFO("Received blink success response");
Return success/rejection response on first blink quorum response We really don't need to worry about confirming a bl_good or bl_bad: those are only sent once a blink quorum has itself verified the signature. While one rogue SN could technically lie, there isn't anything at risk if that happens: the recipient still does signature validation, and the lie will be corrected at the next wallet refresh. This keeps confirmations for bl_nostart, however: those can occur spuriously if one node is in a bad state, so continue not relaying those back unless we get a majority saying the same thing.
2019-12-09 06:54:33 +01:00
common_blink_response(tag, cryptonote::blink_result::accepted, ""s);
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
}
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
//
// Pulse
//
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
// NOTE: Common header fields in pulse::message (quorum position, round,
// signature) are tagged lexicographically sorted with the header to allow
// sequentially parsing out the header data in one shot.
Pulse: Add random value hash stage
2020-08-11 10:14:17 +02:00
const std::string PULSE_TAG_QUORUM_POSITION = "q";
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
const std::string PULSE_TAG_BLOCK_ROUND = "r";
Pulse: Add random value hash stage
2020-08-11 10:14:17 +02:00
const std::string PULSE_TAG_SIGNATURE = "s";
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
// Extra fields are intentionally given tags after the common header fields.
Pulse: On signed block message, provide 2 signatures - Previously we just submitted 1 signature that signed the contents of the final block that required us to delay signature verification, because, if we received the message before we were in the final stage we would have to delay the verification because we have insufficient data to verify the signature. This means that when someone in the quorum receives and relays the message, they can tamper the message and make it invalid (by changing the round to something invalid for example) and cause other nodes in the quorum to reject it, eventually, recording that the Service Node didn't participate in the round and bias Service Nodes to decommissioning. Instead of taking the shortcut and providing only 1 signature, we do the same thing we do with all the other messages, 1. We signed the contents of the message- this proves that the message originated from the Service Node it claims to have come from (preventing any tampering). 2. The 2nd signature actually is the signature that signs the final block and is included in the block for propagation in the network. Doing so patches up the ability for intermediate relay nodes from tampering the message.
2020-09-10 06:14:29 +02:00
const std::string PULSE_TAG_BLOCK_TEMPLATE = "t";
const std::string PULSE_TAG_VALIDATOR_BITSET = "u";
const std::string PULSE_TAG_RANDOM_VALUE = "v";
const std::string PULSE_TAG_RANDOM_VALUE_HASH = "x";
const std::string PULSE_TAG_FINAL_BLOCK_SIGNATURE = "z";
Pulse: Add random value hash stage
2020-08-11 10:14:17 +02:00
const std::string PULSE_CMD_CATEGORY = "pulse";
const std::string PULSE_CMD_VALIDATOR_BITSET = "validator_bitset";
const std::string PULSE_CMD_VALIDATOR_BIT = "validator_bit";
const std::string PULSE_CMD_BLOCK_TEMPLATE = "block_template";
const std::string PULSE_CMD_RANDOM_VALUE_HASH = "random_value_hash";
Pulse: Add rand value reveal stage and gen final random value
2020-08-12 08:30:33 +02:00
const std::string PULSE_CMD_RANDOM_VALUE = "random_value";
Pulse: Add signed block propagation
2020-08-12 10:22:23 +02:00
const std::string PULSE_CMD_SIGNED_BLOCK = "signed_block";
Pulse: Add random value hash stage
2020-08-11 10:14:17 +02:00
const std::string PULSE_CMD_SEND_VALIDATOR_BITSET = PULSE_CMD_CATEGORY + "." + PULSE_CMD_VALIDATOR_BITSET;
const std::string PULSE_CMD_SEND_VALIDATOR_BIT = PULSE_CMD_CATEGORY + "." + PULSE_CMD_VALIDATOR_BIT;
const std::string PULSE_CMD_SEND_BLOCK_TEMPLATE = PULSE_CMD_CATEGORY + "." + PULSE_CMD_BLOCK_TEMPLATE;
const std::string PULSE_CMD_SEND_RANDOM_VALUE_HASH = PULSE_CMD_CATEGORY + "." + PULSE_CMD_RANDOM_VALUE_HASH;
Pulse: Add rand value reveal stage and gen final random value
2020-08-12 08:30:33 +02:00
const std::string PULSE_CMD_SEND_RANDOM_VALUE = PULSE_CMD_CATEGORY + "." + PULSE_CMD_RANDOM_VALUE;
Pulse: Add signed block propagation
2020-08-12 10:22:23 +02:00
const std::string PULSE_CMD_SEND_SIGNED_BLOCK = PULSE_CMD_CATEGORY + "." + PULSE_CMD_SIGNED_BLOCK;
Pulse: Add more documentation
2020-07-28 03:13:21 +02:00
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
void pulse_relay_message_to_quorum(void *self, pulse::message const &msg, service_nodes::quorum const &quorum, bool block_producer)
Pulse: Re-use relay method for Pulse messages
2020-08-02 08:13:14 +02:00
{
peer_info::exclude_set relay_exclude;
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
bool include_block_producer = false;
std::string_view command = {};
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
Pulse: Add rand value reveal stage and gen final random value
2020-08-12 08:30:33 +02:00
bt_dict data = {};
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
data[PULSE_TAG_SIGNATURE] = tools::view_guts(msg.signature);
data[PULSE_TAG_BLOCK_ROUND] = msg.round;
if (msg.type == pulse::message_type::block_template)
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
{
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
command = PULSE_CMD_SEND_BLOCK_TEMPLATE;
data[PULSE_TAG_BLOCK_TEMPLATE] = msg.block_template.blob;
}
else
{
data[PULSE_TAG_QUORUM_POSITION] = msg.quorum_position;
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
switch(msg.type)
Pulse: Add rand value reveal stage and gen final random value
2020-08-12 08:30:33 +02:00
{
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
case pulse::message_type::invalid:
assert("Invalid Code Path" == nullptr);
break;
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
case pulse::message_type::signed_block:
Pulse: On signed block message, provide 2 signatures - Previously we just submitted 1 signature that signed the contents of the final block that required us to delay signature verification, because, if we received the message before we were in the final stage we would have to delay the verification because we have insufficient data to verify the signature. This means that when someone in the quorum receives and relays the message, they can tamper the message and make it invalid (by changing the round to something invalid for example) and cause other nodes in the quorum to reject it, eventually, recording that the Service Node didn't participate in the round and bias Service Nodes to decommissioning. Instead of taking the shortcut and providing only 1 signature, we do the same thing we do with all the other messages, 1. We signed the contents of the message- this proves that the message originated from the Service Node it claims to have come from (preventing any tampering). 2. The 2nd signature actually is the signature that signs the final block and is included in the block for propagation in the network. Doing so patches up the ability for intermediate relay nodes from tampering the message.
2020-09-10 06:14:29 +02:00
{
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
command = PULSE_CMD_SEND_SIGNED_BLOCK;
Pulse: On signed block message, provide 2 signatures - Previously we just submitted 1 signature that signed the contents of the final block that required us to delay signature verification, because, if we received the message before we were in the final stage we would have to delay the verification because we have insufficient data to verify the signature. This means that when someone in the quorum receives and relays the message, they can tamper the message and make it invalid (by changing the round to something invalid for example) and cause other nodes in the quorum to reject it, eventually, recording that the Service Node didn't participate in the round and bias Service Nodes to decommissioning. Instead of taking the shortcut and providing only 1 signature, we do the same thing we do with all the other messages, 1. We signed the contents of the message- this proves that the message originated from the Service Node it claims to have come from (preventing any tampering). 2. The 2nd signature actually is the signature that signs the final block and is included in the block for propagation in the network. Doing so patches up the ability for intermediate relay nodes from tampering the message.
2020-09-10 06:14:29 +02:00
data[PULSE_TAG_FINAL_BLOCK_SIGNATURE] = tools::view_guts(msg.signed_block.signature_of_final_block_hash);
}
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
break;
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
case pulse::message_type::block_template: break;
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
case pulse::message_type::handshake: /* FALLTHRU */
case pulse::message_type::handshake_bitset:
Pulse: Add rand value reveal stage and gen final random value
2020-08-12 08:30:33 +02:00
{
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
assert(msg.quorum_position < quorum.validators.size());
include_block_producer = msg.type == pulse::message_type::handshake_bitset;
relay_exclude.insert(quorum.validators[msg.quorum_position]);
if (msg.type == pulse::message_type::handshake)
{
command = PULSE_CMD_SEND_VALIDATOR_BIT;
}
else
{
assert(msg.type == pulse::message_type::handshake_bitset);
command = PULSE_CMD_SEND_VALIDATOR_BITSET;
data[PULSE_TAG_VALIDATOR_BITSET] = msg.handshakes.validator_bitset;
}
Pulse: Add rand value reveal stage and gen final random value
2020-08-12 08:30:33 +02:00
}
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
break;
case pulse::message_type::random_value_hash:
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
{
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
command = PULSE_CMD_SEND_RANDOM_VALUE_HASH;
data[PULSE_TAG_RANDOM_VALUE_HASH] = tools::view_guts(msg.random_value_hash.hash);
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
}
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
break;
Pulse: Add signed block propagation
2020-08-12 10:22:23 +02:00
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
case pulse::message_type::random_value:
{
command = PULSE_CMD_SEND_RANDOM_VALUE;
data[PULSE_TAG_RANDOM_VALUE] = tools::view_guts(msg.random_value.value);
}
break;
Pulse: Add signed block propagation
2020-08-12 10:22:23 +02:00
}
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
}
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
Fix bl.* commands not being registered (#1237) bl.* weren't being registered for non-service nodes. This fixes it by moving endpoint setup from quorumnet_new (SN-only) to a new quorumnet_init that does endpoint setup (for both SNs and non-SNs).
2020-08-21 09:01:37 +02:00
auto &qnet = QnetState::from(self);
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
if (block_producer)
{
service_nodes::quorum const *quorum_ptr = &quorum;
auto destinations = peer_prepare_relay_to_quorum_subset(qnet.core, &quorum_ptr, &quorum_ptr + 1, 4 /*num_peers*/);
Pulse: Add rand value reveal stage and gen final random value
2020-08-12 08:30:33 +02:00
peer_relay_to_prepared_destinations(qnet.core, destinations, command, bt_serialize(data));
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
}
else
{
peer_info peer_list{qnet,
quorum_type::pulse,
&quorum,
true /*opportunistic*/,
std::move(relay_exclude),
include_block_producer /*include_workers*/};
Pulse: Add rand value reveal stage and gen final random value
2020-08-12 08:30:33 +02:00
peer_list.relay_to_peers(command, data);
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
}
Pulse: Re-use relay method for Pulse messages
2020-08-02 08:13:14 +02:00
}
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
pulse::message pulse_parse_msg_header_fields(pulse::message_type type, bt_dict_consumer &data, std::string_view error_prefix)
{
pulse::message result = {};
result.type = type;
if (type != pulse::message_type::block_template)
{
if (auto const &tag = PULSE_TAG_QUORUM_POSITION; data.skip_until(tag))
result.quorum_position = data.consume_integer<int>();
else
throw std::invalid_argument(std::string(error_prefix) + tag + "'");
}
if (auto const &tag = PULSE_TAG_BLOCK_ROUND; data.skip_until(tag))
result.round = data.consume_integer<uint8_t>();
else
throw std::invalid_argument(std::string(error_prefix) + tag + "'");
if (auto const &tag = PULSE_TAG_SIGNATURE; data.skip_until(tag)) {
auto sig_str = data.consume_string_view();
result.signature = convert_string_view_bytes_to_signature(sig_str);
} else {
throw std::invalid_argument(std::string(error_prefix) + tag + "'");
}
return result;
}
Pulse: Add more documentation
2020-07-28 03:13:21 +02:00
// Invoked when daemon has received a participation handshake message via
// QuorumNet from another validator, either forwarded or originating from that
// node. The message is added to the Pulse message queue and validating the
// contents of the message is left to the caller.
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
void handle_pulse_participation_bit_or_bitset(Message &m, QnetState& qnet, bool bitset)
{
if (m.data.size() != 1)
quorumnet: Use constexpr std::string_view and "s literal
2020-08-18 02:58:35 +02:00
throw std::runtime_error("Rejecting pulse participation "s + (bitset ? "bitset" : "handshake") + ": expected one data entry not " + std::to_string(m.data.size()));
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
quorumnet: Use constexpr std::string_view and "s literal
2020-08-18 02:58:35 +02:00
std::string_view const INVALID_ARG_PREFIX = bitset ? "Invalid pulse validator bitset: missing required field '"sv
: "Invalid pulse validator bit: missing required field '"sv;
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
bt_dict_consumer data{m.data[0]};
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
auto type = (bitset) ? pulse::message_type::handshake_bitset : pulse::message_type::handshake;
pulse::message msg = pulse_parse_msg_header_fields(type, data, INVALID_ARG_PREFIX);
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
if (bitset)
{
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
if (auto const &tag = PULSE_TAG_VALIDATOR_BITSET; data.skip_until(tag))
msg.handshakes.validator_bitset = data.consume_integer<uint16_t>();
else
throw std::invalid_argument(std::string(INVALID_ARG_PREFIX) + tag + "'");
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
}
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
qnet.omq.job([&qnet, data = std::move(msg)]() { pulse::handle_message(&qnet, data); }, qnet.core.pulse_thread_id());
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
}
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
void handle_pulse_block_template(Message &m, QnetState &qnet)
{
if (m.data.size() != 1)
quorumnet: Use constexpr std::string_view and "s literal
2020-08-18 02:58:35 +02:00
throw std::runtime_error("Rejecting pulse block template expected one data entry not "s + std::to_string(m.data.size()));
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
bt_dict_consumer data{m.data[0]};
quorumnet: Use constexpr std::string_view and "s literal
2020-08-18 02:58:35 +02:00
std::string_view constexpr INVALID_ARG_PREFIX = "Invalid pulse block template: missing required field '"sv;
pulse::message msg = pulse_parse_msg_header_fields(pulse::message_type::block_template, data, INVALID_ARG_PREFIX);
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
if (auto const &tag = PULSE_TAG_BLOCK_TEMPLATE; data.skip_until(tag))
msg.block_template.blob = data.consume_string_view();
else
throw std::invalid_argument(std::string(INVALID_ARG_PREFIX) + tag + "'");
Pulse: Add relay signed pulse block template pulse round
2020-08-05 06:31:17 +02:00
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
qnet.omq.job([&qnet, data = std::move(msg)]() { pulse::handle_message(&qnet, data); }, qnet.core.pulse_thread_id());
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
}
Pulse: Add random value hash stage
2020-08-11 10:14:17 +02:00
void handle_pulse_random_value_hash(Message &m, QnetState &qnet)
{
if (m.data.size() != 1)
quorumnet: Use constexpr std::string_view and "s literal
2020-08-18 02:58:35 +02:00
throw std::runtime_error("Rejecting pulse random value hash expected one data entry not "s + std::to_string(m.data.size()));
Pulse: Add random value hash stage
2020-08-11 10:14:17 +02:00
bt_dict_consumer data{m.data[0]};
quorumnet: Use constexpr std::string_view and "s literal
2020-08-18 02:58:35 +02:00
std::string_view constexpr INVALID_ARG_PREFIX = "Invalid pulse random value hash: missing required field '"sv;
pulse::message msg = pulse_parse_msg_header_fields(pulse::message_type::random_value_hash, data, INVALID_ARG_PREFIX);
Pulse: Add random value hash stage
2020-08-11 10:14:17 +02:00
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
if (auto const &tag = PULSE_TAG_RANDOM_VALUE_HASH; data.skip_until(tag)) {
auto str = data.consume_string_view();
if (str.size() != sizeof(msg.random_value_hash.hash))
throw std::invalid_argument("Invalid hash data size: " + std::to_string(str.size()));
Pulse: Add random value hash stage
2020-08-11 10:14:17 +02:00
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
std::memcpy(msg.random_value_hash.hash.data, str.data(), str.size());
} else {
throw std::invalid_argument(std::string(INVALID_ARG_PREFIX) + tag + "'");
Pulse: Add random value hash stage
2020-08-11 10:14:17 +02:00
}
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
qnet.omq.job([&qnet, data = std::move(msg)]() { pulse::handle_message(&qnet, data); }, qnet.core.pulse_thread_id());
Pulse: Add random value hash stage
2020-08-11 10:14:17 +02:00
}
Pulse: Add rand value reveal stage and gen final random value
2020-08-12 08:30:33 +02:00
void handle_pulse_random_value(Message &m, QnetState &qnet)
{
if (m.data.size() != 1)
quorumnet: Use constexpr std::string_view and "s literal
2020-08-18 02:58:35 +02:00
throw std::runtime_error("Rejecting pulse random value expected one data entry not "s + std::to_string(m.data.size()));
Pulse: Add rand value reveal stage and gen final random value
2020-08-12 08:30:33 +02:00
quorumnet: Use constexpr std::string_view and "s literal
2020-08-18 02:58:35 +02:00
std::string_view constexpr INVALID_ARG_PREFIX = "Invalid pulse random value: missing required field '"sv;
Pulse: Add rand value reveal stage and gen final random value
2020-08-12 08:30:33 +02:00
bt_dict_consumer data{m.data[0]};
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
pulse::message msg = pulse_parse_msg_header_fields(pulse::message_type::random_value, data, INVALID_ARG_PREFIX);
if (auto const &tag = PULSE_TAG_RANDOM_VALUE; data.skip_until(tag)) {
auto str = data.consume_string_view();
if (str.size() != sizeof(msg.random_value.value.data))
throw std::invalid_argument("Invalid data size: " + std::to_string(str.size()));
std::memcpy(msg.random_value.value.data, str.data(), str.size());
} else {
throw std::invalid_argument(std::string(INVALID_ARG_PREFIX) + tag + "'");
Pulse: Add rand value reveal stage and gen final random value
2020-08-12 08:30:33 +02:00
}
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
qnet.omq.job([&qnet, data = std::move(msg)]() { pulse::handle_message(&qnet, data); }, qnet.core.pulse_thread_id());
Pulse: Add rand value reveal stage and gen final random value
2020-08-12 08:30:33 +02:00
}
Pulse: Add signed block propagation
2020-08-12 10:22:23 +02:00
void handle_pulse_signed_block(Message &m, QnetState &qnet)
{
if (m.data.size() != 1)
quorumnet: Use constexpr std::string_view and "s literal
2020-08-18 02:58:35 +02:00
throw std::runtime_error("Rejecting pulse signed block expected one data entry not "s + std::to_string(m.data.size()));
Pulse: Add signed block propagation
2020-08-12 10:22:23 +02:00
Typo fix
2020-09-18 18:38:22 +02:00
std::string_view constexpr INVALID_ARG_PREFIX = "Invalid pulse signed block: missing required field '"sv;
Pulse: Add signed block propagation
2020-08-12 10:22:23 +02:00
bt_dict_consumer data{m.data[0]};
Pulse: Incorporate round into pulse messages
2020-08-13 12:26:23 +02:00
pulse::message msg = pulse_parse_msg_header_fields(pulse::message_type::signed_block, data, INVALID_ARG_PREFIX);
Pulse: Add signed block propagation
2020-08-12 10:22:23 +02:00
Pulse: On signed block message, provide 2 signatures - Previously we just submitted 1 signature that signed the contents of the final block that required us to delay signature verification, because, if we received the message before we were in the final stage we would have to delay the verification because we have insufficient data to verify the signature. This means that when someone in the quorum receives and relays the message, they can tamper the message and make it invalid (by changing the round to something invalid for example) and cause other nodes in the quorum to reject it, eventually, recording that the Service Node didn't participate in the round and bias Service Nodes to decommissioning. Instead of taking the shortcut and providing only 1 signature, we do the same thing we do with all the other messages, 1. We signed the contents of the message- this proves that the message originated from the Service Node it claims to have come from (preventing any tampering). 2. The 2nd signature actually is the signature that signs the final block and is included in the block for propagation in the network. Doing so patches up the ability for intermediate relay nodes from tampering the message.
2020-09-10 06:14:29 +02:00
if (auto const &tag = PULSE_TAG_FINAL_BLOCK_SIGNATURE; data.skip_until(tag)) {
auto sig_str = data.consume_string_view();
msg.signed_block.signature_of_final_block_hash = convert_string_view_bytes_to_signature(sig_str);
} else {
throw std::invalid_argument("Invalid pulse signed block: missing required field '"s + tag + "'");
}
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
qnet.omq.job([&qnet, data = std::move(msg)]() { pulse::handle_message(&qnet, data); }, qnet.core.pulse_thread_id());
Pulse: Add signed block propagation
2020-08-12 10:22:23 +02:00
}
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
} // end empty namespace
Blink WIP
2019-10-16 17:55:26 +02:00
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
/// Sets the cryptonote::quorumnet_* function pointers (allowing core to avoid linking to
/// cryptonote_protocol). Called from daemon/daemon.cpp. Also registers quorum command callbacks.
void init_core_callbacks() {
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
cryptonote::quorumnet_new = new_qnetstate;
Backport Fix bl.* commands from pulse to dev bl.* weren't being registered for non-service nodes. This fixes it by moving endpoint setup from quorumnet_new (SN-only) to a new quorumnet_init that does endpoint setup (for both SNs and non-SNs). (This is a backport of the changes applied on the pulse branch to get these fixes into `dev` for testing).
2020-08-21 09:01:37 +02:00
cryptonote::quorumnet_init = setup_endpoints;
RPC overhaul High-level details: This redesigns the RPC layer to make it much easier to work with, decouples it from an embedded HTTP server, and gets the vast majority of the RPC serialization and dispatch code out of a very commonly included header. There is unfortunately rather a lot of interconnected code here that cannot be easily separated out into separate commits. The full details of what happens here are as follows: Major details: - All of the RPC code is now in a `cryptonote::rpc` namespace; this renames quite a bit to be less verbose: e.g. CORE_RPC_STATUS_OK becomes `rpc::STATUS_OK`, and `cryptonote::COMMAND_RPC_SOME_LONG_NAME` becomes `rpc::SOME_LONG_NAME` (or just SOME_LONG_NAME for code already working in the `rpc` namespace). - `core_rpc_server` is now completely decoupled from providing any request protocol: it is now *just* the core RPC call handler. - The HTTP RPC interface now lives in a new rpc/http_server.h; this code handles listening for HTTP requests and dispatching them to core_rpc_server, then sending the results back to the caller. - There is similarly a rpc/lmq_server.h for LMQ RPC code; more details on this (and other LMQ specifics) below. - RPC implementing code now returns the response object and throws when things go wrong which simplifies much of the rpc error handling. They can throw anything; generic exceptions get logged and a generic "internal error" message gets returned to the caller, but there is also an `rpc_error` class to return an error code and message used by some json-rpc commands. - RPC implementing functions now overload `core_rpc_server::invoke` following the pattern: RPC_BLAH_BLAH::response core_rpc_server::invoke(RPC_BLAH_BLAH::request&& req, rpc_context context); This overloading makes the code vastly simpler: all instantiations are now done with a small amount of generic instantiation code in a single .cpp rather than needing to go to hell and back with a nest of epee macros in a core header. - each RPC endpoint is now defined by the RPC types themselves, including its accessible names and permissions, in core_rpc_server_commands_defs.h: - every RPC structure now has a static `names()` function that returns the names by which the end point is accessible. (The first one is the primary, the others are for deprecated aliases). - RPC command wrappers define their permissions and type by inheriting from special tag classes: - rpc::RPC_COMMAND is a basic, admin-only, JSON command, available via JSON RPC. *All* JSON commands are now available via JSON RPC, instead of the previous mix of some being at /foo and others at /json_rpc. (Ones that were previously at /foo are still there for backwards compatibility; see `rpc::LEGACY` below). - rpc::PUBLIC specifies that the command should be available via a restricted RPC connection. - rpc::BINARY specifies that the command is not JSON, but rather is accessible as /name and takes and returns values in the magic epee binary "portable storage" (lol) data format. - rpc::LEGACY specifies that the command should be available via the non-json-rpc interface at `/name` for backwards compatibility (in addition to the JSON-RPC interface). - some epee serialization got unwrapped and de-templatized so that it can be moved into a .cpp file with just declarations in the .h. (This makes a *huge* difference for core_rpc_server_commands_defs.h and for every compilation unit that includes it which previously had to compile all the serialization code and then throw all by one copy away at link time). This required some new macros so as to not break a ton of places that will use the old way putting everything in the headers; The RPC code uses this as does a few other places; there are comments in contrib/epee/include/serialization/keyvalue_serialization.h as to how to use it. - Detemplatized a bunch of epee/storages code. Most of it should have have been using templates at all (because it can only ever be called with one type!), and now it isn't. This broke some things that didn't properly compile because of missing headers or (in one case) a messed up circular dependency. - Significantly simplified a bunch of over-templatized serialization code. - All RPC serialization definitions is now out of core_rpc_server_commands_defs.h and into a single .cpp file (core_rpc_server_commands_defs.cpp). - core RPC no longer uses the disgusting BEGIN_URI_MAP2/MAP_URI_BLAH_BLAH macros. This was a terrible design that forced slamming tons of code into a common header that didn't need to be there. - epee::struct_init is gone. It was a horrible hack that instiated multiple templates just so the coder could be so lazy and write `some_type var;` instead of properly value initializing with `some_type var{};`. - Removed a bunch of useless crap from epee. In particular, forcing extra template instantiations all over the place in order to nest return objects inside JSON RPC values is no longer needed, as are a bunch of stuff related to the above de-macroization of the code. - get_all_service_nodes, get_service_nodes, and get_n_service_nodes are now combined into a single `get_service_nodes` (with deprecated aliases for the others), which eliminates a fair amount of duplication. The biggest obstacle here was getting the requested fields reference passed through: this is now done by a new ability to stash a context in the serialization object that can be retrieved by a sub-serialized type. LMQ-specifics: - The LokiMQ instance moves into `cryptonote::core` rather than being inside cryptonote_protocol. Currently the instance is used both for qnet and rpc calls (and so needs to be in a common place), but I also intend future PRs to use the batching code for job processing (replacing the current threaded job queue). - rpc/lmq_server.h handles the actual LMQ-request-to-core-RPC glue. Unlike http_server it isn't technically running the whole LMQ stack from here, but the parallel name with http_server seemed appropriate. - All RPC endpoints are supported by LMQ under the same names as defined generically, but prefixed with `rpc.` for public commands and `admin.` for restricted ones. - service node keys are now always available, even when not running in `--service-node` mode: this is because we want the x25519 key for being able to offer CURVE encryption for lmq RPC end-points, and because it doesn't hurt to have them available all the time. In the RPC layer this is now called "get_service_keys" (with "get_service_node_key" as an alias) since they aren't strictly only for service nodes. This also means code needs to check m_service_node, and not m_service_node_keys, to tell if it is running as a service node. (This is also easier to notice because m_service_node_keys got renamed to `m_service_keys`). - Added block and mempool monitoring LMQ RPC endpoints: `sub.block` and `sub.mempool` subscribes the connection for new block and new mempool TX notifications. The latter can notify on just blink txes, or all new mempool txes (but only new ones -- txes dumped from a block don't trigger it). The client gets pushed a [`notify.block`, `height`, `hash`] or [`notify.tx`, `txhash`, `blob`] message when something arrives. Minor details: - rpc::version_t is now a {major,minor} pair. Forcing everyone to pack and unpack a uint32_t was gross. - Changed some macros to constexprs (e.g. CORE_RPC_ERROR_CODE_...). (This immediately revealed a couple of bugs in the RPC code that was assigning CORE_RPC_ERROR_CODE_... to a string, and it worked because the macro allows implicit conversion to a char). - De-templatizing useless templates in epee (i.e. a bunch of templated types that were never invoked with different types) revealed a painful circular dependency between epee and non-epee code for tor_address and i2p_address. This crap is now handled in a suitably named `net/epee_network_address_hack.cpp` hack because it really isn't trivial to extricate this mess. - Removed `epee/include/serialization/serialize_base.h`. Amazingly the code somehow still all works perfectly with this previously vital header removed. - Removed bitrotted, unused epee "crypted_storage" and "gzipped_inmemstorage" code. - Replaced a bunch of epee::misc_utils::auto_scope_leave_caller with LOKI_DEFERs. The epee version involves quite a bit more instantiation and is ugly as sin. Also made the `loki::defer` class invokable for some edge cases that need calling before destruction in particular conditions. - Moved the systemd code around; it makes much more sense to do the systemd started notification as in daemon.cpp as late as possible rather than in core (when we can still have startup failures, e.g. if the RPC layer can't start). - Made the systemd short status string available in the get_info RPC (and no longer require building with systemd). - during startup, print (only) the x25519 when not in SN mode, and continue to print all three when in SN mode. - DRYed out some RPC implementation code (such as set_limit) - Made wallet_rpc stop using a raw m_wallet pointer
2020-04-28 01:25:43 +02:00
cryptonote::quorumnet_delete = delete_qnetstate;
Keep checkpoint votes over p2p Checkpoint votes were only going over quorumnet, which was quite broken as they need to go out universally: random nodes piece together the individual checkpoints to create checkpoints on their own, and so need to see all of the votes. With the current code only service nodes that participated in the specific quorum ever saw the checkpoint votes. This commit returns checkpoint vote distribution to distribution over p2p. We could, in theory, do checkpoint vote collection over quorumnet and then relay the set of votes as a pack to reduce p2p traffic a bit, but this wouldn't be a huge optimization since we'd still have to distribute all the votes over p2p at some point anyway, so leaving that as a future optimization for now. (Obligations votes, in contrast, don't need to be distributed at all -- if a vote results in a state change, the quorum members themselves can produce and distribute the state change tx).
2019-12-10 19:57:36 +01:00
cryptonote::quorumnet_relay_obligation_votes = relay_obligation_votes;
Blink This is the bulk of the work for blink. There is two pieces yet to come which will follow shortly, which are: the p2p communication of blink transactions (which needs to be fully synchronized, not just shared, unlike regular mempool txes); and an implementation of fee burning. Blink approval, multi-quorum signing, cli wallet and node support for submission denial are all implemented here. This overhauls and fixes various parts of the SNNetwork interface to fix some issues (particularly around non-SN communication with SNs, which wasn't working). There are also a few sundry FIXME's and TODO's of other minor details that will follow shortly under cleanup/testing/etc.
2019-10-27 23:47:19 +01:00
cryptonote::quorumnet_send_blink = send_blink;
Pulse: Add main block gen/validator handshake synchronizing worker
2020-07-27 07:54:02 +02:00
cryptonote::quorumnet_pulse_relay_message_to_quorum = pulse_relay_message_to_quorum;
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
}
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
namespace {
Backport Fix bl.* commands from pulse to dev bl.* weren't being registered for non-service nodes. This fixes it by moving endpoint setup from quorumnet_new (SN-only) to a new quorumnet_init that does endpoint setup (for both SNs and non-SNs). (This is a backport of the changes applied on the pulse branch to get these fixes into `dev` for testing).
2020-08-21 09:01:37 +02:00
void setup_endpoints(cryptonote::core& core, void* obj) {
Update oxenmq to latest oxen-mq+oxen-encoding All the encoding parts move to oxen-encoding recently; this updates to the latest version of oxen-mq, adds oxen-encoding, and converts everything to use oxenc headers rather than the oxenmq compatibility shims.
2022-02-10 19:25:55 +01:00
using namespace oxenmq;
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
auto& omq = core.get_omq();
Backport Fix bl.* commands from pulse to dev bl.* weren't being registered for non-service nodes. This fixes it by moving endpoint setup from quorumnet_new (SN-only) to a new quorumnet_init that does endpoint setup (for both SNs and non-SNs). (This is a backport of the changes applied on the pulse branch to get these fixes into `dev` for testing).
2020-08-21 09:01:37 +02:00
if (core.service_node()) {
if (!obj)
throw std::logic_error{"qnet initialization failure: quorumnet_new must be called for service node operation"};
auto& qnet = QnetState::from(obj);
// quorum.*: commands between quorum members, requires that both side of the connection is a SN
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
omq.add_category("quorum", Access{AuthLevel::none, true /*remote sn*/, true /*local sn*/}, 2 /*reserved threads*/)
Backport Fix bl.* commands from pulse to dev bl.* weren't being registered for non-service nodes. This fixes it by moving endpoint setup from quorumnet_new (SN-only) to a new quorumnet_init that does endpoint setup (for both SNs and non-SNs). (This is a backport of the changes applied on the pulse branch to get these fixes into `dev` for testing).
2020-08-21 09:01:37 +02:00
// Receives an obligation vote
.add_command("vote_ob", [&qnet](Message& m) { handle_obligation_vote(m, qnet); })
// Receives blink tx signatures or rejections between quorum members (either original or
// forwarded). These are propagated by the receiver if new
.add_command("blink_sign", [&qnet](Message& m) { handle_blink_signature(m, qnet); })
quorumnet message for timestamp requests random sampling of service nodes, call timestamp lmq message checks timestamp of 5 service nodes, if local time is 30 seconds different from 80% of the nodes tested then warn user tracks external timesync status and timestamp participation of service nodes clean up includes new template struct for participation history, individual types for participation entry refactor checking participation update select_randomly, move the testing for variance overflow version locks, bump to 8.1.5 explicit casting for mac & clang note to remove after hard fork timestamp debugging log messages debugging messages for before timesync - before message sent logging errord with compiling print version and change add_command to add_request_command log if statement test std::to_string replaced with tools::view_guts for x25519 key check if my sn is active before sending timestamp requests logging the failures checking if statement for success of message more logging, if guards arn't passing more logging, successfully tests if service node might be out of sync more tests before we decide we are out of sync logging output if sn isn't passing tests if check_participation fails then disconnect print timestamp status remove saving variance from the participation history reduce MIN_TIME_IN_S_BEFORE_VOTING reset participation history on recommission undo reduction in startup time reduce log levels Set hardfork time in testnet
2020-12-01 01:56:43 +01:00
// Receives a request for the timestamp
.add_request_command("timestamp", [](Message& m) { handle_timestamp(m); })
Backport Fix bl.* commands from pulse to dev bl.* weren't being registered for non-service nodes. This fixes it by moving endpoint setup from quorumnet_new (SN-only) to a new quorumnet_init that does endpoint setup (for both SNs and non-SNs). (This is a backport of the changes applied on the pulse branch to get these fixes into `dev` for testing).
2020-08-21 09:01:37 +02:00
;
// blink.*: commands sent to blink quorum members from anyone (e.g. blink submission)
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
omq.add_category("blink", Access{AuthLevel::none, false /*remote sn*/, true /*local sn*/}, 1 /*reserved thread*/)
Backport Fix bl.* commands from pulse to dev bl.* weren't being registered for non-service nodes. This fixes it by moving endpoint setup from quorumnet_new (SN-only) to a new quorumnet_init that does endpoint setup (for both SNs and non-SNs). (This is a backport of the changes applied on the pulse branch to get these fixes into `dev` for testing).
2020-08-21 09:01:37 +02:00
// Receives a new blink tx submission from an external node, or forward from other quorum
// members who received it from an external node.
.add_command("submit", [&qnet](Message& m) { handle_blink(m, qnet); })
;
Fix bl.* commands not being registered (#1237) bl.* weren't being registered for non-service nodes. This fixes it by moving endpoint setup from quorumnet_new (SN-only) to a new quorumnet_init that does endpoint setup (for both SNs and non-SNs).
2020-08-21 09:01:37 +02:00
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
omq.add_category(PULSE_CMD_CATEGORY, Access{AuthLevel::none, true /*remote sn*/, true /*local sn*/}, 1 /*reserved thread*/)
Fix bl.* commands not being registered (#1237) bl.* weren't being registered for non-service nodes. This fixes it by moving endpoint setup from quorumnet_new (SN-only) to a new quorumnet_init that does endpoint setup (for both SNs and non-SNs).
2020-08-21 09:01:37 +02:00
.add_command(PULSE_CMD_VALIDATOR_BIT, [&qnet](Message& m) { handle_pulse_participation_bit_or_bitset(m, qnet, false /*bitset*/); })
.add_command(PULSE_CMD_VALIDATOR_BITSET, [&qnet](Message& m) { handle_pulse_participation_bit_or_bitset(m, qnet, true /*bitset*/); })
.add_command(PULSE_CMD_BLOCK_TEMPLATE, [&qnet](Message& m) { handle_pulse_block_template(m, qnet); })
.add_command(PULSE_CMD_RANDOM_VALUE_HASH, [&qnet](Message& m) { handle_pulse_random_value_hash(m, qnet); })
.add_command(PULSE_CMD_RANDOM_VALUE, [&qnet](Message& m) { handle_pulse_random_value(m, qnet); })
.add_command(PULSE_CMD_SIGNED_BLOCK, [&qnet](Message& m) { handle_pulse_signed_block(m, qnet); })
;
Backport Fix bl.* commands from pulse to dev bl.* weren't being registered for non-service nodes. This fixes it by moving endpoint setup from quorumnet_new (SN-only) to a new quorumnet_init that does endpoint setup (for both SNs and non-SNs). (This is a backport of the changes applied on the pulse branch to get these fixes into `dev` for testing).
2020-08-21 09:01:37 +02:00
}
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
// bl.*: responses to blinks sent from quorum members back to the node who submitted the blink
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
omq.add_category("bl", Access{AuthLevel::none, true /*remote sn*/, false /*local sn*/})
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
// Message sent back to the blink initiator that the transaction was NOT relayed, either
// because the height was invalid or the quorum checksum failed. This is only sent by the
// entry point service nodes into the quorum to let it know the tx verification has not
// started from that node. It does not necessarily indicate a failure unless all entry
// point attempts return the same.
.add_command("nostart", handle_blink_not_started)
// Message send back from the entry SNs back to the initiator that the Blink tx has been
// rejected: that is, enough signed rejections have occured that the Blink tx cannot be
// accepted.
.add_command("bad", handle_blink_failure)
// Sends a message from the entry SNs back to the initiator that the Blink tx has been
// accepted and validated and is being broadcast to the network.
.add_command("good", handle_blink_success)
;
Stop using old quorumnet aliases Now that we have forked, the old commands aren't needed anymore.
2020-04-01 18:47:18 +02:00
// Compatibility aliases. No longer used since 7.1.4, but can still be received from previous
// 7.1.x nodes.
// Transition plan:
// 8.1.0: keep the aliases (so the 7.1.x nodes still using them can talk to 8.x), but don't use
// them anymore.
// 8.x.1 (i.e. the first post-hard-fork release): remove the aliases since no 7.1.x nodes will
// be left.
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
lmq -> omq internal rename More rebrand updates to rename lmq (lokimq) internals with omq (oxenmq).
2021-04-08 18:38:51 +02:00
omq.add_command_alias("vote_ob", "quorum.vote_ob");
omq.add_command_alias("blink_sign", "quorum.blink_sign");
omq.add_command_alias("timestamp", "quorum.timestamp");
omq.add_command_alias("blink", "blink.submit");
omq.add_command_alias("bl_nostart", "bl.nostart");
omq.add_command_alias("bl_bad", "bl.bad");
omq.add_command_alias("bl_good", "bl.good");
Convert quorumnet to loki-mq This adds the loki-mq dependency and replaces SNNetwork with it (along with some syntax updates for how loki-mq changed a bit from SNNetwork). This also replaces common/hex.h and common/string_view.h with loki-mq's faster (hex) and more complete and tested (string_view) implementations.
2020-03-03 05:38:18 +01:00
}
Add quorumnet comms This adds vote relaying via quorumnet. - The main glue between existing code and quorumnet code is in cryptonote_protocol/quorumnet.{h,cpp} - Uses function pointers assigned at initialization to call into the glue without making cn_core depend on p2p - Adds ed25519 and quorumnet port to uptime proofs and serialization. - Added a second uptime proof signature using the ed25519 key to that SNs are proving they actually have it (otherwise they could spoof someone else's pubkey). - Adds quorumnet port, defaulting to zmq rpc port + 1. quorumnet listens on the p2p IPv4 address (but broadcasts the `public_ip` to the network). - Derives x25519 when received or deserialized. - Converted service_info_info::version_t into a scoped enum (with the same underlying type). - Added contribution_t::version_t scoped enum. It was using service_info_info::version for a 0 value which seemed rather wrong. Random small details: - Renamed internal `arg_sn_bind_port` for consistency - Moved default stagenet ports from 38153-38155 to 38056-38058, and add the default stagenet quorumnet port at 38059 (this keeps the range contiguous; otherwise the next stagenet default port would collide with the testnet p2p port).
2019-10-15 19:45:58 +02:00
}
Blink WIP
2019-10-16 17:55:26 +02:00
}
Reference in a new issue Copy permalink