Skip to content

Commit

Permalink
go/roothash: Verify MaxMessages against global MaxRuntimeMessages
Browse files Browse the repository at this point in the history
  • Loading branch information
kostko committed Nov 24, 2020
1 parent 27a368f commit 9ebaffb
Show file tree
Hide file tree
Showing 10 changed files with 83 additions and 7 deletions.
12 changes: 12 additions & 0 deletions go/consensus/tendermint/api/app.go
Original file line number Diff line number Diff line change
Expand Up @@ -29,6 +29,18 @@ type MessageDispatcher interface {
Publish(ctx *Context, kind, msg interface{}) error
}

// NoopMessageDispatcher is a no-op message dispatcher that performs no dispatch.
type NoopMessageDispatcher struct{}

// Implements MessageDispatcher.
func (nd *NoopMessageDispatcher) Subscribe(interface{}, MessageSubscriber) {
}

// Implements MessageDispatcher.
func (nd *NoopMessageDispatcher) Publish(*Context, interface{}, interface{}) error {
return nil
}

// Application is the interface implemented by multiplexed Oasis-specific
// ABCI applications.
type Application interface {
Expand Down
18 changes: 13 additions & 5 deletions go/consensus/tendermint/apps/registry/api/api.go
Original file line number Diff line number Diff line change
Expand Up @@ -3,8 +3,16 @@ package api

type messageKind uint8

// MessageNewRuntimeRegistered is the message kind for new runtime registrations. The message is
// the runtime descriptor of the runtime that has been registered.
//
// The message is not emitted for runtime descriptor updates.
var MessageNewRuntimeRegistered = messageKind(0)
var (
// MessageNewRuntimeRegistered is the message kind for new runtime registrations. The message is
// the runtime descriptor of the runtime that has been registered.
//
// The message is not emitted for runtime descriptor updates.
MessageNewRuntimeRegistered = messageKind(0)

// MessageRuntimeUpdated is the message kind for runtime registration updates. The message is
// the runtime descriptor of the runtime that has been updated.
//
// The message is also emitted for new runtime registrations.
MessageRuntimeUpdated = messageKind(1)
)
9 changes: 8 additions & 1 deletion go/consensus/tendermint/apps/registry/transactions.go
Original file line number Diff line number Diff line change
Expand Up @@ -592,7 +592,7 @@ func (app *registryApplication) registerRuntime( // nolint: gocyclo
}

// Notify other interested applications about the new runtime.
if existingRt == nil && !suspended {
if existingRt == nil {
if err = app.md.Publish(ctx, registryApi.MessageNewRuntimeRegistered, rt); err != nil {
ctx.Logger().Error("RegisterRuntime: failed to dispatch message",
"err", err,
Expand All @@ -601,6 +601,13 @@ func (app *registryApplication) registerRuntime( // nolint: gocyclo
}
}

if err = app.md.Publish(ctx, registryApi.MessageRuntimeUpdated, rt); err != nil {
ctx.Logger().Error("RegisterRuntime: failed to dispatch message",
"err", err,
)
return err
}

if err = state.SetRuntime(ctx, rt, sigRt, suspended); err != nil {
ctx.Logger().Error("RegisterRuntime: failed to create runtime",
"err", err,
Expand Down
3 changes: 2 additions & 1 deletion go/consensus/tendermint/apps/registry/transactions_test.go
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,8 @@ func TestRegisterNode(t *testing.T) {
ctx := appState.NewContext(abciAPI.ContextDeliverTx, now)
defer ctx.Close()

app := registryApplication{appState}
var md abciAPI.NoopMessageDispatcher
app := registryApplication{appState, &md}
state := registryState.NewMutableState(ctx.State())
stakeState := stakingState.NewMutableState(ctx.State())

Expand Down
19 changes: 19 additions & 0 deletions go/consensus/tendermint/apps/roothash/roothash.go
Original file line number Diff line number Diff line change
Expand Up @@ -61,6 +61,7 @@ func (app *rootHashApplication) OnRegister(state tmapi.ApplicationState, md tmap

// Subscribe to messages emitted by other apps.
md.Subscribe(registryApi.MessageNewRuntimeRegistered, app)
md.Subscribe(registryApi.MessageRuntimeUpdated, app)
md.Subscribe(roothashApi.RuntimeMessageNoop, app)
}

Expand Down Expand Up @@ -284,6 +285,13 @@ func (app *rootHashApplication) ExecuteMessage(ctx *tmapi.Context, kind, msg int
)

return app.onNewRuntime(ctx, rt, nil)
case registryApi.MessageRuntimeUpdated:
// A runtime registration has been updated or a new runtime has been registered.
if ctx.IsInitChain() {
// Ignore messages emitted during InitChain as we handle these separately.
return nil
}
return app.verifyRuntimeUpdate(ctx, msg.(*registry.Runtime))
case roothashApi.RuntimeMessageNoop:
// Noop message always succeeds.
return nil
Expand All @@ -292,6 +300,17 @@ func (app *rootHashApplication) ExecuteMessage(ctx *tmapi.Context, kind, msg int
}
}

func (app *rootHashApplication) verifyRuntimeUpdate(ctx *tmapi.Context, rt *registry.Runtime) error {
state := roothashState.NewMutableState(ctx.State())

params, err := state.ConsensusParameters(ctx)
if err != nil {
return fmt.Errorf("failed to get consensus parameters: %w", err)
}

return roothash.VerifyRuntimeParameters(ctx.Logger(), rt, params)
}

func (app *rootHashApplication) ExecuteTx(ctx *tmapi.Context, tx *transaction.Transaction) error {
state := roothashState.NewMutableState(ctx.State())

Expand Down
1 change: 1 addition & 0 deletions go/consensus/tendermint/tests/genesis/genesis.go
Original file line number Diff line number Diff line change
Expand Up @@ -70,6 +70,7 @@ func NewTestNodeGenesisProvider(identity *identity.Identity) (genesis.Provider,
RootHash: roothash.Genesis{
Parameters: roothash.ConsensusParameters{
DebugDoNotSuspendRuntimes: true,
MaxRuntimeMessages: 32,
},
},
Consensus: consensus.Genesis{
Expand Down
1 change: 1 addition & 0 deletions go/oasis-node/cmd/debug/txsource/workload/registration.go
Original file line number Diff line number Diff line change
Expand Up @@ -51,6 +51,7 @@ func getRuntime(entityID signature.PublicKey, id common.Namespace) *registry.Run
Executor: registry.ExecutorParameters{
GroupSize: 1,
RoundTimeout: 5,
MaxMessages: 32,
},
TxnScheduler: registry.TxnSchedulerParameters{
Algorithm: "simple",
Expand Down
3 changes: 3 additions & 0 deletions go/oasis-node/cmd/genesis/genesis.go
Original file line number Diff line number Diff line change
Expand Up @@ -78,6 +78,7 @@ const (
// Roothash config flags.
cfgRoothashDebugDoNotSuspendRuntimes = "roothash.debug.do_not_suspend_runtimes"
cfgRoothashDebugBypassStake = "roothash.debug.bypass_stake" // nolint: gosec
cfgRoothashMaxRuntimeMessages = "roothash.max_runtime_messages"

// Staking config flags.
CfgStakingTokenSymbol = "staking.token_symbol"
Expand Down Expand Up @@ -430,6 +431,7 @@ func AppendRootHashState(doc *genesis.Document, exports []string, l *logging.Log
Parameters: roothash.ConsensusParameters{
DebugDoNotSuspendRuntimes: viper.GetBool(cfgRoothashDebugDoNotSuspendRuntimes),
DebugBypassStake: viper.GetBool(cfgRoothashDebugBypassStake),
MaxRuntimeMessages: viper.GetUint32(cfgRoothashMaxRuntimeMessages),
// TODO: Make these configurable.
GasCosts: roothash.DefaultGasCosts,
},
Expand Down Expand Up @@ -720,6 +722,7 @@ func init() {
// Roothash config flags.
initGenesisFlags.Bool(cfgRoothashDebugDoNotSuspendRuntimes, false, "do not suspend runtimes (UNSAFE)")
initGenesisFlags.Bool(cfgRoothashDebugBypassStake, false, "bypass all roothash stake checks and operations (UNSAFE)")
initGenesisFlags.Uint32(cfgRoothashMaxRuntimeMessages, 128, "maximum number of runtime messages submitted in a round")
_ = initGenesisFlags.MarkHidden(cfgRoothashDebugDoNotSuspendRuntimes)
_ = initGenesisFlags.MarkHidden(cfgRoothashDebugBypassStake)

Expand Down
10 changes: 10 additions & 0 deletions go/registry/tests/tester.go
Original file line number Diff line number Diff line change
Expand Up @@ -759,6 +759,15 @@ func testRegistryRuntime(t *testing.T, backend api.Backend, consensus consensusA
false,
true,
},
// Runtime with too large MaxMessages parameter.
{
"TooBigMaxMessages",
func(rt *api.Runtime) {
rt.Executor.MaxMessages = 64 // MaxRuntimeMessages in these tests is 32.
},
false,
false,
},
}

rtMap := make(map[common.Namespace]*api.Runtime)
Expand Down Expand Up @@ -1612,6 +1621,7 @@ func NewTestRuntime(seed []byte, ent *TestEntity, isKeyManager bool) (*TestRunti
GroupBackupSize: 5,
AllowedStragglers: 1,
RoundTimeout: 10,
MaxMessages: 32,
},
TxnScheduler: api.TxnSchedulerParameters{
Algorithm: api.TxnSchedulerSimple,
Expand Down
14 changes: 14 additions & 0 deletions go/roothash/api/api.go
Original file line number Diff line number Diff line change
Expand Up @@ -9,6 +9,7 @@ import (
"github.com/oasisprotocol/oasis-core/go/common"
"github.com/oasisprotocol/oasis-core/go/common/crypto/hash"
"github.com/oasisprotocol/oasis-core/go/common/errors"
"github.com/oasisprotocol/oasis-core/go/common/logging"
"github.com/oasisprotocol/oasis-core/go/common/pubsub"
"github.com/oasisprotocol/oasis-core/go/consensus/api/transaction"
"github.com/oasisprotocol/oasis-core/go/oasis-node/cmd/common/flags"
Expand Down Expand Up @@ -54,6 +55,10 @@ var (
// ErrProposerTimeoutNotAllowed is the error returned when proposer timeout is not allowed.
ErrProposerTimeoutNotAllowed = errors.New(ModuleName, 6, "roothash: proposer timeout not allowed")

// ErrMaxMessagesTooBig is the error returned when the MaxMessages parameter is set to a value
// larger than the MaxRuntimeMessages specified in consensus parameters.
ErrMaxMessagesTooBig = errors.New(ModuleName, 7, "roothash: max runtime messages is too big")

// MethodExecutorCommit is the method name for executor commit submission.
MethodExecutorCommit = transaction.NewMethodName(ModuleName, "ExecutorCommit", ExecutorCommit{})

Expand Down Expand Up @@ -292,3 +297,12 @@ func (g *Genesis) SanityCheck() error {
}
return nil
}

// VerifyRuntimeParameters verifies whether the runtime parameters are valid in the context of the
// roothash service.
func VerifyRuntimeParameters(logger *logging.Logger, rt *registry.Runtime, params *ConsensusParameters) error {
if rt.Executor.MaxMessages > params.MaxRuntimeMessages {
return ErrMaxMessagesTooBig
}
return nil
}

0 comments on commit 9ebaffb

Please sign in to comment.