Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feat: implement certificate chain builder for tests #1999

Merged
merged 16 commits into from
Oct 17, 2024
Merged

Feat: implement certificate chain builder for tests #1999

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
16 commits
Select commit Hold shift + click to select a range
facae4f
feat: implement a certificate chain builder for tests
jpraynaud Oct 11, 2024
0d19ddd
refactor: use CertificateChainBuilder in crypto helper tests setup
jpraynaud Oct 11, 2024
c6b5bda
feat: add support for certificate chain alteration in CertificateChai…
jpraynaud Oct 11, 2024
3819759
refactor: simplify chain alteration processor in CertificateChainBuilder
jpraynaud Oct 11, 2024
d255561
refactor: enhance CertificateChainBuilder implementation
jpraynaud Oct 11, 2024
a944266
feat: add support for number of signers per epoch processor in Certif…
jpraynaud Oct 11, 2024
91ce6a5
feat: enhance tests for CertificateChainBuilder
jpraynaud Oct 11, 2024
391ac54
refactor: make CertificateChainBuilderContext compute seed protocol m…
jpraynaud Oct 14, 2024
e013fcd
feat: CertificateChainBuilderContext checks if current certificate is…
jpraynaud Oct 14, 2024
fb13267
fix: avoid unneeded computation of fixtures in CertificateChainBuilder
jpraynaud Oct 14, 2024
f6ed39b
refactor: epochs sequence computation in CertificateChainBuilder
jpraynaud Oct 14, 2024
9b63c01
refactor: make epochs and certificate index sequences easier to under…
jpraynaud Oct 16, 2024
bcd03dd
refactor: clarify computation of the number of epochs in sequence
jpraynaud Oct 16, 2024
22c9b78
refactor: change visibility of processor function types
jpraynaud Oct 16, 2024
c223548
refactor: simplify computation of chained certificate chain
jpraynaud Oct 16, 2024
335ee13
chore: bump crates versions
jpraynaud Oct 16, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion Cargo.lock
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion mithril-common/Cargo.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
[package]
name = "mithril-common"
version = "0.4.71"
version = "0.4.72"
description = "Common types, interfaces, and utilities for Mithril nodes."
authors = { workspace = true }
edition = { workspace = true }
Expand Down
2 changes: 1 addition & 1 deletion mithril-common/src/crypto_helper/genesis.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,7 @@ pub struct ProtocolGenesisError(#[source] StdError);

/// A protocol Genesis Signer that is responsible for signing the
/// [Genesis Certificate](https://mithril.network/doc/mithril/mithril-protocol/certificates#the-certificate-chain-design)
#[derive(Debug, Serialize, Deserialize)]
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct ProtocolGenesisSigner {
/// Protocol Genesis secret key
pub(crate) secret_key: ProtocolGenesisSecretKey,
Expand Down
156 changes: 8 additions & 148 deletions mithril-common/src/crypto_helper/tests_setup.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,18 +1,13 @@
//! Test data builders for Mithril STM types, for testing purpose.
use super::{genesis::*, types::*, OpCert, SerDeShelleyFileFormat};
use crate::{
certificate_chain::CertificateGenesisProducer,
entities::{
Certificate, CertificateSignature, Epoch, ProtocolMessage, ProtocolMessagePartKey,
SignerWithStake, Stake,
},
test_utils::{fake_data, MithrilFixtureBuilder, SignerFixture},
entities::{Certificate, ProtocolMessage, ProtocolMessagePartKey, SignerWithStake, Stake},
test_utils::{CertificateChainBuilder, SignerFixture},
};

use crate::entities::{CertificateMetadata, SignedEntityType};
use rand_chacha::ChaCha20Rng;
use rand_core::SeedableRng;
use std::{cmp::min, collections::HashMap, fs, path::PathBuf, sync::Arc};
use std::{fs, path::PathBuf};

/// Create or retrieve a temporary directory for storing cryptographic material for a signer, use this for tests only.
pub fn setup_temp_directory_for_signer(
Expand Down Expand Up @@ -163,150 +158,15 @@ pub fn setup_signers_from_stake_distribution(
.collect::<_>()
}

/// Instantiate a Genesis Signer and its associated Verifier
pub fn setup_genesis() -> (ProtocolGenesisSigner, ProtocolGenesisVerifier) {
let genesis_signer = ProtocolGenesisSigner::create_deterministic_genesis_signer();
let genesis_verifier = genesis_signer.create_genesis_verifier();
(genesis_signer, genesis_verifier)
}

/// Instantiate a certificate chain, use this for tests only.
pub fn setup_certificate_chain(
total_certificates: u64,
certificates_per_epoch: u64,
) -> (Vec<Certificate>, ProtocolGenesisVerifier) {
let genesis_signer = ProtocolGenesisSigner::create_deterministic_genesis_signer();
let genesis_verifier = genesis_signer.create_genesis_verifier();
let genesis_producer = CertificateGenesisProducer::new(Some(Arc::new(genesis_signer)));
let protocol_parameters = setup_protocol_parameters();
let genesis_epoch = Epoch(1);
let mut epochs = (genesis_epoch.0..total_certificates + 2)
.map(|i| match certificates_per_epoch {
0 => panic!("expected at least 1 certificate per epoch"),
1 => Epoch(i),
_ => Epoch(i / certificates_per_epoch + 1),
})
.collect::<Vec<_>>();
let fixture_per_epoch = epochs
.clone()
.into_iter()
.map(|epoch| {
(
epoch,
MithrilFixtureBuilder::default()
.with_protocol_parameters(protocol_parameters.into())
.with_signers(min(2 + *epoch as usize, 5))
.build(),
)
})
.collect::<HashMap<_, _>>();
let clerk_for_signers = |signers: &[SignerFixture]| -> ProtocolClerk {
let first_signer = &signers[0].protocol_signer;
ProtocolClerk::from_signer(first_signer)
};
let avk_for_signers = |signers: &[SignerFixture]| -> ProtocolAggregateVerificationKey {
let clerk = clerk_for_signers(signers);
clerk.compute_avk().into()
};
epochs.pop();
let certificates = epochs
.into_iter()
.enumerate()
.map(|(i, epoch)| {
let immutable_file_number = i as u64 * 10;
let digest = format!("digest{i}");
let certificate_hash = format!("certificate_hash-{i}");
let fixture = fixture_per_epoch.get(&epoch).unwrap();
let next_fixture = fixture_per_epoch.get(&(epoch + 1)).unwrap();
let avk = avk_for_signers(&fixture.signers_fixture());
let next_avk = avk_for_signers(&next_fixture.signers_fixture());
let next_protocol_parameters = &next_fixture.protocol_parameters();
let mut fake_certificate = {
let mut base_certificate = fake_data::certificate(certificate_hash);
base_certificate
.protocol_message
.set_message_part(ProtocolMessagePartKey::SnapshotDigest, digest);
base_certificate.protocol_message.set_message_part(
ProtocolMessagePartKey::NextAggregateVerificationKey,
next_avk.to_json_hex().unwrap(),
);
Certificate {
epoch,
aggregate_verification_key: avk,
previous_hash: "".to_string(),
signed_message: base_certificate.protocol_message.compute_hash(),
#[allow(deprecated)]
metadata: CertificateMetadata {
immutable_file_number,
..base_certificate.metadata
},
..base_certificate
}
};
let certificate_chain_builder = CertificateChainBuilder::new()
.with_total_certificates(total_certificates)
.with_certificates_per_epoch(certificates_per_epoch)
.with_protocol_parameters(setup_protocol_parameters());

let beacon = fake_certificate.as_cardano_db_beacon();
match i {
0 => {
let genesis_protocol_message =
CertificateGenesisProducer::create_genesis_protocol_message(
next_protocol_parameters,
&next_avk,
&genesis_epoch,
)
.unwrap();
let genesis_signature = genesis_producer
.sign_genesis_protocol_message(genesis_protocol_message)
.unwrap();
fake_certificate = CertificateGenesisProducer::create_genesis_certificate(
fake_certificate.metadata.protocol_parameters,
beacon.network,
beacon.epoch,
beacon.immutable_file_number,
next_avk,
genesis_signature,
)
.unwrap()
}
_ => {
fake_certificate.metadata.signers = fixture.stake_distribution_parties();
let single_signatures = fixture
.signers_fixture()
.iter()
.filter_map(|s| {
s.protocol_signer
.sign(fake_certificate.signed_message.as_bytes())
})
.collect::<Vec<_>>();
let clerk = clerk_for_signers(&fixture.signers_fixture());
let multi_signature = clerk
.aggregate(
&single_signatures,
fake_certificate.signed_message.as_bytes(),
)
.unwrap();
fake_certificate.signature = CertificateSignature::MultiSignature(
SignedEntityType::CardanoImmutableFilesFull(beacon),
multi_signature.into(),
);
}
}
fake_certificate
})
.collect::<Vec<Certificate>>();
let mut certificates_new: Vec<Certificate> = Vec::new();
certificates
.iter()
.enumerate()
.for_each(|(i, certificate)| {
let mut certificate_new = certificate.clone();
if i > 0 {
if let Some(previous_certificate) = certificates_new.get(i - 1) {
certificate_new.previous_hash = previous_certificate.compute_hash();
}
}
certificate_new.hash = certificate_new.compute_hash();
certificates_new.push(certificate_new);
});
certificates_new.reverse();
(certificates_new, genesis_verifier)
certificate_chain_builder.build()
}
Loading
Loading