fix: Global min Self Delegation #134

AlpinYukseloglu · 2022-03-07T22:42:33Z

Closes: #113

What is the purpose of the change

Our current implementation of Superfluid Staking exposes the chain to a specific vulnerability relating to the validator creation process. This PR adds the necessary guardrails to make sure that an attacker cannot halt the chain by generating an arbitrary number of empty validators.

This was not an issue prior to Superfluid Staking because the full validator set was not used in the ante anywhere, but our specific implementation of Superfluid introduced a linear-time search of the validator set at epoch end that made the issue fixed in this PR a vulnerability.

mattverse

Would it be able to add tests for this change?(genesis_test, params_test in sim etc)

Also, how does this param enforce validators to have min_self_delegation?

x/staking/legacy/v040/migrate.go

…east the provided MinSelfDelegation (#132) * add check to make sure validator object is only created if min delegation threshold is met * fix check location and use standard error type * fix logic for check * add test for new check * update test comments for better context

docs/core/proto-docs.md

ValarDragon · 2022-03-15T21:24:12Z

@AlpinYukseloglu you have to update the GetParams queries for the new field in the param struct before merge.

To test locally, inside of x/staking do go test ./..., the query tests should fail.

ValarDragon · 2022-03-17T02:27:34Z

https://github.com/osmosis-labs/cosmos-sdk/runs/5564114018?check_suite_focus=true

still failing

AlpinYukseloglu · 2022-03-17T14:23:40Z

https://github.com/osmosis-labs/cosmos-sdk/runs/5564114018?check_suite_focus=true

still failing

Interesting... local tests seem to be passing (go test ./... in x/staking and then also in its parent folders) except for when I do it in the highest folder (cosmos-sdk), in which case the handful of tests that fail are all ledger-related ("support for ledger devices is not available in this executable"). Am I testing incorrectly @ValarDragon?

mattverse · 2022-03-23T09:53:02Z

FYI: The Rosetta test was broken in the main sdk branch as well

mattverse

Actually, it seems that something in this PR does seem to break the rosetta-test that needs further investigation on fixes. Also, by a brief look, it seems that the "build" action might be failing due to changes in go.sum, can you revert go.sum into the original state?

ValarDragon · 2022-03-28T15:39:36Z

TODO: Ask in cosmos SDK discord how rosetta tests work / how to debug this failure.

If theres a genesis file somewhere for Rosetta, we did break it / would have to update it for this PR

alexanderbez · 2022-03-31T15:38:19Z

Frojdi told me to look at this function:

// ToRosetta attempts to converting an error into a rosetta
// error, if the error cannot be converted it will be parsed as unknown
func ToRosetta(err error) *types.Error {
    if err == nil {
        return nil
    }
    // if it's null or not known
    rosErr, ok := err.(*Error)
    if !ok {
        return ToRosetta(WrapError(ErrUnknown, err.Error()))
    }
    return rosErr.rosErr
}

I think we need to log err in the beginning of the function to get better insight into what's going on.

x/staking/keeper/migrations.go

x/staking/keeper/msg_server.go

x/staking/legacy/v046/store.go

x/staking/legacy/v046/store_test.go

x/staking/keeper/msg_server.go

Co-authored-by: Dev Ojha <ValarDragon@users.noreply.github.com> Co-authored-by: Aleksandr Bezobchuk <alexanderbez@users.noreply.github.com>

alexanderbez

🚀 🚀 🚀

x/staking/keeper/msg_server.go

Co-authored-by: Aleksandr Bezobchuk <alexanderbez@users.noreply.github.com>

fix testing and protobuf related issues

02c4152

AlpinYukseloglu requested a review from ValarDragon March 7, 2022 22:42

github-actions bot added C:Simulations C:x/staking labels Mar 7, 2022

remove unnecessary changes in legacy migration tests

4c0851c

AlpinYukseloglu requested a review from mattverse March 7, 2022 23:00

mattverse requested changes Mar 8, 2022

View reviewed changes

x/staking/legacy/v040/migrate.go Outdated Show resolved Hide resolved

AlpinYukseloglu and others added 3 commits March 10, 2022 08:09

remove extraneous comments

dad91e2

add test for minselfdelegation

f14aa3a

ValarDragon changed the base branch from v0.45.0x-osmo-v7 to v0.45.0x-osmo-v8 March 14, 2022 15:57

AlpinYukseloglu and others added 3 commits March 15, 2022 10:24

add checks for global min self delegation and fix corresponding tests

be51498

Merge branch 'v0.45.0x-osmo-v8' into global-min-selfdelegation

fdbea6b

add migration code

99b8f59

ValarDragon approved these changes Mar 15, 2022

View reviewed changes

docs/core/proto-docs.md Outdated Show resolved Hide resolved

fix migration code tests

343622d

fix staking client unit tests

e7e187a

github-actions bot added the C:CLI label Mar 21, 2022

mattverse requested review from mattverse and removed request for ValarDragon March 25, 2022 11:33

mattverse reviewed Mar 25, 2022

View reviewed changes

AlpinYukseloglu changed the base branch from v0.45.0x-osmo-v8 to osmosis-main April 4, 2022 15:38

AlpinYukseloglu requested a review from alexanderbez as a code owner April 4, 2022 15:38

tidy up

71c33b8