// Copyright 2015-2020 Parity Technologies (UK) Ltd.
// This file is part of OpenEthereum.
// OpenEthereum is free software: you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
// OpenEthereum is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU General Public License for more details.
// You should have received a copy of the GNU General Public License
// along with OpenEthereum. If not, see .
use ethereum_types::{Address, H256};
use ethkey::{Generator, Public, Random, Signature};
use key_server_cluster::{
cluster_connections::{ConnectionManager, ConnectionProvider},
cluster_connections_net::{
NetConnectionsContainer, NetConnectionsManager, NetConnectionsManagerConfig,
},
cluster_message_processor::{MessageProcessor, SessionsMessageProcessor},
cluster_sessions::{
create_cluster_view, AdminSession, AdminSessionCreationData, ClusterSession,
ClusterSessions, ClusterSessionsContainer, ClusterSessionsListener,
SessionIdWithSubSession, SERVERS_SET_CHANGE_SESSION_ID,
},
cluster_sessions_creator::ClusterSessionCreator,
connection_trigger::{
ConnectionTrigger, ServersSetChangeSessionCreatorConnector, SimpleConnectionTrigger,
},
connection_trigger_with_migration::ConnectionTriggerWithMigration,
decryption_session::SessionImpl as DecryptionSession,
encryption_session::SessionImpl as EncryptionSession,
generation_session::SessionImpl as GenerationSession,
key_version_negotiation_session::{
ContinueAction, IsolatedSessionTransport as KeyVersionNegotiationSessionTransport,
SessionImpl as KeyVersionNegotiationSession,
},
message::Message,
signing_session_ecdsa::SessionImpl as EcdsaSigningSession,
signing_session_schnorr::SessionImpl as SchnorrSigningSession,
AclStorage, Error, KeyServerSet, KeyStorage, NodeId, NodeKeyPair, Requester, SessionId,
};
use parity_runtime::Executor;
use parking_lot::RwLock;
use std::{
collections::{BTreeMap, BTreeSet},
sync::Arc,
};
#[cfg(test)]
use key_server_cluster::cluster_connections::tests::{
new_test_connections, MessagesQueue, TestConnections,
};
/// Cluster interface for external clients.
pub trait ClusterClient: Send + Sync {
/// Start new generation session.
fn new_generation_session(
&self,
session_id: SessionId,
origin: Option,
author: Address,
threshold: usize,
) -> Result, Error>;
/// Start new encryption session.
fn new_encryption_session(
&self,
session_id: SessionId,
author: Requester,
common_point: Public,
encrypted_point: Public,
) -> Result, Error>;
/// Start new decryption session.
fn new_decryption_session(
&self,
session_id: SessionId,
origin: Option,
requester: Requester,
version: Option,
is_shadow_decryption: bool,
is_broadcast_decryption: bool,
) -> Result, Error>;
/// Start new Schnorr signing session.
fn new_schnorr_signing_session(
&self,
session_id: SessionId,
requester: Requester,
version: Option,
message_hash: H256,
) -> Result, Error>;
/// Start new ECDSA session.
fn new_ecdsa_signing_session(
&self,
session_id: SessionId,
requester: Requester,
version: Option,
message_hash: H256,
) -> Result, Error>;
/// Start new key version negotiation session.
fn new_key_version_negotiation_session(
&self,
session_id: SessionId,
) -> Result>, Error>;
/// Start new servers set change session.
fn new_servers_set_change_session(
&self,
session_id: Option,
migration_id: Option,
new_nodes_set: BTreeSet,
old_set_signature: Signature,
new_set_signature: Signature,
) -> Result, Error>;
/// Listen for new generation sessions.
fn add_generation_listener(
&self,
listener: Arc>,
);
/// Listen for new decryption sessions.
fn add_decryption_listener(
&self,
listener: Arc>,
);
/// Listen for new key version negotiation sessions.
fn add_key_version_negotiation_listener(
&self,
listener: Arc<
dyn ClusterSessionsListener<
KeyVersionNegotiationSession,
>,
>,
);
/// Ask node to make 'faulty' generation sessions.
#[cfg(test)]
fn make_faulty_generation_sessions(&self);
/// Get active generation session with given id.
#[cfg(test)]
fn generation_session(&self, session_id: &SessionId) -> Option>;
#[cfg(test)]
fn is_fully_connected(&self) -> bool;
/// Try connect to disconnected nodes.
#[cfg(test)]
fn connect(&self);
}
/// Cluster access for single session participant.
pub trait Cluster: Send + Sync {
/// Broadcast message to all other nodes.
fn broadcast(&self, message: Message) -> Result<(), Error>;
/// Send message to given node.
fn send(&self, to: &NodeId, message: Message) -> Result<(), Error>;
/// Is connected to given node?
fn is_connected(&self, node: &NodeId) -> bool;
/// Get a set of connected nodes.
fn nodes(&self) -> BTreeSet;
/// Get total count of configured key server nodes (valid at the time of ClusterView creation).
fn configured_nodes_count(&self) -> usize;
/// Get total count of connected key server nodes (valid at the time of ClusterView creation).
fn connected_nodes_count(&self) -> usize;
}
/// Cluster initialization parameters.
#[derive(Clone)]
pub struct ClusterConfiguration {
/// KeyPair this node holds.
pub self_key_pair: Arc,
/// Cluster nodes set.
pub key_server_set: Arc,
/// Reference to key storage
pub key_storage: Arc,
/// Reference to ACL storage
pub acl_storage: Arc,
/// Administrator public key.
pub admin_public: Option,
/// Do not remove sessions from container.
pub preserve_sessions: bool,
}
/// Network cluster implementation.
pub struct ClusterCore {
/// Cluster data.
data: Arc>,
}
/// Network cluster client interface implementation.
pub struct ClusterClientImpl {
/// Cluster data.
data: Arc>,
}
/// Network cluster view. It is a communication channel, required in single session.
pub struct ClusterView {
configured_nodes_count: usize,
connected_nodes: BTreeSet,
connections: Arc,
self_key_pair: Arc,
}
/// Cross-thread shareable cluster data.
pub struct ClusterData {
/// Cluster configuration.
pub config: ClusterConfiguration,
/// KeyPair this node holds.
pub self_key_pair: Arc,
/// Connections data.
pub connections: C,
/// Active sessions data.
pub sessions: Arc,
// Messages processor.
pub message_processor: Arc,
/// Link between servers set chnage session and the connections manager.
pub servers_set_change_creator_connector: Arc,
}
/// Create new network-backed cluster.
pub fn new_network_cluster(
executor: Executor,
config: ClusterConfiguration,
net_config: NetConnectionsManagerConfig,
) -> Result>, Error> {
let mut nodes = config.key_server_set.snapshot().current_set;
let is_isolated = nodes.remove(config.self_key_pair.public()).is_none();
let connections_data = Arc::new(RwLock::new(NetConnectionsContainer {
is_isolated,
nodes,
connections: BTreeMap::new(),
}));
let connection_trigger: Box =
match net_config.auto_migrate_enabled {
false => Box::new(SimpleConnectionTrigger::with_config(&config)),
true if config.admin_public.is_none() => {
Box::new(ConnectionTriggerWithMigration::with_config(&config))
}
true => return Err(Error::Internal(
"secret store admininstrator public key is specified with auto-migration enabled"
.into(),
)),
};
let servers_set_change_creator_connector =
connection_trigger.servers_set_change_creator_connector();
let sessions = Arc::new(ClusterSessions::new(
&config,
servers_set_change_creator_connector.clone(),
));
let message_processor = Arc::new(SessionsMessageProcessor::new(
config.self_key_pair.clone(),
servers_set_change_creator_connector.clone(),
sessions.clone(),
connections_data.clone(),
));
let connections = NetConnectionsManager::new(
executor,
message_processor.clone(),
connection_trigger,
connections_data,
&config,
net_config,
)?;
connections.start()?;
ClusterCore::new(
sessions,
message_processor,
connections,
servers_set_change_creator_connector,
config,
)
}
/// Create new in-memory backed cluster
#[cfg(test)]
pub fn new_test_cluster(
messages: MessagesQueue,
config: ClusterConfiguration,
) -> Result>>, Error> {
let nodes = config.key_server_set.snapshot().current_set;
let connections = new_test_connections(
messages,
*config.self_key_pair.public(),
nodes.keys().cloned().collect(),
);
let connection_trigger = Box::new(SimpleConnectionTrigger::with_config(&config));
let servers_set_change_creator_connector =
connection_trigger.servers_set_change_creator_connector();
let mut sessions = ClusterSessions::new(&config, servers_set_change_creator_connector.clone());
if config.preserve_sessions {
sessions.preserve_sessions();
}
let sessions = Arc::new(sessions);
let message_processor = Arc::new(SessionsMessageProcessor::new(
config.self_key_pair.clone(),
servers_set_change_creator_connector.clone(),
sessions.clone(),
connections.provider(),
));
ClusterCore::new(
sessions,
message_processor,
connections,
servers_set_change_creator_connector,
config,
)
}
impl ClusterCore {
pub fn new(
sessions: Arc,
message_processor: Arc,
connections: C,
servers_set_change_creator_connector: Arc,
config: ClusterConfiguration,
) -> Result, Error> {
Ok(Arc::new(ClusterCore {
data: Arc::new(ClusterData {
self_key_pair: config.self_key_pair.clone(),
connections,
sessions: sessions.clone(),
config,
message_processor,
servers_set_change_creator_connector,
}),
}))
}
/// Create new client interface.
pub fn client(&self) -> Arc {
Arc::new(ClusterClientImpl::new(self.data.clone()))
}
/// Run cluster.
pub fn run(&self) -> Result<(), Error> {
self.data.connections.connect();
Ok(())
}
#[cfg(test)]
pub fn view(&self) -> Result, Error> {
let connections = self.data.connections.provider();
let mut connected_nodes = connections.connected_nodes()?;
let disconnected_nodes = connections.disconnected_nodes();
connected_nodes.insert(self.data.self_key_pair.public().clone());
let connected_nodes_count = connected_nodes.len();
let disconnected_nodes_count = disconnected_nodes.len();
Ok(Arc::new(ClusterView::new(
self.data.self_key_pair.clone(),
connections,
connected_nodes,
connected_nodes_count + disconnected_nodes_count,
)))
}
}
impl ClusterView {
pub fn new(
self_key_pair: Arc,
connections: Arc,
nodes: BTreeSet,
configured_nodes_count: usize,
) -> Self {
ClusterView {
configured_nodes_count: configured_nodes_count,
connected_nodes: nodes,
connections,
self_key_pair,
}
}
}
impl Cluster for ClusterView {
fn broadcast(&self, message: Message) -> Result<(), Error> {
for node in self
.connected_nodes
.iter()
.filter(|n| *n != self.self_key_pair.public())
{
trace!(target: "secretstore_net", "{}: sent message {} to {}", self.self_key_pair.public(), message, node);
let connection = self
.connections
.connection(node)
.ok_or(Error::NodeDisconnected)?;
connection.send_message(message.clone());
}
Ok(())
}
fn send(&self, to: &NodeId, message: Message) -> Result<(), Error> {
trace!(target: "secretstore_net", "{}: sent message {} to {}", self.self_key_pair.public(), message, to);
let connection = self
.connections
.connection(to)
.ok_or(Error::NodeDisconnected)?;
connection.send_message(message);
Ok(())
}
fn is_connected(&self, node: &NodeId) -> bool {
self.connected_nodes.contains(node)
}
fn nodes(&self) -> BTreeSet {
self.connected_nodes.clone()
}
fn configured_nodes_count(&self) -> usize {
self.configured_nodes_count
}
fn connected_nodes_count(&self) -> usize {
self.connected_nodes.len()
}
}
impl ClusterClientImpl {
pub fn new(data: Arc>) -> Self {
ClusterClientImpl { data: data }
}
fn create_key_version_negotiation_session(
&self,
session_id: SessionId,
) -> Result>, Error>
{
let mut connected_nodes = self.data.connections.provider().connected_nodes()?;
connected_nodes.insert(self.data.self_key_pair.public().clone());
let access_key = Random.generate()?.secret().clone();
let session_id = SessionIdWithSubSession::new(session_id, access_key);
let cluster = create_cluster_view(
self.data.self_key_pair.clone(),
self.data.connections.provider(),
false,
)?;
let session = self.data.sessions.negotiation_sessions.insert(
cluster,
self.data.self_key_pair.public().clone(),
session_id.clone(),
None,
false,
None,
)?;
match session.initialize(connected_nodes) {
Ok(()) => Ok(session),
Err(error) => {
self.data
.sessions
.negotiation_sessions
.remove(&session.id());
Err(error)
}
}
}
}
impl ClusterClient for ClusterClientImpl {
fn new_generation_session(
&self,
session_id: SessionId,
origin: Option,
author: Address,
threshold: usize,
) -> Result, Error> {
let mut connected_nodes = self.data.connections.provider().connected_nodes()?;
connected_nodes.insert(self.data.self_key_pair.public().clone());
let cluster = create_cluster_view(
self.data.self_key_pair.clone(),
self.data.connections.provider(),
true,
)?;
let session = self.data.sessions.generation_sessions.insert(
cluster,
self.data.self_key_pair.public().clone(),
session_id,
None,
false,
None,
)?;
process_initialization_result(
session.initialize(origin, author, false, threshold, connected_nodes.into()),
session,
&self.data.sessions.generation_sessions,
)
}
fn new_encryption_session(
&self,
session_id: SessionId,
requester: Requester,
common_point: Public,
encrypted_point: Public,
) -> Result, Error> {
let mut connected_nodes = self.data.connections.provider().connected_nodes()?;
connected_nodes.insert(self.data.self_key_pair.public().clone());
let cluster = create_cluster_view(
self.data.self_key_pair.clone(),
self.data.connections.provider(),
true,
)?;
let session = self.data.sessions.encryption_sessions.insert(
cluster,
self.data.self_key_pair.public().clone(),
session_id,
None,
false,
None,
)?;
process_initialization_result(
session.initialize(requester, common_point, encrypted_point),
session,
&self.data.sessions.encryption_sessions,
)
}
fn new_decryption_session(
&self,
session_id: SessionId,
origin: Option,
requester: Requester,
version: Option,
is_shadow_decryption: bool,
is_broadcast_decryption: bool,
) -> Result, Error> {
let mut connected_nodes = self.data.connections.provider().connected_nodes()?;
connected_nodes.insert(self.data.self_key_pair.public().clone());
let access_key = Random.generate()?.secret().clone();
let session_id = SessionIdWithSubSession::new(session_id, access_key);
let cluster = create_cluster_view(
self.data.self_key_pair.clone(),
self.data.connections.provider(),
false,
)?;
let session = self.data.sessions.decryption_sessions.insert(
cluster,
self.data.self_key_pair.public().clone(),
session_id.clone(),
None,
false,
Some(requester),
)?;
let initialization_result = match version {
Some(version) => session.initialize(
origin,
version,
is_shadow_decryption,
is_broadcast_decryption,
),
None => self
.create_key_version_negotiation_session(session_id.id.clone())
.map(|version_session| {
version_session.set_continue_action(ContinueAction::Decrypt(
session.clone(),
origin,
is_shadow_decryption,
is_broadcast_decryption,
));
self.data
.message_processor
.try_continue_session(Some(version_session));
}),
};
process_initialization_result(
initialization_result,
session,
&self.data.sessions.decryption_sessions,
)
}
fn new_schnorr_signing_session(
&self,
session_id: SessionId,
requester: Requester,
version: Option,
message_hash: H256,
) -> Result, Error> {
let mut connected_nodes = self.data.connections.provider().connected_nodes()?;
connected_nodes.insert(self.data.self_key_pair.public().clone());
let access_key = Random.generate()?.secret().clone();
let session_id = SessionIdWithSubSession::new(session_id, access_key);
let cluster = create_cluster_view(
self.data.self_key_pair.clone(),
self.data.connections.provider(),
false,
)?;
let session = self.data.sessions.schnorr_signing_sessions.insert(
cluster,
self.data.self_key_pair.public().clone(),
session_id.clone(),
None,
false,
Some(requester),
)?;
let initialization_result = match version {
Some(version) => session.initialize(version, message_hash),
None => self
.create_key_version_negotiation_session(session_id.id.clone())
.map(|version_session| {
version_session.set_continue_action(ContinueAction::SchnorrSign(
session.clone(),
message_hash,
));
self.data
.message_processor
.try_continue_session(Some(version_session));
}),
};
process_initialization_result(
initialization_result,
session,
&self.data.sessions.schnorr_signing_sessions,
)
}
fn new_ecdsa_signing_session(
&self,
session_id: SessionId,
requester: Requester,
version: Option,
message_hash: H256,
) -> Result, Error> {
let mut connected_nodes = self.data.connections.provider().connected_nodes()?;
connected_nodes.insert(self.data.self_key_pair.public().clone());
let access_key = Random.generate()?.secret().clone();
let session_id = SessionIdWithSubSession::new(session_id, access_key);
let cluster = create_cluster_view(
self.data.self_key_pair.clone(),
self.data.connections.provider(),
false,
)?;
let session = self.data.sessions.ecdsa_signing_sessions.insert(
cluster,
self.data.self_key_pair.public().clone(),
session_id.clone(),
None,
false,
Some(requester),
)?;
let initialization_result = match version {
Some(version) => session.initialize(version, message_hash),
None => self
.create_key_version_negotiation_session(session_id.id.clone())
.map(|version_session| {
version_session.set_continue_action(ContinueAction::EcdsaSign(
session.clone(),
message_hash,
));
self.data
.message_processor
.try_continue_session(Some(version_session));
}),
};
process_initialization_result(
initialization_result,
session,
&self.data.sessions.ecdsa_signing_sessions,
)
}
fn new_key_version_negotiation_session(
&self,
session_id: SessionId,
) -> Result>, Error>
{
let session = self.create_key_version_negotiation_session(session_id)?;
Ok(session)
}
fn new_servers_set_change_session(
&self,
session_id: Option,
migration_id: Option,
new_nodes_set: BTreeSet,
old_set_signature: Signature,
new_set_signature: Signature,
) -> Result, Error> {
new_servers_set_change_session(
self.data.self_key_pair.clone(),
&self.data.sessions,
self.data.connections.provider(),
self.data.servers_set_change_creator_connector.clone(),
ServersSetChangeParams {
session_id,
migration_id,
new_nodes_set,
old_set_signature,
new_set_signature,
},
)
}
fn add_generation_listener(
&self,
listener: Arc>,
) {
self.data
.sessions
.generation_sessions
.add_listener(listener);
}
fn add_decryption_listener(
&self,
listener: Arc>,
) {
self.data
.sessions
.decryption_sessions
.add_listener(listener);
}
fn add_key_version_negotiation_listener(
&self,
listener: Arc<
dyn ClusterSessionsListener<
KeyVersionNegotiationSession,
>,
>,
) {
self.data
.sessions
.negotiation_sessions
.add_listener(listener);
}
#[cfg(test)]
fn make_faulty_generation_sessions(&self) {
self.data.sessions.make_faulty_generation_sessions();
}
#[cfg(test)]
fn generation_session(&self, session_id: &SessionId) -> Option> {
self.data
.sessions
.generation_sessions
.get(session_id, false)
}
#[cfg(test)]
fn is_fully_connected(&self) -> bool {
self.data
.connections
.provider()
.disconnected_nodes()
.is_empty()
}
#[cfg(test)]
fn connect(&self) {
self.data.connections.connect()
}
}
pub struct ServersSetChangeParams {
pub session_id: Option,
pub migration_id: Option,
pub new_nodes_set: BTreeSet,
pub old_set_signature: Signature,
pub new_set_signature: Signature,
}
pub fn new_servers_set_change_session(
self_key_pair: Arc,
sessions: &ClusterSessions,
connections: Arc,
servers_set_change_creator_connector: Arc,
params: ServersSetChangeParams,
) -> Result, Error> {
let session_id = match params.session_id {
Some(session_id) if session_id == *SERVERS_SET_CHANGE_SESSION_ID => session_id,
Some(_) => return Err(Error::InvalidMessage),
None => *SERVERS_SET_CHANGE_SESSION_ID,
};
let cluster = create_cluster_view(self_key_pair.clone(), connections, true)?;
let creation_data = AdminSessionCreationData::ServersSetChange(
params.migration_id,
params.new_nodes_set.clone(),
);
let session = sessions.admin_sessions.insert(
cluster,
*self_key_pair.public(),
session_id,
None,
true,
Some(creation_data),
)?;
let initialization_result = session
.as_servers_set_change()
.expect("servers set change session is created; qed")
.initialize(
params.new_nodes_set,
params.old_set_signature,
params.new_set_signature,
);
if initialization_result.is_ok() {
servers_set_change_creator_connector.set_key_servers_set_change_session(session.clone());
}
process_initialization_result(initialization_result, session, &sessions.admin_sessions)
}
fn process_initialization_result(
result: Result<(), Error>,
session: Arc,
sessions: &ClusterSessionsContainer,
) -> Result, Error>
where
S: ClusterSession,
SC: ClusterSessionCreator,
{
match result {
Ok(()) if session.is_finished() => {
sessions.remove(&session.id());
Ok(session)
}
Ok(()) => Ok(session),
Err(error) => {
sessions.remove(&session.id());
Err(error)
}
}
}
#[cfg(test)]
pub mod tests {
use ethereum_types::{Address, H256};
use ethkey::{sign, Generator, Public, Random, Signature};
use key_server_cluster::{
cluster::{new_test_cluster, Cluster, ClusterClient, ClusterConfiguration, ClusterCore},
cluster_connections::{
tests::{MessagesQueue, TestConnections},
ConnectionManager,
},
cluster_sessions::{
AdminSession, ClusterSession, ClusterSessions, ClusterSessionsListener,
},
decryption_session::SessionImpl as DecryptionSession,
encryption_session::SessionImpl as EncryptionSession,
generation_session::{
SessionImpl as GenerationSession, SessionState as GenerationSessionState,
},
key_version_negotiation_session::{
IsolatedSessionTransport as KeyVersionNegotiationSessionTransport,
SessionImpl as KeyVersionNegotiationSession,
},
message::Message,
signing_session_ecdsa::SessionImpl as EcdsaSigningSession,
signing_session_schnorr::SessionImpl as SchnorrSigningSession,
DummyAclStorage, DummyKeyStorage, Error, MapKeyServerSet, NodeId, NodeKeyPair,
PlainNodeKeyPair, Requester, SessionId,
};
use parking_lot::{Mutex, RwLock};
use std::{
collections::{BTreeMap, BTreeSet, VecDeque},
sync::{
atomic::{AtomicUsize, Ordering},
Arc,
},
};
#[derive(Default)]
pub struct DummyClusterClient {
pub generation_requests_count: AtomicUsize,
}
#[derive(Debug)]
pub struct DummyCluster {
id: NodeId,
data: RwLock,
}
#[derive(Debug, Default)]
struct DummyClusterData {
nodes: BTreeSet,
messages: VecDeque<(NodeId, Message)>,
}
impl ClusterClient for DummyClusterClient {
fn new_generation_session(
&self,
_session_id: SessionId,
_origin: Option,
_author: Address,
_threshold: usize,
) -> Result, Error> {
self.generation_requests_count
.fetch_add(1, Ordering::Relaxed);
Err(Error::Internal("test-error".into()))
}
fn new_encryption_session(
&self,
_session_id: SessionId,
_requester: Requester,
_common_point: Public,
_encrypted_point: Public,
) -> Result, Error> {
unimplemented!("test-only")
}
fn new_decryption_session(
&self,
_session_id: SessionId,
_origin: Option,
_requester: Requester,
_version: Option,
_is_shadow_decryption: bool,
_is_broadcast_session: bool,
) -> Result, Error> {
unimplemented!("test-only")
}
fn new_schnorr_signing_session(
&self,
_session_id: SessionId,
_requester: Requester,
_version: Option,
_message_hash: H256,
) -> Result, Error> {
unimplemented!("test-only")
}
fn new_ecdsa_signing_session(
&self,
_session_id: SessionId,
_requester: Requester,
_version: Option,
_message_hash: H256,
) -> Result, Error> {
unimplemented!("test-only")
}
fn new_key_version_negotiation_session(
&self,
_session_id: SessionId,
) -> Result>, Error>
{
unimplemented!("test-only")
}
fn new_servers_set_change_session(
&self,
_session_id: Option,
_migration_id: Option,
_new_nodes_set: BTreeSet,
_old_set_signature: Signature,
_new_set_signature: Signature,
) -> Result, Error> {
unimplemented!("test-only")
}
fn add_generation_listener(
&self,
_listener: Arc>,
) {
}
fn add_decryption_listener(
&self,
_listener: Arc>,
) {
}
fn add_key_version_negotiation_listener(
&self,
_listener: Arc<
dyn ClusterSessionsListener<
KeyVersionNegotiationSession,
>,
>,
) {
}
fn make_faulty_generation_sessions(&self) {
unimplemented!("test-only")
}
fn generation_session(&self, _session_id: &SessionId) -> Option> {
unimplemented!("test-only")
}
fn is_fully_connected(&self) -> bool {
true
}
fn connect(&self) {}
}
impl DummyCluster {
pub fn new(id: NodeId) -> Self {
DummyCluster {
id: id,
data: RwLock::new(DummyClusterData::default()),
}
}
pub fn node(&self) -> NodeId {
self.id.clone()
}
pub fn add_node(&self, node: NodeId) {
self.data.write().nodes.insert(node);
}
pub fn add_nodes>(&self, nodes: I) {
self.data.write().nodes.extend(nodes)
}
pub fn remove_node(&self, node: &NodeId) {
self.data.write().nodes.remove(node);
}
pub fn take_message(&self) -> Option<(NodeId, Message)> {
self.data.write().messages.pop_front()
}
}
impl Cluster for DummyCluster {
fn broadcast(&self, message: Message) -> Result<(), Error> {
let mut data = self.data.write();
let all_nodes: Vec<_> = data
.nodes
.iter()
.cloned()
.filter(|n| n != &self.id)
.collect();
for node in all_nodes {
data.messages.push_back((node, message.clone()));
}
Ok(())
}
fn send(&self, to: &NodeId, message: Message) -> Result<(), Error> {
debug_assert!(&self.id != to);
self.data.write().messages.push_back((to.clone(), message));
Ok(())
}
fn is_connected(&self, node: &NodeId) -> bool {
let data = self.data.read();
&self.id == node || data.nodes.contains(node)
}
fn nodes(&self) -> BTreeSet {
self.data.read().nodes.iter().cloned().collect()
}
fn configured_nodes_count(&self) -> usize {
self.data.read().nodes.len()
}
fn connected_nodes_count(&self) -> usize {
self.data.read().nodes.len()
}
}
/// Test message loop.
pub struct MessageLoop {
messages: MessagesQueue,
preserve_sessions: bool,
key_pairs_map: BTreeMap>,
acl_storages_map: BTreeMap>,
key_storages_map: BTreeMap>,
clusters_map: BTreeMap>>>,
}
impl ::std::fmt::Debug for MessageLoop {
fn fmt(&self, f: &mut ::std::fmt::Formatter) -> ::std::fmt::Result {
write!(f, "MessageLoop({})", self.clusters_map.len())
}
}
impl MessageLoop {
/// Returns set of all nodes ids.
pub fn nodes(&self) -> BTreeSet {
self.clusters_map.keys().cloned().collect()
}
/// Returns nodes id by its index.
pub fn node(&self, idx: usize) -> NodeId {
*self.clusters_map.keys().nth(idx).unwrap()
}
/// Returns key pair of the node by its idx.
pub fn node_key_pair(&self, idx: usize) -> &Arc {
self.key_pairs_map.values().nth(idx).unwrap()
}
/// Get cluster reference by its index.
pub fn cluster(&self, idx: usize) -> &Arc>> {
self.clusters_map.values().nth(idx).unwrap()
}
/// Get keys storage reference by its index.
pub fn key_storage(&self, idx: usize) -> &Arc {
self.key_storages_map.values().nth(idx).unwrap()
}
/// Get keys storage reference by node id.
pub fn key_storage_of(&self, node: &NodeId) -> &Arc {
&self.key_storages_map[node]
}
/// Replace key storage of the node by its id.
pub fn replace_key_storage_of(&mut self, node: &NodeId, key_storage: Arc) {
*self.key_storages_map.get_mut(node).unwrap() = key_storage;
}
/// Get ACL storage reference by its index.
pub fn acl_storage(&self, idx: usize) -> &Arc {
self.acl_storages_map.values().nth(idx).unwrap()
}
/// Get sessions container reference by its index.
pub fn sessions(&self, idx: usize) -> &Arc {
&self.cluster(idx).data.sessions
}
/// Get sessions container reference by node id.
pub fn sessions_of(&self, node: &NodeId) -> &Arc {
&self.clusters_map[node].data.sessions
}
/// Isolate node from others.
pub fn isolate(&self, idx: usize) {
let node = self.node(idx);
for (i, cluster) in self.clusters_map.values().enumerate() {
if i == idx {
cluster.data.connections.isolate();
} else {
cluster.data.connections.disconnect(node);
}
}
}
/// Exclude node from cluster.
pub fn exclude(&mut self, idx: usize) {
let node = self.node(idx);
for (i, cluster) in self.clusters_map.values().enumerate() {
if i != idx {
cluster.data.connections.exclude(node);
}
}
self.key_storages_map.remove(&node);
self.acl_storages_map.remove(&node);
self.key_pairs_map.remove(&node);
self.clusters_map.remove(&node);
}
/// Include new node to the cluster.
pub fn include(&mut self, node_key_pair: Arc) -> usize {
let key_storage = Arc::new(DummyKeyStorage::default());
let acl_storage = Arc::new(DummyAclStorage::default());
let cluster_params = ClusterConfiguration {
self_key_pair: node_key_pair.clone(),
key_server_set: Arc::new(MapKeyServerSet::new(
false,
self.nodes()
.iter()
.chain(::std::iter::once(node_key_pair.public()))
.map(|n| (*n, format!("127.0.0.1:{}", 13).parse().unwrap()))
.collect(),
)),
key_storage: key_storage.clone(),
acl_storage: acl_storage.clone(),
admin_public: None,
preserve_sessions: self.preserve_sessions,
};
let cluster = new_test_cluster(self.messages.clone(), cluster_params).unwrap();
for cluster in self.clusters_map.values() {
cluster
.data
.connections
.include(node_key_pair.public().clone());
}
self.acl_storages_map
.insert(*node_key_pair.public(), acl_storage);
self.key_storages_map
.insert(*node_key_pair.public(), key_storage);
self.clusters_map.insert(*node_key_pair.public(), cluster);
self.key_pairs_map
.insert(*node_key_pair.public(), node_key_pair.clone());
self.clusters_map
.keys()
.position(|k| k == node_key_pair.public())
.unwrap()
}
/// Is empty message queue?
pub fn is_empty(&self) -> bool {
self.messages.lock().is_empty()
}
/// Takes next message from the queue.
pub fn take_message(&self) -> Option<(NodeId, NodeId, Message)> {
self.messages.lock().pop_front()
}
/// Process single message.
pub fn process_message(&self, from: NodeId, to: NodeId, message: Message) {
let cluster_data = &self.clusters_map[&to].data;
let connection = cluster_data
.connections
.provider()
.connection(&from)
.unwrap();
cluster_data
.message_processor
.process_connection_message(connection, message);
}
/// Take next message and process it.
pub fn take_and_process_message(&self) -> bool {
let (from, to, message) = match self.take_message() {
Some((from, to, message)) => (from, to, message),
None => return false,
};
self.process_message(from, to, message);
true
}
/// Loops until `predicate` returns `true` or there are no messages in the queue.
pub fn loop_until(&self, predicate: F)
where
F: Fn() -> bool,
{
while !predicate() {
if !self.take_and_process_message() {
panic!("message queue is empty but goal is not achieved");
}
}
}
}
pub fn make_clusters(num_nodes: usize) -> MessageLoop {
do_make_clusters(num_nodes, false)
}
pub fn make_clusters_and_preserve_sessions(num_nodes: usize) -> MessageLoop {
do_make_clusters(num_nodes, true)
}
fn do_make_clusters(num_nodes: usize, preserve_sessions: bool) -> MessageLoop {
let ports_begin = 0;
let messages = Arc::new(Mutex::new(VecDeque::new()));
let key_pairs: Vec<_> = (0..num_nodes)
.map(|_| Arc::new(PlainNodeKeyPair::new(Random.generate().unwrap())))
.collect();
let key_storages: Vec<_> = (0..num_nodes)
.map(|_| Arc::new(DummyKeyStorage::default()))
.collect();
let acl_storages: Vec<_> = (0..num_nodes)
.map(|_| Arc::new(DummyAclStorage::default()))
.collect();
let cluster_params: Vec<_> = (0..num_nodes)
.map(|i| ClusterConfiguration {
self_key_pair: key_pairs[i].clone(),
key_server_set: Arc::new(MapKeyServerSet::new(
false,
key_pairs
.iter()
.enumerate()
.map(|(j, kp)| {
(
*kp.public(),
format!("127.0.0.1:{}", ports_begin + j as u16)
.parse()
.unwrap(),
)
})
.collect(),
)),
key_storage: key_storages[i].clone(),
acl_storage: acl_storages[i].clone(),
admin_public: None,
preserve_sessions,
})
.collect();
let clusters: Vec<_> = cluster_params
.into_iter()
.map(|params| new_test_cluster(messages.clone(), params).unwrap())
.collect();
let clusters_map = clusters
.iter()
.map(|c| (*c.data.config.self_key_pair.public(), c.clone()))
.collect();
let key_pairs_map = key_pairs.into_iter().map(|kp| (*kp.public(), kp)).collect();
let key_storages_map = clusters
.iter()
.zip(key_storages.into_iter())
.map(|(c, ks)| (*c.data.config.self_key_pair.public(), ks))
.collect();
let acl_storages_map = clusters
.iter()
.zip(acl_storages.into_iter())
.map(|(c, acls)| (*c.data.config.self_key_pair.public(), acls))
.collect();
MessageLoop {
preserve_sessions,
messages,
key_pairs_map,
acl_storages_map,
key_storages_map,
clusters_map,
}
}
#[test]
fn cluster_wont_start_generation_session_if_not_fully_connected() {
let ml = make_clusters(3);
ml.cluster(0)
.data
.connections
.disconnect(*ml.cluster(0).data.self_key_pair.public());
match ml.cluster(0).client().new_generation_session(
SessionId::default(),
Default::default(),
Default::default(),
1,
) {
Err(Error::NodeDisconnected) => (),
Err(e) => panic!("unexpected error {:?}", e),
_ => panic!("unexpected success"),
}
}
#[test]
fn error_in_generation_session_broadcasted_to_all_other_nodes() {
let _ = ::env_logger::try_init();
let ml = make_clusters(3);
// ask one of nodes to produce faulty generation sessions
ml.cluster(1).client().make_faulty_generation_sessions();
// start && wait for generation session to fail
let session = ml
.cluster(0)
.client()
.new_generation_session(
SessionId::default(),
Default::default(),
Default::default(),
1,
)
.unwrap();
ml.loop_until(|| {
session.joint_public_and_secret().is_some()
&& ml
.cluster(0)
.client()
.generation_session(&SessionId::default())
.is_none()
});
assert!(session.joint_public_and_secret().unwrap().is_err());
// check that faulty session is either removed from all nodes, or nonexistent (already removed)
for i in 1..3 {
if let Some(session) = ml
.cluster(i)
.client()
.generation_session(&SessionId::default())
{
// wait for both session completion && session removal (session completion event is fired
// before session is removed from its own container by cluster)
ml.loop_until(|| {
session.joint_public_and_secret().is_some()
&& ml
.cluster(i)
.client()
.generation_session(&SessionId::default())
.is_none()
});
assert!(session.joint_public_and_secret().unwrap().is_err());
}
}
}
#[test]
fn generation_session_completion_signalled_if_failed_on_master() {
let _ = ::env_logger::try_init();
let ml = make_clusters(3);
// ask one of nodes to produce faulty generation sessions
ml.cluster(0).client().make_faulty_generation_sessions();
// start && wait for generation session to fail
let session = ml
.cluster(0)
.client()
.new_generation_session(
SessionId::default(),
Default::default(),
Default::default(),
1,
)
.unwrap();
ml.loop_until(|| {
session.joint_public_and_secret().is_some()
&& ml
.cluster(0)
.client()
.generation_session(&SessionId::default())
.is_none()
});
assert!(session.joint_public_and_secret().unwrap().is_err());
// check that faulty session is either removed from all nodes, or nonexistent (already removed)
for i in 1..3 {
if let Some(session) = ml
.cluster(i)
.client()
.generation_session(&SessionId::default())
{
let session = session.clone();
// wait for both session completion && session removal (session completion event is fired
// before session is removed from its own container by cluster)
ml.loop_until(|| {
session.joint_public_and_secret().is_some()
&& ml
.cluster(i)
.client()
.generation_session(&SessionId::default())
.is_none()
});
assert!(session.joint_public_and_secret().unwrap().is_err());
}
}
}
#[test]
fn generation_session_is_removed_when_succeeded() {
let _ = ::env_logger::try_init();
let ml = make_clusters(3);
// start && wait for generation session to complete
let session = ml
.cluster(0)
.client()
.new_generation_session(
SessionId::default(),
Default::default(),
Default::default(),
1,
)
.unwrap();
ml.loop_until(|| {
(session.state() == GenerationSessionState::Finished
|| session.state() == GenerationSessionState::Failed)
&& ml
.cluster(0)
.client()
.generation_session(&SessionId::default())
.is_none()
});
assert!(session.joint_public_and_secret().unwrap().is_ok());
// check that on non-master nodes session is either:
// already removed
// or it is removed right after completion
for i in 1..3 {
if let Some(session) = ml
.cluster(i)
.client()
.generation_session(&SessionId::default())
{
// run to completion if completion message is still on the way
// AND check that it is actually removed from cluster sessions
ml.loop_until(|| {
(session.state() == GenerationSessionState::Finished
|| session.state() == GenerationSessionState::Failed)
&& ml
.cluster(i)
.client()
.generation_session(&SessionId::default())
.is_none()
});
}
}
}
#[test]
fn sessions_are_removed_when_initialization_fails() {
let ml = make_clusters(3);
let client = ml.cluster(0).client();
// generation session
{
// try to start generation session => fail in initialization
assert_eq!(
client
.new_generation_session(SessionId::default(), None, Default::default(), 100)
.map(|_| ()),
Err(Error::NotEnoughNodesForThreshold)
);
// try to start generation session => fails in initialization
assert_eq!(
client
.new_generation_session(SessionId::default(), None, Default::default(), 100)
.map(|_| ()),
Err(Error::NotEnoughNodesForThreshold)
);
assert!(ml.cluster(0).data.sessions.generation_sessions.is_empty());
}
// decryption session
{
// try to start decryption session => fails in initialization
assert_eq!(
client
.new_decryption_session(
Default::default(),
Default::default(),
Default::default(),
Some(Default::default()),
false,
false
)
.map(|_| ()),
Err(Error::InvalidMessage)
);
// try to start generation session => fails in initialization
assert_eq!(
client
.new_decryption_session(
Default::default(),
Default::default(),
Default::default(),
Some(Default::default()),
false,
false
)
.map(|_| ()),
Err(Error::InvalidMessage)
);
assert!(ml.cluster(0).data.sessions.decryption_sessions.is_empty());
assert!(ml.cluster(0).data.sessions.negotiation_sessions.is_empty());
}
}
#[test]
fn schnorr_signing_session_completes_if_node_does_not_have_a_share() {
let _ = ::env_logger::try_init();
let ml = make_clusters(3);
// start && wait for generation session to complete
let session = ml
.cluster(0)
.client()
.new_generation_session(
SessionId::default(),
Default::default(),
Default::default(),
1,
)
.unwrap();
ml.loop_until(|| {
(session.state() == GenerationSessionState::Finished
|| session.state() == GenerationSessionState::Failed)
&& ml
.cluster(0)
.client()
.generation_session(&SessionId::default())
.is_none()
});
assert!(session.joint_public_and_secret().unwrap().is_ok());
// now remove share from node2
assert!((0..3).all(|i| ml.cluster(i).data.sessions.generation_sessions.is_empty()));
ml.cluster(2)
.data
.config
.key_storage
.remove(&Default::default())
.unwrap();
// and try to sign message with generated key
let signature = sign(Random.generate().unwrap().secret(), &Default::default()).unwrap();
let session0 = ml
.cluster(0)
.client()
.new_schnorr_signing_session(
Default::default(),
signature.into(),
None,
Default::default(),
)
.unwrap();
let session = ml
.cluster(0)
.data
.sessions
.schnorr_signing_sessions
.first()
.unwrap();
ml.loop_until(|| {
session.is_finished()
&& (0..3).all(|i| {
ml.cluster(i)
.data
.sessions
.schnorr_signing_sessions
.is_empty()
})
});
session0.wait().unwrap();
// and try to sign message with generated key using node that has no key share
let signature = sign(Random.generate().unwrap().secret(), &Default::default()).unwrap();
let session2 = ml
.cluster(2)
.client()
.new_schnorr_signing_session(
Default::default(),
signature.into(),
None,
Default::default(),
)
.unwrap();
let session = ml
.cluster(2)
.data
.sessions
.schnorr_signing_sessions
.first()
.unwrap();
ml.loop_until(|| {
session.is_finished()
&& (0..3).all(|i| {
ml.cluster(i)
.data
.sessions
.schnorr_signing_sessions
.is_empty()
})
});
session2.wait().unwrap();
// now remove share from node1
ml.cluster(1)
.data
.config
.key_storage
.remove(&Default::default())
.unwrap();
// and try to sign message with generated key
let signature = sign(Random.generate().unwrap().secret(), &Default::default()).unwrap();
let session1 = ml
.cluster(0)
.client()
.new_schnorr_signing_session(
Default::default(),
signature.into(),
None,
Default::default(),
)
.unwrap();
let session = ml
.cluster(0)
.data
.sessions
.schnorr_signing_sessions
.first()
.unwrap();
ml.loop_until(|| session.is_finished());
session1.wait().unwrap_err();
}
#[test]
fn ecdsa_signing_session_completes_if_node_does_not_have_a_share() {
let _ = ::env_logger::try_init();
let ml = make_clusters(4);
// start && wait for generation session to complete
let session = ml
.cluster(0)
.client()
.new_generation_session(
SessionId::default(),
Default::default(),
Default::default(),
1,
)
.unwrap();
ml.loop_until(|| {
(session.state() == GenerationSessionState::Finished
|| session.state() == GenerationSessionState::Failed)
&& ml
.cluster(0)
.client()
.generation_session(&SessionId::default())
.is_none()
});
assert!(session.joint_public_and_secret().unwrap().is_ok());
// now remove share from node2
assert!((0..3).all(|i| ml.cluster(i).data.sessions.generation_sessions.is_empty()));
ml.cluster(2)
.data
.config
.key_storage
.remove(&Default::default())
.unwrap();
// and try to sign message with generated key
let signature = sign(Random.generate().unwrap().secret(), &Default::default()).unwrap();
let session0 = ml
.cluster(0)
.client()
.new_ecdsa_signing_session(Default::default(), signature.into(), None, H256::random())
.unwrap();
let session = ml
.cluster(0)
.data
.sessions
.ecdsa_signing_sessions
.first()
.unwrap();
ml.loop_until(|| {
session.is_finished()
&& (0..3).all(|i| {
ml.cluster(i)
.data
.sessions
.ecdsa_signing_sessions
.is_empty()
})
});
session0.wait().unwrap();
// and try to sign message with generated key using node that has no key share
let signature = sign(Random.generate().unwrap().secret(), &Default::default()).unwrap();
let session2 = ml
.cluster(2)
.client()
.new_ecdsa_signing_session(Default::default(), signature.into(), None, H256::random())
.unwrap();
let session = ml
.cluster(2)
.data
.sessions
.ecdsa_signing_sessions
.first()
.unwrap();
ml.loop_until(|| {
session.is_finished()
&& (0..3).all(|i| {
ml.cluster(i)
.data
.sessions
.ecdsa_signing_sessions
.is_empty()
})
});
session2.wait().unwrap();
// now remove share from node1
ml.cluster(1)
.data
.config
.key_storage
.remove(&Default::default())
.unwrap();
// and try to sign message with generated key
let signature = sign(Random.generate().unwrap().secret(), &Default::default()).unwrap();
let session1 = ml
.cluster(0)
.client()
.new_ecdsa_signing_session(Default::default(), signature.into(), None, H256::random())
.unwrap();
let session = ml
.cluster(0)
.data
.sessions
.ecdsa_signing_sessions
.first()
.unwrap();
ml.loop_until(|| session.is_finished());
session1.wait().unwrap_err();
}
}