Raft Block Signature #395
Raft Block Signature #395
Conversation
…ckend; changed comparison of pubkeys to compare big.Int values; other minor fixes for test compilation
…naming changes for readability
…signature; Adjusted test
|
Thanks @dbryan0516! This was a todo for us, can you please complete the CLA and email it to [email protected]. |
|
Hey @jpmsam, I just sent it in! |
|
@jpmsam CLA received |
|
Hi @dbryan0516, thanks for submitting this! The biggest question I have is why does the signature use the raft ID? I'd expect it to use the enode id. |
|
@joelburget thanks for the review, the reason we chose to encode the Raft ID into the extraData structure instead of the enode ID is that it felt redundant to include the enode ID because you can already recover the proposer's address from the signature itself, which is functionally equivalent to the enode ID. On the other hand, the proposer's Raft ID is otherwise non-existent on the chain itself, so doing this provides a strong binding b/w the node and the Raft cluster. This could be useful in situations like forensic investigation to trace activities from the Raft cluster logs to the blockchain, and vice versa. |
|
Hi @jimthematrix -- thanks for the explanation. I'll think about it and get back to you in a day or two. |
|
Is there something blocking/preventing this from being merged? |
|
@dbryan0516 hey, were still reviewing this pull and will decide on the best path forward for raft signing after next release which is coming shortly. |
|
Made those requested changes for optimizing imports and changing the pointer logic |
|
Thanks @dbryan0516 and @jimthematrix for your work and contribution! |
This Pull Request implements block signing for the raft consensus protocol. Currently, any node could cheat by rewriting a block and re-build the chain from that block onward, in its local copy of the chain, and there's no telling that cheating has occurred and which node has the original copy. By implementing block signing, no follower nodes would be able to rewrite the content because they don't have the leader's nodeKey
This is implemented similarly to clique, where a 32-byte vanity and a seal is added to the extraData header field. During block creation, the raft ID of the leader is combined with the leader's signature of the block in a struct, which is then rlp encoded for storage into the extraData field after the vanity.
For the signing to work, the nodeKey needs to be passed further along to the minter. This is possible by adding a nodeKey field to the raftService and changing the backend type of the minter to the more specific raftService struct, similar to clique and IBFT.