prysm-pulse/beacon-chain/core/blocks/proposer_slashing.go

package blocks

import (
	"context"
	"fmt"

	"github.com/gogo/protobuf/proto"
	"github.com/pkg/errors"
	ethpb "github.com/prysmaticlabs/ethereumapis/eth/v1alpha1"
	"github.com/prysmaticlabs/prysm/beacon-chain/core/helpers"
	v "github.com/prysmaticlabs/prysm/beacon-chain/core/validators"
	iface "github.com/prysmaticlabs/prysm/beacon-chain/state/interface"
	"github.com/prysmaticlabs/prysm/shared/params"
)

// ProcessProposerSlashings is one of the operations performed
// on each processed beacon block to slash proposers based on
// slashing conditions if any slashable events occurred.
//
// Spec pseudocode definition:
//   def process_proposer_slashing(state: BeaconState, proposer_slashing: ProposerSlashing) -> None:
//    header_1 = proposer_slashing.signed_header_1.message
//    header_2 = proposer_slashing.signed_header_2.message
//
//    # Verify header slots match
//    assert header_1.slot == header_2.slot
//    # Verify header proposer indices match
//    assert header_1.proposer_index == header_2.proposer_index
//    # Verify the headers are different
//    assert header_1 != header_2
//    # Verify the proposer is slashable
//    proposer = state.validators[header_1.proposer_index]
//    assert is_slashable_validator(proposer, get_current_epoch(state))
//    # Verify signatures
//    for signed_header in (proposer_slashing.signed_header_1, proposer_slashing.signed_header_2):
//        domain = get_domain(state, DOMAIN_BEACON_PROPOSER, compute_epoch_at_slot(signed_header.message.slot))
//        signing_root = compute_signing_root(signed_header.message, domain)
//        assert bls.Verify(proposer.pubkey, signing_root, signed_header.signature)
//
//    slash_validator(state, header_1.proposer_index)
func ProcessProposerSlashings(
	_ context.Context,
	beaconState iface.BeaconState,
	b *ethpb.SignedBeaconBlock,
) (iface.BeaconState, error) {
	if err := helpers.VerifyNilBeaconBlock(b); err != nil {
		return nil, err
	}

	body := b.Block.Body
	var err error
	for idx, slashing := range body.ProposerSlashings {
		if slashing == nil {
			return nil, errors.New("nil proposer slashings in block body")
		}
		if err = VerifyProposerSlashing(beaconState, slashing); err != nil {
			return nil, errors.Wrapf(err, "could not verify proposer slashing %d", idx)
		}
		beaconState, err = v.SlashValidator(
			beaconState, slashing.Header_1.Header.ProposerIndex,
		)
		if err != nil {
			return nil, errors.Wrapf(err, "could not slash proposer index %d", slashing.Header_1.Header.ProposerIndex)
		}
	}
	return beaconState, nil
}

// VerifyProposerSlashing verifies that the data provided from slashing is valid.
func VerifyProposerSlashing(
	beaconState iface.BeaconState,
	slashing *ethpb.ProposerSlashing,
) error {
	if slashing.Header_1 == nil || slashing.Header_1.Header == nil || slashing.Header_2 == nil || slashing.Header_2.Header == nil {
		return errors.New("nil header cannot be verified")
	}
	hSlot := slashing.Header_1.Header.Slot
	if hSlot != slashing.Header_2.Header.Slot {
		return fmt.Errorf("mismatched header slots, received %d == %d", slashing.Header_1.Header.Slot, slashing.Header_2.Header.Slot)
	}
	pIdx := slashing.Header_1.Header.ProposerIndex
	if pIdx != slashing.Header_2.Header.ProposerIndex {
		return fmt.Errorf("mismatched indices, received %d == %d", slashing.Header_1.Header.ProposerIndex, slashing.Header_2.Header.ProposerIndex)
	}
	if proto.Equal(slashing.Header_1.Header, slashing.Header_2.Header) {
		return errors.New("expected slashing headers to differ")
	}
	proposer, err := beaconState.ValidatorAtIndexReadOnly(slashing.Header_1.Header.ProposerIndex)
	if err != nil {
		return err
	}
	if !helpers.IsSlashableValidatorUsingTrie(proposer, helpers.CurrentEpoch(beaconState)) {
		return fmt.Errorf("validator with key %#x is not slashable", proposer.PublicKey())
	}
	headers := []*ethpb.SignedBeaconBlockHeader{slashing.Header_1, slashing.Header_2}
	for _, header := range headers {
		if err := helpers.ComputeDomainVerifySigningRoot(beaconState, pIdx, helpers.SlotToEpoch(hSlot),
			header.Header, params.BeaconConfig().DomainBeaconProposer, header.Signature); err != nil {
			return errors.Wrap(err, "could not verify beacon block header")
		}
	}
	return nil
}
Split `block_operations.go` into smaller files (#6495) 2020-07-06 22:27:42 +00:00			`package blocks`

			`import (`
			`"context"`
			`"fmt"`

			`"github.com/gogo/protobuf/proto"`
			`"github.com/pkg/errors"`
			`ethpb "github.com/prysmaticlabs/ethereumapis/eth/v1alpha1"`
			`"github.com/prysmaticlabs/prysm/beacon-chain/core/helpers"`
			`v "github.com/prysmaticlabs/prysm/beacon-chain/core/validators"`
Use beacon state interfaces across (#8552) 2021-03-08 22:37:33 +00:00			`iface "github.com/prysmaticlabs/prysm/beacon-chain/state/interface"`
			`"github.com/prysmaticlabs/prysm/shared/params"`
Split `block_operations.go` into smaller files (#6495) 2020-07-06 22:27:42 +00:00			`)`

			`// ProcessProposerSlashings is one of the operations performed`
			`// on each processed beacon block to slash proposers based on`
			`// slashing conditions if any slashable events occurred.`
			`//`
			`// Spec pseudocode definition:`
			`// def process_proposer_slashing(state: BeaconState, proposer_slashing: ProposerSlashing) -> None:`
Update specs comments (#8750) Co-authored-by: Preston Van Loon <preston@prysmaticlabs.com> Co-authored-by: prylabs-bulldozer[bot] <58059840+prylabs-bulldozer[bot]@users.noreply.github.com> 2021-04-13 05:35:22 +00:00			`// header_1 = proposer_slashing.signed_header_1.message`
			`// header_2 = proposer_slashing.signed_header_2.message`
			`//`
			`// # Verify header slots match`
			`// assert header_1.slot == header_2.slot`
			`// # Verify header proposer indices match`
			`// assert header_1.proposer_index == header_2.proposer_index`
			`// # Verify the headers are different`
			`// assert header_1 != header_2`
			`// # Verify the proposer is slashable`
			`// proposer = state.validators[header_1.proposer_index]`
Split `block_operations.go` into smaller files (#6495) 2020-07-06 22:27:42 +00:00			`// assert is_slashable_validator(proposer, get_current_epoch(state))`
Update specs comments (#8750) Co-authored-by: Preston Van Loon <preston@prysmaticlabs.com> Co-authored-by: prylabs-bulldozer[bot] <58059840+prylabs-bulldozer[bot]@users.noreply.github.com> 2021-04-13 05:35:22 +00:00			`// # Verify signatures`
			`// for signed_header in (proposer_slashing.signed_header_1, proposer_slashing.signed_header_2):`
			`// domain = get_domain(state, DOMAIN_BEACON_PROPOSER, compute_epoch_at_slot(signed_header.message.slot))`
			`// signing_root = compute_signing_root(signed_header.message, domain)`
			`// assert bls.Verify(proposer.pubkey, signing_root, signed_header.signature)`
Split `block_operations.go` into smaller files (#6495) 2020-07-06 22:27:42 +00:00			`//`
Update specs comments (#8750) Co-authored-by: Preston Van Loon <preston@prysmaticlabs.com> Co-authored-by: prylabs-bulldozer[bot] <58059840+prylabs-bulldozer[bot]@users.noreply.github.com> 2021-04-13 05:35:22 +00:00			`// slash_validator(state, header_1.proposer_index)`
Split `block_operations.go` into smaller files (#6495) 2020-07-06 22:27:42 +00:00			`func ProcessProposerSlashings(`
Various code inspection resolutions (#7438) * remove unused code * remove defer use in loop * Remove unused methods and constants * gofmt and gaz * nilness check * remove unused args * Add TODO for refactoring subscribeWithBase to remove unused arg. It seems too involved to include in this sweeping PR. https://github.com/prysmaticlabs/prysm/issues/7437 * replace empty slice declaration * Remove unnecessary type conversions * remove redundant type declaration * rename receivers to be consistent * Remove bootnode query tool. It is now obsolete by discv5 * Remove relay node. It is no longer used or supported * Revert "Remove relay node. It is no longer used or supported" This reverts commit 4bd7717334dad85ef4766ed9bc4da711fb5fa810. * Delete unused test directory * Delete unsupported gcp startup script * Delete old k8s script * build fixes * fix build * go mod tidy * revert slasher/db/kv/block_header.go * fix build * remove redundant nil check * combine func args Co-authored-by: prylabs-bulldozer[bot] <58059840+prylabs-bulldozer[bot]@users.noreply.github.com> Co-authored-by: Victor Farazdagi <simple.square@gmail.com> 2020-10-12 08:11:05 +00:00			`_ context.Context,`
Use beacon state interfaces across (#8552) 2021-03-08 22:37:33 +00:00			`beaconState iface.BeaconState,`
Update `ProcessBlock` to use a pipeline (#7148) 2020-09-01 01:29:27 +00:00			`b *ethpb.SignedBeaconBlock,`
Use beacon state interfaces across (#8552) 2021-03-08 22:37:33 +00:00			`) (iface.BeaconState, error) {`
Verify nil block helper (#8447) 2021-02-15 15:11:25 +00:00			`if err := helpers.VerifyNilBeaconBlock(b); err != nil {`
			`return nil, err`
Update `ProcessBlock` to use a pipeline (#7148) 2020-09-01 01:29:27 +00:00			`}`

			`body := b.Block.Body`
Split `block_operations.go` into smaller files (#6495) 2020-07-06 22:27:42 +00:00			`var err error`
			`for idx, slashing := range body.ProposerSlashings {`
			`if slashing == nil {`
			`return nil, errors.New("nil proposer slashings in block body")`
			`}`
			`if err = VerifyProposerSlashing(beaconState, slashing); err != nil {`
			`return nil, errors.Wrapf(err, "could not verify proposer slashing %d", idx)`
			`}`
			`beaconState, err = v.SlashValidator(`
			`beaconState, slashing.Header_1.Header.ProposerIndex,`
			`)`
			`if err != nil {`
			`return nil, errors.Wrapf(err, "could not slash proposer index %d", slashing.Header_1.Header.ProposerIndex)`
			`}`
			`}`
			`return beaconState, nil`
			`}`

			`// VerifyProposerSlashing verifies that the data provided from slashing is valid.`
			`func VerifyProposerSlashing(`
Use beacon state interfaces across (#8552) 2021-03-08 22:37:33 +00:00			`beaconState iface.BeaconState,`
Split `block_operations.go` into smaller files (#6495) 2020-07-06 22:27:42 +00:00			`slashing *ethpb.ProposerSlashing,`
			`) error {`
			`if slashing.Header_1 == nil \|\| slashing.Header_1.Header == nil \|\| slashing.Header_2 == nil \|\| slashing.Header_2.Header == nil {`
			`return errors.New("nil header cannot be verified")`
			`}`
Add a `ComputeDomainVerifySigningRoot` helper (#6743) * Add ComputeDomainVerifySigningRoot * Update validate aggregate proof signatures to use it * Update verify proposer slashing to use it * Update test to use it * Merge branch 'master' into domain-and-signingroot * Quick fix on test * Merge branch 'domain-and-signingroot' of github.com:prysmaticlabs/prysm into domain-and-signingroot * Merge branch 'master' of github.com:prysmaticlabs/prysm into domain-and-signingroot * Merge refs/heads/master into domain-and-signingroot * Merge refs/heads/master into domain-and-signingroot 2020-07-28 16:49:47 +00:00			`hSlot := slashing.Header_1.Header.Slot`
			`if hSlot != slashing.Header_2.Header.Slot {`
Split `block_operations.go` into smaller files (#6495) 2020-07-06 22:27:42 +00:00			`return fmt.Errorf("mismatched header slots, received %d == %d", slashing.Header_1.Header.Slot, slashing.Header_2.Header.Slot)`
			`}`
Add a `ComputeDomainVerifySigningRoot` helper (#6743) * Add ComputeDomainVerifySigningRoot * Update validate aggregate proof signatures to use it * Update verify proposer slashing to use it * Update test to use it * Merge branch 'master' into domain-and-signingroot * Quick fix on test * Merge branch 'domain-and-signingroot' of github.com:prysmaticlabs/prysm into domain-and-signingroot * Merge branch 'master' of github.com:prysmaticlabs/prysm into domain-and-signingroot * Merge refs/heads/master into domain-and-signingroot * Merge refs/heads/master into domain-and-signingroot 2020-07-28 16:49:47 +00:00			`pIdx := slashing.Header_1.Header.ProposerIndex`
			`if pIdx != slashing.Header_2.Header.ProposerIndex {`
Split `block_operations.go` into smaller files (#6495) 2020-07-06 22:27:42 +00:00			`return fmt.Errorf("mismatched indices, received %d == %d", slashing.Header_1.Header.ProposerIndex, slashing.Header_2.Header.ProposerIndex)`
			`}`
Check that the headers are equal while ignoring the signature for proposer slashings (#7252) * Check that the headers are equal while ignoring the signature for proposer slashings. Resolves https://github.com/sigp/beacon-fuzz/issues/74 * fix test Co-authored-by: prylabs-bulldozer[bot] <58059840+prylabs-bulldozer[bot]@users.noreply.github.com> 2020-09-18 09:10:14 +00:00			`if proto.Equal(slashing.Header_1.Header, slashing.Header_2.Header) {`
Split `block_operations.go` into smaller files (#6495) 2020-07-06 22:27:42 +00:00			`return errors.New("expected slashing headers to differ")`
			`}`
			`proposer, err := beaconState.ValidatorAtIndexReadOnly(slashing.Header_1.Header.ProposerIndex)`
			`if err != nil {`
			`return err`
			`}`
Fuzz: sigp/beaconfuzz#91 (#7725) 2020-11-04 14:05:48 +00:00			`if !helpers.IsSlashableValidatorUsingTrie(proposer, helpers.CurrentEpoch(beaconState)) {`
Split `block_operations.go` into smaller files (#6495) 2020-07-06 22:27:42 +00:00			`return fmt.Errorf("validator with key %#x is not slashable", proposer.PublicKey())`
			`}`
			`headers := []*ethpb.SignedBeaconBlockHeader{slashing.Header_1, slashing.Header_2}`
			`for _, header := range headers {`
Add a `ComputeDomainVerifySigningRoot` helper (#6743) * Add ComputeDomainVerifySigningRoot * Update validate aggregate proof signatures to use it * Update verify proposer slashing to use it * Update test to use it * Merge branch 'master' into domain-and-signingroot * Quick fix on test * Merge branch 'domain-and-signingroot' of github.com:prysmaticlabs/prysm into domain-and-signingroot * Merge branch 'master' of github.com:prysmaticlabs/prysm into domain-and-signingroot * Merge refs/heads/master into domain-and-signingroot * Merge refs/heads/master into domain-and-signingroot 2020-07-28 16:49:47 +00:00			`if err := helpers.ComputeDomainVerifySigningRoot(beaconState, pIdx, helpers.SlotToEpoch(hSlot),`
			`header.Header, params.BeaconConfig().DomainBeaconProposer, header.Signature); err != nil {`
Split `block_operations.go` into smaller files (#6495) 2020-07-06 22:27:42 +00:00			`return errors.Wrap(err, "could not verify beacon block header")`
			`}`
			`}`
			`return nil`
			`}`