Skip to content

chainlocks: Implement Multi-Quorum ChainLocks #4016

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
UdjinM6 wants to merge 20 commits into from
Closed

chainlocks: Implement Multi-Quorum ChainLocks #4016

UdjinM6 wants to merge 20 commits into from

Conversation

@UdjinM6
Copy link

@UdjinM6 UdjinM6 commented Feb 24, 2021
edited
Loading

This PR is a Proof of Concept for the Multi-Quorum ChainLocks idea. To be merged after corresponding DIP8 modifications only.

The main idea is to let all active ChainLock quorums create new CLSIG messages at every block and to require the majority of these quorums to vote for the same hash to actually lock the chain. Unlike in current system, having a malicious quorum will no longer be enough to disrupt ChainLocks (see tests as an example where 3 honest quorums override the "fake" ChainLock produced by a malicious quorum).

The new mode is activated by setting SPORK_19_CHAINLOCKS_ENABLED to 1. This PR changes CLSIG structure, bumps protocol version to 70220, introduces new rpc getchainlocks , deprecates getbestchainlock (as less functional and more confusing in new mode), tweaks test quorum params and related tests accordingly. Please see individual commits.

Based on #3978 atm.

@UdjinM6 UdjinM6 added the RPC Some notable changes to RPC params/behaviour/descriptions label Feb 24, 2021
@UdjinM6 UdjinM6 added this to the 17 milestone Feb 24, 2021
@sidhujag
Copy link

sidhujag commented Feb 24, 2021
edited
Loading

Interesting...

So today because the height is committed to the randomization to choose the quorum to sign on a CLSIG essentially you have 1/N chance of achieving the next chainlock, which would end up causing the chain to have to progress from that locked chain, however they would again only have 1/N chance of progressing with a subsequent chainlock.

This would add a M of N threshold to require majority of nodes within all the quorums in the chainlock quorum to agree on the state of the chain tip right?

Since the llmq400_60 is 240/400 and there are 4 quorums active at any time(just like your new llmq_test) it would effectively require 3/4 quorums to agree on a chainlock for it to succeed (75% threshold to achieve majority)

sidhujag
sidhujag reviewed Feb 24, 2021
View reviewed changes
@UdjinM6
Copy link
Author

UdjinM6 commented Feb 24, 2021
edited
Loading

This would add a M of N threshold to require majority of nodes within all the quorums in the chainlock quorum to agree on the state of the chain tip right?

@sidhujag tl;dr: it's a tweak of the usual CLSIG creation process to let other quorums vote too. Each quorum would produce its own CLSIG though, so there is another step on top of it to check that majority of CLSIGs (number of active quorums/2 + 1) were created for the same hash at a given height. This basically allows you to increase MN participation and protects against a malicious quorum without introducing new larger quorums or doing some kind of inter-quorum signing.

@UdjinM6 UdjinM6 force-pushed the multi_stage_cl branch 2 times, most recently from 1732e01 to 6bbcc56 Compare February 26, 2021 11:16
@UdjinM6 UdjinM6 mentioned this pull request Feb 26, 2021
Closed
@xdustinface xdustinface mentioned this pull request Feb 28, 2021
Merged
@UdjinM6 UdjinM6 force-pushed the multi_stage_cl branch 8 times, most recently from d8ad0e2 to c4735c6 Compare March 7, 2021 01:01
@UdjinM6 UdjinM6 force-pushed the multi_stage_cl branch 5 times, most recently from 46adf03 to fa365e1 Compare March 11, 2021 22:13
@UdjinM6 UdjinM6 added the P2P Some notable changes on p2p level label Mar 11, 2021
@UdjinM6 UdjinM6 force-pushed the multi_stage_cl branch 3 times, most recently from 914fd6b to 670e7e3 Compare March 13, 2021 11:17
@kwvg kwvg mentioned this pull request Mar 14, 2021
Merged
@UdjinM6 UdjinM6 mentioned this pull request Mar 15, 2021
Merged
@UdjinM6 UdjinM6 force-pushed the multi_stage_cl branch 3 times, most recently from 9e9fa1c to 8886ff2 Compare May 5, 2021 18:19
UdjinM6 added 19 commits May 13, 2021 12:34
@UdjinM6
chainlocks|tests: Rely more on clsigs with known blocks instead of pu…
240926d 
…re clsigs when it makes sense

A malicious quorum can sign a clsig with some (random) hash and some future height. This will basically disable clsig logic for all heights up to that future one without actually locking the chain. Note that the best known clsig with a known block is not affected by the issue, no conflicts below that block are allowed. Using the best clsig with a known block instead of a pure best clsig (with no known blocks) fixes the issue.

tests: See if a fake clsig can stop us from creating/relaying/accepting new legit clsigs

test: Just some python styling
@UdjinM6
tests: Bump signingActiveQuorumCount for llmq_test to 4
38ffc7f 
and keepOldConnections to 5, respectively
@UdjinM6
refactor: Minimal refactoring/changes while preparing to Multi-Quorum…
b82d8e6 
… ChainLocks
@UdjinM6
chainlocks: Implement Multi-Quorum ChainLocks
7dc166c
@UdjinM6
chainlocks: Pass reconstructed recovery sigs to to the signing manager
1e712fa
@UdjinM6
rpc: Implement getchainlocks
9439929
@UdjinM6
Bump PROTOCOL_VERSION and MIN_MASTERNODE_PROTO_VERSION to 70220
9a20ca4
@UdjinM6
tests: Implement tests for Multi-Quorum ChainLocks
117314d
@UdjinM6
tests: bump MY_VERSION, adjust msg_clsig and feature_llmq_chainlocks.py
7d70372
@UdjinM6
rpc: Deprecate getbestchainlock
8ee6ab8
@UdjinM6
chainlocks: Make signing more robust
56f4856 
Specifically:
- Queue quorums instead of signing at the same time
- Wait for the "previous" quorum to sign first (for some time)
- Look deeper and sign anyway if "previous" quorums are silent
- Prefer signing the same tip as the "previous" quorum did if there is a choice
@UdjinM6
chainlocks: Do not allow invalid <signers>, do not hash it for old fo…
8450f12 
…rmat
@UdjinM6
chainlocks: Implement and use CLSIGMQ p2p message for multi-quorum CLs
500c31a
@UdjinM6
Relay partial CLSIGs via IQR
b210d94
@UdjinM6
Try signing the tip once a new partial CLSIG is processed successfully
32943bd
@UdjinM6
Fix compilation
b4e92dc
@UdjinM6
Make linter happy
e758aeb
@UdjinM6
Reset TrySignChainTip() state if a better chainlock is received
fa3cc88
@UdjinM6
Implement SigningState to ensure consistency in attempt vs `lastSig…
a7d90db 
…nedHeight` relationship and make `TrySignChainTip` thread-safe
sidhujag
sidhujag reviewed May 13, 2021
View reviewed changes
@github-actions
Copy link

github-actions bot commented Jul 16, 2021

This pull request has conflicts, please rebase.

@UdjinM6 UdjinM6 closed this Apr 16, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@sidhujag sidhujag sidhujag left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

needs rebase P2P Some notable changes on p2p level RPC Some notable changes to RPC params/behaviour/descriptions

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@UdjinM6 @sidhujag @PastaPastaPasta