[examples] Reshare over replicated log

[clabby]

Overview

Adds an example for resharing over a replicated log, rather than using a trusted arbiter (a. la. commonware-vrf).

makes progress on #1708 - to also reconfigure after performing a reshare, we'll need to have the epocher example in.

[cloudflare-workers-and-pages]

Deploying monorepo with    Cloudflare Pages

Latest commit:	3c94581
Status:	✅  Deploy successful!
Preview URL:	https://cc148058.monorepo-eu0.pages.dev
Branch Preview URL:	https://cl-reshare-example.monorepo-eu0.pages.dev

View logs

[patrick-ogrady]

The core cryptography is used correctly but suggest a much tighter coupling with block height (will make this much simpler/easier to follow -> we can't be "optimistic" with this, so we shouldn't design the code assuming we want to).

[patrick-ogrady]

We should use commonware_utils::hex?

[patrick-ogrady]

If we need to reach for serde for some reason, we should expand the scope of what utils can do.

[clabby]

commonware_utils::hex / commonware_utils::from_hex are incompatible with serde without additional wrapping. You have to type-erase your hex data as a String, and you end up with something like:

#[derive(Serialize, Deserialize)]
pub struct MySerdeStuff {
    /// A `Public<MinSig>` that's type-erased as a hex string
    pub poly: String,
}

// 2-hop serialization
let poly: Poly<MinSig> = ...;
let t = MySerdeStuff { poly: hex(poly.encode().as_ref()) };
let ser_t = serde_json::to_string(&t);

// ...

// 2-hop deserialization
let deser_t: MySerdeStuff = serde_json::from_string(&ser_t).unwrap();
let poly_bytes = from_hex(&deser_t.poly).unwrap();
let poly = Poly::<MinSig>::decode(&poly_bytes).unwrap();

---

Normally it's common to have some serde feature flags lying around in crates so that you can directly serialize / deserialize without intermediate steps or type erasure, i.e.:

#[derive(Serialize, Deserialize)]
pub struct MySerdeStuff {
    pub poly: Public<MinSig>,
}

let poly: Poly<MinSig> = ...;
let t = MySerdeStuff { poly };

// one-hop serialization
let ser_t = serde_json::to_string(&t);

// one-hop deserialization
let deser_t: MySerdeStuff = serde_json::from_string(&ser_t).unwrap();

See for example how we did it over in kona.

[patrick-ogrady]

I'm tempted to suggest merging this with application because we only ever interact with it (what I've been using as the "gut check" for when an actor should be merged/standalone)?

I think the dkg logic could remain in its own function but seems clearer to have this run inside the application instead of as another actor that is "driven" by blocks?

We can debate tomorrow.

[clabby]

Yeah, could certainly do that. I mainly separated them as a best-practice for the example; Hopefully, we can steer people away from doing expensive computation in the application control loop (soon, that'll be fool proof with the post-coding abstraction.)

Anything that can slow down building (and by virtue, consensus) == bad imo

[clabby]

^ i.e., the way I think about "application" is that it's an incredibly hot control loop; In a well designed CW app, it seems like you should never be able to hold it up for more than ~a few ms (and all computation that's being done there should be critical progress to moving to the next view.)

[patrick-ogrady]

fair retort

[patrick-ogrady]

Looking forward to the actor-less abstraction 👀

[patrick-ogrady]

All I could do before internet cut out. Will keep reviewing.

[patrick-ogrady]

I still don't feel great about this timeout here.

The intention with the consensus-process dropping the response channel when it no longer needed something was to have a clean abstraction for the application to build ASAP whatever it had and then return. If dkg doesn't have a commitment, it should just be able to return no?

[clabby]

dkg::Actor can be doing work when the request for a commitment comes in, and may not be able to immediately return None.

I originally had the work that DkgManager does in a separate thread to make sure that the control loop for the dkg::Actor could always issue snappy responses, though it led to the code being a bit less clear to follow (from your initial review @ #1796 (comment)).

Now, since actions are dispatched inline, it's possible that the reshare process could hold up block building without this timeout.

monorepo/examples/reshare/src/dkg/actor.rs

Lines 279 to 299 in 9aa01bd

	match relative_height.cmp(&(BLOCKS_PER_EPOCH / 2)) {
	Ordering::Less => {
	// Continuously distribute shares to any players who haven't acknowledged
	// receipt yet.
	manager.distribute(epoch).await;
	// Process any incoming messages from other dealers/players.
	manager.process_messages(epoch).await;
	}
	Ordering::Equal => {
	// Process any final messages from other dealers/players.
	manager.process_messages(epoch).await;
	// At the midpoint of the epoch, construct the deal outcome for inclusion.
	manager.construct_deal_outcome(epoch).await;
	}
	Ordering::Greater => {
	// Process any incoming deal outcomes from dealing contributors.
	manager.process_block(epoch, block).await;
	}
	}

[patrick-ogrady]

We need to check this before the re-proposal logic. Otherwise, someone could go right to the last height and re-propose (skipping the inner heights).

[clabby]

If we checked this first, we'd never be able to check the re-propose case.

block.height != parent.height + 1 + block.parent != parent.digest() are always true when re-proposing, which would cause verification to always fail.

Note the order of checks here:

1. If re-proposing (parent commitment == proposed commitment), the block's height must be the last height in the epoch to validate.
2. Else, the block must:
   • Have a height that increases by 1 relative to its parent.
   • Have its parent digest set to the digest of the parent.
   • Be in the same epoch as the round from the consensus Context.

Because you cannot re-propose without building on top of a previously verified parent, and prior to the last height, the standard rules are followed, it should not be possible to skip the inner heights here.

tl;dr - this saves us:

monorepo/examples/reshare/src/application/actor.rs

Line 180 in 9aa01bd

if block.height == get_last_height(round.epoch()) {

[patrick-ogrady]

Given we are changing consensus participants but not peers, I wonder if we should separate this?

[clabby]

Good idea - we can if you'd prefer! Not a huge deal in the example; Easy enough to construct a supervisor for the sake of the P2P resolver that marshal needs.

[patrick-ogrady]

use context's rng?

[clabby]

Is there a way to do seeded RNG with Context? We need this to be pseudo-random so that all participants grab the exact same set of initial players.

[patrick-ogrady]

Given we don't update oracle in subsequent epochs, we should remove the p2p oracle impl from supervisor? (see earlier comment)

[clabby]

#1796 (comment)

[patrick-ogrady]

We should ensure this runs over a few epochs (it may already but just calling out to be sure)

[clabby]

Yeah it does! We've got test_1k that goes over 10 epochs.

[codecov]

Codecov Report

❌ Patch coverage is 58.97436% with 16 lines in your changes missing coverage. Please review.
✅ Project coverage is 92.20%. Comparing base (9c7abdc) to head (3c94581).
⚠️ Report is 3 commits behind head on main.

Files with missing lines	Patch %	Lines
storage/src/store/mod.rs	0.00%	16 Missing ⚠️

@@            Coverage Diff             @@
##             main    #1796      +/-   ##
==========================================
+ Coverage   92.10%   92.20%   +0.09%     
==========================================
  Files         307      308       +1     
  Lines       79648    81273    +1625     
==========================================
+ Hits        73362    74938    +1576     
- Misses       6286     6335      +49     

Files with missing lines	Coverage Δ
consensus/src/threshold_simplex/engine.rs	96.92% <100.00%> (+4.73%)	⬆️
cryptography/src/bls12381/dkg/arbiter.rs	95.58% <ø> (ø)
storage/src/store/mod.rs	88.14% <0.00%> (-2.36%)	⬇️

... and 10 files with indirect coverage changes

---

Continue to review full report in Codecov by Sentry.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 9c7abdc...3c94581. Read the comment docs.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.