Milestone 2 #3
Milestone 2 #3
Conversation
|
@scilio any updates on this? |
|
Many thanks for the latest updates! I need to give this all a proper look over as well as try what's there for myself, so will likely be a few days. |
src/secp.rs
Outdated
| let mut h = [0; COM_SIGNATURE_SIZE]; | ||
| for i in 0..cmp::min(v.len(), COM_SIGNATURE_SIZE) { | ||
| h[i] = v[i]; | ||
| pub fn new(pub_nonce: &Commitment, s: &SecretKey, t: &SecretKey) -> ComSignature { |
There was a problem hiding this comment.
nitpick: I think it would be nice to add a brief description of what this does, something along the lines of
P = v*H + r*G # pubkey
# Sign message M with P
R = k1*H + k2*G # Random nonce
e = H(M | P | R) # Compute challenge
s, t = (e*v+k1), (e*r+k2)
sig = (s, t, R) # This is our signature for M
# Verify signature of message M for P given (s, t, R)
e = H(M | P | R) # Compute challenge
e*P + R = s*H + t*G # Verify the equation
I've not checked this actually correctly reflects the code below, just an example of what I had in mind. It may make it easier for someone new reading the code to grasp the underlying idea.
src/secp.rs
Outdated
| let k_2 = SecretKey::new(&secp, &mut thread_rng()); | ||
|
|
||
| let commitment = secp.commit(amount, blind.clone())?; | ||
| let nonce_commitment = secp.commit_blind(k_1.clone(), k_2.clone())?; |
There was a problem hiding this comment.
nitpick: might make sense to rename this to pub_nonce for consistency
|
Very glad to see this moving! I unfortunately won't be able to do a thorough review in the next few days as I'll be away from the computer on which I can test this. So I'll only be going through the code until next week. |
|
I would suggest to write unit tests for the methods, positive tests and negative tests. Also, if taking tests code into separate files it helps to read the code more easily imo. |
| } | ||
|
|
||
| fn real_main() -> std::result::Result<(), Box<dyn std::error::Error>> { | ||
| let yml = load_yaml!("../mwixnet.yml"); |
There was a problem hiding this comment.
maybe ../mwixnet.yml could be store as global constant somewhere else, and use the absolute path instead of relative.
src/main.rs
Outdated
| }; | ||
| let password = args.value_of("pass").ok_or(Error::new(ErrorKind::LoadConfigError))?; |
There was a problem hiding this comment.
what do you think about create a variable for each arguments you could can validate each arguments before using them, and instead use the variable directly?
There was a problem hiding this comment.
Can you give an example?
| wallet_owner_url: SocketAddr, | ||
| } | ||
|
|
||
| /// Writes the server config to the config_path given, encrypting the server_key first. |
There was a problem hiding this comment.
Comment should ideally be spat out in the config file, similar to grin and grin-wallet (can be done later)
src/server.rs
Outdated
| } | ||
|
|
||
| lazy_static! { | ||
| static ref SERVER_STATE: Mutex<Vec<Submission>> = Mutex::new(Vec::new()); | ||
| static ref SERVER_STATE: Mutex<HashMap<Commitment, Submission>> = Mutex::new(HashMap::new()); |
There was a problem hiding this comment.
Is there a plan to serialize this, or store this in disk or somewhere else in memory in case the process needs to be restarted? Or do we just lose all of it if the process dies (I don't have an answer, just wondering). Also, we'll likely need to think about defining some limits here
There was a problem hiding this comment.
Auto recovery from process interruptions seems like a useful function to have. It's only the first node which would really need to save to disk. The others only need to be active when the round is executing, thus won't have multiple hours worth of cache entries. I can do this as a standalone PR between milestones 2 and 3.
I'll add limits and make them configurable. When the limits are hit, shall we just stop accepting swap requests? That's okay, but probably not great. Alternative is to automatically execute the round when the limit is hit. There could be privacy implications of that, but it's effectively what Wasabi does, so there's precedent for it. Do you have a preference?
|
A few specific points that came to mind as I went through it above; note I haven't gone through any encryption/decryption or primitive manipulation code in detail, I know a few others have already focused on it and I'll have a closer look at those specifically as we go. Putting milestones aside, what we seem to have in place at the moment is:
What's there so far seems fine, but unfortunately I think we're still a good way off of having a deployable service here. Aside from the basic plumbing stuff (config, error handling, documentation), the guts of the service, e.g. the sorting/shuffling and the back and forth interactions between the servers is still largely undefined. This is the meat of the service, and given the multi-server nature of it is the part that needs the most engineering consideration, discussion and testing. I know we have a line item that says 'multi-server coming in final milestone', but in my mind this is not a case of 'just add multiple server support and we're done'. This is most of the service and it's still largely outstanding. I know much of this is not your fault, and I'm going to take up the expectations and management of this project up with the rest of the community. I also know that the community has been under-resourced and a little bit inactive in the past, so it may have been difficult to get answers or have discussions. But I think we're getting over this and are starting to see a resumption of activity. So if we're to move forward I would like to see:
|
I think you may be overlooking the several parts which were built for multi-server support. The most obvious example is the onion module, with its creation and peeling logic that tell quite a bit about the roles each server will play. Plenty of thought and discussion went into how that would work, and although we only have the ability to host it on a single server for now, that code is all tested e2e for the multi-server workflow. What's not yet implemented is the passing back-and-forth of matrices, and the short-lived caches necessary to perform the mixing. But these are well-defined and understood, as they've been documented and discussed thoroughly in John's CoinSwap proposal. This comment uses an example to describe the workflow in full detail. I agree that getting the servers working together will not be trivial, but to say that we haven't spent time defining or discussing it is not an accurate statement. I have a very clear vision for what that communication will look like, even if the documentation for it is not yet as organized as we would like. |
|
I'm trying to run it with a testnet node and wallet: This is my config file: encrypted_key = "0212128e04473c1609022a988a84a341594eae46ab4178c4d828667101ba694db11e9a91879d2031282a99c8c5b3ee1c"
salt = "be454ca8543f3439"
nonce = "53067d9b453378aeb784d3f1"
interval_s = 43200
addr = "0.0.0.0:3000"
grin_node_url = "127.0.0.1:13413"
grin_node_secret_path = "/Users/david/.grin/test/.api_secret"
wallet_owner_url = "127.0.0.1:3420"
wallet_owner_secret_path = "/Users/david/.grin/test/.owner_api_secret" |
|
@scilio trying to consume the API without success: I'm running the service like this (changed port to 8990): |
|
@davidtavarez It's working for me: Maybe a firewall issue? Do you see it listening if you run |
There was a problem hiding this comment.
I can confirm I get the same result as @scilio
curl -d '{"jsonrpc": "2.0", "id": 1, "method" : "swap", "params": [{}]}' -H "Content-Type: application/json" -X POST http://127.0.0.1:3000/v1 11:57:56
{"jsonrpc":"2.0","error":{"code":-32602,"message":"Invalid params: missing field `onion`."},"id":1}
Does anyone happen to have code that creates a Swap request for a commitment in the wallet to try this out?
| use std::path::PathBuf; | ||
|
|
||
| const GRIN_HOME: &str = ".grin"; | ||
| const CHAIN_NAME: &str = "main"; |
There was a problem hiding this comment.
I suggest we add an option for testnet config
./mwixnet init-config --testnet
This would also mean changing a bit the ports since the default node port 13414
|
I was able to get it running and take a closer look at the onion wrapping, and I see the changes done for error handling and other engineering concerns, so thank you for all of those updates.
I understand that the protocol and the role of each server has been well discussed and defined, but I'm taking more about the engineering side of things. What happens if the middle or last servers aren't available? What if messages get lost cause a server is down temporarily. Do servers store data in-memory or cache? Are there alerts when one goes down? Are messages retried? How often are they retried? Those sorts of details that take time and effort to finalise. I'm happy to see this merged and appreciate the work done to date. But moving forward, I'll echo again what I said above:
|
I unintentionally deviated from the project plan somewhat.
Milestone 2 was to contain:
Milestone 3 was to contain:
(3a) was implemented in milestone 1 already, which I felt was necessary in order to design the best possible api.
Also, to be sure the code was working correctly, I chose to implement (3c) for a single server in this pull request, without realizing it was part of milestone 3.
Finally, to minimize the review complexity and avoid overwhelming reviewers, I chose not to include (2c) in this pull request.
I'll work with the community council to handle these discrepancies from the PM side, but for review purposes, this PR contains:
This pull request does not include:
Sorry about the confusion 😅