signer interface for validators

2025-06-22 09:21:32 +00:00 · 2015-11-05 02:09:43 +02:00
parent c3a8f202ab
commit 28ec3d48fa
4 changed files with 54 additions and 20 deletions
--- a/node/node.go
+++ b/node/node.go
@ -41,7 +41,15 @@ type Node struct {
 	privKey          crypto.PrivKeyEd25519
 }

-func NewNode() *Node {
+func NewNodeDefaultPrivVal() *Node {
+	// Get PrivValidator
+	privValidatorFile := config.GetString("priv_validator_file")
+	privValidator := types.LoadOrGenPrivValidator(privValidatorFile)
+
+	return NewNode(privValidator)
+}
+
+func NewNode(privValidator *types.PrivValidator) *Node {
 	// Get BlockStore
 	blockStoreDB := dbm.GetDB("blockstore")
 	blockStore := bc.NewBlockStore(blockStoreDB)
@ -58,10 +66,6 @@ func NewNode() *Node {
 	// add the chainid to the global config
 	config.Set("chain_id", state.ChainID)

-	// Get PrivValidator
-	privValidatorFile := config.GetString("priv_validator_file")
-	privValidator := types.LoadOrGenPrivValidator(privValidatorFile)
-
 	// Generate node PrivKey
 	privKey := crypto.GenPrivKeyEd25519()

@ -249,6 +253,9 @@ func makeNodeInfo(sw *p2p.Switch, privKey crypto.PrivKeyEd25519) *p2p.NodeInfo {

 //------------------------------------------------------------------------------

+// Users wishing to use an external signer for their validators
+// should fork tendermint/tendermint and implement RunNode to
+// load their custom priv validator and call NewNode(privVal)
 func RunNode() {

 	// Wait until the genesis doc becomes available
@ -274,7 +281,7 @@ func RunNode() {
 	}

 	// Create & start node
-	n := NewNode()
+	n := NewNodeDefaultPrivVal()
 	l := p2p.NewDefaultListener("tcp", config.GetString("node_laddr"), config.GetBool("skip_upnp"))
 	n.AddListener(l)
 	err := n.Start()
--- a/node/node_test.go
+++ b/node/node_test.go
@ -24,7 +24,7 @@ func TestNodeStartStop(t *testing.T) {
 	time.Sleep(time.Second * 2)

 	// Create & start node
-	n := NewNode()
+	n := NewNodeDefaultPrivVal()
 	l := p2p.NewDefaultListener("tcp", config.GetString("node_laddr"), config.GetBool("skip_upnp"))
 	n.AddListener(l)
 	n.Start()
--- a/types/priv_validator.go
+++ b/types/priv_validator.go
@ -37,17 +37,46 @@ func voteToStep(vote *Vote) int8 {
 type PrivValidator struct {
 	Address    []byte               `json:"address"`
 	PubKey     crypto.PubKeyEd25519 `json:"pub_key"`
-	PrivKey    crypto.PrivKeyEd25519 `json:"priv_key"`
 	LastHeight int                  `json:"last_height"`
 	LastRound  int                  `json:"last_round"`
 	LastStep   int8                 `json:"last_step"`

+	// PrivKey should be empty if a Signer other than the default is being used.
+	PrivKey crypto.PrivKeyEd25519 `json:"priv_key"`
+	signer  Signer
+
 	// For persistence.
 	// Overloaded for testing.
 	filePath string
 	mtx      sync.Mutex
 }

+// XXX: This is used to sign votes.
+// It is the caller's duty to verify the msg before calling Sign,
+// eg. to avoid double signing.
+// Currently, the only callers are SignVote and SignProposal
+type Signer interface {
+	Sign(msg []byte) crypto.SignatureEd25519
+}
+
+// Implements Signer
+type DefaultSigner struct {
+	priv crypto.PrivKeyEd25519
+}
+
+func NewDefaultSigner(priv crypto.PrivKeyEd25519) *DefaultSigner {
+	return &DefaultSigner{priv: priv}
+}
+
+// Implements Signer
+func (ds *DefaultSigner) Sign(msg []byte) crypto.SignatureEd25519 {
+	return ds.priv.Sign(msg).(crypto.SignatureEd25519)
+}
+
+func (privVal *PrivValidator) SetSigner(s Signer) {
+	privVal.signer = s
+}
+
 // Generates a new validator with private key.
 func GenPrivValidator() *PrivValidator {
 	privKeyBytes := new([64]byte)
@ -63,6 +92,7 @@ func GenPrivValidator() *PrivValidator {
 		LastRound:  0,
 		LastStep:   stepNone,
 		filePath:   "",
+		signer:     NewDefaultSigner(privKey),
 	}
 }

@ -76,6 +106,7 @@ func LoadPrivValidator(filePath string) *PrivValidator {
 		Exit(Fmt("Error reading PrivValidator from %v: %v\n", filePath, err))
 	}
 	privVal.filePath = filePath
+	privVal.signer = NewDefaultSigner(privVal.PrivKey)
 	return privVal
 }

@ -145,14 +176,10 @@ func (privVal *PrivValidator) SignVote(chainID string, vote *Vote) error {
 	privVal.save()

 	// Sign
-	privVal.SignVoteUnsafe(chainID, vote)
+	vote.Signature = privVal.signer.Sign(SignBytes(chainID, vote))
 	return nil
 }

-func (privVal *PrivValidator) SignVoteUnsafe(chainID string, vote *Vote) {
-	vote.Signature = privVal.PrivKey.Sign(SignBytes(chainID, vote)).(crypto.SignatureEd25519)
-}
-
 func (privVal *PrivValidator) SignProposal(chainID string, proposal *Proposal) error {
 	privVal.mtx.Lock()
 	defer privVal.mtx.Unlock()
@ -167,7 +194,7 @@ func (privVal *PrivValidator) SignProposal(chainID string, proposal *Proposal) e
 		privVal.save()

 		// Sign
-		proposal.Signature = privVal.PrivKey.Sign(SignBytes(chainID, proposal)).(crypto.SignatureEd25519)
+		proposal.Signature = privVal.signer.Sign(SignBytes(chainID, proposal))
 		return nil
 	} else {
 		return errors.New(fmt.Sprintf("Attempt of duplicate signing of proposal: Height %v, Round %v", proposal.Height, proposal.Round))
--- a/types/vote_set_test.go
+++ b/types/vote_set_test.go
@ -60,7 +60,7 @@ func withBlockPartsHeader(vote *Vote, blockPartsHeader PartSetHeader) *Vote {
 }

 func signAddVote(privVal *PrivValidator, vote *Vote, voteSet *VoteSet) (bool, error) {
-	privVal.SignVoteUnsafe(config.GetString("chain_id"), vote)
+	vote.Signature = privVal.signer.Sign(SignBytes(config.GetString("chain_id"), vote))
 	added, _, err := voteSet.AddByAddress(privVal.Address, vote)
 	return added, err
 }