Adds a first simple DKG implementations

[nkcr]

Adds a first DKG/Pedersen implementation and improves minogrpc.

• Defines a DKG interface in dkg/
• Implements Pedersen in dkg/pedersen
• Updates minogrpc to only use Enveloppe
• Updates and fixes the tree routing protocol
• Fixes some race conditions with minogrpc
• Updates minogrpc/traffic to display a more accurate representation

More extensive testing will follow.

[nkcr]

For the record, here is an update of the networking flow diagram for the TestRPC_MultipleRingMesh_Stream test where messages flow as:

CLIENT -> NODE1 -> NODE2 -> ... NODE9 -> CLIENT

tree height is set to 4.

[Gilthoniel]

I usually defines a factory if I have to decode a Protobuf message into its implementation. In that case, using a factory is very limiting in the way you instantiate the DKG. For instance, if you want a dummy one that won't need keys, you still have to provide something (sure, that can be nil, but it's for the example). It's ok if each implementation provide its constructor like skipchain or byzcoin is doing.

[Gilthoniel]

For Blockchain and Ledger, I used this abstraction of an actor so that the main interface is called DKG and you have a Listen function that will create a DKGActor. If that makes sense to you, I would prefer keeping the same logic to be consistent.

[nkcr]

I'm always for keeping consistency. And yes, it makes sense!
Like so?

// DKG defines the primitive to start a DKG protocol
type DKG interface {
	Listen(players mino.Players, threshold uint32) (DKG, error)
}

// Actor defines the primitives to use a DKG protocol
type Actor interface {
	Encrypt(message []byte) (K, C kyber.Point, remainder []byte, err error)
	Decrypt(K, C kyber.Point) ([]byte, error)
	Reshare() error
}

[Gilthoniel]

addressFactory for a struct attribute.

[Gilthoniel]

err = <-out.Send(...) as you're listening to one error anyway, so either it's nil or something went wrong.

[Gilthoniel]

You're essentially doing the same thing so you can probably for loop the whole select and remove this one.

[Gilthoniel]

You just need to handle the Decrypt if it hasn't started but you have to do it anyway.

[Gilthoniel]

You'll have to change this anyway when going to real world, so maybe it's the right time to make an API to pass the certificate?

[Gilthoniel]

I would use something more meaningful like LastHop or Relay. Now, is it really necessary ? You're supposed to know the mesh.

[nkcr]

IMO it can't be more explicit than that. LastHop is already speaking at a logical level, where here I want to know who sent me this message, regardless its content.
It is hard to know for a node who sent a message because the listen function receive messages from the orchestrator and the children of a node.

[Gilthoniel]

It should be impossible to receive a message before the routing message, because the relay will open the connection and then directly send the routing message before relaying anything.

[Gilthoniel]

As mentioned earlier, at some point you will need to be able to extract the server certificate (to a file for instance), transmit it to a peer and then populate the peer server with it. From what I see, it shouldn't hard to adapt but as soon as it's done, you won't get more surprises.

[Gilthoniel]

I can't believe I'm the one saying an error message is too short ! But it should slightly more detailed. Why would that happen ?

[nkcr]

Ugh, you're so right! I forgot to update this one.... : /

[Gilthoniel]

When you implement the tests, if you're using minogrpc, it would be nice to make it real in the sense that you don't have access to other servers. I do that with minoch because that's the purpose but a few integration tests with minogrpc are definitely nice.

[nkcr]

it would be nice to make it real in the sense that you don't have access to other servers

Yes that's is already the case in the server_test.go except when I can specify a dynamic number of servers (which happens once).