Enhanced offset creation #407
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Ready for review with all tests passing and compatibility tested with 3.0.0 wallets. |
tromp
reviewed
May 14, 2020
tromp
reviewed
May 14, 2020
libwallet/src/internal/selection.rs
Outdated
| // it will be adjusted when we add inputs | ||
| 0 => BlindingFactor::zero(), | ||
| _ => slate.add_transaction_elements(keychain, &ProofBuilder::new(keychain), elems)?, | ||
| }; |
There was a problem hiding this comment.
Why can't we pass empty elems to add_transaction_elements() ? (which I would also expect to yield BlindingFactor::zero())
There was a problem hiding this comment.
Yes, I can move the check into add_transaction_elements, but the fundamental issue is the build module (contained in grin core) throws the error if elems is empty. The build library is some of the the oldest untouched part of the code and could perhaps do with another revision at some stage.
tromp
reviewed
May 14, 2020
| parts.push(build::coinbase_input(coin.value, coin.key_id.clone())); | ||
| } else { | ||
| parts.push(build::input(coin.value, coin.key_id.clone())); | ||
| } |
There was a problem hiding this comment.
This code suggests a method build::input(value, key_id, is_coinbase) to replace the current tow ?!
There was a problem hiding this comment.
Similar to above, this is in the core tx build lib and could stand some revision (but after HF3)
tromp
reviewed
May 14, 2020
| self.generate_offset(keychain, sec_key, use_test_rng)?; | ||
| } | ||
| // Always choose my part of the offset, and subtract from my excess | ||
| if self.is_compact() { |
There was a problem hiding this comment.
Avoid repeating tests by
if !self.is_compact() {
if self.participant_data.len() == 0 {
}
} else {
}
Btw, is there no method self.participant_data.is_empty() ? comparing len() with 0 looks ugly...
There was a problem hiding this comment.
The logic is split here to allow for quick and easy deletion of 3.0.0 compatibility code once HF3 is behind us. There's a lot of this sprinkled around the code, it will be gone shortly after 4.0.0 is released.
tromp
reviewed
May 14, 2020
| @@ -514,7 +518,7 @@ impl Slate { | |||
| // Generate a random kernel offset here | |||
| // and subtract it from the blind_sum so we create | |||
| // the aggsig context with the "split" key | |||
| self.tx_or_err_mut()?.offset = match use_test_rng { | |||
| let my_offset = match use_test_rng { | |||
There was a problem hiding this comment.
can't this be written as an if then else ? or doesn't that work at expression level?
There was a problem hiding this comment.
Stylistic choice, I tend to prefer match statements over if-else (particularly when the block is returning a value) because I find there's less tendency for them to get confused once logic starts expanding
tromp
reviewed
May 14, 2020
| .add_blinding_factor(self.offset.clone()) | ||
| .add_blinding_factor(my_offset.clone()), | ||
| )?; | ||
| self.offset = total_offset; |
There was a problem hiding this comment.
is there no more compact way to express self.offset += my_offset ?
This looks awfully convoluted
There was a problem hiding this comment.
No in the current code, but yes it's possible to implement operator traits to support this syntax. Again this is up in old portions of the grin Keychain code so a revision to the library could be done at a later date.
tromp
reviewed
May 14, 2020
libwallet/src/slate.rs
Outdated
| if slate.offset != BlindingFactor::zero() { | ||
| tx.offset = slate.offset.clone() | ||
| if slate.off != BlindingFactor::zero() { | ||
| tx.offset = slate.off.clone() |
There was a problem hiding this comment.
What's the rationale for testing against zero? Is tx.offset already set to a nonzero value if slate.off == zero?
There was a problem hiding this comment.
Left over from an earlier iteration, thanks for spotting.
tromp
reviewed
May 14, 2020
libwallet/src/slate_versions/v4.rs
Outdated
| @@ -34,7 +34,8 @@ | |||
| //! * The `payment_proof` struct is renamed to `proof` | |||
| //! * The feat_args struct is added, which may be populated for non-Plain kernels | |||
| //! * `proof` may be omitted from the slate if it is None (null), | |||
| //! * `offset` is added, which may be optionally included during S3 and I3 to ensure the transaction can be re-built entirely from the slate information. Used for delayed transaction posting. | |||
| //! * `off` (offset) is added, and will be modified by every participant in the transaction with a random | |||
| //! value - the value of their inputs | |||
There was a problem hiding this comment.
not the value of their inputs, but their blinding factor.
|
I didn't notice anything wrong, but then I only looked at the surface level, lacking any detailed understanding of the code. My review then is that the changes all look plausible. |
antiochp
approved these changes
May 16, 2020
Indeed it does, but I've tried to mark off and isolate any bits of code that can be removed after HF3, so hopefully this will become a lot cleaner. |
This was referenced May 18, 2020
yeastplume
added a commit
that referenced
this pull request
May 19, 2020
* Add support for sending compact slates (#366) * WIP add support for sending compact slates * add repopulate_tx function to internal API * first pass at compacted slate working * move slate compaction to separate function * test fixes * support compact slate inits in invoice workflow * add compress flags to send and invoice * attempting to remove is_compact and assume all V4 slates begin as compact * attempting to calculate offsets when full tx data isn't available * update calc_commit to use participant blind data * update doctests for compact slates * start to remove unneeded fields from serialization * make num_participants optional * remove other_version from slate * use grin master branch * remove message field * lock height assumed to be 0 if it doesn't exist * don't serialise receiver signature when null * don't serialize payment_info if not needed * remove participant id from participant info * add note on id field * fix finalize and receive doctests * finalize_tx tests, init_send_tx tests * doctests for process_invoice_tx, retrieve_tx, tx_lock_outputs * finished test changes * update from grin master * rebuild PR from diff (#380) * recreate PR from diff (#381) * serialize tx struct into top level coms object (#382) * remove height (#383) * Add State Slate (#384) * add state field to slate and SlateV4 * set slate state at each transaction stage, add check to tests * serialize slate status properly * V4 Slate field tweaks (#386) * various tweaks to V4 slate * field renaming * serialize slate v4 ID as base64 (#387) * remove amount and fee where not needed (#388) * Final Changes for compact Slate (#389) * add tests for all types of file output, remove message args * default range proof serialization * shorten output features serialization * rename payment proof fields in slate v4 * v4 payment proof serialization * Binary Slates (#385) * start test implementation * add experimental binary serialization to slate * serialize id * serialize fields that can be skipped as a separate struct * factor out sigs serialization * clean up sigs and coms serialization * completed v4 bin serialization * add manual de/ser traits for V4 bin slate * add simple byte array serializer * complete wiring in of bin slate serialization * clarify comment * clarify comment * update version * test output dir name fix * update slate v4 change description * add binary output to command line * Remove unneeded signature data during S2 and I2 stages (#390) * remove unneeded return signature data during S2 * remove unneeded sig data from I2 * Doctest Fixes for compact slate branch (#392) * begin to fix doctests * more doctest fixes * fix receive_tx * update get_stored_tx to accept an UUID instead of a tx object, and operate on a raw Transaction object (#394) * Fixes to async transaction posting (#395) * unstash post_tx changes * add offset during S3 and I3 * Revert slate id serialization to hex-string uuid (#396) * update from master (#397) * v3.x.x - v4.0.0 wallet compatibility fixes (#398) * changes to support http sending to v3 wallets * sending via http/tor TO 3.0.0 wallet works * receiving FROM 3.0.0 wallets works over http/tor * output converted V3 slate when needed * paying invoices from 3.0.0 wallets working * handle all participant info in slate states * sending and receiving standard file transactions between v3 and 4 wallets confirmed working * all file-based workflows working * fixes resulting from tests * remove reminder warnings * remove lock_height, add kernel_features + arguments (#399) * grin-wallet master now building against grin master (#402) (#403) Co-authored-by: Antioch Peverell <apeverell@protonmail.com> * Enhanced offset creation (#407) * initial tests reworking offset creation * invoice flow fixing + tests * further test fixes * change offset name in v4 slate, base64 serialize * logic optimisation * changes based on review feedback Co-authored-by: Antioch Peverell <apeverell@protonmail.com>
antiochp
added a commit
to antiochp/grin-wallet
that referenced
this pull request
Aug 7, 2020
* Add support for sending compact slates (mimblewimble#366) * WIP add support for sending compact slates * add repopulate_tx function to internal API * first pass at compacted slate working * move slate compaction to separate function * test fixes * support compact slate inits in invoice workflow * add compress flags to send and invoice * attempting to remove is_compact and assume all V4 slates begin as compact * attempting to calculate offsets when full tx data isn't available * update calc_commit to use participant blind data * update doctests for compact slates * start to remove unneeded fields from serialization * make num_participants optional * remove other_version from slate * use grin master branch * remove message field * lock height assumed to be 0 if it doesn't exist * don't serialise receiver signature when null * don't serialize payment_info if not needed * remove participant id from participant info * add note on id field * fix finalize and receive doctests * finalize_tx tests, init_send_tx tests * doctests for process_invoice_tx, retrieve_tx, tx_lock_outputs * finished test changes * update from grin master * rebuild PR from diff (mimblewimble#380) * recreate PR from diff (mimblewimble#381) * serialize tx struct into top level coms object (mimblewimble#382) * remove height (mimblewimble#383) * Add State Slate (mimblewimble#384) * add state field to slate and SlateV4 * set slate state at each transaction stage, add check to tests * serialize slate status properly * V4 Slate field tweaks (mimblewimble#386) * various tweaks to V4 slate * field renaming * serialize slate v4 ID as base64 (mimblewimble#387) * remove amount and fee where not needed (mimblewimble#388) * Final Changes for compact Slate (mimblewimble#389) * add tests for all types of file output, remove message args * default range proof serialization * shorten output features serialization * rename payment proof fields in slate v4 * v4 payment proof serialization * Binary Slates (mimblewimble#385) * start test implementation * add experimental binary serialization to slate * serialize id * serialize fields that can be skipped as a separate struct * factor out sigs serialization * clean up sigs and coms serialization * completed v4 bin serialization * add manual de/ser traits for V4 bin slate * add simple byte array serializer * complete wiring in of bin slate serialization * clarify comment * clarify comment * update version * test output dir name fix * update slate v4 change description * add binary output to command line * Remove unneeded signature data during S2 and I2 stages (mimblewimble#390) * remove unneeded return signature data during S2 * remove unneeded sig data from I2 * Doctest Fixes for compact slate branch (mimblewimble#392) * begin to fix doctests * more doctest fixes * fix receive_tx * update get_stored_tx to accept an UUID instead of a tx object, and operate on a raw Transaction object (mimblewimble#394) * Fixes to async transaction posting (mimblewimble#395) * unstash post_tx changes * add offset during S3 and I3 * Revert slate id serialization to hex-string uuid (mimblewimble#396) * update from master (mimblewimble#397) * v3.x.x - v4.0.0 wallet compatibility fixes (mimblewimble#398) * changes to support http sending to v3 wallets * sending via http/tor TO 3.0.0 wallet works * receiving FROM 3.0.0 wallets works over http/tor * output converted V3 slate when needed * paying invoices from 3.0.0 wallets working * handle all participant info in slate states * sending and receiving standard file transactions between v3 and 4 wallets confirmed working * all file-based workflows working * fixes resulting from tests * remove reminder warnings * remove lock_height, add kernel_features + arguments (mimblewimble#399) * grin-wallet master now building against grin master (mimblewimble#402) (mimblewimble#403) Co-authored-by: Antioch Peverell <apeverell@protonmail.com> * Enhanced offset creation (mimblewimble#407) * initial tests reworking offset creation * invoice flow fixing + tests * further test fixes * change offset name in v4 slate, base64 serialize * logic optimisation * changes based on review feedback Co-authored-by: Antioch Peverell <apeverell@protonmail.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Previously:
Now:
With this change to how offsets and excesses are handled, we should be a stone's throw away from mostly lock-free transactions without actually having them implemented. This introduces the offset workflow while keeping the existing output locks in place, which should allow us to introduce lock-free transactions post 4.0.0 without breaking any compatibility since the offset/excess assumptions on either side of a transaction will be the same regardless of whether the outputs are pre-locked or chosen just before posting.
Note that quite a bit of the code is littered with
is_compactconditionals since we still need to support 3.0.0 compatibility for a short period between release and HF3.