Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(multisig)!: pretty list of pending proposals #5240

Merged
merged 12 commits into from
Nov 28, 2024
Merged

feat(multisig)!: pretty list of pending proposals #5240

merged 12 commits into from
Nov 28, 2024

Conversation

s8sato
Copy link
Contributor

@s8sato s8sato commented Nov 16, 2024
edited
Loading

Context

As of #5217 multisig has some defects especially around the recursion feature:

  1. The output of multisig list command is verbose, not well structured, and less informative about the authentication status:

    Before 
    "ed01201F89368A4F322263C6F1AEF156759A83FB1AD7D93BAA66BFDFA973ACBADA462F@wonderland"
"1303a3f8222d9d5d687b8c787bdf6a90a7f774e54a8a37e52fb1681f69e05ba9"
{
  "approvals": [
    "ed0120987EE8092B2CE4622B4F66D6FE87F5D61575F0D0DFCB2D6B2E8905FE68F685B6@wonderland"
  ],
  "expires_at_ms": 1731520010341,
  "instructions": [
    {
      "SetKeyValue": {
        "Account": {
          "key": "success_marker",
          "object": "ed01201F89368A4F322263C6F1AEF156759A83FB1AD7D93BAA66BFDFA973ACBADA462F@wonderland",
          "value": "congratulations"
        }
      }
    }
  ],
  "proposed_at_ms": 1731516410341
}
"ed0120601BBDAF858E77B91494885D0A7618A5E21D24D7E4A672AA4C5C0869D2DDE26F@wonderland"
"26cec43d4fcfcf3341cfd0c9ef2ceda73a64e7c8dd470eb5268bf33be7a80a51"
{
  "approvals": [
    "ed01201F89368A4F322263C6F1AEF156759A83FB1AD7D93BAA66BFDFA973ACBADA462F@wonderland"
  ],
  "expires_at_ms": 1731520010341,
  "instructions": [
    {
      "Custom": {
        "payload": {
          "Approve": {
            "account": "ed01201F89368A4F322263C6F1AEF156759A83FB1AD7D93BAA66BFDFA973ACBADA462F@wonderland",
            "instructions_hash": "1303A3F8222D9D5D687B8C787BDF6A90A7F774E54A8A37E52FB1681F69E05BA9"
          }
        }
      }
    }
  ],
  "proposed_at_ms": 1731516410341
}
"ed0120D94ED925A4049D78A9F1E55FBF0783A8FE21F2F65CCFE714BBE867A18CC630F8@wonderland"
"6851493706f2010c6054d7ddf524efcc75a49a5b05bc3e7fdd6a2aea38aa982b"
{
  "approvals": [
    "ed0120601BBDAF858E77B91494885D0A7618A5E21D24D7E4A672AA4C5C0869D2DDE26F@wonderland"
  ],
  "expires_at_ms": 1731520010341,
  "instructions": [
    {
      "Custom": {
        "payload": {
          "Approve": {
            "account": "ed0120601BBDAF858E77B91494885D0A7618A5E21D24D7E4A672AA4C5C0869D2DDE26F@wonderland",
            "instructions_hash": "26CEC43D4FCFCF3341CFD0C9EF2CEDA73A64E7C8DD470EB5268BF33BE7A80A51"
          }
        }
      }
    }
  ],
  "proposed_at_ms": 1731516410341
}

  2. Once a direct multisig account has passed approval, the whole status no longer appears to the child signatories

  3. TTL is bound to each account, which is a blocker to consistency as the entire multisig transaction hierarchy

  4. On expiration, only the approving node that found the proposal expired is deleted. On execution, only nodes on the path from the last approval to the root proposal are deleted. The remaining nodes require other approvals to be completely deleted

  5. Execution of multisig instructions is panic-prone when metadata is modified. Related to (multisig) potential inconsistency between the role and the account metadata #5229

Solution

  1. feat(multisig): pretty list of pending proposals

    After 
    {
  "6851493706F2010C6054D7DDF524EFCC75A49A5B05BC3E7FDD6A2AEA38AA982B": {
    "instructions": [
      {
        "SetKeyValue": {
          "Account": {
            "object": "ed01201F89368A4F322263C6F1AEF156759A83FB1AD7D93BAA66BFDFA973ACBADA462F@wonderland",
            "key": "success_marker",
            "value": "congratulations"
          }
        }
      }
    ],
    "proposed_at": "2024-11-13T06:50:22Z",
    "expires_in": "59m 59s",
    "approval_path": [
      "1 -> [0/1] ed0120D94ED925A4049D78A9F1E55FBF0783A8FE21F2F65CCFE714BBE867A18CC630F8@wonderland",
      "1 -> [0/1] ed0120601BBDAF858E77B91494885D0A7618A5E21D24D7E4A672AA4C5C0869D2DDE26F@wonderland",
      "1 -> [1/2] ed01201F89368A4F322263C6F1AEF156759A83FB1AD7D93BAA66BFDFA973ACBADA462F@wonderland"
    ]
  }
}

  2. fix(multisig): keep proposals in list while root is pending

  3. feat(multisig)!: override TTL per transaction

  4. Delete all relevant entries on expiration and execution:

    • fix(multisig): prune expired path on approve
    • fix(multisig): keep proposals in list while root is pending

  5. fix(multisig): question existence and format of metadata

Migration Guide

  • (api-changes) optional MultisigPropose.transaction_ttl_ms to override the account default
  • (api-changes) MultisigSpec MultisigProposalValue metadata values

Review notes

Notice the changes to the tests:

  • multisig::multisig_recursion_* integration tests
  • scripts/tests/multisig.recursion.sh, especially what multisig list output informs

Checklist

  • I've read CONTRIBUTING.md.
  • I've written tests for the code changes.
  • All review comments have been resolved.
  • All CI checks pass.

@github-actions github-actions bot added api-changes Changes in the API for client libraries config-changes Changes in configuration and start up of the Iroha labels Nov 16, 2024
@s8sato s8sato mentioned this pull request Nov 16, 2024
Merged
3 tasks
@s8sato s8sato self-assigned this Nov 17, 2024
s8sato added 11 commits November 18, 2024 17:19
@s8sato
feat(multisig)!: override TTL per transaction
1f766a3 
BREAKING CHANGES:

- (api-changes) optional `MultisigPropose.transaction_ttl_ms` to override the account default

Signed-off-by: Shunkichi Sato <[email protected]>
@s8sato
test(multisig): recursion test suites
8d579d5 
Signed-off-by: Shunkichi Sato <[email protected]>
@s8sato
fix(multisig): prune expired path on approve
d45e707 
Signed-off-by: Shunkichi Sato <[email protected]>
@s8sato
refactor(multisig)!: consolidate metadata read/write
394eafe 
BREAKING CHANGES:

- (api-changes) `MultisigSpec` `MultisigProposalValue` metadata values

Signed-off-by: Shunkichi Sato <[email protected]>
@s8sato
feat(multisig): pretty list of pending proposals
a6e6493 
Signed-off-by: Shunkichi Sato <[email protected]>
@s8sato
fix(multisig): keep proposals in list while root is pending
81282a6 
Signed-off-by: Shunkichi Sato <[email protected]>
@s8sato
docs(multisig): minor fixes
a63c87d 
Signed-off-by: Shunkichi Sato <[email protected]>
@s8sato
fix(multisig): question existence and format of metadata
bf77524 
Signed-off-by: Shunkichi Sato <[email protected]>
@s8sato
review: issue Log instruction when proposal is expired
34a892a 
Signed-off-by: Shunkichi Sato <[email protected]>
@s8sato
review: better diagnostics than assert!
43efa3e 
Signed-off-by: Shunkichi Sato <[email protected]>
@s8sato
review: early deny!
ebe8c20 
Signed-off-by: Shunkichi Sato <[email protected]>
@s8sato s8sato force-pushed the feat/4930-multisig_list branch from 6b39385 to ebe8c20 Compare November 18, 2024 08:28
@hyperledger-iroha hyperledger-iroha deleted a comment from github-actions bot Nov 18, 2024
@s8sato s8sato removed the config-changes Changes in configuration and start up of the Iroha label Nov 18, 2024
@s8sato s8sato marked this pull request as ready for review November 18, 2024 10:17
DCNick3
DCNick3 previously approved these changes Nov 21, 2024
View reviewed changes
Copy link
Contributor

@DCNick3 DCNick3 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Only one minor comment

crates/iroha_cli/src/main.rs Show resolved Hide resolved
s8sato
s8sato commented Nov 21, 2024
View reviewed changes
crates/iroha_cli/src/main.rs
else {
return Ok(());
};
type PendingProposals = BTreeMap<ProposalKey, ProposalStatus>;
Copy link
Contributor Author

@s8sato s8sato Nov 21, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Currently this is in iroha_cli as a sample client implementation, but if considered as a common structure to clients, could be moved to iroha. And if considered as a raw query result, could be moved to iroha_torii or somewhere more internal, probably with no humantime and system-dependent time

mversic
mversic previously approved these changes Nov 28, 2024
View reviewed changes
@s8sato s8sato dismissed stale reviews from mversic and DCNick3 via 3c96d7d November 28, 2024 08:50
@s8sato s8sato enabled auto-merge (squash) November 28, 2024 09:18
@mversic mversic requested a review from DCNick3 November 28, 2024 09:42
@s8sato s8sato merged commit 9271c38 into hyperledger-iroha:main Nov 28, 2024
16 of 17 checks passed
@s8sato s8sato mentioned this pull request Nov 28, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mversic mversic mversic approved these changes

@DCNick3 DCNick3 DCNick3 approved these changes

@SamHSmith SamHSmith Awaiting requested review from SamHSmith SamHSmith is a code owner

@outoftardis outoftardis Awaiting requested review from outoftardis outoftardis is a code owner

@0x009922 0x009922 Awaiting requested review from 0x009922 0x009922 is a code owner

@dima74 dima74 Awaiting requested review from dima74 dima74 is a code owner

Assignees

@DCNick3 DCNick3

@mversic mversic

@s8sato s8sato

Labels
api-changes Changes in the API for client libraries
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@s8sato @DCNick3 @mversic