npm - @aztec/validator-ha-signer - Versions diffs - 0.0.1-commit.023c3e5 - Mend

@aztec/validator-ha-signer 0.0.1-commit.023c3e5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (58) hide show

package/README.md +187 -0
package/dest/config.d.ts +79 -0
package/dest/config.d.ts.map +1 -0
package/dest/config.js +73 -0
package/dest/db/index.d.ts +4 -0
package/dest/db/index.d.ts.map +1 -0
package/dest/db/index.js +3 -0
package/dest/db/migrations/1_initial-schema.d.ts +9 -0
package/dest/db/migrations/1_initial-schema.d.ts.map +1 -0
package/dest/db/migrations/1_initial-schema.js +20 -0
package/dest/db/postgres.d.ts +70 -0
package/dest/db/postgres.d.ts.map +1 -0
package/dest/db/postgres.js +181 -0
package/dest/db/schema.d.ts +89 -0
package/dest/db/schema.d.ts.map +1 -0
package/dest/db/schema.js +213 -0
package/dest/db/test_helper.d.ts +10 -0
package/dest/db/test_helper.d.ts.map +1 -0
package/dest/db/test_helper.js +14 -0
package/dest/db/types.d.ts +161 -0
package/dest/db/types.d.ts.map +1 -0
package/dest/db/types.js +49 -0
package/dest/errors.d.ts +34 -0
package/dest/errors.d.ts.map +1 -0
package/dest/errors.js +34 -0
package/dest/factory.d.ts +42 -0
package/dest/factory.d.ts.map +1 -0
package/dest/factory.js +70 -0
package/dest/migrations.d.ts +15 -0
package/dest/migrations.d.ts.map +1 -0
package/dest/migrations.js +53 -0
package/dest/slashing_protection_service.d.ts +80 -0
package/dest/slashing_protection_service.d.ts.map +1 -0
package/dest/slashing_protection_service.js +196 -0
package/dest/test/pglite_pool.d.ts +92 -0
package/dest/test/pglite_pool.d.ts.map +1 -0
package/dest/test/pglite_pool.js +210 -0
package/dest/types.d.ts +139 -0
package/dest/types.d.ts.map +1 -0
package/dest/types.js +21 -0
package/dest/validator_ha_signer.d.ts +70 -0
package/dest/validator_ha_signer.d.ts.map +1 -0
package/dest/validator_ha_signer.js +127 -0
package/package.json +105 -0
package/src/config.ts +125 -0
package/src/db/index.ts +3 -0
package/src/db/migrations/1_initial-schema.ts +26 -0
package/src/db/postgres.ts +251 -0
package/src/db/schema.ts +248 -0
package/src/db/test_helper.ts +17 -0
package/src/db/types.ts +201 -0
package/src/errors.ts +47 -0
package/src/factory.ts +82 -0
package/src/migrations.ts +75 -0
package/src/slashing_protection_service.ts +250 -0
package/src/test/pglite_pool.ts +256 -0
package/src/types.ts +207 -0
package/src/validator_ha_signer.ts +157 -0

package/src/validator_ha_signer.ts ADDED Viewed

@@ -0,0 +1,157 @@
+/**
+ * Validator High Availability Signer
+ *
+ * Wraps signing operations with distributed locking and slashing protection.
+ * This ensures that even with multiple validator nodes running, only one
+ * node will sign for a given duty (slot + duty type).
+ */
+import type { Buffer32 } from '@aztec/foundation/buffer';
+import type { EthAddress } from '@aztec/foundation/eth-address';
+import type { Signature } from '@aztec/foundation/eth-signature';
+import { type Logger, createLogger } from '@aztec/foundation/log';
+import type { ValidatorHASignerConfig } from './config.js';
+import { type DutyIdentifier, DutyType } from './db/types.js';
+import { SlashingProtectionService } from './slashing_protection_service.js';
+import {
+  type HAProtectedSigningContext,
+  type SlashingProtectionDatabase,
+  getBlockNumberFromSigningContext,
+} from './types.js';
+/**
+ * Validator High Availability Signer
+ *
+ * Provides signing capabilities with distributed locking for validators
+ * in a high-availability setup.
+ *
+ * Usage:
+ * ```
+ * const signer = new ValidatorHASigner(db, config);
+ *
+ * // Sign with slashing protection
+ * const signature = await signer.signWithProtection(
+ *   validatorAddress,
+ *   messageHash,
+ *   { slot: 100n, blockNumber: 50n, dutyType: 'BLOCK_PROPOSAL' },
+ *   async (root) => localSigner.signMessage(root),
+ * );
+ * ```
+ */
+export class ValidatorHASigner {
+  private readonly log: Logger;
+  private readonly slashingProtection: SlashingProtectionService;
+  constructor(
+    db: SlashingProtectionDatabase,
+    private readonly config: ValidatorHASignerConfig,
+  ) {
+    this.log = createLogger('validator-ha-signer');
+    if (!config.haSigningEnabled) {
+      // this shouldn't happen, the validator should use different signer for non-HA setups
+      throw new Error('Validator HA Signer is not enabled in config');
+    }
+    if (!config.nodeId || config.nodeId === '') {
+      throw new Error('NODE_ID is required for high-availability setups');
+    }
+    this.slashingProtection = new SlashingProtectionService(db, config);
+    this.log.info('Validator HA Signer initialized with slashing protection', {
+      nodeId: config.nodeId,
+    });
+  }
+  /**
+   * Sign a message with slashing protection.
+   *
+   * This method:
+   * 1. Acquires a distributed lock for (validator, slot, dutyType)
+   * 2. Calls the provided signing function
+   * 3. Records the result (success or failure)
+   *
+   * @param validatorAddress - The validator's Ethereum address
+   * @param messageHash - The hash to be signed
+   * @param context - The signing context (HA-protected duty types only)
+   * @param signFn - Function that performs the actual signing
+   * @returns The signature
+   *
+   * @throws DutyAlreadySignedError if the duty was already signed (expected in HA)
+   * @throws SlashingProtectionError if attempting to sign different data for same slot (expected in HA)
+   */
+  async signWithProtection(
+    validatorAddress: EthAddress,
+    messageHash: Buffer32,
+    context: HAProtectedSigningContext,
+    signFn: (messageHash: Buffer32) => Promise<Signature>,
+  ): Promise<Signature> {
+    let dutyIdentifier: DutyIdentifier;
+    if (context.dutyType === DutyType.BLOCK_PROPOSAL) {
+      dutyIdentifier = {
+        validatorAddress,
+        slot: context.slot,
+        blockIndexWithinCheckpoint: context.blockIndexWithinCheckpoint,
+        dutyType: context.dutyType,
+      };
+    } else {
+      dutyIdentifier = {
+        validatorAddress,
+        slot: context.slot,
+        dutyType: context.dutyType,
+      };
+    }
+    // Acquire lock and get the token for ownership verification
+    const blockNumber = getBlockNumberFromSigningContext(context);
+    const lockToken = await this.slashingProtection.checkAndRecord({
+      ...dutyIdentifier,
+      blockNumber,
+      messageHash: messageHash.toString(),
+      nodeId: this.config.nodeId,
+    });
+    // Perform signing
+    let signature: Signature;
+    try {
+      signature = await signFn(messageHash);
+    } catch (error: any) {
+      // Delete duty to allow retry (only succeeds if we own the lock)
+      await this.slashingProtection.deleteDuty({ ...dutyIdentifier, lockToken });
+      throw error;
+    }
+    // Record success (only succeeds if we own the lock)
+    await this.slashingProtection.recordSuccess({
+      ...dutyIdentifier,
+      signature,
+      nodeId: this.config.nodeId,
+      lockToken,
+    });
+    return signature;
+  }
+  /**
+   * Get the node ID for this signer
+   */
+  get nodeId(): string {
+    return this.config.nodeId;
+  }
+  /**
+   * Start the HA signer background tasks (cleanup of stuck duties).
+   * Should be called after construction and before signing operations.
+   */
+  start() {
+    this.slashingProtection.start();
+  }
+  /**
+   * Stop the HA signer background tasks and close database connection.
+   * Should be called during graceful shutdown.
+   */
+  async stop() {
+    await this.slashingProtection.stop();
+    await this.slashingProtection.close();
+  }
+}