@aztec/validator-ha-signer 0.0.1-commit.358457c → 0.0.1-commit.3895657bc
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +0 -2
- package/dest/db/index.d.ts +2 -1
- package/dest/db/index.d.ts.map +1 -1
- package/dest/db/index.js +1 -0
- package/dest/db/lmdb.d.ts +66 -0
- package/dest/db/lmdb.d.ts.map +1 -0
- package/dest/db/lmdb.js +188 -0
- package/dest/db/postgres.d.ts +4 -2
- package/dest/db/postgres.d.ts.map +1 -1
- package/dest/db/postgres.js +13 -13
- package/dest/db/types.d.ts +35 -4
- package/dest/db/types.d.ts.map +1 -1
- package/dest/db/types.js +25 -0
- package/dest/factory.d.ts +22 -4
- package/dest/factory.d.ts.map +1 -1
- package/dest/factory.js +40 -5
- package/dest/slashing_protection_service.d.ts +3 -3
- package/dest/slashing_protection_service.d.ts.map +1 -1
- package/dest/types.d.ts +5 -1
- package/dest/types.d.ts.map +1 -1
- package/dest/validator_ha_signer.d.ts +3 -3
- package/dest/validator_ha_signer.d.ts.map +1 -1
- package/dest/validator_ha_signer.js +0 -4
- package/package.json +8 -6
- package/src/db/index.ts +1 -0
- package/src/db/lmdb.ts +264 -0
- package/src/db/postgres.ts +13 -11
- package/src/db/types.ts +58 -3
- package/src/factory.ts +50 -4
- package/src/slashing_protection_service.ts +2 -2
- package/src/types.ts +5 -0
- package/src/validator_ha_signer.ts +2 -7
package/README.md
CHANGED
|
@@ -36,7 +36,6 @@ import { createHASigner } from '@aztec/validator-ha-signer/factory';
|
|
|
36
36
|
|
|
37
37
|
const { signer, db } = await createHASigner({
|
|
38
38
|
databaseUrl: process.env.DATABASE_URL,
|
|
39
|
-
haSigningEnabled: true,
|
|
40
39
|
nodeId: 'validator-node-1',
|
|
41
40
|
pollingIntervalMs: 100,
|
|
42
41
|
signingTimeoutMs: 3000,
|
|
@@ -81,7 +80,6 @@ const db = new PostgresSlashingProtectionDatabase(pool);
|
|
|
81
80
|
await db.initialize();
|
|
82
81
|
|
|
83
82
|
const signer = new ValidatorHASigner(db, {
|
|
84
|
-
haSigningEnabled: true,
|
|
85
83
|
nodeId: 'validator-node-1',
|
|
86
84
|
pollingIntervalMs: 100,
|
|
87
85
|
signingTimeoutMs: 3000,
|
package/dest/db/index.d.ts
CHANGED
|
@@ -1,4 +1,5 @@
|
|
|
1
1
|
export * from './types.js';
|
|
2
2
|
export * from './schema.js';
|
|
3
3
|
export * from './postgres.js';
|
|
4
|
-
|
|
4
|
+
export * from './lmdb.js';
|
|
5
|
+
//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiaW5kZXguZC50cyIsInNvdXJjZVJvb3QiOiIiLCJzb3VyY2VzIjpbIi4uLy4uL3NyYy9kYi9pbmRleC50cyJdLCJuYW1lcyI6W10sIm1hcHBpbmdzIjoiQUFBQSxjQUFjLFlBQVksQ0FBQztBQUMzQixjQUFjLGFBQWEsQ0FBQztBQUM1QixjQUFjLGVBQWUsQ0FBQztBQUM5QixjQUFjLFdBQVcsQ0FBQyJ9
|
package/dest/db/index.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/db/index.ts"],"names":[],"mappings":"AAAA,cAAc,YAAY,CAAC;AAC3B,cAAc,aAAa,CAAC;AAC5B,cAAc,eAAe,CAAC"}
|
|
1
|
+
{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/db/index.ts"],"names":[],"mappings":"AAAA,cAAc,YAAY,CAAC;AAC3B,cAAc,aAAa,CAAC;AAC5B,cAAc,eAAe,CAAC;AAC9B,cAAc,WAAW,CAAC"}
|
package/dest/db/index.js
CHANGED
|
@@ -0,0 +1,66 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* LMDB implementation of SlashingProtectionDatabase
|
|
3
|
+
*
|
|
4
|
+
* Provides local (single-node) double-signing protection using LMDB as the backend.
|
|
5
|
+
* Suitable for nodes that do NOT run in a high-availability multi-node setup.
|
|
6
|
+
*
|
|
7
|
+
* The LMDB store is single-writer, making setIfNotExists inherently atomic.
|
|
8
|
+
* This means we get crash-restart protection without needing an external database.
|
|
9
|
+
*/
|
|
10
|
+
import { SlotNumber } from '@aztec/foundation/branded-types';
|
|
11
|
+
import { EthAddress } from '@aztec/foundation/eth-address';
|
|
12
|
+
import type { DateProvider } from '@aztec/foundation/timer';
|
|
13
|
+
import type { AztecAsyncKVStore } from '@aztec/kv-store';
|
|
14
|
+
import type { SlashingProtectionDatabase, TryInsertOrGetResult } from '../types.js';
|
|
15
|
+
import { type CheckAndRecordParams, DutyType } from './types.js';
|
|
16
|
+
/**
|
|
17
|
+
* LMDB-backed implementation of SlashingProtectionDatabase.
|
|
18
|
+
*
|
|
19
|
+
* Provides single-node double-signing protection that survives crashes and restarts.
|
|
20
|
+
* Does not provide cross-node coordination (that requires the PostgreSQL implementation).
|
|
21
|
+
*/
|
|
22
|
+
export declare class LmdbSlashingProtectionDatabase implements SlashingProtectionDatabase {
|
|
23
|
+
private readonly store;
|
|
24
|
+
private readonly dateProvider;
|
|
25
|
+
static readonly SCHEMA_VERSION = 1;
|
|
26
|
+
private readonly duties;
|
|
27
|
+
private readonly log;
|
|
28
|
+
constructor(store: AztecAsyncKVStore, dateProvider: DateProvider);
|
|
29
|
+
/**
|
|
30
|
+
* Atomically try to insert a new duty record, or get the existing one if present.
|
|
31
|
+
*
|
|
32
|
+
* LMDB is single-writer so the read-then-write inside transactionAsync is naturally atomic.
|
|
33
|
+
*/
|
|
34
|
+
tryInsertOrGetExisting(params: CheckAndRecordParams): Promise<TryInsertOrGetResult>;
|
|
35
|
+
/**
|
|
36
|
+
* Update a duty to 'signed' status with the signature.
|
|
37
|
+
* Only succeeds if the lockToken matches.
|
|
38
|
+
*/
|
|
39
|
+
updateDutySigned(rollupAddress: EthAddress, validatorAddress: EthAddress, slot: SlotNumber, dutyType: DutyType, signature: string, lockToken: string, blockIndexWithinCheckpoint: number): Promise<boolean>;
|
|
40
|
+
/**
|
|
41
|
+
* Delete a duty record.
|
|
42
|
+
* Only succeeds if the lockToken matches.
|
|
43
|
+
*/
|
|
44
|
+
deleteDuty(rollupAddress: EthAddress, validatorAddress: EthAddress, slot: SlotNumber, dutyType: DutyType, lockToken: string, blockIndexWithinCheckpoint: number): Promise<boolean>;
|
|
45
|
+
/**
|
|
46
|
+
* Cleanup own stuck duties (SIGNING status older than maxAgeMs).
|
|
47
|
+
*/
|
|
48
|
+
cleanupOwnStuckDuties(nodeId: string, maxAgeMs: number): Promise<number>;
|
|
49
|
+
/**
|
|
50
|
+
* Cleanup duties with outdated rollup address.
|
|
51
|
+
*
|
|
52
|
+
* This is always a no-op for the LMDB implementation: the underlying store is created via
|
|
53
|
+
* DatabaseVersionManager (in factory.ts), which already resets the entire data directory at
|
|
54
|
+
* startup whenever the rollup address changes.
|
|
55
|
+
*/
|
|
56
|
+
cleanupOutdatedRollupDuties(_currentRollupAddress: EthAddress): Promise<number>;
|
|
57
|
+
/**
|
|
58
|
+
* Cleanup old signed duties older than maxAgeMs.
|
|
59
|
+
*/
|
|
60
|
+
cleanupOldDuties(maxAgeMs: number): Promise<number>;
|
|
61
|
+
/**
|
|
62
|
+
* Close the underlying LMDB store.
|
|
63
|
+
*/
|
|
64
|
+
close(): Promise<void>;
|
|
65
|
+
}
|
|
66
|
+
//# sourceMappingURL=data:application/json;base64,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
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"lmdb.d.ts","sourceRoot":"","sources":["../../src/db/lmdb.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AACH,OAAO,EAAE,UAAU,EAAE,MAAM,iCAAiC,CAAC;AAE7D,OAAO,EAAE,UAAU,EAAE,MAAM,+BAA+B,CAAC;AAE3D,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAC;AAC5D,OAAO,KAAK,EAAE,iBAAiB,EAAiB,MAAM,iBAAiB,CAAC;AAExE,OAAO,KAAK,EAAE,0BAA0B,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AACpF,OAAO,EACL,KAAK,oBAAoB,EAEzB,QAAQ,EAIT,MAAM,YAAY,CAAC;AAYpB;;;;;GAKG;AACH,qBAAa,8BAA+B,YAAW,0BAA0B;IAO7E,OAAO,CAAC,QAAQ,CAAC,KAAK;IACtB,OAAO,CAAC,QAAQ,CAAC,YAAY;IAP/B,gBAAuB,cAAc,KAAK;IAE1C,OAAO,CAAC,QAAQ,CAAC,MAAM,CAA0C;IACjE,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAS;IAE7B,YACmB,KAAK,EAAE,iBAAiB,EACxB,YAAY,EAAE,YAAY,EAI5C;IAED;;;;OAIG;IACU,sBAAsB,CAAC,MAAM,EAAE,oBAAoB,GAAG,OAAO,CAAC,oBAAoB,CAAC,CA4C/F;IAED;;;OAGG;IACI,gBAAgB,CACrB,aAAa,EAAE,UAAU,EACzB,gBAAgB,EAAE,UAAU,EAC5B,IAAI,EAAE,UAAU,EAChB,QAAQ,EAAE,QAAQ,EAClB,SAAS,EAAE,MAAM,EACjB,SAAS,EAAE,MAAM,EACjB,0BAA0B,EAAE,MAAM,GACjC,OAAO,CAAC,OAAO,CAAC,CA0ClB;IAED;;;OAGG;IACI,UAAU,CACf,aAAa,EAAE,UAAU,EACzB,gBAAgB,EAAE,UAAU,EAC5B,IAAI,EAAE,UAAU,EAChB,QAAQ,EAAE,QAAQ,EAClB,SAAS,EAAE,MAAM,EACjB,0BAA0B,EAAE,MAAM,GACjC,OAAO,CAAC,OAAO,CAAC,CAyBlB;IAED;;OAEG;IACI,qBAAqB,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAe9E;IAED;;;;;;OAMG;IACI,2BAA2B,CAAC,qBAAqB,EAAE,UAAU,GAAG,OAAO,CAAC,MAAM,CAAC,CAErF;IAED;;OAEG;IACI,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAmBzD;IAED;;OAEG;IACU,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC,CAGlC;CACF"}
|
package/dest/db/lmdb.js
ADDED
|
@@ -0,0 +1,188 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* LMDB implementation of SlashingProtectionDatabase
|
|
3
|
+
*
|
|
4
|
+
* Provides local (single-node) double-signing protection using LMDB as the backend.
|
|
5
|
+
* Suitable for nodes that do NOT run in a high-availability multi-node setup.
|
|
6
|
+
*
|
|
7
|
+
* The LMDB store is single-writer, making setIfNotExists inherently atomic.
|
|
8
|
+
* This means we get crash-restart protection without needing an external database.
|
|
9
|
+
*/ import { randomBytes } from '@aztec/foundation/crypto/random';
|
|
10
|
+
import { createLogger } from '@aztec/foundation/log';
|
|
11
|
+
import { DutyStatus, getBlockIndexFromDutyIdentifier, recordFromFields } from './types.js';
|
|
12
|
+
function dutyKey(rollupAddress, validatorAddress, slot, dutyType, blockIndexWithinCheckpoint) {
|
|
13
|
+
return `${rollupAddress}:${validatorAddress}:${slot}:${dutyType}:${blockIndexWithinCheckpoint}`;
|
|
14
|
+
}
|
|
15
|
+
/**
|
|
16
|
+
* LMDB-backed implementation of SlashingProtectionDatabase.
|
|
17
|
+
*
|
|
18
|
+
* Provides single-node double-signing protection that survives crashes and restarts.
|
|
19
|
+
* Does not provide cross-node coordination (that requires the PostgreSQL implementation).
|
|
20
|
+
*/ export class LmdbSlashingProtectionDatabase {
|
|
21
|
+
store;
|
|
22
|
+
dateProvider;
|
|
23
|
+
static SCHEMA_VERSION = 1;
|
|
24
|
+
duties;
|
|
25
|
+
log;
|
|
26
|
+
constructor(store, dateProvider){
|
|
27
|
+
this.store = store;
|
|
28
|
+
this.dateProvider = dateProvider;
|
|
29
|
+
this.log = createLogger('slashing-protection:lmdb');
|
|
30
|
+
this.duties = store.openMap('signing-protection-duties');
|
|
31
|
+
}
|
|
32
|
+
/**
|
|
33
|
+
* Atomically try to insert a new duty record, or get the existing one if present.
|
|
34
|
+
*
|
|
35
|
+
* LMDB is single-writer so the read-then-write inside transactionAsync is naturally atomic.
|
|
36
|
+
*/ async tryInsertOrGetExisting(params) {
|
|
37
|
+
const blockIndexWithinCheckpoint = getBlockIndexFromDutyIdentifier(params);
|
|
38
|
+
const key = dutyKey(params.rollupAddress.toString(), params.validatorAddress.toString(), params.slot.toString(), params.dutyType, blockIndexWithinCheckpoint);
|
|
39
|
+
const lockToken = randomBytes(16).toString('hex');
|
|
40
|
+
const now = this.dateProvider.now();
|
|
41
|
+
const result = await this.store.transactionAsync(async ()=>{
|
|
42
|
+
const existing = await this.duties.getAsync(key);
|
|
43
|
+
if (existing) {
|
|
44
|
+
return {
|
|
45
|
+
isNew: false,
|
|
46
|
+
record: {
|
|
47
|
+
...existing,
|
|
48
|
+
lockToken: ''
|
|
49
|
+
}
|
|
50
|
+
};
|
|
51
|
+
}
|
|
52
|
+
const newRecord = {
|
|
53
|
+
rollupAddress: params.rollupAddress.toString(),
|
|
54
|
+
validatorAddress: params.validatorAddress.toString(),
|
|
55
|
+
slot: params.slot.toString(),
|
|
56
|
+
blockNumber: params.blockNumber.toString(),
|
|
57
|
+
blockIndexWithinCheckpoint,
|
|
58
|
+
dutyType: params.dutyType,
|
|
59
|
+
status: DutyStatus.SIGNING,
|
|
60
|
+
messageHash: params.messageHash,
|
|
61
|
+
nodeId: params.nodeId,
|
|
62
|
+
lockToken,
|
|
63
|
+
startedAtMs: now
|
|
64
|
+
};
|
|
65
|
+
await this.duties.set(key, newRecord);
|
|
66
|
+
return {
|
|
67
|
+
isNew: true,
|
|
68
|
+
record: newRecord
|
|
69
|
+
};
|
|
70
|
+
});
|
|
71
|
+
if (result.isNew) {
|
|
72
|
+
this.log.debug(`Acquired lock for duty ${params.dutyType} at slot ${params.slot}`, {
|
|
73
|
+
validatorAddress: params.validatorAddress.toString(),
|
|
74
|
+
nodeId: params.nodeId
|
|
75
|
+
});
|
|
76
|
+
}
|
|
77
|
+
return {
|
|
78
|
+
isNew: result.isNew,
|
|
79
|
+
record: recordFromFields(result.record)
|
|
80
|
+
};
|
|
81
|
+
}
|
|
82
|
+
/**
|
|
83
|
+
* Update a duty to 'signed' status with the signature.
|
|
84
|
+
* Only succeeds if the lockToken matches.
|
|
85
|
+
*/ updateDutySigned(rollupAddress, validatorAddress, slot, dutyType, signature, lockToken, blockIndexWithinCheckpoint) {
|
|
86
|
+
const key = dutyKey(rollupAddress.toString(), validatorAddress.toString(), slot.toString(), dutyType, blockIndexWithinCheckpoint);
|
|
87
|
+
return this.store.transactionAsync(async ()=>{
|
|
88
|
+
const existing = await this.duties.getAsync(key);
|
|
89
|
+
if (!existing) {
|
|
90
|
+
this.log.warn('Failed to update duty to signed: duty not found', {
|
|
91
|
+
rollupAddress: rollupAddress.toString(),
|
|
92
|
+
validatorAddress: validatorAddress.toString(),
|
|
93
|
+
slot: slot.toString(),
|
|
94
|
+
dutyType,
|
|
95
|
+
blockIndexWithinCheckpoint
|
|
96
|
+
});
|
|
97
|
+
return false;
|
|
98
|
+
}
|
|
99
|
+
if (existing.lockToken !== lockToken) {
|
|
100
|
+
this.log.warn('Failed to update duty to signed: invalid token', {
|
|
101
|
+
rollupAddress: rollupAddress.toString(),
|
|
102
|
+
validatorAddress: validatorAddress.toString(),
|
|
103
|
+
slot: slot.toString(),
|
|
104
|
+
dutyType,
|
|
105
|
+
blockIndexWithinCheckpoint
|
|
106
|
+
});
|
|
107
|
+
return false;
|
|
108
|
+
}
|
|
109
|
+
await this.duties.set(key, {
|
|
110
|
+
...existing,
|
|
111
|
+
status: DutyStatus.SIGNED,
|
|
112
|
+
signature,
|
|
113
|
+
completedAtMs: this.dateProvider.now()
|
|
114
|
+
});
|
|
115
|
+
return true;
|
|
116
|
+
});
|
|
117
|
+
}
|
|
118
|
+
/**
|
|
119
|
+
* Delete a duty record.
|
|
120
|
+
* Only succeeds if the lockToken matches.
|
|
121
|
+
*/ deleteDuty(rollupAddress, validatorAddress, slot, dutyType, lockToken, blockIndexWithinCheckpoint) {
|
|
122
|
+
const key = dutyKey(rollupAddress.toString(), validatorAddress.toString(), slot.toString(), dutyType, blockIndexWithinCheckpoint);
|
|
123
|
+
return this.store.transactionAsync(async ()=>{
|
|
124
|
+
const existing = await this.duties.getAsync(key);
|
|
125
|
+
if (!existing || existing.lockToken !== lockToken) {
|
|
126
|
+
this.log.warn('Failed to delete duty: invalid token or duty not found', {
|
|
127
|
+
rollupAddress: rollupAddress.toString(),
|
|
128
|
+
validatorAddress: validatorAddress.toString(),
|
|
129
|
+
slot: slot.toString(),
|
|
130
|
+
dutyType,
|
|
131
|
+
blockIndexWithinCheckpoint
|
|
132
|
+
});
|
|
133
|
+
return false;
|
|
134
|
+
}
|
|
135
|
+
await this.duties.delete(key);
|
|
136
|
+
return true;
|
|
137
|
+
});
|
|
138
|
+
}
|
|
139
|
+
/**
|
|
140
|
+
* Cleanup own stuck duties (SIGNING status older than maxAgeMs).
|
|
141
|
+
*/ cleanupOwnStuckDuties(nodeId, maxAgeMs) {
|
|
142
|
+
const cutoffMs = this.dateProvider.now() - maxAgeMs;
|
|
143
|
+
return this.store.transactionAsync(async ()=>{
|
|
144
|
+
const keysToDelete = [];
|
|
145
|
+
for await (const [key, record] of this.duties.entriesAsync()){
|
|
146
|
+
if (record.nodeId === nodeId && record.status === DutyStatus.SIGNING && record.startedAtMs < cutoffMs) {
|
|
147
|
+
keysToDelete.push(key);
|
|
148
|
+
}
|
|
149
|
+
}
|
|
150
|
+
for (const key of keysToDelete){
|
|
151
|
+
await this.duties.delete(key);
|
|
152
|
+
}
|
|
153
|
+
return keysToDelete.length;
|
|
154
|
+
});
|
|
155
|
+
}
|
|
156
|
+
/**
|
|
157
|
+
* Cleanup duties with outdated rollup address.
|
|
158
|
+
*
|
|
159
|
+
* This is always a no-op for the LMDB implementation: the underlying store is created via
|
|
160
|
+
* DatabaseVersionManager (in factory.ts), which already resets the entire data directory at
|
|
161
|
+
* startup whenever the rollup address changes.
|
|
162
|
+
*/ cleanupOutdatedRollupDuties(_currentRollupAddress) {
|
|
163
|
+
return Promise.resolve(0);
|
|
164
|
+
}
|
|
165
|
+
/**
|
|
166
|
+
* Cleanup old signed duties older than maxAgeMs.
|
|
167
|
+
*/ cleanupOldDuties(maxAgeMs) {
|
|
168
|
+
const cutoffMs = this.dateProvider.now() - maxAgeMs;
|
|
169
|
+
return this.store.transactionAsync(async ()=>{
|
|
170
|
+
const keysToDelete = [];
|
|
171
|
+
for await (const [key, record] of this.duties.entriesAsync()){
|
|
172
|
+
if (record.status === DutyStatus.SIGNED && record.completedAtMs !== undefined && record.completedAtMs < cutoffMs) {
|
|
173
|
+
keysToDelete.push(key);
|
|
174
|
+
}
|
|
175
|
+
}
|
|
176
|
+
for (const key of keysToDelete){
|
|
177
|
+
await this.duties.delete(key);
|
|
178
|
+
}
|
|
179
|
+
return keysToDelete.length;
|
|
180
|
+
});
|
|
181
|
+
}
|
|
182
|
+
/**
|
|
183
|
+
* Close the underlying LMDB store.
|
|
184
|
+
*/ async close() {
|
|
185
|
+
await this.store.close();
|
|
186
|
+
this.log.debug('LMDB slashing protection database closed');
|
|
187
|
+
}
|
|
188
|
+
}
|
package/dest/db/postgres.d.ts
CHANGED
|
@@ -54,7 +54,9 @@ export declare class PostgresSlashingProtectionDatabase implements SlashingProte
|
|
|
54
54
|
*/
|
|
55
55
|
deleteDuty(rollupAddress: EthAddress, validatorAddress: EthAddress, slot: SlotNumber, dutyType: DutyType, lockToken: string, blockIndexWithinCheckpoint: number): Promise<boolean>;
|
|
56
56
|
/**
|
|
57
|
-
* Convert a database row to a ValidatorDutyRecord
|
|
57
|
+
* Convert a database row to a ValidatorDutyRecord.
|
|
58
|
+
* Maps snake_case column names to StoredDutyRecord (camelCase, ms timestamps),
|
|
59
|
+
* then delegates to the shared recordFromFields() converter.
|
|
58
60
|
*/
|
|
59
61
|
private rowToRecord;
|
|
60
62
|
/**
|
|
@@ -81,4 +83,4 @@ export declare class PostgresSlashingProtectionDatabase implements SlashingProte
|
|
|
81
83
|
*/
|
|
82
84
|
cleanupOldDuties(maxAgeMs: number): Promise<number>;
|
|
83
85
|
}
|
|
84
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
86
|
+
//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoicG9zdGdyZXMuZC50cyIsInNvdXJjZVJvb3QiOiIiLCJzb3VyY2VzIjpbIi4uLy4uL3NyYy9kYi9wb3N0Z3Jlcy50cyJdLCJuYW1lcyI6W10sIm1hcHBpbmdzIjoiQUFBQTs7R0FFRztBQUNILE9BQU8sRUFBRSxVQUFVLEVBQUUsTUFBTSxpQ0FBaUMsQ0FBQztBQUU3RCxPQUFPLEVBQUUsVUFBVSxFQUFFLE1BQU0sK0JBQStCLENBQUM7QUFJM0QsT0FBTyxLQUFLLEVBQUUsV0FBVyxFQUFFLGNBQWMsRUFBRSxNQUFNLElBQUksQ0FBQztBQUV0RCxPQUFPLEtBQUssRUFBRSwwQkFBMEIsRUFBRSxvQkFBb0IsRUFBRSxNQUFNLGFBQWEsQ0FBQztBQVVwRixPQUFPLEtBQUssRUFBRSxvQkFBb0IsRUFBVyxRQUFRLEVBQXVDLE1BQU0sWUFBWSxDQUFDO0FBRy9HOzs7R0FHRztBQUNILE1BQU0sV0FBVyxhQUFhO0lBQzVCLEtBQUssQ0FBQyxDQUFDLFNBQVMsY0FBYyxHQUFHLEdBQUcsRUFBRSxJQUFJLEVBQUUsTUFBTSxFQUFFLE1BQU0sQ0FBQyxFQUFFLEdBQUcsRUFBRSxHQUFHLE9BQU8sQ0FBQyxXQUFXLENBQUMsQ0FBQyxDQUFDLENBQUMsQ0FBQztJQUM3RixHQUFHLElBQUksT0FBTyxDQUFDLElBQUksQ0FBQyxDQUFDO0NBQ3RCO0FBRUQ7O0dBRUc7QUFDSCxxQkFBYSxrQ0FBbUMsWUFBVywwQkFBMEI7SUFHdkUsT0FBTyxDQUFDLFFBQVEsQ0FBQyxJQUFJO0lBRmpDLE9BQU8sQ0FBQyxRQUFRLENBQUMsR0FBRyxDQUFTO0lBRTdCLFlBQTZCLElBQUksRUFBRSxhQUFhLEVBRS9DO0lBRUQ7Ozs7O09BS0c7SUFDRyxVQUFVLElBQUksT0FBTyxDQUFDLElBQUksQ0FBQyxDQWdDaEM7SUFFRDs7Ozs7Ozs7T0FRRztJQUNHLHNCQUFzQixDQUFDLE1BQU0sRUFBRSxvQkFBb0IsR0FBRyxPQUFPLENBQUMsb0JBQW9CLENBQUMsQ0FvRHhGO0lBRUQ7Ozs7O09BS0c7SUFDRyxnQkFBZ0IsQ0FDcEIsYUFBYSxFQUFFLFVBQVUsRUFDekIsZ0JBQWdCLEVBQUUsVUFBVSxFQUM1QixJQUFJLEVBQUUsVUFBVSxFQUNoQixRQUFRLEVBQUUsUUFBUSxFQUNsQixTQUFTLEVBQUUsTUFBTSxFQUNqQixTQUFTLEVBQUUsTUFBTSxFQUNqQiwwQkFBMEIsRUFBRSxNQUFNLEdBQ2pDLE9BQU8sQ0FBQyxPQUFPLENBQUMsQ0FzQmxCO0lBRUQ7Ozs7OztPQU1HO0lBQ0csVUFBVSxDQUNkLGFBQWEsRUFBRSxVQUFVLEVBQ3pCLGdCQUFnQixFQUFFLFVBQVUsRUFDNUIsSUFBSSxFQUFFLFVBQVUsRUFDaEIsUUFBUSxFQUFFLFFBQVEsRUFDbEIsU0FBUyxFQUFFLE1BQU0sRUFDakIsMEJBQTBCLEVBQUUsTUFBTSxHQUNqQyxPQUFPLENBQUMsT0FBTyxDQUFDLENBcUJsQjtJQUVEOzs7O09BSUc7SUFDSCxPQUFPLENBQUMsV0FBVztJQW1CbkI7O09BRUc7SUFDRyxLQUFLLElBQUksT0FBTyxDQUFDLElBQUksQ0FBQyxDQUczQjtJQUVEOzs7T0FHRztJQUNHLHFCQUFxQixDQUFDLE1BQU0sRUFBRSxNQUFNLEVBQUUsUUFBUSxFQUFFLE1BQU0sR0FBRyxPQUFPLENBQUMsTUFBTSxDQUFDLENBRzdFO0lBRUQ7Ozs7O09BS0c7SUFDRywyQkFBMkIsQ0FBQyxvQkFBb0IsRUFBRSxVQUFVLEdBQUcsT0FBTyxDQUFDLE1BQU0sQ0FBQyxDQUduRjtJQUVEOzs7OztPQUtHO0lBQ0csZ0JBQWdCLENBQUMsUUFBUSxFQUFFLE1BQU0sR0FBRyxPQUFPLENBQUMsTUFBTSxDQUFDLENBR3hEO0NBQ0YifQ==
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"postgres.d.ts","sourceRoot":"","sources":["../../src/db/postgres.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,OAAO,
|
|
1
|
+
{"version":3,"file":"postgres.d.ts","sourceRoot":"","sources":["../../src/db/postgres.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,OAAO,EAAE,UAAU,EAAE,MAAM,iCAAiC,CAAC;AAE7D,OAAO,EAAE,UAAU,EAAE,MAAM,+BAA+B,CAAC;AAI3D,OAAO,KAAK,EAAE,WAAW,EAAE,cAAc,EAAE,MAAM,IAAI,CAAC;AAEtD,OAAO,KAAK,EAAE,0BAA0B,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AAUpF,OAAO,KAAK,EAAE,oBAAoB,EAAW,QAAQ,EAAuC,MAAM,YAAY,CAAC;AAG/G;;;GAGG;AACH,MAAM,WAAW,aAAa;IAC5B,KAAK,CAAC,CAAC,SAAS,cAAc,GAAG,GAAG,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,GAAG,EAAE,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC;IAC7F,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;CACtB;AAED;;GAEG;AACH,qBAAa,kCAAmC,YAAW,0BAA0B;IAGvE,OAAO,CAAC,QAAQ,CAAC,IAAI;IAFjC,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAS;IAE7B,YAA6B,IAAI,EAAE,aAAa,EAE/C;IAED;;;;;OAKG;IACG,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC,CAgChC;IAED;;;;;;;;OAQG;IACG,sBAAsB,CAAC,MAAM,EAAE,oBAAoB,GAAG,OAAO,CAAC,oBAAoB,CAAC,CAoDxF;IAED;;;;;OAKG;IACG,gBAAgB,CACpB,aAAa,EAAE,UAAU,EACzB,gBAAgB,EAAE,UAAU,EAC5B,IAAI,EAAE,UAAU,EAChB,QAAQ,EAAE,QAAQ,EAClB,SAAS,EAAE,MAAM,EACjB,SAAS,EAAE,MAAM,EACjB,0BAA0B,EAAE,MAAM,GACjC,OAAO,CAAC,OAAO,CAAC,CAsBlB;IAED;;;;;;OAMG;IACG,UAAU,CACd,aAAa,EAAE,UAAU,EACzB,gBAAgB,EAAE,UAAU,EAC5B,IAAI,EAAE,UAAU,EAChB,QAAQ,EAAE,QAAQ,EAClB,SAAS,EAAE,MAAM,EACjB,0BAA0B,EAAE,MAAM,GACjC,OAAO,CAAC,OAAO,CAAC,CAqBlB;IAED;;;;OAIG;IACH,OAAO,CAAC,WAAW;IAmBnB;;OAEG;IACG,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC,CAG3B;IAED;;;OAGG;IACG,qBAAqB,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAG7E;IAED;;;;;OAKG;IACG,2BAA2B,CAAC,oBAAoB,EAAE,UAAU,GAAG,OAAO,CAAC,MAAM,CAAC,CAGnF;IAED;;;;;OAKG;IACG,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAGxD;CACF"}
|
package/dest/db/postgres.js
CHANGED
|
@@ -1,12 +1,10 @@
|
|
|
1
1
|
/**
|
|
2
2
|
* PostgreSQL implementation of SlashingProtectionDatabase
|
|
3
|
-
*/ import {
|
|
4
|
-
import { randomBytes } from '@aztec/foundation/crypto/random';
|
|
5
|
-
import { EthAddress } from '@aztec/foundation/eth-address';
|
|
3
|
+
*/ import { randomBytes } from '@aztec/foundation/crypto/random';
|
|
6
4
|
import { createLogger } from '@aztec/foundation/log';
|
|
7
5
|
import { makeBackoff, retry } from '@aztec/foundation/retry';
|
|
8
6
|
import { CLEANUP_OLD_DUTIES, CLEANUP_OUTDATED_ROLLUP_DUTIES, CLEANUP_OWN_STUCK_DUTIES, DELETE_DUTY, INSERT_OR_GET_DUTY, SCHEMA_VERSION, UPDATE_DUTY_SIGNED } from './schema.js';
|
|
9
|
-
import { getBlockIndexFromDutyIdentifier } from './types.js';
|
|
7
|
+
import { getBlockIndexFromDutyIdentifier, recordFromFields } from './types.js';
|
|
10
8
|
/**
|
|
11
9
|
* PostgreSQL implementation of the slashing protection database
|
|
12
10
|
*/ export class PostgresSlashingProtectionDatabase {
|
|
@@ -148,13 +146,15 @@ import { getBlockIndexFromDutyIdentifier } from './types.js';
|
|
|
148
146
|
return true;
|
|
149
147
|
}
|
|
150
148
|
/**
|
|
151
|
-
* Convert a database row to a ValidatorDutyRecord
|
|
149
|
+
* Convert a database row to a ValidatorDutyRecord.
|
|
150
|
+
* Maps snake_case column names to StoredDutyRecord (camelCase, ms timestamps),
|
|
151
|
+
* then delegates to the shared recordFromFields() converter.
|
|
152
152
|
*/ rowToRecord(row) {
|
|
153
|
-
return {
|
|
154
|
-
rollupAddress:
|
|
155
|
-
validatorAddress:
|
|
156
|
-
slot:
|
|
157
|
-
blockNumber:
|
|
153
|
+
return recordFromFields({
|
|
154
|
+
rollupAddress: row.rollup_address,
|
|
155
|
+
validatorAddress: row.validator_address,
|
|
156
|
+
slot: row.slot,
|
|
157
|
+
blockNumber: row.block_number,
|
|
158
158
|
blockIndexWithinCheckpoint: row.block_index_within_checkpoint,
|
|
159
159
|
dutyType: row.duty_type,
|
|
160
160
|
status: row.status,
|
|
@@ -162,10 +162,10 @@ import { getBlockIndexFromDutyIdentifier } from './types.js';
|
|
|
162
162
|
signature: row.signature ?? undefined,
|
|
163
163
|
nodeId: row.node_id,
|
|
164
164
|
lockToken: row.lock_token,
|
|
165
|
-
|
|
166
|
-
|
|
165
|
+
startedAtMs: row.started_at.getTime(),
|
|
166
|
+
completedAtMs: row.completed_at?.getTime(),
|
|
167
167
|
errorMessage: row.error_message ?? undefined
|
|
168
|
-
};
|
|
168
|
+
});
|
|
169
169
|
}
|
|
170
170
|
/**
|
|
171
171
|
* Close the database connection pool
|
package/dest/db/types.d.ts
CHANGED
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
import
|
|
2
|
-
import
|
|
1
|
+
import { BlockNumber, type CheckpointNumber, type IndexWithinCheckpoint, SlotNumber } from '@aztec/foundation/branded-types';
|
|
2
|
+
import { EthAddress } from '@aztec/foundation/eth-address';
|
|
3
3
|
import type { Signature } from '@aztec/foundation/eth-signature';
|
|
4
4
|
import { DutyType } from '@aztec/stdlib/ha-signing';
|
|
5
5
|
/**
|
|
@@ -21,6 +21,29 @@ export interface DutyRow {
|
|
|
21
21
|
completed_at: Date | null;
|
|
22
22
|
error_message: string | null;
|
|
23
23
|
}
|
|
24
|
+
/**
|
|
25
|
+
* Plain-primitive representation of a duty record suitable for serialization
|
|
26
|
+
* (e.g. msgpackr for LMDB). All domain types are stored as their string/number
|
|
27
|
+
* equivalents. Timestamps are Unix milliseconds.
|
|
28
|
+
*/
|
|
29
|
+
export interface StoredDutyRecord {
|
|
30
|
+
rollupAddress: string;
|
|
31
|
+
validatorAddress: string;
|
|
32
|
+
slot: string;
|
|
33
|
+
blockNumber: string;
|
|
34
|
+
blockIndexWithinCheckpoint: number;
|
|
35
|
+
dutyType: DutyType;
|
|
36
|
+
status: DutyStatus;
|
|
37
|
+
messageHash: string;
|
|
38
|
+
signature?: string;
|
|
39
|
+
nodeId: string;
|
|
40
|
+
lockToken: string;
|
|
41
|
+
/** Unix timestamp in milliseconds when signing started */
|
|
42
|
+
startedAtMs: number;
|
|
43
|
+
/** Unix timestamp in milliseconds when signing completed */
|
|
44
|
+
completedAtMs?: number;
|
|
45
|
+
errorMessage?: string;
|
|
46
|
+
}
|
|
24
47
|
/**
|
|
25
48
|
* Row type from INSERT_OR_GET_DUTY query (includes is_new flag)
|
|
26
49
|
*/
|
|
@@ -36,7 +59,8 @@ export declare enum DutyStatus {
|
|
|
36
59
|
}
|
|
37
60
|
export { DutyType };
|
|
38
61
|
/**
|
|
39
|
-
*
|
|
62
|
+
* Rich representation of a validator duty, with branded types and Date objects.
|
|
63
|
+
* This is the common output type returned by all SlashingProtectionDatabase implementations.
|
|
40
64
|
*/
|
|
41
65
|
export interface ValidatorDutyRecord {
|
|
42
66
|
/** Ethereum address of the rollup contract */
|
|
@@ -68,6 +92,13 @@ export interface ValidatorDutyRecord {
|
|
|
68
92
|
/** Error message (currently unused) */
|
|
69
93
|
errorMessage?: string;
|
|
70
94
|
}
|
|
95
|
+
/**
|
|
96
|
+
* Convert a {@link StoredDutyRecord} (plain-primitive wire format) to a
|
|
97
|
+
* {@link ValidatorDutyRecord} (rich domain type).
|
|
98
|
+
*
|
|
99
|
+
* Shared by LMDB and any future non-Postgres backend implementations.
|
|
100
|
+
*/
|
|
101
|
+
export declare function recordFromFields(stored: StoredDutyRecord): ValidatorDutyRecord;
|
|
71
102
|
/**
|
|
72
103
|
* Duty identifier for block proposals.
|
|
73
104
|
* blockIndexWithinCheckpoint is REQUIRED and must be >= 0.
|
|
@@ -151,4 +182,4 @@ interface DeleteDutyExtra {
|
|
|
151
182
|
* Uses intersection with DutyIdentifier to preserve the discriminated union.
|
|
152
183
|
*/
|
|
153
184
|
export type DeleteDutyParams = DutyIdentifier & DeleteDutyExtra;
|
|
154
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
185
|
+
//# sourceMappingURL=data:application/json;base64,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
|
package/dest/db/types.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/db/types.ts"],"names":[],"mappings":"AAAA,OAAO,
|
|
1
|
+
{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/db/types.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,WAAW,EACX,KAAK,gBAAgB,EACrB,KAAK,qBAAqB,EAC1B,UAAU,EACX,MAAM,iCAAiC,CAAC;AACzC,OAAO,EAAE,UAAU,EAAE,MAAM,+BAA+B,CAAC;AAC3D,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,iCAAiC,CAAC;AACjE,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAEpD;;GAEG;AACH,MAAM,WAAW,OAAO;IACtB,cAAc,EAAE,MAAM,CAAC;IACvB,iBAAiB,EAAE,MAAM,CAAC;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,YAAY,EAAE,MAAM,CAAC;IACrB,6BAA6B,EAAE,MAAM,CAAC;IACtC,SAAS,EAAE,QAAQ,CAAC;IACpB,MAAM,EAAE,UAAU,CAAC;IACnB,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,IAAI,CAAC;IACjB,YAAY,EAAE,IAAI,GAAG,IAAI,CAAC;IAC1B,aAAa,EAAE,MAAM,GAAG,IAAI,CAAC;CAC9B;AAED;;;;GAIG;AACH,MAAM,WAAW,gBAAgB;IAC/B,aAAa,EAAE,MAAM,CAAC;IACtB,gBAAgB,EAAE,MAAM,CAAC;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,0BAA0B,EAAE,MAAM,CAAC;IACnC,QAAQ,EAAE,QAAQ,CAAC;IACnB,MAAM,EAAE,UAAU,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,0DAA0D;IAC1D,WAAW,EAAE,MAAM,CAAC;IACpB,4DAA4D;IAC5D,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,cAAe,SAAQ,OAAO;IAC7C,MAAM,EAAE,OAAO,CAAC;CACjB;AAED;;GAEG;AACH,oBAAY,UAAU;IACpB,OAAO,YAAY;IACnB,MAAM,WAAW;CAClB;AAGD,OAAO,EAAE,QAAQ,EAAE,CAAC;AAEpB;;;GAGG;AACH,MAAM,WAAW,mBAAmB;IAClC,8CAA8C;IAC9C,aAAa,EAAE,UAAU,CAAC;IAC1B,wCAAwC;IACxC,gBAAgB,EAAE,UAAU,CAAC;IAC7B,gCAAgC;IAChC,IAAI,EAAE,UAAU,CAAC;IACjB,iCAAiC;IACjC,WAAW,EAAE,WAAW,CAAC;IACzB,8FAA8F;IAC9F,0BAA0B,EAAE,MAAM,CAAC;IACnC,mCAAmC;IACnC,QAAQ,EAAE,QAAQ,CAAC;IACnB,iCAAiC;IACjC,MAAM,EAAE,UAAU,CAAC;IACnB,4CAA4C;IAC5C,WAAW,EAAE,MAAM,CAAC;IACpB,yDAAyD;IACzD,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,4DAA4D;IAC5D,MAAM,EAAE,MAAM,CAAC;IACf,4DAA4D;IAC5D,SAAS,EAAE,MAAM,CAAC;IAClB,wCAAwC;IACxC,SAAS,EAAE,IAAI,CAAC;IAChB,+DAA+D;IAC/D,WAAW,CAAC,EAAE,IAAI,CAAC;IACnB,uCAAuC;IACvC,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED;;;;;GAKG;AACH,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,gBAAgB,GAAG,mBAAmB,CAiB9E;AAED;;;GAGG;AACH,MAAM,WAAW,2BAA2B;IAC1C,aAAa,EAAE,UAAU,CAAC;IAC1B,gBAAgB,EAAE,UAAU,CAAC;IAC7B,IAAI,EAAE,UAAU,CAAC;IACjB,gFAAgF;IAChF,0BAA0B,EAAE,qBAAqB,CAAC;IAClD,QAAQ,EAAE,QAAQ,CAAC,cAAc,CAAC;CACnC;AAED;;;GAGG;AACH,MAAM,WAAW,mBAAmB;IAClC,aAAa,EAAE,UAAU,CAAC;IAC1B,gBAAgB,EAAE,UAAU,CAAC;IAC7B,IAAI,EAAE,UAAU,CAAC;IACjB,QAAQ,EACJ,QAAQ,CAAC,mBAAmB,GAC5B,QAAQ,CAAC,WAAW,GACpB,QAAQ,CAAC,wBAAwB,GACjC,QAAQ,CAAC,eAAe,GACxB,QAAQ,CAAC,aAAa,GACtB,QAAQ,CAAC,YAAY,GACrB,QAAQ,CAAC,GAAG,CAAC;CAClB;AAED;;;;;GAKG;AACH,MAAM,MAAM,cAAc,GAAG,2BAA2B,GAAG,mBAAmB,CAAC;AAE/E;;;;;;GAMG;AACH,wBAAgB,mBAAmB,CAAC,QAAQ,EAAE,QAAQ,EAAE,0BAA0B,EAAE,MAAM,GAAG,SAAS,GAAG,MAAM,CAc9G;AAED;;;;GAIG;AACH,wBAAgB,+BAA+B,CAAC,IAAI,EAAE,cAAc,GAAG,MAAM,CAK5E;AAED;;GAEG;AACH,UAAU,mBAAmB;IAC3B,iCAAiC;IACjC,WAAW,EAAE,WAAW,GAAG,gBAAgB,CAAC;IAC5C,4CAA4C;IAC5C,WAAW,EAAE,MAAM,CAAC;IACpB,qDAAqD;IACrD,MAAM,EAAE,MAAM,CAAC;CAChB;AAED;;;GAGG;AACH,MAAM,MAAM,oBAAoB,GAAG,cAAc,GAAG,mBAAmB,CAAC;AAExE;;GAEG;AACH,UAAU,kBAAkB;IAC1B,SAAS,EAAE,SAAS,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,MAAM,MAAM,mBAAmB,GAAG,cAAc,GAAG,kBAAkB,CAAC;AAEtE;;GAEG;AACH,UAAU,eAAe;IACvB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,MAAM,MAAM,gBAAgB,GAAG,cAAc,GAAG,eAAe,CAAC"}
|
package/dest/db/types.js
CHANGED
|
@@ -1,3 +1,5 @@
|
|
|
1
|
+
import { BlockNumber, SlotNumber } from '@aztec/foundation/branded-types';
|
|
2
|
+
import { EthAddress } from '@aztec/foundation/eth-address';
|
|
1
3
|
import { DutyType } from '@aztec/stdlib/ha-signing';
|
|
2
4
|
/**
|
|
3
5
|
* Status of a duty in the database
|
|
@@ -8,6 +10,29 @@ import { DutyType } from '@aztec/stdlib/ha-signing';
|
|
|
8
10
|
}({});
|
|
9
11
|
// Re-export DutyType from stdlib
|
|
10
12
|
export { DutyType };
|
|
13
|
+
/**
|
|
14
|
+
* Convert a {@link StoredDutyRecord} (plain-primitive wire format) to a
|
|
15
|
+
* {@link ValidatorDutyRecord} (rich domain type).
|
|
16
|
+
*
|
|
17
|
+
* Shared by LMDB and any future non-Postgres backend implementations.
|
|
18
|
+
*/ export function recordFromFields(stored) {
|
|
19
|
+
return {
|
|
20
|
+
rollupAddress: EthAddress.fromString(stored.rollupAddress),
|
|
21
|
+
validatorAddress: EthAddress.fromString(stored.validatorAddress),
|
|
22
|
+
slot: SlotNumber.fromString(stored.slot),
|
|
23
|
+
blockNumber: BlockNumber.fromString(stored.blockNumber),
|
|
24
|
+
blockIndexWithinCheckpoint: stored.blockIndexWithinCheckpoint,
|
|
25
|
+
dutyType: stored.dutyType,
|
|
26
|
+
status: stored.status,
|
|
27
|
+
messageHash: stored.messageHash,
|
|
28
|
+
signature: stored.signature,
|
|
29
|
+
nodeId: stored.nodeId,
|
|
30
|
+
lockToken: stored.lockToken,
|
|
31
|
+
startedAt: new Date(stored.startedAtMs),
|
|
32
|
+
completedAt: stored.completedAtMs !== undefined ? new Date(stored.completedAtMs) : undefined,
|
|
33
|
+
errorMessage: stored.errorMessage
|
|
34
|
+
};
|
|
35
|
+
}
|
|
11
36
|
/**
|
|
12
37
|
* Validates and normalizes the block index for a duty.
|
|
13
38
|
* - BLOCK_PROPOSAL: validates blockIndexWithinCheckpoint is provided and >= 0
|
package/dest/factory.d.ts
CHANGED
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
import type { ValidatorHASignerConfig } from '@aztec/stdlib/ha-signing';
|
|
2
|
-
import type { CreateHASignerDeps, SlashingProtectionDatabase } from './types.js';
|
|
1
|
+
import type { LocalSignerConfig, ValidatorHASignerConfig } from '@aztec/stdlib/ha-signing';
|
|
2
|
+
import type { CreateHASignerDeps, CreateLocalSignerWithProtectionDeps, SlashingProtectionDatabase } from './types.js';
|
|
3
3
|
import { ValidatorHASigner } from './validator_ha_signer.js';
|
|
4
4
|
/**
|
|
5
5
|
* Create a validator HA signer with PostgreSQL backend
|
|
@@ -16,7 +16,6 @@ import { ValidatorHASigner } from './validator_ha_signer.js';
|
|
|
16
16
|
* ```typescript
|
|
17
17
|
* const { signer, db } = await createHASigner({
|
|
18
18
|
* databaseUrl: process.env.DATABASE_URL,
|
|
19
|
-
* haSigningEnabled: true,
|
|
20
19
|
* nodeId: 'validator-node-1',
|
|
21
20
|
* pollingIntervalMs: 100,
|
|
22
21
|
* signingTimeoutMs: 3000,
|
|
@@ -39,4 +38,23 @@ export declare function createHASigner(config: ValidatorHASignerConfig, deps?: C
|
|
|
39
38
|
signer: ValidatorHASigner;
|
|
40
39
|
db: SlashingProtectionDatabase;
|
|
41
40
|
}>;
|
|
42
|
-
|
|
41
|
+
/**
|
|
42
|
+
* Create a local (single-node) signing protection signer backed by LMDB.
|
|
43
|
+
*
|
|
44
|
+
* This provides double-signing protection for nodes that are NOT running in a
|
|
45
|
+
* high-availability (multi-node) setup. It prevents a proposer from sending two
|
|
46
|
+
* proposals for the same slot if the node crashes and restarts mid-proposal.
|
|
47
|
+
*
|
|
48
|
+
* When `config.dataDirectory` is set, the protection database is persisted to disk
|
|
49
|
+
* and survives crashes/restarts. When unset, an ephemeral in-memory store is
|
|
50
|
+
* used which protects within a single run but not across restarts.
|
|
51
|
+
*
|
|
52
|
+
* @param config - Local signer config
|
|
53
|
+
* @param deps - Optional dependencies (telemetry, date provider).
|
|
54
|
+
* @returns An object containing the signer and database instances.
|
|
55
|
+
*/
|
|
56
|
+
export declare function createLocalSignerWithProtection(config: LocalSignerConfig, deps?: CreateLocalSignerWithProtectionDeps): Promise<{
|
|
57
|
+
signer: ValidatorHASigner;
|
|
58
|
+
db: SlashingProtectionDatabase;
|
|
59
|
+
}>;
|
|
60
|
+
//# sourceMappingURL=data:application/json;base64,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
|
package/dest/factory.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"factory.d.ts","sourceRoot":"","sources":["../src/factory.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"factory.d.ts","sourceRoot":"","sources":["../src/factory.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,iBAAiB,EAAE,uBAAuB,EAAE,MAAM,0BAA0B,CAAC;AAQ3F,OAAO,KAAK,EAAE,kBAAkB,EAAE,mCAAmC,EAAE,0BAA0B,EAAE,MAAM,YAAY,CAAC;AACtH,OAAO,EAAE,iBAAiB,EAAE,MAAM,0BAA0B,CAAC;AAE7D;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAgCG;AACH,wBAAsB,cAAc,CAClC,MAAM,EAAE,uBAAuB,EAC/B,IAAI,CAAC,EAAE,kBAAkB,GACxB,OAAO,CAAC;IACT,MAAM,EAAE,iBAAiB,CAAC;IAC1B,EAAE,EAAE,0BAA0B,CAAC;CAChC,CAAC,CAsCD;AAED;;;;;;;;;;;;;;GAcG;AACH,wBAAsB,+BAA+B,CACnD,MAAM,EAAE,iBAAiB,EACzB,IAAI,CAAC,EAAE,mCAAmC,GACzC,OAAO,CAAC;IACT,MAAM,EAAE,iBAAiB,CAAC;IAC1B,EAAE,EAAE,0BAA0B,CAAC;CAChC,CAAC,CAsBD"}
|
package/dest/factory.js
CHANGED
|
@@ -1,8 +1,10 @@
|
|
|
1
1
|
/**
|
|
2
2
|
* Factory functions for creating validator HA signers
|
|
3
3
|
*/ import { DateProvider } from '@aztec/foundation/timer';
|
|
4
|
+
import { createStore } from '@aztec/kv-store/lmdb-v2';
|
|
4
5
|
import { getTelemetryClient } from '@aztec/telemetry-client';
|
|
5
6
|
import { Pool } from 'pg';
|
|
7
|
+
import { LmdbSlashingProtectionDatabase } from './db/lmdb.js';
|
|
6
8
|
import { PostgresSlashingProtectionDatabase } from './db/postgres.js';
|
|
7
9
|
import { HASignerMetrics } from './metrics.js';
|
|
8
10
|
import { ValidatorHASigner } from './validator_ha_signer.js';
|
|
@@ -21,7 +23,6 @@ import { ValidatorHASigner } from './validator_ha_signer.js';
|
|
|
21
23
|
* ```typescript
|
|
22
24
|
* const { signer, db } = await createHASigner({
|
|
23
25
|
* databaseUrl: process.env.DATABASE_URL,
|
|
24
|
-
* haSigningEnabled: true,
|
|
25
26
|
* nodeId: 'validator-node-1',
|
|
26
27
|
* pollingIntervalMs: 100,
|
|
27
28
|
* signingTimeoutMs: 3000,
|
|
@@ -66,10 +67,44 @@ import { ValidatorHASigner } from './validator_ha_signer.js';
|
|
|
66
67
|
// Create metrics
|
|
67
68
|
const metrics = new HASignerMetrics(telemetryClient, signerConfig.nodeId);
|
|
68
69
|
// Create signer
|
|
69
|
-
const signer = new ValidatorHASigner(db, {
|
|
70
|
-
|
|
71
|
-
|
|
72
|
-
}
|
|
70
|
+
const signer = new ValidatorHASigner(db, signerConfig, {
|
|
71
|
+
metrics,
|
|
72
|
+
dateProvider
|
|
73
|
+
});
|
|
74
|
+
return {
|
|
75
|
+
signer,
|
|
76
|
+
db
|
|
77
|
+
};
|
|
78
|
+
}
|
|
79
|
+
/**
|
|
80
|
+
* Create a local (single-node) signing protection signer backed by LMDB.
|
|
81
|
+
*
|
|
82
|
+
* This provides double-signing protection for nodes that are NOT running in a
|
|
83
|
+
* high-availability (multi-node) setup. It prevents a proposer from sending two
|
|
84
|
+
* proposals for the same slot if the node crashes and restarts mid-proposal.
|
|
85
|
+
*
|
|
86
|
+
* When `config.dataDirectory` is set, the protection database is persisted to disk
|
|
87
|
+
* and survives crashes/restarts. When unset, an ephemeral in-memory store is
|
|
88
|
+
* used which protects within a single run but not across restarts.
|
|
89
|
+
*
|
|
90
|
+
* @param config - Local signer config
|
|
91
|
+
* @param deps - Optional dependencies (telemetry, date provider).
|
|
92
|
+
* @returns An object containing the signer and database instances.
|
|
93
|
+
*/ export async function createLocalSignerWithProtection(config, deps) {
|
|
94
|
+
const telemetryClient = deps?.telemetryClient ?? getTelemetryClient();
|
|
95
|
+
const dateProvider = deps?.dateProvider ?? new DateProvider();
|
|
96
|
+
const kvStore = await createStore('signing-protection', LmdbSlashingProtectionDatabase.SCHEMA_VERSION, {
|
|
97
|
+
dataDirectory: config.dataDirectory,
|
|
98
|
+
dataStoreMapSizeKb: config.signingProtectionMapSizeKb ?? config.dataStoreMapSizeKb,
|
|
99
|
+
l1Contracts: config.l1Contracts
|
|
100
|
+
});
|
|
101
|
+
const db = new LmdbSlashingProtectionDatabase(kvStore, dateProvider);
|
|
102
|
+
const signerConfig = {
|
|
103
|
+
...config,
|
|
104
|
+
nodeId: config.nodeId || 'local'
|
|
105
|
+
};
|
|
106
|
+
const metrics = new HASignerMetrics(telemetryClient, signerConfig.nodeId, 'LocalSigningProtectionMetrics');
|
|
107
|
+
const signer = new ValidatorHASigner(db, signerConfig, {
|
|
73
108
|
metrics,
|
|
74
109
|
dateProvider
|
|
75
110
|
});
|