Description

Before a received message is broadcasted to other connected peers it needs to be validated. Invalid messages are rejected and not sent further to the other peers. A peer is punished and it's score is decreased.

• Define validation for envelope of a message.
• Implement/update unittest.

Acceptance Criteria

• Invalid messages are rejected and not sent to the other connected peers.
• All new code is unit tested.

Additional Information

• AddPenality should be implemented
• structure of the message format (not the content)
• we should check rate limiting exists for gossipsub and req/res, if not we need rate limiting
• Check how to tamper the propagation in case of validation fails
• Check if we can delay the configure re-publishing strategy because block processing is asynchronous.

Description

• Remove genesis timestamp usage for slot computation as described in LiskArchive/lips#188

Acceptance Criteria

• All tests are passing

Description

Each peer needs to have a unique and fixed peer ID.
On boot if a peer doesn't have a peer ID, generate and save it for a later use.

Consider a possibility to import private key via config file. Than something like this can be used:
privKey, err := crypto.UnmarshalPrivateKey([]byte)

Acceptance Criteria

• Peer has a fixed peer ID and is not changed during a system reset.
• All new code is unit tested.

Additional Information

• seed should be given from config
• crypto.GetKeys can be used for generating key pairs
• Keypair can be generated like here: https://github.com/libp2p/go-libp2p/blob/master/examples/libp2p-host/host.go#L43-L46
• Option for a peer while creating it: https://github.com/libp2p/go-libp2p/blob/master/examples/libp2p-host/host.go#L63

Description

• Already there is two implementation of P2pAddrs one is free function in pubsub and the other one is a method of Peer struct. So it should be solve.
• The Peer struct in Peer.go has a host as it member and it is private, host should be accessible for other package of p2p also it should be independent to making an instance for passing it as a function argument, for example in function NewGossipSub we need to have it.

Acceptance Criteria

• All existing test should pass

Description

Implement support for browsers and mobile devices.

• Support as many web browser as possible (Chrome, Safari, Firefox, Edge)
• Support Android and iOS devices.
• Implement/update unittest.

Acceptance Criteria

• It is possible to run a node from a web browser.
• It is possible to run a node within Android or iOS operating systems.
• All new code is unit tested.

Additional Information

• https://docs.libp2p.io/concepts/transports/webtransport
• https://connectivity.libp2p.io

Description

New P2P package needs handling of all (known) peers. List of known peers needs to be saved in non-volatile memory so it can be reused in case of node reset.
It should be possible to provide different lists of peers to internal functions and external packages.

In gossip sub, we need

getConnectedPeers(): []peerID
getBlacklistedPeers(): []peerID

and in the initialization, we want gossipsub to start with

NewGossipSub(&Option{
  seedPeers: []peerID,
  knownPeers: []peerID,
  staticPeers: []peerID,
  blacklistedPeers: []peerID,
})

Acceptance Criteria

• Internal functions and external packages have possibility to get a different lists of peers.
• All new code is unit tested.

Additional Information

• we need to check what we can passed to the gossipsub for the initial state, and discuss the input when creating the option

Expected behavior

Consensus should send and receive data for postBlock event in the same format

Actual behavior

Here it's broadcasting block with EventPostBlock schema. however, it's expecting the message to be a block on receive

Which version(s) does this affect? (Environment, OS, etc...)

main

Description

Currently, crypto package GetKeys do not follow standard crypto library interface. For example, PrivateKey is []byte but it implements Public and Equal. we should keep the standard interface as much as possible

• crypto should have PublicKey PrivateKey type instead of []byte
• Refactor GetKeys to accept []byte instead of string
• Add Verify and Sign
• Refactor util functions (Hash, hexToString, hexToBytes, GetAddress etc) to be in different file (utils.go)

Acceptance Criteria

• Update comments and examples
• All function should be covered by unit test

Description

A user should have a possibility to change behavior of a node. For that reason there should be a file with all configurable P2P package parameters like default transport protocol, port number, min. and max. number of outbound connections, etc.

• P2P package parameters must be read from config.json file.
• Implement/update unittests.

Acceptance Criteria

• Parameters are read from a config.json file.
• All new code is unit tested.

Description

Add github actions to check

• lint
• test
• code coverage

Motivation

We need to ensure all PR is increasing code coverage and following standards.

Additional Information

• https://github.com/golangci/golangci-lint-action (for lint)
• https://dev.to/vearutop/peace-of-mind-with-github-actions-for-a-project-in-go-9d4 (for coverage)

Description

Implement a ping/pong application for a starting point of a new P2P module.

• Implement multi-address support.
• Implement (basic) peer handling.
• Implement communication between peers using stream.
• Implement/update unittests.

Acceptance Criteria

• Two peers are able to communicate with each other in a local environment.
• All new code is unit tested.

Additional Information

• https://docs.libp2p.io/guides/#examples-using-libp2p
• For the package, use /p2p/v2 folder and for app use /cmd/debug/.

Description

Validators for events are registered but they are not yet implemented.

Acceptance Criteria

• Validator for events are properly implemented.
• All new code is unit tested.

Description

module, framework and client packages will not be used anymore, so they can be removed

Acceptance Criteria

• Build and tests should pass

Description

• Remove duplication of SigningTransaction and signingBlockHeader and use embedded struct.
• Remove frozen transaction because defining interface for transaction in the package adds complexity without much benefit. interface should be defined in the user side.

Acceptance Criteria

• All test should be passing

Additional Information

• this requires #54 otherwise it will increase the non generated boilerplate code for codec

Description

Implement function RegisterRPCHandler to be able to register all necessary RPC handlers from the modules of the engine.

Acceptance Criteria

• Modules can call RegisterRPCHandler function to be able to register their RPC handlers.
• All new code is unit tested.

Additional Information

• Example usage is like this

Description

In request/response message transferring it could occur that a request is not delivered or a response is lost because of various reasons.
Currently when a request is sent and if a response is not received a timeout occurs and an error is returned.
Implement additional feature that in case of a timeout, a request is sent again and only after configured number of retries an error is returned.

Acceptance Criteria

• If a response is not received, a request is sent again.
• Only after configured number of retries an error is returned.
• All new code is unit tested.

Description

Peer searching mechanism should be implemented in the gossipsub.
We need to check

• How seed node disconnect from incoming connection.
• How node connected to seed node disconnects and choose another nodes
• How seed node ensures the open slots for the new connections

Acceptance Criteria

• Above checks should have result on this issue
• If new code is added, the code is unit tested

Additional Information

• Peer struct has field peerbook which provides among others, a list of known peers. If gossipsub needs such a list it can use it because peer is accessible from gossipsub.
• For discovering new peers using seed peer we could use https://github.com/ipfs/kubo/blob/master/core/bootstrap/bootstrap.go
• Check if knownPeers are needed at all in Peerbook struct because gossipsub should handle by its own its internal list of know peers.

Description

When establishing a new connection with a peer, a connection must be accepted only if some conditions are true:

• chainID
• networkVersion

A peer should also send info if it's addresses can be advertised to other peers in the network or not.

• advertiseAddress

Acceptance Criteria

• Only valid connections from other peers are accepted.
• If peer sets advertiseAddress to false it's address is not passed to the other peers.
• All new code is unit tested.

Description

P2P module needs to support targeting a peer. That means it is possible to send a request/message to a specific peer and not only to all peers or a randomly selected peer.

• Being able to send a request to a target peer.
• Peer will open a stream to the other peer to be able to communicate with each other.
• Req/Res needs to be implemented
• Define Req/Res format
• Implement/update unittests.

Acceptance Criteria

• A peer can send a request to a specific peer to which it is connected to.
• All new code is unit tested.

Description

A peer/node could be behind NAT and an owner of this node is not in a position to configure router to be able to re-route an incoming request to a node's private IP address. libp2p offers some features to overcome this issue. Below is a list of features which needs to be implemented that a peer behind NAT will be able to be called by another peer from a public network.

1. Implement AutoNAT feature:
   -- A peer is being able to detect if it is behind NAT with a libp2p AutoNAT feature.

2. Implement circuit relay transport protocol:
   -- https://docs.libp2p.io/concepts/nat/circuit-relay
   -- By default it is enabled, but it can be disabled or change the limit from the config.

3. Add NAT and holepunching features:
   -- https://docs.libp2p.io/concepts/nat
   -- https://blog.ipfs.tech/2022-01-20-libp2p-hole-punching
   -- Implement/update unittests.

Acceptance Criteria

• A peer which is behind NAT is able to be called by another peer outside of it's local/private network.
• After two peers connect with each other through a relayer peer, a direct connection between them is established with a holepunching mechanism.
• All new code is unit tested.

Additional Information

• https://blog.ipfs.tech/2022-01-20-libp2p-hole-punching

Description

A libp2p and gossipsub have an extensive list of parameters to set. They need to be set in a way that they will best fit for the Lisk network.

• Perform a different measurements to be able to tweak gossipsub parameters for best possible network performance and usage.
• Implement/update unittest.

Acceptance Criteria

• All new code is unit tested.

Additional Information

• Change parameters together with a Research team to guarantee safety, reliability and usability.

Description

Update db to panic when unexpected error happens. With that, we could update general DB interface to be

Get(key []byte): ([]byte, bool)
Set(key, value []byte)
Del(key []byte)

Motivation

If underlying DB fails with unexpected reason (ex: other than not found error), there is no way to recover or continue from that state automatically. Further more, if it proceed with the state, it could result in unexpected state.
Therefore, unrecoverable error should be panic and stop the process.

Description

Add BlockID property when storing the block, and it should return in the response from the RPC.
There should be distinction between general Transaction concept which used inside of block or in transaction pool. Therefore, Transaction struct should remain as it is.

Motivation

Currently, there is no information about in which block the transaction is included when transaction is fetched from storage.
This will make other system hard to link the block when fetching single transaction

Description

For example, below script should be able to produce equivalent outcome of encode/decode when generated.

type Transaction struct {
	SigningTransaction
	ID         codec.Hex   `json:"id"`
	size       int         `json:"-"`
	Signatures []codec.Hex `json:"signatures" fieldNumber:"8"`
}

• In case of the embedded struct is from another package, it can be ignored

Motivation

Sometimes, there are multiple version of types needs to be defined. For example, Transaction/Block header has signing block/transaction type and ones with signatures.
Currently, they are independent struct, but since properties are the same, it would be nice to be able to declare as an embedded struct

Additional Information

• codec generation is parsing per file/package. Therefore, it cannot tell if struct from other package is encodable or not

This is the Jenkins version of #2

To be used until we're ready to use Github Actions

Description

P2P package needs to be able to mitigate all common (P2P) network attacks like:

• DDoS
• Peer Poisoning
• Sybil
• Eclipse

Tasks to do:

• Discover potential weaknesses and improve them.
• Implement missing (safety) features.
• Implement/update unittests.

Acceptance Criteria

• Research team approve safety of the P2P package.
• All new code is unit tested.

Additional Information

• Check implementation together with a Research team to guarantee safety of the P2P package.

Description

Implement support for legacy blocks/transactions information with same config and design with Lisk SDK

Motivation

In order to be compatible with current Lisk SDK engine feature, legacy block/transaction support must be ported.

Additional Information

In Lisk SDK, it's implemented in LiskArchive/lisk-sdk#7136 at https://github.com/LiskHQ/lisk-sdk/tree/development/framework/src/engine/legacy

Description

Is some cases (ex. if a node is owned by an exchange) we would like to prevent that a node will accept any incoming connection.
Such node will only connect to a known (trusted) nodes by itself by creating an outgoing connections.

• A peer should be able to set a setting which disable accepting any incoming connection.
• Implement/update unittests.

Acceptance Criteria

• If functionality is enabled, all incoming connections are rejected.
• All new code is unit tested.

Additional Information

In current P2P (v1), when incomingConnections is 0, it doesn't start the websocket server

Description

In some cases it is beneficial for a peer to not expose it's role to the other peers.
Implement a feature that will allow a node operator to hide a node's role.

• Prevent that other peers will realize who is a message creator.
• Prevent that other peers will realize who is a block generator.
• Implement/update unittests.

Acceptance Criteria

• It is possible to send a message to another peer without revealing that a peer is creator of that message.
• All new code is unit tested.

Description

Replace v1 P2P package with v2 P2P package in the other packages in lisk-engine.

Acceptance Criteria

• v1 P2P package is not used anymore.
• All packages inside lisk-engine are using v2 P2P package.
• All new code is unit tested.

Additional Information

• How block/transaction/signature are re-published need to be changed
• How node info is propagated to neighbour peers for synching need to be changed
• All conn.RegisterEventHandler and conn.RegisterRPCHandler need to be checked

Description

Currently we try to ban Peer ID and remove it after 24 hours, it would be nice if we have a counter for peer ID based on the IPs.

Motivation

• We can make a limitation for IDs per IPs.
• For example if each IP requested by 10 different peer ID we well be able to block that IP.

Description

Introduce gossipsub module into libp2p module by implementing following requirements:

• Peer is able to broadcast information/message to all connected peers
• Implement/update unittests.

Implement and use features which are useful for new P2P package. Features to be considered (list is not complete):

• Outbound mesh quotas
• Explicit peering agreements
• List of bootstrapper nodes
• Opportunistic grafting
• Prune peer eXchange
• Extended message validators
• Peer scoring
• Peer banning

Acceptance Criteria

• P2P module supports above features from gossipsub module.
• Peers are able to communicate using gossipsub features (explicit peering agreements, peer scoring/banning, outbound mesh quotas, etc.).
• Peer can broadcast message to all connected peers in the same mesh.
• All new code is unit tested.

Additional Information

• https://github.com/libp2p/specs/tree/master/pubsub/gossipsub

Description

If the number of connections exceeds the maximum allowed number of connections, some of those connections need to be closed. To manage such connections a Connection manager from libp2p may be used.

If the number of connections drops below the minimum number of connections, try to connect to some of the known peers manually without libp2p or gossipsub assistance.

To prevent an indefinite amount of time to be connected with any of non-fixed peers, randomly close connection at predefined time intervals.

Acceptance Criteria

• Number of open connections doesn't exceed the maximum allowed number of connections.
• Connections are randomly closed at predefined time intervals.
• All new code is unit tested.

Additional Information

• Connection manager

Description

To ensure that new p2p/v2 module is working as expected and we'll be able to adjust parameters for gossipsub accordingly to our needs, implement a new testplan for a testground.

Testplan needs to check:

• Connecting/disconnecting from a peers.
• Connecting to a seed peer(s) and then to a newly discovered peers.
• Always connected peers (FixedPeers).
• Disallow incoming connections.
• Blacklisting peers.
• Sending direct messages to a specific peer.
• Responding to a direct messages from a specific peer.
• Broadcasting messages using gossipsub.

Bonus or if out of scope for this testplan a new issue could be created:

• Check NAT connections.
• Check Relay service/connections.
• Check hole punching.

Acceptance Criteria

• New testground plan is implemented.
• All new code is unit tested.

Description

Try to integrate new P2P package into an engine and check which API functions are missing.
Implement those functions (body can be empty) to make an engine compilable with new P2P package.

Acceptance Criteria

• Engine is compilable with new P2P package.
• All missing API functions are present in P2P package.

Description

lisk-engine is currently not compatible with the latest version of lisk-sdk.
To properly test lisk-engine without lisk-sdk create a new test application.

Acceptance Criteria

• New test application is created.
• lisk-engine can be tested with test application.

Expected behavior

When PR is created, all unit tests pass.

Actual behavior

Sometimes some unit tests fail.

Steps to reproduce

Create a new PR and check GH Actions.

Which version(s) does this affect? (Environment, OS, etc...)

Latest main branch

Description

Some functions in p2p/v2 may not need to be exposed to other modules.
Check all exposed functions and consider their visibility. If needed, mark any of those as private.

Acceptance Criteria

• All functions in p2p/v2 have appropriate visibility (public or private).
• All new code is unit tested.

Description

If -race flag is added to go test command there are some warnings regarding race conditions in engine source code.
Check and fix those errors/warnings.
Update GH actions with this flag to prevent race conditions will occur in the future.
Add also -shuffle=on flag to tell test runner to shuffle tests before running them to prevent any dependency between tests.

Acceptance Criteria

• -race -shuffle=on flags are added in go test in GH actions.
• There is no warnings for race condition when unit tests are executed.

Additional Information

• In p2p/v2 there is no race condition detected.

Description

Add transaction size validation according to LIP

Acceptance Criteria

• Add unit test to check size validation in transaction class
• Default value of the MAX_TRANSACTIONS_SIZE_BYTES should be the same as block size

Description

In the unit tests the following edits needed:

1. Convert all context.Background() function to the following style when the test needs to reuse the context in the unit test:

    ctx, cancel := context.WithCancel(context.Background())
    defer cancel()

2. When we need more than one assertion check in code please try to define assert by the following definition at the top of each unit test to reduce call assert(t, ...):

    assert := assert.New(t)

Acceptance Criteria

• All unit tests should follow the above rules.

Additional Information

• Scope is p2p/v2

Description

Introduce Testground testing platform to be able to efficiently test P2P network communication.

Acceptance Criteria

• It is possible to run tests for P2P module in a Testground testing platform

Additional Information

• https://github.com/testground/testground
• Actual test plan will be handled separately and improved during the development.

Description

If an invalid peer wants to establish connection with our peer, we need to be able to disallow it and prevent a peer to be connected with our peer.

• While a handshake is performing, a peer checks if a network ID from a peer which wants to connect is the same as its network ID and its network version. In case it is not, a connection is rejected.
• Check if gossipsub rejects the banned peer automatically, and if not handle the rejection
• Implement/update unittests.

Acceptance Criteria

• It is possible to reject an incoming connection.
• All new code is unit tested.

Description

Define generic efficient message protocol to be consistent on all of the messages passed through the network using binary format.
Additionally, add missing P2P features to improve the infrastructure.

Motivation

• Update the architecture to prevent incoming messages from affecting the on-chain processing
• Implement missing critical P2P features
• Remove unnecessary dependencies
• Define the communication protocol format

Tasks

• #6
• #7
• #8
• #9
• #10
• #11
• #12
• #13
• #14
• #15
• #16
• #17
• #19
• #31
• #32
• #33
• #36
• #37
• #41
• #42
• #44
• #47
• #60
• #62
• #63
• #65
• #67
• #71
• #75
• #83
• #96
• #97
• #114

Description

Several LIPs are updated to follow the engine/application separation in PR.
ABI communication with application should be updated

Acceptance Criteria

• Update tests
• Make sure that communication is successful with Lisk SDK application

Additional Information

In Lisk SDK, this in handled in below.

• LiskArchive/lisk-sdk#7567
• LiskArchive/lisk-sdk#7677

Description

Add

disabledMethods: ['namespace', 'namespace_method']

to the RPC config, and RPC server should reject if the requested method is in the blacklist or not.
if disabledMethods specifies namespace, it should reject all request to the namespace, and if config specifies namespace_method, it should only reject only that method.
Partial match should not be allowed.

Motivation

Some RPC endpoints are specifically used for validator nodes, and some endpoint should not exposed on the RPC node

Description

• Define generic and efficient message protocol.
• It must be in a binary format.
• Check what kind of messages are required.
• Defining envelope for the message.
• Implement/update unittests.

Acceptance Criteria

• Messages according to a defined protocol are sent over a network.
• All new code is unit tested.

Additional Information

• Publish(topic: string, data: []byte) and RegisterEventHandler need to be implemented
• Above those 2 functions need to be connected to the pubsub
• We need a method to create new topic in gossipsub

Description

At the moment, NetworkConfig is inside engine module. Dependency wise it would be better if this config will be inside P2P package.
For engine needs define a new config or reuse one from P2P package.

Acceptance Criteria

• NetworkConfig is part of P2P package
• All new code is unit tested.

Description

Allow caller of RPC to send the request in batch.
It should accept

[
  {
    "jsonrpc": "2.0",
    "method": "message@create",
    "params": "...",
    "id": 1
  },
  {
    "jsonrpc": "2.0",
    "method": "message@create",
    "params": "...",
    "id": 2
  }
]

and it should response as

[
  {
    "id": "1",
    "result": "pong",
    "jsonrpc": "2.0"
  },
  {
    "id": "2",
    "result": "pong",
    "jsonrpc": "2.0"
  }
]

Motivation

If we have multiple small rpc endpoints, calling one by one will be inefficient for network traffic.

Description

Update ABI definition based on LiskArchive/lisk-sdk#7817

Acceptance Criteria

• ABI communication with SDK application works on the verifyTransaction call