blockworks-foundation
/
solana
mirror of https://github.com/blockworks-foundation/solana.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
solana/src/log.rs

428 lines
14 KiB
Rust
Raw Normal View History

Rename event crate to log
2018-02-18 08:59:15 -08:00
//! The `log` crate provides the foundational data structures for Proof-of-History,
//! an ordered log of events in time.
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
Rename event crate to log
2018-02-18 08:59:15 -08:00
/// Each log entry contains three pieces of data. The 'num_hashes' field is the number
/// of hashes performed since the previous entry. The 'end_hash' field is the result
/// of hashing 'end_hash' from the previous entry 'num_hashes' times. The 'event'
/// field points to an Event that took place shortly after 'end_hash' was generated.
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
///
More descriptive field names
2018-02-15 09:48:30 -08:00
/// If you divide 'num_hashes' by the amount of time it takes to generate a new hash, you
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
/// get a duration estimate since the last event. Since processing power increases
More descriptive field names
2018-02-15 09:48:30 -08:00
/// over time, one should expect the duration 'num_hashes' represents to decrease proportionally.
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
/// Though processing power varies across nodes, the network gives priority to the
/// fastest processor. Duration should therefore be estimated by assuming that the hash
/// was generated by the fastest processor at the time the entry was logged.
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
Add serialization/deseriation support to event log See bincode and serde_json for usage: https://github.com/TyOverby/bincode Fixes #1
2018-02-20 15:26:11 -08:00
use generic_array::GenericArray;
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
use generic_array::typenum::{U32, U64};
use ring::signature::Ed25519KeyPair;
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
pub type Sha256Hash = GenericArray<u8, U32>;
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
pub type PublicKey = GenericArray<u8, U32>;
pub type Signature = GenericArray<u8, U64>;
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
Add serialization/deseriation support to event log See bincode and serde_json for usage: https://github.com/TyOverby/bincode Fixes #1
2018-02-20 15:26:11 -08:00
#[derive(Serialize, Deserialize, Debug, PartialEq, Eq, Clone)]
Allow Entry to hold events of any kind of data
2018-02-26 14:37:33 -08:00
pub struct Entry<T> {
More descriptive event data
2018-02-15 09:57:32 -08:00
pub num_hashes: u64,
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
pub end_hash: Sha256Hash,
Allow Entry to hold events of any kind of data
2018-02-26 14:37:33 -08:00
pub event: Event<T>,
More descriptive event data
2018-02-15 09:57:32 -08:00
}
Better names Event -> Entry EventData -> Event
2018-02-18 08:53:38 -08:00
/// When 'event' is Tick, the event represents a simple clock tick, and exists for the
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
/// sole purpose of improving the performance of event log verification. A tick can
Docs cleanup
2018-02-16 08:56:10 -08:00
/// be generated in 'num_hashes' hashes and verified in 'num_hashes' hashes. By logging
/// a hash alongside the tick, each tick and be verified in parallel using the 'end_hash'
/// of the preceding tick to seed its hashing.
Add serialization/deseriation support to event log See bincode and serde_json for usage: https://github.com/TyOverby/bincode Fixes #1
2018-02-20 15:26:11 -08:00
#[derive(Serialize, Deserialize, Debug, PartialEq, Eq, Clone)]
Allow events to hold any kind of data
2018-02-26 14:31:01 -08:00
pub enum Event<T> {
More descriptive event data
2018-02-15 09:57:32 -08:00
Tick,
Make the Discovery event into a struct instead of a tuple
2018-02-24 10:15:03 -08:00
Discovery {
Allow events to hold any kind of data
2018-02-26 14:31:01 -08:00
data: T,
Make the Discovery event into a struct instead of a tuple
2018-02-24 10:15:03 -08:00
},
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
Claim {
key: PublicKey,
Allow events to hold any kind of data
2018-02-26 14:31:01 -08:00
data: T,
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
sig: Signature,
},
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
Transaction {
from: PublicKey,
to: PublicKey,
Allow events to hold any kind of data
2018-02-26 14:31:01 -08:00
data: T,
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
sig: Signature,
},
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
}
Allow Entry to hold events of any kind of data
2018-02-26 14:37:33 -08:00
impl<T> Entry<T> {
Better names Event -> Entry EventData -> Event
2018-02-18 08:53:38 -08:00
/// Creates a Entry from the number of hashes 'num_hashes' since the previous event
More descriptive field names
2018-02-15 09:48:30 -08:00
/// and that resulting 'end_hash'.
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
pub fn new_tick(num_hashes: u64, end_hash: &Sha256Hash) -> Self {
Better names Event -> Entry EventData -> Event
2018-02-18 08:53:38 -08:00
Entry {
More descriptive field names
2018-02-15 09:48:30 -08:00
num_hashes,
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
end_hash: *end_hash,
Explain proof-of-history in the readme Also: * Hash userdata so that verification works as the readme describes. * Drop itertools package. Found a way to use std::iter instead. Fixes #8
2018-02-20 12:07:54 -08:00
event: Event::Tick,
More descriptive field names
2018-02-15 09:48:30 -08:00
}
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
}
Better names
2018-02-15 10:45:04 -08:00
}
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
// Return a new ED25519 keypair
pub fn generate_keypair() -> Ed25519KeyPair {
use ring::{rand, signature};
use untrusted;
let rng = rand::SystemRandom::new();
let pkcs8_bytes = signature::Ed25519KeyPair::generate_pkcs8(&rng).unwrap();
signature::Ed25519KeyPair::from_pkcs8(untrusted::Input::from(&pkcs8_bytes)).unwrap()
}
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
/// Return a Claim Event for the given hash and key-pair.
Allow events to hold any kind of data
2018-02-26 14:31:01 -08:00
pub fn sign_hash(data: &Sha256Hash, keypair: &Ed25519KeyPair) -> Event<Sha256Hash> {
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
let sig = keypair.sign(data);
let peer_public_key_bytes = keypair.public_key_bytes();
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
let sig_bytes = sig.as_ref();
Event::Claim {
key: GenericArray::clone_from_slice(peer_public_key_bytes),
data: GenericArray::clone_from_slice(data),
sig: GenericArray::clone_from_slice(sig_bytes),
}
}
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
/// Return a Transaction Event that indicates a transfer in ownership of the given hash.
Allow events to hold any kind of data
2018-02-26 14:31:01 -08:00
pub fn transfer_hash(
data: &Sha256Hash,
keypair: &Ed25519KeyPair,
to: PublicKey,
) -> Event<Sha256Hash> {
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
let from_public_key_bytes = keypair.public_key_bytes();
let mut sign_data = data.to_vec();
sign_data.extend_from_slice(&to);
let sig = keypair.sign(&sign_data);
let sig_bytes = sig.as_ref();
Event::Transaction {
from: GenericArray::clone_from_slice(from_public_key_bytes),
to,
data: GenericArray::clone_from_slice(data),
sig: GenericArray::clone_from_slice(sig_bytes),
}
}
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
/// Return a Sha256 hash for the given data.
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
pub fn hash(val: &[u8]) -> Sha256Hash {
use sha2::{Digest, Sha256};
let mut hasher = Sha256::default();
hasher.input(val);
hasher.result()
Move hash generation into stateless function
2018-02-19 11:09:56 -08:00
}
Explain proof-of-history in the readme Also: * Hash userdata so that verification works as the readme describes. * Drop itertools package. Found a way to use std::iter instead. Fixes #8
2018-02-20 12:07:54 -08:00
/// Return the hash of the given hash extended with the given value.
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
pub fn extend_and_hash(end_hash: &Sha256Hash, ty: u8, val: &[u8]) -> Sha256Hash {
Explain proof-of-history in the readme Also: * Hash userdata so that verification works as the readme describes. * Drop itertools package. Found a way to use std::iter instead. Fixes #8
2018-02-20 12:07:54 -08:00
let mut hash_data = end_hash.to_vec();
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
hash_data.push(ty);
Explain proof-of-history in the readme Also: * Hash userdata so that verification works as the readme describes. * Drop itertools package. Found a way to use std::iter instead. Fixes #8
2018-02-20 12:07:54 -08:00
hash_data.extend_from_slice(val);
hash(&hash_data)
}
Allow events to hold any kind of data
2018-02-26 14:31:01 -08:00
pub fn hash_event(end_hash: &Sha256Hash, event: &Event<Sha256Hash>) -> Sha256Hash {
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
match *event {
Event::Tick => *end_hash,
Make the Discovery event into a struct instead of a tuple
2018-02-24 10:15:03 -08:00
Event::Discovery { data } => extend_and_hash(end_hash, 1, &data),
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
Event::Claim { key, data, sig } => {
let mut event_data = data.to_vec();
event_data.extend_from_slice(&sig);
event_data.extend_from_slice(&key);
extend_and_hash(end_hash, 2, &event_data)
}
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
Event::Transaction {
from,
to,
data,
sig,
} => {
let mut event_data = data.to_vec();
event_data.extend_from_slice(&sig);
event_data.extend_from_slice(&from);
event_data.extend_from_slice(&to);
extend_and_hash(end_hash, 2, &event_data)
}
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
}
}
Allow events to hold any kind of data
2018-02-26 14:31:01 -08:00
pub fn next_hash(
start_hash: &Sha256Hash,
num_hashes: u64,
event: &Event<Sha256Hash>,
) -> Sha256Hash {
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
let mut end_hash = *start_hash;
Better names
2018-02-15 10:45:04 -08:00
for _ in 0..num_hashes {
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
end_hash = hash(&end_hash);
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
}
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
hash_event(&end_hash, event)
Explain proof-of-history in the readme Also: * Hash userdata so that verification works as the readme describes. * Drop itertools package. Found a way to use std::iter instead. Fixes #8
2018-02-20 12:07:54 -08:00
}
/// Creates the next Tick Entry 'num_hashes' after 'start_hash'.
Allow Entry to hold events of any kind of data
2018-02-26 14:37:33 -08:00
pub fn next_entry(
start_hash: &Sha256Hash,
num_hashes: u64,
event: Event<Sha256Hash>,
) -> Entry<Sha256Hash> {
Explain proof-of-history in the readme Also: * Hash userdata so that verification works as the readme describes. * Drop itertools package. Found a way to use std::iter instead. Fixes #8
2018-02-20 12:07:54 -08:00
Entry {
num_hashes,
end_hash: next_hash(start_hash, num_hashes, &event),
event,
}
}
Allow events to hold any kind of data
2018-02-26 14:31:01 -08:00
pub fn next_entry_mut(
start_hash: &mut Sha256Hash,
num_hashes: u64,
event: Event<Sha256Hash>,
Allow Entry to hold events of any kind of data
2018-02-26 14:37:33 -08:00
) -> Entry<Sha256Hash> {
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
let entry = next_entry(start_hash, num_hashes, event);
*start_hash = entry.end_hash;
entry
}
Explain proof-of-history in the readme Also: * Hash userdata so that verification works as the readme describes. * Drop itertools package. Found a way to use std::iter instead. Fixes #8
2018-02-20 12:07:54 -08:00
/// Creates the next Tick Entry 'num_hashes' after 'start_hash'.
Allow Entry to hold events of any kind of data
2018-02-26 14:37:33 -08:00
pub fn next_tick(start_hash: &Sha256Hash, num_hashes: u64) -> Entry<Sha256Hash> {
Explain proof-of-history in the readme Also: * Hash userdata so that verification works as the readme describes. * Drop itertools package. Found a way to use std::iter instead. Fixes #8
2018-02-20 12:07:54 -08:00
next_entry(start_hash, num_hashes, Event::Tick)
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
}
Move entry verification out of Entry impl
2018-02-26 13:39:01 -08:00
/// Verifies self.end_hash is the result of hashing a 'start_hash' 'self.num_hashes' times.
/// If the event is not a Tick, then hash that as well.
Allow Entry to hold events of any kind of data
2018-02-26 14:37:33 -08:00
pub fn verify_entry(entry: &Entry<Sha256Hash>, start_hash: &Sha256Hash) -> bool {
Move entry verification out of Entry impl
2018-02-26 13:39:01 -08:00
if let Event::Claim { key, data, sig } = entry.event {
if !verify_signature(&key, &data, &sig) {
return false;
}
}
if let Event::Transaction {
from,
to,
data,
sig,
} = entry.event
{
let mut sign_data = data.to_vec();
sign_data.extend_from_slice(&to);
if !verify_signature(&from, &sign_data, &sig) {
return false;
}
}
entry.end_hash == next_hash(start_hash, entry.num_hashes, &entry.event)
}
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
/// Verifies the hashes and counts of a slice of events are all consistent.
Allow Entry to hold events of any kind of data
2018-02-26 14:37:33 -08:00
pub fn verify_slice(events: &[Entry<Sha256Hash>], start_hash: &Sha256Hash) -> bool {
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
use rayon::prelude::*;
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
let genesis = [Entry::new_tick(Default::default(), start_hash)];
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
let event_pairs = genesis.par_iter().chain(events).zip(events);
Move entry verification out of Entry impl
2018-02-26 13:39:01 -08:00
event_pairs.all(|(x0, x1)| verify_entry(&x1, &x0.end_hash))
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
}
/// Verifies the hashes and events serially. Exists only for reference.
Allow Entry to hold events of any kind of data
2018-02-26 14:37:33 -08:00
pub fn verify_slice_seq(events: &[Entry<Sha256Hash>], start_hash: &Sha256Hash) -> bool {
Better names Event -> Entry EventData -> Event
2018-02-18 08:53:38 -08:00
let genesis = [Entry::new_tick(0, start_hash)];
Cleanup Make it so the parallel and sequential verification implementations are only different in one line. For reasons I don't understand Rayon's `all()` isn't `mut`.
2018-02-15 15:00:05 -08:00
let mut event_pairs = genesis.iter().chain(events).zip(events);
Move entry verification out of Entry impl
2018-02-26 13:39:01 -08:00
event_pairs.all(|(x0, x1)| verify_entry(&x1, &x0.end_hash))
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
}
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
/// Verify a signed message with the given public key.
pub fn verify_signature(peer_public_key_bytes: &[u8], msg_bytes: &[u8], sig_bytes: &[u8]) -> bool {
use untrusted;
use ring::signature;
let peer_public_key = untrusted::Input::from(peer_public_key_bytes);
let msg = untrusted::Input::from(msg_bytes);
let sig = untrusted::Input::from(sig_bytes);
signature::verify(&signature::ED25519, peer_public_key, msg, sig).is_ok()
}
Allow events to hold any kind of data
2018-02-26 14:31:01 -08:00
pub fn create_entries(
start_hash: &Sha256Hash,
num_hashes: u64,
events: &[Event<Sha256Hash>],
Allow Entry to hold events of any kind of data
2018-02-26 14:37:33 -08:00
) -> Vec<Entry<Sha256Hash>> {
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
let mut end_hash = *start_hash;
events
.iter()
.map(|event| next_entry_mut(&mut end_hash, num_hashes, event.clone()))
.collect()
}
Consistent naming
2018-02-15 10:50:48 -08:00
/// Create a vector of Ticks of length 'len' from 'start_hash' hash and 'num_hashes'.
Allow Entry to hold events of any kind of data
2018-02-26 14:37:33 -08:00
pub fn create_ticks(
start_hash: &Sha256Hash,
num_hashes: u64,
len: usize,
) -> Vec<Entry<Sha256Hash>> {
Explain proof-of-history in the readme Also: * Hash userdata so that verification works as the readme describes. * Drop itertools package. Found a way to use std::iter instead. Fixes #8
2018-02-20 12:07:54 -08:00
use std::iter;
let mut end_hash = *start_hash;
iter::repeat(Event::Tick)
.take(len)
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
.map(|event| next_entry_mut(&mut end_hash, num_hashes, event))
Explain proof-of-history in the readme Also: * Hash userdata so that verification works as the readme describes. * Drop itertools package. Found a way to use std::iter instead. Fixes #8
2018-02-20 12:07:54 -08:00
.collect()
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
}
Move tests to expose them to rustfmt and kcov
2018-02-15 16:47:05 -08:00
#[cfg(test)]
mod tests {
use super::*;
#[test]
fn test_event_verify() {
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
let zero = Sha256Hash::default();
let one = hash(&zero);
Move entry verification out of Entry impl
2018-02-26 13:39:01 -08:00
assert!(verify_entry(&Entry::new_tick(0, &zero), &zero)); // base case
assert!(!verify_entry(&Entry::new_tick(0, &zero), &one)); // base case, bad
assert!(verify_entry(&next_tick(&zero, 1), &zero)); // inductive step
assert!(!verify_entry(&next_tick(&zero, 1), &one)); // inductive step, bad
Move tests to expose them to rustfmt and kcov
2018-02-15 16:47:05 -08:00
}
#[test]
fn test_next_tick() {
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
let zero = Sha256Hash::default();
assert_eq!(next_tick(&zero, 1).num_hashes, 1)
Move tests to expose them to rustfmt and kcov
2018-02-15 16:47:05 -08:00
}
Allow Entry to hold events of any kind of data
2018-02-26 14:37:33 -08:00
fn verify_slice_generic(verify_slice: fn(&[Entry<Sha256Hash>], &Sha256Hash) -> bool) {
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
let zero = Sha256Hash::default();
let one = hash(&zero);
assert!(verify_slice(&vec![], &zero)); // base case
assert!(verify_slice(&vec![Entry::new_tick(0, &zero)], &zero)); // singleton case 1
assert!(!verify_slice(&vec![Entry::new_tick(0, &zero)], &one)); // singleton case 2, bad
assert!(verify_slice(&create_ticks(&zero, 0, 2), &zero)); // inductive step
let mut bad_ticks = create_ticks(&zero, 0, 2);
bad_ticks[1].end_hash = one;
assert!(!verify_slice(&bad_ticks, &zero)); // inductive step, bad
Test sequential version of verify_slice with same tests
2018-02-16 08:14:42 -08:00
}
#[test]
fn test_verify_slice() {
verify_slice_generic(verify_slice);
Move tests to expose them to rustfmt and kcov
2018-02-15 16:47:05 -08:00
}
Test sequential version of verify_slice with same tests
2018-02-16 08:14:42 -08:00
#[test]
fn test_verify_slice_seq() {
verify_slice_generic(verify_slice_seq);
}
Test reorder attack
2018-02-20 13:46:36 -08:00
#[test]
fn test_reorder_attack() {
let zero = Sha256Hash::default();
let one = hash(&zero);
Rename UserDataKey to Discovery From the perspective of the log, when some data's hash is added, that data is "discovered" by the historian. Another event might be a "claim" that some signed data belongs to the owner of a public key.
2018-02-24 04:18:59 -08:00
// First, verify Discovery events
Make the Discovery event into a struct instead of a tuple
2018-02-24 10:15:03 -08:00
let events = [
Event::Discovery { data: zero },
Event::Discovery { data: one },
];
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
let mut entries = create_entries(&zero, 0, &events);
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
assert!(verify_slice(&entries, &zero));
Test reorder attack
2018-02-20 13:46:36 -08:00
Rename UserDataKey to Discovery From the perspective of the log, when some data's hash is added, that data is "discovered" by the historian. Another event might be a "claim" that some signed data belongs to the owner of a public key.
2018-02-24 04:18:59 -08:00
// Next, swap two Discovery events and ensure verification fails.
Test reorder attack
2018-02-20 13:46:36 -08:00
let event0 = entries[0].event.clone();
let event1 = entries[1].event.clone();
entries[0].event = event1;
entries[1].event = event0;
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
assert!(!verify_slice(&entries, &zero));
Test reorder attack
2018-02-20 13:46:36 -08:00
}
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
#[test]
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
fn test_claim() {
let keypair = generate_keypair();
let event0 = sign_hash(&hash(b"hello, world"), &keypair);
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
let zero = Sha256Hash::default();
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
let entries = create_entries(&zero, 0, &[event0]);
Extend the event log with a Claim event to claim possession Unlike a Discovery event, a Claim event associates a public key with a hash. It's intended to to be used to claim ownership of some hashable data. For example, a graphic designer could claim copyright by hashing some image they created, signing it with their private key, and publishing the hash-signature pair via the historian. If someone else tries to claim it as their own, the designer can point to the historian's log as cryptographically secure evidence that the designer's copy existed before anyone else's. Note there's nothing here that verifies the first claim is the actual content owner, only that the first claim almost certainly happened before a second.
2018-02-24 05:53:36 -08:00
assert!(verify_slice(&entries, &zero));
}
Test bad signature
2018-02-24 09:27:51 -08:00
#[test]
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
fn test_wrong_data_claim_attack() {
let keypair = generate_keypair();
let mut event0 = sign_hash(&hash(b"hello, world"), &keypair);
Test bad signature
2018-02-24 09:27:51 -08:00
if let Event::Claim { key, sig, .. } = event0 {
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
let data = hash(b"goodbye cruel world");
Test bad signature
2018-02-24 09:27:51 -08:00
event0 = Event::Claim { key, data, sig };
}
let zero = Sha256Hash::default();
Extend the event log with a Transaction event to transfer possession This implementation assumes 'from' is the current owner of 'data'. Once that's verified, the signature ensures that nobody modified 'data' (the asset being transferred) or 'to' the entity taking ownership. Fixes #14
2018-02-26 10:01:19 -08:00
let entries = create_entries(&zero, 0, &[event0]);
assert!(!verify_slice(&entries, &zero));
}
#[test]
fn test_transfer() {
let keypair0 = generate_keypair();
let keypair1 = generate_keypair();
let pubkey1 = GenericArray::clone_from_slice(keypair1.public_key_bytes());
let event0 = transfer_hash(&hash(b"hello, world"), &keypair0, pubkey1);
let zero = Sha256Hash::default();
let entries = create_entries(&zero, 0, &[event0]);
assert!(verify_slice(&entries, &zero));
}
#[test]
fn test_wrong_data_transfer_attack() {
let keypair0 = generate_keypair();
let keypair1 = generate_keypair();
let pubkey1 = GenericArray::clone_from_slice(keypair1.public_key_bytes());
let mut event0 = transfer_hash(&hash(b"hello, world"), &keypair0, pubkey1);
if let Event::Transaction { from, to, sig, .. } = event0 {
let data = hash(b"goodbye cruel world");
event0 = Event::Transaction {
from,
to,
data,
sig,
};
}
let zero = Sha256Hash::default();
let entries = create_entries(&zero, 0, &[event0]);
assert!(!verify_slice(&entries, &zero));
}
#[test]
fn test_transfer_hijack_attack() {
let keypair0 = generate_keypair();
let keypair1 = generate_keypair();
let pubkey1 = GenericArray::clone_from_slice(keypair1.public_key_bytes());
let mut event0 = transfer_hash(&hash(b"hello, world"), &keypair0, pubkey1);
if let Event::Transaction {
from, data, sig, ..
} = event0
{
let theif_keypair = generate_keypair();
let to = GenericArray::clone_from_slice(theif_keypair.public_key_bytes());
event0 = Event::Transaction {
from,
to,
data,
sig,
};
}
let zero = Sha256Hash::default();
let entries = create_entries(&zero, 0, &[event0]);
Test bad signature
2018-02-24 09:27:51 -08:00
assert!(!verify_slice(&entries, &zero));
}
Move tests to expose them to rustfmt and kcov
2018-02-15 16:47:05 -08:00
}
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
#[cfg(all(feature = "unstable", test))]
mod bench {
extern crate test;
use self::test::Bencher;
Rename event crate to log
2018-02-18 08:59:15 -08:00
use log::*;
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
#[bench]
fn event_bench(bencher: &mut Bencher) {
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
let start_hash = Default::default();
Update benchmark * Add asm, though it doesn't make it faster. TODO: use avx instructions. * Do 10x less hashes, since sha256 is more expensive.
2018-02-19 15:51:32 -08:00
let events = create_ticks(&start_hash, 10_000, 8);
Add separate benchmarks for seq and par versions of verify_slice
2018-02-16 09:38:12 -08:00
bencher.iter(|| {
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
assert!(verify_slice(&events, &start_hash));
Add separate benchmarks for seq and par versions of verify_slice
2018-02-16 09:38:12 -08:00
});
}
#[bench]
fn event_bench_seq(bencher: &mut Bencher) {
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
let start_hash = Default::default();
Update benchmark * Add asm, though it doesn't make it faster. TODO: use avx instructions. * Do 10x less hashes, since sha256 is more expensive.
2018-02-19 15:51:32 -08:00
let events = create_ticks(&start_hash, 10_000, 8);
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
bencher.iter(|| {
Use sha256 hashes instead of Rust's builtin hasher. Causes a 20x performance degradation. Enabling asm did not speed things up.
2018-02-19 15:17:13 -08:00
assert!(verify_slice_seq(&events, &start_hash));
Rename Tick to Event * Define a tick to be an event with no user data. * Use the term "event log" for now. ** Reserve the word "entry" for hash entries, and "item" for array items. ** Reserve the word "blockchain" for when the event is a block of something. ** Reserve the word "ledger" for when the event is of a particular type, such as transactions.
2018-02-15 09:13:56 -08:00
});
}
}