2018-08-29 01:09:35 -07:00
|
|
|
//! Adversaries for test networks
|
|
|
|
|
//!
|
|
|
|
|
//! Adversaries can alter message ordering, inject messages and control the behavior of any faulty
|
|
|
|
|
//! node. These functions are handled through callbacks, implemented individually by each adversary.
|
|
|
|
|
//!
|
|
|
|
|
//! This module contains algorithm-agnostic adversaries, which should work for (or rather, against)
|
2019-01-08 00:30:37 -08:00
|
|
|
//! any `ConsensusProtocol`. Specific adversaries tailored to individual algorithms are implemented
|
2018-08-29 01:09:35 -07:00
|
|
|
//! alongside their other test cases.
|
|
|
|
|
//!
|
2018-09-04 05:50:15 -07:00
|
|
|
//! ## Adversary model
|
|
|
|
|
//!
|
|
|
|
|
//! The adversary is assumed to have the following capabilities:
|
|
|
|
|
//!
|
|
|
|
|
//! 1. Manipulation of the order in which messages are delivered.
|
|
|
|
|
//! 1. Eavesdropping on any message on the wire, regardless of sender or receiver.
|
|
|
|
|
//! 1. Full control over any node marked as faulty.
|
|
|
|
|
//!
|
|
|
|
|
//! As a consequence, injecting arbitrary messages from faulty nodes into the network is possible,
|
|
|
|
|
//! by sending a message and re-ordering it.
|
|
|
|
|
//!
|
|
|
|
|
//! The following capabilities are explicitly not included:
|
|
|
|
|
//!
|
|
|
|
|
//! 1. Dropping of messages. The networking layer is expected to ensure that no messages
|
|
|
|
|
//! are lost. A node that drops messages regardless is considered faulty in real-world
|
|
|
|
|
//! deployments.
|
|
|
|
|
//! 1. Forging message senders. The networking layer is also expected to sign messages and ensure
|
|
|
|
|
//! that they are not forged.
|
|
|
|
|
//!
|
|
|
|
|
//! ## Handles
|
|
|
|
|
//!
|
|
|
|
|
//! The adversary manipulates the network and nodes exclusively through handles that ensure they do
|
|
|
|
|
//! not violate the constraints defined above. Handles are either mutable or immutable and can, in
|
|
|
|
|
//! some cases be upgraded to actual references, if the underlying node is faulty (see
|
|
|
|
|
//! `NodeHandle::node()` and `NodeHandle::node_mut()`).
|
2018-08-29 01:09:35 -07:00
|
|
|
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
use std::cmp;
|
2018-10-16 10:31:30 -07:00
|
|
|
use std::collections::VecDeque;
|
2018-10-26 04:37:50 -07:00
|
|
|
|
|
|
|
|
use rand::Rng;
|
2018-08-29 01:09:35 -07:00
|
|
|
|
2019-01-08 00:30:37 -08:00
|
|
|
use hbbft::{ConsensusProtocol, CpStep};
|
2018-10-10 07:11:27 -07:00
|
|
|
|
2019-03-14 06:41:23 -07:00
|
|
|
use crate::net::util::randomly;
|
|
|
|
|
use crate::net::{CrankError, NetMessage, NetworkMessage, Node, VirtualNet};
|
2018-09-04 05:50:15 -07:00
|
|
|
|
|
|
|
|
/// Immutable network handle.
|
|
|
|
|
///
|
|
|
|
|
/// Allows querying public information of the network or getting immutable handles to any node.
|
2018-09-11 10:11:04 -07:00
|
|
|
#[derive(Debug)]
|
2019-01-09 02:56:40 -08:00
|
|
|
pub struct NetHandle<'a, D, A>(&'a VirtualNet<D, A>)
|
2018-09-04 05:50:15 -07:00
|
|
|
where
|
2019-01-08 00:30:37 -08:00
|
|
|
D: ConsensusProtocol,
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
D::Message: Clone,
|
|
|
|
|
D::Output: Clone,
|
|
|
|
|
A: Adversary<D>;
|
2018-09-04 05:50:15 -07:00
|
|
|
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
impl<'a, D: 'a, A> NetHandle<'a, D, A>
|
2018-09-04 05:50:15 -07:00
|
|
|
where
|
2019-01-08 00:30:37 -08:00
|
|
|
D: ConsensusProtocol,
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
D::Message: Clone,
|
|
|
|
|
D::Output: Clone,
|
|
|
|
|
A: Adversary<D>,
|
2018-09-04 05:50:15 -07:00
|
|
|
{
|
|
|
|
|
/// Returns a node handle iterator over all nodes in the network.
|
|
|
|
|
#[inline]
|
2019-01-09 02:56:40 -08:00
|
|
|
pub fn nodes(&self) -> impl Iterator<Item = NodeHandle<'_, D>> {
|
2018-09-04 05:50:15 -07:00
|
|
|
self.0.nodes().map(NodeHandle::new)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Returns an iterator over all faulty nodes in the network.
|
|
|
|
|
///
|
|
|
|
|
/// Instead of a handle, returns the node directly, as the adversary gets full access to all
|
|
|
|
|
/// nodes in the network.
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn faulty_nodes(&self) -> impl Iterator<Item = &Node<D>> {
|
|
|
|
|
// FIXME: Add an API to handle a step?
|
|
|
|
|
// Not wrapped in a `NodeHandle`, the adversary gets full access to their own nodes.
|
|
|
|
|
self.0.faulty_nodes()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Returns a node handle iterator over all correct nodes in the network.
|
|
|
|
|
#[inline]
|
2019-01-09 02:56:40 -08:00
|
|
|
pub fn correct_nodes(&self) -> impl Iterator<Item = NodeHandle<'_, D>> {
|
2018-09-04 05:50:15 -07:00
|
|
|
self.0.correct_nodes().map(NodeHandle::new)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Returns an iterator over all messages in the network.
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn messages(&'a self) -> impl Iterator<Item = &'a NetMessage<D>> {
|
|
|
|
|
self.0.messages()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Returns a handle to a specific node handle.
|
|
|
|
|
#[inline]
|
2019-01-09 02:56:40 -08:00
|
|
|
pub fn get(&self, id: D::NodeId) -> Option<NodeHandle<'_, D>> {
|
2018-09-04 05:50:15 -07:00
|
|
|
self.0.get(id).map(NodeHandle::new)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Insert-position for networking queue.
|
|
|
|
|
#[derive(Copy, Clone, Debug, PartialEq, Eq)]
|
|
|
|
|
pub enum QueuePosition {
|
|
|
|
|
/// Front of the queue (equivalent to `Before(0)`).
|
|
|
|
|
Front,
|
|
|
|
|
/// Back of the queue.
|
|
|
|
|
Back,
|
|
|
|
|
/// Before a specific a position.
|
|
|
|
|
Before(usize),
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Mutable network handle.
|
|
|
|
|
///
|
|
|
|
|
/// Allows reordering of messages, injecting new ones into the network queue and getting mutable
|
|
|
|
|
/// handles to nodes.
|
2018-09-11 10:11:04 -07:00
|
|
|
#[derive(Debug)]
|
2019-01-09 02:56:40 -08:00
|
|
|
pub struct NetMutHandle<'a, D, A>(&'a mut VirtualNet<D, A>)
|
2018-09-04 05:50:15 -07:00
|
|
|
where
|
2019-01-08 00:30:37 -08:00
|
|
|
D: ConsensusProtocol,
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
D::Message: Clone,
|
|
|
|
|
D::Output: Clone,
|
|
|
|
|
A: Adversary<D>;
|
2018-09-04 05:50:15 -07:00
|
|
|
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
impl<'a, D, A> NetMutHandle<'a, D, A>
|
2018-09-04 05:50:15 -07:00
|
|
|
where
|
2019-01-08 00:30:37 -08:00
|
|
|
D: ConsensusProtocol,
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
A: Adversary<D>,
|
2018-09-04 05:50:15 -07:00
|
|
|
D::NodeId: Clone,
|
|
|
|
|
D::Message: Clone,
|
|
|
|
|
D::Output: Clone,
|
|
|
|
|
{
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
pub fn new(net: &'a mut VirtualNet<D, A>) -> Self {
|
2018-09-04 05:50:15 -07:00
|
|
|
NetMutHandle(net)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Returns a mutable node handle iterator over all nodes in the network.
|
|
|
|
|
#[inline]
|
2019-01-09 02:56:40 -08:00
|
|
|
pub fn nodes_mut(&mut self) -> impl Iterator<Item = NodeMutHandle<'_, D>> {
|
2018-09-04 05:50:15 -07:00
|
|
|
self.0.nodes_mut().map(NodeMutHandle::new)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Returns an iterator that allows changes to all faulty nodes in the network.
|
|
|
|
|
///
|
|
|
|
|
/// Instead of a handle, returns the node directly, as the adversary gets full access to all
|
|
|
|
|
/// nodes in the network.
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn faulty_nodes_mut(&mut self) -> impl Iterator<Item = &mut Node<D>> {
|
|
|
|
|
self.0.faulty_nodes_mut()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Returns a mutable node handle iterator over all nodes in the network.
|
|
|
|
|
#[inline]
|
2019-01-09 02:56:40 -08:00
|
|
|
pub fn correct_nodes_mut(&mut self) -> impl Iterator<Item = NodeMutHandle<'_, D>> {
|
2018-09-04 05:50:15 -07:00
|
|
|
self.0.correct_nodes_mut().map(NodeMutHandle::new)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Normally dispatch a message
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
pub fn dispatch_message<R: Rng>(
|
|
|
|
|
&mut self,
|
|
|
|
|
msg: NetMessage<D>,
|
|
|
|
|
rng: &mut R,
|
2019-01-08 00:30:37 -08:00
|
|
|
) -> Result<CpStep<D>, CrankError<D>> {
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
self.0.dispatch_message(msg, rng)
|
2018-09-04 05:50:15 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Injects a message into the network.
|
|
|
|
|
///
|
|
|
|
|
/// Allows the injection of `msg` at `position` into the message queue.
|
|
|
|
|
///
|
|
|
|
|
/// # Panics
|
|
|
|
|
///
|
|
|
|
|
/// Panics if `msg.from` is not a faulty node or either `msg.from` or `msg.to` do not exist.
|
|
|
|
|
/// Panics if `position` is equal to `Before(idx)`, with `idx` being out of bounds.
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn inject_message(&mut self, position: QueuePosition, msg: NetMessage<D>) {
|
2018-10-16 10:31:30 -07:00
|
|
|
// Ensure the source node is faulty.
|
2018-09-04 05:50:15 -07:00
|
|
|
assert!(
|
|
|
|
|
self.0
|
|
|
|
|
.get(msg.from.clone())
|
|
|
|
|
.expect("inject: unknown sender node")
|
|
|
|
|
.is_faulty(),
|
|
|
|
|
"Tried to inject message not originating from a faulty node."
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
// Sender must exist.
|
|
|
|
|
self.0
|
|
|
|
|
.get(msg.to.clone())
|
|
|
|
|
.expect("inject: unknown recipient node");
|
|
|
|
|
|
|
|
|
|
// Insert into queue. `insert` will panic on out-of-bounds.
|
|
|
|
|
match position {
|
|
|
|
|
QueuePosition::Front => self.0.messages.push_front(msg),
|
|
|
|
|
QueuePosition::Back => self.0.messages.push_back(msg),
|
|
|
|
|
QueuePosition::Before(idx) => self.0.messages.insert(idx, msg),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Swap two messages in the message queue.
|
|
|
|
|
///
|
|
|
|
|
/// # Panics
|
|
|
|
|
///
|
|
|
|
|
/// Panics if either `i` or `j` are out-of-bounds.
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn swap_messages(&mut self, i: usize, j: usize) {
|
|
|
|
|
self.0.swap_messages(i, j);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Reorder all messages.
|
|
|
|
|
///
|
|
|
|
|
/// Sorts all message with a comparator function.
|
|
|
|
|
///
|
|
|
|
|
/// Sorting is not cheap, but not prohitibively so, since message queues tend to be small for
|
|
|
|
|
/// most test cases. See `VirtualNet::sort_messages_by` for notes about sorting efficiency.
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn sort_messages_by<F>(&mut self, f: F)
|
|
|
|
|
where
|
|
|
|
|
F: FnMut(&NetMessage<D>, &NetMessage<D>) -> cmp::Ordering,
|
|
|
|
|
{
|
|
|
|
|
self.0.sort_messages_by(f)
|
|
|
|
|
}
|
2018-10-16 10:31:30 -07:00
|
|
|
|
|
|
|
|
/// Returns a reference to the queue of messages
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn get_messages(&self) -> &VecDeque<NetMessage<D>> {
|
|
|
|
|
&self.0.messages
|
|
|
|
|
}
|
2018-09-04 05:50:15 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Downgrade-conversion.
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
impl<'a, D, A> From<NetMutHandle<'a, D, A>> for NetHandle<'a, D, A>
|
2018-09-04 05:50:15 -07:00
|
|
|
where
|
2019-01-08 00:30:37 -08:00
|
|
|
D: ConsensusProtocol,
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
A: Adversary<D>,
|
|
|
|
|
D::Message: Clone,
|
|
|
|
|
D::Output: Clone,
|
2018-09-04 05:50:15 -07:00
|
|
|
{
|
|
|
|
|
#[inline]
|
2019-01-09 02:56:40 -08:00
|
|
|
fn from(n: NetMutHandle<'_, D, A>) -> NetHandle<'_, D, A> {
|
2018-09-04 05:50:15 -07:00
|
|
|
NetHandle(n.0)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Immutable node handle.
|
2018-09-11 10:11:04 -07:00
|
|
|
#[derive(Debug)]
|
2019-01-09 02:56:40 -08:00
|
|
|
pub struct NodeHandle<'a, D>(&'a Node<D>)
|
2018-09-04 05:50:15 -07:00
|
|
|
where
|
2019-01-08 00:30:37 -08:00
|
|
|
D: ConsensusProtocol;
|
2018-09-04 05:50:15 -07:00
|
|
|
|
|
|
|
|
impl<'a, D> NodeHandle<'a, D>
|
|
|
|
|
where
|
2019-01-08 00:30:37 -08:00
|
|
|
D: ConsensusProtocol,
|
2018-09-04 05:50:15 -07:00
|
|
|
{
|
|
|
|
|
/// Construct a new immutable node handle.
|
|
|
|
|
#[inline]
|
|
|
|
|
fn new(inner: &'a Node<D>) -> Self {
|
|
|
|
|
NodeHandle(inner)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Return node ID.
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn id(&self) -> D::NodeId {
|
|
|
|
|
self.0.id().clone()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Returns a reference to the faulty node.
|
|
|
|
|
///
|
|
|
|
|
/// # Panics
|
|
|
|
|
///
|
|
|
|
|
/// Panics if the node is not faulty.
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn node(&self) -> &'a Node<D> {
|
|
|
|
|
self.try_node()
|
|
|
|
|
.expect("could not access inner node of handle, node is not faulty")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// If the inner node is faulty, returns a reference to it.
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn try_node(&self) -> Option<&'a Node<D>> {
|
|
|
|
|
if self.0.is_faulty() {
|
|
|
|
|
Some(self.0)
|
|
|
|
|
} else {
|
|
|
|
|
None
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Mutable node handle.
|
2018-09-11 10:11:04 -07:00
|
|
|
#[derive(Debug)]
|
2019-01-09 02:56:40 -08:00
|
|
|
pub struct NodeMutHandle<'a, D>(&'a mut Node<D>)
|
2018-09-04 05:50:15 -07:00
|
|
|
where
|
2019-01-08 00:30:37 -08:00
|
|
|
D: ConsensusProtocol;
|
2018-09-04 05:50:15 -07:00
|
|
|
|
|
|
|
|
impl<'a, D: 'a> NodeMutHandle<'a, D>
|
|
|
|
|
where
|
2019-01-08 00:30:37 -08:00
|
|
|
D: ConsensusProtocol,
|
2018-09-04 05:50:15 -07:00
|
|
|
{
|
|
|
|
|
/// Construct a new mutable node handle.
|
|
|
|
|
fn new(inner: &'a mut Node<D>) -> Self {
|
|
|
|
|
NodeMutHandle(inner)
|
|
|
|
|
}
|
|
|
|
|
|
2019-03-14 06:41:23 -07:00
|
|
|
/// Return node ID.
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn id(&self) -> D::NodeId {
|
|
|
|
|
self.0.id().clone()
|
|
|
|
|
}
|
|
|
|
|
|
2018-09-04 05:50:15 -07:00
|
|
|
/// Returns a mutable reference to the faulty node.
|
|
|
|
|
///
|
|
|
|
|
/// # Panics
|
|
|
|
|
///
|
|
|
|
|
/// Panics if the node is not faulty.
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn node_mut(&'a mut self) -> &'a mut Node<D> {
|
|
|
|
|
self.try_node_mut()
|
|
|
|
|
.expect("could not access inner node of handle, node is not faulty")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// If the inner node is faulty, returns a mutable reference to it.
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn try_node_mut(&mut self) -> Option<&mut Node<D>> {
|
|
|
|
|
if self.0.is_faulty() {
|
|
|
|
|
Some(self.0)
|
|
|
|
|
} else {
|
|
|
|
|
None
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2018-08-29 01:09:35 -07:00
|
|
|
|
|
|
|
|
/// Network adversary.
|
|
|
|
|
pub trait Adversary<D>
|
|
|
|
|
where
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
Self: Sized,
|
2019-01-08 00:30:37 -08:00
|
|
|
D: ConsensusProtocol,
|
2018-08-29 01:09:35 -07:00
|
|
|
D::Message: Clone,
|
|
|
|
|
D::Output: Clone,
|
|
|
|
|
{
|
|
|
|
|
/// Pre-crank hook.
|
|
|
|
|
///
|
|
|
|
|
/// Executed before each crank, the `pre_crank` function allows the adversary to manipulate the
|
|
|
|
|
/// order of network messages by manipulating the `net` parameter.
|
|
|
|
|
///
|
|
|
|
|
/// The default implementation does not alter the passed network in any way.
|
|
|
|
|
#[inline]
|
2019-01-09 02:56:40 -08:00
|
|
|
fn pre_crank<R: Rng>(&mut self, _net: NetMutHandle<'_, D, Self>, _rng: &mut R) {}
|
2018-08-29 01:09:35 -07:00
|
|
|
|
|
|
|
|
/// Tamper with a faulty node's operation.
|
|
|
|
|
///
|
|
|
|
|
/// You can (but are not required to) run faulty nodes like regular nodes. However, if a node
|
|
|
|
|
/// is marked faulty, a message is not passed directly to the node. It is handed to 'tamper'
|
|
|
|
|
/// instead.
|
|
|
|
|
///
|
|
|
|
|
/// The return value replaces what would otherwise have been output by the algorithm, the
|
|
|
|
|
/// returned step is processed normally by the network (messages are queued and outputs
|
|
|
|
|
/// are recorded).
|
|
|
|
|
///
|
|
|
|
|
/// The default implementation does not perform any tampering, but instead calls
|
|
|
|
|
/// `VirtualNet::dispatch_message`, which results in the message being processed as if the node
|
|
|
|
|
/// was not faulty.
|
|
|
|
|
#[inline]
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
fn tamper<R: Rng>(
|
2018-08-29 01:09:35 -07:00
|
|
|
&mut self,
|
2019-01-09 02:56:40 -08:00
|
|
|
mut net: NetMutHandle<'_, D, Self>,
|
2018-08-29 01:09:35 -07:00
|
|
|
msg: NetMessage<D>,
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
rng: &mut R,
|
2019-01-08 00:30:37 -08:00
|
|
|
) -> Result<CpStep<D>, CrankError<D>> {
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
net.dispatch_message(msg, rng)
|
2018-08-29 01:09:35 -07:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2019-03-14 06:41:23 -07:00
|
|
|
/// Utility function to sort messages in the given net handle ascending by receiving node id
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn sort_ascending<D, A>(net: &mut NetMutHandle<'_, D, A>)
|
|
|
|
|
where
|
|
|
|
|
D: ConsensusProtocol,
|
|
|
|
|
D::Message: Clone,
|
|
|
|
|
D::Output: Clone,
|
|
|
|
|
A: Adversary<D>,
|
|
|
|
|
{
|
|
|
|
|
net.sort_messages_by(|a, b| a.to().cmp(&b.to()))
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Utility function to swap the topmost message with a random message in the queue
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn swap_random<R, D, A>(net: &mut NetMutHandle<'_, D, A>, rng: &mut R)
|
|
|
|
|
where
|
|
|
|
|
R: Rng,
|
|
|
|
|
D: ConsensusProtocol,
|
|
|
|
|
D::Message: Clone,
|
|
|
|
|
D::Output: Clone,
|
|
|
|
|
A: Adversary<D>,
|
|
|
|
|
{
|
|
|
|
|
let l = net.get_messages().len();
|
|
|
|
|
if l > 0 {
|
|
|
|
|
net.swap_messages(0, rng.gen_range(0, l));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Selects a random node and returns its id
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn random_node<R, D, A>(net: &mut NetMutHandle<'_, D, A>, rng: &mut R) -> Option<D::NodeId>
|
|
|
|
|
where
|
|
|
|
|
R: Rng,
|
|
|
|
|
D: ConsensusProtocol,
|
|
|
|
|
D::Message: Clone,
|
|
|
|
|
D::Output: Clone,
|
|
|
|
|
A: Adversary<D>,
|
|
|
|
|
{
|
|
|
|
|
let l = net.nodes_mut().count();
|
|
|
|
|
if l > 0 {
|
|
|
|
|
// Pick a node id at random
|
|
|
|
|
return Some(
|
|
|
|
|
net.nodes_mut()
|
|
|
|
|
.nth(rng.gen_range(0, l))
|
|
|
|
|
.expect("nodes list changed since last call")
|
|
|
|
|
.id(),
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
None
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Utility function to sweep the messages for a randomly chosen node to the top
|
|
|
|
|
/// of the message queue. Relative message order is preserved by using
|
|
|
|
|
/// the available stable sort algorithm.
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn sort_by_random_node<R, D, A>(net: &mut NetMutHandle<'_, D, A>, rng: &mut R)
|
|
|
|
|
where
|
|
|
|
|
R: Rng,
|
|
|
|
|
D: ConsensusProtocol,
|
|
|
|
|
D::Message: Clone,
|
|
|
|
|
D::Output: Clone,
|
|
|
|
|
A: Adversary<D>,
|
|
|
|
|
{
|
|
|
|
|
if let Some(picked_node) = random_node(net, rng) {
|
|
|
|
|
// To make the picked node's messages sorted to the top of the queue
|
|
|
|
|
// it always has to be less than the others, regardless of its actual id.
|
|
|
|
|
net.sort_messages_by(|a, b| {
|
|
|
|
|
let a = a.to().clone();
|
|
|
|
|
let b = b.to().clone();
|
|
|
|
|
|
|
|
|
|
if a == b {
|
|
|
|
|
cmp::Ordering::Equal
|
|
|
|
|
} else if a == picked_node {
|
|
|
|
|
cmp::Ordering::Less
|
|
|
|
|
} else if b == picked_node {
|
|
|
|
|
cmp::Ordering::Greater
|
|
|
|
|
} else {
|
|
|
|
|
a.cmp(&b)
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2018-08-29 01:09:35 -07:00
|
|
|
/// Passive adversary.
|
|
|
|
|
///
|
|
|
|
|
/// The `NullAdversary` does not interfere with operation in any way, it neither reorders messages
|
|
|
|
|
/// nor tampers with message, passing them through unchanged instead.
|
|
|
|
|
#[derive(Debug, Default)]
|
2018-09-04 05:50:15 -07:00
|
|
|
pub struct NullAdversary;
|
2018-08-29 01:09:35 -07:00
|
|
|
|
|
|
|
|
impl NullAdversary {
|
|
|
|
|
/// Create a new `NullAdversary`.
|
|
|
|
|
#[inline]
|
2018-09-04 05:50:15 -07:00
|
|
|
pub fn new() -> Self {
|
2018-08-29 01:09:35 -07:00
|
|
|
NullAdversary {}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl<D> Adversary<D> for NullAdversary
|
|
|
|
|
where
|
2019-01-08 00:30:37 -08:00
|
|
|
D: ConsensusProtocol,
|
2018-08-29 01:09:35 -07:00
|
|
|
D::Message: Clone,
|
|
|
|
|
D::Output: Clone,
|
2018-12-11 05:44:36 -08:00
|
|
|
{
|
|
|
|
|
}
|
2018-09-04 05:50:15 -07:00
|
|
|
|
|
|
|
|
/// Ascending node id message order adversary.
|
|
|
|
|
///
|
|
|
|
|
/// An adversary that processes messages in ascending order by the node id that sent the message
|
|
|
|
|
/// (i.e. the lowest node IDs always being chosen first).
|
|
|
|
|
///
|
|
|
|
|
/// Note: This behavior is equivalent to the default scheduling used by the preceding testing
|
|
|
|
|
/// framework.
|
|
|
|
|
#[derive(Debug, Default)]
|
|
|
|
|
pub struct NodeOrderAdversary;
|
|
|
|
|
|
|
|
|
|
impl NodeOrderAdversary {
|
|
|
|
|
#[inline]
|
|
|
|
|
pub fn new() -> Self {
|
|
|
|
|
NodeOrderAdversary {}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl<D> Adversary<D> for NodeOrderAdversary
|
|
|
|
|
where
|
2019-01-08 00:30:37 -08:00
|
|
|
D: ConsensusProtocol,
|
2018-09-04 05:50:15 -07:00
|
|
|
D::Message: Clone,
|
|
|
|
|
D::Output: Clone,
|
|
|
|
|
{
|
|
|
|
|
#[inline]
|
2019-01-09 02:56:40 -08:00
|
|
|
fn pre_crank<R: Rng>(&mut self, mut net: NetMutHandle<'_, D, Self>, _rng: &mut R) {
|
2018-09-04 05:50:15 -07:00
|
|
|
// Message are sorted by NodeID on each step.
|
2019-03-14 06:41:23 -07:00
|
|
|
sort_ascending(&mut net);
|
2018-09-04 05:50:15 -07:00
|
|
|
}
|
|
|
|
|
}
|
2018-10-26 04:37:50 -07:00
|
|
|
|
|
|
|
|
/// Message reordering adversary.
|
|
|
|
|
///
|
|
|
|
|
/// An adversary that swaps the message at the front of the message queue for a random message
|
|
|
|
|
/// within the queue before every `crank`. Thus the order in which messages are received by nodes is
|
|
|
|
|
/// random, which allows to test randomized message delivery.
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
#[derive(Copy, Clone, Debug, Default)]
|
|
|
|
|
pub struct ReorderingAdversary {}
|
2018-10-26 04:37:50 -07:00
|
|
|
|
|
|
|
|
impl ReorderingAdversary {
|
OsRng / external RNG Refactoring (#357)
* Use `OsRng` in place of `thread_rng`.
This changes the defaults of any builder by instantiating an `OsRng` instead of
a `thread_rng`, the former being much more secure than the latter.
Additionally, all the unit tests that still instantiate RNGs manually used `OsRng`s
as well; while there is no actual need for this level of security in tests, the performance overhead is very small and random number generation complexity has such a small impact on these tests that the convenience of being able to ban `thread_rng` from the codebase altogether, setting a good example and avoid issues when refactoring later greatly outweigh the negatives.
* Instead of storing random number generators in the various consensus algorithm instances, pass them in from the outside whenever they are needed.
This changes a large amount of interfaces (and in this commit is only partially done, since `DistAlgorithm` needs to be fundamentally altered as well.
It also obsoletes parts of the `util` module.
* Added an `R: Rng` type parameter to both methods of `DistAlgorithm`, forcing callers to pass in their own Rngs.
* Fixed documentation grammar and spelling in some of the altered interfaces due to RNG refactoring.
* Move `rng` argument to the end of the argument for most functions.
Also includes a reformatting due to Rust 1.30.
* Updated tests, accomodate `rng`-API changes.
* Fixed remaining compilation issues with new RNG code.
* Fix illegal `self` import outside curly braces.
* Cleaned up comments and fixed broken definition of `broadcast_input`.
* Updated existing test cases to properly work with static dispatch randomness.
* Do not use boxed `Rng`s for key generation in test networks.
* Use the passed-in `Rng` in `ReorderingAdversary`, instead of storing a boxed one.
* Fixed clippy lints after refactoring.
* Removed some no-longer necessary manual `fmt::Debug` implementations in test framework.
* Use `OsRng` even in tests in `binary_agreement_mitm`.
* Use a proper deterministic RNG in tests `binary_agreement_mitm`.
* Refactor `examples/simulation.rs` by not using `ThreadRng`, passing generic `Rng` parameters throughout and using a type alias instead of a newtype as the `Transaction`.
* Remove `thread_rng` use from `examples/node.rs`.
* Explicitly construct `InternalContrib` in `DynamicHoneyBadger::propose`.
* Fixed typo in description of `DistAlgorithm` trait.
2018-12-14 04:51:09 -08:00
|
|
|
pub fn new() -> Self {
|
|
|
|
|
ReorderingAdversary {}
|
2018-10-26 04:37:50 -07:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl<D> Adversary<D> for ReorderingAdversary
|
|
|
|
|
where
|
2019-01-08 00:30:37 -08:00
|
|
|
D: ConsensusProtocol,
|
2018-10-26 04:37:50 -07:00
|
|
|
D::Message: Clone,
|
|
|
|
|
D::Output: Clone,
|
|
|
|
|
{
|
|
|
|
|
#[inline]
|
2019-01-09 02:56:40 -08:00
|
|
|
fn pre_crank<R: Rng>(&mut self, mut net: NetMutHandle<'_, D, Self>, rng: &mut R) {
|
2019-03-14 06:41:23 -07:00
|
|
|
swap_random(&mut net, rng);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// An adversary that performs naive replay attacks.
|
|
|
|
|
///
|
|
|
|
|
/// The adversary will randomly take a message that is sent to one of its nodes
|
|
|
|
|
/// and re-send it to a different node.
|
|
|
|
|
///
|
|
|
|
|
/// Additionally it will broadcast unrelated random messages,
|
|
|
|
|
/// and the message queue by a random node id.
|
|
|
|
|
#[derive(Copy, Clone, Debug, Default)]
|
|
|
|
|
pub struct RandomAdversary {
|
|
|
|
|
/// Probability of a message replay
|
|
|
|
|
p_replay: f32,
|
|
|
|
|
/// Probability of a message injection
|
|
|
|
|
p_inject: f32,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl RandomAdversary {
|
|
|
|
|
pub fn new(p_replay: f32, p_inject: f32) -> Self {
|
|
|
|
|
RandomAdversary { p_replay, p_inject }
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl<D> Adversary<D> for RandomAdversary
|
|
|
|
|
where
|
|
|
|
|
D: ConsensusProtocol,
|
|
|
|
|
D::Message: Clone,
|
|
|
|
|
D::Output: Clone,
|
|
|
|
|
rand::distributions::Standard:
|
|
|
|
|
rand::distributions::Distribution<<D as ConsensusProtocol>::Message>,
|
|
|
|
|
{
|
|
|
|
|
#[inline]
|
|
|
|
|
fn pre_crank<R: Rng>(&mut self, mut net: NetMutHandle<'_, D, Self>, rng: &mut R) {
|
|
|
|
|
sort_by_random_node(&mut net, rng);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[inline]
|
|
|
|
|
fn tamper<R: Rng>(
|
|
|
|
|
&mut self,
|
|
|
|
|
mut net: NetMutHandle<'_, D, Self>,
|
|
|
|
|
msg: NetMessage<D>,
|
|
|
|
|
rng: &mut R,
|
|
|
|
|
) -> Result<CpStep<D>, CrankError<D>> {
|
|
|
|
|
// only replay a message in some cases
|
|
|
|
|
if randomly(self.p_replay, rng) {
|
|
|
|
|
// randomly choose a target to send the message to
|
|
|
|
|
if let Some(picked_node) = random_node(&mut net, rng) {
|
|
|
|
|
let mut new_msg = msg.clone();
|
|
|
|
|
new_msg.from = new_msg.to;
|
|
|
|
|
new_msg.to = picked_node;
|
|
|
|
|
net.inject_message(QueuePosition::Back, new_msg);
|
|
|
|
|
}
|
2018-10-26 04:37:50 -07:00
|
|
|
}
|
2019-03-14 06:41:23 -07:00
|
|
|
|
|
|
|
|
// Possibly inject more messages
|
|
|
|
|
while randomly(self.p_inject, rng) {
|
|
|
|
|
// Messages must originate from the current node
|
|
|
|
|
let sender = msg.to.clone();
|
|
|
|
|
// Generate a random message
|
|
|
|
|
let message: D::Message = rand::random();
|
|
|
|
|
|
|
|
|
|
// Collect receivers
|
|
|
|
|
let node_ids: Vec<<D as ConsensusProtocol>::NodeId> = net
|
|
|
|
|
.nodes_mut()
|
|
|
|
|
.map(|node| node.id())
|
|
|
|
|
.filter(|node_id| *node_id != sender)
|
|
|
|
|
.collect();
|
|
|
|
|
|
|
|
|
|
// Broadcast message
|
|
|
|
|
for node_id in node_ids {
|
|
|
|
|
let new_msg = NetworkMessage::new(sender.clone(), message.clone(), node_id);
|
|
|
|
|
net.inject_message(QueuePosition::Back, new_msg);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
net.dispatch_message(msg, rng)
|
2018-10-26 04:37:50 -07:00
|
|
|
}
|
|
|
|
|
}
|
