From 251181dbfa5b5a8e7aa883668c3b382affbbb6e8 Mon Sep 17 00:00:00 2001 From: esau <152162806+sklppy88@users.noreply.github.com> Date: Fri, 9 Aug 2024 19:27:04 +0200 Subject: [PATCH] fix: fixing private voting by correctly throwing an error if simulation fails (#7840) This PR makes a simulation of a tx fail, if the tx cannot be included in a block and added to the state. e.g. If a simulation produces duplicate nullifiers, or nullifiers that already exist in a state tree, the results of this simulation should not be returned, but should warn users that the transaction simulated is impossible to actually be added to a block due to being an invalid transaction. The method for achieving the above is that a new API on the node was created, used for validating the correctness of the metadata and side-effects produced by a transaction. A transaction is deemed valid if and only if the transaction can be added to a block that can be used to advance state. Note: this update does not make this validation necessary, and defaults to offline simulation. Offline simulation is previous non-validated behavior, and is potentially useful if we ever move to a model where a node is optional to a pxe. Another note just for reference: there is weirdness in e2e_prover, that fails the proof validation. Resolves #4781. --- .../aztec-node/src/aztec-node/server.ts | 19 +++++++++++++++---- .../contract/contract_function_interaction.ts | 4 +++- .../aztec.js/src/wallet/base_wallet.ts | 9 +++++++-- .../src/interfaces/aztec-node.ts | 7 +++++++ .../circuit-types/src/interfaces/pxe.ts | 2 ++ .../src/e2e_private_voting_contract.test.ts | 8 +++++--- .../pxe/src/pxe_service/pxe_service.ts | 9 +++++++++ yarn-project/sequencer-client/src/index.ts | 1 + 8 files changed, 49 insertions(+), 10 deletions(-) diff --git a/yarn-project/aztec-node/src/aztec-node/server.ts b/yarn-project/aztec-node/src/aztec-node/server.ts index cd5b8b8b097..fa07a23ced6 100644 --- a/yarn-project/aztec-node/src/aztec-node/server.ts +++ b/yarn-project/aztec-node/src/aztec-node/server.ts @@ -63,11 +63,12 @@ import { createProverClient } from '@aztec/prover-client'; import { AggregateTxValidator, DataTxValidator, + DoubleSpendTxValidator, type GlobalVariableBuilder, SequencerClient, getGlobalVariableBuilder, } from '@aztec/sequencer-client'; -import { PublicProcessorFactory, WASMSimulator, createSimulationProvider } from '@aztec/simulator'; +import { PublicProcessorFactory, WASMSimulator, WorldStateDB, createSimulationProvider } from '@aztec/simulator'; import { type TelemetryClient } from '@aztec/telemetry-client'; import { NoopTelemetryClient } from '@aztec/telemetry-client/noop'; import { @@ -165,6 +166,7 @@ export class AztecNodeService implements AztecNode { new DataTxValidator(), new MetadataTxValidator(config.l1ChainId), new TxProofValidator(proofVerifier), + new DoubleSpendTxValidator(new WorldStateDB(worldStateSynchronizer.getLatest())), ); const simulationProvider = await createSimulationProvider(config, log); @@ -339,9 +341,7 @@ export class AztecNodeService implements AztecNode { const timer = new Timer(); this.log.info(`Received tx ${tx.getTxHash()}`); - const [_, invalidTxs] = await this.txValidator.validateTxs([tx]); - if (invalidTxs.length > 0) { - this.log.warn(`Rejecting tx ${tx.getTxHash()} because of validation errors`); + if ((await this.validateTx(tx)) === false) { this.metrics.receivedTx(timer.ms(), false); return; } @@ -768,6 +768,17 @@ export class AztecNodeService implements AztecNode { ); } + public async validateTx(tx: Tx): Promise { + const [_, invalidTxs] = await this.txValidator.validateTxs([tx]); + if (invalidTxs.length > 0) { + this.log.warn(`Rejecting tx ${tx.getTxHash()} because of validation errors`); + + return false; + } + + return true; + } + public async setConfig(config: Partial): Promise { const newConfig = { ...this.config, ...config }; this.sequencer?.updateSequencerConfig(config); diff --git a/yarn-project/aztec.js/src/contract/contract_function_interaction.ts b/yarn-project/aztec.js/src/contract/contract_function_interaction.ts index 7d31f4f74f4..3ade1883c3f 100644 --- a/yarn-project/aztec.js/src/contract/contract_function_interaction.ts +++ b/yarn-project/aztec.js/src/contract/contract_function_interaction.ts @@ -23,6 +23,8 @@ export type SimulateMethodOptions = { from?: AztecAddress; /** Gas settings for the simulation. */ gasSettings?: GasSettings; + /** Simulate without validating tx against current state. */ + offline?: boolean; }; /** @@ -93,7 +95,7 @@ export class ContractFunctionInteraction extends BaseContractInteraction { } const txRequest = await this.create(); - const simulatedTx = await this.wallet.simulateTx(txRequest, true, options?.from); + const simulatedTx = await this.wallet.simulateTx(txRequest, true, options?.from, options?.offline); // As account entrypoints are private, for private functions we retrieve the return values from the first nested call // since we're interested in the first set of values AFTER the account entrypoint diff --git a/yarn-project/aztec.js/src/wallet/base_wallet.ts b/yarn-project/aztec.js/src/wallet/base_wallet.ts index 7a6d4ec81de..f49db08b550 100644 --- a/yarn-project/aztec.js/src/wallet/base_wallet.ts +++ b/yarn-project/aztec.js/src/wallet/base_wallet.ts @@ -108,8 +108,13 @@ export abstract class BaseWallet implements Wallet { proveTx(txRequest: TxExecutionRequest, simulatePublic: boolean): Promise { return this.pxe.proveTx(txRequest, simulatePublic, this.scopes); } - simulateTx(txRequest: TxExecutionRequest, simulatePublic: boolean, msgSender?: AztecAddress): Promise { - return this.pxe.simulateTx(txRequest, simulatePublic, msgSender, this.scopes); + simulateTx( + txRequest: TxExecutionRequest, + simulatePublic: boolean, + msgSender?: AztecAddress, + offline?: boolean, + ): Promise { + return this.pxe.simulateTx(txRequest, simulatePublic, msgSender, offline, this.scopes); } sendTx(tx: Tx): Promise { return this.pxe.sendTx(tx); diff --git a/yarn-project/circuit-types/src/interfaces/aztec-node.ts b/yarn-project/circuit-types/src/interfaces/aztec-node.ts index 4973715724f..f20195d0fe0 100644 --- a/yarn-project/circuit-types/src/interfaces/aztec-node.ts +++ b/yarn-project/circuit-types/src/interfaces/aztec-node.ts @@ -316,6 +316,13 @@ export interface AztecNode { **/ simulatePublicCalls(tx: Tx): Promise; + /** + * Validates the correctness of the execution, namely that a transaction is valid if and + * only if the transaction can be added to a valid block at the current state. + * @param tx - The transaction to validate for correctness. + */ + validateTx(tx: Tx): Promise; + /** * Updates the configuration of this node. * @param config - Updated configuration to be merged with the current one. diff --git a/yarn-project/circuit-types/src/interfaces/pxe.ts b/yarn-project/circuit-types/src/interfaces/pxe.ts index efa100eac0d..c083d872882 100644 --- a/yarn-project/circuit-types/src/interfaces/pxe.ts +++ b/yarn-project/circuit-types/src/interfaces/pxe.ts @@ -180,6 +180,7 @@ export interface PXE { * @param txRequest - An authenticated tx request ready for simulation * @param simulatePublic - Whether to simulate the public part of the transaction. * @param msgSender - (Optional) The message sender to use for the simulation. + * @param offline - (Optional) Whether to simulate without validating tx against current state. * @param scopes - (Optional) The accounts whose notes we can access in this call. Currently optional and will default to all. * @returns A simulated transaction object that includes a transaction that is potentially ready * to be sent to the network for execution, along with public and private return values. @@ -190,6 +191,7 @@ export interface PXE { txRequest: TxExecutionRequest, simulatePublic: boolean, msgSender?: AztecAddress, + offline?: boolean, scopes?: AztecAddress[], ): Promise; diff --git a/yarn-project/end-to-end/src/e2e_private_voting_contract.test.ts b/yarn-project/end-to-end/src/e2e_private_voting_contract.test.ts index a47a22da598..9b8ee38bcda 100644 --- a/yarn-project/end-to-end/src/e2e_private_voting_contract.test.ts +++ b/yarn-project/end-to-end/src/e2e_private_voting_contract.test.ts @@ -47,9 +47,11 @@ describe('e2e_voting_contract', () => { await crossDelay(); // We try simulating voting again, but our TX is invalid because it will emit duplicate nullifiers - await expect(votingContract.methods.cast_vote(candidate).simulate()).rejects.toThrow( - 'The simulated transaction is unable to be added to state and is invalid.', - ); + await expect( + votingContract.methods.cast_vote(candidate).simulate({ + offline: false, + }), + ).rejects.toThrow('The simulated transaction is unable to be added to state and is invalid.'); // We try voting again, but our TX is dropped due to trying to emit duplicate nullifiers await expect(votingContract.methods.cast_vote(candidate).send().wait()).rejects.toThrow( diff --git a/yarn-project/pxe/src/pxe_service/pxe_service.ts b/yarn-project/pxe/src/pxe_service/pxe_service.ts index 7b6ba12d62c..c40224a8570 100644 --- a/yarn-project/pxe/src/pxe_service/pxe_service.ts +++ b/yarn-project/pxe/src/pxe_service/pxe_service.ts @@ -497,6 +497,7 @@ export class PXEService implements PXE { txRequest: TxExecutionRequest, simulatePublic: boolean, msgSender: AztecAddress | undefined = undefined, + offline: boolean = true, scopes?: AztecAddress[], ): Promise { return await this.jobQueue.put(async () => { @@ -505,6 +506,14 @@ export class PXEService implements PXE { simulatedTx.publicOutput = await this.#simulatePublicCalls(simulatedTx.tx); } + if (!offline) { + const isValidTx = await this.node.validateTx(simulatedTx.tx); + + if (!isValidTx) { + throw new Error('The simulated transaction is unable to be added to state and is invalid.'); + } + } + // We log only if the msgSender is undefined, as simulating with a different msgSender // is unlikely to be a real transaction, and likely to be only used to read data. // Meaning that it will not necessarily have produced a nullifier (and thus have no TxHash) diff --git a/yarn-project/sequencer-client/src/index.ts b/yarn-project/sequencer-client/src/index.ts index 8dd0cf23889..73e9838889d 100644 --- a/yarn-project/sequencer-client/src/index.ts +++ b/yarn-project/sequencer-client/src/index.ts @@ -4,6 +4,7 @@ export * from './publisher/index.js'; export * from './sequencer/index.js'; export * from './tx_validator/aggregate_tx_validator.js'; export * from './tx_validator/data_validator.js'; +export * from './tx_validator/double_spend_validator.js'; // Used by the node to simulate public parts of transactions. Should these be moved to a shared library? export * from './global_variable_builder/index.js';