mirror of
https://github.com/sigp/lighthouse.git
synced 2026-05-09 11:25:55 +00:00
d61f507184
## Issue Addressed
NA
## Proposed Changes
Add the Holesky network config as per 36e4ff2d51/custom_config_data.
Since the genesis state is ~190MB, I've opted to *not* include it in the binary and instead download it at runtime (see #4564 for context). To download this file we have:
- A hard-coded URL for a SigP-hosted S3 bucket with the Holesky genesis state. Assuming this download works correctly, users will be none the wiser that the state wasn't included in the binary (apart from some additional logs)
- If the user provides a `--checkpoint-sync-url` flag, then LH will download the genesis state from that server rather than our S3 bucket.
- If the user provides a `--genesis-state-url` flag, then LH will download the genesis state from that server regardless of the S3 bucket or `--checkpoint-sync-url` flag.
- Whenever a genesis state is downloaded it is checked against a checksum baked into the binary.
- A genesis state will never be downloaded if it's already included in the binary.
- There is a `--genesis-state-url-timeout` flag to tweak the timeout for downloading the genesis state file.
## Log Output
Example of log output when a state is downloaded:
```bash
Aug 23 05:40:13.424 INFO Logging to file path: "/Users/paul/.lighthouse/holesky/beacon/logs/beacon.log"
Aug 23 05:40:13.425 INFO Lighthouse started version: Lighthouse/v4.3.0-bd9931f+
Aug 23 05:40:13.425 INFO Configured for network name: holesky
Aug 23 05:40:13.426 INFO Data directory initialised datadir: /Users/paul/.lighthouse/holesky
Aug 23 05:40:13.427 INFO Deposit contract address: 0x4242424242424242424242424242424242424242, deploy_block: 0
Aug 23 05:40:13.427 INFO Downloading genesis state info: this may take some time on testnets with large validator counts, timeout: 60s, server: https://sigp-public-genesis-states.s3.ap-southeast-2.amazonaws.com/
Aug 23 05:40:29.895 INFO Starting from known genesis state service: beacon
```
Example of log output when there are no URLs specified:
```
Aug 23 06:29:51.645 INFO Logging to file path: "/Users/paul/.lighthouse/goerli/beacon/logs/beacon.log"
Aug 23 06:29:51.646 INFO Lighthouse started version: Lighthouse/v4.3.0-666a39c+
Aug 23 06:29:51.646 INFO Configured for network name: goerli
Aug 23 06:29:51.647 INFO Data directory initialised datadir: /Users/paul/.lighthouse/goerli
Aug 23 06:29:51.647 INFO Deposit contract address: 0xff50ed3d0ec03ac01d4c79aad74928bff48a7b2b, deploy_block: 4367322
The genesis state is not present in the binary and there are no known download URLs. Please use --checkpoint-sync-url or --genesis-state-url.
```
## Additional Info
I tested the `--genesis-state-url` flag with all 9 Goerli checkpoint sync servers on https://eth-clients.github.io/checkpoint-sync-endpoints/ and they all worked 🎉
My IDE eagerly formatted some `Cargo.toml`. I've disabled it but I don't see the value in spending time reverting the changes that are already there.
I also added the `GenesisStateBytes` enum to avoid an unnecessary clone on the genesis state bytes baked into the binary. This is not a huge deal on Mainnet, but will become more relevant when testing with big genesis states.
When we do a fresh checkpoint sync we're downloading the genesis state to check the `genesis_validators_root` against the finalised state we receive. This is not *entirely* pointless, since we verify the checksum when we download the genesis state so we are actually guaranteeing that the finalised state is on the same network. There might be a smarter/less-download-y way to go about this, but I've run out of cycles to figure that out. Perhaps we can grab it in the next release?
279 lines
12 KiB
Rust
279 lines
12 KiB
Rust
use clap::{App, Arg, ArgMatches};
|
|
use environment::Environment;
|
|
use slashing_protection::{
|
|
interchange::Interchange, InterchangeError, InterchangeImportOutcome, SlashingDatabase,
|
|
SLASHING_PROTECTION_FILENAME,
|
|
};
|
|
use std::fs::File;
|
|
use std::path::PathBuf;
|
|
use std::str::FromStr;
|
|
use std::time::Duration;
|
|
use types::{Epoch, EthSpec, PublicKeyBytes, Slot};
|
|
|
|
pub const CMD: &str = "slashing-protection";
|
|
pub const IMPORT_CMD: &str = "import";
|
|
pub const EXPORT_CMD: &str = "export";
|
|
|
|
pub const IMPORT_FILE_ARG: &str = "IMPORT-FILE";
|
|
pub const EXPORT_FILE_ARG: &str = "EXPORT-FILE";
|
|
|
|
pub const MINIFY_FLAG: &str = "minify";
|
|
pub const PUBKEYS_FLAG: &str = "pubkeys";
|
|
|
|
pub fn cli_app<'a, 'b>() -> App<'a, 'b> {
|
|
App::new(CMD)
|
|
.about("Import or export slashing protection data to or from another client")
|
|
.subcommand(
|
|
App::new(IMPORT_CMD)
|
|
.about("Import an interchange file")
|
|
.arg(
|
|
Arg::with_name(IMPORT_FILE_ARG)
|
|
.takes_value(true)
|
|
.value_name("FILE")
|
|
.help("The slashing protection interchange file to import (.json)"),
|
|
)
|
|
.arg(
|
|
Arg::with_name(MINIFY_FLAG)
|
|
.long(MINIFY_FLAG)
|
|
.takes_value(true)
|
|
.possible_values(&["false", "true"])
|
|
.help(
|
|
"Deprecated: Lighthouse no longer requires minification on import \
|
|
because it always minifies",
|
|
),
|
|
),
|
|
)
|
|
.subcommand(
|
|
App::new(EXPORT_CMD)
|
|
.about("Export an interchange file")
|
|
.arg(
|
|
Arg::with_name(EXPORT_FILE_ARG)
|
|
.takes_value(true)
|
|
.value_name("FILE")
|
|
.help("The filename to export the interchange file to"),
|
|
)
|
|
.arg(
|
|
Arg::with_name(PUBKEYS_FLAG)
|
|
.long(PUBKEYS_FLAG)
|
|
.takes_value(true)
|
|
.value_name("PUBKEYS")
|
|
.help(
|
|
"List of public keys to export history for. Keys should be 0x-prefixed, \
|
|
comma-separated. All known keys will be exported if omitted",
|
|
),
|
|
)
|
|
.arg(
|
|
Arg::with_name(MINIFY_FLAG)
|
|
.long(MINIFY_FLAG)
|
|
.takes_value(true)
|
|
.default_value("false")
|
|
.possible_values(&["false", "true"])
|
|
.help(
|
|
"Minify the output file. This will make it smaller and faster to \
|
|
import, but not faster to generate.",
|
|
),
|
|
),
|
|
)
|
|
}
|
|
|
|
pub fn cli_run<T: EthSpec>(
|
|
matches: &ArgMatches<'_>,
|
|
env: Environment<T>,
|
|
validator_base_dir: PathBuf,
|
|
) -> Result<(), String> {
|
|
let slashing_protection_db_path = validator_base_dir.join(SLASHING_PROTECTION_FILENAME);
|
|
|
|
let genesis_state_url: Option<String> =
|
|
clap_utils::parse_optional(matches, "genesis-state-url")?;
|
|
let genesis_state_url_timeout =
|
|
clap_utils::parse_required(matches, "genesis-state-url-timeout")
|
|
.map(Duration::from_secs)?;
|
|
|
|
let context = env.core_context();
|
|
let eth2_network_config = env
|
|
.eth2_network_config
|
|
.ok_or("Unable to get testnet configuration from the environment")?;
|
|
|
|
let genesis_validators_root = eth2_network_config
|
|
.genesis_validators_root::<T>(
|
|
genesis_state_url.as_deref(),
|
|
genesis_state_url_timeout,
|
|
context.log(),
|
|
)?
|
|
.ok_or_else(|| "Unable to get genesis state, has genesis occurred?".to_string())?;
|
|
|
|
match matches.subcommand() {
|
|
(IMPORT_CMD, Some(matches)) => {
|
|
let import_filename: PathBuf = clap_utils::parse_required(matches, IMPORT_FILE_ARG)?;
|
|
let minify: Option<bool> = clap_utils::parse_optional(matches, MINIFY_FLAG)?;
|
|
let import_file = File::open(&import_filename).map_err(|e| {
|
|
format!(
|
|
"Unable to open import file at {}: {:?}",
|
|
import_filename.display(),
|
|
e
|
|
)
|
|
})?;
|
|
|
|
eprint!("Loading JSON file into memory & deserializing");
|
|
let mut interchange = Interchange::from_json_reader(&import_file)
|
|
.map_err(|e| format!("Error parsing file for import: {:?}", e))?;
|
|
eprintln!(" [done].");
|
|
|
|
if let Some(minify) = minify {
|
|
eprintln!(
|
|
"WARNING: --minify flag is deprecated and will be removed in a future release"
|
|
);
|
|
if minify {
|
|
eprint!("Minifying input file for faster loading");
|
|
interchange = interchange
|
|
.minify()
|
|
.map_err(|e| format!("Minification failed: {:?}", e))?;
|
|
eprintln!(" [done].");
|
|
}
|
|
}
|
|
|
|
let slashing_protection_database =
|
|
SlashingDatabase::open_or_create(&slashing_protection_db_path).map_err(|e| {
|
|
format!(
|
|
"Unable to open database at {}: {:?}",
|
|
slashing_protection_db_path.display(),
|
|
e
|
|
)
|
|
})?;
|
|
|
|
let display_slot = |slot: Option<Slot>| {
|
|
slot.map_or("none".to_string(), |slot| format!("slot {}", slot.as_u64()))
|
|
};
|
|
let display_epoch = |epoch: Option<Epoch>| {
|
|
epoch.map_or("?".to_string(), |epoch| format!("epoch {}", epoch.as_u64()))
|
|
};
|
|
let display_attestation = |source, target| match (source, target) {
|
|
(None, None) => "none".to_string(),
|
|
(source, target) => {
|
|
format!("{} => {}", display_epoch(source), display_epoch(target))
|
|
}
|
|
};
|
|
|
|
match slashing_protection_database
|
|
.import_interchange_info(interchange, genesis_validators_root)
|
|
{
|
|
Ok(outcomes) => {
|
|
eprintln!("All records imported successfully:");
|
|
for outcome in &outcomes {
|
|
match outcome {
|
|
InterchangeImportOutcome::Success { pubkey, summary } => {
|
|
eprintln!("- {:?}", pubkey);
|
|
eprintln!(
|
|
" - latest proposed block: {}",
|
|
display_slot(summary.max_block_slot)
|
|
);
|
|
eprintln!(
|
|
" - latest attestation: {}",
|
|
display_attestation(
|
|
summary.max_attestation_source,
|
|
summary.max_attestation_target
|
|
)
|
|
);
|
|
}
|
|
InterchangeImportOutcome::Failure { pubkey, error } => {
|
|
panic!(
|
|
"import should be atomic, but key {:?} was imported despite error: {:?}",
|
|
pubkey, error
|
|
);
|
|
}
|
|
}
|
|
}
|
|
}
|
|
Err(InterchangeError::AtomicBatchAborted(outcomes)) => {
|
|
eprintln!("ERROR: import aborted due to one or more errors");
|
|
for outcome in &outcomes {
|
|
if let InterchangeImportOutcome::Failure { pubkey, error } = outcome {
|
|
eprintln!("- {:?}", pubkey);
|
|
eprintln!(" - error: {:?}", error);
|
|
}
|
|
}
|
|
return Err("ERROR: import aborted due to errors, see above.\n\
|
|
No data has been imported and the slashing protection \
|
|
database is in the same state it was in before the import.\n\
|
|
Due to the failed import it is NOT SAFE to start validating\n\
|
|
with any newly imported validator keys, as your database lacks\n\
|
|
slashing protection data for them."
|
|
.to_string());
|
|
}
|
|
Err(e) => {
|
|
return Err(format!(
|
|
"Fatal error during import: {:?}\n\
|
|
IT IS NOT SAFE TO START VALIDATING",
|
|
e
|
|
));
|
|
}
|
|
}
|
|
|
|
eprintln!("Import completed successfully.");
|
|
eprintln!(
|
|
"Please double-check that the latest blocks and attestations above \
|
|
match your expectations."
|
|
);
|
|
|
|
Ok(())
|
|
}
|
|
(EXPORT_CMD, Some(matches)) => {
|
|
let export_filename: PathBuf = clap_utils::parse_required(matches, EXPORT_FILE_ARG)?;
|
|
let minify: bool = clap_utils::parse_required(matches, MINIFY_FLAG)?;
|
|
|
|
let selected_pubkeys = if let Some(pubkeys) =
|
|
clap_utils::parse_optional::<String>(matches, PUBKEYS_FLAG)?
|
|
{
|
|
let pubkeys = pubkeys
|
|
.split(',')
|
|
.map(PublicKeyBytes::from_str)
|
|
.collect::<Result<Vec<_>, _>>()
|
|
.map_err(|e| format!("Invalid --{} value: {:?}", PUBKEYS_FLAG, e))?;
|
|
Some(pubkeys)
|
|
} else {
|
|
None
|
|
};
|
|
|
|
if !slashing_protection_db_path.exists() {
|
|
return Err(format!(
|
|
"No slashing protection database exists at: {}",
|
|
slashing_protection_db_path.display()
|
|
));
|
|
}
|
|
|
|
let slashing_protection_database = SlashingDatabase::open(&slashing_protection_db_path)
|
|
.map_err(|e| {
|
|
format!(
|
|
"Unable to open database at {}: {:?}",
|
|
slashing_protection_db_path.display(),
|
|
e
|
|
)
|
|
})?;
|
|
|
|
let mut interchange = slashing_protection_database
|
|
.export_interchange_info(genesis_validators_root, selected_pubkeys.as_deref())
|
|
.map_err(|e| format!("Error during export: {:?}", e))?;
|
|
|
|
if minify {
|
|
eprintln!("Minifying output file");
|
|
interchange = interchange
|
|
.minify()
|
|
.map_err(|e| format!("Unable to minify output: {:?}", e))?;
|
|
}
|
|
|
|
let output_file = File::create(export_filename)
|
|
.map_err(|e| format!("Error creating output file: {:?}", e))?;
|
|
|
|
interchange
|
|
.write_to(&output_file)
|
|
.map_err(|e| format!("Error writing output file: {:?}", e))?;
|
|
|
|
eprintln!("Export completed successfully");
|
|
|
|
Ok(())
|
|
}
|
|
("", _) => Err("No subcommand provided, see --help for options".to_string()),
|
|
(command, _) => Err(format!("No such subcommand `{}`", command)),
|
|
}
|
|
}
|