Skip to content

Four Rounds RBC Implementation#5

Open
thehoul wants to merge 78 commits intomainfrom
rbc
Open

Four Rounds RBC Implementation#5
thehoul wants to merge 78 commits intomainfrom
rbc

Conversation

@thehoul
Copy link
Contributor

@thehoul thehoul commented Apr 10, 2025

Implementation according to algorithm 4 in this paper: https://eprint.iacr.org/2021/777.pdf

@thehoul thehoul marked this pull request as draft April 14, 2025 18:42
@thehoul
Copy link
Contributor Author

thehoul commented Apr 16, 2025
edited by Mitrofanius
Loading

Test implemented summary

Unit

  • Send a PROPOSE message to a node, checks that it answers correctly
  • Send enough ECHO messages to a node, check that it answers correctly after the correct threshold
  • Send enough READY messages to a node after having sent enough ECHO messages, check that it answers correctly after the correct threshold
  • Send enough READY messages to a node before sending enough ECHO messages, check that it answers correctly after the correct threshold

Integration

  • Send a broadcast from a node, and all nodes work fine. Check that all nodes terminate the algorithm, and all agree on the same value.
    t=2, r=2, nbNodes=7 (3*t+1)
  • Send a broadcast from a node, and one node is dead. Check that all nodes terminate the algorithm, and all agree on the same value.
    t=2, r=2, nbNodes=7 (3*t+1)
  • Send a broadcast from a node, and two nodes are dead. Check that all nodes terminate the algorithm, and all agree on the same value.
    t=2, r=2, nbNodes=7 (3*t+1)
  • Send a broadcast from a node, and three nodes are dead. Check that no node terminates the algorithm.
    t=2, r=2, nbNodes=7 (3*t+1)
  • Dealer sends a broadcast and then dies immediately. Check that the algorithm finishes correctly for all other nodes
    t=2, r=2, nbNodes=7 (3*t+1)
  • Dealer sends a broadcast and then is stopped after a short delay. Check that the algorithm finished correctly for all others nodes
    t=2, r=2, nbNodes=7 (3*t+1)
  • Test the Stop method. A node is started with first Listen and after with Broadcast in both cases the node is alone in the network, so nothing will happen. After a short delay, the Stop method is called, and no timeout is expected (i.e. the Listen or Broadcast method was cancelled)
  • Dealer deals, and after some time, a listener node dies. Expect everything to still finish for the other nodes.
    t=2, r=2, nbNodes=7 (3*t+1)
  • Dealer deals, and after some time, two listener nodes die. Expect everything to still finish for the other nodes.
    t=2, r=2, nbNodes=7 (3*t+1)
  • Dealer deals and a single node in the network answers slowly (500 milliseconds delay when reading and writing). Everything should finish correctly for all nodes
    t=2, r=2, nbNodes=7 (3*t+1)
  • Dealer deals and three nodes in the network answer slowly (500 milliseconds delay when reading and writing). Everything should finish correctly for all nodes
    t=2, r=2, nbNodes=7 (3*t+1)
  • Stress test, dealer deals and expect everyone to finish correctly.
    t=20, r=2, nbNodes=61

@pierluca @AnomalRoil What do you think of this test coverage? Can you think of more tests that I should have?

@AnomalRoil
Copy link

AnomalRoil commented Apr 17, 2025

One test I would add is:

  • dealer is connected to a single node (no node id dead, but dealer can only talk to one node), check it still works
  • a non-dealer node is connected to a single node (no node is dead again), check it still works

That is: assuming partial connectivity rather than full connectivity.

AnomalRoil
AnomalRoil reviewed Apr 17, 2025
View reviewed changes
Copy link

@AnomalRoil AnomalRoil left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM so far, but I'm a bit confused with all the Message types you have:

  • generic message types
  • concrete message types
  • protobuf message types

Why can't you rely on just the protobuf types and use them directly?

@thehoul thehoul marked this pull request as ready for review April 23, 2025 09:38
@thehoul thehoul force-pushed the rbc branch 4 times, most recently from fd43447 to 5efba0d Compare April 23, 2025 11:56
@thehoul
Copy link
Contributor Author

thehoul commented Apr 23, 2025
edited
Loading

Left todo

  • Reed Solomon codes
  • Try to use concurrent maps from Go instead of custom ones
  • Multiple instances test
  • Lint

@thehoul thehoul mentioned this pull request Apr 23, 2025
Closed
thehoul
thehoul commented Apr 24, 2025
View reviewed changes
@thehoul thehoul force-pushed the rbc branch 2 times, most recently from b69ce9f to f5817e1 Compare April 24, 2025 10:29
@thehoul thehoul requested a review from pierluca April 24, 2025 12:03
pierluca
pierluca reviewed Apr 30, 2025
View reviewed changes
Copy link

@pierluca pierluca left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

First chunk of review, working my way through the various files :-)
More will come...

pierluca
pierluca reviewed May 1, 2025
View reviewed changes
AnomalRoil
AnomalRoil requested changes May 1, 2025
View reviewed changes
Copy link

@AnomalRoil AnomalRoil left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Here's some comments

reedsolomon/berlekampwelch.go
package reedsolomon

import (
"github.com/HACKERALERT/infectious"
Copy link

@AnomalRoil AnomalRoil May 1, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Let's avoid pulling that dependency and copy the structs you need instead.

Copy link

@pierluca pierluca May 1, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Their licensing is clear and compatible, but non-trivial, I'd be very cautious either ways when adjusting the licensing in this repo as well.
https://github.com/HACKERALERT/infectious/blob/master/LICENSE

Copy link
Contributor Author

@thehoul thehoul May 6, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'll need help to figure out the licensing, I've never done it before!

pierluca
pierluca requested changes May 4, 2025
View reviewed changes
@thehoul thehoul force-pushed the rbc branch 2 times, most recently from 825e856 to a6f0066 Compare May 23, 2025 10:08
thehoul and others added 23 commits June 2, 2025 00:36
@thehoul
change reed solomon interface to use pointers
cd711d6
@thehoul
send one broadcast with all shares instead of one broadcast for each
b7ed2a2 
improve tests and add UDP network small and stress tests
@thehoul
add benchmark test to get data
3633890
@thehoul
fix lint
36e5016
@thehoul
fix RBC receive READY tests
b21deab 
improve RBC to use less maps

refactor a few names and add comments
@thehoul
remove weird mutex in networking
58a1487
@thehoul
update benchmark csv
0a33218
@thehoul
fix lint
fac86fd 
add skip for benchmark test to avoid re-benching every time
@thehoul
remove unused r in 4Rounds RBC
7b14600
@thehoul
add benchmark
1f4f31e
@thehoul
fix lint
04fc272
@thehoul
multi RBC - stress tests don't pass
0d0c151
@thehoul
fix lint
5c9a5fb
@thehoul
Better channel handling
32d434c
@thehoul
of course I forgot to fix lint
149861c
@thehoul
add multiple instances test
7b1af3f
@thehoul
update Bracha implementation to new interface
3baa8dc
@thehoul
Update RBC interface
651e2f7
@thehoul
add Instance interface to RBC
3273df5
@thehoul
add node struct
de290d8 
add general protobuf Packet message type for all ADKG messages
@thehoul
add padding for message of size different from multiple of threshold+1
bc9e380
@thehoul
make RBC broadcast return the instance created
f7b9951
@thehoul
add GetInstances and SetPredicate to the RBC interface
6d208b0
AnomalRoil
AnomalRoil reviewed Jun 5, 2025
View reviewed changes
rbc/bracha/rbc.go Outdated
Comment on lines 227 to 228
b.finished = true
b.value = s
Copy link

@AnomalRoil AnomalRoil May 15, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

these look like "writes", are you sure you don't need a b.Lock rather for these?

rbc/bracha/rbc.go
Comment on lines +157 to +165
func checkReadyThreshold(readyCount, threshold int) bool {
return readyCount > threshold
}

// checkEchoThreshold checks if the number of ECHO messages has
// reached the required threshold
func checkEchoThreshold(echoCount, threshold int) bool {
return echoCount > 2*threshold
}
Copy link

@AnomalRoil AnomalRoil Jun 2, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

do we want >= or > to consider the threshold is reached? I think it depends on whether you talk about the threshold of malicious parties, as in 3f+1 for at most f malicious, and then you want at least 2f+1, or if we are talking about the threshold t of required messages in which case I think >= is more correct.

Opinion?

rbc/bracha/rbc_test.go
// Config
network := networking.NewFakeNetwork()
threshold := 1
nbNodes := 3*threshold + 1
Copy link

@AnomalRoil AnomalRoil Jun 2, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

looks like this answers my previous comment, but you might want to document you're talking about the threshold of malicious parties f whenever you say threshold somewhere in the documentation.

thehoul added a commit that referenced this pull request Jan 12, 2026
@thehoul
copy over files from #5
723c275
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AnomalRoil AnomalRoil AnomalRoil requested changes

@pierluca pierluca pierluca requested changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@thehoul @AnomalRoil @pierluca