refactor: make BlockRange computable from block number

Also rollback from re-implementation with 'next_multiple_of' as it does not handle edge cases properly.

Author: jpraynaud

mithril-aggregator/src/services/prover.rs

@@ -6,7 +6,7 @@ use async_trait::async_trait;
 use mithril_common::{
     crypto_helper::{MKMap, MKMapNode, MKTree, MKTreeNode},
     entities::{Beacon, BlockRange, CardanoTransactionsSetProof, TransactionHash},
-    signable_builder::{TransactionRetriever, BLOCK_RANGE_LENGTH},
+    signable_builder::TransactionRetriever,
     StdResult,
 };
 
@@ -51,11 +51,7 @@ impl ProverService for MithrilProverService {
         let mut transactions_by_block_ranges: HashMap<BlockRange, Vec<TransactionHash>> =
             HashMap::new();
         for transaction in &transactions {
-            let block_range_end = transaction
-                .block_number
-                .next_multiple_of(BLOCK_RANGE_LENGTH);
-            let block_range_start = block_range_end - BLOCK_RANGE_LENGTH;
-            let block_range = BlockRange::new(block_range_start, block_range_end);
+            let block_range = BlockRange::from_block_number(transaction.block_number);
             if transaction_hashes.contains(&transaction.transaction_hash) {
                 transactions_to_certify.push((block_range.clone(), transaction));
             }

mithril-common/src/crypto_helper/merkle_map.rs

@@ -596,7 +596,7 @@ mod tests {
                 (
                     entries
                         .iter()
-                        .fold(BlockRange::new(0, 0), |mut acc, (range, _)| {
+                        .fold(BlockRange::new(0, 0), |acc, (range, _)| {
                             acc.try_add(range).unwrap()
                         }),
                     MKMapNode::Map(Rc::new(MKMap::new(entries).unwrap())),

mithril-common/src/entities/block_range.rs

@@ -14,35 +14,69 @@ use crate::{
 /// BlockNumber is the block number of a Cardano transaction.
 pub type BlockNumber = u64;
 
+/// BlockRangeLength is the length of a block range.
+pub type BlockRangeLength = u64;
+
 /// BlockRange for the Cardano chain
 #[derive(Serialize, Deserialize, Clone, Eq, PartialEq, Debug, Hash)]
 pub struct BlockRange {
     inner_range: Range<u64>,
 }
 
 impl BlockRange {
+    /// The length of the block range
+    /// Important: this value should be updated with extreme care (probably with an era change) in order to avoid signing disruptions.
+    pub const LENGTH: BlockRangeLength = 15;
+
     /// BlockRange factory
     pub fn new(start: BlockNumber, end: BlockNumber) -> Self {
         Self {
             inner_range: start..end,
         }
     }
 
-    /// Try to add two BlockRanges
-    pub fn try_add(&mut self, other: &BlockRange) -> StdResult<BlockRange> {
-        if self.inner_range.end.max(other.inner_range.end)
-            < self.inner_range.start.min(other.inner_range.start)
-        {
+    cfg_test_tools! {
+        /// Try to add two BlockRanges
+        pub fn try_add(&self, other: &BlockRange) -> StdResult<BlockRange> {
+            if self.inner_range.end.max(other.inner_range.end)
+                < self.inner_range.start.min(other.inner_range.start)
+            {
+                return Err(anyhow!(
+                    "BlockRange cannot be added as they don't strictly overlap"
+                ));
+            }
+
+            Ok(Self {
+                inner_range: Range {
+                    start: self.inner_range.start.min(other.inner_range.start),
+                    end: self.inner_range.end.max(other.inner_range.end),
+                },
+            })
+        }
+    }
+
+    /// Create a BlockRange from a block number
+    pub fn from_block_number(number: BlockNumber) -> Self {
+        // Unwrap is safe as the length is always strictly greater than 0
+        Self::from_block_number_and_length(number, Self::LENGTH).unwrap()
+    }
+
+    /// Create a BlockRange from a block number and a range length
+    fn from_block_number_and_length(
+        number: BlockNumber,
+        length: BlockRangeLength,
+    ) -> StdResult<Self> {
+        if length == 0 {
             return Err(anyhow!(
-                "BlockRange cannot be added as they don't strictly overlap"
+                "BlockRange cannot be be computed with a length of 0"
             ));
         }
-
+        // The formula used to compute the lower bound of the block range is `⌊number / length⌋ * length`
+        // The computation of the floor is done with the integer division `/` of Rust
+        let block_range_start = (number / length) * length;
+        let block_range_end = block_range_start + length;
         Ok(Self {
-            inner_range: Range {
-                start: self.inner_range.start.min(other.inner_range.start),
-                end: self.inner_range.end.max(other.inner_range.end),
-            },
+            inner_range: block_range_start..block_range_end,
         })
     }
 }
@@ -103,30 +137,79 @@ mod tests {
 
     #[test]
     fn test_block_range_cmp() {
-        let range_1 = BlockRange::new(1, 10);
-        let range_2 = BlockRange::new(1, 10);
-        let range_3 = BlockRange::new(1, 11);
-        let range_4 = BlockRange::new(2, 10);
-
-        assert_eq!(range_1, range_2);
-        assert_ne!(range_1, range_3);
-        assert_ne!(range_1, range_4);
-        assert_ne!(range_3, range_4);
-
-        assert!(range_1 < range_3);
-        assert!(range_1 < range_4);
-        assert!(range_3 < range_4);
+        assert_eq!(BlockRange::new(1, 10), BlockRange::new(1, 10));
+        assert_ne!(BlockRange::new(1, 10), BlockRange::new(1, 11));
+        assert_ne!(BlockRange::new(1, 10), BlockRange::new(2, 10));
+        assert_ne!(BlockRange::new(1, 11), BlockRange::new(2, 10));
+
+        assert!(BlockRange::new(1, 10) < BlockRange::new(1, 11));
+        assert!(BlockRange::new(1, 10) < BlockRange::new(2, 10));
+        assert!(BlockRange::new(1, 11) < BlockRange::new(2, 10));
     }
 
     #[test]
     fn test_block_range_try_add() {
-        let mut range_1 = BlockRange::new(1, 10);
-        let range_2 = BlockRange::new(1, 10);
-        let range_3 = BlockRange::new(1, 11);
-        let range_4 = BlockRange::new(2, 10);
-
-        assert_eq!(range_1.try_add(&range_2).unwrap(), range_1);
-        assert_eq!(range_1.try_add(&range_3).unwrap(), range_3);
-        assert_eq!(range_1.try_add(&range_4).unwrap(), BlockRange::new(1, 10));
+        assert_eq!(
+            BlockRange::new(1, 10)
+                .try_add(&BlockRange::new(1, 10))
+                .unwrap(),
+            BlockRange::new(1, 10)
+        );
+        assert_eq!(
+            BlockRange::new(1, 10)
+                .try_add(&BlockRange::new(1, 11))
+                .unwrap(),
+            BlockRange::new(1, 11)
+        );
+        assert_eq!(
+            BlockRange::new(1, 10)
+                .try_add(&BlockRange::new(2, 10))
+                .unwrap(),
+            BlockRange::new(1, 10)
+        );
+    }
+
+    #[test]
+    fn test_block_range_from_number() {
+        assert_eq!(BlockRange::from_block_number(0), BlockRange::new(0, 15));
+        assert_eq!(BlockRange::from_block_number(1), BlockRange::new(0, 15));
+        assert_eq!(BlockRange::from_block_number(14), BlockRange::new(0, 15));
+        assert_eq!(BlockRange::from_block_number(15), BlockRange::new(15, 30));
+        assert_eq!(BlockRange::from_block_number(16), BlockRange::new(15, 30));
+        assert_eq!(BlockRange::from_block_number(29), BlockRange::new(15, 30));
+    }
+
+    #[test]
+    fn test_block_range_from_number_and_length_with_valid_input() {
+        assert_eq!(
+            BlockRange::from_block_number_and_length(0, 10).unwrap(),
+            BlockRange::new(0, 10)
+        );
+        assert_eq!(
+            BlockRange::from_block_number_and_length(1, 10).unwrap(),
+            BlockRange::new(0, 10)
+        );
+        assert_eq!(
+            BlockRange::from_block_number_and_length(9, 10).unwrap(),
+            BlockRange::new(0, 10)
+        );
+        assert_eq!(
+            BlockRange::from_block_number_and_length(10, 10).unwrap(),
+            BlockRange::new(10, 20)
+        );
+        assert_eq!(
+            BlockRange::from_block_number_and_length(11, 10).unwrap(),
+            BlockRange::new(10, 20)
+        );
+        assert_eq!(
+            BlockRange::from_block_number_and_length(19, 10).unwrap(),
+            BlockRange::new(10, 20)
+        );
+    }
+
+    #[test]
+    fn test_block_range_from_number_and_length_with_invalid_input() {
+        BlockRange::from_block_number_and_length(10, 0)
+            .expect_err("BlockRange should not be computed with a length of 0");
     }
 }

mithril-common/src/entities/mod.rs

@@ -23,7 +23,7 @@ mod snapshot;
 mod type_alias;
 
 pub use beacon::{Beacon, BeaconComparison, BeaconComparisonError};
-pub use block_range::{BlockNumber, BlockRange};
+pub use block_range::{BlockNumber, BlockRange, BlockRangeLength};
 pub use cardano_network::CardanoNetwork;
 pub use cardano_transaction::{CardanoTransaction, TransactionHash};
 pub use cardano_transactions_set_proof::CardanoTransactionsSetProof;

mithril-common/src/signable_builder/cardano_transactions.rs

@@ -22,10 +22,6 @@ use crate::{
 #[cfg(test)]
 use mockall::automock;
 
-/// The length of the block range
-/// Important: this value should be updated with extreme care (probably with an era change) in order to avoid signing disruptions.
-pub const BLOCK_RANGE_LENGTH: u64 = 15;
-
 /// Cardano transactions store
 #[cfg_attr(test, automock)]
 #[async_trait]
@@ -73,11 +69,7 @@ impl CardanoTransactionsSignableBuilder {
         let mut transactions_by_block_ranges: HashMap<BlockRange, Vec<TransactionHash>> =
             HashMap::new();
         for transaction in transactions {
-            let block_range_end = transaction
-                .block_number
-                .next_multiple_of(BLOCK_RANGE_LENGTH);
-            let block_range_start = block_range_end - BLOCK_RANGE_LENGTH;
-            let block_range = BlockRange::new(block_range_start, block_range_end);
+            let block_range = BlockRange::from_block_number(transaction.block_number);
             transactions_by_block_ranges
                 .entry(block_range)
                 .or_default()
@@ -133,6 +125,8 @@ impl SignableBuilder<Beacon> for CardanoTransactionsSignableBuilder {
                 .await?;
         }
 
+        // We temporarily retrieve all the transactions from the database after we have recorded them.
+        // This avoids order side effects.
         let transactions = self.transaction_retriever.get_up_to(&beacon).await?;
         let mk_root = self.compute_merkle_root(&transactions)?;