Add auto-expiration for locked account keys and metrics for available keys left

Author: m-Peter

bootstrap/bootstrap.go

@@ -60,7 +60,7 @@ type Bootstrap struct {
 	events     *ingestion.Engine
 	profiler   *api.ProfileServer
 	db         *pebbleDB.DB
-	keystore   *requester.Keystore
+	keystore   *requester.KeyStore
 }
 
 func New(config config.Config) (*Bootstrap, error) {
@@ -220,7 +220,7 @@ func (b *Bootstrap) StartAPIServer(ctx context.Context) error {
 		})
 	}
 
-	b.keystore = requester.NewKeystore(accountKeys)
+	b.keystore = requester.NewKeyStore(accountKeys)
 
 	evm, err := requester.NewEVM(
 		b.storages.Registers,

metrics/collector.go

@@ -19,6 +19,7 @@ type Collector interface {
 	EVMAccountInteraction(address string)
 	MeasureRequestDuration(start time.Time, method string)
 	OperatorBalance(account *flow.Account)
+	AvailableSigningKeys(count int)
 }
 
 var _ Collector = &DefaultCollector{}
@@ -35,6 +36,7 @@ type DefaultCollector struct {
 	operatorBalance           prometheus.Gauge
 	evmAccountCallCounters    *prometheus.CounterVec
 	requestDurations          *prometheus.HistogramVec
+	availableSigningkeys      prometheus.Gauge
 }
 
 func NewCollector(logger zerolog.Logger) Collector {
@@ -90,6 +92,11 @@ func NewCollector(logger zerolog.Logger) Collector {
 		Buckets: prometheus.DefBuckets,
 	}, []string{"method"})
 
+	availableSigningKeys := prometheus.NewGauge(prometheus.GaugeOpts{
+		Name: prefixedName("available_signing_keys"),
+		Help: "Number of keys available for transaction signing",
+	})
+
 	metrics := []prometheus.Collector{
 		apiErrors,
 		traceDownloadErrorCounter,
@@ -101,6 +108,7 @@ func NewCollector(logger zerolog.Logger) Collector {
 		operatorBalance,
 		evmAccountCallCounters,
 		requestDurations,
+		availableSigningKeys,
 	}
 	if err := registerMetrics(logger, metrics...); err != nil {
 		logger.Info().Msg("using noop collector as metric register failed")
@@ -118,6 +126,7 @@ func NewCollector(logger zerolog.Logger) Collector {
 		evmAccountCallCounters:    evmAccountCallCounters,
 		requestDurations:          requestDurations,
 		operatorBalance:           operatorBalance,
+		availableSigningkeys:      availableSigningKeys,
 	}
 }
 
@@ -172,6 +181,10 @@ func (c *DefaultCollector) MeasureRequestDuration(start time.Time, method string
 		Observe(time.Since(start).Seconds())
 }
 
+func (c *DefaultCollector) AvailableSigningKeys(count int) {
+	c.availableSigningkeys.Set(float64(count))
+}
+
 func prefixedName(name string) string {
 	return fmt.Sprintf("evm_gateway_%s", name)
 }

metrics/nop.go

@@ -21,3 +21,4 @@ func (c *nopCollector) EVMTransactionIndexed(int)                {}
 func (c *nopCollector) EVMAccountInteraction(string)             {}
 func (c *nopCollector) MeasureRequestDuration(time.Time, string) {}
 func (c *nopCollector) OperatorBalance(*flow.Account)            {}
+func (c *nopCollector) AvailableSigningKeys(count int)           {}

services/ingestion/event_subscriber.go

@@ -33,10 +33,10 @@ var _ EventSubscriber = &RPCEventSubscriber{}
 type RPCEventSubscriber struct {
 	logger zerolog.Logger
 
-	client   *requester.CrossSporkClient
-	chain    flowGo.ChainID
-	keystore *requester.Keystore
-	height   uint64
+	client  *requester.CrossSporkClient
+	chain   flowGo.ChainID
+	keyLock requester.KeyLock
+	height  uint64
 
 	recovery        bool
 	recoveredEvents []flow.Event
@@ -46,17 +46,17 @@ func NewRPCEventSubscriber(
 	logger zerolog.Logger,
 	client *requester.CrossSporkClient,
 	chainID flowGo.ChainID,
-	keystore *requester.Keystore,
+	keyLock requester.KeyLock,
 	startHeight uint64,
 ) *RPCEventSubscriber {
 	logger = logger.With().Str("component", "subscriber").Logger()
 	return &RPCEventSubscriber{
 		logger: logger,
 
-		client:   client,
-		chain:    chainID,
-		keystore: keystore,
-		height:   startHeight,
+		client:  client,
+		chain:   chainID,
+		keyLock: keyLock,
+		height:  startHeight,
 	}
 }
 
@@ -173,7 +173,7 @@ func (r *RPCEventSubscriber) subscribe(ctx context.Context, height uint64) <-cha
 					}
 				}
 				for _, evt := range blockEvents.Events {
-					r.keystore.UnlockKey(evt.TransactionID)
+					r.keyLock.UnlockKey(evt.TransactionID)
 				}
 
 				eventsChan <- evmEvents

services/ingestion/event_subscriber_test.go

@@ -43,7 +43,7 @@ func Test_Subscribing(t *testing.T) {
 	)
 	require.NoError(t, err)
 
-	subscriber := NewRPCEventSubscriber(zerolog.Nop(), client, flowGo.Previewnet, requester.NewKeystore(nil), 1)
+	subscriber := NewRPCEventSubscriber(zerolog.Nop(), client, flowGo.Previewnet, requester.NewKeyStore(nil), 1)
 
 	events := subscriber.Subscribe(context.Background())
 
@@ -83,7 +83,7 @@ func Test_MissingBlockEvent(t *testing.T) {
 	)
 	require.NoError(t, err)
 
-	subscriber := NewRPCEventSubscriber(zerolog.Nop(), client, flowGo.Previewnet, requester.NewKeystore(nil), 1)
+	subscriber := NewRPCEventSubscriber(zerolog.Nop(), client, flowGo.Previewnet, requester.NewKeyStore(nil), 1)
 
 	events := subscriber.Subscribe(context.Background())
 
@@ -185,7 +185,7 @@ func Test_SubscribingWithRetryOnError(t *testing.T) {
 	)
 	require.NoError(t, err)
 
-	subscriber := NewRPCEventSubscriber(zerolog.Nop(), client, flowGo.Previewnet, requester.NewKeystore(nil), 1)
+	subscriber := NewRPCEventSubscriber(zerolog.Nop(), client, flowGo.Previewnet, requester.NewKeyStore(nil), 1)
 
 	events := subscriber.Subscribe(context.Background())
 
@@ -248,7 +248,7 @@ func Test_SubscribingWithRetryOnErrorMultipleBlocks(t *testing.T) {
 	)
 	require.NoError(t, err)
 
-	subscriber := NewRPCEventSubscriber(zerolog.Nop(), client, flowGo.Previewnet, requester.NewKeystore(nil), 1)
+	subscriber := NewRPCEventSubscriber(zerolog.Nop(), client, flowGo.Previewnet, requester.NewKeyStore(nil), 1)
 
 	events := subscriber.Subscribe(context.Background())
 
@@ -310,7 +310,7 @@ func Test_SubscribingWithRetryOnErrorEmptyBlocks(t *testing.T) {
 	)
 	require.NoError(t, err)
 
-	subscriber := NewRPCEventSubscriber(zerolog.Nop(), client, flowGo.Previewnet, requester.NewKeystore(nil), 1)
+	subscriber := NewRPCEventSubscriber(zerolog.Nop(), client, flowGo.Previewnet, requester.NewKeyStore(nil), 1)
 
 	events := subscriber.Subscribe(context.Background())
 

services/requester/key_store.go

@@ -0,0 +1,133 @@
+package requester
+
+import (
+	"fmt"
+	"sync"
+	"time"
+
+	flowsdk "github.com/onflow/flow-go-sdk"
+	"github.com/onflow/flow-go-sdk/crypto"
+	flowGo "github.com/onflow/flow-go/model/flow"
+)
+
+var ErrNoKeysAvailable = fmt.Errorf("no keys available")
+
+const accountKeyExpiry = 10 * time.Second
+
+type AccountKey struct {
+	flowsdk.AccountKey
+
+	mu       sync.Mutex
+	ks       *KeyStore
+	Address  flowsdk.Address
+	Signer   crypto.Signer
+	lastUsed time.Time
+}
+
+// Done unlocks a key after use and puts it back into the pool.
+func (k *AccountKey) Done() {
+	k.mu.Lock()
+	defer k.mu.Unlock()
+
+	k.ks.availableKeys <- k
+}
+
+func (k *AccountKey) SetProposerPayerAndSign(
+	tx *flowsdk.Transaction,
+	account *flowsdk.Account,
+) error {
+	if k.Address != account.Address {
+		return fmt.Errorf(
+			"expected address: %v, got address: %v",
+			k.Address,
+			account.Address,
+		)
+	}
+	if k.Index >= uint32(len(account.Keys)) {
+		return fmt.Errorf(
+			"key index: %d exceeds keys length: %d",
+			k.Index,
+			len(account.Keys),
+		)
+	}
+	seqNumber := account.Keys[k.Index].SequenceNumber
+
+	return tx.
+		SetProposalKey(k.Address, k.Index, seqNumber).
+		SetPayer(k.Address).
+		SignEnvelope(k.Address, k.Index, k.Signer)
+}
+
+func (k *AccountKey) expired() bool {
+	return time.Since(k.lastUsed) > flowGo.DefaultTransactionExpiry
+}
+
+type KeyLock interface {
+	LockKey(txID flowsdk.Identifier, key *AccountKey)
+	UnlockKey(txID flowsdk.Identifier)
+}
+
+type KeyStore struct {
+	availableKeys chan *AccountKey
+	usedKeys      map[flowsdk.Identifier]*AccountKey
+	size          int
+}
+
+var _ KeyLock = (*KeyStore)(nil)
+
+func NewKeyStore(keys []*AccountKey) *KeyStore {
+	ks := &KeyStore{
+		usedKeys: map[flowsdk.Identifier]*AccountKey{},
+	}
+
+	availableKeys := make(chan *AccountKey, len(keys))
+	for _, key := range keys {
+		key.ks = ks
+		availableKeys <- key
+	}
+	ks.size = len(keys)
+	ks.availableKeys = availableKeys
+
+	go ks.keyExpiryChecker()
+
+	return ks
+}
+
+func (k *KeyStore) AvailableKeys() int {
+	return k.size - len(k.usedKeys)
+}
+
+func (k *KeyStore) Take() (*AccountKey, error) {
+	select {
+	case key := <-k.availableKeys:
+		return key, nil
+	default:
+		return nil, ErrNoKeysAvailable
+	}
+}
+
+func (k *KeyStore) LockKey(txID flowsdk.Identifier, key *AccountKey) {
+	key.mu.Lock()
+	defer key.mu.Unlock()
+
+	key.lastUsed = time.Now()
+	k.usedKeys[txID] = key
+}
+
+func (k *KeyStore) UnlockKey(txID flowsdk.Identifier) {
+	key, ok := k.usedKeys[txID]
+	if ok && key != nil {
+		key.Done()
+		delete(k.usedKeys, txID)
+	}
+}
+
+func (k *KeyStore) keyExpiryChecker() {
+	for range time.Tick(accountKeyExpiry) {
+		for txID, key := range k.usedKeys {
+			if key.expired() {
+				k.UnlockKey(txID)
+			}
+		}
+	}
+}