feat!: implement validator node registration as per RFC-0313 (#4928)

* fix: updates for SafePassword API change (#4927)

Description
---
Minor updates for a corresponding [change](tari-project/tari_utilities#52) to the `SafePassword` API.

Motivation and Context
---
A pending change in `tari_utilities` to the handling of sensitive data includes a new implementation of `SafePassword`. One change removes derived traits for equality testing in favor of equality testing on references to the underlying passphrase data. This work makes the minor but necessary changes to address this API change.

How Has This Been Tested?
---
Tests pass after applying the linked `tari_utilities` PR. Note that tests will pass using the current `SafePassword` API as well, as the dependency change PR restricts the API.

* chore: remove unused methods (#4922)

Delete some unused methods

* v0.40.0

* fix: set wallet start scan height to birthday and not 0 (see issue #4807) (#4911)

Description
---
When wallet starts new UTXO scanning service it should start at the birthday. Currently, it starts at height 0. This PR addresses this issue

Motivation and Context
---
Addresses #4807.

How Has This Been Tested?
---

* chore: fix naming of ffi functions and comments  (#4930)

Description
---
Fixing the comments of one function in the wallet FFI.
Fixes the names of 4 functions in the wallet FFI.

* chore: fix depreciated timestamp clippy (#4929)

Description
---
Fixes depreciated timestamp warnings

* feat: implement validator node lmdb store

* feat: add stateless vn reg utxo validation rules and merkle root

* rename vn validaty period consensus constant

* use commitment instead of block hash so that lmdb uses canonical ordering

* DRY up vn_mmr calculation, add vn reg utxo validations

* fix clippies

* wallet: use amount from consensus constants for VN reg

* adds validator node signature to common types

This is to allow the validator node to use the same signature

* remove commitment from signature for now

* Remove unneeded validator node kernel feature

* ad epoch_length to grpc consensus constants

* fix epoch interval check and add test

* reduce target time for igor

* clippy

* change shard key hash label

Co-authored-by: Aaron Feickert <66188213+AaronFeickert@users.noreply.github.com>
Co-authored-by: stringhandler <mikethetike@tari.com>
Co-authored-by: jorgeantonio21 <matroid@outlook.com>
Co-authored-by: SW van Heerden <swvheerden@gmail.com>

applications/tari_app_grpc/proto/types.proto

@@ -122,7 +122,7 @@ message ConsensusConstants {
     /// Maximum byte size of TariScript
     uint64 max_script_byte_size = 18;
     /// How long does it take to timeout validator node registration
-    uint64 validator_node_timeout = 19;
+    uint64 validator_node_validity_period = 19;
     /// The height at which these constants become effective
     uint64 effective_from_height = 20;
     /// Current version of the blockchain
@@ -141,4 +141,6 @@ message ConsensusConstants {
     Range kernel_version_range = 28;
     /// An allowlist of output types
     repeated OutputType permitted_output_types = 29;
+    /// The length of an epoch
+    uint64 epoch_length = 30;
 }

applications/tari_app_grpc/src/conversions/consensus_constants.rs

@@ -113,7 +113,6 @@ impl From<ConsensusConstants> for grpc::ConsensusConstants {
             block_weight_inputs: weight_params.input_weight,
             block_weight_outputs: weight_params.output_weight,
             block_weight_kernels: weight_params.kernel_weight,
-            validator_node_timeout: cc.validator_node_timeout(),
             max_script_byte_size: cc.get_max_script_byte_size() as u64,
             faucet_value: cc.faucet_value().as_u64(),
             effective_from_height: cc.effective_from_height(),
@@ -125,6 +124,8 @@ impl From<ConsensusConstants> for grpc::ConsensusConstants {
             max_randomx_seed_height: cc.max_randomx_seed_height(),
             output_version_range: Some(output_version_range),
             permitted_output_types,
+            validator_node_validity_period: cc.validator_node_validity_period().as_u64(),
+            epoch_length: cc.epoch_length(),
         }
     }
 }

applications/tari_app_grpc/src/conversions/sidechain_feature.rs

@@ -22,7 +22,10 @@
 
 use std::convert::{TryFrom, TryInto};
 
-use tari_common_types::types::{PublicKey, Signature};
+use tari_common_types::{
+    types::{PublicKey, Signature},
+    validator_node_signature::ValidatorNodeSignature,
+};
 use tari_core::{
     consensus::MaxSizeString,
     transactions::transaction_components::{
@@ -79,21 +82,21 @@ impl TryFrom<grpc::ValidatorNodeRegistration> for ValidatorNodeRegistration {
     type Error = String;
 
     fn try_from(value: grpc::ValidatorNodeRegistration) -> Result<Self, Self::Error> {
-        Ok(Self {
-            public_key: PublicKey::from_bytes(&value.public_key).map_err(|e| e.to_string())?,
-            signature: value
+        Ok(ValidatorNodeRegistration::new(ValidatorNodeSignature::new(
+            PublicKey::from_bytes(&value.public_key).map_err(|e| e.to_string())?,
+            value
                 .signature
                 .map(Signature::try_from)
                 .ok_or("signature not provided")??,
-        })
+        )))
     }
 }
 
 impl From<ValidatorNodeRegistration> for grpc::ValidatorNodeRegistration {
     fn from(value: ValidatorNodeRegistration) -> Self {
         Self {
-            public_key: value.public_key.to_vec(),
-            signature: Some(value.signature.into()),
+            public_key: value.public_key().to_vec(),
+            signature: Some(value.signature().into()),
         }
     }
 }

applications/tari_base_node/src/commands/command/header_stats.rs

@@ -138,7 +138,7 @@ impl CommandContext {
                 normalized_solve_time,
                 pow_algo,
                 chrono::DateTime::<Utc>::from_utc(
-                    NaiveDateTime::from_timestamp(header.header().timestamp.as_u64() as i64, 0),
+                    NaiveDateTime::from_timestamp_opt(header.header().timestamp.as_u64() as i64, 0).unwrap_or_default(),
                     Utc
                 ),
                 target_diff.get(pow_algo).len(),

applications/tari_base_node/src/commands/command/status.rs

@@ -69,7 +69,7 @@ impl CommandContext {
             .await?
             .ok_or_else(|| anyhow!("No last header"))?;
         let last_block_time = DateTime::<Utc>::from_utc(
-            NaiveDateTime::from_timestamp(last_header.header().timestamp.as_u64() as i64, 0),
+            NaiveDateTime::from_timestamp_opt(last_header.header().timestamp.as_u64() as i64, 0).unwrap_or_default(),
             Utc,
         );
         status_line.add_field(

applications/tari_console_wallet/src/automation/commands.rs

@@ -193,6 +193,7 @@ pub async fn claim_htlc_refund(
 }
 
 pub async fn register_validator_node(
+    amount: MicroTari,
     mut wallet_transaction_service: TransactionServiceHandle,
     validator_node_public_key: PublicKey,
     validator_node_signature: Signature,
@@ -202,6 +203,7 @@ pub async fn register_validator_node(
 ) -> Result<TxId, CommandError> {
     wallet_transaction_service
         .register_validator_node(
+            amount,
             validator_node_public_key,
             validator_node_signature,
             selection_criteria,
@@ -971,6 +973,7 @@ pub async fn command_runner(
             },
             RegisterValidatorNode(args) => {
                 let tx_id = register_validator_node(
+                    args.amount,
                     transaction_service.clone(),
                     args.validator_node_public_key.into(),
                     Signature::new(

applications/tari_console_wallet/src/cli.rs

@@ -271,6 +271,7 @@ pub struct HashPasswordArgs {
 
 #[derive(Debug, Args, Clone)]
 pub struct RegisterValidatorNodeArgs {
+    pub amount: MicroTari,
     pub validator_node_public_key: UniPublicKey,
     pub validator_node_public_nonce: UniPublicKey,
     pub validator_node_signature: Vec<u8>,

applications/tari_console_wallet/src/grpc/wallet_grpc_server.rs

@@ -86,13 +86,23 @@ use tari_common_types::{
     types::{BlockHash, PublicKey, Signature},
 };
 use tari_comms::{multiaddr::Multiaddr, types::CommsPublicKey, CommsNode};
-use tari_core::transactions::{
-    tari_amount::{MicroTari, T},
-    transaction_components::{CodeTemplateRegistration, OutputFeatures, OutputType, SideChainFeature, UnblindedOutput},
+use tari_core::{
+    consensus::{ConsensusConstants, ConsensusManager},
+    transactions::{
+        tari_amount::{MicroTari, T},
+        transaction_components::{
+            CodeTemplateRegistration,
+            OutputFeatures,
+            OutputType,
+            SideChainFeature,
+            UnblindedOutput,
+        },
+    },
 };
 use tari_utilities::{hex::Hex, ByteArray};
 use tari_wallet::{
     connectivity_service::{OnlineStatus, WalletConnectivityInterface},
+    error::WalletStorageError,
     output_manager_service::{handle::OutputManagerHandle, UtxoSelectionCriteria},
     transaction_service::{
         handle::TransactionServiceHandle,
@@ -127,11 +137,13 @@ async fn send_transaction_event(
 
 pub struct WalletGrpcServer {
     wallet: WalletSqlite,
+    rules: ConsensusManager,
 }
 
 impl WalletGrpcServer {
     pub fn new(wallet: WalletSqlite) -> Self {
-        Self { wallet }
+        let rules = ConsensusManager::builder(wallet.network.as_network()).build();
+        Self { wallet, rules }
     }
 
     fn get_transaction_service(&self) -> TransactionServiceHandle {
@@ -145,6 +157,18 @@ impl WalletGrpcServer {
     fn comms(&self) -> &CommsNode {
         &self.wallet.comms
     }
+
+    fn get_consensus_constants(&self) -> Result<&ConsensusConstants, WalletStorageError> {
+        // If we don't have the chain metadata, we hope that VNReg consensus constants did not change - worst case, we
+        // spend more than we need to or the the transaction is rejected.
+        let height = self
+            .wallet
+            .db
+            .get_chain_metadata()?
+            .map(|m| m.height_of_longest_chain())
+            .unwrap_or_default();
+        Ok(self.rules.consensus_constants(height))
+    }
 }
 
 #[tonic::async_trait]
@@ -955,10 +979,17 @@ impl wallet_server::Wallet for WalletGrpcServer {
             .validator_node_signature
             .ok_or_else(|| Status::invalid_argument("Validator node signature is missing!"))?
             .try_into()
-            .unwrap();
+            .map_err(|_| Status::invalid_argument("Validator node signature is malformed!"))?;
+
+        let constants = self.get_consensus_constants().map_err(|e| {
+            error!(target: LOG_TARGET, "Failed to get consensus constants: {}", e);
+            Status::internal("failed to fetch consensus constants")
+        })?;
 
+        // TODO: we need to set the output maturity
         let response = match transaction_service
             .register_validator_node(
+                constants.validator_node_registration_min_deposit_amount(),
                 validator_node_public_key,
                 validator_node_signature,
                 UtxoSelectionCriteria::default(),

applications/tari_console_wallet/src/init/mod.rs

@@ -130,7 +130,7 @@ pub async fn change_password(
     let passphrase = prompt_password("New wallet password: ")?;
     let confirmed = prompt_password("Confirm new password: ")?;
 
-    if passphrase != confirmed {
+    if passphrase.reveal() != confirmed.reveal() {
         return Err(ExitError::new(ExitCode::InputError, "Passwords don't match!"));
     }
 
@@ -376,7 +376,7 @@ pub async fn init_wallet(
                 let password = prompt_password("Create wallet password: ")?;
                 let confirmed = prompt_password("Confirm wallet password: ")?;
 
-                if password != confirmed {
+                if password.reveal() != confirmed.reveal() {
                     return Err(ExitError::new(ExitCode::InputError, "Passwords don't match!"));
                 }
 

applications/tari_miner/src/difficulty.rs

@@ -91,9 +91,15 @@ pub mod test {
     #[allow(clippy::cast_sign_loss)]
     pub fn get_header() -> (grpc_header, BlockHeader) {
         let mut header = BlockHeader::new(0);
-        header.timestamp =
-            (DateTime::<Utc>::from_utc(NaiveDate::from_ymd(2000, 1, 1).and_hms(1, 1, 1), Utc).timestamp() as u64)
-                .into();
+        header.timestamp = (DateTime::<Utc>::from_utc(
+            NaiveDate::from_ymd_opt(2000, 1, 1)
+                .unwrap()
+                .and_hms_opt(1, 1, 1)
+                .unwrap(),
+            Utc,
+        )
+        .timestamp() as u64)
+            .into();
         header.pow.pow_algo = tari_core::proof_of_work::PowAlgorithm::Sha3;
         (header.clone().into(), header)
     }

base_layer/common_types/Cargo.toml

@@ -9,11 +9,13 @@ edition = "2018"
 [dependencies]
 tari_crypto = { git = "https://github.com/tari-project/tari-crypto.git", tag = "v0.15.7" }
 tari_utilities = { git = "https://github.com/tari-project/tari_utilities.git", tag="v0.4.7" }
+# TODO: remove this dependency and move Network into tari_common_types
 tari_common = { version = "^0.39", path = "../../common" }
 
 base64 = "0.13.0"
 digest = "0.9.0"
 lazy_static = "1.4.0"
+newtype-ops = "0.1"
 rand = "0.7.3"
 serde = { version = "1.0.106", features = ["derive"] }
 thiserror = "1.0.29"

base_layer/common_types/src/epoch.rs

@@ -0,0 +1,44 @@
+//  Copyright 2022. The Tari Project
+//
+//  Redistribution and use in source and binary forms, with or without modification, are permitted provided that the
+//  following conditions are met:
+//
+//  1. Redistributions of source code must retain the above copyright notice, this list of conditions and the following
+//  disclaimer.
+//
+//  2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the
+//  following disclaimer in the documentation and/or other materials provided with the distribution.
+//
+//  3. Neither the name of the copyright holder nor the names of its contributors may be used to endorse or promote
+//  products derived from this software without specific prior written permission.
+//
+//  THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES,
+//  INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+//  DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+//  SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
+//  SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
+//  WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE
+//  USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+use newtype_ops::newtype_ops;
+use serde::{Deserialize, Serialize};
+
+#[derive(Debug, Clone, Copy, PartialEq, Eq, PartialOrd, Ord, Hash, Serialize, Deserialize, Default)]
+pub struct VnEpoch(pub u64);
+
+impl VnEpoch {
+    pub fn as_u64(&self) -> u64 {
+        self.0
+    }
+
+    pub fn to_be_bytes(&self) -> [u8; 8] {
+        self.0.to_be_bytes()
+    }
+
+    pub fn saturating_sub(self, other: VnEpoch) -> VnEpoch {
+        VnEpoch(self.0.saturating_sub(other.0))
+    }
+}
+
+newtype_ops! { [VnEpoch] {add sub mul div} {:=} Self Self }
+newtype_ops! { [VnEpoch] {add sub mul div} {:=} &Self &Self }
+newtype_ops! { [VnEpoch] {add sub mul div} {:=} Self &Self }

base_layer/common_types/src/lib.rs

@@ -23,11 +23,13 @@
 pub mod chain_metadata;
 pub mod dammsum;
 pub mod emoji;
+pub mod epoch;
 pub mod grpc_authentication;
 pub mod tari_address;
 pub mod transaction;
 mod tx_id;
 pub mod types;
+pub mod validator_node_signature;
 pub mod waiting_requests;
 
 #[macro_use]

base_layer/common_types/src/validator_node_signature.rs

@@ -0,0 +1,73 @@
+//  Copyright 2022. The Tari Project
+//
+//  Redistribution and use in source and binary forms, with or without modification, are permitted provided that the
+//  following conditions are met:
+//
+//  1. Redistributions of source code must retain the above copyright notice, this list of conditions and the following
+//  disclaimer.
+//
+//  2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the
+//  following disclaimer in the documentation and/or other materials provided with the distribution.
+//
+//  3. Neither the name of the copyright holder nor the names of its contributors may be used to endorse or promote
+//  products derived from this software without specific prior written permission.
+//
+//  THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES,
+//  INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+//  DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+//  SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
+//  SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
+//  WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE
+//  USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+use rand::rngs::OsRng;
+use serde::{Deserialize, Serialize};
+use tari_crypto::{hash::blake2::Blake256, hash_domain, hashing::DomainSeparatedHasher, keys::PublicKey as PublicKeyT};
+use tari_utilities::ByteArray;
+
+use crate::types::{FixedHash, PrivateKey, PublicKey, Signature};
+
+hash_domain!(ValidatorNodeHashDomain, "com.tari.dan_layer.validator_node", 0);
+
+#[derive(Debug, Clone, Hash, PartialEq, Eq, Deserialize, Serialize)]
+pub struct ValidatorNodeSignature {
+    public_key: PublicKey,
+    signature: Signature,
+}
+
+impl ValidatorNodeSignature {
+    pub fn new(public_key: PublicKey, signature: Signature) -> Self {
+        Self { public_key, signature }
+    }
+
+    // TODO: pass in commitment instead of arbitrary message
+    pub fn sign(private_key: &PrivateKey, msg: &[u8]) -> Self {
+        let (secret_nonce, public_nonce) = PublicKey::random_keypair(&mut OsRng);
+        let public_key = PublicKey::from_secret_key(private_key);
+        let challenge = Self::construct_challenge(&public_key, &public_nonce, msg);
+        let signature = Signature::sign(private_key.clone(), secret_nonce, &*challenge)
+            .expect("Sign cannot fail with 32-byte challenge and a RistrettoPublicKey");
+        Self { public_key, signature }
+    }
+
+    fn construct_challenge(public_key: &PublicKey, public_nonce: &PublicKey, msg: &[u8]) -> FixedHash {
+        let hasher = DomainSeparatedHasher::<Blake256, ValidatorNodeHashDomain>::new_with_label("registration")
+            .chain(public_key.as_bytes())
+            .chain(public_nonce.as_bytes())
+            .chain(msg);
+        digest::Digest::finalize(hasher).into()
+    }
+
+    pub fn is_valid_signature_for(&self, msg: &[u8]) -> bool {
+        let challenge = Self::construct_challenge(&self.public_key, self.signature.get_public_nonce(), msg);
+        self.signature.verify_challenge(&self.public_key, &*challenge)
+    }
+
+    pub fn public_key(&self) -> &PublicKey {
+        &self.public_key
+    }
+
+    pub fn signature(&self) -> &Signature {
+        &self.signature
+    }
+}