// Copyright 2022 The go-ethereum Authors // This file is part of the go-ethereum library. // // The go-ethereum library is free software: you can redistribute it and/or modify // it under the terms of the GNU Lesser General Public License as published by // the Free Software Foundation, either version 3 of the License, or // (at your option) any later version. // // The go-ethereum library is distributed in the hope that it will be useful, // but WITHOUT ANY WARRANTY; without even the implied warranty of // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the // GNU Lesser General Public License for more details. // // You should have received a copy of the GNU Lesser General Public License // along with the go-ethereum library. If not, see . package types import ( "errors" "fmt" "github.com/ethereum/go-ethereum/beacon/merkle" "github.com/ethereum/go-ethereum/beacon/params" "github.com/ethereum/go-ethereum/common" ctypes "github.com/ethereum/go-ethereum/core/types" ) // HeadInfo represents an unvalidated new head announcement. type HeadInfo struct { Slot uint64 BlockRoot common.Hash } // BootstrapData contains a sync committee where light sync can be started, // together with a proof through a beacon header and corresponding state. // Note: BootstrapData is fetched from a server based on a known checkpoint hash. type BootstrapData struct { Version string Header Header CommitteeRoot common.Hash Committee *SerializedSyncCommittee `rlp:"-"` CommitteeBranch merkle.Values } // Validate verifies the proof included in BootstrapData. func (c *BootstrapData) Validate() error { if c.CommitteeRoot != c.Committee.Root() { return errors.New("wrong committee root") } return merkle.VerifyProof(c.Header.StateRoot, params.StateIndexSyncCommittee(c.Version), c.CommitteeBranch, merkle.Value(c.CommitteeRoot)) } // LightClientUpdate is a proof of the next sync committee root based on a header // signed by the sync committee of the given period. Optionally, the update can // prove quasi-finality by the signed header referring to a previous, finalized // header from the same period, and the finalized header referring to the next // sync committee root. // // See data structure definition here: // https://github.com/ethereum/consensus-specs/blob/dev/specs/altair/light-client/sync-protocol.md#lightclientupdate type LightClientUpdate struct { Version string AttestedHeader SignedHeader // Arbitrary header out of the period signed by the sync committee NextSyncCommitteeRoot common.Hash // Sync committee of the next period advertised in the current one NextSyncCommitteeBranch merkle.Values // Proof for the next period's sync committee FinalizedHeader *Header `rlp:"nil"` // Optional header to announce a point of finality FinalityBranch merkle.Values // Proof for the announced finality score *UpdateScore // Weight of the update to compare between competing ones } // Validate verifies the validity of the update. func (update *LightClientUpdate) Validate() error { period := update.AttestedHeader.Header.SyncPeriod() if SyncPeriod(update.AttestedHeader.SignatureSlot) != period { return errors.New("signature slot and signed header are from different periods") } if update.FinalizedHeader != nil { if update.FinalizedHeader.SyncPeriod() != period { return errors.New("finalized header is from different period") } if err := merkle.VerifyProof(update.AttestedHeader.Header.StateRoot, params.StateIndexFinalBlock(update.Version), update.FinalityBranch, merkle.Value(update.FinalizedHeader.Hash())); err != nil { return fmt.Errorf("invalid finalized header proof: %w", err) } } if err := merkle.VerifyProof(update.AttestedHeader.Header.StateRoot, params.StateIndexNextSyncCommittee(update.Version), update.NextSyncCommitteeBranch, merkle.Value(update.NextSyncCommitteeRoot)); err != nil { return fmt.Errorf("invalid next sync committee proof: %w", err) } return nil } // Score returns the UpdateScore describing the proof strength of the update // Note: thread safety can be ensured by always calling Score on a newly received // or decoded update before making it potentially available for other threads func (update *LightClientUpdate) Score() UpdateScore { if update.score == nil { update.score = &UpdateScore{ SignerCount: uint32(update.AttestedHeader.Signature.SignerCount()), SubPeriodIndex: uint32(update.AttestedHeader.Header.Slot & 0x1fff), FinalizedHeader: update.FinalizedHeader != nil, } } return *update.score } // UpdateScore allows the comparison between updates at the same period in order // to find the best update chain that provides the strongest proof of being canonical. // // UpdateScores have a tightly packed binary encoding format for efficient p2p // protocol transmission. Each UpdateScore is encoded in 3 bytes. // When interpreted as a 24 bit little indian unsigned integer: // - the lowest 10 bits contain the number of signers in the header signature aggregate // - the next 13 bits contain the "sub-period index" which is he signed header's // slot modulo params.SyncPeriodLength (which is correlated with the risk of the chain being // re-orged before the previous period boundary in case of non-finalized updates) // - the highest bit is set when the update is finalized (meaning that the finality // header referenced by the signed header is in the same period as the signed // header, making reorgs before the period boundary impossible type UpdateScore struct { SignerCount uint32 // number of signers in the header signature aggregate SubPeriodIndex uint32 // signed header's slot modulo params.SyncPeriodLength FinalizedHeader bool // update is considered finalized if has finalized header from the same period and 2/3 signatures } // finalized returns true if the update has a header signed by at least 2/3 of // the committee, referring to a finalized header that refers to the next sync // committee. This condition is a close approximation of the actual finality // condition that can only be verified by full beacon nodes. func (u *UpdateScore) finalized() bool { return u.FinalizedHeader && u.SignerCount >= params.SyncCommitteeSupermajority } // BetterThan returns true if update u is considered better than w. func (u UpdateScore) BetterThan(w UpdateScore) bool { var ( uFinalized = u.finalized() wFinalized = w.finalized() ) if uFinalized != wFinalized { return uFinalized } return u.SignerCount > w.SignerCount } // HeaderWithExecProof contains a beacon header and proves the belonging execution // payload header with a Merkle proof. type HeaderWithExecProof struct { Header PayloadHeader *ExecutionHeader PayloadBranch merkle.Values } // Validate verifies the Merkle proof of the execution payload header. func (h *HeaderWithExecProof) Validate() error { return merkle.VerifyProof(h.BodyRoot, params.BodyIndexExecPayload, h.PayloadBranch, h.PayloadHeader.PayloadRoot()) } // OptimisticUpdate proves sync committee commitment on the attested beacon header. // It also proves the belonging execution payload header with a Merkle proof. // // See data structure definition here: // https://github.com/ethereum/consensus-specs/blob/dev/specs/altair/light-client/sync-protocol.md#lightclientoptimisticupdate type OptimisticUpdate struct { Attested HeaderWithExecProof // Sync committee BLS signature aggregate Signature SyncAggregate // Slot in which the signature has been created (newer than Header.Slot, // determines the signing sync committee) SignatureSlot uint64 } // SignedHeader returns the signed attested header of the update. func (u *OptimisticUpdate) SignedHeader() SignedHeader { return SignedHeader{ Header: u.Attested.Header, Signature: u.Signature, SignatureSlot: u.SignatureSlot, } } // Validate verifies the Merkle proof proving the execution payload header. // Note that the sync committee signature of the attested header should be // verified separately by a synced committee chain. func (u *OptimisticUpdate) Validate() error { return u.Attested.Validate() } // FinalityUpdate proves a finalized beacon header by a sync committee commitment // on an attested beacon header, referring to the latest finalized header with a // Merkle proof. // It also proves the execution payload header belonging to both the attested and // the finalized beacon header with Merkle proofs. // // See data structure definition here: // https://github.com/ethereum/consensus-specs/blob/dev/specs/altair/light-client/sync-protocol.md#lightclientfinalityupdate type FinalityUpdate struct { Version string Attested, Finalized HeaderWithExecProof FinalityBranch merkle.Values // Sync committee BLS signature aggregate Signature SyncAggregate // Slot in which the signature has been created (newer than Header.Slot, // determines the signing sync committee) SignatureSlot uint64 } // SignedHeader returns the signed attested header of the update. func (u *FinalityUpdate) SignedHeader() SignedHeader { return SignedHeader{ Header: u.Attested.Header, Signature: u.Signature, SignatureSlot: u.SignatureSlot, } } // Validate verifies the Merkle proofs proving the finalized beacon header and // the execution payload headers belonging to the attested and finalized headers. // Note that the sync committee signature of the attested header should be // verified separately by a synced committee chain. func (u *FinalityUpdate) Validate() error { if err := u.Attested.Validate(); err != nil { return err } if err := u.Finalized.Validate(); err != nil { return err } return merkle.VerifyProof(u.Attested.StateRoot, params.StateIndexFinalBlock(u.Version), u.FinalityBranch, merkle.Value(u.Finalized.Hash())) } // ChainHeadEvent returns an authenticated execution payload associated with the // latest accepted head of the beacon chain, along with the hash of the latest // finalized execution block. type ChainHeadEvent struct { BeaconHead Header Block *ctypes.Block ExecRequests [][]byte // execution layer requests (added in Electra) Finalized common.Hash // latest finalized block hash }