Problem: (CRO-392) outdated dependencies in client's storage encryption

[linfeng-crypto]

Solution:

• use crate aes-gcm-siv and aead instead of miscreant
• use crate rust-argon2 to the passphrase to a constant length, and store the salt at the end of the encrypted data.

[codecov]

Codecov Report

Merging #535 into master will decrease coverage by 0.42%.
The diff coverage is 94.44%.

@@            Coverage Diff             @@
##           master     #535      +/-   ##
==========================================
- Coverage   67.96%   67.54%   -0.43%     
==========================================
  Files         124      124              
  Lines       14722    14369     -353     
==========================================
- Hits        10006     9705     -301     
+ Misses       4716     4664      -52

Impacted Files	Coverage Δ
client-common/src/error.rs	61.9% <0%> (-2.03%)	⬇️
client-core/src/service/hd_key_service.rs	88.03% <100%> (ø)	⬆️
client-common/src/storage.rs	100% <100%> (+11.29%)	⬆️
client-core/src/handler/default_block_handler.rs	90.4% <90%> (-0.12%)	⬇️
chain-abci/src/slashing.rs	61.11% <0%> (-20.71%)	⬇️
chain-core/src/state/account.rs	74.47% <0%> (-3.6%)	⬇️
chain-core/src/init/params.rs	78.68% <0%> (-1.48%)	⬇️
chain-abci/src/app/query.rs	74.46% <0%> (-1.33%)	⬇️
chain-abci/src/app/mod.rs	83.73% <0%> (-1.31%)	⬇️
chain-abci/src/app/jail_account.rs	97.82% <0%> (-1.1%)	⬇️
... and 21 more

[devashishdxt]

LGTM

[leejw51]

good

[tomtau]

looks good -- just a small request before merging this: could you change the commit message, so that it matches the PR message ("Problem: (CRO-392) outdated dependencies in client's storage encryption
(two empty lines)
Solution:

• use crate aes-gcm-siv and aead instead of miscreant
• use crate rust-argon2 to the passphrase to a constant length, and store the salt at the end of the encrypted data.") ?

[devashishdxt]

There are a few merge conflicts because of #532.

[tomtau]

@linfeng-crypto as there was small code refactoring in the client code by @devashishdxt , there are a few merge conflicts to resolve

[tomtau]

bors r+

[bors]

Build failed

• continuous-integration/travis-ci/push

[tomtau]

bors retry

[bors]

Build failed (retrying...)

• continuous-integration/travis-ci/push

[bors]

Build failed

• continuous-integration/travis-ci/push

[tomtau]

seems this breaks the integration test @calvinaco @calvinlauco https://travis-ci.org/crypto-com/chain/jobs/604888092#L1955

[Log] Synchronizing wallet "Default"
1929    1) "before all" hook for "unbond of same amount and nonce from different account should have different txid"
1930
1931  Wallet Auto-sync
1932[Log] Synchronizing wallet "Default"
1933[Log] Synchronizing wallet "Default"
1934    2) "before all" hook for "can auto-sync unlocked wallets"
1935
1936  Wallet management
1937[Log] Synchronizing wallet "Default"
1938[Info] Wallet balance: 2500000000000000000
1939[Init] Bonded funds already withdrew
1940[Log] Synchronizing wallet "Default"
1941[Info] Wallet balance: 2500000000000000000
1942[Init] Bonded funds already withdrew
1943[Log] Synchronizing wallet "Default"
1944    3) "before all" hook for "cannot access un-existing wallet"
1945
1946  Wallet transaction
1947[Log] Synchronizing wallet "Default"
1948[Info] Wallet balance: 2500000000000000000
1949[Init] Bonded funds already withdrew
1950[Log] Synchronizing wallet "Default"
1951    4) "before all" hook in "Wallet transaction"
1952
1953
1954  0 passing (40s)
1955  4 failing
1956
1957  1) Staking
1958       "before all" hook for "unbond of same amount and nonce from different account should have different txid":
1959     Error: Timeout of 10000ms exceeded. For async tests and hooks, ensure "done()" is called; if returning a Promise, ensure it resolves. (/home/travis/build/crypto-com/chain/integration-tests/client-rpc/test/network-ops.test.ts)
1960  
1961
1962  2) Wallet Auto-sync
1963       "before all" hook for "can auto-sync unlocked wallets":
1964     Error: Timeout of 10000ms exceeded. For async tests and hooks, ensure "done()" is called; if returning a Promise, ensure it resolves. (/home/travis/build/crypto-com/chain/integration-tests/client-rpc/test/wallet-auto-sync.test.ts)
1965  
1966
1967  3) Wallet management
1968       "before all" hook for "cannot access un-existing wallet":
1969     Error: Timeout of 10000ms exceeded. For async tests and hooks, ensure "done()" is called; if returning a Promise, ensure it resolves. (/home/travis/build/crypto-com/chain/integration-tests/client-rpc/test/wallet-management.test.ts)
1970  
1971
1972  4) Wallet transaction
1973       "before all" hook in "Wallet transaction":
1974     Error: Timeout of 10000ms exceeded. For async tests and hooks, ensure "done()" is called; if returning a Promise, ensure it resolves. (/home/travis/build/crypto-com/chain/integration-tests/client-rpc/test/wallet-transaction.test.ts)
1975  
1976
1977
1978
1979error Command failed with exit code 4.
1980info Visit https://yarnpkg.com/en/docs/cli/run for documentation about this command.
1981         Name                   Command           State           Ports         

[leejw51crypto]

strange, travis-ci passed,
why bors failed?

[tomtau]

@leejw51 @leejw51crypto travis failed -- https://travis-ci.org/crypto-com/chain/builds/604888089?utm_source=github_status&utm_medium=notification

[tomtau]

bors try

[calvinaco]

@linfeng-crypto #555 has been merged

Can you rebase your branch with latest master and do bors try again? Thanks

[calvinlauyh]

@linfeng-crypto @tomtau
I have run the integration tests locally and found that it also resulted in timeout. I think it is caused by the code changes. I am re-reviewing the code now, any hints?

[tomtau]

@calvinlauco this changes some of the things are stored in the client -- so perhaps if the integration test stores/caches the old format?

[calvinlauyh]

@calvinlauco this changes some of the things are stored in the client -- so perhaps if the integration test stores/caches the old format?

The integration tests will initialize and build everything from scratch on each run. As far as I concern there shouldn't be any cached config.

[tomtau]

@linfeng-crypto update -- @calvinlauco suspects that the "sync-ing" time now increased in this PR, which is why the integration test times out

[tomtau]

@linfeng-crypto a small patch:

index 0cb2796..709cf75 100644
--- a/client-core/src/service/wallet_service.rs
+++ b/client-core/src/service/wallet_service.rs
@@ -1,4 +1,5 @@
-use std::collections::BTreeSet;
+use std::collections::{BTreeMap, BTreeSet};
+use std::sync::Mutex;

 use parity_scale_codec::{Decode, Encode};
 use secstr::SecUtf8;
@@ -11,7 +12,11 @@ use client_common::{Error, ErrorKind, PublicKey, Result, ResultExt, SecureStorag

 const KEYSPACE: &str = "core_wallet";

-#[derive(Debug, Encode, Decode)]
+thread_local! {
+    static WALLET_CACHE: Mutex<BTreeMap<String, Wallet>> = Mutex::new(BTreeMap::new());
+}
+
+#[derive(Debug, Encode, Decode, Clone)]
 struct Wallet {
     pub view_key: PublicKey,
     pub public_keys: BTreeSet<PublicKey>,
@@ -47,20 +52,29 @@ where
     }

     fn get_wallet(&self, name: &str, passphrase: &SecUtf8) -> Result<Wallet> {
-        let wallet_bytes = self
-            .storage
-            .get_secure(KEYSPACE, name, passphrase)?
-            .chain(|| {
-                (
-                    ErrorKind::InvalidInput,
-                    format!("Wallet with name ({}) not found", name),
-                )
-            })?;
-        Wallet::decode(&mut wallet_bytes.as_slice()).chain(|| {
-            (
-                ErrorKind::DeserializationError,
-                format!("Unable to deserialize wallet with name {}", name),
-            )
+        WALLET_CACHE.with(|cache| {
+            let mut wallet_cache = cache.lock().expect("obtain lock");
+            if let Some(w) = wallet_cache.get(name) {
+                Ok(w.clone())
+            } else {
+                let wallet_bytes = self
+                    .storage
+                    .get_secure(KEYSPACE, name, passphrase)?
+                    .chain(|| {
+                        (
+                            ErrorKind::InvalidInput,
+                            format!("Wallet with name ({}) not found", name),
+                        )
+                    })?;
+                let w = Wallet::decode(&mut wallet_bytes.as_slice()).chain(|| {
+                    (
+                        ErrorKind::DeserializationError,
+                        format!("Unable to deserialize wallet with name {}", name),
+                    )
+                })?;
+                wallet_cache.insert(name.to_string(), w.clone());
+                Ok(w)
+            }
         })
     }

[tomtau]

@linfeng-crypto easier patch:

diff --git a/client-core/src/handler/default_block_handler.rs b/client-core/src/handler/default_block_handler.rs
index f25c8b7..739371c 100644
--- a/client-core/src/handler/default_block_handler.rs
+++ b/client-core/src/handler/default_block_handler.rs
@@ -1,11 +1,17 @@
 use secstr::SecUtf8;
 
+use std::collections::BTreeMap;
+use std::cell::RefCell;
 use chain_core::tx::TransactionId;
-use client_common::{BlockHeader, ErrorKind, Result, ResultExt, Storage};
+use client_common::{BlockHeader, ErrorKind, Result, ResultExt, Storage, PublicKey};
 
 use crate::service::{GlobalStateService, KeyService, WalletService};
 use crate::{BlockHandler, TransactionHandler, TransactionObfuscation};
 
+thread_local! {
+    static VIEWKEY_CACHE: RefCell<BTreeMap<String, PublicKey>> = RefCell::new(BTreeMap::new());
+}
+
 /// Default implementation of `BlockHandler`
 pub struct DefaultBlockHandler<O, H, S>
 where
@@ -59,7 +65,17 @@ where
             }
         }
 
-        let view_key = self.wallet_service.view_key(name, passphrase)?;
+        let vk: Result<PublicKey> = VIEWKEY_CACHE.with(|cache| {
+            let mut viewkey_cache = cache.borrow_mut();
+            if let Some(w) = viewkey_cache.get(name) {
+                Ok(w.clone())
+            } else {
+                let w = self.wallet_service.view_key(name, passphrase)?;
+                viewkey_cache.insert(name.to_string(), w.clone());
+                Ok(w)
+            }
+        });
+        let view_key = vk?;
 
         if block_header
             .block_filter

[tomtau]

bors r+

[bors]

Build failed (retrying...)

• continuous-integration/drone/push

[bors]

Build failed

• continuous-integration/travis-ci/push

[tomtau]

bors r+

[bors]

Merge conflict (retrying...)

[bors]

Build failed

• continuous-integration/travis-ci/push

[devashishdxt]

In future, instead of a BTreeMap as a cache, I think we should use a more proper cache (like LRU) which will automatically evict entries which are no longer in use.

[tomtau]

bors retry

[bors]

Build failed

• continuous-integration/travis-ci/push

[tomtau]

bors retry

[tomtau]

In future, instead of a BTreeMap as a cache, I think we should use a more proper cache (like LRU) which will automatically evict entries which are no longer in use.

local memory storage/cache is just a quick hack here; there'll need to be more thoughts into separating out authentication from storage -- e.g. keeping public keys in memory after the first load and adding unlocking sessions for private keys: https://web3py.readthedocs.io/en/stable/web3.geth.html#web3.geth.personal.unlockAccount

[bors]

Build failed

• continuous-integration/drone/push

[tomtau]

Closing this PR, as it has been dragging for too long -- reassigned CRO-392 to @devashishdxt to investigate the remaining two timeouts due to client implementation