Cosmos-sdk: ICS03: Historical header module for Handshaking
Connection handshaking requires to check the existence of a header of the verifying chain on the verified chain. Opening handshake under ICS03
function connOpenTry(
desiredIdentifier: Identifier,
counterpartyConnectionIdentifier: Identifier,
counterpartyPrefix: CommitmentPrefix,
counterpartyClientIdentifier: Identifier,
clientIdentifier: Identifier,
counterpartyVersions: string[],
proofInit: CommitmentProof,
proofHeight: uint64,
consensusHeight: uint64) {
...
expectedConsensusState = getConsensusState(consensusHeight)
...
abortTransactionUnless(
connection.verifyMembership(proofHeight, proofInit,
consensusStatePath(counterpartyClientIdentifier),
expectedConsensusState))
...
}
This requires the verifying chain able to introspect its own headers. ICS02 module needs to hold the reference to the historical header module and retrieve headers from recent n heights.
Dependent on: #4647
Replaces [^2] in #4723
mossid
All 12 comments
I'm not sure what are the actionable items here. cc: @cwgoes
fedekunze
on 13 Nov 2019
We need internal header introspection in SDK state (or retrieved from Tendermint).
cwgoes
on 13 Nov 2019
We need internal header introspection in SDK state (or retrieved from Tendermint).
I assume the introspection is related to retrieving past light client headers?
fedekunze
on 14 Nov 2019
Past Tendermint headers (which the light client uses, yes) for the running chain.
cwgoes
on 14 Nov 2019
ok, yeah this def needs an ADR. cc: @mossid @jackzampolin
fedekunze
on 14 Nov 2019
@mossid do you have some bandwidth to write up this ADR?
jackzampolin
on 14 Nov 2019
There is no way for the application to retrieve past headers from Tendermint through ABCI, right?
I am writing an ADR for the SDK right now and thinking that it might be easiest to just store duplicate data in the store (for the past n heights - validator set and commit hash, basically, the same data the light client keeps), but if there is some way for the application to query this from Tendermint (which stores it I presume) that would be more space-efficient
cwgoes
on 26 Nov 2019
Suggestion by @zmanian - RPC queries to 26657 from the application
I am a bit concerned about the reliability of this approach.
cwgoes
on 26 Nov 2019
Options
Retaining deliver-only direction (@warner):
- App could instruct Tendermint to send last
nheaders with everyBeginBlock - Could be more efficient (send
ninitially, then 1 each time)
Whenever the process is started, n headers need to be sent (app does not persist).
App could also instruct on return of BeginBlock to send more headers & retry.
cwgoes
on 26 Nov 2019
Suggestion by @zmanian - RPC queries to 26657 from the application
I am a bit concerned about the reliability of this approach.
Some applications do that. Should be okay if you don't expose RPC to the outer world (i.e. i'd say reliability is same in such case).
melekes
on 27 Nov 2019
Suggestion by @zmanian - RPC queries to 26657 from the application
I am a bit concerned about the reliability of this approach.Some applications do that. Should be okay if you don't expose RPC to the outer world (i.e. i'd say reliability is same in such case).
We depend on this in consensus though - if anyone disabled RPC in the config, used any sort of authentication, or there were any sort of HTTP errors, the process would crash.
cwgoes
on 27 Nov 2019
Outstanding question: validator sets vs. validator set hashes. We should only need to verify that the hashes match, not store / track the entire validator set.
cwgoes
on 2 Dec 2019
Related issues
ValarDragon
路
3Comments
ValarDragon
路
3Comments
rigelrozanski
路
3Comments
rigelrozanski
路
3Comments
ValarDragon
路
3Comments
Most helpful comment
@mossid do you have some bandwidth to write up this ADR?