nimbus-eth2/beacon_chain/gossip_processing
Etan Kissling ea16edd886
add test for shuffled attestation signatures (#6459)
Followup of #3212 to test proper signature verification. Also document
possible further optimization based on blst `v0.3.13`.
2024-07-26 23:31:05 +00:00
..
README.md some consensus spec v1.4.0 spec URL updates (#6208) 2024-04-17 05:51:16 +02:00
batch_validation.nim add test for shuffled attestation signatures (#6459) 2024-07-26 23:31:05 +00:00
block_processor.nim validate EL block hash in Electra when no EL is connected (#6407) 2024-07-05 10:18:50 +02:00
eth2_processor.nim VC/NIMBUS-BN validators protection. (#6329) 2024-06-11 19:38:16 +00:00
gossip_validation.nim construct info object for `BlobSidecar` earlier (#6445) 2024-07-23 20:22:29 +00:00
light_client_processor.nim extend light client protocol for Electra (#6375) 2024-06-26 19:02:03 +00:00
optimistic_processor.nim remove Bellatrix EL syncing support from light client (#6352) 2024-06-14 01:23:17 +00:00

README.md

Gossip Processing

This folder holds a collection of modules to:

  • validate raw gossip data before
    • rebroadcasting it (potentially aggregated)
    • sending it to one of the consensus object pools

Validation

Gossip validation is different from consensus verification in particular for blocks.

There are multiple consumers of validated consensus objects:

  • a ValidationResult.Accept output triggers rebroadcasting in libp2p
    • We jump into method validate(PubSub, Message) in libp2p/protocols/pubsub/pubsub.nim
    • which was called by rpcHandler(GossipSub, PubSubPeer, RPCMsg)
  • a blockValidator message enqueues the validated object to the processing queue in block_processor
    • blockQueue: AsyncQueue[BlockEntry] (shared with request_manager and sync_manager)
    • This queue is then regularly processed to be made available to the consensus object pools.
  • a xyzValidator message adds the validated object to a pool in eth2_processor
    • Attestations (unaggregated and aggregated) get collected into batches.
    • Once a threshold is exceeded or after a timeout, they get validated together using BatchCrypto.

Security concerns

As the first line of defense in Nimbus, modules must be able to handle bursts of data that may come:

  • from malicious nodes trying to DOS us
  • from long periods of non-finality, creating lots of forks, attestations