fc2eedfc66
add offline ecash library minor changes in coconut benchmarks add ecash smart contract change contract traits from coconut to ecash first wave of andrew's suggestion first wave of andrew's suggestion second wave of andrew's suggestion for ecash lib andrew's suggestion for ecash contract licensing commit safety comments for most unwraps more unwrap handling change chrono crate for time latest cargo lock error revamp small visibility fix small fix remove indexedmap from contract + some tweaks add cw2 version in ecash contract remove envryption key from contract change types from coconut to ecash types adapt api model for credential issuance adapt issued credential storage on API add signatures cache on API change API routes for new blind signing modify issued_credential table add issuance logic client-side credential and signature storage client side utils for credential issuance first wave of fix some of andrew's suggestions remove encryption key from deposit freepass issuance client side freepass issuance API side andrew's suggested fixes other suggested fix adapt change from PR below allow offline verification flag credential spending models credential spending models for client credential preperation for the client credential preperation for the client credential storage for spending on client bloom filter for API spent credential storage on validators API route for spending online and offline ecash API routes in the client lib credential storage on gateway ecash verifier to replace coconut verifier accept credentials on gateway bandwidth expiration for gateways client ask for more bandwidth if it runs out credential import adapt nym validator rewarder and sdk fix tests api tests and add constants cargo fmt and lock and small test fix cargo fmt and lock and small test fix cargo lock move stuff where they belong in ecash and static parameters move some constants, error handling and phase out time crate error revamp part 2 secret key by ref instead of clone change l in wallet and v visibility rework payinfo rework monster tuples fix expiration date signature cloning minor fixes final bits and bobs fixes final bits and bobs fixes rename l accessor to tickets_spent wave of fixes second wave of fixes change hash domain value removed benchmark flag remove useless stringification in storage nuke Bandwidth voucher change timestamps to offsetdatetime key name change post-rebase fixes update nym-connect 'time' dep due to broken semver upload ecash contract to the build server make wasm zknym-lib compile but it won't work properly just yet make wasm zknym-lib compile but it won't work properly just yet fix typo in ecash contract deps make sure to use 0.1.0 sphinx packet optimise pairings in 'check_vk_pairing' derive serde for ecash types simplified g1 tuple byte conversion further optimise the pairing unified signature type + renamed nym-api coconut module to ecash using bincode serialiser for more complex binary types using multimiller loop instead of rayon for verifying coin indices signatures batching signature verification wherever possible feature-locked rayon clippy refactor ecash contract a bit + introduce deposit storage reworked find_proposal_id various minor fixed add offline_zk_nyms to nym-node everywhere add missing #query change test value to fit new serialization optimised deposits storage removed duplicate decompression code using deposit_id instead of transaction hash removed freepasses split up ecash handling unified shared state fixed deposit_id parsing log recovered deposit id removed online verification add detailed build info to ecash contract fixed deserialisation of deposit amount received from nyxd queries changed deposit to only persist attached pubkey first iteration of split of verification and redemption basic tool for setting up new network expanded the tool with the option to bypass DKG rename + init network without DKG setting up locally running apis ecash key migration more local functionalities wip fixing sql schemas gateway immediately submitting redemption proposal and getting it passed if valid most of the gateway logic for split redemption with error recovery fixed gateway not persisting ecash signers simplify creation of compatible client create properly serialised ecash key from the beginning rebuild missing tickets and proposals on startup stop ticket issuance during DKG transition fixing build issues split out ecash storage on nym-api side master-verification-key route caching all the signatures and keys implemented aggregated routes for nym-apis swagger UI for ecash endpoints added explicit annotation for index and expiration signatures revamped client ticketbook storage save all recovery information in the same underlying storage wrapper for bloomfilter being more aggressive with marking tickets as used ensure client has correct signatures before making deposit fix deserialisation of AggregatedExpirationDateSignatureResponse + add ticketbook table split nym-api ecash routes handlers into multiple files fixed deserialisation of encoded expiration date add tt_gamma1 to challenge and change naming for paper consistency rotating double spending bloomfilter nym-api test fixes + make sure to insert initial BF params fixed ecash benchmark code updated contract schema updated CI to not upload gateway/mixnode binaries ticket bandwidth revocation added default deserialisation for zk nym config post-rebase fixes
224 lines
7.3 KiB
Rust
224 lines
7.3 KiB
Rust
// Copyright 2023 - Nym Technologies SA <contact@nymtech.net>
|
|
// SPDX-License-Identifier: GPL-3.0-only
|
|
|
|
use crate::node::storage::error::StorageError;
|
|
use nym_authenticator::error::AuthenticatorError;
|
|
use nym_ip_packet_router::error::IpPacketRouterError;
|
|
use nym_network_requester::error::{ClientCoreError, NetworkRequesterError};
|
|
use nym_validator_client::nyxd::error::NyxdError;
|
|
use nym_validator_client::nyxd::{AccountId, Coin};
|
|
use nym_validator_client::ValidatorClientError;
|
|
use std::io;
|
|
use std::net::IpAddr;
|
|
use std::path::PathBuf;
|
|
use thiserror::Error;
|
|
|
|
pub use crate::node::client_handling::websocket::connection_handler::authenticated::RequestHandlingError;
|
|
use crate::node::client_handling::websocket::connection_handler::ecash::error::EcashTicketError;
|
|
|
|
#[derive(Debug, Error)]
|
|
pub enum GatewayError {
|
|
#[error("failed to load {keys} keys from '{}' (private key) and '{}' (public key): {err}", .paths.private_key_path.display(), .paths.public_key_path.display())]
|
|
KeyPairLoadFailure {
|
|
keys: String,
|
|
paths: nym_pemstore::KeyPairPath,
|
|
#[source]
|
|
err: io::Error,
|
|
},
|
|
|
|
#[error("failed to load {key} public key from '{}': {err}", .path.display())]
|
|
PublicKeyLoadFailure {
|
|
key: String,
|
|
path: PathBuf,
|
|
#[source]
|
|
err: io::Error,
|
|
},
|
|
|
|
#[error(
|
|
"failed to load config file for id {id} using path '{}'. detailed message: {source}", path.display()
|
|
)]
|
|
ConfigLoadFailure {
|
|
id: String,
|
|
path: PathBuf,
|
|
source: io::Error,
|
|
},
|
|
|
|
#[error(
|
|
"failed to load config file for network requester (gateway-id: '{id}') using path '{}'. detailed message: {source}", path.display()
|
|
)]
|
|
NetworkRequesterConfigLoadFailure {
|
|
id: String,
|
|
path: PathBuf,
|
|
source: io::Error,
|
|
},
|
|
|
|
#[error(
|
|
"failed to load config file for ip packet router (gateway-id: '{id}') using path '{}'. detailed message: {source}",
|
|
path.display()
|
|
)]
|
|
IpPacketRouterConfigLoadFailure {
|
|
id: String,
|
|
path: PathBuf,
|
|
source: io::Error,
|
|
},
|
|
|
|
#[error(
|
|
"failed to load config file for authenticator (gateway-id: '{id}') using path '{}'. detailed message: {source}",
|
|
path.display()
|
|
)]
|
|
AuthenticatorConfigLoadFailure {
|
|
id: String,
|
|
path: PathBuf,
|
|
source: io::Error,
|
|
},
|
|
|
|
#[error(
|
|
"failed to load config file for wireguard (gateway-id: '{id}') using path '{}'. detailed message: {source}",
|
|
path.display()
|
|
)]
|
|
WireguardConfigLoadFailure {
|
|
id: String,
|
|
path: PathBuf,
|
|
source: io::Error,
|
|
},
|
|
|
|
#[error(
|
|
"failed to save config file for id {id} using path '{}'. detailed message: {source}", path.display()
|
|
)]
|
|
ConfigSaveFailure {
|
|
id: String,
|
|
path: PathBuf,
|
|
source: io::Error,
|
|
},
|
|
|
|
#[error("the configured version of the gateway ({config_version}) is incompatible with the binary version ({binary_version})")]
|
|
LocalVersionCheckFailure {
|
|
binary_version: String,
|
|
config_version: String,
|
|
},
|
|
|
|
#[error("could not obtain the information about current gateways on the network: {source}")]
|
|
NetworkGatewaysQueryFailure { source: ValidatorClientError },
|
|
|
|
#[error("address {account} has an invalid bech32 prefix. it uses '{actual_prefix}' while '{expected_prefix}' was expected")]
|
|
InvalidBech32AccountPrefix {
|
|
account: AccountId,
|
|
expected_prefix: String,
|
|
actual_prefix: String,
|
|
},
|
|
|
|
#[error("this node has insufficient balance to run as zk-nym entry node since it won't be capable of redeeming received credentials. it's account ({account}) has a balance of only {balance}")]
|
|
InsufficientNodeBalance { account: AccountId, balance: Coin },
|
|
|
|
#[error("storage failure: {source}")]
|
|
StorageError {
|
|
#[from]
|
|
source: StorageError,
|
|
},
|
|
|
|
#[error("Path to network requester configuration file hasn't been specified. Perhaps try to run `setup-network-requester`?")]
|
|
UnspecifiedNetworkRequesterConfig,
|
|
|
|
#[error("Path to ip packet router configuration file hasn't been specified. Perhaps try to run `setup-ip-packet-router`?")]
|
|
UnspecifiedIpPacketRouterConfig,
|
|
|
|
#[error("Path to authenticator configuration file hasn't been specified. Perhaps try to run `setup-authenticator`?")]
|
|
UnspecifiedAuthenticatorConfig,
|
|
|
|
#[error("there was an issue with the local network requester: {source}")]
|
|
NetworkRequesterFailure {
|
|
#[from]
|
|
source: NetworkRequesterError,
|
|
},
|
|
|
|
#[error("there was an issue with the local ip packet router: {source}")]
|
|
IpPacketRouterFailure {
|
|
#[from]
|
|
source: IpPacketRouterError,
|
|
},
|
|
|
|
#[error("there was an issue with the local authenticator: {source}")]
|
|
AuthenticatorFailure {
|
|
#[from]
|
|
source: AuthenticatorError,
|
|
},
|
|
|
|
#[error("failed to startup local network requester")]
|
|
NetworkRequesterStartupFailure,
|
|
|
|
#[error("failed to startup local ip packet router")]
|
|
IpPacketRouterStartupFailure,
|
|
|
|
#[error("failed to startup local authenticator")]
|
|
AuthenticatorStartupFailure,
|
|
|
|
#[error("there are no nym API endpoints available")]
|
|
NoNymApisAvailable,
|
|
|
|
#[error("there are no nyxd endpoints available")]
|
|
NoNyxdAvailable,
|
|
|
|
#[error("there was an issue attempting to use the validator [nyxd]: {source}")]
|
|
ValidatorFailure {
|
|
#[from]
|
|
source: NyxdError,
|
|
},
|
|
|
|
#[error(transparent)]
|
|
ClientRequestFailure {
|
|
#[from]
|
|
source: RequestHandlingError,
|
|
},
|
|
|
|
#[error("ecash related failure: {source}")]
|
|
EcashFailure {
|
|
#[from]
|
|
source: EcashTicketError,
|
|
},
|
|
|
|
#[error("failed to catch an interrupt: {source}")]
|
|
ShutdownFailure {
|
|
source: Box<dyn std::error::Error + Send + Sync>,
|
|
},
|
|
|
|
#[error("this node hasn't set any valid public addresses to announce. Please modify [host.public_ips] section of your config")]
|
|
NoPublicIps,
|
|
|
|
#[error("this node attempted to announce an invalid public address: {address}. Please modify [host.public_ips] section of your config. Alternatively, if you wanted to use it in the local setting, run the node with the '--local' flag.")]
|
|
InvalidPublicIp { address: IpAddr },
|
|
|
|
#[error(transparent)]
|
|
NymNodeHttpError(#[from] nym_node_http_api::NymNodeHttpError),
|
|
|
|
#[error("there was an issue with wireguard IP network: {source}")]
|
|
IpNetworkError {
|
|
#[from]
|
|
source: ipnetwork::IpNetworkError,
|
|
},
|
|
|
|
#[error("the current multisig contract is not using 'AbsolutePercentage' threshold!")]
|
|
InvalidMultisigThreshold,
|
|
|
|
#[cfg(all(feature = "wireguard", target_os = "linux"))]
|
|
#[error("failed to remove wireguard interface: {0}")]
|
|
WireguardInterfaceError(#[from] defguard_wireguard_rs::error::WireguardInterfaceError),
|
|
|
|
#[cfg(all(feature = "wireguard", target_os = "linux"))]
|
|
#[error("wireguard not set")]
|
|
WireguardNotSet,
|
|
|
|
#[error("failed to start authenticator: {source}")]
|
|
AuthenticatorStartError {
|
|
source: Box<dyn std::error::Error + Send + Sync>,
|
|
},
|
|
}
|
|
|
|
impl From<ClientCoreError> for GatewayError {
|
|
fn from(value: ClientCoreError) -> Self {
|
|
// if we ever get a client core error, it must have come from the network requester
|
|
GatewayError::NetworkRequesterFailure {
|
|
source: value.into(),
|
|
}
|
|
}
|
|
}
|