mirror of
https://github.com/datahaven-xyz/datahaven
synced 2026-05-24 09:50:01 +00:00
f0896907ae
## 🔨 Add Slashing Support for Runtime
This PR introduces the slashing functionality for the DataHaven runtime,
enabling punitive measures against misbehaving validators.
### Features
- Deferred slashing with configurable veto periods
- Cross-chain slashing message delivery trough Snowbridge
- Governance controls for slashing parameters and emergency cancellation
We introduced the `external-validator-slashes` pallet, which allows to
slash validators that misbehave. The slashing is triggered when an
offence is reported via the offence pallet (which is already
implemented). The message is sent through Snowbrige's outbound queue and
the real slashing happens in the contracts side, which will come in a
follow up PR.
There is a configurable window of time between the time the validator is
being reported, and the time the slash is triggered. This allows that in
case of an error we are still able to cancel the slashing, using a sudo
account.
For convenience, we also have extrinsics for corner cases:
- **`force_inject_slash`**: Root-only function to manually inject
slashes for specific validators with custom percentages. Useful for
emergency situations or governance-directed slashing outside normal
offence detection
- **`cancel_deferred_slash`**: Allows governance to cancel pending
slashes during the defer period by specifying era and slash indices.
Provides safety mechanism against false positives or malicious slash
reports
- **`set_slashing_mode`**: Configurable slashing behavior with three
modes - `Enabled` (normal operation), `LogOnly` (track offences without
applying slashes), and `Disabled` (completely halt slashing). Critical
for emergency response and testing
---------
Co-authored-by: Gonza Montiel <gon.montiel@gmail.com>
Co-authored-by: Gonza Montiel <gonzamontiel@users.noreply.github.com>
127 lines
3.8 KiB
Rust
127 lines
3.8 KiB
Rust
// Copyright (C) Moondance Labs Ltd.
|
|
// This file is part of Tanssi.
|
|
|
|
// Tanssi is free software: you can redistribute it and/or modify
|
|
// it under the terms of the GNU General Public License as published by
|
|
// the Free Software Foundation, either version 3 of the License, or
|
|
// (at your option) any later version.
|
|
|
|
// Tanssi is distributed in the hope that it will be useful,
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
// GNU General Public License for more details.
|
|
|
|
// You should have received a copy of the GNU General Public License
|
|
// along with Tanssi. If not, see <http://www.gnu.org/licenses/>
|
|
|
|
//! Benchmarking setup for pallet-external-validator-slashes
|
|
|
|
use super::*;
|
|
|
|
#[allow(unused)]
|
|
use crate::Pallet as ExternalValidatorSlashes;
|
|
use {
|
|
crate::SlashingModeOption,
|
|
frame_benchmarking::{v2::*, BenchmarkError},
|
|
frame_system::RawOrigin,
|
|
pallet_session as session,
|
|
sp_runtime::traits::TrailingZeroInput,
|
|
};
|
|
|
|
const MAX_SLASHES: u32 = 1000;
|
|
|
|
#[allow(clippy::multiple_bound_locations)]
|
|
#[benchmarks(where T: session::Config)]
|
|
mod benchmarks {
|
|
use super::*;
|
|
|
|
#[benchmark]
|
|
fn cancel_deferred_slash(s: Linear<1, MAX_SLASHES>) -> Result<(), BenchmarkError> {
|
|
let mut existing_slashes = Vec::new();
|
|
let era = T::EraIndexProvider::active_era().index;
|
|
let dummy = || T::AccountId::decode(&mut TrailingZeroInput::zeroes()).unwrap();
|
|
for _ in 0..MAX_SLASHES {
|
|
existing_slashes.push(Slash::<T::AccountId, T::SlashId>::default_from(dummy()));
|
|
}
|
|
Slashes::<T>::insert(
|
|
era.saturating_add(T::SlashDeferDuration::get())
|
|
.saturating_add(One::one()),
|
|
&existing_slashes,
|
|
);
|
|
let slash_indices: Vec<u32> = (0..s).collect();
|
|
|
|
#[extrinsic_call]
|
|
_(
|
|
RawOrigin::Root,
|
|
era.saturating_add(T::SlashDeferDuration::get())
|
|
.saturating_add(One::one()),
|
|
slash_indices,
|
|
);
|
|
|
|
assert_eq!(
|
|
Slashes::<T>::get(
|
|
era.saturating_add(T::SlashDeferDuration::get())
|
|
.saturating_add(One::one())
|
|
)
|
|
.len(),
|
|
(MAX_SLASHES - s) as usize
|
|
);
|
|
Ok(())
|
|
}
|
|
|
|
#[benchmark]
|
|
fn force_inject_slash() -> Result<(), BenchmarkError> {
|
|
let era = T::EraIndexProvider::active_era().index;
|
|
let dummy = || T::AccountId::decode(&mut TrailingZeroInput::zeroes()).unwrap();
|
|
#[extrinsic_call]
|
|
_(RawOrigin::Root, era, dummy(), Perbill::from_percent(50), 1);
|
|
|
|
assert_eq!(
|
|
Slashes::<T>::get(
|
|
era.saturating_add(T::SlashDeferDuration::get())
|
|
.saturating_add(One::one())
|
|
)
|
|
.len(),
|
|
1_usize
|
|
);
|
|
Ok(())
|
|
}
|
|
|
|
#[benchmark]
|
|
fn process_slashes_queue(s: Linear<1, 200>) -> Result<(), BenchmarkError> {
|
|
let mut queue = VecDeque::new();
|
|
let dummy = || T::AccountId::decode(&mut TrailingZeroInput::zeroes()).unwrap();
|
|
|
|
for _ in 0..(s + 1) {
|
|
queue.push_back(Slash::<T::AccountId, T::SlashId>::default_from(dummy()));
|
|
}
|
|
|
|
UnreportedSlashesQueue::<T>::set(queue);
|
|
|
|
let processed;
|
|
|
|
#[block]
|
|
{
|
|
processed = Pallet::<T>::process_slashes_queue(s);
|
|
}
|
|
|
|
assert_eq!(UnreportedSlashesQueue::<T>::get().len(), 1);
|
|
assert_eq!(processed, s);
|
|
|
|
Ok(())
|
|
}
|
|
|
|
#[benchmark]
|
|
fn set_slashing_mode() -> Result<(), BenchmarkError> {
|
|
#[extrinsic_call]
|
|
_(RawOrigin::Root, SlashingModeOption::Enabled);
|
|
|
|
Ok(())
|
|
}
|
|
|
|
impl_benchmark_test_suite!(
|
|
ExternalValidatorSlashes,
|
|
crate::mock::new_test_ext(),
|
|
crate::mock::Test,
|
|
);
|
|
}
|