feat(slasher): add duplicate proposal slashing

Author: spalladino

yarn-project/end-to-end/src/e2e_p2p/duplicate_proposal_slash.test.ts

@@ -0,0 +1,211 @@
+import type { AztecNodeService } from '@aztec/aztec-node';
+import type { TestAztecNodeService } from '@aztec/aztec-node/test';
+import { EthAddress } from '@aztec/aztec.js/addresses';
+import { EpochNumber, SlotNumber } from '@aztec/foundation/branded-types';
+import { bufferToHex } from '@aztec/foundation/string';
+import { OffenseType } from '@aztec/slasher';
+
+import { jest } from '@jest/globals';
+import fs from 'fs';
+import os from 'os';
+import path from 'path';
+import { privateKeyToAccount } from 'viem/accounts';
+
+import { shouldCollectMetrics } from '../fixtures/fixtures.js';
+import { ATTESTER_PRIVATE_KEYS_START_INDEX, createNode } from '../fixtures/setup_p2p_test.js';
+import { getPrivateKeyFromIndex } from '../fixtures/utils.js';
+import { P2PNetworkTest } from './p2p_network.js';
+import { awaitCommitteeExists, awaitOffenseDetected } from './shared.js';
+
+const TEST_TIMEOUT = 600_000; // 10 minutes
+
+jest.setTimeout(TEST_TIMEOUT);
+
+const NUM_VALIDATORS = 4;
+const BOOT_NODE_UDP_PORT = 4500;
+const COMMITTEE_SIZE = NUM_VALIDATORS;
+const ETHEREUM_SLOT_DURATION = 8;
+const AZTEC_SLOT_DURATION = ETHEREUM_SLOT_DURATION * 3;
+const BLOCK_DURATION = 4;
+
+const DATA_DIR = fs.mkdtempSync(path.join(os.tmpdir(), 'duplicate-proposal-slash-'));
+
+/**
+ * Test that slashing occurs when a validator sends duplicate proposals (equivocation).
+ *
+ * The setup of the test is as follows:
+ * 1. Create 4 validator nodes total:
+ *    - 2 honest validators with unique keys
+ *    - 2 "malicious" validators that share the SAME validator key but have DIFFERENT coinbase addresses
+ * 2. The two nodes with the same key will both detect they are proposers for the same slot and naturally race to propose
+ * 3. Since they have different coinbase addresses, their proposals will have different archives (different content)
+ * 4. Other validators will detect the duplicate and emit a slash event
+ */
+describe('e2e_p2p_duplicate_proposal_slash', () => {
+  let t: P2PNetworkTest;
+  let nodes: AztecNodeService[];
+
+  // Small slashing unit so we don't kick anyone out
+  const slashingUnit = BigInt(1e14);
+  const slashingQuorum = 3;
+  const slashingRoundSize = 4;
+  const aztecEpochDuration = 2;
+
+  beforeEach(async () => {
+    t = await P2PNetworkTest.create({
+      testName: 'e2e_p2p_duplicate_proposal_slash',
+      numberOfNodes: 0,
+      numberOfValidators: NUM_VALIDATORS,
+      basePort: BOOT_NODE_UDP_PORT,
+      metricsPort: shouldCollectMetrics(),
+      initialConfig: {
+        listenAddress: '127.0.0.1',
+        aztecEpochDuration,
+        ethereumSlotDuration: ETHEREUM_SLOT_DURATION,
+        aztecSlotDuration: AZTEC_SLOT_DURATION,
+        aztecTargetCommitteeSize: COMMITTEE_SIZE,
+        aztecProofSubmissionEpochs: 1024, // effectively do not reorg
+        slashInactivityConsecutiveEpochThreshold: 32, // effectively do not slash for inactivity
+        minTxsPerBlock: 0, // always be building
+        mockGossipSubNetwork: true, // do not worry about p2p connectivity issues
+        slashingQuorum,
+        slashingRoundSizeInEpochs: slashingRoundSize / aztecEpochDuration,
+        slashAmountSmall: slashingUnit,
+        slashAmountMedium: slashingUnit * 2n,
+        slashAmountLarge: slashingUnit * 3n,
+        enforceTimeTable: true,
+        blockDurationMs: BLOCK_DURATION * 1000,
+        slashDuplicateProposalPenalty: slashingUnit,
+        slashingOffsetInRounds: 1,
+      },
+    });
+
+    await t.setup();
+    await t.applyBaseSetup();
+  });
+
+  afterEach(async () => {
+    await t.stopNodes(nodes);
+    await t.teardown();
+    for (let i = 0; i < NUM_VALIDATORS; i++) {
+      fs.rmSync(`${DATA_DIR}-${i}`, { recursive: true, force: true, maxRetries: 3 });
+    }
+  });
+
+  const debugRollup = async () => {
+    await t.ctx.cheatCodes.rollup.debugRollup();
+  };
+
+  it('slashes validator who sends duplicate proposals', async () => {
+    const { rollup } = await t.getContracts();
+
+    // Jump forward to an epoch in the future such that the validator set is not empty
+    await t.ctx.cheatCodes.rollup.advanceToEpoch(EpochNumber(4));
+    await debugRollup();
+
+    t.logger.warn('Creating nodes');
+
+    // Get the attester private key that will be shared between two malicious nodes
+    // We'll use validator index 0 for the "malicious" validator key
+    const maliciousValidatorIndex = 0;
+    const maliciousValidatorPrivateKey = getPrivateKeyFromIndex(
+      ATTESTER_PRIVATE_KEYS_START_INDEX + maliciousValidatorIndex,
+    )!;
+    const maliciousValidatorAddress = EthAddress.fromString(
+      privateKeyToAccount(`0x${maliciousValidatorPrivateKey.toString('hex')}`).address,
+    );
+
+    t.logger.warn(`Malicious proposer address: ${maliciousValidatorAddress.toString()}`);
+
+    // Create two nodes with the SAME validator key but DIFFERENT coinbase addresses
+    // This will cause them to create proposals with different content for the same slot
+    const maliciousPrivateKeyHex = bufferToHex(maliciousValidatorPrivateKey);
+    const coinbase1 = EthAddress.random();
+    const coinbase2 = EthAddress.random();
+
+    t.logger.warn(`Creating malicious node 1 with coinbase ${coinbase1.toString()}`);
+    const maliciousNode1 = await createNode(
+      { ...t.ctx.aztecNodeConfig, validatorPrivateKey: maliciousPrivateKeyHex, coinbase: coinbase1 },
+      t.ctx.dateProvider!,
+      BOOT_NODE_UDP_PORT + 1,
+      t.bootstrapNodeEnr,
+      maliciousValidatorIndex,
+      t.prefilledPublicData,
+      `${DATA_DIR}-0`,
+      shouldCollectMetrics(),
+    );
+
+    t.logger.warn(`Creating malicious node 2 with coinbase ${coinbase2.toString()}`);
+    const maliciousNode2 = await createNode(
+      { ...t.ctx.aztecNodeConfig, validatorPrivateKey: maliciousPrivateKeyHex, coinbase: coinbase2 },
+      t.ctx.dateProvider!,
+      BOOT_NODE_UDP_PORT + 2,
+      t.bootstrapNodeEnr,
+      maliciousValidatorIndex,
+      t.prefilledPublicData,
+      `${DATA_DIR}-1`,
+      shouldCollectMetrics(),
+    );
+
+    // Create honest nodes with unique validator keys (indices 1 and 2)
+    t.logger.warn('Creating honest nodes');
+    const honestNode1 = await createNode(
+      t.ctx.aztecNodeConfig,
+      t.ctx.dateProvider!,
+      BOOT_NODE_UDP_PORT + 3,
+      t.bootstrapNodeEnr,
+      1,
+      t.prefilledPublicData,
+      `${DATA_DIR}-2`,
+      shouldCollectMetrics(),
+    );
+    const honestNode2 = await createNode(
+      t.ctx.aztecNodeConfig,
+      t.ctx.dateProvider!,
+      BOOT_NODE_UDP_PORT + 4,
+      t.bootstrapNodeEnr,
+      2,
+      t.prefilledPublicData,
+      `${DATA_DIR}-3`,
+      shouldCollectMetrics(),
+    );
+
+    nodes = [maliciousNode1, maliciousNode2, honestNode1, honestNode2];
+
+    // Wait for P2P mesh and the committee to be fully formed before proceeding
+    await t.waitForP2PMeshConnectivity(nodes, NUM_VALIDATORS);
+    await awaitCommitteeExists({ rollup, logger: t.logger });
+
+    // Wait for offense to be detected
+    // The honest nodes should detect the duplicate proposal from the malicious validator
+    t.logger.warn('Waiting for duplicate proposal offense to be detected...');
+    const offenses = await awaitOffenseDetected({
+      epochDuration: t.ctx.aztecNodeConfig.aztecEpochDuration,
+      logger: t.logger,
+      nodeAdmin: honestNode1, // Use honest node to check for offenses
+      slashingRoundSize,
+      waitUntilOffenseCount: 1,
+      timeoutSeconds: AZTEC_SLOT_DURATION * 16,
+    });
+
+    t.logger.warn(`Collected offenses`, { offenses });
+
+    // Verify the offense is correct
+    expect(offenses.length).toBeGreaterThan(0);
+    for (const offense of offenses) {
+      expect(offense.offenseType).toEqual(OffenseType.DUPLICATE_PROPOSAL);
+      expect(offense.validator.toString()).toEqual(maliciousValidatorAddress.toString());
+    }
+
+    // Verify that for each offense, the proposer for that slot is the malicious validator
+    const epochCache = (honestNode1 as TestAztecNodeService).epochCache;
+    for (const offense of offenses) {
+      const offenseSlot = SlotNumber(Number(offense.epochOrSlot));
+      const proposerForSlot = await epochCache.getProposerAttesterAddressInSlot(offenseSlot);
+      t.logger.info(`Offense slot ${offenseSlot}: proposer is ${proposerForSlot?.toString()}`);
+      expect(proposerForSlot?.toString()).toEqual(maliciousValidatorAddress.toString());
+    }
+
+    t.logger.warn('Duplicate proposal offense correctly detected and recorded');
+  });
+});

yarn-project/end-to-end/src/e2e_p2p/shared.ts

@@ -145,6 +145,7 @@ export async function awaitCommitteeExists({
     'non-empty committee',
     60,
   );
+  logger.warn(`Committee has been formed`, { committee: committee!.map(c => c.toString()) });
   return committee!.map(c => c.toString() as `0x${string}`);
 }
 

yarn-project/end-to-end/src/fixtures/setup_p2p_test.ts

@@ -83,9 +83,17 @@ export async function createNodes(
   return nodes;
 }
 
-/** Creates a P2P enabled instance of Aztec Node Service with a validator */
+/** Extended config type for createNode with test-specific overrides. */
+export type CreateNodeConfig = AztecNodeConfig & {
+  /** Whether to skip starting the sequencer. */
+  dontStartSequencer?: boolean;
+  /** Override the private key (instead of deriving from addressIndex). */
+  validatorPrivateKey?: `0x${string}`;
+};
+
+/** Creates a P2P enabled instance of Aztec Node Service with a validator. */
 export async function createNode(
-  config: AztecNodeConfig & { dontStartSequencer?: boolean },
+  config: CreateNodeConfig,
   dateProvider: DateProvider,
   tcpPort: number,
   bootstrapNode: string | undefined,
@@ -187,20 +195,21 @@ export async function createP2PConfig(
 }
 
 export async function createValidatorConfig(
-  config: AztecNodeConfig,
+  config: CreateNodeConfig,
   bootstrapNodeEnr?: string,
   port?: number,
   addressIndex: number | number[] = 1,
   dataDirectory?: string,
 ) {
   const addressIndices = Array.isArray(addressIndex) ? addressIndex : [addressIndex];
-  if (addressIndices.length === 0) {
+  if (addressIndices.length === 0 && !config.validatorPrivateKey) {
     throw new Error('At least one address index must be provided to create a validator config');
   }
 
-  const attesterPrivateKeys = addressIndices.map(index =>
-    bufferToHex(getPrivateKeyFromIndex(ATTESTER_PRIVATE_KEYS_START_INDEX + index)!),
-  );
+  // Use override private key if provided, otherwise derive from address indices
+  const attesterPrivateKeys = config.validatorPrivateKey
+    ? [config.validatorPrivateKey]
+    : addressIndices.map(index => bufferToHex(getPrivateKeyFromIndex(ATTESTER_PRIVATE_KEYS_START_INDEX + index)!));
   const p2pConfig = await createP2PConfig(config, bootstrapNodeEnr, port, dataDirectory);
   const nodeConfig: AztecNodeConfig = {
     ...config,

yarn-project/foundation/src/config/env_var.ts

@@ -218,6 +218,7 @@ export type EnvVar =
   | 'SLASH_INACTIVITY_TARGET_PERCENTAGE'
   | 'SLASH_INACTIVITY_CONSECUTIVE_EPOCH_THRESHOLD'
   | 'SLASH_INVALID_BLOCK_PENALTY'
+  | 'SLASH_DUPLICATE_PROPOSAL_PENALTY'
   | 'SLASH_OVERRIDE_PAYLOAD'
   | 'SLASH_PROPOSE_INVALID_ATTESTATIONS_PENALTY'
   | 'SLASH_ATTEST_DESCENDANT_OF_INVALID_PENALTY'

yarn-project/p2p/src/client/interface.ts

@@ -13,7 +13,11 @@ import type {
   ReqRespSubProtocolHandler,
   ReqRespSubProtocolValidators,
 } from '../services/reqresp/interface.js';
-import type { P2PBlockReceivedCallback, P2PCheckpointReceivedCallback } from '../services/service.js';
+import type {
+  DuplicateProposalInfo,
+  P2PBlockReceivedCallback,
+  P2PCheckpointReceivedCallback,
+} from '../services/service.js';
 
 /**
  * Enum defining the possible states of the p2p client.
@@ -78,6 +82,14 @@ export type P2P<T extends P2PClientType = P2PClientType.Full> = P2PApiFull<T> &
    */
   registerCheckpointProposalHandler(callback: P2PCheckpointReceivedCallback): void;
 
+  /**
+   * Registers a callback invoked when a duplicate proposal is detected (equivocation).
+   * The callback is triggered on the first duplicate (when count goes from 1 to 2).
+   *
+   * @param callback - Function called with info about the duplicate proposal
+   */
+  registerDuplicateProposalCallback(callback: (info: DuplicateProposalInfo) => void): void;
+
   /**
    * Request a list of transactions from another peer by their tx hashes.
    * @param txHashes - Hashes of the txs to query.

yarn-project/p2p/src/client/p2p_client.test.ts

@@ -415,25 +415,22 @@ describe('P2P Client', () => {
 
   describe('Attestation pool pruning', () => {
     it('deletes attestations for finalized blocks', async () => {
-      const deleteCheckpointAttestationsOlderThanSpy = jest.spyOn(
-        attestationPool,
-        'deleteCheckpointAttestationsOlderThan',
-      );
+      const deleteOlderThanSpy = jest.spyOn(attestationPool, 'deleteOlderThan');
 
       blockSource.setProvenBlockNumber(0);
       await client.start();
-      expect(deleteCheckpointAttestationsOlderThanSpy).not.toHaveBeenCalled();
+      expect(deleteOlderThanSpy).not.toHaveBeenCalled();
 
       await advanceToProvenBlock(BlockNumber(10));
-      expect(deleteCheckpointAttestationsOlderThanSpy).not.toHaveBeenCalled();
+      expect(deleteOlderThanSpy).not.toHaveBeenCalled();
 
       await advanceToFinalizedBlock(BlockNumber(10));
-      expect(deleteCheckpointAttestationsOlderThanSpy).toHaveBeenCalledTimes(1);
-      expect(deleteCheckpointAttestationsOlderThanSpy).toHaveBeenCalledWith(SlotNumber(10));
+      expect(deleteOlderThanSpy).toHaveBeenCalledTimes(1);
+      expect(deleteOlderThanSpy).toHaveBeenCalledWith(SlotNumber(10));
 
       await advanceToFinalizedBlock(BlockNumber(15));
-      expect(deleteCheckpointAttestationsOlderThanSpy).toHaveBeenCalledTimes(2);
-      expect(deleteCheckpointAttestationsOlderThanSpy).toHaveBeenCalledWith(SlotNumber(15));
+      expect(deleteOlderThanSpy).toHaveBeenCalledTimes(2);
+      expect(deleteOlderThanSpy).toHaveBeenCalledWith(SlotNumber(15));
     });
   });
 

yarn-project/p2p/src/client/p2p_client.ts

@@ -39,7 +39,12 @@ import {
   type ReqRespSubProtocolValidators,
 } from '../services/reqresp/interface.js';
 import { chunkTxHashesRequest } from '../services/reqresp/protocols/tx.js';
-import type { P2PBlockReceivedCallback, P2PCheckpointReceivedCallback, P2PService } from '../services/service.js';
+import type {
+  DuplicateProposalInfo,
+  P2PBlockReceivedCallback,
+  P2PCheckpointReceivedCallback,
+  P2PService,
+} from '../services/service.js';
 import { TxCollection } from '../services/tx_collection/tx_collection.js';
 import { TxProvider } from '../services/tx_provider.js';
 import { type P2P, P2PClientState, type P2PSyncState } from './interface.js';
@@ -329,7 +334,7 @@ export class P2PClient<T extends P2PClientType = P2PClientType.Full>
   public async broadcastProposal(proposal: BlockProposal): Promise<void> {
     this.log.verbose(`Broadcasting proposal for slot ${proposal.slotNumber} to peers`);
     // Store our own proposal so we can respond to req/resp requests for it
-    await this.attestationPool.addBlockProposal(proposal);
+    await this.attestationPool.tryAddBlockProposal(proposal);
     return this.p2pService.propagate(proposal);
   }
 
@@ -371,6 +376,10 @@ export class P2PClient<T extends P2PClientType = P2PClientType.Full>
     this.p2pService.registerCheckpointReceivedCallback(handler);
   }
 
+  public registerDuplicateProposalCallback(callback: (info: DuplicateProposalInfo) => void): void {
+    this.p2pService.registerDuplicateProposalCallback(callback);
+  }
+
   /**
    * Uses the batched Request Response protocol to request a set of transactions from the network.
    */
@@ -735,7 +744,7 @@ export class P2PClient<T extends P2PClientType = P2PClientType.Full>
     await this.txPool.deleteTxs(txHashes, { permanently: true });
     await this.txPool.cleanupDeletedMinedTxs(lastBlockNum);
 
-    await this.attestationPool.deleteCheckpointAttestationsOlderThan(lastBlockSlot);
+    await this.attestationPool.deleteOlderThan(lastBlockSlot);
 
     this.log.debug(`Synched to finalized block ${lastBlockNum} at slot ${lastBlockSlot}`);
   }

yarn-project/p2p/src/client/test/tx_proposal_collector/proposal_tx_collector_worker.ts

@@ -301,7 +301,7 @@ process.on('message', (msg: WorkerCommand) => {
             throw new Error('Attestation pool not initialized');
           }
           const proposal = deserializeBlockProposal(msg.blockProposal);
-          await attestationPool.addBlockProposal(proposal);
+          await attestationPool.tryAddBlockProposal(proposal);
           await sendMessage({ type: 'BLOCK_PROPOSAL_SET', requestId, archiveRoot: proposal.archive.toString() });
           break;
         }