Actually extract blockhash

Author: ranchalp

cmd/horcrux/cmd/config.go

@@ -43,7 +43,7 @@ func initCmd() *cobra.Command {
 for threshold signer mode, --cosigner flags and --threshold flag are required.
 		`,
 		Args: cobra.NoArgs,
-		RunE: func(cmd *cobra.Command, args []string) (err error) {
+		RunE: func(cmd *cobra.Command, _ []string) (err error) {
 			cmdFlags := cmd.Flags()
 
 			bare, _ := cmdFlags.GetBool(flagBare)

cmd/horcrux/cmd/leader_election.go

@@ -30,7 +30,7 @@ To choose a specific leader, pass that leader's ID as an argument.
 		Example: `horcrux elect # elect next eligible leader
 horcrux elect 2 # elect specific leader`,
 		SilenceUsage: true,
-		RunE: func(cmd *cobra.Command, args []string) (err error) {
+		RunE: func(cmd *cobra.Command, _ []string) (err error) {
 			if config.Config.ThresholdModeConfig == nil {
 				return fmt.Errorf("threshold mode configuration is not present in config file")
 			}
@@ -97,7 +97,7 @@ func getLeaderCmd() *cobra.Command {
 		Args:         cobra.NoArgs,
 		Example:      `horcrux leader`,
 		SilenceUsage: true,
-		RunE: func(cmd *cobra.Command, args []string) (err error) {
+		RunE: func(cmd *cobra.Command, _ []string) (err error) {
 			thresholdCfg := config.Config.ThresholdModeConfig
 			if thresholdCfg == nil {
 				return fmt.Errorf("threshold mode configuration is not present in config file")

cmd/horcrux/cmd/shards.go

@@ -66,7 +66,7 @@ func createCosignerEd25519ShardsCmd() *cobra.Command {
 		Use:   "create-ed25519-shards",
 		Args:  cobra.NoArgs,
 		Short: "Create cosigner Ed25519 shards",
-		RunE: func(cmd *cobra.Command, args []string) (err error) {
+		RunE: func(cmd *cobra.Command, _ []string) (err error) {
 			flags := cmd.Flags()
 
 			chainID, _ := flags.GetString(flagChainID)
@@ -163,7 +163,7 @@ func createCosignerECIESShardsCmd() *cobra.Command {
 		Args:  cobra.NoArgs,
 		Short: "Create cosigner ECIES shards",
 
-		RunE: func(cmd *cobra.Command, args []string) (err error) {
+		RunE: func(cmd *cobra.Command, _ []string) (err error) {
 			shards, _ := cmd.Flags().GetUint8(flagShards)
 
 			if shards <= 0 {
@@ -211,7 +211,7 @@ func createCosignerRSAShardsCmd() *cobra.Command {
 		Args:  cobra.NoArgs,
 		Short: "Create cosigner RSA shards",
 
-		RunE: func(cmd *cobra.Command, args []string) (err error) {
+		RunE: func(cmd *cobra.Command, _ []string) (err error) {
 			shards, _ := cmd.Flags().GetUint8(flagShards)
 
 			if shards <= 0 {

cmd/horcrux/cmd/start.go

@@ -16,7 +16,7 @@ func startCmd() *cobra.Command {
 		Short:        "Start horcrux signer process",
 		Args:         cobra.NoArgs,
 		SilenceUsage: true,
-		RunE: func(cmd *cobra.Command, args []string) error {
+		RunE: func(cmd *cobra.Command, _ []string) error {
 			out := cmd.OutOrStdout()
 			logger := cometlog.NewTMLogger(cometlog.NewSyncWriter(out))
 

cmd/horcrux/cmd/version.go

@@ -68,7 +68,7 @@ func versionCmd() *cobra.Command {
 		Use:          "version",
 		Short:        "Version information for horcrux",
 		SilenceUsage: true,
-		RunE: func(cmd *cobra.Command, args []string) error {
+		RunE: func(cmd *cobra.Command, _ []string) error {
 			bz, err := json.MarshalIndent(NewInfo(), "", "  ")
 			if err != nil {
 				return err

docker/horcrux/Dockerfile

@@ -1,14 +1,18 @@
 FROM --platform=$BUILDPLATFORM golang:1.21-alpine AS build-env
 
-RUN apk add --update --no-cache curl make git libc-dev bash gcc linux-headers eudev-dev
+RUN apk add --update --no-cache curl make git libc-dev bash gcc linux-headers eudev-dev wget
 
 ARG TARGETARCH
 ARG BUILDARCH
 
 RUN if [ "${TARGETARCH}" = "arm64" ] && [ "${BUILDARCH}" != "arm64" ]; then \
-        wget -c https://musl.cc/aarch64-linux-musl-cross.tgz -O - | tar -xzvv --strip-components 1 -C /usr; \
+        for i in 1 2 3; do \
+            wget -c https://musl.cc/aarch64-linux-musl-cross.tgz -O - | tar -xzvv --strip-components 1 -C /usr && break || sleep 5; \
+        done; \
     elif [ "${TARGETARCH}" = "amd64" ] && [ "${BUILDARCH}" != "amd64" ]; then \
-        wget -c https://musl.cc/x86_64-linux-musl-cross.tgz -O - | tar -xzvv --strip-components 1 -C /usr; \
+        for i in 1 2 3; do \
+            wget -c https://musl.cc/x86_64-linux-musl-cross.tgz -O - | tar -xzvv --strip-components 1 -C /usr && break || sleep 5; \
+        done; \
     fi
 
 WORKDIR /horcrux

docker/horcrux/Dockerfile.alternative

@@ -0,0 +1,74 @@
+FROM --platform=$BUILDPLATFORM golang:1.21-alpine AS build-env
+
+# Install cross-compilation tools from Alpine packages instead of musl.cc
+RUN apk add --update --no-cache curl make git libc-dev bash gcc linux-headers eudev-dev
+
+ARG TARGETARCH
+ARG BUILDARCH
+
+# Use Alpine's cross-compilation packages instead of downloading from musl.cc
+RUN if [ "${TARGETARCH}" = "arm64" ] && [ "${BUILDARCH}" != "arm64" ]; then \
+        apk add --no-cache gcc-aarch64-linux-gnu musl-dev; \
+    elif [ "${TARGETARCH}" = "amd64" ] && [ "${BUILDARCH}" != "amd64" ]; then \
+        apk add --no-cache gcc-x86_64-linux-gnu musl-dev; \
+    fi
+
+WORKDIR /horcrux
+
+ADD . .
+
+RUN if [ "${TARGETARCH}" = "arm64" ] && [ "${BUILDARCH}" != "arm64" ]; then \
+        export CC=aarch64-linux-gnu-gcc CXX=aarch64-linux-gnu-g++;\
+    elif [ "${TARGETARCH}" = "amd64" ] && [ "${BUILDARCH}" != "amd64" ]; then \
+        export CC=x86_64-linux-gnu-gcc CXX=x86_64-linux-gnu-g++; \
+    fi; \
+    GOOS=linux GOARCH=$TARGETARCH CGO_ENABLED=1 LDFLAGS='-linkmode external -extldflags "-static"' make install
+
+RUN if [ -d "/go/bin/linux_${TARGETARCH}" ]; then mv /go/bin/linux_${TARGETARCH}/* /go/bin/; fi
+
+# Use minimal busybox from infra-toolkit image for final scratch image
+FROM ghcr.io/strangelove-ventures/infra-toolkit:v0.0.6 AS busybox-min
+RUN addgroup --gid 2345 -S horcrux && adduser --uid 2345 -S horcrux -G horcrux
+
+# Use ln and rm from full featured busybox for assembling final image
+FROM busybox:1.34.1-musl AS busybox-full
+
+# Build final image from scratch
+FROM scratch
+
+LABEL org.opencontainers.image.source="https://github.com/cosmos/horcrux"
+
+WORKDIR /bin
+
+# Install ln (for making hard links) and rm (for cleanup) from full busybox image (will be deleted, only needed for image assembly)
+COPY --from=busybox-full /bin/ln /bin/rm ./
+
+# Install minimal busybox image as shell binary (will create hardlinks for the rest of the binaries to this data)
+COPY --from=busybox-min /busybox/busybox /bin/sh
+
+# Add hard links for read-only utils, then remove ln and rm
+# Will then only have one copy of the busybox minimal binary file with all utils pointing to the same underlying inode
+RUN ln sh pwd && \
+    ln sh ls && \
+    ln sh cat && \
+    ln sh less && \
+    ln sh grep && \
+    ln sh sleep && \
+    ln sh env && \
+    ln sh tar && \
+    ln sh tee && \
+    ln sh du && \
+    rm ln rm
+
+# Install chain binaries
+COPY --from=build-env /go/bin/horcrux /bin
+
+# Install trusted CA certificates
+COPY --from=busybox-min /etc/ssl/cert.pem /etc/ssl/cert.pem
+
+# Install horcrux user
+COPY --from=busybox-min /etc/passwd /etc/passwd
+COPY --from=busybox-min --chown=2345:2345 /home/horcrux /home/horcrux
+
+WORKDIR /home/horcrux
+USER horcrux

signer/consensus_lock_e2e_test.go

@@ -0,0 +1,200 @@
+package signer
+
+import (
+	"testing"
+	"time"
+
+	"github.com/cometbft/cometbft/libs/protoio"
+	cometproto "github.com/cometbft/cometbft/proto/tendermint/types"
+	"github.com/stretchr/testify/require"
+)
+
+// createTestSignBytes creates proper Tendermint sign bytes for testing
+func createTestSignBytesE2E(blockHash []byte, step int8) []byte {
+	switch step {
+	case stepPropose:
+		// Create a CanonicalProposal
+		proposal := &cometproto.CanonicalProposal{
+			Type:   cometproto.ProposalType,
+			Height: 100,
+			Round:  5,
+			BlockID: &cometproto.CanonicalBlockID{
+				Hash: blockHash,
+			},
+		}
+		signBytes, _ := protoio.MarshalDelimited(proposal)
+		return signBytes
+
+	case stepPrevote, stepPrecommit:
+		// Create a CanonicalVote
+		vote := &cometproto.CanonicalVote{
+			Type:   cometproto.SignedMsgType(step),
+			Height: 100,
+			Round:  5,
+			BlockID: &cometproto.CanonicalBlockID{
+				Hash: blockHash,
+			},
+		}
+		signBytes, _ := protoio.MarshalDelimited(vote)
+		return signBytes
+
+	default:
+		return nil
+	}
+}
+
+// TestConsensusLockE2E tests the consensus lock functionality end-to-end
+// This test simulates a real scenario where a validator tries to sign conflicting blocks
+func TestConsensusLockE2E(t *testing.T) {
+	// Create a sign state that simulates a validator that has already signed a PRECOMMIT
+	// for a specific block at height 100, round 5
+	lockedBlockHash := []byte("locked_block_hash_123456789012345678901234567890")[:32] // Ensure exactly 32 bytes
+	signState := &SignState{
+		Height: 100,
+		Round:  5,
+		Step:   stepPrecommit,
+		ConsensusLock: ConsensusLock{
+			Height: 100,
+			Round:  5,
+			Value:  lockedBlockHash,
+		},
+	}
+
+	// Test 1: Validator tries to sign a PROPOSAL for the same block in a later round
+	// This should be allowed (same value)
+	sameBlockProposal := createTestSignBytesE2E(lockedBlockHash, stepPropose)
+	err := signState.ValidateConsensusLock(HRSKey{Height: 100, Round: 6, Step: stepPropose}, sameBlockProposal)
+	require.NoError(t, err, "Should allow PROPOSAL for same block in later round")
+
+	// Test 2: Validator tries to sign a PREVOTE for the same block in a later round
+	// This should be allowed (same value)
+	sameBlockPrevote := createTestSignBytesE2E(lockedBlockHash, stepPrevote)
+	err = signState.ValidateConsensusLock(HRSKey{Height: 100, Round: 6, Step: stepPrevote}, sameBlockPrevote)
+	require.NoError(t, err, "Should allow PREVOTE for same block in later round")
+
+	// Test 3: Validator tries to sign a PROPOSAL for a different block in a later round
+	// This should be blocked (different value)
+	differentBlockHash := []byte("different_block_hash_123456789012345678901234567890")[:32]
+	differentBlockProposal := createTestSignBytesE2E(differentBlockHash, stepPropose)
+	err = signState.ValidateConsensusLock(HRSKey{Height: 100, Round: 6, Step: stepPropose}, differentBlockProposal)
+	require.Error(t, err, "Should block PROPOSAL for different block in later round")
+	require.True(t, IsConsensusLockViolationError(err), "Should be a consensus lock violation error")
+
+	// Test 4: Validator tries to sign a PREVOTE for a different block in a later round
+	// This should be blocked (different value)
+	differentBlockPrevote := createTestSignBytesE2E(differentBlockHash, stepPrevote)
+	err = signState.ValidateConsensusLock(HRSKey{Height: 100, Round: 6, Step: stepPrevote}, differentBlockPrevote)
+	require.Error(t, err, "Should block PREVOTE for different block in later round")
+	require.True(t, IsConsensusLockViolationError(err), "Should be a consensus lock violation error")
+
+	// Test 5: Validator tries to sign a PRECOMMIT for a different block in a later round
+	// This should be allowed (PRECOMMIT releases the lock)
+	differentBlockPrecommit := createTestSignBytesE2E(differentBlockHash, stepPrecommit)
+	err = signState.ValidateConsensusLock(HRSKey{Height: 100, Round: 6, Step: stepPrecommit}, differentBlockPrecommit)
+	require.NoError(t, err, "Should allow PRECOMMIT for different block in later round (releases lock)")
+
+	// Test 6: After signing a PRECOMMIT for a different block, the lock should be updated
+	// Simulate the lock update
+	newLock := updateConsensusLock(signState.ConsensusLock, HRSKey{Height: 100, Round: 6, Step: stepPrecommit}, differentBlockPrecommit)
+	require.True(t, newLock.IsLocked(), "New lock should be active")
+	require.Equal(t, int64(100), newLock.Height, "Lock should be at height 100")
+	require.Equal(t, int64(6), newLock.Round, "Lock should be at round 6")
+	require.Equal(t, differentBlockHash, newLock.Value, "Lock should be on the new block")
+
+	// Test 7: Validator tries to sign for a different height
+	// This should be allowed (locks are height-specific)
+	differentHeightBytes := createTestSignBytesE2E(differentBlockHash, stepPropose)
+	err = signState.ValidateConsensusLock(HRSKey{Height: 101, Round: 1, Step: stepPropose}, differentHeightBytes)
+	require.NoError(t, err, "Should allow signing for different height")
+
+	// Test 8: Validator tries to sign for the same height but earlier round
+	// This should be allowed (locks only apply to later rounds)
+	err = signState.ValidateConsensusLock(HRSKey{Height: 100, Round: 4, Step: stepPropose}, differentHeightBytes)
+	require.NoError(t, err, "Should allow signing for earlier round")
+}
+
+// TestConsensusLockRealWorldScenario tests a realistic scenario
+func TestConsensusLockRealWorldScenario(t *testing.T) {
+	// Scenario: Validator is locked on block A at height 100, round 5
+	// Network times out and moves to round 6
+	// New block B is proposed in round 6
+	// Validator should be prevented from signing block B until it signs a PRECOMMIT
+
+	lockedBlockA := []byte("block_A_hash_123456789012345678901234567890")[:32]
+	signState := &SignState{
+		Height: 100,
+		Round:  5,
+		Step:   stepPrecommit,
+		ConsensusLock: ConsensusLock{
+			Height: 100,
+			Round:  5,
+			Value:  lockedBlockA,
+		},
+	}
+
+	// Round 6: New block B is proposed
+	blockB := []byte("block_B_hash_123456789012345678901234567890")[:32]
+
+	// Validator should NOT be able to sign PROPOSAL for block B
+	blockBProposal := createTestSignBytesE2E(blockB, stepPropose)
+	err := signState.ValidateConsensusLock(HRSKey{Height: 100, Round: 6, Step: stepPropose}, blockBProposal)
+	require.Error(t, err, "Should block PROPOSAL for block B")
+	require.True(t, IsConsensusLockViolationError(err), "Should be a consensus lock violation")
+
+	// Validator should NOT be able to sign PREVOTE for block B
+	blockBPrevote := createTestSignBytesE2E(blockB, stepPrevote)
+	err = signState.ValidateConsensusLock(HRSKey{Height: 100, Round: 6, Step: stepPrevote}, blockBPrevote)
+	require.Error(t, err, "Should block PREVOTE for block B")
+	require.True(t, IsConsensusLockViolationError(err), "Should be a consensus lock violation")
+
+	// Validator should be able to sign PRECOMMIT for block B (this releases the lock)
+	blockBPrecommit := createTestSignBytesE2E(blockB, stepPrecommit)
+	err = signState.ValidateConsensusLock(HRSKey{Height: 100, Round: 6, Step: stepPrecommit}, blockBPrecommit)
+	require.NoError(t, err, "Should allow PRECOMMIT for block B (releases lock)")
+
+	// After signing PRECOMMIT for block B, validator should be locked on block B
+	newLock := updateConsensusLock(signState.ConsensusLock, HRSKey{Height: 100, Round: 6, Step: stepPrecommit}, blockBPrecommit)
+	require.True(t, newLock.IsLocked(), "Should be locked on block B")
+	require.Equal(t, blockB, newLock.Value, "Lock should be on block B")
+	require.Equal(t, int64(6), newLock.Round, "Lock should be at round 6")
+
+	// Update the signState with the new lock
+	signState.ConsensusLock = newLock
+
+	// Now validator should NOT be able to sign for block A in round 7
+	blockAProposal := createTestSignBytesE2E(lockedBlockA, stepPropose)
+	err = signState.ValidateConsensusLock(HRSKey{Height: 100, Round: 7, Step: stepPropose}, blockAProposal)
+	require.Error(t, err, "Should block PROPOSAL for block A in round 7")
+	require.True(t, IsConsensusLockViolationError(err), "Should be a consensus lock violation")
+}
+
+// TestConsensusLockPerformanceE2E tests that consensus lock validation is fast enough for production use
+func TestConsensusLockPerformanceE2E(t *testing.T) {
+	signState := &SignState{
+		Height: 100,
+		Round:  5,
+		Step:   stepPrecommit,
+		ConsensusLock: ConsensusLock{
+			Height: 100,
+			Round:  5,
+			Value:  []byte("locked_block_hash_123456789012345678901234567890")[:32],
+		},
+	}
+
+	blockHash := []byte("different_block_hash_123456789012345678901234567890")[:32]
+	blockBytes := createTestSignBytesE2E(blockHash, stepPropose)
+
+	// Test that validation is fast (should complete in < 1ms per operation)
+	start := time.Now()
+	for i := 0; i < 10000; i++ {
+		err := signState.ValidateConsensusLock(HRSKey{Height: 100, Round: 6, Step: stepPropose}, blockBytes)
+		require.Error(t, err) // Should always fail due to lock violation
+	}
+	duration := time.Since(start)
+
+	// Should complete 10,000 validations in well under 1 second
+	require.Less(t, duration, time.Second, "Consensus lock validation should be very fast")
+
+	avgTimePerOp := duration / 10000
+	require.Less(t, avgTimePerOp, 100*time.Microsecond, "Average time per operation should be < 100μs")
+}