BFT: a bft synchronizer for smartbft orderer

This commit provides a smartbft orderer with a BFTSynchronizer.
The BFTSynchronizer is the default choice for a smartbft orderer.

Signed-off-by: Yoav Tock <tock@il.ibm.com>
Change-Id: I577c89309f469d077a9a1007d4b46fa70d7ed650

orderer/common/cluster/deliver.go

@@ -45,7 +45,7 @@ type BlockPuller struct {
 
 	// A 'stopper' goroutine may signal the go-routine servicing PullBlock & HeightsByEndpoints to stop by closing this
 	// channel. Note: all methods of the BlockPuller must be serviced by a single goroutine, it is not thread safe.
-	// It is the responsibility of the 'stopper' not to close the channel more then once.
+	// It is the responsibility of the 'stopper' not to close the channel more than once.
 	StopChannel chan struct{}
 
 	// Internal state

orderer/consensus/smartbft/chain.go

@@ -72,8 +72,8 @@ type BFTChain struct {
 	Channel            string
 	Config             types.Configuration
 	BlockPuller        BlockPuller
-	clusterDialer      *cluster.PredicateDialer // TODO Required by BFT-synchronizer
-	localConfigCluster localconfig.Cluster      // TODO Required by BFT-synchronizer
+	clusterDialer      *cluster.PredicateDialer // Required by BFT-synchronizer
+	localConfigCluster localconfig.Cluster      // Required by BFT-synchronizer
 	Comm               cluster.Communicator
 	SignerSerializer   signerSerializer
 	PolicyManager      policies.Manager
@@ -131,8 +131,8 @@ func NewChain(
 		SignerSerializer:   signerSerializer,
 		PolicyManager:      policyManager,
 		BlockPuller:        blockPuller,        // FIXME create internally or with a factory
-		clusterDialer:      clusterDialer,      // TODO Required by BFT-synchronizer
-		localConfigCluster: localConfigCluster, // TODO Required by BFT-synchronizer
+		clusterDialer:      clusterDialer,      // Required by BFT-synchronizer
+		localConfigCluster: localConfigCluster, // Required by BFT-synchronizer
 		Logger:             logger,
 		consensusRelation:  types2.ConsensusRelationConsenter,
 		status:             types2.StatusActive,
@@ -212,8 +212,24 @@ func bftSmartConsensusBuild(
 	var sync api.Synchronizer
 	switch c.localConfigCluster.ReplicationPolicy {
 	case "consensus":
-		c.Logger.Debug("BFTSynchronizer not yet available") // TODO create BFTSynchronizer when available
-		fallthrough
+		c.Logger.Debug("Creating a BFTSynchronizer")
+		sync = &BFTSynchronizer{
+			selfID: rtc.id,
+			LatestConfig: func() (types.Configuration, []uint64) {
+				rtc := c.RuntimeConfig.Load().(RuntimeConfig)
+				return rtc.BFTConfig, rtc.Nodes
+			},
+			BlockToDecision: c.blockToDecision,
+			OnCommit: func(block *cb.Block) types.Reconfig {
+				c.pruneCommittedRequests(block)
+				return c.updateRuntimeConfig(block)
+			},
+			Support:            c.support,
+			CryptoProvider:     c.bccsp,
+			clusterDialer:      c.clusterDialer,
+			localConfigCluster: c.localConfigCluster,
+			Logger:             c.Logger,
+		}
 	case "simple":
 		c.Logger.Debug("Creating simple Synchronizer")
 		sync = &Synchronizer{

orderer/consensus/smartbft/sync_buffer.go

@@ -0,0 +1,70 @@
+/*
+Copyright IBM Corp. All Rights Reserved.
+
+SPDX-License-Identifier: Apache-2.0
+*/
+
+package smartbft
+
+import (
+	"sync"
+
+	"github.com/hyperledger/fabric-protos-go/common"
+	"github.com/pkg/errors"
+)
+
+type SyncBuffer struct {
+	blockCh  chan *common.Block
+	stopCh   chan struct{}
+	stopOnce sync.Once
+}
+
+func NewSyncBuffer() *SyncBuffer {
+	return &SyncBuffer{
+		blockCh: make(chan *common.Block, 10),
+		stopCh:  make(chan struct{}),
+	}
+}
+
+// HandleBlock gives the block to the next stage of processing after fetching it from a remote orderer.
+func (sb *SyncBuffer) HandleBlock(channelID string, block *common.Block) error {
+	if block == nil || block.Header == nil {
+		return errors.New("empty block or block header")
+	}
+
+	select {
+	case sb.blockCh <- block:
+		return nil
+	case <-sb.stopCh:
+		return errors.New("SyncBuffer stopping")
+	}
+}
+
+func (sb *SyncBuffer) PullBlock(seq uint64) *common.Block {
+	var block *common.Block
+	for {
+		select {
+		case block = <-sb.blockCh:
+			if block == nil || block.Header == nil {
+				return nil
+			}
+			if block.GetHeader().GetNumber() == seq {
+				return block
+			}
+			if block.GetHeader().GetNumber() < seq {
+				continue
+			}
+			if block.GetHeader().GetNumber() > seq {
+				return nil
+			}
+		case <-sb.stopCh:
+			return nil
+		}
+	}
+}
+
+func (sb *SyncBuffer) Stop() {
+	sb.stopOnce.Do(func() {
+		close(sb.stopCh)
+	})
+}

orderer/consensus/smartbft/synchronizer_bft.go

@@ -0,0 +1,239 @@
+/*
+Copyright IBM Corp. All Rights Reserved.
+
+SPDX-License-Identifier: Apache-2.0
+*/
+
+package smartbft
+
+import (
+	"sort"
+	"time"
+
+	"github.com/SmartBFT-Go/consensus/pkg/types"
+	"github.com/SmartBFT-Go/consensus/smartbftprotos"
+	"github.com/hyperledger/fabric-lib-go/bccsp"
+	"github.com/hyperledger/fabric-lib-go/common/flogging"
+	"github.com/hyperledger/fabric-protos-go/common"
+	"github.com/hyperledger/fabric/common/deliverclient"
+	"github.com/hyperledger/fabric/internal/pkg/peer/blocksprovider"
+	"github.com/hyperledger/fabric/internal/pkg/peer/orderers"
+	"github.com/hyperledger/fabric/orderer/common/cluster"
+	"github.com/hyperledger/fabric/orderer/common/localconfig"
+	"github.com/hyperledger/fabric/orderer/consensus"
+	"github.com/hyperledger/fabric/protoutil"
+	"github.com/pkg/errors"
+)
+
+type BFTSynchronizer struct {
+	lastReconfig       types.Reconfig
+	selfID             uint64
+	LatestConfig       func() (types.Configuration, []uint64)
+	BlockToDecision    func(*common.Block) *types.Decision
+	OnCommit           func(*common.Block) types.Reconfig
+	Support            consensus.ConsenterSupport
+	CryptoProvider     bccsp.BCCSP
+	BlockPuller        BlockPuller              // TODO improve - this only an endpoint prober - detect self EP
+	clusterDialer      *cluster.PredicateDialer // TODO make bft-synchro
+	localConfigCluster localconfig.Cluster      // TODO make bft-synchro
+	Logger             *flogging.FabricLogger
+}
+
+func (s *BFTSynchronizer) Sync() types.SyncResponse {
+	decision, err := s.synchronize()
+	if err != nil {
+		s.Logger.Warnf("Could not synchronize with remote orderers due to %s, returning state from local ledger", err)
+		block := s.Support.Block(s.Support.Height() - 1)
+		config, nodes := s.LatestConfig()
+		return types.SyncResponse{
+			Latest: *s.BlockToDecision(block),
+			Reconfig: types.ReconfigSync{
+				InReplicatedDecisions: false, // If we read from ledger we do not need to reconfigure.
+				CurrentNodes:          nodes,
+				CurrentConfig:         config,
+			},
+		}
+	}
+
+	// After sync has ended, reset the state of the last reconfig.
+	defer func() {
+		s.lastReconfig = types.Reconfig{}
+	}()
+	return types.SyncResponse{
+		Latest: *decision,
+		Reconfig: types.ReconfigSync{
+			InReplicatedDecisions: s.lastReconfig.InLatestDecision,
+			CurrentConfig:         s.lastReconfig.CurrentConfig,
+			CurrentNodes:          s.lastReconfig.CurrentNodes,
+		},
+	}
+}
+
+func (s *BFTSynchronizer) synchronize() (*types.Decision, error) {
+	//=== We use the BlockPuller to probe all the endpoints and establish a target height, as well as detect
+	// the self endpoint.
+
+	// In BFT it is highly recommended that the channel/orderer-endpoints (for delivery & broadcast) map 1:1 to the
+	// channel/orderers/consenters (for cluster consensus), that is, every consenter should be represented by a
+	// delivery endpoint.
+	blockPuller, err := newBlockPuller(s.Support, s.clusterDialer, s.localConfigCluster, s.CryptoProvider)
+	if err != nil {
+		return nil, errors.Wrap(err, "cannot get create BlockPuller")
+	}
+	defer blockPuller.Close()
+
+	heightByEndpoint, myEndpoint, err := blockPuller.HeightsByEndpoints()
+	if err != nil {
+		return nil, errors.Wrap(err, "cannot get HeightsByEndpoints")
+	}
+
+	s.Logger.Infof("HeightsByEndpoints: %+v, my endpoint: %s", heightByEndpoint, myEndpoint)
+
+	var heights []uint64
+	for ep, value := range heightByEndpoint {
+		if ep == myEndpoint {
+			continue
+		}
+		heights = append(heights, value)
+	}
+
+	if len(heights) == 0 {
+		return nil, errors.New("no cluster members to synchronize with")
+	}
+
+	targetHeight := s.computeTargetHeight(heights)
+	startHeight := s.Support.Height()
+	if startHeight >= targetHeight {
+		return nil, errors.Errorf("already at target height of %d", targetHeight)
+	}
+
+	//====
+	// create a buffer to accept the blocks delivered from the BFTDeliverer
+	syncBuffer := NewSyncBuffer()
+
+	//===
+	// create the deliverer
+	lastBlock := s.Support.Block(startHeight - 1)
+	lastConfigBlock, err := cluster.LastConfigBlock(lastBlock, s.Support)
+	if err != nil {
+		return nil, errors.Wrapf(err, "failed to retrieve last config block")
+	}
+	lastConfigEnv, err := deliverclient.ConfigFromBlock(lastConfigBlock)
+	if err != nil {
+		return nil, errors.Wrapf(err, "failed to retrieve last config envelope")
+	}
+	verifier, err := deliverclient.NewBlockVerificationAssistant(lastConfigBlock, lastBlock, s.CryptoProvider, s.Logger)
+	if err != nil {
+		return nil, errors.Wrapf(err, "failed to create BlockVerificationAssistant")
+	}
+
+	clientConfig := s.clusterDialer.Config // The cluster and block puller use slightly different options
+	clientConfig.AsyncConnect = false
+	clientConfig.SecOpts.VerifyCertificate = nil
+
+	bftDeliverer := &blocksprovider.BFTDeliverer{
+		ChannelID:                 s.Support.ChannelID(),
+		BlockHandler:              syncBuffer,
+		Ledger:                    &ledgerInfoAdapter{s.Support},
+		UpdatableBlockVerifier:    verifier,
+		Dialer:                    blocksprovider.DialerAdapter{ClientConfig: clientConfig},
+		OrderersSourceFactory:     &orderers.ConnectionSourceFactory{}, // no overrides in the orderer
+		CryptoProvider:            s.CryptoProvider,
+		DoneC:                     make(chan struct{}),
+		Signer:                    s.Support,
+		DeliverStreamer:           blocksprovider.DeliverAdapter{},
+		CensorshipDetectorFactory: &blocksprovider.BFTCensorshipMonitorFactory{},
+		Logger:                    flogging.MustGetLogger("orderer.blocksprovider").With("channel", s.Support.ChannelID()),
+		InitialRetryInterval:      10 * time.Millisecond, // TODO get it from config.
+		MaxRetryInterval:          2 * time.Second,       // TODO get it from config.
+		BlockCensorshipTimeout:    20 * time.Second,      // TODO get it from config.
+		MaxRetryDuration:          time.Minute,           // TODO get it from config.
+		MaxRetryDurationExceededHandler: func() (stopRetries bool) {
+			syncBuffer.Stop()
+			return true // In the orderer we must limit the time we try to do Synch()
+		},
+	}
+
+	s.Logger.Infof("Created a BFTDeliverer: %+v", bftDeliverer)
+	bftDeliverer.Initialize(lastConfigEnv.GetConfig(), myEndpoint)
+
+	go bftDeliverer.DeliverBlocks()
+	defer bftDeliverer.Stop()
+
+	//===
+	// Loop on sync-buffer
+
+	targetSeq := targetHeight - 1
+	seq := startHeight
+	var blocksFetched int
+
+	s.Logger.Debugf("Will fetch sequences [%d-%d]", seq, targetSeq)
+
+	var lastPulledBlock *common.Block
+	for seq <= targetSeq {
+		block := syncBuffer.PullBlock(seq)
+		if block == nil {
+			s.Logger.Debugf("Failed to fetch block [%d] from cluster", seq)
+			break
+		}
+		if protoutil.IsConfigBlock(block) {
+			s.Support.WriteConfigBlock(block, nil)
+		} else {
+			s.Support.WriteBlock(block, nil)
+		}
+		s.Logger.Debugf("Fetched and committed block [%d] from cluster", seq)
+		lastPulledBlock = block
+
+		prevInLatestDecision := s.lastReconfig.InLatestDecision
+		s.lastReconfig = s.OnCommit(lastPulledBlock)
+		s.lastReconfig.InLatestDecision = s.lastReconfig.InLatestDecision || prevInLatestDecision
+		seq++
+		blocksFetched++
+	}
+
+	syncBuffer.Stop()
+
+	if lastPulledBlock == nil {
+		return nil, errors.Errorf("failed pulling block %d", seq)
+	}
+
+	startSeq := startHeight
+	s.Logger.Infof("Finished synchronizing with cluster, fetched %d blocks, starting from block [%d], up until and including block [%d]",
+		blocksFetched, startSeq, lastPulledBlock.Header.Number)
+
+	viewMetadata, lastConfigSqn := s.getViewMetadataLastConfigSqnFromBlock(lastPulledBlock)
+
+	s.Logger.Infof("Returning view metadata of %v, lastConfigSeq %d", viewMetadata, lastConfigSqn)
+	return s.BlockToDecision(lastPulledBlock), nil
+}
+
+// computeTargetHeight compute the target height to synchronize to.
+//
+// heights: a slice containing the heights of accessible peers, length must be >0.
+// clusterSize: the cluster size, must be >0.
+func (s *BFTSynchronizer) computeTargetHeight(heights []uint64) uint64 {
+	sort.Slice(heights, func(i, j int) bool { return heights[i] > heights[j] }) // Descending
+	clusterSize := len(s.Support.SharedConfig().Consenters())
+	f := uint64(clusterSize-1) / 3 // The number of tolerated byzantine faults
+	lenH := uint64(len(heights))
+
+	s.Logger.Debugf("Heights: %v", heights)
+
+	if lenH < f+1 {
+		s.Logger.Debugf("Returning %d", heights[0])
+		return heights[int(lenH)-1]
+	}
+	s.Logger.Debugf("Returning %d", heights[f])
+	return heights[f]
+}
+
+func (s *BFTSynchronizer) getViewMetadataLastConfigSqnFromBlock(block *common.Block) (*smartbftprotos.ViewMetadata, uint64) {
+	viewMetadata, err := getViewMetadataFromBlock(block)
+	if err != nil {
+		return nil, 0
+	}
+
+	lastConfigSqn := s.Support.Sequence()
+
+	return viewMetadata, lastConfigSqn
+}

orderer/consensus/smartbft/util.go

@@ -176,6 +176,8 @@ func newBlockPuller(
 		Dialer:              stdDialer,
 	}
 
+	logger.Infof("Built new block puller with cluster config: %+v, endpoints: %+v", clusterConfig, endpoints)
+
 	return bp, nil
 }
 
@@ -515,3 +517,16 @@ func createSmartBftConfig(odrdererConfig channelconfig.Orderer) (*smartbft.Optio
 	configOptions.RequestBatchMaxBytes = uint64(batchSize.AbsoluteMaxBytes)
 	return configOptions, nil
 }
+
+// ledgerInfoAdapter translates from blocksprovider.LedgerInfo in to calls to consensus.ConsenterSupport.
+type ledgerInfoAdapter struct {
+	support consensus.ConsenterSupport
+}
+
+func (a *ledgerInfoAdapter) LedgerHeight() (uint64, error) {
+	return a.support.Height(), nil
+}
+
+func (a *ledgerInfoAdapter) GetCurrentBlockHash() ([]byte, error) {
+	return nil, errors.New("not implemented: never used in orderer")
+}