revert(pbft): drop pq signature additions

Author: Federico2014

chainbase/src/main/java/org/tron/core/capsule/PbftSignCapsule.java

@@ -2,13 +2,11 @@
 
 import com.google.protobuf.ByteString;
 import com.google.protobuf.InvalidProtocolBufferException;
-import java.util.Collections;
 import java.util.Deque;
 import java.util.List;
 import lombok.Getter;
 import lombok.extern.slf4j.Slf4j;
 import org.tron.protos.Protocol.PBFTCommitResult;
-import org.tron.protos.Protocol.PQAuthSig;
 
 @Slf4j(topic = "pbft")
 public class PbftSignCapsule implements ProtoCapsule<PBFTCommitResult> {
@@ -25,18 +23,8 @@ public PbftSignCapsule(byte[] data) {
   }
 
   public PbftSignCapsule(ByteString data, List<ByteString> signList) {
-    this(data, signList, Collections.emptyList());
-  }
-
-  public PbftSignCapsule(ByteString data, List<ByteString> signList,
-      List<PQAuthSig> pqSignList) {
-    PBFTCommitResult.Builder builder = PBFTCommitResult.newBuilder().setData(data);
-    if (signList != null && !signList.isEmpty()) {
-      builder.addAllSignature(signList);
-    }
-    if (pqSignList != null && !pqSignList.isEmpty()) {
-      builder.addAllPqSignature(pqSignList);
-    }
+    PBFTCommitResult.Builder builder = PBFTCommitResult.newBuilder();
+    builder.setData(data).addAllSignature(signList);
     pbftCommitResult = builder.build();
   }
 

consensus/src/main/java/org/tron/consensus/pbft/PbftMessageAction.java

@@ -10,7 +10,6 @@
 import org.tron.core.ChainBaseManager;
 import org.tron.core.capsule.PbftSignCapsule;
 import org.tron.protos.Protocol.PBFTMessage.Raw;
-import org.tron.protos.Protocol.PQAuthSig;
 
 @Slf4j(topic = "pbft")
 @Component
@@ -19,24 +18,22 @@ public class PbftMessageAction {
   @Autowired
   private ChainBaseManager chainBaseManager;
 
-  public void action(PbftMessage message, List<ByteString> dataSignList,
-      List<PQAuthSig> pqSignList) {
+  public void action(PbftMessage message, List<ByteString> dataSignList) {
     switch (message.getDataType()) {
       case BLOCK: {
         long blockNum = message.getNumber();
         chainBaseManager.getCommonDataBase().saveLatestPbftBlockNum(blockNum);
         Raw raw = message.getPbftMessage().getRawData();
         chainBaseManager.getPbftSignDataStore()
-            .putBlockSignData(blockNum,
-                new PbftSignCapsule(raw.toByteString(), dataSignList, pqSignList));
+            .putBlockSignData(blockNum, new PbftSignCapsule(raw.toByteString(), dataSignList));
         logger.info("commit msg block num is:{}", blockNum);
       }
       break;
       case SRL: {
         try {
           Raw raw = message.getPbftMessage().getRawData();
           chainBaseManager.getPbftSignDataStore().putSrSignData(message.getEpoch(),
-              new PbftSignCapsule(raw.toByteString(), dataSignList, pqSignList));
+              new PbftSignCapsule(raw.toByteString(), dataSignList));
           logger.info("sr commit msg :{}, epoch:{}", message.getNumber(), message.getEpoch());
         } catch (Exception e) {
           logger.error("process the sr list error!", e);

consensus/src/main/java/org/tron/consensus/pbft/PbftMessageHandle.java

@@ -32,7 +32,6 @@
 import org.tron.consensus.pbft.message.PbftMessage;
 import org.tron.core.ChainBaseManager;
 import org.tron.protos.Protocol.PBFTMessage.DataType;
-import org.tron.protos.Protocol.PQAuthSig;
 
 @Slf4j(topic = "pbft")
 @Component
@@ -65,15 +64,6 @@ public List<ByteString> load(String s) throws Exception {
             }
           });
 
-  private LoadingCache<String, List<PQAuthSig>> pqSignCache = CacheBuilder.newBuilder()
-      .initialCapacity(100).maximumSize(1000).expireAfterWrite(2, TimeUnit.MINUTES).build(
-          new CacheLoader<String, List<PQAuthSig>>() {
-            @Override
-            public List<PQAuthSig> load(String s) throws Exception {
-              return new ArrayList<>();
-            }
-          });
-
   private PbftMessage srPbftMessage;
 
   private Timer timer = new Timer("pbft-timer");
@@ -215,21 +205,14 @@ public synchronized void onCommit(PbftMessage message) {
     commitVoteMap.put(key, message);
     //The number of votes plus 1
     long agCou = agreeCommit.incrementAndGet(message.getDataKey());
-    if (message.getPbftMessage().hasPqAuthSig()) {
-      pqSignCache.getUnchecked(message.getDataKey())
-          .add(message.getPbftMessage().getPqAuthSig());
-    } else {
-      dataSignCache.getUnchecked(message.getDataKey())
-          .add(message.getPbftMessage().getSignature());
-    }
+    dataSignCache.getUnchecked(message.getDataKey())
+        .add(message.getPbftMessage().getSignature());
     if (agCou >= Param.getInstance().getAgreeNodeCount()) {
       srPbftMessage = null;
       remove(message.getNo());
       //commit,
       if (!isSyncing()) {
-        pbftMessageAction.action(message,
-            dataSignCache.getUnchecked(message.getDataKey()),
-            pqSignCache.getUnchecked(message.getDataKey()));
+        pbftMessageAction.action(message, dataSignCache.getUnchecked(message.getDataKey()));
       }
     }
   }

consensus/src/main/java/org/tron/consensus/pbft/message/PbftBaseMessage.java

@@ -6,7 +6,6 @@
 import java.util.stream.Collectors;
 import org.bouncycastle.util.encoders.Hex;
 import org.tron.common.crypto.ECKey;
-import org.tron.common.crypto.pqc.PQSchemeRegistry;
 import org.tron.common.overlay.message.Message;
 import org.tron.common.utils.ByteUtil;
 import org.tron.common.utils.Sha256Hash;
@@ -15,8 +14,6 @@
 import org.tron.core.exception.P2pException;
 import org.tron.protos.Protocol.PBFTMessage;
 import org.tron.protos.Protocol.PBFTMessage.DataType;
-import org.tron.protos.Protocol.PQAuthSig;
-import org.tron.protos.Protocol.PQScheme;
 import org.tron.protos.Protocol.SRL;
 
 public abstract class PbftBaseMessage extends Message {
@@ -99,38 +96,8 @@ public DataType getDataType() {
 
   public void analyzeSignature() throws SignatureException {
     byte[] hash = Sha256Hash.hash(true, getPbftMessage().getRawData().toByteArray());
-    boolean hasLegacy = !getPbftMessage().getSignature().isEmpty();
-    boolean hasPq = getPbftMessage().hasPqAuthSig();
-    if (hasLegacy == hasPq) {
-      throw new SignatureException(
-          "pbft message must set exactly one of signature / pq_auth_sig");
-    }
-    if (hasPq) {
-      publicKey = verifyPqAuthSig(hash, getPbftMessage().getPqAuthSig());
-    } else {
-      publicKey = ECKey.signatureToAddress(hash, TransactionCapsule
-          .getBase64FromByteString(getPbftMessage().getSignature()));
-    }
-  }
-
-  private static byte[] verifyPqAuthSig(byte[] hash, PQAuthSig pqAuthSig)
-      throws SignatureException {
-    PQScheme scheme = pqAuthSig.getScheme();
-    if (!PQSchemeRegistry.contains(scheme)) {
-      throw new SignatureException("pbft pq_auth_sig scheme not registered: " + scheme);
-    }
-    byte[] publicKey = pqAuthSig.getPublicKey().toByteArray();
-    if (publicKey.length != PQSchemeRegistry.getPublicKeyLength(scheme)) {
-      throw new SignatureException("pbft pq_auth_sig public key length mismatch for " + scheme);
-    }
-    byte[] signature = pqAuthSig.getSignature().toByteArray();
-    if (!PQSchemeRegistry.isValidSignatureLength(scheme, signature.length)) {
-      throw new SignatureException("pbft pq_auth_sig signature length mismatch for " + scheme);
-    }
-    if (!PQSchemeRegistry.verify(scheme, publicKey, hash, signature)) {
-      throw new SignatureException("pbft pq_auth_sig verification failed for " + scheme);
-    }
-    return PQSchemeRegistry.computeAddress(scheme, publicKey);
+    publicKey = ECKey.signatureToAddress(hash, TransactionCapsule
+        .getBase64FromByteString(getPbftMessage().getSignature()));
   }
 
   @Override

consensus/src/main/java/org/tron/consensus/pbft/message/PbftMessage.java

@@ -4,19 +4,15 @@
 import java.util.List;
 import org.tron.common.crypto.ECKey;
 import org.tron.common.crypto.ECKey.ECDSASignature;
-import org.tron.common.crypto.pqc.PQSchemeRegistry;
 import org.tron.common.utils.Sha256Hash;
 import org.tron.consensus.base.Param;
 import org.tron.consensus.base.Param.Miner;
-import org.tron.consensus.base.Param.MinerType;
 import org.tron.core.capsule.BlockCapsule;
 import org.tron.core.net.message.MessageTypes;
 import org.tron.protos.Protocol.PBFTMessage;
 import org.tron.protos.Protocol.PBFTMessage.DataType;
 import org.tron.protos.Protocol.PBFTMessage.MsgType;
 import org.tron.protos.Protocol.PBFTMessage.Raw;
-import org.tron.protos.Protocol.PQAuthSig;
-import org.tron.protos.Protocol.PQScheme;
 import org.tron.protos.Protocol.SRL;
 
 public class PbftMessage extends PbftBaseMessage {
@@ -60,13 +56,15 @@ public static PbftMessage fullNodePrePrepareSRLMsg(BlockCapsule block,
   private static PbftMessage buildCommon(DataType dataType, ByteString data, BlockCapsule block,
       long epoch, long viewN, Miner miner) {
     PbftMessage pbftMessage = new PbftMessage();
+    ECKey ecKey = ECKey.fromPrivate(miner.getPrivateKey());
     Raw.Builder rawBuilder = Raw.newBuilder();
     PBFTMessage.Builder builder = PBFTMessage.newBuilder();
     rawBuilder.setViewN(viewN).setEpoch(epoch).setDataType(dataType)
         .setMsgType(MsgType.PREPREPARE).setData(data);
     Raw raw = rawBuilder.build();
     byte[] hash = Sha256Hash.hash(true, raw.toByteArray());
-    signRaw(builder, raw, hash, miner);
+    ECDSASignature signature = ecKey.sign(hash);
+    builder.setRawData(raw).setSignature(ByteString.copyFrom(signature.toByteArray()));
     PBFTMessage message = builder.build();
     pbftMessage.setType(MessageTypes.PBFT_MSG.asByte())
         .setPbftMessage(message).setData(message.toByteArray()).setSwitch(block.isSwitch());
@@ -98,6 +96,7 @@ public PbftMessage buildCommitMessage(Miner miner) {
 
   private PbftMessage buildMessageCapsule(MsgType type, Miner miner) {
     PbftMessage pbftMessage = new PbftMessage();
+    ECKey ecKey = ECKey.fromPrivate(miner.getPrivateKey());
     PBFTMessage.Builder builder = PBFTMessage.newBuilder();
     Raw.Builder rawBuilder = Raw.newBuilder();
     rawBuilder.setViewN(getPbftMessage().getRawData().getViewN())
@@ -106,30 +105,11 @@ private PbftMessage buildMessageCapsule(MsgType type, Miner miner) {
         .setData(getPbftMessage().getRawData().getData());
     Raw raw = rawBuilder.build();
     byte[] hash = Sha256Hash.hash(true, raw.toByteArray());
-    signRaw(builder, raw, hash, miner);
+    ECDSASignature signature = ecKey.sign(hash);
+    builder.setRawData(raw).setSignature(ByteString.copyFrom(signature.toByteArray()));
     PBFTMessage message = builder.build();
     pbftMessage.setType(getType().asByte())
         .setPbftMessage(message).setData(message.toByteArray());
     return pbftMessage;
   }
-
-  private static void signRaw(PBFTMessage.Builder builder, Raw raw, byte[] hash, Miner miner) {
-    builder.setRawData(raw);
-    if (miner.getType() == MinerType.PQ) {
-      PQScheme scheme = miner.getPqScheme();
-      byte[] sk = miner.getPQPrivateKey();
-      byte[] pk = miner.getPQPublicKey();
-      byte[] sig = PQSchemeRegistry.sign(scheme, sk, hash);
-      builder.setPqAuthSig(PQAuthSig.newBuilder()
-              .setScheme(scheme)
-              .setPublicKey(ByteString.copyFrom(pk))
-              .setSignature(ByteString.copyFrom(sig)))
-          .clearSignature();
-    } else {
-      ECKey ecKey = ECKey.fromPrivate(miner.getPrivateKey());
-      ECDSASignature signature = ecKey.sign(hash);
-      builder.setSignature(ByteString.copyFrom(signature.toByteArray()))
-          .clearPqAuthSig();
-    }
-  }
-}
+}