gui: validator names / icons pt2

Author: jherrera-jump

book/api/websocket.md

@@ -1417,7 +1417,8 @@ identity is no longer in these three data sources, it will be removed.
                 "name": "ExampleStake Firedancer 🔥💃",
                 "details": "A longer description of the validator, perhaps describing the team behind it or how the node is operated",
                 "website": "https://github.com/firedancer-io/firedancer",
-                "icon_url": "https://docs.firedancer.io/fire.svg"
+                "icon_url": "https://docs.firedancer.io/fire.svg",
+                "keybase_username": ""
             }
         }
     ],
@@ -1449,29 +1450,30 @@ identity is no longer in these three data sources, it will be removed.
 | delinquent      | `boolean`      | Whether the vote account is delinquent or not. A vote account is considered delinquent if it has not had a vote land on chain for any of the last 127 (inclusive) confirmed slots, according to this validator. If there have been less than 128 confirmed slots on the chain (it is a new chain), a validator is considered delinquent only if it has not voted yet at all |
 
 **`PeerUpdateInfo`**
-| Field    | Type     | Description |
-|----------|----------|-------------|
-| name     | `string\|null` | Self reported name of the validator, could be any string or null if there is no name set |
-| details  | `string\|null` | Self reported detailed description of the validator, could be any string or null if there is no details set |
-| website  | `string\|null` | Self reported website of the validator, could be any string and need not be a valid URI, or could be null if there is no website set |
-| icon_url | `string\|null` | Self reported URL of the validator icon, could be any string and need not be a valid URI, or could be null if there is no icon URI set |
+| Field            | Type     | Description |
+|------------------|----------|-------------|
+| name             | `string` | Self reported name of the validator, could be any string or empty string if there is no name set |
+| details          | `string` | Self reported detailed description of the validator, could be any string or empty string if there is no details set |
+| website          | `string` | Self reported website of the validator, could be any string and need not be a valid URI, or could be empty string if there is no website set |
+| icon_url         | `string` | Self reported URL of the validator icon, could be any string and need not be a valid URI, or could be empty string if there is no icon URI set |
+| keybase_username | `string` | Self reported keybase username of the validator, could be any string or empty string if there is no username set.  Keybase is a public, legacy storage for icon images.  Although this method for publiscising an icon is deprecated, it is included for completeness as many validators have not migrated to `iconUrl` |
 
 **`PeerUpdate`**
-| Field    | Type   | Description
-|----------|--------|------------
-| identity | `string` | Identity public key of the validator, encoded in base58 |
-| gossip   | `PeerUpdateGossip\|null` | Information reported for the validator identity over the gossip network. This is authenticated and the gossip node must have been in possession of the private key to publish gossip data as this identity. Gossip information is not validated or checked for correctness and could be set to any values by the peer |
+| Field    | Type                      | Description |
+|----------|---------------------------|-------------|
+| identity | `string`                  | Identity public key of the validator, encoded in base58 |
+| gossip   | `PeerUpdateGossip\|null`  | Information reported for the validator identity over the gossip network. This is authenticated and the gossip node must have been in possession of the private key to publish gossip data as this identity. Gossip information is not validated or checked for correctness and could be set to any values by the peer |
 | vote     | `PeerUpdateVoteAccount[]` | Information about the vote account(s) associated with this identity key, if there are any. It is extremely unusual for multiple vote accounts to report the same identity key. Vote account information like stake and commission is derived from the accounts on chain and cannot be corrupt, invalid, or incorrect |
-| info     | `PeerUpdateInfo\|null` | If the validator has published self reported identifying information to the chain. This is authenticated and the operator must have been in possession of the private key to publish info as this identity. Information is not validated or checked for correctness and could be set to any values by the peer |
+| info     | `PeerUpdateInfo\|null`    | If the validator has published self reported identifying information to the chain. This is authenticated and the operator must have been in possession of the private key to publish info as this identity. Information is not validated or checked for correctness and could be set to any values by the peer |
 
 **`PeerRemove`**
-| Field    | Type   | Description |
-|----------|--------|-------------|
+| Field    | Type     | Description |
+|----------|----------|-------------|
 | identity | `string` | Identity public key of the validator, encoded in base58 |
 
 **`PeersUpdate`**
-| Field  | Type   | Description |
-|--------|--------|-------------|
+| Field  | Type                 | Description |
+|--------|----------------------|-------------|
 | add    | `GossipPeerUpdate[]` | List of peer validators that were added since the last update, or all of the peers for the first update after connecting |
 | update | `GossipPeerUpdate[]` | List of peer validators that were changed since the last update |
 | remove | `GossipPeerRemove[]` | List of peer validators that were removed since the last update |

src/app/firedancer/topology.c

@@ -404,7 +404,7 @@ fd_topo_initialize( config_t * config ) {
     /**/               fd_topob_link( topo, "snapct_repr",  "snapct_repr",  128UL,                                    0UL,                           1UL )->permit_no_consumers = 1; /* TODO: wire in repair later */
     if( FD_LIKELY( config->tiles.gui.enabled ) ) {
       /**/             fd_topob_link( topo, "snapct_gui",   "snapct_gui",   128UL,                                    sizeof(fd_snapct_update_t),    1UL );
-      /**/             fd_topob_link( topo, "snapin_gui",   "snapin_gui",   4UL,                                      FD_GUI_PEERS_CONFIG_KEYS_MAX_SZ+FD_GUI_PEERS_VALIDATOR_INFO_MAX_SZ, 1UL );
+      /**/             fd_topob_link( topo, "snapin_gui",   "snapin_gui",   4UL,                                      FD_GUI_CONFIG_PARSE_CONFIG_KEYS_MAX_SZ+FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_MAX_SZ, 1UL );
     }
     if( vinyl_enabled ) {
       /**/             fd_topob_link( topo, "snapin_wr",    "snapin_wr",    4UL,                                      16UL<<20,                      1UL );

src/disco/gui/Local.mk

@@ -1,8 +1,9 @@
 ifdef FD_HAS_INT128
-$(call add-hdrs,fd_gui.h fd_gui_printf.h fd_gui_peers.h)
-$(call add-objs,fd_gui fd_gui_printf fd_gui_peers fd_gui_tile generated/http_import_dist,fd_disco)
+$(call add-hdrs,fd_gui.h fd_gui_printf.h fd_gui_peers.h fd_gui_config_parse.h)
+$(call add-objs,fd_gui fd_gui_printf fd_gui_peers fd_gui_config_parse fd_gui_tile generated/http_import_dist,fd_disco)
 $(OBJDIR)/obj/disco/gui/fd_gui_tile.o: book/public/fire.svg
 $(call make-unit-test,test_live_table,test_live_table,fd_disco fd_util)
+$(call make-fuzz-test,fuzz_config_parser,fuzz_config_parser,fd_disco fd_ballet fd_util)
 endif
 
 src/disco/gui/dist_stable_cmp/%.zst: src/disco/gui/dist_stable/%

src/disco/gui/fd_gui.h

@@ -6,6 +6,7 @@
 #include "../topo/fd_topo.h"
 
 #include "../../ballet/txn/fd_txn.h"
+#include "../../disco/tiles.h"
 #include "../../disco/fd_txn_p.h"
 #include "../../discof/restore/fd_snapct_tile.h"
 #include "../../discof/tower/fd_tower_tile.h"

src/disco/gui/fd_gui_config_parse.c

@@ -0,0 +1,115 @@
+#include "fd_gui_config_parse.h"
+
+#include "../../ballet/utf8/fd_utf8.h"
+
+int
+fd_gui_config_validator_info_validate( uchar const * data, ulong sz, cJSON ** out_json, fd_pubkey_t * out_pubkey ) {
+  /*
+    pub struct ConfigKeys {
+        #[cfg_attr(feature = "serde", serde(with = "short_vec"))]
+        pub keys: Vec<(Pubkey, bool)>,
+    }
+
+    The memory layout of a ConfigProgram account is a bincode serialized
+    ConfigKeys followed immediately by a stringified json object
+    containing the desired info.
+
+    The short_vec serialization format is a 1-3 bytes size field (where
+    the highest bit in a given byte is a continuation bit) followed by
+    serialized elements in the vector (in this case, each element is a
+    32byte pubkey followed by a 1byte bool. For our simple parser, we
+    only need to consider vectors smaller than 128 elements.
+
+    The JSON schema for a validator info object is the following
+
+    {
+      "name": "<validator name>",
+      "website": "<website url>",
+      "details": "<validator details>",
+      "iconUrl": "<icon url>"
+    }
+
+    Since accounts are at most 10MB, we should be safely within cJSON's
+    allocator limits.
+*/
+  ulong i = 0UL;
+
+#define CHECK( cond )  do { \
+    if( FD_UNLIKELY( !(cond) ) ) { \
+      return 0; \
+    } \
+  } while( 0 )
+
+  /* CHECK that it is safe to read at least n more bytes assuming i is
+     the current location. n is untrusted and could trigger overflow, so
+     don't do i+n<=payload_sz */
+#define CHECK_LEFT( n ) CHECK( (n)<=(sz-i) )
+
+  CHECK_LEFT( 1UL ); uchar ck_sz = data[ i ]; i++;
+  if( FD_UNLIKELY( ck_sz!=2 ) ) return 0;
+
+  struct __attribute__((packed, aligned(1))) config_keys {
+    fd_pubkey_t pubkey;
+    uchar       is_signer;
+  };
+
+  struct config_keys * data_config_keys = (struct config_keys *)(data + i);
+  CHECK_LEFT( (sizeof(fd_pubkey_t) + 1UL)*ck_sz ); i += (sizeof(fd_pubkey_t) + 1UL)*ck_sz;
+  CHECK_LEFT( FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_MAX_SZ );
+
+  /* First entry should be Va1idator1nfo111111111111111111111111111111 */
+  uchar expected[ 32UL ] = { 0x07, 0x51, 0x97, 0x01, 0x74, 0x48, 0xf2, 0xac, 0x5d, 0xc2, 0x3c, 0x9e, 0xbc, 0x7a, 0xc7, 0x8c, 0x0a, 0x27, 0x25, 0x7a, 0xc6, 0x14, 0x45, 0x8d, 0xe0, 0xa4, 0xf1, 0x6f, 0x80, 0x00, 0x00, 0x00 };
+  if( FD_UNLIKELY( memcmp( data_config_keys[0].pubkey.uc, expected, sizeof(fd_pubkey_t) ) || data_config_keys[0].is_signer ) ) return 0;
+
+  CHECK_LEFT( sizeof(ulong) ); ulong json_str_sz = *(ulong *)(data+i); i += sizeof(ulong);
+
+  CHECK_LEFT( json_str_sz );
+  cJSON * json = cJSON_ParseWithLengthOpts( (char *)(data+i), json_str_sz, NULL, 0 );
+  if( FD_UNLIKELY( !json ) ) return 0;
+
+#undef CHECK
+#undef CHECK_LEFT
+
+  *out_json = json;
+  fd_memcpy( out_pubkey->uc, data_config_keys[1].pubkey.uc, sizeof(fd_pubkey_t) );
+  return 1;
+}
+
+void
+fd_gui_config_validator_info_parse( cJSON * json, fd_gui_config_parse_info_t * node_info ) {
+  const cJSON * name = cJSON_GetObjectItemCaseSensitive( json, "name" );
+  /* cJSON guarantees name->valuestring is NULL terminated */
+  int missing_name = !cJSON_IsString( name )
+                  || strlen(name->valuestring)>FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_NAME_SZ
+                  || !fd_cstr_printf_check( node_info->name, strlen(name->valuestring)+1UL, NULL, "%s", name->valuestring )
+                  || !fd_utf8_verify( node_info->name, strlen(node_info->name) );
+  if( FD_UNLIKELY( missing_name ) ) node_info->name[ 0 ] = '\0';
+
+  const cJSON * website = cJSON_GetObjectItemCaseSensitive( json, "website" );
+  int missing_website = !cJSON_IsString( website )
+                     || strlen(website->valuestring)>FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_WEBSITE_SZ
+                     || !fd_cstr_printf_check( node_info->website, strlen(website->valuestring)+1UL, NULL, "%s", website->valuestring )
+                     || !fd_utf8_verify( node_info->website, strlen(node_info->website) );
+  if( FD_UNLIKELY( missing_website ) ) node_info->website[ 0 ] = '\0';
+
+  const cJSON * details = cJSON_GetObjectItemCaseSensitive( json, "details" );
+  int missing_details = !cJSON_IsString( details )
+                     || strlen(details->valuestring)>FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_DETAILS_SZ
+                     || !fd_cstr_printf_check( node_info->details, strlen(details->valuestring)+1UL, NULL, "%s", details->valuestring )
+                     || !fd_utf8_verify( node_info->details, strlen(node_info->details) );
+  if( FD_UNLIKELY( missing_details ) ) node_info->details[ 0 ] = '\0';
+
+  const cJSON * icon_uri = cJSON_GetObjectItemCaseSensitive( json, "iconUrl" );
+  int missing_icon_uri = !cJSON_IsString( icon_uri )
+                      || strlen(icon_uri->valuestring)>FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_ICON_URI_SZ
+                      || !fd_cstr_printf_check( node_info->icon_uri, strlen(icon_uri->valuestring)+1UL, NULL, "%s", icon_uri->valuestring )
+                      || !fd_utf8_verify( node_info->icon_uri, strlen(node_info->icon_uri) );
+  if( FD_UNLIKELY( missing_icon_uri ) ) node_info->icon_uri[ 0 ] = '\0';
+
+  const cJSON * keybase_username = cJSON_GetObjectItemCaseSensitive( json, "keybase_username" );
+  int missing_keybase_username = !cJSON_IsString( keybase_username )
+                      || strlen(keybase_username->valuestring)>FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_KEYBASE_USERNAME_SZ
+                      || !fd_cstr_printf_check( node_info->keybase_username, strlen(keybase_username->valuestring)+1UL, NULL, "%s", keybase_username->valuestring )
+                      || !fd_utf8_verify( node_info->keybase_username, strlen(node_info->keybase_username) );
+  if( FD_UNLIKELY( missing_keybase_username ) ) node_info->keybase_username[ 0 ] = '\0';
+}

src/disco/gui/fd_gui_config_parse.h

@@ -0,0 +1,43 @@
+#ifndef HEADER_fd_src_disco_gui_fd_gui_config_parse_h
+#define HEADER_fd_src_disco_gui_fd_gui_config_parse_h
+
+#include "../../ballet/json/cJSON.h"
+#include "../../flamenco/types/fd_types_custom.h"
+#include "../../util/fd_util_base.h"
+
+/* https://github.com/anza-xyz/agave/blob/master/account-decoder/src/validator_info.rs */
+#define FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_NAME_SZ     (  80UL) /* +1UL for NULL terminator */
+#define FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_WEBSITE_SZ  (  80UL)
+#define FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_DETAILS_SZ  ( 300UL)
+#define FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_ICON_URI_SZ (  80UL)
+#define FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_KEYBASE_USERNAME_SZ (80UL)
+#define FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_MAX_SZ      ( 576UL) /* does not include size of ConfigKeys */
+
+/* The size of a ConfigKeys of length 2, which is the expected length of ValidatorInfo */
+#define FD_GUI_CONFIG_PARSE_CONFIG_KEYS_MAX_SZ         (1UL + (32UL + 1UL)*2UL)
+
+struct fd_gui_config_parse_info {
+  fd_pubkey_t pubkey;
+  char name    [ FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_NAME_SZ     + 1UL ]; /* +1UL for NULL */
+  char website [ FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_WEBSITE_SZ  + 1UL ];
+  char details [ FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_DETAILS_SZ  + 1UL ];
+  char icon_uri[ FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_ICON_URI_SZ + 1UL ];
+  char keybase_username[ FD_GUI_CONFIG_PARSE_VALIDATOR_INFO_KEYBASE_USERNAME_SZ + 1UL ];
+
+  struct { ulong prev, next; } map;
+  struct { ulong next; } pool;
+};
+
+typedef struct fd_gui_config_parse_info fd_gui_config_parse_info_t;
+
+FD_PROTOTYPES_BEGIN
+
+int
+fd_gui_config_validator_info_validate( uchar const * data, ulong sz, cJSON ** out_json, fd_pubkey_t * out_pubkey );
+
+void
+fd_gui_config_validator_info_parse( cJSON * json, fd_gui_config_parse_info_t * node_info );
+
+FD_PROTOTYPES_END
+
+#endif /* HEADER_fd_src_disco_gui_fd_gui_config_parse_h */