Add block and index proofs [ECR-4011]

[dmitry-timofeev]

Overview

Added block and index proofs support. They shall be created through Blockchain.

Documented the various proof types: what they prove, what comprises them, how to create them. Added an example for a commonly used proof type.

Also:

• Made SignedMessage public to be able to use it in tests; got rid of redundant serialization in #parseFrom.
• Added Block#parseFrom and Block#fromMessage.

---

See: ECR-4011

---

⚠️ There are some questions marked as TODO (@slowli , @bullet-tooth , @vitvakatu ).

Definition of Done

• There are no TODOs left in the code
• Change is covered by automated tests
• The coding guidelines are followed
• Public API has Javadoc
• Method preconditions are checked and documented in the Javadoc of the method
• Changelog is updated if needed (in case of notable or breaking changes)
• The continuous integration build passes

[dmitry-timofeev]

⚠️ ECR-4106

[slowli]

The documentation here looks good 👍

[vitvakatu]

The native will throw an exception, so I think we should document it.

[dmitry-timofeev]

But

Why doesn't it return a proof of absence (no such index)? Especially as an index is not "initialized" unless (?) something is recorded in it? Doesn't that place extra burden on the service developers to "initialize" an index? Shall they now write an extra "initialize" method in a schema of each service (and we — document that)?

[vitvakatu]

Actually, I don't know. I read sources of proof_for_index method - it looks like explicit check for existence of the index can be removed, and the method will return proof of absence. @slowli am I right?

[slowli]

Yes, if the check of existence is removed, proof_for_index may return proof of absence for a non-existing index. The reason the method is implemented as is currently is that returning proof for a non-existing index doesn't make sense in a typical use case (returning the index proof + proof for data within the index, such as proof for a wallet in the cryptocurrency service).

[dmitry-timofeev]

Thanks! Would you clarify please, if one first requests a proof from an empty index (= no wallets), will it become "initialized"? Will one be able to provide then a proof that the index remains empty?

[vitvakatu]

Actually I couldn't find any use case for block proofs in execution context (where fork is available), so I propose to keep such restriction for now.

[bullet-tooth]

IDEA's quick documentation correctly opens the referenced javadoc, but doesn't recognize anchors. I think it's not the issue for changing links, just fyi

[dmitry-timofeev]

Thanks! That's weird, it works in mine:

[dmitry-timofeev]

Don't anchors work anywhere, even in Blockchain#callerrors?

[bullet-tooth]

yeap, Blockchain#callerrors doesn't work as well 🤷‍♀️

[bullet-tooth]

what is the reason to have this wrapper? Could we use Proofs.BlockProof directly (and index proof as well)?

[dmitry-timofeev]

The main reason is to have some flexibility to add operations if we release 1.0 without proof verifications. With a wrapper we can add extra operations on top of the proof data if they are needed (e.g., verification).

A side benefit — better documentation, but it can be achieved by other means.

[dmitry-timofeev]

We briefly discussed Optional vs Exception in case of uninitialized indexes in createIndexProof with @vitvakatu , and decided to go with an Exception, because eventually we would like to have them all initialized automatically and not be a burden to service developers: ECR-4121.

[coveralls]

Coverage decreased (-0.6%) to 85.705% when pulling 6fa70f3 on add-index-proof-ECR-4011 into bfc6cf7 on master.

[bullet-tooth]

Suggested change

	* <p>Exonum starts aggregating a service collection state hash once it is <em>initialized</em>:
	* <p>Exonum starts aggregating a service collections state hash once it is <em>initialized</em>:

[dmitry-timofeev]

The sentence says when Exonum starts aggregating one (any, a single) collection.