add neuron certificate discovery #2
Conversation
andreea-popescu-reef
force-pushed
the
encrypt
branch
3 times, most recently
from
ecf52d3 to
308a886
Compare
| U16_MAX = 65535 | ||
| U64_MAX = 18446744073709551615 | ||
|
|
||
| Certificate = str |
bittensor/extrinsics/serving.py
Outdated
| port (int): | ||
| Endpoint port number i.e., ``9221``. | ||
| certificate (str): | ||
| Certificate. |
| U16_MAX = 65535 | ||
| U64_MAX = 18446744073709551615 | ||
|
|
||
| Certificate = str |
There was a problem hiding this comment.
We can make a new type that inherits from str but is not str, so that mypy or something will be able to tell the difference between str and Certificate(str)
bittensor/subtensor.py
Outdated
| if call_params["certificate"] is None: | ||
| del call_params["certificate"] | ||
| call_function = "serve_axon" | ||
| else: | ||
| call_function = "serve_axon_tls" | ||
|
|
There was a problem hiding this comment.
It feels like a hack. I'm not sure about this, lets ask OTF
There was a problem hiding this comment.
I guess it was needed for backwards compatibility. A new method was added to substrate, instead of modifying the existing one.
There was a problem hiding this comment.
it's sad that the placeholders they left in case of stuff like this can't be used https://github.com/backend-developers-ltd/subtensor-fork/blob/development/pallets/subtensor/src/serving.rs#L30
There was a problem hiding this comment.
We need to validate that the provided certificate length is correct before calling substrate.
andreea-popescu-reef
force-pushed
the
encrypt
branch
from
308a886 to
8d17046
Compare
andreea-popescu-reef
force-pushed
the
encrypt
branch
from
b25a198 to
7d89d7e
Compare
andreea-popescu-reef
force-pushed
the
encrypt
branch
4 times, most recently
from
97f6805 to
b3d222b
Compare
andreea-popescu-reef
force-pushed
the
encrypt
branch
from
e47da50 to
dabd316
Compare
Co-authored-by: Benjamin Himes <37844818+thewhaleking@users.noreply.github.com>
Co-authored-by: Benjamin Himes <37844818+thewhaleking@users.noreply.github.com>
Co-authored-by: Benjamin Himes <37844818+thewhaleking@users.noreply.github.com>
Co-authored-by: Benjamin Himes <37844818+thewhaleking@users.noreply.github.com>
andreea-popescu-reef
force-pushed
the
encrypt
branch
from
a40a279 to
2c0bbfb
Compare
andreea-popescu-reef
force-pushed
the
encrypt
branch
3 times, most recently
from
3bed339 to
467bcf9
Compare
andreea-popescu-reef
force-pushed
the
encrypt
branch
from
467bcf9 to
9368030
Compare
Requirements for Adding, Changing, or Removing a Feature
subtensor migrated to version that handles certificate discovery
Description of the Change
Adds the ability to send neuron certificate and receive other neuron's certificates. This change will enable setting up mutual tls between neurons
serve_axonfunction takes an additional optional parameter certificateif certificate is present the
serve_axon_tlsrpc call will be called on the subtensor and the neuron's certificate will be discoverable through the subtensor. The function will behave the same other than the possible storing of certificate.get_neuron_certificate(netuid, neuron_uid)will fetch from the subtensor a specific neuron's certificate.Alternate Designs
save the certificate as a field in the axon.
This can be implemented either:
serve_axon,get_neuron_infoand other function. However this would break compatibility for multiple rpc calls encoding and would need patching.Possible Drawbacks
none?
Verification Process
TODO
Release Notes
serve_axonfunction and fetched via theget_neuron_certificatefunction