Don't assert if ike was not done after state transfer (#2740)

Yehonatan Buchnik · web-flow · commit a7a8bfeb2778 · 2022-07-20T15:46:10.000+03:00
In case we have a VC before the initial KE, the replicas fill their active window with no-ops. Hence, a late replica may start state transfer. However, this replica will assert when state transfer is done because the initial key exchange has not been completed yet.
The solution is not to assert if the initial key exchange has not been done yet.
Testing Done
CI
diff --git a/bftengine/src/bftengine/KeyExchangeManager.cpp b/bftengine/src/bftengine/KeyExchangeManager.cpp
@@ -134,7 +134,7 @@ void KeyExchangeManager::loadPublicKeys() {
   // after State Transfer public keys for all replicas are expected to exist
   auto num_loaded = publicKeys_.loadAllReplicasKeyStoresFromReservedPages();
   uint32_t liveQuorumSize = ReplicaConfig::instance().waitForFullCommOnStartup ? clusterSize_ : quorumSize_;
-  if (ReplicaConfig::instance().getkeyExchangeOnStart()) {
+  if (ReplicaConfig::instance().getkeyExchangeOnStart() && exchanged()) {
     ConcordAssertGE(num_loaded, liveQuorumSize);
   }
   LOG_INFO(KEY_EX_LOG, "building crypto system after state transfer");

Original file line number	Diff line number	Diff line change
`@@ -134,7 +134,7 @@ void KeyExchangeManager::loadPublicKeys() {`
`134`	`134`	`// after State Transfer public keys for all replicas are expected to exist`
`135`	`135`	`auto num_loaded = publicKeys_.loadAllReplicasKeyStoresFromReservedPages();`
`136`	`136`	`uint32_t liveQuorumSize = ReplicaConfig::instance().waitForFullCommOnStartup ? clusterSize_ : quorumSize_;`
`137`		`- if (ReplicaConfig::instance().getkeyExchangeOnStart()) {`
	`137`	`+ if (ReplicaConfig::instance().getkeyExchangeOnStart() && exchanged()) {`
`138`	`138`	`ConcordAssertGE(num_loaded, liveQuorumSize);`
`139`	`139`	`}`
`140`	`140`	`LOG_INFO(KEY_EX_LOG, "building crypto system after state transfer");`