CN112865959A - Consensus method of distributed node equipment, node equipment and distributed network - Google Patents

Abstract

This application is applicable to the technical field of distributed networks, and provides a consensus method for distributed node devices, node devices, distributed networks and media, wherein the consensus method includes: transaction information sent to a client in a trusted execution environment Carry out numbering, and broadcast the transaction information and the numbered value of the transaction information to each slave node device; submit the transaction information when receiving the confirmation information for the numbered value returned by the first preset number of slave node devices; confirmation information It is generated when the slave node device determines that the serial number value of the transaction information is not occupied by other transaction information; in the trusted execution environment, based on the first preset number of confirmation information, consensus information for the serial number value is generated and sent to each slave node. The device broadcasts the consensus information; the consensus information is used to instruct the slave node device to submit transaction information after it is confirmed as valid by the slave node device. The communication complexity is low, and the occurrence of malicious nodes in the consensus process can be avoided.

Description

Consensus method for distributed node device, node device and distributed network

technical field

The present application belongs to the technical field of distributed networks, and in particular, relates to a consensus method for distributed node devices, node devices, distributed networks, and computer-readable storage media.

Background technique

The consensus algorithm is the basis for maintaining consistency among various node devices in a distributed network. With the rapid development of distributed network technology, the prior art proposes different consensus algorithms for different distributed networks. For example, a Crash Fault Tolerance (CFT) consensus algorithm is proposed for a distributed network containing faulty nodes, and a Byzantine Fault Tolerance (Byzantine Fault Tolerance) consensus algorithm is proposed for a distributed network containing faulty nodes and malicious nodes.

The consensus process and communication complexity between node devices corresponding to different consensus algorithms are different. For example, when node devices perform consensus based on the BFT consensus algorithm, each node device needs to communicate with other node devices; and when node devices perform consensus based on the CFT consensus algorithm, each slave node device only needs to communicate with the master node device. Communication is enough. It can be seen that the communication complexity of node devices based on BFT consensus algorithm is much higher than that of node devices based on CFT consensus algorithm. However, although the communication complexity of node devices based on CFT consensus algorithm is consensus The complexity is low, but the node device cannot solve the problem of node evil when consensus is based on the CFT consensus algorithm.

SUMMARY OF THE INVENTION

In view of this, the embodiments of the present application provide a consensus method for distributed node devices, a node device, a distributed network, and a computer-readable storage medium, so as to solve the problem that the existing consensus methods of distributed node devices cannot solve the problem of malicious nodes Or technical problems with high communication complexity.

In a first aspect, an embodiment of the present application provides a consensus method for distributed node devices, which is applied to master node devices in a distributed network. The consensus method includes:

Number the transaction information sent by the client in the trusted execution environment, and broadcast the transaction information and the number value of the transaction information to each slave node device;

Submit the transaction information when receiving a first preset number of confirmation information for the serial number value returned by the slave node device; the confirmation information is the serial number value of the transaction information determined by the slave node device Returned when it is not occupied by other transaction information;

In the trusted execution environment, consensus information for the number value is generated based on the first preset number of the confirmation information, and the consensus information is broadcast to each of the slave node devices; the consensus information is in After being confirmed as valid by the slave node device, the slave node device is instructed to submit the transaction information.

Optionally, after the transaction information sent by the client is numbered in the trusted execution environment, the consensus method further includes:

generating first secret information corresponding to the serial number value and an electronic signature of the first secret information in the trusted execution environment;

generating a shared key of each node device corresponding to the serial number value based on the first secret information in the trusted execution environment;

Encrypting the shared key of each of the slave node devices in the trusted execution environment to obtain the ciphertext of the shared key of each of the slave node devices;

Broadcasting the electronic signature of the first secret information and the ciphertext of the shared key of each of the slave node devices to each of the slave node devices.

Optionally, the submitting the transaction information when receiving the first preset number of confirmation information for the serial number value returned by the slave node device includes:

The transaction information is submitted when a first preset number of its own shared keys returned from the slave node devices are received.

Optionally, generating consensus information for the serial number value based on the first preset number of the confirmation information in the trusted execution environment, and broadcasting the consensus information to each of the slave node devices ,include:

generating, in the trusted execution environment, the second secret information corresponding to the serial number value based on the shared keys of the first preset number of the slave node devices;

The second secret information is broadcast to each of the slave node devices.

Optionally, generating the first secret information corresponding to the serial number value and the electronic signature of the first secret information in the trusted execution environment includes:

If the transaction information corresponding to the serial number value has not been submitted, first secret information corresponding to the serial number value and an electronic signature of the first secret information are generated in the trusted execution environment.

In a second aspect, the embodiments of the present application provide another consensus method for distributed node devices, which is applied to slave node devices in a distributed network. The consensus method includes:

When receiving the transaction information broadcasted by the master node device and the serial number value of the transaction information, if it is determined that the serial number value of the transaction information is not occupied by other transaction information, the master node device sends a message for the serial number value to the master node device. confirmation information;

When receiving the consensus information for the number value broadcast by the master node device, if it is confirmed that the consensus information is valid, the transaction information is submitted.

Optionally, the consensus method further includes:

When receiving the electronic signature of the first secret information corresponding to the number value broadcasted by the master node device and the ciphertext of the shared key of the slave node device itself, decrypt its own trusted execution environment in its own trusted execution environment. The ciphertext of the shared key, to obtain the shared key of itself;

The shared key of itself and the electronic signature of the first secret information are stored in the trusted execution environment.

Optionally, the sending confirmation information for the serial number value to the master node device includes:

Send the shared key of itself to the master node device.

Optionally, when receiving consensus information for the serial number value broadcast by the master node device, if it is confirmed that the consensus information is valid, submitting the transaction information, including:

When receiving the second secret information corresponding to the number value broadcasted by the master node device, adopt the validity of the electronic signature of the first secret information to the second secret information in the trusted execution environment Verification is performed, and the transaction information is submitted after confirming that the second secret information is valid.

Optionally, the electronic signature of the first secret information is a hash value of the first secret information; correspondingly, the electronic signature of the first secret information is used in the trusted execution environment to perform a verify the validity of the second secret information, and submit the transaction information after confirming that the second secret information is valid, including:

generating a hash value of the second secret information in the trusted execution environment;

If the hash value of the second secret information is the same as the hash value of the first secret information, the transaction information is submitted.

In a third aspect, the embodiments of the present application provide another consensus method for distributed node devices, which is applied to a distributed network. The consensus method includes:

The master node device numbers the transaction information sent by the client in its trusted execution environment, and broadcasts the transaction information and the number value of the transaction information to each slave node device;

When the slave node device receives the transaction information and the serial number value of the transaction information broadcast by the master node device, if it is determined that the serial number value of the transaction information is not occupied by other transaction information, it will report to the master node device. The node device sends confirmation information for the number value;

The master node device submits the transaction information when receiving a first preset number of confirmation messages for the serial number value returned by the slave node devices;

The master node device generates consensus information for the number value based on the first preset number of the confirmation information in its trusted execution environment, and broadcasts the consensus information to each of the slave node devices;

When the slave node device receives the consensus information for the serial number value broadcast by the master node device, if it is confirmed that the consensus information is valid, it submits the transaction information.

Optionally, after the master node device numbers the transaction information sent by the client in its trusted execution environment, the consensus method further includes:

The master node device generates, in its trusted execution environment, the first secret information corresponding to the serial number value and an electronic signature of the first secret information;

The master node device generates, in its trusted execution environment, the shared key of each node device corresponding to the serial number value based on the first secret information;

The master node device encrypts the shared key of each of the slave node devices in its trusted execution environment to obtain the ciphertext of the shared key of each of the slave node devices;

The master node device broadcasts the electronic signature of the first secret information and the ciphertext of the shared key of each of the slave node devices to each of the slave node devices;

When the slave node device receives the electronic signature of the first secret information corresponding to the serial number value broadcasted by the master node device and the ciphertext of the shared key of each of the slave node devices, in its trusted execution environment Decrypt the ciphertext of the shared key of itself in the middle to obtain the shared key of itself;

The slave node device stores its own shared key and the electronic signature of the first secret information in its own trusted execution environment.

Optionally, the slave node device sends confirmation information for the serial number value to the master node device, including:

sending, by the slave node device, the shared key of the slave node device itself to the master node device;

Correspondingly, the master node device submits the transaction information when receiving the first preset number of confirmation messages for the serial number value returned by the slave node devices, including:

The master node device submits the transaction information when receiving a first preset number of the slave node devices' own shared keys returned by the slave node devices.

Optionally, the master node device generates consensus information for the serial number value based on the first preset number of the confirmation information in its trusted execution environment, and broadcasts the consensus information to each of the slave node devices. Consensus information, including:

The master node device generates second secret information corresponding to the serial number value based on the shared keys of the first preset number of slave node devices in its trusted execution environment, and sends the second secret information to each of the slave node devices. broadcasting the second secret information;

Correspondingly, when the slave node device receives the consensus information for the number value broadcasted by the master node device, if it confirms that the consensus information is valid, then submits the transaction information, including:

When the slave node device receives the second secret information corresponding to the serial number value broadcast by the master node device, it adopts the electronic signature pair of the first secret information in the trusted execution environment of the slave node device. The validity of the second secret information is verified, and the transaction information is submitted after confirming that the second secret information is valid.

In a fourth aspect, an embodiment of the present application provides a node device, including:

a number value determination unit, configured to number the transaction information sent by the client in a trusted execution environment, and broadcast the transaction information and the number value of the transaction information to each slave node device;

A first transaction processing unit, configured to submit the transaction information when receiving a first preset number of confirmation information returned by the slave node device for the serial number value; the confirmation information is that the slave node device is in Returned when it is determined that the serial number value of the transaction information is not occupied by other transaction information;

A consensus information generating unit, configured to generate consensus information for the number value based on the first preset number of the confirmation information in the trusted execution environment, and broadcast the consensus to each of the slave node devices information; the consensus information instructs the slave node device to submit the transaction information after being confirmed to be valid by the slave node device; and/or

The confirmation information sending unit is used to, when receiving the transaction information broadcasted by the master node device and the serial number value of the transaction information, if it is determined that the serial number value of the transaction information is not occupied by other transaction information, send the transaction information to the master node device. sending a confirmation message for the numbered value;

The second transaction processing unit is configured to submit the transaction information if it is confirmed that the consensus information is valid when the consensus information for the serial number value broadcasted by the master node device is received.

In a fifth aspect, an embodiment of the present application provides a node device, where the node device includes a processor, a memory, and a computer program stored in the memory and executable on the processor, where the processor executes the The computer program implements the consensus method described in the first aspect, any optional manner of the first aspect, the second aspect, or any optional manner of the second aspect.

In a sixth aspect, an embodiment of the present application provides a computer-readable storage medium, where the computer-readable storage medium stores a computer program, and when the computer program is executed by a processor, implements any of the first aspect and the first aspect. The consensus method described in the optional manner, the second aspect, or any optional manner of the second aspect.

In a seventh aspect, an embodiment of the present application provides a computer program product that, when the computer program product runs on a node device, enables the node device to execute the first aspect, any optional manner of the first aspect, the second aspect, or the second aspect The consensus method described in any optional manner of the aspect.

In an eighth aspect, an embodiment of the present application provides a distributed network, including multiple node devices, where the node devices are configured to perform the first aspect, any optional manner of the first aspect, the second aspect, or any optional method of the second aspect. The consensus method described in the selection method.

Implementing the consensus method, node device, distributed network, computer-readable storage medium, and computer program product of a distributed node device provided by the embodiments of the present application have the following beneficial effects:

In the consensus method for distributed node devices provided by the embodiments of the present application, since the master node device numbers the transaction information sent by the client in a trusted execution environment, and the master node device broadcasts the transaction information and the transaction information to the slave node devices After the serial number value is sent to, the slave node device will detect the serial number value of the transaction information, and will only return the confirmation of the serial number value of the transaction information to the master node device when it is confirmed that the serial number value of the transaction information is not occupied by other transaction information. information; and after the master node device broadcasts the consensus information for the number value of the transaction information to the slave node device, the slave node device will verify the validity of the consensus information, and will submit the transaction information only after confirming that the consensus information is valid. , so as to avoid the occurrence of malicious nodes in the consensus process. In addition, in the consensus process of node devices, each slave node device only needs to communicate with the master node device, which reduces the communication complexity in the node device consensus process compared to the node device consensus based on the existing BFT consensus algorithm. .

Description of drawings

In order to illustrate the technical solutions in the embodiments of the present application more clearly, the following briefly introduces the accompanying drawings that need to be used in the description of the embodiments or the prior art. Obviously, the drawings in the following description are only for the present application. In some embodiments, for those of ordinary skill in the art, other drawings can also be obtained according to these drawings without any creative effort.

1 is a schematic structural diagram of a distributed network according to an embodiment of the present application;

FIG. 2 is a schematic flowchart of a consensus method for distributed node devices according to an embodiment of the present application;

FIG. 3 is a schematic flowchart of a consensus method for distributed node devices according to another embodiment of the present application;

FIG. 4 is a schematic structural diagram of a node device according to an embodiment of the present application;

FIG. 5 is a schematic structural diagram of a node device according to another embodiment of the present application.

Detailed ways

In the following description, for the purpose of illustration rather than limitation, specific details such as a specific system structure and technology are set forth in order to provide a thorough understanding of the embodiments of the present application. However, it will be apparent to those skilled in the art that the present application may be practiced in other embodiments without these specific details. In other instances, detailed descriptions of well-known systems, devices, circuits, and methods are omitted so as not to obscure the description of the present application with unnecessary detail.

It should be understood that, as used in this specification and the appended claims, the term "and/or" refers to and including any and all possible combinations of one or more of the associated listed items. In addition, in the description of the specification of the present application and the appended claims, the terms "first", "second", "third", etc. are only used to distinguish the description, and should not be construed as indicating or implying relative importance.

It should also be understood that references to "one embodiment" or "some embodiments" and the like described in the specification of this application mean that a particular feature, structure or characteristic described in connection with the embodiment is included in one or more embodiments of the application . Thus, appearances of the phrases "in one embodiment," "in some embodiments," "in other embodiments," etc. in various places in this specification are not necessarily all referring to the same embodiment, but rather Means "one or more but not all embodiments" unless specifically emphasized otherwise. The terms "including", "including", "having" and their variants mean "including but not limited to" unless specifically emphasized otherwise.

Please refer to FIG. 1. FIG. 1 is a schematic structural diagram of a distributed network according to an embodiment of the present application. As shown in FIG. 1 , the distributed network may include a plurality of distributed node devices 11 , and each node device 11 can perform peer-to-peer (P2P) communication with any other node device 11 in the distributed network.

In a specific application, the above-mentioned distributed network may be a blockchain, or may be other types of distributed networks, and the specific type of the distributed network is not particularly limited here.

The node device 11 may be an electronic device with computing and storage functions. The node device 11 may communicate with the corresponding client, for example, the node device 11 may receive transaction information sent by the corresponding client, and perform consensus on the transaction information. As an example and not a limitation, when the node device 11 is a server of a certain application, the corresponding client may be the client of the application.

In the embodiment of the present application, a central processing unit (central processing unit, CPU) of each node device 11 is configured with a trusted execution environment (Trusted Execution Environment, TEE). Trusted execution environment is an instruction set extension based on CPU. It can divide a secure area in the CPU that is completely isolated from the outside as a secure execution environment. Any program or data can be run or stored in this secure area. . The trusted execution environment can ensure the confidentiality and integrity of the programs and data running or stored in the secure area, thereby ensuring that the programs or data running or stored in the secure area will not be leaked. The part of the CPU other than the trusted execution environment is an untrusted space. The untrusted space cannot interfere with the running process of the program in the trusted execution environment, and the data generated in the trusted execution environment cannot be stored in the untrusted space. In other words, the consensus process of the distributed node device based on the trusted execution environment will only have the problem of node collapse, but not the problem of node evil (ie, Byzantine error).

By way of example and not limitation, the trusted execution environment may be a software guard extension (SGX) based on an Intel (Intel) chip. By adding a new instruction set and memory access mechanism to the Intel architecture, SGX allows applications to implement a container called enclave, and at the same time, a protected exclusive area is divided in the address space of the corresponding application, which is the enclave container. The programs and data in the enclave container provide confidentiality and integrity protection, so that even if the operating system of the node device is compromised, the programs and data in the enclave container will not be affected.

Each node device 11 in the distributed network ensures the consistency of data among each other through consensus operation. In the embodiment of the present application, each node device 11 in the distributed network will first vote to select one node device 11 as the master node device (ie, the leader) when performing a consensus operation. During the entire consensus process, as long as the master node change event is not triggered, the node device 11 will always act as the master node device; when the master node change event is triggered, each node device 11 will re-vote to select another node device 11 As the master node device, that is, the master node device may be any node device 11 in the distributed network, and each node device 11 in the distributed network may be selected as the master node device.

When each node device 11 in the distributed network performs a consensus operation, other node devices 11 in the distributed network except the master node device are all slave node devices (ie followers), and the distributed network only allows There is one master node device.

In this embodiment of the present application, the consensus process of the node device 11 may be divided into one term of office, and each time the master node device changes, it enters a new term. In order to distinguish different tenures, the embodiment of the present application may identify the tenure by the master node tenure value, that is, each tenure has a corresponding master node tenure value, and the master node tenure values corresponding to different tenures are different.

In an embodiment of the present application, the node device 11 may determine the term value of the master node for each term based on a term value increment policy incremented by a first value. The initial value of the term of office of the master node (that is, the term value of the master node for the first term) and the first value can be determined according to actual needs.

For example, if the first term has a term of 1 and the first term is 1, then the term of the second term corresponds to a term of 2, the term of the third term corresponds to 3, and the nth term corresponds to a term of 2. The term value of the master node corresponding to each term is n.

The consensus method of the distributed node device provided by the embodiment of the present application is described in detail below:

Please refer to FIG. 2. FIG. 2 is a schematic flowchart of a consensus method for distributed node devices provided by an embodiment of the present application. The execution body of the consensus method for distributed node devices may be the distributed network shown in FIG. 1. . FIG. 2 takes a slave node device as an example to illustrate the interaction process between the master node device and the slave node device in the consensus process of the distributed node device. As shown in Figure 2, the consensus method of the distributed node device may include S21 to S25, which are detailed as follows:

S21: The master node device numbers the transaction information sent by the client in its trusted execution environment, and broadcasts the transaction information and the number value of the transaction information to each slave node device.

In this embodiment, when the master node device receives the transaction information sent by the client, it can number the transaction information in its trusted execution environment to determine the number value of the transaction information.

In a specific application, the transaction information sent by the client may be one or more.

In an embodiment of the present application, the serial number value of the transaction information may be composed of the term value of the master node corresponding to the current term and the sequence number of the transaction information in the current term. The current term refers to the term in which the master node device receives the transaction information.

In an implementation manner of this embodiment, the master node device may determine the sequence number of each transaction information in the current term based on a sequence number incrementing strategy in which the increment is a second value. The second value may be set according to actual requirements, for example, the second value may be 1.

In an embodiment of the present application, when the master node device broadcasts transaction information and the serial number value of the transaction information to the slave node devices, the transaction information can be associated with the serial number value of the transaction information, and broadcast to each slave node device. Transaction information with an associated relationship and the serial number value of the transaction information.

S22: When the slave node device receives the transaction information and the serial number value of the transaction information broadcasted by the master node device, if it is determined that the serial number value of the transaction information is not occupied by other transaction information, it sends the transaction information to the The master node device sends confirmation information for the number value.

In this embodiment, in order to prevent multiple pieces of different transaction information from using the same number value, thereby affecting the consensus result of the node device on the transaction information, each slave node device receives the transaction information broadcast by the master node device and the number value of the transaction information. After that, it can be detected whether the serial number value of each transaction information has been occupied by other transaction information.

Specifically, the slave node device may compare the serial number value of each transaction information with the serial number value of each other transaction information received from the slave node device.

In an embodiment of the present application, if the slave node device determines that the serial number value of other transaction information does not have the same serial number value as the serial number value of the transaction information, it means that the serial number value of the transaction information is not occupied by other transaction information, At this time, the slave node device may send confirmation information for the serial number value of the transaction information to the master node device. The confirmation information for the serial number value of the transaction information is used to indicate that the slave node device has confirmed that the serial number value of the transaction information is not occupied by other transaction information.

In another embodiment of the present application, if the slave node device determines that the serial number value of other transaction information has the same serial number value as the serial number value of the transaction information, it means that the serial number value of the transaction information has been occupied by other transaction information, At this point, the slave node device can trigger the master node change event. After the master node change event is triggered, each node device enters the master node election link. Since the specific process of the master node election link is the prior art, it will not be described in detail here.

S23: The master node device submits the transaction information when receiving a first preset number of confirmation messages for the serial number value returned by the slave node devices.

Usually, when the master node device obtains the confirmation information of the serial number value of a certain transaction information from more than half of the node devices (including itself), it is considered that the serial number value of the transaction information has been confirmed by all the node devices. Let the number not be less than n/2, where n is the total number of node devices included in the distributed network. Exemplarily, for example, if n=5, the first preset number may be 3; if n=4, the first preset number may also be 3; if n=3, the first preset number may be 2.

In an embodiment of the present application, the node device submitting the transaction information may specifically be: the node device executes a transaction operation corresponding to the transaction information.

In this embodiment of the present application, after receiving the first preset number of confirmation messages for the serial number value of a certain transaction information returned by the slave node devices, the master node device may also send the transaction information to the client that sends the transaction information and the serial number value of the transaction information, so that the client can determine whether the transaction information sent by it has been agreed by various node devices.

S24: The master node device generates consensus information for the number value based on the first preset number of the confirmation information in its trusted execution environment, and broadcasts the consensus information to each of the slave node devices .

In this embodiment of the present application, in order to ensure the consistency of operations or data of each node device, after submitting the transaction information, the master node device also targets the transaction information in its trusted execution environment based on the first preset number received. The confirmation information for the number value and the confirmation information for the number value generated by the master node device itself, generate consensus information for the number value.

Among them, the consensus information for the serial number value of a certain transaction information is used to indicate that the serial number value of the transaction information has been confirmed by most of the node devices.

After the master node device generates consensus information on the serial number value of a certain transaction information, it broadcasts the consensus information on the serial number value of the transaction information to each slave node device.

S25: When the slave node device receives the consensus information for the serial number value broadcast by the master node device, if it is confirmed that the consensus information is valid, the transaction information is submitted.

In the embodiment of the present application, after receiving the consensus information for the serial number value of a certain transaction information broadcast by the master node device, the slave node device needs to verify whether the consensus information is valid, that is, verify whether the consensus information can indeed represent the transaction information. The number value has been confirmed by most node devices.

In an embodiment of the present application, the slave node device may detect whether the consensus information for a certain transaction information number value includes confirmation information for the number value by a second preset number of node devices in the consensus information. efficient. The second preset number is the sum of the first preset number and 1.

Specifically, if the slave node device confirms that the consensus information for the number value of a certain transaction information includes the confirmation information of the second preset number of node devices for the number value, the consensus information is confirmed to be valid; if the slave node device confirms that the number value is valid for If the consensus information of the serial number value of a certain transaction information does not include the confirmation information of the second preset number of node devices for the serial number value, the consensus information is confirmed to be invalid.

In an embodiment of the present application, if the slave node device confirms that the consensus information for the serial number value of a certain transaction information is valid, it submits the transaction information. Wherein, submitting the transaction information from the node device may be: executing the transaction operation corresponding to the transaction information from the node device.

In another embodiment of the present application, if the slave node device confirms that the consensus information for the serial number value of a certain transaction information is invalid, the master node change event is triggered.

In a specific application, after confirming that the consensus information for the serial number value of a certain transaction information is valid, the slave node device can also send the transaction information and the serial number value of the transaction information to the client that sent the transaction information, so that the client can determine Whether the transaction information sent by it has been agreed by each node device.

Specifically, for a certain transaction information sent by the client, if the client receives the serial number values of the transaction information sent by a second preset number of different node devices, and the second preset number of serial numbers are the same, the client The terminal determines that the transaction information has been agreed by each node device.

It can be seen from the above that, in the consensus method for distributed node devices provided by the embodiments of this application, since the master node device numbers the transaction information sent by the client in a trusted execution environment, and the master node device broadcasts transactions to the slave node devices After the information and the serial number value of the transaction information are sent to, the slave node device will detect the serial number value of the transaction information, and will only return the transaction information to the master node device when it confirms that the serial number value of the transaction information is not occupied by other transaction information. The confirmation information of the number value of the transaction information; and after the master node device broadcasts the consensus information for the number value of the transaction information to the slave node device, the slave node device will verify the validity of the consensus information, and only after confirming that the consensus information is valid. The transaction information will be submitted, thus avoiding the occurrence of malicious nodes during the consensus process. In addition, in the consensus process of node devices, each slave node device only needs to communicate with the master node device, which reduces the communication complexity in the node device consensus process compared to the node device consensus based on the existing BFT consensus algorithm. .

Please refer to FIG. 3 , which is a schematic flowchart of a consensus method for distributed node devices according to another embodiment of the present application. Compared with the embodiment corresponding to FIG. 2 , the consensus method of the distributed node device in this embodiment may further include S31 to S36 after S21 , and the details are as follows:

S31: The master node device generates, in its trusted execution environment, first secret information corresponding to the serial number value and an electronic signature of the first secret information.

In this embodiment, for each transaction information, the master node device may randomly generate a first secret information corresponding to the serial number value of the transaction information in its trusted execution environment.

Specifically, in an embodiment of the present application, the master node device may call the random number generation function TEE.Random() provided by the trusted execution environment to generate a random number for each transaction information, and determine the random number to be the same as the The first secret information corresponding to the serial number value of the transaction information.

The electronic signature of the first secret information is used to verify the first secret information.

In an embodiment of the present application, the electronic signature of the first secret information may be a hash value of the first secret information. Based on this, after obtaining the first secret information corresponding to the serial number value of the transaction information, the master node device calculates the hash value of the first secret information, and the hash value of the first secret information is the electronic value of the first secret information. sign.

In another embodiment of the present application, S31 may specifically include the following steps:

If the master node device confirms that the transaction information corresponding to the serial number value has not been submitted, it generates first secret information corresponding to the serial number value and an electronic signature of the first secret information in its trusted execution environment.

In this embodiment, in order to prevent the node devices from repeatedly performing multiple consensus operations on the same transaction information, each node device may record the serial number value of the submitted transaction information. Based on this, after the master node device numbers each transaction information, the serial number value of the transaction information can be compared with the serial number value of each transaction information submitted by the master node device. When the master node device detects that the number value of the submitted transaction information does not have the same number value as the number value of the transaction information, it confirms that the transaction information has not been submitted. At this time, the master node device is in its trusted execution environment. generate the first secret information corresponding to the serial number value of the transaction information and the electronic signature of the first secret information.

S32: The master node device generates a shared key of each node device corresponding to the serial number value based on the first secret information in its trusted execution environment.

In this embodiment, after generating the first secret information corresponding to the serial number value of the transaction information, the master node device can split the first secret information into n shares of shared keys based on a preset secret sharing algorithm in its trusted execution environment , where n is the total number of node devices included in the distributed network, that is, each shared key obtained by splitting corresponds to one node device.

It should be noted that, since the key splitting operation of the first secret information is performed in the trusted execution environment of the master node device, the master node device itself does not know the n shares of the shared key. Only after the slave node device informs the master node device of its shared key, the master node device will have the shared key of the slave node device.

In the embodiment of the present application, after the master node device has the shared keys of the second preset number of node devices (including itself), the first secret information can be restored based on the second preset number of shared keys.

In a specific application, the preset secret sharing algorithm may be any existing secret sharing algorithm.

S33: The master node device encrypts the shared key of each of the slave node devices in its trusted execution environment to obtain the ciphertext of the shared key of each of the slave node devices.

In this embodiment, in order to improve the security of the shared key of the slave node device and ensure that the shared key of each slave node device is not known by other slave node devices, the master node device broadcasts the shared key of the slave node device to the slave node devices. When the key is obtained, the shared key of each slave node device can be encrypted in its trusted execution environment to obtain the ciphertext of the shared key of each slave node device.

In an embodiment of the present application, the master node device may use the public key in the asymmetric key possessed by each slave node device to encrypt the shared key of each slave node device respectively. In this way, after the slave node device receives the ciphertext of the shared key, it can only decrypt its own shared key through the private key in the asymmetric key it owns, but cannot decrypt the shared keys of other slave node devices. , thereby ensuring that each slave node device only knows its own shared key.

S34: The master node device broadcasts the electronic signature of the first secret information and the ciphertext of the shared key of each of the slave node devices to each of the slave node devices.

In this embodiment, after obtaining the ciphertext of the shared key of each slave node device corresponding to the serial number value of the transaction information, the master node device broadcasts the electronic signature of the first secret information and the shared secret key of each slave node device to each slave node device The ciphertext of the key.

S35: When the slave node device receives the electronic signature of the first secret information corresponding to the serial number value broadcast by the master node device and the ciphertext of the shared key of each slave node device, Decrypt the ciphertext of the shared key of itself in the trusted execution environment to obtain the shared key of itself.

After the slave node device receives the electronic signature of the first secret information corresponding to the serial number value of a certain transaction information broadcast by the master node device and the ciphertext of the shared key of each slave node device corresponding to the serial number value, the slave node device can In the trusted execution environment, the private key of the asymmetric key owned by it is used to decrypt the ciphertext of its own shared key to obtain its own shared key.

It should be noted that, in another embodiment of the present application, if a slave node device cannot correctly decrypt its own shared key, the slave node device can trigger a master node change event.

S36: The slave node device stores its own shared key and the electronic signature of the first secret information in its own trusted execution environment.

In this embodiment, after obtaining its own shared key from the node device, the first secret information corresponding to the serial number value of the transaction information and its own shared key can be stored in its trusted execution environment.

Based on the embodiment corresponding to FIG. 3 , in an implementation manner, S22 may specifically include the following steps:

The slave node device sends the shared key of the slave node device itself to the master node device.

Correspondingly, S23 may specifically include the following steps:

The master node device submits the transaction information when receiving a first preset number of the slave node devices' own shared keys returned by the slave node devices.

In this implementation, when the slave node device determines that the serial number value of a certain transaction information is not occupied by other transaction information, the slave node device sends its own shared key corresponding to the serial number value to the master node device.

After the master node device receives the first preset number of shared keys for the serial number value of the transaction information returned by the slave node devices, it confirms that the serial number value of the transaction information has been confirmed by most of the node devices. At this time, the master node device can Submit the transaction information.

In another implementation manner, S24 may specifically include the following steps:

The master node device generates second secret information corresponding to the serial number value based on the shared keys of the first preset number of slave node devices in its trusted execution environment, and sends the second secret information to each of the slave node devices. The second secret information is broadcast.

Correspondingly, S25 may specifically include the following steps:

When the slave node device receives the second secret information corresponding to the serial number value broadcast by the master node device, it adopts the electronic signature pair of the first secret information in the trusted execution environment of the slave node device. The validity of the second secret information is verified, and the transaction information is submitted after confirming that the second secret information is valid.

In this embodiment, after receiving the first preset number of shared keys for the serial number value of the transaction information returned by the slave node device, the master node device may use the first preset number of shared keys in its trusted execution environment The shared key and the shared key of the master node device itself generate second secret information corresponding to the serial number value of the transaction information.

In a specific application, the master node device may aggregate the first preset number of shared keys and its own shared keys into the second secret information based on a preset secret sharing algorithm.

After obtaining the second secret information corresponding to the serial number value of the transaction information, the master node device broadcasts the second secret information to each slave node device. After receiving the second secret information corresponding to the serial number value of a certain transaction information broadcast by the master node device, the slave node device can use the electronic signature pair of the first secret information corresponding to the serial number value of the transaction information in its trusted execution environment. The validity of the second secret information is verified. When the slave node device confirms that the second secret information corresponding to the serial number value of the transaction information is valid, it indicates that the second secret information is indeed generated by the master node device based on the shared keys of the second preset number of node devices, that is, the master node. The device has indeed received the first preset number of shared keys for the serial number value of the transaction information sent from the node device. The second preset number is the sum of the first preset number and 1.

In a specific application, when the electronic signature of the first secret information is the hash value of the first secret information, S25 may specifically include the following steps:

generating a hash value of the second secret information from the node device in its trusted execution environment;

If the slave node device confirms that the hash value of the second secret information is the same as the hash value of the first secret information, it submits the transaction information.

In this embodiment, when the slave node device determines that the hash value of the second secret information corresponding to the serial number value of a certain transaction information is the same as the serial number value of the first secret information corresponding to the serial number value, it means that the first secret information corresponding to the serial number value is the same. The second secret information is the same as the first secret information for the serial number value, that is, it indicates that the second secret information corresponding to the serial number value of the transaction information is valid.

In a specific application, after generating the second secret information corresponding to the serial number value of a certain transaction information, the master node device can return the transaction information, the serial number value of the transaction information and the serial number of the transaction information to the client that sent the transaction information The value corresponds to the second secret information.

After confirming that the second secret information corresponding to the serial number value of the transaction information is valid, the slave node device can also return the transaction information, the serial number value of the transaction information, and the serial number value of the transaction information to the client that sent the transaction information. Second Secret Information.

Based on this, for a certain transaction information, when the serial number value of the transaction information received by the client from a second preset number of different node devices and the second secret information corresponding to the serial number value of the transaction information are the same, it can be It is considered that the transaction information has been agreed by each node device.

It can be seen from the above that the consensus algorithm of the distributed node device provided in this embodiment splits the first secret information corresponding to the serial number value of the transaction information into multiple shared keys, and uses the multiple shared keys to separate Represents the confirmation information of each slave node device for the serial number value of the transaction information. Therefore, when the master node device receives the first preset number of slave node devices to return the shared key for the serial number value, it can be based on the first preset number. Set a number of shared keys and their own shared keys to restore the first secret information of the number value. Based on this, the slave node device can directly verify the validity of the second secret information for the number value recovered by the master node device through the electronic signature of the first secret information corresponding to the number value, which can not only avoid the occurrence of node device consensus process Nodes do evil, and it can improve the consensus efficiency between nodes.

It should be understood that the size of the sequence numbers of the steps in the above embodiments does not mean the sequence of execution, and the execution sequence of each process should be determined by its function and internal logic, and should not constitute any limitation to the implementation process of the embodiments of the present application.

Based on the consensus method for distributed node devices provided by the foregoing embodiments, the embodiments of the present invention further provide embodiments of node devices that implement the foregoing method embodiments.

Please refer to FIG. 4 , which is a schematic structural diagram of a node device according to an embodiment of the present application. In the embodiment of the present application, each unit included in the node device is used to execute each step in the embodiment corresponding to FIG. 2 to FIG. 3 . For details, please refer to FIG. 2 to FIG. 3 and the related descriptions in the corresponding embodiments of FIG. 2 to FIG. 3 . For convenience of explanation, only the parts related to this embodiment are shown. As shown in FIG. 4 , the node device 40 may include: a number value determination unit 41 , a first transaction processing unit 42 and a consensus information generating unit 43 ; and/or a confirmation information sending unit 44 and a second transaction processing unit 45 . in:

The number value determination unit 41 is used for the master node device to number the transaction information sent by the client in its trusted execution environment, and to broadcast the transaction information and the number value of the transaction information to each slave node device.

The first transaction processing unit 42 is used for the master node device to submit the transaction information when receiving confirmation information for the serial number value returned by a first preset number of the slave node devices.

The consensus information generating unit 43 is used for the master node device to generate consensus information for the serial number value based on the first preset number of the confirmation information in its trusted execution environment, and report it to each of the slave node devices. Broadcast the consensus information.

The confirmation information sending unit 44 is used for the slave node device, when receiving the transaction information and the serial number value of the transaction information broadcast by the master node device, if it is determined that the serial number value of the transaction information is not matched by other transaction information. If it is occupied, then send confirmation information for the number value to the master node device.

The second transaction processing unit 45 is configured to, when the slave node device receives the consensus information for the serial number value broadcast by the master node device, submit the transaction information if it is confirmed that the consensus information is valid.

Optionally, the node device 40 further includes a secret information generation unit, a shared key generation unit, an encryption/decryption unit, a shared key distribution unit, and a first storage unit. in:

The secret information generating unit is used for the master node device to generate the first secret information corresponding to the serial number value and the electronic signature of the first secret information in its trusted execution environment.

The shared key generation unit is used for the master node device to generate the shared key of each node device corresponding to the serial number value based on the first secret information in its trusted execution environment.

The encryption and decryption unit is used for the master node device to encrypt the shared key of each of the slave node devices in its trusted execution environment to obtain the ciphertext of the shared key of each of the slave node devices.

The shared key distribution unit is used for the master node device to broadcast the electronic signature of the first secret information and the ciphertext of the shared key of each of the slave node devices to each of the slave node devices.

The encryption and decryption unit is also used for the electronic signature of the first secret information corresponding to the number value broadcast by the slave node device and the shared key of each of the slave node devices when the slave node device receives the electronic signature. When the ciphertext is decrypted in its trusted execution environment, the ciphertext of its own shared key is obtained to obtain its own shared key.

The first storage unit is used for the slave node device to store its own shared key and the electronic signature of the first secret information in its own trusted execution environment.

Optionally, the secret information generating unit is specifically configured to: if the master node device confirms that the transaction information corresponding to the serial number value has not been submitted, generate the first secret information corresponding to the serial number value in its trusted execution environment. and an electronic signature of the first secret message.

Optionally, the confirmation information sending unit 44 is specifically configured to: the slave node device sends the shared key of the slave node device itself to the master node device.

Correspondingly, the first transaction processing unit 42 is specifically configured to: the master node device submits the transaction information when receiving the shared key of the slave node device itself returned by the first preset number of the slave node devices .

Optionally, the consensus information generating unit 43 is specifically configured to: the master node device in its trusted execution environment generates a corresponding number value based on the shared keys of the first preset number of slave node devices. second secret information, and broadcast the second secret information to each of the slave node devices.

Correspondingly, the second transaction processing unit 45 is specifically configured to: when the slave node device receives the second secret information corresponding to the serial number value broadcast by the master node device, perform trusted execution of the slave node device The environment uses the electronic signature of the first secret information to verify the validity of the second secret information, and submits the transaction information after confirming that the second secret information is valid.

Optionally, the second transaction processing unit 45 is specifically used for:

generating a hash value of the second secret information from the node device in its trusted execution environment;

If the slave node device confirms that the hash value of the second secret information is the same as the hash value of the first secret information, it submits the transaction information.

It should be noted that the information exchange, execution process and other contents between the above modules are based on the same concept as the method embodiments of the present application. For specific functions and technical effects, please refer to the method embodiments section for details. Repeat.

FIG. 5 is a schematic structural diagram of a node device according to another embodiment of the present application. As shown in FIG. 5 , the node device 5 provided in this embodiment includes: a processor 50 , a memory 51 , and a computer program 52 stored in the memory 51 and running on the processor 50 , such as a distributed node device The corresponding procedure of the consensus method. When the processor 50 executes the computer program 52 , the steps in the above-mentioned embodiments of the consensus method for each distributed node device are implemented, for example, S21 to S25 shown in FIG. 2 . Alternatively, when the processor 50 executes the computer program 52, the functions of the modules/units in the above node device embodiments, for example, the functions of the units 41 to 45 shown in FIG. 4 are implemented.

Exemplarily, the computer program 52 can be divided into one or more modules/units, and the one or more modules/units are stored in the memory 51 and executed by the processor 50 to complete the present application. . The one or more modules/units may be a series of computer program instruction segments capable of performing specific functions, and the instruction segments are used to describe the execution process of the computer program 52 in the node device 5 . For example, the computer program 52 can be divided into a number value determination unit, a first transaction processing unit, and a consensus information generating unit; and/or a confirmation information sending unit and a second transaction processing unit. Please refer to FIG. 2 for specific functions of each unit. The relevant descriptions in the above embodiments are not repeated here.

The node device may include, but is not limited to, the processor 50 and the memory 51 . Those skilled in the art can understand that FIG. 5 is only an example of the node device 5, and does not constitute a limitation on the node device 5. It may include more or less components than the one shown, or combine some components, or different components For example, the node device may further include an input and output device, a network access device, a bus, and the like.

The so-called processor 50 may be a central processing unit (Central Processing Unit, CPU), or other general-purpose processors, digital signal processors (Digital Signal Processors, DSP), application specific integrated circuits (Application Specific Integrated Circuit, ASIC), Off-the-shelf programmable gate array (Field-Programmable Gate Array, FPGA) or other programmable logic devices, discrete gate or transistor logic devices, discrete hardware components, and the like. A general purpose processor may be a microprocessor or the processor may be any conventional processor or the like.

The memory 51 may be an internal storage unit of the node device 5 , such as a hard disk or a memory of the node device 5 . The memory 51 may also be an external storage device of the node device 5, for example, a plug-in hard disk, a smart memory card (Smart Media Card, SMC), a secure digital (Secure Digital, SD) equipped on the node device 5 card, flash card (Flash Card) and so on. Further, the memory 51 may also include both an internal storage unit of the node device 5 and an external storage device. The memory 51 is used to store the computer program and other programs and data required by the node device. The memory 51 can also be used to temporarily store data that has been output or will be output.

Embodiments of the present application also provide a computer-readable storage medium. A computer program is stored in the computer-readable storage medium, and when the computer program is executed by the processor, the above consensus method of the distributed node device can be implemented.

The embodiments of the present application provide a computer program product, when the computer program product runs on a node device, the node device implements the consensus method that can implement the above-mentioned distributed node device.

Those skilled in the art can clearly understand that, for the convenience and simplicity of description, only the division of the above-mentioned functional units and modules is used as an example. The module is completed, that is, the internal structure of the node device is divided into different functional units or modules, so as to complete all or part of the functions described above. Each functional unit and module in the embodiment may be integrated in one processing unit, or each unit may exist physically alone, or two or more units may be integrated in one unit, and the above-mentioned integrated units may adopt hardware. It can also be realized in the form of software functional units. In addition, the specific names of the functional units and modules are only for the convenience of distinguishing from each other, and are not used to limit the protection scope of the present application. For the specific working processes of the units and modules in the above-mentioned system, reference may be made to the corresponding processes in the foregoing method embodiments, which will not be repeated here.

In the above-mentioned embodiments, the description of each embodiment has its own emphasis. For parts that are not described or recorded in detail in a certain embodiment, reference may be made to the relevant descriptions of other embodiments.

Those of ordinary skill in the art can realize that the units and algorithm steps of each example described in conjunction with the embodiments disclosed herein can be implemented in electronic hardware, or a combination of computer software and electronic hardware. Whether these functions are performed in hardware or software depends on the specific application and design constraints of the technical solution. Skilled artisans may implement the described functionality using different methods for each particular application, but such implementations should not be considered beyond the scope of this application.

The above-mentioned embodiments are only used to illustrate the technical solutions of the present application, but not to limit them; although the present application has been described in detail with reference to the above-mentioned embodiments, those of ordinary skill in the art should understand that: it can still be used for the above-mentioned implementations. The technical solutions described in the examples are modified, or some technical features thereof are equivalently replaced; and these modifications or replacements do not make the essence of the corresponding technical solutions deviate from the spirit and scope of the technical solutions in the embodiments of the application, and should be included in the within the scope of protection of this application.

Claims (14)

1. A consensus method of distributed node equipment is applied to main node equipment in a distributed network, and is characterized in that the consensus method comprises the following steps:

numbering transaction information sent by a client in a trusted execution environment, and broadcasting the transaction information and the number value of the transaction information to each slave node device;

submitting the transaction information when receiving confirmation information which is returned by a first preset number of slave node devices and aims at the number value; the confirmation information is returned by the slave node equipment when the number value of the transaction information is determined not to be occupied by other transaction information;

generating consensus information for the number values based on the first preset number of the acknowledgement information in the trusted execution environment and broadcasting the consensus information to the respective slave node devices; the consensus information instructs the slave node device to submit the transaction information after being validated by the slave node device.

2. The consensus method of claim 1, wherein after numbering transaction information sent by a client in a trusted execution environment, the consensus method further comprises:

generating first secret information corresponding to the number value and an electronic signature of the first secret information in the trusted execution environment;

generating a shared key of each node device corresponding to the number value based on the first secret information in the trusted execution environment;

encrypting the shared key of each slave node device in the trusted execution environment to obtain a ciphertext of the shared key of each slave node device;

broadcasting an electronic signature of the first secret information and a ciphertext of the shared key of each of the slave node devices to each of the slave node devices.

3. The consensus method of claim 2, wherein said submitting said transaction information upon receiving a first preset number of acknowledgements from said slave node devices for said number value comprises:

submitting the transaction information upon receiving a first preset number of its own shared keys returned by the slave node devices.

4. The consensus method of claim 3, wherein said generating consensus information for the number value based on the first preset number of the acknowledgement information in the trusted execution environment and broadcasting the consensus information to the respective slave node devices comprises:

generating second secret information corresponding to the number value based on the shared keys of the slave node devices with the first preset number in the trusted execution environment;

broadcasting the second secret information to the respective slave node devices.

5. A consensus method of distributed node equipment is applied to slave node equipment in a distributed network, and is characterized in that the consensus method comprises the following steps:

when transaction information broadcasted by main node equipment and the number value of the transaction information are received, if the number value of the transaction information is determined not to be occupied by other transaction information, sending confirmation information aiming at the number value to the main node equipment;

and when the consensus information aiming at the number value and broadcasted by the main node equipment is received, if the consensus information is confirmed to be effective, submitting the transaction information.

6. The consensus method of claim 5, further comprising:

when receiving the electronic signature of the first secret information corresponding to the serial number value broadcasted by the master node device and the ciphertext of the shared key of the slave node device, decrypting the ciphertext of the shared key of the slave node device in a trusted execution environment of the slave node device to obtain the shared key of the slave node device;

storing the shared key of itself and an electronic signature of the first secret information in the trusted execution environment.

7. The consensus method of claim 6, wherein the submitting the transaction information upon receiving the consensus information broadcast by the master node device for the number value if the consensus information is confirmed to be valid comprises:

and when second secret information corresponding to the number value broadcasted by the main node equipment is received, verifying the validity of the second secret information by adopting the electronic signature of the first secret information in the trusted execution environment, and submitting the transaction information after confirming that the second secret information is valid.

8. The consensus method of claim 7, wherein the electronic signature of the first secret information is a hash value of the first secret information; correspondingly, the verifying the validity of the second secret information by using the electronic signature of the first secret information in the trusted execution environment, and submitting the transaction information after confirming that the second secret information is valid includes:

generating a hash value of the second secret information in the trusted execution environment;

and if the hash value of the second secret information is the same as the hash value of the first secret information, submitting the transaction information.

9. A consensus method of distributed node equipment is applied to a distributed network, and is characterized in that the consensus method comprises the following steps:

the method comprises the steps that a main node device numbers transaction information sent by a client in a trusted execution environment of the main node device, and broadcasts the transaction information and the number value of the transaction information to each slave node device;

when the slave node equipment receives the transaction information broadcasted by the master node equipment and the number value of the transaction information, if the number value of the transaction information is determined not to be occupied by other transaction information, the slave node equipment sends confirmation information aiming at the number value to the master node equipment;

the master node equipment submits the transaction information when receiving confirmation information which is returned by a first preset number of slave node equipment and aims at the serial number value;

the master node device generates consensus information aiming at the number value based on the first preset number of pieces of confirmation information in a trusted execution environment of the master node device, and broadcasts the consensus information to each slave node device;

and when the slave node equipment receives the consensus information aiming at the number value broadcast by the master node equipment, if the consensus information is confirmed to be valid, submitting the transaction information.

10. The consensus method of claim 9, wherein after the master node device numbers transaction information sent by a client in its trusted execution environment, the consensus method further comprises:

the main node equipment generates first secret information corresponding to the serial number value and an electronic signature of the first secret information in a trusted execution environment of the main node equipment;

the master node device generates a shared key of each node device corresponding to the serial number value in a trusted execution environment of the master node device based on the first secret information;

the master node device encrypts the shared key of each slave node device in a trusted execution environment of the master node device to obtain a ciphertext of the shared key of each slave node device;

the master node device broadcasts the electronic signature of the first secret information and the ciphertext of the shared key of each slave node device to each slave node device;

when the slave node device receives the electronic signature of the first secret information corresponding to the serial number value broadcast by the master node device and the ciphertext of the shared key of each slave node device, decrypting the ciphertext of the shared key of the slave node device in a trusted execution environment of the slave node device to obtain the shared key of the slave node device;

the slave node device stores the shared key of itself and an electronic signature of the first secret information in its trusted execution environment.

11. The consensus method of claim 10, wherein the slave node device transmitting acknowledgement information for the number value to the master node device comprises:

the slave node device sends the shared key of the slave node device to the master node device;

correspondingly, when receiving the confirmation information for the number value returned by the slave node devices of the first preset number, the submitting the transaction information by the master node device includes:

and submitting the transaction information by the master node equipment when receiving the self shared key of the slave node equipment returned by the slave node equipment with a first preset number.

12. A node apparatus, comprising:

the system comprises a number value determining unit, a transaction processing unit and a plurality of slave node devices, wherein the number value determining unit is used for numbering transaction information sent by a client in a trusted execution environment and broadcasting the transaction information and the number value of the transaction information to each slave node device;

the first transaction processing unit is used for submitting the transaction information when receiving confirmation information which is returned by a first preset number of slave node devices and aims at the serial number value; the confirmation information is returned by the slave node equipment when the number value of the transaction information is determined not to be occupied by other transaction information;

a common identification information generating unit configured to generate common identification information for the number value based on the first preset number of pieces of the acknowledgement information in the trusted execution environment, and broadcast the common identification information to each of the slave node devices; the consensus information instructs the slave node device to submit the transaction information after being validated by the slave node device; and/or

The system comprises a confirmation information sending unit, a confirmation information sending unit and a processing unit, wherein the confirmation information sending unit is used for sending confirmation information aiming at a number value to the main node equipment if the number value of the transaction information is determined not to be occupied by other transaction information when the transaction information broadcasted by the main node equipment and the number value of the transaction information are received;

and the second transaction processing unit is used for submitting the transaction information if the consensus information aiming at the number value broadcasted by the main node equipment is confirmed to be valid when the consensus information is received.

13. A node device, characterized in that the node device comprises a processor, a memory and a computer program stored in the memory and executable on the processor, the processor implementing the consensus method as claimed in any one of claims 1 to 4 or as claimed in any one of claims 5 to 8 when executing the computer program.

14. A computer-readable storage medium, in which a computer program is stored which, when being executed by a processor, carries out the consensus method as claimed in one of the claims 1 to 4 or in one of the claims 5 to 8.

Images