highperfocused/bitcoin
1
0
Fork 0
mirror of https://github.com/bitcoin/bitcoin.git synced 2025-06-26 00:41:23 +02:00
Code Issues Packages Projects Releases Wiki Activity

validation: Don't load a snapshot if it's not in the best header chain.

Browse Source 
If the snapshot is not an ancestor of the most-work header (m_best_header),
syncing from that alternative chain should be prioritised.
Therefore don't accept loading a snapshot in this situation.

If that other chain turns out to be invalid, m_best_header
would be reset and loading the snapshot should be possible again.

Because of the work required to generate a conflicting headers chain,
this should only be possible under extreme circumstances, such as major forks.
This commit is contained in:
Martin Zumsande 2024-06-20 16:14:22 -04:00
parent e5a5497d98
commit 55b6d7be68
2 changed files with 33 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
src/validation.cpp
View File

@ -5683,6 +5683,10 @@ util::Result<void> ChainstateManager::ActivateSnapshot(
return util::Error{strprintf(Untranslated("The base block header (%s) is part of an invalid chain"), base_blockhash.ToString())}; return util::Error{strprintf(Untranslated("The base block header (%s) is part of an invalid chain"), base_blockhash.ToString())};
} }
if (!m_best_header || m_best_header->GetAncestor(base_blockheight) != snapshot_start_block) {
return util::Error{_("A forked headers-chain with more work than the chain with the snapshot base block header exists. Please proceed to sync without AssumeUtxo.")};
}
auto mempool{m_active_chainstate->GetMempool()}; auto mempool{m_active_chainstate->GetMempool()};
if (mempool && mempool->size() > 0) { if (mempool && mempool->size() > 0) {
return util::Error{Untranslated("Can't activate a snapshot when mempool not empty")}; return util::Error{Untranslated("Can't activate a snapshot when mempool not empty")};

32
test/functional/feature_assumeutxo.py
View File

@ -15,20 +15,21 @@ Interesting test cases could be loading an assumeutxo snapshot file with:
- TODO: Valid snapshot file, but referencing a snapshot block that turns out to be - TODO: Valid snapshot file, but referencing a snapshot block that turns out to be
invalid, or has an invalid parent invalid, or has an invalid parent
- TODO: Valid snapshot file and snapshot block, but the block is not on the
most-work chain
Interesting starting states could be loading a snapshot when the current chain tip is: Interesting starting states could be loading a snapshot when the current chain tip is:
- TODO: An ancestor of snapshot block - TODO: An ancestor of snapshot block
- TODO: The snapshot block - TODO: The snapshot block
- TODO: A descendant of the snapshot block - TODO: A descendant of the snapshot block
- TODO: Not an ancestor or a descendant of the snapshot block and has more work
""" """
from shutil import rmtree from shutil import rmtree
from dataclasses import dataclass from dataclasses import dataclass
from test_framework.blocktools import (
create_block,
create_coinbase
)
from test_framework.messages import tx_from_hex from test_framework.messages import tx_from_hex
from test_framework.test_framework import BitcoinTestFramework from test_framework.test_framework import BitcoinTestFramework
from test_framework.util import ( from test_framework.util import (
@ -241,6 +242,30 @@ class AssumeutxoTest(BitcoinTestFramework):
self.sync_blocks(nodes=(n0, n3)) self.sync_blocks(nodes=(n0, n3))
self.wait_until(lambda: len(n3.getchainstates()['chainstates']) == 1) self.wait_until(lambda: len(n3.getchainstates()['chainstates']) == 1)
def test_snapshot_not_on_most_work_chain(self, dump_output_path):
self.log.info("Test snapshot is not loaded when the node knows the headers of another chain with more work.")
node0 = self.nodes[0]
node1 = self.nodes[1]
# Create an alternative chain of 2 new blocks, forking off the main chain at the block before the snapshot block.
# This simulates a longer chain than the main chain when submitting these two block headers to node 1 because it is only aware of
# the main chain headers up to the snapshot height.
parent_block_hash = node0.getblockhash(SNAPSHOT_BASE_HEIGHT - 1)
block_time = node0.getblock(node0.getbestblockhash())['time'] + 1
fork_block1 = create_block(int(parent_block_hash, 16), create_coinbase(SNAPSHOT_BASE_HEIGHT), block_time)
fork_block1.solve()
fork_block2 = create_block(fork_block1.sha256, create_coinbase(SNAPSHOT_BASE_HEIGHT + 1), block_time + 1)
fork_block2.solve()
node1.submitheader(fork_block1.serialize().hex())
node1.submitheader(fork_block2.serialize().hex())
msg = "A forked headers-chain with more work than the chain with the snapshot base block header exists. Please proceed to sync without AssumeUtxo."
assert_raises_rpc_error(-32603, msg, node1.loadtxoutset, dump_output_path)
# Cleanup: submit two more headers of the snapshot chain to node 1, so that it is the most-work chain again and loading
# the snapshot in future subtests succeeds
main_block1 = node0.getblock(node0.getblockhash(SNAPSHOT_BASE_HEIGHT + 1), 0)
main_block2 = node0.getblock(node0.getblockhash(SNAPSHOT_BASE_HEIGHT + 2), 0)
node1.submitheader(main_block1)
node1.submitheader(main_block2)
def run_test(self): def run_test(self):
""" """
Bring up two (disconnected) nodes, mine some new blocks on the first, Bring up two (disconnected) nodes, mine some new blocks on the first,
@ -330,6 +355,7 @@ class AssumeutxoTest(BitcoinTestFramework):
self.test_invalid_chainstate_scenarios() self.test_invalid_chainstate_scenarios()
self.test_invalid_file_path() self.test_invalid_file_path()
self.test_snapshot_block_invalidated(dump_output['path']) self.test_snapshot_block_invalidated(dump_output['path'])
self.test_snapshot_not_on_most_work_chain(dump_output['path'])
self.log.info(f"Loading snapshot into second node from {dump_output['path']}") self.log.info(f"Loading snapshot into second node from {dump_output['path']}")
loaded = n1.loadtxoutset(dump_output['path']) loaded = n1.loadtxoutset(dump_output['path'])