mirror of https://github.com/bitcoin/bitcoin.git synced 2026-01-20 07:09:15 +01:00

Files

Ava Chow 319ff58bbd Merge bitcoin/bitcoin#32638 : blocks: force hash validations on disk read

9341b5333a blockstorage: make block read hash checks explicit (Lőrinc)
2371b9f4ee test/bench: verify hash in `ComputeFilter` reads (Lőrinc)
5d235d50d6 net: assert block hash in `ProcessGetBlockData` and `ProcessMessage` (Lőrinc)

Pull request description:

  A follow-up to https://github.com/bitcoin/bitcoin/pull/32487#discussion_r2094072165, after which validating the hash of a read block from disk doesn't incur the cost of calculating its hash anymore.

  ### Summary

  This PR adds explicit checks that the read block header's hash matches the one we were expecting.

  ### Context

  After the previous PR, validating a block's hash during read operations became essentially free. This PR leverages that by requiring callers to provide a block's expected hash (or `std::nullopt`), preventing silent failures caused by corrupted or mismatched data. Most `ReadBlock` usages were updated with expected hashes and now fail on mismatch.

  ### Changes

  * added hash assertions in `ProcessGetBlockData` and `ProcessMessage` to validate that the block read from disk matches the expected hash;
  * updated tests and benchmark to pass the correct block hash to `ReadBlock()`, ensuring the hash validation is tested - or none if we already expect PoW failure;
  * removed the default value for `expected_hash`, requiring an explicit hash for all block reads.

  ### Why is the hash still optional (but no longer has a default value)

  * for header-error tests, where the goal is to trigger failures early in the parsing process;
  * for out-of-order orphan blocks, where the child hash isn't available before the initial disk read.

ACKs for top commit:
  maflcko:
    review ACK 9341b5333a 🕙
  achow101:
    ACK 9341b5333a
  hodlinator:
    ACK 9341b5333a
  janb84:
    re ACK 9341b5333a

Tree-SHA512: cf1d4fff4c15e3f8898ec284929cb83d7e747125d4ee759e77d369f1716728e843ef98030be32c8d608956a96ae2fbefa0e801200c333b9eefd6c086ec032e1f

2025-06-27 13:28:26 -07:00

abort.cpp

refactor: Split up NodeContext shutdown_signal and shutdown_request

2024-10-01 09:10:54 +02:00

abort.h

refactor: Split up NodeContext shutdown_signal and shutdown_request

2024-10-01 09:10:54 +02:00

blockmanager_args.cpp

kernel: Move block tree db open to block manager

2025-01-20 21:19:39 +01:00

blockmanager_args.h

Add [[nodiscard]] where ignoring a Result return type is an error

2023-05-29 13:12:45 +02:00

blockstorage.cpp

chore: use std::vector<std::byte> for BlockManager::ReadRawBlock()

2025-06-13 19:19:44 +03:00

blockstorage.h

Merge bitcoin/bitcoin#32638 : blocks: force hash validations on disk read

2025-06-27 13:28:26 -07:00

caches.cpp

node: cap -dbcache to 1GiB on 32-bit architectures

2025-05-19 16:39:58 -04:00

caches.h

init: Use size_t consistently for cache sizes

2025-01-15 15:44:56 +01:00

chainstate.cpp

kernel: Move block tree db open to BlockManager constructor

2025-01-20 21:27:50 +01:00

chainstate.h

kernel: Move block tree db open to block manager

2025-01-20 21:19:39 +01:00

chainstatemanager_args.cpp

Remove checkpoints

2025-03-13 11:13:13 +00:00

chainstatemanager_args.h

refactor: Clamp worker threads in ChainstateManager constructor

2024-11-18 11:13:20 +01:00

coin.cpp

refactor: Rely on returned value of GetCoin instead of parameter

2024-09-18 20:03:47 +02:00

coin.h

scripted-diff: Bump copyright headers

2022-12-24 23:49:50 +00:00

coins_view_args.cpp

move-only: Extract common/args and common/config.cpp from util/system

2023-04-19 10:48:30 +02:00

coins_view_args.h

refactor, txdb: Add CoinsViewOptions struct

2023-02-10 04:39:11 -04:00

connection_types.cpp

net: expose transport types/session IDs of connections in RPC and logs

2023-10-02 18:11:11 -04:00

connection_types.h

refactor: Sort includes of touched source files

2025-06-03 19:56:55 +02:00

context.cpp

Introduce Mining interface

2024-06-18 18:47:51 +02:00

context.h

refactor: Split up NodeContext shutdown_signal and shutdown_request

2024-10-01 09:10:54 +02:00

database_args.cpp

move-only: Extract common/args and common/config.cpp from util/system

2023-04-19 10:48:30 +02:00

database_args.h

refactor, dbwrapper: Add DBParams and DBOptions structs

2023-02-10 04:39:11 -04:00

eviction.cpp

[net] Move eviction logic to its own file

2022-07-06 18:13:54 +02:00

eviction.h

[net] Move eviction logic to its own file

2022-07-06 18:13:54 +02:00

interface_ui.cpp

refactor: Pass verification_progress into block tip notifications

2025-05-24 13:49:32 +02:00

interface_ui.h

refactor: Pass verification_progress into block tip notifications

2025-05-24 13:49:32 +02:00

interfaces.cpp

Merge bitcoin/bitcoin#31981 : Add checkBlock() to Mining interface

2025-06-18 17:07:21 -07:00

kernel_notifications.cpp

refactor: Pass verification_progress into block tip notifications

2025-05-24 13:49:32 +02:00

kernel_notifications.h

refactor: Pass verification_progress into block tip notifications

2025-05-24 13:49:32 +02:00

mempool_args.cpp

init: cap -maxmempool to 500 MB on 32-bit systems

2025-05-19 16:39:58 -04:00

mempool_args.h

refactor: Replace std::optional<bilingual_str> with util::Result

2023-05-24 08:55:47 -04:00

mempool_persist_args.cpp

move-only: Extract common/args and common/config.cpp from util/system

2023-04-19 10:48:30 +02:00

mempool_persist_args.h

refactor: Move fs.* to util/fs.*

2023-03-23 12:55:18 +01:00

mempool_persist.cpp

streams: remove AutoFile::Get() entirely

2024-09-13 21:59:29 -04:00

mempool_persist.h

mempool: move LoadMempool/DumpMempool to node

2024-06-26 22:47:09 +00:00

miner.cpp

validation: refactor TestBlockValidity

2025-06-14 14:32:45 +02:00

miner.h

refactor: Sort includes of touched source files

2025-06-03 19:56:55 +02:00

mini_miner.cpp

MiniMiner: use FeeFrac in AncestorFeerateComparator

2024-07-09 17:22:51 +01:00

mini_miner.h

refactor: Sort includes of touched source files

2025-06-03 19:56:55 +02:00

minisketchwrapper.cpp

Use steady clock in SeedStrengthen and FindBestImplementation

2023-03-02 14:48:28 +01:00

minisketchwrapper.h

Add src/node/* code to node:: namespace

2022-01-06 22:14:16 -05:00

peerman_args.cpp

doc: add & amend copyright headers

2025-05-20 09:43:21 +01:00

peerman_args.h

doc: add & amend copyright headers

2025-05-20 09:43:21 +01:00

protocol_version.h

Rename version.h to node/protocol_version.h

2023-11-30 11:28:31 +01:00

psbt.cpp

psbt: Check sighash types in SignPSBTInput and take sighash as optional

2025-05-14 14:00:43 -07:00

psbt.h

Add src/node/* code to node:: namespace

2022-01-06 22:14:16 -05:00

README.md

doc: Remove irrelevant link to GitHub

2021-04-06 09:34:21 +02:00

timeoffsets.cpp

refactor: remove warnings globals

2024-06-13 11:20:49 +01:00

timeoffsets.h

refactor: remove warnings globals

2024-06-13 11:20:49 +01:00

transaction.cpp

scripted-diff: rename block and undo functions for consistency

2025-01-09 15:17:02 +01:00

transaction.h

util: move fees.h and error.h to common/messages.h

2024-05-16 10:16:08 -05:00

txdownloadman_impl.cpp

doc: add & amend copyright headers

2025-05-20 09:43:21 +01:00

txdownloadman_impl.h

doc: add & amend copyright headers

2025-05-20 09:43:21 +01:00

txdownloadman.h

[cleanup] remove p2p_inv from AddTxAnnouncement

2025-01-06 09:02:05 -05:00

txreconciliation.cpp

random: get rid of GetRand by inlining

2024-07-01 12:39:53 -04:00

txreconciliation.h

[net processing] Move -txreconciliation to PeerManager::Options

2023-07-24 18:35:28 +02:00

types.h

Add checkBlock to Mining interface

2025-06-14 14:32:45 +02:00

utxo_snapshot.cpp

streams: remove unused code

2024-09-19 07:33:02 -04:00

utxo_snapshot.h

assumeutxo: Drop block height from metadata

2024-08-08 23:55:06 +02:00

warnings.cpp

scripted-diff: drop config/ subdir for bitcoin-config.h, rename to bitcoin-build-config.h

2024-10-10 12:22:12 +02:00

warnings.h

refactor: remove warnings globals

2024-06-13 11:20:49 +01:00

README.md

src/node/

The src/node/ directory contains code that needs to access node state (state in CChain, CBlockIndex, CCoinsView, CTxMemPool, and similar classes).

Code in src/node/ is meant to be segregated from code in src/wallet/ and src/qt/, to ensure wallet and GUI code changes don't interfere with node operation, to allow wallet and GUI code to run in separate processes, and to perhaps eventually allow wallet and GUI code to be maintained in separate source repositories.

As a rule of thumb, code in one of the src/node/, src/wallet/, or src/qt/ directories should avoid calling code in the other directories directly, and only invoke it indirectly through the more limited src/interfaces/ classes.

This directory is at the moment sparsely populated. Eventually more substantial files like src/validation.cpp and src/txmempool.cpp might be moved there.