watchtower: demo StateUpdateCodeClientBehind error

In this commit, a test is added to demonstrate how clients can end up getting the StateUpdateCodeClientBehind error from a tower server. This can happen if a client ever deletes their db. If they do this then the sessions they create with the tower will have the same IDs as the sessions created in the now deleted db. This is because the session keys (and thus session IDs) are calculated deterministically from a counter (which is reset if the db is deleted). The tower server then throws this error because the client would say that the sequence ID is 1 for the next update.
2025-06-04 03:59:58 +02:00 · 2023-03-27 14:14:26 +02:00 · 2023-03-27 14:14:26 +02:00 · 204585c620
commit 204585c620
parent 21dd2cf61d
1 changed files with 57 additions and 2 deletions
--- a/watchtower/wtclient/client_test.go
+++ b/watchtower/wtclient/client_test.go
@ -1466,7 +1466,7 @@ var clientTests = []clientTest{
 			h.waitServerUpdates(hints[:numUpdates/2], time.Second)

 			// Stop the client, which should have no more backups.
-			h.client.Stop()
+			require.NoError(h.t, h.client.Stop())

 			// Record the policy that the first half was stored
 			// under. We'll expect the second half to also be stored
@ -1527,7 +1527,7 @@ var clientTests = []clientTest{

 			// Restart the client, so we can ensure the deduping is
 			// maintained across restarts.
-			h.client.Stop()
+			require.NoError(h.t, h.client.Stop())
 			h.startClient()

 			// Try to back up the full range of retributions. Only
@ -2013,6 +2013,61 @@ var clientTests = []clientTest{
 			require.NoError(h.t, err)
 		},
 	},
+	{
+		// Demonstrate that the client is unable to upload state updates
+		// to a tower if the client deletes its database after already
+		// having created and started to use a session with a tower.
+		// This happens because the session key is generated
+		// deterministically and will only be unique for new sessions
+		// if the same DB is used. The server therefore rejects these
+		// updates with the StateUpdateCodeClientBehind error.
+		name: "demonstrate the StateUpdateCodeClientBehind error",
+		cfg: harnessCfg{
+			localBalance:  localBalance,
+			remoteBalance: remoteBalance,
+			policy: wtpolicy.Policy{
+				TxPolicy:   defaultTxPolicy,
+				MaxUpdates: 5,
+			},
+		},
+		fn: func(h *testHarness) {
+			const (
+				numUpdates = 5
+				chanID     = 0
+			)
+
+			// Generate numUpdates retributions.
+			hints := h.advanceChannelN(chanID, numUpdates)
+
+			// Back half of the states up.
+			h.backupStates(chanID, 0, numUpdates/2, nil)
+
+			// Wait for the updates to be populated in the server's
+			// database.
+			h.waitServerUpdates(hints[:numUpdates/2], waitTime)
+
+			// Now stop the client and reset its database.
+			require.NoError(h.t, h.client.Stop())
+
+			db := wtmock.NewClientDB()
+			h.clientDB = db
+			h.clientCfg.DB = db
+
+			// Restart the client.
+			h.startClient()
+
+			// We need to re-register the channel due to the client
+			// db being reset.
+			h.registerChannel(0)
+
+			// Attempt to back up the remaining tasks.
+			h.backupStates(chanID, numUpdates/2, numUpdates, nil)
+
+			// Show that the server does not get the remaining
+			// updates.
+			h.waitServerUpdates(nil, waitTime)
+		},
+	},
 }

 // TestClient executes the client test suite, asserting the ability to backup