From 5220a098a5b681cbbedefacbb94a0dde1b1cd673 Mon Sep 17 00:00:00 2001 From: eugene Date: Wed, 30 Nov 2022 11:09:38 -0500 Subject: [PATCH 1/2] blockmanager: ensure received headers connect to each other This check was performed for both the reorg and non-reorg cases, but in the reorg case the headers would count for PoW before validating that the headers connected to one another. --- blockmanager.go | 27 +++++++++++++++++++++++++++ 1 file changed, 27 insertions(+) diff --git a/blockmanager.go b/blockmanager.go index 42531229..7ed8d056 100644 --- a/blockmanager.go +++ b/blockmanager.go @@ -2383,6 +2383,33 @@ func (b *blockManager) handleHeadersMsg(hmsg *headersMsg) { // atomically in order to improve peformance. headerWriteBatch := make([]headerfs.BlockHeader, 0, len(msg.Headers)) + // Explicitly check that each header in msg.Headers builds off of the + // previous one. + var ( + lastHeader chainhash.Hash + emptyHash chainhash.Hash + ) + + for _, blockHeader := range msg.Headers { + blockHash := blockHeader.BlockHash() + + if lastHeader == emptyHash { + // If we haven't yet set lastHeader, set it now. + lastHeader = blockHash + } else { + // Ensure that blockHeader.PrevBlock matches + // lastHeader. + if blockHeader.PrevBlock != lastHeader { + log.Warnf("Headers received from peer don't " + + "connect") + hmsg.peer.Disconnect() + return + } + + lastHeader = blockHash + } + } + // Process all of the received headers ensuring each one connects to // the previous and that checkpoints match. receivedCheckpoint := false From ddb3f6a85f371b812f01ee7f337e2357a3b45d12 Mon Sep 17 00:00:00 2001 From: eugene Date: Wed, 30 Nov 2022 11:10:39 -0500 Subject: [PATCH 2/2] blockmanager.go + go.mod: use btcd libs to validate headers This uses btcd's HeaderCtx and ChainCtx interfaces to be able to validate headers, both contextually and context-free. This allows neutrino to call blockchain.CheckBlockHeaderContext and blockchain.CheckBlockHeaderSanity. --- blockmanager.go | 293 ++++++++++++++++++++++++++++++++++++++++++++---- go.mod | 2 + 2 files changed, 275 insertions(+), 20 deletions(-) diff --git a/blockmanager.go b/blockmanager.go index 7ed8d056..2b0e5ac6 100644 --- a/blockmanager.go +++ b/blockmanager.go @@ -2438,8 +2438,10 @@ func (b *blockManager) handleHeadersMsg(hmsg *headersMsg) { prevNode := prevNodeEl prevHash := prevNode.Header.BlockHash() if prevHash.IsEqual(&blockHeader.PrevBlock) { + prevNodeHeight := prevNode.Height + prevNodeHeader := prevNode.Header err := b.checkHeaderSanity(blockHeader, maxTimestamp, - false) + false, prevNodeHeight, &prevNodeHeader) if err != nil { log.Warnf("Header doesn't pass sanity check: "+ "%s -- disconnecting peer", err) @@ -2547,8 +2549,28 @@ func (b *blockManager) handleHeadersMsg(hmsg *headersMsg) { }) totalWork := big.NewInt(0) for j, reorgHeader := range msg.Headers[i:] { - err = b.checkHeaderSanity(reorgHeader, - maxTimestamp, true) + // We have to get the parent's height and + // header to be able to contextually validate + // this header. + prevNodeHeight := backHeight + uint32(j) + + var prevNodeHeader *wire.BlockHeader + + if i+j == 0 { + // Use backHead if we are using the + // first header in the Headers slice. + prevNodeHeader = backHead + } else { + // We can find the parent in the + // Headers slice by getting the header + // at index i+j-1. + prevNodeHeader = msg.Headers[i+j-1] + } + + err = b.checkHeaderSanity( + reorgHeader, maxTimestamp, true, + int32(prevNodeHeight), prevNodeHeader, + ) if err != nil { log.Warnf("Header doesn't pass sanity"+ " check: %s -- disconnecting "+ @@ -2733,29 +2755,44 @@ func (b *blockManager) handleHeadersMsg(hmsg *headersMsg) { b.newHeadersSignal.Broadcast() } -// checkHeaderSanity checks the PoW, and timestamp of a block header. +// checkHeaderSanity performs contextual and context-less checks on the passed +// wire.BlockHeader. This function calls blockchain.CheckBlockHeaderContext for +// the contextual check and blockchain.CheckBlockHeaderSanity for context-less +// checks. func (b *blockManager) checkHeaderSanity(blockHeader *wire.BlockHeader, - maxTimestamp time.Time, reorgAttempt bool) error { + maxTimestamp time.Time, reorgAttempt bool, prevNodeHeight int32, + prevNodeHeader *wire.BlockHeader) error { - diff, err := b.calcNextRequiredDifficulty( - blockHeader.Timestamp, reorgAttempt) - if err != nil { - return err + // Create the lightHeaderCtx for the blockHeader's parent. + hList := b.headerList + if reorgAttempt { + hList = b.reorgList } - stubBlock := btcutil.NewBlock(&wire.MsgBlock{ - Header: *blockHeader, - }) - err = blockchain.CheckProofOfWork(stubBlock, - blockchain.CompactToBig(diff)) + + parentHeaderCtx := newLightHeaderCtx( + prevNodeHeight, prevNodeHeader, b.cfg.BlockHeaders, hList, + ) + + // Create a lightChainCtx as well. + chainCtx := newLightChainCtx( + &b.cfg.ChainParams, b.blocksPerRetarget, b.minRetargetTimespan, + b.maxRetargetTimespan, + ) + + var emptyFlags blockchain.BehaviorFlags + err := blockchain.CheckBlockHeaderContext( + blockHeader, parentHeaderCtx, emptyFlags, true, chainCtx, + ) if err != nil { return err } - // Ensure the block time is not too far in the future. - if blockHeader.Timestamp.After(maxTimestamp) { - return fmt.Errorf("block timestamp of %v is too far in the "+ - "future", blockHeader.Timestamp) - } - return nil + + err = blockchain.CheckBlockHeaderSanity( + blockHeader, b.cfg.ChainParams.PowLimit, b.cfg.TimeSource, + emptyFlags, + ) + + return err } // calcNextRequiredDifficulty calculates the required difficulty for the block @@ -2980,3 +3017,219 @@ func (b *blockManager) NotificationsSinceHeight( return blocks, bestHeight, nil } + +// lightChainCtx is an implementation of the blockchain.ChainCtx interface and +// gives a neutrino node the ability to contextually validate headers it +// receives. +type lightChainCtx struct { + params *chaincfg.Params + blocksPerRetarget int32 + minRetargetTimespan int64 + maxRetargetTimespan int64 +} + +// newLightChainCtx returns a new lightChainCtx instance from the passed +// arguments. +func newLightChainCtx(params *chaincfg.Params, blocksPerRetarget int32, + minRetargetTimespan, maxRetargetTimespan int64) *lightChainCtx { + + return &lightChainCtx{ + params: params, + blocksPerRetarget: blocksPerRetarget, + minRetargetTimespan: minRetargetTimespan, + maxRetargetTimespan: maxRetargetTimespan, + } +} + +// ChainParams returns the configured chain parameters. +// +// NOTE: Part of the blockchain.ChainCtx interface. +func (l *lightChainCtx) ChainParams() *chaincfg.Params { + return l.params +} + +// BlocksPerRetarget returns the number of blocks before retargeting occurs. +// +// NOTE: Part of the blockchain.ChainCtx interface. +func (l *lightChainCtx) BlocksPerRetarget() int32 { + return l.blocksPerRetarget +} + +// MinRetargetTimespan returns the minimum amount of time used in the +// difficulty calculation. +// +// NOTE: Part of the blockchain.ChainCtx interface. +func (l *lightChainCtx) MinRetargetTimespan() int64 { + return l.minRetargetTimespan +} + +// MaxRetargetTimespan returns the maximum amount of time used in the +// difficulty calculation. +// +// NOTE: Part of the blockchain.ChainCtx interface. +func (l *lightChainCtx) MaxRetargetTimespan() int64 { + return l.maxRetargetTimespan +} + +// VerifyCheckpoint returns false as the lightChainCtx does not need to +// validate checkpoints. This is already done inside the handleHeadersMsg +// function. +// +// NOTE: Part of the blockchain.ChainCtx interface. +func (l *lightChainCtx) VerifyCheckpoint(height int32, + hash *chainhash.Hash) bool { + + return false +} + +// FindPreviousCheckpoint returns nil values since the lightChainCtx does not +// need to validate against checkpoints. This is already done inside the +// handleHeadersMsg function. +// +// NOTE: Part of the blockchain.ChainCtx interface. +func (l *lightChainCtx) FindPreviousCheckpoint() (blockchain.HeaderCtx, + error) { + + return nil, nil +} + +// lightHeaderCtx is an implementation of the blockchain.HeaderCtx interface. +// It is used so neutrino can perform contextual header validation checks. +type lightHeaderCtx struct { + height int32 + bits uint32 + timestamp int64 + + store headerfs.BlockHeaderStore + headerList headerlist.Chain +} + +// newLightHeaderCtx returns an instance of a lightHeaderCtx to be used when +// contextually validating headers. +func newLightHeaderCtx(height int32, header *wire.BlockHeader, + store headerfs.BlockHeaderStore, + headerList headerlist.Chain) *lightHeaderCtx { + + return &lightHeaderCtx{ + height: height, + bits: header.Bits, + timestamp: header.Timestamp.Unix(), + store: store, + headerList: headerList, + } +} + +// Height returns the height for the underlying header this context was created +// from. +// +// NOTE: Part of the blockchain.HeaderCtx interface. +func (l *lightHeaderCtx) Height() int32 { + return l.height +} + +// Bits returns the difficulty bits for the underlying header this context was +// created from. +// +// NOTE: Part of the blockchain.HeaderCtx interface. +func (l *lightHeaderCtx) Bits() uint32 { + return l.bits +} + +// Timestamp returns the timestamp for the underlying header this context was +// created from. +// +// NOTE: Part of the blockchain.HeaderCtx interface. +func (l *lightHeaderCtx) Timestamp() int64 { + return l.timestamp +} + +// Parent returns the parent of the underlying header this context was created +// from. +// +// NOTE: Part of the blockchain.HeaderCtx interface. +func (l *lightHeaderCtx) Parent() blockchain.HeaderCtx { + parentHeight := l.height - 1 + + var ( + parent *wire.BlockHeader + err error + ) + + // We'll first consult the headerList to see if the parent can be found + // there. If that fails, we'll look up the header in the header store. + iterNode := l.headerList.Back() + + // Keep looping until iterNode is nil or we encounter the desired + // height. + for iterNode != nil { + if iterNode.Height == parentHeight { + // We've found the parent header. + parent = &iterNode.Header + break + } + + // We haven't hit the parent header yet, so we'll go + // back one. + iterNode = iterNode.Prev() + } + + if parent == nil { + // Lookup the parent in the header store. + parent, err = l.store.FetchHeaderByHeight(uint32(parentHeight)) + if err != nil { + return nil + } + } + + return newLightHeaderCtx( + parentHeight, parent, l.store, l.headerList, + ) +} + +// RelativeAncestorCtx returns the ancestor that is distance blocks before the +// underlying header in the chain. +// +// NOTE: Part of the blockchain.HeaderCtx interface. +func (l *lightHeaderCtx) RelativeAncestorCtx( + distance int32) blockchain.HeaderCtx { + + ancestorHeight := l.height - distance + + var ( + ancestor *wire.BlockHeader + err error + ) + + // We'll first consult the headerList to see if the ancestor can be + // found there. If that fails, we'll look up the header in the header + // store. + iterNode := l.headerList.Back() + + // Keep looping until iterNode is nil or the ancestor height is + // encountered. + for iterNode != nil { + if iterNode.Height == ancestorHeight { + // We've found the ancestor. + ancestor = &iterNode.Header + break + } + + // We haven't hit the ancestor header yet, so we'll go + // back one. + iterNode = iterNode.Prev() + } + + if ancestor == nil { + // Lookup the ancestor in the header store. + ancestor, err = l.store.FetchHeaderByHeight( + uint32(ancestorHeight), + ) + if err != nil { + return nil + } + } + + return newLightHeaderCtx( + ancestorHeight, ancestor, l.store, l.headerList, + ) +} diff --git a/go.mod b/go.mod index 317542ef..2ca6d9bf 100644 --- a/go.mod +++ b/go.mod @@ -15,3 +15,5 @@ require ( ) go 1.13 + +replace github.com/btcsuite/btcd => /Users/nsa/go/src/github.com/btcsuite/btcd