Block decrement can put claimtrie in erroneous state #243

New issue

Closed

opened 2018-12-05 22:04:07 +01:00 by kaykurokawa · 1 comment

kaykurokawa commented 2018-12-05 22:04:07 +01:00 (Migrated from github.com)

Copy link

Issue found by @BrannonKing

When there is a claim/support in the queue (has not been activated yet, and has activation height X), it can be put into the claimtrie at some height Y less than X if a takeover is triggered (some other claim wins the name, or winning claim abandoned). This condition shall be called "early activation".

If an active block contains a claim with "early activation" and was decremented, the undo information for that claim with early activation was incorrectly applied. If correctly applied, the claim would go back into the queue with its original activation height X. There are also two queues, one that is indexed on "name" and has the activation height as one of its value, and one that is indexed on "activation height".

However, for a claim we would incorrectly put the claim back into the queue. In the "name" indexed queue we put it back with the early activation height Y and than in the "activation height" indexed queue, we put it back with the activation height X. This discrepancy would cause lbrycrdd to crash on the assert below once this claim became active again and it needed to be deleted from the queue

e89d748b2f/src/claimtrie.cpp (L2115)

Thus if a block containing a claim with early activation was reorged, it will cause the node to eventually crash once the claim became activated again. A reindex should wipe out the incorrect state of the claimtrie, and should allow the node to continue (assuming a similar reorg does not happen again)

For a support, we would incorrectly put it back in both queues with the early activation height Y. Thus, it would incorrectly activate on the next increment. This may cause the node to get stuck as the claimtrie may end up in an incorrect state. Worse, this can be used to split consensus.

Issue found by @BrannonKing When there is a claim/support in the queue (has not been activated yet, and has activation height X), it can be put into the claimtrie at some height Y less than X if a takeover is triggered (some other claim wins the name, or winning claim abandoned). This condition shall be called "early activation". If an active block contains a claim with "early activation" and was decremented, the undo information for that claim with early activation was incorrectly applied. If correctly applied, the claim would go back into the queue with its original activation height X. There are also two queues, one that is indexed on "name" and has the activation height as one of its value, and one that is indexed on "activation height". However, for a claim we would incorrectly put the claim back into the queue. In the "name" indexed queue we put it back with the early activation height Y and than in the "activation height" indexed queue, we put it back with the activation height X. This discrepancy would cause lbrycrdd to crash on the assert below once this claim became active again and it needed to be deleted from the queue https://github.com/lbryio/lbrycrd/blob/e89d748b2ff4a846b1493d4ee6a9a98540ea306f/src/claimtrie.cpp#L2115 Thus if a block containing a claim with early activation was reorged, it will cause the node to eventually crash once the claim became activated again. A reindex should wipe out the incorrect state of the claimtrie, and should allow the node to continue (assuming a similar reorg does not happen again) For a support, we would incorrectly put it back in both queues with the early activation height Y. Thus, it would incorrectly activate on the next increment. This may cause the node to get stuck as the claimtrie may end up in an incorrect state. Worse, this can be used to split consensus.

kaykurokawa commented 2018-12-05 22:35:42 +01:00 (Migrated from github.com)

Copy link

Fix here: https://github.com/lbryio/lbrycrd/pull/244

Fix here: https://github.com/lbryio/lbrycrd/pull/244

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

mergemine_hf

block_info_fix

block_info_fix_try2

v19_master

hash_bit_seq

v17_master

finance

static_link

small_takeover_experiment

dont_force_segwit

add_signature_test

cache_nth_trie_children

v12_master

experimental_use_basho_leveldb

experimental_separate_dbs

experimental_use_bdb_for_claimtrie

experimental_prefix_node_pool

experimental_sqlite_kvps

move_to_gitlab_ci

get_activations_in_block

add_claim_import_scripts

v0.17.3.3

v0.19.1.3

v0.17.4.6

v0.19.1.2

v0.17.4.5

v0.19.1.1

v0.17.4.4

v0.17.4.3

v0.17.4.2

v0.17.4.1

v0.17.3.2

v0.17.3.1

v0.17.3.0rc1

v0.17.2.1

v0.17.2.0

v0.17.1.0

v0.12.4.1

v0.12.4.0

v0.12.3.1

v0.12.3.0

v0.12.2.3

v0.12.2.2

v0.12.2.1

v0.12.2.0

v0.12.1.2

v0.12.1.1

v0.12.1.0

v0.12.0.6

v0.12.0.5

getclaimbyid_1

v0.12.0.4

v0.12.0.3

v0.12.0.2

v0.3.16

v0.3.15

0.13.0

test-win-release

v0.12.99

v0.3-osx

v0.2-alpha

v0.1-alpha-os-x

v0.1-alpha

Labels

Clear labels   

area: devops

  

area: discovery

  

area: docs

  

area: livestream

  

area: proposal

Work is part of a proposal

  

consider soon

Discuss this issue at the next planning meeting, then remove this label

  

Epic

  

good first issue

  

hacktoberfest

Welcome to Hacktoberfest

  

hard fork

  

help wanted

  

icebox

Long-term storage

  

Invalid

  

level: 0

  

level: 1

No knowledge of the existing code required

  

level: 2

Some knowledge of the existing code is recommended

  

level: 3

Significant knowledge of the existing code is recommended

  

level: 4

Intimate knowledge of the existing code is recommended

  

needs: exploration

Solution unclear, needs research

  

needs: grooming

Issue needs to be groomed before work can start

  

needs: priority

Priority level needs to be defined

  

needs: repro

Issue needs step-by-step instructions on how to reproduce in latest code

  

needs: tech design

Needs technical design signoff before implementation can begin

  

on hold

Temporarily paused

  

priority: blocker

Issue is blocking release, do ASAP

  

priority: high

Work needs to be moved into sprint ASAP

  

priority: low

Work should be done but can stay in the backlog for now

  

priority: medium

Work needs to be done within 2-3 sprints

  

resilience

  

soft fork

  

Tom's Wishlist

  

type: bug

Existing functionality is wrong or broken

  

type: discussion

A conversation. No specific changes requested

  

type: improvement

Existing (or partially existing) functionality needs to be changed

  

type: new feature

New functionality that does not exist yet

  

type: refactor

Minimal user-visible changes, but significant internal work

  

type: task

Either work that's not related to the code, or a small chore that does not fit into other categories

  

type: testing

Solution needs additional user testing

  

unplanned

Work that was not planned into the spirnt, took priority over planned work

  

work in progress

The proposed solution is still incomplete.

No labels

area: devops

area: discovery

area: docs

area: livestream

area: proposal

consider soon

Epic

good first issue

hacktoberfest

hard fork

help wanted

icebox

Invalid

level: 0

level: 1

level: 2

level: 3

level: 4

needs: exploration

needs: grooming

needs: priority

needs: repro

needs: tech design

on hold

priority: blocker

priority: high

priority: low

priority: medium

resilience

soft fork

Tom's Wishlist

type: bug

type: discussion

type: improvement

type: new feature

type: refactor

type: task

type: testing

unplanned

work in progress

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: LBRYCommunity/lbrycrd#243

No description provided.