zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7800 Commits
183 Branches
291 MiB
Tree: b14c0e579e
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'b14c0e579e'
${ noResults }
tendermint/state/validation.go

203 lines
6.1 KiB
Raw Normal View History

state: re-order funcs. fix tests
7 years ago
format: add format cmd & goimport repo (#4586) * format: add format cmd & goimport repo - replaced format command - added goimports to format command - ran goimports Signed-off-by: Marko Baricevic <marbar3778@yahoo.com> * fix outliers & undo proto file changes
4 years ago
TMHASH is 32 bytes. Closes #1990 (#2732) * tmhash is fully 32 bytes. closes #1990 * AddressSize * fix tests * fix max sizes
6 years ago
add proposer address to block's Header Refs #1134 Validation: - ignored in block.ValidateBasic since it's stateful information - checked in blockExec.ValidateBlock
6 years ago
state: re-order funcs. fix tests
7 years ago
Reject blocks with committed evidence (#37) * evidence: NewEvidencePool takes evidenceDB * evidence: failing TestStoreCommitDuplicate tendermint/security#35 * GetEvidence -> GetEvidenceInfo * fix TestStoreCommitDuplicate * comment in VerifyEvidence * add check if evidence was already seen - modify EventPool interface (EventStore is not known in ApplyBlock): - add IsCommitted method to iface - add test * update changelog * fix TestStoreMark: - priority in evidence info gets reset to zero after evidence gets committed * review comments: simplify EvidencePool.IsCommitted - delete obsolete EvidenceStore.IsCommitted * add simple test for IsCommitted * update changelog: this is actually breaking (PR number still missing) * fix TestStoreMark: - priority in evidence info gets reset to zero after evidence gets committed * review suggestion: simplify return
5 years ago
Delay validator set changes by 1 block.
6 years ago
state: b -> block
6 years ago
state: re-order funcs. fix tests
7 years ago
Delay validator set changes by 1 block.
6 years ago
ADR-016: Add versions to Block and State (#2644) * types: add Version to Header * abci: add Version to Header * state: add Version to State * node: check software and state protocol versions match * update changelog * docs/spec: update for versions * state: more tests * remove TODOs * remove empty test
6 years ago
linters: enable stylecheck (#4153) Refs #3262
5 years ago
ADR-016: Add versions to Block and State (#2644) * types: add Version to Header * abci: add Version to Header * state: add Version to State * node: check software and state protocol versions match * update changelog * docs/spec: update for versions * state: more tests * remove TODOs * remove empty test
6 years ago
state: b -> block
6 years ago
linters: enable stylecheck (#4153) Refs #3262
5 years ago
add proposer address to block's Header Refs #1134 Validation: - ignored in block.ValidateBasic since it's stateful information - checked in blockExec.ValidateBlock
6 years ago
state: re-order funcs. fix tests
7 years ago
state: b -> block
6 years ago
linters: enable stylecheck (#4153) Refs #3262
5 years ago
add proposer address to block's Header Refs #1134 Validation: - ignored in block.ValidateBasic since it's stateful information - checked in blockExec.ValidateBlock
6 years ago
state: re-order funcs. fix tests
7 years ago
Delay validator set changes by 1 block.
6 years ago
state: b -> block
6 years ago
linters: enable stylecheck (#4153) Refs #3262
5 years ago
add proposer address to block's Header Refs #1134 Validation: - ignored in block.ValidateBasic since it's stateful information - checked in blockExec.ValidateBlock
6 years ago
state: re-order funcs. fix tests
7 years ago
validate reactor messages (#2711) * validate reactor messages Refs #2683 * validate blockchain messages Refs #2683 * validate evidence messages Refs #2683 * todo * check ProposalPOL and signature sizes * add a changelog entry * check addr is valid when we add it to the addrbook * validate incoming netAddr (not just nil check!) * fixes after Bucky's review * check timestamps * beef up block#ValidateBasic * move some checks into bcBlockResponseMessage * update Gopkg.lock Fix ``` grouped write of manifest, lock and vendor: failed to export github.com/tendermint/go-amino: fatal: failed to unpack tree object 6dcc6ddc143e116455c94b25c1004c99e0d0ca12 ``` by running `dep ensure -update` * bump year since now we check it * generate test/p2p/data on the fly using tendermint testnet * allow sync chains older than 1 year * use full path when creating a testnet * move testnet gen to test/docker/Dockerfile * relax LastCommitRound check Refs #2737 * fix conflicts after merge * add small comment * some ValidateBasic updates * fixes * AppHash length is not fixed
6 years ago
Delay validator set changes by 1 block.
6 years ago
state: b -> block
6 years ago
linters: enable stylecheck (#4153) Refs #3262
5 years ago
add proposer address to block's Header Refs #1134 Validation: - ignored in block.ValidateBasic since it's stateful information - checked in blockExec.ValidateBlock
6 years ago
state: re-order funcs. fix tests
7 years ago
state: b -> block
6 years ago
linters: enable stylecheck (#4153) Refs #3262
5 years ago
add proposer address to block's Header Refs #1134 Validation: - ignored in block.ValidateBasic since it's stateful information - checked in blockExec.ValidateBlock
6 years ago
state: re-order funcs. fix tests
7 years ago
state: b -> block
6 years ago
linters: enable stylecheck (#4153) Refs #3262
5 years ago
add proposer address to block's Header Refs #1134 Validation: - ignored in block.ValidateBasic since it's stateful information - checked in blockExec.ValidateBlock
6 years ago
state: re-order funcs. fix tests
7 years ago
state: b -> block
6 years ago
linters: enable stylecheck (#4153) Refs #3262
5 years ago
add proposer address to block's Header Refs #1134 Validation: - ignored in block.ValidateBasic since it's stateful information - checked in blockExec.ValidateBlock
6 years ago
state: re-order funcs. fix tests
7 years ago
Delay validator set changes by 1 block.
6 years ago
linters: enable stylecheck (#4153) Refs #3262
5 years ago
validate reactor messages (#2711) * validate reactor messages Refs #2683 * validate blockchain messages Refs #2683 * validate evidence messages Refs #2683 * todo * check ProposalPOL and signature sizes * add a changelog entry * check addr is valid when we add it to the addrbook * validate incoming netAddr (not just nil check!) * fixes after Bucky's review * check timestamps * beef up block#ValidateBasic * move some checks into bcBlockResponseMessage * update Gopkg.lock Fix ``` grouped write of manifest, lock and vendor: failed to export github.com/tendermint/go-amino: fatal: failed to unpack tree object 6dcc6ddc143e116455c94b25c1004c99e0d0ca12 ``` by running `dep ensure -update` * bump year since now we check it * generate test/p2p/data on the fly using tendermint testnet * allow sync chains older than 1 year * use full path when creating a testnet * move testnet gen to test/docker/Dockerfile * relax LastCommitRound check Refs #2737 * fix conflicts after merge * add small comment * some ValidateBasic updates * fixes * AppHash length is not fixed
6 years ago
Delay validator set changes by 1 block.
6 years ago
state: re-order funcs. fix tests
7 years ago
state: b -> block
6 years ago
types: change `Commit` to consist of just signatures (#4146) * types: change `Commit` to consist of just signatures These are final changes towards removing votes from commit and leaving only signatures (see ADR-25) Fixes #1648 * bring back TestCommitToVoteSetWithVotesForAnotherBlockOrNilBlock + add absent flag to Vote to indicate that it's for another block * encode nil votes as CommitSig with BlockIDFlagAbsent + make Commit#Precommits array of non-pointers because precommit will never be nil * add NewCommitSigAbsent and Absent() funcs * uncomment validation in CommitSig#ValidateBasic * add comments to ValidatorSet funcs * add a changelog entry * break instead of continue continue does not make sense in these cases * types: rename Commit#Precommits to Signatures * swagger: fix /commit response * swagger: change block_id_flag type * fix merge conflicts
5 years ago
state: re-order funcs. fix tests
7 years ago
types: change `Commit` to consist of just signatures (#4146) * types: change `Commit` to consist of just signatures These are final changes towards removing votes from commit and leaving only signatures (see ADR-25) Fixes #1648 * bring back TestCommitToVoteSetWithVotesForAnotherBlockOrNilBlock + add absent flag to Vote to indicate that it's for another block * encode nil votes as CommitSig with BlockIDFlagAbsent + make Commit#Precommits array of non-pointers because precommit will never be nil * add NewCommitSigAbsent and Absent() funcs * uncomment validation in CommitSig#ValidateBasic * add comments to ValidatorSet funcs * add a changelog entry * break instead of continue continue does not make sense in these cases * types: rename Commit#Precommits to Signatures * swagger: fix /commit response * swagger: change block_id_flag type * fix merge conflicts
5 years ago
state: re-order funcs. fix tests
7 years ago
state: s -> state
6 years ago
state: b -> block
6 years ago
state: re-order funcs. fix tests
7 years ago
Implement BFT time (#2203) * Implement BFT time * set LastValidators when creating state in state helper for heights >= 2
6 years ago
linters: enable stylecheck (#4153) Refs #3262
5 years ago
Implement BFT time (#2203) * Implement BFT time * set LastValidators when creating state in state helper for heights >= 2
6 years ago
linters: enable stylecheck (#4153) Refs #3262
5 years ago
Implement BFT time (#2203) * Implement BFT time * set LastValidators when creating state in state helper for heights >= 2
6 years ago
state: require block.Time of the fist block to be genesis time (#2594) * require block.Time of the fist block to be genesis time Refs #2587: ``` We only start validating block.Time when Height > 1, because there is no commit to compute the median timestamp from for the first block. This means a faulty proposer could make the first block with whatever time they want. Instead, we should require the timestamp of block 1 to match the genesis time. I discovered this while refactoring the ValidateBlock tests to be table-driven while working on tests for #2560. ``` * do not accept blocks with negative height * update changelog and spec * nanos precision for test genesis time * Fix failing test (#2607)
6 years ago
linters: enable stylecheck (#4153) Refs #3262
5 years ago
state: require block.Time of the fist block to be genesis time (#2594) * require block.Time of the fist block to be genesis time Refs #2587: ``` We only start validating block.Time when Height > 1, because there is no commit to compute the median timestamp from for the first block. This means a faulty proposer could make the first block with whatever time they want. Instead, we should require the timestamp of block 1 to match the genesis time. I discovered this while refactoring the ValidateBlock tests to be table-driven while working on tests for #2560. ``` * do not accept blocks with negative height * update changelog and spec * nanos precision for test genesis time * Fix failing test (#2607)
6 years ago
Implement BFT time (#2203) * Implement BFT time * set LastValidators when creating state in state helper for heights >= 2
6 years ago
types: cap evidence in block validation (#2560) * cap evidence in block validation * state: use table-driven test for ValidateBlockHeader * state: test evidence cap * fixes from review
6 years ago
make BlockTimeIota a consensus parameter, not a locally configurable … (#3048) * make BlockTimeIota a consensus parameter, not a locally configurable option Refs #2920 * make TimeIota int64 ms Refs #2920 * update Gopkg.toml * fixes after Ethan's review * fix TestRemoteSignerProposalSigningFailed * update changelog
5 years ago
Bucky/fix evidence halt (#34) * consensus: createProposalBlock function * blockExecutor.CreateProposalBlock - factored out of consensus pkg into a method on blockExec - new private interfaces for mempool ("txNotifier") and evpool with one function each - consensus tests still require more mempool methods * failing test for CreateProposalBlock * Fix bug in include evidece into block * evidence: change maxBytes to maxSize * MaxEvidencePerBlock - changed to return both the max number and the max bytes - preparation for #2590 * changelog * fix linter * Fix from review Co-Authored-By: ebuchman <ethan@coinculture.info>
6 years ago
types: cap evidence in block validation (#2560) * cap evidence in block validation * state: use table-driven test for ValidateBlockHeader * state: test evidence cap * fixes from review
6 years ago
Delay validator set changes by 1 block.
6 years ago
state: b -> block
6 years ago
state: s -> state
6 years ago
types: cap evidence in block validation (#2560) * cap evidence in block validation * state: use table-driven test for ValidateBlockHeader * state: test evidence cap * fixes from review
6 years ago
state: re-order funcs. fix tests
7 years ago
Reject blocks with committed evidence (#37) * evidence: NewEvidencePool takes evidenceDB * evidence: failing TestStoreCommitDuplicate tendermint/security#35 * GetEvidence -> GetEvidenceInfo * fix TestStoreCommitDuplicate * comment in VerifyEvidence * add check if evidence was already seen - modify EventPool interface (EventStore is not known in ApplyBlock): - add IsCommitted method to iface - add test * update changelog * fix TestStoreMark: - priority in evidence info gets reset to zero after evidence gets committed * review comments: simplify EvidencePool.IsCommitted - delete obsolete EvidenceStore.IsCommitted * add simple test for IsCommitted * update changelog: this is actually breaking (PR number still missing) * fix TestStoreMark: - priority in evidence info gets reset to zero after evidence gets committed * review suggestion: simplify return
5 years ago
state: re-order funcs. fix tests
7 years ago
fixes for ProposerAddress - state.MakeBlock takes a proposerAddr - validateBlock only checks that the ProposerAddress is in the validator set - fix raceyness from bad proposer test: - use privValidator to get the proposer address (instead of racy state) - note we had to remove the test that checked the correct proposer was included for higher rounds because we don't have a good way to test this with multiple consensus states and not using the privValidator.Address while calling createProposalBlock was a hack!
6 years ago
TMHASH is 32 bytes. Closes #1990 (#2732) * tmhash is fully 32 bytes. closes #1990 * AddressSize * fix tests * fix max sizes
6 years ago
fixes for ProposerAddress - state.MakeBlock takes a proposerAddr - validateBlock only checks that the ProposerAddress is in the validator set - fix raceyness from bad proposer test: - use privValidator to get the proposer address (instead of racy state) - note we had to remove the test that checked the correct proposer was included for higher rounds because we don't have a good way to test this with multiple consensus states and not using the privValidator.Address while calling createProposalBlock was a hack!
6 years ago
linters: enable stylecheck (#4153) Refs #3262
5 years ago
add proposer address to block's Header Refs #1134 Validation: - ignored in block.ValidateBasic since it's stateful information - checked in blockExec.ValidateBlock
6 years ago
state: re-order funcs. fix tests
7 years ago
update Evidence type - requires pubkey and valset to verify and convert to abci.Evidence
6 years ago
state: s -> state
6 years ago
evidence: introduce time.Duration to evidence params (#4254) * evidence: introduce time.Duration to evidence params - add time.duration to evidence - this pr is taking pr #2606 and updating it to use both time and height - closes #2565 Signed-off-by: Marko Baricevic <marbar3778@yahoo.com> * fix testing and genesis cfg in signer harness * remove debugging fmt * change maxageheight to maxagenumblocks, rename other things to block instead of height * further check of duration * check duration to not send peers outdated evidence * change some lines, onward and upward * refactor evidence package * add a changelog pending entry * make mockbadevidence have time and use it * add what could possibly be called a test case * remove mockbadevidence and mockgoodevidence in favor of mockevidence * add a comment for err that is returned * add a changelog for removal of good & bad evidence * add a test for adding evidence * fix test * add ev to types in testcase * Update evidence/pool_test.go Co-Authored-By: Anton Kaliaev <anton.kalyaev@gmail.com> * Update evidence/pool_test.go Co-Authored-By: Anton Kaliaev <anton.kalyaev@gmail.com> * fix tests * fix linting Co-authored-by: Anton Kaliaev <anton.kalyaev@gmail.com>
5 years ago
state: re-order funcs. fix tests
7 years ago
evidence: introduce time.Duration to evidence params (#4254) * evidence: introduce time.Duration to evidence params - add time.duration to evidence - this pr is taking pr #2606 and updating it to use both time and height - closes #2565 Signed-off-by: Marko Baricevic <marbar3778@yahoo.com> * fix testing and genesis cfg in signer harness * remove debugging fmt * change maxageheight to maxagenumblocks, rename other things to block instead of height * further check of duration * check duration to not send peers outdated evidence * change some lines, onward and upward * refactor evidence package * add a changelog pending entry * make mockbadevidence have time and use it * add what could possibly be called a test case * remove mockbadevidence and mockgoodevidence in favor of mockevidence * add a comment for err that is returned * add a changelog for removal of good & bad evidence * add a test for adding evidence * fix test * add ev to types in testcase * Update evidence/pool_test.go Co-Authored-By: Anton Kaliaev <anton.kalyaev@gmail.com> * Update evidence/pool_test.go Co-Authored-By: Anton Kaliaev <anton.kalyaev@gmail.com> * fix tests * fix linting Co-authored-by: Anton Kaliaev <anton.kalyaev@gmail.com>
5 years ago
linters: enable stylecheck (#4153) Refs #3262
5 years ago
evidence: introduce time.Duration to evidence params (#4254) * evidence: introduce time.Duration to evidence params - add time.duration to evidence - this pr is taking pr #2606 and updating it to use both time and height - closes #2565 Signed-off-by: Marko Baricevic <marbar3778@yahoo.com> * fix testing and genesis cfg in signer harness * remove debugging fmt * change maxageheight to maxagenumblocks, rename other things to block instead of height * further check of duration * check duration to not send peers outdated evidence * change some lines, onward and upward * refactor evidence package * add a changelog pending entry * make mockbadevidence have time and use it * add what could possibly be called a test case * remove mockbadevidence and mockgoodevidence in favor of mockevidence * add a comment for err that is returned * add a changelog for removal of good & bad evidence * add a test for adding evidence * fix test * add ev to types in testcase * Update evidence/pool_test.go Co-Authored-By: Anton Kaliaev <anton.kalyaev@gmail.com> * Update evidence/pool_test.go Co-Authored-By: Anton Kaliaev <anton.kalyaev@gmail.com> * fix tests * fix linting Co-authored-by: Anton Kaliaev <anton.kalyaev@gmail.com>
5 years ago
state: re-order funcs. fix tests
7 years ago
fix EvidencePool and VerifyEvidence
7 years ago
update Evidence type - requires pubkey and valset to verify and convert to abci.Evidence
6 years ago
Sec/bucky/35 commit duplicate evidence (#36) Don't add committed evidence to evpool
5 years ago
state: re-order funcs. fix tests
7 years ago
update Evidence type - requires pubkey and valset to verify and convert to abci.Evidence
6 years ago
state: re-order funcs. fix tests
7 years ago
linters: enable stylecheck (#4153) Refs #3262
5 years ago
update Evidence type - requires pubkey and valset to verify and convert to abci.Evidence
6 years ago
fixes from rebase
6 years ago
update Evidence type - requires pubkey and valset to verify and convert to abci.Evidence
6 years ago
state: re-order funcs. fix tests
7 years ago
fix EvidencePool and VerifyEvidence
7 years ago
state: re-order funcs. fix tests
7 years ago
 
  1. package state
  2. 

  3. import (
  4. 	"bytes"
  5. 	"errors"
  6. 	"fmt"
  7. 

  8. 	dbm "github.com/tendermint/tm-db"
  9. 

  10. 	"github.com/tendermint/tendermint/crypto"
  11. 	"github.com/tendermint/tendermint/types"
  12. )
  13. 

  14. //-----------------------------------------------------

  15. // Validate block

  16. 

  17. func validateBlock(evidencePool EvidencePool, stateDB dbm.DB, state State, block *types.Block) error {
  18. 	// Validate internal consistency.

  19. 	if err := block.ValidateBasic(); err != nil {
  20. 		return err
  21. 	}
  22. 

  23. 	// Validate basic info.

  24. 	if block.Version != state.Version.Consensus {
  25. 		return fmt.Errorf("wrong Block.Header.Version. Expected %v, got %v",
  26. 			state.Version.Consensus,
  27. 			block.Version,
  28. 		)
  29. 	}
  30. 	if block.ChainID != state.ChainID {
  31. 		return fmt.Errorf("wrong Block.Header.ChainID. Expected %v, got %v",
  32. 			state.ChainID,
  33. 			block.ChainID,
  34. 		)
  35. 	}
  36. 	if block.Height != state.LastBlockHeight+1 {
  37. 		return fmt.Errorf("wrong Block.Header.Height. Expected %v, got %v",
  38. 			state.LastBlockHeight+1,
  39. 			block.Height,
  40. 		)
  41. 	}
  42. 

  43. 	// Validate prev block info.

  44. 	if !block.LastBlockID.Equals(state.LastBlockID) {
  45. 		return fmt.Errorf("wrong Block.Header.LastBlockID.  Expected %v, got %v",
  46. 			state.LastBlockID,
  47. 			block.LastBlockID,
  48. 		)
  49. 	}
  50. 

  51. 	// Validate app info

  52. 	if !bytes.Equal(block.AppHash, state.AppHash) {
  53. 		return fmt.Errorf("wrong Block.Header.AppHash.  Expected %X, got %v",
  54. 			state.AppHash,
  55. 			block.AppHash,
  56. 		)
  57. 	}
  58. 	if !bytes.Equal(block.ConsensusHash, state.ConsensusParams.Hash()) {
  59. 		return fmt.Errorf("wrong Block.Header.ConsensusHash.  Expected %X, got %v",
  60. 			state.ConsensusParams.Hash(),
  61. 			block.ConsensusHash,
  62. 		)
  63. 	}
  64. 	if !bytes.Equal(block.LastResultsHash, state.LastResultsHash) {
  65. 		return fmt.Errorf("wrong Block.Header.LastResultsHash.  Expected %X, got %v",
  66. 			state.LastResultsHash,
  67. 			block.LastResultsHash,
  68. 		)
  69. 	}
  70. 	if !bytes.Equal(block.ValidatorsHash, state.Validators.Hash()) {
  71. 		return fmt.Errorf("wrong Block.Header.ValidatorsHash.  Expected %X, got %v",
  72. 			state.Validators.Hash(),
  73. 			block.ValidatorsHash,
  74. 		)
  75. 	}
  76. 	if !bytes.Equal(block.NextValidatorsHash, state.NextValidators.Hash()) {
  77. 		return fmt.Errorf("wrong Block.Header.NextValidatorsHash.  Expected %X, got %v",
  78. 			state.NextValidators.Hash(),
  79. 			block.NextValidatorsHash,
  80. 		)
  81. 	}
  82. 

  83. 	// Validate block LastCommit.

  84. 	if block.Height == 1 {
  85. 		if len(block.LastCommit.Signatures) != 0 {
  86. 			return errors.New("block at height 1 can't have LastCommit signatures")
  87. 		}
  88. 	} else {
  89. 		if len(block.LastCommit.Signatures) != state.LastValidators.Size() {
  90. 			return types.NewErrInvalidCommitSignatures(state.LastValidators.Size(), len(block.LastCommit.Signatures))
  91. 		}
  92. 		err := state.LastValidators.VerifyCommit(
  93. 			state.ChainID, state.LastBlockID, block.Height-1, block.LastCommit)
  94. 		if err != nil {
  95. 			return err
  96. 		}
  97. 	}
  98. 

  99. 	// Validate block Time

  100. 	if block.Height > 1 {
  101. 		if !block.Time.After(state.LastBlockTime) {
  102. 			return fmt.Errorf("block time %v not greater than last block time %v",
  103. 				block.Time,
  104. 				state.LastBlockTime,
  105. 			)
  106. 		}
  107. 

  108. 		medianTime := MedianTime(block.LastCommit, state.LastValidators)
  109. 		if !block.Time.Equal(medianTime) {
  110. 			return fmt.Errorf("invalid block time. Expected %v, got %v",
  111. 				medianTime,
  112. 				block.Time,
  113. 			)
  114. 		}
  115. 	} else if block.Height == 1 {
  116. 		genesisTime := state.LastBlockTime
  117. 		if !block.Time.Equal(genesisTime) {
  118. 			return fmt.Errorf("block time %v is not equal to genesis time %v",
  119. 				block.Time,
  120. 				genesisTime,
  121. 			)
  122. 		}
  123. 	}
  124. 

  125. 	// Limit the amount of evidence

  126. 	maxNumEvidence, _ := types.MaxEvidencePerBlock(state.ConsensusParams.Block.MaxBytes)
  127. 	numEvidence := int64(len(block.Evidence.Evidence))
  128. 	if numEvidence > maxNumEvidence {
  129. 		return types.NewErrEvidenceOverflow(maxNumEvidence, numEvidence)
  130. 

  131. 	}
  132. 

  133. 	// Validate all evidence.

  134. 	for _, ev := range block.Evidence.Evidence {
  135. 		if err := VerifyEvidence(stateDB, state, ev); err != nil {
  136. 			return types.NewErrEvidenceInvalid(ev, err)
  137. 		}
  138. 		if evidencePool != nil && evidencePool.IsCommitted(ev) {
  139. 			return types.NewErrEvidenceInvalid(ev, errors.New("evidence was already committed"))
  140. 		}
  141. 	}
  142. 

  143. 	// NOTE: We can't actually verify it's the right proposer because we dont

  144. 	// know what round the block was first proposed. So just check that it's

  145. 	// a legit address and a known validator.

  146. 	if len(block.ProposerAddress) != crypto.AddressSize ||
  147. 		!state.Validators.HasAddress(block.ProposerAddress) {
  148. 		return fmt.Errorf("block.Header.ProposerAddress, %X, is not a validator",
  149. 			block.ProposerAddress,
  150. 		)
  151. 	}
  152. 

  153. 	return nil
  154. }
  155. 

  156. // VerifyEvidence verifies the evidence fully by checking:

  157. // - it is sufficiently recent (MaxAge)

  158. // - it is from a key who was a validator at the given height

  159. // - it is internally consistent

  160. // - it was properly signed by the alleged equivocator

  161. func VerifyEvidence(stateDB dbm.DB, state State, evidence types.Evidence) error {
  162. 	var (
  163. 		height         = state.LastBlockHeight
  164. 		evidenceParams = state.ConsensusParams.Evidence
  165. 	)
  166. 

  167. 	ageNumBlocks := height - evidence.Height()
  168. 	if ageNumBlocks > evidenceParams.MaxAgeNumBlocks {
  169. 		return fmt.Errorf("evidence from height %d is too old. Min height is %d",
  170. 			evidence.Height(), height-evidenceParams.MaxAgeNumBlocks)
  171. 	}
  172. 

  173. 	ageDuration := state.LastBlockTime.Sub(evidence.Time())
  174. 	if ageDuration > evidenceParams.MaxAgeDuration {
  175. 		return fmt.Errorf("evidence created at %v has expired. Evidence can not be older than: %v",
  176. 			evidence.Time(), state.LastBlockTime.Add(evidenceParams.MaxAgeDuration))
  177. 	}
  178. 

  179. 	valset, err := LoadValidators(stateDB, evidence.Height())
  180. 	if err != nil {
  181. 		// TODO: if err is just that we cant find it cuz we pruned, ignore.

  182. 		// TODO: if its actually bad evidence, punish peer

  183. 		return err
  184. 	}
  185. 

  186. 	// The address must have been an active validator at the height.

  187. 	// NOTE: we will ignore evidence from H if the key was not a validator

  188. 	// at H, even if it is a validator at some nearby H'

  189. 	// XXX: this makes lite-client bisection as is unsafe

  190. 	// See https://github.com/tendermint/tendermint/issues/3244

  191. 	ev := evidence
  192. 	height, addr := ev.Height(), ev.Address()
  193. 	_, val := valset.GetByAddress(addr)
  194. 	if val == nil {
  195. 		return fmt.Errorf("address %X was not a validator at height %d", addr, height)
  196. 	}
  197. 

  198. 	if err := evidence.Verify(state.ChainID, val.PubKey); err != nil {
  199. 		return err
  200. 	}
  201. 

  202. 	return nil
  203. }