evidence: introduction of LightClientAttackEvidence and refactor of evidence lifecycle (#5361)

evidence: modify evidence types (#5342) light: detect light client attacks (#5344) evidence: refactor evidence pool (#5345) abci: application evidence prepared by evidence pool (#5354)
2026-01-03 19:53:58 +00:00 · 2020-09-22 10:22:54 +02:00
parent 309e29c245
commit ed002cea7e
57 changed files with 3240 additions and 1241 deletions
--- a/light/client_test.go
+++ b/light/client_test.go
@@ -61,7 +61,7 @@ var (
 		valSet,
 	)
 	deadNode      = mockp.NewDeadMock(chainID)
-	largeFullNode = mockp.New(GenMockNode(chainID, 10, 3, 0, bTime))
+	largeFullNode = mockp.New(genMockNode(chainID, 10, 3, 0, bTime))
 )

 func TestValidateTrustOptions(t *testing.T) {
@@ -118,6 +118,7 @@ func TestMock(t *testing.T) {
 func TestClient_SequentialVerification(t *testing.T) {
 	newKeys := genPrivKeys(4)
 	newVals := newKeys.ToValidators(10, 1)
+	differentVals, _ := types.RandValidatorSet(10, 100)

 	testCases := []struct {
 		name         string
@@ -146,6 +147,26 @@ func TestClient_SequentialVerification(t *testing.T) {
 			true,
 			false,
 		},
+		{
+			"bad: no first signed header",
+			map[int64]*types.SignedHeader{},
+			map[int64]*types.ValidatorSet{
+				1: differentVals,
+			},
+			true,
+			true,
+		},
+		{
+			"bad: different first validator set",
+			map[int64]*types.SignedHeader{
+				1: h1,
+			},
+			map[int64]*types.ValidatorSet{
+				1: differentVals,
+			},
+			true,
+			true,
+		},
 		{
 			"bad: 1/3 signed interim header",
 			map[int64]*types.SignedHeader{
@@ -356,15 +377,15 @@ func TestClient_SkippingVerification(t *testing.T) {
 // start from a large light block to make sure that the pivot height doesn't select a height outside
 // the appropriate range
 func TestClientLargeBisectionVerification(t *testing.T) {
-	veryLargeFullNode := mockp.New(GenMockNode(chainID, 100, 3, 1, bTime))
-	l1, err := veryLargeFullNode.LightBlock(90)
+	veryLargeFullNode := mockp.New(genMockNode(chainID, 100, 3, 0, bTime))
+	trustedLightBlock, err := veryLargeFullNode.LightBlock(5)
 	require.NoError(t, err)
 	c, err := light.NewClient(
 		chainID,
 		light.TrustOptions{
 			Period: 4 * time.Hour,
-			Height: l1.Height,
-			Hash:   l1.Hash(),
+			Height: trustedLightBlock.Height,
+			Hash:   trustedLightBlock.Hash(),
 		},
 		veryLargeFullNode,
 		[]provider.Provider{veryLargeFullNode},
@@ -896,6 +917,9 @@ func TestClientRemovesWitnessIfItSendsUsIncorrectHeader(t *testing.T) {
 		},
 	)

+	lb1, _ := badProvider1.LightBlock(2)
+	require.NotEqual(t, lb1.Hash(), l1.Hash())
+
 	c, err := light.NewClient(
 		chainID,
 		trustOptions,
@@ -919,7 +943,7 @@ func TestClientRemovesWitnessIfItSendsUsIncorrectHeader(t *testing.T) {
 	// remaining witnesses don't have light block -> error
 	_, err = c.VerifyLightBlockAtHeight(3, bTime.Add(2*time.Hour))
 	if assert.Error(t, err) {
-		assert.Equal(t, "awaiting response from all witnesses exceeded dropout time", err.Error())
+		assert.Equal(t, light.ErrFailedHeaderCrossReferencing, err)
 	}
 	// witness does not have a light block -> left in the list
 	assert.EqualValues(t, 1, len(c.Witnesses()))