Qortal/altcoinj
1
0
Fork 1
mirror of https://github.com/Qortal/altcoinj.git synced 2025-11-02 05:27:17 +00:00
Code Issues Packages Projects Releases Wiki Activity

Bloom filtering: check for malformed Merkle trees. Resolves issue 593. Thanks to Pieter Wiulle.

Browse Source
This commit is contained in:
Mike Hearn
2014-11-24 13:59:42 +01:00
parent dfc9d3c924
commit bd986f35f1
2 changed files with 32 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
core/src/main/java/org/bitcoinj/core/PartialMerkleTree.java
View File

@@ -185,14 +185,14 @@ public class PartialMerkleTree extends Message {
private Sha256Hash recursiveExtractHashes(int height, int pos, ValuesUsed used, List<Sha256Hash> matchedHashes) throws VerificationException { private Sha256Hash recursiveExtractHashes(int height, int pos, ValuesUsed used, List<Sha256Hash> matchedHashes) throws VerificationException {
if (used.bitsUsed >= matchedChildBits.length*8) { if (used.bitsUsed >= matchedChildBits.length*8) {
// overflowed the bits array - failure // overflowed the bits array - failure
throw new VerificationException("CPartialMerkleTree overflowed its bits array"); throw new VerificationException("PartialMerkleTree overflowed its bits array");
} }
boolean parentOfMatch = checkBitLE(matchedChildBits, used.bitsUsed++); boolean parentOfMatch = checkBitLE(matchedChildBits, used.bitsUsed++);
if (height == 0 || !parentOfMatch) { if (height == 0 || !parentOfMatch) {
// if at height 0, or nothing interesting below, use stored hash and do not descend // if at height 0, or nothing interesting below, use stored hash and do not descend
if (used.hashesUsed >= hashes.size()) { if (used.hashesUsed >= hashes.size()) {
// overflowed the hash array - failure // overflowed the hash array - failure
throw new VerificationException("CPartialMerkleTree overflowed its hash array"); throw new VerificationException("PartialMerkleTree overflowed its hash array");
} }
Sha256Hash hash = hashes.get(used.hashesUsed++); Sha256Hash hash = hashes.get(used.hashesUsed++);
if (height == 0 && parentOfMatch) // in case of height 0, we have a matched txid if (height == 0 && parentOfMatch) // in case of height 0, we have a matched txid
@@ -201,10 +201,13 @@ public class PartialMerkleTree extends Message {
} else { } else {
// otherwise, descend into the subtrees to extract matched txids and hashes // otherwise, descend into the subtrees to extract matched txids and hashes
byte[] left = recursiveExtractHashes(height - 1, pos * 2, used, matchedHashes).getBytes(), right; byte[] left = recursiveExtractHashes(height - 1, pos * 2, used, matchedHashes).getBytes(), right;
if (pos * 2 + 1 < getTreeWidth(transactionCount, height-1)) if (pos * 2 + 1 < getTreeWidth(transactionCount, height-1)) {
right = recursiveExtractHashes(height - 1, pos * 2 + 1, used, matchedHashes).getBytes(); right = recursiveExtractHashes(height - 1, pos * 2 + 1, used, matchedHashes).getBytes();
else if (Arrays.equals(right, left))
throw new VerificationException("Invalid merkle tree with duplicated left/right branches");
} else {
right = left; right = left;
}
// and combine them before returning // and combine them before returning
return combineLeftRight(left, right); return combineLeftRight(left, right);
} }
@@ -223,13 +226,12 @@ public class PartialMerkleTree extends Message {
* The returned root should be checked against the * The returned root should be checked against the
* merkle root contained in the block header for security. * merkle root contained in the block header for security.
* *
* @param matchedHashes A list which will contain the matched txn (will be cleared) * @param matchedHashesOut A list which will contain the matched txn (will be cleared).
* Required to be a LinkedHashSet in order to retain order or transactions in the block
* @return the merkle root of this merkle tree * @return the merkle root of this merkle tree
* @throws ProtocolException if this partial merkle tree is invalid * @throws ProtocolException if this partial merkle tree is invalid
*/ */
public Sha256Hash getTxnHashAndMerkleRoot(List<Sha256Hash> matchedHashes) throws VerificationException { public Sha256Hash getTxnHashAndMerkleRoot(List<Sha256Hash> matchedHashesOut) throws VerificationException {
matchedHashes.clear(); matchedHashesOut.clear();
// An empty set will not work // An empty set will not work
if (transactionCount == 0) if (transactionCount == 0)
@@ -249,7 +251,7 @@ public class PartialMerkleTree extends Message {
height++; height++;
// traverse the partial tree // traverse the partial tree
ValuesUsed used = new ValuesUsed(); ValuesUsed used = new ValuesUsed();
Sha256Hash merkleRoot = recursiveExtractHashes(height, 0, used, matchedHashes); Sha256Hash merkleRoot = recursiveExtractHashes(height, 0, used, matchedHashesOut);
// verify that all bits were consumed (except for the padding caused by serializing it as a byte sequence) // verify that all bits were consumed (except for the padding caused by serializing it as a byte sequence)
if ((used.bitsUsed+7)/8 != matchedChildBits.length || if ((used.bitsUsed+7)/8 != matchedChildBits.length ||
// verify that all hashes were consumed // verify that all hashes were consumed

21
core/src/test/java/org/bitcoinj/core/FilteredBlockAndPartialMerkleTreeTests.java
View File

@@ -17,6 +17,7 @@
package org.bitcoinj.core; package org.bitcoinj.core;
import com.google.common.collect.Lists;
import org.bitcoinj.core.TransactionConfidence.ConfidenceType; import org.bitcoinj.core.TransactionConfidence.ConfidenceType;
import org.bitcoinj.params.UnitTestParams; import org.bitcoinj.params.UnitTestParams;
import org.bitcoinj.store.MemoryBlockStore; import org.bitcoinj.store.MemoryBlockStore;
@@ -88,6 +89,26 @@ public class FilteredBlockAndPartialMerkleTreeTests extends TestWithPeerGroup {
assertTrue(txns.contains(tx2.getHash())); assertTrue(txns.contains(tx2.getHash()));
} }
private Sha256Hash numAsHash(int num) {
byte[] bits = new byte[32];
bits[0] = (byte) num;
return new Sha256Hash(bits);
}
@Test(expected = VerificationException.class)
public void merkleTreeMalleability() throws Exception {
List<Sha256Hash> hashes = Lists.newArrayList();
for (byte i = 1; i <= 10; i++) hashes.add(numAsHash(i));
hashes.add(numAsHash(9));
hashes.add(numAsHash(10));
byte[] includeBits = new byte[2];
Utils.setBitLE(includeBits, 9);
Utils.setBitLE(includeBits, 10);
PartialMerkleTree pmt = PartialMerkleTree.buildFromLeaves(params, includeBits, hashes);
List<Sha256Hash> matchedHashes = Lists.newArrayList();
pmt.getTxnHashAndMerkleRoot(matchedHashes);
}
@Test @Test
public void serializeDownloadBlockWithWallet() throws Exception { public void serializeDownloadBlockWithWallet() throws Exception {
unitTestParams = UnitTestParams.get(); unitTestParams = UnitTestParams.get();