Prevent a malicious validator set from overwriting a notable cosign

Also prevents panics from an invalid Serai node (removing the assumption of an honest Serai node).
2025-12-08 20:29:23 +00:00 · 2024-12-25 02:11:05 -05:00
parent e119fb4c16
commit 5b337c3ce8
3 changed files with 40 additions and 34 deletions
--- a/coordinator/cosign/src/intend.rs
+++ b/coordinator/cosign/src/intend.rs
@@ -1,6 +1,6 @@
 use core::future::Future;

-use serai_client::{SeraiError, Serai, validator_sets::primitives::ValidatorSet};
+use serai_client::{Serai, validator_sets::primitives::ValidatorSet};

 use serai_db::*;
 use serai_task::ContinuallyRan;
@@ -31,18 +31,19 @@ db_channel! {
 async fn block_has_events_justifying_a_cosign(
  serai: &Serai,
  block_number: u64,
-) -> Result<(Block, HasEvents), SeraiError> {
+) -> Result<(Block, HasEvents), String> {
  let block = serai
    .finalized_block_by_number(block_number)
-    .await?
-    .expect("couldn't get block which should've been finalized");
+    .await
+    .map_err(|e| format!("{e:?}"))?
+    .ok_or_else(|| "couldn't get block which should've been finalized".to_string())?;
  let serai = serai.as_of(block.hash());

-  if !serai.validator_sets().key_gen_events().await?.is_empty() {
+  if !serai.validator_sets().key_gen_events().await.map_err(|e| format!("{e:?}"))?.is_empty() {
    return Ok((block, HasEvents::Notable));
  }

-  if !serai.coins().burn_with_instruction_events().await?.is_empty() {
+  if !serai.coins().burn_with_instruction_events().await.map_err(|e| format!("{e:?}"))?.is_empty() {
    return Ok((block, HasEvents::NonNotable));
  }

@@ -79,7 +80,10 @@ impl<D: Db> ContinuallyRan for CosignIntendTask<D> {
            if has_events == HasEvents::Notable {
              let sets = cosigning_sets(&self.serai.as_of(block.hash())).await?;
              let global_session = GlobalSession::new(sets).id();
-              GlobalSessions::set(&mut txn, global_session, &(block.number(), block.hash()));
+              GlobalSessions::set(&mut txn, global_session, &(block_number, block.hash()));
+              if let Some(ending_global_session) = LatestGlobalSessionIntended::get(&txn) {
+                GlobalSessionLastBlock::set(&mut txn, ending_global_session, &block_number);
+              }
              LatestGlobalSessionIntended::set(&mut txn, &global_session);
            }