Raise InitError when peers.dat is invalid or corrupted

This commit is contained in:
MarcoFalke 2021-08-21 16:17:52 +02:00
parent fa4e2ccfd8
commit fa55c3dc1b
No known key found for this signature in database
GPG key ID: CE2B75697E69A548
5 changed files with 66 additions and 52 deletions

View file

@ -21,6 +21,12 @@
#include <util/translation.h> #include <util/translation.h>
namespace { namespace {
class DbNotFoundError : public std::exception
{
using std::exception::exception;
};
template <typename Stream, typename Data> template <typename Stream, typename Data>
bool SerializeDB(Stream& stream, const Data& data) bool SerializeDB(Stream& stream, const Data& data)
{ {
@ -78,47 +84,40 @@ bool SerializeFileDB(const std::string& prefix, const fs::path& path, const Data
} }
template <typename Stream, typename Data> template <typename Stream, typename Data>
bool DeserializeDB(Stream& stream, Data& data, bool fCheckSum = true) void DeserializeDB(Stream& stream, Data& data, bool fCheckSum = true)
{ {
try { CHashVerifier<Stream> verifier(&stream);
CHashVerifier<Stream> verifier(&stream); // de-serialize file header (network specific magic number) and ..
// de-serialize file header (network specific magic number) and .. unsigned char pchMsgTmp[4];
unsigned char pchMsgTmp[4]; verifier >> pchMsgTmp;
verifier >> pchMsgTmp; // ... verify the network matches ours
// ... verify the network matches ours if (memcmp(pchMsgTmp, Params().MessageStart(), sizeof(pchMsgTmp))) {
if (memcmp(pchMsgTmp, Params().MessageStart(), sizeof(pchMsgTmp))) throw std::runtime_error{"Invalid network magic number"};
return error("%s: Invalid network magic number", __func__); }
// de-serialize data // de-serialize data
verifier >> data; verifier >> data;
// verify checksum // verify checksum
if (fCheckSum) { if (fCheckSum) {
uint256 hashTmp; uint256 hashTmp;
stream >> hashTmp; stream >> hashTmp;
if (hashTmp != verifier.GetHash()) { if (hashTmp != verifier.GetHash()) {
return error("%s: Checksum mismatch, data corrupted", __func__); throw std::runtime_error{"Checksum mismatch, data corrupted"};
}
} }
} }
catch (const std::exception& e) {
return error("%s: Deserialize or I/O error - %s", __func__, e.what());
}
return true;
} }
template <typename Data> template <typename Data>
bool DeserializeFileDB(const fs::path& path, Data& data, int version) void DeserializeFileDB(const fs::path& path, Data& data, int version)
{ {
// open input file, and associate with CAutoFile // open input file, and associate with CAutoFile
FILE* file = fsbridge::fopen(path, "rb"); FILE* file = fsbridge::fopen(path, "rb");
CAutoFile filein(file, SER_DISK, version); CAutoFile filein(file, SER_DISK, version);
if (filein.IsNull()) { if (filein.IsNull()) {
LogPrintf("Missing or invalid file %s\n", path.string()); throw DbNotFoundError{};
return false;
} }
return DeserializeDB(filein, data); DeserializeDB(filein, data);
} }
} // namespace } // namespace
@ -177,9 +176,9 @@ bool DumpPeerAddresses(const ArgsManager& args, const CAddrMan& addr)
return SerializeFileDB("peers", pathAddr, addr, CLIENT_VERSION); return SerializeFileDB("peers", pathAddr, addr, CLIENT_VERSION);
} }
bool ReadFromStream(CAddrMan& addr, CDataStream& ssPeers) void ReadFromStream(CAddrMan& addr, CDataStream& ssPeers)
{ {
return DeserializeDB(ssPeers, addr, false); DeserializeDB(ssPeers, addr, false);
} }
std::optional<bilingual_str> LoadAddrman(const std::vector<bool>& asmap, const ArgsManager& args, std::unique_ptr<CAddrMan>& addrman) std::optional<bilingual_str> LoadAddrman(const std::vector<bool>& asmap, const ArgsManager& args, std::unique_ptr<CAddrMan>& addrman)
@ -189,13 +188,18 @@ std::optional<bilingual_str> LoadAddrman(const std::vector<bool>& asmap, const A
int64_t nStart = GetTimeMillis(); int64_t nStart = GetTimeMillis();
const auto path_addr{args.GetDataDirNet() / "peers.dat"}; const auto path_addr{args.GetDataDirNet() / "peers.dat"};
if (DeserializeFileDB(path_addr, *addrman, CLIENT_VERSION)) { try {
DeserializeFileDB(path_addr, *addrman, CLIENT_VERSION);
LogPrintf("Loaded %i addresses from peers.dat %dms\n", addrman->size(), GetTimeMillis() - nStart); LogPrintf("Loaded %i addresses from peers.dat %dms\n", addrman->size(), GetTimeMillis() - nStart);
} else { } catch (const DbNotFoundError&) {
// Addrman can be in an inconsistent state after failure, reset it // Addrman can be in an inconsistent state after failure, reset it
addrman = std::make_unique<CAddrMan>(asmap, /* deterministic */ false, /* consistency_check_ratio */ check_addrman); addrman = std::make_unique<CAddrMan>(asmap, /* deterministic */ false, /* consistency_check_ratio */ check_addrman);
LogPrintf("Recreating peers.dat\n"); LogPrintf("Creating peers.dat because the file was not found (%s)\n", path_addr);
DumpPeerAddresses(args, *addrman); DumpPeerAddresses(args, *addrman);
} catch (const std::exception& e) {
addrman = nullptr;
return strprintf(_("Invalid or corrupt peers.dat (%s). If you believe this is a bug, please report it to %s. As a workaround, you can move the file (%s) out of the way (rename, move, or delete) to have a new one created on the next start."),
e.what(), PACKAGE_BUGREPORT, path_addr);
} }
return std::nullopt; return std::nullopt;
} }
@ -209,9 +213,10 @@ void DumpAnchors(const fs::path& anchors_db_path, const std::vector<CAddress>& a
std::vector<CAddress> ReadAnchors(const fs::path& anchors_db_path) std::vector<CAddress> ReadAnchors(const fs::path& anchors_db_path)
{ {
std::vector<CAddress> anchors; std::vector<CAddress> anchors;
if (DeserializeFileDB(anchors_db_path, anchors, CLIENT_VERSION | ADDRV2_FORMAT)) { try {
DeserializeFileDB(anchors_db_path, anchors, CLIENT_VERSION | ADDRV2_FORMAT);
LogPrintf("Loaded %i addresses from %s\n", anchors.size(), anchors_db_path.filename()); LogPrintf("Loaded %i addresses from %s\n", anchors.size(), anchors_db_path.filename());
} else { } catch (const std::exception&) {
anchors.clear(); anchors.clear();
} }

View file

@ -21,7 +21,7 @@ struct bilingual_str;
bool DumpPeerAddresses(const ArgsManager& args, const CAddrMan& addr); bool DumpPeerAddresses(const ArgsManager& args, const CAddrMan& addr);
/** Only used by tests. */ /** Only used by tests. */
bool ReadFromStream(CAddrMan& addr, CDataStream& ssPeers); void ReadFromStream(CAddrMan& addr, CDataStream& ssPeers);
/** Access to the banlist database (banlist.json) */ /** Access to the banlist database (banlist.json) */
class CBanDB class CBanDB

View file

@ -1043,7 +1043,7 @@ BOOST_AUTO_TEST_CASE(load_addrman)
CAddrMan addrman2(/* asmap */ std::vector<bool>(), /* deterministic */ false, /* consistency_check_ratio */ 100); CAddrMan addrman2(/* asmap */ std::vector<bool>(), /* deterministic */ false, /* consistency_check_ratio */ 100);
BOOST_CHECK(addrman2.size() == 0); BOOST_CHECK(addrman2.size() == 0);
BOOST_CHECK(ReadFromStream(addrman2, ssPeers2)); ReadFromStream(addrman2, ssPeers2);
BOOST_CHECK(addrman2.size() == 3); BOOST_CHECK(addrman2.size() == 3);
} }
@ -1073,7 +1073,7 @@ BOOST_AUTO_TEST_CASE(load_addrman_corrupted)
CAddrMan addrman2(/* asmap */ std::vector<bool>(), /* deterministic */ false, /* consistency_check_ratio */ 100); CAddrMan addrman2(/* asmap */ std::vector<bool>(), /* deterministic */ false, /* consistency_check_ratio */ 100);
BOOST_CHECK(addrman2.size() == 0); BOOST_CHECK(addrman2.size() == 0);
BOOST_CHECK(!ReadFromStream(addrman2, ssPeers2)); BOOST_CHECK_THROW(ReadFromStream(addrman2, ssPeers2), std::ios_base::failure);
} }

View file

@ -23,5 +23,8 @@ FUZZ_TARGET_INIT(data_stream_addr_man, initialize_data_stream_addr_man)
FuzzedDataProvider fuzzed_data_provider{buffer.data(), buffer.size()}; FuzzedDataProvider fuzzed_data_provider{buffer.data(), buffer.size()};
CDataStream data_stream = ConsumeDataStream(fuzzed_data_provider); CDataStream data_stream = ConsumeDataStream(fuzzed_data_provider);
CAddrMan addr_man(/* asmap */ std::vector<bool>(), /* deterministic */ false, /* consistency_check_ratio */ 0); CAddrMan addr_man(/* asmap */ std::vector<bool>(), /* deterministic */ false, /* consistency_check_ratio */ 0);
ReadFromStream(addr_man, data_stream); try {
ReadFromStream(addr_man, data_stream);
} catch (const std::exception&) {
}
} }

View file

@ -10,6 +10,7 @@ import struct
from test_framework.messages import ser_uint256, hash256 from test_framework.messages import ser_uint256, hash256
from test_framework.p2p import MAGIC_BYTES from test_framework.p2p import MAGIC_BYTES
from test_framework.test_framework import BitcoinTestFramework from test_framework.test_framework import BitcoinTestFramework
from test_framework.test_node import ErrorMatch
from test_framework.util import assert_equal from test_framework.util import assert_equal
@ -43,6 +44,12 @@ class AddrmanTest(BitcoinTestFramework):
def run_test(self): def run_test(self):
peers_dat = os.path.join(self.nodes[0].datadir, self.chain, "peers.dat") peers_dat = os.path.join(self.nodes[0].datadir, self.chain, "peers.dat")
init_error = lambda reason: (
f"Error: Invalid or corrupt peers.dat \\({reason}\\). If you believe this "
f"is a bug, please report it to {self.config['environment']['PACKAGE_BUGREPORT']}. "
f'As a workaround, you can move the file \\("{peers_dat}"\\) out of the way \\(rename, '
"move, or delete\\) to have a new one created on the next start."
)
self.log.info("Check that mocked addrman is valid") self.log.info("Check that mocked addrman is valid")
self.stop_node(0) self.stop_node(0)
@ -54,30 +61,29 @@ class AddrmanTest(BitcoinTestFramework):
self.log.info("Check that addrman from future cannot be read") self.log.info("Check that addrman from future cannot be read")
self.stop_node(0) self.stop_node(0)
write_addrman(peers_dat, lowest_compatible=111) write_addrman(peers_dat, lowest_compatible=111)
with self.nodes[0].assert_debug_log([ self.nodes[0].assert_start_raises_init_error(
f'ERROR: DeserializeDB: Deserialize or I/O error - Unsupported format of addrman database: 1. It is compatible with formats >=111, but the maximum supported by this version of {self.config["environment"]["PACKAGE_NAME"]} is 3.', expected_msg=init_error(
"Recreating peers.dat", "Unsupported format of addrman database: 1. It is compatible with "
]): "formats >=111, but the maximum supported by this version of "
self.start_node(0) f"{self.config['environment']['PACKAGE_NAME']} is 3.: (.+)"
assert_equal(self.nodes[0].getnodeaddresses(), []) ),
match=ErrorMatch.FULL_REGEX,
)
self.log.info("Check that corrupt addrman cannot be read") self.log.info("Check that corrupt addrman cannot be read")
self.stop_node(0) self.stop_node(0)
with open(peers_dat, "wb") as f: with open(peers_dat, "wb") as f:
f.write(serialize_addrman()[:-1]) f.write(serialize_addrman()[:-1])
with self.nodes[0].assert_debug_log([ self.nodes[0].assert_start_raises_init_error(
"ERROR: DeserializeDB: Deserialize or I/O error - CAutoFile::read: end of file", expected_msg=init_error("CAutoFile::read: end of file.*"),
"Recreating peers.dat", match=ErrorMatch.FULL_REGEX,
]): )
self.start_node(0)
assert_equal(self.nodes[0].getnodeaddresses(), [])
self.log.info("Check that missing addrman is recreated") self.log.info("Check that missing addrman is recreated")
self.stop_node(0) self.stop_node(0)
os.remove(peers_dat) os.remove(peers_dat)
with self.nodes[0].assert_debug_log([ with self.nodes[0].assert_debug_log([
f"Missing or invalid file {peers_dat}", f'Creating peers.dat because the file was not found ("{peers_dat}")',
"Recreating peers.dat",
]): ]):
self.start_node(0) self.start_node(0)
assert_equal(self.nodes[0].getnodeaddresses(), []) assert_equal(self.nodes[0].getnodeaddresses(), [])