protocol/state: duplicate, overlapping nonces possible

Question

protocol/state: duplicate, overlapping nonces possible

Closed this issue 8 years ago · 4 comments

The tx max and min times should not be used for nonce validation, but rather the time range associated with the nonce itself because the nonce time range can be greater than and encompass the tx time range.

Additionally, just comparing the max times is not sufficient. The nonces should not be able to overlap, so the max time of the nonce in the state should be less than the min time of the nonce in the transaction.

It may be worth not even doing the time comparison, but instead checking presence and relying on block timestamp based expiration.

Relevant Code:
https://github.com/chain/chain/blob/23f405c000f934ffe264781d8337a69916ab4028/protocol/state/snapshot.go#L74-L81

Answer 1 · 2017-05-02T20:04:23.000Z

See also #728 (comment)

Answer 2 · 2017-05-02T21:36:48.000Z

Agreed, thanks

@bobg

Answer 3 · 2017-05-02T21:37:38.000Z

That's in response to the first point. I'm not sure I understand the second. As long as the nonces have different maxtimes, they will be unique, since the maxtime is hashed into the nonce. So isn't that fine?

Answer 4 · 2017-05-02T21:46:16.000Z

Yeah, they should be unique. The pr changes from a time check to a presence check.