refactor: split quorum commitment verification and its signatures

knst · knst · commit 76e4e726fe7b · 2025-08-19T20:50:17.000+07:00
diff --git a/src/llmq/blockprocessor.cpp b/src/llmq/blockprocessor.cpp
@@ -196,8 +196,21 @@ bool CQuorumBlockProcessor::ProcessBlock(const CBlock& block, gsl::not_null<cons
         }
     }
 
+    if (fBLSChecks) {
+        for (const auto& [_, qc] : qcs) {
+            if (qc.IsNull()) continue;
+            const auto* pQuorumBaseBlockIndex = m_chainstate.m_blockman.LookupBlockIndex(qc.quorumHash);
+            if (!qc.VerifySignature(m_dmnman, m_qsnapman, pQuorumBaseBlockIndex)) {
+                LogPrintf("[ProcessBlock] failed h[%d] llmqType[%d] version[%d] quorumIndex[%d] quorumHash[%s]\n",
+                          pindex->nHeight, ToUnderlying(qc.llmqType), qc.nVersion, qc.quorumIndex,
+                          qc.quorumHash.ToString());
+                return false;
+            }
+        }
+    }
+
     for (const auto& [_, qc] : qcs) {
-        if (!ProcessCommitment(pindex->nHeight, blockHash, qc, state, fJustCheck, fBLSChecks)) {
+        if (!ProcessCommitment(pindex->nHeight, blockHash, qc, state, fJustCheck, false)) {
             LogPrintf("[ProcessBlock] failed h[%d] llmqType[%d] version[%d] quorumIndex[%d] quorumHash[%s]\n", pindex->nHeight, ToUnderlying(qc.llmqType), qc.nVersion, qc.quorumIndex, qc.quorumHash.ToString());
             return false;
         }
diff --git a/src/llmq/commitment.cpp b/src/llmq/commitment.cpp
@@ -27,6 +27,57 @@ CFinalCommitment::CFinalCommitment(const Consensus::LLMQParams& params, const ui
 {
 }
 
+bool CFinalCommitment::VerifySignature(CDeterministicMNManager& dmnman, CQuorumSnapshotManager& qsnapman,
+                                       gsl::not_null<const CBlockIndex*> pQuorumBaseBlockIndex) const
+{
+    auto members = utils::GetAllQuorumMembers(llmqType, dmnman, qsnapman, pQuorumBaseBlockIndex);
+    const auto& llmq_params_opt = Params().GetLLMQ(llmqType);
+    if (!llmq_params_opt.has_value()) {
+        LogPrint(BCLog::LLMQ, "CFinalCommitment -- q[%s] invalid llmqType=%d\n", quorumHash.ToString(),
+                 ToUnderlying(llmqType));
+        return false;
+    }
+    const auto& llmq_params = llmq_params_opt.value();
+
+    uint256 commitmentHash = BuildCommitmentHash(llmq_params.type, quorumHash, validMembers, quorumPublicKey,
+                                                 quorumVvecHash);
+    if (LogAcceptDebug(BCLog::LLMQ)) {
+        std::stringstream ss3;
+        for (const auto& mn : members) {
+            ss3 << mn->proTxHash.ToString().substr(0, 4) << " | ";
+        }
+        LogPrint(BCLog::LLMQ, "CFinalCommitment::%s members[%s] quorumPublicKey[%s] commitmentHash[%s]\n", __func__,
+                 ss3.str(), quorumPublicKey.ToString(), commitmentHash.ToString());
+    }
+    if (llmq_params.size == 1) {
+        LogPrintf("pubkey operator: %s\n", members[0]->pdmnState->pubKeyOperator.Get().ToString());
+        if (!membersSig.VerifyInsecure(members[0]->pdmnState->pubKeyOperator.Get(), commitmentHash)) {
+            LogPrint(BCLog::LLMQ, "CFinalCommitment -- q[%s] invalid member signature\n", quorumHash.ToString());
+            return false;
+        }
+    } else {
+        std::vector<CBLSPublicKey> memberPubKeys;
+        for (const auto i : irange::range(members.size())) {
+            if (!signers[i]) {
+                continue;
+            }
+            memberPubKeys.emplace_back(members[i]->pdmnState->pubKeyOperator.Get());
+        }
+
+        if (!membersSig.VerifySecureAggregated(memberPubKeys, commitmentHash)) {
+            LogPrint(BCLog::LLMQ, "CFinalCommitment -- q[%s] invalid aggregated members signature\n",
+                     quorumHash.ToString());
+            return false;
+        }
+    }
+    if (!quorumSig.VerifyInsecure(quorumPublicKey, commitmentHash)) {
+        LogPrint(BCLog::LLMQ, "CFinalCommitment -- q[%s] invalid quorum signature\n", quorumHash.ToString());
+        return false;
+    }
+    return true;
+}
+
+
 bool CFinalCommitment::Verify(CDeterministicMNManager& dmnman, CQuorumSnapshotManager& qsnapman,
                               gsl::not_null<const CBlockIndex*> pQuorumBaseBlockIndex, bool checkSigs) const
 {
@@ -106,38 +157,7 @@ bool CFinalCommitment::Verify(CDeterministicMNManager& dmnman, CQuorumSnapshotMa
 
     // sigs are only checked when the block is processed
     if (checkSigs) {
-        uint256 commitmentHash = BuildCommitmentHash(llmq_params.type, quorumHash, validMembers, quorumPublicKey, quorumVvecHash);
-        if (LogAcceptDebug(BCLog::LLMQ)) {
-            std::stringstream ss3;
-            for (const auto &mn: members) {
-                ss3 << mn->proTxHash.ToString().substr(0, 4) << " | ";
-            }
-            LogPrint(BCLog::LLMQ, "CFinalCommitment::%s members[%s] quorumPublicKey[%s] commitmentHash[%s]\n",
-                                     __func__, ss3.str(), quorumPublicKey.ToString(), commitmentHash.ToString());
-        }
-        if (llmq_params.size == 1) {
-            LogPrintf("pubkey operator: %s\n", members[0]->pdmnState->pubKeyOperator.Get().ToString());
-            if (!membersSig.VerifyInsecure(members[0]->pdmnState->pubKeyOperator.Get(), commitmentHash)) {
-                LogPrint(BCLog::LLMQ, "CFinalCommitment -- q[%s] invalid member signature\n", quorumHash.ToString());
-                return false;
-            }
-        } else {
-            std::vector<CBLSPublicKey> memberPubKeys;
-            for (const auto i : irange::range(members.size())) {
-                if (!signers[i]) {
-                    continue;
-                }
-                memberPubKeys.emplace_back(members[i]->pdmnState->pubKeyOperator.Get());
-            }
-
-            if (!membersSig.VerifySecureAggregated(memberPubKeys, commitmentHash)) {
-                LogPrint(BCLog::LLMQ, "CFinalCommitment -- q[%s] invalid aggregated members signature\n",
-                         quorumHash.ToString());
-                return false;
-            }
-        }
-        if (!quorumSig.VerifyInsecure(quorumPublicKey, commitmentHash)) {
-            LogPrint(BCLog::LLMQ, "CFinalCommitment -- q[%s] invalid quorum signature\n", quorumHash.ToString());
+        if (!VerifySignature(dmnman, qsnapman, pQuorumBaseBlockIndex)) {
             return false;
         }
     }
diff --git a/src/llmq/commitment.h b/src/llmq/commitment.h
@@ -67,6 +67,8 @@ class CFinalCommitment
         return int(std::count(validMembers.begin(), validMembers.end(), true));
     }
 
+    bool VerifySignature(CDeterministicMNManager& dmnman, CQuorumSnapshotManager& qsnapman,
+                         gsl::not_null<const CBlockIndex*> pQuorumBaseBlockIndex) const;
     bool Verify(CDeterministicMNManager& dmnman, CQuorumSnapshotManager& qsnapman,
                 gsl::not_null<const CBlockIndex*> pQuorumBaseBlockIndex, bool checkSigs) const;
     bool VerifyNull() const;

Original file line number	Diff line number	Diff line change
`@@ -67,6 +67,8 @@ class CFinalCommitment`
`67`	`67`	`return int(std::count(validMembers.begin(), validMembers.end(), true));`
`68`	`68`	`}`
`69`	`69`
	`70`	`+ bool VerifySignature(CDeterministicMNManager& dmnman, CQuorumSnapshotManager& qsnapman,`
	`71`	`+ gsl::not_null<const CBlockIndex*> pQuorumBaseBlockIndex) const;`
`70`	`72`	`bool Verify(CDeterministicMNManager& dmnman, CQuorumSnapshotManager& qsnapman,`
`71`	`73`	`gsl::not_null<const CBlockIndex*> pQuorumBaseBlockIndex, bool checkSigs) const;`
`72`	`74`	`bool VerifyNull() const;`