Add check for head/target consistency (#1702)

## Issue Addressed NA ## Proposed Changes Addresses an interesting DoS vector raised by @protolambda by verifying that the head and target are consistent when processing aggregate attestations. This check prevents us from loading very old target blocks and doing lots of work to skip them to the current slot. ## Additional Info NA
2026-04-20 06:18:31 +00:00 · 2020-10-02 10:46:37 +00:00
parent 94b17ce02b
commit 32338bcafa
2 changed files with 79 additions and 33 deletions
--- a/beacon_node/beacon_chain/tests/attestation_verification.rs
+++ b/beacon_node/beacon_chain/tests/attestation_verification.rs
@@ -278,6 +278,21 @@ fn aggregated_gossip_verification() {
            && earliest_permissible_slot == current_slot - E::slots_per_epoch() - 1
    );

+    /*
+     * This is not in the specification for aggregate attestations (only unaggregates), but we
+     * check it anyway to avoid weird edge cases.
+     */
+    let unknown_root = Hash256::from_low_u64_le(424242);
+    assert_invalid!(
+        "attestation with invalid target root",
+        {
+            let mut a = valid_aggregate.clone();
+            a.message.aggregate.data.target.root = unknown_root;
+            a
+        },
+        AttnError::InvalidTargetRoot { .. }
+    );
+
    /*
     * The following test ensures:
     *