fix: comprehensive audit fixes - state divergence, amplification, memory leaks, validation

echobt · echobt · commit 7c2e58dae8b6 · 2026-02-26T15:47:50.000Z
CRITICAL:
- validated_agent_logs: deterministic pruning (sorted keys instead of
  HashMap random iteration order that caused state divergence)
- DataResponse/StorageSyncResponse: add target field so non-targeted
  validators skip processing (O(n²) broadcast amplification fix)

HIGH:
- CoreStateResponse: verify signature + state_hash before merge_from
  (prevents malicious state injection)
- consensus decisions HashMap: prune to last 1000 (was unbounded)
- cleanup_stale_data: prune task_progress, review_assignments by age,
  cap leaderboard to top 1000 per challenge, prune completed_evaluations
  to last 10 epochs

MEDIUM:
- Evaluation messages: reject from non-validators (was accepting with 0 stake)
- Submission messages: reject from unregistered miners
- committed HashMap: deterministic eviction by timestamp (was random)
- Shutdown: 30s timeout to prevent indefinite hang
diff --git a/bins/validator-node/src/main.rs b/bins/validator-node/src/main.rs
@@ -1594,6 +1594,8 @@ async fn main() -> Result<()> {
                 state_manager.apply(|state| state.cleanup_old_state_mutations(300_000));
                 // Clean up old storage proposals (5 min timeout)
                 state_manager.apply(|state| state.cleanup_old_proposals(300_000));
+                // Prune stale task progress, reviews, leaderboard, completed evaluations (1 hour)
+                state_manager.apply(|state| state.cleanup_stale_data(3_600_000));
             }
 
             // Weight submission is handled entirely by CommitWindowOpen in handle_block_event.
@@ -1836,35 +1838,45 @@ async fn main() -> Result<()> {
             _ = &mut shutdown_signal => {
                 info!("Received shutdown signal, persisting state...");
 
-                // Persist core state (wasm_challenge_configs, routes, validators)
-                if let Err(e) = persist_core_state_to_storage(&storage, &chain_state).await {
-                    error!("Failed to persist core state on shutdown: {}", e);
-                } else {
-                    info!("Core state persisted on shutdown");
-                }
+                let shutdown_result = tokio::time::timeout(
+                    std::time::Duration::from_secs(30),
+                    async {
+                        // Persist core state (wasm_challenge_configs, routes, validators)
+                        if let Err(e) = persist_core_state_to_storage(&storage, &chain_state).await {
+                            error!("Failed to persist core state on shutdown: {}", e);
+                        } else {
+                            info!("Core state persisted on shutdown");
+                        }
 
-                // Persist P2P consensus state
-                if let Err(e) = persist_state_to_storage(&storage, &state_manager).await {
-                    error!("Failed to persist P2P state on shutdown: {}", e);
-                } else {
-                    info!("P2P state persisted on shutdown");
-                }
+                        // Persist P2P consensus state
+                        if let Err(e) = persist_state_to_storage(&storage, &state_manager).await {
+                            error!("Failed to persist P2P state on shutdown: {}", e);
+                        } else {
+                            info!("P2P state persisted on shutdown");
+                        }
 
-                // Flush storage to disk to ensure all writes are durable
-                if let Err(e) = local_storage.flush_if_dirty().await {
-                    error!("Failed to flush storage on shutdown: {}", e);
-                } else {
-                    info!("Storage flushed to disk on shutdown");
-                }
+                        // Flush storage to disk to ensure all writes are durable
+                        if let Err(e) = local_storage.flush_if_dirty().await {
+                            error!("Failed to flush storage on shutdown: {}", e);
+                        } else {
+                            info!("Storage flushed to disk on shutdown");
+                        }
 
-                // Create checkpoint
-                if let Some(handler) = shutdown_handler.as_mut() {
-                    if let Err(e) = handler.create_checkpoint() {
-                        error!("Failed to create shutdown checkpoint: {}", e);
-                    } else {
-                        info!("Shutdown checkpoint saved successfully");
+                        // Create checkpoint
+                        if let Some(handler) = shutdown_handler.as_mut() {
+                            if let Err(e) = handler.create_checkpoint() {
+                                error!("Failed to create shutdown checkpoint: {}", e);
+                            } else {
+                                info!("Shutdown checkpoint saved successfully");
+                            }
+                        }
                     }
+                ).await;
+
+                if shutdown_result.is_err() {
+                    error!("Shutdown timed out after 30s, forcing exit");
                 }
+
                 info!("Shutting down...");
                 break;
             }
@@ -2216,6 +2228,14 @@ async fn handle_network_event(
                 }
             }
             P2PMessage::Submission(sub) => {
+                // Verify miner is a registered hotkey
+                if !chain_state.read().registered_hotkeys.contains(&sub.miner) {
+                    warn!(
+                        miner = %sub.miner.to_ss58(),
+                        "Submission from unregistered miner, ignoring"
+                    );
+                    return;
+                }
                 info!(
                     submission_id = %sub.submission_id,
                     challenge_id = %sub.challenge_id,
@@ -2251,17 +2271,22 @@ async fn handle_network_event(
                 }
             }
             P2PMessage::Evaluation(eval) => {
+                let validator_hotkey = eval.validator.clone();
+                let vinfo = validator_set.get_validator(&validator_hotkey);
+                if vinfo.is_none() {
+                    warn!(
+                        validator = %validator_hotkey.to_ss58(),
+                        "Evaluation from non-validator, ignoring"
+                    );
+                    return;
+                }
+                let stake = vinfo.map(|v| v.stake).unwrap_or(0);
                 info!(
                     submission_id = %eval.submission_id,
                     validator = %eval.validator.to_ss58(),
                     score = eval.score,
                     "Received evaluation from peer validator"
                 );
-                let validator_hotkey = eval.validator.clone();
-                let stake = validator_set
-                    .get_validator(&validator_hotkey)
-                    .map(|v| v.stake)
-                    .unwrap_or(0);
                 let validator_eval = platform_p2p_consensus::ValidatorEvaluation {
                     score: eval.score,
                     stake,
@@ -2391,6 +2416,7 @@ async fn handle_network_event(
                                 platform_p2p_consensus::DataResponseMessage {
                                     request_id: request_id.clone(),
                                     responder: keypair.hotkey(),
+                                    target: Some(req.requester.clone()),
                                     challenge_id,
                                     data_type: "challenge_storage".to_string(),
                                     data,
@@ -2424,6 +2450,12 @@ async fn handle_network_event(
                 }
             }
             P2PMessage::DataResponse(resp) => {
+                if let Some(ref target) = resp.target {
+                    if *target != keypair.hotkey() {
+                        return;
+                    }
+                }
+
                 debug!(
                     request_id = %resp.request_id,
                     responder = %resp.responder.to_ss58(),
@@ -3434,9 +3466,38 @@ async fn handle_network_event(
                 if !validator_set.is_validator(&resp.responder) {
                     warn!(responder = %resp.responder.to_ss58(), "Core state response from unknown validator");
                 } else {
+                    // Verify application-level signature before trusting the data
+                    let sign_data = bincode::serialize(&(
+                        &resp.state_hash,
+                        resp.mutation_sequence,
+                        resp.timestamp,
+                    ))
+                    .unwrap_or_default();
+                    let signed_msg = platform_core::SignedMessage {
+                        message: sign_data,
+                        signature: resp.signature.clone(),
+                        signer: resp.responder.clone(),
+                    };
+                    if !signed_msg.verify().unwrap_or(false) {
+                        warn!(
+                            responder = %resp.responder.to_ss58(),
+                            "Invalid signature on CoreStateResponse, ignoring"
+                        );
+                        return;
+                    }
+
                     // Deserialize and merge
                     match serde_json::from_slice::<platform_core::ChainState>(&resp.state_data) {
                         Ok(peer_state) => {
+                            // Verify state_hash matches the actual content
+                            if peer_state.state_hash != resp.state_hash {
+                                warn!(
+                                    responder = %resp.responder.to_ss58(),
+                                    "CoreStateResponse state_hash mismatch, ignoring"
+                                );
+                                return;
+                            }
+
                             let mut cs = chain_state.write();
                             if cs.merge_from(&peer_state) {
                                 info!(
@@ -3603,6 +3664,7 @@ async fn handle_network_event(
                                 platform_p2p_consensus::StorageSyncResponseMessage {
                                     challenge_id: req.challenge_id,
                                     responder: keypair.hotkey(),
+                                    target: Some(req.requester.clone()),
                                     data_hash,
                                     entries,
                                     total_entries: total,
@@ -3636,6 +3698,12 @@ async fn handle_network_event(
                 }
             }
             P2PMessage::StorageSyncResponse(resp) => {
+                if let Some(ref target) = resp.target {
+                    if *target != keypair.hotkey() {
+                        return;
+                    }
+                }
+
                 if !validator_set.is_validator(&resp.responder) {
                     warn!(responder = %resp.responder.to_ss58(), "Storage sync response from non-validator");
                 } else if resp.entries.is_empty() {
diff --git a/crates/distributed-storage/src/validated_storage.rs b/crates/distributed-storage/src/validated_storage.rs
@@ -684,15 +684,13 @@ impl<S: DistributedStore + 'static> ValidatedStorage<S> {
         {
             let mut committed = self.committed.write().await;
             committed.insert(*proposal_id, result.clone());
-            // Evict old committed results to bound memory (keep last 1000)
+            // Evict oldest committed results to bound memory (keep last 1000)
             if committed.len() > 1000 {
-                let oldest: Vec<[u8; 32]> = committed
-                    .iter()
-                    .take(committed.len() - 1000)
-                    .map(|(id, _)| *id)
-                    .collect();
-                for id in oldest {
-                    committed.remove(&id);
+                let mut by_time: Vec<([u8; 32], i64)> =
+                    committed.iter().map(|(id, r)| (*id, r.timestamp)).collect();
+                by_time.sort_by_key(|(_, ts)| *ts);
+                for (id, _) in by_time.iter().take(committed.len() - 1000) {
+                    committed.remove(id);
                 }
             }
         }
diff --git a/crates/p2p-consensus/src/consensus.rs b/crates/p2p-consensus/src/consensus.rs
@@ -718,7 +718,15 @@ impl ConsensusEngine {
             // Store decision
             let seq = round.sequence;
             drop(round_guard);
-            self.decisions.write().insert(seq, decision.clone());
+            {
+                let mut decisions = self.decisions.write();
+                decisions.insert(seq, decision.clone());
+                // Prune old decisions to bound memory (keep last 1000)
+                if decisions.len() > 1000 {
+                    let cutoff = seq.saturating_sub(1000);
+                    decisions.retain(|s, _| *s > cutoff);
+                }
+            }
 
             // Increment sequence
             *self.next_sequence.write() += 1;
diff --git a/crates/p2p-consensus/src/messages.rs b/crates/p2p-consensus/src/messages.rs
@@ -526,6 +526,9 @@ pub struct DataResponseMessage {
     pub request_id: String,
     /// Validator providing the data
     pub responder: Hotkey,
+    /// Target requester (only this validator should process the response)
+    #[serde(default)]
+    pub target: Option<Hotkey>,
     /// Challenge the data belongs to
     pub challenge_id: ChallengeId,
     /// Type of data being returned
@@ -1090,6 +1093,9 @@ pub struct StorageSyncResponseMessage {
     pub challenge_id: ChallengeId,
     /// Responding validator
     pub responder: Hotkey,
+    /// Target requester (only this validator should process the response)
+    #[serde(default)]
+    pub target: Option<Hotkey>,
     /// Hash of all data in this response
     pub data_hash: [u8; 32],
     /// Key-value entries
diff --git a/crates/p2p-consensus/src/state.rs b/crates/p2p-consensus/src/state.rs
@@ -1317,6 +1317,57 @@ impl ChainState {
         removed
     }
 
+    /// Prune stale data from unbounded collections.
+    /// Call periodically (e.g., alongside cleanup_stale_jobs).
+    pub fn cleanup_stale_data(&mut self, max_age_ms: i64) {
+        let now = chrono::Utc::now().timestamp_millis();
+        let mut changed = false;
+
+        // Prune old task progress entries
+        let before = self.task_progress.len();
+        self.task_progress
+            .retain(|_, r| now - r.updated_at < max_age_ms);
+        if self.task_progress.len() != before {
+            changed = true;
+        }
+
+        // Prune old review assignments (keep only recent)
+        let before = self.review_assignments.len();
+        self.review_assignments
+            .retain(|_, reviews| reviews.iter().any(|r| now - r.created_at < max_age_ms));
+        if self.review_assignments.len() != before {
+            changed = true;
+        }
+
+        // Cap leaderboard entries per challenge to top 1000
+        for entries in self.leaderboard.values_mut() {
+            if entries.len() > 1000 {
+                entries.sort_by(|a, b| {
+                    b.score
+                        .partial_cmp(&a.score)
+                        .unwrap_or(std::cmp::Ordering::Equal)
+                });
+                entries.truncate(1000);
+                changed = true;
+            }
+        }
+
+        // Prune completed_evaluations to last 10 epochs
+        if self.completed_evaluations.len() > 10 {
+            let cutoff = self.epoch.saturating_sub(10);
+            let before = self.completed_evaluations.len();
+            self.completed_evaluations
+                .retain(|epoch, _| *epoch > cutoff);
+            if self.completed_evaluations.len() != before {
+                changed = true;
+            }
+        }
+
+        if changed {
+            self.increment_sequence();
+        }
+    }
+
     pub fn assign_review(&mut self, record: ReviewRecord) {
         self.review_assignments
             .entry(record.submission_id.clone())
@@ -1439,11 +1490,12 @@ impl ChainState {
                         max = MAX_VALIDATED_AGENT_LOGS,
                         "Validated agent logs at capacity; pruning oldest entries"
                     );
-                    let keys_to_remove: Vec<String> = self
-                        .validated_agent_logs
-                        .keys()
+                    let mut all_keys: Vec<String> =
+                        self.validated_agent_logs.keys().cloned().collect();
+                    all_keys.sort();
+                    let keys_to_remove: Vec<String> = all_keys
+                        .into_iter()
                         .take(self.validated_agent_logs.len() / 10)
-                        .cloned()
                         .collect();
                     for key in keys_to_remove {
                         self.validated_agent_logs.remove(&key);

Original file line number	Diff line number	Diff line change
`@@ -684,15 +684,13 @@ impl<S: DistributedStore + 'static> ValidatedStorage<S> {`
`684`	`684`	`{`
`685`	`685`	`let mut committed = self.committed.write().await;`
`686`	`686`	`committed.insert(*proposal_id, result.clone());`
`687`		`- // Evict old committed results to bound memory (keep last 1000)`
	`687`	`+ // Evict oldest committed results to bound memory (keep last 1000)`
`688`	`688`	`if committed.len() > 1000 {`
`689`		`- let oldest: Vec<[u8; 32]> = committed`
`690`		`- .iter()`
`691`		`- .take(committed.len() - 1000)`
`692`		`- .map(\|(id, _)\| *id)`
`693`		`- .collect();`
`694`		`- for id in oldest {`
`695`		`- committed.remove(&id);`
	`689`	`+ let mut by_time: Vec<([u8; 32], i64)> =`
	`690`	`+ committed.iter().map(\|(id, r)\| (*id, r.timestamp)).collect();`
	`691`	`+ by_time.sort_by_key(\|(_, ts)\| *ts);`
	`692`	`+ for (id, _) in by_time.iter().take(committed.len() - 1000) {`
	`693`	`+ committed.remove(id);`
`696`	`694`	`}`
`697`	`695`	`}`
`698`	`696`	`}`