fix(state-processor): stricter timestamp enforcement on execution-pay…

…load (#160) * Update state_processor_payload.go * only pass consensus time rather than full transitionctx * rename txctx
berachain · Feb 13, 2025 · 4e6226d · 4e6226d
1 parent 393b8e1
commit 4e6226d
Showing 1 changed file with 25 additions and 7 deletions.
diff --git a/state-transition/core/state_processor_payload.go b/state-transition/core/state_processor_payload.go
@@ -23,16 +23,20 @@ package core
 import (
 	"context"
 
+	payloadtime "github.com/berachain/beacon-kit/beacon/payload-time"
 	ctypes "github.com/berachain/beacon-kit/consensus-types/types"
 	"github.com/berachain/beacon-kit/errors"
+	"github.com/berachain/beacon-kit/primitives/math"
 	statedb "github.com/berachain/beacon-kit/state-transition/core/state"
 	"golang.org/x/sync/errgroup"
 )
 
 // processExecutionPayload processes the execution payload and ensures it
 // matches the local state.
 func (sp *StateProcessor[ContextT]) processExecutionPayload(
-	ctx ContextT, st *statedb.StateDB, blk *ctypes.BeaconBlock,
+	ctx ContextT,
+	st *statedb.StateDB,
+	blk *ctypes.BeaconBlock,
 ) error {
 	var (
 		body    = blk.GetBody()
@@ -42,22 +46,22 @@ func (sp *StateProcessor[ContextT]) processExecutionPayload(
 	)
 
 	payloadTimestamp := payload.GetTimestamp().Unwrap()
-	consensusTimestamp := ctx.GetConsensusTime().Unwrap()
+	consensusTimestamp := ctx.GetConsensusTime()
 
-	sp.metrics.gaugeTimestamps(payloadTimestamp, consensusTimestamp)
+	sp.metrics.gaugeTimestamps(payloadTimestamp, consensusTimestamp.Unwrap())
 
 	sp.logger.Info("processExecutionPayload",
 		"consensus height", blk.GetSlot().Unwrap(),
 		"payload height", payload.GetNumber().Unwrap(),
 		"payload timestamp", payloadTimestamp,
-		"consensus timestamp", consensusTimestamp,
+		"consensus timestamp", consensusTimestamp.Unwrap(),
 		"skip payload verification", ctx.GetSkipPayloadVerification(),
 	)
 
 	// Skip payload verification if the context is configured as such.
 	if !ctx.GetSkipPayloadVerification() {
 		g.Go(func() error {
-			return sp.validateExecutionPayload(gCtx, st, blk, ctx.GetOptimisticEngine())
+			return sp.validateExecutionPayload(gCtx, consensusTimestamp, st, blk, ctx.GetOptimisticEngine())
 		})
 	}
 
@@ -86,14 +90,15 @@ func (sp *StateProcessor[ContextT]) processExecutionPayload(
 // state and the execution engine.
 func (sp *StateProcessor[_]) validateExecutionPayload(
 	ctx context.Context,
+	consensusTime math.U64,
 	st *statedb.StateDB,
 	blk *ctypes.BeaconBlock,
 	optimisticEngine bool,
 ) error {
 	if err := sp.validateStatelessPayload(blk); err != nil {
 		return err
 	}
-	return sp.validateStatefulPayload(ctx, st, blk, optimisticEngine)
+	return sp.validateStatefulPayload(ctx, consensusTime, st, blk, optimisticEngine)
 }
 
 // validateStatelessPayload performs stateless checks on the execution payload.
@@ -118,7 +123,11 @@ func (sp *StateProcessor[_]) validateStatelessPayload(blk *ctypes.BeaconBlock) e
 
 // validateStatefulPayload performs stateful checks on the execution payload.
 func (sp *StateProcessor[_]) validateStatefulPayload(
-	ctx context.Context, st *statedb.StateDB, blk *ctypes.BeaconBlock, optimisticEngine bool,
+	ctx context.Context,
+	consensusTime math.U64,
+	st *statedb.StateDB,
+	blk *ctypes.BeaconBlock,
+	optimisticEngine bool,
 ) error {
 	body := blk.GetBody()
 	payload := body.GetExecutionPayload()
@@ -139,6 +148,15 @@ func (sp *StateProcessor[_]) validateStatefulPayload(
 		)
 	}
 
+	// Verify that the payload stamp is within a reasonable bound
+	if err = payloadtime.Verify(
+		consensusTime,
+		lph.GetTimestamp(),
+		payload.GetTimestamp(),
+	); err != nil {
+		return err
+	}
+
 	parentBeaconBlockRoot := blk.GetParentBlockRoot()
 	if err = sp.executionEngine.VerifyAndNotifyNewPayload(
 		ctx, ctypes.BuildNewPayloadRequest(