Don't push new checkpoints if bitcoin headers are being backfilled

nomic-io · Feb 14, 2024 · 85254fd · 85254fd
1 parent f6e9960
commit 85254fd
Show file tree

Hide file tree

Showing 2 changed files with 14 additions and 2 deletions.
diff --git a/src/bitcoin/checkpoint.rs b/src/bitcoin/checkpoint.rs
@@ -1985,7 +1985,7 @@ impl CheckpointQueue {
         fee_pool: &mut i64,
         parent_config: &super::Config,
     ) -> Result<bool> {
-        if !self.should_push(sig_keys, &timestamping_commitment)? {
+        if !self.should_push(sig_keys, &timestamping_commitment, btc_height)? {
             return Ok(false);
         }
 
@@ -2098,6 +2098,7 @@ impl CheckpointQueue {
         &mut self,
         sig_keys: &Map<ConsensusKey, Xpub>,
         timestamping_commitment: &[u8],
+        btc_height: u32,
     ) -> Result<bool> {
         // Do not push if there is a checkpoint in the `Signing` state. There
         // should only ever be at most one checkpoint in this state.
@@ -2118,6 +2119,17 @@ impl CheckpointQueue {
                 return Ok(false);
             }
 
+            // Do not push if Bitcoin headers are being backfilled (e.g. the
+            // current latest height is less than the height at which the last
+            // confirmed checkpoint was signed).
+            if let Ok(last_completed_index) = self.last_completed_index() {
+                let last_completed = self.get(last_completed_index)?;
+                let last_signed_height = last_completed.signed_at_btc_height.unwrap_or(0);
+                if btc_height < last_signed_height {
+                    return Ok(false);
+                }
+            }
+
             // Don't push if there are no pending deposits, withdrawals, or
             // transfers, or if not enough has been collected to pay for the
             // miner fee, unless the maximum checkpoint interval has elapsed

diff --git a/src/bitcoin/mod.rs b/src/bitcoin/mod.rs
@@ -519,7 +519,7 @@ impl Bitcoin {
     #[cfg(feature = "full")]
     pub fn should_push_checkpoint(&mut self) -> Result<bool> {
         self.checkpoints
-            .should_push(self.signatory_keys.map(), &[0; 32])
+            .should_push(self.signatory_keys.map(), &[0; 32], self.headers.height()?)
         // TODO: we shouldn't need this slice, commitment should be fixed-length
     }