validation: log which peer sent us a header

[Sjors]

Fixes #27744

Since #27278 we log received headers. For compact blocks we also log which peer sent it (e5ce857), but not for regular headers. That required an additional refactor, which this PR provides.

Move the logging from validation to net_processing.

This also reduces the number of log entries (under default configuration) per compact block header from 3 to 2: one for the header and one for the connected tip.

The PR introduces a new helper method LogBlockHeader.

When receiving a compact block we call LogBlockHeader from the exact same place as where we previously logged. So that log message doesn't change. What does change is that we no longer also log from AcceptBlockHeader.

When receiving a regular header(s) message, we only log the last one. This is a change in behaviour because it was simpler to implement, but it's probably better anyway. It does mean that if a peer sends of a bunch of headers of which any is invalid, we won't log it (here).

Lastly I expanded the code comment explaining why we log this. It initially only covered selfish mining, but we also care about peers sending us headers but not following up (see e.g. #27626).

Example log:

2023-06-05T13:12:21Z Saw new header hash=000000000000000000045910263ef84b575ae3af151865238f1e5c619e69c330 height=792964 peer=0
2023-06-05T13:12:23Z UpdateTip: new best=000000000000000000045910263ef84b575ae3af151865238f1e5c619e69c330 height=792964 version=0x20000000 log2_work=94.223098 tx=848176824 date='2023-06-05T13:11:49Z' progress=1.000000 cache=6.4MiB(54615txo)
2023-06-05T13:14:05Z Saw new cmpctblock header hash=00000000000000000003c6fd4ef2e1246a3f9e1fffab7247344f94cadb9de979 height=792965 peer=0
2023-06-05T13:14:05Z UpdateTip: new best=00000000000000000003c6fd4ef2e1246a3f9e1fffab7247344f94cadb9de979 height=792965 version=0x20000000 log2_work=94.223112 tx=848179461 date='2023-06-05T13:13:58Z' progress=1.000000 cache=7.2MiB(61275txo)
2023-06-05T13:14:41Z Saw new header hash=000000000000000000048e6d69c8399992782d08cb57f5d6cbc81a9f996c3f43 height=792966 peer=8
2023-06-05T13:14:42Z UpdateTip: new best=000000000000000000048e6d69c8399992782d08cb57f5d6cbc81a9f996c3f43 height=792966 version=0x2db3c000 log2_work=94.223126 tx=848182944 date='2023-06-05T13:14:35Z' progress=1.000000 cache=8.0MiB(69837txo)

[DrahtBot]

The following sections might be updated with supplementary metadata relevant to reviewers and maintainers.

Code Coverage

For detailed information about the code coverage, see the test coverage report.

Reviews

See the guideline for information on the review process.

Type	Reviewers
Concept ACK	jonatack
Stale ACK	mzumsande, vasild

If your review is incorrectly listed, please react with 👎 to this comment and the bot will ignore it on the next update.

Conflicts

Reviewers, this pull request conflicts with the following ones:

• #29415 (Broadcast own transactions only via short-lived Tor or I2P connections by vasild)

If you consider this pull request important, please also help to review the conflicting pull requests. Ideally, start with the one that should be merged first.

[Sjors]

cc @jamesob, @instagibbs, @mzumsande

[Sjors]

There's various ways in which AcceptBlockHeader can return true or false early without setting state. This happens before the place where we used to log stuff. That in turn causes f25b871 to potentially log more stuff than it should (for headers that are not received via compact blocks).

It's probably why I saw so many log entries:

2023-06-05T11:50:30Z Saw new cmpctblock header hash=000000000000000000042a2c4e3910c5ccd48b4b2d624f08b4b5a413b98af4ea height=792960 peer=9
2023-06-05T11:50:30Z Saw new header hash=000000000000000000042a2c4e3910c5ccd48b4b2d624f08b4b5a413b98af4ea height=792960 peer=6
2023-06-05T11:50:31Z Saw new header hash=000000000000000000042a2c4e3910c5ccd48b4b2d624f08b4b5a413b98af4ea height=792960 peer=13
2023-06-05T11:50:31Z Saw new header hash=000000000000000000042a2c4e3910c5ccd48b4b2d624f08b4b5a413b98af4ea height=792960 peer=16
2023-06-05T11:50:31Z Saw new header hash=000000000000000000042a2c4e3910c5ccd48b4b2d624f08b4b5a413b98af4ea height=792960 peer=15
2023-06-05T11:50:31Z UpdateTip: new best=000000000000000000042a2c4e3910c5ccd48b4b2d624f08b4b5a413b98af4ea height=792960 version=0x20000000 log2_work=94.223043 tx=848167913 date='2023-06-05T11:50:20Z' progress=1.000000 cache=1194.3MiB(9437428txo)
2023-06-05T11:50:31Z Saw new header hash=000000000000000000042a2c4e3910c5ccd48b4b2d624f08b4b5a413b98af4ea height=792960 peer=3

Moving to draft while I give it more thought.

[Sjors]

Added a check to ensure the header was valid and newly seen before we log it. That matches the behaviour from before this PR.

[Sjors]

Since it's possible for ProcessNewBlockHeaders to return false without us returning, I wonder if we should only log if it returned true (as we do above).

[mzumsande]

I don't think this is possible though?
The call structure is ProcessNewBlockHeaders() -> AcceptBlockHeader() -> {CheckBlockHeader() / ContextualCheckBlockHeader()}, and the latter two functions return either true or state.Invalid(...). As a result, ProcessNewBlockHeaders() would always return the invalid state of the first header that fails, and net_processing would abort.

[vasild]

I think the assert() however is too strong. Relying on the chain described by @mzumsande above looks to fragile to me. To assert in such a way, IMO ProcessNewBlockHeaders() should clearly document that it will always set the pointer when it returns true and if it returns false, then the state is invalid. Then the code above should be changed from if (!ProcessNewBlockHeaders...) { if (state.IsInvalid... to maybe assert that the state is invalid or no checking the state at all.

It looks safer to me to remove assert(pindex); and change the condition to:

if (received_new_header && pindex != nullptr) {

Edit: now I see that assert(pindex); existed before this PR and this PR just moves it upwards.

[Sjors]

1a5b9d4: I'd like to leave dealing with the assert to a (up for grabs) followup.

[mzumsande]

Tested ACK b857d92

I like that this makes logging less verbose (by logging one less entry, and by only logging the last header when multiple headers arrive at the same time).

[mzumsande]

I don't think this is possible though?
The call structure is ProcessNewBlockHeaders() -> AcceptBlockHeader() -> {CheckBlockHeader() / ContextualCheckBlockHeader()}, and the latter two functions return either true or state.Invalid(...). As a result, ProcessNewBlockHeaders() would always return the invalid state of the first header that fails, and net_processing would abort.

[Sjors]

I still have to rebase this, will do soon(tm).

[Sjors]

Rebased! (after #26969)

[jonatack]

Concept ACK

[Sjors]

Rebased after #28218 (no longer needs ActiveChainstate() to get IsInitialBlockDownload()).

[Sjors]

Added support for -logips. This lets you retrieve the IP of a node you disconnected from, without the need for -debug=net (since it's too late to ask getpeerinfo). This becomes especially useful with #27277 which removes mempool "noise" from -debug=validation, so you can e.g. see what the rejection reason was for this header (without a gigabyte of logs per day).

[Sjors]

I get between 0 and 2 of these unsolicited blocks per day:

2023-11-07T02:19:56.507378Z Saw new header via unsolicited block hash=00000000000000000003310c8a9104bc38473171de3d2628ce608b7418384402 peer=0 peeraddr=x.x.x.x:8333

[Sjors]

Trivial rebase after #28892's fa79a88.

[Sjors]

@mzumsande can you take another look?

[vasild]

ACK 708600f

As with the previous ACK: would be nice if other reviewers assess #27826 (comment).

[mzumsande]

I like the first commit, but the second/third commit are not ideal, because there is a difference between a new block and a new header:
I started up this branch on mainnet while being a few blocks behind (but not that far such that I'd be in IBD so that the log messages would go to BCLog::VALIDATION).
Then, the log entries I'd get for each downloaded block ("Saw new header via unsolicited block") are wrong in two ways:
The header is not new (only the block), plus the block is not unsolicited (we asked for it with a getdata message).

[Sjors]

That indeed sounds like two bugs, will try to reproduce.

[Sjors]

I can reproduce the issue. When the nodes catches up, for a small fraction of blocks it says "Saw new header via unsolicited block". The header refers to a block that was already connected, sometimes more than 25 blocks ago.

[Sjors]

I solved the second issue by setting /*via_unsolicited_block=*/!is_block_requested (renamed forceProcessing). I'll push that in a bit.

I'm still debugging the first issue. E.g an example log during IBD, with -debug=net -debug=validation -loglevel=validation:debug:

2023-12-04T13:47:10Z Synchronizing blockheaders, height: 819750 (~100.00%)
2023-12-04T13:47:10Z [validation:debug] Saw new header hash=00000000000000000002d311ad8da2e7551130798984e20c87b8156c3d27d261 height=819750 peer=1
2023-12-04T13:47:10Z [net] sending sendheaders (0 bytes) peer=1
2023-12-04T13:47:10Z [net] Requesting block 00000000000000000000cb25399b73ca8d7233d889d6f593185d2d9d8c1c12a4 (819343) peer=1
...
2023-12-04T13:47:10Z [net] Requesting block 00000000000000000000f2a44776f015e8d0fed852974feaa3a4fef29db93863 (819346) peer=1
…
2023-12-04T13:47:11Z [net] received: block (1659646 bytes) peer=1
2023-12-04T13:47:11Z [net] received block 00000000000000000000f2a44776f015e8d0fed852974feaa3a4fef29db93863 peer=1
2023-12-04T13:47:12Z [validation] Pre-allocating up to position 0x900000 in rev03971.dat
2023-12-04T13:47:12Z [validation] BlockChecked: block hash=00000000000000000000f2a44776f015e8d0fed852974feaa3a4fef29db93863 state=Valid
2023-12-04T13:47:12Z UpdateTip: new best=00000000000000000000f2a44776f015e8d0fed852974feaa3a4fef29db93863 height=819346 version=0x32000000 log2_work=94.574638 tx=928820934 date='2023-12-01T22:28:26Z' progress=0.998647 cache=153.7MiB(1297209txo)
2023-12-04T13:47:12Z [validation] Enqueuing BlockConnected: block hash=00000000000000000000f2a44776f015e8d0fed852974feaa3a4fef29db93863 block height=819346
2023-12-04T13:47:12Z [validation] Enqueuing UpdatedBlockTip: new block hash=00000000000000000000f2a44776f015e8d0fed852974feaa3a4fef29db93863 fork block hash=000000000000000000016a22934809aba22dda98fe8a0ee1582b43fe109aebe8 (in IBD=true)
2023-12-04T13:47:12Z [validation:debug] Saw new header hash=00000000000000000000f2a44776f015e8d0fed852974feaa3a4fef29db93863 peer=1
…
2023-12-04T13:47:12Z [validation] BlockConnected: block hash=00000000000000000000f2a44776f015e8d0fed852974feaa3a4fef29db93863 block height=819346
2023-12-04T13:47:12Z [validation] UpdatedBlockTip: new block hash=00000000000000000000f2a44776f015e8d0fed852974feaa3a4fef29db93863 fork block hash=000000000000000000016a22934809aba22dda98fe8a0ee1582b43fe109aebe8 (in IBD=true)

So we already this header from an earlier header sync, yet ProcessBlock returns true which it should only do if the header is new.

Well, according to the documentation that I added myself in the second commit 386febd anyway.

[Sjors]

Ah, but that documentation is wrong ambiguous. ProcessBlock only tells us if the block is new, not if the header is new. The latter is checked by AcceptBlockHeader, but not returned.

[Sjors]

Only keeping the first commit.

I don't want to make this PR more complicated. If anyone wants to try detecting new headers that arrive via an unsolicited block, see the following dropped commits: 386febd and 9d4e5af.

[Sjors]

Rebased to use the new logging functions LogInfo and LogDebug from #28318 (see developer-notes.md).

[Sjors]

@0xB10C you may also find this interesting.