Skip to content

Comments

fix: validate slot duration and epoch configuration invariants (PM-20013)#764

Draft
m2ux wants to merge 1 commit intomainfrom
fix/PM-20013-slot-duration-configurability
Draft

fix: validate slot duration and epoch configuration invariants (PM-20013)#764
m2ux wants to merge 1 commit intomainfrom
fix/PM-20013-slot-duration-configurability

Conversation

@m2ux
Copy link
Contributor

@m2ux m2ux commented Feb 24, 2026
edited by atlassian bot
Loading

Summary

Implement three-layer defense-in-depth for slot duration configurability: constructor validation, on-chain config storage with startup consistency check, and config hash in block headers. Addresses Least Authority Issue J (High severity).

🎫 PM-20013 📐 Engineering

Motivation

CreateInherentDataConfig aggregates consensus-critical parameters — sidechain slot configuration (on-chain) and mainchain epoch configuration (off-chain config files) — without cross-validation, invariant enforcement, or on-chain commitment. Nodes with differing parameter values compute divergent slot indices and epoch boundaries for the same wall-clock time, causing silent consensus divergence.

The existing codebase contains an explicit TODO (ETCM-4079) acknowledging missing validation for the epoch-duration/slot-duration divisibility constraint.

Changes

Implementation (coming next):

  • Layer 1 — Constructor Validation: Replace #[derive(new)] on CreateInherentDataConfig with fallible fn new() -> Result enforcing epoch/slot divisibility and non-zero invariants. Add mc_* field validation to MidnightCfg.
  • Layer 2 — On-chain Config Storage: New pallet-consensus-config storing mc_epoch_config via genesis config, exposed via runtime API. Startup consistency check in service.rs comparing local config against on-chain values.
  • Layer 3 — Config Hash in Headers: DigestItem::Consensus with new engine ID depositing config hash per block in on_initialize, following pallet-version pattern.
  • Chain Spec Updates: Add consensus_config to RuntimeGenesisConfig across all chain spec builders.
  • Tests: 14 planned test cases covering constructor validation, pallet storage, config hash, startup consistency, and backward compatibility.

📌 Submission Checklist

  • Changes are backward-compatible (or flagged if breaking)
  • Pull request description explains why the change is needed
  • Self-reviewed the diff
  • I have included a change file, or skipped for this reason: planning phase — no code changes yet
  • If the changes introduce a new feature, I have bumped the node minor version
  • Update documentation (if relevant)
  • No new todos introduced

🔱 Fork Strategy

  • Node Runtime Update
  • Node Client Update
  • Other
  • N/A

🗹 TODO before merging

  • Ready for review

@m2ux @cursoragent
chore: initialize work package for PM-20013
6f46f99 
Slot duration configurability across nodes — Least Authority audit
finding Issue J addressing consensus boundary mismatch in
CreateInherentDataConfig.

Co-authored-by: Cursor <cursoragent@cursor.com>
@github-actions
Copy link
Contributor

github-actions bot commented Feb 24, 2026

kics-logo

KICS version: v2.1.16

Category Results
CRITICAL CRITICAL 0
HIGH HIGH 0
MEDIUM MEDIUM 96
LOW LOW 12
INFO INFO 83
TRACE TRACE 0
TOTAL TOTAL 191
Metric Values
Files scanned placeholder 31
Files parsed placeholder 31
Files failed to scan placeholder 0
Total executed queries placeholder 73
Queries failed to execute placeholder 0
Execution time placeholder 8

@m2ux m2ux self-assigned this Feb 24, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@m2ux m2ux

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@m2ux