AntelopeIO · linh2931 · Jul 8, 2024 · Jul 8, 2024 · Jul 8, 2024 · Jul 8, 2024
diff --git a/libraries/chain/block_state.cpp b/libraries/chain/block_state.cpp
@@ -224,10 +224,13 @@ void block_state::verify_qc(const valid_quorum_certificate& qc) const {
 
    // utility to accumulate voted weights
    auto weights = [&] ( const vote_bitset& votes_bitset ) -> uint64_t {
+      EOS_ASSERT( num_finalizers == votes_bitset.size(),
+                  invalid_qc_claim,
+                  "vote bitset size is not the same as the number of finalizers for the policy it refers to, vote bitset size: ${s}, num of finalizers for the policy: ${n}",
+                  ("s", votes_bitset.size())("n", num_finalizers) );
+
       uint64_t sum = 0;
-      assert(num_finalizers == votes_bitset.size());
-      auto n = std::min(num_finalizers, votes_bitset.size());
-      for (auto i = 0u; i < n; ++i) {
+      for (auto i = 0u; i < num_finalizers; ++i) {
          if( votes_bitset[i] ) { // ith finalizer voted
             sum += finalizers[i].weight;
          }

diff --git a/unittests/block_state_tests.cpp b/unittests/block_state_tests.cpp
@@ -304,6 +304,44 @@ BOOST_AUTO_TEST_CASE(verify_qc_test) try {
       BOOST_CHECK_EXCEPTION( bsp->verify_qc(qc), block_validate_exception, eosio::testing::fc_exception_message_starts_with("weak quorum is not met") );
    }
 
+   {  // strong QC bitset size does not match number of finalizers in the policy
+
+      // construct vote bitset with a size greater than num_finalizers
+      vote_bitset strong_votes(num_finalizers + 1);
+
+      // vote by finalizer 0
+      strong_votes[0] = 1;
+
+      // aggregate votes
+      bls_aggregate_signature agg_sig;
+      bls_signature sig = private_key[0].sign(strong_digest.to_uint8_span());
+      agg_sig.aggregate(sig);
+
+      // create a valid_quorum_certificate
+      valid_quorum_certificate qc(strong_votes, {}, agg_sig);
+
+      BOOST_CHECK_EXCEPTION( bsp->verify_qc(qc), block_validate_exception, eosio::testing::fc_exception_message_starts_with("vote bitset size is not the same as the number of finalizers") );
 FC_DECLARE_DERIVED_EXCEPTION( invalid_qc_claim, block_validate_exception, 
 FC_DECLARE_DERIVED_EXCEPTION( invalid_qc_claim, block_validate_exception, 
+   }
+
+   {  // weak QC bitset size does not match number of finalizers in the policy
+
+      // construct vote bitset with a size less than num_finalizers
+      vote_bitset weak_votes(num_finalizers - 1);
+
+      // vote by finalizer 0
+      weak_votes[0] = 1;
+
+      // aggregate votes
+      bls_aggregate_signature agg_sig;
+      bls_signature sig = private_key[0].sign(weak_digest);
+      agg_sig.aggregate(sig);
+
+      // create a valid_quorum_certificate
+      valid_quorum_certificate qc({}, weak_votes, agg_sig);
+
+      BOOST_CHECK_EXCEPTION( bsp->verify_qc(qc), block_validate_exception, eosio::testing::fc_exception_message_starts_with("vote bitset size is not the same as the number of finalizers") );
+   }
+
    {  // strong QC with a wrong signing private key
       vote_bitset strong_votes(num_finalizers);
       strong_votes[0] = 1;  // finalizer 0 voted with weight 1