Get quorum and trusted master validator keys from validators.txt:

* Load specified [validators_file] relative to config dir * Add default [validators_file] to rippled-example.cfg * Remove [validators] and [validation_quorum] from rippled-example.cfg * Add [validation_quorum] to validators-example.txt * Allow validators.txt to be a symlink * Throw for invalid [validators_file] instead of logging * Trust own master public key from configured manifest * Do not load untrusted manifests from database Trusted validators are loaded from [validators] and [validator_keys] sections from both rippled.cfg and validators.txt Quorum is loaded from [validation_quorum] section in validators.txt only if it is not configured in rippled.cfg
2025-12-06 17:27:55 +00:00 · 2016-05-10 16:46:11 -07:00
parent 7e3dbce3d2
commit 4ed6cbdd5b
8 changed files with 585 additions and 191 deletions
--- a/src/ripple/overlay/impl/Manifest.cpp
+++ b/src/ripple/overlay/impl/Manifest.cpp
@@ -198,6 +198,12 @@ ManifestCache::configManifest (
        Throw<std::runtime_error> ("Unverifiable manifest in config");
    }

+    // Trust our own master public key
+    if (!trusted(m.masterKey) && !unl.trusted (m.masterKey))
+    {
+        addTrustedKey (m.masterKey, "");
+    }
+
    auto const result = applyManifest (std::move(m), unl, journal);

    if (result != ManifestDisposition::accepted)
@@ -412,15 +418,15 @@ void ManifestCache::load (
                Throw<std::runtime_error> ("Unverifiable manifest in db");
            }

-            // Remove master public key from permanent trusted key list
-            if (unl.trusted(mo->masterKey))
-                unl.removePermanentKey (mo->masterKey);
-
-            // add trusted key
-            map_[mo->masterKey];
-
-            // OK if not accepted (may have been loaded from the config file)
-            applyManifest (std::move(*mo), unl, journal);
+            if (trusted(mo->masterKey) || unl.trusted(mo->masterKey))
+            {
+                applyManifest (std::move(*mo), unl, journal);
+            }
+            else
+            {
+                JLOG(journal.info())
+                   << "Manifest in db is no longer trusted";
+            }
        }
        else
        {