Skip to content

Commit

Permalink
add more checks for impossible constraints with assert height|seconds…
Browse files Browse the repository at this point in the history 
… combined with assert before height|seconds. Just to catch a few cases earlier
  • Loading branch information
@arvidn
arvidn committed Feb 1, 2023
1 parent 6db5e35 commit 9c7a633
Show file tree
Hide file tree
Showing 2 changed files with 174 additions and 0 deletions.
166 changes: 166 additions & 0 deletions src/gen/conditions.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -543,6 +543,14 @@ fn parse_spend_conditions(
Condition::AssertSecondsRelative(s) => {
// keep the most strict condition. i.e. the highest limit
spend.seconds_relative = max(spend.seconds_relative, s);
if let Some(bs) = spend.before_seconds_relative {
if bs <= spend.seconds_relative {
// this spend bundle requres to be spent *before* a
// timestamp and also *after* a timestamp that's the
// same or later. that's impossible.
return Err(ValidationErr(c, ErrorCode::ImpossibleSecondsRelativeConstraints));
}
}
}
Condition::AssertSecondsAbsolute(s) => {
// keep the most strict condition. i.e. the highest limit
Expand All @@ -551,6 +559,14 @@ fn parse_spend_conditions(
Condition::AssertHeightRelative(h) => {
// keep the most strict condition. i.e. the highest limit
spend.height_relative = Some(max(spend.height_relative.unwrap_or(0), h));
if let Some(bs) = spend.before_height_relative {
if bs <= h {
// this spend bundle requres to be spent *before* a
// height and also *after* a height that's the
// same or later. that's impossible.
return Err(ValidationErr(c, ErrorCode::ImpossibleHeightRelativeConstraints));
}
}
}
Condition::AssertHeightAbsolute(h) => {
// keep the most strict condition. i.e. the highest limit
Expand All @@ -563,6 +579,12 @@ fn parse_spend_conditions(
} else {
spend.before_seconds_relative = Some(s);
}
if s <= spend.seconds_relative {
// this spend bundle requres to be spent *before* a
// timestamp and also *after* a timestamp that's the
// same or later. that's impossible.
return Err(ValidationErr(c, ErrorCode::ImpossibleSecondsRelativeConstraints));
}
}
Condition::AssertBeforeSecondsAbsolute(s) => {
// keep the most strict condition. i.e. the lowest limit
Expand All @@ -579,6 +601,14 @@ fn parse_spend_conditions(
} else {
spend.before_height_relative = Some(h);
}
if let Some(hr) = spend.height_relative {
if h <= hr {
// this spend bundle requres to be spent *before* a
// height and also *after* a height that's the
// same or later. that's impossible.
return Err(ValidationErr(c, ErrorCode::ImpossibleHeightRelativeConstraints));
}
}
}
Condition::AssertBeforeHeightAbsolute(h) => {
// keep the most strict condition. i.e. the lowest limit
Expand Down Expand Up @@ -688,6 +718,24 @@ pub fn parse_spends(
return Err(ValidationErr(spends, ErrorCode::ReserveFeeConditionFailed));
}

if let Some(bh) = ret.before_height_absolute {
if bh <= ret.height_absolute {
// this spend bundle requres to be spent *before* a
// height and also *after* a height that's the
// same or later. that's impossible.
return Err(ValidationErr(spends, ErrorCode::ImpossibleHeightAbsoluteConstraints));
}
}

if let Some(bs) = ret.before_seconds_absolute {
if bs <= ret.seconds_absolute {
// this spend bundle requres to be spent *before* a
// timestamp and also *after* a timestamp that's the
// same or later. that's impossible.
return Err(ValidationErr(spends, ErrorCode::ImpossibleSecondsAbsoluteConstraints));
}
}

// check concurrent spent assertions
for coin_id in state.assert_concurrent_spend {
if !state.spent_coins.contains(&Bytes32::from(a.atom(coin_id))) {
Expand Down Expand Up @@ -2777,3 +2825,121 @@ fn test_assert_concurrent_puzzle_self() {
assert_eq!(spend.agg_sig_me.len(), 0);
assert_eq!(spend.flags, ELIGIBLE_FOR_DEDUP);
}

// the relative constraints clash because they are on the same coin spend
#[cfg(test)]
#[rstest]
#[case(ASSERT_SECONDS_ABSOLUTE, 100, ASSERT_BEFORE_SECONDS_ABSOLUTE, 100, Some(ErrorCode::ImpossibleSecondsAbsoluteConstraints))]
#[case(ASSERT_SECONDS_ABSOLUTE, 99, ASSERT_BEFORE_SECONDS_ABSOLUTE, 100, None)]
#[case(ASSERT_HEIGHT_ABSOLUTE, 100, ASSERT_BEFORE_HEIGHT_ABSOLUTE, 100, Some(ErrorCode::ImpossibleHeightAbsoluteConstraints))]
#[case(ASSERT_HEIGHT_ABSOLUTE, 99, ASSERT_BEFORE_HEIGHT_ABSOLUTE, 100, None)]
#[case(ASSERT_SECONDS_RELATIVE, 100, ASSERT_BEFORE_SECONDS_RELATIVE, 100, Some(ErrorCode::ImpossibleSecondsRelativeConstraints))]
#[case(ASSERT_SECONDS_RELATIVE, 99, ASSERT_BEFORE_SECONDS_RELATIVE, 100, None)]
#[case(ASSERT_HEIGHT_RELATIVE, 100, ASSERT_BEFORE_HEIGHT_RELATIVE, 100, Some(ErrorCode::ImpossibleHeightRelativeConstraints))]
#[case(ASSERT_HEIGHT_RELATIVE, 99, ASSERT_BEFORE_HEIGHT_RELATIVE, 100, None)]
// order shouldn't matter
#[case(ASSERT_BEFORE_SECONDS_ABSOLUTE, 100, ASSERT_SECONDS_ABSOLUTE, 100, Some(ErrorCode::ImpossibleSecondsAbsoluteConstraints))]
#[case(ASSERT_BEFORE_SECONDS_ABSOLUTE, 100, ASSERT_SECONDS_ABSOLUTE, 99, None)]
#[case(ASSERT_BEFORE_HEIGHT_ABSOLUTE, 100, ASSERT_HEIGHT_ABSOLUTE, 100, Some(ErrorCode::ImpossibleHeightAbsoluteConstraints))]
#[case(ASSERT_BEFORE_HEIGHT_ABSOLUTE, 100, ASSERT_HEIGHT_ABSOLUTE, 99, None)]
#[case(ASSERT_BEFORE_SECONDS_RELATIVE, 100, ASSERT_SECONDS_RELATIVE, 100, Some(ErrorCode::ImpossibleSecondsRelativeConstraints))]
#[case(ASSERT_BEFORE_SECONDS_RELATIVE, 100, ASSERT_SECONDS_RELATIVE, 99, None)]
#[case(ASSERT_BEFORE_HEIGHT_RELATIVE, 100, ASSERT_HEIGHT_RELATIVE, 100, Some(ErrorCode::ImpossibleHeightRelativeConstraints))]
#[case(ASSERT_BEFORE_HEIGHT_RELATIVE, 100, ASSERT_HEIGHT_RELATIVE, 99, None)]
fn test_impossible_constraints_single_spend(
#[case] cond1: ConditionOpcode,
#[case] value1: u64,
#[case] cond2: ConditionOpcode,
#[case] value2: u64,
#[case] expected_err: Option<ErrorCode>,
) {
let test: &str = &format!("(\
(({{h1}} ({{h1}} (123 (\
(({} ({} ) \
(({} ({} ) \
))\
))", cond1 as u8, value1, cond2 as u8, value2);
if let Some(e) = expected_err {
assert_eq!(cond_test(test).unwrap_err().1, e);
}
else {
// we don't expect any error
let (a, conds) = cond_test(test).unwrap();

// just make sure there are no constraints
assert_eq!(conds.agg_sig_unsafe.len(), 0);
assert_eq!(conds.reserve_fee, 0);
assert_eq!(conds.cost, 0);

assert_eq!(conds.spends.len(), 1);
let spend = &conds.spends[0];
assert_eq!(*spend.coin_id, test_coin_id(H1, H1, 123));
assert_eq!(a.atom(spend.puzzle_hash), H1);
assert_eq!(spend.agg_sig_me.len(), 0);
assert_eq!(spend.flags, ELIGIBLE_FOR_DEDUP);
}
}

// the relative constraints do not clash because they are on separate coin
// spends. We don't know those coins' confirm block height nor timestamps,
// so we can't infer any conflicts
#[cfg(test)]
#[rstest]
#[case(ASSERT_SECONDS_ABSOLUTE, 100, ASSERT_BEFORE_SECONDS_ABSOLUTE, 100, Some(ErrorCode::ImpossibleSecondsAbsoluteConstraints))]
#[case(ASSERT_SECONDS_ABSOLUTE, 99, ASSERT_BEFORE_SECONDS_ABSOLUTE, 100, None)]
#[case(ASSERT_HEIGHT_ABSOLUTE, 100, ASSERT_BEFORE_HEIGHT_ABSOLUTE, 100, Some(ErrorCode::ImpossibleHeightAbsoluteConstraints))]
#[case(ASSERT_HEIGHT_ABSOLUTE, 99, ASSERT_BEFORE_HEIGHT_ABSOLUTE, 100, None)]
#[case(ASSERT_SECONDS_RELATIVE, 100, ASSERT_BEFORE_SECONDS_RELATIVE, 100, None)]
#[case(ASSERT_SECONDS_RELATIVE, 99, ASSERT_BEFORE_SECONDS_RELATIVE, 100, None)]
#[case(ASSERT_HEIGHT_RELATIVE, 100, ASSERT_BEFORE_HEIGHT_RELATIVE, 100, None)]
#[case(ASSERT_HEIGHT_RELATIVE, 99, ASSERT_BEFORE_HEIGHT_RELATIVE, 100, None)]
// order shouldn't matter
#[case(ASSERT_BEFORE_SECONDS_ABSOLUTE, 100, ASSERT_SECONDS_ABSOLUTE, 100, Some(ErrorCode::ImpossibleSecondsAbsoluteConstraints))]
#[case(ASSERT_BEFORE_SECONDS_ABSOLUTE, 100, ASSERT_SECONDS_ABSOLUTE, 99, None)]
#[case(ASSERT_BEFORE_HEIGHT_ABSOLUTE, 100, ASSERT_HEIGHT_ABSOLUTE, 100, Some(ErrorCode::ImpossibleHeightAbsoluteConstraints))]
#[case(ASSERT_BEFORE_HEIGHT_ABSOLUTE, 100, ASSERT_HEIGHT_ABSOLUTE, 99, None)]
#[case(ASSERT_BEFORE_SECONDS_RELATIVE, 100, ASSERT_SECONDS_RELATIVE, 100, None)]
#[case(ASSERT_BEFORE_SECONDS_RELATIVE, 100, ASSERT_SECONDS_RELATIVE, 99, None)]
#[case(ASSERT_BEFORE_HEIGHT_RELATIVE, 100, ASSERT_HEIGHT_RELATIVE, 100, None)]
#[case(ASSERT_BEFORE_HEIGHT_RELATIVE, 100, ASSERT_HEIGHT_RELATIVE, 99, None)]
fn test_impossible_constraints_separate_spends(
#[case] cond1: ConditionOpcode,
#[case] value1: u64,
#[case] cond2: ConditionOpcode,
#[case] value2: u64,
#[case] expected_err: Option<ErrorCode>,
) {
let test: &str = &format!("(\
(({{h1}} ({{h1}} (123 (\
(({} ({} ) \
))\
(({{h1}} ({{h2}} (123 (\
(({} ({} ) \
))\
))", cond1 as u8, value1, cond2 as u8, value2);
if let Some(e) = expected_err {
assert_eq!(cond_test(test).unwrap_err().1, e);
}
else {
// we don't expect any error
let (a, conds) = cond_test(test).unwrap();

// just make sure there are no constraints
assert_eq!(conds.agg_sig_unsafe.len(), 0);
assert_eq!(conds.reserve_fee, 0);
assert_eq!(conds.cost, 0);

assert_eq!(conds.spends.len(), 2);
let spend = &conds.spends[0];
assert_eq!(*spend.coin_id, test_coin_id(H1, H1, 123));
assert_eq!(a.atom(spend.puzzle_hash), H1);
assert_eq!(spend.agg_sig_me.len(), 0);
assert_eq!(spend.flags, ELIGIBLE_FOR_DEDUP);

let spend = &conds.spends[1];
assert_eq!(*spend.coin_id, test_coin_id(H1, H2, 123));
assert_eq!(a.atom(spend.puzzle_hash), H2);
assert_eq!(spend.agg_sig_me.len(), 0);
assert_eq!(spend.flags, ELIGIBLE_FOR_DEDUP);
}
}
8 changes: 8 additions & 0 deletions src/gen/validation_error.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,6 +36,10 @@ pub enum ErrorCode {
DoubleSpend,
CostExceeded,
MintingCoin,
ImpossibleSecondsRelativeConstraints,
ImpossibleSecondsAbsoluteConstraints,
ImpossibleHeightRelativeConstraints,
ImpossibleHeightAbsoluteConstraints,
}

#[derive(Debug, Clone, Copy, PartialEq, Eq)]
Expand Down Expand Up @@ -98,6 +102,10 @@ impl From<ErrorCode> for u32 {
ErrorCode::DoubleSpend => 5,
ErrorCode::CostExceeded => 23,
ErrorCode::MintingCoin => 20,
ErrorCode::ImpossibleSecondsRelativeConstraints => 134,
ErrorCode::ImpossibleSecondsAbsoluteConstraints => 135,
ErrorCode::ImpossibleHeightRelativeConstraints => 136,
ErrorCode::ImpossibleHeightAbsoluteConstraints => 136,
}
}
}
Expand Down

0 comments on commit 9c7a633

Please sign in to comment.