zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
709 Commits
183 Branches
291 MiB
Tree: 32e02acb0c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '32e02acb0c'
${ noResults }
tendermint/vm/snative.go

282 lines
8.5 KiB
Raw Normal View History

snative
10 years ago
cleanups, fix AllSet
10 years ago
bond perm and tests
10 years ago
faster binding of snatives to vm (available every call)
10 years ago
bond perm and tests
10 years ago
fire events on snative and allow from CallTx
10 years ago
cleanups, fix AllSet
10 years ago
faster binding of snatives to vm (available every call)
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
faster binding of snatives to vm (available every call)
10 years ago
fire events on snative and allow from CallTx
10 years ago
faster binding of snatives to vm (available every call)
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
cleanups, fix AllSet
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
testing and fixes for snative CALL and CallTx
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
cleanups, fix AllSet
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
testing and fixes for snative CALL and CallTx
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
cleanups, fix AllSet
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
testing and fixes for snative CALL and CallTx
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
cleanups, fix AllSet
10 years ago
snative
10 years ago
testing and fixes for snative CALL and CallTx
10 years ago
snative
10 years ago
testing and fixes for snative CALL and CallTx
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
testing and fixes for snative CALL and CallTx
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
cleanups, fix AllSet
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
cleanups, fix AllSet
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
testing and fixes for snative CALL and CallTx
10 years ago
snative
10 years ago
testing and fixes for snative CALL and CallTx
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
cleanups, fix AllSet
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
testing and fixes for snative CALL and CallTx
10 years ago
snative
10 years ago
testing and fixes for snative CALL and CallTx
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
cleanups, fix AllSet
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
testing and fixes for snative CALL and CallTx
10 years ago
snative
10 years ago
testing and fixes for snative CALL and CallTx
10 years ago
snative
10 years ago
 
  1. package vm
  2. 

  3. import (
  4. 	"fmt"
  5. 

  6. 	. "github.com/tendermint/tendermint/common"
  7. 	ptypes "github.com/tendermint/tendermint/permission/types"
  8. )
  9. 

  10. type ErrInvalidPermission struct {
  11. 	Address Word256
  12. 	SNative string
  13. }
  14. 

  15. func (e ErrInvalidPermission) Error() string {
  16. 	return fmt.Sprintf("Account %X does not have permission snative.%s", e.Address.Postfix(20), e.SNative)
  17. }
  18. 

  19. // Checks if a permission flag is valid (a known base chain or snative permission)

  20. func ValidPermN(n ptypes.PermFlag) bool {
  21. 	if n > ptypes.TopBasePermission && n < FirstSNativePerm {
  22. 		return false
  23. 	} else if n > TopSNativePermission {
  24. 		return false
  25. 	}
  26. 	return true
  27. }
  28. 

  29. const (
  30. 	// first 32 bits of BasePermission are for chain, second 32 are for snative

  31. 	FirstSNativePerm ptypes.PermFlag = 1 << 32
  32. 

  33. 	// each snative has an associated permission flag

  34. 	HasBasePerm ptypes.PermFlag = FirstSNativePerm << iota
  35. 	SetBasePerm
  36. 	UnsetBasePerm
  37. 	SetGlobalPerm
  38. 	ClearBasePerm
  39. 	HasRole
  40. 	AddRole
  41. 	RmRole
  42. 

  43. 	// XXX: must be adjusted if snative's added/removed

  44. 	NumSNativePermissions uint            = 8
  45. 	TopSNativePermission  ptypes.PermFlag = FirstSNativePerm << (NumSNativePermissions - 1)
  46. )
  47. 

  48. var RegisteredSNativeContracts = map[Word256]ptypes.PermFlag{
  49. 	LeftPadWord256([]byte("hasBasePerm")):   HasBasePerm,
  50. 	LeftPadWord256([]byte("setBasePerm")):   SetBasePerm,
  51. 	LeftPadWord256([]byte("unsetBasePerm")): UnsetBasePerm,
  52. 	LeftPadWord256([]byte("setGlobalPerm")): SetGlobalPerm,
  53. 	LeftPadWord256([]byte("hasRole")):       HasRole,
  54. 	LeftPadWord256([]byte("addRole")):       AddRole,
  55. 	LeftPadWord256([]byte("rmRole")):        RmRole,
  56. }
  57. 

  58. // takes an account so it can check for permission to access the contract

  59. // NOTE: the account is the currently executing account (the callee), not say an origin caller

  60. type SNativeContract func(acc *Account, input []byte) (output []byte, err error)
  61. 

  62. func (vm *VM) SNativeContract(name Word256) SNativeContract {
  63. 	flag := RegisteredSNativeContracts[name]
  64. 	switch flag {
  65. 	case HasBasePerm:
  66. 		return vm.hasBasePerm
  67. 	case SetBasePerm:
  68. 		return vm.setBasePerm
  69. 	case UnsetBasePerm:
  70. 		return vm.unsetBasePerm
  71. 	case SetGlobalPerm:
  72. 		return vm.setGlobalPerm
  73. 	case HasRole:
  74. 		return vm.hasRole
  75. 	case AddRole:
  76. 		return vm.addRole
  77. 	case RmRole:
  78. 		return vm.rmRole
  79. 	default:
  80. 		return nil
  81. 	}
  82. }
  83. 

  84. //-----------------------------------------------------------------------------

  85. // snative are native contracts that can access and manipulate the chain state

  86. // (in particular the permissions values)

  87. 

  88. // TODO: catch errors, log em, return 0s to the vm (should some errors cause exceptions though?)

  89. 

  90. func (vm *VM) hasBasePerm(acc *Account, args []byte) (output []byte, err error) {
  91. 	if !vm.HasPermission(acc, HasBasePerm) {
  92. 		return nil, ErrInvalidPermission{acc.Address, "HasBasePerm"}
  93. 	}
  94. 	if len(args) != 2*32 {
  95. 		return nil, fmt.Errorf("hasBasePerm() takes two arguments (address, permission number)")
  96. 	}
  97. 	var addr, permNum Word256
  98. 	copy(addr[:], args[:32])
  99. 	copy(permNum[:], args[32:64])
  100. 	vmAcc := vm.appState.GetAccount(addr)
  101. 	if vmAcc == nil {
  102. 		return nil, fmt.Errorf("Unknown account %X", addr)
  103. 	}
  104. 	permN := ptypes.PermFlag(Uint64FromWord256(permNum)) // already shifted

  105. 	if !ValidPermN(permN) {
  106. 		return nil, ptypes.ErrInvalidPermission(permN)
  107. 	}
  108. 	var permInt byte
  109. 	if vm.HasPermission(vmAcc, permN) {
  110. 		permInt = 0x1
  111. 	} else {
  112. 		permInt = 0x0
  113. 	}
  114. 	dbg.Printf("snative.hasBasePerm(0x%X, %b) = %v\n", addr.Postfix(20), permN, permInt)
  115. 	return LeftPadWord256([]byte{permInt}).Bytes(), nil
  116. }
  117. 

  118. func (vm *VM) setBasePerm(acc *Account, args []byte) (output []byte, err error) {
  119. 	if !vm.HasPermission(acc, SetBasePerm) {
  120. 		return nil, ErrInvalidPermission{acc.Address, "SetBasePerm"}
  121. 	}
  122. 	if len(args) != 3*32 {
  123. 		return nil, fmt.Errorf("setBasePerm() takes three arguments (address, permission number, permission value)")
  124. 	}
  125. 	var addr, permNum, perm Word256
  126. 	copy(addr[:], args[:32])
  127. 	copy(permNum[:], args[32:64])
  128. 	copy(perm[:], args[64:96])
  129. 	vmAcc := vm.appState.GetAccount(addr)
  130. 	if vmAcc == nil {
  131. 		return nil, fmt.Errorf("Unknown account %X", addr)
  132. 	}
  133. 	permN := ptypes.PermFlag(Uint64FromWord256(permNum))
  134. 	if !ValidPermN(permN) {
  135. 		return nil, ptypes.ErrInvalidPermission(permN)
  136. 	}
  137. 	permV := !perm.IsZero()
  138. 	if err = vmAcc.Permissions.Base.Set(permN, permV); err != nil {
  139. 		return nil, err
  140. 	}
  141. 	vm.appState.UpdateAccount(vmAcc)
  142. 	dbg.Printf("snative.setBasePerm(0x%X, %b, %v)\n", addr.Postfix(20), permN, permV)
  143. 	return perm.Bytes(), nil
  144. }
  145. 

  146. func (vm *VM) unsetBasePerm(acc *Account, args []byte) (output []byte, err error) {
  147. 	if !vm.HasPermission(acc, UnsetBasePerm) {
  148. 		return nil, ErrInvalidPermission{acc.Address, "UnsetBasePerm"}
  149. 	}
  150. 	if len(args) != 2*32 {
  151. 		return nil, fmt.Errorf("unsetBasePerm() takes two arguments (address, permission number)")
  152. 	}
  153. 	var addr, permNum Word256
  154. 	copy(addr[:], args[:32])
  155. 	copy(permNum[:], args[32:64])
  156. 	vmAcc := vm.appState.GetAccount(addr)
  157. 	if vmAcc == nil {
  158. 		return nil, fmt.Errorf("Unknown account %X", addr)
  159. 	}
  160. 	permN := ptypes.PermFlag(Uint64FromWord256(permNum))
  161. 	if !ValidPermN(permN) {
  162. 		return nil, ptypes.ErrInvalidPermission(permN)
  163. 	}
  164. 	if err = vmAcc.Permissions.Base.Unset(permN); err != nil {
  165. 		return nil, err
  166. 	}
  167. 	vm.appState.UpdateAccount(vmAcc)
  168. 	dbg.Printf("snative.unsetBasePerm(0x%X, %b)\n", addr.Postfix(20), permN)
  169. 	return permNum.Bytes(), nil
  170. }
  171. 

  172. func (vm *VM) setGlobalPerm(acc *Account, args []byte) (output []byte, err error) {
  173. 	if !vm.HasPermission(acc, SetGlobalPerm) {
  174. 		return nil, ErrInvalidPermission{acc.Address, "SetGlobalPerm"}
  175. 	}
  176. 	if len(args) != 2*32 {
  177. 		return nil, fmt.Errorf("setGlobalPerm() takes two arguments (permission number, permission value)")
  178. 	}
  179. 	var permNum, perm Word256
  180. 	copy(permNum[:], args[:32])
  181. 	copy(perm[:], args[32:64])
  182. 	vmAcc := vm.appState.GetAccount(ptypes.GlobalPermissionsAddress256)
  183. 	if vmAcc == nil {
  184. 		panic("cant find the global permissions account")
  185. 	}
  186. 	permN := ptypes.PermFlag(Uint64FromWord256(permNum))
  187. 	if !ValidPermN(permN) {
  188. 		return nil, ptypes.ErrInvalidPermission(permN)
  189. 	}
  190. 	permV := !perm.IsZero()
  191. 	if err = vmAcc.Permissions.Base.Set(permN, permV); err != nil {
  192. 		return nil, err
  193. 	}
  194. 	vm.appState.UpdateAccount(vmAcc)
  195. 	dbg.Printf("snative.setGlobalPerm(%b, %v)\n", permN, permV)
  196. 	return perm.Bytes(), nil
  197. }
  198. 

  199. // TODO: needs access to an iterator ...

  200. func (vm *VM) clearPerm(acc *Account, args []byte) (output []byte, err error) {
  201. 	if !vm.HasPermission(acc, ClearBasePerm) {
  202. 		return nil, ErrInvalidPermission{acc.Address, "ClearPerm"}
  203. 	}
  204. 	return nil, nil
  205. }
  206. 

  207. func (vm *VM) hasRole(acc *Account, args []byte) (output []byte, err error) {
  208. 	if !vm.HasPermission(acc, HasRole) {
  209. 		return nil, ErrInvalidPermission{acc.Address, "HasRole"}
  210. 	}
  211. 	if len(args) != 2*32 {
  212. 		return nil, fmt.Errorf("hasRole() takes two arguments (address, role)")
  213. 	}
  214. 	var addr, role Word256
  215. 	copy(addr[:], args[:32])
  216. 	copy(role[:], args[32:64])
  217. 	vmAcc := vm.appState.GetAccount(addr)
  218. 	if vmAcc == nil {
  219. 		return nil, fmt.Errorf("Unknown account %X", addr)
  220. 	}
  221. 	roleS := string(role.Bytes())
  222. 	var permInt byte
  223. 	if vmAcc.Permissions.HasRole(roleS) {
  224. 		permInt = 0x1
  225. 	} else {
  226. 		permInt = 0x0
  227. 	}
  228. 	dbg.Printf("snative.hasRole(0x%X, %s) = %v\n", addr.Postfix(20), roleS, permInt > 0)
  229. 	return LeftPadWord256([]byte{permInt}).Bytes(), nil
  230. }
  231. 

  232. func (vm *VM) addRole(acc *Account, args []byte) (output []byte, err error) {
  233. 	if !vm.HasPermission(acc, AddRole) {
  234. 		return nil, ErrInvalidPermission{acc.Address, "AddRole"}
  235. 	}
  236. 	if len(args) != 2*32 {
  237. 		return nil, fmt.Errorf("addRole() takes two arguments (address, role)")
  238. 	}
  239. 	var addr, role Word256
  240. 	copy(addr[:], args[:32])
  241. 	copy(role[:], args[32:64])
  242. 	vmAcc := vm.appState.GetAccount(addr)
  243. 	if vmAcc == nil {
  244. 		return nil, fmt.Errorf("Unknown account %X", addr)
  245. 	}
  246. 	roleS := string(role.Bytes())
  247. 	var permInt byte
  248. 	if vmAcc.Permissions.AddRole(roleS) {
  249. 		permInt = 0x1
  250. 	} else {
  251. 		permInt = 0x0
  252. 	}
  253. 	vm.appState.UpdateAccount(vmAcc)
  254. 	dbg.Printf("snative.addRole(0x%X, %s) = %v\n", addr.Postfix(20), roleS, permInt > 0)
  255. 	return LeftPadWord256([]byte{permInt}).Bytes(), nil
  256. }
  257. 

  258. func (vm *VM) rmRole(acc *Account, args []byte) (output []byte, err error) {
  259. 	if !vm.HasPermission(acc, RmRole) {
  260. 		return nil, ErrInvalidPermission{acc.Address, "RmRole"}
  261. 	}
  262. 	if len(args) != 2*32 {
  263. 		return nil, fmt.Errorf("rmRole() takes two arguments (address, role)")
  264. 	}
  265. 	var addr, role Word256
  266. 	copy(addr[:], args[:32])
  267. 	copy(role[:], args[32:64])
  268. 	vmAcc := vm.appState.GetAccount(addr)
  269. 	if vmAcc == nil {
  270. 		return nil, fmt.Errorf("Unknown account %X", addr)
  271. 	}
  272. 	roleS := string(role.Bytes())
  273. 	var permInt byte
  274. 	if vmAcc.Permissions.RmRole(roleS) {
  275. 		permInt = 0x1
  276. 	} else {
  277. 		permInt = 0x0
  278. 	}
  279. 	vm.appState.UpdateAccount(vmAcc)
  280. 	dbg.Printf("snative.rmRole(0x%X, %s) = %v\n", addr.Postfix(20), roleS, permInt > 0)
  281. 	return LeftPadWord256([]byte{permInt}).Bytes(), nil
  282. }