zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
705 Commits
183 Branches
291 MiB
Tree: b2282d5a39
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'b2282d5a39'
${ noResults }
tendermint/state/permissions_test.go

867 lines
28 KiB
Raw Normal View History

testing send and call permissions
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
move perms to vm.Account
10 years ago
testing send and call permissions
10 years ago
CreateAccount permission through SendTx and CALL (to unknown accounts)
10 years ago
testing send and call permissions
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
CreateAccount permission through SendTx and CALL (to unknown accounts)
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
CreateAccount permission through SendTx and CALL (to unknown accounts)
10 years ago
testing send and call permissions
10 years ago
permission/types pkg, Base and Roles
10 years ago
testing send and call permissions
10 years ago
permission/types pkg, Base and Roles
10 years ago
testing send and call permissions
10 years ago
permission/types pkg, Base and Roles
10 years ago
testing send and call permissions
10 years ago
permission/types pkg, Base and Roles
10 years ago
testing send and call permissions
10 years ago
permission/types pkg, Base and Roles
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
CreateAccount permission through SendTx and CALL (to unknown accounts)
10 years ago
testing send and call permissions
10 years ago
permission/types pkg, Base and Roles
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
permission/types pkg, Base and Roles
10 years ago
testing send and call permissions
10 years ago
make_txs > tx_utils
10 years ago
testing send and call permissions
10 years ago
make_txs > tx_utils
10 years ago
testing send and call permissions
10 years ago
make_txs > tx_utils
10 years ago
testing send and call permissions
10 years ago
make_txs > tx_utils
10 years ago
testing send and call permissions
10 years ago
make_txs > tx_utils
10 years ago
testing send and call permissions
10 years ago
permission/types pkg, Base and Roles
10 years ago
testing send and call permissions
10 years ago
permission/types pkg, Base and Roles
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
permission/types pkg, Base and Roles
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
permission/types pkg, Base and Roles
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
permission/types pkg, Base and Roles
10 years ago
testing send and call permissions
10 years ago
permission/types pkg, Base and Roles
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
permission/types pkg, Base and Roles
10 years ago
testing send and call permissions
10 years ago
bond perm and tests
10 years ago
testing send and call permissions
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
bond perm and tests
10 years ago
test create
10 years ago
CreateAccount permission through SendTx and CALL (to unknown accounts)
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
test create
10 years ago
testing send and call permissions
10 years ago
 
  1. package state
  2. 

  3. import (
  4. 	"bytes"
  5. 	"fmt"
  6. 	"strconv"
  7. 	"testing"
  8. 	"time"
  9. 

  10. 	"github.com/tendermint/tendermint/account"
  11. 	. "github.com/tendermint/tendermint/common"
  12. 	dbm "github.com/tendermint/tendermint/db"
  13. 	"github.com/tendermint/tendermint/events"
  14. 	ptypes "github.com/tendermint/tendermint/permission/types"
  15. 	"github.com/tendermint/tendermint/types"
  16. )
  17. 

  18. /*
  19. Permission Tests:
  20. 

  21. - SendTx:
  22. x	- 1 input, no perm, call perm, create perm
  23. x	- 1 input, perm
  24. x	- 2 inputs, one with perm one without
  25. 

  26. - CallTx, CALL
  27. x	- 1 input, no perm, send perm, create perm
  28. x	- 1 input, perm
  29. x	- contract runs call but doesn't have call perm
  30. x	- contract runs call and has call perm
  31. x	- contract runs call (with perm), runs contract that runs call (without perm)
  32. x	- contract runs call (with perm), runs contract that runs call (with perm)
  33. 

  34. - CallTx for Create, CREATE
  35. x	- 1 input, no perm, send perm, call perm
  36. x 	- 1 input, perm
  37. x	- contract runs create but doesn't have create perm
  38. x	- contract runs create but has perm
  39. x	- contract runs call with empty address (has call and create perm)
  40. 

  41. - BondTx
  42. x	- 1 input, no perm
  43. x	- 1 input, perm
  44. x	- 1 bonder with perm, input without send or bond
  45. x	- 1 bonder with perm, input with send
  46. x	- 1 bonder with perm, input with bond
  47. x	- 2 inputs, one with perm one without
  48. 

  49. - SendTx for new account
  50. x 	- 1 input, 1 unknown ouput, input with send, not create  (fail)
  51. x 	- 1 input, 1 unknown ouput, input with send and create (pass)
  52. x 	- 2 inputs, 1 unknown ouput, both inputs with send, one with create, one without (fail)
  53. x 	- 2 inputs, 1 known output, 1 unknown ouput, one input with create, one without (fail)
  54. x 	- 2 inputs, 1 unknown ouput, both inputs with send, both inputs with create (pass )
  55. x 	- 2 inputs, 1 known output, 1 unknown ouput, both inputs with create, (pass)
  56. 

  57. 

  58. - CALL for new account
  59. x	- unknown output, without create (fail)
  60. x	- unknown output, with create (pass)
  61. 

  62. 

  63. - Gendoug:
  64. 	- base: has,set,unset
  65. 	- roles: has, add, r
  66. 

  67. */
  68. 

  69. // keys

  70. var user = makeUsers(10)
  71. 

  72. func makeUsers(n int) []*account.PrivAccount {
  73. 	accounts := []*account.PrivAccount{}
  74. 	for i := 0; i < n; i++ {
  75. 		secret := []byte("mysecret" + strconv.Itoa(i))
  76. 		user := account.GenPrivAccountFromSecret(secret)
  77. 		accounts = append(accounts, user)
  78. 	}
  79. 	return accounts
  80. }
  81. 

  82. var (
  83. 	PermsAllFalse = ptypes.NewAccountPermissions()
  84. )
  85. 

  86. func newBaseGenDoc(globalPerm, accountPerm *ptypes.AccountPermissions) GenesisDoc {
  87. 	genAccounts := []GenesisAccount{}
  88. 	for _, u := range user[:5] {
  89. 		genAccounts = append(genAccounts, GenesisAccount{
  90. 			Address:     u.Address,
  91. 			Amount:      1000000,
  92. 			Permissions: accountPerm.Copy(),
  93. 		})
  94. 	}
  95. 

  96. 	return GenesisDoc{
  97. 		GenesisTime: time.Now(),
  98. 		Params: &GenesisParams{
  99. 			GlobalPermissions: globalPerm,
  100. 		},
  101. 		Accounts: genAccounts,
  102. 		Validators: []GenesisValidator{
  103. 			GenesisValidator{
  104. 				PubKey: user[0].PubKey.(account.PubKeyEd25519),
  105. 				Amount: 10,
  106. 				UnbondTo: []GenesisAccount{
  107. 					GenesisAccount{
  108. 						Address: user[0].Address,
  109. 					},
  110. 				},
  111. 			},
  112. 		},
  113. 	}
  114. }
  115. 

  116. func TestSendFails(t *testing.T) {
  117. 	stateDB := dbm.GetDB("state")
  118. 	genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
  119. 	genDoc.Accounts[1].Permissions.Base.Set(ptypes.Send, true)
  120. 	genDoc.Accounts[2].Permissions.Base.Set(ptypes.Call, true)
  121. 	genDoc.Accounts[3].Permissions.Base.Set(ptypes.CreateContract, true)
  122. 	st := MakeGenesisState(stateDB, &genDoc)
  123. 	blockCache := NewBlockCache(st)
  124. 

  125. 	//-------------------

  126. 	// send txs

  127. 

  128. 	// simple send tx should fail

  129. 	tx := types.NewSendTx()
  130. 	if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
  131. 		t.Fatal(err)
  132. 	}
  133. 	tx.AddOutput(user[1].Address, 5)
  134. 	tx.SignInput(0, user[0])
  135. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  136. 		t.Fatal("Expected error")
  137. 	} else {
  138. 		fmt.Println(err)
  139. 	}
  140. 

  141. 	// simple send tx with call perm should fail

  142. 	tx = types.NewSendTx()
  143. 	if err := tx.AddInput(blockCache, user[2].PubKey, 5); err != nil {
  144. 		t.Fatal(err)
  145. 	}
  146. 	tx.AddOutput(user[4].Address, 5)
  147. 	tx.SignInput(0, user[2])
  148. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  149. 		t.Fatal("Expected error")
  150. 	} else {
  151. 		fmt.Println(err)
  152. 	}
  153. 

  154. 	// simple send tx with create perm should fail

  155. 	tx = types.NewSendTx()
  156. 	if err := tx.AddInput(blockCache, user[3].PubKey, 5); err != nil {
  157. 		t.Fatal(err)
  158. 	}
  159. 	tx.AddOutput(user[4].Address, 5)
  160. 	tx.SignInput(0, user[3])
  161. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  162. 		t.Fatal("Expected error")
  163. 	} else {
  164. 		fmt.Println(err)
  165. 	}
  166. 

  167. 	// simple send tx to unknown account without create_account perm should fail

  168. 	acc := blockCache.GetAccount(user[3].Address)
  169. 	acc.Permissions.Base.Set(ptypes.Send, true)
  170. 	blockCache.UpdateAccount(acc)
  171. 	tx = types.NewSendTx()
  172. 	if err := tx.AddInput(blockCache, user[3].PubKey, 5); err != nil {
  173. 		t.Fatal(err)
  174. 	}
  175. 	tx.AddOutput(user[6].Address, 5)
  176. 	tx.SignInput(0, user[3])
  177. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  178. 		t.Fatal("Expected error")
  179. 	} else {
  180. 		fmt.Println(err)
  181. 	}
  182. }
  183. 

  184. func TestCallFails(t *testing.T) {
  185. 	stateDB := dbm.GetDB("state")
  186. 	genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
  187. 	genDoc.Accounts[1].Permissions.Base.Set(ptypes.Send, true)
  188. 	genDoc.Accounts[2].Permissions.Base.Set(ptypes.Call, true)
  189. 	genDoc.Accounts[3].Permissions.Base.Set(ptypes.CreateContract, true)
  190. 	st := MakeGenesisState(stateDB, &genDoc)
  191. 	blockCache := NewBlockCache(st)
  192. 

  193. 	//-------------------

  194. 	// call txs

  195. 

  196. 	// simple call tx should fail

  197. 	tx, _ := types.NewCallTx(blockCache, user[0].PubKey, user[4].Address, nil, 100, 100, 100)
  198. 	tx.Sign(user[0])
  199. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  200. 		t.Fatal("Expected error")
  201. 	} else {
  202. 		fmt.Println(err)
  203. 	}
  204. 

  205. 	// simple call tx with send permission should fail

  206. 	tx, _ = types.NewCallTx(blockCache, user[1].PubKey, user[4].Address, nil, 100, 100, 100)
  207. 	tx.Sign(user[1])
  208. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  209. 		t.Fatal("Expected error")
  210. 	} else {
  211. 		fmt.Println(err)
  212. 	}
  213. 

  214. 	// simple call tx with create permission should fail

  215. 	tx, _ = types.NewCallTx(blockCache, user[3].PubKey, user[4].Address, nil, 100, 100, 100)
  216. 	tx.Sign(user[3])
  217. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  218. 		t.Fatal("Expected error")
  219. 	} else {
  220. 		fmt.Println(err)
  221. 	}
  222. 

  223. 	//-------------------

  224. 	// create txs

  225. 

  226. 	// simple call create tx should fail

  227. 	tx, _ = types.NewCallTx(blockCache, user[0].PubKey, nil, nil, 100, 100, 100)
  228. 	tx.Sign(user[0])
  229. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  230. 		t.Fatal("Expected error")
  231. 	} else {
  232. 		fmt.Println(err)
  233. 	}
  234. 

  235. 	// simple call create tx with send perm should fail

  236. 	tx, _ = types.NewCallTx(blockCache, user[1].PubKey, nil, nil, 100, 100, 100)
  237. 	tx.Sign(user[1])
  238. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  239. 		t.Fatal("Expected error")
  240. 	} else {
  241. 		fmt.Println(err)
  242. 	}
  243. 

  244. 	// simple call create tx with call perm should fail

  245. 	tx, _ = types.NewCallTx(blockCache, user[2].PubKey, nil, nil, 100, 100, 100)
  246. 	tx.Sign(user[2])
  247. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  248. 		t.Fatal("Expected error")
  249. 	} else {
  250. 		fmt.Println(err)
  251. 	}
  252. }
  253. 

  254. func TestSendPermission(t *testing.T) {
  255. 	stateDB := dbm.GetDB("state")
  256. 	genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
  257. 	genDoc.Accounts[0].Permissions.Base.Set(ptypes.Send, true) // give the 0 account permission

  258. 	st := MakeGenesisState(stateDB, &genDoc)
  259. 	blockCache := NewBlockCache(st)
  260. 

  261. 	// A single input, having the permission, should succeed

  262. 	tx := types.NewSendTx()
  263. 	if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
  264. 		t.Fatal(err)
  265. 	}
  266. 	tx.AddOutput(user[1].Address, 5)
  267. 	tx.SignInput(0, user[0])
  268. 	if err := ExecTx(blockCache, tx, true, nil); err != nil {
  269. 		t.Fatal("Transaction failed", err)
  270. 	}
  271. 

  272. 	// Two inputs, one with permission, one without, should fail

  273. 	tx = types.NewSendTx()
  274. 	if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
  275. 		t.Fatal(err)
  276. 	}
  277. 	if err := tx.AddInput(blockCache, user[1].PubKey, 5); err != nil {
  278. 		t.Fatal(err)
  279. 	}
  280. 	tx.AddOutput(user[2].Address, 10)
  281. 	tx.SignInput(0, user[0])
  282. 	tx.SignInput(1, user[1])
  283. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  284. 		t.Fatal("Expected error")
  285. 	} else {
  286. 		fmt.Println(err)
  287. 	}
  288. }
  289. 

  290. func TestCallPermission(t *testing.T) {
  291. 	stateDB := dbm.GetDB("state")
  292. 	genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
  293. 	genDoc.Accounts[0].Permissions.Base.Set(ptypes.Call, true) // give the 0 account permission

  294. 	st := MakeGenesisState(stateDB, &genDoc)
  295. 	blockCache := NewBlockCache(st)
  296. 

  297. 	//------------------------------

  298. 	// call to simple contract

  299. 	fmt.Println("##### SIMPLE CONTRACT")
  300. 

  301. 	// create simple contract

  302. 	simpleContractAddr := NewContractAddress(user[0].Address, 100)
  303. 	simpleAcc := &account.Account{
  304. 		Address:     simpleContractAddr,
  305. 		Balance:     0,
  306. 		Code:        []byte{0x60},
  307. 		Sequence:    0,
  308. 		StorageRoot: Zero256.Bytes(),
  309. 		Permissions: ptypes.NewAccountPermissions(),
  310. 	}
  311. 	st.UpdateAccount(simpleAcc)
  312. 

  313. 	// A single input, having the permission, should succeed

  314. 	tx, _ := types.NewCallTx(blockCache, user[0].PubKey, simpleContractAddr, nil, 100, 100, 100)
  315. 	tx.Sign(user[0])
  316. 	if err := ExecTx(blockCache, tx, true, nil); err != nil {
  317. 		t.Fatal("Transaction failed", err)
  318. 	}
  319. 

  320. 	//----------------------------------------------------------

  321. 	// call to contract that calls simple contract - without perm

  322. 	fmt.Println("##### CALL TO SIMPLE CONTRACT (FAIL)")
  323. 

  324. 	// create contract that calls the simple contract

  325. 	contractCode := callContractCode(simpleContractAddr)
  326. 	caller1ContractAddr := NewContractAddress(user[0].Address, 101)
  327. 	caller1Acc := &account.Account{
  328. 		Address:     caller1ContractAddr,
  329. 		Balance:     0,
  330. 		Code:        contractCode,
  331. 		Sequence:    0,
  332. 		StorageRoot: Zero256.Bytes(),
  333. 		Permissions: ptypes.NewAccountPermissions(),
  334. 	}
  335. 	blockCache.UpdateAccount(caller1Acc)
  336. 

  337. 	// A single input, having the permission, but the contract doesn't have permission

  338. 	tx, _ = types.NewCallTx(blockCache, user[0].PubKey, caller1ContractAddr, nil, 100, 10000, 100)
  339. 	tx.Sign(user[0])
  340. 

  341. 	// we need to subscribe to the Receive event to detect the exception

  342. 	_, exception := execTxWaitEvent(t, blockCache, tx, types.EventStringAccReceive(caller1ContractAddr)) //

  343. 	if exception == "" {
  344. 		t.Fatal("Expected exception")
  345. 	}
  346. 

  347. 	//----------------------------------------------------------

  348. 	// call to contract that calls simple contract - with perm

  349. 	fmt.Println("##### CALL TO SIMPLE CONTRACT (PASS)")
  350. 

  351. 	// A single input, having the permission, and the contract has permission

  352. 	caller1Acc.Permissions.Base.Set(ptypes.Call, true)
  353. 	blockCache.UpdateAccount(caller1Acc)
  354. 	tx, _ = types.NewCallTx(blockCache, user[0].PubKey, caller1ContractAddr, nil, 100, 10000, 100)
  355. 	tx.Sign(user[0])
  356. 

  357. 	// we need to subscribe to the Receive event to detect the exception

  358. 	_, exception = execTxWaitEvent(t, blockCache, tx, types.EventStringAccReceive(caller1ContractAddr)) //

  359. 	if exception != "" {
  360. 		t.Fatal("Unexpected exception:", exception)
  361. 	}
  362. 

  363. 	//----------------------------------------------------------

  364. 	// call to contract that calls contract that calls simple contract - without perm

  365. 	// caller1Contract calls simpleContract. caller2Contract calls caller1Contract.

  366. 	// caller1Contract does not have call perms, but caller2Contract does.

  367. 	fmt.Println("##### CALL TO CONTRACT CALLING SIMPLE CONTRACT (FAIL)")
  368. 

  369. 	contractCode2 := callContractCode(caller1ContractAddr)
  370. 	caller2ContractAddr := NewContractAddress(user[0].Address, 102)
  371. 	caller2Acc := &account.Account{
  372. 		Address:     caller2ContractAddr,
  373. 		Balance:     1000,
  374. 		Code:        contractCode2,
  375. 		Sequence:    0,
  376. 		StorageRoot: Zero256.Bytes(),
  377. 		Permissions: ptypes.NewAccountPermissions(),
  378. 	}
  379. 	caller1Acc.Permissions.Base.Set(ptypes.Call, false)
  380. 	caller2Acc.Permissions.Base.Set(ptypes.Call, true)
  381. 	blockCache.UpdateAccount(caller1Acc)
  382. 	blockCache.UpdateAccount(caller2Acc)
  383. 

  384. 	tx, _ = types.NewCallTx(blockCache, user[0].PubKey, caller2ContractAddr, nil, 100, 10000, 100)
  385. 	tx.Sign(user[0])
  386. 

  387. 	// we need to subscribe to the Receive event to detect the exception

  388. 	_, exception = execTxWaitEvent(t, blockCache, tx, types.EventStringAccReceive(caller1ContractAddr)) //

  389. 	if exception == "" {
  390. 		t.Fatal("Expected exception")
  391. 	}
  392. 

  393. 	//----------------------------------------------------------

  394. 	// call to contract that calls contract that calls simple contract - without perm

  395. 	// caller1Contract calls simpleContract. caller2Contract calls caller1Contract.

  396. 	// both caller1 and caller2 have permission

  397. 	fmt.Println("##### CALL TO CONTRACT CALLING SIMPLE CONTRACT (PASS)")
  398. 

  399. 	caller1Acc.Permissions.Base.Set(ptypes.Call, true)
  400. 	blockCache.UpdateAccount(caller1Acc)
  401. 

  402. 	tx, _ = types.NewCallTx(blockCache, user[0].PubKey, caller2ContractAddr, nil, 100, 10000, 100)
  403. 	tx.Sign(user[0])
  404. 

  405. 	// we need to subscribe to the Receive event to detect the exception

  406. 	_, exception = execTxWaitEvent(t, blockCache, tx, types.EventStringAccReceive(caller1ContractAddr)) //

  407. 	if exception != "" {
  408. 		t.Fatal("Unexpected exception", exception)
  409. 	}
  410. }
  411. 

  412. func TestCreatePermission(t *testing.T) {
  413. 	stateDB := dbm.GetDB("state")
  414. 	genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
  415. 	genDoc.Accounts[0].Permissions.Base.Set(ptypes.CreateContract, true) // give the 0 account permission

  416. 	genDoc.Accounts[0].Permissions.Base.Set(ptypes.Call, true)           // give the 0 account permission

  417. 	st := MakeGenesisState(stateDB, &genDoc)
  418. 	blockCache := NewBlockCache(st)
  419. 

  420. 	//------------------------------

  421. 	// create a simple contract

  422. 	fmt.Println("##### CREATE SIMPLE CONTRACT")
  423. 

  424. 	contractCode := []byte{0x60}
  425. 	createCode := wrapContractForCreate(contractCode)
  426. 

  427. 	// A single input, having the permission, should succeed

  428. 	tx, _ := types.NewCallTx(blockCache, user[0].PubKey, nil, createCode, 100, 100, 100)
  429. 	tx.Sign(user[0])
  430. 	if err := ExecTx(blockCache, tx, true, nil); err != nil {
  431. 		t.Fatal("Transaction failed", err)
  432. 	}
  433. 	// ensure the contract is there

  434. 	contractAddr := NewContractAddress(tx.Input.Address, uint64(tx.Input.Sequence))
  435. 	contractAcc := blockCache.GetAccount(contractAddr)
  436. 	if contractAcc == nil {
  437. 		t.Fatalf("failed to create contract %X", contractAddr)
  438. 	}
  439. 	if bytes.Compare(contractAcc.Code, contractCode) != 0 {
  440. 		t.Fatalf("contract does not have correct code. Got %X, expected %X", contractAcc.Code, contractCode)
  441. 	}
  442. 

  443. 	//------------------------------

  444. 	// create contract that uses the CREATE op

  445. 	fmt.Println("##### CREATE FACTORY")
  446. 

  447. 	contractCode = []byte{0x60}
  448. 	createCode = wrapContractForCreate(contractCode)
  449. 	factoryCode := createContractCode()
  450. 	createFactoryCode := wrapContractForCreate(factoryCode)
  451. 

  452. 	// A single input, having the permission, should succeed

  453. 	tx, _ = types.NewCallTx(blockCache, user[0].PubKey, nil, createFactoryCode, 100, 100, 100)
  454. 	tx.Sign(user[0])
  455. 	if err := ExecTx(blockCache, tx, true, nil); err != nil {
  456. 		t.Fatal("Transaction failed", err)
  457. 	}
  458. 	// ensure the contract is there

  459. 	contractAddr = NewContractAddress(tx.Input.Address, uint64(tx.Input.Sequence))
  460. 	contractAcc = blockCache.GetAccount(contractAddr)
  461. 	if contractAcc == nil {
  462. 		t.Fatalf("failed to create contract %X", contractAddr)
  463. 	}
  464. 	if bytes.Compare(contractAcc.Code, factoryCode) != 0 {
  465. 		t.Fatalf("contract does not have correct code. Got %X, expected %X", contractAcc.Code, factoryCode)
  466. 	}
  467. 

  468. 	//------------------------------

  469. 	// call the contract (should FAIL)

  470. 	fmt.Println("###### CALL THE FACTORY (FAIL)")
  471. 

  472. 	// A single input, having the permission, should succeed

  473. 	tx, _ = types.NewCallTx(blockCache, user[0].PubKey, contractAddr, createCode, 100, 100, 100)
  474. 	tx.Sign(user[0])
  475. 	// we need to subscribe to the Receive event to detect the exception

  476. 	_, exception := execTxWaitEvent(t, blockCache, tx, types.EventStringAccReceive(contractAddr)) //

  477. 	if exception == "" {
  478. 		t.Fatal("expected exception")
  479. 	}
  480. 

  481. 	//------------------------------

  482. 	// call the contract (should PASS)

  483. 	fmt.Println("###### CALL THE FACTORY (PASS)")
  484. 

  485. 	contractAcc.Permissions.Base.Set(ptypes.CreateContract, true)
  486. 	blockCache.UpdateAccount(contractAcc)
  487. 

  488. 	// A single input, having the permission, should succeed

  489. 	tx, _ = types.NewCallTx(blockCache, user[0].PubKey, contractAddr, createCode, 100, 100, 100)
  490. 	tx.Sign(user[0])
  491. 	// we need to subscribe to the Receive event to detect the exception

  492. 	_, exception = execTxWaitEvent(t, blockCache, tx, types.EventStringAccReceive(contractAddr)) //

  493. 	if exception != "" {
  494. 		t.Fatal("unexpected exception", exception)
  495. 	}
  496. 

  497. 	//--------------------------------

  498. 	fmt.Println("##### CALL to empty address")
  499. 	zeroAddr := LeftPadBytes([]byte{}, 20)
  500. 	code := callContractCode(zeroAddr)
  501. 

  502. 	contractAddr = NewContractAddress(user[0].Address, 110)
  503. 	contractAcc = &account.Account{
  504. 		Address:     contractAddr,
  505. 		Balance:     1000,
  506. 		Code:        code,
  507. 		Sequence:    0,
  508. 		StorageRoot: Zero256.Bytes(),
  509. 		Permissions: ptypes.NewAccountPermissions(),
  510. 	}
  511. 	contractAcc.Permissions.Base.Set(ptypes.Call, true)
  512. 	contractAcc.Permissions.Base.Set(ptypes.CreateContract, true)
  513. 	blockCache.UpdateAccount(contractAcc)
  514. 

  515. 	// this should call the 0 address but not create ...

  516. 	tx, _ = types.NewCallTx(blockCache, user[0].PubKey, contractAddr, createCode, 100, 10000, 100)
  517. 	tx.Sign(user[0])
  518. 	// we need to subscribe to the Receive event to detect the exception

  519. 	_, exception = execTxWaitEvent(t, blockCache, tx, types.EventStringAccReceive(zeroAddr)) //

  520. 	if exception != "" {
  521. 		t.Fatal("unexpected exception", exception)
  522. 	}
  523. 	zeroAcc := blockCache.GetAccount(zeroAddr)
  524. 	if len(zeroAcc.Code) != 0 {
  525. 		t.Fatal("the zero account was given code from a CALL!")
  526. 	}
  527. }
  528. 

  529. func TestBondPermission(t *testing.T) {
  530. 	stateDB := dbm.GetDB("state")
  531. 	genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
  532. 	st := MakeGenesisState(stateDB, &genDoc)
  533. 	blockCache := NewBlockCache(st)
  534. 	var bondAcc *account.Account
  535. 

  536. 	//------------------------------

  537. 	// one bonder without permission should fail

  538. 	tx, _ := types.NewBondTx(user[1].PubKey)
  539. 	if err := tx.AddInput(blockCache, user[1].PubKey, 5); err != nil {
  540. 		t.Fatal(err)
  541. 	}
  542. 	tx.AddOutput(user[1].Address, 5)
  543. 	tx.SignInput(0, user[1])
  544. 	tx.SignBond(user[1])
  545. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  546. 		t.Fatal("Expected error")
  547. 	} else {
  548. 		fmt.Println(err)
  549. 	}
  550. 

  551. 	//------------------------------

  552. 	// one bonder with permission should pass

  553. 	bondAcc = blockCache.GetAccount(user[1].Address)
  554. 	bondAcc.Permissions.Base.Set(ptypes.Bond, true)
  555. 	blockCache.UpdateAccount(bondAcc)
  556. 	if err := ExecTx(blockCache, tx, true, nil); err != nil {
  557. 		t.Fatal("Unexpected error", err)
  558. 	}
  559. 

  560. 	// reset state (we can only bond with an account once ..)

  561. 	genDoc = newBaseGenDoc(PermsAllFalse, PermsAllFalse)
  562. 	st = MakeGenesisState(stateDB, &genDoc)
  563. 	blockCache = NewBlockCache(st)
  564. 	bondAcc = blockCache.GetAccount(user[1].Address)
  565. 	bondAcc.Permissions.Base.Set(ptypes.Bond, true)
  566. 	blockCache.UpdateAccount(bondAcc)
  567. 	//------------------------------

  568. 	// one bonder with permission and an input without send should fail

  569. 	tx, _ = types.NewBondTx(user[1].PubKey)
  570. 	if err := tx.AddInput(blockCache, user[2].PubKey, 5); err != nil {
  571. 		t.Fatal(err)
  572. 	}
  573. 	tx.AddOutput(user[1].Address, 5)
  574. 	tx.SignInput(0, user[2])
  575. 	tx.SignBond(user[1])
  576. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  577. 		t.Fatal("Expected error")
  578. 	} else {
  579. 		fmt.Println(err)
  580. 	}
  581. 

  582. 	// reset state (we can only bond with an account once ..)

  583. 	genDoc = newBaseGenDoc(PermsAllFalse, PermsAllFalse)
  584. 	st = MakeGenesisState(stateDB, &genDoc)
  585. 	blockCache = NewBlockCache(st)
  586. 	bondAcc = blockCache.GetAccount(user[1].Address)
  587. 	bondAcc.Permissions.Base.Set(ptypes.Bond, true)
  588. 	blockCache.UpdateAccount(bondAcc)
  589. 	//------------------------------

  590. 	// one bonder with permission and an input with send should pass

  591. 	sendAcc := blockCache.GetAccount(user[2].Address)
  592. 	sendAcc.Permissions.Base.Set(ptypes.Send, true)
  593. 	blockCache.UpdateAccount(sendAcc)
  594. 	tx, _ = types.NewBondTx(user[1].PubKey)
  595. 	if err := tx.AddInput(blockCache, user[2].PubKey, 5); err != nil {
  596. 		t.Fatal(err)
  597. 	}
  598. 	tx.AddOutput(user[1].Address, 5)
  599. 	tx.SignInput(0, user[2])
  600. 	tx.SignBond(user[1])
  601. 	if err := ExecTx(blockCache, tx, true, nil); err != nil {
  602. 		t.Fatal("Unexpected error", err)
  603. 	}
  604. 

  605. 	// reset state (we can only bond with an account once ..)

  606. 	genDoc = newBaseGenDoc(PermsAllFalse, PermsAllFalse)
  607. 	st = MakeGenesisState(stateDB, &genDoc)
  608. 	blockCache = NewBlockCache(st)
  609. 	bondAcc = blockCache.GetAccount(user[1].Address)
  610. 	bondAcc.Permissions.Base.Set(ptypes.Bond, true)
  611. 	blockCache.UpdateAccount(bondAcc)
  612. 	//------------------------------

  613. 	// one bonder with permission and an input with bond should pass

  614. 	sendAcc.Permissions.Base.Set(ptypes.Bond, true)
  615. 	blockCache.UpdateAccount(sendAcc)
  616. 	tx, _ = types.NewBondTx(user[1].PubKey)
  617. 	if err := tx.AddInput(blockCache, user[2].PubKey, 5); err != nil {
  618. 		t.Fatal(err)
  619. 	}
  620. 	tx.AddOutput(user[1].Address, 5)
  621. 	tx.SignInput(0, user[2])
  622. 	tx.SignBond(user[1])
  623. 	if err := ExecTx(blockCache, tx, true, nil); err != nil {
  624. 		t.Fatal("Unexpected error", err)
  625. 	}
  626. 

  627. 	// reset state (we can only bond with an account once ..)

  628. 	genDoc = newBaseGenDoc(PermsAllFalse, PermsAllFalse)
  629. 	st = MakeGenesisState(stateDB, &genDoc)
  630. 	blockCache = NewBlockCache(st)
  631. 	bondAcc = blockCache.GetAccount(user[1].Address)
  632. 	bondAcc.Permissions.Base.Set(ptypes.Bond, true)
  633. 	blockCache.UpdateAccount(bondAcc)
  634. 	//------------------------------

  635. 	// one bonder with permission and an input from that bonder and an input without send or bond should fail

  636. 	tx, _ = types.NewBondTx(user[1].PubKey)
  637. 	if err := tx.AddInput(blockCache, user[1].PubKey, 5); err != nil {
  638. 		t.Fatal(err)
  639. 	}
  640. 	if err := tx.AddInput(blockCache, user[2].PubKey, 5); err != nil {
  641. 		t.Fatal(err)
  642. 	}
  643. 	tx.AddOutput(user[1].Address, 5)
  644. 	tx.SignInput(0, user[1])
  645. 	tx.SignInput(1, user[2])
  646. 	tx.SignBond(user[1])
  647. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  648. 		t.Fatal("Expected error")
  649. 	}
  650. }
  651. 

  652. func TestCreateAccountPermission(t *testing.T) {
  653. 	stateDB := dbm.GetDB("state")
  654. 	genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
  655. 	genDoc.Accounts[0].Permissions.Base.Set(ptypes.Send, true)          // give the 0 account permission

  656. 	genDoc.Accounts[1].Permissions.Base.Set(ptypes.Send, true)          // give the 0 account permission

  657. 	genDoc.Accounts[0].Permissions.Base.Set(ptypes.CreateAccount, true) // give the 0 account permission

  658. 	st := MakeGenesisState(stateDB, &genDoc)
  659. 	blockCache := NewBlockCache(st)
  660. 

  661. 	//----------------------------------------------------------

  662. 	// SendTx to unknown account

  663. 

  664. 	// A single input, having the permission, should succeed

  665. 	tx := types.NewSendTx()
  666. 	if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
  667. 		t.Fatal(err)
  668. 	}
  669. 	tx.AddOutput(user[6].Address, 5)
  670. 	tx.SignInput(0, user[0])
  671. 	if err := ExecTx(blockCache, tx, true, nil); err != nil {
  672. 		t.Fatal("Transaction failed", err)
  673. 	}
  674. 

  675. 	// Two inputs, both with send, one with create, one without, should fail

  676. 	tx = types.NewSendTx()
  677. 	if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
  678. 		t.Fatal(err)
  679. 	}
  680. 	if err := tx.AddInput(blockCache, user[1].PubKey, 5); err != nil {
  681. 		t.Fatal(err)
  682. 	}
  683. 	tx.AddOutput(user[7].Address, 10)
  684. 	tx.SignInput(0, user[0])
  685. 	tx.SignInput(1, user[1])
  686. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  687. 		t.Fatal("Expected error")
  688. 	} else {
  689. 		fmt.Println(err)
  690. 	}
  691. 

  692. 	// Two inputs, both with send, one with create, one without, two ouputs (one known, one unknown) should fail

  693. 	tx = types.NewSendTx()
  694. 	if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
  695. 		t.Fatal(err)
  696. 	}
  697. 	if err := tx.AddInput(blockCache, user[1].PubKey, 5); err != nil {
  698. 		t.Fatal(err)
  699. 	}
  700. 	tx.AddOutput(user[7].Address, 4)
  701. 	tx.AddOutput(user[4].Address, 6)
  702. 	tx.SignInput(0, user[0])
  703. 	tx.SignInput(1, user[1])
  704. 	if err := ExecTx(blockCache, tx, true, nil); err == nil {
  705. 		t.Fatal("Expected error")
  706. 	} else {
  707. 		fmt.Println(err)
  708. 	}
  709. 

  710. 	// Two inputs, both with send, both with create, should pass

  711. 	acc := blockCache.GetAccount(user[1].Address)
  712. 	acc.Permissions.Base.Set(ptypes.CreateAccount, true)
  713. 	blockCache.UpdateAccount(acc)
  714. 	tx = types.NewSendTx()
  715. 	if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
  716. 		t.Fatal(err)
  717. 	}
  718. 	if err := tx.AddInput(blockCache, user[1].PubKey, 5); err != nil {
  719. 		t.Fatal(err)
  720. 	}
  721. 	tx.AddOutput(user[7].Address, 10)
  722. 	tx.SignInput(0, user[0])
  723. 	tx.SignInput(1, user[1])
  724. 	if err := ExecTx(blockCache, tx, true, nil); err != nil {
  725. 		t.Fatal("Unexpected error", err)
  726. 	}
  727. 

  728. 	// Two inputs, both with send, both with create, two outputs (one known, one unknown) should pass

  729. 	tx = types.NewSendTx()
  730. 	if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
  731. 		t.Fatal(err)
  732. 	}
  733. 	if err := tx.AddInput(blockCache, user[1].PubKey, 5); err != nil {
  734. 		t.Fatal(err)
  735. 	}
  736. 	tx.AddOutput(user[7].Address, 7)
  737. 	tx.AddOutput(user[4].Address, 3)
  738. 	tx.SignInput(0, user[0])
  739. 	tx.SignInput(1, user[1])
  740. 	if err := ExecTx(blockCache, tx, true, nil); err != nil {
  741. 		t.Fatal("Unexpected error", err)
  742. 	}
  743. 

  744. 	//----------------------------------------------------------

  745. 	// CALL to unknown account

  746. 

  747. 	acc = blockCache.GetAccount(user[0].Address)
  748. 	acc.Permissions.Base.Set(ptypes.Call, true)
  749. 	blockCache.UpdateAccount(acc)
  750. 

  751. 	// call to contract that calls unknown account - without create_account perm

  752. 	// create contract that calls the simple contract

  753. 	contractCode := callContractCode(user[9].Address)
  754. 	caller1ContractAddr := NewContractAddress(user[4].Address, 101)
  755. 	caller1Acc := &account.Account{
  756. 		Address:     caller1ContractAddr,
  757. 		Balance:     0,
  758. 		Code:        contractCode,
  759. 		Sequence:    0,
  760. 		StorageRoot: Zero256.Bytes(),
  761. 		Permissions: ptypes.NewAccountPermissions(),
  762. 	}
  763. 	blockCache.UpdateAccount(caller1Acc)
  764. 

  765. 	// A single input, having the permission, but the contract doesn't have permission

  766. 	txCall, _ := types.NewCallTx(blockCache, user[0].PubKey, caller1ContractAddr, nil, 100, 10000, 100)
  767. 	txCall.Sign(user[0])
  768. 

  769. 	// we need to subscribe to the Receive event to detect the exception

  770. 	_, exception := execTxWaitEvent(t, blockCache, txCall, types.EventStringAccReceive(caller1ContractAddr)) //

  771. 	if exception == "" {
  772. 		t.Fatal("Expected exception")
  773. 	}
  774. 

  775. 	// NOTE: for a contract to be able to CreateAccount, it must be able to call

  776. 	// NOTE: for a user to be able to CreateAccount, it must be able to send!

  777. 	caller1Acc.Permissions.Base.Set(ptypes.CreateAccount, true)
  778. 	caller1Acc.Permissions.Base.Set(ptypes.Call, true)
  779. 	blockCache.UpdateAccount(caller1Acc)
  780. 	// A single input, having the permission, but the contract doesn't have permission

  781. 	txCall, _ = types.NewCallTx(blockCache, user[0].PubKey, caller1ContractAddr, nil, 100, 10000, 100)
  782. 	txCall.Sign(user[0])
  783. 

  784. 	// we need to subscribe to the Receive event to detect the exception

  785. 	_, exception = execTxWaitEvent(t, blockCache, txCall, types.EventStringAccReceive(caller1ContractAddr)) //

  786. 	if exception != "" {
  787. 		t.Fatal("Unexpected exception", exception)
  788. 	}
  789. 

  790. }
  791. 

  792. //-------------------------------------------------------------------------------------

  793. // helpers

  794. 

  795. // run ExecTx and wait for the Receive event on given addr

  796. // returns the msg data and an error/exception

  797. func execTxWaitEvent(t *testing.T, blockCache *BlockCache, tx types.Tx, eventid string) (interface{}, string) {
  798. 	evsw := new(events.EventSwitch)
  799. 	evsw.Start()
  800. 	ch := make(chan interface{})
  801. 	evsw.AddListenerForEvent("test", eventid, func(msg interface{}) {
  802. 		ch <- msg
  803. 	})
  804. 	evc := events.NewEventCache(evsw)
  805. 	go func() {
  806. 		if err := ExecTx(blockCache, tx, true, evc); err != nil {
  807. 			ch <- err.Error()
  808. 		}
  809. 		evc.Flush()
  810. 	}()
  811. 	msg := <-ch
  812. 	switch ev := msg.(type) {
  813. 	case types.EventMsgCallTx:
  814. 		return ev, ev.Exception
  815. 	case types.EventMsgCall:
  816. 		return ev, ev.Exception
  817. 	case string:
  818. 		return nil, ev
  819. 	default:
  820. 		return ev, ""
  821. 	}
  822. }
  823. 

  824. // convenience function for contract that calls a given address

  825. func callContractCode(contractAddr []byte) []byte {
  826. 	// calldatacopy into mem and use as input to call

  827. 	memOff, inputOff := byte(0x0), byte(0x0)
  828. 	contractCode := []byte{0x60, memOff, 0x60, inputOff, 0x36, 0x37}
  829. 

  830. 	gas1, gas2 := byte(0x1), byte(0x1)
  831. 	value := byte(0x1)
  832. 	inOff := byte(0x0)
  833. 	retOff, retSize := byte(0x0), byte(0x20)
  834. 	// this is the code we want to run (call a contract and return)

  835. 	contractCode = append(contractCode, []byte{0x60, retSize, 0x60, retOff, 0x36, 0x60, inOff, 0x60, value, 0x73}...)
  836. 	contractCode = append(contractCode, contractAddr...)
  837. 	contractCode = append(contractCode, []byte{0x61, gas1, gas2, 0xf1, 0x60, 0x20, 0x60, 0x0, 0xf3}...)
  838. 	return contractCode
  839. }
  840. 

  841. // convenience function for contract that is a factory for the code that comes as call data

  842. func createContractCode() []byte {
  843. 	// TODO: gas ...

  844. 

  845. 	// calldatacopy the calldatasize

  846. 	memOff, inputOff := byte(0x0), byte(0x0)
  847. 	contractCode := []byte{0x60, memOff, 0x60, inputOff, 0x36, 0x37}
  848. 

  849. 	// create

  850. 	value := byte(0x1)
  851. 	contractCode = append(contractCode, []byte{0x60, value, 0x36, 0x60, memOff, 0xf0}...)
  852. 	return contractCode
  853. }
  854. 

  855. // wrap a contract in create code

  856. func wrapContractForCreate(contractCode []byte) []byte {
  857. 	// the is the code we need to return the contractCode when the contract is initialized

  858. 	lenCode := len(contractCode)
  859. 	// push code to the stack

  860. 	code := append([]byte{0x7f}, RightPadWord256(contractCode).Bytes()...)
  861. 	// store it in memory

  862. 	code = append(code, []byte{0x60, 0x0, 0x52}...)
  863. 	// return whats in memory

  864. 	code = append(code, []byte{0x60, byte(lenCode), 0x60, 0x0, 0xf3}...)
  865. 	// return init code, contract code, expected return

  866. 	return code
  867. }