zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
704 Commits
183 Branches
291 MiB
Tree: f75b6aff74
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f75b6aff74'
${ noResults }
tendermint/vm/snative.go

226 lines
6.7 KiB
Raw Normal View History

snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
bond perm and tests
10 years ago
snative
10 years ago
 
  1. package vm
  2. 

  3. import (
  4. 	"fmt"
  5. 

  6. 	. "github.com/tendermint/tendermint/common"
  7. 	ptypes "github.com/tendermint/tendermint/permission/types"
  8. )
  9. 

  10. // Checks if a permission flag is valid (a known base chain or snative permission)

  11. func ValidPermN(n ptypes.PermFlag) bool {
  12. 	if n > ptypes.TopBasePermission && n < FirstSNativePerm {
  13. 		return false
  14. 	} else if n > TopSNativePermission {
  15. 		return false
  16. 	}
  17. 	return true
  18. }
  19. 

  20. const (
  21. 	// first 32 bits of BasePermission are for chain, second 32 are for snative

  22. 	FirstSNativePerm ptypes.PermFlag = 1 << 32
  23. 

  24. 	HasBasePerm ptypes.PermFlag = FirstSNativePerm << iota
  25. 	SetBasePerm
  26. 	UnsetBasePerm
  27. 	SetGlobalPerm
  28. 	ClearBasePerm
  29. 	HasRole
  30. 	AddRole
  31. 	RmRole
  32. 

  33. 	// XXX: must be adjusted if snative's added/removed

  34. 	NumSNativePermissions uint            = 8
  35. 	TopSNativePermission  ptypes.PermFlag = FirstSNativePerm << (NumSNativePermissions - 1)
  36. )
  37. 

  38. type SNativeContract func(acc *Account, input []byte) (output []byte, err error)
  39. 

  40. //-----------------------------------------------------------------------------

  41. // snative are native contracts that can access and manipulate the chain state

  42. // (in particular the permissions values)

  43. 

  44. // TODO: catch errors, log em, return 0s to the vm (should some errors cause exceptions though?)

  45. 

  46. func (vm *VM) hasBasePerm(acc *Account, args []byte) (output []byte, err error) {
  47. 	if !vm.HasPermission(acc, HasBasePerm) {
  48. 		return nil, fmt.Errorf("acc %X does not have permission to call snative.HasBasePerm")
  49. 	}
  50. 	if len(args) != 2*32 {
  51. 		return nil, fmt.Errorf("hasBasePerm() takes two arguments (address, permission number)")
  52. 	}
  53. 	var addr, permNum Word256
  54. 	copy(addr[:], args[:32])
  55. 	copy(permNum[:], args[32:64])
  56. 	vmAcc := vm.appState.GetAccount(addr)
  57. 	if vmAcc == nil {
  58. 		return nil, fmt.Errorf("Unknown account %X", addr)
  59. 	}
  60. 	permN := ptypes.PermFlag(Uint64FromWord256(permNum)) // already shifted

  61. 	if !ValidPermN(permN) {
  62. 		return nil, ptypes.ErrInvalidPermission(permN)
  63. 	}
  64. 	var permInt byte
  65. 	if vm.HasPermission(vmAcc, permN) {
  66. 		permInt = 0x1
  67. 	} else {
  68. 		permInt = 0x0
  69. 	}
  70. 	return LeftPadWord256([]byte{permInt}).Bytes(), nil
  71. }
  72. 

  73. func (vm *VM) setBasePerm(acc *Account, args []byte) (output []byte, err error) {
  74. 	if !vm.HasPermission(acc, SetBasePerm) {
  75. 		return nil, fmt.Errorf("acc %X does not have permission to call snative.SetBasePerm")
  76. 	}
  77. 	if len(args) != 3*32 {
  78. 		return nil, fmt.Errorf("setBasePerm() takes three arguments (address, permission number, permission value)")
  79. 	}
  80. 	var addr, permNum, perm Word256
  81. 	copy(addr[:], args[:32])
  82. 	copy(permNum[:], args[32:64])
  83. 	copy(perm[:], args[64:96])
  84. 	vmAcc := vm.appState.GetAccount(addr)
  85. 	if vmAcc == nil {
  86. 		return nil, fmt.Errorf("Unknown account %X", addr)
  87. 	}
  88. 	permN := ptypes.PermFlag(Uint64FromWord256(permNum))
  89. 	if !ValidPermN(permN) {
  90. 		return nil, ptypes.ErrInvalidPermission(permN)
  91. 	}
  92. 	permV := !perm.IsZero()
  93. 	if err = vmAcc.Permissions.Base.Set(permN, permV); err != nil {
  94. 		return nil, err
  95. 	}
  96. 	vm.appState.UpdateAccount(vmAcc)
  97. 	return perm.Bytes(), nil
  98. }
  99. 

  100. func (vm *VM) unsetBasePerm(acc *Account, args []byte) (output []byte, err error) {
  101. 	if !vm.HasPermission(acc, UnsetBasePerm) {
  102. 		return nil, fmt.Errorf("acc %X does not have permission to call snative.UnsetBasePerm")
  103. 	}
  104. 	if len(args) != 2*32 {
  105. 		return nil, fmt.Errorf("unsetBasePerm() takes two arguments (address, permission number)")
  106. 	}
  107. 	var addr, permNum Word256
  108. 	copy(addr[:], args[:32])
  109. 	copy(permNum[:], args[32:64])
  110. 	vmAcc := vm.appState.GetAccount(addr)
  111. 	if vmAcc == nil {
  112. 		return nil, fmt.Errorf("Unknown account %X", addr)
  113. 	}
  114. 	permN := ptypes.PermFlag(Uint64FromWord256(permNum))
  115. 	if !ValidPermN(permN) {
  116. 		return nil, ptypes.ErrInvalidPermission(permN)
  117. 	}
  118. 	if err = vmAcc.Permissions.Base.Unset(permN); err != nil {
  119. 		return nil, err
  120. 	}
  121. 	vm.appState.UpdateAccount(vmAcc)
  122. 	return permNum.Bytes(), nil
  123. }
  124. 

  125. func (vm *VM) setGlobalPerm(acc *Account, args []byte) (output []byte, err error) {
  126. 	if len(args) != 2*32 {
  127. 		return nil, fmt.Errorf("setGlobalPerm() takes three arguments (permission number, permission value)")
  128. 	}
  129. 	var permNum, perm Word256
  130. 	copy(permNum[:], args[32:64])
  131. 	copy(perm[:], args[64:96])
  132. 	vmAcc := vm.appState.GetAccount(ptypes.GlobalPermissionsAddress256)
  133. 	if vmAcc == nil {
  134. 		panic("cant find the global permissions account")
  135. 	}
  136. 	permN := ptypes.PermFlag(Uint64FromWord256(permNum))
  137. 	if !ValidPermN(permN) {
  138. 		return nil, ptypes.ErrInvalidPermission(permN)
  139. 	}
  140. 	permV := !perm.IsZero()
  141. 	if err = vmAcc.Permissions.Base.Set(permN, permV); err != nil {
  142. 		return nil, err
  143. 	}
  144. 	vm.appState.UpdateAccount(vmAcc)
  145. 	return perm.Bytes(), nil
  146. }
  147. 

  148. // TODO: needs access to an iterator ...

  149. func (vm *VM) clearPerm(acc *Account, args []byte) (output []byte, err error) {
  150. 	if !vm.HasPermission(acc, ClearBasePerm) {
  151. 		return nil, fmt.Errorf("acc %X does not have permission to call snative.ClearBasePerm")
  152. 	}
  153. 	return nil, nil
  154. }
  155. 

  156. func (vm *VM) hasRole(acc *Account, args []byte) (output []byte, err error) {
  157. 	if !vm.HasPermission(acc, HasRole) {
  158. 		return nil, fmt.Errorf("acc %X does not have permission to call snative.HasRole")
  159. 	}
  160. 	if len(args) != 2*32 {
  161. 		return nil, fmt.Errorf("hasRole() takes two arguments (address, role)")
  162. 	}
  163. 	var addr, role Word256
  164. 	copy(addr[:], args[32:64])
  165. 	copy(role[:], args[64:96])
  166. 	vmAcc := vm.appState.GetAccount(addr)
  167. 	if vmAcc == nil {
  168. 		return nil, fmt.Errorf("Unknown account %X", addr)
  169. 	}
  170. 	roleS := string(role.Bytes())
  171. 	var permInt byte
  172. 	if vmAcc.Permissions.HasRole(roleS) {
  173. 		permInt = 0x1
  174. 	} else {
  175. 		permInt = 0x0
  176. 	}
  177. 	return LeftPadWord256([]byte{permInt}).Bytes(), nil
  178. }
  179. 

  180. func (vm *VM) addRole(acc *Account, args []byte) (output []byte, err error) {
  181. 	if !vm.HasPermission(acc, AddRole) {
  182. 		return nil, fmt.Errorf("acc %X does not have permission to call snative.AddRole")
  183. 	}
  184. 	if len(args) != 2*32 {
  185. 		return nil, fmt.Errorf("addRole() takes two arguments (address, role)")
  186. 	}
  187. 	var addr, role Word256
  188. 	copy(addr[:], args[32:64])
  189. 	copy(role[:], args[64:96])
  190. 	vmAcc := vm.appState.GetAccount(addr)
  191. 	if vmAcc == nil {
  192. 		return nil, fmt.Errorf("Unknown account %X", addr)
  193. 	}
  194. 	roleS := string(role.Bytes())
  195. 	var permInt byte
  196. 	if vmAcc.Permissions.AddRole(roleS) {
  197. 		permInt = 0x1
  198. 	} else {
  199. 		permInt = 0x0
  200. 	}
  201. 	return LeftPadWord256([]byte{permInt}).Bytes(), nil
  202. }
  203. 

  204. func (vm *VM) rmRole(acc *Account, args []byte) (output []byte, err error) {
  205. 	if !vm.HasPermission(acc, RmRole) {
  206. 		return nil, fmt.Errorf("acc %X does not have permission to call snative.RmRole")
  207. 	}
  208. 	if len(args) != 2*32 {
  209. 		return nil, fmt.Errorf("rmRole() takes two arguments (address, role)")
  210. 	}
  211. 	var addr, role Word256
  212. 	copy(addr[:], args[32:64])
  213. 	copy(role[:], args[64:96])
  214. 	vmAcc := vm.appState.GetAccount(addr)
  215. 	if vmAcc == nil {
  216. 		return nil, fmt.Errorf("Unknown account %X", addr)
  217. 	}
  218. 	roleS := string(role.Bytes())
  219. 	var permInt byte
  220. 	if vmAcc.Permissions.RmRole(roleS) {
  221. 		permInt = 0x1
  222. 	} else {
  223. 		permInt = 0x0
  224. 	}
  225. 	return LeftPadWord256([]byte{permInt}).Bytes(), nil
  226. }