|
package state
|
|
|
|
import (
|
|
"bytes"
|
|
"fmt"
|
|
"strconv"
|
|
"testing"
|
|
"time"
|
|
|
|
acm "github.com/tendermint/tendermint/account"
|
|
. "github.com/tendermint/tendermint/common"
|
|
dbm "github.com/tendermint/tendermint/db"
|
|
"github.com/tendermint/tendermint/events"
|
|
ptypes "github.com/tendermint/tendermint/permission/types"
|
|
. "github.com/tendermint/tendermint/state/types"
|
|
"github.com/tendermint/tendermint/types"
|
|
)
|
|
|
|
/*
|
|
Permission Tests:
|
|
|
|
- SendTx:
|
|
x - 1 input, no perm, call perm, create perm
|
|
x - 1 input, perm
|
|
x - 2 inputs, one with perm one without
|
|
|
|
- CallTx, CALL
|
|
x - 1 input, no perm, send perm, create perm
|
|
x - 1 input, perm
|
|
x - contract runs call but doesn't have call perm
|
|
x - contract runs call and has call perm
|
|
x - contract runs call (with perm), runs contract that runs call (without perm)
|
|
x - contract runs call (with perm), runs contract that runs call (with perm)
|
|
|
|
- CallTx for Create, CREATE
|
|
x - 1 input, no perm, send perm, call perm
|
|
x - 1 input, perm
|
|
x - contract runs create but doesn't have create perm
|
|
x - contract runs create but has perm
|
|
x - contract runs call with empty address (has call and create perm)
|
|
|
|
- NameTx
|
|
- no perm, send perm, call perm
|
|
- with perm
|
|
|
|
- BondTx
|
|
x - 1 input, no perm
|
|
x - 1 input, perm
|
|
x - 1 bonder with perm, input without send or bond
|
|
x - 1 bonder with perm, input with send
|
|
x - 1 bonder with perm, input with bond
|
|
x - 2 inputs, one with perm one without
|
|
|
|
- SendTx for new account
|
|
x - 1 input, 1 unknown ouput, input with send, not create (fail)
|
|
x - 1 input, 1 unknown ouput, input with send and create (pass)
|
|
x - 2 inputs, 1 unknown ouput, both inputs with send, one with create, one without (fail)
|
|
x - 2 inputs, 1 known output, 1 unknown ouput, one input with create, one without (fail)
|
|
x - 2 inputs, 1 unknown ouput, both inputs with send, both inputs with create (pass )
|
|
x - 2 inputs, 1 known output, 1 unknown ouput, both inputs with create, (pass)
|
|
|
|
|
|
- CALL for new account
|
|
x - unknown output, without create (fail)
|
|
x - unknown output, with create (pass)
|
|
|
|
|
|
- SNative (CallTx, CALL):
|
|
- for each of CallTx, Call
|
|
x - call each snative without permission, fails
|
|
x - call each snative with permission, pass
|
|
- list:
|
|
x - base: has,set,unset
|
|
x - globals: set
|
|
x - roles: has, add, rm
|
|
|
|
|
|
*/
|
|
|
|
// keys
|
|
var user = makeUsers(10)
|
|
var chainID = "testchain"
|
|
|
|
func makeUsers(n int) []*acm.PrivAccount {
|
|
accounts := []*acm.PrivAccount{}
|
|
for i := 0; i < n; i++ {
|
|
secret := []byte("mysecret" + strconv.Itoa(i))
|
|
user := acm.GenPrivAccountFromSecret(secret)
|
|
accounts = append(accounts, user)
|
|
}
|
|
return accounts
|
|
}
|
|
|
|
var (
|
|
PermsAllFalse = ptypes.ZeroAccountPermissions
|
|
)
|
|
|
|
func newBaseGenDoc(globalPerm, accountPerm ptypes.AccountPermissions) GenesisDoc {
|
|
genAccounts := []GenesisAccount{}
|
|
for _, u := range user[:5] {
|
|
accountPermCopy := accountPerm // Create new instance for custom overridability.
|
|
genAccounts = append(genAccounts, GenesisAccount{
|
|
Address: u.Address,
|
|
Amount: 1000000,
|
|
Permissions: &accountPermCopy,
|
|
})
|
|
}
|
|
|
|
return GenesisDoc{
|
|
GenesisTime: time.Now(),
|
|
ChainID: chainID,
|
|
Params: &GenesisParams{
|
|
GlobalPermissions: &globalPerm,
|
|
},
|
|
Accounts: genAccounts,
|
|
Validators: []GenesisValidator{
|
|
GenesisValidator{
|
|
PubKey: user[0].PubKey.(acm.PubKeyEd25519),
|
|
Amount: 10,
|
|
UnbondTo: []BasicAccount{
|
|
BasicAccount{
|
|
Address: user[0].Address,
|
|
},
|
|
},
|
|
},
|
|
},
|
|
}
|
|
}
|
|
|
|
func TestSendFails(t *testing.T) {
|
|
stateDB := dbm.GetDB("state")
|
|
genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
|
|
genDoc.Accounts[1].Permissions.Base.Set(ptypes.Send, true)
|
|
genDoc.Accounts[2].Permissions.Base.Set(ptypes.Call, true)
|
|
genDoc.Accounts[3].Permissions.Base.Set(ptypes.CreateContract, true)
|
|
st := MakeGenesisState(stateDB, &genDoc)
|
|
blockCache := NewBlockCache(st)
|
|
|
|
//-------------------
|
|
// send txs
|
|
|
|
// simple send tx should fail
|
|
tx := types.NewSendTx()
|
|
if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[1].Address, 5)
|
|
tx.SignInput(chainID, 0, user[0])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
|
|
// simple send tx with call perm should fail
|
|
tx = types.NewSendTx()
|
|
if err := tx.AddInput(blockCache, user[2].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[4].Address, 5)
|
|
tx.SignInput(chainID, 0, user[2])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
|
|
// simple send tx with create perm should fail
|
|
tx = types.NewSendTx()
|
|
if err := tx.AddInput(blockCache, user[3].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[4].Address, 5)
|
|
tx.SignInput(chainID, 0, user[3])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
|
|
// simple send tx to unknown account without create_account perm should fail
|
|
acc := blockCache.GetAccount(user[3].Address)
|
|
acc.Permissions.Base.Set(ptypes.Send, true)
|
|
blockCache.UpdateAccount(acc)
|
|
tx = types.NewSendTx()
|
|
if err := tx.AddInput(blockCache, user[3].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[6].Address, 5)
|
|
tx.SignInput(chainID, 0, user[3])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
}
|
|
|
|
func TestName(t *testing.T) {
|
|
stateDB := dbm.GetDB("state")
|
|
genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
|
|
genDoc.Accounts[0].Permissions.Base.Set(ptypes.Send, true)
|
|
genDoc.Accounts[1].Permissions.Base.Set(ptypes.Name, true)
|
|
st := MakeGenesisState(stateDB, &genDoc)
|
|
blockCache := NewBlockCache(st)
|
|
|
|
//-------------------
|
|
// name txs
|
|
|
|
// simple name tx without perm should fail
|
|
tx, err := types.NewNameTx(st, user[0].PubKey, "somename", "somedata", 10000, 100)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.Sign(chainID, user[0])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
|
|
// simple name tx with perm should pass
|
|
tx, err = types.NewNameTx(st, user[1].PubKey, "somename", "somedata", 10000, 100)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.Sign(chainID, user[1])
|
|
if err := ExecTx(blockCache, tx, true, nil); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
}
|
|
|
|
func TestCallFails(t *testing.T) {
|
|
stateDB := dbm.GetDB("state")
|
|
genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
|
|
genDoc.Accounts[1].Permissions.Base.Set(ptypes.Send, true)
|
|
genDoc.Accounts[2].Permissions.Base.Set(ptypes.Call, true)
|
|
genDoc.Accounts[3].Permissions.Base.Set(ptypes.CreateContract, true)
|
|
st := MakeGenesisState(stateDB, &genDoc)
|
|
blockCache := NewBlockCache(st)
|
|
|
|
//-------------------
|
|
// call txs
|
|
|
|
// simple call tx should fail
|
|
tx, _ := types.NewCallTx(blockCache, user[0].PubKey, user[4].Address, nil, 100, 100, 100)
|
|
tx.Sign(chainID, user[0])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
|
|
// simple call tx with send permission should fail
|
|
tx, _ = types.NewCallTx(blockCache, user[1].PubKey, user[4].Address, nil, 100, 100, 100)
|
|
tx.Sign(chainID, user[1])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
|
|
// simple call tx with create permission should fail
|
|
tx, _ = types.NewCallTx(blockCache, user[3].PubKey, user[4].Address, nil, 100, 100, 100)
|
|
tx.Sign(chainID, user[3])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
|
|
//-------------------
|
|
// create txs
|
|
|
|
// simple call create tx should fail
|
|
tx, _ = types.NewCallTx(blockCache, user[0].PubKey, nil, nil, 100, 100, 100)
|
|
tx.Sign(chainID, user[0])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
|
|
// simple call create tx with send perm should fail
|
|
tx, _ = types.NewCallTx(blockCache, user[1].PubKey, nil, nil, 100, 100, 100)
|
|
tx.Sign(chainID, user[1])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
|
|
// simple call create tx with call perm should fail
|
|
tx, _ = types.NewCallTx(blockCache, user[2].PubKey, nil, nil, 100, 100, 100)
|
|
tx.Sign(chainID, user[2])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
}
|
|
|
|
func TestSendPermission(t *testing.T) {
|
|
stateDB := dbm.GetDB("state")
|
|
genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
|
|
genDoc.Accounts[0].Permissions.Base.Set(ptypes.Send, true) // give the 0 account permission
|
|
st := MakeGenesisState(stateDB, &genDoc)
|
|
blockCache := NewBlockCache(st)
|
|
|
|
// A single input, having the permission, should succeed
|
|
tx := types.NewSendTx()
|
|
if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[1].Address, 5)
|
|
tx.SignInput(chainID, 0, user[0])
|
|
if err := ExecTx(blockCache, tx, true, nil); err != nil {
|
|
t.Fatal("Transaction failed", err)
|
|
}
|
|
|
|
// Two inputs, one with permission, one without, should fail
|
|
tx = types.NewSendTx()
|
|
if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if err := tx.AddInput(blockCache, user[1].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[2].Address, 10)
|
|
tx.SignInput(chainID, 0, user[0])
|
|
tx.SignInput(chainID, 1, user[1])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
}
|
|
|
|
func TestCallPermission(t *testing.T) {
|
|
stateDB := dbm.GetDB("state")
|
|
genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
|
|
genDoc.Accounts[0].Permissions.Base.Set(ptypes.Call, true) // give the 0 account permission
|
|
st := MakeGenesisState(stateDB, &genDoc)
|
|
blockCache := NewBlockCache(st)
|
|
|
|
//------------------------------
|
|
// call to simple contract
|
|
fmt.Println("\n##### SIMPLE CONTRACT")
|
|
|
|
// create simple contract
|
|
simpleContractAddr := NewContractAddress(user[0].Address, 100)
|
|
simpleAcc := &acm.Account{
|
|
Address: simpleContractAddr,
|
|
Balance: 0,
|
|
Code: []byte{0x60},
|
|
Sequence: 0,
|
|
StorageRoot: Zero256.Bytes(),
|
|
Permissions: ptypes.ZeroAccountPermissions,
|
|
}
|
|
st.UpdateAccount(simpleAcc)
|
|
|
|
// A single input, having the permission, should succeed
|
|
tx, _ := types.NewCallTx(blockCache, user[0].PubKey, simpleContractAddr, nil, 100, 100, 100)
|
|
tx.Sign(chainID, user[0])
|
|
if err := ExecTx(blockCache, tx, true, nil); err != nil {
|
|
t.Fatal("Transaction failed", err)
|
|
}
|
|
|
|
//----------------------------------------------------------
|
|
// call to contract that calls simple contract - without perm
|
|
fmt.Println("\n##### CALL TO SIMPLE CONTRACT (FAIL)")
|
|
|
|
// create contract that calls the simple contract
|
|
contractCode := callContractCode(simpleContractAddr)
|
|
caller1ContractAddr := NewContractAddress(user[0].Address, 101)
|
|
caller1Acc := &acm.Account{
|
|
Address: caller1ContractAddr,
|
|
Balance: 10000,
|
|
Code: contractCode,
|
|
Sequence: 0,
|
|
StorageRoot: Zero256.Bytes(),
|
|
Permissions: ptypes.ZeroAccountPermissions,
|
|
}
|
|
blockCache.UpdateAccount(caller1Acc)
|
|
|
|
// A single input, having the permission, but the contract doesn't have permission
|
|
tx, _ = types.NewCallTx(blockCache, user[0].PubKey, caller1ContractAddr, nil, 100, 10000, 100)
|
|
tx.Sign(chainID, user[0])
|
|
|
|
// we need to subscribe to the Call event to detect the exception
|
|
_, exception := execTxWaitEvent(t, blockCache, tx, types.EventStringAccCall(caller1ContractAddr)) //
|
|
if exception == "" {
|
|
t.Fatal("Expected exception")
|
|
}
|
|
|
|
//----------------------------------------------------------
|
|
// call to contract that calls simple contract - with perm
|
|
fmt.Println("\n##### CALL TO SIMPLE CONTRACT (PASS)")
|
|
|
|
// A single input, having the permission, and the contract has permission
|
|
caller1Acc.Permissions.Base.Set(ptypes.Call, true)
|
|
blockCache.UpdateAccount(caller1Acc)
|
|
tx, _ = types.NewCallTx(blockCache, user[0].PubKey, caller1ContractAddr, nil, 100, 10000, 100)
|
|
tx.Sign(chainID, user[0])
|
|
|
|
// we need to subscribe to the Call event to detect the exception
|
|
_, exception = execTxWaitEvent(t, blockCache, tx, types.EventStringAccCall(caller1ContractAddr)) //
|
|
if exception != "" {
|
|
t.Fatal("Unexpected exception:", exception)
|
|
}
|
|
|
|
//----------------------------------------------------------
|
|
// call to contract that calls contract that calls simple contract - without perm
|
|
// caller1Contract calls simpleContract. caller2Contract calls caller1Contract.
|
|
// caller1Contract does not have call perms, but caller2Contract does.
|
|
fmt.Println("\n##### CALL TO CONTRACT CALLING SIMPLE CONTRACT (FAIL)")
|
|
|
|
contractCode2 := callContractCode(caller1ContractAddr)
|
|
caller2ContractAddr := NewContractAddress(user[0].Address, 102)
|
|
caller2Acc := &acm.Account{
|
|
Address: caller2ContractAddr,
|
|
Balance: 1000,
|
|
Code: contractCode2,
|
|
Sequence: 0,
|
|
StorageRoot: Zero256.Bytes(),
|
|
Permissions: ptypes.ZeroAccountPermissions,
|
|
}
|
|
caller1Acc.Permissions.Base.Set(ptypes.Call, false)
|
|
caller2Acc.Permissions.Base.Set(ptypes.Call, true)
|
|
blockCache.UpdateAccount(caller1Acc)
|
|
blockCache.UpdateAccount(caller2Acc)
|
|
|
|
tx, _ = types.NewCallTx(blockCache, user[0].PubKey, caller2ContractAddr, nil, 100, 10000, 100)
|
|
tx.Sign(chainID, user[0])
|
|
|
|
// we need to subscribe to the Call event to detect the exception
|
|
_, exception = execTxWaitEvent(t, blockCache, tx, types.EventStringAccCall(caller1ContractAddr)) //
|
|
if exception == "" {
|
|
t.Fatal("Expected exception")
|
|
}
|
|
|
|
//----------------------------------------------------------
|
|
// call to contract that calls contract that calls simple contract - without perm
|
|
// caller1Contract calls simpleContract. caller2Contract calls caller1Contract.
|
|
// both caller1 and caller2 have permission
|
|
fmt.Println("\n##### CALL TO CONTRACT CALLING SIMPLE CONTRACT (PASS)")
|
|
|
|
caller1Acc.Permissions.Base.Set(ptypes.Call, true)
|
|
blockCache.UpdateAccount(caller1Acc)
|
|
|
|
tx, _ = types.NewCallTx(blockCache, user[0].PubKey, caller2ContractAddr, nil, 100, 10000, 100)
|
|
tx.Sign(chainID, user[0])
|
|
|
|
// we need to subscribe to the Call event to detect the exception
|
|
_, exception = execTxWaitEvent(t, blockCache, tx, types.EventStringAccCall(caller1ContractAddr)) //
|
|
if exception != "" {
|
|
t.Fatal("Unexpected exception", exception)
|
|
}
|
|
}
|
|
|
|
func TestCreatePermission(t *testing.T) {
|
|
stateDB := dbm.GetDB("state")
|
|
genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
|
|
genDoc.Accounts[0].Permissions.Base.Set(ptypes.CreateContract, true) // give the 0 account permission
|
|
genDoc.Accounts[0].Permissions.Base.Set(ptypes.Call, true) // give the 0 account permission
|
|
st := MakeGenesisState(stateDB, &genDoc)
|
|
blockCache := NewBlockCache(st)
|
|
|
|
//------------------------------
|
|
// create a simple contract
|
|
fmt.Println("\n##### CREATE SIMPLE CONTRACT")
|
|
|
|
contractCode := []byte{0x60}
|
|
createCode := wrapContractForCreate(contractCode)
|
|
|
|
// A single input, having the permission, should succeed
|
|
tx, _ := types.NewCallTx(blockCache, user[0].PubKey, nil, createCode, 100, 100, 100)
|
|
tx.Sign(chainID, user[0])
|
|
if err := ExecTx(blockCache, tx, true, nil); err != nil {
|
|
t.Fatal("Transaction failed", err)
|
|
}
|
|
// ensure the contract is there
|
|
contractAddr := NewContractAddress(tx.Input.Address, tx.Input.Sequence)
|
|
contractAcc := blockCache.GetAccount(contractAddr)
|
|
if contractAcc == nil {
|
|
t.Fatalf("failed to create contract %X", contractAddr)
|
|
}
|
|
if bytes.Compare(contractAcc.Code, contractCode) != 0 {
|
|
t.Fatalf("contract does not have correct code. Got %X, expected %X", contractAcc.Code, contractCode)
|
|
}
|
|
|
|
//------------------------------
|
|
// create contract that uses the CREATE op
|
|
fmt.Println("\n##### CREATE FACTORY")
|
|
|
|
contractCode = []byte{0x60}
|
|
createCode = wrapContractForCreate(contractCode)
|
|
factoryCode := createContractCode()
|
|
createFactoryCode := wrapContractForCreate(factoryCode)
|
|
|
|
// A single input, having the permission, should succeed
|
|
tx, _ = types.NewCallTx(blockCache, user[0].PubKey, nil, createFactoryCode, 100, 100, 100)
|
|
tx.Sign(chainID, user[0])
|
|
if err := ExecTx(blockCache, tx, true, nil); err != nil {
|
|
t.Fatal("Transaction failed", err)
|
|
}
|
|
// ensure the contract is there
|
|
contractAddr = NewContractAddress(tx.Input.Address, tx.Input.Sequence)
|
|
contractAcc = blockCache.GetAccount(contractAddr)
|
|
if contractAcc == nil {
|
|
t.Fatalf("failed to create contract %X", contractAddr)
|
|
}
|
|
if bytes.Compare(contractAcc.Code, factoryCode) != 0 {
|
|
t.Fatalf("contract does not have correct code. Got %X, expected %X", contractAcc.Code, factoryCode)
|
|
}
|
|
|
|
//------------------------------
|
|
// call the contract (should FAIL)
|
|
fmt.Println("\n###### CALL THE FACTORY (FAIL)")
|
|
|
|
// A single input, having the permission, should succeed
|
|
tx, _ = types.NewCallTx(blockCache, user[0].PubKey, contractAddr, createCode, 100, 100, 100)
|
|
tx.Sign(chainID, user[0])
|
|
// we need to subscribe to the Call event to detect the exception
|
|
_, exception := execTxWaitEvent(t, blockCache, tx, types.EventStringAccCall(contractAddr)) //
|
|
if exception == "" {
|
|
t.Fatal("expected exception")
|
|
}
|
|
|
|
//------------------------------
|
|
// call the contract (should PASS)
|
|
fmt.Println("\n###### CALL THE FACTORY (PASS)")
|
|
|
|
contractAcc.Permissions.Base.Set(ptypes.CreateContract, true)
|
|
blockCache.UpdateAccount(contractAcc)
|
|
|
|
// A single input, having the permission, should succeed
|
|
tx, _ = types.NewCallTx(blockCache, user[0].PubKey, contractAddr, createCode, 100, 100, 100)
|
|
tx.Sign(chainID, user[0])
|
|
// we need to subscribe to the Call event to detect the exception
|
|
_, exception = execTxWaitEvent(t, blockCache, tx, types.EventStringAccCall(contractAddr)) //
|
|
if exception != "" {
|
|
t.Fatal("unexpected exception", exception)
|
|
}
|
|
|
|
//--------------------------------
|
|
fmt.Println("\n##### CALL to empty address")
|
|
zeroAddr := LeftPadBytes([]byte{}, 20)
|
|
code := callContractCode(zeroAddr)
|
|
|
|
contractAddr = NewContractAddress(user[0].Address, 110)
|
|
contractAcc = &acm.Account{
|
|
Address: contractAddr,
|
|
Balance: 1000,
|
|
Code: code,
|
|
Sequence: 0,
|
|
StorageRoot: Zero256.Bytes(),
|
|
Permissions: ptypes.ZeroAccountPermissions,
|
|
}
|
|
contractAcc.Permissions.Base.Set(ptypes.Call, true)
|
|
contractAcc.Permissions.Base.Set(ptypes.CreateContract, true)
|
|
blockCache.UpdateAccount(contractAcc)
|
|
|
|
// this should call the 0 address but not create ...
|
|
tx, _ = types.NewCallTx(blockCache, user[0].PubKey, contractAddr, createCode, 100, 10000, 100)
|
|
tx.Sign(chainID, user[0])
|
|
// we need to subscribe to the Call event to detect the exception
|
|
_, exception = execTxWaitEvent(t, blockCache, tx, types.EventStringAccCall(zeroAddr)) //
|
|
if exception != "" {
|
|
t.Fatal("unexpected exception", exception)
|
|
}
|
|
zeroAcc := blockCache.GetAccount(zeroAddr)
|
|
if len(zeroAcc.Code) != 0 {
|
|
t.Fatal("the zero account was given code from a CALL!")
|
|
}
|
|
}
|
|
|
|
func TestBondPermission(t *testing.T) {
|
|
stateDB := dbm.GetDB("state")
|
|
genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
|
|
st := MakeGenesisState(stateDB, &genDoc)
|
|
blockCache := NewBlockCache(st)
|
|
var bondAcc *acm.Account
|
|
|
|
//------------------------------
|
|
// one bonder without permission should fail
|
|
tx, _ := types.NewBondTx(user[1].PubKey)
|
|
if err := tx.AddInput(blockCache, user[1].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[1].Address, 5)
|
|
tx.SignInput(chainID, 0, user[1])
|
|
tx.SignBond(chainID, user[1])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
|
|
//------------------------------
|
|
// one bonder with permission should pass
|
|
bondAcc = blockCache.GetAccount(user[1].Address)
|
|
bondAcc.Permissions.Base.Set(ptypes.Bond, true)
|
|
blockCache.UpdateAccount(bondAcc)
|
|
if err := ExecTx(blockCache, tx, true, nil); err != nil {
|
|
t.Fatal("Unexpected error", err)
|
|
}
|
|
|
|
// reset state (we can only bond with an account once ..)
|
|
genDoc = newBaseGenDoc(PermsAllFalse, PermsAllFalse)
|
|
st = MakeGenesisState(stateDB, &genDoc)
|
|
blockCache = NewBlockCache(st)
|
|
bondAcc = blockCache.GetAccount(user[1].Address)
|
|
bondAcc.Permissions.Base.Set(ptypes.Bond, true)
|
|
blockCache.UpdateAccount(bondAcc)
|
|
//------------------------------
|
|
// one bonder with permission and an input without send should fail
|
|
tx, _ = types.NewBondTx(user[1].PubKey)
|
|
if err := tx.AddInput(blockCache, user[2].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[1].Address, 5)
|
|
tx.SignInput(chainID, 0, user[2])
|
|
tx.SignBond(chainID, user[1])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
|
|
// reset state (we can only bond with an account once ..)
|
|
genDoc = newBaseGenDoc(PermsAllFalse, PermsAllFalse)
|
|
st = MakeGenesisState(stateDB, &genDoc)
|
|
blockCache = NewBlockCache(st)
|
|
bondAcc = blockCache.GetAccount(user[1].Address)
|
|
bondAcc.Permissions.Base.Set(ptypes.Bond, true)
|
|
blockCache.UpdateAccount(bondAcc)
|
|
//------------------------------
|
|
// one bonder with permission and an input with send should pass
|
|
sendAcc := blockCache.GetAccount(user[2].Address)
|
|
sendAcc.Permissions.Base.Set(ptypes.Send, true)
|
|
blockCache.UpdateAccount(sendAcc)
|
|
tx, _ = types.NewBondTx(user[1].PubKey)
|
|
if err := tx.AddInput(blockCache, user[2].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[1].Address, 5)
|
|
tx.SignInput(chainID, 0, user[2])
|
|
tx.SignBond(chainID, user[1])
|
|
if err := ExecTx(blockCache, tx, true, nil); err != nil {
|
|
t.Fatal("Unexpected error", err)
|
|
}
|
|
|
|
// reset state (we can only bond with an account once ..)
|
|
genDoc = newBaseGenDoc(PermsAllFalse, PermsAllFalse)
|
|
st = MakeGenesisState(stateDB, &genDoc)
|
|
blockCache = NewBlockCache(st)
|
|
bondAcc = blockCache.GetAccount(user[1].Address)
|
|
bondAcc.Permissions.Base.Set(ptypes.Bond, true)
|
|
blockCache.UpdateAccount(bondAcc)
|
|
//------------------------------
|
|
// one bonder with permission and an input with bond should pass
|
|
sendAcc.Permissions.Base.Set(ptypes.Bond, true)
|
|
blockCache.UpdateAccount(sendAcc)
|
|
tx, _ = types.NewBondTx(user[1].PubKey)
|
|
if err := tx.AddInput(blockCache, user[2].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[1].Address, 5)
|
|
tx.SignInput(chainID, 0, user[2])
|
|
tx.SignBond(chainID, user[1])
|
|
if err := ExecTx(blockCache, tx, true, nil); err != nil {
|
|
t.Fatal("Unexpected error", err)
|
|
}
|
|
|
|
// reset state (we can only bond with an account once ..)
|
|
genDoc = newBaseGenDoc(PermsAllFalse, PermsAllFalse)
|
|
st = MakeGenesisState(stateDB, &genDoc)
|
|
blockCache = NewBlockCache(st)
|
|
bondAcc = blockCache.GetAccount(user[1].Address)
|
|
bondAcc.Permissions.Base.Set(ptypes.Bond, true)
|
|
blockCache.UpdateAccount(bondAcc)
|
|
//------------------------------
|
|
// one bonder with permission and an input from that bonder and an input without send or bond should fail
|
|
tx, _ = types.NewBondTx(user[1].PubKey)
|
|
if err := tx.AddInput(blockCache, user[1].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if err := tx.AddInput(blockCache, user[2].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[1].Address, 5)
|
|
tx.SignInput(chainID, 0, user[1])
|
|
tx.SignInput(chainID, 1, user[2])
|
|
tx.SignBond(chainID, user[1])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
}
|
|
}
|
|
|
|
func TestCreateAccountPermission(t *testing.T) {
|
|
stateDB := dbm.GetDB("state")
|
|
genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
|
|
genDoc.Accounts[0].Permissions.Base.Set(ptypes.Send, true) // give the 0 account permission
|
|
genDoc.Accounts[1].Permissions.Base.Set(ptypes.Send, true) // give the 0 account permission
|
|
genDoc.Accounts[0].Permissions.Base.Set(ptypes.CreateAccount, true) // give the 0 account permission
|
|
st := MakeGenesisState(stateDB, &genDoc)
|
|
blockCache := NewBlockCache(st)
|
|
|
|
//----------------------------------------------------------
|
|
// SendTx to unknown account
|
|
|
|
// A single input, having the permission, should succeed
|
|
tx := types.NewSendTx()
|
|
if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[6].Address, 5)
|
|
tx.SignInput(chainID, 0, user[0])
|
|
if err := ExecTx(blockCache, tx, true, nil); err != nil {
|
|
t.Fatal("Transaction failed", err)
|
|
}
|
|
|
|
// Two inputs, both with send, one with create, one without, should fail
|
|
tx = types.NewSendTx()
|
|
if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if err := tx.AddInput(blockCache, user[1].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[7].Address, 10)
|
|
tx.SignInput(chainID, 0, user[0])
|
|
tx.SignInput(chainID, 1, user[1])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
|
|
// Two inputs, both with send, one with create, one without, two ouputs (one known, one unknown) should fail
|
|
tx = types.NewSendTx()
|
|
if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if err := tx.AddInput(blockCache, user[1].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[7].Address, 4)
|
|
tx.AddOutput(user[4].Address, 6)
|
|
tx.SignInput(chainID, 0, user[0])
|
|
tx.SignInput(chainID, 1, user[1])
|
|
if err := ExecTx(blockCache, tx, true, nil); err == nil {
|
|
t.Fatal("Expected error")
|
|
} else {
|
|
fmt.Println(err)
|
|
}
|
|
|
|
// Two inputs, both with send, both with create, should pass
|
|
acc := blockCache.GetAccount(user[1].Address)
|
|
acc.Permissions.Base.Set(ptypes.CreateAccount, true)
|
|
blockCache.UpdateAccount(acc)
|
|
tx = types.NewSendTx()
|
|
if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if err := tx.AddInput(blockCache, user[1].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[7].Address, 10)
|
|
tx.SignInput(chainID, 0, user[0])
|
|
tx.SignInput(chainID, 1, user[1])
|
|
if err := ExecTx(blockCache, tx, true, nil); err != nil {
|
|
t.Fatal("Unexpected error", err)
|
|
}
|
|
|
|
// Two inputs, both with send, both with create, two outputs (one known, one unknown) should pass
|
|
tx = types.NewSendTx()
|
|
if err := tx.AddInput(blockCache, user[0].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if err := tx.AddInput(blockCache, user[1].PubKey, 5); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
tx.AddOutput(user[7].Address, 7)
|
|
tx.AddOutput(user[4].Address, 3)
|
|
tx.SignInput(chainID, 0, user[0])
|
|
tx.SignInput(chainID, 1, user[1])
|
|
if err := ExecTx(blockCache, tx, true, nil); err != nil {
|
|
t.Fatal("Unexpected error", err)
|
|
}
|
|
|
|
//----------------------------------------------------------
|
|
// CALL to unknown account
|
|
|
|
acc = blockCache.GetAccount(user[0].Address)
|
|
acc.Permissions.Base.Set(ptypes.Call, true)
|
|
blockCache.UpdateAccount(acc)
|
|
|
|
// call to contract that calls unknown account - without create_account perm
|
|
// create contract that calls the simple contract
|
|
contractCode := callContractCode(user[9].Address)
|
|
caller1ContractAddr := NewContractAddress(user[4].Address, 101)
|
|
caller1Acc := &acm.Account{
|
|
Address: caller1ContractAddr,
|
|
Balance: 0,
|
|
Code: contractCode,
|
|
Sequence: 0,
|
|
StorageRoot: Zero256.Bytes(),
|
|
Permissions: ptypes.ZeroAccountPermissions,
|
|
}
|
|
blockCache.UpdateAccount(caller1Acc)
|
|
|
|
// A single input, having the permission, but the contract doesn't have permission
|
|
txCall, _ := types.NewCallTx(blockCache, user[0].PubKey, caller1ContractAddr, nil, 100, 10000, 100)
|
|
txCall.Sign(chainID, user[0])
|
|
|
|
// we need to subscribe to the Call event to detect the exception
|
|
_, exception := execTxWaitEvent(t, blockCache, txCall, types.EventStringAccCall(caller1ContractAddr)) //
|
|
if exception == "" {
|
|
t.Fatal("Expected exception")
|
|
}
|
|
|
|
// NOTE: for a contract to be able to CreateAccount, it must be able to call
|
|
// NOTE: for a user to be able to CreateAccount, it must be able to send!
|
|
caller1Acc.Permissions.Base.Set(ptypes.CreateAccount, true)
|
|
caller1Acc.Permissions.Base.Set(ptypes.Call, true)
|
|
blockCache.UpdateAccount(caller1Acc)
|
|
// A single input, having the permission, but the contract doesn't have permission
|
|
txCall, _ = types.NewCallTx(blockCache, user[0].PubKey, caller1ContractAddr, nil, 100, 10000, 100)
|
|
txCall.Sign(chainID, user[0])
|
|
|
|
// we need to subscribe to the Call event to detect the exception
|
|
_, exception = execTxWaitEvent(t, blockCache, txCall, types.EventStringAccCall(caller1ContractAddr)) //
|
|
if exception != "" {
|
|
t.Fatal("Unexpected exception", exception)
|
|
}
|
|
|
|
}
|
|
|
|
// holla at my boy
|
|
var DougAddress = append([]byte{0, 0, 0, 0, 0, 0, 0, 0, 0, 0}, []byte("THISISDOUG")...)
|
|
|
|
func TestSNativeCALL(t *testing.T) {
|
|
stateDB := dbm.GetDB("state")
|
|
genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
|
|
genDoc.Accounts[0].Permissions.Base.Set(ptypes.Call, true) // give the 0 account permission
|
|
genDoc.Accounts[3].Permissions.Base.Set(ptypes.Bond, true) // some arbitrary permission to play with
|
|
genDoc.Accounts[3].Permissions.AddRole("bumble")
|
|
genDoc.Accounts[3].Permissions.AddRole("bee")
|
|
st := MakeGenesisState(stateDB, &genDoc)
|
|
blockCache := NewBlockCache(st)
|
|
|
|
//----------------------------------------------------------
|
|
// Test CALL to SNative contracts
|
|
|
|
// make the main contract once
|
|
doug := &acm.Account{
|
|
Address: DougAddress,
|
|
Balance: 0,
|
|
Code: nil,
|
|
Sequence: 0,
|
|
StorageRoot: Zero256.Bytes(),
|
|
Permissions: ptypes.ZeroAccountPermissions,
|
|
}
|
|
doug.Permissions.Base.Set(ptypes.Call, true)
|
|
//doug.Permissions.Base.Set(ptypes.HasBase, true)
|
|
blockCache.UpdateAccount(doug)
|
|
|
|
fmt.Println("\n#### HasBase")
|
|
// HasBase
|
|
snativeAddress, data := snativePermTestInputCALL("has_base", user[3], ptypes.Bond, false)
|
|
testSNativeCALLExpectFail(t, blockCache, doug, snativeAddress, data)
|
|
testSNativeCALLExpectPass(t, blockCache, doug, snativeAddress, data, func(ret []byte) error {
|
|
// return value should be true or false as a 32 byte array...
|
|
if !IsZeros(ret[:31]) || ret[31] != byte(1) {
|
|
return fmt.Errorf("Expected 1. Got %X", ret)
|
|
}
|
|
return nil
|
|
})
|
|
|
|
fmt.Println("\n#### SetBase")
|
|
// SetBase
|
|
snativeAddress, data = snativePermTestInputCALL("set_base", user[3], ptypes.Bond, false)
|
|
testSNativeCALLExpectFail(t, blockCache, doug, snativeAddress, data)
|
|
testSNativeCALLExpectPass(t, blockCache, doug, snativeAddress, data, func(ret []byte) error { return nil })
|
|
snativeAddress, data = snativePermTestInputCALL("has_base", user[3], ptypes.Bond, false)
|
|
testSNativeCALLExpectPass(t, blockCache, doug, snativeAddress, data, func(ret []byte) error {
|
|
// return value should be true or false as a 32 byte array...
|
|
if !IsZeros(ret) {
|
|
return fmt.Errorf("Expected 0. Got %X", ret)
|
|
}
|
|
return nil
|
|
})
|
|
snativeAddress, data = snativePermTestInputCALL("set_base", user[3], ptypes.CreateContract, true)
|
|
testSNativeCALLExpectPass(t, blockCache, doug, snativeAddress, data, func(ret []byte) error { return nil })
|
|
snativeAddress, data = snativePermTestInputCALL("has_base", user[3], ptypes.CreateContract, false)
|
|
testSNativeCALLExpectPass(t, blockCache, doug, snativeAddress, data, func(ret []byte) error {
|
|
// return value should be true or false as a 32 byte array...
|
|
if !IsZeros(ret[:31]) || ret[31] != byte(1) {
|
|
return fmt.Errorf("Expected 1. Got %X", ret)
|
|
}
|
|
return nil
|
|
})
|
|
|
|
fmt.Println("\n#### UnsetBase")
|
|
// UnsetBase
|
|
snativeAddress, data = snativePermTestInputCALL("unset_base", user[3], ptypes.CreateContract, false)
|
|
testSNativeCALLExpectFail(t, blockCache, doug, snativeAddress, data)
|
|
testSNativeCALLExpectPass(t, blockCache, doug, snativeAddress, data, func(ret []byte) error { return nil })
|
|
snativeAddress, data = snativePermTestInputCALL("has_base", user[3], ptypes.CreateContract, false)
|
|
testSNativeCALLExpectPass(t, blockCache, doug, snativeAddress, data, func(ret []byte) error {
|
|
if !IsZeros(ret) {
|
|
return fmt.Errorf("Expected 0. Got %X", ret)
|
|
}
|
|
return nil
|
|
})
|
|
|
|
fmt.Println("\n#### SetGlobal")
|
|
// SetGlobalPerm
|
|
snativeAddress, data = snativePermTestInputCALL("set_global", user[3], ptypes.CreateContract, true)
|
|
testSNativeCALLExpectFail(t, blockCache, doug, snativeAddress, data)
|
|
testSNativeCALLExpectPass(t, blockCache, doug, snativeAddress, data, func(ret []byte) error { return nil })
|
|
snativeAddress, data = snativePermTestInputCALL("has_base", user[3], ptypes.CreateContract, false)
|
|
testSNativeCALLExpectPass(t, blockCache, doug, snativeAddress, data, func(ret []byte) error {
|
|
// return value should be true or false as a 32 byte array...
|
|
if !IsZeros(ret[:31]) || ret[31] != byte(1) {
|
|
return fmt.Errorf("Expected 1. Got %X", ret)
|
|
}
|
|
return nil
|
|
})
|
|
|
|
fmt.Println("\n#### HasRole")
|
|
// HasRole
|
|
snativeAddress, data = snativeRoleTestInputCALL("has_role", user[3], "bumble")
|
|
testSNativeCALLExpectFail(t, blockCache, doug, snativeAddress, data)
|
|
testSNativeCALLExpectPass(t, blockCache, doug, snativeAddress, data, func(ret []byte) error {
|
|
if !IsZeros(ret[:31]) || ret[31] != byte(1) {
|
|
return fmt.Errorf("Expected 1. Got %X", ret)
|
|
}
|
|
return nil
|
|
})
|
|
|
|
fmt.Println("\n#### AddRole")
|
|
// AddRole
|
|
snativeAddress, data = snativeRoleTestInputCALL("has_role", user[3], "chuck")
|
|
testSNativeCALLExpectPass(t, blockCache, doug, snativeAddress, data, func(ret []byte) error {
|
|
if !IsZeros(ret) {
|
|
return fmt.Errorf("Expected 0. Got %X", ret)
|
|
}
|
|
return nil
|
|
})
|
|
snativeAddress, data = snativeRoleTestInputCALL("add_role", user[3], "chuck")
|
|
testSNativeCALLExpectFail(t, blockCache, doug, snativeAddress, data)
|
|
testSNativeCALLExpectPass(t, blockCache, doug, snativeAddress, data, func(ret []byte) error { return nil })
|
|
snativeAddress, data = snativeRoleTestInputCALL("has_role", user[3], "chuck")
|
|
testSNativeCALLExpectPass(t, blockCache, doug, snativeAddress, data, func(ret []byte) error {
|
|
if !IsZeros(ret[:31]) || ret[31] != byte(1) {
|
|
return fmt.Errorf("Expected 1. Got %X", ret)
|
|
}
|
|
return nil
|
|
})
|
|
|
|
fmt.Println("\n#### RmRole")
|
|
// RmRole
|
|
snativeAddress, data = snativeRoleTestInputCALL("rm_role", user[3], "chuck")
|
|
testSNativeCALLExpectFail(t, blockCache, doug, snativeAddress, data)
|
|
testSNativeCALLExpectPass(t, blockCache, doug, snativeAddress, data, func(ret []byte) error { return nil })
|
|
snativeAddress, data = snativeRoleTestInputCALL("has_role", user[3], "chuck")
|
|
testSNativeCALLExpectPass(t, blockCache, doug, snativeAddress, data, func(ret []byte) error {
|
|
if !IsZeros(ret) {
|
|
return fmt.Errorf("Expected 0. Got %X", ret)
|
|
}
|
|
return nil
|
|
})
|
|
}
|
|
|
|
func TestSNativeTx(t *testing.T) {
|
|
stateDB := dbm.GetDB("state")
|
|
genDoc := newBaseGenDoc(PermsAllFalse, PermsAllFalse)
|
|
genDoc.Accounts[0].Permissions.Base.Set(ptypes.Call, true) // give the 0 account permission
|
|
genDoc.Accounts[3].Permissions.Base.Set(ptypes.Bond, true) // some arbitrary permission to play with
|
|
genDoc.Accounts[3].Permissions.AddRole("bumble")
|
|
genDoc.Accounts[3].Permissions.AddRole("bee")
|
|
st := MakeGenesisState(stateDB, &genDoc)
|
|
blockCache := NewBlockCache(st)
|
|
|
|
//----------------------------------------------------------
|
|
// Test SNativeTx
|
|
|
|
fmt.Println("\n#### SetBase")
|
|
// SetBase
|
|
snativeArgs := snativePermTestInputTx("set_base", user[3], ptypes.Bond, false)
|
|
testSNativeTxExpectFail(t, blockCache, snativeArgs)
|
|
testSNativeTxExpectPass(t, blockCache, ptypes.SetBase, snativeArgs)
|
|
acc := blockCache.GetAccount(user[3].Address)
|
|
if v, _ := acc.Permissions.Base.Get(ptypes.Bond); v {
|
|
t.Fatal("expected permission to be set false")
|
|
}
|
|
snativeArgs = snativePermTestInputTx("set_base", user[3], ptypes.CreateContract, true)
|
|
testSNativeTxExpectPass(t, blockCache, ptypes.SetBase, snativeArgs)
|
|
acc = blockCache.GetAccount(user[3].Address)
|
|
if v, _ := acc.Permissions.Base.Get(ptypes.CreateContract); !v {
|
|
t.Fatal("expected permission to be set true")
|
|
}
|
|
|
|
fmt.Println("\n#### UnsetBase")
|
|
// UnsetBase
|
|
snativeArgs = snativePermTestInputTx("unset_base", user[3], ptypes.CreateContract, false)
|
|
testSNativeTxExpectFail(t, blockCache, snativeArgs)
|
|
testSNativeTxExpectPass(t, blockCache, ptypes.UnsetBase, snativeArgs)
|
|
acc = blockCache.GetAccount(user[3].Address)
|
|
if v, _ := acc.Permissions.Base.Get(ptypes.CreateContract); v {
|
|
t.Fatal("expected permission to be set false")
|
|
}
|
|
|
|
fmt.Println("\n#### SetGlobal")
|
|
// SetGlobalPerm
|
|
snativeArgs = snativePermTestInputTx("set_global", user[3], ptypes.CreateContract, true)
|
|
testSNativeTxExpectFail(t, blockCache, snativeArgs)
|
|
testSNativeTxExpectPass(t, blockCache, ptypes.SetGlobal, snativeArgs)
|
|
acc = blockCache.GetAccount(ptypes.GlobalPermissionsAddress)
|
|
if v, _ := acc.Permissions.Base.Get(ptypes.CreateContract); !v {
|
|
t.Fatal("expected permission to be set true")
|
|
}
|
|
|
|
fmt.Println("\n#### AddRole")
|
|
// AddRole
|
|
snativeArgs = snativeRoleTestInputTx("add_role", user[3], "chuck")
|
|
testSNativeTxExpectFail(t, blockCache, snativeArgs)
|
|
testSNativeTxExpectPass(t, blockCache, ptypes.AddRole, snativeArgs)
|
|
acc = blockCache.GetAccount(user[3].Address)
|
|
if v := acc.Permissions.HasRole("chuck"); !v {
|
|
t.Fatal("expected role to be added")
|
|
}
|
|
|
|
fmt.Println("\n#### RmRole")
|
|
// RmRole
|
|
snativeArgs = snativeRoleTestInputTx("rm_role", user[3], "chuck")
|
|
testSNativeTxExpectFail(t, blockCache, snativeArgs)
|
|
testSNativeTxExpectPass(t, blockCache, ptypes.RmRole, snativeArgs)
|
|
acc = blockCache.GetAccount(user[3].Address)
|
|
if v := acc.Permissions.HasRole("chuck"); v {
|
|
t.Fatal("expected role to be removed")
|
|
}
|
|
}
|
|
|
|
//-------------------------------------------------------------------------------------
|
|
// helpers
|
|
|
|
var ExceptionTimeOut = "timed out waiting for event"
|
|
|
|
// run ExecTx and wait for the Call event on given addr
|
|
// returns the msg data and an error/exception
|
|
func execTxWaitEvent(t *testing.T, blockCache *BlockCache, tx types.Tx, eventid string) (interface{}, string) {
|
|
evsw := events.NewEventSwitch()
|
|
evsw.Start()
|
|
ch := make(chan interface{})
|
|
evsw.AddListenerForEvent("test", eventid, func(msg types.EventData) {
|
|
ch <- msg
|
|
})
|
|
evc := events.NewEventCache(evsw)
|
|
go func() {
|
|
if err := ExecTx(blockCache, tx, true, evc); err != nil {
|
|
ch <- err.Error()
|
|
}
|
|
evc.Flush()
|
|
}()
|
|
ticker := time.NewTicker(5 * time.Second)
|
|
var msg interface{}
|
|
select {
|
|
case msg = <-ch:
|
|
case <-ticker.C:
|
|
return nil, ExceptionTimeOut
|
|
}
|
|
|
|
switch ev := msg.(type) {
|
|
case types.EventDataTx:
|
|
return ev, ev.Exception
|
|
case types.EventDataCall:
|
|
return ev, ev.Exception
|
|
case string:
|
|
return nil, ev
|
|
default:
|
|
return ev, ""
|
|
}
|
|
}
|
|
|
|
// give a contract perms for an snative, call it, it calls the snative, but shouldn't have permission
|
|
func testSNativeCALLExpectFail(t *testing.T, blockCache *BlockCache, doug *acm.Account, snativeAddress, data []byte) {
|
|
testSNativeCALL(t, false, blockCache, doug, snativeAddress, data, nil)
|
|
}
|
|
|
|
// give a contract perms for an snative, call it, it calls the snative, ensure the check funciton (f) succeeds
|
|
func testSNativeCALLExpectPass(t *testing.T, blockCache *BlockCache, doug *acm.Account, snativeAddress, data []byte, f func([]byte) error) {
|
|
testSNativeCALL(t, true, blockCache, doug, snativeAddress, data, f)
|
|
}
|
|
|
|
func testSNativeCALL(t *testing.T, expectPass bool, blockCache *BlockCache, doug *acm.Account, snativeAddress, data []byte, f func([]byte) error) {
|
|
if expectPass {
|
|
perm, err := ptypes.PermStringToFlag(TrimmedString(snativeAddress))
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
doug.Permissions.Base.Set(perm, true)
|
|
}
|
|
var addr []byte
|
|
contractCode := callContractCode(snativeAddress)
|
|
doug.Code = contractCode
|
|
blockCache.UpdateAccount(doug)
|
|
addr = doug.Address
|
|
tx, _ := types.NewCallTx(blockCache, user[0].PubKey, addr, data, 100, 10000, 100)
|
|
tx.Sign(chainID, user[0])
|
|
fmt.Println("subscribing to", types.EventStringAccCall(snativeAddress))
|
|
ev, exception := execTxWaitEvent(t, blockCache, tx, types.EventStringAccCall(snativeAddress))
|
|
if exception == ExceptionTimeOut {
|
|
t.Fatal("Timed out waiting for event")
|
|
}
|
|
if expectPass {
|
|
if exception != "" {
|
|
t.Fatal("Unexpected exception", exception)
|
|
}
|
|
evv := ev.(types.EventDataCall)
|
|
ret := evv.Return
|
|
if err := f(ret); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
} else {
|
|
if exception == "" {
|
|
t.Fatal("Expected exception")
|
|
}
|
|
}
|
|
}
|
|
|
|
func testSNativeTxExpectFail(t *testing.T, blockCache *BlockCache, snativeArgs ptypes.PermArgs) {
|
|
testSNativeTx(t, false, blockCache, 0, snativeArgs)
|
|
}
|
|
|
|
func testSNativeTxExpectPass(t *testing.T, blockCache *BlockCache, perm ptypes.PermFlag, snativeArgs ptypes.PermArgs) {
|
|
testSNativeTx(t, true, blockCache, perm, snativeArgs)
|
|
}
|
|
|
|
func testSNativeTx(t *testing.T, expectPass bool, blockCache *BlockCache, perm ptypes.PermFlag, snativeArgs ptypes.PermArgs) {
|
|
if expectPass {
|
|
acc := blockCache.GetAccount(user[0].Address)
|
|
acc.Permissions.Base.Set(perm, true)
|
|
blockCache.UpdateAccount(acc)
|
|
}
|
|
tx, _ := types.NewPermissionsTx(blockCache, user[0].PubKey, snativeArgs)
|
|
tx.Sign(chainID, user[0])
|
|
err := ExecTx(blockCache, tx, true, nil)
|
|
if expectPass {
|
|
if err != nil {
|
|
t.Fatal("Unexpected exception", err)
|
|
}
|
|
} else {
|
|
if err == nil {
|
|
t.Fatal("Expected exception")
|
|
}
|
|
}
|
|
}
|
|
|
|
func boolToWord256(v bool) Word256 {
|
|
var vint byte
|
|
if v {
|
|
vint = 0x1
|
|
} else {
|
|
vint = 0x0
|
|
}
|
|
return LeftPadWord256([]byte{vint})
|
|
}
|
|
|
|
func snativePermTestInputCALL(name string, user *acm.PrivAccount, perm ptypes.PermFlag, val bool) (addr []byte, data []byte) {
|
|
addr = LeftPadWord256([]byte(name)).Postfix(20)
|
|
switch name {
|
|
case "has_base", "unset_base":
|
|
data = LeftPadBytes(user.Address, 32)
|
|
data = append(data, Uint64ToWord256(uint64(perm)).Bytes()...)
|
|
case "set_base":
|
|
data = LeftPadBytes(user.Address, 32)
|
|
data = append(data, Uint64ToWord256(uint64(perm)).Bytes()...)
|
|
data = append(data, boolToWord256(val).Bytes()...)
|
|
case "set_global":
|
|
data = Uint64ToWord256(uint64(perm)).Bytes()
|
|
data = append(data, boolToWord256(val).Bytes()...)
|
|
}
|
|
return
|
|
}
|
|
|
|
func snativePermTestInputTx(name string, user *acm.PrivAccount, perm ptypes.PermFlag, val bool) (snativeArgs ptypes.PermArgs) {
|
|
switch name {
|
|
case "has_base":
|
|
snativeArgs = &ptypes.HasBaseArgs{user.Address, perm}
|
|
case "unset_base":
|
|
snativeArgs = &ptypes.UnsetBaseArgs{user.Address, perm}
|
|
case "set_base":
|
|
snativeArgs = &ptypes.SetBaseArgs{user.Address, perm, val}
|
|
case "set_global":
|
|
snativeArgs = &ptypes.SetGlobalArgs{perm, val}
|
|
}
|
|
return
|
|
}
|
|
|
|
func snativeRoleTestInputCALL(name string, user *acm.PrivAccount, role string) (addr []byte, data []byte) {
|
|
addr = LeftPadWord256([]byte(name)).Postfix(20)
|
|
data = LeftPadBytes(user.Address, 32)
|
|
data = append(data, LeftPadBytes([]byte(role), 32)...)
|
|
return
|
|
}
|
|
|
|
func snativeRoleTestInputTx(name string, user *acm.PrivAccount, role string) (snativeArgs ptypes.PermArgs) {
|
|
switch name {
|
|
case "has_role":
|
|
snativeArgs = &ptypes.HasRoleArgs{user.Address, role}
|
|
case "add_role":
|
|
snativeArgs = &ptypes.AddRoleArgs{user.Address, role}
|
|
case "rm_role":
|
|
snativeArgs = &ptypes.RmRoleArgs{user.Address, role}
|
|
}
|
|
return
|
|
}
|
|
|
|
// convenience function for contract that calls a given address
|
|
func callContractCode(contractAddr []byte) []byte {
|
|
// calldatacopy into mem and use as input to call
|
|
memOff, inputOff := byte(0x0), byte(0x0)
|
|
contractCode := []byte{0x36, 0x60, inputOff, 0x60, memOff, 0x37}
|
|
|
|
gas1, gas2 := byte(0x1), byte(0x1)
|
|
value := byte(0x1)
|
|
inOff := byte(0x0)
|
|
retOff, retSize := byte(0x0), byte(0x20)
|
|
// this is the code we want to run (call a contract and return)
|
|
contractCode = append(contractCode, []byte{0x60, retSize, 0x60, retOff, 0x36, 0x60, inOff, 0x60, value, 0x73}...)
|
|
contractCode = append(contractCode, contractAddr...)
|
|
contractCode = append(contractCode, []byte{0x61, gas1, gas2, 0xf1, 0x60, 0x20, 0x60, 0x0, 0xf3}...)
|
|
return contractCode
|
|
}
|
|
|
|
// convenience function for contract that is a factory for the code that comes as call data
|
|
func createContractCode() []byte {
|
|
// TODO: gas ...
|
|
|
|
// calldatacopy the calldatasize
|
|
memOff, inputOff := byte(0x0), byte(0x0)
|
|
contractCode := []byte{0x60, memOff, 0x60, inputOff, 0x36, 0x37}
|
|
|
|
// create
|
|
value := byte(0x1)
|
|
contractCode = append(contractCode, []byte{0x60, value, 0x36, 0x60, memOff, 0xf0}...)
|
|
return contractCode
|
|
}
|
|
|
|
// wrap a contract in create code
|
|
func wrapContractForCreate(contractCode []byte) []byte {
|
|
// the is the code we need to return the contractCode when the contract is initialized
|
|
lenCode := len(contractCode)
|
|
// push code to the stack
|
|
code := append([]byte{0x7f}, RightPadWord256(contractCode).Bytes()...)
|
|
// store it in memory
|
|
code = append(code, []byte{0x60, 0x0, 0x52}...)
|
|
// return whats in memory
|
|
code = append(code, []byte{0x60, byte(lenCode), 0x60, 0x0, 0xf3}...)
|
|
// return init code, contract code, expected return
|
|
return code
|
|
}
|