Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

SNIP-24 - Query Permits #22

Merged
merged 41 commits into from
Oct 19, 2021
Merged
Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
41 commits
Select commit Hold shift + click to select a range
cd78f1e
Working prototype :tada:
assafmo Sep 25, 2021
e299b4d
Validate permit message
assafmo Sep 25, 2021
7065602
Rename account to query_balance_of
assafmo Sep 25, 2021
4dd5088
Fix permit's content serialization to bytes
assafmo Sep 26, 2021
468eda9
Update make start-server
assafmo Sep 26, 2021
0582c62
Refactor, make permit API UX better
assafmo Sep 26, 2021
476c043
remain::sorted on SignedPermit
assafmo Sep 26, 2021
2365946
Query with permit for all authenticated queries
assafmo Sep 26, 2021
7d8a365
Refactor some var/func names
assafmo Sep 26, 2021
e3ac874
Implement revoke permit
assafmo Sep 26, 2021
b1f3d46
Clean makefile
assafmo Sep 26, 2021
ca14f16
Refactor RevokedPermits storage
assafmo Sep 27, 2021
7c0d408
:shrug:
assafmo Sep 27, 2021
a8dace9
simplified permit query interface
reuvenpo Sep 27, 2021
c3071e9
Fix permit for query_allowance
assafmo Sep 29, 2021
d986d2e
Rename struct SignedPermit -> PermitParams
assafmo Sep 29, 2021
8a8d419
A small refactor
assafmo Sep 29, 2021
2323bf4
Code comment rephrase
assafmo Sep 29, 2021
e14e857
cargo schema
reuvenpo Sep 29, 2021
3844f6c
Simplify return logic of is_permit_revoked()
assafmo Sep 29, 2021
934452e
Merge branch 'query-balance-prmit' of github.com:enigmampc/snip20-ref…
assafmo Sep 29, 2021
38bc240
Merge pull request #23 from enigmampc/query-balance-prmit-2
assafmo Sep 29, 2021
37b191f
Fix merge conflict
assafmo Sep 29, 2021
1ce2de6
Rename query_with_permit() -> permit_queries()
assafmo Sep 29, 2021
716ee8a
Rename permit.signed -> permit.params
assafmo Sep 29, 2021
7af1d05
cargo schema
reuvenpo Sep 29, 2021
736a0d9
Query permit permissions
assafmo Sep 29, 2021
128e3f7
Add prefix for RevokedPemits storage keys
assafmo Oct 4, 2021
c9b53b5
Test permits for wrong token
assafmo Oct 8, 2021
59d61c7
Permit: make errors more readable for humans
assafmo Oct 13, 2021
7a27a75
Permits: test every failure scenario
assafmo Oct 13, 2021
0384401
Permit: test query balance
assafmo Oct 13, 2021
60b4c53
Permit: test query history & allowance
assafmo Oct 13, 2021
8e16bb4
Restore all the other tests
assafmo Oct 13, 2021
0400dcb
Move permit operations to secret-toolkit
assafmo Oct 14, 2021
942debd
Fix secret-toolkit dependency
assafmo Oct 17, 2021
ea27639
Pass storage key prefix to RevokedPemits
assafmo Oct 18, 2021
caa8ab7
RevokedPemits -> RevokedPermits
assafmo Oct 18, 2021
b2f764e
Use cosmwasm-std v1.0.0
assafmo Oct 18, 2021
bae405b
Update secret-toolkit
assafmo Oct 19, 2021
2d1d606
cargo schema
assafmo Oct 19, 2021
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
36 changes: 30 additions & 6 deletions src/contract.rs
Original file line number Diff line number Diff line change
Expand Up @@ -15,12 +15,13 @@ use crate::msg::{
space_pad, ContractStatusLevel, HandleAnswer, HandleMsg, InitMsg, QueryAnswer, QueryMsg,
ResponseStatus::Success,
};
use crate::permit::{Permit, PermitSignature, SignedPermit};
use crate::permit::Permit;
use crate::rand::sha_256;
use crate::receiver::Snip20ReceiveMsg;
use crate::state::{
get_receiver_hash, read_allowance, read_viewing_key, set_receiver_hash, write_allowance,
write_viewing_key, Balances, Config, Constants, ReadonlyBalances, ReadonlyConfig,
ReadonlyRevokedPermits, RevokedPemits,
};
use crate::transaction_history::{
get_transfers, get_txs, store_burn, store_deposit, store_mint, store_redeem, store_transfer,
Expand Down Expand Up @@ -236,6 +237,7 @@ pub fn handle<S: Storage, A: Api, Q: Querier>(
HandleMsg::AddMinters { minters, .. } => add_minters(deps, env, minters),
HandleMsg::RemoveMinters { minters, .. } => remove_minters(deps, env, minters),
HandleMsg::SetMinters { minters, .. } => set_minters(deps, env, minters),
HandleMsg::RevokePermit { permit_name, .. } => revoke_permit(deps, env, permit_name),
};

pad_response(response)
Expand Down Expand Up @@ -274,11 +276,7 @@ fn query_with_permit<S: Storage, A: Api, Q: Querier>(

let permit_content = &permit.signed.msgs[0].value;

// Validate permit_name
let _permit_name = &permit_content.permit_name;
// TODO fail if permit_name is revoked

// Validate permit message
// Validate permit content
let token_address = ReadonlyConfig::from_storage(&deps.storage)
.constants()?
.contract_address;
Expand All @@ -294,6 +292,17 @@ fn query_with_permit<S: Storage, A: Api, Q: Querier>(
let pubkey = permit.signature.pub_key.value;
let account = deps.api.human_address(&pubkey_to_account(&pubkey))?;

// Validate permit_name
let permit_name = &permit_content.permit_name;
let is_permit_revoked = ReadonlyRevokedPermits::from_storage(&deps.storage)
.is_permit_revoked(&account, &permit_name);
if is_permit_revoked {
return Err(StdError::generic_err(format!(
"Permit '{:?}' was revoked by account {:?}",
permit_name, account
)));
}

// Validate signature, reference: https://github.com/enigmampc/SecretNetwork/blob/f591ed0cb3af28608df3bf19d6cfb733cca48100/cosmwasm/packages/wasmi-runtime/src/crypto/secp256k1.rs#L49-L82
let signed_bytes = &to_binary(&permit.signed)?.0;
let signed_bytes_hash = Sha256::digest(signed_bytes);
Expand Down Expand Up @@ -321,6 +330,7 @@ fn query_with_permit<S: Storage, A: Api, Q: Querier>(
))
})?;
reuvenpo marked this conversation as resolved.
Show resolved Hide resolved

// We're verified! We can now execute the query
match query {
QueryWithPermit::Balance {} => query_balance(&deps, &account),
QueryWithPermit::TransferHistory { page, page_size } => {
Expand Down Expand Up @@ -1704,6 +1714,20 @@ fn perform_transfer<T: Storage>(
Ok(())
}

fn revoke_permit<S: Storage, A: Api, Q: Querier>(
deps: &mut Extern<S, A, Q>,
env: Env,
permit_name: String,
) -> StdResult<HandleResponse> {
RevokedPemits::from_storage(&mut deps.storage).revoke_permit(&env.message.sender, &permit_name);

Ok(HandleResponse {
messages: vec![],
log: vec![],
data: Some(to_binary(&HandleAnswer::RevokePemit { status: Success })?),
})
}

fn is_admin<S: Storage>(config: &Config<S>, account: &HumanAddr) -> StdResult<bool> {
let consts = config.constants()?;
if &consts.admin != account {
Expand Down
12 changes: 11 additions & 1 deletion src/msg.rs
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@ use serde::{Deserialize, Serialize};
use cosmwasm_std::{Binary, HumanAddr, StdError, StdResult, Uint128};

use crate::batch;
use crate::permit::{Permit, PermitSignature, SignedPermit};
use crate::permit::Permit;
use crate::transaction_history::{RichTx, Tx};
use crate::viewing_key::ViewingKey;

Expand Down Expand Up @@ -213,6 +213,11 @@ pub enum HandleMsg {
level: ContractStatusLevel,
padding: Option<String>,
},

// Permit
RevokePermit {
permit_name: String,
},
}
assafmo marked this conversation as resolved.
Show resolved Hide resolved

#[derive(Serialize, Deserialize, JsonSchema, Debug)]
Expand Down Expand Up @@ -306,6 +311,11 @@ pub enum HandleAnswer {
SetContractStatus {
status: ResponseStatus,
},

// Permit
RevokePemit {
status: ResponseStatus,
},
}

#[derive(Serialize, Deserialize, Clone, Debug, PartialEq, JsonSchema)]
Expand Down
61 changes: 61 additions & 0 deletions src/state.rs
Original file line number Diff line number Diff line change
Expand Up @@ -28,6 +28,8 @@ pub const PREFIX_ALLOWANCES: &[u8] = b"allowances";
pub const PREFIX_VIEW_KEY: &[u8] = b"viewingkey";
pub const PREFIX_RECEIVERS: &[u8] = b"receivers";

pub const PREFIX_REVOKED_PERMITS: &[u8] = b"revoked_permits";

// Config

#[derive(Serialize, Debug, Deserialize, Clone, PartialEq, JsonSchema)]
Expand Down Expand Up @@ -297,6 +299,65 @@ impl<'a, S: ReadonlyStorage> ReadonlyBalancesImpl<'a, S> {
}
}

pub struct ReadonlyRevokedPermits<'a, S: ReadonlyStorage> {
storage: ReadonlyPrefixedStorage<'a, S>,
}

impl<'a, S: ReadonlyStorage> ReadonlyRevokedPermits<'a, S> {
pub fn from_storage(storage: &'a S) -> Self {
Self {
storage: ReadonlyPrefixedStorage::new(PREFIX_REVOKED_PERMITS, storage),
}
}

fn as_readonly(&self) -> ReadonlyRevokedPermitsImpl<ReadonlyPrefixedStorage<S>> {
ReadonlyRevokedPermitsImpl(&self.storage)
}

pub fn is_permit_revoked(&self, account: &HumanAddr, permit_name: &String) -> bool {
self.as_readonly().is_permit_revoked(account, permit_name)
}
}

pub struct RevokedPemits<'a, S: Storage> {
storage: PrefixedStorage<'a, S>,
}

impl<'a, S: Storage> RevokedPemits<'a, S> {
pub fn from_storage(storage: &'a mut S) -> Self {
Self {
storage: PrefixedStorage::new(PREFIX_REVOKED_PERMITS, storage),
}
}

fn as_readonly(&self) -> ReadonlyRevokedPermitsImpl<PrefixedStorage<S>> {
ReadonlyRevokedPermitsImpl(&self.storage)
}

pub fn is_permit_revoked(&self, account: &HumanAddr, permit_name: &String) -> bool {
self.as_readonly().is_permit_revoked(account, permit_name)
}

pub fn revoke_permit(&mut self, account: &HumanAddr, permit_name: &String) {
let storage_key = account.to_string() + permit_name;
assafmo marked this conversation as resolved.
Show resolved Hide resolved

self.storage.set(storage_key.as_bytes(), &[])
}
}

struct ReadonlyRevokedPermitsImpl<'a, S: ReadonlyStorage>(&'a S);

impl<'a, S: ReadonlyStorage> ReadonlyRevokedPermitsImpl<'a, S> {
pub fn is_permit_revoked(&self, account: &HumanAddr, permit_name: &String) -> bool {
let storage_key = account.to_string() + permit_name;

match self.0.get(storage_key.as_bytes()) {
Some(_) => true,
None => false,
}
}
}

// Allowances

#[derive(Serialize, Debug, Deserialize, Clone, PartialEq, Default, JsonSchema)]
Expand Down