use core::ops::Deref; use std::{sync::Arc, io}; use zeroize::Zeroizing; use rand::{RngCore, CryptoRng, rngs::OsRng}; use blake2::{Digest, Blake2s256}; use dalek_ff_group::Ristretto; use ciphersuite::{ group::{ff::Field, Group}, Ciphersuite, }; use schnorr::SchnorrSignature; use scale::Encode; use ::tendermint::{ ext::{Network, Signer as SignerTrait, SignatureScheme, BlockNumber, RoundNumber}, SignedMessageFor, DataFor, Message, SignedMessage, Data, Evidence, }; use crate::{ transaction::{Signed, TransactionError, TransactionKind, Transaction, verify_transaction}, ReadWrite, tendermint::{tx::TendermintTx, Validators, Signer}, }; #[cfg(test)] mod signed; #[cfg(test)] mod tendermint; pub fn random_signed(rng: &mut R) -> Signed { Signed { signer: ::G::random(&mut *rng), nonce: u32::try_from(rng.next_u64() >> 32 >> 1).unwrap(), signature: SchnorrSignature:: { R: ::G::random(&mut *rng), s: ::F::random(rng), }, } } pub fn random_signed_with_nonce(rng: &mut R, nonce: u32) -> Signed { let mut signed = random_signed(rng); signed.nonce = nonce; signed } #[derive(Clone, PartialEq, Eq, Debug)] pub struct ProvidedTransaction(pub Vec); impl ReadWrite for ProvidedTransaction { fn read(reader: &mut R) -> io::Result { let mut len = [0; 4]; reader.read_exact(&mut len)?; let mut data = vec![0; usize::try_from(u32::from_le_bytes(len)).unwrap()]; reader.read_exact(&mut data)?; Ok(ProvidedTransaction(data)) } fn write(&self, writer: &mut W) -> io::Result<()> { writer.write_all(&u32::try_from(self.0.len()).unwrap().to_le_bytes())?; writer.write_all(&self.0) } } impl Transaction for ProvidedTransaction { fn kind(&self) -> TransactionKind<'_> { match self.0[0] { 1 => TransactionKind::Provided("order1"), 2 => TransactionKind::Provided("order2"), _ => panic!("unknown order"), } } fn hash(&self) -> [u8; 32] { Blake2s256::digest(self.serialize()).into() } fn verify(&self) -> Result<(), TransactionError> { Ok(()) } } pub fn random_provided_transaction( rng: &mut R, order: &str, ) -> ProvidedTransaction { let mut data = vec![0; 512]; rng.fill_bytes(&mut data); data[0] = match order { "order1" => 1, "order2" => 2, _ => panic!("unknown order"), }; ProvidedTransaction(data) } #[derive(Clone, PartialEq, Eq, Debug)] pub struct SignedTransaction(pub Vec, pub Signed); impl ReadWrite for SignedTransaction { fn read(reader: &mut R) -> io::Result { let mut len = [0; 4]; reader.read_exact(&mut len)?; let mut data = vec![0; usize::try_from(u32::from_le_bytes(len)).unwrap()]; reader.read_exact(&mut data)?; Ok(SignedTransaction(data, Signed::read(reader)?)) } fn write(&self, writer: &mut W) -> io::Result<()> { writer.write_all(&u32::try_from(self.0.len()).unwrap().to_le_bytes())?; writer.write_all(&self.0)?; self.1.write(writer) } } impl Transaction for SignedTransaction { fn kind(&self) -> TransactionKind<'_> { TransactionKind::Signed(vec![], &self.1) } fn hash(&self) -> [u8; 32] { let serialized = self.serialize(); Blake2s256::digest(&serialized[.. (serialized.len() - 64)]).into() } fn verify(&self) -> Result<(), TransactionError> { Ok(()) } } pub fn signed_transaction( rng: &mut R, genesis: [u8; 32], key: &Zeroizing<::F>, nonce: u32, ) -> SignedTransaction { let mut data = vec![0; 512]; rng.fill_bytes(&mut data); let signer = ::generator() * **key; let mut tx = SignedTransaction(data, Signed { signer, nonce, signature: random_signed(rng).signature }); let sig_nonce = Zeroizing::new(::F::random(rng)); tx.1.signature.R = Ristretto::generator() * sig_nonce.deref(); tx.1.signature = SchnorrSignature::sign(key, sig_nonce, tx.sig_hash(genesis)); verify_transaction(&tx, genesis, &mut |_, _| Some(tx.1.nonce)).unwrap(); tx } pub fn random_signed_transaction( rng: &mut R, ) -> ([u8; 32], SignedTransaction) { let mut genesis = [0; 32]; rng.fill_bytes(&mut genesis); let key = Zeroizing::new(::F::random(&mut *rng)); // Shift over an additional bit to ensure it won't overflow when incremented let nonce = u32::try_from(rng.next_u64() >> 32 >> 1).unwrap(); (genesis, signed_transaction(rng, genesis, &key, nonce)) } pub fn new_genesis() -> [u8; 32] { let mut genesis = [0; 32]; OsRng.fill_bytes(&mut genesis); genesis } pub async fn tendermint_meta() -> ([u8; 32], Signer, [u8; 32], Arc) { // signer let genesis = new_genesis(); let signer = Signer::new(genesis, Zeroizing::new(::F::random(&mut OsRng))); let validator_id = signer.validator_id().await.unwrap(); // schema let signer_pub = ::read_G::<&[u8]>(&mut validator_id.as_slice()).unwrap(); let validators = Arc::new(Validators::new(genesis, vec![(signer_pub, 1)]).unwrap()); (genesis, signer, validator_id, validators) } pub async fn signed_from_data( signer: ::Signer, signer_id: N::ValidatorId, block_number: u64, round_number: u32, data: DataFor, ) -> SignedMessageFor { let msg = Message { sender: signer_id, block: BlockNumber(block_number), round: RoundNumber(round_number), data, }; let sig = signer.sign(&msg.encode()).await; SignedMessage { msg, sig } } pub async fn random_evidence_tx( signer: ::Signer, b: N::Block, ) -> TendermintTx { // Creates a TX with an invalid valid round number // TODO: Use a random failure reason let data = Data::Proposal(Some(RoundNumber(0)), b); let signer_id = signer.validator_id().await.unwrap(); let signed = signed_from_data::(signer, signer_id, 0, 0, data).await; TendermintTx::SlashEvidence(Evidence::InvalidValidRound(signed.encode())) }