cosmos-sdk/x/auth/ante.go

package auth

import (
	"fmt"
	"reflect"

	sdk "github.com/cosmos/cosmos-sdk/types"
)

func NewAnteHandler(accountMapper sdk.AccountMapper) sdk.AnteHandler {
	return func(
		ctx sdk.Context, tx sdk.Tx,
	) (_ sdk.Context, _ sdk.Result, abort bool) {

		// Assert that there are signatures.
		var sigs = tx.GetSignatures()
		if len(sigs) == 0 {
			return ctx,
				sdk.ErrUnauthorized("no signers").Result(),
				true
		}

		// TODO: can tx just implement message?
		msg := tx.GetMsg()

		// Assert that number of signatures is correct.
		var signerAddrs = msg.GetSigners()
		if len(sigs) != len(signerAddrs) {
			return ctx,
				sdk.ErrUnauthorized("wrong number of signers").Result(),
				true
		}

		// Collect accounts to set in the context
		var signerAccs = make([]sdk.Account, len(signerAddrs))

		// Get the sign bytes by collecting all sequence numbers
		sequences := make([]int64, len(signerAddrs))
		for i := 0; i < len(signerAddrs); i++ {
			sequences[i] = sigs[i].Sequence
		}
		signBytes := sdk.StdSignBytes(ctx.ChainID(), sequences, msg)

		// Check fee payer sig and nonce, and deduct fee.
		// This is done first because it only
		// requires fetching 1 account.
		payerAddr, payerSig := signerAddrs[0], sigs[0]
		payerAcc, res := processSig(ctx, accountMapper, payerAddr, payerSig, signBytes)
		if !res.IsOK() {
			return ctx, res, true
		}
		signerAccs[0] = payerAcc
		// TODO: Charge fee from payerAcc.
		// TODO: accountMapper.SetAccount(ctx, payerAddr)

		// Check sig and nonce for the rest.
		for i := 1; i < len(sigs); i++ {
			signerAddr, sig := signerAddrs[i], sigs[i]
			signerAcc, res := processSig(ctx, accountMapper, signerAddr, sig, signBytes)
			if !res.IsOK() {
				return ctx, res, true
			}
			signerAccs[i] = signerAcc
		}

		ctx = WithSigners(ctx, signerAccs)
		return ctx, sdk.Result{}, false // continue...
	}
}

// verify the signature and increment the sequence.
// if the account doesn't have a pubkey, set it as well.
func processSig(ctx sdk.Context, am sdk.AccountMapper, addr sdk.Address, sig sdk.StdSignature, signBytes []byte) (acc sdk.Account, res sdk.Result) {

	// Get the account
	acc = am.GetAccount(ctx, addr)
	if acc == nil {
		return nil, sdk.ErrUnrecognizedAddress(addr).Result()
	}

	// Check and increment sequence number.
	seq := acc.GetSequence()
	if seq != sig.Sequence {
		return nil, sdk.ErrInvalidSequence(
			fmt.Sprintf("Invalid sequence. Got %d, expected %d", sig.Sequence, seq)).Result()
	}
	acc.SetSequence(seq + 1)

	// Check and possibly set pubkey.
	pubKey := acc.GetPubKey()
	if pubKey.Empty() {
		if sig.PubKey.Empty() {
			return nil, sdk.ErrInternal("public Key not found").Result()
		}
		if !reflect.DeepEqual(sig.PubKey.Address(), addr) {
			return nil, sdk.ErrInternal(
				fmt.Sprintf("invalid PubKey for address %v", addr)).Result()
		}
		pubKey = sig.PubKey
		err := acc.SetPubKey(pubKey)
		if err != nil {
			return nil, sdk.ErrInternal("setting PubKey on signer").Result()
		}
	}
	// Check sig.
	if !pubKey.VerifyBytes(signBytes, sig.Signature) {
		return nil, sdk.ErrUnauthorized("signature verification failed").Result()
	}

	// Save the account.
	am.SetAccount(ctx, acc)
	return
}
WIP: refactor Refactor * No more decorators, but rather types.AntiHandler * No more handlers, but rather types.MsgHandler * Ability to pass "stores" in NewXYZHandler() * Coins live in types, and Accounts have coins * Coinstore -> bank 2018-01-12 11:49:53 -08:00			`package auth`

			`import (`
x/auth: ante_test.go 2018-03-12 17:40:04 -07:00			`"fmt"`
Fix auth handler public key issue 2018-03-16 17:57:28 -07:00			`"reflect"`
x/auth: ante_test.go 2018-03-12 17:40:04 -07:00
auth and bank compile 2018-01-12 14:30:02 -08:00			`sdk "github.com/cosmos/cosmos-sdk/types"`
WIP: refactor Refactor * No more decorators, but rather types.AntiHandler * No more handlers, but rather types.MsgHandler * Ability to pass "stores" in NewXYZHandler() * Coins live in types, and Accounts have coins * Coinstore -> bank 2018-01-12 11:49:53 -08:00			`)`

Substore->Store; BaseApp has db; Mapper 2018-01-22 05:44:24 -08:00			`func NewAnteHandler(accountMapper sdk.AccountMapper) sdk.AnteHandler {`
WIP: refactor Refactor * No more decorators, but rather types.AntiHandler * No more handlers, but rather types.MsgHandler * Ability to pass "stores" in NewXYZHandler() * Coins live in types, and Accounts have coins * Coinstore -> bank 2018-01-12 11:49:53 -08:00			`return func(`
auth and bank compile 2018-01-12 14:30:02 -08:00			`ctx sdk.Context, tx sdk.Tx,`
CacheWrap after AnteHandler 2018-01-26 05:11:01 -08:00			`) (_ sdk.Context, _ sdk.Result, abort bool) {`
WIP: refactor Refactor * No more decorators, but rather types.AntiHandler * No more handlers, but rather types.MsgHandler * Ability to pass "stores" in NewXYZHandler() * Coins live in types, and Accounts have coins * Coinstore -> bank 2018-01-12 11:49:53 -08:00
Separation of Tx from Msg; CodeType 2018-01-26 06:22:56 -08:00			`// Assert that there are signatures.`
x/auth: clean up ante handler 2018-03-03 23:32:39 -08:00			`var sigs = tx.GetSignatures()`
finish removing TestApp and TestTx 2018-02-17 13:19:34 -08:00			`if len(sigs) == 0 {`
			`return ctx,`
			`sdk.ErrUnauthorized("no signers").Result(),`
			`true`
WIP: refactor Refactor * No more decorators, but rather types.AntiHandler * No more handlers, but rather types.MsgHandler * Ability to pass "stores" in NewXYZHandler() * Coins live in types, and Accounts have coins * Coinstore -> bank 2018-01-12 11:49:53 -08:00			`}`
Add first Basecoin test harness 2018-01-26 04:19:33 -08:00
x/auth: clean up ante handler 2018-03-03 23:32:39 -08:00			`// TODO: can tx just implement message?`
			`msg := tx.GetMsg()`
Separation of Tx from Msg; CodeType 2018-01-26 06:22:56 -08:00
Add first Basecoin test harness 2018-01-26 04:19:33 -08:00			`// Assert that number of signatures is correct.`
x/auth: clean up ante handler 2018-03-03 23:32:39 -08:00			`var signerAddrs = msg.GetSigners()`
finish removing TestApp and TestTx 2018-02-17 13:19:34 -08:00			`if len(sigs) != len(signerAddrs) {`
			`return ctx,`
			`sdk.ErrUnauthorized("wrong number of signers").Result(),`
			`true`
			`}`
WIP: refactor Refactor * No more decorators, but rather types.AntiHandler * No more handlers, but rather types.MsgHandler * Ability to pass "stores" in NewXYZHandler() * Coins live in types, and Accounts have coins * Coinstore -> bank 2018-01-12 11:49:53 -08:00
x/auth: clean up ante handler 2018-03-03 23:32:39 -08:00			`// Collect accounts to set in the context`
			`var signerAccs = make([]sdk.Account, len(signerAddrs))`
WIP: refactor Refactor * No more decorators, but rather types.AntiHandler * No more handlers, but rather types.MsgHandler * Ability to pass "stores" in NewXYZHandler() * Coins live in types, and Accounts have coins * Coinstore -> bank 2018-01-12 11:49:53 -08:00
types: StdSignDoc includes sequence for each sig 2018-03-10 15:57:39 -08:00			`// Get the sign bytes by collecting all sequence numbers`
			`sequences := make([]int64, len(signerAddrs))`
			`for i := 0; i < len(signerAddrs); i++ {`
			`sequences[i] = sigs[i].Sequence`
			`}`
			`signBytes := sdk.StdSignBytes(ctx.ChainID(), sequences, msg)`
implement replay protection 2018-03-04 00:15:26 -08:00
			`// Check fee payer sig and nonce, and deduct fee.`
x/auth: clean up ante handler 2018-03-03 23:32:39 -08:00			`// This is done first because it only`
			`// requires fetching 1 account.`
types: StdSignDoc includes sequence for each sig 2018-03-10 15:57:39 -08:00			`payerAddr, payerSig := signerAddrs[0], sigs[0]`
implement replay protection 2018-03-04 00:15:26 -08:00			`payerAcc, res := processSig(ctx, accountMapper, payerAddr, payerSig, signBytes)`
x/auth: clean up ante handler 2018-03-03 23:32:39 -08:00			`if !res.IsOK() {`
			`return ctx, res, true`
			`}`
			`signerAccs[0] = payerAcc`
			`// TODO: Charge fee from payerAcc.`
			`// TODO: accountMapper.SetAccount(ctx, payerAddr)`
WIP: refactor Refactor * No more decorators, but rather types.AntiHandler * No more handlers, but rather types.MsgHandler * Ability to pass "stores" in NewXYZHandler() * Coins live in types, and Accounts have coins * Coinstore -> bank 2018-01-12 11:49:53 -08:00
x/auth: clean up ante handler 2018-03-03 23:32:39 -08:00			`// Check sig and nonce for the rest.`
			`for i := 1; i < len(sigs); i++ {`
implement replay protection 2018-03-04 00:15:26 -08:00			`signerAddr, sig := signerAddrs[i], sigs[i]`
			`signerAcc, res := processSig(ctx, accountMapper, signerAddr, sig, signBytes)`
x/auth: clean up ante handler 2018-03-03 23:32:39 -08:00			`if !res.IsOK() {`
			`return ctx, res, true`
WIP: refactor Refactor * No more decorators, but rather types.AntiHandler * No more handlers, but rather types.MsgHandler * Ability to pass "stores" in NewXYZHandler() * Coins live in types, and Accounts have coins * Coinstore -> bank 2018-01-12 11:49:53 -08:00			`}`
x/auth: clean up ante handler 2018-03-03 23:32:39 -08:00			`signerAccs[i] = signerAcc`
WIP: refactor Refactor * No more decorators, but rather types.AntiHandler * No more handlers, but rather types.MsgHandler * Ability to pass "stores" in NewXYZHandler() * Coins live in types, and Accounts have coins * Coinstore -> bank 2018-01-12 11:49:53 -08:00			`}`

			`ctx = WithSigners(ctx, signerAccs)`
auth and bank compile 2018-01-12 14:30:02 -08:00			`return ctx, sdk.Result{}, false // continue...`
WIP: refactor Refactor * No more decorators, but rather types.AntiHandler * No more handlers, but rather types.MsgHandler * Ability to pass "stores" in NewXYZHandler() * Coins live in types, and Accounts have coins * Coinstore -> bank 2018-01-12 11:49:53 -08:00			`}`
			`}`
x/auth: clean up ante handler 2018-03-03 23:32:39 -08:00
			`// verify the signature and increment the sequence.`
			`// if the account doesn't have a pubkey, set it as well.`
			`func processSig(ctx sdk.Context, am sdk.AccountMapper, addr sdk.Address, sig sdk.StdSignature, signBytes []byte) (acc sdk.Account, res sdk.Result) {`

			`// Get the account`
			`acc = am.GetAccount(ctx, addr)`
			`if acc == nil {`
			`return nil, sdk.ErrUnrecognizedAddress(addr).Result()`
			`}`

			`// Check and increment sequence number.`
			`seq := acc.GetSequence()`
			`if seq != sig.Sequence {`
x/auth: ante_test.go 2018-03-12 17:40:04 -07:00			`return nil, sdk.ErrInvalidSequence(`
			`fmt.Sprintf("Invalid sequence. Got %d, expected %d", sig.Sequence, seq)).Result()`
x/auth: clean up ante handler 2018-03-03 23:32:39 -08:00			`}`
			`acc.SetSequence(seq + 1)`

			`// Check and possibly set pubkey.`
			`pubKey := acc.GetPubKey()`
			`if pubKey.Empty() {`
Fix auth handler public key issue 2018-03-16 17:57:28 -07:00			`if sig.PubKey.Empty() {`
			`return nil, sdk.ErrInternal("public Key not found").Result()`
			`}`
			`if !reflect.DeepEqual(sig.PubKey.Address(), addr) {`
			`return nil, sdk.ErrInternal(`
			`fmt.Sprintf("invalid PubKey for address %v", addr)).Result()`
			`}`
x/auth: clean up ante handler 2018-03-03 23:32:39 -08:00			`pubKey = sig.PubKey`
			`err := acc.SetPubKey(pubKey)`
			`if err != nil {`
			`return nil, sdk.ErrInternal("setting PubKey on signer").Result()`
			`}`
			`}`
			`// Check sig.`
Fix auth handler public key issue 2018-03-16 17:57:28 -07:00			`if !pubKey.VerifyBytes(signBytes, sig.Signature) {`
implement replay protection 2018-03-04 00:15:26 -08:00			`return nil, sdk.ErrUnauthorized("signature verification failed").Result()`
x/auth: clean up ante handler 2018-03-03 23:32:39 -08:00			`}`

			`// Save the account.`
			`am.SetAccount(ctx, acc)`
			`return`
			`}`