2018-09-07 03:59:16 -07:00
|
|
|
package cli
|
|
|
|
|
|
|
|
|
|
import (
|
2018-12-05 23:02:04 -08:00
|
|
|
"errors"
|
2018-09-07 03:59:16 -07:00
|
|
|
"fmt"
|
2018-11-19 09:02:34 -08:00
|
|
|
"io/ioutil"
|
2018-11-21 15:44:13 -08:00
|
|
|
"os"
|
2018-09-07 03:59:16 -07:00
|
|
|
|
2018-12-10 06:27:25 -08:00
|
|
|
"github.com/spf13/cobra"
|
|
|
|
|
"github.com/spf13/viper"
|
|
|
|
|
"github.com/tendermint/go-amino"
|
|
|
|
|
|
2018-09-07 03:59:16 -07:00
|
|
|
"github.com/cosmos/cosmos-sdk/client"
|
|
|
|
|
"github.com/cosmos/cosmos-sdk/client/context"
|
|
|
|
|
"github.com/cosmos/cosmos-sdk/client/utils"
|
|
|
|
|
sdk "github.com/cosmos/cosmos-sdk/types"
|
|
|
|
|
"github.com/cosmos/cosmos-sdk/x/auth"
|
2018-09-07 10:49:12 -07:00
|
|
|
authtxb "github.com/cosmos/cosmos-sdk/x/auth/client/txbuilder"
|
2018-09-07 03:59:16 -07:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
const (
|
2019-01-16 09:30:57 -08:00
|
|
|
flagMultisig = "multisig"
|
2018-10-22 16:59:19 -07:00
|
|
|
flagAppend = "append"
|
2018-10-29 08:15:59 -07:00
|
|
|
flagValidateSigs = "validate-signatures"
|
2018-10-22 16:59:19 -07:00
|
|
|
flagOffline = "offline"
|
2018-10-29 08:15:59 -07:00
|
|
|
flagSigOnly = "signature-only"
|
2018-11-21 15:44:13 -08:00
|
|
|
flagOutfile = "output-document"
|
2018-09-07 03:59:16 -07:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
// GetSignCommand returns the sign command
|
2018-11-19 09:02:34 -08:00
|
|
|
func GetSignCommand(codec *amino.Codec) *cobra.Command {
|
2018-09-07 03:59:16 -07:00
|
|
|
cmd := &cobra.Command{
|
2019-02-06 16:15:37 -08:00
|
|
|
Use: "sign [file]",
|
2018-09-26 07:00:49 -07:00
|
|
|
Short: "Sign transactions generated offline",
|
2018-09-07 03:59:16 -07:00
|
|
|
Long: `Sign transactions created with the --generate-only flag.
|
2019-02-06 16:15:37 -08:00
|
|
|
Read a transaction from [file], sign it, and print its JSON encoding.
|
2018-10-19 11:00:27 -07:00
|
|
|
|
2018-10-23 12:41:24 -07:00
|
|
|
If the flag --signature-only flag is on, it outputs a JSON representation
|
2018-10-22 16:52:54 -07:00
|
|
|
of the generated signature only.
|
|
|
|
|
|
2018-10-31 06:50:01 -07:00
|
|
|
If the flag --validate-signatures is on, then the command would check whether all required
|
2018-12-05 23:02:04 -08:00
|
|
|
signers have signed the transactions, whether the signatures were collected in the right
|
|
|
|
|
order, and if the signature is valid over the given transaction. If the --offline
|
|
|
|
|
flag is also provided, signature validation over the transaction will be not be
|
|
|
|
|
performed as that will require communication with a full node.
|
2018-10-31 06:50:01 -07:00
|
|
|
|
2018-12-05 23:02:04 -08:00
|
|
|
The --offline flag makes sure that the client will not reach out to an external node.
|
2018-10-19 11:00:27 -07:00
|
|
|
Thus account number or sequence number lookups will not be performed and it is
|
2019-01-16 09:30:57 -08:00
|
|
|
recommended to set such parameters manually.
|
|
|
|
|
|
|
|
|
|
The --multisig=<multisig_key> flag generates a signature on behalf of a multisig account
|
|
|
|
|
key. It implies --signature-only. Full multisig signed transactions may eventually
|
|
|
|
|
be generated via the 'multisign' command.
|
|
|
|
|
`,
|
2018-11-19 09:02:34 -08:00
|
|
|
RunE: makeSignCmd(codec),
|
2018-09-07 03:59:16 -07:00
|
|
|
Args: cobra.ExactArgs(1),
|
|
|
|
|
}
|
|
|
|
|
cmd.Flags().String(client.FlagName, "", "Name of private key with which to sign")
|
2019-01-16 09:30:57 -08:00
|
|
|
cmd.Flags().String(flagMultisig, "",
|
|
|
|
|
"Address of the multisig account on behalf of which the "+
|
|
|
|
|
"transaction shall be signed")
|
2018-10-23 11:53:47 -07:00
|
|
|
cmd.Flags().Bool(flagAppend, true,
|
2019-01-16 09:30:57 -08:00
|
|
|
"Append the signature to the existing ones. "+
|
|
|
|
|
"If disabled, old signatures would be overwritten. Ignored if --multisig is on")
|
|
|
|
|
cmd.Flags().Bool(flagSigOnly, false, "Print only the generated signature, then exit")
|
2018-10-29 08:15:59 -07:00
|
|
|
cmd.Flags().Bool(flagValidateSigs, false, "Print the addresses that must sign the transaction, "+
|
2019-01-16 09:30:57 -08:00
|
|
|
"those who have already signed it, and make sure that signatures are in the correct order")
|
|
|
|
|
cmd.Flags().Bool(flagOffline, false, "Offline mode. Do not query a full node")
|
2018-11-21 15:44:13 -08:00
|
|
|
cmd.Flags().String(flagOutfile, "",
|
|
|
|
|
"The document will be written to the given file instead of STDOUT")
|
2018-11-19 09:02:34 -08:00
|
|
|
|
|
|
|
|
// Add the flags here and return the command
|
|
|
|
|
return client.PostCommands(cmd)[0]
|
2018-09-07 03:59:16 -07:00
|
|
|
}
|
|
|
|
|
|
2018-11-19 09:02:34 -08:00
|
|
|
func makeSignCmd(cdc *amino.Codec) func(cmd *cobra.Command, args []string) error {
|
2018-09-07 03:59:16 -07:00
|
|
|
return func(cmd *cobra.Command, args []string) (err error) {
|
|
|
|
|
stdTx, err := readAndUnmarshalStdTx(cdc, args[0])
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2018-12-05 23:02:04 -08:00
|
|
|
offline := viper.GetBool(flagOffline)
|
|
|
|
|
cliCtx := context.NewCLIContext().WithCodec(cdc).WithAccountDecoder(cdc)
|
|
|
|
|
txBldr := authtxb.NewTxBuilderFromCLI()
|
|
|
|
|
|
2018-10-29 08:15:59 -07:00
|
|
|
if viper.GetBool(flagValidateSigs) {
|
2019-02-06 11:23:49 -08:00
|
|
|
if !printAndValidateSigs(cliCtx, txBldr.ChainID(), stdTx, offline) {
|
2018-10-22 16:11:13 -07:00
|
|
|
return fmt.Errorf("signatures validation failed")
|
|
|
|
|
}
|
2018-12-05 23:02:04 -08:00
|
|
|
|
2018-09-07 03:59:16 -07:00
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
name := viper.GetString(client.FlagName)
|
2018-10-22 17:51:46 -07:00
|
|
|
if name == "" {
|
|
|
|
|
return errors.New("required flag \"name\" has not been set")
|
|
|
|
|
}
|
2018-09-07 03:59:16 -07:00
|
|
|
|
2018-10-23 12:41:24 -07:00
|
|
|
// if --signature-only is on, then override --append
|
2019-01-16 09:30:57 -08:00
|
|
|
var newTx auth.StdTx
|
2018-10-29 08:15:59 -07:00
|
|
|
generateSignatureOnly := viper.GetBool(flagSigOnly)
|
2019-01-16 09:30:57 -08:00
|
|
|
multisigAddrStr := viper.GetString(flagMultisig)
|
|
|
|
|
|
|
|
|
|
if multisigAddrStr != "" {
|
|
|
|
|
var multisigAddr sdk.AccAddress
|
|
|
|
|
multisigAddr, err = sdk.AccAddressFromBech32(multisigAddrStr)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
newTx, err = utils.SignStdTxWithSignerAddress(
|
|
|
|
|
txBldr, cliCtx, multisigAddr, name, stdTx, offline)
|
|
|
|
|
generateSignatureOnly = true
|
|
|
|
|
} else {
|
|
|
|
|
appendSig := viper.GetBool(flagAppend) && !generateSignatureOnly
|
|
|
|
|
newTx, err = utils.SignStdTx(
|
|
|
|
|
txBldr, cliCtx, name, stdTx, appendSig, offline)
|
|
|
|
|
}
|
2018-09-07 03:59:16 -07:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2018-10-22 15:37:20 -07:00
|
|
|
|
2018-10-04 04:00:24 -07:00
|
|
|
var json []byte
|
2018-10-22 15:37:20 -07:00
|
|
|
|
2018-10-29 08:34:11 -07:00
|
|
|
switch generateSignatureOnly {
|
|
|
|
|
case true:
|
|
|
|
|
switch cliCtx.Indent {
|
|
|
|
|
case true:
|
|
|
|
|
json, err = cdc.MarshalJSONIndent(newTx.Signatures[0], "", " ")
|
|
|
|
|
default:
|
|
|
|
|
json, err = cdc.MarshalJSON(newTx.Signatures[0])
|
|
|
|
|
}
|
|
|
|
|
default:
|
|
|
|
|
switch cliCtx.Indent {
|
|
|
|
|
case true:
|
|
|
|
|
json, err = cdc.MarshalJSONIndent(newTx, "", " ")
|
|
|
|
|
default:
|
|
|
|
|
json, err = cdc.MarshalJSON(newTx)
|
|
|
|
|
}
|
2018-10-04 04:00:24 -07:00
|
|
|
}
|
2018-12-05 23:02:04 -08:00
|
|
|
|
2018-09-07 03:59:16 -07:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2018-11-21 15:44:13 -08:00
|
|
|
|
|
|
|
|
if viper.GetString(flagOutfile) == "" {
|
|
|
|
|
fmt.Printf("%s\n", json)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fp, err := os.OpenFile(
|
|
|
|
|
viper.GetString(flagOutfile), os.O_RDWR|os.O_CREATE|os.O_TRUNC, 0644,
|
2018-11-26 03:50:33 -08:00
|
|
|
)
|
2018-11-21 15:44:13 -08:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2018-12-05 23:02:04 -08:00
|
|
|
|
2018-11-21 15:44:13 -08:00
|
|
|
defer fp.Close()
|
|
|
|
|
fmt.Fprintf(fp, "%s\n", json)
|
2018-12-05 23:02:04 -08:00
|
|
|
|
2018-09-07 03:59:16 -07:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2018-12-05 23:02:04 -08:00
|
|
|
// printAndValidateSigs will validate the signatures of a given transaction over
|
|
|
|
|
// its expected signers. In addition, if offline has not been supplied, the
|
|
|
|
|
// signature is verified over the transaction sign bytes.
|
|
|
|
|
func printAndValidateSigs(
|
|
|
|
|
cliCtx context.CLIContext, chainID string, stdTx auth.StdTx, offline bool,
|
|
|
|
|
) bool {
|
|
|
|
|
|
2018-09-07 03:59:16 -07:00
|
|
|
fmt.Println("Signers:")
|
2018-12-05 23:02:04 -08:00
|
|
|
|
2018-10-22 15:52:19 -07:00
|
|
|
signers := stdTx.GetSigners()
|
|
|
|
|
for i, signer := range signers {
|
2018-09-07 03:59:16 -07:00
|
|
|
fmt.Printf(" %v: %v\n", i, signer.String())
|
|
|
|
|
}
|
2018-10-22 16:11:13 -07:00
|
|
|
|
2018-12-05 23:02:04 -08:00
|
|
|
success := true
|
2018-10-22 16:11:13 -07:00
|
|
|
sigs := stdTx.GetSignatures()
|
2018-12-05 23:02:04 -08:00
|
|
|
|
2018-09-07 03:59:16 -07:00
|
|
|
fmt.Println("")
|
|
|
|
|
fmt.Println("Signatures:")
|
2018-12-05 23:02:04 -08:00
|
|
|
|
2018-10-22 16:11:13 -07:00
|
|
|
if len(sigs) != len(signers) {
|
|
|
|
|
success = false
|
|
|
|
|
}
|
2018-12-05 23:02:04 -08:00
|
|
|
|
|
|
|
|
for i, sig := range sigs {
|
2018-10-22 15:52:19 -07:00
|
|
|
sigAddr := sdk.AccAddress(sig.Address())
|
|
|
|
|
sigSanity := "OK"
|
2018-12-05 23:02:04 -08:00
|
|
|
|
2018-10-22 15:52:19 -07:00
|
|
|
if i >= len(signers) || !sigAddr.Equals(signers[i]) {
|
2018-12-05 23:02:04 -08:00
|
|
|
sigSanity = "ERROR: signature does not match its respective signer"
|
2018-10-29 08:13:36 -07:00
|
|
|
success = false
|
2018-10-22 15:52:19 -07:00
|
|
|
}
|
2018-12-05 23:02:04 -08:00
|
|
|
|
|
|
|
|
// Validate the actual signature over the transaction bytes since we can
|
|
|
|
|
// reach out to a full node to query accounts.
|
|
|
|
|
if !offline && success {
|
|
|
|
|
acc, err := cliCtx.GetAccount(sigAddr)
|
|
|
|
|
if err != nil {
|
|
|
|
|
fmt.Printf("failed to get account: %s\n", sigAddr)
|
|
|
|
|
return false
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
sigBytes := auth.StdSignBytes(
|
|
|
|
|
chainID, acc.GetAccountNumber(), acc.GetSequence(),
|
|
|
|
|
stdTx.Fee, stdTx.GetMsgs(), stdTx.GetMemo(),
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
if ok := sig.VerifyBytes(sigBytes, sig.Signature); !ok {
|
|
|
|
|
sigSanity = "ERROR: signature invalid"
|
|
|
|
|
success = false
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2018-10-22 15:52:19 -07:00
|
|
|
fmt.Printf(" %v: %v\t[%s]\n", i, sigAddr.String(), sigSanity)
|
2018-09-07 03:59:16 -07:00
|
|
|
}
|
2018-12-05 23:02:04 -08:00
|
|
|
|
2018-10-22 16:11:13 -07:00
|
|
|
fmt.Println("")
|
|
|
|
|
return success
|
2018-09-07 03:59:16 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func readAndUnmarshalStdTx(cdc *amino.Codec, filename string) (stdTx auth.StdTx, err error) {
|
|
|
|
|
var bytes []byte
|
|
|
|
|
if bytes, err = ioutil.ReadFile(filename); err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
if err = cdc.UnmarshalJSON(bytes, &stdTx); err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
return
|
|
|
|
|
}
|
