zec
/
librustzcash
mirror of https://github.com/zcash/librustzcash.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
librustzcash/zcash_primitives/src/transaction/builder.rs

1321 lines
43 KiB
Rust
Raw Normal View History

Sapling transaction builder
2018-11-20 05:37:21 -08:00
//! Structs for building transactions.
Use rust feature flagging to allow conditionally enabling TZE-related code. This also uses the test-dependencies feature flag for conditional inclusion of proptest-related modules which may be used by dependent crates for generation of samples in testing.
2020-09-23 09:53:48 -07:00
#[cfg(feature = "zfuture")]
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
use std::boxed::Box;
Use rust feature flagging to allow conditionally enabling TZE-related code. This also uses the test-dependencies feature flag for conditional inclusion of proptest-related modules which may be used by dependent crates for generation of samples in testing.
2020-09-23 09:53:48 -07:00
zcash_client_sqlite::transact::create_to_address()
2019-03-08 19:20:32 -08:00
use std::error;
use std::fmt;
Add <P: consensus::Parameters> type parameter to Builder struct
2020-08-05 20:36:02 -07:00
use std::marker::PhantomData;
Send builder progress
2021-04-26 10:14:01 -07:00
use std::sync::mpsc::Sender;
Sapling transaction builder
2018-11-20 05:37:21 -08:00
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
use ff::Field;
use rand::{rngs::OsRng, seq::SliceRandom, CryptoRng, RngCore};
Sapling transaction builder
2018-11-20 05:37:21 -08:00
use crate::{
Add newtype for block height.
2020-08-05 13:08:58 -07:00
consensus::{self, BlockHeight},
transaction::Builder::add_transparent_output()
2019-05-24 05:32:55 -07:00
legacy::TransparentAddress,
Split memo-handling into MemoBytes struct and Memo enum The MemoBytes struct is a minimal wrapper around the memo bytes, and only imposes the existence of null-padding for shorter memos. The only error case is attempting to construct a memo that is too long. MemoBytes is guaranteed to be round-trip encodable (modulo null padding). The Memo enum implements the additional memo rules defined in ZIP 302, interpreting the contents of a memo (for example, parsing it as text).
2020-10-29 09:48:26 -07:00
memo::MemoBytes,
Rename CommitmentTreeWitness -> MerklePath
2020-02-07 16:25:24 -08:00
merkle_tree::MerklePath,
Move relevant utils into sapling module.
2021-03-04 16:45:45 -08:00
sapling::{
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
keys::OutgoingViewingKey,
note_encryption::sapling_note_encryption,
prover::TxProver,
redjubjub::{PrivateKey, Signature},
spend_sig_internal,
util::generate_random_rseed_internal,
Move note_encryption into the sapling module.
2021-03-04 13:45:41 -08:00
Diversifier, Node, Note, PaymentAddress,
Move relevant utils into sapling module.
2021-03-04 16:45:45 -08:00
},
Sapling transaction builder
2018-11-20 05:37:21 -08:00
transaction::{
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
components::{
Move sapling keys into sapling module.
2021-03-04 13:40:45 -08:00
amount::{Amount, DEFAULT_FEE},
Move transparent transaction builder to an independent module.
2021-05-11 13:17:54 -07:00
transparent::builder::{self as transparent, TransparentBuilder},
OutputDescription, SpendDescription,
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
},
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
signature_hash_data, SignableInput, Transaction, TransactionData, TxVersion, SIGHASH_ALL,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
},
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
zip32::ExtendedSpendingKey,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
};
transaction::Builder::add_transparent_input()
2019-07-31 08:20:13 -07:00
#[cfg(feature = "transparent-inputs")]
Move transparent transaction builder to an independent module.
2021-05-11 13:17:54 -07:00
use crate::transaction::components::{OutPoint, TxOut};
transaction::Builder::add_transparent_input()
2019-07-31 08:20:13 -07:00
Use rust feature flagging to allow conditionally enabling TZE-related code. This also uses the test-dependencies feature flag for conditional inclusion of proptest-related modules which may be used by dependent crates for generation of samples in testing.
2020-09-23 09:53:48 -07:00
#[cfg(feature = "zfuture")]
use crate::{
extensions::transparent::{self as tze, ExtensionTxBuilder, ToPayload},
Move TZE components to a separate module & add TzeOutPoint
2021-03-04 08:35:53 -08:00
transaction::components::{TzeIn, TzeOut, TzeOutPoint},
Use rust feature flagging to allow conditionally enabling TZE-related code. This also uses the test-dependencies feature flag for conditional inclusion of proptest-related modules which may be used by dependent crates for generation of samples in testing.
2020-09-23 09:53:48 -07:00
};
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
#[cfg(any(test, feature = "test-dependencies"))]
Move zcash_primitives::prover to sapling module
2021-03-04 09:48:04 -08:00
use crate::sapling::prover::mock::MockTxProver;
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
Sapling transaction builder
2018-11-20 05:37:21 -08:00
const DEFAULT_TX_EXPIRY_DELTA: u32 = 20;
/// If there are any shielded inputs, always have at least two shielded outputs, padding
Fix broken intra-doc links and lints
2021-03-25 13:49:27 -07:00
/// with dummy outputs if necessary. See <https://github.com/zcash/zcash/issues/3615>.
Sapling transaction builder
2018-11-20 05:37:21 -08:00
const MIN_SHIELDED_OUTPUTS: usize = 2;
#[derive(Debug, PartialEq)]
Simplify structure of transaction builder errors
2019-08-13 07:10:57 -07:00
pub enum Error {
Sapling transaction builder
2018-11-20 05:37:21 -08:00
AnchorMismatch,
BindingSig,
impl operators for Amount
2019-07-25 12:53:42 -07:00
ChangeIsNegative(Amount),
Sapling transaction builder
2018-11-20 05:37:21 -08:00
InvalidAddress,
InvalidAmount,
NoChangeAddress,
SpendProof,
Ensure that prevout, extension_id & mode data can be signed in builder.
2020-09-09 09:54:18 -07:00
TzeWitnessModeMismatch(u32, u32),
Move transparent transaction builder to an independent module.
2021-05-11 13:17:54 -07:00
TransparentBuildError(transparent::Error),
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
zcash_client_sqlite::transact::create_to_address()
2019-03-08 19:20:32 -08:00
impl fmt::Display for Error {
fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
match self {
Error::AnchorMismatch => {
write!(f, "Anchor mismatch (anchors for all spends must be equal)")
}
Error::BindingSig => write!(f, "Failed to create bindingSig"),
Error::ChangeIsNegative(amount) => {
write!(f, "Change is negative ({:?} zatoshis)", amount)
}
Error::InvalidAddress => write!(f, "Invalid address"),
Error::InvalidAmount => write!(f, "Invalid amount"),
Error::NoChangeAddress => write!(f, "No change address specified or discoverable"),
Error::SpendProof => write!(f, "Failed to create Sapling spend proof"),
Ensure that prevout, extension_id & mode data can be signed in builder.
2020-09-09 09:54:18 -07:00
Error::TzeWitnessModeMismatch(expected, actual) =>
write!(f, "TZE witness builder returned a mode that did not match the mode with which the input was initially constructed: expected = {:?}, actual = {:?}", expected, actual),
Move transparent transaction builder to an independent module.
2021-05-11 13:17:54 -07:00
Error::TransparentBuildError(err) => err.fmt(f),
zcash_client_sqlite::transact::create_to_address()
2019-03-08 19:20:32 -08:00
}
}
}
impl error::Error for Error {}
Sapling transaction builder
2018-11-20 05:37:21 -08:00
struct SpendDescriptionInfo {
extsk: ExtendedSpendingKey,
diversifier: Diversifier,
s/{pairing::bls12_381, zcash_primitives::jubjub}/{bls12_381, jubjub} FINALLY.
2020-07-01 13:26:54 -07:00
note: Note,
alpha: jubjub::Fr,
Rename CommitmentTreeWitness -> MerklePath
2020-02-07 16:25:24 -08:00
merkle_path: MerklePath<Node>,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
#[derive(Clone)]
Generalize note encryption and decryption. This commit introduces a `Domain` trait which defines the types and operations that are shared between Sapling and Orchard note encryption and decryption processes.
2021-03-17 17:22:21 -07:00
pub struct SaplingOutput<P: consensus::Parameters> {
zcash_primitives: Support ovk = ⊥ in note encryption Closes zcash/librustzcash#259.
2020-08-28 08:12:37 -07:00
/// `None` represents the `ovk = ⊥` case.
ovk: Option<OutgoingViewingKey>,
s/{pairing::bls12_381, zcash_primitives::jubjub}/{bls12_381, jubjub} FINALLY.
2020-07-01 13:26:54 -07:00
to: PaymentAddress,
note: Note,
Split memo-handling into MemoBytes struct and Memo enum The MemoBytes struct is a minimal wrapper around the memo bytes, and only imposes the existence of null-padding for shorter memos. The only error case is attempting to construct a memo that is too long. MemoBytes is guaranteed to be round-trip encodable (modulo null padding). The Memo enum implements the additional memo rules defined in ZIP 302, interpreting the contents of a memo (for example, parsing it as text).
2020-10-29 09:48:26 -07:00
memo: MemoBytes,
Generalize note encryption and decryption. This commit introduces a `Domain` trait which defines the types and operations that are shared between Sapling and Orchard note encryption and decryption processes.
2021-03-17 17:22:21 -07:00
_params: PhantomData<P>,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
Generalize note encryption and decryption. This commit introduces a `Domain` trait which defines the types and operations that are shared between Sapling and Orchard note encryption and decryption processes.
2021-03-17 17:22:21 -07:00
impl<P: consensus::Parameters> SaplingOutput<P> {
pub fn new<R: RngCore + CryptoRng>(
Remove static determination of network state. In the interest of making the library usable for both testnet and mainnet without recompilation, static resolution of network parameters has been replaced with a parameter passed to the relevant functions. This also moves addres prefix constants into the network parameters.
2020-08-05 13:27:40 -07:00
params: &P,
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
target_height: BlockHeight,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
rng: &mut R,
zcash_primitives: Support ovk = ⊥ in note encryption Closes zcash/librustzcash#259.
2020-08-28 08:12:37 -07:00
ovk: Option<OutgoingViewingKey>,
s/{pairing::bls12_381, zcash_primitives::jubjub}/{bls12_381, jubjub} FINALLY.
2020-07-01 13:26:54 -07:00
to: PaymentAddress,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
value: Amount,
Split memo-handling into MemoBytes struct and Memo enum The MemoBytes struct is a minimal wrapper around the memo bytes, and only imposes the existence of null-padding for shorter memos. The only error case is attempting to construct a memo that is too long. MemoBytes is guaranteed to be round-trip encodable (modulo null padding). The Memo enum implements the additional memo rules defined in ZIP 302, interpreting the contents of a memo (for example, parsing it as text).
2020-10-29 09:48:26 -07:00
memo: Option<MemoBytes>,
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
) -> Result<Self, Error> {
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
Self::new_internal(params, target_height, rng, ovk, to, value, memo)
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
}
Generalize note encryption and decryption. This commit introduces a `Domain` trait which defines the types and operations that are shared between Sapling and Orchard note encryption and decryption processes.
2021-03-17 17:22:21 -07:00
fn new_internal<R: RngCore>(
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
params: &P,
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
target_height: BlockHeight,
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
rng: &mut R,
ovk: Option<OutgoingViewingKey>,
to: PaymentAddress,
value: Amount,
Split memo-handling into MemoBytes struct and Memo enum The MemoBytes struct is a minimal wrapper around the memo bytes, and only imposes the existence of null-padding for shorter memos. The only error case is attempting to construct a memo that is too long. MemoBytes is guaranteed to be round-trip encodable (modulo null padding). The Memo enum implements the additional memo rules defined in ZIP 302, interpreting the contents of a memo (for example, parsing it as text).
2020-10-29 09:48:26 -07:00
memo: Option<MemoBytes>,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
) -> Result<Self, Error> {
Simplify a few pattern matches A few pattern-matches correspond directly to standard combinators on `Result`, `Option`. This uses them for concision / clarity. Refactorings reviewed by the author after suggestion from [comby-rust](https://github.com/huitseeker/comby-rust).
2021-01-28 12:40:07 -08:00
let g_d = to.g_d().ok_or(Error::InvalidAddress)?;
Amount::{zero, is_positive, is_negative}
2019-07-25 12:50:17 -07:00
if value.is_negative() {
Simplify structure of transaction builder errors
2019-08-13 07:10:57 -07:00
return Err(Error::InvalidAmount);
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
let rseed = generate_random_rseed_internal(params, target_height, rng);
Sapling transaction builder
2018-11-20 05:37:21 -08:00
let note = Note {
g_d,
Remove unnecessary clones
2020-10-30 06:27:49 -07:00
pk_d: *to.pk_d(),
Make Amount opaque, and use it more This helps to ensure type-safety of values that are required to satisfy zatoshi range bounds.
2019-07-25 14:37:16 -07:00
value: value.into(),
Implement plaintext_version_is_valid()
2020-07-30 08:07:33 -07:00
rseed,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
};
Ok(SaplingOutput {
ovk,
to,
note,
Remove Default impl from MemoBytes Memo fields have two ways to encode an empty memo: - 0xF6 followed by all-zeroes, encoding "there is no memo". - All-zeroes, encoding the empty UTF-8 string. In almost all cases you want the former, but users thinking about byte slices may expect MemoBytes::default() to result in the latter. To ensure clarity, we now require calling either MemoBytes::default() or MemoBytes::from_bytes(&[]) to be explicit. No such confusion exists for the Memo enum, because the two types are visibly separated as different enum cases, and Memo::Empty makes sense as the default.
2021-03-17 00:47:11 -07:00
memo: memo.unwrap_or_else(MemoBytes::empty),
Generalize note encryption and decryption. This commit introduces a `Domain` trait which defines the types and operations that are shared between Sapling and Orchard note encryption and decryption processes.
2021-03-17 17:22:21 -07:00
_params: PhantomData::default(),
Sapling transaction builder
2018-11-20 05:37:21 -08:00
})
}
Generalize note encryption and decryption. This commit introduces a `Domain` trait which defines the types and operations that are shared between Sapling and Orchard note encryption and decryption processes.
2021-03-17 17:22:21 -07:00
pub fn build<Pr: TxProver, R: RngCore + CryptoRng>(
Sapling transaction builder
2018-11-20 05:37:21 -08:00
self,
Generalize note encryption and decryption. This commit introduces a `Domain` trait which defines the types and operations that are shared between Sapling and Orchard note encryption and decryption processes.
2021-03-17 17:22:21 -07:00
prover: &Pr,
ctx: &mut Pr::SaplingProvingContext,
Pass tx builder RNG to SaplingNoteEncryption
2019-06-12 15:11:06 -07:00
rng: &mut R,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
) -> OutputDescription {
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
self.build_internal(prover, ctx, rng)
}
Generalize note encryption and decryption. This commit introduces a `Domain` trait which defines the types and operations that are shared between Sapling and Orchard note encryption and decryption processes.
2021-03-17 17:22:21 -07:00
fn build_internal<Pr: TxProver, R: RngCore>(
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
self,
Generalize note encryption and decryption. This commit introduces a `Domain` trait which defines the types and operations that are shared between Sapling and Orchard note encryption and decryption processes.
2021-03-17 17:22:21 -07:00
prover: &Pr,
ctx: &mut Pr::SaplingProvingContext,
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
rng: &mut R,
) -> OutputDescription {
Remove spurious mut references.
2021-04-08 09:08:00 -07:00
let encryptor = sapling_note_encryption::<R, P>(
Pass tx builder RNG to SaplingNoteEncryption
2019-06-12 15:11:06 -07:00
self.ovk,
self.note.clone(),
self.to.clone(),
self.memo,
Revert SaplingNoteEncryption::new() API to take rng instead of esk
2020-08-05 21:47:35 -07:00
rng,
Pass tx builder RNG to SaplingNoteEncryption
2019-06-12 15:11:06 -07:00
);
Sapling transaction builder
2018-11-20 05:37:21 -08:00
let (zkproof, cv) = prover.output_proof(
ctx,
Remove unnecessary clones
2020-10-30 06:27:49 -07:00
*encryptor.esk(),
Sapling transaction builder
2018-11-20 05:37:21 -08:00
self.to,
Add enum Rseed<E::Fs> to Note struct
2020-07-29 21:36:12 -07:00
self.note.rcm(),
Sapling transaction builder
2018-11-20 05:37:21 -08:00
self.note.value,
);
zcash_primitives: Rename Note::cm to Note::cmu
2020-08-21 10:33:22 -07:00
let cmu = self.note.cmu();
Sapling transaction builder
2018-11-20 05:37:21 -08:00
let enc_ciphertext = encryptor.encrypt_note_plaintext();
Generalize note encryption and decryption. This commit introduces a `Domain` trait which defines the types and operations that are shared between Sapling and Orchard note encryption and decryption processes.
2021-03-17 17:22:21 -07:00
let out_ciphertext = encryptor.encrypt_outgoing_plaintext(&cv, &cmu, rng);
let ephemeral_key = *encryptor.epk();
Sapling transaction builder
2018-11-20 05:37:21 -08:00
OutputDescription {
cv,
cmu,
ephemeral_key,
enc_ciphertext,
out_ciphertext,
zkproof,
}
}
}
Use rust feature flagging to allow conditionally enabling TZE-related code. This also uses the test-dependencies feature flag for conditional inclusion of proptest-related modules which may be used by dependent crates for generation of samples in testing.
2020-09-23 09:53:48 -07:00
#[cfg(feature = "zfuture")]
Fix clippy complaints.
2021-02-03 11:46:47 -08:00
#[allow(clippy::type_complexity)]
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
struct TzeSigner<'a, BuildCtx> {
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
prevout: TzeOut,
Ensure that prevout, extension_id & mode data can be signed in builder.
2020-09-09 09:54:18 -07:00
builder: Box<dyn FnOnce(&BuildCtx) -> Result<(u32, Vec<u8>), Error> + 'a>,
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
}
Use rust feature flagging to allow conditionally enabling TZE-related code. This also uses the test-dependencies feature flag for conditional inclusion of proptest-related modules which may be used by dependent crates for generation of samples in testing.
2020-09-23 09:53:48 -07:00
#[cfg(feature = "zfuture")]
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
struct TzeBuilder<'a, BuildCtx> {
signers: Vec<TzeSigner<'a, BuildCtx>>,
tze_inputs: Vec<TzeIn>,
tze_outputs: Vec<TzeOut>,
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
}
Use rust feature flagging to allow conditionally enabling TZE-related code. This also uses the test-dependencies feature flag for conditional inclusion of proptest-related modules which may be used by dependent crates for generation of samples in testing.
2020-09-23 09:53:48 -07:00
#[cfg(feature = "zfuture")]
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
impl<'a, BuildCtx> TzeBuilder<'a, BuildCtx> {
fn new() -> Self {
TzeBuilder {
signers: vec![],
tze_inputs: vec![],
tze_outputs: vec![],
}
Make error a type member of FromPayload trait rather than a type variable. Fix demo test compilation errors.
2020-05-18 19:27:19 -07:00
}
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
fn add_input<WBuilder, W: ToPayload>(
&mut self,
extension_id: u32,
mode: u32,
(outpoint, prevout): (TzeOutPoint, TzeOut),
witness_builder: WBuilder,
) where
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
WBuilder: 'a + FnOnce(&BuildCtx) -> Result<W, Error>,
{
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
self.tze_inputs
.push(TzeIn::new(outpoint, extension_id, mode));
self.signers.push(TzeSigner {
prevout,
builder: Box::new(move |ctx| witness_builder(&ctx).map(|x| x.to_payload())),
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
});
}
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
fn add_output<G: ToPayload>(
&mut self,
extension_id: u32,
value: Amount,
guarded_by: &G,
) -> Result<(), Error> {
if value.is_negative() {
return Err(Error::InvalidAmount);
}
let (mode, payload) = guarded_by.to_payload();
self.tze_outputs.push(TzeOut {
value,
precondition: tze::Precondition {
extension_id,
mode,
payload,
},
});
Ok(())
}
fn value_balance(&self) -> Option<Amount> {
self.signers
.iter()
.map(|s| s.prevout.value)
.sum::<Option<Amount>>()?
- self
.tze_outputs
.iter()
.map(|tzo| tzo.value)
.sum::<Option<Amount>>()?
}
fn build(&self) -> (Vec<TzeIn>, Vec<TzeOut>) {
(self.tze_inputs.clone(), self.tze_outputs.clone())
}
fn create_signatures(self, mtx: &BuildCtx) -> Result<Vec<Vec<u8>>, Error> {
// Create TZE input witnesses
let tzein = self.tze_inputs;
let payloads = self
.signers
.into_iter()
.enumerate()
.map(|(i, tze_in)| {
// The witness builder function should have cached/closed over whatever data was
// necessary for the witness to commit to at the time it was added to the
// transaction builder; here, it then computes those commitments.
let (mode, payload) = (tze_in.builder)(&mtx)?;
let input_mode = tzein[i].witness.mode;
if mode != input_mode {
return Err(Error::TzeWitnessModeMismatch(input_mode, mode));
}
Ok(payload)
})
.collect::<Result<Vec<_>, Error>>()?;
Ok(payloads)
}
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
}
Sapling transaction builder
2018-11-20 05:37:21 -08:00
/// Metadata about a transaction created by a [`Builder`].
Simplify transaction builder tests Requires impl PartialEq for Transaction, which is implemented as a TxId comparison (relying on the invariant that Transaction is immutable).
2019-08-13 07:24:08 -07:00
#[derive(Debug, PartialEq)]
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
pub struct SaplingMetadata {
Sapling transaction builder
2018-11-20 05:37:21 -08:00
spend_indices: Vec<usize>,
output_indices: Vec<usize>,
}
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
impl SaplingMetadata {
Sapling transaction builder
2018-11-20 05:37:21 -08:00
fn new() -> Self {
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
SaplingMetadata {
Sapling transaction builder
2018-11-20 05:37:21 -08:00
spend_indices: vec![],
output_indices: vec![],
}
}
/// Returns the index within the transaction of the [`SpendDescription`] corresponding
/// to the `n`-th call to [`Builder::add_sapling_spend`].
///
/// Note positions are randomized when building transactions for indistinguishability.
/// This means that the transaction consumer cannot assume that e.g. the first spend
/// they added (via the first call to [`Builder::add_sapling_spend`]) is the first
/// [`SpendDescription`] in the transaction.
pub fn spend_index(&self, n: usize) -> Option<usize> {
Address various clippy warnings/errors in zcash_primitives
2019-08-02 03:25:00 -07:00
self.spend_indices.get(n).copied()
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
/// Returns the index within the transaction of the [`OutputDescription`] corresponding
/// to the `n`-th call to [`Builder::add_sapling_output`].
///
/// Note positions are randomized when building transactions for indistinguishability.
/// This means that the transaction consumer cannot assume that e.g. the first output
/// they added (via the first call to [`Builder::add_sapling_output`]) is the first
/// [`OutputDescription`] in the transaction.
pub fn output_index(&self, n: usize) -> Option<usize> {
Address various clippy warnings/errors in zcash_primitives
2019-08-02 03:25:00 -07:00
self.output_indices.get(n).copied()
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
}
Improve documentation of builder::Progress
2021-05-18 05:45:48 -07:00
/// Reports on the progress made by the builder towards building a transaction.
Send builder progress
2021-04-26 10:14:01 -07:00
pub struct Progress {
Improve documentation of builder::Progress
2021-05-18 05:45:48 -07:00
/// The number of steps completed.
Send builder progress
2021-04-26 10:14:01 -07:00
cur: u32,
Improve documentation of builder::Progress
2021-05-18 05:45:48 -07:00
/// The expected total number of steps (as of this progress update), if known.
Send builder progress
2021-04-26 10:14:01 -07:00
end: Option<u32>,
}
impl Progress {
fn new(cur: u32, end: Option<u32>) -> Self {
Self { cur, end }
}
Improve documentation of builder::Progress
2021-05-18 05:45:48 -07:00
/// Returns the number of steps completed so far while building the transaction.
///
/// Note that each step may not be of the same complexity/duration.
Send builder progress
2021-04-26 10:14:01 -07:00
pub fn cur(&self) -> u32 {
self.cur
}
Improve documentation of builder::Progress
2021-05-18 05:45:48 -07:00
/// Returns the total expected number of steps before this transaction will be ready,
/// or `None` if the end is unknown as of this progress update.
///
/// Note that each step may not be of the same complexity/duration.
Send builder progress
2021-04-26 10:14:01 -07:00
pub fn end(&self) -> Option<u32> {
self.end
}
}
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
pub struct SaplingBuilder<P: consensus::Parameters> {
anchor: Option<bls12_381::Scalar>,
value_balance: Amount,
spends: Vec<SpendDescriptionInfo>,
outputs: Vec<SaplingOutput<P>>,
change_address: Option<(OutgoingViewingKey, PaymentAddress)>,
}
impl<P: consensus::Parameters> SaplingBuilder<P> {
fn new() -> Self {
SaplingBuilder {
anchor: None,
value_balance: Amount::zero(),
spends: vec![],
outputs: vec![],
change_address: None,
}
}
pub fn value_balance(&self) -> Amount {
self.value_balance
}
/// Adds a Sapling note to be spent in this transaction.
///
/// Returns an error if the given Merkle path does not have the same anchor as the
/// paths for previous Sapling notes.
fn add_spend<R: RngCore>(
&mut self,
mut rng: R,
extsk: ExtendedSpendingKey,
diversifier: Diversifier,
note: Note,
merkle_path: MerklePath<Node>,
) -> Result<(), Error> {
// Consistency check: all anchors must equal the first one
let cmu = Node::new(note.cmu().into());
if let Some(anchor) = self.anchor {
let path_root: bls12_381::Scalar = merkle_path.root(cmu).into();
if path_root != anchor {
return Err(Error::AnchorMismatch);
}
} else {
self.anchor = Some(merkle_path.root(cmu).into())
}
let alpha = jubjub::Fr::random(&mut rng);
self.value_balance += Amount::from_u64(note.value).map_err(|_| Error::InvalidAmount)?;
self.spends.push(SpendDescriptionInfo {
extsk,
diversifier,
note,
alpha,
merkle_path,
});
Ok(())
}
/// Adds a Sapling address to send funds to.
#[allow(clippy::too_many_arguments)]
pub fn add_output<R: RngCore>(
&mut self,
mut rng: R,
params: &P,
target_height: BlockHeight,
ovk: Option<OutgoingViewingKey>,
to: PaymentAddress,
value: Amount,
memo: Option<MemoBytes>,
) -> Result<(), Error> {
let output =
SaplingOutput::new_internal(params, target_height, &mut rng, ovk, to, value, memo)?;
self.value_balance -= value;
self.outputs.push(output);
Ok(())
}
/// Sets the Sapling address to which any change will be sent.
///
/// By default, change is sent to the Sapling address corresponding to the first note
/// being spent (i.e. the first call to [`Builder::add_sapling_spend`]).
pub fn send_change_to(&mut self, ovk: OutgoingViewingKey, to: PaymentAddress) {
self.change_address = Some((ovk, to));
}
/// Send change to the specified change address. If no change address
/// was set, send change to the first Sapling address given as input.
pub fn get_change_address(&self) -> Result<(OutgoingViewingKey, PaymentAddress), Error> {
if let Some(change_address) = &self.change_address {
Ok(change_address.clone())
} else if !self.spends.is_empty() {
PaymentAddress::from_parts(self.spends[0].diversifier, self.spends[0].note.pk_d)
.map(|addr| (self.spends[0].extsk.expsk.ovk, addr))
.ok_or(Error::InvalidAddress)
} else {
Err(Error::NoChangeAddress)
}
}
pub fn build<Pr: TxProver, R: RngCore>(
&self,
params: &P,
prover: &Pr,
ctx: &mut Pr::SaplingProvingContext,
mut rng: R,
target_height: BlockHeight,
) -> Result<
(
Vec<SpendDescription>,
Vec<OutputDescription>,
SaplingMetadata,
),
Error,
> {
// Record initial positions of spends and outputs
let mut indexed_spends: Vec<_> = self.spends.iter().enumerate().collect();
let mut indexed_outputs: Vec<_> = self
.outputs
.iter()
.enumerate()
.map(|(i, o)| Some((i, o)))
.collect();
// Set up the transaction metadata that will be used to record how
// inputs and outputs are shuffled.
let mut tx_metadata = SaplingMetadata::new();
tx_metadata.spend_indices.resize(indexed_spends.len(), 0);
tx_metadata.output_indices.resize(indexed_outputs.len(), 0);
// Pad Sapling outputs
if !indexed_spends.is_empty() {
while indexed_outputs.len() < MIN_SHIELDED_OUTPUTS {
indexed_outputs.push(None);
}
}
// Randomize order of inputs and outputs
indexed_spends.shuffle(&mut rng);
indexed_outputs.shuffle(&mut rng);
// Create Sapling SpendDescriptions
let spend_descs = if !indexed_spends.is_empty() {
let anchor = self
.anchor
.expect("Sapling anchor must be set if Sapling spends are present.");
indexed_spends
.iter()
.enumerate()
.map(|(i, (pos, spend))| {
let proof_generation_key = spend.extsk.expsk.proof_generation_key();
let nullifier = spend.note.nf(
&proof_generation_key.to_viewing_key(),
spend.merkle_path.position,
);
let (zkproof, cv, rk) = prover
.spend_proof(
ctx,
proof_generation_key,
spend.diversifier,
spend.note.rseed,
spend.alpha,
spend.note.value,
anchor,
spend.merkle_path.clone(),
)
.map_err(|_| Error::SpendProof)?;
// Record the post-randomized spend location
tx_metadata.spend_indices[*pos] = i;
Ok(SpendDescription {
cv,
anchor,
nullifier,
rk,
zkproof,
spend_auth_sig: None,
})
})
.collect::<Result<Vec<_>, Error>>()?
} else {
vec![]
};
// Create Sapling OutputDescriptions
let output_descs = indexed_outputs
.into_iter()
.enumerate()
.map(|(i, output)| {
if let Some((pos, output)) = output {
// Record the post-randomized output location
tx_metadata.output_indices[pos] = i;
output.clone().build_internal(prover, ctx, &mut rng)
} else {
// This is a dummy output
let (dummy_to, dummy_note) = {
let (diversifier, g_d) = {
let mut diversifier;
let g_d;
loop {
let mut d = [0; 11];
rng.fill_bytes(&mut d);
diversifier = Diversifier(d);
if let Some(val) = diversifier.g_d() {
g_d = val;
break;
}
}
(diversifier, g_d)
};
let (pk_d, payment_address) = loop {
let dummy_ivk = jubjub::Fr::random(&mut rng);
let pk_d = g_d * dummy_ivk;
if let Some(addr) = PaymentAddress::from_parts(diversifier, pk_d) {
break (pk_d, addr);
}
};
let rseed = generate_random_rseed_internal(params, target_height, &mut rng);
(
payment_address,
Note {
g_d,
pk_d,
rseed,
value: 0,
},
)
};
let esk = dummy_note.generate_or_derive_esk_internal(&mut rng);
let epk = dummy_note.g_d * esk;
let (zkproof, cv) =
prover.output_proof(ctx, esk, dummy_to, dummy_note.rcm(), dummy_note.value);
let cmu = dummy_note.cmu();
let mut enc_ciphertext = [0u8; 580];
let mut out_ciphertext = [0u8; 80];
rng.fill_bytes(&mut enc_ciphertext[..]);
rng.fill_bytes(&mut out_ciphertext[..]);
OutputDescription {
cv,
cmu,
ephemeral_key: epk.into(),
enc_ciphertext,
out_ciphertext,
zkproof,
}
}
})
.collect();
Ok((spend_descs, output_descs, tx_metadata))
}
fn create_signatures<Pr: TxProver, R: RngCore>(
self,
prover: &Pr,
ctx: &mut Pr::SaplingProvingContext,
rng: &mut R,
sighash_bytes: &[u8; 32],
tx_metadata: &SaplingMetadata,
) -> Result<(Vec<Option<Signature>>, Option<Signature>), Error> {
// Create Sapling spendAuth and binding signatures
let mut spend_sigs = vec![None; self.spends.len()];
for (i, spend) in self.spends.into_iter().enumerate() {
spend_sigs[tx_metadata.spend_indices[i]] = Some(spend_sig_internal(
PrivateKey(spend.extsk.expsk.ask),
spend.alpha,
sighash_bytes,
rng,
));
}
// Add a binding signature if needed
let binding_sig =
if tx_metadata.spend_indices.is_empty() && tx_metadata.output_indices.is_empty() {
None
} else {
Some(
prover
.binding_sig(ctx, self.value_balance, &sighash_bytes)
.map_err(|_| Error::BindingSig)?,
)
};
Ok((spend_sigs, binding_sig))
}
}
Sapling transaction builder
2018-11-20 05:37:21 -08:00
/// Generates a [`Transaction`] from its inputs and outputs.
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
pub struct Builder<'a, P: consensus::Parameters, R: RngCore> {
Remove static determination of network state. In the interest of making the library usable for both testnet and mainnet without recompilation, static resolution of network parameters has been replaced with a parameter passed to the relevant functions. This also moves addres prefix constants into the network parameters.
2020-08-05 13:27:40 -07:00
params: P,
Allow transaction::Builder RNG to be configured
2019-06-12 15:11:51 -07:00
rng: R,
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
target_height: BlockHeight,
expiry_height: BlockHeight,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
fee: Amount,
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
transparent_builder: TransparentBuilder,
sapling_builder: SaplingBuilder<P>,
Use rust feature flagging to allow conditionally enabling TZE-related code. This also uses the test-dependencies feature flag for conditional inclusion of proptest-related modules which may be used by dependent crates for generation of samples in testing.
2020-09-23 09:53:48 -07:00
#[cfg(feature = "zfuture")]
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
tze_builder: TzeBuilder<'a, TransactionData>,
#[cfg(not(feature = "zfuture"))]
tze_builder: PhantomData<&'a ()>,
Builder: Move progress notifier configuration to a builder method This is what builder methods are for :) and it helps to limit the growth of alternate `build` methods.
2021-05-26 13:58:08 -07:00
progress_notifier: Option<Sender<Progress>>,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
impl<'a, P: consensus::Parameters> Builder<'a, P, OsRng> {
Add <P: consensus::Parameters> type parameter to Builder struct
2020-08-05 20:36:02 -07:00
/// Creates a new `Builder` targeted for inclusion in the block with the given height,
/// using default values for general transaction fields and the default OS random.
///
/// # Default values
///
/// The expiry height will be set to the given height plus the default transaction
/// expiry delta (20 blocks).
///
/// The fee will be set to the default fee (0.0001 ZEC).
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
pub fn new(params: P, target_height: BlockHeight) -> Self {
Builder::new_with_rng(params, target_height, OsRng)
Add tests for transaction builder support.
2020-05-27 11:09:59 -07:00
}
Add <P: consensus::Parameters> type parameter to Builder struct
2020-08-05 20:36:02 -07:00
}
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
impl<'a, P: consensus::Parameters, R: RngCore + CryptoRng> Builder<'a, P, R> {
Document transaction builder methods.
2020-09-08 15:53:27 -07:00
/// Creates a new `Builder` targeted for inclusion in the block with the given height
/// and randomness source, using default values for general transaction fields.
///
/// # Default values
///
/// The expiry height will be set to the given height plus the default transaction
/// expiry delta (20 blocks).
///
/// The fee will be set to the default fee (0.0001 ZEC).
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
pub fn new_with_rng(params: P, target_height: BlockHeight, rng: R) -> Builder<'a, P, R> {
Self::new_internal(params, target_height, rng)
Document transaction builder methods.
2020-09-08 15:53:27 -07:00
}
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
}
Document transaction builder methods.
2020-09-08 15:53:27 -07:00
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
impl<'a, P: consensus::Parameters, R: RngCore> Builder<'a, P, R> {
Document transaction builder methods.
2020-09-08 15:53:27 -07:00
/// Common utility function for builder construction.
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
///
/// WARNING: THIS MUST REMAIN PRIVATE AS IT ALLOWS CONSTRUCTION
/// OF BUILDERS WITH NON-CryptoRng RNGs
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
fn new_internal(params: P, target_height: BlockHeight, rng: R) -> Builder<'a, P, R> {
Sapling transaction builder
2018-11-20 05:37:21 -08:00
Builder {
Remove static determination of network state. In the interest of making the library usable for both testnet and mainnet without recompilation, static resolution of network parameters has been replaced with a parameter passed to the relevant functions. This also moves addres prefix constants into the network parameters.
2020-08-05 13:27:40 -07:00
params,
Allow transaction::Builder RNG to be configured
2019-06-12 15:11:51 -07:00
rng,
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
target_height,
expiry_height: target_height + DEFAULT_TX_EXPIRY_DELTA,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
fee: DEFAULT_FEE,
Move transparent transaction builder to an independent module.
2021-05-11 13:17:54 -07:00
transparent_builder: TransparentBuilder::empty(),
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
sapling_builder: SaplingBuilder::new(),
Use rust feature flagging to allow conditionally enabling TZE-related code. This also uses the test-dependencies feature flag for conditional inclusion of proptest-related modules which may be used by dependent crates for generation of samples in testing.
2020-09-23 09:53:48 -07:00
#[cfg(feature = "zfuture")]
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
tze_builder: TzeBuilder::new(),
#[cfg(not(feature = "zfuture"))]
tze_builder: PhantomData,
Builder: Move progress notifier configuration to a builder method This is what builder methods are for :) and it helps to limit the growth of alternate `build` methods.
2021-05-26 13:58:08 -07:00
progress_notifier: None,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
}
/// Adds a Sapling note to be spent in this transaction.
///
Rename CommitmentTreeWitness -> MerklePath
2020-02-07 16:25:24 -08:00
/// Returns an error if the given Merkle path does not have the same anchor as the
/// paths for previous Sapling notes.
Sapling transaction builder
2018-11-20 05:37:21 -08:00
pub fn add_sapling_spend(
&mut self,
extsk: ExtendedSpendingKey,
diversifier: Diversifier,
s/{pairing::bls12_381, zcash_primitives::jubjub}/{bls12_381, jubjub} FINALLY.
2020-07-01 13:26:54 -07:00
note: Note,
Rename CommitmentTreeWitness -> MerklePath
2020-02-07 16:25:24 -08:00
merkle_path: MerklePath<Node>,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
) -> Result<(), Error> {
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
self.sapling_builder
.add_spend(&mut self.rng, extsk, diversifier, note, merkle_path)
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
/// Adds a Sapling address to send funds to.
Add <P: consensus::Parameters> type parameter to Builder struct
2020-08-05 20:36:02 -07:00
pub fn add_sapling_output(
Sapling transaction builder
2018-11-20 05:37:21 -08:00
&mut self,
zcash_primitives: Support ovk = ⊥ in note encryption Closes zcash/librustzcash#259.
2020-08-28 08:12:37 -07:00
ovk: Option<OutgoingViewingKey>,
s/{pairing::bls12_381, zcash_primitives::jubjub}/{bls12_381, jubjub} FINALLY.
2020-07-01 13:26:54 -07:00
to: PaymentAddress,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
value: Amount,
Split memo-handling into MemoBytes struct and Memo enum The MemoBytes struct is a minimal wrapper around the memo bytes, and only imposes the existence of null-padding for shorter memos. The only error case is attempting to construct a memo that is too long. MemoBytes is guaranteed to be round-trip encodable (modulo null padding). The Memo enum implements the additional memo rules defined in ZIP 302, interpreting the contents of a memo (for example, parsing it as text).
2020-10-29 09:48:26 -07:00
memo: Option<MemoBytes>,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
) -> Result<(), Error> {
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
self.sapling_builder.add_output(
Remove static determination of network state. In the interest of making the library usable for both testnet and mainnet without recompilation, static resolution of network parameters has been replaced with a parameter passed to the relevant functions. This also moves addres prefix constants into the network parameters.
2020-08-05 13:27:40 -07:00
&mut self.rng,
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
&self.params,
self.target_height,
Remove static determination of network state. In the interest of making the library usable for both testnet and mainnet without recompilation, static resolution of network parameters has been replaced with a parameter passed to the relevant functions. This also moves addres prefix constants into the network parameters.
2020-08-05 13:27:40 -07:00
ovk,
to,
value,
memo,
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
)
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
transaction::Builder::add_transparent_input()
2019-07-31 08:20:13 -07:00
/// Adds a transparent coin to be spent in this transaction.
#[cfg(feature = "transparent-inputs")]
zcash_primitives: Add feature flags to docs.rs documentation
2020-08-22 22:56:03 -07:00
#[cfg_attr(docsrs, doc(cfg(feature = "transparent-inputs")))]
transaction::Builder::add_transparent_input()
2019-07-31 08:20:13 -07:00
pub fn add_transparent_input(
&mut self,
sk: secp256k1::SecretKey,
utxo: OutPoint,
coin: TxOut,
) -> Result<(), Error> {
Move transparent transaction builder to an independent module.
2021-05-11 13:17:54 -07:00
self.transparent_builder
.add_input(sk, utxo, coin)
.map_err(Error::TransparentBuildError)
transaction::Builder::add_transparent_input()
2019-07-31 08:20:13 -07:00
}
transaction::Builder::add_transparent_output()
2019-05-24 05:32:55 -07:00
/// Adds a transparent address to send funds to.
pub fn add_transparent_output(
&mut self,
to: &TransparentAddress,
value: Amount,
) -> Result<(), Error> {
Move transparent transaction builder to an independent module.
2021-05-11 13:17:54 -07:00
self.transparent_builder
.add_output(to, value)
.map_err(Error::TransparentBuildError)
transaction::Builder::add_transparent_output()
2019-05-24 05:32:55 -07:00
}
Sapling transaction builder
2018-11-20 05:37:21 -08:00
/// Sets the Sapling address to which any change will be sent.
///
/// By default, change is sent to the Sapling address corresponding to the first note
/// being spent (i.e. the first call to [`Builder::add_sapling_spend`]).
s/{pairing::bls12_381, zcash_primitives::jubjub}/{bls12_381, jubjub} FINALLY.
2020-07-01 13:26:54 -07:00
pub fn send_change_to(&mut self, ovk: OutgoingViewingKey, to: PaymentAddress) {
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
self.sapling_builder.send_change_to(ovk, to)
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
Builder: Move progress notifier configuration to a builder method This is what builder methods are for :) and it helps to limit the growth of alternate `build` methods.
2021-05-26 13:58:08 -07:00
/// Sets the notifier channel, where progress of building the transaction is sent.
Sapling transaction builder
2018-11-20 05:37:21 -08:00
///
Builder: Move progress notifier configuration to a builder method This is what builder methods are for :) and it helps to limit the growth of alternate `build` methods.
2021-05-26 13:58:08 -07:00
/// An update is sent after every Spend or Output is computed, and the `u32` sent
/// represents the total steps completed so far. It will eventually send number of
/// spends + outputs. If there's an error building the transaction, the channel is
/// closed.
pub fn with_progress_notifier(&mut self, progress_notifier: Sender<Progress>) {
self.progress_notifier = Some(progress_notifier);
Send builder progress
2021-04-26 10:14:01 -07:00
}
/// Builds a transaction from the configured spends and outputs.
///
/// Upon success, returns a tuple containing the final transaction, and the
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
/// [`SaplingMetadata`] generated during the build process.
Send builder progress
2021-04-26 10:14:01 -07:00
///
/// `consensus_branch_id` must be valid for the block height that this transaction is
/// targeting. An invalid `consensus_branch_id` will *not* result in an error from
/// this function, and instead will generate a transaction that will be rejected by
/// the network.
Builder: Move progress notifier configuration to a builder method This is what builder methods are for :) and it helps to limit the growth of alternate `build` methods.
2021-05-26 13:58:08 -07:00
pub fn build(
Sapling transaction builder
2018-11-20 05:37:21 -08:00
mut self,
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
version: TxVersion,
Create a consensus::BranchId enum for type safety Includes all currently-known consensus branch IDs for the Zcash network.
2019-11-25 07:41:14 -08:00
consensus_branch_id: consensus::BranchId,
Pass &impl TxProver to Builder::build This allows the caller to build multiple transactions with a single proving backend.
2020-02-07 16:37:31 -08:00
prover: &impl TxProver,
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
) -> Result<(Transaction, SaplingMetadata), Error> {
Sapling transaction builder
2018-11-20 05:37:21 -08:00
//
// Consistency checks
//
// Valid change
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
let change = self
.transparent_builder
.value_balance()
.and_then(|ta| ta + self.sapling_builder.value_balance())
.and_then(|b| b - self.fee)
.ok_or(Error::InvalidAmount)?;
Use rust feature flagging to allow conditionally enabling TZE-related code. This also uses the test-dependencies feature flag for conditional inclusion of proptest-related modules which may be used by dependent crates for generation of samples in testing.
2020-09-23 09:53:48 -07:00
#[cfg(feature = "zfuture")]
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
let change = self
.tze_builder
.value_balance()
.and_then(|b| change + b)
.ok_or(Error::InvalidAmount)?;
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
Sapling transaction builder
2018-11-20 05:37:21 -08:00
if change.is_negative() {
Simplify structure of transaction builder errors
2019-08-13 07:10:57 -07:00
return Err(Error::ChangeIsNegative(change));
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
//
// Change output
//
if change.is_positive() {
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
let change_address = self.sapling_builder.get_change_address()?;
zcash_primitives: Support ovk = ⊥ in note encryption Closes zcash/librustzcash#259.
2020-08-28 08:12:37 -07:00
self.add_sapling_output(Some(change_address.0), change_address.1, change, None)?;
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
let (vin, vout) = self.transparent_builder.build();
Sapling transaction builder
2018-11-20 05:37:21 -08:00
let mut ctx = prover.new_sapling_proving_context();
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
let (spend_descs, output_descs, tx_metadata) = self.sapling_builder.build(
&self.params,
prover,
&mut ctx,
&mut self.rng,
self.target_height,
)?;
Sapling transaction builder
2018-11-20 05:37:21 -08:00
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
#[cfg(feature = "zfuture")]
let (tze_inputs, tze_outputs) = self.tze_builder.build();
Send builder progress
2021-04-26 10:14:01 -07:00
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
let mut mtx = TransactionData {
version,
vin,
vout,
#[cfg(feature = "zfuture")]
tze_inputs,
#[cfg(feature = "zfuture")]
tze_outputs,
lock_time: 0,
expiry_height: self.expiry_height,
value_balance: self.sapling_builder.value_balance,
shielded_spends: spend_descs,
shielded_outputs: output_descs,
joinsplits: vec![],
joinsplit_pubkey: None,
joinsplit_sig: None,
binding_sig: None,
};
Sapling transaction builder
2018-11-20 05:37:21 -08:00
//
Apply suggestions from code review Co-authored-by: Daira Hopwood <daira@jacaranda.org>
2020-10-09 15:19:44 -07:00
// Signatures -- everything but the signatures must already have been added.
Sapling transaction builder
2018-11-20 05:37:21 -08:00
//
let mut sighash = [0u8; 32];
sighash.copy_from_slice(&signature_hash_data(
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
&mtx,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
consensus_branch_id,
SIGHASH_ALL,
Add signature hash over TZE data.
2020-06-03 19:39:43 -07:00
SignableInput::Shielded,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
));
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
let (sapling_spend_auth_sigs, sapling_binding_sig) = self
.sapling_builder
.create_signatures(prover, &mut ctx, &mut self.rng, &sighash, &tx_metadata)?;
Add binding signature only if needed
2020-04-03 12:13:39 -07:00
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
for (i, spend_auth_sig) in sapling_spend_auth_sigs.into_iter().enumerate() {
mtx.shielded_spends[i].spend_auth_sig = spend_auth_sig;
}
mtx.binding_sig = sapling_binding_sig;
Sapling transaction builder
2018-11-20 05:37:21 -08:00
Use rust feature flagging to allow conditionally enabling TZE-related code. This also uses the test-dependencies feature flag for conditional inclusion of proptest-related modules which may be used by dependent crates for generation of samples in testing.
2020-09-23 09:53:48 -07:00
#[cfg(feature = "zfuture")]
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
{
// Create TZE input witnesses
let tze_payloads = self.tze_builder.create_signatures(&mtx)?;
for (i, payload) in tze_payloads.into_iter().enumerate() {
mtx.tze_inputs[i].witness.payload = payload;
Ensure that prevout, extension_id & mode data can be signed in builder.
2020-09-09 09:54:18 -07:00
}
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
}
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
#[cfg(feature = "transparent-inputs")]
{
let script_sigs = self
.transparent_builder
.create_signatures(&mtx, consensus_branch_id);
for (i, sig) in script_sigs.into_iter().enumerate() {
mtx.vin[i].script_sig = sig;
}
}
transaction::Builder::add_transparent_input()
2019-07-31 08:20:13 -07:00
Sapling transaction builder
2018-11-20 05:37:21 -08:00
Ok((
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
mtx.freeze().expect("Transaction should be complete"),
Sapling transaction builder
2018-11-20 05:37:21 -08:00
tx_metadata,
))
}
}
Use rust feature flagging to allow conditionally enabling TZE-related code. This also uses the test-dependencies feature flag for conditional inclusion of proptest-related modules which may be used by dependent crates for generation of samples in testing.
2020-09-23 09:53:48 -07:00
#[cfg(feature = "zfuture")]
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
impl<'a, P: consensus::Parameters, R: RngCore + CryptoRng> ExtensionTxBuilder<'a>
for Builder<'a, P, R>
{
type BuildCtx = TransactionData;
type BuildError = Error;
fn add_tze_input<WBuilder, W: ToPayload>(
&mut self,
Change extension_id and mode types to u32
2020-06-03 19:38:05 -07:00
extension_id: u32,
Ensure that prevout, extension_id & mode data can be signed in builder.
2020-09-09 09:54:18 -07:00
mode: u32,
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
prevout: (TzeOutPoint, TzeOut),
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
witness_builder: WBuilder,
) -> Result<(), Self::BuildError>
where
WBuilder: 'a + (FnOnce(&Self::BuildCtx) -> Result<W, Self::BuildError>),
{
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
self.tze_builder
.add_input(extension_id, mode, prevout, witness_builder);
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
Ok(())
}
fn add_tze_output<G: ToPayload>(
&mut self,
Change extension_id and mode types to u32
2020-06-03 19:38:05 -07:00
extension_id: u32,
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
value: Amount,
guarded_by: &G,
) -> Result<(), Self::BuildError> {
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
self.tze_builder.add_output(extension_id, value, guarded_by)
Add transaction-builder suport for TZE-bearing transactions.
2020-05-06 16:52:03 -07:00
}
}
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
#[cfg(any(test, feature = "test-dependencies"))]
impl<'a, P: consensus::Parameters, R: RngCore> Builder<'a, P, R> {
/// Creates a new `Builder` targeted for inclusion in the block with the given height
/// and randomness source, using default values for general transaction fields.
///
/// # Default values
///
/// The expiry height will be set to the given height plus the default transaction
/// expiry delta (20 blocks).
///
/// The fee will be set to the default fee (0.0001 ZEC).
///
/// WARNING: DO NOT USE IN PRODUCTION
pub fn test_only_new_with_rng(params: P, height: BlockHeight, rng: R) -> Builder<'a, P, R> {
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
Self::new_internal(params, height, rng)
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
}
/// Creates a new `Builder` targeted for inclusion in the block with the given height,
/// and randomness source, using default values for general transaction fields
/// and the `ZFUTURE_TX_VERSION` and `ZFUTURE_VERSION_GROUP_ID` version identifiers.
///
/// # Default values
///
/// The expiry height will be set to the given height plus the default transaction
/// expiry delta (20 blocks).
///
/// The fee will be set to the default fee (0.0001 ZEC).
///
/// The transaction will be constructed and serialized according to the
/// NetworkUpgrade::ZFuture rules. This is intended only for use in
/// integration testing of new features.
///
/// WARNING: DO NOT USE IN PRODUCTION
#[cfg(feature = "zfuture")]
pub fn test_only_new_with_rng_zfuture(
params: P,
height: BlockHeight,
rng: R,
) -> Builder<'a, P, R> {
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
Self::new_internal(params, height, rng)
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
}
pub fn mock_build(
self,
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
version: TxVersion,
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
consensus_branch_id: consensus::BranchId,
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
) -> Result<(Transaction, SaplingMetadata), Error> {
self.build(version, consensus_branch_id, &MockTxProver)
Relax RngCore type constraints. The intent of this change is to permit tests to use deterministic random sources, rather than cryptographically strong ones.
2020-10-21 11:37:21 -07:00
}
}
Sapling transaction builder
2018-11-20 05:37:21 -08:00
#[cfg(test)]
mod tests {
use ff::{Field, PrimeField};
update from rand_os to fix warnings
2019-09-28 00:48:43 -07:00
use rand_core::OsRng;
Move Jubjub, Pedersen hash and primitives into zcash_primitives
2019-08-06 02:46:40 -07:00
Sapling transaction builder
2018-11-20 05:37:21 -08:00
use crate::{
Add constants to support static resolution of network parameters.
2020-09-17 10:55:39 -07:00
consensus::{self, Parameters, H0, TEST_NETWORK},
transaction::Builder::add_transparent_output()
2019-05-24 05:32:55 -07:00
legacy::TransparentAddress,
Sapling transaction builder
2018-11-20 05:37:21 -08:00
merkle_tree::{CommitmentTree, IncrementalWitness},
Move sapling-specific primitives into the sapling module.
2021-03-04 13:26:39 -08:00
sapling::{prover::mock::MockTxProver, Node, Rseed},
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
transaction::{
Move transparent transaction builder to an independent module.
2021-05-11 13:17:54 -07:00
components::{
amount::Amount, amount::DEFAULT_FEE, transparent::builder as transparent,
},
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
TxVersion,
},
Sapling transaction builder
2018-11-20 05:37:21 -08:00
zip32::{ExtendedFullViewingKey, ExtendedSpendingKey},
};
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
use super::{Builder, Error, SaplingBuilder, DEFAULT_TX_EXPIRY_DELTA};
Use rust feature flagging to allow conditionally enabling TZE-related code. This also uses the test-dependencies feature flag for conditional inclusion of proptest-related modules which may be used by dependent crates for generation of samples in testing.
2020-09-23 09:53:48 -07:00
#[cfg(feature = "zfuture")]
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
use super::TzeBuilder;
Make error a type member of FromPayload trait rather than a type variable. Fix demo test compilation errors.
2020-05-18 19:27:19 -07:00
Sapling transaction builder
2018-11-20 05:37:21 -08:00
#[test]
fn fails_on_negative_output() {
let extsk = ExtendedSpendingKey::master(&[]);
let extfvk = ExtendedFullViewingKey::from(&extsk);
let ovk = extfvk.fvk.ovk;
let to = extfvk.default_address().unwrap().1;
Add constants to support static resolution of network parameters.
2020-09-17 10:55:39 -07:00
let mut builder = Builder::new(TEST_NETWORK, H0);
Simplify transaction builder tests Requires impl PartialEq for Transaction, which is implemented as a TxId comparison (relying on the invariant that Transaction is immutable).
2019-08-13 07:24:08 -07:00
assert_eq!(
zcash_primitives: Support ovk = ⊥ in note encryption Closes zcash/librustzcash#259.
2020-08-28 08:12:37 -07:00
builder.add_sapling_output(Some(ovk), to, Amount::from_i64(-1).unwrap(), None),
Simplify transaction builder tests Requires impl PartialEq for Transaction, which is implemented as a TxId comparison (relying on the invariant that Transaction is immutable).
2019-08-13 07:24:08 -07:00
Err(Error::InvalidAmount)
);
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
Add binding signature only if needed
2020-04-03 12:13:39 -07:00
#[test]
fn binding_sig_absent_if_no_shielded_spend_or_output() {
Add constants to support static resolution of network parameters.
2020-09-17 10:55:39 -07:00
use crate::consensus::NetworkUpgrade;
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
use crate::transaction::builder::{self, TransparentBuilder};
Add binding signature only if needed
2020-04-03 12:13:39 -07:00
Add constants to support static resolution of network parameters.
2020-09-17 10:55:39 -07:00
let sapling_activation_height = TEST_NETWORK
Remove static determination of network state. In the interest of making the library usable for both testnet and mainnet without recompilation, static resolution of network parameters has been replaced with a parameter passed to the relevant functions. This also moves addres prefix constants into the network parameters.
2020-08-05 13:27:40 -07:00
.activation_height(NetworkUpgrade::Sapling)
.unwrap();
Add activation heights as consts in consensus::Parameters
2020-08-02 22:39:36 -07:00
Add binding signature only if needed
2020-04-03 12:13:39 -07:00
// Create a builder with 0 fee, so we can construct t outputs
Remove static determination of network state. In the interest of making the library usable for both testnet and mainnet without recompilation, static resolution of network parameters has been replaced with a parameter passed to the relevant functions. This also moves addres prefix constants into the network parameters.
2020-08-05 13:27:40 -07:00
let mut builder = builder::Builder {
Add constants to support static resolution of network parameters.
2020-09-17 10:55:39 -07:00
params: TEST_NETWORK,
Add binding signature only if needed
2020-04-03 12:13:39 -07:00
rng: OsRng,
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
target_height: sapling_activation_height,
expiry_height: sapling_activation_height + DEFAULT_TX_EXPIRY_DELTA,
Add binding signature only if needed
2020-04-03 12:13:39 -07:00
fee: Amount::zero(),
Move transparent transaction builder to an independent module.
2021-05-11 13:17:54 -07:00
transparent_builder: TransparentBuilder::empty(),
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
sapling_builder: SaplingBuilder::new(),
Use rust feature flagging to allow conditionally enabling TZE-related code. This also uses the test-dependencies feature flag for conditional inclusion of proptest-related modules which may be used by dependent crates for generation of samples in testing.
2020-09-23 09:53:48 -07:00
#[cfg(feature = "zfuture")]
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
tze_builder: TzeBuilder::new(),
Builder: Move progress notifier configuration to a builder method This is what builder methods are for :) and it helps to limit the growth of alternate `build` methods.
2021-05-26 13:58:08 -07:00
progress_notifier: None,
Add binding signature only if needed
2020-04-03 12:13:39 -07:00
};
// Create a tx with only t output. No binding_sig should be present
builder
.add_transparent_output(&TransparentAddress::PublicKey([0; 20]), Amount::zero())
.unwrap();
let (tx, _) = builder
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
.build(
TxVersion::Sapling,
consensus::BranchId::Sapling,
&MockTxProver,
)
Add binding signature only if needed
2020-04-03 12:13:39 -07:00
.unwrap();
// No binding signature, because only t input and outputs
assert!(tx.binding_sig.is_none());
}
#[test]
fn binding_sig_present_if_shielded_spend() {
let extsk = ExtendedSpendingKey::master(&[]);
let extfvk = ExtendedFullViewingKey::from(&extsk);
let to = extfvk.default_address().unwrap().1;
let mut rng = OsRng;
let note1 = to
s/{pairing::bls12_381, zcash_primitives::jubjub}/{bls12_381, jubjub} FINALLY.
2020-07-01 13:26:54 -07:00
.create_note(50000, Rseed::BeforeZip212(jubjub::Fr::random(&mut rng)))
Add binding signature only if needed
2020-04-03 12:13:39 -07:00
.unwrap();
zcash_primitives: Rename Note::cm to Note::cmu
2020-08-21 10:33:22 -07:00
let cmu1 = Node::new(note1.cmu().to_repr());
Rename CommitmentTree::new -> CommitmentTree::empty
2021-02-04 06:34:41 -08:00
let mut tree = CommitmentTree::empty();
zcash_primitives: Rename Note::cm to Note::cmu
2020-08-21 10:33:22 -07:00
tree.append(cmu1).unwrap();
Add binding signature only if needed
2020-04-03 12:13:39 -07:00
let witness1 = IncrementalWitness::from_tree(&tree);
Add constants to support static resolution of network parameters.
2020-09-17 10:55:39 -07:00
let mut builder = Builder::new(TEST_NETWORK, H0);
Add binding signature only if needed
2020-04-03 12:13:39 -07:00
// Create a tx with a sapling spend. binding_sig should be present
builder
Remove unnecessary clones
2020-10-30 06:27:49 -07:00
.add_sapling_spend(extsk, *to.diversifier(), note1, witness1.path().unwrap())
Add binding signature only if needed
2020-04-03 12:13:39 -07:00
.unwrap();
builder
.add_transparent_output(&TransparentAddress::PublicKey([0; 20]), Amount::zero())
.unwrap();
// Expect a binding signature error, because our inputs aren't valid, but this shows
// that a binding signature was attempted
assert_eq!(
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
builder.build(
TxVersion::Sapling,
consensus::BranchId::Sapling,
&MockTxProver
),
Add binding signature only if needed
2020-04-03 12:13:39 -07:00
Err(Error::BindingSig)
);
}
transaction::Builder::add_transparent_output()
2019-05-24 05:32:55 -07:00
#[test]
fn fails_on_negative_transparent_output() {
Add constants to support static resolution of network parameters.
2020-09-17 10:55:39 -07:00
let mut builder = Builder::new(TEST_NETWORK, H0);
Simplify transaction builder tests Requires impl PartialEq for Transaction, which is implemented as a TxId comparison (relying on the invariant that Transaction is immutable).
2019-08-13 07:24:08 -07:00
assert_eq!(
builder.add_transparent_output(
&TransparentAddress::PublicKey([0; 20]),
Amount::from_i64(-1).unwrap(),
),
Move transparent transaction builder to an independent module.
2021-05-11 13:17:54 -07:00
Err(Error::TransparentBuildError(
transparent::Error::InvalidAmount
))
Simplify transaction builder tests Requires impl PartialEq for Transaction, which is implemented as a TxId comparison (relying on the invariant that Transaction is immutable).
2019-08-13 07:24:08 -07:00
);
transaction::Builder::add_transparent_output()
2019-05-24 05:32:55 -07:00
}
Sapling transaction builder
2018-11-20 05:37:21 -08:00
#[test]
fn fails_on_negative_change() {
let mut rng = OsRng;
// Just use the master key as the ExtendedSpendingKey for this test
let extsk = ExtendedSpendingKey::master(&[]);
// Fails with no inputs or outputs
// 0.0001 t-ZEC fee
{
Add constants to support static resolution of network parameters.
2020-09-17 10:55:39 -07:00
let builder = Builder::new(TEST_NETWORK, H0);
Simplify transaction builder tests Requires impl PartialEq for Transaction, which is implemented as a TxId comparison (relying on the invariant that Transaction is immutable).
2019-08-13 07:24:08 -07:00
assert_eq!(
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
builder.build(
TxVersion::Sapling,
consensus::BranchId::Sapling,
&MockTxProver
),
Make amount addition and subtraction traits use checked operations.
2021-05-11 08:57:28 -07:00
Err(Error::ChangeIsNegative(
(Amount::zero() - DEFAULT_FEE).unwrap()
))
Simplify transaction builder tests Requires impl PartialEq for Transaction, which is implemented as a TxId comparison (relying on the invariant that Transaction is immutable).
2019-08-13 07:24:08 -07:00
);
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
let extfvk = ExtendedFullViewingKey::from(&extsk);
zcash_primitives: Support ovk = ⊥ in note encryption Closes zcash/librustzcash#259.
2020-08-28 08:12:37 -07:00
let ovk = Some(extfvk.fvk.ovk);
Sapling transaction builder
2018-11-20 05:37:21 -08:00
let to = extfvk.default_address().unwrap().1;
// Fail if there is only a Sapling output
Fix tests to account for modified default fees.
2020-11-23 09:41:30 -08:00
// 0.0005 z-ZEC out, 0.00001 t-ZEC fee
Sapling transaction builder
2018-11-20 05:37:21 -08:00
{
Add constants to support static resolution of network parameters.
2020-09-17 10:55:39 -07:00
let mut builder = Builder::new(TEST_NETWORK, H0);
Sapling transaction builder
2018-11-20 05:37:21 -08:00
builder
Remove unnecessary clones
2020-10-30 06:27:49 -07:00
.add_sapling_output(ovk, to.clone(), Amount::from_u64(50000).unwrap(), None)
Sapling transaction builder
2018-11-20 05:37:21 -08:00
.unwrap();
Simplify transaction builder tests Requires impl PartialEq for Transaction, which is implemented as a TxId comparison (relying on the invariant that Transaction is immutable).
2019-08-13 07:24:08 -07:00
assert_eq!(
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
builder.build(
TxVersion::Sapling,
consensus::BranchId::Sapling,
&MockTxProver
),
Fix tests to account for modified default fees.
2020-11-23 09:41:30 -08:00
Err(Error::ChangeIsNegative(
Make amount addition and subtraction traits use checked operations.
2021-05-11 08:57:28 -07:00
(Amount::from_i64(-50000).unwrap() - DEFAULT_FEE).unwrap()
Fix tests to account for modified default fees.
2020-11-23 09:41:30 -08:00
))
Simplify transaction builder tests Requires impl PartialEq for Transaction, which is implemented as a TxId comparison (relying on the invariant that Transaction is immutable).
2019-08-13 07:24:08 -07:00
);
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
transaction::Builder::add_transparent_output()
2019-05-24 05:32:55 -07:00
// Fail if there is only a transparent output
Fix tests to account for modified default fees.
2020-11-23 09:41:30 -08:00
// 0.0005 t-ZEC out, 0.00001 t-ZEC fee
transaction::Builder::add_transparent_output()
2019-05-24 05:32:55 -07:00
{
Add constants to support static resolution of network parameters.
2020-09-17 10:55:39 -07:00
let mut builder = Builder::new(TEST_NETWORK, H0);
transaction::Builder::add_transparent_output()
2019-05-24 05:32:55 -07:00
builder
Make Amount opaque, and use it more This helps to ensure type-safety of values that are required to satisfy zatoshi range bounds.
2019-07-25 14:37:16 -07:00
.add_transparent_output(
&TransparentAddress::PublicKey([0; 20]),
Amount::from_u64(50000).unwrap(),
)
transaction::Builder::add_transparent_output()
2019-05-24 05:32:55 -07:00
.unwrap();
Simplify transaction builder tests Requires impl PartialEq for Transaction, which is implemented as a TxId comparison (relying on the invariant that Transaction is immutable).
2019-08-13 07:24:08 -07:00
assert_eq!(
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
builder.build(
TxVersion::Sapling,
consensus::BranchId::Sapling,
&MockTxProver
),
Fix tests to account for modified default fees.
2020-11-23 09:41:30 -08:00
Err(Error::ChangeIsNegative(
Make amount addition and subtraction traits use checked operations.
2021-05-11 08:57:28 -07:00
(Amount::from_i64(-50000).unwrap() - DEFAULT_FEE).unwrap()
Fix tests to account for modified default fees.
2020-11-23 09:41:30 -08:00
))
Simplify transaction builder tests Requires impl PartialEq for Transaction, which is implemented as a TxId comparison (relying on the invariant that Transaction is immutable).
2019-08-13 07:24:08 -07:00
);
transaction::Builder::add_transparent_output()
2019-05-24 05:32:55 -07:00
}
Sapling transaction builder
2018-11-20 05:37:21 -08:00
let note1 = to
Fix tests to account for modified default fees.
2020-11-23 09:41:30 -08:00
.create_note(50999, Rseed::BeforeZip212(jubjub::Fr::random(&mut rng)))
Sapling transaction builder
2018-11-20 05:37:21 -08:00
.unwrap();
zcash_primitives: Rename Note::cm to Note::cmu
2020-08-21 10:33:22 -07:00
let cmu1 = Node::new(note1.cmu().to_repr());
Rename CommitmentTree::new -> CommitmentTree::empty
2021-02-04 06:34:41 -08:00
let mut tree = CommitmentTree::empty();
zcash_primitives: Rename Note::cm to Note::cmu
2020-08-21 10:33:22 -07:00
tree.append(cmu1).unwrap();
Sapling transaction builder
2018-11-20 05:37:21 -08:00
let mut witness1 = IncrementalWitness::from_tree(&tree);
transaction::Builder::add_transparent_output()
2019-05-24 05:32:55 -07:00
// Fail if there is insufficient input
Fix tests to account for modified default fees.
2020-11-23 09:41:30 -08:00
// 0.0003 z-ZEC out, 0.0002 t-ZEC out, 0.00001 t-ZEC fee, 0.00050999 z-ZEC in
Sapling transaction builder
2018-11-20 05:37:21 -08:00
{
Add constants to support static resolution of network parameters.
2020-09-17 10:55:39 -07:00
let mut builder = Builder::new(TEST_NETWORK, H0);
Sapling transaction builder
2018-11-20 05:37:21 -08:00
builder
.add_sapling_spend(
extsk.clone(),
Make pk_d validity an invariant of PaymentAddress Introduces a PaymentAddress::from_parts constructor, and getters for the diversifier and pk_d fields (which are now private).
2019-08-23 15:08:09 -07:00
*to.diversifier(),
Sapling transaction builder
2018-11-20 05:37:21 -08:00
note1.clone(),
Pass CommitmentTreeWitness directly into Builder::add_sapling_spend This is more likely to be the data that the caller has available, and is all we need now that a CommitmentTreeWitness can compute its root.
2020-02-07 09:31:38 -08:00
witness1.path().unwrap(),
Sapling transaction builder
2018-11-20 05:37:21 -08:00
)
.unwrap();
builder
Remove unnecessary clones
2020-10-30 06:27:49 -07:00
.add_sapling_output(ovk, to.clone(), Amount::from_u64(30000).unwrap(), None)
transaction::Builder::add_transparent_output()
2019-05-24 05:32:55 -07:00
.unwrap();
builder
Make Amount opaque, and use it more This helps to ensure type-safety of values that are required to satisfy zatoshi range bounds.
2019-07-25 14:37:16 -07:00
.add_transparent_output(
&TransparentAddress::PublicKey([0; 20]),
Amount::from_u64(20000).unwrap(),
)
Sapling transaction builder
2018-11-20 05:37:21 -08:00
.unwrap();
Simplify transaction builder tests Requires impl PartialEq for Transaction, which is implemented as a TxId comparison (relying on the invariant that Transaction is immutable).
2019-08-13 07:24:08 -07:00
assert_eq!(
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
builder.build(
TxVersion::Sapling,
consensus::BranchId::Sapling,
&MockTxProver
),
Simplify transaction builder tests Requires impl PartialEq for Transaction, which is implemented as a TxId comparison (relying on the invariant that Transaction is immutable).
2019-08-13 07:24:08 -07:00
Err(Error::ChangeIsNegative(Amount::from_i64(-1).unwrap()))
);
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
Add enum Rseed<E::Fs> to Note struct
2020-07-29 21:36:12 -07:00
let note2 = to
s/{pairing::bls12_381, zcash_primitives::jubjub}/{bls12_381, jubjub} FINALLY.
2020-07-01 13:26:54 -07:00
.create_note(1, Rseed::BeforeZip212(jubjub::Fr::random(&mut rng)))
Add enum Rseed<E::Fs> to Note struct
2020-07-29 21:36:12 -07:00
.unwrap();
zcash_primitives: Rename Note::cm to Note::cmu
2020-08-21 10:33:22 -07:00
let cmu2 = Node::new(note2.cmu().to_repr());
tree.append(cmu2).unwrap();
witness1.append(cmu2).unwrap();
Sapling transaction builder
2018-11-20 05:37:21 -08:00
let witness2 = IncrementalWitness::from_tree(&tree);
// Succeeds if there is sufficient input
transaction::Builder::add_transparent_output()
2019-05-24 05:32:55 -07:00
// 0.0003 z-ZEC out, 0.0002 t-ZEC out, 0.0001 t-ZEC fee, 0.0006 z-ZEC in
Sapling transaction builder
2018-11-20 05:37:21 -08:00
//
// (Still fails because we are using a MockTxProver which doesn't correctly
// compute bindingSig.)
{
Add constants to support static resolution of network parameters.
2020-09-17 10:55:39 -07:00
let mut builder = Builder::new(TEST_NETWORK, H0);
Sapling transaction builder
2018-11-20 05:37:21 -08:00
builder
Pass CommitmentTreeWitness directly into Builder::add_sapling_spend This is more likely to be the data that the caller has available, and is all we need now that a CommitmentTreeWitness can compute its root.
2020-02-07 09:31:38 -08:00
.add_sapling_spend(
extsk.clone(),
*to.diversifier(),
note1,
witness1.path().unwrap(),
)
Sapling transaction builder
2018-11-20 05:37:21 -08:00
.unwrap();
builder
Pass CommitmentTreeWitness directly into Builder::add_sapling_spend This is more likely to be the data that the caller has available, and is all we need now that a CommitmentTreeWitness can compute its root.
2020-02-07 09:31:38 -08:00
.add_sapling_spend(extsk, *to.diversifier(), note2, witness2.path().unwrap())
Sapling transaction builder
2018-11-20 05:37:21 -08:00
.unwrap();
builder
Add <P: consensus::Parameters> type parameter to Builder struct
2020-08-05 20:36:02 -07:00
.add_sapling_output(ovk, to, Amount::from_u64(30000).unwrap(), None)
transaction::Builder::add_transparent_output()
2019-05-24 05:32:55 -07:00
.unwrap();
builder
Make Amount opaque, and use it more This helps to ensure type-safety of values that are required to satisfy zatoshi range bounds.
2019-07-25 14:37:16 -07:00
.add_transparent_output(
&TransparentAddress::PublicKey([0; 20]),
Amount::from_u64(20000).unwrap(),
)
Sapling transaction builder
2018-11-20 05:37:21 -08:00
.unwrap();
Create a consensus::BranchId enum for type safety Includes all currently-known consensus branch IDs for the Zcash network.
2019-11-25 07:41:14 -08:00
assert_eq!(
Refactor transaction builder to create separate builders for each section.
2021-04-01 13:08:17 -07:00
builder.build(
TxVersion::Sapling,
consensus::BranchId::Sapling,
&MockTxProver
),
Create a consensus::BranchId enum for type safety Includes all currently-known consensus branch IDs for the Zcash network.
2019-11-25 07:41:14 -08:00
Err(Error::BindingSig)
)
Sapling transaction builder
2018-11-20 05:37:21 -08:00
}
}
}