From 6fb0fc9ee537b519a4145a3c3f781830e136cfe4 Mon Sep 17 00:00:00 2001 From: arkadiuszos4chain <135072995+arkadiuszos4chain@users.noreply.github.com> Date: Wed, 15 Nov 2023 13:30:50 +0100 Subject: [PATCH] fix(BUX-250): fix decode;add spv and decode tests for corrupted/invalid beef (#45) * set valid package version number --- client_test.go | 2 +- definitions.go | 2 +- p2p_beef_tx.go | 36 +++++++++++-------- p2p_beef_tx_test.go | 64 ++++++++++++++++++++++++++-------- p2p_spv.go | 2 +- p2p_spv_test.go | 84 +++++++++++++++++++++++++++++++++++++++++++++ 6 files changed, 158 insertions(+), 32 deletions(-) create mode 100644 p2p_spv_test.go diff --git a/client_test.go b/client_test.go index 90daa28..4162a16 100644 --- a/client_test.go +++ b/client_test.go @@ -212,7 +212,7 @@ func ExampleNewClient() { return } fmt.Printf("loaded client: %s", client.GetOptions().userAgent) - // Output:loaded client: go-paymail: v0.9.3 + // Output:loaded client: go-paymail: v0.7.2 } // BenchmarkNewClient benchmarks the method NewClient() diff --git a/definitions.go b/definitions.go index e6b4b02..62fe10c 100644 --- a/definitions.go +++ b/definitions.go @@ -18,7 +18,7 @@ const ( defaultSSLTimeout = 10 * time.Second // Default timeout in seconds defaultUserAgent = "go-paymail: " + version // Default user agent defaultNetwork = byte(Mainnet) // Default network - version = "v0.9.3" // Go-Paymail version + version = "v0.7.2" // Go-Paymail version ) // Public defaults for paymail specs diff --git a/p2p_beef_tx.go b/p2p_beef_tx.go index eab05e5..43c15a4 100644 --- a/p2p_beef_tx.go +++ b/p2p_beef_tx.go @@ -22,6 +22,7 @@ const ( hashBytesCount = 32 markerBytesCount = 2 versionBytesCount = 2 + maxTreeHeight = 64 ) type TxData struct { @@ -71,10 +72,6 @@ func DecodeBEEF(beefHex string) (*DecodedBEEF, error) { return nil, err } - if len(transactions) < 2 { - return nil, errors.New("not enough transactions provided to decode BEEF") - } - // get the last transaction as the processed transaction - it should be the last one because of khan's ordering processedTx := transactions[len(transactions)-1] transactions = transactions[:len(transactions)-1] @@ -91,17 +88,29 @@ func decodeBUMPs(beefBytes []byte) ([]BUMP, []byte, error) { return nil, nil, errors.New("cannot decode BUMP - no bytes provided") } - bumps := make([]BUMP, 0) nBump, bytesUsed := bt.NewVarIntFromBytes(beefBytes) + + if nBump == 0 { + return nil, nil, errors.New("invalid BEEF- lack of BUMPs") + } + beefBytes = beefBytes[bytesUsed:] + bumps := make([]BUMP, 0, int(nBump)) for i := 0; i < int(nBump); i++ { if len(beefBytes) == 0 { return nil, nil, errors.New("insufficient bytes to extract BUMP blockHeight") } blockHeight, bytesUsed := bt.NewVarIntFromBytes(beefBytes) beefBytes = beefBytes[bytesUsed:] - bumpPaths, remainingBytes, err := decodeBUMPPathsFromStream(beefBytes) + + treeHeight := beefBytes[0] + if int(treeHeight) > maxTreeHeight { + return nil, nil, fmt.Errorf("invalid BEEF - treeHeight cannot be grater than %d", maxTreeHeight) + } + beefBytes = beefBytes[1:] + + bumpPaths, remainingBytes, err := decodeBUMPPathsFromStream(int(treeHeight), beefBytes) if err != nil { return nil, nil, err } @@ -118,16 +127,10 @@ func decodeBUMPs(beefBytes []byte) ([]BUMP, []byte, error) { return bumps, beefBytes, nil } -func decodeBUMPPathsFromStream(hexBytes []byte) ([][]BUMPLeaf, []byte, error) { - if len(hexBytes) == 0 { - return nil, nil, errors.New("cannot decode BUMP paths from stream - no bytes provided") - } - - treeHeight := hexBytes[0] - hexBytes = hexBytes[1:] +func decodeBUMPPathsFromStream(treeHeight int, hexBytes []byte) ([][]BUMPLeaf, []byte, error) { bumpPaths := make([][]BUMPLeaf, 0) - for i := 0; i < int(treeHeight); i++ { + for i := 0; i < treeHeight; i++ { if len(hexBytes) == 0 { return nil, nil, errors.New("cannot decode BUMP paths number of leaves from stream - no bytes provided") } @@ -196,6 +199,11 @@ func decodeBUMPLevel(nLeaves bt.VarInt, hexBytes []byte) ([]BUMPLeaf, []byte, er func decodeTransactionsWithPathIndexes(bytes []byte) ([]*TxData, error) { nTransactions, offset := bt.NewVarIntFromBytes(bytes) + + if nTransactions < 2 { + return nil, errors.New("invalid BEEF- not enough transactions provided to decode BEEF") + } + bytes = bytes[offset:] transactions := make([]*TxData, 0, int(nTransactions)) diff --git a/p2p_beef_tx_test.go b/p2p_beef_tx_test.go index 4289ed1..4d5aaa9 100644 --- a/p2p_beef_tx_test.go +++ b/p2p_beef_tx_test.go @@ -8,7 +8,6 @@ import ( "github.com/libsv/go-bt/v2" "github.com/libsv/go-bt/v2/bscript" "github.com/stretchr/testify/assert" - "github.com/stretchr/testify/require" ) // Mock implementation of a service provider @@ -168,12 +167,6 @@ func TestDecodeBEEF_DecodeBEEF_HandlingErrors(t *testing.T) { expectedDecodedBEEF: nil, expectedError: errors.New("insufficient bytes to extract BUMP blockHeight"), }, - { - name: "unable to decode BUMP tree height - proper BEEF marker, number of bumps and block height", - hexStream: "0100beef01fe8a6a0c00", - expectedDecodedBEEF: nil, - expectedError: errors.New("cannot decode BUMP paths from stream - no bytes provided"), - }, { name: "unable to decode BUMP number of leaves - proper BEEF marker, number of bumps, block height and tree height but end of stream at this point", hexStream: "0100beef01fe8a6a0c000c", @@ -238,15 +231,56 @@ func TestDecodeBEEF_DecodeBEEF_HandlingErrors(t *testing.T) { } } -// TestDecodingBeef will test methods on the DecodedBEEF struct -func TestDecodedBeef(t *testing.T) { +func TestDecodeBEEF_InvalidBeef_RetunrError(t *testing.T) { + const rawTx = "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" + const emptyBumps = "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" + const withoutBumps = "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" + const withoutParents = "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" + const withBumpTreeHeightEq65 = "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" + + tcs := []struct { + name string + beef string + expectedError error + }{ + { + name: "DecodeBEEF - rawTx", + beef: rawTx, + expectedError: errors.New("invalid format of transaction, BEEF marker not found"), + }, + { + name: "DecodeBEEF - empty BUMPs", + beef: emptyBumps, + expectedError: errors.New("invalid BEEF- lack of BUMPs"), + }, + { + name: "DecodeBEEF - without BUMPs", + beef: withoutBumps, + expectedError: errors.New("invalid BEEF- lack of BUMPs"), + }, + { + name: "DecodeBEEF - without input parent transactions", + beef: withoutParents, + expectedError: errors.New("invalid BEEF- not enough transactions provided to decode BEEF"), + }, + { + name: "DecodeBEEF - with a bump tree higher than 64", + beef: withBumpTreeHeightEq65, + expectedError: errors.New("invalid BEEF - treeHeight cannot be grater than 64"), + }, + } + t.Parallel() + for _, tc := range tcs { + t.Run(tc.name, func(t *testing.T) { + // given - const validBeefHex = "" - validDecodedBeef, err := DecodeBEEF(validBeefHex) - require.Nil(t, err) + // when + result, err := DecodeBEEF(tc.beef) - t.Run("SPV on valid beef", func(t *testing.T) { - require.Nil(t, ExecuteSimplifiedPaymentVerification(validDecodedBeef, new(mockServiceProvider))) - }) + // then + assert.Equal(t, tc.expectedError, err, "expected error %v, but got %v", tc.expectedError, err) + assert.Nil(t, result, "expected nil result, but got %v", result) + }) + } } diff --git a/p2p_spv.go b/p2p_spv.go index 98d108e..2ecba08 100644 --- a/p2p_spv.go +++ b/p2p_spv.go @@ -109,7 +109,7 @@ func validateLockTime(dBeef *DecodedBEEF) error { } } } else { - return errors.New("nexpected transaction with nLockTime") + return errors.New("unexpected transaction with nLockTime") } return nil } diff --git a/p2p_spv_test.go b/p2p_spv_test.go new file mode 100644 index 0000000..abfb04f --- /dev/null +++ b/p2p_spv_test.go @@ -0,0 +1,84 @@ +package paymail + +import ( + "errors" + "testing" + + "github.com/stretchr/testify/require" +) + +func TestExecuteSimplifiedPaymentVerification_ValidTransaction_Success(t *testing.T) { + t.Parallel() + + const validBeefHex = "" + validDecodedBeef, err := DecodeBEEF(validBeefHex) + require.Nil(t, err) + + t.Run("SPV on valid beef", func(t *testing.T) { + require.Nil(t, ExecuteSimplifiedPaymentVerification(validDecodedBeef, new(mockServiceProvider))) + }) +} + +func TestExecuteSimplifiedPaymentVerification_CorruptedTransaction_ReturnError(t *testing.T) { + t.Parallel() + + const alreadySpended = "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" + const someoneElse = "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" + const tooMuch = "0100beef01fe4e6d0c001002fd9c67028ae36502fdc82837319362c488fb9cb978e064daf600bbfc48389663fc5c160cfd9d6700db1332728830a58c83a5970dcd111a575a585b43b0492361ea8082f41668f8bd01fdcf3300e568706954aae516ef6df7b5db7828771a1f3fcf1b6d65389ec8be8c46057a3c01fde6190001a6028d13cc988f55c8765e3ffcdcfc7d5185a8ebd68709c0adbe37b528557b01fdf20c001cc64f09a217e1971cabe751b925f246e3c2a8e145c49be7b831eaea3e064d7501fd7806009ccf122626a20cdb054877ef3f8ae2d0503bb7a8704fdb6295b3001b5e8876a101fd3d0300aeea966733175ff60b55bc77edcb83c0fce3453329f51195e5cbc7a874ee47ad01fd9f0100f67f50b53d73ffd6e84c02ee1903074b9a5b2ac64c508f7f26349b73cca9d7e901ce006ce74c7beed0c61c50dda8b578f0c0dc5a393e1f8758af2fb65edf483afcaa68016600e32475e17bdd141d62524d0005989dd1db6ca92c6af70791b0e4802be4c5c8c1013200b88162f494f26cc3a1a4a7dcf2829a295064e93b3dbb2f72e21a73522869277a011800a938d3f80dd25b6a3a80e450403bf7d62a1068e2e4b13f0656c83f764c55bb77010d006feac6e4fea41c37c508b5bfdc00d582f6e462e6754b338c95b448df37bd342c010700bf5448356be23b2b9afe53d00cee047065bbc16d0bbcc5f80aa8c1b509e45678010200c2e37431a437ee311a737aecd3caae1213db353847f33792fd539e380bdb4d440100005d5aef298770e2702448af2ce014f8bfcded5896df5006a44b5f1b6020007aeb01010091484f513003fcdb25f336b9b56dafcb05fbc739593ab573a2c6516b344ca5320201000000027b0a1b12c7c9e48015e78d3a08a4d62e439387df7e0d7a810ebd4af37661daaa000000006a47304402207d972759afba7c0ffa6cfbbf39a31c2aeede1dae28d8841db56c6dd1197d56a20220076a390948c235ba8e72b8e43a7b4d4119f1a81a77032aa6e7b7a51be5e13845412103f78ec31cf94ca8d75fb1333ad9fc884e2d489422034a1efc9d66a3b72eddca0fffffffff7f36874f858fb43ffcf4f9e3047825619bad0e92d4b9ad4ba5111d1101cbddfe010000006a473044022043f048043d56eb6f75024808b78f18808b7ab45609e4c4c319e3a27f8246fc3002204b67766b62f58bf6f30ea608eaba76b8524ed49f67a90f80ac08a9b96a6922cd41210254a583c1c51a06e10fab79ddf922915da5f5c1791ef87739f40cb68638397248ffffffff03e8030000000000001976a914b08f70bc5010fb026de018f19e7792385a146b4a88acf3010000000000001976a9147d48635f889372c3da12d75ce246c59f4ab907ed88acf7000000000000001976a914b8fbd58685b6920d8f9a8f1b274d8696708b51b088ac00000000010001000000018ae36502fdc82837319362c488fb9cb978e064daf600bbfc48389663fc5c160c000000006b483045022100e47fbd96b59e2c22be273dcacea74a4be568b3e61da7eddddb6ce43d459c4cf202201a580f3d9442d5dce3f2ced03256ca147bcd230975a6067954e22415715f4490412102b0c8980f5d2cab77c92c68ac46442feba163a9d306913f6a34911fc618c3c4e7ffffffff0188130000000000001976a9148a8c4546a95e6fc8d18076a9980d59fd882b4e6988ac0000000000" + const nlockTime = "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" + const nlockNseq = "0100beef01fe4e6d0c001002fd9c67028ae36502fdc82837319362c488fb9cb978e064daf600bbfc48389663fc5c160cfd9d6700db1332728830a58c83a5970dcd111a575a585b43b0492361ea8082f41668f8bd01fdcf3300e568706954aae516ef6df7b5db7828771a1f3fcf1b6d65389ec8be8c46057a3c01fde6190001a6028d13cc988f55c8765e3ffcdcfc7d5185a8ebd68709c0adbe37b528557b01fdf20c001cc64f09a217e1971cabe751b925f246e3c2a8e145c49be7b831eaea3e064d7501fd7806009ccf122626a20cdb054877ef3f8ae2d0503bb7a8704fdb6295b3001b5e8876a101fd3d0300aeea966733175ff60b55bc77edcb83c0fce3453329f51195e5cbc7a874ee47ad01fd9f0100f67f50b53d73ffd6e84c02ee1903074b9a5b2ac64c508f7f26349b73cca9d7e901ce006ce74c7beed0c61c50dda8b578f0c0dc5a393e1f8758af2fb65edf483afcaa68016600e32475e17bdd141d62524d0005989dd1db6ca92c6af70791b0e4802be4c5c8c1013200b88162f494f26cc3a1a4a7dcf2829a295064e93b3dbb2f72e21a73522869277a011800a938d3f80dd25b6a3a80e450403bf7d62a1068e2e4b13f0656c83f764c55bb77010d006feac6e4fea41c37c508b5bfdc00d582f6e462e6754b338c95b448df37bd342c010700bf5448356be23b2b9afe53d00cee047065bbc16d0bbcc5f80aa8c1b509e45678010200c2e37431a437ee311a737aecd3caae1213db353847f33792fd539e380bdb4d440100005d5aef298770e2702448af2ce014f8bfcded5896df5006a44b5f1b6020007aeb01010091484f513003fcdb25f336b9b56dafcb05fbc739593ab573a2c6516b344ca5320201000000027b0a1b12c7c9e48015e78d3a08a4d62e439387df7e0d7a810ebd4af37661daaa000000006a47304402207d972759afba7c0ffa6cfbbf39a31c2aeede1dae28d8841db56c6dd1197d56a20220076a390948c235ba8e72b8e43a7b4d4119f1a81a77032aa6e7b7a51be5e13845412103f78ec31cf94ca8d75fb1333ad9fc884e2d489422034a1efc9d66a3b72eddca0fffffffff7f36874f858fb43ffcf4f9e3047825619bad0e92d4b9ad4ba5111d1101cbddfe010000006a473044022043f048043d56eb6f75024808b78f18808b7ab45609e4c4c319e3a27f8246fc3002204b67766b62f58bf6f30ea608eaba76b8524ed49f67a90f80ac08a9b96a6922cd41210254a583c1c51a06e10fab79ddf922915da5f5c1791ef87739f40cb68638397248ffffffff03e8030000000000001976a914b08f70bc5010fb026de018f19e7792385a146b4a88acf3010000000000001976a9147d48635f889372c3da12d75ce246c59f4ab907ed88acf7000000000000001976a914b8fbd58685b6920d8f9a8f1b274d8696708b51b088ac00000000010001000000018ae36502fdc82837319362c488fb9cb978e064daf600bbfc48389663fc5c160c000000006b483045022100e3da33b9f50ee8c4a2383d92bbfc9cc19367f1c227a8b7c08d11eecfc8ec01f702202ba54cdbf766dfd314c87e29557d18db2c451502a6a23acafa1c970b816f431c412102b0c8980f5d2cab77c92c68ac46442feba163a9d306913f6a34911fc618c3c4e70f27000001c8000000000000001976a9148a8c4546a95e6fc8d18076a9980d59fd882b4e6988ac9f86010000" + const nseq = "0100beef01fe4e6d0c001002fd9c67028ae36502fdc82837319362c488fb9cb978e064daf600bbfc48389663fc5c160cfd9d6700db1332728830a58c83a5970dcd111a575a585b43b0492361ea8082f41668f8bd01fdcf3300e568706954aae516ef6df7b5db7828771a1f3fcf1b6d65389ec8be8c46057a3c01fde6190001a6028d13cc988f55c8765e3ffcdcfc7d5185a8ebd68709c0adbe37b528557b01fdf20c001cc64f09a217e1971cabe751b925f246e3c2a8e145c49be7b831eaea3e064d7501fd7806009ccf122626a20cdb054877ef3f8ae2d0503bb7a8704fdb6295b3001b5e8876a101fd3d0300aeea966733175ff60b55bc77edcb83c0fce3453329f51195e5cbc7a874ee47ad01fd9f0100f67f50b53d73ffd6e84c02ee1903074b9a5b2ac64c508f7f26349b73cca9d7e901ce006ce74c7beed0c61c50dda8b578f0c0dc5a393e1f8758af2fb65edf483afcaa68016600e32475e17bdd141d62524d0005989dd1db6ca92c6af70791b0e4802be4c5c8c1013200b88162f494f26cc3a1a4a7dcf2829a295064e93b3dbb2f72e21a73522869277a011800a938d3f80dd25b6a3a80e450403bf7d62a1068e2e4b13f0656c83f764c55bb77010d006feac6e4fea41c37c508b5bfdc00d582f6e462e6754b338c95b448df37bd342c010700bf5448356be23b2b9afe53d00cee047065bbc16d0bbcc5f80aa8c1b509e45678010200c2e37431a437ee311a737aecd3caae1213db353847f33792fd539e380bdb4d440100005d5aef298770e2702448af2ce014f8bfcded5896df5006a44b5f1b6020007aeb01010091484f513003fcdb25f336b9b56dafcb05fbc739593ab573a2c6516b344ca5320201000000027b0a1b12c7c9e48015e78d3a08a4d62e439387df7e0d7a810ebd4af37661daaa000000006a47304402207d972759afba7c0ffa6cfbbf39a31c2aeede1dae28d8841db56c6dd1197d56a20220076a390948c235ba8e72b8e43a7b4d4119f1a81a77032aa6e7b7a51be5e13845412103f78ec31cf94ca8d75fb1333ad9fc884e2d489422034a1efc9d66a3b72eddca0fffffffff7f36874f858fb43ffcf4f9e3047825619bad0e92d4b9ad4ba5111d1101cbddfe010000006a473044022043f048043d56eb6f75024808b78f18808b7ab45609e4c4c319e3a27f8246fc3002204b67766b62f58bf6f30ea608eaba76b8524ed49f67a90f80ac08a9b96a6922cd41210254a583c1c51a06e10fab79ddf922915da5f5c1791ef87739f40cb68638397248ffffffff03e8030000000000001976a914b08f70bc5010fb026de018f19e7792385a146b4a88acf3010000000000001976a9147d48635f889372c3da12d75ce246c59f4ab907ed88acf7000000000000001976a914b8fbd58685b6920d8f9a8f1b274d8696708b51b088ac00000000010001000000018ae36502fdc82837319362c488fb9cb978e064daf600bbfc48389663fc5c160c000000006b483045022100bcae2985c92e421e25b271d565398bf0fe0ef870d62d4945a1589933ad9f0af102207f9fd4ad14ac0c5507ca317e64231b9ba1f2de1e8a7b13520cccee3e5f0650e4412102b0c8980f5d2cab77c92c68ac46442feba163a9d306913f6a34911fc618c3c4e70f27000001c8000000000000001976a9148a8c4546a95e6fc8d18076a9980d59fd882b4e6988ac0000000000" + + tcs := []struct { + name string + beef string + expectedError error + }{ + { + name: "SPV on already spended UTXOs", + beef: alreadySpended, + expectedError: errors.New("invalid script"), + }, + { + name: "SPV on someone else UTXOs", + beef: someoneElse, + expectedError: errors.New("invalid script"), + }, + { + name: "SPV on trying to spend more satoshis in outputs then in inputs", + beef: tooMuch, + expectedError: errors.New("invalid input and output sum, outputs can not be larger than inputs"), + }, + { + name: "SPV on unsupported LockTime", + beef: nlockTime, + expectedError: errors.New("unexpected transaction with nLockTime"), + }, + { + name: "SPV on unsupported LockTime and unsupported Sequence", + beef: nlockNseq, + expectedError: errors.New("unexpected transaction with nLockTime"), + }, + { + name: "SPV on supported LockTime but unsupported Sequence", + beef: nseq, + expectedError: errors.New("unexpected transaction with nSequence"), + }, + } + + for _, tc := range tcs { + t.Run(tc.name, func(t *testing.T) { + // given + validDecodedBeef, err := DecodeBEEF(tc.beef) + require.Nil(t, err) + + //when + err = ExecuteSimplifiedPaymentVerification(validDecodedBeef, new(mockServiceProvider)) + require.NotNil(t, err) + + //then + require.Equal(t, tc.expectedError, err) + }) + } + +}