diff --git a/crates/bitcoin/examples/run-proof.rs b/crates/bitcoin/examples/run-proof.rs index f0a6ff043f..b880721a65 100644 --- a/crates/bitcoin/examples/run-proof.rs +++ b/crates/bitcoin/examples/run-proof.rs @@ -1,6 +1,9 @@ extern crate bitcoin; -use bitcoin::merkle::MerkleProof; +use bitcoin::{ + merkle::{MerkleProof, PartialTransactionProof}, + parser::parse_transaction, +}; // Proving that the transaction // 8d30eb0f3e65b8d8a9f26f6f73fc5aafa5c0372f9bb38aa38dd4c9dd1933e090 @@ -13,7 +16,17 @@ const PROOF_HEX: &str = "010000006fd2c5a8fac33dbe89bb2a2947a73eed2afc3b1d4f88694 fn main() { let raw_proof = hex::decode(PROOF_HEX).unwrap(); let proof = MerkleProof::parse(&raw_proof).unwrap(); - let result = proof.verify_proof().unwrap(); + let tx_hex = "010000000168a59c95a89ed5e9af00e90a7823156b02b7811000c63170bb2440d8db6a1869000000008a473044022050c32cf6cd888178268701a636b189dc3f026ee3ebd230fd77018e54044aac77022055aa7fa73c524dd4f0be02694683a21eb03d5d2f2c519d7dc7110b742c417517014104aa5c77986a87b93b03d949013e629601b6dbdbd5fc09f3bef9263b64b3c38d79d443fafa2fbf422a203fe433adf6e071f3172a53747739ce72c640fe7e514981ffffffff0140420f00000000001976a91449cf380abdb86449efc694988bf0f447739f73cd88ac00000000"; + let raw_tx = hex::decode(tx_hex).unwrap(); + let transaction = parse_transaction(&raw_tx).unwrap(); + + let unchecked_proof = PartialTransactionProof { + transaction, + tx_encoded_len: raw_tx.len() as u32, + merkle_proof: proof.clone(), + }; + + let result = unchecked_proof.verify_proof().unwrap(); println!( "proof: transactions count = {}, hash count = {}, tree height = {},\nmerkle root = {:?}, hashes count = {}, flags={:?},\ncomputed merkle root = {}, position = {}", proof.transactions_count, diff --git a/crates/bitcoin/src/error.rs b/crates/bitcoin/src/error.rs index 2fa5fd5edb..4efca6e89a 100644 --- a/crates/bitcoin/src/error.rs +++ b/crates/bitcoin/src/error.rs @@ -20,4 +20,5 @@ pub enum Error { ArithmeticUnderflow, InvalidCompact, BoundExceeded, + InvalidTxid, } diff --git a/crates/bitcoin/src/formatter.rs b/crates/bitcoin/src/formatter.rs index b64a9a15ae..4ac0996444 100644 --- a/crates/bitcoin/src/formatter.rs +++ b/crates/bitcoin/src/formatter.rs @@ -3,8 +3,8 @@ use sp_std::{prelude::*, vec, vec::Vec}; use crate::{merkle::MerkleProof, script::*, types::*, Error, GetCompact}; -const WITNESS_FLAG: u8 = 0x01; -const WITNESS_MARKER: u8 = 0x00; +pub(crate) const WITNESS_FLAG: u8 = 0x01; +pub(crate) const WITNESS_MARKER: u8 = 0x00; pub trait Writer { fn write(&mut self, buf: &[u8]) -> Result<(), Error>; @@ -139,9 +139,16 @@ impl TryFormat for TransactionInput { }; previous_hash.try_format(w)?; previous_index.try_format(w)?; - CompactUint::from_usize(self.script.len()).try_format(w)?; + if let TransactionInputSource::Coinbase(Some(height)) = self.source { - Script::height(height).as_bytes().try_format(w)?; + let height_bytes = Script::height(height); + // account for the height in version 2 blocks + let script_len = self.script.len().saturating_add(height_bytes.len()); + + CompactUint::from_usize(script_len).try_format(w)?; + height_bytes.as_bytes().try_format(w)?; + } else { + CompactUint::from_usize(self.script.len()).try_format(w)?; } w.write(&self.script)?; // we already formatted the length self.sequence.try_format(w)?; diff --git a/crates/bitcoin/src/merkle.rs b/crates/bitcoin/src/merkle.rs index e516a05a0f..9923006389 100644 --- a/crates/bitcoin/src/merkle.rs +++ b/crates/bitcoin/src/merkle.rs @@ -6,7 +6,7 @@ use mocktopus::macros::mockable; use crate::{ parser::BytesParser, - types::{BlockHeader, CompactUint, H256Le}, + types::{BlockHeader, CompactUint, H256Le, Transaction}, utils::hash256_merkle_step, Error, }; @@ -21,6 +21,14 @@ const MIN_TRANSACTION_WEIGHT: u32 = WITNESS_SCALE_FACTOR * 60; // https://github.com/bitcoin/bitcoin/blob/7fcf53f7b4524572d1d0c9a5fdc388e87eb02416/src/merkleblock.cpp#L155 const MAX_TRANSACTIONS_IN_PROOF: u32 = MAX_BLOCK_WEIGHT / MIN_TRANSACTION_WEIGHT; +#[derive(Clone, Encode, Decode, TypeInfo, PartialEq)] +#[cfg_attr(feature = "std", derive(Debug))] +pub struct PartialTransactionProof { + pub transaction: Transaction, + pub tx_encoded_len: u32, + pub merkle_proof: MerkleProof, +} + /// Stores the content of a merkle tree #[derive(Clone)] #[cfg_attr(feature = "std", derive(Debug))] @@ -43,11 +51,14 @@ struct MerkleProofTraversal { hash_position: Option, } -#[derive(Clone, Copy, Debug, PartialEq)] +#[derive(Clone, Debug, PartialEq)] pub struct ProofResult { pub extracted_root: H256Le, pub transaction_hash: H256Le, pub transaction_position: u32, + pub transaction: Transaction, + pub tx_count: u32, + pub block_hash: H256Le, } impl MerkleTree { @@ -95,6 +106,82 @@ impl MerkleTree { } #[cfg_attr(test, mockable)] +impl PartialTransactionProof { + /// Computes the merkle root of the proof partial merkle tree + pub fn verify_proof(self) -> Result { + let mut traversal = MerkleProofTraversal { + bits_used: 0, + hashes_used: 0, + merkle_position: None, + hash_position: None, + }; + + // fail if no transactions + if self.merkle_proof.transactions_count == 0 { + return Err(Error::MalformedMerkleProof); + } + + // fail if too many transactions + if self.merkle_proof.transactions_count > MAX_TRANSACTIONS_IN_PROOF { + return Err(Error::MalformedMerkleProof); + } + + // fail if not at least one bit per hash + if self.merkle_proof.flag_bits.len() < self.merkle_proof.hashes.len() { + return Err(Error::MalformedMerkleProof); + } + + let root = self.merkle_proof.traverse_and_extract( + self.merkle_proof.compute_partial_tree_height(), + 0, + &mut traversal, + )?; + let merkle_position = traversal.merkle_position.ok_or(Error::InvalidMerkleProof)?; + let hash_position = traversal.hash_position.ok_or(Error::InvalidMerkleProof)?; + + // fail if all hashes are not used + if traversal.hashes_used != self.merkle_proof.hashes.len() { + return Err(Error::MalformedMerkleProof); + } + + // fail if all bits are not used + if traversal + .bits_used + .checked_add(7) + .ok_or(Error::ArithmeticOverflow)? + .checked_div(8) + .ok_or(Error::ArithmeticUnderflow)? + != self + .merkle_proof + .flag_bits + .len() + .checked_add(7) + .ok_or(Error::ArithmeticOverflow)? + .checked_div(8) + .ok_or(Error::ArithmeticUnderflow)? + { + return Err(Error::MalformedMerkleProof); + } + + let tx_id = self.transaction.tx_id_bounded(self.tx_encoded_len)?; + + // fail if the transaction hash is invalid + if self.merkle_proof.hashes[hash_position] != tx_id { + return Err(Error::InvalidTxid); + } + // ensure!(self.merkle_proof.hashes[hash_position] == tx_id, Error::InvalidTxid); + + Ok(ProofResult { + extracted_root: root, + transaction_hash: self.merkle_proof.hashes[hash_position], + transaction_position: merkle_position, + transaction: self.transaction, + tx_count: self.merkle_proof.transactions_count, + block_hash: self.merkle_proof.block_header.hash, + }) + } +} + impl MerkleProof { /// Returns the width of the partial merkle tree pub fn compute_partial_tree_width(&self, height: u32) -> u32 { @@ -153,62 +240,37 @@ impl MerkleProof { Ok(hashed_bytes) } - /// Computes the merkle root of the proof partial merkle tree - pub fn verify_proof(&self) -> Result { - let mut traversal = MerkleProofTraversal { - bits_used: 0, - hashes_used: 0, - merkle_position: None, - hash_position: None, - }; - - // fail if no transactions - if self.transactions_count == 0 { - return Err(Error::MalformedMerkleProof); - } - - // fail if too many transactions - if self.transactions_count > MAX_TRANSACTIONS_IN_PROOF { - return Err(Error::MalformedMerkleProof); - } - - // fail if not at least one bit per hash - if self.flag_bits.len() < self.hashes.len() { - return Err(Error::MalformedMerkleProof); + pub(crate) fn traverse_and_build( + &mut self, + height: u32, + pos: u32, + tx_ids: &[H256Le], + matches: &[bool], + ) -> Result<(), Error> { + let mut parent_of_match = false; + let mut p = pos << height; + while p < (pos + 1) << height && p < self.transactions_count { + parent_of_match |= matches[p as usize]; + p += 1; } - let root = self.traverse_and_extract(self.compute_partial_tree_height(), 0, &mut traversal)?; - let merkle_position = traversal.merkle_position.ok_or(Error::InvalidMerkleProof)?; - let hash_position = traversal.hash_position.ok_or(Error::InvalidMerkleProof)?; + self.flag_bits.push(parent_of_match); - // fail if all hashes are not used - if traversal.hashes_used != self.hashes.len() { - return Err(Error::MalformedMerkleProof); - } + if height == 0 || !parent_of_match { + let hash = self.compute_merkle_root(pos, height, tx_ids)?; + self.hashes.push(hash); + } else { + let next_height = height.checked_sub(1).ok_or(Error::ArithmeticUnderflow)?; + let left_index = pos.checked_mul(2).ok_or(Error::ArithmeticOverflow)?; + let right_index = left_index.checked_add(1).ok_or(Error::ArithmeticOverflow)?; - // fail if all bits are not used - if traversal - .bits_used - .checked_add(7) - .ok_or(Error::ArithmeticOverflow)? - .checked_div(8) - .ok_or(Error::ArithmeticUnderflow)? - != self - .flag_bits - .len() - .checked_add(7) - .ok_or(Error::ArithmeticOverflow)? - .checked_div(8) - .ok_or(Error::ArithmeticUnderflow)? - { - return Err(Error::MalformedMerkleProof); + self.traverse_and_build(next_height, left_index, tx_ids, matches)?; + if right_index < self.compute_partial_tree_width(next_height) { + self.traverse_and_build(next_height, right_index, tx_ids, matches)?; + } } - Ok(ProofResult { - extracted_root: root, - transaction_hash: self.hashes[hash_position], - transaction_position: merkle_position, - }) + Ok(()) } /// Parses a merkle proof as produced by the bitcoin client gettxoutproof @@ -249,46 +311,14 @@ impl MerkleProof { hashes, }) } - - pub(crate) fn traverse_and_build( - &mut self, - height: u32, - pos: u32, - tx_ids: &[H256Le], - matches: &[bool], - ) -> Result<(), Error> { - let mut parent_of_match = false; - let mut p = pos << height; - while p < (pos + 1) << height && p < self.transactions_count { - parent_of_match |= matches[p as usize]; - p += 1; - } - - self.flag_bits.push(parent_of_match); - - if height == 0 || !parent_of_match { - let hash = self.compute_merkle_root(pos, height, tx_ids)?; - self.hashes.push(hash); - } else { - let next_height = height.checked_sub(1).ok_or(Error::ArithmeticUnderflow)?; - let left_index = pos.checked_mul(2).ok_or(Error::ArithmeticOverflow)?; - let right_index = left_index.checked_add(1).ok_or(Error::ArithmeticOverflow)?; - - self.traverse_and_build(next_height, left_index, tx_ids, matches)?; - if right_index < self.compute_partial_tree_width(next_height) { - self.traverse_and_build(next_height, right_index, tx_ids, matches)?; - } - } - - Ok(()) - } } #[cfg(test)] mod tests { + use crate::parser::parse_transaction; + use super::*; - use mocktopus::mocking::*; use sp_core::H256; use sp_std::str::FromStr; @@ -302,31 +332,7 @@ mod tests { // block: https://www.blockchain.com/btc/block/0000000000000000007962066dcd6675830883516bcf40047d42740a85eb2919 const PROOF_HEX: &str = "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"; - - fn sample_valid_proof_result() -> ProofResult { - let tx_id = H256Le::from_bytes_le( - &hex::decode("c8589f304d3b9df1d4d8b3d15eb6edaaa2af9d796e9d9ace12b31f293705c5e9".to_owned()).unwrap(), - ); - let merkle_root = H256Le::from_bytes_le( - &hex::decode("90d079ef103a8b7d3d9315126468f78b456690ba6628d1dcd5a16c9990fbe11e".to_owned()).unwrap(), - ); - ProofResult { - extracted_root: merkle_root, - transaction_hash: tx_id, - transaction_position: 0, - } - } - - #[test] - fn test_mock_verify_proof() { - let mock_proof_result = sample_valid_proof_result(); - - let proof = MerkleProof::parse(&hex::decode(PROOF_HEX).unwrap()).unwrap(); - MerkleProof::verify_proof.mock_safe(move |_| MockResult::Return(Ok(mock_proof_result))); - - let res = MerkleProof::verify_proof(&proof).unwrap(); - assert_eq!(res, mock_proof_result); - } + const TX_HEX: &str = "02000000013f123860735a487635587ec2e40f8c979ff487baed0af3af0011c14e19a5c368be0700008a47304402202b0f871fba25ae9908f5a4a3075237bd311265309ffa4e58f57e146cdd01916702204a1230f836d039713bbe7063dd9ebefb54e49c1cf30aec1b9bd7df820cc1ff3301410433e05b29670f19cbc499f207f11abe1c69f77f00d5cbb9dbec5b5fe7527e2f41fa1e90f10a05e9c0a34d255988082e190c9ee7ea05f62297d4f76d9b61d7561bffffffff01d69b0100000000001976a914cd55050b6536a764c00d061afa7500d5a552558e88ac00000000"; #[test] fn test_parse_proof() { @@ -370,8 +376,14 @@ mod tests { #[test] fn test_extract_hash() { let proof = MerkleProof::parse(&hex::decode(PROOF_HEX).unwrap()).unwrap(); + let tx = parse_transaction(&hex::decode(TX_HEX).unwrap()).unwrap(); + let partial_proof = PartialTransactionProof { + merkle_proof: proof.clone(), + transaction: tx, + tx_encoded_len: TX_HEX.len() as u32 / 2, + }; let merkle_root = H256Le::from_bytes_le(&proof.block_header.merkle_root.to_bytes_le()); - let result = proof.verify_proof().unwrap(); + let result = partial_proof.verify_proof().unwrap(); assert_eq!(result.extracted_root, merkle_root); assert_eq!(result.transaction_position, 48); let expected_tx_hash = H256Le::from_hex_be("61a05151711e4716f31f7a3bb956d1b030c4d92093b843fa2e771b95564f0704"); diff --git a/crates/bitcoin/src/parser.rs b/crates/bitcoin/src/parser.rs index e491efc1d4..4e21b3af19 100644 --- a/crates/bitcoin/src/parser.rs +++ b/crates/bitcoin/src/parser.rs @@ -60,8 +60,8 @@ make_parsable_int!(i64, 8); impl Parsable for CompactUint { fn parse(raw_bytes: &[u8], position: usize) -> Result<(CompactUint, usize), Error> { - let last_byte = sp_std::cmp::min(position + 3, raw_bytes.len()); - let (value, bytes_consumed) = parse_compact_uint(raw_bytes.get(position..last_byte).ok_or(Error::EndOfFile)?)?; + // note: passing entire remaining buffer since we don't know how big the bytes the uint takes up + let (value, bytes_consumed) = parse_compact_uint(raw_bytes.get(position..).ok_or(Error::EndOfFile)?)?; Ok((CompactUint { value }, bytes_consumed)) } } @@ -502,7 +502,10 @@ pub(crate) mod tests { use std::str::FromStr; use super::*; - use crate::{Address, PublicKey, Script}; + use crate::{ + formatter::{BoundedWriter, TryFormat}, + Address, PublicKey, Script, + }; use frame_support::{assert_err, assert_ok}; // examples from https://bitcoin.org/en/developer-reference#block-headers @@ -674,6 +677,13 @@ pub(crate) mod tests { assert_eq!(transaction.lock_at, LockTime::BlockHeight(0)); } + #[test] + fn test_parse_long_transaction() { + // txid 1949081b76eeca4ba50ede914a2b7a13ca1457a53a2868b171c4a9c722c3e8b1 + let tx_bytes = hex::decode(&"").unwrap(); + parse_transaction(&tx_bytes).unwrap(); + } + #[test] fn test_parse_transaction_extended_format() { let raw_tx = sample_extended_transaction(); @@ -843,6 +853,55 @@ pub(crate) mod tests { assert_eq!(&extr_address, &address); } + #[test] + fn test_parse_coinbase() { + // txid 10f08c702616a2d06b4931160fc4d38dd37a286b8e3899bd90e4193ec01b1ca8 + let raw_tx = "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"; + let tx_bytes = hex::decode(&raw_tx).unwrap(); + let transaction = parse_transaction(&tx_bytes).unwrap(); + let inputs = transaction.inputs.clone(); + assert_eq!(transaction.version, 1); + assert_eq!(inputs.len(), 1); + assert!(matches!(inputs[0].source, TransactionInputSource::Coinbase(_))); + + let mut bytes = BoundedWriter::new(tx_bytes.len() as u32); + transaction.try_format(&mut bytes).unwrap(); + let reconstructed_raw_tx = bytes.result(); + + let reconstructed_hex_tx = hex::encode(reconstructed_raw_tx); + assert_eq!(reconstructed_hex_tx, raw_tx); + } + + #[test] + fn test_reconstruct_txid() { + // txid eb3db053cd139147f2fd676cf59a491fd5aebc54bddfde829704585b659126fc + let raw_tx = "0100000000010120e6fb8f0e2cfb8667a140a92d045d5db7c1b56635790bc907c3e71d43720a150e00000017160014641e441c2ba32dd7cf05afde7922144dd106b09bffffffff019dbd54000000000017a914bd847a4912984cf6152547feca51c1b9c2bcbe2787024830450221008f00033064c26cfca4dc98e5dba800b18729c3441dca37b49358ae0df9be7fad02202a81085318466ea66ef390d5dab6737e44a05f7f2e747932ebba917e0098f37d012102c109fc47335c3a2e206d462ad52590b1842aa9d6e0eb9c683c896fa8723590b400000000"; + let tx_bytes = hex::decode(&raw_tx).unwrap(); + let transaction = parse_transaction(&tx_bytes).unwrap(); + + let reconstructed_txid = transaction.tx_id_bounded(tx_bytes.len() as u32).unwrap().to_hex_be(); + + assert_eq!( + reconstructed_txid, + "eb3db053cd139147f2fd676cf59a491fd5aebc54bddfde829704585b659126fc" + ); + } + + #[test] + fn test_reconstruct_coinbase_2() { + // txid 6f807e134d60f7b4a5fb4818ee28971cb4a20f7063e9f34be81ba2a2fde0c024 + let raw_tx = "020000000001010000000000000000000000000000000000000000000000000000000000000000ffffffff5803478d0a0486b8f360fabe6d6d905e48adc5d0180883bd0b5f0f145e02acb4378eaa8625bc140039035d256c02020000004204cb9a62696e616e63652f6f7235303279643853413924451238e5ae6e244a28000000000000ffffffff04a8f94025000000001600143156afc4249915008020f932783319f3e610b97d0000000000000000266a24aa21a9ede777d528c5e1df7c82399c2a06d5a7e78c4a815c59c33f0ec79749ee863571890000000000000000266a24b9e11b6dfc71482357d4353614be3a63bb3391d078a622a837e3c16a62d23a51cf6a09aa00000000000000002b6a2952534b424c4f434b3a71b49ca583059694eab2c27471a0b82aa9f6af91778544f63a1af01d0035cd0a0120000000000000000000000000000000000000000000000000000000000000000000000000"; + let tx_bytes = hex::decode(&raw_tx).unwrap(); + let transaction = parse_transaction(&tx_bytes).unwrap(); + + let reconstructed_txid = transaction.tx_id_bounded(tx_bytes.len() as u32).unwrap().to_hex_be(); + + assert_eq!( + reconstructed_txid, + "6f807e134d60f7b4a5fb4818ee28971cb4a20f7063e9f34be81ba2a2fde0c024" + ); + } + /* #[test] fn test_extract_address_invalid_p2pkh_fails() { diff --git a/crates/bitcoin/src/script.rs b/crates/bitcoin/src/script.rs index 477f1812e6..d59e104894 100644 --- a/crates/bitcoin/src/script.rs +++ b/crates/bitcoin/src/script.rs @@ -25,7 +25,8 @@ impl Script { pub(crate) fn height(height: u32) -> Script { let mut script = Script::new(); - script.append(OpCode::Op3); + let len: u8 = 0x03; // Note: NOT OP3. See https://github.com/bitcoin/bips/blob/master/bip-0034.mediawiki + script.append(len); let bytes = height.to_le_bytes(); script.append(&bytes[0..=2]); script diff --git a/crates/bitcoin/src/types.rs b/crates/bitcoin/src/types.rs index bf99f3dc4c..10d3115737 100644 --- a/crates/bitcoin/src/types.rs +++ b/crates/bitcoin/src/types.rs @@ -6,7 +6,7 @@ use mocktopus::macros::mockable; pub use crate::merkle::MerkleProof; use crate::{ formatter::{BoundedWriter, TryFormat, Writer}, - merkle::MerkleTree, + merkle::{MerkleTree, PartialTransactionProof}, parser::{extract_address_hash_scriptsig, extract_address_hash_witness, parse_block_header}, utils::{log2, reverse_endianness, sha256d_le}, Address, Error, PublicKey, Script, @@ -24,6 +24,15 @@ use serde::{Deserialize, Serialize}; pub(crate) const SERIALIZE_TRANSACTION_NO_WITNESS: i32 = 0x4000_0000; +/// We also check the coinbase proof in order to defend against the 'leaf-node weakness'. +/// See https://bitslog.com/2018/06/09/leaf-node-weakness-in-bitcoin-merkle-tree-design/ . +#[derive(Encode, Decode, Clone, TypeInfo, PartialEq)] +#[cfg_attr(feature = "std", derive(Debug))] +pub struct FullTransactionProof { + pub user_tx_proof: PartialTransactionProof, + pub coinbase_proof: PartialTransactionProof, +} + /// Bitcoin Script OpCodes /// #[derive(Copy, Clone)] @@ -368,6 +377,17 @@ impl Transaction { // check if any of the inputs has a witness self.inputs.iter().any(|v| !v.witness.is_empty()) } + + pub fn is_coinbase(&self) -> bool { + self.inputs.len() == 1 + && matches!( + self.inputs.get(0), + Some(&TransactionInput { + source: TransactionInputSource::Coinbase(_), + .. + }) + ) + } } // https://en.bitcoin.it/wiki/NLockTime @@ -1083,8 +1103,8 @@ mod tests { .unwrap(); assert_eq!(block.header.version, 4); assert_eq!(block.header.merkle_root, block.transactions[0].tx_id()); - // should be 3, might change if block is changed - assert_eq!(block.header.nonce, 3); + // should be 2, might change if block is changed (last change was due to coinbase txid calculation fix) + assert_eq!(block.header.nonce, 2); assert!(block.header.nonce > 0); } diff --git a/crates/btc-relay/src/lib.rs b/crates/btc-relay/src/lib.rs index 23334a6297..6162d7441f 100644 --- a/crates/btc-relay/src/lib.rs +++ b/crates/btc-relay/src/lib.rs @@ -54,7 +54,7 @@ use mocktopus::macros::mockable; #[cfg(feature = "runtime-benchmarks")] use bitcoin::types::{BlockBuilder, TransactionBuilder, TransactionOutput}; use bitcoin::{ - merkle::{MerkleProof, ProofResult}, + merkle::ProofResult, types::{BlockChain, BlockHeader, H256Le, Transaction, Value}, Error as BitcoinError, SetCompact, }; @@ -72,7 +72,10 @@ use sp_std::{ prelude::*, }; -pub use bitcoin::{self, Address as BtcAddress, PublicKey as BtcPublicKey}; +pub use bitcoin::{ + self, merkle::PartialTransactionProof, types::FullTransactionProof, Address as BtcAddress, + PublicKey as BtcPublicKey, +}; pub use pallet::*; pub use types::{OpReturnPaymentData, RichBlockHeader}; @@ -551,17 +554,11 @@ impl Pallet { /// interface to the issue pallet; verifies inclusion and returns the payment amount pub fn get_and_verify_issue_payment>( - merkle_proof: MerkleProof, - transaction: Transaction, - length_bound: u32, + unchecked_transaction: FullTransactionProof, recipient_btc_address: BtcAddress, ) -> Result { - let tx_id = transaction - .tx_id_bounded(length_bound) - .map_err(|err| Error::::from(err))?; - // Verify that the transaction is indeed included in the main chain - Self::_verify_transaction_inclusion(tx_id, merkle_proof, None)?; + let transaction = Self::_verify_transaction_inclusion(unchecked_transaction, None)?; Self::get_issue_payment(transaction, recipient_btc_address) } @@ -588,19 +585,13 @@ impl Pallet { /// interface to redeem,replace,refund to check that the payment is included and is valid pub fn verify_and_validate_op_return_transaction>( - merkle_proof: MerkleProof, - transaction: Transaction, - length_bound: u32, + unchecked_transaction: FullTransactionProof, recipient_btc_address: BtcAddress, expected_btc: V, op_return_id: H256, ) -> Result<(), DispatchError> { - let tx_id = transaction - .tx_id_bounded(length_bound) - .map_err(|err| Error::::from(err))?; - // Verify that the transaction is indeed included in the main chain - Self::_verify_transaction_inclusion(tx_id, merkle_proof, None)?; + let transaction = Self::_verify_transaction_inclusion(unchecked_transaction, None)?; // Check that the transaction matches the given parameters Self::validate_op_return_transaction(transaction, recipient_btc_address, expected_btc, op_return_id)?; @@ -608,28 +599,51 @@ impl Pallet { } pub fn _verify_transaction_inclusion( - tx_id: H256Le, - merkle_proof: MerkleProof, + unchecked_transaction: FullTransactionProof, confirmations: Option, - ) -> Result<(), DispatchError> { + ) -> Result { if Self::disable_inclusion_check() { - return Ok(()); + return Ok(unchecked_transaction.user_tx_proof.transaction); } - let proof_result = Self::verify_merkle_proof(&merkle_proof)?; + let user_proof_result = Self::verify_merkle_proof(unchecked_transaction.user_tx_proof)?; + let coinbase_proof_result = Self::verify_merkle_proof(unchecked_transaction.coinbase_proof)?; + + // Make sure the coinbase tx is for the same block as the user tx + ensure!( + user_proof_result.extracted_root == coinbase_proof_result.extracted_root, + Error::::InvalidMerkleProof + ); + ensure!( + user_proof_result.block_hash == coinbase_proof_result.block_hash, + Error::::InvalidMerkleProof + ); - let block_hash = merkle_proof.block_header.hash; - let stored_block_header = Self::verify_block_header_inclusion(block_hash, confirmations)?; + // ensure that the tx count for the coinbase tx matches the user's + ensure!( + user_proof_result.tx_count == coinbase_proof_result.tx_count, + Error::::InvalidMerkleProof + ); + + // Ensure that it's actually the coinbase tx + ensure!( + coinbase_proof_result.transaction.is_coinbase(), + Error::::InvalidMerkleProof + ); - // fail if the transaction hash is invalid - ensure!(proof_result.transaction_hash == tx_id, Error::::InvalidTxid); + let stored_block_header = Self::verify_block_header_inclusion(user_proof_result.block_hash, confirmations)?; // fail if the merkle root is invalid ensure!( - proof_result.extracted_root == stored_block_header.merkle_root, + Self::block_matches_merkle_root(&stored_block_header, &user_proof_result), Error::::InvalidMerkleProof ); - Ok(()) + Ok(user_proof_result.transaction) + } + + // util function extracted for mocking purposes + fn block_matches_merkle_root(block_header: &BlockHeader, proof_result: &ProofResult) -> bool { + proof_result.extracted_root == block_header.merkle_root } pub fn verify_block_header_inclusion( @@ -908,8 +922,10 @@ impl Pallet { // ********************************* // Wrapper functions around bitcoin lib for testing purposes - fn verify_merkle_proof(merkle_proof: &MerkleProof) -> Result { - merkle_proof.verify_proof().map_err(|err| Error::::from(err).into()) + fn verify_merkle_proof(unchecked_transaction: PartialTransactionProof) -> Result { + unchecked_transaction + .verify_proof() + .map_err(|err| Error::::from(err).into()) } /// Verifies a Bitcoin block header. @@ -1346,7 +1362,7 @@ impl Pallet { vin: u32, vout: Vec, max_tx_size: usize, - ) -> (Transaction, MerkleProof) { + ) -> FullTransactionProof { let init_block = BlockBuilder::new() .with_version(4) .with_coinbase(&BtcAddress::default(), 50, 3) @@ -1375,7 +1391,21 @@ impl Pallet { ext::security::active_block_number::() + Self::parachain_confirmations() + 1u32.into(), ); - (transaction, merkle_proof) + let coinbase_tx = block.transactions[0].clone(); + let coinbase_merkle_proof = block.merkle_proof(&[coinbase_tx.tx_id()]).unwrap(); + + FullTransactionProof { + coinbase_proof: PartialTransactionProof { + tx_encoded_len: coinbase_tx.size_no_witness() as u32, + transaction: coinbase_tx, + merkle_proof: coinbase_merkle_proof, + }, + user_tx_proof: PartialTransactionProof { + tx_encoded_len: transaction.size_no_witness() as u32, + transaction: transaction, + merkle_proof, + }, + } } #[cfg(feature = "runtime-benchmarks")] @@ -1419,6 +1449,7 @@ impl From for Error { BitcoinError::ArithmeticUnderflow => Self::ArithmeticUnderflow, BitcoinError::InvalidCompact => Self::InvalidCompact, BitcoinError::BoundExceeded => Self::BoundExceeded, + BitcoinError::InvalidTxid => Self::InvalidTxid, } } } diff --git a/crates/btc-relay/src/tests.rs b/crates/btc-relay/src/tests.rs index 3dd5cfb321..ac65cf9526 100644 --- a/crates/btc-relay/src/tests.rs +++ b/crates/btc-relay/src/tests.rs @@ -1164,9 +1164,6 @@ fn test_verify_transaction_inclusion_succeeds() { let confirmations = None; let rich_block_header = sample_rich_tx_block_header(chain_id, main_chain_height); - let merkle_proof = sample_merkle_proof(); - let proof_result = sample_valid_proof_result(); - let main = get_empty_block_chain_from_chain_id_and_height(chain_id, start, main_chain_height); let fork = get_empty_block_chain_from_chain_id_and_height(fork_ref, start, fork_chain_height); @@ -1182,7 +1179,7 @@ fn test_verify_transaction_inclusion_succeeds() { BTCRelay::get_best_block_height.mock_safe(move || MockResult::Return(main_chain_height)); - BTCRelay::verify_merkle_proof.mock_safe(move |_| MockResult::Return(Ok(proof_result))); + BTCRelay::block_matches_merkle_root.mock_safe(move |_, _| MockResult::Return(true)); BTCRelay::get_block_header_from_hash.mock_safe(move |_| MockResult::Return(Ok(rich_block_header))); @@ -1191,8 +1188,7 @@ fn test_verify_transaction_inclusion_succeeds() { BTCRelay::check_parachain_confirmations.mock_safe(|_| MockResult::Return(Ok(()))); assert_ok!(BTCRelay::_verify_transaction_inclusion( - proof_result.transaction_hash, - merkle_proof, + sample_unchecked_transaction(), confirmations )); }); @@ -1207,9 +1203,6 @@ fn test_verify_transaction_inclusion_empty_fork_succeeds() { let confirmations = None; let rich_block_header = sample_rich_tx_block_header(chain_id, main_chain_height); - let merkle_proof = sample_merkle_proof(); - let proof_result = sample_valid_proof_result(); - let main = get_empty_block_chain_from_chain_id_and_height(chain_id, start, main_chain_height); BTCRelay::get_block_chain_from_id.mock_safe(move |id| { @@ -1222,17 +1215,16 @@ fn test_verify_transaction_inclusion_empty_fork_succeeds() { BTCRelay::get_best_block_height.mock_safe(move || MockResult::Return(main_chain_height)); - BTCRelay::verify_merkle_proof.mock_safe(move |_| MockResult::Return(Ok(proof_result))); - BTCRelay::get_block_header_from_hash.mock_safe(move |_| MockResult::Return(Ok(rich_block_header))); BTCRelay::check_bitcoin_confirmations.mock_safe(|_, _, _| MockResult::Return(Ok(()))); BTCRelay::check_parachain_confirmations.mock_safe(|_| MockResult::Return(Ok(()))); + BTCRelay::block_matches_merkle_root.mock_safe(move |_, _| MockResult::Return(true)); + assert_ok!(BTCRelay::_verify_transaction_inclusion( - proof_result.transaction_hash, - merkle_proof, + sample_unchecked_transaction(), confirmations, )); }); @@ -1249,14 +1241,6 @@ fn test_verify_transaction_inclusion_invalid_tx_id_fails() { let confirmations = None; let rich_block_header = sample_rich_tx_block_header(chain_id, main_chain_height); - // Mismatching TXID - let invalid_tx_id = H256Le::from_bytes_le( - &hex::decode("0000000000000000000000000000000000000000000000000000000000000000".to_owned()).unwrap(), - ); - - let merkle_proof = sample_merkle_proof(); - let proof_result = sample_valid_proof_result(); - let main = get_empty_block_chain_from_chain_id_and_height(chain_id, start, main_chain_height); let fork = get_empty_block_chain_from_chain_id_and_height(fork_ref, start, fork_chain_height); @@ -1272,16 +1256,21 @@ fn test_verify_transaction_inclusion_invalid_tx_id_fails() { BTCRelay::get_best_block_height.mock_safe(move || MockResult::Return(main_chain_height)); - BTCRelay::verify_merkle_proof.mock_safe(move |_| MockResult::Return(Ok(proof_result))); - BTCRelay::get_block_header_from_hash.mock_safe(move |_| MockResult::Return(Ok(rich_block_header))); BTCRelay::check_bitcoin_confirmations.mock_safe(|_, _, _| MockResult::Return(Ok(()))); BTCRelay::check_parachain_confirmations.mock_safe(|_| MockResult::Return(Ok(()))); + let mut tx = sample_unchecked_transaction(); + + // Mismatching TXID + tx.coinbase_proof.merkle_proof.hashes[0] = H256Le::from_bytes_le( + &hex::decode("0000000000000000000000000000000000000000000000000000000000000000".to_owned()).unwrap(), + ); + assert_err!( - BTCRelay::_verify_transaction_inclusion(invalid_tx_id, merkle_proof, confirmations,), + BTCRelay::_verify_transaction_inclusion(tx, confirmations,), TestError::InvalidTxid ); }); @@ -1304,9 +1293,6 @@ fn test_verify_transaction_inclusion_invalid_merkle_root_fails() { ); rich_block_header.block_header.merkle_root = invalid_merkle_root; - let merkle_proof = sample_merkle_proof(); - let proof_result = sample_valid_proof_result(); - let main = get_empty_block_chain_from_chain_id_and_height(chain_id, start, main_chain_height); let fork = get_empty_block_chain_from_chain_id_and_height(fork_ref, start, fork_chain_height); @@ -1328,8 +1314,11 @@ fn test_verify_transaction_inclusion_invalid_merkle_root_fails() { BTCRelay::check_parachain_confirmations.mock_safe(|_| MockResult::Return(Ok(()))); + // merkle root does not match block + BTCRelay::block_matches_merkle_root.mock_safe(move |_, _| MockResult::Return(false)); + assert_err!( - BTCRelay::_verify_transaction_inclusion(proof_result.transaction_hash, merkle_proof, confirmations,), + BTCRelay::_verify_transaction_inclusion(sample_unchecked_transaction(), confirmations,), TestError::InvalidMerkleProof ); }); @@ -1340,14 +1329,11 @@ fn test_verify_transaction_inclusion_fails_with_ongoing_fork() { run_test(|| { BTCRelay::get_chain_id_from_position.mock_safe(|_| MockResult::Return(Ok(1))); BTCRelay::get_block_chain_from_id.mock_safe(|_| MockResult::Return(Ok(BlockChain::default()))); - BTCRelay::verify_merkle_proof.mock_safe(|_| MockResult::Return(Ok(sample_valid_proof_result()))); - let tx_id = sample_valid_proof_result().transaction_hash; - let merkle_proof = sample_merkle_proof(); let confirmations = None; assert_err!( - BTCRelay::_verify_transaction_inclusion(tx_id, merkle_proof, confirmations,), + BTCRelay::_verify_transaction_inclusion(sample_unchecked_transaction(), confirmations,), TestError::OngoingFork ); }); @@ -1356,13 +1342,13 @@ fn test_verify_transaction_inclusion_fails_with_ongoing_fork() { #[test] fn test_get_and_verify_issue_payment_with_tx_containing_taproot() { run_test(|| { - let raw_tx = "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"; - let tx_bytes = hex::decode(&raw_tx).unwrap(); - let transaction = parse_transaction(&tx_bytes).unwrap(); + BTCRelay::_verify_transaction_inclusion.mock_safe(|_, _| { + let raw_tx = "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"; + let tx_bytes = hex::decode(&raw_tx).unwrap(); + let transaction = parse_transaction(&tx_bytes).unwrap(); - let raw_proof = "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"; - let proof_bytes = hex::decode(&raw_proof).unwrap(); - let merkle_proof = MerkleProof::parse(&proof_bytes).unwrap(); + MockResult::Return(Ok(transaction)) + }); // check the last output address let raw_address = "935f3eb059cd94bd307e6378bd590724f361f0316fd0964eb5952f274dfb7b4f"; @@ -1370,10 +1356,8 @@ fn test_get_and_verify_issue_payment_with_tx_containing_taproot() { let address_hash = H256::from_slice(&address_bytes); let recipient_btc_address = BtcAddress::P2WSHv0(address_hash); - BTCRelay::_verify_transaction_inclusion.mock_safe(|_, _, _| MockResult::Return(Ok(()))); - assert_ok!( - BTCRelay::get_and_verify_issue_payment::(merkle_proof, transaction, u32::MAX, recipient_btc_address), + BTCRelay::get_and_verify_issue_payment::(sample_unchecked_transaction(), recipient_btc_address), 15347698 ); }) @@ -1923,19 +1907,8 @@ pub fn test_has_request_expired() { /// # Util functions -const SAMPLE_TX_ID: &str = "c8589f304d3b9df1d4d8b3d15eb6edaaa2af9d796e9d9ace12b31f293705c5e9"; - const SAMPLE_MERKLE_ROOT: &str = "1EE1FB90996CA1D5DCD12866BA9066458BF768641215933D7D8B3A10EF79D090"; -fn sample_merkle_proof() -> MerkleProof { - MerkleProof { - block_header: sample_block_header(), - transactions_count: 1, - hashes: vec![H256Le::from_hex_le(SAMPLE_TX_ID)], - flag_bits: vec![true], - } -} - fn sample_block_header() -> BlockHeader { let mut ret = BlockHeader { merkle_root: H256Le::from_hex_le(SAMPLE_MERKLE_ROOT), @@ -1950,14 +1923,35 @@ fn sample_block_header() -> BlockHeader { ret } -fn sample_valid_proof_result() -> ProofResult { - let tx_id = H256Le::from_hex_le(SAMPLE_TX_ID); - let merkle_root = H256Le::from_hex_le(SAMPLE_MERKLE_ROOT); - - ProofResult { - extracted_root: merkle_root, - transaction_hash: tx_id, - transaction_position: 0, +fn sample_unchecked_transaction() -> FullTransactionProof { + let coinbase_tx_hex = "01000000010000000000000000000000000000000000000000000000000000000000000000ffffffff08044b6d0b1a020b02ffffffff0100f2052a01000000434104e8e37f1556b53b557405fc7924c861e640c8f99ebb3feb09ae69a84bea1f125940309beec02fb815ea5e68782c32da123b4585bc2f23731f1f1c62c9727dba9dac00000000"; + let raw_coinbase_tx = hex::decode(coinbase_tx_hex).unwrap(); + let coinbase_tx = parse_transaction(&raw_coinbase_tx).unwrap(); + + let coinbase_proof_hex = "010000006fd2c5a8fac33dbe89bb2a2947a73eed2afc3b1d4f886942df08000000000000b152eca4364850f3424c7ac2b337d606c5ca0a3f96f1554f8db33d2f6f130bbed325a04e4b6d0b1a85790e6b0a00000005e1af205960ae338a37174b407ee71067c3cd7f04d48a5cec7e13f6eccb61dcbca314970cd7c647d1cc0a477e1a2122b98205b6924b73001b8dab20ee81c2f4f740213c81f059806fb8c1b91d0a7397a57156cfc3a17b71d095c244aafc1eb1158be15fc2ab11ef3e079568d43b2b09ed5a5690fb13ecb1032f7aab99238a1847e827331b1fe7a2689fbc23d14cd21317c699596cbca222182a489322ece1fa74021f00"; + let coinbase_raw_proof = hex::decode(coinbase_proof_hex).unwrap(); + let coinbase_proof = MerkleProof::parse(&coinbase_raw_proof).unwrap(); + + // txid 8d30eb0f3e65b8d8a9f26f6f73fc5aafa5c0372f9bb38aa38dd4c9dd1933e090 + let user_tx_hex = "010000000168a59c95a89ed5e9af00e90a7823156b02b7811000c63170bb2440d8db6a1869000000008a473044022050c32cf6cd888178268701a636b189dc3f026ee3ebd230fd77018e54044aac77022055aa7fa73c524dd4f0be02694683a21eb03d5d2f2c519d7dc7110b742c417517014104aa5c77986a87b93b03d949013e629601b6dbdbd5fc09f3bef9263b64b3c38d79d443fafa2fbf422a203fe433adf6e071f3172a53747739ce72c640fe7e514981ffffffff0140420f00000000001976a91449cf380abdb86449efc694988bf0f447739f73cd88ac00000000"; + let raw_user_tx = hex::decode(user_tx_hex).unwrap(); + let user_tx = parse_transaction(&raw_user_tx).unwrap(); + + let user_proof_hex = "010000006fd2c5a8fac33dbe89bb2a2947a73eed2afc3b1d4f886942df08000000000000b152eca4364850f3424c7ac2b337d606c5ca0a3f96f1554f8db33d2f6f130bbed325a04e4b6d0b1a85790e6b0a000000038d9d737b484e96eed701c4b3728aea80aa7f2a7f57125790ed9998f9050a1bef90e03319ddc9d48da38ab39b2f37c0a5af5afc736f6ff2a9d8b8653e0feb308d84251842a4c0f0e188e1c2bf643ec37a1402dd86a25a9ab5004633467d16e313013d"; + let user_raw_proof = hex::decode(user_proof_hex).unwrap(); + let user_proof = MerkleProof::parse(&user_raw_proof).unwrap(); + + FullTransactionProof { + coinbase_proof: PartialTransactionProof { + transaction: coinbase_tx, + tx_encoded_len: raw_coinbase_tx.len() as u32, + merkle_proof: coinbase_proof, + }, + user_tx_proof: PartialTransactionProof { + transaction: user_tx, + tx_encoded_len: raw_user_tx.len() as u32, + merkle_proof: user_proof, + }, } } diff --git a/crates/issue/src/benchmarking.rs b/crates/issue/src/benchmarking.rs index 4b39898687..d9cf85c747 100644 --- a/crates/issue/src/benchmarking.rs +++ b/crates/issue/src/benchmarking.rs @@ -104,10 +104,8 @@ enum PaymentType { struct ChainState { issue_id: H256, - merkle_proof: MerkleProof, - transaction: Transaction, + transaction: FullTransactionProof, issue_request: DefaultIssueRequest, - length_bound: u32, } fn setup_issue( @@ -158,9 +156,8 @@ fn setup_issue( &vault_btc_address, )); - let (transaction, merkle_proof) = + let transaction = BtcRelay::::initialize_and_store_max(relayer_id.clone(), hashes, vin, outputs, tx_size as usize); - let length_bound = transaction.size_no_witness() as u32; register_vault::(vault_id.clone()); @@ -170,10 +167,8 @@ fn setup_issue( ChainState { issue_id, - merkle_proof, transaction, issue_request, - length_bound, } } @@ -224,13 +219,7 @@ pub mod benchmarks { let issue_data = setup_issue::(PaymentType::Exact, h, i, o, b); #[extrinsic_call] - execute_issue( - RawOrigin::Signed(origin), - issue_data.issue_id, - issue_data.merkle_proof, - issue_data.transaction, - issue_data.length_bound, - ); + execute_issue(RawOrigin::Signed(origin), issue_data.issue_id, issue_data.transaction); } #[benchmark] @@ -239,13 +228,7 @@ pub mod benchmarks { let issue_data = setup_issue::(PaymentType::Overpayment, h, i, o, b); #[extrinsic_call] - execute_issue( - RawOrigin::Signed(origin), - issue_data.issue_id, - issue_data.merkle_proof, - issue_data.transaction, - issue_data.length_bound, - ); + execute_issue(RawOrigin::Signed(origin), issue_data.issue_id, issue_data.transaction); } #[benchmark] @@ -254,13 +237,7 @@ pub mod benchmarks { let issue_data = setup_issue::(PaymentType::Underpayment, h, i, o, b); #[extrinsic_call] - execute_issue( - RawOrigin::Signed(origin), - issue_data.issue_id, - issue_data.merkle_proof, - issue_data.transaction, - issue_data.length_bound, - ); + execute_issue(RawOrigin::Signed(origin), issue_data.issue_id, issue_data.transaction); } #[benchmark] @@ -270,13 +247,7 @@ pub mod benchmarks { expire_issue::(&issue_data); #[extrinsic_call] - execute_issue( - RawOrigin::Signed(origin), - issue_data.issue_id, - issue_data.merkle_proof, - issue_data.transaction, - issue_data.length_bound, - ); + execute_issue(RawOrigin::Signed(origin), issue_data.issue_id, issue_data.transaction); } #[benchmark] @@ -286,13 +257,7 @@ pub mod benchmarks { expire_issue::(&issue_data); #[extrinsic_call] - execute_issue( - RawOrigin::Signed(origin), - issue_data.issue_id, - issue_data.merkle_proof, - issue_data.transaction, - issue_data.length_bound, - ); + execute_issue(RawOrigin::Signed(origin), issue_data.issue_id, issue_data.transaction); } #[benchmark] @@ -302,13 +267,7 @@ pub mod benchmarks { expire_issue::(&issue_data); #[extrinsic_call] - execute_issue( - RawOrigin::Signed(origin), - issue_data.issue_id, - issue_data.merkle_proof, - issue_data.transaction, - issue_data.length_bound, - ); + execute_issue(RawOrigin::Signed(origin), issue_data.issue_id, issue_data.transaction); } #[benchmark] diff --git a/crates/issue/src/ext.rs b/crates/issue/src/ext.rs index 659e851591..69ed75a1a5 100644 --- a/crates/issue/src/ext.rs +++ b/crates/issue/src/ext.rs @@ -3,23 +3,16 @@ use mocktopus::macros::mockable; #[cfg_attr(test, mockable)] pub(crate) mod btc_relay { - use bitcoin::types::{MerkleProof, Transaction, Value}; + use bitcoin::types::{FullTransactionProof, Value}; use btc_relay::BtcAddress; use frame_support::dispatch::DispatchError; use sp_std::convert::TryFrom; pub fn get_and_verify_issue_payment>( - merkle_proof: MerkleProof, - transaction: Transaction, - length_bound: u32, + unchecked_transaction: FullTransactionProof, recipient_btc_address: BtcAddress, ) -> Result { - >::get_and_verify_issue_payment( - merkle_proof, - transaction, - length_bound, - recipient_btc_address, - ) + >::get_and_verify_issue_payment(unchecked_transaction, recipient_btc_address) } pub fn get_best_block_height() -> u32 { diff --git a/crates/issue/src/lib.rs b/crates/issue/src/lib.rs index 4ac852d942..509422f5ca 100644 --- a/crates/issue/src/lib.rs +++ b/crates/issue/src/lib.rs @@ -32,10 +32,10 @@ pub mod types; pub use crate::types::{DefaultIssueRequest, IssueRequest, IssueRequestStatus}; use crate::types::{BalanceOf, DefaultVaultId, Version}; -use bitcoin::types::{MerkleProof, Transaction}; +use bitcoin::{merkle::PartialTransactionProof, types::FullTransactionProof}; use btc_relay::{BtcAddress, BtcPublicKey}; use currency::Amount; -use frame_support::{dispatch::DispatchError, ensure, traits::Get, transactional, PalletId}; +use frame_support::{dispatch::DispatchError, ensure, pallet_prelude::Weight, traits::Get, transactional, PalletId}; use frame_system::{ensure_root, ensure_signed}; pub use pallet::*; use sp_core::H256; @@ -44,6 +44,32 @@ use sp_std::vec::Vec; use types::IssueRequestExt; use vault_registry::{types::CurrencyId, CurrencySource, VaultStatus}; +/// Complexity: +/// - `O(H + I + O + B)` where: +/// - `H` is the number of hashes in the merkle tree +/// - `I` is the number of transaction inputs +/// - `O` is the number of transaction outputs +/// - `B` is `transaction` size in bytes (length-fee-bounded) +fn weight_for_execute_issue(proof: &FullTransactionProof) -> Weight { + let partial_weight = |partial_proof: &PartialTransactionProof| { + let h = partial_proof.merkle_proof.hashes.len() as u32; + let i = partial_proof.transaction.inputs.len() as u32; + let o = partial_proof.transaction.outputs.len() as u32; + let b = partial_proof.tx_encoded_len; + + ::WeightInfo::execute_issue_underpayment(h, i, o, b) + .max(::WeightInfo::execute_issue_exact(h, i, o, b)) + .max(::WeightInfo::execute_issue_overpayment(h, i, o, b)) + .max(::WeightInfo::execute_expired_issue_underpayment( + h, i, o, b, + )) + .max(::WeightInfo::execute_expired_issue_exact(h, i, o, b)) + .max(::WeightInfo::execute_expired_issue_overpayment(h, i, o, b)) + }; + + partial_weight(&proof.coinbase_proof).saturating_add(partial_weight(&proof.user_tx_proof)) +} + #[frame_support::pallet] pub mod pallet { use super::*; @@ -220,36 +246,16 @@ pub mod pallet { /// * `tx_block_height` - block number of collateral chain /// * `merkle_proof` - raw bytes /// * `raw_tx` - raw bytes - /// - /// ## Complexity: - /// - `O(H + I + O + B)` where: - /// - `H` is the number of hashes in the merkle tree - /// - `I` is the number of transaction inputs - /// - `O` is the number of transaction outputs - /// - `B` is `transaction` size in bytes (length-fee-bounded) #[pallet::call_index(1)] - #[pallet::weight({ - let h = merkle_proof.hashes.len() as u32; - let i = transaction.inputs.len() as u32; - let o = transaction.outputs.len() as u32; - let b = *length_bound; - ::WeightInfo::execute_issue_underpayment(h, i, o, b) - .max(::WeightInfo::execute_issue_exact(h, i, o, b)) - .max(::WeightInfo::execute_issue_overpayment(h, i, o, b)) - .max(::WeightInfo::execute_expired_issue_underpayment(h, i, o, b)) - .max(::WeightInfo::execute_expired_issue_exact(h, i, o, b)) - .max(::WeightInfo::execute_expired_issue_overpayment(h, i, o, b)) - })] + #[pallet::weight(weight_for_execute_issue::(unchecked_transaction))] #[transactional] pub fn execute_issue( origin: OriginFor, issue_id: H256, - merkle_proof: MerkleProof, - transaction: Transaction, - #[pallet::compact] length_bound: u32, + unchecked_transaction: FullTransactionProof, ) -> DispatchResultWithPostInfo { let executor = ensure_signed(origin)?; - Self::_execute_issue(executor, issue_id, merkle_proof, transaction, length_bound)?; + Self::_execute_issue(executor, issue_id, unchecked_transaction)?; Ok(().into()) } @@ -375,20 +381,14 @@ impl Pallet { fn _execute_issue( executor: T::AccountId, issue_id: H256, - merkle_proof: MerkleProof, - transaction: Transaction, - length_bound: u32, + unchecked_transaction: FullTransactionProof, ) -> Result<(), DispatchError> { let mut issue = Self::get_issue_request_from_id(&issue_id)?; // allow anyone to complete issue request let requester = issue.requester.clone(); - let amount_transferred = ext::btc_relay::get_and_verify_issue_payment::>( - merkle_proof, - transaction, - length_bound, - issue.btc_address, - )?; + let amount_transferred = + ext::btc_relay::get_and_verify_issue_payment::>(unchecked_transaction, issue.btc_address)?; let amount_transferred = Amount::new(amount_transferred, issue.vault.wrapped_currency()); let expected_total_amount = issue.amount().checked_add(&issue.fee())?; diff --git a/crates/issue/src/tests.rs b/crates/issue/src/tests.rs index 4e20ae5b2c..4f8cccd3b3 100644 --- a/crates/issue/src/tests.rs +++ b/crates/issue/src/tests.rs @@ -1,5 +1,6 @@ use crate::{ext, mock::*, Event, IssueRequest}; +use bitcoin::{merkle::PartialTransactionProof, types::FullTransactionProof}; use btc_relay::{BtcAddress, BtcPublicKey}; use currency::Amount; use frame_support::{assert_noop, assert_ok, dispatch::DispatchError}; @@ -54,7 +55,20 @@ fn request_issue_ok_with_address( } fn execute_issue(origin: AccountId, issue_id: &H256) -> Result<(), DispatchError> { - Issue::_execute_issue(origin, *issue_id, Default::default(), Default::default(), u32::MAX) + let unchecked_transaction = FullTransactionProof { + user_tx_proof: PartialTransactionProof { + transaction: Default::default(), + tx_encoded_len: u32::MAX, + merkle_proof: Default::default(), + }, + coinbase_proof: PartialTransactionProof { + transaction: Default::default(), + tx_encoded_len: u32::MAX, + merkle_proof: Default::default(), + }, + }; + + Issue::_execute_issue(origin, *issue_id, unchecked_transaction) } fn cancel_issue(origin: AccountId, issue_id: &H256) -> Result<(), DispatchError> { @@ -158,7 +172,7 @@ fn setup_execute( >::set_active_block_number(5); ext::btc_relay::get_and_verify_issue_payment:: - .mock_safe(move |_, _, _, _| MockResult::Return(Ok(btc_transferred))); + .mock_safe(move |_, _| MockResult::Return(Ok(btc_transferred))); issue_id } diff --git a/crates/redeem/src/benchmarking.rs b/crates/redeem/src/benchmarking.rs index b44207ebd1..afcc7ae50a 100644 --- a/crates/redeem/src/benchmarking.rs +++ b/crates/redeem/src/benchmarking.rs @@ -234,9 +234,7 @@ pub mod benchmarks { )); } - let (transaction, merkle_proof) = - BtcRelay::::initialize_and_store_max(relayer_id.clone(), h, i, outputs, b as usize); - let length_bound = transaction.size_no_witness() as u32; + let transaction = BtcRelay::::initialize_and_store_max(relayer_id.clone(), h, i, outputs, b as usize); assert_ok!(Oracle::::_set_exchange_rate( get_collateral_currency_id::(), @@ -244,13 +242,7 @@ pub mod benchmarks { )); #[extrinsic_call] - _( - RawOrigin::Signed(vault_id.account_id.clone()), - redeem_id, - merkle_proof, - transaction, - length_bound, - ); + _(RawOrigin::Signed(vault_id.account_id.clone()), redeem_id, transaction); } #[benchmark] diff --git a/crates/redeem/src/ext.rs b/crates/redeem/src/ext.rs index d0bd65e316..a1156eb7e9 100644 --- a/crates/redeem/src/ext.rs +++ b/crates/redeem/src/ext.rs @@ -3,24 +3,20 @@ use mocktopus::macros::mockable; #[cfg_attr(test, mockable)] pub(crate) mod btc_relay { - use bitcoin::types::{MerkleProof, Transaction, Value}; + use bitcoin::types::{FullTransactionProof, Value}; use btc_relay::BtcAddress; use frame_support::dispatch::DispatchError; use sp_core::H256; use sp_std::convert::TryInto; pub fn verify_and_validate_op_return_transaction>( - merkle_proof: MerkleProof, - transaction: Transaction, - length_bound: u32, + unchecked_transaction: FullTransactionProof, recipient_btc_address: BtcAddress, expected_btc: V, op_return_id: H256, ) -> Result<(), DispatchError> { >::verify_and_validate_op_return_transaction( - merkle_proof, - transaction, - length_bound, + unchecked_transaction, recipient_btc_address, expected_btc, op_return_id, diff --git a/crates/redeem/src/lib.rs b/crates/redeem/src/lib.rs index 5c49433651..ffd3acc3f3 100644 --- a/crates/redeem/src/lib.rs +++ b/crates/redeem/src/lib.rs @@ -30,12 +30,14 @@ pub mod types; pub use crate::types::{DefaultRedeemRequest, RedeemRequest, RedeemRequestStatus}; use crate::types::{BalanceOf, RedeemRequestExt, Version}; -use bitcoin::types::{MerkleProof, Transaction}; +use bitcoin::types::FullTransactionProof; use btc_relay::BtcAddress; use currency::Amount; use frame_support::{ dispatch::{DispatchError, DispatchResult}, - ensure, transactional, + ensure, + pallet_prelude::Weight, + transactional, }; use frame_system::{ensure_root, ensure_signed}; use oracle::OracleKey; @@ -50,6 +52,27 @@ use vault_registry::{ pub use pallet::*; +/// Complexity: +/// - `O(H + I + O + B)` where: +/// - `H` is the number of hashes in the merkle tree +/// - `I` is the number of transaction inputs +/// - `O` is the number of transaction outputs +/// - `B` is `transaction` size in bytes (length-fee-bounded) +fn weight_for_execute_redeem(proof: &FullTransactionProof) -> Weight { + ::WeightInfo::execute_redeem( + proof.user_tx_proof.merkle_proof.hashes.len() as u32, // H + proof.user_tx_proof.transaction.inputs.len() as u32, // I + proof.user_tx_proof.transaction.outputs.len() as u32, // O + proof.user_tx_proof.tx_encoded_len, + ) + .saturating_add(::WeightInfo::execute_redeem( + proof.coinbase_proof.merkle_proof.hashes.len() as u32, // H + proof.coinbase_proof.transaction.inputs.len() as u32, // I + proof.coinbase_proof.transaction.outputs.len() as u32, // O + proof.coinbase_proof.tx_encoded_len, + )) +} + #[frame_support::pallet] pub mod pallet { use super::*; @@ -266,30 +289,17 @@ pub mod pallet { /// * `tx_id` - transaction hash /// * `merkle_proof` - membership proof /// * `transaction` - tx containing payment - /// - /// ## Complexity: - /// - `O(H + I + O + B)` where: - /// - `H` is the number of hashes in the merkle tree - /// - `I` is the number of transaction inputs - /// - `O` is the number of transaction outputs - /// - `B` is `transaction` size in bytes (length-fee-bounded) #[pallet::call_index(2)] - #[pallet::weight(::WeightInfo::execute_redeem( - merkle_proof.hashes.len() as u32, // H - transaction.inputs.len() as u32, // I - transaction.outputs.len() as u32, // O - *length_bound, - ))] + #[pallet::weight(weight_for_execute_redeem::(unchecked_transaction))] #[transactional] pub fn execute_redeem( origin: OriginFor, redeem_id: H256, - merkle_proof: MerkleProof, - transaction: Transaction, - #[pallet::compact] length_bound: u32, + unchecked_transaction: FullTransactionProof, ) -> DispatchResultWithPostInfo { let _ = ensure_signed(origin)?; - Self::_execute_redeem(redeem_id, merkle_proof, transaction, length_bound)?; + + Self::_execute_redeem(redeem_id, unchecked_transaction)?; // Don't take tx fees on success. If the vault had to pay for this function, it would // have been vulnerable to a griefing attack where users would redeem amounts just @@ -577,19 +587,12 @@ impl Pallet { Ok(()) } - fn _execute_redeem( - redeem_id: H256, - merkle_proof: MerkleProof, - transaction: Transaction, - length_bound: u32, - ) -> Result<(), DispatchError> { + fn _execute_redeem(redeem_id: H256, unchecked_transaction: FullTransactionProof) -> Result<(), DispatchError> { let redeem = Self::get_open_redeem_request_from_id(&redeem_id)?; // check the transaction inclusion and validity ext::btc_relay::verify_and_validate_op_return_transaction::( - merkle_proof, - transaction, - length_bound, // need to check this first to avoid excess work + unchecked_transaction, redeem.btc_address, redeem.amount_btc, redeem_id, diff --git a/crates/redeem/src/tests.rs b/crates/redeem/src/tests.rs index dc75e3e650..c31a0afd15 100644 --- a/crates/redeem/src/tests.rs +++ b/crates/redeem/src/tests.rs @@ -1,6 +1,7 @@ use crate::{ext, mock::*}; use crate::types::{RedeemRequest, RedeemRequestStatus}; +use bitcoin::{merkle::PartialTransactionProof, types::FullTransactionProof}; use btc_relay::BtcAddress; use currency::Amount; use frame_support::{assert_err, assert_noop, assert_ok, dispatch::DispatchError}; @@ -358,18 +359,28 @@ fn test_liquidation_redeem_succeeds() { }) } +fn get_some_unchecked_transaction() -> FullTransactionProof { + FullTransactionProof { + user_tx_proof: PartialTransactionProof { + transaction: Default::default(), + tx_encoded_len: u32::MAX, + merkle_proof: Default::default(), + }, + coinbase_proof: PartialTransactionProof { + transaction: Default::default(), + tx_encoded_len: u32::MAX, + merkle_proof: Default::default(), + }, + } +} + #[test] fn test_execute_redeem_fails_with_redeem_id_not_found() { run_test(|| { convert_to.mock_safe(|_, x| MockResult::Return(Ok(x))); + assert_err!( - Redeem::execute_redeem( - RuntimeOrigin::signed(VAULT.account_id), - H256([0u8; 32]), - Default::default(), - Default::default(), - u32::MAX, - ), + Redeem::_execute_redeem(H256([0u8; 32]), get_some_unchecked_transaction()), TestError::RedeemIdNotFound ); }) @@ -397,7 +408,7 @@ fn test_execute_redeem_succeeds_with_another_account() { }, ); ext::btc_relay::verify_and_validate_op_return_transaction:: - .mock_safe(|_, _, _, _, _, _| MockResult::Return(Ok(()))); + .mock_safe(|_, _, _, _| MockResult::Return(Ok(()))); let btc_fee = Redeem::get_current_inclusion_fee(DEFAULT_WRAPPED_CURRENCY).unwrap(); @@ -433,12 +444,9 @@ fn test_execute_redeem_succeeds_with_another_account() { MockResult::Return(Ok(())) }); - assert_ok!(Redeem::execute_redeem( - RuntimeOrigin::signed(USER), + assert_ok!(Redeem::_execute_redeem( H256([0u8; 32]), - Default::default(), - Default::default(), - u32::MAX, + get_some_unchecked_transaction() )); assert_emitted!(Event::ExecuteRedeem { redeem_id: H256([0; 32]), @@ -477,7 +485,7 @@ fn test_execute_redeem_succeeds() { }, ); ext::btc_relay::verify_and_validate_op_return_transaction:: - .mock_safe(|_, _, _, _, _, _| MockResult::Return(Ok(()))); + .mock_safe(|_, _, _, _| MockResult::Return(Ok(()))); let btc_fee = Redeem::get_current_inclusion_fee(DEFAULT_WRAPPED_CURRENCY).unwrap(); @@ -513,12 +521,9 @@ fn test_execute_redeem_succeeds() { MockResult::Return(Ok(())) }); - assert_ok!(Redeem::execute_redeem( - RuntimeOrigin::signed(VAULT.account_id), + assert_ok!(Redeem::_execute_redeem( H256([0u8; 32]), - Default::default(), - Default::default(), - u32::MAX, + get_some_unchecked_transaction() )); assert_emitted!(Event::ExecuteRedeem { redeem_id: H256([0; 32]), @@ -837,7 +842,7 @@ mod spec_based_tests { }, ); ext::btc_relay::verify_and_validate_op_return_transaction:: - .mock_safe(|_, _, _, _, _, _| MockResult::Return(Ok(()))); + .mock_safe(|_, _, _, _| MockResult::Return(Ok(()))); let btc_fee = Redeem::get_current_inclusion_fee(DEFAULT_WRAPPED_CURRENCY).unwrap(); let redeem_request = RedeemRequest { @@ -869,12 +874,9 @@ mod spec_based_tests { MockResult::Return(Ok(())) }); - assert_ok!(Redeem::execute_redeem( - RuntimeOrigin::signed(USER), + assert_ok!(Redeem::_execute_redeem( H256([0u8; 32]), - Default::default(), - Default::default(), - u32::MAX, + get_some_unchecked_transaction() )); assert_emitted!(Event::ExecuteRedeem { redeem_id: H256([0; 32]), diff --git a/crates/replace/src/benchmarking.rs b/crates/replace/src/benchmarking.rs index 8e9125627e..9d523d72a6 100644 --- a/crates/replace/src/benchmarking.rs +++ b/crates/replace/src/benchmarking.rs @@ -137,7 +137,7 @@ fn setup_replace( vin: u32, vout: u32, tx_size: u32, -) -> (H256, MerkleProof, Transaction) +) -> (H256, FullTransactionProof) where <::Balance as TryInto>::Error: Debug, { @@ -186,7 +186,7 @@ where )); } - let (transaction, merkle_proof) = + let transaction = BtcRelay::::initialize_and_store_max(relayer_id.clone(), hashes, vin, outputs, tx_size as usize); let period = Replace::::replace_period().max(replace_request.period); @@ -197,7 +197,7 @@ where Security::::active_block_number() + Replace::::replace_period() + 100u32.into(), ); - (replace_id, merkle_proof, transaction) + (replace_id, transaction) } #[benchmarks( @@ -278,18 +278,10 @@ pub mod benchmarks { to_be_replaced, .. } = setup_chain::(); - let (replace_id, merkle_proof, transaction) = - setup_replace::(&old_vault_id, &new_vault_id, to_be_replaced, h, i, o, b); - let length_bound = transaction.size_no_witness() as u32; + let (replace_id, transaction) = setup_replace::(&old_vault_id, &new_vault_id, to_be_replaced, h, i, o, b); #[extrinsic_call] - execute_replace( - RawOrigin::Signed(old_vault_id.account_id), - replace_id, - merkle_proof, - transaction, - length_bound, - ); + execute_replace(RawOrigin::Signed(old_vault_id.account_id), replace_id, transaction); } #[benchmark] @@ -300,9 +292,7 @@ pub mod benchmarks { to_be_replaced, .. } = setup_chain::(); - let (replace_id, merkle_proof, transaction) = - setup_replace::(&old_vault_id, &new_vault_id, to_be_replaced, h, i, o, b); - let length_bound = transaction.size_no_witness() as u32; + let (replace_id, transaction) = setup_replace::(&old_vault_id, &new_vault_id, to_be_replaced, h, i, o, b); assert_ok!(Pallet::::cancel_replace( RawOrigin::Signed(new_vault_id.account_id).into(), @@ -310,13 +300,7 @@ pub mod benchmarks { )); #[extrinsic_call] - execute_replace( - RawOrigin::Signed(old_vault_id.account_id), - replace_id, - merkle_proof, - transaction, - length_bound, - ); + execute_replace(RawOrigin::Signed(old_vault_id.account_id), replace_id, transaction); } #[benchmark] @@ -328,7 +312,7 @@ pub mod benchmarks { .. } = setup_chain::(); - let (replace_id, _, _) = setup_replace::(&old_vault_id, &new_vault_id, to_be_replaced, 2, 2, 2, 541); + let (replace_id, _) = setup_replace::(&old_vault_id, &new_vault_id, to_be_replaced, 2, 2, 2, 541); #[extrinsic_call] cancel_replace(RawOrigin::Signed(new_vault_id.account_id), replace_id); diff --git a/crates/replace/src/ext.rs b/crates/replace/src/ext.rs index b1a2037436..bfbfdf204b 100644 --- a/crates/replace/src/ext.rs +++ b/crates/replace/src/ext.rs @@ -3,24 +3,20 @@ use mocktopus::macros::mockable; #[cfg_attr(test, mockable)] pub(crate) mod btc_relay { - use bitcoin::types::{MerkleProof, Transaction, Value}; + use bitcoin::types::{FullTransactionProof, Value}; use btc_relay::BtcAddress; use frame_support::dispatch::DispatchError; use sp_core::H256; use sp_std::convert::TryInto; pub fn verify_and_validate_op_return_transaction>( - merkle_proof: MerkleProof, - transaction: Transaction, - length_bound: u32, + unchecked_transaction: FullTransactionProof, recipient_btc_address: BtcAddress, expected_btc: V, op_return_id: H256, ) -> Result<(), DispatchError> { >::verify_and_validate_op_return_transaction( - merkle_proof, - transaction, - length_bound, + unchecked_transaction, recipient_btc_address, expected_btc, op_return_id, diff --git a/crates/replace/src/lib.rs b/crates/replace/src/lib.rs index ad5c4b82b4..ba741b8beb 100644 --- a/crates/replace/src/lib.rs +++ b/crates/replace/src/lib.rs @@ -27,13 +27,14 @@ use mocktopus::macros::mockable; use crate::types::{BalanceOf, ReplaceRequestExt, Version}; pub use crate::types::{DefaultReplaceRequest, ReplaceRequest, ReplaceRequestStatus}; -use bitcoin::types::{MerkleProof, Transaction}; +use bitcoin::types::FullTransactionProof; use btc_relay::BtcAddress; use currency::Amount; pub use default_weights::WeightInfo; use frame_support::{ dispatch::{DispatchError, DispatchResult}, ensure, + pallet_prelude::Weight, traits::Get, transactional, }; @@ -45,6 +46,31 @@ use vault_registry::{types::CurrencyId, CurrencySource}; pub use pallet::*; +/// Complexity: +/// - `O(H + I + O + B)` where: +/// - `H` is the number of hashes in the merkle tree +/// - `I` is the number of transaction inputs +/// - `O` is the number of transaction outputs +/// - `B` is `transaction` size in bytes (length-fee-bounded) +fn weight_for_execute_replace(proof: &FullTransactionProof) -> Weight { + { + let h = proof.user_tx_proof.merkle_proof.hashes.len() as u32; + let i = proof.user_tx_proof.transaction.inputs.len() as u32; + let o = proof.user_tx_proof.transaction.outputs.len() as u32; + let b = proof.user_tx_proof.tx_encoded_len; + ::WeightInfo::execute_pending_replace(h, i, o, b) + .max(::WeightInfo::execute_cancelled_replace(h, i, o, b)) + } + .saturating_add({ + let h = proof.coinbase_proof.merkle_proof.hashes.len() as u32; + let i = proof.coinbase_proof.transaction.inputs.len() as u32; + let o = proof.coinbase_proof.transaction.outputs.len() as u32; + let b = proof.coinbase_proof.tx_encoded_len; + ::WeightInfo::execute_pending_replace(h, i, o, b) + .max(::WeightInfo::execute_cancelled_replace(h, i, o, b)) + }) +} + #[frame_support::pallet] pub mod pallet { use super::*; @@ -266,32 +292,17 @@ pub mod pallet { /// * `replace_id` - the ID of the replacement request /// * 'merkle_proof' - the merkle root of the block /// * `raw_tx` - the transaction id in bytes - /// - /// ## Complexity: - /// - `O(H + I + O + B)` where: - /// - `H` is the number of hashes in the merkle tree - /// - `I` is the number of transaction inputs - /// - `O` is the number of transaction outputs - /// - `B` is `transaction` size in bytes (length-fee-bounded) #[pallet::call_index(3)] - #[pallet::weight({ - let h = merkle_proof.hashes.len() as u32; - let i = transaction.inputs.len() as u32; - let o = transaction.outputs.len() as u32; - let b = *length_bound; - ::WeightInfo::execute_pending_replace(h, i, o, b) - .max(::WeightInfo::execute_cancelled_replace(h, i, o, b)) - })] + #[pallet::weight(weight_for_execute_replace::(unchecked_transaction))] #[transactional] pub fn execute_replace( origin: OriginFor, replace_id: H256, - merkle_proof: MerkleProof, - transaction: Transaction, - #[pallet::compact] length_bound: u32, + unchecked_transaction: FullTransactionProof, ) -> DispatchResultWithPostInfo { let _ = ensure_signed(origin)?; - Self::_execute_replace(replace_id, merkle_proof, transaction, length_bound)?; + + Self::_execute_replace(replace_id, unchecked_transaction)?; Ok(().into()) } @@ -491,12 +502,7 @@ impl Pallet { Ok(()) } - fn _execute_replace( - replace_id: H256, - merkle_proof: MerkleProof, - transaction: Transaction, - length_bound: u32, - ) -> DispatchResult { + fn _execute_replace(replace_id: H256, unchecked_transaction: FullTransactionProof) -> DispatchResult { // retrieve the replace request using the id parameter // we can still execute cancelled requests let replace = Self::get_open_or_cancelled_replace_request(&replace_id)?; @@ -511,9 +517,7 @@ impl Pallet { // check the transaction inclusion and validity ext::btc_relay::verify_and_validate_op_return_transaction::( - merkle_proof, - transaction, - length_bound, + unchecked_transaction, replace.btc_address, replace.amount, replace_id, diff --git a/crates/replace/src/tests.rs b/crates/replace/src/tests.rs index e88e3a9afb..51cf8fa241 100644 --- a/crates/replace/src/tests.rs +++ b/crates/replace/src/tests.rs @@ -3,6 +3,7 @@ use crate::{ *, }; +use bitcoin::merkle::PartialTransactionProof; use btc_relay::BtcAddress; use currency::Amount; use frame_support::{assert_err, assert_ok}; @@ -44,6 +45,21 @@ fn wrapped(amount: u128) -> Amount { Amount::new(amount, DEFAULT_WRAPPED_CURRENCY) } +fn get_some_unchecked_transaction() -> FullTransactionProof { + FullTransactionProof { + user_tx_proof: PartialTransactionProof { + transaction: Default::default(), + tx_encoded_len: u32::MAX, + merkle_proof: Default::default(), + }, + coinbase_proof: PartialTransactionProof { + transaction: Default::default(), + tx_encoded_len: u32::MAX, + merkle_proof: Default::default(), + }, + } +} + mod request_replace_tests { use super::*; @@ -189,7 +205,7 @@ mod execute_replace_test { Replace::replace_period.mock_safe(|| MockResult::Return(20)); ext::btc_relay::has_request_expired::.mock_safe(|_, _, _| MockResult::Return(Ok(false))); ext::btc_relay::verify_and_validate_op_return_transaction:: - .mock_safe(|_, _, _, _, _, _| MockResult::Return(Ok(()))); + .mock_safe(|_, _, _, _| MockResult::Return(Ok(()))); ext::vault_registry::replace_tokens::.mock_safe(|_, _, _, _| MockResult::Return(Ok(()))); Amount::::unlock_on.mock_safe(|_, _| MockResult::Return(Ok(()))); ext::vault_registry::transfer_funds::.mock_safe(|_, _, _| MockResult::Return(Ok(()))); @@ -204,9 +220,7 @@ mod execute_replace_test { setup_mocks(); assert_ok!(Replace::_execute_replace( H256::zero(), - Default::default(), - Default::default(), - u32::MAX, + get_some_unchecked_transaction() )); assert_event_matches!(Event::ExecuteReplace { replace_id: _, @@ -231,9 +245,7 @@ mod execute_replace_test { assert_ok!(Replace::_execute_replace( H256::zero(), - Default::default(), - Default::default(), - u32::MAX, + get_some_unchecked_transaction() )); assert_event_matches!(Event::ExecuteReplace { replace_id: _, diff --git a/data/bitcoin-testdata.gzip b/data/bitcoin-testdata.gzip index d9d12418ed..b151e448d8 100644 Binary files a/data/bitcoin-testdata.gzip and b/data/bitcoin-testdata.gzip differ diff --git a/parachain/runtime/runtime-tests/src/bitcoin_data.rs b/parachain/runtime/runtime-tests/src/bitcoin_data.rs index 57a7a42a5f..e97a115127 100644 --- a/parachain/runtime/runtime-tests/src/bitcoin_data.rs +++ b/parachain/runtime/runtime-tests/src/bitcoin_data.rs @@ -1,4 +1,7 @@ -use bitcoin::types::{BlockHeader, H256Le, MerkleProof}; +use bitcoin::{ + parser::parse_transaction, + types::{BlockHeader, H256Le, MerkleProof}, +}; use flate2::read::GzDecoder; use serde::Deserialize; use std::{ @@ -43,6 +46,7 @@ impl Block { #[derive(Clone, Debug, Deserialize)] pub struct Transaction { txid: String, + pub raw_tx: String, raw_merkle_proof: String, } @@ -54,6 +58,15 @@ impl Transaction { pub fn get_merkle_proof(&self) -> MerkleProof { MerkleProof::parse(&hex::decode(&self.raw_merkle_proof).expect(ERR_INVALID_PROOF)).expect(ERR_INVALID_PROOF) } + + pub fn get_tx(&self) -> bitcoin::types::Transaction { + let raw_tx_bytes = &hex::decode(&self.raw_tx).expect(ERR_INVALID_PROOF); + parse_transaction(&raw_tx_bytes).unwrap() + } + + pub fn get_tx_len(&self) -> u32 { + self.raw_tx.len() as u32 + } } fn read_data(data: &str) -> String { diff --git a/parachain/runtime/runtime-tests/src/parachain/btc_relay.rs b/parachain/runtime/runtime-tests/src/parachain/btc_relay.rs index d0dfb05892..6e45432129 100644 --- a/parachain/runtime/runtime-tests/src/parachain/btc_relay.rs +++ b/parachain/runtime/runtime-tests/src/parachain/btc_relay.rs @@ -2,8 +2,36 @@ use crate::{ bitcoin_data::{get_bitcoin_testdata, get_fork_testdata}, setup::{assert_eq, *}, }; +use bitcoin::{formatter::TryFormat, merkle::PartialTransactionProof}; use btc_relay::DIFFICULTY_ADJUSTMENT_INTERVAL; +#[test] +#[cfg_attr(feature = "skip-slow-tests", ignore)] +fn integration_test_transaction_formatting_and_txid_calculation() { + // reduce number of blocks to reduce testing time, but higher than 2016 blocks for difficulty adjustment + const BLOCKS_TO_TEST: usize = 2 * 2016 + 1; + + // load blocks with transactions + let test_data = get_bitcoin_testdata(); + + assert!(test_data.len() > BLOCKS_TO_TEST); + + // verify all transactions + for block in test_data.iter().take(BLOCKS_TO_TEST) { + assert!(block.test_txs[0].get_tx().is_coinbase()); + for tx in block.test_txs.iter() { + let mut reconstructed_raw_tx = vec![]; + tx.get_tx().try_format(&mut reconstructed_raw_tx).unwrap(); + let reconstructed_hex_tx = hex::encode(reconstructed_raw_tx); + assert_eq!(reconstructed_hex_tx, tx.raw_tx); + + let reconstructed_txid = tx.get_tx().tx_id_bounded(tx.get_tx_len()).unwrap().to_hex_be(); + + assert_eq!(reconstructed_txid, tx.get_txid().to_hex_be()); + } + } +} + #[test] #[cfg_attr(feature = "skip-slow-tests", ignore)] fn integration_test_submit_block_headers_and_verify_transaction_inclusion() { @@ -13,7 +41,7 @@ fn integration_test_submit_block_headers_and_verify_transaction_inclusion() { assert!(!BTCRelayPallet::disable_difficulty_check()); // reduce number of blocks to reduce testing time, but higher than 2016 blocks for difficulty adjustment - const BLOCKS_TO_TEST: usize = 5_000; + const BLOCKS_TO_TEST: usize = 2 * 2016 + 1; // load blocks with transactions let test_data = get_bitcoin_testdata(); @@ -39,6 +67,9 @@ fn integration_test_submit_block_headers_and_verify_transaction_inclusion() { }) .dispatch(origin_of(account_of(ALICE)))); + assert_eq!(skip_blocks, 0); + assert!(test_data.len() > skip_blocks + BLOCKS_TO_TEST); + for block in test_data.iter().skip(skip_blocks + 1).take(BLOCKS_TO_TEST) { let block_header = block.get_block_header(); let prev_header_hash = block_header.hash_prev_block; @@ -64,15 +95,29 @@ fn integration_test_submit_block_headers_and_verify_transaction_inclusion() { // verify all transactions let current_height = btc_relay::Pallet::::get_best_block_height(); for block in test_data.iter().skip(skip_blocks).take(BLOCKS_TO_TEST) { - for tx in &block.test_txs { - let txid = tx.get_txid(); - let merkle_proof = tx.get_merkle_proof(); + let coinbase = block.test_txs[0].clone(); + let coinbase_proof = PartialTransactionProof { + merkle_proof: coinbase.get_merkle_proof(), + transaction: coinbase.get_tx(), + tx_encoded_len: coinbase.get_tx_len(), + }; + + for tx in block.test_txs.iter().skip(1) { + let user_tx_proof = PartialTransactionProof { + merkle_proof: tx.get_merkle_proof(), + transaction: tx.get_tx(), + tx_encoded_len: tx.get_tx_len(), + }; + let full_proof = FullTransactionProof { + coinbase_proof: coinbase_proof.clone(), + user_tx_proof, + }; if block.height <= current_height - CONFIRMATIONS + 1 { - assert_ok!(BTCRelayPallet::_verify_transaction_inclusion(txid, merkle_proof, None)); + assert_ok!(BTCRelayPallet::_verify_transaction_inclusion(full_proof, None)); } else { // expect to fail due to insufficient confirmations assert_noop!( - BTCRelayPallet::_verify_transaction_inclusion(txid, merkle_proof, None), + BTCRelayPallet::_verify_transaction_inclusion(full_proof, None), BTCRelayError::BitcoinConfirmations ); } diff --git a/parachain/runtime/runtime-tests/src/parachain/issue.rs b/parachain/runtime/runtime-tests/src/parachain/issue.rs index cd66caae71..420539a826 100644 --- a/parachain/runtime/runtime-tests/src/parachain/issue.rs +++ b/parachain/runtime/runtime-tests/src/parachain/issue.rs @@ -489,7 +489,7 @@ fn integration_test_issue_wrapped_execute_succeeds() { let total_amount_btc = amount_btc + fee_amount_btc; // send the btc from the user to the vault - let (_tx_id, _height, merkle_proof, transaction) = generate_transaction_and_mine( + let (_tx_id, _height, transaction) = generate_transaction_and_mine( Default::default(), vec![], vec![(vault_btc_address, total_amount_btc)], @@ -501,9 +501,7 @@ fn integration_test_issue_wrapped_execute_succeeds() { // alice executes the issue by confirming the btc transaction assert_ok!(RuntimeCall::Issue(IssueCall::execute_issue { issue_id: issue_id, - merkle_proof, - transaction, - length_bound: u32::MAX, + unchecked_transaction: transaction }) .dispatch(origin_of(account_of(vault_proof_submitter)))); }); @@ -614,7 +612,7 @@ mod execute_pending_issue_tests { fn integration_test_issue_execute_precond_rawtx_valid() { test_with_initialized_vault(|vault_id| { let (issue_id, issue) = request_issue(&vault_id, vault_id.wrapped(1000)); - let (_tx_id, _height, merkle_proof, mut transaction) = TransactionGenerator::new() + let (_tx_id, _height, mut unchecked_transaction) = TransactionGenerator::new() .with_outputs(vec![(issue.btc_address, wrapped(1000))]) .mine(); @@ -622,13 +620,12 @@ mod execute_pending_issue_tests { // send to wrong address let bogus_address = BtcAddress::P2WPKHv0(H160::random()); - transaction.outputs[0] = TransactionOutput::payment(1000, &bogus_address); + unchecked_transaction.user_tx_proof.transaction.outputs[0] = + TransactionOutput::payment(1000, &bogus_address); assert_noop!( RuntimeCall::Issue(IssueCall::execute_issue { issue_id: issue_id, - merkle_proof, - transaction, - length_bound: u32::MAX, + unchecked_transaction }) .dispatch(origin_of(account_of(CAROL))), BTCRelayError::InvalidTxid @@ -641,20 +638,19 @@ mod execute_pending_issue_tests { fn integration_test_issue_execute_precond_proof_valid() { test_with_initialized_vault(|vault_id| { let (issue_id, issue) = request_issue(&vault_id, vault_id.wrapped(1000)); - let (_tx_id, _height, mut merkle_proof, transaction) = TransactionGenerator::new() + let (_tx_id, _height, mut transaction) = TransactionGenerator::new() .with_outputs(vec![(issue.btc_address, wrapped(1))]) .mine(); SecurityPallet::set_active_block_number(SecurityPallet::active_block_number() + CONFIRMATIONS); // mangle block header in merkle proof - merkle_proof.block_header = Default::default(); + transaction.user_tx_proof.merkle_proof.block_header = Default::default(); + transaction.coinbase_proof.merkle_proof.block_header = Default::default(); assert_noop!( RuntimeCall::Issue(IssueCall::execute_issue { issue_id: issue_id, - merkle_proof, - transaction, - length_bound: u32::MAX, + unchecked_transaction: transaction }) .dispatch(origin_of(account_of(CAROL))), BTCRelayError::BlockNotFound diff --git a/parachain/runtime/runtime-tests/src/parachain/redeem.rs b/parachain/runtime/runtime-tests/src/parachain/redeem.rs index 54619a6ba2..d6527cf1dc 100644 --- a/parachain/runtime/runtime-tests/src/parachain/redeem.rs +++ b/parachain/runtime/runtime-tests/src/parachain/redeem.rs @@ -406,9 +406,7 @@ mod spec_based_tests { assert_noop!( RuntimeCall::Redeem(RedeemCall::execute_redeem { redeem_id: H256::random(), - merkle_proof: Default::default(), - transaction: Default::default(), - length_bound: u32::MAX, + unchecked_transaction: dummy_tx() }) .dispatch(origin_of(account_of(VAULT))), RedeemError::RedeemIdNotFound @@ -468,22 +466,22 @@ mod spec_based_tests { ); // The `merkleProof` MUST contain a valid proof of of `rawTX` - let (_tx_id, _tx_block_height, _merkle_proof, transaction) = generate_transaction_and_mine( + let (_tx_id, _tx_block_height, mut transaction) = generate_transaction_and_mine( Default::default(), vec![], vec![(user_btc_address, redeem.amount_btc())], vec![redeem_id], ); let invalid_merkle_proof = hex::decode("00000020b0b3d77b97015b519553423c96642b33ca534c50ecefd133640000000000000029a0a725684aeca24af83e3ba0a3e3ee56adfdf032d19e5acba6d0a262e1580ca354915fd4c8001ac42a7b3a1000000005df41db041b26536b5b7fd7aeea4ea6bdb64f7039e4a566b1fa138a07ed2d3705932955c94ee4755abec003054128b10e0fbcf8dedbbc6236e23286843f1f82a018dc7f5f6fba31aa618fab4acad7df5a5046b6383595798758d30d68c731a14043a50d7cb8560d771fad70c5e52f6d7df26df13ca457655afca2cbab2e3b135c0383525b28fca31296c809641205962eb353fb88a9f3602e98a93b1e9ffd469b023d00").unwrap(); + transaction.user_tx_proof.merkle_proof = MerkleProof::parse(&invalid_merkle_proof).unwrap(); + transaction.user_tx_proof.merkle_proof = MerkleProof::parse(&invalid_merkle_proof).unwrap(); assert_noop!( RuntimeCall::Redeem(RedeemCall::execute_redeem { redeem_id: redeem_id, - merkle_proof: MerkleProof::parse(&invalid_merkle_proof).unwrap(), - transaction, - length_bound: u32::MAX, + unchecked_transaction: transaction }) .dispatch(origin_of(account_of(VAULT))), - BTCRelayError::BlockNotFound + BTCRelayError::InvalidTxid ); let parachain_state_before_execution = ParachainState::get(&vault_id); execute_redeem(redeem_id); @@ -1221,7 +1219,7 @@ fn integration_test_premium_redeem_wrapped_execute() { let redeem = RedeemPallet::get_open_redeem_request_from_id(&redeem_id).unwrap(); // send the btc from the vault to the user - let (_tx_id, _tx_block_height, merkle_proof, transaction) = generate_transaction_and_mine( + let (_tx_id, _tx_block_height, transaction) = generate_transaction_and_mine( Default::default(), vec![], vec![(user_btc_address, redeem.amount_btc())], @@ -1232,9 +1230,7 @@ fn integration_test_premium_redeem_wrapped_execute() { assert_ok!(RuntimeCall::Redeem(RedeemCall::execute_redeem { redeem_id, - merkle_proof, - transaction, - length_bound: u32::MAX, + unchecked_transaction: transaction }) .dispatch(origin_of(account_of(VAULT)))); @@ -1290,7 +1286,7 @@ fn integration_test_multiple_redeems_multiple_op_returns() { let redeem_2 = RedeemPallet::get_open_redeem_request_from_id(&redeem_2_id).unwrap(); // try to fulfill both redeem requests in a single transaction - let (_tx_id, _tx_block_height, merkle_proof, transaction) = generate_transaction_and_mine( + let (_tx_id, _tx_block_height, transaction) = generate_transaction_and_mine( Default::default(), vec![], vec![ @@ -1305,9 +1301,7 @@ fn integration_test_multiple_redeems_multiple_op_returns() { assert_err!( RuntimeCall::Redeem(RedeemCall::execute_redeem { redeem_id: redeem_1_id, - merkle_proof: merkle_proof.clone(), - transaction: transaction.clone(), - length_bound: u32::MAX, + unchecked_transaction: transaction.clone() }) .dispatch(origin_of(account_of(VAULT))), BTCRelayError::InvalidOpReturnTransaction @@ -1316,9 +1310,7 @@ fn integration_test_multiple_redeems_multiple_op_returns() { assert_err!( RuntimeCall::Redeem(RedeemCall::execute_redeem { redeem_id: redeem_2_id, - merkle_proof: merkle_proof.clone(), - transaction: transaction.clone(), - length_bound: u32::MAX, + unchecked_transaction: transaction }) .dispatch(origin_of(account_of(VAULT))), BTCRelayError::InvalidOpReturnTransaction @@ -1343,7 +1335,7 @@ fn integration_test_single_redeem_multiple_op_returns() { let redeem_id = assert_redeem_request_event(); let redeem = RedeemPallet::get_open_redeem_request_from_id(&redeem_id).unwrap(); - let (_tx_id, _tx_block_height, merkle_proof, transaction) = generate_transaction_and_mine( + let (_tx_id, _tx_block_height, transaction) = generate_transaction_and_mine( Default::default(), vec![], vec![(user_btc_address, redeem.amount_btc())], @@ -1358,9 +1350,7 @@ fn integration_test_single_redeem_multiple_op_returns() { assert_err!( RuntimeCall::Redeem(RedeemCall::execute_redeem { redeem_id, - merkle_proof, - transaction, - length_bound: u32::MAX, + unchecked_transaction: transaction }) .dispatch(origin_of(account_of(VAULT))), BTCRelayError::InvalidOpReturnTransaction diff --git a/parachain/runtime/runtime-tests/src/parachain/replace.rs b/parachain/runtime/runtime-tests/src/parachain/replace.rs index b00ef86299..1ef849c1d0 100644 --- a/parachain/runtime/runtime-tests/src/parachain/replace.rs +++ b/parachain/runtime/runtime-tests/src/parachain/replace.rs @@ -702,7 +702,7 @@ fn execute_replace_with_amount(replace_id: H256, amount: Amount) -> Dis let replace = ReplacePallet::get_open_or_cancelled_replace_request(&replace_id).unwrap(); // send the btc from the old_vault to the new_vault - let (_tx_id, _tx_block_height, merkle_proof, transaction) = generate_transaction_and_mine( + let (_tx_id, _tx_block_height, transaction) = generate_transaction_and_mine( Default::default(), vec![], vec![(replace.btc_address, amount)], @@ -713,9 +713,7 @@ fn execute_replace_with_amount(replace_id: H256, amount: Amount) -> Dis RuntimeCall::Replace(ReplaceCall::execute_replace { replace_id, - merkle_proof, - transaction, - length_bound: u32::MAX, + unchecked_transaction: transaction, }) .dispatch(origin_of(account_of(OLD_VAULT))) } diff --git a/parachain/runtime/runtime-tests/src/setup.rs b/parachain/runtime/runtime-tests/src/setup.rs index 05528f5847..018643e590 100644 --- a/parachain/runtime/runtime-tests/src/setup.rs +++ b/parachain/runtime/runtime-tests/src/setup.rs @@ -1,4 +1,5 @@ pub use crate::utils::*; +use bitcoin::merkle::PartialTransactionProof; pub use codec::Encode; use frame_support::traits::GenesisBuild; pub use frame_support::{assert_noop, assert_ok, traits::Currency, BoundedVec}; @@ -41,6 +42,21 @@ mod interlay_imports { pub const DEFAULT_GRIEFING_CURRENCY: CurrencyId = DEFAULT_NATIVE_CURRENCY; } +pub fn dummy_tx() -> FullTransactionProof { + FullTransactionProof { + coinbase_proof: PartialTransactionProof { + merkle_proof: Default::default(), + transaction: Default::default(), + tx_encoded_len: u32::MAX, + }, + user_tx_proof: PartialTransactionProof { + merkle_proof: Default::default(), + transaction: Default::default(), + tx_encoded_len: u32::MAX, + }, + } +} + pub struct ExtBuilder { test_externalities: sp_io::TestExternalities, } diff --git a/parachain/runtime/runtime-tests/src/utils.rs b/parachain/runtime/runtime-tests/src/utils.rs index 71c194b250..be988d1f99 100644 --- a/parachain/runtime/runtime-tests/src/utils.rs +++ b/parachain/runtime/runtime-tests/src/utils.rs @@ -1,5 +1,6 @@ use crate::setup::{assert_eq, *}; +use bitcoin::merkle::PartialTransactionProof; pub use bitcoin::types::{Block, TransactionInputSource, *}; pub use btc_relay::{BtcAddress, BtcPublicKey}; use currency::Amount; @@ -1209,7 +1210,7 @@ impl TransactionGenerator { self.relayer = relayer; self } - pub fn mine(&self) -> (H256Le, u32, MerkleProof, Transaction) { + pub fn mine(&self) -> (H256Le, u32, FullTransactionProof) { let mut height = BTCRelayPallet::get_best_block_height() + 1; let extra_confirmations = self.confirmations - 1; @@ -1287,6 +1288,9 @@ impl TransactionGenerator { let tx_block_height = height; let merkle_proof = block.merkle_proof(&[tx_id]).unwrap(); + let coinbase_tx = block.transactions[0].clone(); + let coinbase_merkle_proof = block.merkle_proof(&[coinbase_tx.tx_id()]).unwrap(); + self.relay(height, &block, block.header); // Mine six new blocks to get over required confirmations @@ -1308,7 +1312,20 @@ impl TransactionGenerator { prev_block_hash = conf_block.header.hash; } - (tx_id, tx_block_height, merkle_proof, transaction) + let unchecked_transaction = FullTransactionProof { + coinbase_proof: PartialTransactionProof { + tx_encoded_len: coinbase_tx.size_no_witness() as u32, + transaction: coinbase_tx, + merkle_proof: coinbase_merkle_proof, + }, + user_tx_proof: PartialTransactionProof { + tx_encoded_len: transaction.size_no_witness() as u32, + transaction: transaction, + merkle_proof, + }, + }; + + (tx_id, tx_block_height, unchecked_transaction) } fn relay(&self, height: u32, block: &Block, block_header: BlockHeader) { @@ -1331,7 +1348,7 @@ pub fn generate_transaction_and_mine( inputs: Vec<(Transaction, u32, Option)>, outputs: Vec<(BtcAddress, Amount)>, return_data: Vec, -) -> (H256Le, u32, MerkleProof, Transaction) { +) -> (H256Le, u32, FullTransactionProof) { TransactionGenerator::new() .with_script(signer.to_p2pkh_script_sig(vec![1; 32]).as_bytes()) .with_inputs(inputs) diff --git a/parachain/runtime/runtime-tests/src/utils/issue_utils.rs b/parachain/runtime/runtime-tests/src/utils/issue_utils.rs index 4358d5b891..a4149769b2 100644 --- a/parachain/runtime/runtime-tests/src/utils/issue_utils.rs +++ b/parachain/runtime/runtime-tests/src/utils/issue_utils.rs @@ -78,7 +78,7 @@ pub struct ExecuteIssueBuilder { submitter: AccountId, register_vault_with_currency_id: Option, relayer: Option<[u8; 32]>, - execution_tx: Option<(MerkleProof, Transaction)>, + execution_tx: Option, } impl ExecuteIssueBuilder { @@ -128,13 +128,11 @@ impl ExecuteIssueBuilder { pub fn execute_prepared(&self) -> DispatchResultWithPostInfo { VaultRegistryPallet::collateral_integrity_check(); - if let Some((merkle_proof, transaction)) = &self.execution_tx { + if let Some(transaction) = &self.execution_tx { // alice executes the issuerequest by confirming the btc transaction let ret = RuntimeCall::Issue(IssueCall::execute_issue { issue_id: self.issue_id, - merkle_proof: merkle_proof.clone(), - transaction: transaction.clone(), - length_bound: u32::MAX, + unchecked_transaction: transaction.clone(), }) .dispatch(origin_of(self.submitter.clone())); VaultRegistryPallet::collateral_integrity_check(); @@ -146,7 +144,7 @@ impl ExecuteIssueBuilder { pub fn prepare_for_execution(&mut self) -> &mut Self { // send the btc from the user to the vault - let (_tx_id, _height, merkle_proof, transaction) = TransactionGenerator::new() + let (_tx_id, _height, unchecked_transaction) = TransactionGenerator::new() .with_outputs(vec![(self.issue.btc_address, self.amount)]) .with_relayer(self.relayer) .mine(); @@ -160,7 +158,7 @@ impl ExecuteIssueBuilder { ); } - self.execution_tx = Some((merkle_proof, transaction)); + self.execution_tx = Some(unchecked_transaction); self } diff --git a/parachain/runtime/runtime-tests/src/utils/redeem_utils.rs b/parachain/runtime/runtime-tests/src/utils/redeem_utils.rs index 32e6974db4..fbb266c8fb 100644 --- a/parachain/runtime/runtime-tests/src/utils/redeem_utils.rs +++ b/parachain/runtime/runtime-tests/src/utils/redeem_utils.rs @@ -56,7 +56,7 @@ impl ExecuteRedeemBuilder { #[transactional] pub fn execute(&self) -> DispatchResultWithPostInfo { // send the btc from the user to the vault - let (_tx_id, _height, merkle_proof, transaction) = TransactionGenerator::new() + let (_tx_id, _height, transaction) = TransactionGenerator::new() .with_outputs(vec![(self.redeem.btc_address, self.amount)]) .with_op_return(vec![self.redeem_id]) .mine(); @@ -68,9 +68,7 @@ impl ExecuteRedeemBuilder { // alice executes the redeemrequest by confirming the btc transaction let ret = RuntimeCall::Redeem(RedeemCall::execute_redeem { redeem_id: self.redeem_id, - merkle_proof, - transaction, - length_bound: u32::MAX, + unchecked_transaction: transaction, }) .dispatch(origin_of(self.submitter.clone())); VaultRegistryPallet::collateral_integrity_check(); @@ -199,7 +197,7 @@ pub fn assert_redeem_error( error: BTCRelayError, ) -> u32 { // send the btc from the vault to the user - let (_tx_id, _tx_block_height, merkle_proof, transaction) = generate_transaction_and_mine( + let (_tx_id, _tx_block_height, unchecked_transaction) = generate_transaction_and_mine( Default::default(), vec![], vec![(user_btc_address, amount)], @@ -211,9 +209,7 @@ pub fn assert_redeem_error( assert_noop!( RuntimeCall::Redeem(RedeemCall::execute_redeem { redeem_id: redeem_id, - merkle_proof, - transaction, - length_bound: u32::MAX, + unchecked_transaction }) .dispatch(origin_of(account_of(VAULT))), error diff --git a/scripts/fetch_bitcoin_data.py b/scripts/fetch_bitcoin_data.py index 044b6b91ab..a47a611f15 100644 --- a/scripts/fetch_bitcoin_data.py +++ b/scripts/fetch_bitcoin_data.py @@ -10,8 +10,8 @@ TESTDATA_FILE = os.path.join(TESTDATA_DIR, "bitcoin-testdata.json") TESTDATA_ZIPPED = os.path.join(TESTDATA_DIR, "bitcoin-testdata.gzip") BASE_URL = "https://blockstream.info/api" -MAX_BITCOIN_BLOCKS = 10_000 -MAX_TXS_PER_BITCOIN_BLOCK = 20 +MAX_BITCOIN_BLOCKS = 100 # recommended to run this script in a loop +MAX_TXS_PER_BITCOIN_BLOCK = 2 ####################### # Blockstream queries # @@ -71,10 +71,15 @@ async def get_raw_merkle_proof(txid): uri = "/tx/{}/merkleblock-proof".format(txid) return await query_binary(uri) +async def get_raw_tx(txid): + uri = "/tx/{}/hex".format(txid) + return await query_binary(uri) + async def get_txid_with_proof(txid): try: return { "txid": txid, + "raw_tx": await get_raw_tx(txid), "raw_merkle_proof": await get_raw_merkle_proof(txid) } except: @@ -143,8 +148,9 @@ async def get_and_store_block(height): get_block_txids(blockhash) ) # select txids randomly for testing - max_to_sample = min(len(txids), MAX_TXS_PER_BITCOIN_BLOCK) + max_to_sample = min(len(txids), MAX_TXS_PER_BITCOIN_BLOCK - 1) test_txids = random.sample(txids, max_to_sample) + test_txids.insert(0, txids[0]) # get the tx merkle proof test_txs = [] test_txs = await asyncio.gather( @@ -160,9 +166,9 @@ async def get_and_store_block(height): store_block(block) -async def get_testdata(number, tip_height): +async def get_testdata(start, end): # query number of blocks - for i in range(tip_height - number, tip_height): + for i in range(start, end): await get_and_store_block(i) async def main(): @@ -174,19 +180,20 @@ async def main(): tip_height = await get_tip_height() print("Current height {}".format(tip_height)) blocks = read_testdata() + last_block_in_db = blocks[-1]['height'] if blocks: - if blocks[-1]['height'] == tip_height: + if last_block_in_db == tip_height: print("Latest blocks already downloaded") number_blocks = 0 return else: # determine how many block to download - delta = tip_height - blocks[-1]["height"] - 1 - number_blocks = delta if delta <= max_num_blocks else max_num_blocks + remaining_blocks = tip_height - last_block_in_db + number_blocks = remaining_blocks if remaining_blocks <= max_num_blocks else max_num_blocks # download new blocks and store them print("Getting {} blocks".format(number_blocks)) - await get_testdata(number_blocks, tip_height) + await get_testdata(last_block_in_db + 1, last_block_in_db + number_blocks + 1) except KeyboardInterrupt: break except Exception as e: