src/transaction.rs

//! The `transaction` module provides functionality for creating log transactions.

use bincode::serialize;
use chrono::prelude::*;
use hash::Hash;
use plan::{Condition, Payment, Plan};
use rayon::prelude::*;
use signature::{KeyPair, KeyPairUtil, PublicKey, Signature, SignatureUtil};

#[derive(Serialize, Deserialize, Debug, PartialEq, Eq, Clone)]
pub struct Transaction {
    pub from: PublicKey,
    pub plan: Plan,
    pub tokens: i64,
    pub last_id: Hash,
    pub sig: Signature,
}

impl Transaction {
    /// Create and sign a new Transaction. Used for unit-testing.
    pub fn new(from_keypair: &KeyPair, to: PublicKey, tokens: i64, last_id: Hash) -> Self {
        let from = from_keypair.pubkey();
        let plan = Plan::Pay(Payment { tokens, to });
        let mut tr = Transaction {
            from,
            plan,
            tokens,
            last_id,
            sig: Signature::default(),
        };
        tr.sign(from_keypair);
        tr
    }

    /// Create and sign a postdated Transaction. Used for unit-testing.
    pub fn new_on_date(
        from_keypair: &KeyPair,
        to: PublicKey,
        dt: DateTime<Utc>,
        tokens: i64,
        last_id: Hash,
    ) -> Self {
        let from = from_keypair.pubkey();
        let plan = Plan::Race(
            (Condition::Timestamp(dt), Payment { tokens, to }),
            (Condition::Signature(from), Payment { tokens, to: from }),
        );
        let mut tr = Transaction {
            from,
            plan,
            tokens,
            last_id,
            sig: Signature::default(),
        };
        tr.sign(from_keypair);
        tr
    }

    fn get_sign_data(&self) -> Vec<u8> {
        serialize(&(&self.plan, &self.tokens, &self.last_id)).unwrap()
    }

    /// Sign this transaction.
    pub fn sign(&mut self, keypair: &KeyPair) {
        let sign_data = self.get_sign_data();
        self.sig = Signature::clone_from_slice(keypair.sign(&sign_data).as_ref());
    }

    /// Verify this transaction's signature and its spending plan.
    pub fn verify(&self) -> bool {
        self.sig.verify(&self.from, &self.get_sign_data()) && self.plan.verify(self.tokens)
    }
}

/// Verify a batch of signatures.
pub fn verify_signatures(transactions: &[Transaction]) -> bool {
    transactions.par_iter().all(|tr| tr.verify())
}

/// Verify a batch of spending plans.
pub fn verify_plans(transactions: &[Transaction]) -> bool {
    transactions.par_iter().all(|tr| tr.plan.verify(tr.tokens))
}

/// Verify a batch of transactions.
pub fn verify_transactions(transactions: &[Transaction]) -> bool {
    verify_signatures(transactions) && verify_plans(transactions)
}

#[cfg(test)]
mod tests {
    use super::*;
    use bincode::{deserialize, serialize};

    #[test]
    fn test_claim() {
        let keypair = KeyPair::new();
        let zero = Hash::default();
        let tr0 = Transaction::new(&keypair, keypair.pubkey(), 42, zero);
        assert!(tr0.verify());
    }

    #[test]
    fn test_transfer() {
        let zero = Hash::default();
        let keypair0 = KeyPair::new();
        let keypair1 = KeyPair::new();
        let pubkey1 = keypair1.pubkey();
        let tr0 = Transaction::new(&keypair0, pubkey1, 42, zero);
        assert!(tr0.verify());
    }

    #[test]
    fn test_serialize_claim() {
        let plan = Plan::Pay(Payment {
            tokens: 0,
            to: Default::default(),
        });
        let claim0 = Transaction {
            from: Default::default(),
            plan,
            tokens: 0,
            last_id: Default::default(),
            sig: Default::default(),
        };
        let buf = serialize(&claim0).unwrap();
        let claim1: Transaction = deserialize(&buf).unwrap();
        assert_eq!(claim1, claim0);
    }

    #[test]
    fn test_bad_event_signature() {
        let zero = Hash::default();
        let keypair = KeyPair::new();
        let pubkey = keypair.pubkey();
        let mut tr = Transaction::new(&keypair, pubkey, 42, zero);
        tr.sign(&keypair);
        tr.tokens = 1_000_000; // <-- attack!
        assert!(!tr.verify());
    }

    #[test]
    fn test_hijack_attack() {
        let keypair0 = KeyPair::new();
        let keypair1 = KeyPair::new();
        let thief_keypair = KeyPair::new();
        let pubkey1 = keypair1.pubkey();
        let zero = Hash::default();
        let mut tr = Transaction::new(&keypair0, pubkey1, 42, zero);
        tr.sign(&keypair0);
        if let Plan::Pay(ref mut payment) = tr.plan {
            payment.to = thief_keypair.pubkey(); // <-- attack!
        };
        assert!(!tr.verify());
    }

    #[test]
    fn test_overspend_attack() {
        let keypair0 = KeyPair::new();
        let keypair1 = KeyPair::new();
        let zero = Hash::default();
        let mut tr = Transaction::new(&keypair0, keypair1.pubkey(), 1, zero);
        if let Plan::Pay(ref mut payment) = tr.plan {
            payment.tokens = 2; // <-- attack!
        }
        assert!(!tr.verify());

        // Also, ensure all branchs of the plan spend all tokens
        if let Plan::Pay(ref mut payment) = tr.plan {
            payment.tokens = 0; // <-- whoops!
        }
        assert!(!tr.verify());
    }

    #[test]
    fn test_verify_transactions() {
        let alice_keypair = KeyPair::new();
        let bob_pubkey = KeyPair::new().pubkey();
        let carol_pubkey = KeyPair::new().pubkey();
        let last_id = Hash::default();
        let tr0 = Transaction::new(&alice_keypair, bob_pubkey, 1, last_id);
        let tr1 = Transaction::new(&alice_keypair, carol_pubkey, 1, last_id);
        let transactions = vec![tr0, tr1];
        assert!(verify_transactions(&transactions));
    }
}

#[cfg(all(feature = "unstable", test))]
mod bench {
    extern crate test;
    use self::test::Bencher;
    use transaction::*;

    #[bench]
    fn verify_signatures_bench(bencher: &mut Bencher) {
        let alice_keypair = KeyPair::new();
        let last_id = Hash::default();
        let transactions: Vec<_> = (0..64)
            .into_par_iter()
            .map(|_| {
                let rando_pubkey = KeyPair::new().pubkey();
                Transaction::new(&alice_keypair, rando_pubkey, 1, last_id)
            })
            .collect();
        bencher.iter(|| {
            assert!(verify_signatures(&transactions));
        });
    }
}
Add more documentation 2018-03-29 12:20:54 -06:00			//! The `transaction` module provides functionality for creating log transactions.
Give Transaction its own module 2018-03-06 12:18:17 -07:00
			`use bincode::serialize;`
Add DateTime and Cancel conditions Fixes #32, #33 2018-03-07 21:55:49 -07:00			`use chrono::prelude::*;`
Nightly rustfmt Format code with the nightly version of rustfmt, which sorts imports. 2018-03-26 22:03:26 -06:00			`use hash::Hash;`
Remove Action from spending plans 2018-03-20 15:43:04 -06:00			`use plan::{Condition, Payment, Plan};`
fmt 2018-04-02 21:15:21 -06:00			`use rayon::prelude::*;`
Nightly rustfmt Format code with the nightly version of rustfmt, which sorts imports. 2018-03-26 22:03:26 -06:00			`use signature::{KeyPair, KeyPairUtil, PublicKey, Signature, SignatureUtil};`
cleanup sig processing 2018-03-11 00:11:08 -07:00
Move smart contract fields into their own struct 2018-03-10 16:55:39 -07:00			`#[derive(Serialize, Deserialize, Debug, PartialEq, Eq, Clone)]`
Specialize transaction assets to i64 Proof-of-history is generic, but now that we're using it entirely for tokens, we can specialize the type and start doing more interesting things than just Eq and Serialize operations. 2018-03-17 14:42:50 -06:00			`pub struct Transaction {`
Move smart contract fields into their own struct 2018-03-10 16:55:39 -07:00			`pub from: PublicKey,`
Specialize transaction assets to i64 Proof-of-history is generic, but now that we're using it entirely for tokens, we can specialize the type and start doing more interesting things than just Eq and Serialize operations. 2018-03-17 14:42:50 -06:00			`pub plan: Plan,`
asset -> tokens 2018-03-19 10:03:41 -06:00			`pub tokens: i64,`
Sha256Hash -> Hash Because in Loom, there's just the one. Hopefully no worries that it shares a name with std::Hash. 2018-03-06 17:36:45 -07:00			`pub last_id: Hash,`
Give Transaction its own module 2018-03-06 12:18:17 -07:00			`pub sig: Signature,`
			`}`

Specialize transaction assets to i64 Proof-of-history is generic, but now that we're using it entirely for tokens, we can specialize the type and start doing more interesting things than just Eq and Serialize operations. 2018-03-17 14:42:50 -06:00			`impl Transaction {`
Add more documentation 2018-03-29 12:20:54 -06:00			`/// Create and sign a new Transaction. Used for unit-testing.`
asset -> tokens 2018-03-19 10:03:41 -06:00			`pub fn new(from_keypair: &KeyPair, to: PublicKey, tokens: i64, last_id: Hash) -> Self {`
Move spending endpoints into expressions 2018-03-10 17:11:12 -07:00			`let from = from_keypair.pubkey();`
Remove Action from spending plans 2018-03-20 15:43:04 -06:00			`let plan = Plan::Pay(Payment { tokens, to });`
Move smart contract fields into their own struct 2018-03-10 16:55:39 -07:00			`let mut tr = Transaction {`
Move spending endpoints into expressions 2018-03-10 17:11:12 -07:00			`from,`
Move smart contract fields into their own struct 2018-03-10 16:55:39 -07:00			`plan,`
asset -> tokens 2018-03-19 10:03:41 -06:00			`tokens,`
Add DateTime and Cancel conditions Fixes #32, #33 2018-03-07 21:55:49 -07:00			`last_id,`
			`sig: Signature::default(),`
			`};`
			`tr.sign(from_keypair);`
			`tr`
			`}`

Add more documentation 2018-03-29 12:20:54 -06:00			`/// Create and sign a postdated Transaction. Used for unit-testing.`
Add DateTime and Cancel conditions Fixes #32, #33 2018-03-07 21:55:49 -07:00			`pub fn new_on_date(`
			`from_keypair: &KeyPair,`
			`to: PublicKey,`
			`dt: DateTime<Utc>,`
asset -> tokens 2018-03-19 10:03:41 -06:00			`tokens: i64,`
Add DateTime and Cancel conditions Fixes #32, #33 2018-03-07 21:55:49 -07:00			`last_id: Hash,`
			`) -> Self {`
Add Cancel and Timestamp events Fixes #31, #34, #39 2018-03-07 22:25:45 -07:00			`let from = from_keypair.pubkey();`
First go at smart contracts Needs lots of cleanup. 2018-03-10 22:00:27 -07:00			`let plan = Plan::Race(`
Remove Action from spending plans 2018-03-20 15:43:04 -06:00			`(Condition::Timestamp(dt), Payment { tokens, to }),`
			`(Condition::Signature(from), Payment { tokens, to: from }),`
First go at smart contracts Needs lots of cleanup. 2018-03-10 22:00:27 -07:00			`);`
Move smart contract fields into their own struct 2018-03-10 16:55:39 -07:00			`let mut tr = Transaction {`
			`from,`
			`plan,`
asset -> tokens 2018-03-19 10:03:41 -06:00			`tokens,`
Give Transaction its own module 2018-03-06 12:18:17 -07:00			`last_id,`
DRY up transaction signing Cleanup the big mess I copy-pasted myself into. 2018-03-06 16:34:14 -07:00			`sig: Signature::default(),`
			`};`
			`tr.sign(from_keypair);`
			`tr`
Give Transaction its own module 2018-03-06 12:18:17 -07:00			`}`
Move verify into methods A little overly-coupled to Serialize, but makes the code a lot tighter 2018-03-06 12:26:39 -07:00
DRY up transaction signing Cleanup the big mess I copy-pasted myself into. 2018-03-06 16:34:14 -07:00			`fn get_sign_data(&self) -> Vec<u8> {`
Adding from to the signature is redundant 2018-04-02 20:34:18 -06:00			`serialize(&(&self.plan, &self.tokens, &self.last_id)).unwrap()`
Move verify into methods A little overly-coupled to Serialize, but makes the code a lot tighter 2018-03-06 12:26:39 -07:00			`}`
Give Transaction its own module 2018-03-06 12:18:17 -07:00
Add more documentation 2018-03-29 12:20:54 -06:00			`/// Sign this transaction.`
Boot genesis block helper Before this change, if you wanted to use a new Transaction feature in the genesis block, you'd need to extend its Creator object and associated methods. With yesterday's addtions to Transcation, it's now so easy to work with Transactions directly that we can get rid of the middleman. Also added a KeyPair type alias, so that ring could be easily swapped out with a competing library, if needed. 2018-03-07 11:05:06 -07:00			`pub fn sign(&mut self, keypair: &KeyPair) {`
DRY up transaction signing Cleanup the big mess I copy-pasted myself into. 2018-03-06 16:34:14 -07:00			`let sign_data = self.get_sign_data();`
			`self.sig = Signature::clone_from_slice(keypair.sign(&sign_data).as_ref());`
			`}`
Give Transaction its own module 2018-03-06 12:18:17 -07:00
Add more documentation 2018-03-29 12:20:54 -06:00			`/// Verify this transaction's signature and its spending plan.`
DRY up transaction signing Cleanup the big mess I copy-pasted myself into. 2018-03-06 16:34:14 -07:00			`pub fn verify(&self) -> bool {`
asset -> tokens 2018-03-19 10:03:41 -06:00			`self.sig.verify(&self.from, &self.get_sign_data()) && self.plan.verify(self.tokens)`
DRY up transaction signing Cleanup the big mess I copy-pasted myself into. 2018-03-06 16:34:14 -07:00			`}`
Give Transaction its own module 2018-03-06 12:18:17 -07:00			`}`

Add microbenchmark for signature verification 2018-03-28 22:02:47 -06:00			`/// Verify a batch of signatures.`
			`pub fn verify_signatures(transactions: &[Transaction]) -> bool {`
			`transactions.par_iter().all(\|tr\| tr.verify())`
			`}`

			`/// Verify a batch of spending plans.`
			`pub fn verify_plans(transactions: &[Transaction]) -> bool {`
			`transactions.par_iter().all(\|tr\| tr.plan.verify(tr.tokens))`
			`}`

			`/// Verify a batch of transactions.`
			`pub fn verify_transactions(transactions: &[Transaction]) -> bool {`
			`verify_signatures(transactions) && verify_plans(transactions)`
			`}`

Give Transaction its own module 2018-03-06 12:18:17 -07:00			`#[cfg(test)]`
			`mod tests {`
			`use super::*;`
			`use bincode::{deserialize, serialize};`
DRY up transaction signing Cleanup the big mess I copy-pasted myself into. 2018-03-06 16:34:14 -07:00
			`#[test]`
			`fn test_claim() {`
Add accessors to keypairs and signatures 2018-03-07 15:32:22 -07:00			`let keypair = KeyPair::new();`
Sha256Hash -> Hash Because in Loom, there's just the one. Hopefully no worries that it shares a name with std::Hash. 2018-03-06 17:36:45 -07:00			`let zero = Hash::default();`
Specialize transaction assets to i64 Proof-of-history is generic, but now that we're using it entirely for tokens, we can specialize the type and start doing more interesting things than just Eq and Serialize operations. 2018-03-17 14:42:50 -06:00			`let tr0 = Transaction::new(&keypair, keypair.pubkey(), 42, zero);`
DRY up transaction signing Cleanup the big mess I copy-pasted myself into. 2018-03-06 16:34:14 -07:00			`assert!(tr0.verify());`
			`}`

			`#[test]`
			`fn test_transfer() {`
Sha256Hash -> Hash Because in Loom, there's just the one. Hopefully no worries that it shares a name with std::Hash. 2018-03-06 17:36:45 -07:00			`let zero = Hash::default();`
Add accessors to keypairs and signatures 2018-03-07 15:32:22 -07:00			`let keypair0 = KeyPair::new();`
			`let keypair1 = KeyPair::new();`
			`let pubkey1 = keypair1.pubkey();`
Specialize transaction assets to i64 Proof-of-history is generic, but now that we're using it entirely for tokens, we can specialize the type and start doing more interesting things than just Eq and Serialize operations. 2018-03-17 14:42:50 -06:00			`let tr0 = Transaction::new(&keypair0, pubkey1, 42, zero);`
DRY up transaction signing Cleanup the big mess I copy-pasted myself into. 2018-03-06 16:34:14 -07:00			`assert!(tr0.verify());`
			`}`
Give Transaction its own module 2018-03-06 12:18:17 -07:00
			`#[test]`
			`fn test_serialize_claim() {`
Remove Action from spending plans 2018-03-20 15:43:04 -06:00			`let plan = Plan::Pay(Payment {`
asset -> tokens 2018-03-19 10:03:41 -06:00			`tokens: 0,`
First go at smart contracts Needs lots of cleanup. 2018-03-10 22:00:27 -07:00			`to: Default::default(),`
Remove Action from spending plans 2018-03-20 15:43:04 -06:00			`});`
Move smart contract fields into their own struct 2018-03-10 16:55:39 -07:00			`let claim0 = Transaction {`
			`from: Default::default(),`
			`plan,`
asset -> tokens 2018-03-19 10:03:41 -06:00			`tokens: 0,`
DRY up transaction signing Cleanup the big mess I copy-pasted myself into. 2018-03-06 16:34:14 -07:00			`last_id: Default::default(),`
			`sig: Default::default(),`
			`};`
Give Transaction its own module 2018-03-06 12:18:17 -07:00			`let buf = serialize(&claim0).unwrap();`
Specialize transaction assets to i64 Proof-of-history is generic, but now that we're using it entirely for tokens, we can specialize the type and start doing more interesting things than just Eq and Serialize operations. 2018-03-17 14:42:50 -06:00			`let claim1: Transaction = deserialize(&buf).unwrap();`
Give Transaction its own module 2018-03-06 12:18:17 -07:00			`assert_eq!(claim1, claim0);`
			`}`
DRY up transaction signing Cleanup the big mess I copy-pasted myself into. 2018-03-06 16:34:14 -07:00
			`#[test]`
			`fn test_bad_event_signature() {`
Sha256Hash -> Hash Because in Loom, there's just the one. Hopefully no worries that it shares a name with std::Hash. 2018-03-06 17:36:45 -07:00			`let zero = Hash::default();`
Add accessors to keypairs and signatures 2018-03-07 15:32:22 -07:00			`let keypair = KeyPair::new();`
			`let pubkey = keypair.pubkey();`
Specialize transaction assets to i64 Proof-of-history is generic, but now that we're using it entirely for tokens, we can specialize the type and start doing more interesting things than just Eq and Serialize operations. 2018-03-17 14:42:50 -06:00			`let mut tr = Transaction::new(&keypair, pubkey, 42, zero);`
DRY up transaction signing Cleanup the big mess I copy-pasted myself into. 2018-03-06 16:34:14 -07:00			`tr.sign(&keypair);`
asset -> tokens 2018-03-19 10:03:41 -06:00			`tr.tokens = 1_000_000; // <-- attack!`
DRY up transaction signing Cleanup the big mess I copy-pasted myself into. 2018-03-06 16:34:14 -07:00			`assert!(!tr.verify());`
			`}`

			`#[test]`
			`fn test_hijack_attack() {`
Add accessors to keypairs and signatures 2018-03-07 15:32:22 -07:00			`let keypair0 = KeyPair::new();`
			`let keypair1 = KeyPair::new();`
			`let thief_keypair = KeyPair::new();`
			`let pubkey1 = keypair1.pubkey();`
Sha256Hash -> Hash Because in Loom, there's just the one. Hopefully no worries that it shares a name with std::Hash. 2018-03-06 17:36:45 -07:00			`let zero = Hash::default();`
Specialize transaction assets to i64 Proof-of-history is generic, but now that we're using it entirely for tokens, we can specialize the type and start doing more interesting things than just Eq and Serialize operations. 2018-03-17 14:42:50 -06:00			`let mut tr = Transaction::new(&keypair0, pubkey1, 42, zero);`
DRY up transaction signing Cleanup the big mess I copy-pasted myself into. 2018-03-06 16:34:14 -07:00			`tr.sign(&keypair0);`
Remove Action from spending plans 2018-03-20 15:43:04 -06:00			`if let Plan::Pay(ref mut payment) = tr.plan {`
First go at smart contracts Needs lots of cleanup. 2018-03-10 22:00:27 -07:00			`payment.to = thief_keypair.pubkey(); // <-- attack!`
			`};`
DRY up transaction signing Cleanup the big mess I copy-pasted myself into. 2018-03-06 16:34:14 -07:00			`assert!(!tr.verify());`
			`}`
Add microbenchmark for signature verification 2018-03-28 22:02:47 -06:00
Move tests After we restructured for parallel verification, the tests here were unreferenced by the accountant, but still meaningful to transaction verification. 2018-04-02 21:45:17 -06:00			`#[test]`
			`fn test_overspend_attack() {`
			`let keypair0 = KeyPair::new();`
			`let keypair1 = KeyPair::new();`
			`let zero = Hash::default();`
			`let mut tr = Transaction::new(&keypair0, keypair1.pubkey(), 1, zero);`
			`if let Plan::Pay(ref mut payment) = tr.plan {`
			`payment.tokens = 2; // <-- attack!`
			`}`
			`assert!(!tr.verify());`

			`// Also, ensure all branchs of the plan spend all tokens`
			`if let Plan::Pay(ref mut payment) = tr.plan {`
			`payment.tokens = 0; // <-- whoops!`
			`}`
			`assert!(!tr.verify());`
			`}`

Add microbenchmark for signature verification 2018-03-28 22:02:47 -06:00			`#[test]`
			`fn test_verify_transactions() {`
			`let alice_keypair = KeyPair::new();`
			`let bob_pubkey = KeyPair::new().pubkey();`
			`let carol_pubkey = KeyPair::new().pubkey();`
			`let last_id = Hash::default();`
			`let tr0 = Transaction::new(&alice_keypair, bob_pubkey, 1, last_id);`
			`let tr1 = Transaction::new(&alice_keypair, carol_pubkey, 1, last_id);`
			`let transactions = vec![tr0, tr1];`
			`assert!(verify_transactions(&transactions));`
			`}`
			`}`

			`#[cfg(all(feature = "unstable", test))]`
			`mod bench {`
			`extern crate test;`
			`use self::test::Bencher;`
			`use transaction::*;`

			`#[bench]`
			`fn verify_signatures_bench(bencher: &mut Bencher) {`
			`let alice_keypair = KeyPair::new();`
			`let last_id = Hash::default();`
			`let transactions: Vec<_> = (0..64)`
			`.into_par_iter()`
			`.map(\|_\| {`
			`let rando_pubkey = KeyPair::new().pubkey();`
			`Transaction::new(&alice_keypair, rando_pubkey, 1, last_id)`
			`})`
			`.collect();`
			`bencher.iter(\|\| {`
			`assert!(verify_signatures(&transactions));`
			`});`
			`}`
Give Transaction its own module 2018-03-06 12:18:17 -07:00			`}`