ARCHIVE/rippled
1
0
Fork 0
mirror of https://github.com/XRPLF/rippled.git synced 2025-11-20 11:05:54 +00:00
Code Issues Packages Projects Releases Wiki Activity

Retire the feature

Browse Source 
Signed-off-by: JCW <a1q123456@users.noreply.github.com>
This commit is contained in:
JCW
2025-11-14 10:01:49 +00:00
parent 508937f3d1
commit 6db884525f
8 changed files with 37 additions and 122 deletions
Download Patch File Download Diff File Expand all files Collapse all files

36
include/xrpl/protocol/STTx.h
View File

@@ -103,22 +103,15 @@ public:
std::optional<std::reference_wrapper<SField const>> signatureTarget = std::optional<std::reference_wrapper<SField const>> signatureTarget =
{}); {});
enum class RequireFullyCanonicalSig : bool { no, yes };
/** Check the signature. /** Check the signature.
@param requireCanonicalSig If `true`, check that the signature is fully
canonical. If `false`, only check that the signature is valid.
@param rules The current ledger rules. @param rules The current ledger rules.
@return `true` if valid signature. If invalid, the error message string. @return `true` if valid signature. If invalid, the error message string.
*/ */
Expected<void, std::string> Expected<void, std::string>
checkSign(RequireFullyCanonicalSig requireCanonicalSig, Rules const& rules) checkSign(Rules const& rules) const;
const;
Expected<void, std::string> Expected<void, std::string>
checkBatchSign( checkBatchSign(Rules const& rules) const;
RequireFullyCanonicalSig requireCanonicalSig,
Rules const& rules) const;
// SQL Functions with metadata. // SQL Functions with metadata.
static std::string const& static std::string const&
@@ -140,40 +133,25 @@ public:
private: private:
/** Check the signature. /** Check the signature.
@param requireCanonicalSig If `true`, check that the signature is fully
canonical. If `false`, only check that the signature is valid.
@param rules The current ledger rules. @param rules The current ledger rules.
@param sigObject Reference to object that contains the signature fields. @param sigObject Reference to object that contains the signature fields.
Will be *this more often than not. Will be *this more often than not.
@return `true` if valid signature. If invalid, the error message string. @return `true` if valid signature. If invalid, the error message string.
*/ */
Expected<void, std::string> Expected<void, std::string>
checkSign( checkSign(Rules const& rules, STObject const& sigObject) const;
RequireFullyCanonicalSig requireCanonicalSig,
Rules const& rules,
STObject const& sigObject) const;
Expected<void, std::string> Expected<void, std::string>
checkSingleSign( checkSingleSign(STObject const& sigObject) const;
RequireFullyCanonicalSig requireCanonicalSig,
STObject const& sigObject) const;
Expected<void, std::string> Expected<void, std::string>
checkMultiSign( checkMultiSign(Rules const& rules, STObject const& sigObject) const;
RequireFullyCanonicalSig requireCanonicalSig,
Rules const& rules,
STObject const& sigObject) const;
Expected<void, std::string> Expected<void, std::string>
checkBatchSingleSign( checkBatchSingleSign(STObject const& batchSigner) const;
STObject const& batchSigner,
RequireFullyCanonicalSig requireCanonicalSig) const;
Expected<void, std::string> Expected<void, std::string>
checkBatchMultiSign( checkBatchMultiSign(STObject const& batchSigner, Rules const& rules) const;
STObject const& batchSigner,
RequireFullyCanonicalSig requireCanonicalSig,
Rules const& rules) const;
STBase* STBase*
copy(std::size_t n, void* buf) const override; copy(std::size_t n, void* buf) const override;

2
include/xrpl/protocol/detail/features.macro
View File

@@ -68,7 +68,6 @@ XRPL_FIX (RemoveNFTokenAutoTrustLine, Supported::yes, VoteBehavior::DefaultYe
XRPL_FEATURE(FlowSortStrands, Supported::yes, VoteBehavior::DefaultYes) XRPL_FEATURE(FlowSortStrands, Supported::yes, VoteBehavior::DefaultYes)
XRPL_FEATURE(TicketBatch, Supported::yes, VoteBehavior::DefaultYes) XRPL_FEATURE(TicketBatch, Supported::yes, VoteBehavior::DefaultYes)
XRPL_FEATURE(NegativeUNL, Supported::yes, VoteBehavior::DefaultYes) XRPL_FEATURE(NegativeUNL, Supported::yes, VoteBehavior::DefaultYes)
XRPL_FEATURE(RequireFullyCanonicalSig, Supported::yes, VoteBehavior::DefaultYes)
XRPL_FEATURE(DeletableAccounts, Supported::yes, VoteBehavior::DefaultYes) XRPL_FEATURE(DeletableAccounts, Supported::yes, VoteBehavior::DefaultYes)
XRPL_FEATURE(Checks, Supported::yes, VoteBehavior::DefaultYes) XRPL_FEATURE(Checks, Supported::yes, VoteBehavior::DefaultYes)
XRPL_FEATURE(Flow, Supported::yes, VoteBehavior::DefaultYes) XRPL_FEATURE(Flow, Supported::yes, VoteBehavior::DefaultYes)
@@ -133,6 +132,7 @@ XRPL_RETIRE_FEATURE(MultiSign)
XRPL_RETIRE_FEATURE(MultiSignReserve) XRPL_RETIRE_FEATURE(MultiSignReserve)
XRPL_RETIRE_FEATURE(NonFungibleTokensV1_1) XRPL_RETIRE_FEATURE(NonFungibleTokensV1_1)
XRPL_RETIRE_FEATURE(PayChan) XRPL_RETIRE_FEATURE(PayChan)
XRPL_RETIRE_FEATURE(RequireFullyCanonicalSig)
XRPL_RETIRE_FEATURE(SortedDirectories) XRPL_RETIRE_FEATURE(SortedDirectories)
XRPL_RETIRE_FEATURE(TickSize) XRPL_RETIRE_FEATURE(TickSize)
XRPL_RETIRE_FEATURE(TrustSetAuth) XRPL_RETIRE_FEATURE(TrustSetAuth)

76
src/libxrpl/protocol/STTx.cpp
View File

@@ -237,10 +237,7 @@ STTx::sign(
} }
Expected<void, std::string> Expected<void, std::string>
STTx::checkSign( STTx::checkSign(Rules const& rules, STObject const& sigObject) const
RequireFullyCanonicalSig requireCanonicalSig,
Rules const& rules,
STObject const& sigObject) const
{ {
try try
{ {
@@ -249,9 +246,8 @@ STTx::checkSign(
// multi-signing. Otherwise we're single-signing. // multi-signing. Otherwise we're single-signing.
Blob const& signingPubKey = sigObject.getFieldVL(sfSigningPubKey); Blob const& signingPubKey = sigObject.getFieldVL(sfSigningPubKey);
return signingPubKey.empty() return signingPubKey.empty() ? checkMultiSign(rules, sigObject)
? checkMultiSign(requireCanonicalSig, rules, sigObject) : checkSingleSign(sigObject);
: checkSingleSign(requireCanonicalSig, sigObject);
} }
catch (std::exception const&) catch (std::exception const&)
{ {
@@ -260,18 +256,16 @@ STTx::checkSign(
} }
Expected<void, std::string> Expected<void, std::string>
STTx::checkSign( STTx::checkSign(Rules const& rules) const
RequireFullyCanonicalSig requireCanonicalSig,
Rules const& rules) const
{ {
if (auto const ret = checkSign(requireCanonicalSig, rules, *this); !ret) if (auto const ret = checkSign(rules, *this); !ret)
return ret; return ret;
/* Placeholder for field that will be added by Lending Protocol /* Placeholder for field that will be added by Lending Protocol
if (isFieldPresent(sfCounterpartySignature)) if (isFieldPresent(sfCounterpartySignature))
{ {
auto const counterSig = getFieldObject(sfCounterpartySignature); auto const counterSig = getFieldObject(sfCounterpartySignature);
if (auto const ret = checkSign(requireCanonicalSig, rules, counterSig); if (auto const ret = checkSign(rules, counterSig);
!ret) !ret)
return Unexpected("Counterparty: " + ret.error()); return Unexpected("Counterparty: " + ret.error());
} }
@@ -280,9 +274,7 @@ STTx::checkSign(
} }
Expected<void, std::string> Expected<void, std::string>
STTx::checkBatchSign( STTx::checkBatchSign(Rules const& rules) const
RequireFullyCanonicalSig requireCanonicalSig,
Rules const& rules) const
{ {
try try
{ {
@@ -299,8 +291,8 @@ STTx::checkBatchSign(
{ {
Blob const& signingPubKey = signer.getFieldVL(sfSigningPubKey); Blob const& signingPubKey = signer.getFieldVL(sfSigningPubKey);
auto const result = signingPubKey.empty() auto const result = signingPubKey.empty()
? checkBatchMultiSign(signer, requireCanonicalSig, rules) ? checkBatchMultiSign(signer, rules)
: checkBatchSingleSign(signer, requireCanonicalSig); : checkBatchSingleSign(signer);
if (!result) if (!result)
return result; return result;
@@ -395,10 +387,7 @@ STTx::getMetaSQL(
} }
static Expected<void, std::string> static Expected<void, std::string>
singleSignHelper( singleSignHelper(STObject const& sigObject, Slice const& data)
STObject const& sigObject,
Slice const& data,
bool const fullyCanonical)
{ {
// We don't allow both a non-empty sfSigningPubKey and an sfSigners. // We don't allow both a non-empty sfSigningPubKey and an sfSigners.
// That would allow the transaction to be signed two ways. So if both // That would allow the transaction to be signed two ways. So if both
@@ -413,11 +402,8 @@ singleSignHelper(
if (publicKeyType(makeSlice(spk))) if (publicKeyType(makeSlice(spk)))
{ {
Blob const signature = sigObject.getFieldVL(sfTxnSignature); Blob const signature = sigObject.getFieldVL(sfTxnSignature);
validSig = verify( validSig =
PublicKey(makeSlice(spk)), verify(PublicKey(makeSlice(spk)), data, makeSlice(signature));
data,
makeSlice(signature),
fullyCanonical);
} }
} }
catch (std::exception const&) catch (std::exception const&)
@@ -432,33 +418,24 @@ singleSignHelper(
} }
Expected<void, std::string> Expected<void, std::string>
STTx::checkSingleSign( STTx::checkSingleSign(STObject const& sigObject) const
RequireFullyCanonicalSig requireCanonicalSig,
STObject const& sigObject) const
{ {
auto const data = getSigningData(*this); auto const data = getSigningData(*this);
bool const fullyCanonical = (getFlags() & tfFullyCanonicalSig) || return singleSignHelper(sigObject, makeSlice(data));
(requireCanonicalSig == STTx::RequireFullyCanonicalSig::yes);
return singleSignHelper(sigObject, makeSlice(data), fullyCanonical);
} }
Expected<void, std::string> Expected<void, std::string>
STTx::checkBatchSingleSign( STTx::checkBatchSingleSign(STObject const& batchSigner) const
STObject const& batchSigner,
RequireFullyCanonicalSig requireCanonicalSig) const
{ {
Serializer msg; Serializer msg;
serializeBatch(msg, getFlags(), getBatchTransactionIDs()); serializeBatch(msg, getFlags(), getBatchTransactionIDs());
bool const fullyCanonical = (getFlags() & tfFullyCanonicalSig) || return singleSignHelper(batchSigner, msg.slice());
(requireCanonicalSig == STTx::RequireFullyCanonicalSig::yes);
return singleSignHelper(batchSigner, msg.slice(), fullyCanonical);
} }
Expected<void, std::string> Expected<void, std::string>
multiSignHelper( multiSignHelper(
STObject const& sigObject, STObject const& sigObject,
std::optional<AccountID> txnAccountID, std::optional<AccountID> txnAccountID,
bool const fullyCanonical,
std::function<Serializer(AccountID const&)> makeMsg, std::function<Serializer(AccountID const&)> makeMsg,
Rules const& rules) Rules const& rules)
{ {
@@ -515,8 +492,7 @@ multiSignHelper(
validSig = verify( validSig = verify(
PublicKey(makeSlice(spk)), PublicKey(makeSlice(spk)),
makeMsg(accountID).slice(), makeMsg(accountID).slice(),
makeSlice(signature), makeSlice(signature));
fullyCanonical);
} }
} }
catch (std::exception const& e) catch (std::exception const& e)
@@ -535,14 +511,8 @@ multiSignHelper(
} }
Expected<void, std::string> Expected<void, std::string>
STTx::checkBatchMultiSign( STTx::checkBatchMultiSign(STObject const& batchSigner, Rules const& rules) const
STObject const& batchSigner,
RequireFullyCanonicalSig requireCanonicalSig,
Rules const& rules) const
{ {
bool const fullyCanonical = (getFlags() & tfFullyCanonicalSig) ||
(requireCanonicalSig == RequireFullyCanonicalSig::yes);
// We can ease the computational load inside the loop a bit by // We can ease the computational load inside the loop a bit by
// pre-constructing part of the data that we hash. Fill a Serializer // pre-constructing part of the data that we hash. Fill a Serializer
// with the stuff that stays constant from signature to signature. // with the stuff that stays constant from signature to signature.
@@ -551,7 +521,6 @@ STTx::checkBatchMultiSign(
return multiSignHelper( return multiSignHelper(
batchSigner, batchSigner,
std::nullopt, std::nullopt,
fullyCanonical,
[&dataStart](AccountID const& accountID) -> Serializer { [&dataStart](AccountID const& accountID) -> Serializer {
Serializer s = dataStart; Serializer s = dataStart;
finishMultiSigningData(accountID, s); finishMultiSigningData(accountID, s);
@@ -561,14 +530,8 @@ STTx::checkBatchMultiSign(
} }
Expected<void, std::string> Expected<void, std::string>
STTx::checkMultiSign( STTx::checkMultiSign(Rules const& rules, STObject const& sigObject) const
RequireFullyCanonicalSig requireCanonicalSig,
Rules const& rules,
STObject const& sigObject) const
{ {
bool const fullyCanonical = (getFlags() & tfFullyCanonicalSig) ||
(requireCanonicalSig == RequireFullyCanonicalSig::yes);
// Used inside the loop in multiSignHelper to enforce that // Used inside the loop in multiSignHelper to enforce that
// the account owner may not multisign for themselves. // the account owner may not multisign for themselves.
auto const txnAccountID = &sigObject != this auto const txnAccountID = &sigObject != this
@@ -582,7 +545,6 @@ STTx::checkMultiSign(
return multiSignHelper( return multiSignHelper(
sigObject, sigObject,
txnAccountID, txnAccountID,
fullyCanonical,
[&dataStart](AccountID const& accountID) -> Serializer { [&dataStart](AccountID const& accountID) -> Serializer {
Serializer s = dataStart; Serializer s = dataStart;
finishMultiSigningData(accountID, s); finishMultiSigningData(accountID, s);

17
src/test/app/tx/apply_test.cpp
View File

@@ -35,23 +35,6 @@ public:
SerialIter sitTrans(makeSlice(*ret)); SerialIter sitTrans(makeSlice(*ret));
STTx const tx = *std::make_shared<STTx const>(std::ref(sitTrans)); STTx const tx = *std::make_shared<STTx const>(std::ref(sitTrans));
{
test::jtx::Env no_fully_canonical(
*this,
test::jtx::testable_amendments() -
featureRequireFullyCanonicalSig);
Validity valid = checkValidity(
no_fully_canonical.app().getHashRouter(),
tx,
no_fully_canonical.current()->rules(),
no_fully_canonical.app().config())
.first;
if (valid != Validity::Valid)
fail("Non-Fully canoncial signature was not permitted");
}
{ {
test::jtx::Env fully_canonical( test::jtx::Env fully_canonical(
*this, test::jtx::testable_amendments()); *this, test::jtx::testable_amendments());

3
src/test/protocol/STTx_test.cpp
View File

@@ -1615,8 +1615,7 @@ public:
BEAST_EXPECT(!defaultRules.enabled(featureAMM)); BEAST_EXPECT(!defaultRules.enabled(featureAMM));
unexpected( unexpected(
!j.checkSign(STTx::RequireFullyCanonicalSig::yes, defaultRules), !j.checkSign(defaultRules), "Transaction fails signature test");
"Transaction fails signature test");
Serializer rawTxn; Serializer rawTxn;
j.add(rawTxn); j.add(rawTxn);

14
src/test/rpc/Feature_test.cpp
View File

@@ -183,16 +183,16 @@ class Feature_test : public beast::unit_test::suite
using namespace test::jtx; using namespace test::jtx;
Env env{*this}; Env env{*this};
auto jrr = env.rpc("feature", "RequireFullyCanonicalSig")[jss::result]; auto jrr = env.rpc("feature", "Flow")[jss::result];
BEAST_EXPECTS(jrr[jss::status] == jss::success, "status"); BEAST_EXPECTS(jrr[jss::status] == jss::success, "status");
jrr.removeMember(jss::status); jrr.removeMember(jss::status);
BEAST_EXPECT(jrr.size() == 1); BEAST_EXPECT(jrr.size() == 1);
BEAST_EXPECT( BEAST_EXPECT(
jrr.isMember("00C1FC4A53E60AB02C864641002B3172F38677E29C26C54066851" jrr.isMember("740352F2412A9909880C23A559FCECEDA3BE2126FED62FC7660D6"
"79B37E1EDAC")); "28A06927F11"));
auto feature = *(jrr.begin()); auto feature = *(jrr.begin());
BEAST_EXPECTS(feature[jss::name] == "RequireFullyCanonicalSig", "name"); BEAST_EXPECTS(feature[jss::name] == "Flow", "name");
BEAST_EXPECTS(!feature[jss::enabled].asBool(), "enabled"); BEAST_EXPECTS(!feature[jss::enabled].asBool(), "enabled");
BEAST_EXPECTS( BEAST_EXPECTS(
feature[jss::vetoed].isBool() && !feature[jss::vetoed].asBool(), feature[jss::vetoed].isBool() && !feature[jss::vetoed].asBool(),
@@ -200,7 +200,7 @@ class Feature_test : public beast::unit_test::suite
BEAST_EXPECTS(feature[jss::supported].asBool(), "supported"); BEAST_EXPECTS(feature[jss::supported].asBool(), "supported");
// feature names are case-sensitive - expect error here // feature names are case-sensitive - expect error here
jrr = env.rpc("feature", "requireFullyCanonicalSig")[jss::result]; jrr = env.rpc("feature", "flow")[jss::result];
BEAST_EXPECT(jrr[jss::error] == "badFeature"); BEAST_EXPECT(jrr[jss::error] == "badFeature");
BEAST_EXPECT(jrr[jss::error_message] == "Feature unknown or invalid."); BEAST_EXPECT(jrr[jss::error_message] == "Feature unknown or invalid.");
} }
@@ -476,8 +476,8 @@ class Feature_test : public beast::unit_test::suite
testcase("Veto"); testcase("Veto");
using namespace test::jtx; using namespace test::jtx;
Env env{*this, FeatureBitset{featureRequireFullyCanonicalSig}}; Env env{*this, FeatureBitset{featureFlow}};
constexpr char const* featureName = "RequireFullyCanonicalSig"; constexpr char const* featureName = "Flow";
auto jrr = env.rpc("feature", featureName)[jss::result]; auto jrr = env.rpc("feature", featureName)[jss::result];
if (!BEAST_EXPECTS(jrr[jss::status] == jss::success, "status")) if (!BEAST_EXPECTS(jrr[jss::status] == jss::success, "status"))

3
src/xrpld/app/tx/detail/Batch.cpp
View File

@@ -451,8 +451,7 @@ Batch::preflightSigValidated(PreflightContext const& ctx)
} }
// Check the batch signers signatures. // Check the batch signers signatures.
auto const sigResult = ctx.tx.checkBatchSign( auto const sigResult = ctx.tx.checkBatchSign(ctx.rules);
STTx::RequireFullyCanonicalSig::yes, ctx.rules);
if (!sigResult) if (!sigResult)
{ {

8
src/xrpld/app/tx/detail/apply.cpp
View File

@@ -58,13 +58,7 @@ checkValidity(
if (!any(flags & SF_SIGGOOD)) if (!any(flags & SF_SIGGOOD))
{ {
// Don't know signature state. Check it. auto const sigVerify = tx.checkSign(rules);
auto const requireCanonicalSig =
rules.enabled(featureRequireFullyCanonicalSig)
? STTx::RequireFullyCanonicalSig::yes
: STTx::RequireFullyCanonicalSig::no;
auto const sigVerify = tx.checkSign(requireCanonicalSig, rules);
if (!sigVerify) if (!sigVerify)
{ {
router.setFlags(id, SF_SIGBAD); router.setFlags(id, SF_SIGBAD);