commit/12200da7e49a750bd85df7db9e6b350f8437f9b9/STValidation_8h_source.html

//------------------------------------------------------------------------------

/*

    This file is part of rippled: https://github.com/ripple/rippled

    Copyright (c) 2012, 2013 Ripple Labs Inc.


    Permission to use, copy, modify, and/or distribute this software for any

    purpose  with  or without fee is hereby granted, provided that the above

    copyright notice and this permission notice appear in all copies.


    THE  SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES

    WITH  REGARD  TO  THIS  SOFTWARE  INCLUDING  ALL  IMPLIED  WARRANTIES  OF

    MERCHANTABILITY  AND  FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR

    ANY  SPECIAL ,  DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES

    WHATSOEVER  RESULTING  FROM  LOSS  OF USE, DATA OR PROFITS, WHETHER IN AN

    ACTION  OF  CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF

    OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.

*/

//==============================================================================


#ifndef RIPPLE_PROTOCOL_STVALIDATION_H_INCLUDED

#define RIPPLE_PROTOCOL_STVALIDATION_H_INCLUDED


#include <xrpl/basics/Log.h>

#include <xrpl/beast/utility/instrumentation.h>

#include <xrpl/protocol/FeeUnits.h>

#include <xrpl/protocol/PublicKey.h>

#include <xrpl/protocol/STObject.h>

#include <xrpl/protocol/SecretKey.h>

#include <cstdint>

#include <functional>

#include <memory>

#include <optional>


namespace ripple {


// Validation flags


// This is a full (as opposed to a partial) validation

constexpr std::uint32_t vfFullValidation = 0x00000001;


// The signature is fully canonical

constexpr std::uint32_t vfFullyCanonicalSig = 0x80000000;


class STValidation final : public STObject, public CountedObject<STValidation>

{

    bool mTrusted = false;


    // Determines the validity of the signature in this validation; unseated

    // optional if we haven't yet checked it, a boolean otherwise.

    mutable std::optional<bool> valid_;


    // The public key associated with the key used to sign this validation

    PublicKey const signingPubKey_;


    // The ID of the validator that issued this validation. For validators

    // that use manifests this will be derived from the master public key.

    NodeID const nodeID_;


    NetClock::time_point seenTime_ = {};


public:

    template <class LookupNodeID>

    STValidation(

        SerialIter& sit,

        LookupNodeID&& lookupNodeID,

        bool checkSignature);


    template <typename F>

    STValidation(

        NetClock::time_point signTime,

        PublicKey const& pk,

        SecretKey const& sk,

        NodeID const& nodeID,

        F&& f);


    // Hash of the validated ledger

    uint256

    getLedgerHash() const;


    // Hash of consensus transaction set used to generate ledger

    uint256

    getConsensusHash() const;


    NetClock::time_point

    getSignTime() const;


    NetClock::time_point

    getSeenTime() const noexcept;


    PublicKey const&

    getSignerPublic() const noexcept;


    NodeID const&

    getNodeID() const noexcept;


    bool

    isValid() const noexcept;


    bool

    isFull() const noexcept;


    bool

    isTrusted() const noexcept;


    uint256

    getSigningHash() const;


    void

    setTrusted();


    void

    setUntrusted();


    void

    setSeen(NetClock::time_point s);


    Blob

    getSerialized() const;


    Blob

    getSignature() const;


private:

    static SOTemplate const&

    validationFormat();


    STBase*

    copy(std::size_t n, void* buf) const override;

    STBase*

    move(std::size_t n, void* buf) override;


    friend class detail::STVar;

};


template <class LookupNodeID>

STValidation::STValidation(

    SerialIter& sit,

    LookupNodeID&& lookupNodeID,

    bool checkSignature)

    : STObject(validationFormat(), sit, sfValidation)

    , signingPubKey_([this]() {

        auto const spk = getFieldVL(sfSigningPubKey);


        if (publicKeyType(makeSlice(spk)) != KeyType::secp256k1)

            Throw<std::runtime_error>("Invalid public key in validation");


        return PublicKey{makeSlice(spk)};

    }())

    , nodeID_(lookupNodeID(signingPubKey_))

{

    if (checkSignature && !isValid())

    {

        JLOG(debugLog().error()) << "Invalid signature in validation: "

                                 << getJson(JsonOptions::none);

        Throw<std::runtime_error>("Invalid signature in validation");

    }


    XRPL_ASSERT(

        nodeID_.isNonZero(),

        "ripple::STValidation::STValidation(SerialIter) : nonzero node");

}


template <typename F>

STValidation::STValidation(

    NetClock::time_point signTime,

    PublicKey const& pk,

    SecretKey const& sk,

    NodeID const& nodeID,

    F&& f)

    : STObject(validationFormat(), sfValidation)

    , signingPubKey_(pk)

    , nodeID_(nodeID)

    , seenTime_(signTime)

{

    XRPL_ASSERT(

        nodeID_.isNonZero(),

        "ripple::STValidation::STValidation(PublicKey, SecretKey) : nonzero "

        "node");


    // First, set our own public key:

    if (publicKeyType(pk) != KeyType::secp256k1)

        LogicError("We can only use secp256k1 keys for signing validations");


    setFieldVL(sfSigningPubKey, pk.slice());

    setFieldU32(sfSigningTime, signTime.time_since_epoch().count());


    // Perform additional initialization

    f(*this);


    // Finally, sign the validation and mark it as trusted:

    setFlag(vfFullyCanonicalSig);

    setFieldVL(sfSignature, signDigest(pk, sk, getSigningHash()));

    setTrusted();


    // Check to ensure that all required fields are present.

    for (auto const& e : validationFormat())

    {

        if (e.style() == soeREQUIRED && !isFieldPresent(e.sField()))

            LogicError(

                "Required field '" + e.sField().getName() +

                "' missing from validation.");

    }


    // We just signed this, so it should be valid.

    valid_ = true;

}


inline PublicKey const&

STValidation::getSignerPublic() const noexcept

{

    return signingPubKey_;

}


inline NodeID const&

STValidation::getNodeID() const noexcept

{

    return nodeID_;

}


inline bool

STValidation::isTrusted() const noexcept

{

    return mTrusted;

}


inline void

STValidation::setTrusted()

{

    mTrusted = true;

}


inline void

STValidation::setUntrusted()

{

    mTrusted = false;

}


inline void

STValidation::setSeen(NetClock::time_point s)

{

    seenTime_ = s;

}


}  // namespace ripple


#endif

ripple::CountedObject
Tracks the number of instances of an object.
Definition: CountedObject.h:125

ripple::NetClock
Definition: chrono.h:63

ripple::PublicKey
A public key.
Definition: PublicKey.h:62

ripple::PublicKey::slice
Slice slice() const noexcept
Definition: PublicKey.h:123

ripple::SOTemplate
Defines the fields and their attributes within a STObject.
Definition: SOTemplate.h:113

ripple::STBase
A type which can be exported to a well known binary format.
Definition: STBase.h:124

ripple::STObject
Definition: STObject.h:55

ripple::STObject::getFieldVL
Blob getFieldVL(SField const &field) const
Definition: STObject.cpp:627

ripple::STObject::setFlag
bool setFlag(std::uint32_t)
Definition: STObject.cpp:477

ripple::STObject::isFieldPresent
bool isFieldPresent(SField const &field) const
Definition: STObject.cpp:454

ripple::STObject::getJson
Json::Value getJson(JsonOptions options) const override
Definition: STObject.cpp:795

ripple::STObject::setFieldU32
void setFieldU32(SField const &field, std::uint32_t)
Definition: STObject.cpp:711

ripple::STObject::setFieldVL
void setFieldVL(SField const &field, Blob const &)
Definition: STObject.cpp:747

ripple::STValidation
Definition: STValidation.h:45

ripple::STValidation::mTrusted
bool mTrusted
Definition: STValidation.h:46

ripple::STValidation::getSignerPublic
PublicKey const & getSignerPublic() const noexcept
Definition: STValidation.h:238

ripple::STValidation::setUntrusted
void setUntrusted()
Definition: STValidation.h:262

ripple::STValidation::getConsensusHash
uint256 getConsensusHash() const
Definition: STValidation.cpp:88

ripple::STValidation::valid_
std::optional< bool > valid_
Definition: STValidation.h:50

ripple::STValidation::STValidation
STValidation(SerialIter &sit, LookupNodeID &&lookupNodeID, bool checkSignature)
Construct a STValidation from a peer from serialized data.
Definition: STValidation.h:157

ripple::STValidation::getSerialized
Blob getSerialized() const
Definition: STValidation.cpp:137

ripple::STValidation::getSeenTime
NetClock::time_point getSeenTime() const noexcept
Definition: STValidation.cpp:100

ripple::STValidation::setSeen
void setSeen(NetClock::time_point s)
Definition: STValidation.h:268

ripple::STValidation::STVar
friend class detail::STVar
Definition: STValidation.h:153

ripple::STValidation::isTrusted
bool isTrusted() const noexcept
Definition: STValidation.h:250

ripple::STValidation::nodeID_
NodeID const nodeID_
Definition: STValidation.h:57

ripple::STValidation::signingPubKey_
PublicKey const signingPubKey_
Definition: STValidation.h:53

ripple::STValidation::validationFormat
static SOTemplate const & validationFormat()
Definition: STValidation.cpp:41

ripple::STValidation::getNodeID
NodeID const & getNodeID() const noexcept
Definition: STValidation.h:244

ripple::STValidation::isFull
bool isFull() const noexcept
Definition: STValidation.cpp:125

ripple::STValidation::seenTime_
NetClock::time_point seenTime_
Definition: STValidation.h:59

ripple::STValidation::setTrusted
void setTrusted()
Definition: STValidation.h:256

ripple::STValidation::copy
STBase * copy(std::size_t n, void *buf) const override
Definition: STValidation.cpp:29

ripple::STValidation::getLedgerHash
uint256 getLedgerHash() const
Definition: STValidation.cpp:82

ripple::STValidation::isValid
bool isValid() const noexcept
Definition: STValidation.cpp:106

ripple::STValidation::getSigningHash
uint256 getSigningHash() const
Definition: STValidation.cpp:76

ripple::STValidation::getSignature
Blob getSignature() const
Definition: STValidation.cpp:131

ripple::STValidation::move
STBase * move(std::size_t n, void *buf) override
Definition: STValidation.cpp:35

ripple::STValidation::getSignTime
NetClock::time_point getSignTime() const
Definition: STValidation.cpp:94

ripple::SecretKey
A secret key.
Definition: SecretKey.h:37

ripple::SerialIter
Definition: Serializer.h:346

ripple::base_uint< 160, detail::NodeIDTag >

ripple::base_uint::isNonZero
bool isNonZero() const
Definition: base_uint.h:544

cstdint

functional

std::uint32_t

memory

ripple
Use hash_* containers for keys that do not need a cryptographically secure hashing algorithm.
Definition: algorithm.h:26

ripple::publicKeyType
std::optional< KeyType > publicKeyType(Slice const &slice)
Returns the type of public key.
Definition: PublicKey.cpp:207

ripple::makeSlice
std::enable_if_t< std::is_same< T, char >::value||std::is_same< T, unsigned char >::value, Slice > makeSlice(std::array< T, N > const &a)
Definition: Slice.h:243

ripple::debugLog
beast::Journal debugLog()
Returns a debug journal.
Definition: Log.cpp:452

ripple::KeyType::secp256k1
@ secp256k1

ripple::signDigest
Buffer signDigest(PublicKey const &pk, SecretKey const &sk, uint256 const &digest)
Generate a signature for a message digest.
Definition: SecretKey.cpp:212

ripple::vfFullyCanonicalSig
constexpr std::uint32_t vfFullyCanonicalSig
Definition: STValidation.h:42

ripple::vfFullValidation
constexpr std::uint32_t vfFullValidation
Definition: STValidation.h:39

ripple::soeREQUIRED
@ soeREQUIRED
Definition: SOTemplate.h:35

ripple::LogicError
void LogicError(std::string const &how) noexcept
Called when faulty logic causes a broken invariant.
Definition: contract.cpp:48

std
STL namespace.

optional

ripple::JsonOptions::none
@ none
Definition: STBase.h:42

std::chrono::time_point

std::chrono::time_point::time_since_epoch
T time_since_epoch(T... args)

std::vector< unsigned char >