rippled
Loading...
Searching...
No Matches
STValidation.h
1//------------------------------------------------------------------------------
2/*
3 This file is part of rippled: https://github.com/ripple/rippled
4 Copyright (c) 2012, 2013 Ripple Labs Inc.
5
6 Permission to use, copy, modify, and/or distribute this software for any
7 purpose with or without fee is hereby granted, provided that the above
8 copyright notice and this permission notice appear in all copies.
9
10 THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
11 WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
12 MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
13 ANY SPECIAL , DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
14 WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
15 ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
16 OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
17*/
18//==============================================================================
19
20#ifndef RIPPLE_PROTOCOL_STVALIDATION_H_INCLUDED
21#define RIPPLE_PROTOCOL_STVALIDATION_H_INCLUDED
22
23#include <xrpl/basics/Log.h>
24#include <xrpl/beast/utility/instrumentation.h>
25#include <xrpl/protocol/FeeUnits.h>
26#include <xrpl/protocol/PublicKey.h>
27#include <xrpl/protocol/STObject.h>
28#include <xrpl/protocol/SecretKey.h>
29
30#include <cstdint>
31#include <functional>
32#include <memory>
33#include <optional>
34#include <sstream>
35
36namespace ripple {
37
38// Validation flags
39
40// This is a full (as opposed to a partial) validation
41constexpr std::uint32_t vfFullValidation = 0x00000001;
42
43// The signature is fully canonical
44constexpr std::uint32_t vfFullyCanonicalSig = 0x80000000;
45
46class STValidation final : public STObject, public CountedObject<STValidation>
47{
48 bool mTrusted = false;
49
50 // Determines the validity of the signature in this validation; unseated
51 // optional if we haven't yet checked it, a boolean otherwise.
52 mutable std::optional<bool> valid_;
53
54 // The public key associated with the key used to sign this validation
55 PublicKey const signingPubKey_;
56
57 // The ID of the validator that issued this validation. For validators
58 // that use manifests this will be derived from the master public key.
59 NodeID const nodeID_;
60
61 NetClock::time_point seenTime_ = {};
62
63public:
77 template <class LookupNodeID>
78 STValidation(
79 SerialIter& sit,
80 LookupNodeID&& lookupNodeID,
81 bool checkSignature);
82
91 template <typename F>
92 STValidation(
93 NetClock::time_point signTime,
94 PublicKey const& pk,
95 SecretKey const& sk,
96 NodeID const& nodeID,
97 F&& f);
98
99 // Hash of the validated ledger
100 uint256
101 getLedgerHash() const;
102
103 // Hash of consensus transaction set used to generate ledger
104 uint256
105 getConsensusHash() const;
106
107 NetClock::time_point
108 getSignTime() const;
109
110 NetClock::time_point
111 getSeenTime() const noexcept;
112
113 PublicKey const&
114 getSignerPublic() const noexcept;
115
116 NodeID const&
117 getNodeID() const noexcept;
118
119 bool
120 isValid() const noexcept;
121
122 bool
123 isFull() const noexcept;
124
125 bool
126 isTrusted() const noexcept;
127
128 uint256
129 getSigningHash() const;
130
131 void
132 setTrusted();
133
134 void
135 setUntrusted();
136
137 void
138 setSeen(NetClock::time_point s);
139
140 Blob
141 getSerialized() const;
142
143 Blob
144 getSignature() const;
145
146 std::string
147 render() const
148 {
149 std::stringstream ss;
150 ss << "validation: " << " ledger_hash: " << getLedgerHash()
151 << " consensus_hash: " << getConsensusHash()
152 << " sign_time: " << to_string(getSignTime())
153 << " seen_time: " << to_string(getSeenTime())
154 << " signer_public_key: " << getSignerPublic()
155 << " node_id: " << getNodeID() << " is_valid: " << isValid()
156 << " is_full: " << isFull() << " is_trusted: " << isTrusted()
157 << " signing_hash: " << getSigningHash()
158 << " base58: " << toBase58(TokenType::NodePublic, getSignerPublic());
159 return ss.str();
160 }
161
162private:
163 static SOTemplate const&
164 validationFormat();
165
166 STBase*
167 copy(std::size_t n, void* buf) const override;
168 STBase*
169 move(std::size_t n, void* buf) override;
170
171 friend class detail::STVar;
172};
173
174template <class LookupNodeID>
175STValidation::STValidation(
176 SerialIter& sit,
177 LookupNodeID&& lookupNodeID,
178 bool checkSignature)
179 : STObject(validationFormat(), sit, sfValidation)
180 , signingPubKey_([this]() {
181 auto const spk = getFieldVL(sfSigningPubKey);
182
183 if (publicKeyType(makeSlice(spk)) != KeyType::secp256k1)
184 Throw<std::runtime_error>("Invalid public key in validation");
185
186 return PublicKey{makeSlice(spk)};
187 }())
188 , nodeID_(lookupNodeID(signingPubKey_))
189{
190 if (checkSignature && !isValid())
191 {
192 JLOG(debugLog().error()) << "Invalid signature in validation: "
193 << getJson(JsonOptions::none);
194 Throw<std::runtime_error>("Invalid signature in validation");
195 }
196
197 XRPL_ASSERT(
198 nodeID_.isNonZero(),
199 "ripple::STValidation::STValidation(SerialIter) : nonzero node");
200}
201
210template <typename F>
211STValidation::STValidation(
212 NetClock::time_point signTime,
213 PublicKey const& pk,
214 SecretKey const& sk,
215 NodeID const& nodeID,
216 F&& f)
217 : STObject(validationFormat(), sfValidation)
218 , signingPubKey_(pk)
219 , nodeID_(nodeID)
220 , seenTime_(signTime)
221{
222 XRPL_ASSERT(
223 nodeID_.isNonZero(),
224 "ripple::STValidation::STValidation(PublicKey, SecretKey) : nonzero "
225 "node");
226
227 // First, set our own public key:
228 if (publicKeyType(pk) != KeyType::secp256k1)
229 LogicError("We can only use secp256k1 keys for signing validations");
230
231 setFieldVL(sfSigningPubKey, pk.slice());
232 setFieldU32(sfSigningTime, signTime.time_since_epoch().count());
233
234 // Perform additional initialization
235 f(*this);
236
237 // Finally, sign the validation and mark it as trusted:
238 setFlag(vfFullyCanonicalSig);
239 setFieldVL(sfSignature, signDigest(pk, sk, getSigningHash()));
240 setTrusted();
241
242 // Check to ensure that all required fields are present.
243 for (auto const& e : validationFormat())
244 {
245 if (e.style() == soeREQUIRED && !isFieldPresent(e.sField()))
246 LogicError(
247 "Required field '" + e.sField().getName() +
248 "' missing from validation.");
249 }
250
251 // We just signed this, so it should be valid.
252 valid_ = true;
253}
254
255inline PublicKey const&
256STValidation::getSignerPublic() const noexcept
257{
258 return signingPubKey_;
259}
260
261inline NodeID const&
262STValidation::getNodeID() const noexcept
263{
264 return nodeID_;
265}
266
267inline bool
268STValidation::isTrusted() const noexcept
269{
270 return mTrusted;
271}
272
273inline void
274STValidation::setTrusted()
275{
276 mTrusted = true;
277}
278
279inline void
280STValidation::setUntrusted()
281{
282 mTrusted = false;
283}
284
285inline void
286STValidation::setSeen(NetClock::time_point s)
287{
288 seenTime_ = s;
289}
290
291} // namespace ripple
292
293#endif
ripple::CountedObject
Tracks the number of instances of an object.
Definition: CountedObject.h:126
ripple::PublicKey
A public key.
Definition: PublicKey.h:62
ripple::PublicKey::slice
Slice slice() const noexcept
Definition: PublicKey.h:123
ripple::SOTemplate
Defines the fields and their attributes within a STObject.
Definition: SOTemplate.h:114
ripple::STBase
A type which can be exported to a well known binary format.
Definition: STBase.h:126
ripple::STObject::getFieldVL
Blob getFieldVL(SField const &field) const
Definition: STObject.cpp:657
ripple::STObject::setFlag
bool setFlag(std::uint32_t)
Definition: STObject.cpp:507
ripple::STObject::isFieldPresent
bool isFieldPresent(SField const &field) const
Definition: STObject.cpp:484
ripple::STObject::setFieldU32
void setFieldU32(SField const &field, std::uint32_t)
Definition: STObject.cpp:741
ripple::STObject::setFieldVL
void setFieldVL(SField const &field, Blob const &)
Definition: STObject.cpp:777
ripple::STValidation::getSignerPublic
PublicKey const & getSignerPublic() const noexcept
Definition: STValidation.h:256
ripple::STValidation::getConsensusHash
uint256 getConsensusHash() const
Definition: STValidation.cpp:100
ripple::STValidation::render
std::string render() const
Definition: STValidation.h:147
ripple::STValidation::valid_
std::optional< bool > valid_
Definition: STValidation.h:52
ripple::STValidation::STValidation
STValidation(SerialIter &sit, LookupNodeID &&lookupNodeID, bool checkSignature)
Construct a STValidation from a peer from serialized data.
Definition: STValidation.h:175
ripple::STValidation::getSerialized
Blob getSerialized() const
Definition: STValidation.cpp:149
ripple::STValidation::getSeenTime
NetClock::time_point getSeenTime() const noexcept
Definition: STValidation.cpp:112
ripple::STValidation::setSeen
void setSeen(NetClock::time_point s)
Definition: STValidation.h:286
ripple::STValidation::isTrusted
bool isTrusted() const noexcept
Definition: STValidation.h:268
ripple::STValidation::nodeID_
NodeID const nodeID_
Definition: STValidation.h:59
ripple::STValidation::signingPubKey_
PublicKey const signingPubKey_
Definition: STValidation.h:55
ripple::STValidation::validationFormat
static SOTemplate const & validationFormat()
Definition: STValidation.cpp:53
ripple::STValidation::getNodeID
NodeID const & getNodeID() const noexcept
Definition: STValidation.h:262
ripple::STValidation::isFull
bool isFull() const noexcept
Definition: STValidation.cpp:137
ripple::STValidation::seenTime_
NetClock::time_point seenTime_
Definition: STValidation.h:61
ripple::STValidation::copy
STBase * copy(std::size_t n, void *buf) const override
Definition: STValidation.cpp:41
ripple::STValidation::getLedgerHash
uint256 getLedgerHash() const
Definition: STValidation.cpp:94
ripple::STValidation::isValid
bool isValid() const noexcept
Definition: STValidation.cpp:118
ripple::STValidation::getSigningHash
uint256 getSigningHash() const
Definition: STValidation.cpp:88
ripple::STValidation::getSignature
Blob getSignature() const
Definition: STValidation.cpp:143
ripple::STValidation::move
STBase * move(std::size_t n, void *buf) override
Definition: STValidation.cpp:47
ripple::STValidation::getSignTime
NetClock::time_point getSignTime() const
Definition: STValidation.cpp:106
ripple::SecretKey
A secret key.
Definition: SecretKey.h:38
ripple::base_uint< 160, detail::NodeIDTag >
ripple::base_uint::isNonZero
bool isNonZero() const
Definition: base_uint.h:545
ripple
Use hash_* containers for keys that do not need a cryptographically secure hashing algorithm.
Definition: algorithm.h:26
ripple::toBase58
std::string toBase58(AccountID const &v)
Convert AccountID to base58 checked string.
Definition: AccountID.cpp:114
ripple::publicKeyType
std::optional< KeyType > publicKeyType(Slice const &slice)
Returns the type of public key.
Definition: PublicKey.cpp:223
ripple::makeSlice
std::enable_if_t< std::is_same< T, char >::value||std::is_same< T, unsigned char >::value, Slice > makeSlice(std::array< T, N > const &a)
Definition: Slice.h:244
ripple::debugLog
beast::Journal debugLog()
Returns a debug journal.
Definition: Log.cpp:468
ripple::signDigest
Buffer signDigest(PublicKey const &pk, SecretKey const &sk, uint256 const &digest)
Generate a signature for a message digest.
Definition: SecretKey.cpp:230
ripple::vfFullyCanonicalSig
constexpr std::uint32_t vfFullyCanonicalSig
Definition: STValidation.h:44
ripple::to_string
std::string to_string(base_uint< Bits, Tag > const &a)
Definition: base_uint.h:630
ripple::vfFullValidation
constexpr std::uint32_t vfFullValidation
Definition: STValidation.h:41
ripple::getJson
Json::Value getJson(LedgerFill const &fill)
Return a new Json::Value representing the ledger with given options.
Definition: LedgerToJson.cpp:360
ripple::soeREQUIRED
@ soeREQUIRED
Definition: SOTemplate.h:36
ripple::LogicError
void LogicError(std::string const &how) noexcept
Called when faulty logic causes a broken invariant.
Definition: contract.cpp:37
std
STL namespace.
std::stringstream::str
T str(T... args)
std::chrono::time_point::time_since_epoch
T time_since_epoch(T... args)
Generated by doxygen 1.9.5