Skip to content
This repository has been archived by the owner on Aug 2, 2022. It is now read-only.

DAWN-400 ⁃ Transaction Proposal System #1030

Closed
5 of 7 tasks
wanderingbort opened this issue Jan 3, 2018 · 2 comments
Closed
5 of 7 tasks

DAWN-400 ⁃ Transaction Proposal System #1030

wanderingbort opened this issue Jan 3, 2018 · 2 comments
Assignees
@andriantolie @moskvanaft
Labels
needs testing - pass track-in-jira
Milestone
RC2

Comments

@wanderingbort
Copy link
Contributor

wanderingbort commented Jan 3, 2018
edited by moskvanaft
Loading

Transaction Proposal System

A user, Alice, wishes to propose a transaction that contains actions which require permissions from Alice, Bob, and Charlie in order to process. She proposes the transaction through the Transaction Proposal system, publicly on-chain. Bob and Charlie review the transaction at their convenience and individually contribute their approvals. The transaction is posted to the chain and processes with the permission levels granted by the individuals at the time of approval.

Description

This system is designed to allow multiple parties to co-operate on-chain to authorize a given transaction. While SignedTransaction s can be constructed through side-channels and published to the chain to represent multi-party consent, the process of doing so can be opaque to the point of untenable in certain circumstances. As an alternative, the Proposal system allows parties to conduct that process asynchronous and transparently. Additionally, it allows for a hierarchical set of proposals which can respect a much larger and deeper authorization structure than a single transaction would likely have the capacity to represent within the limits of the chain.

Implementation Details

In order to facilitate hardforks without binary code drops, this will be implemented in WASM however, it will require some privilege not available to normal user contracts. This means there is need for a privileged mode of execution and relates to to #1029 .

  • Add eosio.any permission to linkauth which allows any named permission to satisfy the link and assumes contracts will implement additional considerations
  • Add wasm API to access the permission names on the action as read only
  • Implement proposal endpoints
    • propose which takes a packed transaction and a list of authorizers
    • approve which takes a permission level and must be be authorized by the user at that permission level
  • Implement API to check to see if a set of named permissions and public keys can satisfy the stated permission levels on a transaction.
  • Add support for privileged contracts to send deferred_transactions with the explicit permission levels instead of the assumed code account's active
@blockone-syncclient blockone-syncclient changed the title Transaction Proposal System DAWN-400 ⁃ Transaction Proposal System Jan 3, 2018
@bytemaster bytemaster self-assigned this Mar 14, 2018
@bytemaster bytemaster added this to the Q1, 2018 milestone Mar 14, 2018
bytemaster added a commit that referenced this issue Mar 14, 2018
@bytemaster
Progress on MultiSig Proposal #1030
286086a 
Define start of eosio.multisig contract
Add stub for API to check authorization levels of transactions
bytemaster referenced this issue Mar 16, 2018
@bytemaster
when linking to eosio.any it is up to the contract to determine requi…
c37d719 
…red permission level
bytemaster added a commit that referenced this issue Mar 16, 2018
@bytemaster
Progress on #1030 - Transaction Proposal System (Multisig)
2845458 
- added check_trx_permission API to enable contracts to validate
permissions
- updated authorization_checker to pre-authorize certain permission
levels
- added flat_set to eosiolib/datastream
- added contracts/eosio.multisig to build
@gleehokie gleehokie modified the milestones: Q1, 2018, RC2 Mar 22, 2018
bytemaster added a commit that referenced this issue Mar 28, 2018
@bytemaster
Implmeent eosio.any link #1030
b49eb64 
implment stub of new eosio.msig contract using new contract structure
define eosio.msig abi
eoslib name class now uses {} rather than constructor and uses magic_get
serialization
bytemaster added a commit that referenced this issue Mar 28, 2018
@bytemaster
Progress testing eosio.any auth perm, #1030
e7de47b
bytemaster added a commit that referenced this issue Mar 29, 2018
@bytemaster
adding tests and fixing eosio.any permission level #1030
44b8885
bytemaster added a commit that referenced this issue Mar 29, 2018
@bytemaster
resolve conflicts, #1030
4b8851a
moskvanaft added a commit that referenced this issue Mar 30, 2018
@moskvanaft
new require_auth, abi fixes, unit-test draft for multisig contract #1030
5d4486c
moskvanaft added a commit that referenced this issue Apr 2, 2018
@moskvanaft
support for permission_level in authority_checker, check_auth function
4bd9d86 
…#1030
@moskvanaft moskvanaft assigned moskvanaft and unassigned bytemaster Apr 2, 2018
moskvanaft added a commit that referenced this issue Apr 2, 2018
@moskvanaft
unit-test for multisig #1030
6794aee
moskvanaft added a commit that referenced this issue Apr 2, 2018
@moskvanaft
require_authorization of payer only if sender is not privileged, bill…
aa3717d 
… multisig execution to executer, check for deferred transaction in multisig_tests #1030
moskvanaft added a commit that referenced this issue Apr 3, 2018
@moskvanaft
use heap for serialization/desirialization in dispatcher and multi_in…
4014ed4 
…dex in case of big objects, big transaction unit-test for multisig #1030
moskvanaft added a commit that referenced this issue Apr 3, 2018
@moskvanaft
remove max_generated_transaction_size #1030
8120d51
moskvanaft added a commit that referenced this issue Apr 3, 2018
@moskvanaft
default_buffer size changed to 512 to avoid strange failures #1030
6d847b6
moskvanaft added a commit that referenced this issue Apr 3, 2018
@moskvanaft
check that transaction succeded, not just attempted to executed #1030
9adb819
moskvanaft added a commit that referenced this issue Apr 4, 2018
@moskvanaft
don't allocate more memory on stack than needed #1030
143579f
moskvanaft added a commit that referenced this issue Apr 4, 2018
@moskvanaft
set kcpu_usage = 0 #1030
455209e
moskvanaft added a commit that referenced this issue Apr 4, 2018
@moskvanaft
set max_net_usage_words to 0, big_transaction unit-test commented out #…
51fdfd0 
…1030
moskvanaft added a commit that referenced this issue Apr 4, 2018
@moskvanaft
hacked propose function that reads input data directly, field names f…
99ec3d7 
…ixed in chain_initializer #1030
moskvanaft added a commit that referenced this issue Apr 5, 2018
@moskvanaft
multisig in TUTORIAL.md #1030
3109109
@andriantolie andriantolie self-assigned this Apr 26, 2018
@andriantolie
Copy link
Contributor

andriantolie commented Apr 26, 2018
edited by dskvr
Loading

Verifying the subtask one by one:

  • Add eosio.any permission to linkauth which allows any named permission to satisfy the link and assumes contracts will implement additional considerations ( Verified, auth_tests/any_auth unit tests verify that eosio.any permission enable an action to be satisfied by any named permission of an account )
  • Add wasm API to access the permission names on the action as read only (Verified with additional unit test in PR Add additional assert to verify permission #2612)
  • Implement proposal endpoints
    • propose which takes a packed transaction and a list of authorizers
    • approve which takes a permission level and must be be authorized by the user at that permission level
      ( Verified, multisig_tester unit tests verify that propose and approve action is working )
  • Implement API to check to see if a set of named permissions and public keys can satisfy the stated permission levels on a transaction. (Verified, test_permission/check_authorization checks this)
  • Add support for privileged contracts to send deferred_transactions with the explicit permission levels instead of the assumed code account's active (Verified, privilege contract can send deferred trx without specifying the active key)

@andriantolie andriantolie mentioned this issue Apr 27, 2018
Merged
@andriantolie
Copy link
Contributor

Based on the previous comment, all subtasks verified

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@andriantolie andriantolie

@moskvanaft moskvanaft

Labels
needs testing - pass track-in-jira
Projects
None yet
Milestone
RC2
Development

No branches or pull requests
5 participants
@bytemaster @gleehokie @wanderingbort @andriantolie @moskvanaft