[Ceres] Restrict GAAttachTx - only allowed for fresh accounts (#4237)

* Restrict GAAttachTx to nonce 1 * Add another test * Add release note
aeternity · Jan 15, 2024 · 4b03141 · 4b03141
1 parent d9d1100
commit 4b03141
Show file tree

Hide file tree

Showing 3 changed files with 38 additions and 4 deletions.
diff --git a/apps/aega/src/aega_attach_tx.erl b/apps/aega/src/aega_attach_tx.erl
@@ -306,8 +306,13 @@ version(_) ->
     ?GA_ATTACH_TX_VSN.
 
 -spec valid_at_protocol(aec_hard_forks:protocol_vsn(), tx()) -> boolean().
-valid_at_protocol(P, #ga_attach_tx{}) ->
-    P >= ?FORTUNA_PROTOCOL_VSN.
+valid_at_protocol(P, #ga_attach_tx{ nonce = Nonce }) ->
+    if P < ?FORTUNA_PROTOCOL_VSN -> false;
+       P =< ?IRIS_PROTOCOL_VSN    -> true;
+       %% In Ceres (and onwards) only allow fresh accounts to transform
+       true                      -> Nonce =< 1
+    end.
+
 
 %%%===================================================================
 %%% Internal functions
diff --git a/apps/aega/test/aega_SUITE.erl b/apps/aega/test/aega_SUITE.erl
@@ -28,6 +28,7 @@
         , simple_contract_call/1
         , simple_re_attach_fail/1
         , simple_spend_from_fail/1
+        , simple_attach_after_spend/1
 
         , basic_attach/1
         , basic_spend_from/1
@@ -144,6 +145,7 @@ groups() ->
                    , simple_contract_call
                    , simple_re_attach_fail
                    , simple_spend_from_fail
+                   , simple_attach_after_spend
                    ]}
 
     , {basic, [], [ basic_attach
@@ -281,8 +283,14 @@ simple_double_attach_fail(_Cfg) ->
     Acc1 = ?call(new_account, 1000000000 * aec_test_utils:min_gas_price()),
     {ok, _} = ?call(attach, Acc1, "simple_auth", "authorize", ["123"]),
 
-    {failed, not_a_basic_account} =
-        ?call(attach, Acc1, "simple_auth", "authorize", ["0"], #{fail => true}),
+    Protocol = aec_hard_forks:protocol_effective_at_height(1),
+    Res = ?call(attach, Acc1, "simple_auth", "authorize", ["0"], #{fail => true}),
+
+    if Protocol =< ?IRIS_PROTOCOL_VSN ->
+        ?assertEqual({failed, not_a_basic_account}, Res);
+       true ->
+        ?assertEqual({failed, invalid_at_protocol}, Res)
+    end,
 
     ok.
 
@@ -385,6 +393,25 @@ simple_spend_from_fail(_Cfg) ->
 
     ok.
 
+simple_attach_after_spend(_Cfg) ->
+    state(aect_test_utils:new_state()),
+    MinGP = aec_test_utils:min_gas_price(),
+    Acc1 = ?call(new_account, 1000000000 * MinGP),
+    Acc2 = ?call(new_account, 1000000000 * MinGP),
+
+    %% Do a normal spend from Acc1
+    ok = ?call(spend, Acc1, Acc2, 500,  20000 * MinGP),
+
+    %% Then do attach - it should fail from Ceres and onwards
+    Protocol = aec_hard_forks:protocol_effective_at_height(1),
+    if  Protocol =< ?IRIS_PROTOCOL_VSN ->
+            {ok, _} = ?call(attach, Acc1, "simple_auth", "authorize", ["123"]);
+        true ->
+            {failed, invalid_at_protocol} = ?call(attach, Acc1, "simple_auth", "authorize", ["123"], #{fail => true})
+    end,
+
+    ok.
+
 %%%===================================================================
 %%% Basic GA tests
 %%%===================================================================

diff --git a/docs/release-notes/next-ceres/aega_only_allow_attach_for_fresh_accounts.md b/docs/release-notes/next-ceres/aega_only_allow_attach_for_fresh_accounts.md
@@ -0,0 +1,2 @@
+* Only allow GAAttachTx for nonce 1 - i.e. an account cannot later be
+  transformed into a generalized account.