Skip to content

htlc auditing extension #369

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
adecaro merged 9 commits into from
Sep 19, 2022
Merged

htlc auditing extension #369

adecaro merged 9 commits into from
Sep 19, 2022

Conversation

@adecaro
Copy link
Contributor

@adecaro adecaro commented Aug 29, 2022
edited
Loading

This PR introduces the following capabilities:

  • Allow an auditor to check if an input or an output contains an HTLC script.
  • If an input or output contains an HTLC script, the Auditor should be able to extract the script and learn about the conditions.

As a bonus, this PR also improves on the validation of the HTLC script.

Signed-off-by: Angelo De Caro adc@zurich.ibm.com

@adecaro adecaro marked this pull request as draft August 29, 2022 14:18
@adecaro adecaro marked this pull request as ready for review September 16, 2022 07:19
@adecaro adecaro requested a review from KElkhiyaoui September 16, 2022 11:03
@adecaro adecaro self-assigned this Sep 16, 2022
@adecaro adecaro requested a review from HagarMeir September 17, 2022 13:55
@adecaro adecaro added the enhancement New feature or request label Sep 17, 2022
HagarMeir
HagarMeir reviewed Sep 18, 2022
View reviewed changes
integration/token/interop/views/accept.go Outdated
if !output.IsHTLC() {
continue
}
// check script details, for example make sure the deadline has not passed
Copy link
Contributor

@HagarMeir HagarMeir Sep 18, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

AcceptCashView is only used to accept when there is an issue (according to latest topology) and so this code is never used.

Copy link
Contributor Author

@adecaro adecaro Sep 19, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

aha, good catch. It is during Lock. We have already stuff there. I will update.

HagarMeir
HagarMeir reviewed Sep 18, 2022
View reviewed changes
integration/token/interop/views/auditor.go Outdated
}
// check script details, for example make sure the deadline has not passed
script, err := output.Script()
assert.NoError(err, "cannot get htlc script from input")
Copy link
Contributor

@HagarMeir HagarMeir Sep 18, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

from output

HagarMeir
HagarMeir reviewed Sep 18, 2022
View reviewed changes
integration/token/interop/views/auditor.go Outdated
if !output.IsHTLC() {
continue
}
// check script details, for example make sure the deadline has not passed
Copy link
Contributor

@HagarMeir HagarMeir Sep 18, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

script.Validate checks more than just the deadline

HagarMeir
HagarMeir reviewed Sep 18, 2022
View reviewed changes
token/services/interop/htlc/script.go Outdated
"time"

"github.com/pkg/errors"

Copy link
Contributor

@HagarMeir HagarMeir Sep 18, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

please remove empty line and run go imports

HagarMeir
HagarMeir reviewed Sep 18, 2022
View reviewed changes
token/services/interop/htlc/audit.go Outdated
script := &Script{}
err = json.Unmarshal(owner.Identity, script)
if err != nil {
return nil, err
Copy link
Contributor

@HagarMeir HagarMeir Sep 18, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

maybe add a description to this error

HagarMeir
HagarMeir reviewed Sep 18, 2022
View reviewed changes
token/services/interop/htlc/audit.go Outdated
script := &Script{}
err = json.Unmarshal(owner.Identity, script)
if err != nil {
return nil, err
Copy link
Contributor

@HagarMeir HagarMeir Sep 18, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

maybe add a description to this error

HagarMeir
HagarMeir reviewed Sep 18, 2022
View reviewed changes
token/services/interop/htlc/script.go Outdated
// - The recipient must be set
// - The deadline must be after the passed time reference
// - HashInfo must be Available
func (s Script) Validate(timeReference time.Time) error {
Copy link
Contributor

@HagarMeir HagarMeir Sep 18, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

func (s *Script)

adecaro and others added 9 commits September 19, 2022 09:50
@adecaro
htlc auditing
b19bb83 
Signed-off-by: Angelo De Caro <adc@zurich.ibm.com>
@adecaro
fixup! htlc auditing
8ce9c57 
Signed-off-by: Angelo De Caro <adc@zurich.ibm.com>
@HagarMeir @adecaro
move script info
6b6fb6d 
Signed-off-by: Hagar Meir <hagar.meir@ibm.com>
@HagarMeir @adecaro
fixup! move script info
a56b2fc 
Signed-off-by: Hagar Meir <hagar.meir@ibm.com>
@HagarMeir @adecaro
check script details
608dd47 
Signed-off-by: Hagar Meir <hagar.meir@ibm.com>
@adecaro
- adding missing script's hash and encoding validation
2250fb6 
- finalizing integration test checks

Signed-off-by: Angelo De Caro <adc@zurich.ibm.com>
@adecaro
fixup! - adding missing script's hash and encoding validation - final…
03ab84d 
…izing integration test checks

Signed-off-by: Angelo De Caro <adc@zurich.ibm.com>
@adecaro
fixup! - adding missing script's hash and encoding validation - final…
7a760d8 
…izing integration test checks

Signed-off-by: Angelo De Caro <adc@zurich.ibm.com>
@adecaro
fixup! - adding missing script's hash and encoding validation - final…
9bae016 
…izing integration test checks

Signed-off-by: Angelo De Caro <adc@zurich.ibm.com>
@adecaro adecaro requested a review from HagarMeir September 19, 2022 07:51
@adecaro adecaro removed the request for review from KElkhiyaoui September 19, 2022 09:49
@adecaro adecaro merged commit 8f2b40d into main Sep 19, 2022
@adecaro adecaro deleted the f-audit-ext branch September 19, 2022 09:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@HagarMeir HagarMeir HagarMeir approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@adecaro adecaro

Labels

enhancement New feature or request

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@adecaro @HagarMeir