Rlp meltdown

[kevsul]

Extra restrictions to RLP and tx decoding:

• refactored RLPReader.sol yo remove duplicate code
• RLPReader.toUint() treats leading zeros as invalid
• RLPReader.toAddress() requires the item data to be exactly 20 bytes.
• RLPReader.toBytes32() requires the item data to be exactly 32 bytes.
• Transaction inputs must be bytes32
• Transaction inputs cannot be empty (all zeros)
• Transaction outputs cannot be empty (outputGuard == 0 AND amount == 0)
• Transaction metadata must be bytes32

[boolafish]

We have some places that was treating amount == 0 as empty. Might worth take a looks and see if those places should change to be using this or not. Probably does not make sense to change but let double check.

https://github.com/omisego/plasma-contracts/blob/master/plasma_framework/contracts/src/exits/payment/controllers/PaymentStartStandardExit.sol#L168

https://github.com/omisego/plasma-contracts/blob/master/plasma_framework/contracts/src/exits/payment/controllers/PaymentProcessInFlightExit.sol#L208-L224

[boolafish]

should it be "including the offset"?

[kevsul]

I mean the total length - length of the length field and the data

[boolafish]

ah...just see offset is in the later part of the sentence

[boolafish]

Can we just pass in the RLPItem and also do the length check done in the RLP spec python example?

https://github.com/ethereum/wiki/wiki/RLP

[kevsul]

I don't think it easy to do it like that. In the python example they use string manipulation with substr and concatenation, but this isn't so easy in Solidity. Memory pointers seem to be a better fit.

[boolafish]

oh, I am not suggesting about the memory pointer part. But if just compare the two functions, the python example also has conditions like length > prefix - 0x80 in the branchings. If we pass in the RLPItem, I think we can use the item.len to match the logic in python.

Or are they actually different things?

[kevsul]

They're different. In python length = len(input), but in Solidity you only have the length of the overall buffer. You don't get the length of each item item.len (until you decode it)

[kevsul]

I mean, in python length is the length of the remainder of the buffer, which is not the same as the item.len.

[boolafish]

okay, let me try to understand the assemblies again 😅

[boolafish]

lol, it is so much "fun" to read the assemblies, ewwww

[boolafish]

my IDE argues about the tx variable

This declaration shadows a builtin symbol.

[kevsul]

Nice catch, I wonder why sol linter isn't picking these up?

[thec00n]

1.) Why are the checks related to PaymentOutputModel not in decode?
2.) I think we concluded that the amount has be greater than 0?

[kevsul]

1.) Why are the checks related to PaymentOutputModel not in decode?

PaymentOutputModel is going to be removed as part of refactor, will be in the next PR

[kevsul]

2.) I think we concluded that the amount has be greater than 0?

OK

[thec00n]

• Can we add tests that cover all loc/branches in https://coveralls.io/builds/27286020/source?filename=contracts/src/utils/RLPReader.sol
• Is the plan to remove https://github.com/omisego/plasma-contracts/blob/11a731267140cb8f54084f456c08f97ada8d0206/plasma_framework/contracts/src/transactions/WireTransaction.sol? If not than we need to add checks there as well.

[kevsul]

• Can we add tests that cover all loc/branches in https://coveralls.io/builds/27286020/source?filename=contracts/src/utils/RLPReader.sol

Yep

• Is the plan to remove https://github.com/omisego/plasma-contracts/blob/11a731267140cb8f54084f456c08f97ada8d0206/plasma_framework/contracts/src/transactions/WireTransaction.sol? If not than we need to add checks there as well.

Will be refactored.

[thec00n]

Made a few minor doc improvements: #490
Otherwise LGTM.