BSIP 40: Add evaluators, transaction eval code, testing

Implementation passes cursory tests.

Author: nathanielhourt

libraries/app/database_api.cpp

@@ -2341,6 +2341,8 @@ bool database_api_impl::verify_authority( const signed_transaction& trx )const
    trx.verify_authority( _db.get_chain_id(),
                          [this]( account_id_type id ){ return &id(_db).active; },
                          [this]( account_id_type id ){ return &id(_db).owner; },
+                         [this]( account_id_type id, const operation& op ) {
+                           return _db.get_viable_custom_authorities(id, op); },
                          allow_non_immediate_owner,
                          _db.get_global_properties().parameters.max_authority_depth );
    return true;
@@ -2365,6 +2367,8 @@ bool database_api_impl::verify_account_authority( const string& account_name_or_
       graphene::chain::verify_authority(ops, keys,
             [this]( account_id_type id ){ return &id(_db).active; },
             [this]( account_id_type id ){ return &id(_db).owner; },
+            // Use a no-op lookup for custom authorities; we don't want it even if one does apply for our dummy op
+            [](auto, auto) { return vector<authority>(); },
             true );
    } 
    catch (fc::exception& ex)

libraries/chain/CMakeLists.txt

@@ -55,6 +55,7 @@ add_library( graphene_chain
              htlc_evaluator.cpp
              confidential_evaluator.cpp
              special_authority_evaluation.cpp
+             custom_authority_evaluator.cpp
              buyback.cpp
 
              account_object.cpp

libraries/chain/db_block.cpp

@@ -644,11 +644,15 @@ processed_transaction database::_apply_transaction(const signed_transaction& trx
    if( !(skip & skip_transaction_signatures) )
    {
       bool allow_non_immediate_owner = ( head_block_time() >= HARDFORK_CORE_584_TIME );
-      auto get_active = [&]( account_id_type id ) { return &id(*this).active; };
-      auto get_owner  = [&]( account_id_type id ) { return &id(*this).owner;  };
+      auto get_active = [this]( account_id_type id ) { return &id(*this).active; };
+      auto get_owner  = [this]( account_id_type id ) { return &id(*this).owner;  };
+      auto get_custom = [this]( account_id_type id, const operation& op ) {
+         return get_viable_custom_authorities(id, op);
+      };
       trx.verify_authority( chain_id,
                             get_active,
                             get_owner,
+                            get_custom,
                             allow_non_immediate_owner,
                             get_global_properties().parameters.max_authority_depth );
    }

libraries/chain/db_getter.cpp

@@ -27,6 +27,7 @@
 #include <graphene/chain/asset_object.hpp>
 #include <graphene/chain/chain_property_object.hpp>
 #include <graphene/chain/global_property_object.hpp>
+#include <graphene/chain/custom_authority_object.hpp>
 
 namespace graphene { namespace chain {
 
@@ -95,6 +96,21 @@ node_property_object& database::node_properties()
    return _node_property_object;
 }
 
+vector<authority> database::get_viable_custom_authorities(account_id_type account, const operation &op) const
+{
+   const auto& index = get_index_type<custom_authority_index>().indices().get<by_account_custom>();
+   auto range = index.equal_range(boost::make_tuple(account, unsigned_int(op.which()), true));
+   vector<authority> results;
+
+   std::for_each(range.first, range.second,
+                 [&results, &op, now=head_block_time()](const custom_authority_object& cust_auth) {
+      if (cust_auth.is_valid(now) && cust_auth.get_predicate()(op))
+         results.insert(results.end(), cust_auth.auth);
+   });
+
+   return results;
+}
+
 uint32_t database::last_non_undoable_block_num() const
 {
    //see https://github.com/bitshares/bitshares-core/issues/377

libraries/chain/db_init.cpp

@@ -64,6 +64,7 @@
 #include <graphene/chain/witness_evaluator.hpp>
 #include <graphene/chain/worker_evaluator.hpp>
 #include <graphene/chain/htlc_evaluator.hpp>
+#include <graphene/chain/custom_authority_evaluator.hpp>
 
 #include <fc/uint128.hpp>
 #include <fc/crypto/digest.hpp>
@@ -182,6 +183,9 @@ void database::initialize_evaluators()
    register_evaluator<htlc_create_evaluator>();
    register_evaluator<htlc_redeem_evaluator>();
    register_evaluator<htlc_extend_evaluator>();
+   register_evaluator<custom_authority_create_evaluator>();
+   register_evaluator<custom_authority_update_evaluator>();
+   register_evaluator<custom_authority_delete_evaluator>();
 }
 
 void database::initialize_indexes()

libraries/chain/hardfork.d/BSIP_40.hf

@@ -0,0 +1,6 @@
+// BSIP 40 (Custom Active Authorities) hardfork check
+#ifndef HARDFORK_BSIP_40_TIME
+// Jan 1 2030, midnight; this is a dummy date until a hardfork date is scheduled
+#define HARDFORK_BSIP_40_TIME (fc::time_point_sec( 1893456000 ))
+#define HARDFORK_BSIP_40_PASSED(now) (now >= HARDFORK_BSIP_40_TIME)
+#endif

libraries/chain/include/graphene/chain/custom_authority_object.hpp

@@ -49,8 +49,17 @@ namespace graphene { namespace chain {
          authority auth;
          vector<restriction> restrictions;
 
+         /// Check whether the custom authority is valid
+         bool is_valid(time_point_sec now) const { return enabled && now >= valid_from && now < valid_to; }
+
          /// Unreflected field to store a cache of the predicate function
-         optional<restriction_predicate_function> predicate_cache;
+         mutable optional<restriction_predicate_function> predicate_cache;
+
+         /// Get predicate, from cache if possible, and update cache if not (modifies const object!)
+         restriction_predicate_function get_predicate() const {
+            if (!predicate_cache.valid()) predicate_cache = get_restriction_predicate(restrictions, operation_type);
+            return *predicate_cache;
+         }
    };
 
    struct by_account_custom;
@@ -66,6 +75,8 @@ namespace graphene { namespace chain {
             composite_key<
                custom_authority_object,
                member<custom_authority_object, account_id_type, &custom_authority_object::account>,
+               member<custom_authority_object, unsigned_int, &custom_authority_object::operation_type>,
+               member<custom_authority_object, bool, &custom_authority_object::enabled>,
                member<object, object_id_type, &object::id>
             >
          >

libraries/chain/include/graphene/chain/database.hpp

@@ -279,6 +279,7 @@ namespace graphene { namespace chain {
 
          node_property_object& node_properties();
 
+         vector<authority> get_viable_custom_authorities( account_id_type account, const operation& op )const;
 
          uint32_t last_non_undoable_block_num() const;
          //////////////////// db_init.cpp ////////////////////

libraries/chain/proposal_object.cpp

@@ -38,6 +38,8 @@ bool proposal_object::is_authorized_to_execute(database& db) const
                         available_key_approvals,
                         [&]( account_id_type id ){ return &id(db).active; },
                         [&]( account_id_type id ){ return &id(db).owner;  },
+                        [&]( account_id_type id, const operation& op ){
+                           return db.get_viable_custom_authorities(id, op); },
                         allow_non_immediate_owner,
                         db.get_global_properties().parameters.max_authority_depth,
                         true, /* allow committee */

libraries/protocol/include/graphene/protocol/authority.hpp

@@ -107,6 +107,7 @@ namespace graphene { namespace protocol {
                 (a.key_auths == b.key_auths) &&
                 (a.address_auths == b.address_auths); 
       }
+      friend bool operator!= ( const authority& a, const authority& b ) { return !(a==b); }
       uint32_t num_auths()const { return account_auths.size() + key_auths.size() + address_auths.size(); }
       void     clear() { account_auths.clear(); key_auths.clear(); address_auths.clear(); weight_threshold = 0; }
 

libraries/protocol/include/graphene/protocol/chain_parameters.hpp

@@ -35,6 +35,13 @@ namespace graphene { namespace protocol {
       uint32_t max_preimage_size;
    };
 
+   struct custom_authority_options
+   {
+      uint32_t max_custom_authority_lifetime_seconds = GRAPHENE_DEFAULT_MAX_CUSTOM_AUTHORITY_LIFETIME_SECONDS;
+      uint32_t max_custom_authorities_per_account = GRAPHENE_DEFAULT_MAX_CUSTOM_AUTHORITIES_PER_ACCOUNT;
+      int64_t max_operation_tag = GRAPHENE_DEFAULT_MAX_OPERATION_TAG;
+   };
+
    struct chain_parameters
    {
       /** using a shared_ptr breaks the circular dependency created between operations and the fee schedule */
@@ -74,6 +81,7 @@ namespace graphene { namespace protocol {
       struct ext
       {
          optional< htlc_options > updatable_htlc_options;
+         optional< custom_authority_options > custom_authority_options;
       };
 
       extension<ext> extensions;
@@ -98,6 +106,11 @@ FC_REFLECT( graphene::protocol::htlc_options,
       (max_preimage_size)
 )
 
+FC_REFLECT( graphene::protocol::custom_authority_options,
+      (max_custom_authority_lifetime_seconds)
+      (max_operation_tag)
+)
+
 FC_REFLECT( graphene::protocol::chain_parameters::ext,
       (updatable_htlc_options)
 )

libraries/protocol/include/graphene/protocol/config.hpp

@@ -138,3 +138,12 @@
 ///@}
 
 #define GRAPHENE_FBA_STEALTH_DESIGNATED_ASSET (asset_id_type(743))
+
+/// Maximum duration before a custom authority can expire
+#define GRAPHENE_DEFAULT_MAX_CUSTOM_AUTHORITY_LIFETIME_SECONDS (60*60*24*365)
+/// Maximum number of custom authorities a particular account can set
+#define GRAPHENE_DEFAULT_MAX_CUSTOM_AUTHORITIES_PER_ACCOUNT 10
+
+/// Maximum operation tag which has been forked in so far. Defaults to 56 because that's what it was when we first
+/// began keeping track
+#define GRAPHENE_DEFAULT_MAX_OPERATION_TAG 56

libraries/protocol/include/graphene/protocol/transaction.hpp

@@ -26,6 +26,8 @@
 
 namespace graphene { namespace protocol {
 
+   using custom_authority_lookup = std::function<vector<authority>(account_id_type, const operation&)>;
+
    /**
     * @defgroup transactions Transactions
     *
@@ -160,6 +162,7 @@ namespace graphene { namespace protocol {
        * @param chain_id the ID of a block chain
        * @param get_active callback function to retrieve active authorities of a given account
        * @param get_owner  callback function to retrieve owner authorities of a given account
+       * @param get_custom callback function to retrieve viable custom authorities for a given account and operation
        * @param allow_non_immediate_owner whether to allow owner authority of non-immediately
        *            required accounts to authorize operations in the transaction
        * @param max_recursion maximum level of recursion when verifying, since an account
@@ -169,6 +172,7 @@ namespace graphene { namespace protocol {
          const chain_id_type& chain_id,
          const std::function<const authority*(account_id_type)>& get_active,
          const std::function<const authority*(account_id_type)>& get_owner,
+         custom_authority_lookup get_custom,
          bool allow_non_immediate_owner,
          uint32_t max_recursion = GRAPHENE_MAX_SIG_CHECK_DEPTH )const;
 
@@ -183,6 +187,7 @@ namespace graphene { namespace protocol {
          const flat_set<public_key_type>& available_keys,
          const std::function<const authority*(account_id_type)>& get_active,
          const std::function<const authority*(account_id_type)>& get_owner,
+         custom_authority_lookup get_custom,
          bool allow_non_immediate_owner,
          uint32_t max_recursion = GRAPHENE_MAX_SIG_CHECK_DEPTH
          ) const;
@@ -252,6 +257,7 @@ namespace graphene { namespace protocol {
    void verify_authority( const vector<operation>& ops, const flat_set<public_key_type>& sigs,
                           const std::function<const authority*(account_id_type)>& get_active,
                           const std::function<const authority*(account_id_type)>& get_owner,
+                          custom_authority_lookup get_custom,
                           bool allow_non_immediate_owner,
                           uint32_t max_recursion = GRAPHENE_MAX_SIG_CHECK_DEPTH,
                           bool allow_committe = false,

libraries/protocol/restriction_predicate.cpp

@@ -39,10 +39,15 @@ template<typename...> using make_void = void;
 template<typename T> constexpr static bool is_integral =
         std::conditional_t<std::is_same<T, bool>::value, std::false_type, std::is_integral<T>>::value;
 
+// Metafunction to check if type is some instantiation of fc::safe
+template<typename> constexpr static bool is_safe = false;
+template<typename I> constexpr static bool is_safe<fc::safe<I>> = true;
+
 // Metafunction to check if two types are comparable, which means not void_t, and either the same or both integral
 template<typename T, typename U>
 constexpr static bool comparable_types = !std::is_same<T, void_t>::value &&
-                                         (std::is_same<T, U>::value || (is_integral<T> && is_integral<U>));
+                                         (std::is_same<T, U>::value || ((is_integral<T> || is_safe<T>) &&
+                                                                        (is_integral<U> || is_safe<U>)));
 
 // Metafunction to check if type is a container
 template<typename, typename = size_t> constexpr static bool is_container = false;
@@ -233,6 +238,9 @@ template<typename Element> struct predicate_in<flat_set<Element>> {
    // Simple inclusion check
    template<typename Field, typename = std::enable_if_t<comparable_types<Field, Element>>>
    bool operator()(const Field& f) const { return a.count(f) != 0; }
+   // Check for safe value
+   template<typename Field, typename = std::enable_if_t<comparable_types<Field, Element>>>
+   bool operator()(const fc::safe<Field>& f) const { return a.count(f.value) != 0; }
    // Check for optional value
    template<typename Field, typename = std::enable_if_t<comparable_types<Field, Element>>>
    bool operator()(const fc::optional<Field>& f) const {

libraries/protocol/transaction.cpp

@@ -267,6 +267,7 @@ struct sign_state
 void verify_authority( const vector<operation>& ops, const flat_set<public_key_type>& sigs,
                        const std::function<const authority*(account_id_type)>& get_active,
                        const std::function<const authority*(account_id_type)>& get_owner,
+                       custom_authority_lookup get_custom,
                        bool allow_non_immediate_owner,
                        uint32_t max_recursion_depth,
                        bool  allow_committe,
@@ -277,19 +278,39 @@ void verify_authority( const vector<operation>& ops, const flat_set<public_key_t
    flat_set<account_id_type> required_owner;
    vector<authority> other;
 
-   for( const auto& op : ops )
-      operation_get_required_authorities( op, required_active, required_owner, other );
-
-   if( !allow_committe )
-      GRAPHENE_ASSERT( required_active.find(GRAPHENE_COMMITTEE_ACCOUNT) == required_active.end(),
-                       invalid_committee_approval, "Committee account may only propose transactions" );
-
    sign_state s( sigs, get_active, get_owner, allow_non_immediate_owner, max_recursion_depth );
    for( auto& id : active_aprovals )
       s.approved_by.insert( id );
    for( auto& id : owner_approvals )
       s.approved_by.insert( id );
 
+   auto approved_by_custom_authority = [&s, get_custom = std::move(get_custom)]( account_id_type account,
+                                                                                 operation op ) mutable {
+      auto viable_custom_auths = get_custom(account, op);
+      for (const auto& auth : viable_custom_auths)
+         if (s.check_authority(&auth)) return true;
+      return false;
+   };
+
+   for( const auto& op : ops ) {
+      flat_set<account_id_type> operation_required_active;
+      operation_get_required_authorities( op, operation_required_active, required_owner, other );
+
+      auto itr = operation_required_active.begin();
+      while ( itr != operation_required_active.end() ) {
+         if ( approved_by_custom_authority( *itr, op ) )
+            itr = operation_required_active.erase( itr );
+         else
+            ++itr;
+      }
+
+      required_active.insert( operation_required_active.begin(), operation_required_active.end() );
+   }
+
+   if( !allow_committe )
+      GRAPHENE_ASSERT( required_active.find(GRAPHENE_COMMITTEE_ACCOUNT) == required_active.end(),
+                       invalid_committee_approval, "Committee account may only propose transactions" );
+
    for( const auto& auth : other )
    {
       GRAPHENE_ASSERT( s.check_authority(&auth), tx_missing_other_auth, "Missing Authority", ("auth",auth)("sigs",sigs) );
@@ -375,6 +396,7 @@ set<public_key_type> signed_transaction::minimize_required_signatures(
    const flat_set<public_key_type>& available_keys,
    const std::function<const authority*(account_id_type)>& get_active,
    const std::function<const authority*(account_id_type)>& get_owner,
+   custom_authority_lookup get_custom,
    bool allow_non_immediate_owner,
    uint32_t max_recursion
    ) const
@@ -387,7 +409,7 @@ set<public_key_type> signed_transaction::minimize_required_signatures(
       result.erase( k );
       try
       {
-         graphene::protocol::verify_authority( operations, result, get_active, get_owner,
+         graphene::protocol::verify_authority( operations, result, get_active, get_owner, get_custom,
                                                allow_non_immediate_owner, max_recursion );
          continue;  // element stays erased if verify_authority is ok
       }
@@ -433,11 +455,12 @@ void signed_transaction::verify_authority(
    const chain_id_type& chain_id,
    const std::function<const authority*(account_id_type)>& get_active,
    const std::function<const authority*(account_id_type)>& get_owner,
+   custom_authority_lookup get_custom,
    bool allow_non_immediate_owner,
    uint32_t max_recursion )const
 { try {
    graphene::protocol::verify_authority( operations, get_signature_keys( chain_id ), get_active, get_owner,
-                                         allow_non_immediate_owner, max_recursion );
+                                         get_custom, allow_non_immediate_owner, max_recursion );
 } FC_CAPTURE_AND_RETHROW( (*this) ) }
 
 } } // graphene::protocol

tests/performance/market_fee_sharing_tests.cpp

@@ -25,6 +25,7 @@
 
 #include <chrono>
 #include <graphene/chain/hardfork.hpp>
+#include <fc/time.hpp>
 #include "../common/database_fixture.hpp"
 
 using namespace graphene::chain;