Comments (3)
Alrighttt
commented on August 11, 2024
While trying to broadcast one of these (seemingly) bad signature transactions. Komodod's validation catches it here:
https://github.com/Alrighttt/komodo/blob/bd7cc1f36f76afea54b12fa6db276f45e0c89663/src/cryptoconditions/src/cryptoconditions.c#L291
from pycc.
Alrighttt
commented on August 11, 2024
I have done further research regarding this issue. I believe the underlying cause for these bad signatures is actually pycctx's inability to properly encode some condition structures.
I have made modifications to the createrawtransaction rpc command in my cc_fuzz branch. . This code is only intended to be used for ease of testing. It can be used to generate a scriptpubkey for a given condition. It can then be easily compared against the scriptpubkey created by pycctx with the same condition.
First I will show a working example, and demonstrate how I am testing this.
komodo-cli -ac_name=PYCC decoderawtransaction $(komodo-cli -ac_name=PYCC createrawtransaction '[{"txid":"0000000000000000000000000000000000000000000000000000000000000000","vout":0}]' '{"condition":{"type":"threshold-sha-256","threshold":2,"subfulfillments":[{"type":"eval-sha-256","code":"5A"},{"type":"threshold-sha-256","threshold":1,"subfulfillments":[{"type":"secp256k1-sha-256","publicKey":"03682B255C40D0CDE8FAEE381A1A50BBB89980FF24539CB8518E294D3A63CEFE12"}]}]}}')This will generate the following scriptpubkey:
"scriptPubKey": {
"asm": "a22c8020e029c511da55523565835887e412e5a0c9b920801b007000df45e545f25028248103120c008203000401 OP_CHECKCRYPTOCONDITION",
"hex": "2ea22c8020e029c511da55523565835887e412e5a0c9b920801b007000df45e545f25028248103120c008203000401cc",
"reqSigs": 1,
"type": "cryptocondition",
"addresses": [
"R9zHrofhRbub7ER77B7NrVch3A63R39GuC"
]
}This is the "typical" condition structure. This structure works as intended. If we now generate it with pycctx:
>>> from pycctx import *
>>> cond = cc_threshold(2, [cc_eval(bytes([228])), cc_threshold(1, [cc_secp256k1("03682B255C40D0CDE8FAEE381A1A50BBB89980FF24539CB8518E294D3A63CEFE12")])])
>>> cond.to_anon().to_py()
{'type': 'threshold-sha-256', 'condition': 'a22c8020e029c511da55523565835887e412e5a0c9b920801b007000df45e545f25028248103120c008203000401'}Take note that the scriptPubkey matches. Another thing to note is that the eval code given to createrawtransaction is base64, so "code":"5A" does correlate with bytes([228]).
Now if we were to add an additional eval to this condition structure:
komodo-cli -ac_name=PYCC decoderawtransaction $(komodo-cli -ac_name=PYCC createrawtransaction '[{"txid":"0000000000000000000000000000000000000000000000000000000000000000","vout":0}]' '{"condition":{"type":"threshold-sha-256","threshold":3,"subfulfillments":[{"type":"eval-sha-256","code":"5A"},{"type":"eval-sha-256","code":"5Q"},{"type":"threshold-sha-256","threshold":1,"subfulfillments":[{"type":"secp256k1-sha-256","publicKey":"03682B255C40D0CDE8FAEE381A1A50BBB89980FF24539CB8518E294D3A63CEFE12"}]}]}}') "scriptPubKey": {
"asm": "a22c80208666071e49c77ae44964ed3a67fab598e9de358305195412b7de686afdd817f781032210008203000401 OP_CHECKCRYPTOCONDITION",
"hex": "2ea22c80208666071e49c77ae44964ed3a67fab598e9de358305195412b7de686afdd817f781032210008203000401cc",
"reqSigs": 1,
"type": "cryptocondition",
"addresses": [
"RRpPnBXrWBopE7iNACWttxb6N8R2rZ4taj"
]
}>>> from pycctx import *
>>> cond = cc_threshold(3, [cc_eval(bytes([228])), cc_eval(bytes([229])), cc_threshold(1, [cc_secp256k1("03682B255C40D0CDE8FAEE381A1A50BBB89980FF24539CB8518E294D3A63CEFE12")])])
>>> cond.to_anon().to_py()
{'type': 'threshold-sha-256', 'condition': 'a22c8020a17c619189155680b507999b20e3e8fc1dc4a60481299b85b57b96849f34b51c81032210008203000401'}The scriptPubkey does not match.
I believe this is ultimately causing these bad signatures. It is not an issue with the signing function, but the sighash function receiving the wrong previous scriptPubKeys while creating signatures for CC inputs.
I have done further test cases, and I can see no clear pattern for when it works or when it doesn't. These are a bit rough ( gists were just thrown together to share with mihailo and dimxy ), but you should be able to understand the testing method.
tests: https://gist.github.com/Alrighttt/8655e3a040bd49dc3dd72befd33bf0fe
results: https://gist.github.com/Alrighttt/a27ddf3fb5b2df42f3d53ac054dbfb95
Please comment here if there is any confusion or you need any further information.
from pycc.
Alrighttt
commented on August 11, 2024
dimxy has shared some further research in one of our chat channels. Adding it here just to keep track of it.
from dimxy:
I traced the threshold fingerprint function It looks like rust and c++ lib cryptoconditions sort identical subconditions differently:
trace for a cond with two eval codes for c++:
subconds begin
asn=A22B8020AC349E1A9CC6A98C52CF7015EFFD7B6FAF41DF8003E08EA79FF4D334BB53A9B5810302040082020204
asn=AF2780205E1EFFE9B7BAB73DCE628CCD9F0CBBB16C1E6EFC6C4F311E59992A467BC119FD8103100000
asn=AF278020AB61BA11A38B007FF98BAA3AB20E2A584E15269FD428DB3C857E2A2D568B57258103100000
subconds endfor rust:
subconds begin
asns[]=a22b8020ac349e1a9cc6a98c52cf7015effd7b6faf41df8003e08ea79ff4d334bb53a9b5810302040082020204
asns[]=af278020ab61ba11a38b007ff98baa3ab20e2a584e15269fd428db3c857e2a2d568b57258103100000
asns[]=af2780205e1effe9b7bab73dce628ccd9f0cbbb16c1e6efc6c4f311e59992a467bc119fd8103100000 <--- inverted with previous
subconds endfrom pycc.
Related Issues (15)
- Make faucet work (start here)
- Introducing user-defined parameters into schema validation HOT 1
- pycctx needs to distinguish between p2pk and p2pkh while signing
- make OP_RETURN data format safe and efficient HOT 1
- feature request: validation error message handling
- standard "global addresses" HOT 5
- pycctx: mixed mode
- Module Refactor
- Rename "consume" to "deconstruct"
- Make a generic CLI interface for schemas
- Rust CC quality
- How to connect inputs to outputs / validation strategy HOT 2
- Figure out what needs to go in standard contract library HOT 7
- Providing entropy HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from pycc.