refactor: input note authentication deduced by client #1624
Conversation
juan518munoz
changed the title
| // Check that adding an authenticated note that is not tracked by the client will return an | ||
| // error | ||
| let missing_authenticated_note_tx_request = TransactionRequestBuilder::new() | ||
| .build_consume_notes(vec![NoteId::from_raw(EMPTY_WORD)]) | ||
| .unwrap(); | ||
| let error = | ||
| Box::pin(client.submit_new_transaction(wallet.id(), missing_authenticated_note_tx_request)) | ||
| .await | ||
| .unwrap_err(); | ||
|
|
||
| assert!(matches!( | ||
| error, | ||
| ClientError::TransactionRequestError( | ||
| TransactionRequestError::MissingAuthenticatedInputNote(_) | ||
| ) | ||
| )); |
There was a problem hiding this comment.
No longer errors if the Note passed is not authenticated, It will just not get marked as such (by the Client).
| authenticated_note_records.retain(|note| { | ||
| matches!( | ||
| note.state(), | ||
| InputNoteState::Committed(_) | ||
| | InputNoteState::ConsumedAuthenticatedLocal(_) | ||
| | InputNoteState::ConsumedExternal(_) | ||
| ) | ||
| }); | ||
|
|
||
| let authenticated_note_ids = | ||
| authenticated_note_records.iter().map(InputNoteRecord::id).collect::<Vec<_>>(); |
There was a problem hiding this comment.
this two steps can probably be done altogether
There was a problem hiding this comment.
I keep them apart as both authenticated_note_records and authenticated_note_ids are used separately afterwards.
| .filter_map(|note| { | ||
| if transaction_request.input_notes().iter().any(|n| n.id() == note.id()) { |
There was a problem hiding this comment.
how are we excluding unauthenticated ones here?
There was a problem hiding this comment.
we weren't, good catch, addressed in a9e5113
igamigo
left a comment
igamigo
left a comment
There was a problem hiding this comment.
Overall looks good, but I think we should tweak some things before merging. Specifically, unless I'm missing something, it looks like we are adding all notes as InputNote::Unauthenticated and we should probably make the distinction before passing the notes to the VM before executing. I left a comment about this, and some other nits as well.
One thing that would be pending for this PR is the last bullet point in the issue, but maybe that's something to tackle in a different issue/PR
| /// Optional arguments of the Notes to be consumed by the transaction. This | ||
| /// includes both authenticated and unauthenticated notes. | ||
| input_notes: Vec<(NoteId, Option<NoteArgs>)>, | ||
| input_notes_args: Vec<(NoteId, Option<NoteArgs>)>, |
There was a problem hiding this comment.
Related to the comment above, should this just be input_notes_args: Vec<(Note, Option<NoteArgs>)>? Instead of having the extra level of indirection.
There was a problem hiding this comment.
extra level of indirection
Thought about that, I believe the best approach is to merge input_notes and input_notes_args into a single field (input_notes). Should we go with it?
| /// Notes to be consumed by the transaction. | ||
| /// includes both authenticated and unauthenticated notes. |
There was a problem hiding this comment.
We should clarify here (and in TransactionRequestBuilder) this new behavior about the client consuming a note as unauthenticated when it's not present in the store and as authenticated when it is present.
| /// specified authenticated notes need to be provided, otherwise an error will be returned. | ||
| /// The transaction input notes will include both authenticated and unauthenticated notes in the | ||
| /// order they were provided in the transaction request. | ||
| pub(crate) fn build_input_notes( |
There was a problem hiding this comment.
We should update this function's doc comments
There was a problem hiding this comment.
BTW, I think this can be a private function
There was a problem hiding this comment.
BTW, I think this can be a private function
The function is called from impl Client<AUTH> if I'm not mistaken, so it needs to be at least pub(crate).
There was a problem hiding this comment.
We should update this function's doc comments
I don't see which part of the docs needs changing, it still only takes authenticated notes as InputNoteRecords.
| let mut authenticated_note_records = self | ||
| .store | ||
| .get_input_notes(NoteFilter::List(authenticated_input_note_ids)) | ||
| .get_input_notes(NoteFilter::List(transaction_request.get_input_note_ids())) |
There was a problem hiding this comment.
There's no need to retrieve the full NoteRecord objects here, right? Let's add a TODO (or if you prefer, an issue) to see whether we should add a specific store method to return authenticated note IDs from a set of notes.
There was a problem hiding this comment.
As you point out, it's quite redundant to retrieve all notes, as we already pass them as arguments. On the other hand, we need to check that the notes are not consumed and also filter as authenticated, AFAIK this can only be done through the InputNoteRecord struct.
Am I missing something?
| // Add unauthenticated input notes to the input notes map. | ||
| for unauthenticated_input_notes in &self.unauthenticated_input_notes { | ||
| for unauthenticated_input_notes in &self.input_notes { | ||
| input_notes.insert( | ||
| unauthenticated_input_notes.id(), | ||
| InputNote::Unauthenticated { | ||
| note: unauthenticated_input_notes.clone(), | ||
| }, | ||
| ); | ||
| } |
There was a problem hiding this comment.
Does this not add all authenticated notes as well? If so, we should make it so that authenticated notes are consumed exclusively as that instead of added as InputNote::Unauthenticated.
igamigo
left a comment
igamigo
left a comment
There was a problem hiding this comment.
LGTM! Left a couple of comments but it's good to merge already
|
Pushed a commit that addresses my above comments |
Replace logic for adding authenticated input notes in a Transaction. User no longer provides the
NoteIDs of the authenticatednotehe wants to use, but rather send theNotedirectly (being authenticated or not), and let theClientdecide if the note passed is verified.Note: most test cases have a new step when building transaction requests with authenticated notes. Instead of submitting the transaction with the
noteID, they retrieve the associatednotewith it from theClient, and submit the tx with that info.Closes #1112