R3SOL-535 Extract verification logic to the ledger library (#6376)

Extract Block structural verification logic to the ledger library

Author: nkovacsx

components/ledger/ledger-verification/build.gradle

@@ -48,6 +48,7 @@ dependencies {
     implementation project(':libs:utilities')
     implementation project(':libs:virtual-node:sandbox-group-context')
     implementation project(':libs:membership:membership-common')
+    implementation project(':libs:ledger-lib-verification')
 
     runtimeOnly project(':components:virtual-node:sandbox-amqp')
     runtimeOnly project(':components:virtual-node:sandbox-json')

components/ledger/ledger-verification/src/main/kotlin/net/corda/ledger/verification/processor/impl/VerificationRequestHandlerImpl.kt

@@ -1,12 +1,14 @@
 package net.corda.ledger.verification.processor.impl
 
 import net.corda.flow.external.events.responses.factory.ExternalEventResponseFactory
+import net.corda.ledger.libs.verification.impl.UtxoLedgerTransactionVerifierImpl
 import net.corda.ledger.utxo.data.transaction.TransactionVerificationResult
 import net.corda.ledger.utxo.data.transaction.TransactionVerificationStatus
 import net.corda.ledger.utxo.data.transaction.UtxoLedgerTransactionContainer
 import net.corda.ledger.utxo.data.transaction.UtxoLedgerTransactionImpl
 import net.corda.ledger.utxo.data.transaction.WrappedUtxoWireTransaction
-import net.corda.ledger.utxo.transaction.verifier.UtxoLedgerTransactionVerifier
+import net.corda.ledger.utxo.data.transaction.verifier.verifyMetadata
+import net.corda.ledger.utxo.transaction.verifier.verifyContracts
 import net.corda.ledger.verification.metrics.VerificationMetricsFactory
 import net.corda.ledger.verification.processor.VerificationRequestHandler
 import net.corda.ledger.verification.sandbox.impl.getSerializationService
@@ -40,12 +42,17 @@ class VerificationRequestHandlerImpl(private val responseFactory: ExternalEventR
         }
 
         return try {
-            UtxoLedgerTransactionVerifier(
-                transactionFactory,
-                transaction,
-                injectorService,
-                VerificationMetricsFactory(sandbox.virtualNodeContext.holdingIdentity),
-            ).verify()
+            UtxoLedgerTransactionVerifierImpl(
+                transaction
+            ) { utxoLedgerTransaction ->
+                verifyMetadata(utxoLedgerTransaction.metadata)
+                verifyContracts(
+                    transactionFactory,
+                    utxoLedgerTransaction,
+                    injectorService,
+                    VerificationMetricsFactory(sandbox.virtualNodeContext.holdingIdentity)
+                )
+            }.verify()
 
             responseFactory.success(
                 request.flowExternalEventContext,

libs/ledger-lib-utxo-flow/build.gradle

@@ -17,6 +17,7 @@ dependencies {
     implementation project(':libs:ledger:ledger-utxo-transaction-verifier')
     implementation project(':libs:serialization:json-validator')
     implementation project(':libs:serialization:json-validator-lib')
+    implementation project(':libs:ledger-lib-verification')
 
     implementation 'net.corda:corda-ledger-utxo'
     implementation 'net.corda:corda-base'

libs/ledger-lib-utxo-flow/src/main/kotlin/net/corda/ledger/lib/utxo/flow/impl/transaction/verifier/UtxoTransactionBuilderVerifier.kt

@@ -1,7 +1,12 @@
 package net.corda.ledger.lib.utxo.flow.impl.transaction.verifier
 
 import net.corda.ledger.lib.utxo.flow.impl.transaction.UtxoTransactionBuilderInternal
-import net.corda.ledger.utxo.transaction.verifier.UtxoTransactionVerifier
+import net.corda.ledger.libs.verification.UtxoTransactionVerifier
+import net.corda.ledger.libs.verification.impl.VerificationUtils.verifyCommands
+import net.corda.ledger.libs.verification.impl.VerificationUtils.verifyInputsAndOutputs
+import net.corda.ledger.libs.verification.impl.VerificationUtils.verifyNoDuplicateInputsOrReferences
+import net.corda.ledger.libs.verification.impl.VerificationUtils.verifyNoInputAndReferenceOverlap
+import net.corda.ledger.libs.verification.impl.VerificationUtils.verifySignatories
 import net.corda.v5.ledger.utxo.transaction.UtxoTransactionBuilder
 
 /**
@@ -11,11 +16,13 @@ import net.corda.v5.ledger.utxo.transaction.UtxoTransactionBuilder
  */
 class UtxoTransactionBuilderVerifier(
     private val transactionBuilder: UtxoTransactionBuilderInternal
-) :
-    UtxoTransactionVerifier() {
-    override val subjectClass: String = UtxoTransactionBuilder::class.simpleName!!
+) : UtxoTransactionVerifier {
 
-    fun verify() {
+    private companion object {
+        val subjectClass: String = UtxoTransactionBuilder::class.simpleName!!
+    }
+
+    override fun verify() {
         /**
          * These checks are unique to [UtxoTransactionBuilder].
          * The related fields are not nullable or do not exist in [UtxoLedgerTransaction].

libs/ledger-lib-verification/build.gradle

@@ -0,0 +1,22 @@
+plugins {
+    id 'corda.common-publishing'
+    id 'corda.common-library'
+    id 'org.jetbrains.kotlin.jvm'
+}
+
+description 'Corda Ledger verification library'
+
+ext.cordaEnableFormatting = true
+
+dependencies {
+    compileOnly 'org.jetbrains.kotlin:kotlin-stdlib'
+
+    compileOnly "org.osgi:osgi.annotation"
+    compileOnly "co.paralleluniverse:quasar-osgi-annotations:$quasarVersion"
+
+    implementation 'net.corda:corda-ledger-utxo'
+
+    implementation platform("net.corda:corda-api:$cordaApiVersion")
+
+    testImplementation project(":libs:crypto:crypto-core")
+}

libs/ledger-lib-verification/src/main/java/net/corda/ledger/libs/verification/impl/package-info.java

@@ -0,0 +1,6 @@
+@Export
+@QuasarIgnoreAllPackages
+package net.corda.ledger.libs.verification.impl;
+
+import co.paralleluniverse.quasar.annotations.QuasarIgnoreAllPackages;
+import org.osgi.annotation.bundle.Export;

libs/ledger-lib-verification/src/main/java/net/corda/ledger/libs/verification/package-info.java

@@ -0,0 +1,6 @@
+@Export
+@QuasarIgnoreAllPackages
+package net.corda.ledger.libs.verification;
+
+import co.paralleluniverse.quasar.annotations.QuasarIgnoreAllPackages;
+import org.osgi.annotation.bundle.Export;

libs/ledger-lib-verification/src/main/kotlin/net/corda/ledger/libs/verification/UtxoTransactionVerifier.kt

@@ -0,0 +1,10 @@
+package net.corda.ledger.libs.verification
+
+/**
+ * This interface is used to verify an Utxo Ledger Transaction or a transaction builder.
+ * It has a single method called [verify] which contains all the logic needed to properly
+ * verify the transaction or the builder.
+ */
+interface UtxoTransactionVerifier {
+    fun verify()
+}

libs/ledger-lib-verification/src/main/kotlin/net/corda/ledger/libs/verification/impl/UtxoLedgerTransactionVerifierImpl.kt

@@ -0,0 +1,45 @@
+package net.corda.ledger.libs.verification.impl
+
+import net.corda.ledger.libs.verification.UtxoTransactionVerifier
+import net.corda.ledger.libs.verification.impl.VerificationUtils.verifyCommands
+import net.corda.ledger.libs.verification.impl.VerificationUtils.verifyInputsAndOutputs
+import net.corda.ledger.libs.verification.impl.VerificationUtils.verifyNoDuplicateInputsOrReferences
+import net.corda.ledger.libs.verification.impl.VerificationUtils.verifyNoInputAndReferenceOverlap
+import net.corda.ledger.libs.verification.impl.VerificationUtils.verifySignatories
+import net.corda.v5.ledger.utxo.transaction.UtxoLedgerTransaction
+
+class UtxoLedgerTransactionVerifierImpl(
+    private val transaction: UtxoLedgerTransaction,
+    private val verify: (UtxoLedgerTransaction) -> Unit,
+) : UtxoTransactionVerifier {
+
+    override fun verify() {
+        verifySignatories(transaction.signatories)
+        verifyInputsAndOutputs(transaction.inputStateRefs, transaction.outputContractStates)
+        verifyNoDuplicateInputsOrReferences(transaction.inputStateRefs, transaction.referenceStateRefs)
+        verifyNoInputAndReferenceOverlap(transaction.inputStateRefs, transaction.referenceStateRefs)
+        verifyCommands(transaction.commands)
+
+        verifyInputNotaries()
+        verifyInputsAreOlderThanOutputs()
+
+        verify(transaction)
+    }
+
+    private fun verifyInputNotaries() {
+        val allInputs = transaction.inputTransactionStates + transaction.referenceTransactionStates
+        if (allInputs.isEmpty()) {
+            return
+        }
+        check(allInputs.map { it.notaryName }.distinct().size == 1) {
+            "Input and reference states' notaries need to be the same."
+        }
+        check(allInputs.first().notaryName == transaction.notaryName) {
+            "Input and reference states' notaries need to be the same as the transaction's notary."
+        }
+    }
+
+    private fun verifyInputsAreOlderThanOutputs() {
+        // TODO CORE-8957 (needs to access the previous transactions from the backchain somehow)
+    }
+}

libs/ledger/ledger-utxo-transaction-verifier/src/main/kotlin/net/corda/ledger/utxo/transaction/verifier/UtxoTransactionVerifier.kt libs/ledger-lib-verification/src/main/kotlin/net/corda/ledger/libs/verification/impl/VerificationUtils.kt

@@ -1,29 +1,25 @@
-package net.corda.ledger.utxo.transaction.verifier
+package net.corda.ledger.libs.verification.impl
 
 import net.corda.v5.ledger.utxo.Command
 import net.corda.v5.ledger.utxo.StateRef
 import java.security.PublicKey
 
-/*
- * Shared verification for [UtxoTransactionBuilder] and [UtxoLedgerTransaction].
- */
-abstract class UtxoTransactionVerifier {
-    protected open val subjectClass: String = "transaction"
+object VerificationUtils {
 
-    protected fun verifySignatories(signatories: List<PublicKey>) {
+    fun verifySignatories(signatories: List<PublicKey>) {
         check(signatories.isNotEmpty()) {
-            "At least one signatory signing key must be applied to the current $subjectClass" +
+            "At least one signatory signing key must be applied to the current transaction" +
                 " in order to create a signed transaction."
         }
     }
 
-    protected fun verifyInputsAndOutputs(inputStateRefs: List<StateRef>, outputStates: List<*>) {
+    fun verifyInputsAndOutputs(inputStateRefs: List<StateRef>, outputStates: List<*>) {
         check(inputStateRefs.isNotEmpty() || outputStates.isNotEmpty()) {
-            "At least one input state, or one output state must be applied to the current $subjectClass."
+            "At least one input state, or one output state must be applied to the current transaction."
         }
     }
 
-    protected fun verifyNoDuplicateInputsOrReferences(inputStateRefs: List<StateRef>, referenceStateRefs: List<StateRef>) {
+    fun verifyNoDuplicateInputsOrReferences(inputStateRefs: List<StateRef>, referenceStateRefs: List<StateRef>) {
         // The input states part of this check may be repeated later in
         //   net.corda.ledger.utxo.transaction.verifier.UtxoTransactionEncumbranceVerifierKt
         // checkEncumbranceGroup if there is state encumbrance on this transaction.
@@ -36,17 +32,17 @@ abstract class UtxoTransactionVerifier {
         check(duplicateReferences.isEmpty()) { "Duplicate reference states detected: ${duplicateReferences.keys}" }
     }
 
-    protected fun verifyNoInputAndReferenceOverlap(inputStateRefs: List<StateRef>, referenceStateRefs: List<StateRef>) {
+    fun verifyNoInputAndReferenceOverlap(inputStateRefs: List<StateRef>, referenceStateRefs: List<StateRef>) {
         val intersection = inputStateRefs intersect referenceStateRefs.toSet()
         check(intersection.isEmpty()) {
             "A state cannot be both an input and a reference input in the same transaction. Offending " +
                 "states: $intersection"
         }
     }
 
-    protected fun verifyCommands(commands: List<Command>) {
+    fun verifyCommands(commands: List<Command>) {
         check(commands.isNotEmpty()) {
-            "At least one command must be applied to the current $subjectClass."
+            "At least one command must be applied to the current transaction."
         }
     }
 }

libs/ledger/ledger-utxo-transaction-verifier/src/test/kotlin/net/corda/ledger/utxo/transaction/verifier/UtxoLedgerTransactionVerifierTest.kt libs/ledger-lib-verification/src/test/kotlin/net/corda/ledger/libs/verification/impl/UtxoLedgerTransactionVerifierImplTest.kt

@@ -1,39 +1,25 @@
-package net.corda.ledger.utxo.transaction.verifier
+package net.corda.ledger.libs.verification.impl
 
-import io.micrometer.core.instrument.Timer
 import net.corda.crypto.core.SecureHashImpl
-import net.corda.ledger.common.testkit.anotherPublicKeyExample
-import net.corda.ledger.common.testkit.publicKeyExample
-import net.corda.ledger.utxo.data.state.StateAndRefImpl
-import net.corda.ledger.utxo.data.transaction.UtxoLedgerTransactionImpl
-import net.corda.ledger.utxo.testkit.anotherNotaryX500Name
-import net.corda.ledger.utxo.testkit.notaryX500Name
 import net.corda.v5.base.types.MemberX500Name
-import net.corda.v5.crypto.SecureHash
 import net.corda.v5.ledger.common.transaction.TransactionMetadata
 import net.corda.v5.ledger.utxo.Command
-import net.corda.v5.ledger.utxo.Contract
 import net.corda.v5.ledger.utxo.ContractState
-import net.corda.v5.ledger.utxo.ContractVerificationException
-import net.corda.v5.ledger.utxo.EncumbranceGroup
-import net.corda.v5.ledger.utxo.StateAndRef
 import net.corda.v5.ledger.utxo.StateRef
 import net.corda.v5.ledger.utxo.TransactionState
 import net.corda.v5.ledger.utxo.transaction.UtxoLedgerTransaction
 import org.assertj.core.api.Assertions.assertThatThrownBy
 import org.junit.jupiter.api.BeforeEach
 import org.junit.jupiter.api.Test
 import org.junit.jupiter.api.assertDoesNotThrow
-import org.mockito.kotlin.any
-import org.mockito.kotlin.argumentCaptor
-import org.mockito.kotlin.doAnswer
-import org.mockito.kotlin.doReturn
 import org.mockito.kotlin.mock
 import org.mockito.kotlin.whenever
+import java.security.KeyPair
+import java.security.KeyPairGenerator
 import java.security.PublicKey
-import java.util.concurrent.Callable
+import java.security.spec.ECGenParameterSpec
 
-class UtxoLedgerTransactionVerifierTest {
+class UtxoLedgerTransactionVerifierImplTest {
 
     private val transaction = mock<UtxoLedgerTransaction>()
     private val signatory = mock<PublicKey>()
@@ -43,23 +29,26 @@ class UtxoLedgerTransactionVerifierTest {
     private val inputTransactionState = mock<TransactionState<ContractState>>()
     private val referenceTransactionState = mock<TransactionState<ContractState>>()
     private val metadata = mock<TransactionMetadata>()
-    private val injectionService = mock<(Contract) -> Unit>()
-    private val callable = argumentCaptor<Callable<Any>>()
-    private val timer = mock<Timer> {
-        on { recordCallable(callable.capture()) } doAnswer { callable.lastValue.call() }
+
+    private val verifier = UtxoLedgerTransactionVerifierImpl(transaction) {
+        // NO-OP contract verification
     }
-    private val metricFactory = mock<ContractVerificationMetricFactory> {
-        on { getContractVerificationTimeMetric() } doReturn timer
-        on { getContractVerificationContractCountMetric() } doReturn mock()
-        on { getContractVerificationContractTime(any()) } doReturn timer
+
+    private companion object {
+        val notaryX500Name = MemberX500Name.parse("O=ExampleNotaryService, L=London, C=GB")
+        val anotherNotaryX500Name = MemberX500Name.parse("O=AnotherExampleNotaryService, L=London, C=GB")
+
+        val kpg = KeyPairGenerator.getInstance("EC")
+            .apply { initialize(ECGenParameterSpec("secp256r1")) }
+
+        val keyPairExample: KeyPair = kpg.generateKeyPair()
+        val publicKeyExample: PublicKey = keyPairExample.public
+        val anotherPublicKeyExample: PublicKey = kpg
+            .generateKeyPair().public
     }
-    private val verifier = UtxoLedgerTransactionVerifier({ transaction }, transaction, injectionService, metricFactory)
 
     @BeforeEach
     fun beforeEach() {
-        whenever(metadata.getLedgerModel()).thenReturn(UtxoLedgerTransactionImpl::class.java.name)
-        whenever(metadata.getTransactionSubtype()).thenReturn("GENERAL")
-
         whenever(transaction.id).thenReturn(SecureHashImpl("SHA", byteArrayOf(1, 1, 1, 1)))
         whenever(transaction.signatories).thenReturn(listOf(signatory))
         whenever(transaction.inputStateRefs).thenReturn(listOf(stateRef))
@@ -169,7 +158,7 @@ class UtxoLedgerTransactionVerifierTest {
         whenever(referenceTransactionState.notaryName).thenReturn(anotherNotaryX500Name)
         assertThatThrownBy { verifier.verify() }
             .isExactlyInstanceOf(IllegalStateException::class.java)
-            .hasMessageContaining("Input and reference states' notaries need to be the same as the UtxoLedgerTransaction's notary")
+            .hasMessageContaining("Input and reference states' notaries need to be the same as the transaction's notary")
     }
 
     @Test
@@ -183,58 +172,4 @@ class UtxoLedgerTransactionVerifierTest {
     fun `throws an exception if input states are older than output states`() {
         // TODO CORE-8957 (needs to access the previous transactions from the backchain somehow)
     }
-
-    @Test
-    fun `catches exceptions from contract verification and outputs them as failure reasons`() {
-        val validContractAState = stateAndRef<MyInvalidContractA>(
-            SecureHashImpl("SHA", byteArrayOf(1, 1, 1, 1)),
-            0
-        )
-        whenever(transaction.inputStateAndRefs).thenReturn(listOf(validContractAState))
-        whenever(transaction.outputStateAndRefs).thenReturn(emptyList())
-        assertThatThrownBy { verifier.verify() }
-            .isExactlyInstanceOf(ContractVerificationException::class.java)
-            .hasMessageContainingAll("I have failed")
-    }
-
-    private inline fun <reified C : Contract> stateAndRef(
-        transactionId: SecureHash,
-        index: Int
-    ): StateAndRef<UtxoLedgerTransactionContractVerifierTest.MyState> {
-        val state = UtxoLedgerTransactionContractVerifierTest.MyState()
-        return StateAndRefImpl(
-            object : TransactionState<UtxoLedgerTransactionContractVerifierTest.MyState> {
-                override fun getContractState(): UtxoLedgerTransactionContractVerifierTest.MyState {
-                    return state
-                }
-
-                override fun getContractStateType(): Class<UtxoLedgerTransactionContractVerifierTest.MyState> {
-                    return state.javaClass
-                }
-
-                override fun getContractType(): Class<out Contract> {
-                    return C::class.java
-                }
-
-                override fun getNotaryName(): MemberX500Name {
-                    return notaryX500Name
-                }
-
-                override fun getNotaryKey(): PublicKey {
-                    return publicKeyExample
-                }
-
-                override fun getEncumbranceGroup(): EncumbranceGroup? {
-                    return null
-                }
-            },
-            StateRef(transactionId, index)
-        )
-    }
-
-    class MyInvalidContractA : Contract {
-        override fun verify(transaction: UtxoLedgerTransaction) {
-            throw IllegalStateException("I have failed")
-        }
-    }
 }

libs/ledger/ledger-utxo-transaction-verifier/build.gradle

@@ -17,6 +17,7 @@ dependencies {
 
     implementation project(':libs:ledger:ledger-common-data')
     implementation project(':libs:ledger:ledger-utxo-data')
+    testImplementation project(':libs:ledger-lib-verification')
     implementation 'org.jetbrains.kotlin:kotlin-osgi-bundle'
     api(libs.micrometer.core) {
         // we don't need these in classpath, so excluding them to reduce dependencies.