github.com/Evanesco-Labs/go-evanesco@v1.0.1/signer/fourbyte/validation.go (about) 1 // Copyright 2019 The go-ethereum Authors 2 // This file is part of the go-ethereum library. 3 // 4 // The go-ethereum library is free software: you can redistribute it and/or modify 5 // it under the terms of the GNU Lesser General Public License as published by 6 // the Free Software Foundation, either version 3 of the License, or 7 // (at your option) any later version. 8 // 9 // The go-ethereum library is distributed in the hope that it will be useful, 10 // but WITHOUT ANY WARRANTY; without even the implied warranty of 11 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 12 // GNU Lesser General Public License for more details. 13 // 14 // You should have received a copy of the GNU Lesser General Public License 15 // along with the go-ethereum library. If not, see <http://www.gnu.org/licenses/>. 16 17 package fourbyte 18 19 import ( 20 "bytes" 21 "errors" 22 "fmt" 23 "math/big" 24 25 "github.com/Evanesco-Labs/go-evanesco/common" 26 "github.com/Evanesco-Labs/go-evanesco/signer/core" 27 ) 28 29 // ValidateTransaction does a number of checks on the supplied transaction, and 30 // returns either a list of warnings, or an error (indicating that the transaction 31 // should be immediately rejected). 32 func (db *Database) ValidateTransaction(selector *string, tx *core.SendTxArgs) (*core.ValidationMessages, error) { 33 messages := new(core.ValidationMessages) 34 35 // Prevent accidental erroneous usage of both 'input' and 'data' (show stopper) 36 if tx.Data != nil && tx.Input != nil && !bytes.Equal(*tx.Data, *tx.Input) { 37 return nil, errors.New(`ambiguous request: both "data" and "input" are set and are not identical`) 38 } 39 // Place data on 'data', and nil 'input' 40 var data []byte 41 if tx.Input != nil { 42 tx.Data = tx.Input 43 tx.Input = nil 44 } 45 if tx.Data != nil { 46 data = *tx.Data 47 } 48 // Contract creation doesn't validate call data, handle first 49 if tx.To == nil { 50 // Contract creation should contain sufficient data to deploy a contract. A 51 // typical error is omitting sender due to some quirk in the javascript call 52 // e.g. https://github.com/ethereum/go-ethereum/issues/16106. 53 if len(data) == 0 { 54 // Prevent sending ether into black hole (show stopper) 55 if tx.Value.ToInt().Cmp(big.NewInt(0)) > 0 { 56 return nil, errors.New("transaction will create a contract with value but empty code") 57 } 58 // No value submitted at least, critically Warn, but don't blow up 59 messages.Crit("Transaction will create a contract with empty code") 60 } else if len(data) < 40 { // arbitrary heuristic limit 61 messages.Warn(fmt.Sprintf("Transaction will create a contract, but the payload is suspiciously small (%d bytes)", len(data))) 62 } 63 // Method selector should be nil for contract creation 64 if selector != nil { 65 messages.Warn("Transaction will create a contract, but method selector supplied, indicating an intent to call a method") 66 } 67 return messages, nil 68 } 69 // Not a contract creation, validate as a plain transaction 70 if !tx.To.ValidChecksum() { 71 messages.Warn("Invalid checksum on recipient address") 72 } 73 if bytes.Equal(tx.To.Address().Bytes(), common.Address{}.Bytes()) { 74 messages.Crit("Transaction recipient is the zero address") 75 } 76 switch { 77 case tx.GasPrice == nil && tx.MaxFeePerGas == nil: 78 messages.Crit("Neither 'gasPrice' nor 'maxFeePerGas' specified.") 79 case tx.GasPrice == nil && tx.MaxPriorityFeePerGas == nil: 80 messages.Crit("Neither 'gasPrice' nor 'maxPriorityFeePerGas' specified.") 81 case tx.GasPrice != nil && tx.MaxFeePerGas != nil: 82 messages.Crit("Both 'gasPrice' and 'maxFeePerGas' specified.") 83 case tx.GasPrice != nil && tx.MaxPriorityFeePerGas != nil: 84 messages.Crit("Both 'gasPrice' and 'maxPriorityFeePerGas' specified.") 85 } 86 // Semantic fields validated, try to make heads or tails of the call data 87 db.ValidateCallData(selector, data, messages) 88 return messages, nil 89 } 90 91 // ValidateCallData checks if the ABI call-data + method selector (if given) can 92 // be parsed and seems to match. 93 func (db *Database) ValidateCallData(selector *string, data []byte, messages *core.ValidationMessages) { 94 // If the data is empty, we have a plain value transfer, nothing more to do 95 if len(data) == 0 { 96 return 97 } 98 // Validate the call data that it has the 4byte prefix and the rest divisible by 32 bytes 99 if len(data) < 4 { 100 messages.Warn("Transaction data is not valid ABI (missing the 4 byte call prefix)") 101 return 102 } 103 if n := len(data) - 4; n%32 != 0 { 104 messages.Warn(fmt.Sprintf("Transaction data is not valid ABI (length should be a multiple of 32 (was %d))", n)) 105 } 106 // If a custom method selector was provided, validate with that 107 if selector != nil { 108 if info, err := verifySelector(*selector, data); err != nil { 109 messages.Warn(fmt.Sprintf("Transaction contains data, but provided ABI signature could not be matched: %v", err)) 110 } else { 111 messages.Info(fmt.Sprintf("Transaction invokes the following method: %q", info.String())) 112 db.AddSelector(*selector, data[:4]) 113 } 114 return 115 } 116 // No method selector was provided, check the database for embedded ones 117 embedded, err := db.Selector(data[:4]) 118 if err != nil { 119 messages.Warn(fmt.Sprintf("Transaction contains data, but the ABI signature could not be found: %v", err)) 120 return 121 } 122 if info, err := verifySelector(embedded, data); err != nil { 123 messages.Warn(fmt.Sprintf("Transaction contains data, but provided ABI signature could not be verified: %v", err)) 124 } else { 125 messages.Info(fmt.Sprintf("Transaction invokes the following method: %q", info.String())) 126 } 127 }