working simple demo

Author: njeans

app/app.go

@@ -85,7 +85,8 @@ import (
 	tmlog "github.com/tendermint/tendermint/libs/log"
 	tmos "github.com/tendermint/tendermint/libs/os"
 	dbm "github.com/tendermint/tm-db"
-
+	authsigning "github.com/cosmos/cosmos-sdk/x/auth/signing"
+	sdkerrors "github.com/cosmos/cosmos-sdk/types/errors"
 	// unnamed import of statik for swagger UI support
 	_ "github.com/scrtlabs/SecretNetwork/client/docs/statik"
 )
@@ -180,10 +181,52 @@ func (app *SecretNetworkApp) RegisterTendermintService(clientCtx client.Context)
 
 func (app *SecretNetworkApp) DeliverTx(req abci.RequestDeliverTx) (res abci.ResponseDeliverTx) {
 	fmt.Printf("nerla app/app.go DeliverTx tx %x\n", req.Tx)
-	if compute.GetFakeDeliver() {
-		fmt.Printf("nerla app/app.go DeliverTx FAKE_DELIVER is true\n", )
-		return abci.ResponseDeliverTx{Code: abci.CodeTypeOK}
+	dTx, err := app.GetTxConfig().TxDecoder()(req.Tx)
+	if err != nil {
+			fmt.Println( "nerla app/app.go error TxDecoder")
+			panic(err)
 	}
+	msgs := dTx.GetMsgs()
+	for _, m := range msgs {
+		mSecret := m.(compute.SecretNetworkMsg)
+		if mSecret.Type() == "call_delivertx" || mSecret.Type() == "snapshot" {
+				fmt.Printf("nerla app/app.go m.Type() %s calling Simulate\n", mSecret.Type())
+			ctx := app.BaseApp.GetContextForDeliverTx(req.Tx)
+			sigTx, ok := dTx.(authsigning.SigVerifiableTx)
+			if !ok {
+					fmt.Println("nerla app/app.go invalid transaction type")
+					panic(sdkerrors.ErrTxDecode)
+			}
+
+			sigs, err := sigTx.GetSignaturesV2()
+			if err != nil {
+					fmt.Println("nerla app/app.go GetSignaturesV2 err")
+					panic(err)
+			}
+			signerAddrs := sigTx.GetSigners()
+
+			for i, sig := range sigs {
+					addr := signerAddrs[i]
+					acc := app.AppKeepers.AccountKeeper.GetAccount(ctx, addr)
+					fmt.Printf("nerla app/app.go before addr %s acc.seq %d sig.seq %d\n", addr.String(), acc.GetSequence(), sig.Sequence+1)
+					if err := acc.SetSequence(sig.Sequence+1); err != nil {
+							panic(err)
+					}
+					app.AppKeepers.AccountKeeper.SetAccount(ctx, acc)
+					acc2 := app.AppKeepers.AccountKeeper.GetAccount(ctx, addr)
+					fmt.Printf("nerla app/app.go after addr %s acc.seq %d\n", addr.String(), acc2.GetSequence())
+			}
+
+			gasInfo, resp, err := app.BaseApp.Simulate(req.Tx)
+			fmt.Printf("nerla app/app.go Simulate gasInfo %d res %v err %v\n", gasInfo, resp, err)
+			return abci.ResponseDeliverTx{Code: abci.CodeTypeOK}                    
+		}
+	}
+
+	// if compute.GetFakeDeliver() {
+	// 	fmt.Printf("nerla app/app.go DeliverTx FAKE_DELIVER is true\n", )
+	// 	return abci.ResponseDeliverTx{Code: abci.CodeTypeOK}
+	// }
 	resp := app.BaseApp.DeliverTx(req)
 	fmt.Printf("nerla app/app.go DeliverTx res %v\n", resp)
 	return resp

hacking/docker-compose.yml

@@ -1,7 +1,7 @@
 version: "3.9"
 services:
   localsecret-1:
-    image: devlocalsecret
+    image: devlocalsecret-1
     build:
       context: ..
       dockerfile: hacking/Dockerfile
@@ -19,24 +19,24 @@ services:
     # ports are only here in case interaction
     # between localhost and container is desired
     ports:
-      - "26657:26657"
-      - "26656:26656"
-      - "9090:9090"
-      - "9091:9091"
-      - "1317:1317"
+      - "26658:26657"
+      - "26659:26656"
+      - "9092:9090"
+      - "9093:9091"
+      - "1318:1317"
       # faucet
-      - "5000:5000"
+      - "5001:5000"
     environment:
       LOG_LEVEL: "TRACE"
       SECRET_NODE_TYPE: BOOTSTRAP
     # NOTE: mount source code that may be changed and rebuilt in a container
     volumes:
-    #  - ../go-cosmwasm/src:/go/src/github.com/enigmampc/SecretNetwork/go-cosmwasm/src
+      # - ../go-cosmwasm/src:/go/src/github.com/enigmampc/SecretNetwork/go-cosmwasm/src
       - ./secretd-1:/root/.secretd/
       - ./scripts/:/root/scripts
 
   localsecret-2:
-    image: devlocalsecret
+    image: devlocalsecret-1
     build:
       context: ..
       dockerfile: hacking/Dockerfile
@@ -53,25 +53,25 @@ services:
     # ports are only here in case interaction
     # between localhost and container is desired
     ports:
-      - "36657:26657"
-      - "36656:26656"
-      - "9391:9091"
-      - "9390:9090"
-      - "3317:1317"
+      - "36658:26657"
+      - "36659:26656"
+      - "9392:9091"
+      - "9393:9090"
+      - "3318:1317"
       # faucet
-      - "5300:5000"
+      - "5400:5000"
     environment:
       CHAINID: "secretdev-1"
       LOG_LEVEL: "TRACE"
       SECRET_NODE_TYPE: NODE
       DUMMY_STORE: "true"
     # NOTE: mount source code that may be changed and rebuilt in a container
     volumes:
-    #  - ../go-cosmwasm/src:/go/src/github.com/enigmampc/SecretNetwork/go-cosmwasm/src
-    #  - ../go-cosmwasm/api:/go/src/github.com/enigmampc/SecretNetwork/go-cosmwasm/api
-    #  - ../app:/go/src/github.com/enigmampc/SecretNetwork/app
-    #  - ../proto:/go/src/github.com/enigmampc/SecretNetwork/proto
-    #  - ../x:/go/src/github.com/enigmampc/SecretNetwork/x
+      # - ../go-cosmwasm/src:/go/src/github.com/enigmampc/SecretNetwork/go-cosmwasm/src
+      # - ../go-cosmwasm/api:/go/src/github.com/enigmampc/SecretNetwork/go-cosmwasm/api
+      # - ../app:/go/src/github.com/enigmampc/SecretNetwork/app
+      # - ../proto:/go/src/github.com/enigmampc/SecretNetwork/proto
+      # - ../x:/go/src/github.com/enigmampc/SecretNetwork/x
       - ./scripts/:/root/scripts
       - ./secretd-2:/root/.secretd/
       - ./genesis:/tmp/genesis

hacking/rebuild_node.sh

@@ -1,6 +1,7 @@
 #!/bin/bash
-set +x
-docker-compose exec -d localsecret-2 /bin/bash -c "./scripts/rebuild.sh &> /root/out"
+set -x
+# docker-compose start localsecret-1 
+docker-compose exec -d localsecret-2 /bin/bash -c "./scripts/rebuild2.sh &> /root/out"
 sleep 5
 
 #waiting to build secretd and start
@@ -13,13 +14,12 @@ do
     sleep 5
 done
 
-logs=$(docker-compose exec localsecret-2 cat /root/out )
-while [[ "$logs" != *"finalizing commit of block"* ]] 
-do 
-    logs=$(docker-compose exec localsecret-2 cat /root/out )
-    ./logs.sh
-    echo "Waiting for blocks to be produced..."
-    sleep 5
-done
-
+# logs=$(docker-compose exec localsecret-2 cat /root/out )
+# while [[ "$logs" != *"finalizing commit of block"* ]] 
+# do 
+#     logs=$(docker-compose exec localsecret-2 cat /root/out )
+#     ./logs.sh
+#     echo "Waiting for blocks to be produced..."
+#     sleep 5
+# done
 ./logs.sh

hacking/run.sh

@@ -0,0 +1,8 @@
+#!/bin/bash
+set -x
+#docker-compose stop localsecret-1
+
+docker-compose exec localsecret-2 ./scripts/test_simple.sh
+# docker-compose exec localsecret-2 cp -rf /root/hist_data  /root/.secretd/data/ 
+# ./rebuild_node.sh &
+# docker-compose start localsecret-1

hacking/scripts/backup.sh

@@ -0,0 +1,34 @@
+#!/usr/bin/env bash
+set -x
+SECRETD=secretd
+ADV='secret1fc3fzy78ttp0lwuujw7e52rhspxn8uj52zfyne'
+
+start_secretd() {
+    dev=$($SECRETD q account $ADV)
+    echo "$?"
+}
+
+query_tx_res() {
+    dev=$($SECRETD q tx $1)
+    echo "$?"
+}
+
+pkill -f "secretd start --rpc.laddr tcp://0.0.0.0:26657"
+sleep_time=3
+cnt=0
+cnt_max=5
+while true; do
+    ((cnt=cnt+1))
+    sleep $sleep_time
+    if [ $(start_secretd) != 0 ]; then break; fi
+    if [ $((cnt%cnt_max)) == 0 ]; then (pkill -f $SECRETD); fi
+done
+
+mkdir -p /root/hist_data
+mkdir -p /root/hist_data2
+files=$(ls -1 -a /root/.secretd)
+cp -r /root/.secretd/ /root/hist_data4
+cp -r /root/.secretd/* /root/hist_data2
+
+RUST_BACKTRACE=1 secretd start --rpc.laddr "tcp://0.0.0.0:26657" &
+sleep infinity

hacking/scripts/node_init.sh

@@ -9,6 +9,14 @@ set -euo pipefail
 set -x
 export RPC_URL="localsecret-1:26657"
 export CHAINID="secretdev-1"
+  # curr_dir=$(pwd)
+  # cd /go/src/github.com/enigmampc/SecretNetwork/
+  # # make build_cli
+  # ls
+  # make build_local_no_rust
+  # cp secretd /usr/bin/secretd
+  # chmod +x secretd
+  # cd $curr_dir
 file=/root/.secretd/config/started.txt
 if [ ! -e "$file" ]
 then
@@ -53,7 +61,7 @@ then
 
   secretd parse /opt/secret/.sgx_secrets/attestation_cert.der
   ls /opt/secret/.sgx_secrets/attestation_cert.der
-  secretd tx register auth /opt/secret/.sgx_secrets/attestation_cert.der -y --from b --broadcast-mode block --gas-prices 0.25uscrt > out
+  secretd tx register auth /opt/secret/.sgx_secrets/attestation_cert.der -y --from b --broadcast-mode sync --gas-prices 0.25uscrt > out
   cat out
   tx_hash="$(cat out | jq -r '.txhash')"
 
@@ -71,7 +79,7 @@ then
   cp /tmp/genesis/genesis.json /root/.secretd/config/genesis.json
 
   secretd validate-genesis
-  RUST_BACKTRACE=1 secretd start --rpc.laddr tcp://0.0.0.0:26657 &> output &
+  RUST_BACKTRACE=1 secretd start --rpc.laddr tcp://0.0.0.0:26657 &> /root/out &
   PID=$!
   echo "waiting for state sync to end.."
   sleep 5
@@ -82,27 +90,25 @@ then
       sleep 5
       state_sync=$(secretd status | jq .SyncInfo.catching_up)
       echo "state_sync $state_sync"
-  done
-
-  kill $PID  
-  cat output
-  echo "joininng as validator now"
-  secretd tx staking create-validator -y \
-    --amount=100000000uscrt \
-    --pubkey=$(secretd tendermint show-validator) \
-    --details="To infinity and beyond!" \
-    --commission-rate="0.10" \
-    --commission-max-rate="0.20" \
-    --commission-max-change-rate="0.01" \
-    --min-self-delegation="1" \
-    --moniker="hack0r" \
-    --broadcast-mode block \
-    --from=b > out2
-  tx_hash="$(cat out2 | jq -r '.txhash')"
-  sleep 10
-  secretd q tx "$tx_hash" | jq .
-  secretd q staking validators | grep moniker | jq .
-  secretd q staking validators | grep moniker
+  done 
+  cat /root/out
+  # echo "joininng as validator now"
+  # secretd tx staking create-validator -y \
+  #   --amount=100000000uscrt \
+  #   --pubkey=$(secretd tendermint show-validator) \
+  #   --details="To infinity and beyond!" \
+  #   --commission-rate="0.10" \
+  #   --commission-max-rate="0.20" \
+  #   --commission-max-change-rate="0.01" \
+  #   --min-self-delegation="1" \
+  #   --moniker="hack0r" \
+  #   --broadcast-mode sync \
+  #   --from=b > out2
+  # tx_hash="$(cat out2 | jq -r '.txhash')"
+  # sleep 10
+  # secretd q tx "$tx_hash" | jq .
+  # secretd q staking validators | grep moniker | jq .
+  # secretd q staking validators | grep moniker
   echo "started" > $file
   secretd config node "http://localhost:26657"
   # hack to change permission of data after starting node
@@ -112,6 +118,7 @@ else
   curr_dir=$(pwd)
   cd /go/src/github.com/enigmampc/SecretNetwork/
   # make build_cli
+  ls
   make build_local_no_rust
   cp secretd /usr/bin/secretd
   chmod +x secretd
@@ -125,4 +132,4 @@ else
 fi
 # sed -i 's/pex = true/pex = false/g' ~/.secretd/config/config.toml
 # echo "Set pex = false"
-# RUST_BACKTRACE=1 secretd start --rpc.laddr tcp://0.0.0.0:26657
+# RUST_BACKTRACE=1 secretd start --rpc.laddr tcp://0.0.0.0:26657

hacking/scripts/rebuild2.sh

@@ -0,0 +1,19 @@
+#!/usr/bin/env bash
+set -x
+pkill -f "secretd start --rpc.laddr tcp://0.0.0.0:26657"
+
+sleep 3
+rm -rf /root/.secretd/.*
+rm -rf /root/.secretd/*
+cp -rf /root/hist_data/. /root/.secretd/
+
+cd /go/src/github.com/enigmampc/SecretNetwork/
+rm secretd
+set -e
+CGO_LDFLAGS=$CGO_LDFLAGS DB_BACKEND=goleveldb MITIGATION_CVE_2020_0551=LOAD VERSION=$VERSION FEATURES=$FEATURES SGX_MODE=$SGX_MODE make build_local_no_rust
+chmod +x secretd
+cp secretd /usr/bin/secretd
+cd /root
+
+RUST_BACKTRACE=1 secretd start --rpc.laddr "tcp://0.0.0.0:26657" &
+sleep infinity

hacking/scripts/setup_simple.sh

@@ -0,0 +1,38 @@
+#!/bin/bash
+set -x
+set -e
+secretd query register secret-network-params
+UNIQUE_LABEL=$(date '+%Y-%m-%d-%H:%M:%S')
+ADDR=$(secretd keys show --address b)
+VICTIM_ADDR=$(secretd keys show --address c)
+echo "Storing contract"
+STORE_TX=$(secretd tx compute store /root/contract-simple/contract.wasm --from b -y --broadcast-mode sync --gas=5000000)
+eval STORE_TX_HASH=$(echo $STORE_TX | jq .txhash )
+eval CODE_ID=$(secretd q tx $STORE_TX_HASH | jq '.logs[].events[].attributes[] | select(.key=="code_id") | .value ')
+while [ "$CODE_ID" == "" ]; do 
+    echo -e "\twaiting for secred tx compute store to be included"
+    sleep 2
+    eval CODE_ID=$(secretd q tx $STORE_TX_HASH | jq '.logs[].events[].attributes[] | select(.key=="code_id") | .value ')
+done
+echo "Instantiating contract"
+INIT_TX=$(secretd tx compute instantiate $CODE_ID "{\"nop\":{}}" --from b --label $UNIQUE_LABEL  -y  --broadcast-mode block )
+eval INIT_TX_HASH=$(echo $INIT_TX | jq .txhash )
+eval CONTRACT_ADDRESS=$(secretd q tx $INIT_TX_HASH | jq '.logs[].events[] | select(.type=="instantiate") | .attributes[] | select(.key=="contract_address") | .value ')
+while [ "$CONTRACT_ADDRESS" == "" ]; do 
+    echo -e "\t waiting for secred tx compute instatiate to be included"
+    sleep 2
+    eval CONTRACT_ADDRESS=$(secretd q tx $INIT_TX_HASH | jq '.logs[].events[] | select(.type=="instantiate") | .attributes[] | select(.key=="contract_address") | .value ')
+done
+eval CODE_HASH=$(secretd q compute contract-hash $CONTRACT_ADDRESS)
+CODE_HASH=${CODE_HASH:2} #strip of 0x.. from CODE_HASH hex string
+
+echo "Generating Victim tx"
+secretd tx compute execute $CONTRACT_ADDRESS --generate-only "{\"store1\":{\"message\":\"hello2\"}}" --from $VICTIM_ADDR --enclave-key io-master-cert.der --code-hash $CODE_HASH --label $UNIQUE_LABEL  -y  --broadcast-mode sync > tx_victim.json
+echo "Signing Victim tx"
+secretd tx sign tx_victim.json --chain-id secretdev-1 --from $VICTIM_ADDR > tx_victim_sign.json
+
+cp -rf /root/.secretd/data/ /root/hist_data
+echo $CONTRACT_ADDRESS > CONTRACT_ADDRESS
+exit 0
+
+

hacking/scripts/test_simple.sh

@@ -0,0 +1,13 @@
+#!/bin/bash
+set -x
+ADDR=$(secretd keys show --address b)
+CONTRACT_ADDRESS=$(cat CONTRACT_ADDRESS)
+secretd tx compute delivertx tx_victim_sign.json --from $ADDR -y 
+secretd q compute query $CONTRACT_ADDRESS "{\"store1_q\":{}}" 
+
+eval STORE_1_VALUE=$(secretd q compute query $CONTRACT_ADDRESS "{\"store1_q\":{}}" )
+if [ "$STORE_1_VALUE" != "hello2" ]; then
+    echo "ERROR: value in store_1 \"$STORE_1_VALUE\" != \"hello2\""
+    exit 1
+fi
+echo "SUCCESS: value in store_1 \"$STORE_1_VALUE\" == \"hello2\""

hacking/setup_simple.sh

@@ -0,0 +1,5 @@
+#!/bin/bash
+
+docker-compose exec localsecret-2 ./scripts/setup_simple.sh
+docker-compose stop localsecret-1
+docker-compose exec -d localsecret-2 /bin/bash -c "./scripts/backup.sh &> /root/out"