[BREAKING] Fix TX ASN1 digest#64
Conversation
Signed-off-by: Liran Funaro <liran.funaro@gmail.com>
There was a problem hiding this comment.
Pull Request Overview
This PR refactors how transaction namespaces are marshaled and versioned in ASN.1, switches version fields from byte slices to uint64 throughout the code and database, and streamlines no-scheme signing/verifying paths while adding new tests and benchmarks.
- Enforce UTF8 in ASN.1 schema, add namespace ID and version (using int64 with –1 default) to
TxWithNamespace - Remove redundant dummy marshaling for “no scheme” in sign/verify APIs
- Convert namespace/version fields from
[]bytetouint64across protos, DB schemas, queries, and tests; introduce generic array helpers
Reviewed Changes
Copilot reviewed 57 out of 57 changed files in this pull request and generated 1 comment.
Show a summary per file
| File | Description |
|---|---|
| utils/signature/tx_schema.asn | ASN.1 schema extended with namespaceID & version fields |
| utils/signature/block_tx.go | TranslateTx and DigestTxNamespace use new schema & version conversions |
| service/vc/database.go | Query templates & row readers updated for bigint versions and generics |
| api/protoqueryservice/query.proto | Changed version from bytes to uint64 |
| api/protoblocktx/block_tx.proto | Changed ns_version, version fields to uint64 |
| service/vc/create_namespace.sql | New namespace table/functions use BIGINT |
| service/vc/init_database.sql | Consolidated system tables/functions into a single SQL blob |
| Numerous tests | Updated tests to use literal uint64 versions and new helpers |
Comments suppressed due to low confidence (2)
service/verifier/verify.go:148
- [nitpick] Returning
ABORTED_MISSING_TXIDfor an invalid UTF-8 TxId may mislead callers. Define a dedicated status or error for invalid UTF-8 to improve clarity.
if !utf8.ValidString(tx.Id) {
service/vc/dbinit.go:104
- [nitpick] Using
ReplaceAllonns_tablecan inadvertently replace occurrences outside the placeholder. Consider a distinct marker like{{TABLE}}to avoid accidental replacements.
return strings.ReplaceAll(tmpl, nsTableTemplateMarker, tableName)
cendhu
left a comment
cendhu
left a comment
There was a problem hiding this comment.
LGTM. A few minor comments.
| @@ -0,0 +1,79 @@ | |||
| /* | |||
There was a problem hiding this comment.
why are we clubbing them into a single file? This add difficulties to the review process as we are both changing the existing SQL as well as combining them into a single file. Further, it changes the scope the PR too.
Why are we using only one ns_table?
After offline discussion, my suggestion is to retain single file if it helps but revert the changes made to existing placeholder for clarity while reading the code.
There was a problem hiding this comment.
The reason for changing the format is that Goland (IntelliJ) IDE doesn't handle the %[1]s formatting well. It fails to parse it, so the SQL appears without syntax highlighting.
I opted to use ${NAMESPACE_ID} instead. Goland handles this kind of placeholder well.
It is a common placeholder for variables (e.g., bash), and it adds clarity as it specifies exactly what the placeholder is intended for.
Signed-off-by: Liran Funaro <liran.funaro@gmail.com>
|
|
||
| CREATE TABLE IF NOT EXISTS ns_table | ||
| /* | ||
| This SQL file is a template for creating a new namespace. |
There was a problem hiding this comment.
add tmpl suffix to the file name create_namespace_tmpl.sql.
Type of change
Description
The tests discovered the following:
If it is ASCII, it encodes it as PrintableString; otherwise, it uses UTF-8.
This may cause incompatibility with the schema, which requires a specific type. Thus, we force the type to be UTF-8.
niland empty slice ([]byte{}).We must ensure our implementation does not make this differentiation to avoid inconsistencies.
The current implementation parses version
[]byte{}as zero. If the endorser signed onnilversion, an attacker can change the TX to have version zero by replacing thenilwith[]byte{}and go unnoticed.To fix these issues, we:
-1.Related issues