-
Notifications
You must be signed in to change notification settings - Fork 3.7k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
e8865ab
commit c9d9310
Showing
2 changed files
with
110 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,108 @@ | ||
| // Copyright © Aptos Foundation | ||
| // SPDX-License-Identifier: Apache-2.0 | ||
|
|
||
| use std::sync::Arc; | ||
| use crate::smoke_test_environment::SwarmBuilder; | ||
| use aptos_cached_packages::aptos_stdlib; | ||
| use aptos_forge::Swarm; | ||
| use aptos_types::function_info::FunctionInfo; | ||
| use aptos_crypto::SigningKey; | ||
| use move_core_types::account_address::AccountAddress; | ||
|
|
||
| #[tokio::test(flavor = "multi_thread", worker_threads = 1)] | ||
| async fn test_permissioned_delegation() { | ||
| let (swarm, mut cli, _faucet) = SwarmBuilder::new_local(1) | ||
| .with_aptos() | ||
| .build_with_cli(0) | ||
| .await; | ||
| let mut info = swarm.aptos_public_info(); | ||
|
|
||
| let mut account1 = info | ||
| .create_and_fund_user_account(100_000_000_000) | ||
| .await | ||
| .unwrap(); | ||
| let account2 = info.random_account(); | ||
| info.create_user_account(account2.public_key()) | ||
| .await | ||
| .unwrap(); | ||
| let account1_private_key = account1.private_key().clone(); | ||
| let account1_public_key = account1.public_key().clone(); | ||
| let idx = cli.add_account_to_cli(account1_private_key.clone()); | ||
|
|
||
| // Setup permissions: 10 APT allowance, and 0.1 APT gas. | ||
| let script = format!( | ||
| r#" | ||
| script {{ | ||
| use std::string::utf8; | ||
| use aptos_std::ed25519; | ||
| use aptos_framework::coin; | ||
| use aptos_framework::permissioned_delegation; | ||
| use aptos_framework::primary_fungible_store; | ||
| use aptos_framework::transaction_validation; | ||
| use aptos_framework::account_abstraction; | ||
| fun main(sender: &signer) {{ | ||
| coin::migrate_to_fungible_store<aptos_framework::aptos_coin::AptosCoin>(sender); | ||
| let key = permissioned_delegation::gen_ed25519_key(ed25519::new_unvalidated_public_key_from_bytes(x"{}")); | ||
| let permissioned_signer = permissioned_delegation::add_permissioned_handle(sender, key, std::option::none(), {}); | ||
| primary_fungible_store::grant_apt_permission(sender, &permissioned_signer, 1000000000); // 10 apt | ||
| transaction_validation::grant_gas_permission(sender, &permissioned_signer, 100000000); // 1 apt because that is the max_gas | ||
| account_abstraction::add_dispatchable_authentication_function(sender, @aptos_framework, utf8(b"permissioned_delegation"), utf8(b"authenticate")); | ||
| }} | ||
| }} | ||
| "#, | ||
| hex::encode(account1_public_key.to_bytes()), | ||
| u64::max_value(), | ||
| ); | ||
| assert_eq!(Some(true), cli.run_script(idx, &script).await.unwrap().success); | ||
| account1.increment_sequence_number(); | ||
|
|
||
| let func_info = FunctionInfo::new( | ||
| AccountAddress::ONE, | ||
| "permissioned_delegation".to_string(), | ||
| "authenticate".to_string(), | ||
| ); | ||
| account1.set_abstraction_auth(func_info, Arc::new(move |x: &[u8]| { | ||
| let mut authenticator = vec![]; | ||
| authenticator.extend(bcs::to_bytes(&account1_public_key.to_bytes().to_vec()).unwrap()); | ||
| authenticator.extend(bcs::to_bytes(&account1_private_key.sign_arbitrary_message(x).to_bytes().to_vec()).unwrap()); | ||
| authenticator | ||
| })); | ||
|
|
||
| // Transfer 1 APT and 2 APT. | ||
| let transfer_txn = account1.sign_aa_transaction_with_transaction_builder( | ||
| vec![], | ||
| None, | ||
| info.transaction_factory() | ||
| .payload(aptos_stdlib::aptos_account_fungible_transfer_only(account2.address(), 100000000))); | ||
| info.client().submit_and_wait(&transfer_txn).await.unwrap(); | ||
|
|
||
| // gas permission check failed. | ||
| let transfer_txn = account1.sign_aa_transaction_with_transaction_builder( | ||
| vec![], | ||
| None, | ||
| info.transaction_factory() | ||
| .payload(aptos_stdlib::aptos_account_fungible_transfer_only(account2.address(), 200000000))); | ||
| assert!(info.client().submit_and_wait(&transfer_txn).await.is_err()); | ||
| account1.decrement_sequence_number(); | ||
|
|
||
| let transfer_txn = account1.sign_aa_transaction_with_transaction_builder( | ||
| vec![], | ||
| None, | ||
| info.transaction_factory() | ||
| .payload(aptos_stdlib::aptos_account_fungible_transfer_only(account2.address(), 200000000)).max_gas_amount(50000000)); | ||
| info.client().submit_and_wait(&transfer_txn).await.unwrap(); | ||
|
|
||
| let transfer_txn = account1.sign_aa_transaction_with_transaction_builder( | ||
| vec![], | ||
| None, | ||
| info.transaction_factory() | ||
| .payload(aptos_stdlib::aptos_account_fungible_transfer_only(account2.address(), 700000001)).max_gas_amount(50000000)); | ||
| assert!(info.client().submit_and_wait(&transfer_txn).await.is_err()); | ||
|
|
||
| let transfer_txn = account1.sign_aa_transaction_with_transaction_builder( | ||
| vec![], | ||
| None, | ||
| info.transaction_factory() | ||
| .payload(aptos_stdlib::aptos_account_fungible_transfer_only(account2.address(), 700000000)).max_gas_amount(50000000)); | ||
| info.client().submit_and_wait(&transfer_txn).await.unwrap(); | ||
| } |