namada_token 0.251.4

Namada transparent and shielded token
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384

//! Token transaction

use std::borrow::Cow;
use std::collections::{BTreeMap, BTreeSet};

use namada_core::arith::CheckedSub;
use namada_core::collections::HashSet;
use namada_core::masp::encode_asset_type;
use namada_core::masp_primitives::transaction::Transaction;
use namada_core::token::MaspDigitPos;
use namada_core::uint::I320;
use namada_core::{masp, token};
use namada_events::EmitEvents;
use namada_shielded_token::storage_key::masp_undated_balance_key;
use namada_shielded_token::{MaspTxId, read_undated_balance, utils};
use namada_storage::{Error, OptionExt, ResultExt};
use namada_trans_token::read_denom;
pub use namada_trans_token::tx::transfer;
use namada_tx::BatchedTx;
use namada_tx::action::{self, Action, MaspAction};
use namada_tx_env::{Address, Result, TxEnv};

use crate::{Transfer, TransparentTransfersRef};

/// Transparent and shielded token transfers that can be used in a transaction.
pub fn multi_transfer<ENV>(
    env: &mut ENV,
    transfers: Transfer,
    tx_data: &BatchedTx,
    event_desc: Cow<'static, str>,
) -> Result<()>
where
    ENV: TxEnv + EmitEvents + action::Write<Err = Error>,
{
    // Effect the transparent multi transfer(s)
    let (debited_accounts, tokens) =
        if let Some(transparent) = transfers.transparent_part() {
            apply_transparent_transfers(env, transparent, event_desc)
                .wrap_err("Transparent token transfer failed")?
        } else {
            (HashSet::new(), HashSet::new())
        };

    // Apply the shielded transfer if there is a link to one
    if let Some(masp_section_ref) = transfers.shielded_section_hash {
        apply_shielded_transfer(
            env,
            masp_section_ref,
            debited_accounts,
            tokens,
            tx_data,
        )
        .wrap_err("Shielded token transfer failed")?;
    }
    Ok(())
}

/// Transfer tokens from `sources` to `targets` and submit a transfer event.
///
/// Returns an `Err` if any source has insufficient balance or if the transfer
/// to any destination would overflow (This can only happen if the total supply
/// doesn't fit in `token::Amount`). Returns a set of debited accounts.
pub fn apply_transparent_transfers<ENV>(
    env: &mut ENV,
    transfers: TransparentTransfersRef<'_>,
    event_desc: Cow<'static, str>,
) -> Result<(HashSet<Address>, HashSet<Address>)>
where
    ENV: TxEnv + EmitEvents,
{
    let sources = transfers.sources();
    let targets = transfers.targets();
    let (debited_accounts, tokens) = namada_trans_token::tx::multi_transfer(
        env, sources, targets, event_desc,
    )?;
    Ok((debited_accounts, tokens))
}

/// Update the undated balance keys to reflect the net changes implied by the
/// given shielded transaction.
///
/// This function takes the set of token addresses impacted by the transaction
/// in order to help it decode the asset types in its value balance.
pub fn update_undated_balances<ENV>(
    env: &mut ENV,
    shielded: &Transaction,
    tokens: HashSet<Address>,
) -> Result<()>
where
    ENV: TxEnv + EmitEvents + action::Write<Err = Error>,
{
    // Record undated balance changes
    let mut undated_balances = BTreeMap::new();
    let mut undated_asset_types = BTreeMap::new();
    let asset_type_err =
        |err| Error::new_alloc(format!("unable to create asset type: {err}"));
    // First construct a map to decode asset types
    for token in tokens {
        let Some(denom) = read_denom(env, &token)? else {
            // Ignore asset type if denomination cannot be read
            continue;
        };
        // Read the undated balance of the current token
        let undated_balance = read_undated_balance(env, &token)?;
        // Save the undated balance in a map for updating
        undated_balances.insert(token.clone(), I320::from(undated_balance));
        // Store the encoding for each digit
        for digit in MaspDigitPos::iter() {
            let atype = encode_asset_type(token.clone(), denom, digit, None)
                .map_err(asset_type_err)?;
            undated_asset_types.insert(atype, (token.clone(), denom, digit));
        }
    }
    // Update the undated balances with the Sapling value balance
    for (asset_type, val) in shielded.sapling_value_balance().components() {
        let Some((token, _denom, digit)) = undated_asset_types.get(asset_type)
        else {
            // Assume that token cannot be decoded because it's dated
            continue;
        };
        // Retrieve the current undated balance
        let undated_balance =
            undated_balances.get_mut(token).ok_or_else(|| {
                Error::new_alloc(format!(
                    "unable to retrieve undated balance for {token}"
                ))
            })?;
        // Construct the undated balance change from value and digit
        let change =
            I320::from_masp_denominated(*val, *digit).map_err(|_| {
                Error::new_alloc(format!(
                    "overflow in undated balance for {token}"
                ))
            })?;
        // Update the undated balance
        *undated_balance =
            undated_balance.checked_sub(change).ok_or_else(|| {
                Error::new_alloc(format!(
                    "overflow in undated balance for {token}"
                ))
            })?;
    }
    // Now commit to the updated balances to storage
    for (token, balance) in undated_balances {
        let undated_balance_key = masp_undated_balance_key(&token);
        // Convert the undated balance back into an Amount
        let balance: token::Amount = balance.try_into().map_err(|_| {
            Error::new_alloc(format!("overflow in undated balance for {token}"))
        })?;
        // Save the unddated balance back into storage
        env.write(&undated_balance_key, balance)?;
    }
    Ok(())
}

/// Apply a shielded transfer
pub fn apply_shielded_transfer<ENV>(
    env: &mut ENV,
    masp_section_ref: MaspTxId,
    debited_accounts: HashSet<Address>,
    tokens: HashSet<Address>,
    tx_data: &BatchedTx,
) -> Result<()>
where
    ENV: TxEnv + EmitEvents + action::Write<Err = Error>,
{
    let shielded = tx_data
        .tx
        .get_masp_section(&masp_section_ref)
        .cloned()
        .ok_or_err_msg("Unable to find required shielded section in tx data")
        .inspect_err(|_err| {
            env.set_commitment_sentinel();
        })?;
    utils::handle_masp_tx(env, &shielded)
        .wrap_err("Encountered error while handling MASP transaction")?;
    ENV::update_masp_note_commitment_tree(&shielded)
        .wrap_err("Failed to update the MASP commitment tree")?;

    env.push_action(Action::Masp(MaspAction::MaspSectionRef(
        masp_section_ref,
    )))?;
    update_undated_balances(env, &shielded, tokens)?;
    // Extract the debited accounts for the masp part of the transfer and
    // push the relative actions
    let vin_addresses =
        shielded
            .transparent_bundle()
            .map_or_else(Default::default, |bndl| {
                bndl.vin
                    .iter()
                    .map(|vin| vin.address)
                    .collect::<BTreeSet<_>>()
            });
    let masp_authorizers: Vec<_> = debited_accounts
        .into_iter()
        .filter(|account| {
            vin_addresses.contains(&masp::addr_taddr(account.clone()))
        })
        .collect();
    if masp_authorizers.len() != vin_addresses.len() {
        return Err(Error::SimpleMessage(
            "Transfer transaction does not debit all the expected accounts",
        ));
    }

    for authorizer in masp_authorizers {
        env.push_action(Action::Masp(MaspAction::MaspAuthorizer(authorizer)))?;
    }

    Ok(())
}

#[cfg(test)]
#[allow(clippy::arithmetic_side_effects, clippy::disallowed_types)]
mod test {
    use std::collections::HashMap;

    use namada_core::address::testing::{
        arb_address, arb_non_internal_address,
    };
    use namada_core::token;
    use namada_tests::tx::{ctx, tx_host_env};
    use namada_trans_token::testing::arb_amount;
    use namada_trans_token::{Amount, DenominatedAmount, read_balance};
    use namada_tx::{Tx, TxCommitments};
    use proptest::prelude::*;

    use super::*;

    const EVENT_DESC: Cow<'static, str> = Cow::Borrowed("event-desc");

    proptest! {
        #[test]
        fn test_valid_trans_multi_transfer_tx(
            transfers in prop::collection::vec(arb_trans_transfer(), 1..10)
        ) {
            test_valid_trans_multi_transfer_tx_aux(transfers)
        }
    }

    #[derive(Debug)]
    struct SingleTransfer {
        src: Address,
        dest: Address,
        token: Address,
        amount: Amount,
    }

    fn arb_trans_transfer() -> impl Strategy<Value = SingleTransfer> {
        ((
            arb_non_internal_address(),
            arb_non_internal_address(),
            arb_address(),
            arb_amount(),
        )
            .prop_filter(
                "unique addresses",
                |(src, dest, token, _amount)| {
                    src != dest && dest != token && src != token
                },
            ))
        .prop_map(|(src, dest, token, amount)| SingleTransfer {
            src,
            dest,
            token,
            amount,
        })
    }

    fn test_valid_trans_multi_transfer_tx_aux(transfers: Vec<SingleTransfer>) {
        tx_host_env::init();

        let mut genesis_balances = HashMap::<
            // Token address
            Address,
            HashMap<
                // Owner address
                Address,
                token::Amount,
            >,
        >::new();

        let mut transfer = Transfer::default();
        for SingleTransfer {
            src,
            dest,
            token,
            amount,
        } in &transfers
        {
            let denom = DenominatedAmount::native(*amount);
            transfer = transfer
                .transfer(src.clone(), dest.clone(), token.clone(), denom)
                .unwrap();
        }

        for (account, amount) in &transfer.sources {
            tx_host_env::with(|tx_env| {
                tx_env.spawn_accounts([&account.owner, &account.token]);
                tx_env.credit_tokens(
                    &account.owner,
                    &account.token,
                    amount.amount(),
                );
            });
            // Store the credited token balances
            *genesis_balances
                .entry(account.token.clone())
                .or_default()
                .entry(account.owner.clone())
                .or_default() += amount.amount();
        }

        for account in transfer.targets.keys() {
            tx_host_env::with(|tx_env| {
                tx_env.spawn_accounts([&account.owner, &account.token]);
            });
        }

        let tx_data = BatchedTx {
            tx: Tx::default(),
            cmt: TxCommitments::default(),
        };
        multi_transfer(ctx(), transfer, &tx_data, EVENT_DESC).unwrap();

        let mut changes = HashMap::<
            // Token address
            Address,
            HashMap<
                // Owner address
                Address,
                token::Change,
            >,
        >::new();

        for SingleTransfer {
            src,
            dest,
            token,
            amount,
        } in &transfers
        {
            // Accumulate all token changes
            let token_changes = changes.entry(token.clone()).or_default();
            let change = token::Change::from(*amount);
            *token_changes.entry(src.clone()).or_default() -= change;
            *token_changes.entry(dest.clone()).or_default() += change;

            if !amount.is_zero() {
                // Every address has to be in the verifier set
                tx_host_env::with(|tx_env| {
                    // Internal token address have to be part of the verifier
                    // set
                    assert!(
                        !token.is_internal()
                            || tx_env.verifiers.contains(token)
                    );
                    assert!(tx_env.verifiers.contains(src));
                    assert!(tx_env.verifiers.contains(dest));
                })
            }
        }

        // Check all the changed balances
        for (token, changes) in changes {
            for (owner, change) in changes {
                let expected_balance = token::Change::from(
                    genesis_balances
                        .get(&token)
                        .and_then(|balances| balances.get(&owner))
                        .cloned()
                        .unwrap_or_default(),
                ) + change;
                assert_eq!(
                    token::Change::from(
                        read_balance(ctx(), &token, &owner).unwrap()
                    ),
                    expected_balance
                );
            }
        }
    }
}