TransactionView: Signature Meta #2408
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -7,3 +7,5 @@ pub mod bytes; | |
| mod bytes; | ||
|
|
||
| pub mod result; | ||
| #[allow(dead_code)] | ||
| mod signature_meta; | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,108 @@ | ||
| use { | ||
| crate::{ | ||
| bytes::{advance_offset_for_array, read_byte}, | ||
| result::{Result, TransactionParsingError}, | ||
| }, | ||
| solana_sdk::{packet::PACKET_DATA_SIZE, pubkey::Pubkey, signature::Signature}, | ||
| }; | ||
|
|
||
| /// Meta data for accessing transaction-level signatures in a transaction view. | ||
| pub(crate) struct SignatureMeta { | ||
| /// The number of signatures in the transaction. | ||
| pub(crate) num_signatures: u16, | ||
| /// Offset to the first signature in the transaction packet. | ||
| pub(crate) offset: u16, | ||
| } | ||
|
|
||
| impl SignatureMeta { | ||
| /// Get the number of signatures and the offset to the first signature in | ||
| /// the transaction packet, starting at the given `offset`. | ||
| pub(crate) fn try_new(bytes: &[u8], offset: &mut usize) -> Result<Self> { | ||
| // The packet has a maximum length of 1232 bytes. | ||
| // Each signature must be paired with a unique static pubkey, so each | ||
| // signature really requires 96 bytes. This means the maximum number of | ||
| // signatures in a **valid** transaction packet is 12. | ||
| // In our u16 encoding scheme, 12 would be encoded as a single byte. | ||
| // Rather than using the u16 decoding, we can simply read the byte and | ||
| // verify that the MSB is not set. | ||
| const MAX_SIGNATURES_PER_PACKET: u16 = (PACKET_DATA_SIZE | ||
| / (core::mem::size_of::<Signature>() + core::mem::size_of::<Pubkey>())) | ||
| as u16; | ||
| // Maximum number of signatures should be represented by a single byte, | ||
| // thus the MSB should not be set. | ||
| const _: () = assert!(MAX_SIGNATURES_PER_PACKET & 0b1000_0000 == 0); | ||
|
|
||
| let num_signatures = read_byte(bytes, offset)? as u16; | ||
| if num_signatures == 0 || num_signatures > MAX_SIGNATURES_PER_PACKET { | ||
| return Err(TransactionParsingError); | ||
| } | ||
|
|
||
| let signature_offset = *offset as u16; | ||
| advance_offset_for_array::<Signature>(bytes, offset, num_signatures)?; | ||
|
|
||
| Ok(Self { | ||
| num_signatures, | ||
| offset: signature_offset, | ||
| }) | ||
| } | ||
| } | ||
|
|
||
| #[cfg(test)] | ||
| mod tests { | ||
| use {super::*, solana_sdk::short_vec::ShortVec}; | ||
|
|
||
| #[test] | ||
| fn test_zero_signatures() { | ||
| let bytes = bincode::serialize(&ShortVec(Vec::<Signature>::new())).unwrap(); | ||
| let mut offset = 0; | ||
| assert!(SignatureMeta::try_new(&bytes, &mut offset).is_err()); | ||
| } | ||
|
|
||
| #[test] | ||
| fn test_one_signature() { | ||
| let bytes = bincode::serialize(&ShortVec(vec![Signature::default()])).unwrap(); | ||
| let mut offset = 0; | ||
| let meta = SignatureMeta::try_new(&bytes, &mut offset).unwrap(); | ||
| assert_eq!(meta.num_signatures, 1); | ||
| assert_eq!(meta.offset, 1); | ||
| assert_eq!(offset, 1 + core::mem::size_of::<Signature>()); | ||
| } | ||
|
|
||
| #[test] | ||
| fn test_max_signatures() { | ||
| let signatures = vec![Signature::default(); 12]; | ||
| let bytes = bincode::serialize(&ShortVec(signatures)).unwrap(); | ||
| let mut offset = 0; | ||
| let meta = SignatureMeta::try_new(&bytes, &mut offset).unwrap(); | ||
| assert_eq!(meta.num_signatures, 12); | ||
| assert_eq!(meta.offset, 1); | ||
|
There was a problem hiding this comment. Would it be important to test a case when There was a problem hiding this comment. I'll add a test because there's nothing explicitly in this code that requires it to be at 1. For actual transaction packets, this will never be anything but 1 even though the encoding scheme technically allows for it to be [1,3]. |
||
| assert_eq!(offset, 1 + 12 * core::mem::size_of::<Signature>()); | ||
| } | ||
|
|
||
| #[test] | ||
| fn test_non_zero_offset() { | ||
| let mut bytes = bincode::serialize(&ShortVec(vec![Signature::default()])).unwrap(); | ||
| bytes.insert(0, 0); // Insert a byte at the beginning of the packet. | ||
| let mut offset = 1; // Start at the second byte. | ||
| let meta = SignatureMeta::try_new(&bytes, &mut offset).unwrap(); | ||
| assert_eq!(meta.num_signatures, 1); | ||
| assert_eq!(meta.offset, 2); | ||
| assert_eq!(offset, 2 + core::mem::size_of::<Signature>()); | ||
| } | ||
|
|
||
| #[test] | ||
| fn test_too_many_signatures() { | ||
| let signatures = vec![Signature::default(); 13]; | ||
| let bytes = bincode::serialize(&ShortVec(signatures)).unwrap(); | ||
| let mut offset = 0; | ||
| assert!(SignatureMeta::try_new(&bytes, &mut offset).is_err()); | ||
| } | ||
|
|
||
| #[test] | ||
| fn test_u16_max_signatures() { | ||
| let signatures = vec![Signature::default(); u16::MAX as usize]; | ||
| let bytes = bincode::serialize(&ShortVec(signatures)).unwrap(); | ||
| let mut offset = 0; | ||
| assert!(SignatureMeta::try_new(&bytes, &mut offset).is_err()); | ||
| } | ||
| } | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Do we need
const _: () =?There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It's a compile-time check to make sure that the u16 for a valid packet containing as many signatures as possible will be serialized in a single byte.
We don't strictly need it, but if the packet size increased the code below may no longer work - this check makes sure that we'd become aware it was broken.