You can test this entry and submit issues during the testing period of the Blockchain Contest contest.
Entries with serious issues will not be able to win the contest, but even minor issues might be important for overall results.
Info
Testing and Issues
Voting
Comments
Multi-signature wallet.
k - num required signaturesπ, 1 <= k <= 10
n - num participants/max π, 0 < k <= n <= 100
Each participantπ· has indexed public keyπ and sends messagesπ© which contains orderπ¦ to be sent to some destination when required number of signaturesπ collected.
Messageπ©:
Signatureπ, signer index, valid untilπ, seqno, send mode, orderπ¦ (bounce bits, etc, dest addrπͺ, grams π, bodyπ)
Sample state, 3 participants sent some orders:
π·π0-------π°π1-------πΈπ2
π©+π¦A-----π©+π¦B ----π©+π¦A
Storage:
π0π1π2..., seqno, k, n, pending orders
Pending (partially signed) order
key: hash(π¦)2οΈβ£5οΈβ£6οΈβ£
value:
πexpires 3οΈβ£2οΈβ£
πsig count 1οΈβ£6οΈβ£ (A 2, B 1)
πsig bitmask 1οΈβ£2οΈβ£8οΈβ£ (A 0101, B 0010)
k - num required signaturesπ, 1 <= k <= 10
n - num participants/max π, 0 < k <= n <= 100
Each participantπ· has indexed public keyπ and sends messagesπ© which contains orderπ¦ to be sent to some destination when required number of signaturesπ collected.
Messageπ©:
Signatureπ, signer index, valid untilπ, seqno, send mode, orderπ¦ (bounce bits, etc, dest addrπͺ, grams π, bodyπ)
Sample state, 3 participants sent some orders:
π·π0-------π°π1-------πΈπ2
π©+π¦A-----π©+π¦B ----π©+π¦A
Storage:
π0π1π2..., seqno, k, n, pending orders
Pending (partially signed) order
key: hash(π¦)2οΈβ£5οΈβ£6οΈβ£
value:
πexpires 3οΈβ£2οΈβ£
πsig count 1οΈβ£6οΈβ£ (A 2, B 1)
πsig bitmask 1οΈβ£2οΈβ£8οΈβ£ (A 0101, B 0010)
β
Fast access to π by index from π©
β Cheap & fast bit mask storage for πππ
β Expired orders garbage collection when k > 1
β Get all pending orders
β Get all signed or unsigned orders by particular π
β No need to store orders, the one from inbound message is used when arrives with last required π
β Easy debug via debug.fif and build_run_mltisig.sh
β οΈ Only one signature supported per π©
β οΈ Parties have to repeat exact orderπ¦ for each signature.
β οΈ Very first message sets π, further expirations ignored.
β οΈ same order might be sent twice if o > k orders sent for the signing purpose, but they not only sent first one, but also created next one, and so on.
π seqno hardcoded to 77 (forgot to fix it π¬)
π‘ partially signed orders dict better to be moved to the beginning to avoid skipping bytes in get methods
π¬ new wallet script not ready
π¬ new and existing order scripts not ready
β Cheap & fast bit mask storage for πππ
β Expired orders garbage collection when k > 1
β Get all pending orders
β Get all signed or unsigned orders by particular π
β No need to store orders, the one from inbound message is used when arrives with last required π
β Easy debug via debug.fif and build_run_mltisig.sh
β οΈ Only one signature supported per π©
β οΈ Parties have to repeat exact orderπ¦ for each signature.
β οΈ Very first message sets π, further expirations ignored.
β οΈ same order might be sent twice if o > k orders sent for the signing purpose, but they not only sent first one, but also created next one, and so on.
π seqno hardcoded to 77 (forgot to fix it π¬)
π‘ partially signed orders dict better to be moved to the beginning to avoid skipping bytes in get methods
π¬ new wallet script not ready
π¬ new and existing order scripts not ready
You have not added any comments yet...
by rating
Issues
What is the purpose of seqno, if it is hardcoded?
Sequence number is needed to have different hashes of the same messages to avoid attacks, because these messages are "from nowhere", according to the TON documentation.
Or, did you mention this, like a bug? To be honest, it is hard to understand these emojis.
Sequence number is needed to have different hashes of the same messages to avoid attacks, because these messages are "from nowhere", according to the TON documentation.
Or, did you mention this, like a bug? To be honest, it is hard to understand these emojis.
Actually you have two seqno checks. Do I read it correctly that if you can't find public key you just let it pass without signature?
Apart from this major but silly mistake I actually like it. You dropped "list of signatures" requirement and so avoided related replay issues. And although there are bunch of debug lines, it still looks clean and easy to reason about.
Apart from this major but silly mistake I actually like it. You dropped "list of signatures" requirement and so avoided related replay issues. And although there are bunch of debug lines, it still looks clean and easy to reason about.
Only one signature at a time is supported. This incidentally makes this smart contract very safe, as accept_message is called only after all work is done.
Nobody added any issues yet...