bitshares · abitmore · Apr 8, 2020 · Apr 6, 2020 · Apr 6, 2020 · Apr 6, 2020
diff --git a/libraries/chain/committee_member_evaluator.cpp b/libraries/chain/committee_member_evaluator.cpp
@@ -77,20 +77,6 @@ void_result committee_member_update_global_parameters_evaluator::do_evaluate(
 { try {
    FC_ASSERT(trx_state->_is_proposed_trx);
 
-   auto now = db().head_block_time();
-   FC_ASSERT( now > HARDFORK_CORE_1468_TIME || !o.new_parameters.extensions.value.updatable_htlc_options.valid(),
-         "Unable to set HTLC parameters until hardfork." );
-   if (!HARDFORK_BSIP_40_PASSED( now )) {
-      FC_ASSERT( !o.new_parameters.extensions.value.custom_authority_options.valid(),
-                 "Unable to set Custom Authority Options until hardfork BSIP 40." );
-      FC_ASSERT( !o.new_parameters.current_fees->exists<custom_authority_create_operation>(),
-                 "Unable to set Custom Authority operation fees until hardfork BSIP 40." );
-      FC_ASSERT( !o.new_parameters.current_fees->exists<custom_authority_update_operation>(),
-                 "Unable to set Custom Authority operation fees until hardfork BSIP 40." );
-      FC_ASSERT( !o.new_parameters.current_fees->exists<custom_authority_delete_operation>(),
-                 "Unable to set Custom Authority operation fees until hardfork BSIP 40." );
-   }
-
    return void_result();
 } FC_CAPTURE_AND_RETHROW( (o) ) }
 

diff --git a/libraries/chain/db_getter.cpp b/libraries/chain/db_getter.cpp
@@ -116,7 +116,8 @@ vector<authority> database::get_viable_custom_authorities(
          else if (rejected_authorities != nullptr)
             rejected_authorities->insert(std::make_pair(cust_auth.get().id, std::move(result)));
       } catch (fc::exception& e) {
-         rejected_authorities->insert(std::make_pair(cust_auth.get().id, std::move(e)));
+         if (rejected_authorities != nullptr)
+            rejected_authorities->insert(std::make_pair(cust_auth.get().id, std::move(e)));
       }
    }
 

diff --git a/libraries/chain/include/graphene/chain/custom_authority_object.hpp b/libraries/chain/include/graphene/chain/custom_authority_object.hpp
@@ -100,8 +100,7 @@ namespace graphene { namespace chain {
             composite_key<custom_authority_object,
                member<custom_authority_object, time_point_sec, &custom_authority_object::valid_to>,
                member<object, object_id_type, &object::id>
-            >,
-            composite_key_compare<std::greater<time_point_sec>, std::less<object_id_type>>
+            >
          >
       >
    > custom_authority_multi_index_type;

diff --git a/libraries/fc b/libraries/fc
diff --git a/libraries/plugins/custom_operations/custom_evaluators.cpp b/libraries/plugins/custom_operations/custom_evaluators.cpp
@@ -37,8 +37,9 @@ custom_generic_evaluator::custom_generic_evaluator(database& db, const account_i
 
 vector<object_id_type> custom_generic_evaluator::do_apply(const account_storage_map& op)
 {
-   auto &index = _db->get_index_type<account_storage_index>().indices().get<by_account_catalog_key>();
+   const auto &index = _db->get_index_type<account_storage_index>().indices().get<by_account_catalog_key>();
    vector<object_id_type> results;
+   results.reserve( op.key_values.size() );
 
    if (op.remove)
    {
@@ -61,9 +62,10 @@ vector<object_id_type> custom_generic_evaluator::do_apply(const account_storage_
          if(itr == index.end())
          {
             try {
-               auto created = _db->create<account_storage_object>( [&op, this, &row]( account_storage_object& aso ) {
-                  aso.catalog = op.catalog;
+               const auto& created = _db->create<account_storage_object>(
+                                        [&op, this, &row]( account_storage_object& aso ) {
                   aso.account = _account;
+                  aso.catalog = op.catalog;
                   aso.key = row.first;
                   if(row.second.valid())
                      aso.value = fc::json::from_string(*row.second);
@@ -76,7 +78,6 @@ vector<object_id_type> custom_generic_evaluator::do_apply(const account_storage_
          {
             try {
                _db->modify(*itr, [&op, this, &row](account_storage_object &aso) {
-                  aso.key = row.first;
                   if(row.second.valid())
                      aso.value = fc::json::from_string(*row.second);
                   else

diff --git a/libraries/protocol/custom_authority.cpp b/libraries/protocol/custom_authority.cpp
@@ -31,6 +31,8 @@ namespace graphene { namespace protocol {
 
 share_type custom_authority_create_operation::calculate_fee(const fee_parameters_type& k)const {
    share_type core_fee_required = k.basic_fee;
+   // Note: practically the `*` won't cause an integer overflow, because k.price_per_byte is 32 bit
+   //       and the results of pack_size() won't be too big
    core_fee_required += k.price_per_byte * (fc::raw::pack_size(restrictions) + fc::raw::pack_size(auth));
    return core_fee_required;
 }
@@ -58,6 +60,8 @@ void custom_authority_create_operation::validate()const {
 
 share_type custom_authority_update_operation::calculate_fee(const fee_parameters_type& k)const {
    share_type core_fee_required = k.basic_fee;
+   // Note: practically the `*` won't cause an integer overflow, because k.price_per_byte is 32 bit
+   //       and the results of pack_size() won't be too big
    core_fee_required += k.price_per_byte * fc::raw::pack_size(restrictions_to_add);
    if (new_auth)
       core_fee_required += k.price_per_byte * fc::raw::pack_size(*new_auth);
@@ -78,6 +82,19 @@ void custom_authority_update_operation::validate()const {
       FC_ASSERT(!new_auth->is_impossible(), "Cannot use an impossible authority threshold");
       FC_ASSERT(new_auth->address_auths.size() == 0, "Address auth is not supported");
    }
+   FC_ASSERT( new_enabled.valid() || new_valid_from.valid() || new_valid_to.valid() || new_auth.valid()
+              || !restrictions_to_remove.empty() || !restrictions_to_add.empty(),
+              "Must update something" );
+}
+
+void custom_authority_delete_operation::validate()const {
+   FC_ASSERT(fee.amount >= 0, "Fee amount can not be negative");
+
+   FC_ASSERT(account != GRAPHENE_TEMP_ACCOUNT
+             && account != GRAPHENE_COMMITTEE_ACCOUNT
+             && account != GRAPHENE_WITNESS_ACCOUNT
+             && account != GRAPHENE_RELAXED_COMMITTEE_ACCOUNT,
+             "Can not delete custom authority for special accounts");
 }
 
 } } // graphene::protocol
diff --git a/libraries/protocol/fee_schedule.cpp b/libraries/protocol/fee_schedule.cpp
@@ -37,7 +37,7 @@ namespace graphene { namespace protocol {
    fee_schedule fee_schedule::get_default()
    {
       fee_schedule result;
-      for( int i = 0; i < fee_parameters().count(); ++i )
+      for( size_t i = 0; i < fee_parameters().count(); ++i )
       {
          fee_parameters x; x.set_which(i);
          result.parameters.insert(x);
@@ -82,7 +82,7 @@ namespace graphene { namespace protocol {
    {
       auto f = calculate_fee( op, core_exchange_rate );
       auto f_max = f;
-      for( int i=0; i<MAX_FEE_STABILIZATION_ITERATION; i++ )
+      for( size_t i=0; i<MAX_FEE_STABILIZATION_ITERATION; i++ )
       {
          op.visit( set_fee_visitor( f_max ) );
          auto f2 = calculate_fee( op, core_exchange_rate );

diff --git a/libraries/protocol/include/graphene/protocol/custom_authority.hpp b/libraries/protocol/include/graphene/protocol/custom_authority.hpp
@@ -117,7 +117,7 @@ namespace graphene { namespace protocol {
       extensions_type extensions;
 
       account_id_type fee_payer()const { return account; }
-      void validate()const {}
+      void validate()const;
       share_type calculate_fee(const fee_parameters_type& k)const { return k.fee; }
    };
 

diff --git a/libraries/protocol/include/graphene/protocol/transaction.hpp b/libraries/protocol/include/graphene/protocol/transaction.hpp
@@ -254,6 +254,7 @@ namespace graphene { namespace protocol {
     * @param sigs a set of public keys
     * @param get_active callback function to retrieve active authorities of a given account
     * @param get_owner  callback function to retrieve owner authorities of a given account
+    * @param get_custom callback function to retrieve viable custom authorities for a given account and operation
     * @param allow_non_immediate_owner whether to allow owner authority of non-immediately
     *            required accounts to authorize operations
     * @param ignore_custom_operation_required_auths See issue #210; whether to ignore the

diff --git a/libraries/protocol/transaction.cpp b/libraries/protocol/transaction.cpp
@@ -409,6 +409,7 @@ set<public_key_type> signed_transaction::minimize_required_signatures(
          uint32_t max_recursion )const
 {
    set< public_key_type > s = get_required_signatures( chain_id, available_keys, get_active, get_owner,
+                                                       allow_non_immediate_owner,
                                                        ignore_custom_operation_required_auths, max_recursion );
    flat_set< public_key_type > result( s.begin(), s.end() );
 

diff --git a/libraries/wallet/wallet_api_impl.cpp b/libraries/wallet/wallet_api_impl.cpp
@@ -205,7 +205,8 @@ namespace graphene { namespace wallet { namespace detail {
    void wallet_api_impl::init_prototype_ops()
    {
       operation op;
-      for( int t=0; t<op.count(); t++ )
+      int64_t op_count = op.count();
+      for( int64_t t=0; t<op_count; t++ )
       {
          op.set_which( t );
          op.visit( op_prototype_visitor(t, _prototype_ops) );

diff --git a/tests/tests/authority_tests.cpp b/tests/tests/authority_tests.cpp
@@ -1885,10 +1885,8 @@ BOOST_AUTO_TEST_CASE( custom_operation_required_auths_before_fork ) {
       fund(alice, asset(10000000));
       enable_fees();
 
-      if (db.head_block_time() >= HARDFORK_CORE_210_TIME) {
-          wlog("Unable to test custom_operation required auths before fork: hardfork already passed");
-          return;
-      }
+      // Unable to test custom_operation required auths before fork if hardfork already passed
+      BOOST_REQUIRE(db.head_block_time() < HARDFORK_CORE_210_TIME);
 
       signed_transaction trx;
       custom_operation op;
@@ -2003,6 +2001,44 @@ BOOST_AUTO_TEST_CASE( custom_operation_required_auths_after_fork ) {
    }
 }
 
+BOOST_FIXTURE_TEST_CASE( owner_delegation_test, database_fixture )
+{ try {
+   ACTORS( (alice)(bob) );
+
+   fc::ecc::private_key bob_active_key = fc::ecc::private_key::regenerate(fc::digest("bob_active"));
+   fc::ecc::private_key bob_owner_key  = fc::ecc::private_key::regenerate(fc::digest("bob_owner"));
+
+   trx.clear();
+
+   // Make sure Bob has different keys
+   account_update_operation auo;
+   auo.account = bob_id;
+   auo.active = authority( 1, public_key_type(bob_active_key.get_public_key()), 1 );
+   auo.owner  = authority( 1, public_key_type(bob_owner_key.get_public_key()), 1 );
+   trx.operations.push_back( auo );
+   sign( trx, bob_private_key );
+   PUSH_TX( db, trx );
+   trx.clear();
+
+   // Delegate Alice's owner auth to herself and active auth to Bob
+   auo.account = alice_id;
+   auo.active = authority( 1, bob_id, 1 );
+   auo.owner  = authority( 1, alice_id, 1 );
+   trx.operations.push_back( auo );
+   sign( trx, alice_private_key );
+   PUSH_TX( db, trx );
+   trx.clear();
+
+   // Now Bob has full control over Alice's account
+   auo.account = alice_id;
+   auo.active.reset();
+   auo.owner  = authority( 1, bob_id, 1 );
+   trx.operations.push_back( auo );
+   sign( trx, bob_active_key );
+   PUSH_TX( db, trx );
+   trx.clear();
+} FC_LOG_AND_RETHROW() }
+
 /// This test case reproduces https://github.com/bitshares/bitshares-core/issues/944
 ///                       and https://github.com/bitshares/bitshares-core/issues/580
 BOOST_FIXTURE_TEST_CASE( missing_owner_auth_test, database_fixture )