kylefang/stacks-puppet-node
1
0
Fork 0
mirror of https://github.com/alexgo-io/stacks-puppet-node.git synced 2026-06-02 19:40:32 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
b4beab90cc6e33caa92e365851bf51a799da610b
stacks-puppet-node/blockstack/lib/subdomains.py

1456 lines
56 KiB
Python
Raw Blame History

#!/usr/bin/env python2
# -*- coding: utf-8 -*-
"""
Blockstack
~~~~~
copyright: (c) 2017-2018 by Blockstack.org
This file is part of Blockstack.
Blockstack is free software: you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation, either version 3 of the License, or
(at your option) any later version.
Blockstack is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with Blockstack. If not, see <http://www.gnu.org/licenses/>.
"""
import sqlite3
import base64, copy, re, binascii
from itertools import izip
import hashlib
import keylib
import jsonschema
import virtualchain
import blockstack_zones
from virtualchain import bitcoin_blockchain
from .config import BLOCKSTACK_TESTNET, BLOCKSTACK_TEST, BLOCKSTACK_DEBUG, get_blockstack_opts, is_atlas_enabled, is_subdomains_enabled
from .atlas import atlasdb_open, atlasdb_get_zonefiles_by_block, atlasdb_get_zonefiles_by_name, atlas_node_add_callback, atlasdb_query_execute, atlasdb_get_zonefiles_by_hash
from .storage import get_atlas_zonefile_data, get_zonefile_data_hash, store_atlas_zonefile_data
from .scripts import is_name_valid, is_address_subdomain, is_subdomain
from .schemas import *
from .util import db_query_execute
from .queue import *
log = virtualchain.get_logger('blockstack-subdomains')
# names of subdomain record fields
SUBDOMAIN_ZF_PARTS = "parts"
SUBDOMAIN_ZF_PIECE = "zf%d"
SUBDOMAIN_SIG = "sig"
SUBDOMAIN_PUBKEY = "owner"
SUBDOMAIN_N = "seqn"
log = virtualchain.get_logger()
SUBDOMAINS_FIRST_BLOCK = 478872
class DomainNotOwned(Exception):
"""
Exception thrown when the stem name is not found
"""
pass
class SubdomainNotFound(Exception):
"""
Exception thrown when the subdomain is not found
"""
pass
class SubdomainAlreadyExists(Exception):
"""
Exception thrown when a subdomain already exists, but
we tried to add it again
"""
def __init__(self, subdomain, domain):
self.subdomain = subdomain
self.domain = domain
super(SubdomainAlreadyExists, self).__init__(
"Subdomain already exists: {}.{}".format(subdomain, domain))
class ParseError(Exception):
"""
Subdomain parse error
"""
pass
class Subdomain(object):
"""
Subdomain entry
"""
def __init__(self, fqn, domain, address, n, zonefile_str, sig, block_height, zonefile_index, txid):
"""
@fqn: fully-qualified subdomain name
@domain: the stem name at which this subdomain record was found
@address: the base58check-encoded owner of this subdomain
@n: the sequence number, which increments each time the subdomain changes
@zonefile_str: the zone file data for this subdomain
@sig: signature over the subdomain entry
"""
is_subdomain, subd, _ = is_address_subdomain(fqn)
assert is_subdomain, 'Not a fully-qualified subdomain name: {}'.format(fqn)
self.subdomain = subd # the leaf name
self.fqn = fqn # fully-qualified name
self.domain = domain # domain name of the zone file that carried this record (not necessarily the stem of fqn)
self.address = address # owner address
self.n = n # update sequence number (0 for creation, 1+ for update)
self.zonefile_str = zonefile_str # zonefile payload for this record
self.sig = sig # signature (base64-encoded scripsig)
# pertinent information discovered when querying for subdomains
self.block_height = block_height
self.zonefile_index = zonefile_index
self.txid = txid
self.independent = False # indicates whether or not this record is independent of its domain (i.e. a.b.id is independent of c.id, but not b.id)
if not fqn.endswith('.' + domain):
self.independent = True
def get_fqn(self):
"""
Get fuly-qualified name
"""
return self.fqn
def get_domain(self):
"""
Get the domain name that processed this subdomain record
"""
return self.domain
def pack_subdomain(self):
"""
Pack all of the data for this subdomain into a list of strings.
The list of strings will be given in the order in which they should be signed.
That is: NAME, ADDR, N, NUM_ZF_PARTS ZF_PARTS, IN_ORDER_PIECES, (? SIG)
"""
output = []
# name (only fully-qualified if independent of the domain name)
if self.independent:
output.append(self.fqn)
else:
_, subdomain_name, _ = is_address_subdomain(self.fqn)
output.append(subdomain_name)
# address
output.append(txt_encode_key_value(SUBDOMAIN_PUBKEY, self.address))
# sequence number
output.append(txt_encode_key_value(SUBDOMAIN_N, "{}".format(self.n)))
# subdomain zone file data, broken into 255-character base64 strings.
# let's pack into 250 byte strings -- the entry "zf99=" eliminates 5 useful bytes,
# and the max is 255.
encoded_zf = base64.b64encode(self.zonefile_str)
n_pieces = (len(encoded_zf) / 250) + 1
if len(encoded_zf) % 250 == 0:
n_pieces -= 1
# number of pieces
output.append(txt_encode_key_value(SUBDOMAIN_ZF_PARTS, "{}".format(n_pieces)))
for i in range(n_pieces):
start = i * 250
piece_len = min(250, len(encoded_zf[start:]))
assert piece_len != 0
piece = encoded_zf[start:(start+piece_len)]
# next piece
output.append(txt_encode_key_value(SUBDOMAIN_ZF_PIECE % i, piece))
# signature (optional)
if self.sig is not None:
output.append(txt_encode_key_value(SUBDOMAIN_SIG, self.sig))
return output
def verify_signature(self, addr):
"""
Given an address, verify whether or not it was signed by it
"""
return verify(virtualchain.address_reencode(addr), self.get_plaintext_to_sign(), self.sig)
def get_plaintext_to_sign(self):
"""
Get back the plaintext that will be signed.
It is derived from the serialized zone file strings,
but encoded as a single string (omitting the signature field,
if already given)
"""
as_strings = self.pack_subdomain()
if self.sig is not None:
# don't sign the signature
as_strings = as_strings[:-1]
return ",".join(as_strings)
def serialize_to_txt(self):
"""
Serialize this subdomain record to a TXT record. The trailing newline will be omitted
"""
txtrec = {
'name': self.fqn if self.independent else self.subdomain,
'txt': self.pack_subdomain()[1:]
}
return blockstack_zones.record_processors.process_txt([txtrec], '{txt}').strip()
def to_json(self):
"""
Serialize to JSON, which can be returned e.g. via RPC
"""
ret = {
'address': self.address,
'domain': self.domain,
'block_number': self.block_height,
'sequence': self.n,
'txid': self.txid,
'value_hash': get_zonefile_data_hash(self.zonefile_str),
'zonefile': base64.b64encode(self.zonefile_str),
}
return ret
@staticmethod
def parse_subdomain_record(domain_name, rec, block_height, zonefile_index, txid):
"""
Parse a subdomain record, and verify its signature.
@domain_name: the stem name
@rec: the parsed zone file, with 'txt' records
Returns a Subdomain object on success
Raises an exception on parse error
"""
# sanity check: need 'txt' record list
txt_entry = rec['txt']
if not isinstance(txt_entry, list):
raise ParseError("Tried to parse a TXT record with only a single <character-string>")
entries = {} # parts of the subdomain record
for item in txt_entry:
# coerce unicode
if isinstance(item, unicode):
item = str(item)
key, value = item.split('=', 1)
value = value.replace('\\=', '=') # escape '='
if key in entries:
raise ParseError("Duplicate TXT entry '{}'".format(key))
entries[key] = value
# verify signature
pubkey = entries[SUBDOMAIN_PUBKEY]
n = entries[SUBDOMAIN_N]
if SUBDOMAIN_SIG in entries:
sig = entries[SUBDOMAIN_SIG]
else:
sig = None
try:
zonefile_parts = int(entries[SUBDOMAIN_ZF_PARTS])
except ValueError:
raise ParseError("Not an int (SUBDOMAIN_ZF_PARTS)")
try:
n = int(n)
except ValueError:
raise ParseError("Not an int (SUBDOMAIN_N)")
b64_zonefile = "".join([entries[SUBDOMAIN_ZF_PIECE % zf_index] for zf_index in range(zonefile_parts)])
is_subdomain, _, _ = is_address_subdomain(rec['name'])
subd_name = None
if not is_subdomain:
# not a fully-qualified subdomain, which means it ends with this domain name
try:
assert is_name_valid(str(domain_name)), domain_name
subd_name = str(rec['name'] + '.' + domain_name)
assert is_address_subdomain(subd_name)[0]
except AssertionError as ae:
if BLOCKSTACK_DEBUG:
log.exception(ae)
raise ParserError("Invalid names: {}".format(ae))
else:
# already fully-qualified
subd_name = rec['name']
return Subdomain(str(subd_name), str(domain_name), str(pubkey), int(n), base64.b64decode(b64_zonefile), str(sig), block_height, zonefile_index, txid)
def __repr__(self):
return 'Subdomain({})'.format(self.get_plaintext_to_sign() + ',sig={}'.format(self.sig))
class SubdomainIndex(object):
"""
Process zone files as they arrive for subdomain state, and as instructed by an external caller.
"""
def __init__(self, working_dir, subdomain_db_path):
blockstack_opts = get_blockstack_opts()
assert is_atlas_enabled(blockstack_opts), 'Cannot start subdomain indexer since Atlas is disabled'
self.subdomain_db_path = subdomain_db_path
self.subdomain_db = SubdomainDB(subdomain_db_path, blockstack_opts['zonefiles'])
self.working_dir = working_dir
self.atlasdb_path = blockstack_opts['atlasdb_path']
self.zonefiles_dir = blockstack_opts['zonefiles']
log.debug("SubdomainIndex: working_dir={}, db={}, atlasdb={}, zonefiles={}".format(working_dir, subdomain_db_path, self.atlasdb_path, self.zonefiles_dir))
@classmethod
def check_subdomain_transition(cls, existing_subrec, new_subrec):
"""
Given an existing subdomain record and a (newly-discovered) new subdomain record,
determine if we can use the new subdomain record (i.e. is its signature valid? is it in the right sequence?)
Return True if so
Return False if not
"""
if existing_subrec.get_fqn() != new_subrec.get_fqn():
log.warn("Failed subdomain {} transition because fqn changed to {}".format(existing_subrec.get_fqn(), new_subrec.get_fqn()))
return False
if existing_subrec.n + 1 != new_subrec.n:
log.warn("Failed subdomain {} transition because of N:{}->{}".format(new_subrec.get_fqn(), existing_subrec.n + 1, new_subrec.n))
return False
if not new_subrec.verify_signature(existing_subrec.address):
log.warn("Failed subdomain {} transition because of signature failure".format(new_subrec.get_fqn()))
return False
return True
@classmethod
def check_initial_subdomain(cls, subdomain_rec):
"""
Verify that a first-ever subdomain record is well-formed.
* n must be 0
* the subdomain must not be independent of its domain
"""
if subdomain_rec.n != 0:
log.warn("Failed initial subdomain {} because N != 0 (got {})".format(subdomain_rec.get_fqn(), subdomain_rec.n))
return False
if subdomain_rec.independent:
log.warn('Failed initial subdomain {} because it is independent of its domain name {}'.format(subdomain_rec.get_fqn(), subdomain_rec.get_domain()))
return False
return True
def find_zonefile_subdomains(self, block_start, block_end, name=None):
"""
Find the sequence of subdomain operations over a block range (block_end is excluded).
Does not check for validity or signature matches; only that they are well-formed.
Optionally only finds zone file updates for a specific name
Returns a list of {'name':.., 'zonefile_hash':..., 'block_height':..., 'txid':..., 'subdomains': [...] or None}, in blockchain order
'subdomains' will map to a list if we had the zone file and were able to parse it.
'subdomains' will map to None if we did not have the zone file, period (means we can't process anything for the given name beyond this point)
"""
assert block_start < block_end
subdomain_info = []
offset = 0
count = 100
con = atlasdb_open(self.atlasdb_path)
while True:
# NOTE: filtered on name too
range_subdomain_info = atlasdb_get_zonefiles_by_block(block_start, block_end-1, offset, count, name=name, con=con)
if len(range_subdomain_info) == 0:
break
offset += count
subdomain_info += range_subdomain_info
con.close()
log.debug("Found {} zonefile hashes between {} and {} for {}".format(len(subdomain_info), block_start, block_end, '"{}"'.format(name) if name is not None else 'all names'))
# extract sequence of subdomain operations for each zone file discovered
for i, sdinfo in enumerate(subdomain_info):
# find and parse zone file data
sddata = get_atlas_zonefile_data(sdinfo['zonefile_hash'], self.zonefiles_dir)
if sddata is None:
# no zone file
log.debug("Missing zonefile {} (at {})".format(sdinfo['zonefile_hash'], sdinfo['block_height']))
subdomain_info[i]['subdomains'] = None
continue
subdomains = decode_zonefile_subdomains(sdinfo['name'], sddata, sdinfo['block_height'], sdinfo['inv_index'], sdinfo['txid'])
if subdomains is None:
# have zone file, but no subdomains
subdomains = []
log.debug("Found {} subdomain record(s) for '{}' in zonefile {} at {}".format(len(subdomains), sdinfo['name'], sdinfo['zonefile_hash'], sdinfo['block_height']))
subdomain_info[i]['subdomains'] = subdomains
return subdomain_info
@classmethod
def create_subdomains(cls, new_subdomains, atlasdb_path):
"""
Given a dict of {'fqn': subdomain_rec} for subdomains that do not exist in the subdomain db,
verify that we can create them.
* they must pass the check-initial-subomain test
* all zonefiles for this subdomain's initial domain prior to the one that created it must be present
(i.e. in order to prove the absence of a prior initial subdomain record for a given subdomain)
Returns a subset of new_subdomains that can be created, as a {'fqn': subdomain_rec} dict
"""
# find the set of names to query
domains = []
max_zonefile_indexes = {} # optimization: map domain name to maximum zone file index to query
domain_zonefiles = {} # map domain name to zone file info
# remove non-wellformed subdomains. We only accept initial subdomains.
new_subdomains = dict([(fqn, new_subdomains[fqn]) for fqn in filter(lambda x: cls.check_initial_subdomain(new_subdomains[x]), new_subdomains)])
# find the set of domains these subdomains represent.
# also, find the maximum zone file index for each domain (as a query optimization, so we don't do a full db scan).
for new_fqn in new_subdomains:
new_subrec = new_subdomains[new_fqn]
domain = new_subrec.get_domain()
domains.append(domain)
if domain not in max_zonefile_indexes:
max_zonefile_indexes[domain] = new_subrec.zonefile_index
else:
max_zonefile_indexes[domain] = max(new_subrec.zonefile_index, max_zonefile_indexes[domain])
domains = list(set(domains))
# get the set of zone file hashes (and present/absent status) from atlas for each domain
atlasdb_con = atlasdb_open(atlasdb_path)
cur = atlasdb_con.cursor()
# get the zonefile history for each domain. We'll use this to check that the domain has all zone files present.
# do all the reads in one transaction.
atlasdb_query_execute(cur, 'BEGIN', ())
for domain in domains:
zfinfos = atlasdb_get_zonefiles_by_name(domain, max_index=max_zonefile_indexes[domain], path=atlasdb_path)
domain_zonefiles[domain] = zfinfos
atlasdb_query_execute(cur, 'END', ())
accepted_subdomains = {}
for new_fqn in new_subdomains:
assert new_fqn not in accepted_subdomains, 'BUG: multiple entries for {}'.format(new_subrec.get_fqn())
# do not accept a new subdomain if its stem name is missing any prior zone files
new_subrec = new_subdomains[new_fqn]
domain = new_subrec.get_domain()
zfinfos = domain_zonefiles[domain]
missing = False
for zfinfo in zfinfos:
if not zfinfo['present'] and zfinfo['inv_index'] < new_subrec.zonefile_index:
log.warning("Name '{}' is missing zone file {} (from block {}). Will not create subdomain '{}'".format(domain, zfinfo['zonefile_hash'], zfinfo['block_height'], new_fqn))
missing = True
if missing:
# cannot create subdomain, since another creation could have happened earlier
continue
log.debug("Create subdomain '{}' owned by {} from zonefile {} at block {}".format(new_fqn, new_subrec.address, zfinfo['zonefile_hash'], zfinfo['block_height']))
accepted_subdomains[new_fqn] = new_subrec
return accepted_subdomains
@classmethod
def update_subdomains(cls, current_state, state_transitions):
"""
Given a dict of current subdomain state, a dict of lists of state-transitions on those subdomains (in order),
calculate the valid sequence of subdomain updates for each name
Returns a dict of {fqn: [Subdomain states]}
"""
final_state = {}
# apply all state-transitions
for cur_fqn in current_state:
cur_subrec = current_state[cur_fqn]
if cur_subrec is None:
# indicates that while we don't have a subdomain record for this name yet,
# we cannot create or act on one since we're missing some intermediate zone file
# for its stem name.
continue
states = [cur_subrec]
if cur_fqn in state_transitions:
# apply all state-transitions to this subdomain.
# stop when we run out, or hit an invalid one.
for next_subrec in state_transitions[cur_fqn]:
# check validity
valid = cls.check_subdomain_transition(cur_subrec, next_subrec)
if not valid:
# can't apply this state-transition
continue
# success!
log.debug("Update subdomain '{}' owned by {} sequence {} from zonefile index {} (block {})".format(cur_fqn, next_subrec.address, next_subrec.n, next_subrec.zonefile_index, next_subrec.block_height))
states.append(next_subrec)
cur_subrec = next_subrec
# final state
final_state[cur_fqn] = states
return final_state
def process_subdomains(self, zonefile_subdomain_info):
"""
Takes the output of find_zonefile_subdomains, and processes the sequence of subdomain operations.
Does state-transitions in a big step:
* loads the current subdomain state for each subdomain affected in @zonefile_subdomain_info
* computes and executes all valid subdomain creations and subdomain state-transitions on each
affected subdomain, in blockchain-given and zonefile-given order.
* stores the resulting subdomain state for each affected subdomain to the subdomain DB
Returns the set of zone file hashes consumed.
WARNING: NOT THREAD SAFE. DO NOT CALL FROM MULTIPLE THREADS
"""
# load the current state of the world for the given set of names.
# do so in a transaction
current_state = {} # maps fully-qualified names to its current subdomain record (None if no record exists yet)
new_subdomains = {} # maps fully-qualified names onto a subdomain-creation
state_transitions = {} # maps fully-qualified names to their list of new subdomain records
final_state = {} # maps fully-qualified names to final subdomain state
cur = self.subdomain_db.cursor()
# get all existing subdomains
db_query_execute(cur, "BEGIN", ())
for subinfo in zonefile_subdomain_info:
# do we have subdomain info?
if subinfo['subdomains'] is None:
continue
# build up the set of current subdomain records and
# lists of subdomain state-transitions for each fqn
for subrec in subinfo['subdomains']:
fqn = subrec.get_fqn()
if fqn not in current_state:
try:
existing_subrec = self.subdomain_db.get_subdomain_entry(fqn, cur=cur)
current_state[fqn] = existing_subrec
except SubdomainNotFound:
current_state[fqn] = None
# will create this subdomain
if self.check_initial_subdomain(subrec):
new_subdomains[fqn] = subrec
if current_state[fqn] is not None or (fqn in new_subdomains and new_subdomains[fqn] != subrec):
# subdomain already exists; add state transition on it.
if fqn not in state_transitions:
state_transitions[fqn] = []
state_transitions[fqn].append(subrec)
db_query_execute(cur, 'END', ())
log.debug("current state\n{}".format(current_state))
log.debug("new subdomains\n{}".format(new_subdomains))
log.debug("state transitions\n{}".format(state_transitions))
# get the set of subdomains to create. update current_state to reflect their creation.
new_subdomains = self.create_subdomains(new_subdomains, self.atlasdb_path)
for fqn in new_subdomains:
if current_state[fqn] is None:
current_state[fqn] = new_subdomains[fqn]
else:
log.warning("Skipping {} since it already exists".format(fqn))
# apply all state-transitions
final_state = self.update_subdomains(current_state, state_transitions)
# store all accepted state transitions
db_query_execute(cur, 'BEGIN', ())
for fqn in final_state:
if len(final_state[fqn]) == 0:
continue
# drop the subdomain state after this first state-transition
log.debug("Drop subdomain history for '{}' from sequence {}".format(fqn, final_state[fqn][0].n))
self.subdomain_db.drop_subdomain_history(fqn, final_state[fqn][0].n, cur=cur)
# replay state transitions
for subrec in final_state[fqn]:
log.debug("Commit '{}' sequence {} at block {} (zonefile index {})".format(fqn, subrec.n, subrec.block_height, subrec.zonefile_index))
self.subdomain_db.append_subdomain_entry(fqn, subrec, cur=cur)
db_query_execute(cur, 'END', ())
return final_state
def enqueue_zonefile(self, zonefile_hash, block_height):
"""
Called when we discover a zone file. Queues up a request to reprocess this name's zone files' subdomains.
zonefile_hash is the hash of the zonefile.
block_height is the minimium block height at which this zone file occurs.
This gets called by:
* AtlasZonefileCrawler (as it's "store_zonefile" callback).
* rpc_put_zonefiles()
"""
log.debug("Append {} from {}".format(zonefile_hash, block_height))
queuedb_append(self.subdomain_db_path, "zonefiles", zonefile_hash, json.dumps({'zonefile_hash': zonefile_hash, 'block_height': block_height}))
def index_blockchain(self, block_start, block_end):
"""
Go through the sequence of zone files discovered in a block range, and reindex the names' subdomains.
Returns the list of zone file hashes processed
"""
log.debug("Processing subdomain updates for zonefiles in blocks {}-{}".format(block_start, block_end))
zonefile_subdomain_info = self.find_zonefile_subdomains(block_start, block_end)
self.process_subdomains(zonefile_subdomain_info)
return list(set([zf['zonefile_hash'] for zf in zonefile_subdomain_info]))
def index_discovered_zonefiles(self, lastblock, skip_zonefiles=[]):
"""
Go through the list of zone files we discovered via Atlas, grouped by name and ordered by block height.
Find all subsequent zone files for this name, and process all subdomain operations contained within them.
Optionally skip zone files if they are in skip_zonefiles
"""
zonefile_infos = {} # cached zone file infos
all_queued_zfinfos = [] # contents of the queue
offset = 0
name_blocks = {} # map domain name to the block at which we should reprocess its subsequent zone files
while True:
queued_zfinfos = queuedb_findall(self.subdomain_db_path, "zonefiles", limit=100, offset=offset)
if len(queued_zfinfos) == 0:
# done!
break
offset += 100
all_queued_zfinfos += queued_zfinfos
log.debug("Discovered {} zonefiles".format(len(all_queued_zfinfos)))
for queued_zfinfo in all_queued_zfinfos:
zfinfo = json.loads(queued_zfinfo['data'])
zonefile_hash = zfinfo['zonefile_hash']
block_height = zfinfo['block_height']
if zonefile_hash in skip_zonefiles:
log.debug("Skipping zonefile {}".format(zonefile_hash))
continue
if zonefile_hash not in zonefile_infos:
# find out the names that sent this zone file
zfinfos = atlasdb_get_zonefiles_by_hash(zonefile_hash, block_height=block_height, path=self.atlasdb_path)
if zfinfos is None:
log.warn("Absent zonefile {}".format(zonefile_hash))
continue
zonefile_infos[zonefile_hash] = zfinfos
else:
zfinfos = zonefile_infos[zonefile_hash]
# find out the block height at which this zone file was discovered.
# this is where we'll begin looking for more subdomain updates
for zfi in zfinfos:
if zfi['name'] not in name_blocks:
name_blocks[zfi['name']] = block_height
else:
name_blocks[zfi['name']] = min(block_height, name_blocks[zfi['name']])
for name in name_blocks:
if name_blocks[name] >= lastblock:
continue
log.debug("Processing subdomain updates for {} starting at block {}".format(name, name_blocks[name]))
zonefile_subdomain_info = self.find_zonefile_subdomains(name_blocks[name], lastblock, name=name)
self.process_subdomains(zonefile_subdomain_info)
# clear queue
queuedb_removeall(self.subdomain_db_path, all_queued_zfinfos)
return True
def index(self, block_start, block_end):
"""
Entry point for indexing:
* scan the blockchain from start_block to end_block and make sure we're up-to-date
* process any newly-arrived zone files and re-index the affected subdomains
"""
processed_zonefile_hashes = []
'''
log.debug("BEGIN Processing zonefiles added in the last block")
processed_zonefile_hashes = self.index_blockchain(block_start, block_end)
log.debug("END Processing zonefiles added in the last block")
'''
log.debug("BEGIN Processing zonefiles discovered since last re-indexing")
self.index_discovered_zonefiles(block_end, skip_zonefiles=processed_zonefile_hashes)
log.debug("END Processing zonefiles discovered since last re-indexing")
class SubdomainDB(object):
"""
Subdomain database.
Builds up a DB of subdomain names to their subdomain states as zone file arrive
in the Atlas network
"""
def __init__(self, db_path, zonefiles_dir):
self.db_path = db_path
self.subdomain_table = "subdomain_records"
self.zonefiles_dir = zonefiles_dir
self.conn = sqlite3.connect(db_path, isolation_level=None, timeout=2**30)
self._create_tables()
def cursor(self):
"""
Make and return a cursor
"""
return self.conn.cursor()
def get_subdomain_entry(self, fqn, cur=None):
"""
Given a fully-qualified subdomain, get its (latest) subdomain record.
Raises SubdomainNotFound if there is no such subdomain
"""
get_cmd = "SELECT * FROM {} WHERE fully_qualified_subdomain=? ORDER BY sequence DESC LIMIT 1".format(self.subdomain_table)
cursor = None
if cur is None:
cursor = self.conn.cursor()
else:
cursor = cur
db_query_execute(cursor, get_cmd, (fqn,))
try:
(name, domain, n, encoded_pubkey, zonefile_hash, sig, block_height, zonefile_index, txid) = cursor.fetchone()
except:
raise SubdomainNotFound(fqn)
if sig == '':
sig = None
else:
sig = str(sig)
name = str(name)
is_subdomain, _, _ = is_address_subdomain(name)
if not is_subdomain:
raise Exception("Subdomain DB lookup returned bad subdomain result {}".format(name))
zonefile_str = get_atlas_zonefile_data(zonefile_hash, self.zonefiles_dir)
if zonefile_str is None:
raise SubdomainNotFound('{}: missing zone file {}'.format(fqn, zonefile_hash))
return Subdomain(str(fqn), str(domain), str(encoded_pubkey), int(n), str(zonefile_str), sig, block_height, zonefile_index, txid)
def get_subdomains_owned_by_address(self, owner, cur=None):
"""
Get the list of subdomain names that are owned by a given address.
"""
get_cmd = "SELECT fully_qualified_subdomain, MAX(sequence) FROM {} WHERE owner = ? GROUP BY fully_qualified_subdomain".format(self.subdomain_table)
cursor = None
if cur is None:
cursor = self.conn.cursor()
else:
cursor = cur
db_query_execute(cursor, get_cmd, (owner,))
try:
return [ x[0] for x in cursor.fetchall() ]
except Exception as e:
if BLOCKSTACK_DEBUG:
log.exception(e)
return []
def get_domain_lastblock(self, domain, cur=None):
"""
Get the last block height at which we accepted a subdomain entry for this domain.
"""
sql = 'SELECT block_height FROM {} WHERE domain = ? ORDER BY block_height DESC LIMIT 1;'.format(self.subdomain_table)
cursor = None
if cur is None:
cursor = self.conn.cursor()
else:
cursor = cur
db_query_execute(cursor, sql, (domain,))
for row in cursor:
return int(row['block_height'])
return None
def get_subdomain_history(self, fqn, offset=None, count=None, cur=None):
"""
Get the subdomain's history over a block range.
No zone files will be loaded.
Returns {block_height: [subdomain_recs]} ordered in blockchain order
"""
sql = 'SELECT * FROM {} WHERE fully_qualified_subdomain = ? ORDER BY zonefile_index'.format(self.subdomain_table)
args = (fqn,)
if offset is not None:
sql += ' OFFSET ?'
args += (offset,)
if count is not None:
sql += ' LIMIT ?'
args += (count,)
if cur is None:
cursor = self.conn.cursor()
else:
cursor = cur
rows = db_query_execute(cursor, sql, args)
rows = []
for rowdata in rows:
name, domain, n, encoded_pubkey, zonefile_hash, sig, block_height, zonefile_index, txid = rowdata
rows.append({
'address': encoded_pubkey,
'domain': domain,
'block_number': block_number,
'sequence': n,
'txid': txid,
'value_hash': zonefile_hash,
})
if cur is None:
cursor.close()
ret = {}
for row in rows:
if row['block_number'] not in ret:
ret[row['block_number']] = []
ret[row['block_number']].append(row)
return ret
def append_subdomain_entry(self, fqn, subdomain_obj, cur=None):
"""
Append new subdomain state for this fully-qualified name.
Does NOT verify the signature; assumes that it is vald.
Return True on success
Raise an exception on failure
"""
# sanity checks
assert isinstance(subdomain_obj, Subdomain)
assert fqn == subdomain_obj.fqn
is_subdomain, subdomain_name, domain_name = is_address_subdomain(fqn)
if not is_subdomain:
raise ValueError("Must give fully qualified name: given: {}".format(fqn))
zonefile_hash = get_zonefile_data_hash(subdomain_obj.zonefile_str)
rc = store_atlas_zonefile_data(subdomain_obj.zonefile_str, self.zonefiles_dir)
if not rc:
raise Exception("Failed to store zone file {} from {}".format(zonefile_hash, subdomain_obj.get_fqn()))
write_cmd = 'INSERT OR REPLACE INTO {} VALUES (?,?,?,?,?,?,?,?,?)'.format(self.subdomain_table)
args = (fqn, subdomain_obj.domain, subdomain_obj.n, subdomain_obj.address, zonefile_hash, subdomain_obj.sig, subdomain_obj.block_height, subdomain_obj.zonefile_index, subdomain_obj.txid)
cursor = None
if cur is None:
cursor = self.conn.cursor()
else:
cursor = cur
db_query_execute(cursor, write_cmd, args)
num_rows_written = cursor.rowcount
if cur is None:
# not part of a transaction
self.conn.commit()
if num_rows_written != 1:
raise ValueError("No row written: fqn={} seq={}".format(fqn, subdomain_obj.n))
return True
def drop_subdomain_history(self, fqn, sequence, cur=None):
"""
Remove all subdomain history entries with this sequence number or higher.
"""
is_subdomain, _, _ = is_address_subdomain(fqn)
if not is_subdomain:
raise ValueError("Not a valid subdomain: {}".format(fqn))
sql = 'DELETE FROM {} WHERE fully_qualified_subdomain = ? AND sequence >= ?;'.format(self.subdomain_table)
args = (fqn, sequence)
cursor = None
if cur is None:
cursor = self.conn.cursor()
else:
cursor = cur
db_query_execute(cursor, sql, args)
if cur is None:
# not part of a transaction
self.conn.commit()
return True
def _drop_tables(self):
"""
Clear the subdomain db's tables
"""
drop_cmd = "DROP TABLE IF EXISTS {};"
cursor = self.conn.cursor()
db_query_execute(cur, drop_cmd.format(self.subdomain_table), ())
def _create_tables(self):
"""
Set up the subdomain db's tables
"""
create_cmd = """CREATE TABLE IF NOT EXISTS {} (
fully_qualified_subdomain TEXT PRIMARY KEY,
domain TEXT NOT NULL,
sequence INTEGER NOT NULL,
owner TEXT NOT NULL,
zonefile_hash TEXT,
signature TEXT,
block_height INTEGER NOT NULL,
zonefile_index INTEGER NOT NULL,
txid TEXT NOT NULL);
""".format(self.subdomain_table)
cursor = self.conn.cursor()
db_query_execute(cursor, create_cmd, ())
# set up a queue as well
queue_con = queuedb_open(self.db_path)
queue_con.close()
def decode_zonefile_subdomains(domain, zonefile_txt, block_height, zonefile_index, txid):
"""
Decode a serialized zone file into a zonefile structure that could contain subdomain info.
Ignore duplicate subdomains. The subdomain with the lower sequence number will be accepted.
In the event of a tie, the *first* subdomain will be accepted
Returns the list of subdomain operations, as Subdomain objects (optionally empty), in the order they appeared in the zone file
Returns None if this zone file could not be decoded
"""
try:
# by default, it's a zonefile-formatted text file
zonefile_defaultdict = blockstack_zones.parse_zone_file(zonefile_txt)
zonefile_json = dict(zonefile_defaultdict)
try:
# zonefiles with subdomains have TXT records and URI records
jsonschema.validate(zonefile_json, USER_ZONEFILE_SCHEMA)
except Exception as e:
if BLOCKSTACK_DEBUG:
log.exception(e)
raise ValueError("Not a user zone file")
assert zonefile_json['$origin'] == domain, 'Zonefile does not contain $ORIGIN == {}'.format(domain)
subdomains = {} # map fully-qualified name to subdomain record with lowest sequence number
subdomain_pos = {} # map fully-qualified name to position in zone file
if "txt" in zonefile_json:
for i, txt in enumerate(zonefile_json['txt']):
if not is_subdomain_record(txt):
continue
try:
subrec = Subdomain.parse_subdomain_record(domain, txt, block_height, zonefile_index, txid)
except ParseError as pe:
if BLOCKSTACK_DEBUG:
log.exception(pe)
log.warn("Invalid subdomain record at position {}".format(i))
continue
if subrec.get_fqn() in subdomains:
if subdomains[subrec.get_fqn()].n > subrec.n:
# replace
subdomains[subrec.get_fqn()] = subrec
subdomain_pos[subrec.get_fqn()] = i
else:
log.warn("Ignoring subdomain record '{}' with higher sequence".format(subrec.get_fqn()))
else:
# new
subdomains[subrec.get_fqn()] = subrec
subdomain_pos[subrec.get_fqn()] = i
subdomain_list = [subdomains[fqn] for fqn in subdomains]
subdomain_list.sort(cmp=lambda subrec1, subrec2: -1 if subdomain_pos[subrec1.get_fqn()] < subdomain_pos[subrec2.get_fqn()] else 0 if subdomain_pos[subrec1.get_fqn()] == subdomain_pos[subrec2.get_fqn()] else 1)
return subdomain_list
except Exception as e:
if BLOCKSTACK_TEST or BLOCKSTACK_DEBUG:
log.exception(e)
return None
##
# Aaron: what follows is verification and signing code for subdomains.
# because subdomains are ownable by either a single-sig *address* or
# a multi-sig *address*, the sign/verify process has to be 'bitcoin-like'
# the data to be verified is hashed, and then verified using one of two
# processes:
#
# multi-sig: parse b64 signature blob as a scriptSig, parse out the
# redeem script portion and sigs, verify with OPCHECKMULTISIG
# verify redeem script matches owner address.
# single-sig: parse b64 signature blob as a scriptSig, parse out the
# pubkey and sig, verify like OPCHECKSIG.
# verify pubkey matches owner address.
##
def verify(address, plaintext, scriptSigb64):
"""
Verify that a given plaintext is signed by the given scriptSig, given the address
"""
assert isinstance(address, str)
assert isinstance(scriptSigb64, str)
scriptSig = base64.b64decode(scriptSigb64)
hash_hex = hashlib.sha256(plaintext).hexdigest()
vb = keylib.b58check.b58check_version_byte(address)
if vb == bitcoin_blockchain.version_byte:
return verify_singlesig(address, hash_hex, scriptSig)
elif vb == bitcoin_blockchain.multisig_version_byte:
return verify_multisig(address, hash_hex, scriptSig)
else:
log.warning("Unrecognized address version byte {}".format(vb))
raise NotImplementedError("Addresses must be single-sig (version-byte = 0) or multi-sig (version-byte = 5)")
def verify_singlesig(address, hash_hex, scriptSig):
"""
Verify that a p2pkh address is signed by the given pay-to-pubkey-hash scriptsig
"""
try:
sighex, pubkey_hex = virtualchain.btc_script_deserialize(scriptSig)
except:
log.warn("Wrong signature structure for {}".format(address))
return False
# verify pubkey_hex corresponds to address
if virtualchain.address_reencode(keylib.public_key_to_address(pubkey_hex)) != virtualchain.address_reencode(address):
log.warn(("Address {} does not match signature script {}".format(address, scriptSig.encode('hex'))))
return False
sig64 = base64.b64encode(binascii.unhexlify(sighex))
return virtualchain.ecdsalib.verify_digest(hash_hex, pubkey_hex, sig64)
def verify_multisig(address, hash_hex, scriptSig):
"""
verify that a p2sh address is signed by the given scriptsig
"""
script_parts = virtualchain.btc_script_deserialize(scriptSig)
if len(script_parts) < 2:
log.warn("Verfiying multisig failed, couldn't grab script parts")
return False
redeem_script = script_parts[-1]
script_sigs = script_parts[1:-1]
if virtualchain.address_reencode(virtualchain.btc_make_p2sh_address(redeem_script)) != virtualchain.address_reencode(address):
log.warn(("Address {} does not match redeem script {}".format(address, redeem_script)))
return False
m, pubk_hexes = virtualchain.parse_multisig_redeemscript(redeem_script)
if len(script_sigs) != m:
log.warn("Failed to validate multi-sig, not correct number of signatures: have {}, require {}".format(
len(script_sigs), m))
return False
cur_pubk = 0
for cur_sig in script_sigs:
sig64 = base64.b64encode(binascii.unhexlify(cur_sig))
sig_passed = False
while not sig_passed:
if cur_pubk >= len(pubk_hexes):
log.warn("Failed to validate multi-signature, ran out of public keys to check")
return False
sig_passed = virtualchain.ecdsalib.verify_digest(hash_hex, pubk_hexes[cur_pubk], sig64)
cur_pubk += 1
return True
def txt_encode_key_value(key, value):
"""
Encode a key=value string, where value's '=''s are escaped
"""
return "{}={}".format(key, value.replace("=", "\\="))
def is_subdomain_record(rec):
"""
Does a given parsed zone file (@rec) encode a subdomain?
Return True if so
Return False if not
"""
txt_entry = rec['txt']
if not isinstance(txt_entry, list):
return False
has_parts_entry = False
has_pk_entry = False
has_seqn_entry = False
for entry in txt_entry:
if entry.startswith(SUBDOMAIN_ZF_PARTS + "="):
has_parts_entry = True
if entry.startswith(SUBDOMAIN_PUBKEY + "="):
has_pk_entry = True
if entry.startswith(SUBDOMAIN_N + "="):
has_seqn_entry = True
return (has_parts_entry and has_pk_entry and has_seqn_entry)
def get_subdomain_info(fqn, db_path=None, zonefiles_dir=None):
"""
Static method for getting the state of a subdomain, given its fully-qualified name
"""
opts = get_blockstack_opts()
if not is_subdomains_enabled(opts):
return []
if db_path is None:
db_path = opts['subdomaindb_path']
if zonefiles_dir is None:
zonefiles_dir = opts['zonefiles']
db = SubdomainDB(db_path, zonefiles_dir)
return db.get_subdomain_entry(fqn)
def get_subdomain_history(fqn, db_path=None, zonefiles_dir=None):
"""
Static method for getting all historic operations on a subdomain
"""
opts = get_blockstack_opts()
if not is_subdomains_enabled(opts):
return []
if db_path is None:
db_path = opts['subdomaindb_path']
if zonefiles_dir is None:
zonefiles_dir = opts['zonefiles']
db = SubdomainDB(db_path, zonefiles_dir)
return db.get_subdomain_history(fqn)
def get_subdomains_owned_by_address(address, db_path=None, zonefiles_dir=None):
"""
Static method for getting the list of subdomains for a given address
"""
opts = get_blockstack_opts()
if not is_subdomains_enabled(opts):
return []
if db_path is None:
db_path = opts['subdomaindb_path']
if zonefiles_dir is None:
zonefiles_dir = opts['zonefiles']
db = SubdomainDB(db_path, zonefiles_dir)
return db.get_subdomains_owned_by_address(address)
def make_subdomain_txt(name_or_fqn, domain, address, n, zonefile_str, privkey_bundle):
"""
Make a signed subdomain TXT record, to be appended to a (domain's) zone file.
Return the TXT record string
"""
subrec = Subdomain(str(name_or_fqn), str(domain), str(address), int(n), str(zonefile_str), None, None, None, None)
subrec_plaintext = subrec.get_plaintext_to_sign()
sig = sign(privkey_bundle, subrec_plaintext)
subrec = Subdomain(str(name_or_fqn), str(domain), str(address), int(n), str(zonefile_str), str(sig), None, None, None)
return subrec.serialize_to_txt()
def sign(privkey_bundle, plaintext):
"""
Sign a subdomain plaintext with a private key bundle
Returns the base64-encoded scriptsig
"""
if virtualchain.is_singlesig(privkey_bundle):
return sign_singlesig(privkey_bundle, plaintext)
elif virtualchain.is_multisig(privkey_bundle):
return sign_multisig(privkey_bundle, plaintext)
else:
raise ValueError("private key bundle is neither a singlesig nor multisig bundle")
def sign_singlesig(privkey_hex, plaintext):
"""
Sign a subdomain record's plaintext with a private key.
Return a bitcoin-compatible scriptSig, base64-encoded, that encodes the [signature, public-key] data
"""
hash_hex = hashlib.sha256(plaintext).hexdigest()
b64sig = virtualchain.ecdsalib.sign_digest(hash_hex, privkey_hex)
sighex = binascii.hexlify(base64.b64decode(b64sig))
pubkey_hex = virtualchain.ecdsalib.ecdsa_private_key(privkey_hex).public_key().to_hex()
return base64.b64encode(virtualchain.btc_script_serialize([sighex, pubkey_hex]).decode('hex'))
def sign_multisig(privkey_bundle, plaintext):
"""
Sign a subdomain record's plaintext with a multisig key bundle.
This returns a bitcoin-compatible multisig scriptSig, base64-encoded, that encodes the [OP_0, m, [signatures], [public_keys], n, OP_CHECKMULTISIG] script
"""
hash_hex = hashlib.sha256(plaintext).hexdigest()
redeem_script = privkey_bundle['redeem_script']
secret_keys = privkey_bundle['private_keys']
assert len(redeem_script) > 0
m, pubk_hexes = virtualchain.parse_multisig_redeemscript(redeem_script)
privs = {}
for sk in secret_keys:
pubk = virtualchain.ecdsalib.ecdsa_private_key(sk).public_key().to_hex()
compressed_pubkey = keylib.key_formatting.compress(pubk)
uncompressed_pubkey = keylib.key_formatting.decompress(pubk)
privs[compressed_pubkey] = sk
privs[uncompressed_pubkey] = sk
used_keys, sigs = [], []
for pubk in pubk_hexes:
if pubk not in privs:
continue
if len(used_keys) == m:
break
assert pubk not in used_keys, 'Tried to reuse key {}'.format(pubk)
sk_hex = privs[pubk]
used_keys.append(pubk)
b64sig = virtualchain.ecdsalib.sign_digest(hash_hex, sk_hex)
sighex = base64.b64decode(b64sig).encode('hex')
sigs.append(sighex)
assert len(used_keys) == m, 'Missing private keys (used {}, required {})'.format(len(used_keys), m)
return base64.b64encode(virtualchain.btc_script_serialize([None] + sigs + [redeem_script]).decode('hex'))
def subdomains_init(blockstack_opts, working_dir, atlas_state):
"""
Set up subdomain state
"""
if not is_subdomains_enabled(blockstack_opts):
return None
subdomain_state = SubdomainIndex(working_dir, blockstack_opts['subdomaindb_path'])
atlas_node_add_callback(atlas_state, 'store_zonefile', subdomain_state.enqueue_zonefile)
return subdomain_state
if __name__ == "__main__":
# basic unit tests on creating and extracting zone files
singlesig = virtualchain.ecdsalib.ecdsa_private_key().to_hex()
singlesig_addr = virtualchain.get_privkey_address(singlesig)
multisig = bitcoin_blockchain.multisig.make_multisig_wallet(2,3)
zf_template = "$ORIGIN {}\n$TTL 3600\n{}"
zf_default_url = '_https._tcp URI 10 1 "https://raw.githubusercontent.com/nobody/content/profile.md"'
print "----\nsinglesig\n----"
subdomain_txt = make_subdomain_txt('bar.foo.test', 'foo.test', singlesig_addr, 0, zf_template.format('bar.foo.test', zf_default_url), singlesig)
zf = zf_template.format('foo.test', subdomain_txt)
print zf
subdomains = decode_zonefile_subdomains('foo.test', zf, 1234, 5678, '185c112401590b11acdfea6bb26d2a8e37cb31f24a0c89dbb8cc14b3d6271fb1')
assert len(subdomains) == 1, subdomains
subd = subdomains[0]
assert subd.subdomain == 'bar', subd.subdomain
assert subd.domain == 'foo.test', subd.domain
assert subd.fqn == 'bar.foo.test', subd.fqn
assert subd.n == 0
assert subd.block_height == 1234
assert subd.zonefile_index == 5678
assert subd.txid == '185c112401590b11acdfea6bb26d2a8e37cb31f24a0c89dbb8cc14b3d6271fb1'
assert subdomain_txt == subd.serialize_to_txt()
assert subd.verify_signature(singlesig_addr), 'failed to verify'
assert not subd.verify_signature('16EMaNw3pkn3v6f2BgnSSs53zAKH4Q8YJg'), 'verified with wrong key'
print "----\nmultisig\n----"
subdomain_txt = make_subdomain_txt('multisig.foo.test', 'foo.test', multisig['address'], 0, zf_template.format('multisig.foo.test', zf_default_url), multisig)
zf = zf_template.format('foo.test', subdomain_txt)
print zf
subdomains = decode_zonefile_subdomains('foo.test', zf, 1234, 5678, '185c112401590b11acdfea6bb26d2a8e37cb31f24a0c89dbb8cc14b3d6271fb1')
assert len(subdomains) == 1, subdomains
subd = subdomains[0]
assert subd.subdomain == 'multisig', subd.subdomain
assert subd.domain == 'foo.test', subd.domain
assert subd.fqn == 'multisig.foo.test', subd.fqn
assert subd.n == 0
assert subd.block_height == 1234
assert subd.zonefile_index == 5678
assert subd.txid == '185c112401590b11acdfea6bb26d2a8e37cb31f24a0c89dbb8cc14b3d6271fb1'
assert subdomain_txt == subd.serialize_to_txt()
assert subd.verify_signature(multisig['address']), 'failed to verify multisig'
assert not subd.verify_signature('16EMaNw3pkn3v6f2BgnSSs53zAKH4Q8YJg'), 'verified multisig with wrong key'
print "----\nsinglesig independent\n----"
subdomain_txt = make_subdomain_txt('bar.baz.test', 'foo.test', singlesig_addr, 0, zf_template.format('bar.baz.test', zf_default_url), singlesig)
zf = zf_template.format('foo.test', subdomain_txt)
print zf
# simulate zone file update from foo.test with bar.baz.test's info in it
subdomains = decode_zonefile_subdomains('foo.test', zf, 1234, 5678, '185c112401590b11acdfea6bb26d2a8e37cb31f24a0c89dbb8cc14b3d6271fb1')
assert len(subdomains) == 1, subdomains
subd = subdomains[0]
assert subd.subdomain == 'bar', subd.subdomain
assert subd.domain == 'foo.test', subd.domain
assert subd.fqn == 'bar.baz.test', subd.fqn
assert subd.n == 0
assert subd.block_height == 1234
assert subd.zonefile_index == 5678
assert subd.txid == '185c112401590b11acdfea6bb26d2a8e37cb31f24a0c89dbb8cc14b3d6271fb1'
assert subdomain_txt == subd.serialize_to_txt()
assert subd.verify_signature(singlesig_addr), 'failed to verify'
assert not subd.verify_signature('16EMaNw3pkn3v6f2BgnSSs53zAKH4Q8YJg'), 'verified with wrong key'
print "----\nmultisig independent\n----"
subdomain_txt = make_subdomain_txt('bar.baz.test', 'foo.test', multisig['address'], 0, zf_template.format('bar.baz.test', zf_default_url), multisig)
zf = zf_template.format('foo.test', subdomain_txt)
print zf
# simulate zone file update from foo.test with bar.baz.test's info in it
subdomains = decode_zonefile_subdomains('foo.test', zf, 1234, 5678, '185c112401590b11acdfea6bb26d2a8e37cb31f24a0c89dbb8cc14b3d6271fb1')
assert len(subdomains) == 1, subdomains
subd = subdomains[0]
assert subd.subdomain == 'bar', subd.subdomain
assert subd.domain == 'foo.test', subd.domain
assert subd.fqn == 'bar.baz.test', subd.fqn
assert subd.n == 0
assert subd.block_height == 1234
assert subd.zonefile_index == 5678
assert subd.txid == '185c112401590b11acdfea6bb26d2a8e37cb31f24a0c89dbb8cc14b3d6271fb1'
assert subdomain_txt == subd.serialize_to_txt()
assert subd.verify_signature(multisig['address']), 'failed to verify'
assert not subd.verify_signature('16EMaNw3pkn3v6f2BgnSSs53zAKH4Q8YJg'), 'verified with wrong key'
print "----\nmultiple subdomains\n----"
txts = []
for (name, addr, privkey) in zip(['a.foo.test', 'b.foo.test', 'c.baz.test', 'd.baz.test'], [singlesig_addr, multisig['address'], singlesig_addr, multisig['address']], [singlesig, multisig, singlesig, multisig]):
subdomain_txt = make_subdomain_txt(name, 'foo.test', addr, 0, zf_template.format(name, zf_default_url), privkey)
txts.append(subdomain_txt)
zf = zf_template.format('foo.test', '\n'.join(txts))
print zf
subdomains = decode_zonefile_subdomains('foo.test', zf, 1234, 5678, '185c112401590b11acdfea6bb26d2a8e37cb31f24a0c89dbb8cc14b3d6271fb1')
assert len(subdomains) == 4, subdomains
for (name, addr, privkey, subd, txt) in zip(['a.foo.test', 'b.foo.test', 'c.baz.test', 'd.baz.test'], [singlesig_addr, multisig['address'], singlesig_addr, multisig['address']], [singlesig, multisig, singlesig, multisig], subdomains, txts):
assert subd.subdomain == name.split('.')[0], subd.subdomain
assert subd.domain == 'foo.test', subd.domain
assert subd.fqn == name, subd.name
assert subd.n == 0
assert subd.block_height == 1234
assert subd.zonefile_index == 5678
assert subd.txid == '185c112401590b11acdfea6bb26d2a8e37cb31f24a0c89dbb8cc14b3d6271fb1'
assert txt == subd.serialize_to_txt(), 'mismatch\n{}\n{}'.format(txt, subd.serialize_to_txt())
assert subd.verify_signature(addr), 'failed to verify'
assert not subd.verify_signature('16EMaNw3pkn3v6f2BgnSSs53zAKH4Q8YJg'), 'verified with wrong key'
Reference in New Issue View Git Blame Copy Permalink