MASP nullifier uniqueness

[grarco]

Describe your changes

Addresses #1373.

Implements a nullifier set to prevent double spending in masp transactions. Updates the masp VP to check that the transactions writes the correct nullifiers and that these haven't already been revealed.

NOTE: testing this with an integration or e2e test is impossible cause we cannot force the submission of the tx if the builder fails to construct the shielded Transaction. We'd need to test this with a unit test (which I think would be the correct way regardless of the force issue) but at the moment we don't have the tools to write unit tests for the masp vp (at least to my knowledge)

Indicate on which release or other PRs this topic is based on

v0.27.0

Checklist before merging to draft

• I have added a changelog
• Git history is in acceptable state

[murisi]

Do you know why the unit and integration tests are failing in the CI? They seem to be timing out for some reason... Do they pass on your machine? Have you tried regenerating the MASP test fixtures maybe?

[murisi]

I see a bit of duplication in how we update the nullifier set in the transaction codes. But maybe getting rid of it is easier said than done and can be deferred to a later PR?

[grarco]

I've tried to improve the thing with a shared function now

[grarco]

Do you know why the unit and integration tests are failing in the CI? They seem to be timing out for some reason... Do they pass on your machine? Have you tried regenerating the MASP test fixtures maybe?

Both unit and integration tests pass on my machine without the need to rebuild the proofs

[murisi]

Nice. Could you please just check out the serialize_to_vec issue in the comments to see if there is anything to it? And if you get the chance (but it's not strictly necessary), could you please try seeing if moving handle_masp_tx from tx_prelude/src/token.rs into core/src/ledger/masp_utils.rs is trivial or not?

[murisi]

I think this is a bug? We call serialize_to_vec on (Epoch, BlockHeight, TxIndex, Transfer, Transaction) to obtain a Vec<u8>. And then StorageWrite::write itself calls serialize_to_vec again on the Vec<u8> argument it receives producing another Vec<u8>, but this time prefixed with 4 bytes indicating the length of record.serialize_to_vec(). We should probably change this line to self.write(&current_tx_key, record)?; so that we remain compatible with how we write to the same key in /tx_prelude/src/token.rs. No?

[murisi]

Same serialize_to_vec issue as above?

[murisi]

This deduplication will do. But note that the contexts in which masp_utils::reveal_nullifiers is called are essentially identical. So I am wondering if there is a way to reuse handle_masp_tx wholesale? Like can't we move this whole handle_masp_tx function into core/src/ledger/masp_utils.rs and call it like namada_core::ledger::masp_utils::handle_masp_tx(ctx, transfer, shielded) here and namada_core::ledger::masp_utils::handle_masp_tx(self, shielded.transfer, shielded.masp_tx) from shared/src/vm/host_env.rs and shared/src/ledger/native_vp/ibc/context.rs?

[grarco]

Nice. Could you please just check out the serialize_to_vec issue in the comments to see if there is anything to it? And if you get the chance (but it's not strictly necessary), could you please try seeing if moving handle_masp_tx from tx_prelude/src/token.rs into core/src/ledger/masp_utils.rs is trivial or not?

Ok, I've moved the entire handle_masp_tx to the masp_utils file. This has also solved the double serialization issue (which I believe like you it was a bug). To be able to share this function also with the IBC context I had to remove the call to insert_verifier(masp_addr) from the function (otherwise I would have needed to implement TxEnv on the IBC context), which shouldn't be a problem because the tx writes some masp keys anyway so those should already trigger the vp.

I had to keep a wrapper inside the IbcStorageContext trait cause otherwise we would have needed to implement StorageRead for IbcActions which I think might be more work

[murisi]

Thanks for updating again. Looks good to me!