Oracle: Make permissions account mandatory for all privileged instruc…

…tions (#388)

* Return error on permission-less branch

* Fix permissions error value, adjust PythSimulator and AccountSetup

* Cargo.toml: bump to v2.25.0 for release

* tests: Add a unit test for the permissions validation routine

---------

Co-authored-by: Amin Moghaddam <[email protected]>

program/rust/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "pyth-oracle"
-version = "2.24.0"
+version = "2.25.0"
 edition = "2021"
 license = "Apache 2.0"
 publish = false

program/rust/src/tests/mod.rs

@@ -4,6 +4,7 @@ mod test_add_product;
 mod test_add_publisher;
 mod test_aggregation;
 mod test_c_code;
+mod test_check_valid_signable_account_or_permissioned_funding_account;
 mod test_del_price;
 mod test_del_product;
 mod test_del_publisher;

program/rust/src/tests/pyth_simulator.rs

@@ -179,7 +179,7 @@ impl PythSimulator {
             rent_epoch: Epoch::default(),
         };
 
-        // Add to both accounts to program test, now the program is deploy as upgradable
+        // Add accounts to program test, now the program is deploy as upgradable
         program_test.add_account(program_key, program_account);
         program_test.add_account(programdata_key, programdata_account);
 
@@ -193,7 +193,7 @@ impl PythSimulator {
             last_blockhash,
             programdata_id: programdata_key,
             upgrade_authority: upgrade_authority_keypair,
-            genesis_keypair,
+            genesis_keypair: copy_keypair(&genesis_keypair),
         };
 
         // Transfer money to upgrade_authority so it can call the instructions
@@ -202,6 +202,20 @@ impl PythSimulator {
             .await
             .unwrap();
 
+        result
+            .upd_permissions(
+                UpdPermissionsArgs {
+                    header:                  OracleCommand::UpdPermissions.into(),
+                    master_authority:        genesis_keypair.pubkey(),
+                    data_curation_authority: genesis_keypair.pubkey(),
+                    security_authority:      genesis_keypair.pubkey(),
+                },
+                &copy_keypair(&result.upgrade_authority),
+            )
+            .await
+            .unwrap();
+
+
         result
     }
 
@@ -268,6 +282,7 @@ impl PythSimulator {
             vec![
                 AccountMeta::new(self.genesis_keypair.pubkey(), true),
                 AccountMeta::new(mapping_keypair.pubkey(), true),
+                AccountMeta::new(self.get_permissions_pubkey(), false),
             ],
         );
 
@@ -296,6 +311,7 @@ impl PythSimulator {
                 AccountMeta::new(self.genesis_keypair.pubkey(), true),
                 AccountMeta::new(mapping_keypair.pubkey(), true),
                 AccountMeta::new(product_keypair.pubkey(), true),
+                AccountMeta::new(self.get_permissions_pubkey(), false),
             ],
         );
 
@@ -322,6 +338,7 @@ impl PythSimulator {
                 AccountMeta::new(self.genesis_keypair.pubkey(), true),
                 AccountMeta::new(mapping_keypair.pubkey(), true),
                 AccountMeta::new(product_keypair.pubkey(), true),
+                AccountMeta::new(self.get_permissions_pubkey(), false),
             ],
         );
 
@@ -356,6 +373,7 @@ impl PythSimulator {
                 AccountMeta::new(self.genesis_keypair.pubkey(), true),
                 AccountMeta::new(product_keypair.pubkey(), true),
                 AccountMeta::new(price_keypair.pubkey(), true),
+                AccountMeta::new(self.get_permissions_pubkey(), false),
             ],
         );
 
@@ -384,6 +402,7 @@ impl PythSimulator {
             vec![
                 AccountMeta::new(self.genesis_keypair.pubkey(), true),
                 AccountMeta::new(price_keypair.pubkey(), true),
+                AccountMeta::new(self.get_permissions_pubkey(), false),
             ],
         );
 
@@ -458,6 +477,7 @@ impl PythSimulator {
                 AccountMeta::new(self.genesis_keypair.pubkey(), true),
                 AccountMeta::new(product_keypair.pubkey(), true),
                 AccountMeta::new(price_keypair.pubkey(), true),
+                AccountMeta::new(self.get_permissions_pubkey(), false),
             ],
         );
 
@@ -552,18 +572,6 @@ impl PythSimulator {
             .await
             .unwrap();
 
-        self.upd_permissions(
-            UpdPermissionsArgs {
-                header: OracleCommand::UpdPermissions.into(),
-                master_authority: self.upgrade_authority.pubkey(),
-                data_curation_authority: self.upgrade_authority.pubkey(),
-                security_authority,
-            },
-            &copy_keypair(&self.upgrade_authority),
-        )
-        .await
-        .unwrap();
-
         let product_metadatas: HashMap<String, ProductMetadata> =
             serde_json::from_reader(&result_file).unwrap();
 

program/rust/src/tests/test_add_price.rs

@@ -3,6 +3,7 @@ use {
         accounts::{
             clear_account,
             MappingAccount,
+            PermissionAccount,
             PriceAccount,
             ProductAccount,
             PythAccount,
@@ -53,17 +54,29 @@ fn test_add_price() {
     let product_account = product_setup.as_account_info();
 
     let mut price_setup = AccountSetup::new::<PriceAccount>(&program_id);
-    let mut price_account = price_setup.as_account_info();
+    let price_account = price_setup.as_account_info();
 
     let mut price_setup_2 = AccountSetup::new::<PriceAccount>(&program_id);
     let price_account_2 = price_setup_2.as_account_info();
 
+    let mut permissions_setup = AccountSetup::new_permission(&program_id);
+    let permissions_account = permissions_setup.as_account_info();
+
+    {
+        let mut permissions_account_data =
+            PermissionAccount::initialize(&permissions_account, PC_VERSION).unwrap();
+        permissions_account_data.master_authority = *funding_account.key;
+        permissions_account_data.data_curation_authority = *funding_account.key;
+        permissions_account_data.security_authority = *funding_account.key;
+    }
+
     assert!(process_instruction(
         &program_id,
         &[
             funding_account.clone(),
             mapping_account.clone(),
-            product_account.clone()
+            product_account.clone(),
+            permissions_account.clone(),
         ],
         instruction_data_add_product
     )
@@ -74,7 +87,8 @@ fn test_add_price() {
         &[
             funding_account.clone(),
             product_account.clone(),
-            price_account.clone()
+            price_account.clone(),
+            permissions_account.clone(),
         ],
         instruction_data_add_price
     )
@@ -96,7 +110,8 @@ fn test_add_price() {
         &[
             funding_account.clone(),
             product_account.clone(),
-            price_account_2.clone()
+            price_account_2.clone(),
+            permissions_account.clone(),
         ],
         instruction_data_add_price
     )
@@ -117,7 +132,13 @@ fn test_add_price() {
     assert_eq!(
         process_instruction(
             &program_id,
-            &[funding_account.clone(), product_account.clone()],
+            &[
+                funding_account.clone(),
+                product_account.clone(),
+                price_account.clone(),
+                permissions_account.clone(),
+                permissions_account.clone(),
+            ],
             instruction_data_add_price
         ),
         Err(OracleError::InvalidNumberOfAccounts.into())
@@ -130,7 +151,8 @@ fn test_add_price() {
             &[
                 funding_account.clone(),
                 product_account.clone(),
-                price_account.clone()
+                price_account.clone(),
+                permissions_account.clone(),
             ],
             instruction_data_add_price
         ),
@@ -153,47 +175,33 @@ fn test_add_price() {
             &[
                 funding_account.clone(),
                 product_account.clone(),
-                price_account.clone()
+                price_account.clone(),
+                permissions_account.clone(),
             ],
             instruction_data_add_price
         ),
         Err(ProgramError::InvalidArgument)
     );
 
-    // Price not signing
+    // Fresh product account
+    clear_account(&product_account).unwrap();
+
     hdr_add_price = AddPriceArgs {
         header:     OracleCommand::AddPrice.into(),
         exponent:   6,
         price_type: 1,
     };
 
     instruction_data_add_price = bytes_of::<AddPriceArgs>(&hdr_add_price);
-    price_account.is_signer = false;
-
-    assert_eq!(
-        process_instruction(
-            &program_id,
-            &[
-                funding_account.clone(),
-                product_account.clone(),
-                price_account.clone()
-            ],
-            instruction_data_add_price
-        ),
-        Err(OracleError::InvalidSignableAccount.into())
-    );
-
-    // Fresh product account
-    price_account.is_signer = true;
-    clear_account(&product_account).unwrap();
 
     assert_eq!(
         process_instruction(
             &program_id,
             &[
                 funding_account.clone(),
                 product_account.clone(),
-                price_account.clone()
+                price_account.clone(),
+                permissions_account.clone(),
             ],
             instruction_data_add_price
         ),

program/rust/src/tests/test_add_product.rs

@@ -5,6 +5,7 @@ use {
             clear_account,
             create_pc_str_t,
             MappingAccount,
+            PermissionAccount,
             ProductAccount,
             PythAccount,
         },
@@ -57,13 +58,25 @@ fn test_add_product() {
     let mut product_setup_2 = AccountSetup::new::<ProductAccount>(&program_id);
     let product_account_2 = product_setup_2.as_account_info();
 
+    let mut permissions_setup = AccountSetup::new_permission(&program_id);
+    let permissions_account = permissions_setup.as_account_info();
+
+    {
+        let mut permissions_account_data =
+            PermissionAccount::initialize(&permissions_account, PC_VERSION).unwrap();
+        permissions_account_data.master_authority = *funding_account.key;
+        permissions_account_data.data_curation_authority = *funding_account.key;
+        permissions_account_data.security_authority = *funding_account.key;
+    }
+
     let mut size = populate_instruction(&mut instruction_data, &[]);
     assert!(process_instruction(
         &program_id,
         &[
             funding_account.clone(),
             mapping_account.clone(),
-            product_account.clone()
+            product_account.clone(),
+            permissions_account.clone()
         ],
         &instruction_data[..size]
     )
@@ -93,7 +106,8 @@ fn test_add_product() {
         &[
             funding_account.clone(),
             mapping_account.clone(),
-            product_account_2.clone()
+            product_account_2.clone(),
+            permissions_account.clone()
         ],
         &instruction_data[..size]
     )
@@ -131,7 +145,8 @@ fn test_add_product() {
             &[
                 funding_account.clone(),
                 mapping_account.clone(),
-                product_account_3.clone()
+                product_account_3.clone(),
+                permissions_account.clone()
             ],
             &instruction_data[..size]
         ),
@@ -151,7 +166,8 @@ fn test_add_product() {
             &[
                 funding_account.clone(),
                 mapping_account.clone(),
-                product_account.clone()
+                product_account.clone(),
+                permissions_account.clone()
             ],
             &instruction_data[..size]
         )
@@ -173,7 +189,8 @@ fn test_add_product() {
             &[
                 funding_account.clone(),
                 mapping_account.clone(),
-                product_account.clone()
+                product_account.clone(),
+                permissions_account.clone()
             ],
             &instruction_data[..size]
         ),