[Qt] Payment request expiration bug fix (re-done) #5620

pull Diapolo wants to merge 1 commits into bitcoin:master from Diapolo:pr_expired changing 7 files +137 −13
  1. Diapolo commented at 1:47 PM on January 8, 2015: none
    • this is based on #4122 (which can be closed)

    Currently a payment request is only checked for expiration upon receipt. It should be checked again immediately before sending coins to prevent the user from paying to an expired invoice which would then require a customer service interaction.

    • add static verifyExpired() function to PaymentServer to be able to use the same validation code in GUI and unit-testing code
    • extend unit tests to use that function and also add an unit test which overflows, because payment requests allow expires as uint64, whereas we use int64_t for verification of expired payment requests
  2. laanwj added the label GUI on Jan 8, 2015
  3. laanwj added the label Bug on Jan 8, 2015
  4. laanwj added the label Priority Medium on Jan 8, 2015
  5. laanwj commented at 11:24 AM on January 9, 2015: member

    Looks good to me, utACK

  6. jonasschnelli commented at 2:23 PM on January 9, 2015: contributor

    @Diapolo would it be possible to cover this with a test in paymentservertests.cpp?

  7. Diapolo commented at 2:44 PM on January 9, 2015: none

    One could craft and add an expired payment request into paymentrequestdata.h, copy and paste the check used in this pull (details.has_expires() && (int64_t)details.expires() < GetTime())) and use that in a testcase, yes. I can't craft a usable payment request usable there, feel free to jump in :).

  8. Diapolo commented at 2:48 PM on January 9, 2015: none

    Btw. @laanwj expires is also an uint64 casted to int64_t, is that safe? GetTime()is using int64_t as return value, wheras the used time() in it is returning time_t (which is a long long on my compiler suite).

    Thinking about it, uint64 allows for bigger numbers than int64 can store, so if one crafts payment request with expires set to a value bigger than 0x7FFFFFFFFFFFFFFF it would be considered valid for a very long time, right (if -9223372036854775807 < GetTime())? Could this become a problem?

  9. gavinandresen commented at 3:36 PM on January 9, 2015: contributor

    Definitely needs a unit test (or two, testing expires with large unsigned values is a great idea). @Diapolo : if you aren't willing to create unit tests for your code, then, in my humble opinion, you shouldn't be writing code. Testing is critical.

  10. Diapolo commented at 3:39 PM on January 9, 2015: none

    @gavinandresen Sorry if you have the impression I'm not willing, it's more my skills are limited in that case. I really have no idea how to craft a suiting payment request for paymentrequestdata.h, like you did -_-.

    Oh and by the way, you created the initial check in paymentserver.cpp, which also had no unit test :-P. I just duplicated the code which was there and added it, where it also needs to kick in!

  11. jonasschnelli commented at 3:43 PM on January 9, 2015: contributor

    @Diapolo i'll try to create one a link you in a commit for paymentrequestdata.h

  12. Diapolo commented at 3:44 PM on January 9, 2015: none

    @jonasschnelli I'm glad if you also can help me in understanding how you do it :).

  13. gavinandresen commented at 3:46 PM on January 9, 2015: contributor

    There's simple c++ code for creating payment requests here: https://github.com/gavinandresen/paymentrequest/blob/master/c%2B%2B/paymentrequest-create.cpp

    I used it to generate a binary payment request (after using openssl commands to generate private keys, certificates, etc).

    Then I converted the binary payment request files to base64 (e.g. openssl enc -base64)

    Then copy the base64 into the .h file.

  14. Diapolo commented at 3:51 PM on January 9, 2015: none

    @gavinandresen Thanks for linking that in here, I'll take a look.

  15. jonasschnelli commented at 3:52 PM on January 9, 2015: contributor

    Could you not take one from https://bitcoincore.org/~gavin/createpaymentrequest.php and base64 it? If you need different values, take the php source, run them on MAMP/XAMP, etc. I suppose this might also work.

  16. jonasschnelli commented at 4:03 PM on January 9, 2015: contributor

    @Diapolo ping me if you didn't succeed then i start looking at it.

  17. Diapolo commented at 1:31 AM on January 10, 2015: none

    @gavinandresen Wow, that was quite hard up to where I am now :). I took your whole branch https://github.com/gavinandresen/paymentrequest and converted the entire create_ca.sh to a Windows compatible create_ca.cmd, reworked build_detect_platform, Makefile, paymentrequest-create.cpp, paymentrequest-dump.cpp and even the README.txt (to perhaps aid others with this stuff) to be Windows compatible!

    I build the executables with MinGW 4.9.2 x64 and the ca stuff with OpenSSL 1.0.1j.

    Now when I try to do paymentrequest-create paytoaddress=1BTCorgHwCg6u2YSAWKgS17qUad6kHmtQW memo="Just Testing" amount=11.0 | paymentrequest-dump, I get the following error, which I could not solve until now:

    <pre> [libprotobuf ERROR google/protobuf/message_lite.cc:123] Can't parse message of type "payments.PaymentRequest" because it is missing required fields: serialized_payment_details </pre>

    Can you or any other (@mikehearn) assist with solving this!?

    Edit: paymentrequest.pb.cpp, paymentrequest.pb.h and paymentrequest.proto from your repo are identiocal to the ones I have in my Bitcoin Core build dir based on current master!

    Edit2: Seems to be a problem with paymentrequest-dump.exe, as I can open the payment request file from paymentrequest-create.exe in a 0.9.3 client... strange.

  18. Diapolo commented at 2:50 PM on January 13, 2015: none

    I depend on #5642 getting merged, before I can add another unit test for this.

  19. jonasschnelli commented at 2:55 PM on January 13, 2015: contributor

    @Diapolo could you not include #5642 commits in this PR and add a UT?

  20. Diapolo commented at 3:01 PM on January 13, 2015: none

    @jonasschnelli Yeah I could rebase this ontop of the other pull, but I'm not sure this allows for a quicker merge. The other pr requires a review of at least one other core dev I guess...

  21. Diapolo commented at 1:02 PM on January 14, 2015: none

    Rebased to be on top of #5642, which has 2 ACKs now.

  22. [Qt] Payment request expiration bug fix (re-done)
    - this is based on #4122 (which can be closed)

Currently a payment request is only checked for expiration upon receipt.
It should be checked again immediately before sending coins to prevent
the user from paying to an expired invoice which would then require a
customer service interaction.

- add static verifyExpired() function to PaymentServer to be able to use
  the same validation code in GUI and unit-testing code
- extend unit tests to use that function and also add an unit test which
  overflows, because payment requests allow expires as uint64, whereas we
  use int64_t for verification of expired payment requests
    6715efb9ca
  23. Diapolo commented at 8:09 AM on January 15, 2015: none

    If this passes Travis it should be ready to merge. Needs review by @gavinandresen or @laanwj.

  24. Diapolo commented at 10:29 AM on January 23, 2015: none

    So 8 days ago I finished this medium priority pull and no one cares to review/ACK? Are we dropping wallet support or why is no one caring about our reference implementation of the payment protocol?

  25. jonasschnelli commented at 10:48 AM on January 23, 2015: contributor

    I think we all care. It's just very hard to set priorities. Your work looks really good and I will do a proper test and a review.

    Please be patient and give us some more days. Thanks.

  26. jonasschnelli commented at 1:22 PM on January 23, 2015: contributor

    Here are some fresh built binaries from my gitian-build-server (in case some likes to test but not to build): https://bitcoin.jonasschnelli.ch/pulls/5620/

  27. jonasschnelli commented at 8:25 AM on January 29, 2015: contributor

    Tested, reviewed ACK.

    bildschirmfoto 2015-01-29 um 09 24 47

  28. laanwj merged this on Jan 29, 2015
  29. laanwj closed this on Jan 29, 2015
  30. laanwj referenced this in commit 7823598fa4 on Jan 29, 2015
  31. Diapolo deleted the branch on Jan 30, 2015
  32. in src/qt/paymentserver.cpp:None in 6715efb9ca 
     752 | @@ -756,3 +753,15 @@ bool PaymentServer::verifyNetwork(const payments::PaymentDetails& requestDetails
 753 |      }
 754 |      return fVerified;
 755 |  }
 756 | +
 757 | +bool PaymentServer::verifyExpired(const payments::PaymentDetails& requestDetails)
 758 | +{
 759 | +    bool fVerified = (requestDetails.has_expires() && (int64_t)requestDetails.expires() < GetTime());
    SergioDemianLerner commented at 3:55 PM on January 30, 2015:

    Shouldn't "fVerified" be renamed "fExpired" ? "Verified" implies something positive.

  33. DrahtBot locked this on Sep 8, 2021
Contributors
DiapololaanwjjonasschnelligavinandresenSergioDemianLerner
Labels
BugGUI
Linked (view graph)
#4122 [Qt] Payment request expiration bug fix#5636 [Qt] add option to allow self signed root certs (for testing)
github-metadata-mirror

This is a metadata mirror of the GitHub repository bitcoin/bitcoin. This site is not affiliated with GitHub. Content is generated from a GitHub metadata backup.
generated: 2026-04-15 21:16 UTC
This site is hosted by @0xB10C
More mirrored repositories can be found on mirror.b10c.me