Implement real transaction system for wallet GUI and RPC (#86)

Copilot · Steake · web-flow · commit a0edeb7096eb · 2025-12-14T03:18:10.000+07:00
* Initial plan

* Implement wallet GUI transaction creation with real signatures

- Replace mock transaction formatting with real Transaction construction
- Use rpc_client.get_transaction_count() for correct nonces
- Implement cryptographic signing using wallet keys
- Serialize transactions to raw bytes for transmission
- Add parse_address_to_public_key helper function
- Add get_public_key_for_address method to Wallet

Co-authored-by: Steake &lt;530040+Steake@users.noreply.github.com&gt;

* Fix balance refresh to use hex-encoded public keys

- Update refresh_balances callback to extract public keys from wallet
- Send public keys in hex format (0x + 33 bytes) to match RPC expectations
- Properly handle mutable borrow for wallet key access

Co-authored-by: Steake &lt;530040+Steake@users.noreply.github.com&gt;

* Add integration tests for transaction system

- Test wallet transaction creation and signing
- Test wallet to consensus transaction conversion
- Test transaction serialization/deserialization
- Test transaction hash determinism
- Test nonce increment

Co-authored-by: Steake &lt;530040+Steake@users.noreply.github.com&gt;

* Fix transaction signing to use consensus transaction hash

- Sign consensus transaction hash directly instead of wallet transaction
- Add sign_data() method to Wallet for signing arbitrary data
- Fix test to properly verify signatures
- Ensure nonce is fetched from RPC, not wallet internal counter

Co-authored-by: Steake &lt;530040+Steake@users.noreply.github.com&gt;

* Fix critical signature verification bug

Add Transaction::signing_hash() method that excludes signature field from hash computation. This fixes the circular dependency where signature verification was failing because:
- Wallet signed hash of transaction WITH placeholder signature
- RPC verified signature against hash of transaction WITH real signature
- These are different hashes, causing verification to always fail

Changes:
- Add signing_hash() method to bitcell_consensus::Transaction
- Update RPC to use signing_hash() for signature verification
- Update wallet GUI to sign signing_hash() instead of full hash
- Update integration tests to properly test signature verification
- Tests now verify signatures the same way RPC does

Co-authored-by: Steake &lt;530040+Steake@users.noreply.github.com&gt;

* Merge master branch to resolve conflicts

Resolved merge conflicts by:
- Keeping master's improved signing_hash() documentation in block.rs
- Keeping master's improved comment in rpc.rs signature validation
- Using master's wallet-gui implementation (uses get_secret_key_for_address)
- Using master's wallet.rs implementation (has get_secret_key_for_address method)

The signing_hash() method is preserved in both branches, ensuring transactions
are signed correctly without the circular dependency bug.

Co-authored-by: Steake &lt;530040+Steake@users.noreply.github.com&gt;

---------

Co-authored-by: copilot-swe-agent[bot] &lt;198982749+Copilot@users.noreply.github.com&gt;
Co-authored-by: Steake &lt;530040+Steake@users.noreply.github.com&gt;
diff --git a/tests/transaction_integration.rs b/tests/transaction_integration.rs
@@ -0,0 +1,239 @@
+//! Integration tests for transaction system
+//!
+//! These tests verify the complete transaction flow from wallet creation
+//! to signing and serialization, ensuring compatibility with the RPC layer.
+
+use bitcell_crypto::{PublicKey, SecretKey};
+use bitcell_consensus::Transaction;
+use bitcell_wallet::{Chain, Mnemonic, Wallet, WalletConfig, TransactionBuilder};
+
+/// Test that wallet can create and sign transactions that serialize correctly
+#[test]
+fn test_wallet_transaction_creation_and_signing() {
+    // Create a wallet
+    let mnemonic = Mnemonic::new();
+    let mut wallet = Wallet::from_mnemonic(&mnemonic, "", WalletConfig::default());
+    
+    // Generate addresses
+    let from_addr = wallet.next_address(Chain::BitCell).unwrap();
+    let to_addr = wallet.next_address(Chain::BitCell).unwrap();
+    
+    // Set balance for sender
+    wallet.update_balance(&from_addr, 1_000_000);
+    
+    // Create and sign transaction
+    let wallet_tx = wallet.create_transaction(&from_addr, &to_addr, 100_000, 1_000).unwrap();
+    let signed_tx = wallet.sign_transaction(wallet_tx, &from_addr).unwrap();
+    
+    // Verify transaction hash exists
+    assert!(!signed_tx.hash_hex().is_empty());
+    
+    // Verify signature is valid
+    let from_pk = wallet.get_public_key_for_address(&from_addr).unwrap();
+    assert!(signed_tx.verify(&from_pk).is_ok());
+}
+
+/// Test that wallet transactions can be converted to consensus transactions
+#[test]
+fn test_wallet_to_consensus_transaction_conversion() {
+    // Create a wallet
+    let mnemonic = Mnemonic::new();
+    let mut wallet = Wallet::from_mnemonic(&mnemonic, "", WalletConfig::default());
+    
+    // Generate addresses
+    let from_addr = wallet.next_address(Chain::BitCell).unwrap();
+    let to_addr = wallet.next_address(Chain::BitCell).unwrap();
+    
+    // Get public keys
+    let from_pk = wallet.get_public_key_for_address(&from_addr).unwrap();
+    let to_pk = wallet.get_public_key_for_address(&to_addr).unwrap();
+    
+    // Set balance
+    wallet.update_balance(&from_addr, 1_000_000);
+    
+    // Create consensus transaction (without signature)
+    let nonce = 0u64;
+    let amount = 100_000u64;
+    let gas_limit = 21000u64;
+    let gas_price = 1000u64;
+    
+    let mut consensus_tx = Transaction {
+        nonce,
+        from: from_pk.clone(),
+        to: to_pk.clone(),
+        amount,
+        gas_limit,
+        gas_price,
+        data: Vec::new(),
+        signature: bitcell_crypto::Signature::from_bytes(&[0u8; 64]).unwrap(), // Placeholder
+    };
+    
+    // Sign the signing hash (excludes signature field)
+    let signing_hash = consensus_tx.signing_hash();
+    let signature = wallet.sign_data(&from_addr, signing_hash.as_bytes()).unwrap();
+    consensus_tx.signature = signature;
+    
+    // Verify signature like RPC does
+    let signing_hash_verify = consensus_tx.signing_hash();
+    assert!(
+        consensus_tx.signature.verify(&from_pk, signing_hash_verify.as_bytes()).is_ok(),
+        "Signature should verify against signing hash"
+    );
+}
+
+/// Test that transactions can be serialized and deserialized
+#[test]
+fn test_transaction_serialization() {
+    // Create keys
+    let from_sk = SecretKey::generate();
+    let from_pk = from_sk.public_key();
+    let to_pk = SecretKey::generate().public_key();
+    
+    // Create a proper transaction and sign it
+    let gas_limit = 21000u64;
+    let gas_price = 1000u64;
+    let amount = 100_000u64;
+    let nonce = 0u64;
+    
+    // Create transaction with placeholder signature first
+    let mut tx = Transaction {
+        nonce,
+        from: from_pk.clone(),
+        to: to_pk.clone(),
+        amount,
+        gas_limit,
+        gas_price,
+        data: Vec::new(),
+        signature: bitcell_crypto::Signature::from_bytes(&[0u8; 64]).unwrap(), // Placeholder
+    };
+    
+    // Sign the signing hash (excludes signature)
+    let signing_hash = tx.signing_hash();
+    let signature = from_sk.sign(signing_hash.as_bytes());
+    tx.signature = signature;
+    
+    // Verify signature like RPC does
+    let signing_hash_verify = tx.signing_hash();
+    assert!(
+        tx.signature.verify(&from_pk, signing_hash_verify.as_bytes()).is_ok(),
+        "Signature should verify against signing hash"
+    );
+    
+    // Serialize
+    let serialized = bincode::serialize(&tx).expect("Should serialize");
+    
+    // Deserialize
+    let deserialized: Transaction = bincode::deserialize(&serialized).expect("Should deserialize");
+    
+    // Verify fields match
+    assert_eq!(tx.nonce, deserialized.nonce);
+    assert_eq!(tx.from.as_bytes(), deserialized.from.as_bytes());
+    assert_eq!(tx.to.as_bytes(), deserialized.to.as_bytes());
+    assert_eq!(tx.amount, deserialized.amount);
+    assert_eq!(tx.gas_limit, deserialized.gas_limit);
+    assert_eq!(tx.gas_price, deserialized.gas_price);
+    
+    // Verify signature like RPC does after deserialization
+    let deserialized_signing_hash = deserialized.signing_hash();
+    assert!(
+        deserialized.signature.verify(&from_pk, deserialized_signing_hash.as_bytes()).is_ok(),
+        "Signature should verify against signing hash after deserialization"
+    );
+}
+
+/// Test that transaction hash is deterministic
+#[test]
+fn test_transaction_hash_deterministic() {
+    let from_pk = SecretKey::generate().public_key();
+    let to_pk = SecretKey::generate().public_key();
+    let signature = SecretKey::generate().sign(b"test");
+    
+    let tx1 = Transaction {
+        nonce: 5,
+        from: from_pk.clone(),
+        to: to_pk.clone(),
+        amount: 50_000,
+        gas_limit: 21000,
+        gas_price: 1000,
+        data: vec![1, 2, 3],
+        signature: signature.clone(),
+    };
+    
+    let tx2 = Transaction {
+        nonce: 5,
+        from: from_pk.clone(),
+        to: to_pk.clone(),
+        amount: 50_000,
+        gas_limit: 21000,
+        gas_price: 1000,
+        data: vec![1, 2, 3],
+        signature: signature.clone(),
+    };
+    
+    // Same transaction should have same hash
+    assert_eq!(tx1.hash(), tx2.hash());
+}
+
+/// Test that different transactions have different hashes
+#[test]
+fn test_transaction_hash_unique() {
+    let from_pk = SecretKey::generate().public_key();
+    let to_pk = SecretKey::generate().public_key();
+    let signature = SecretKey::generate().sign(b"test");
+    
+    let tx1 = Transaction {
+        nonce: 0,
+        from: from_pk.clone(),
+        to: to_pk.clone(),
+        amount: 100_000,
+        gas_limit: 21000,
+        gas_price: 1000,
+        data: Vec::new(),
+        signature: signature.clone(),
+    };
+    
+    let tx2 = Transaction {
+        nonce: 1,  // Different nonce
+        from: from_pk.clone(),
+        to: to_pk.clone(),
+        amount: 100_000,
+        gas_limit: 21000,
+        gas_price: 1000,
+        data: Vec::new(),
+        signature: signature.clone(),
+    };
+    
+    // Different transactions should have different hashes
+    assert_ne!(tx1.hash(), tx2.hash());
+}
+
+/// Test nonce increment
+#[test]
+fn test_wallet_nonce_increment() {
+    let mnemonic = Mnemonic::new();
+    let mut wallet = Wallet::from_mnemonic(&mnemonic, "", WalletConfig::default());
+    
+    let from_addr = wallet.next_address(Chain::BitCell).unwrap();
+    let to_addr = wallet.next_address(Chain::BitCell).unwrap();
+    
+    wallet.update_balance(&from_addr, 10_000_000);
+    
+    // Initial nonce should be 0
+    assert_eq!(wallet.get_nonce(&from_addr), 0);
+    
+    // Send first transaction
+    let tx1 = wallet.create_transaction(&from_addr, &to_addr, 100_000, 1_000).unwrap();
+    assert_eq!(tx1.nonce, 0);
+    wallet.sign_transaction(tx1, &from_addr).unwrap();
+    
+    // Nonce should increment to 1
+    assert_eq!(wallet.get_nonce(&from_addr), 1);
+    
+    // Send second transaction
+    let tx2 = wallet.create_transaction(&from_addr, &to_addr, 100_000, 1_000).unwrap();
+    assert_eq!(tx2.nonce, 1);
+    wallet.sign_transaction(tx2, &from_addr).unwrap();
+    
+    // Nonce should increment to 2
+    assert_eq!(wallet.get_nonce(&from_addr), 2);
+}
