fix(wallet): minimize config update topologies with subdigest weight

Author: attente

packages/wallet/core/src/state/local/index.ts

@@ -285,7 +285,6 @@ export class Provider implements ProviderInterface {
         }),
       ])
 
-      let totalWeight = 0n
       const encoded = Signature.fillLeaves(fromConfig.topology, (leaf) => {
         if (Config.isSapientSignerLeaf(leaf)) {
           const sapientSignature = signaturesOfSigners.find(
@@ -295,7 +294,6 @@ export class Provider implements ProviderInterface {
           )?.signature
 
           if (sapientSignature) {
-            totalWeight += leaf.weight
             return sapientSignature
           }
         }
@@ -305,15 +303,21 @@ export class Provider implements ProviderInterface {
           return undefined
         }
 
-        totalWeight += leaf.weight
         return signature
       })
 
+      const topologyContext: Config.TopologyWeightContext = {
+        wallet,
+        chainId: candidate.payload.chainId,
+        payload: candidate.payload.content,
+      }
+      const { weight: totalWeight } = Config.getWeight(encoded, () => false, topologyContext)
+
       if (totalWeight < fromConfig.threshold) {
         continue
       }
 
-      const minimalTopology = Config.minimiseSignedTopology(encoded, fromConfig.threshold)
+      const minimalTopology = Config.minimiseSignedTopology(encoded, fromConfig.threshold, topologyContext)
 
       best = {
         nextImageHash: candidate.nextImageHash,

packages/wallet/core/src/state/sequence/index.ts

@@ -244,12 +244,17 @@ export class Provider implements ProviderInterface {
         Hex.assert(toImageHash)
         Hex.assert(signature)
 
+        const payload = Payload.fromConfigUpdate(toImageHash)
         const decoded = Signature.decodeSignature(Hex.toBytes(signature))
 
-        const { configuration } = await Signature.recover(decoded, wallet, 0, Payload.fromConfigUpdate(toImageHash), {
+        const { configuration } = await Signature.recover(decoded, wallet, 0, payload, {
           provider: passkeySignatureValidator,
         })
-        const topology = Config.minimiseSignedTopology(configuration.topology, configuration.threshold)
+        const topology = Config.minimiseSignedTopology(configuration.topology, configuration.threshold, {
+          wallet,
+          chainId: 0,
+          payload,
+        })
 
         return { imageHash: toImageHash, signature: { ...decoded, configuration: { ...configuration, topology } } }
       }),

packages/wallet/primitives/src/config.ts

@@ -10,6 +10,8 @@ import {
   SignatureOfSapientSignerLeaf,
   SignatureOfSignerLeaf,
 } from './signature.js'
+import { hash as hashPayload } from './payload.js'
+import type { Parented } from './payload.js'
 import { Constants } from './index.js'
 
 export type SignerLeaf = {
@@ -104,6 +106,19 @@ export type Config = {
   checkpointer?: Address.Address
 }
 
+export type TopologyWeightContext = {
+  wallet: Address.Address
+  chainId: number
+  payload: Parented
+}
+
+export const MATCHING_SUBDIGEST_WEIGHT = 0xffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffn
+
+type ResolvedTopologyWeightContext = {
+  digest: Bytes.Bytes
+  anyAddressDigest: Bytes.Bytes
+}
+
 export function isSignerLeaf(cand: unknown): cand is SignerLeaf {
   return typeof cand === 'object' && cand !== null && 'type' in cand && cand.type === 'signer'
 }
@@ -209,6 +224,41 @@ export function findSignerLeaf(
 export function getWeight(
   topology: RawTopology | RawConfig | Config,
   canSign: (signer: SignerLeaf | SapientSignerLeaf) => boolean,
+  context?: TopologyWeightContext,
+): { weight: bigint; maxWeight: bigint } {
+  return getWeightWithContext(topology, canSign, resolveTopologyWeightContext(context))
+}
+
+function resolveTopologyWeightContext(context?: TopologyWeightContext): ResolvedTopologyWeightContext | undefined {
+  if (!context) {
+    return undefined
+  }
+
+  return {
+    digest: hashPayload(context.wallet, context.chainId, context.payload),
+    anyAddressDigest: hashPayload(Constants.ZeroAddress, context.chainId, context.payload),
+  }
+}
+
+function getSubdigestWeight(
+  topology: SubdigestLeaf | AnyAddressSubdigestLeaf,
+  context?: ResolvedTopologyWeightContext,
+): bigint {
+  if (!context) {
+    return 0n
+  }
+
+  if (isSubdigestLeaf(topology)) {
+    return Bytes.isEqual(Bytes.fromHex(topology.digest), context.digest) ? MATCHING_SUBDIGEST_WEIGHT : 0n
+  }
+
+  return Bytes.isEqual(Bytes.fromHex(topology.digest), context.anyAddressDigest) ? MATCHING_SUBDIGEST_WEIGHT : 0n
+}
+
+function getWeightWithContext(
+  topology: RawTopology | RawConfig | Config,
+  canSign: (signer: SignerLeaf | SapientSignerLeaf) => boolean,
+  context?: ResolvedTopologyWeightContext,
 ): { weight: bigint; maxWeight: bigint } {
   topology = isRawConfig(topology) || isConfig(topology) ? topology.topology : topology
 
@@ -223,19 +273,24 @@ export function getWeight(
   } else if (isSapientSignerLeaf(topology)) {
     return { weight: 0n, maxWeight: canSign(topology) ? topology.weight : 0n }
   } else if (isSubdigestLeaf(topology)) {
-    return { weight: 0n, maxWeight: 0n }
+    const weight = getSubdigestWeight(topology, context)
+    return { weight, maxWeight: weight }
   } else if (isAnyAddressSubdigestLeaf(topology)) {
-    return { weight: 0n, maxWeight: 0n }
+    const weight = getSubdigestWeight(topology, context)
+    return { weight, maxWeight: weight }
   } else if (isRawNestedLeaf(topology)) {
-    const { weight, maxWeight } = getWeight(topology.tree, canSign)
+    const { weight, maxWeight } = getWeightWithContext(topology.tree, canSign, context)
     return {
       weight: weight >= topology.threshold ? topology.weight : 0n,
       maxWeight: maxWeight >= topology.threshold ? topology.weight : 0n,
     }
   } else if (isNodeLeaf(topology)) {
     return { weight: 0n, maxWeight: 0n }
   } else {
-    const [left, right] = [getWeight(topology[0], canSign), getWeight(topology[1], canSign)]
+    const [left, right] = [
+      getWeightWithContext(topology[0], canSign, context),
+      getWeightWithContext(topology[1], canSign, context),
+    ]
     return { weight: left.weight + right.weight, maxWeight: left.maxWeight + right.maxWeight }
   }
 }
@@ -250,26 +305,27 @@ function stripSignedState(leaf: SignerLeaf | SapientSignerLeaf): SignerLeaf | Sa
   return rest
 }
 
-function buildMinimisedTopologyPlans(topology: Topology): Array<MinimisedTopologyPlan | undefined> {
+function buildMinimisedTopologyPlans(
+  topology: Topology,
+  context?: ResolvedTopologyWeightContext,
+): Array<MinimisedTopologyPlan | undefined> {
   if (isSignedSignerLeaf(topology) || isSignedSapientSignerLeaf(topology)) {
     return [
       { weight: 0n, topology: stripSignedState(topology) },
       { weight: topology.weight, topology },
     ]
   }
 
-  if (
-    isSignerLeaf(topology) ||
-    isSapientSignerLeaf(topology) ||
-    isSubdigestLeaf(topology) ||
-    isAnyAddressSubdigestLeaf(topology) ||
-    isNodeLeaf(topology)
-  ) {
+  if (isSubdigestLeaf(topology) || isAnyAddressSubdigestLeaf(topology)) {
+    return [{ weight: getSubdigestWeight(topology, context), topology }]
+  }
+
+  if (isSignerLeaf(topology) || isSapientSignerLeaf(topology) || isNodeLeaf(topology)) {
     return [{ weight: 0n, topology }]
   }
 
   if (isNestedLeaf(topology)) {
-    return buildMinimisedTopologyPlans(topology.tree).map((plan) => {
+    return buildMinimisedTopologyPlans(topology.tree, context).map((plan) => {
       if (!plan) {
         return undefined
       }
@@ -285,8 +341,8 @@ function buildMinimisedTopologyPlans(topology: Topology): Array<MinimisedTopolog
   }
 
   if (isNode(topology)) {
-    const leftPlans = buildMinimisedTopologyPlans(topology[0])
-    const rightPlans = buildMinimisedTopologyPlans(topology[1])
+    const leftPlans = buildMinimisedTopologyPlans(topology[0], context)
+    const rightPlans = buildMinimisedTopologyPlans(topology[1], context)
     const plans = new Array<MinimisedTopologyPlan | undefined>(leftPlans.length + rightPlans.length - 1)
 
     for (let total = 0; total < plans.length; total++) {
@@ -318,8 +374,8 @@ function buildMinimisedTopologyPlans(topology: Topology): Array<MinimisedTopolog
   throw new Error('Invalid topology')
 }
 
-export function minimiseSignedTopology(topology: Topology, threshold: bigint): Topology {
-  const plans = buildMinimisedTopologyPlans(topology)
+export function minimiseSignedTopology(topology: Topology, threshold: bigint, context?: TopologyWeightContext): Topology {
+  const plans = buildMinimisedTopologyPlans(topology, resolveTopologyWeightContext(context))
   return plans.find((plan) => plan && plan.weight >= threshold)?.topology ?? topology
 }
 

packages/wallet/primitives/src/signature.ts

@@ -7,6 +7,7 @@ import {
   SignerLeaf,
   SubdigestLeaf,
   AnyAddressSubdigestLeaf,
+  MATCHING_SUBDIGEST_WEIGHT,
   Topology,
   hashConfiguration,
   isNestedLeaf,
@@ -1312,17 +1313,13 @@ async function recoverTopology(
   } else if (isSubdigestLeaf(topology)) {
     return {
       topology,
-      weight: Bytes.isEqual(Bytes.fromHex(topology.digest), digest)
-        ? 0xffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffn
-        : 0n,
+      weight: Bytes.isEqual(Bytes.fromHex(topology.digest), digest) ? MATCHING_SUBDIGEST_WEIGHT : 0n,
     }
   } else if (isAnyAddressSubdigestLeaf(topology)) {
     const anyAddressOpHash = hash(Constants.ZeroAddress, chainId, payload)
     return {
       topology,
-      weight: Bytes.isEqual(Bytes.fromHex(topology.digest), anyAddressOpHash)
-        ? 0xffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffn
-        : 0n,
+      weight: Bytes.isEqual(Bytes.fromHex(topology.digest), anyAddressOpHash) ? MATCHING_SUBDIGEST_WEIGHT : 0n,
     }
   } else if (isNodeLeaf(topology)) {
     return { topology, weight: 0n }

packages/wallet/primitives/test/config.test.ts

@@ -24,6 +24,7 @@ import {
   getSigners,
   findSignerLeaf,
   getWeight,
+  MATCHING_SUBDIGEST_WEIGHT,
   minimiseSignedTopology,
   hashConfiguration,
   flatLeavesToTopology,
@@ -36,6 +37,7 @@ import {
   normalizeSignerSignature,
   replaceAddress,
 } from '../src/config.js'
+import { fromConfigUpdate, hash as hashPayload } from '../src/payload.js'
 
 describe('Config', () => {
   const testAddress1 = '0x742d35cc6635c0532925a3b8d563a6b35b7f05f1'
@@ -508,6 +510,59 @@ describe('Config', () => {
       ])
       expect(getWeight(result, () => false).weight).toBe(7n)
     })
+
+    it('should strip signer signatures when a matching subdigest satisfies the threshold', () => {
+      const payload = fromConfigUpdate(
+        '0xaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa' as `0x${string}`,
+      )
+      const topology = flatLeavesToTopology([
+        {
+          type: 'subdigest',
+          digest: Bytes.toHex(hashPayload(testAddress1, 0, payload)) as `0x${string}`,
+        },
+        signSigner('0x4000000000000000000000000000000000000001', 1n, 31n),
+        signSigner('0x4000000000000000000000000000000000000002', 1n, 33n),
+      ])
+
+      expect(signedAddresses(minimiseSignedTopology(topology, 1n))).toEqual([
+        '0x4000000000000000000000000000000000000001',
+      ])
+
+      const result = minimiseSignedTopology(topology, 1n, {
+        wallet: testAddress1,
+        chainId: 0,
+        payload,
+      })
+
+      expect(signedAddresses(result)).toEqual([])
+      expect(getWeight(result, () => false, { wallet: testAddress1, chainId: 0, payload }).weight).toBe(
+        MATCHING_SUBDIGEST_WEIGHT,
+      )
+    })
+
+    it('should strip signer signatures when a matching any-address subdigest satisfies the threshold', () => {
+      const payload = fromConfigUpdate(
+        '0xbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb' as `0x${string}`,
+      )
+      const topology = flatLeavesToTopology([
+        {
+          type: 'any-address-subdigest',
+          digest: Bytes.toHex(
+            hashPayload('0x0000000000000000000000000000000000000000', 0, payload),
+          ) as `0x${string}`,
+        },
+        signSigner('0x5000000000000000000000000000000000000001', 1n, 41n),
+        signSigner('0x5000000000000000000000000000000000000002', 1n, 43n),
+      ])
+
+      const result = minimiseSignedTopology(topology, 1n, {
+        wallet: testAddress1,
+        chainId: 0,
+        payload,
+      })
+
+      expect(signedAddresses(result)).toEqual([])
+    })
   })
 
   describe('hashConfiguration', () => {