Skip to content

fix: reorder UtxoOwners writes to prevent inconsistent persistence (PM-20218)#762

Draft
m2ux wants to merge 1 commit intomainfrom
fix/PM-20218-utxoowners-inconsistent-persistence
Draft

fix: reorder UtxoOwners writes to prevent inconsistent persistence (PM-20218)#762
m2ux wants to merge 1 commit intomainfrom
fix/PM-20218-utxoowners-inconsistent-persistence

Conversation

@m2ux
Copy link
Contributor

@m2ux m2ux commented Feb 24, 2026
edited by atlassian bot
Loading

Summary

Add test coverage for the event construction failure path in the NTO pallet's handle_create, verifying that UtxoOwners is not modified when construct_cnight_generates_dust_event fails. This addresses the remaining acceptance criterion for audit finding Issue I (PM-20218).

🎫 PM-20218

Motivation

The core fix for audit finding Issue I (UtxoOwners persist inconsistently in handle_create) has already been merged — UtxoOwners::insert now occurs inside the Ok arm of the event construction match. However, acceptance criterion #5 ("new tests cover the event construction failure path") has not been addressed. Without this test, there is no automated verification that a regression would be caught if the operation ordering were inadvertently reverted.

Changes

Implementation (coming next):

  • Add test asset_create_with_invalid_dust_key_should_not_insert_utxo_owner — registers a wallet with invalid DustPublicKeyBytes, submits AssetCreate, verifies UtxoOwners is empty and no SystemTransactionApplied event emitted
  • Add test asset_spend_without_create_should_not_emit_destroy_event — verifies handle_spend guards against Destroy events for UTXOs without prior Create
  • Verify all existing tests pass

🗹 TODO before merging

  • Ready

📌 Submission Checklist

  • Changes are backward-compatible (or flagged if breaking)
  • Pull request description explains why the change is needed
  • Self-reviewed the diff
  • I have included a change file, or skipped for this reason: test-only changes
  • If the changes introduce a new feature, I have bumped the node minor version
  • Update documentation (if relevant)
  • Updated AGENTS.md if build commands, architecture, or workflows changed
  • No new todos introduced

🧪 Testing Evidence

Please describe any additional testing aside from CI:

  • Additional tests are provided (if possible)

🔱 Fork Strategy

  • Node Runtime Update
  • Node Client Update
  • Other
  • N/A

Links

@m2ux @cursoragent
chore: initialize work package for PM-20218
f3b30e0 
Audit finding Issue I: UtxoOwners persist inconsistently in
handle_create and handle_redemption_create.

Co-authored-by: Cursor <cursoragent@cursor.com>
@github-actions
Copy link
Contributor

github-actions bot commented Feb 24, 2026

kics-logo

KICS version: v2.1.16

Category Results
CRITICAL CRITICAL 0
HIGH HIGH 0
MEDIUM MEDIUM 96
LOW LOW 12
INFO INFO 83
TRACE TRACE 0
TOTAL TOTAL 191
Metric Values
Files scanned placeholder 31
Files parsed placeholder 31
Files failed to scan placeholder 0
Total executed queries placeholder 73
Queries failed to execute placeholder 0
Execution time placeholder 8

@m2ux m2ux self-assigned this Feb 24, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@m2ux m2ux

Labels

release:node-0.22.0

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@m2ux @gilescope