Fix to add assets to a collection with a different authority #217

ASCorreia · 2025-02-16T20:27:56Z

No description provided.

vercel · 2025-02-16T20:28:01Z

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
mpl-core-js-docs	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Feb 20, 2025 11:43pm

blockiosaurus

Can you add the JS tests you were using as well?

blockiosaurus · 2025-02-17T21:38:11Z

programs/mpl-core/src/processor/update.rs

                        {
                            solana_program::msg!("UA: Rejected");
                            return Err(MplCoreError::InvalidAuthority.into());
                        }
-                    } else if authority.key != &new_collection.update_authority {
+                    } else if authority.key != &new_collection.update_authority && !plugin.additional_delegates.contains(&authority.key) {


I'm not sure this branch works. It'll be pulling from the default plugin that is guaranteed to have no addition_delegates, right?

Agreed.
Since it will be pulling from the default one, the && !plugin.additional_delegates.contains(&authority.key) will always evaluate to true, making the branch redundant.

By removing it, we don't need to create the default one and can check directly against the fetched plugin inside the UpdateDelegate plugin checks

blockiosaurus · 2025-02-20T00:41:40Z

clients/js/src/tests.ts

+import { createSignerFromKeypair, generateSigner, signerIdentity, sol } from "@metaplex-foundation/umi";
+//import { Keypair, PublicKey } from "@solana/web3.js";
+
+import wallet from "../../../wallet.json"


If you use the createUmi() in _setup.ts (e.g. in the other tests) it'll set up umi.identity as a keypair you can use instead of depending on a wallet file. It looks like that's what's causing the checks to fail, currently.

blockiosaurus · 2025-02-20T00:41:56Z

programs/mpl-core/src/processor/update.rs

                            &new_collection,
                            authority,
                            &plugin_authority,
                        )
                        .is_err()
-                            && authority.key != &new_collection.update_authority
+                            && authority.key != &new_collection.update_authority)
+                            && !fetched_plugin.additional_delegates.contains(&authority.key)


Looks good!

blockiosaurus · 2025-02-20T00:43:09Z

programs/mpl-core/src/utils/mod.rs

+            HashSet::new()
+        };
+
+    if plugin_set.contains(&PluginType::UpdateDelegate) {


I think you can push this logically into the UpdateDelegate plugin for the Update lifecycle event. It'll only be checked if the UpdateDelegate exists and the reject will always override a success. I think it should be logically equivalent to what you're doing here and you won't have to change our messy validation function, haha.

Fix to add assets to a collection with a different authority

22e5a7c

vercel bot deployed to Preview February 16, 2025 20:28 View deployment

ASCorreia requested a review from blockiosaurus February 17, 2025 19:02

ASCorreia marked this pull request as ready for review February 17, 2025 19:03

blockiosaurus requested changes Feb 17, 2025

View reviewed changes

Updated mod.rs to check UpdateDelegate in asset

40eeaa2

vercel bot deployed to Preview February 19, 2025 23:03 View deployment

Removed redundant default plugin check

53d0869

vercel bot deployed to Preview February 19, 2025 23:04 View deployment

Added mallow tests

367ccdd

vercel bot had a problem deploying to Preview February 19, 2025 23:06 Failure

blockiosaurus reviewed Feb 20, 2025

View reviewed changes

Update tests.ts

569fe3c

vercel bot had a problem deploying to Preview February 20, 2025 01:21 Failure

Reverted mod.rs

afc1f87

vercel bot had a problem deploying to Preview February 20, 2025 12:39 Failure

Added delegate authority check to lifecycle.rs

0d2f732

vercel bot had a problem deploying to Preview February 20, 2025 12:41 Failure

Update updateV2.test.ts

31bf8b2

vercel bot had a problem deploying to Preview February 20, 2025 23:42 Failure

Delete clients/js/src/tests.ts

1968701

vercel bot deployed to Preview February 20, 2025 23:43 View deployment

blockiosaurus merged commit 1968701 into metaplex-foundation:main Feb 21, 2025
8 of 10 checks passed

blockiosaurus mentioned this pull request Feb 21, 2025

UpdateDelegate Change UA/Collection #204

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Fix to add assets to a collection with a different authority #217

Fix to add assets to a collection with a different authority #217

ASCorreia commented Feb 16, 2025

vercel bot commented Feb 16, 2025 •

edited

Loading

blockiosaurus left a comment

blockiosaurus Feb 17, 2025

ASCorreia Feb 19, 2025

blockiosaurus Feb 20, 2025

blockiosaurus Feb 20, 2025

blockiosaurus Feb 20, 2025

Fix to add assets to a collection with a different authority #217

Fix to add assets to a collection with a different authority #217

Conversation

ASCorreia commented Feb 16, 2025

vercel bot commented Feb 16, 2025 • edited Loading

blockiosaurus left a comment

Choose a reason for hiding this comment

blockiosaurus Feb 17, 2025

Choose a reason for hiding this comment

ASCorreia Feb 19, 2025

Choose a reason for hiding this comment

blockiosaurus Feb 20, 2025

Choose a reason for hiding this comment

blockiosaurus Feb 20, 2025

Choose a reason for hiding this comment

blockiosaurus Feb 20, 2025

Choose a reason for hiding this comment

vercel bot commented Feb 16, 2025 •

edited

Loading