Enforce sequential incoming states and balance invariants

Author: warmidris

packages/stackflow-agent/README.md

@@ -137,4 +137,5 @@ const result = await agent.acceptIncomingTransfer({
 6. Event scan mode intentionally holds the cursor when any dispute submission errors occur, so failed disputes are retried on next run.
 7. `buildOutgoingTransfer(...)` defaults `actor` to the tracked local principal and rejects mismatched actor values.
 8. Incoming transfer validation enforces tracked contract/pipe/principals/token consistency; mismatched `pipeId`, `pipeKey`, `actor`, or token payloads are rejected.
-9. For production hardening, add alerting, signer balance checks, and idempotency audit logs.
+9. Incoming transfer validation also enforces sequential nonces and balance invariants against the latest stored local state (same total balance, and counterparty-actor updates must not reduce local balance).
+10. For production hardening, add alerting, signer balance checks, and idempotency audit logs.

packages/stackflow-agent/src/agent-service.js

@@ -296,6 +296,47 @@ export class StackflowAgentService {
           existingNonce: latest.nonce,
         };
       }
+      if (incomingNonce !== existingNonce + 1n) {
+        return {
+          valid: false,
+          reason: "nonce-not-sequential",
+          existingNonce: latest.nonce,
+        };
+      }
+
+      const existingMyBalance = parseUnsignedBigInt(
+        latest.myBalance,
+        "existing myBalance",
+      );
+      const existingTheirBalance = parseUnsignedBigInt(
+        latest.theirBalance,
+        "existing theirBalance",
+      );
+      const incomingMyBalance = parseUnsignedBigInt(myBalance, "incoming myBalance");
+      const incomingTheirBalance = parseUnsignedBigInt(
+        theirBalance,
+        "incoming theirBalance",
+      );
+
+      if (
+        incomingMyBalance + incomingTheirBalance !==
+        existingMyBalance + existingTheirBalance
+      ) {
+        return {
+          valid: false,
+          reason: "balance-sum-mismatch",
+        };
+      }
+
+      if (
+        incomingMyBalance < existingMyBalance ||
+        incomingTheirBalance > existingTheirBalance
+      ) {
+        return {
+          valid: false,
+          reason: "balance-direction-invalid",
+        };
+      }
     }
 
     let secret = null;

tests/stackflow-agent.test.ts

@@ -806,6 +806,228 @@ describe("stackflow agent", () => {
     store.close();
   });
 
+  it("rejects incoming transfer requests with non-sequential nonce", () => {
+    const dbFile = tempDbFile("agent-sign-nonce-gap");
+    const store = new AgentStateStore({ dbFile });
+    const contractId = "ST1TESTABC.contract";
+    const pipeKey = {
+      "principal-1": "ST1LOCAL",
+      "principal-2": "ST1OTHER",
+      token: null,
+    };
+    const pipeId = buildPipeId({ contractId, pipeKey });
+
+    store.upsertTrackedPipe({
+      pipeId,
+      contractId,
+      pipeKey,
+      localPrincipal: "ST1LOCAL",
+      counterpartyPrincipal: "ST1OTHER",
+      token: null,
+    });
+    store.upsertSignatureState({
+      contractId,
+      pipeKey,
+      forPrincipal: "ST1LOCAL",
+      withPrincipal: "ST1OTHER",
+      token: null,
+      myBalance: "90",
+      theirBalance: "10",
+      nonce: "1",
+      action: "1",
+      actor: "ST1LOCAL",
+      mySignature: "0x" + "11".repeat(65),
+      theirSignature: "0x" + "22".repeat(65),
+      secret: null,
+      validAfter: null,
+      beneficialOnly: false,
+    });
+
+    const agent = new StackflowAgentService({
+      stateStore: store,
+      signer: {
+        async sip018Sign() {
+          return "0x" + "44".repeat(65);
+        },
+        async submitDispute() {
+          return { txid: "0x1" };
+        },
+        async callContract() {
+          return { ok: true };
+        },
+      },
+      network: "devnet",
+    });
+
+    const validation = agent.validateIncomingTransfer({
+      pipeId,
+      payload: {
+        contractId,
+        forPrincipal: "ST1LOCAL",
+        withPrincipal: "ST1OTHER",
+        token: null,
+        myBalance: "92",
+        theirBalance: "8",
+        nonce: "3",
+        action: "1",
+        actor: "ST1OTHER",
+        theirSignature: "0x" + "22".repeat(65),
+      },
+    });
+
+    expect(validation.valid).toBe(false);
+    expect(validation.reason).toBe("nonce-not-sequential");
+    store.close();
+  });
+
+  it("rejects incoming transfer requests that change total pipe balance", () => {
+    const dbFile = tempDbFile("agent-sign-balance-sum");
+    const store = new AgentStateStore({ dbFile });
+    const contractId = "ST1TESTABC.contract";
+    const pipeKey = {
+      "principal-1": "ST1LOCAL",
+      "principal-2": "ST1OTHER",
+      token: null,
+    };
+    const pipeId = buildPipeId({ contractId, pipeKey });
+
+    store.upsertTrackedPipe({
+      pipeId,
+      contractId,
+      pipeKey,
+      localPrincipal: "ST1LOCAL",
+      counterpartyPrincipal: "ST1OTHER",
+      token: null,
+    });
+    store.upsertSignatureState({
+      contractId,
+      pipeKey,
+      forPrincipal: "ST1LOCAL",
+      withPrincipal: "ST1OTHER",
+      token: null,
+      myBalance: "90",
+      theirBalance: "10",
+      nonce: "1",
+      action: "1",
+      actor: "ST1LOCAL",
+      mySignature: "0x" + "11".repeat(65),
+      theirSignature: "0x" + "22".repeat(65),
+      secret: null,
+      validAfter: null,
+      beneficialOnly: false,
+    });
+
+    const agent = new StackflowAgentService({
+      stateStore: store,
+      signer: {
+        async sip018Sign() {
+          return "0x" + "44".repeat(65);
+        },
+        async submitDispute() {
+          return { txid: "0x1" };
+        },
+        async callContract() {
+          return { ok: true };
+        },
+      },
+      network: "devnet",
+    });
+
+    const validation = agent.validateIncomingTransfer({
+      pipeId,
+      payload: {
+        contractId,
+        forPrincipal: "ST1LOCAL",
+        withPrincipal: "ST1OTHER",
+        token: null,
+        myBalance: "95",
+        theirBalance: "10",
+        nonce: "2",
+        action: "1",
+        actor: "ST1OTHER",
+        theirSignature: "0x" + "22".repeat(65),
+      },
+    });
+
+    expect(validation.valid).toBe(false);
+    expect(validation.reason).toBe("balance-sum-mismatch");
+    store.close();
+  });
+
+  it("rejects incoming transfer requests with invalid counterparty balance direction", () => {
+    const dbFile = tempDbFile("agent-sign-balance-direction");
+    const store = new AgentStateStore({ dbFile });
+    const contractId = "ST1TESTABC.contract";
+    const pipeKey = {
+      "principal-1": "ST1LOCAL",
+      "principal-2": "ST1OTHER",
+      token: null,
+    };
+    const pipeId = buildPipeId({ contractId, pipeKey });
+
+    store.upsertTrackedPipe({
+      pipeId,
+      contractId,
+      pipeKey,
+      localPrincipal: "ST1LOCAL",
+      counterpartyPrincipal: "ST1OTHER",
+      token: null,
+    });
+    store.upsertSignatureState({
+      contractId,
+      pipeKey,
+      forPrincipal: "ST1LOCAL",
+      withPrincipal: "ST1OTHER",
+      token: null,
+      myBalance: "90",
+      theirBalance: "10",
+      nonce: "1",
+      action: "1",
+      actor: "ST1LOCAL",
+      mySignature: "0x" + "11".repeat(65),
+      theirSignature: "0x" + "22".repeat(65),
+      secret: null,
+      validAfter: null,
+      beneficialOnly: false,
+    });
+
+    const agent = new StackflowAgentService({
+      stateStore: store,
+      signer: {
+        async sip018Sign() {
+          return "0x" + "44".repeat(65);
+        },
+        async submitDispute() {
+          return { txid: "0x1" };
+        },
+        async callContract() {
+          return { ok: true };
+        },
+      },
+      network: "devnet",
+    });
+
+    const validation = agent.validateIncomingTransfer({
+      pipeId,
+      payload: {
+        contractId,
+        forPrincipal: "ST1LOCAL",
+        withPrincipal: "ST1OTHER",
+        token: null,
+        myBalance: "85",
+        theirBalance: "15",
+        nonce: "2",
+        action: "1",
+        actor: "ST1OTHER",
+        theirSignature: "0x" + "22".repeat(65),
+      },
+    });
+
+    expect(validation.valid).toBe(false);
+    expect(validation.reason).toBe("balance-direction-invalid");
+    store.close();
+  });
+
   it("rejects incoming transfer requests with pipe key mismatch", () => {
     const dbFile = tempDbFile("agent-sign-pipekey-mismatch");
     const store = new AgentStateStore({ dbFile });
@@ -935,8 +1157,8 @@ describe("stackflow agent", () => {
       forPrincipal: "ST1LOCAL",
       withPrincipal: "ST1OTHER",
       token: null,
-      myBalance: "100",
-      theirBalance: "0",
+      myBalance: "50",
+      theirBalance: "50",
       nonce: "0",
       action: "1",
       actor: "ST1LOCAL",
@@ -968,14 +1190,22 @@ describe("stackflow agent", () => {
     });
 
     expect(outgoing.actor).toBe("ST1LOCAL");
-    expect(outgoing.myBalance).toBe("75");
-    expect(outgoing.theirBalance).toBe("25");
+    expect(outgoing.myBalance).toBe("25");
+    expect(outgoing.theirBalance).toBe("75");
     expect(outgoing.nonce).toBe("1");
 
     const accepted = await agent.acceptIncomingTransfer({
       pipeId,
       payload: {
-        ...outgoing,
+        contractId,
+        pipeKey,
+        forPrincipal: "ST1LOCAL",
+        withPrincipal: "ST1OTHER",
+        token: null,
+        myBalance: "75",
+        theirBalance: "25",
+        nonce: "1",
+        action: "1",
         actor: "ST1OTHER",
         theirSignature: "0x" + "33".repeat(65),
       },