Fix renewal payout validation

consensus/validation.go

@@ -780,12 +780,24 @@ func validateV2FileContracts(ms *MidState, txn types.V2Transaction) error {
 		case *types.V2FileContractRenewal:
 			renewal := *r
 
+			if fc.RenterPublicKey != renewal.NewContract.RenterPublicKey {
+				return fmt.Errorf("file contract renewal %v changes renter public key", i)
+			} else if fc.HostPublicKey != renewal.NewContract.HostPublicKey {
+				return fmt.Errorf("file contract renewal %v changes host public key", i)
+			}
+
+			// validate that the renewal value is equal to existing contract's value.
+			// This must be done as a sum of the outputs, since the individual payouts may have
+			// changed in an unbroadcast revision.
+			totalPayout := renewal.FinalRenterOutput.Value.Add(renewal.RenterRollover).
+				Add(renewal.FinalHostOutput.Value).Add(renewal.HostRollover)
+			existingPayout := fc.RenterOutput.Value.Add(fc.HostOutput.Value)
+			if totalPayout != existingPayout {
+				return fmt.Errorf("file contract renewal %d renewal payout (%s) does not match existing contract payout %s", i, totalPayout, existingPayout)
+			}
+
 			newContractCost := renewal.NewContract.RenterOutput.Value.Add(renewal.NewContract.HostOutput.Value).Add(ms.base.V2FileContractTax(renewal.NewContract))
-			if totalRenter := renewal.FinalRenterOutput.Value.Add(renewal.RenterRollover); totalRenter != fc.RenterOutput.Value {
-				return fmt.Errorf("file contract renewal %v renter payout plus rollover (%d H) does not match old contract payout (%d H)", i, totalRenter, fc.RenterOutput.Value)
-			} else if totalHost := renewal.FinalHostOutput.Value.Add(renewal.HostRollover); totalHost != fc.HostOutput.Value {
-				return fmt.Errorf("file contract renewal %v host payout plus rollover (%d H) does not match old contract payout (%d H)", i, totalHost, fc.HostOutput.Value)
-			} else if rollover := renewal.RenterRollover.Add(renewal.HostRollover); rollover.Cmp(newContractCost) > 0 {
+			if rollover := renewal.RenterRollover.Add(renewal.HostRollover); rollover.Cmp(newContractCost) > 0 {
 				return fmt.Errorf("file contract renewal %v has rollover (%d H) exceeding new contract cost (%d H)", i, rollover, newContractCost)
 			} else if err := validateContract(renewal.NewContract); err != nil {
 				return fmt.Errorf("file contract renewal %v initial revision %s", i, err)

consensus/validation_test.go

@@ -1909,6 +1909,68 @@ func TestV2RenewalResolution(t *testing.T) {
 				txn.SiacoinOutputs[0].Value = txn.SiacoinInputs[0].Parent.SiacoinOutput.Value.Sub(partial).Sub(cs.V2FileContractTax(renewal.NewContract))
 			},
 		},
+		{
+			desc: "valid renewal - changed host payout",
+			renewFn: func(txn *types.V2Transaction) {
+				// transfers part of the renter payout to the host
+				renewal := txn.FileContractResolutions[0].Resolution.(*types.V2FileContractRenewal)
+				renewal.FinalHostOutput.Value = renewal.HostRollover
+				renewal.HostRollover = types.ZeroCurrency
+				renewal.FinalRenterOutput.Value = renewal.RenterRollover
+				renewal.RenterRollover = types.ZeroCurrency
+				partial := renewal.FinalRenterOutput.Value.Div64(2)
+				renewal.FinalRenterOutput.Value = partial
+				renewal.FinalHostOutput.Value = renewal.FinalHostOutput.Value.Add(partial)
+				// subtract the cost from the change output
+				txn.SiacoinOutputs[0].Value = txn.SiacoinInputs[0].Parent.SiacoinOutput.Value.Sub(renewal.NewContract.RenterOutput.Value).Sub(renewal.NewContract.HostOutput.Value).Sub(cs.V2FileContractTax(renewal.NewContract))
+			},
+		},
+		{
+			desc: "valid renewal - changed renter payout",
+			renewFn: func(txn *types.V2Transaction) {
+				// transfers part of the host payout to the renter
+				renewal := txn.FileContractResolutions[0].Resolution.(*types.V2FileContractRenewal)
+				renewal.FinalHostOutput.Value = renewal.HostRollover
+				renewal.HostRollover = types.ZeroCurrency
+				renewal.FinalRenterOutput.Value = renewal.RenterRollover
+				renewal.RenterRollover = types.ZeroCurrency
+				partial := renewal.FinalHostOutput.Value.Div64(2)
+				renewal.FinalRenterOutput.Value = partial
+				renewal.FinalRenterOutput.Value = renewal.FinalRenterOutput.Value.Add(partial)
+				// subtract the cost from the change output
+				txn.SiacoinOutputs[0].Value = txn.SiacoinInputs[0].Parent.SiacoinOutput.Value.Sub(renewal.NewContract.RenterOutput.Value).Sub(renewal.NewContract.HostOutput.Value).Sub(cs.V2FileContractTax(renewal.NewContract))
+			},
+		},
+		{
+			desc: "invalid renewal - total payout exceeding parent",
+			renewFn: func(txn *types.V2Transaction) {
+				// transfers part of the renter payout to the host
+				renewal := txn.FileContractResolutions[0].Resolution.(*types.V2FileContractRenewal)
+				renewal.FinalRenterOutput.Value = renewal.FinalRenterOutput.Value.Add(types.Siacoins(1))
+			},
+			errString: "does not match existing contract payout",
+		},
+		{
+			desc: "invalid renewal - total payout less than parent",
+			renewFn: func(txn *types.V2Transaction) {
+				renewal := txn.FileContractResolutions[0].Resolution.(*types.V2FileContractRenewal)
+				renewal.RenterRollover = renewal.RenterRollover.Sub(types.Siacoins(1))
+				txn.SiacoinOutputs[0].Value = txn.SiacoinInputs[0].Parent.SiacoinOutput.Value.Sub(types.Siacoins(1)).Sub(cs.V2FileContractTax(renewal.NewContract))
+			},
+			errString: "does not match existing contract payout",
+		},
+		{
+			desc: "invalid renewal - total payout less than parent - no rollover",
+			renewFn: func(txn *types.V2Transaction) {
+				renewal := txn.FileContractResolutions[0].Resolution.(*types.V2FileContractRenewal)
+				renewal.FinalRenterOutput.Value = renewal.RenterRollover.Sub(types.Siacoins(1))
+				renewal.FinalHostOutput.Value = renewal.HostRollover
+				renewal.RenterRollover = types.ZeroCurrency
+				renewal.HostRollover = types.ZeroCurrency
+				txn.SiacoinOutputs[0].Value = txn.SiacoinInputs[0].Parent.SiacoinOutput.Value.Sub(renewal.FinalRenterOutput.Value).Sub(renewal.FinalHostOutput.Value).Sub(cs.V2FileContractTax(renewal.NewContract))
+			},
+			errString: "siacoin inputs (1000000000000000000000000000 H) do not equal outputs (1001000000000000000000000000 H)", // this is an inputs != outputs error because the renewal is validated there first
+		},
 		{
 			desc: "invalid renewal - bad new contract renter signature",
 			renewFn: func(txn *types.V2Transaction) {
@@ -1925,6 +1987,28 @@ func TestV2RenewalResolution(t *testing.T) {
 			},
 			errString: "invalid host signature",
 		},
+		{
+			desc: "invalid renewal - different host key",
+			renewFn: func(txn *types.V2Transaction) {
+				renewal := txn.FileContractResolutions[0].Resolution.(*types.V2FileContractRenewal)
+				sk := types.GeneratePrivateKey()
+				renewal.NewContract.HostPublicKey = sk.PublicKey()
+				contractSigHash := cs.ContractSigHash(renewal.NewContract)
+				renewal.NewContract.HostSignature = sk.SignHash(contractSigHash)
+			},
+			errString: "changes host public key",
+		},
+		{
+			desc: "invalid renewal - different renter key",
+			renewFn: func(txn *types.V2Transaction) {
+				renewal := txn.FileContractResolutions[0].Resolution.(*types.V2FileContractRenewal)
+				sk := types.GeneratePrivateKey()
+				renewal.NewContract.RenterPublicKey = sk.PublicKey()
+				contractSigHash := cs.ContractSigHash(renewal.NewContract)
+				renewal.NewContract.RenterSignature = sk.SignHash(contractSigHash)
+			},
+			errString: "changes renter public key",
+		},
 		{
 			desc: "invalid renewal - not enough host funds",
 			renewFn: func(txn *types.V2Transaction) {

rhp/v4/encoding.go

@@ -263,10 +263,12 @@ func (r *RPCRenewContractResponse) maxLen() int {
 
 func (r *RPCRenewContractSecondResponse) encodeTo(e *types.Encoder) {
 	r.RenterRenewalSignature.EncodeTo(e)
+	r.RenterContractSignature.EncodeTo(e)
 	types.EncodeSlice(e, r.RenterSatisfiedPolicies)
 }
 func (r *RPCRenewContractSecondResponse) decodeFrom(d *types.Decoder) {
 	r.RenterRenewalSignature.DecodeFrom(d)
+	r.RenterContractSignature.DecodeFrom(d)
 	types.DecodeSlice(d, &r.RenterSatisfiedPolicies)
 }
 func (r *RPCRenewContractSecondResponse) maxLen() int {
@@ -331,10 +333,12 @@ func (r *RPCRefreshContractResponse) maxLen() int {
 
 func (r *RPCRefreshContractSecondResponse) encodeTo(e *types.Encoder) {
 	r.RenterRenewalSignature.EncodeTo(e)
+	r.RenterContractSignature.EncodeTo(e)
 	types.EncodeSlice(e, r.RenterSatisfiedPolicies)
 }
 func (r *RPCRefreshContractSecondResponse) decodeFrom(d *types.Decoder) {
 	r.RenterRenewalSignature.DecodeFrom(d)
+	r.RenterContractSignature.DecodeFrom(d)
 	types.DecodeSlice(d, &r.RenterSatisfiedPolicies)
 }
 func (r *RPCRefreshContractSecondResponse) maxLen() int {

rhp/v4/rhp.go

@@ -310,6 +310,7 @@ type (
 	// RPCRefreshContractSecondResponse implements Object.
 	RPCRefreshContractSecondResponse struct {
 		RenterRenewalSignature  types.Signature         `json:"renterRenewalSignature"`
+		RenterContractSignature types.Signature         `json:"renterContractSignature"`
 		RenterSatisfiedPolicies []types.SatisfiedPolicy `json:"renterSatisfiedPolicies"`
 	}
 	// RPCRefreshContractThirdResponse implements Object.
@@ -344,6 +345,7 @@ type (
 	// RPCRenewContractSecondResponse implements Object.
 	RPCRenewContractSecondResponse struct {
 		RenterRenewalSignature  types.Signature         `json:"renterRenewalSignature"`
+		RenterContractSignature types.Signature         `json:"renterContractSignature"`
 		RenterSatisfiedPolicies []types.SatisfiedPolicy `json:"renterSatisfiedPolicies"`
 	}
 	// RPCRenewContractThirdResponse implements Object.