Merge pull request #81 from LaGodxy/feature/comprehensive-validation-layer

Feature/comprehensive validation layer

Author: ISTIFANUS-N

contracts/insurance/src/errors.rs

@@ -4,6 +4,7 @@ use soroban_sdk::contracterror;
 #[contracterror]
 #[derive(Copy, Clone, Debug, Eq, PartialEq)]
 pub enum InsuranceError {
+    NotInitialized = 499,
     AlreadyInitialized = 500,
     UserNotInsured = 501,
     ClaimNotFound = 502,

contracts/insurance/src/lib.rs

@@ -64,14 +64,15 @@ impl InsurancePool {
         Ok(())
     }
 
-    pub fn pay_premium(env: Env, user: Address) {
+    pub fn pay_premium(env: Env, user: Address) -> Result<(), InsuranceError> {
         user.require_auth();
 
         let token_addr = env
             .storage()
             .instance()
             .get::<_, Address>(&DataKey::Token)
-            .unwrap();
+            .ok_or(InsuranceError::NotInitialized)?;
+
         let premium_amount = env
             .storage()
             .instance()
@@ -84,6 +85,8 @@ impl InsurancePool {
         env.storage()
             .instance()
             .set(&DataKey::IsInsured(user), &true);
+
+        Ok(())
     }
 
     pub fn file_claim(env: Env, user: Address, course_id: u64) -> Result<u64, InsuranceError> {
@@ -103,11 +106,12 @@ impl InsurancePool {
             .storage()
             .instance()
             .get::<_, u64>(&DataKey::ClaimCount)
-            .unwrap();
+            .unwrap_or(0);
+
         claim_count += 1;
 
         let claim = Claim {
-            user: user.clone(),
+            user,
             course_id,
             status: ClaimStatus::Pending,
         };
@@ -167,7 +171,8 @@ impl InsurancePool {
             .storage()
             .instance()
             .get::<_, Address>(&DataKey::Token)
-            .unwrap();
+            .ok_or(InsuranceError::NotInitialized)?;
+
         let payout_amount = env
             .storage()
             .instance()
@@ -178,6 +183,7 @@ impl InsurancePool {
         client.transfer(&env.current_contract_address(), &claim.user, &payout_amount);
 
         claim.status = ClaimStatus::Paid;
+
         env.storage()
             .instance()
             .set(&DataKey::Claim(claim_id), &claim);
@@ -190,22 +196,25 @@ impl InsurancePool {
         Ok(())
     }
 
-    pub fn withdraw(env: Env, amount: i128) {
+    pub fn withdraw(env: Env, amount: i128) -> Result<(), InsuranceError> {
         let admin = env
             .storage()
             .instance()
             .get::<_, Address>(&DataKey::Admin)
-            .unwrap();
+            .ok_or(InsuranceError::NotInitialized)?;
+
         admin.require_auth();
 
         let token_addr = env
             .storage()
             .instance()
             .get::<_, Address>(&DataKey::Token)
-            .unwrap();
-        let client = token::Client::new(&env, &token_addr);
+            .ok_or(InsuranceError::NotInitialized)?;
 
+        let client = token::Client::new(&env, &token_addr);
         client.transfer(&env.current_contract_address(), &admin, &amount);
+
+        Ok(())
     }
 
     // ===== View Functions =====

contracts/teachlink/src/bridge.rs

@@ -5,6 +5,7 @@ use crate::storage::{
     VALIDATORS,
 };
 use crate::types::{BridgeTransaction, CrossChainMessage};
+use crate::validation::BridgeValidator;
 use soroban_sdk::{symbol_short, vec, Address, Env, IntoVal, Map, Vec};
 
 pub struct Bridge;
@@ -59,10 +60,14 @@ impl Bridge {
     ) -> Result<u64, BridgeError> {
         from.require_auth();
 
-        // Validate inputs
-        if amount <= 0 {
-            return Err(BridgeError::AmountMustBePositive);
-        }
+        // Validate all input parameters
+        BridgeValidator::validate_bridge_out(
+            &env,
+            &from,
+            amount,
+            destination_chain,
+            &destination_address,
+        )?;
 
         // Check if destination chain is supported
         let supported_chains: Map<u32, bool> = env
@@ -161,11 +166,14 @@ impl Bridge {
         message: CrossChainMessage,
         validator_signatures: Vec<Address>,
     ) -> Result<(), BridgeError> {
-        // Validate that we have enough validator signatures
+        // Validate all input parameters
         let min_validators: u32 = env.storage().instance().get(&MIN_VALIDATORS).unwrap();
-        if (validator_signatures.len() as u32) < min_validators {
-            return Err(BridgeError::InsufficientValidatorSignatures);
-        }
+        BridgeValidator::validate_bridge_completion(
+            &env,
+            &message,
+            &validator_signatures,
+            min_validators,
+        )?;
 
         // Verify all signatures are from valid validators
         let validators: Map<Address, bool> = env.storage().instance().get(&VALIDATORS).unwrap();

contracts/teachlink/src/escrow.rs

@@ -5,6 +5,7 @@ use crate::events::{
 };
 use crate::storage::{ESCROWS, ESCROW_COUNT};
 use crate::types::{DisputeOutcome, Escrow, EscrowApprovalKey, EscrowStatus};
+use crate::validation::EscrowValidator;
 use soroban_sdk::{symbol_short, vec, Address, Bytes, Env, IntoVal, Map, Vec};
 
 pub struct EscrowManager;
@@ -24,32 +25,18 @@ impl EscrowManager {
     ) -> Result<u64, EscrowError> {
         depositor.require_auth();
 
-        if amount <= 0 {
-            return Err(EscrowError::AmountMustBePositive);
-        }
-
-        if signers.len() == 0 {
-            return Err(EscrowError::AtLeastOneSignerRequired);
-        }
-
-        if threshold == 0 || threshold > signers.len() as u32 {
-            return Err(EscrowError::InvalidSignerThreshold);
-        }
-
-        let now = env.ledger().timestamp();
-        if let Some(refund_time) = refund_time {
-            if refund_time < now {
-                return Err(EscrowError::RefundTimeMustBeInFuture);
-            }
-        }
-
-        if let (Some(release), Some(refund)) = (release_time, refund_time) {
-            if refund < release {
-                return Err(EscrowError::RefundTimeMustBeAfterReleaseTime);
-            }
-        }
-
-        Self::ensure_unique_signers(env, &signers)?;
+        EscrowValidator::validate_create_escrow(
+            env,
+            &depositor,
+            &beneficiary,
+            &token,
+            amount,
+            &signers,
+            threshold,
+            release_time,
+            refund_time,
+            &arbitrator,
+        )?;
 
         env.invoke_contract::<()>(
             &token,
@@ -62,10 +49,11 @@ impl EscrowManager {
             ],
         );
 
-        let mut escrow_count: u64 = env.storage().instance().get(&ESCROW_COUNT).unwrap_or(0u64);
+        let mut escrow_count: u64 = env.storage().instance().get(&ESCROW_COUNT).unwrap_or(0);
         escrow_count += 1;
         env.storage().instance().set(&ESCROW_COUNT, &escrow_count);
 
+        let now = env.ledger().timestamp();
         let escrow = Escrow {
             id: escrow_count,
             depositor,
@@ -106,6 +94,7 @@ impl EscrowManager {
             escrow_id,
             signer: signer.clone(),
         };
+
         if env.storage().persistent().has(&approval_key) {
             return Err(EscrowError::SignerAlreadyApproved);
         }
@@ -129,24 +118,11 @@ impl EscrowManager {
         caller.require_auth();
 
         let mut escrow = Self::load_escrow(env, escrow_id)?;
-        Self::ensure_pending(&escrow)?;
 
-        if !Self::is_release_caller(&escrow, &caller) {
-            return Err(EscrowError::CallerNotAuthorized);
-        }
-
-        if escrow.approval_count < escrow.threshold {
-            return Err(EscrowError::InsufficientApprovals);
-        }
-
-        if let Some(release_time) = escrow.release_time {
-            let now = env.ledger().timestamp();
-            if now < release_time {
-                return Err(EscrowError::ReleaseTimeNotReached);
-            }
-        }
+        EscrowValidator::validate_release_conditions(&escrow, &caller, env.ledger().timestamp())?;
 
         Self::transfer_from_contract(env, &escrow.token, &escrow.beneficiary, escrow.amount);
+
         escrow.status = EscrowStatus::Released;
         Self::save_escrow(env, escrow_id, escrow.clone());
 
@@ -173,11 +149,13 @@ impl EscrowManager {
         let refund_time = escrow.refund_time.ok_or(EscrowError::RefundNotEnabled)?;
 
         let now = env.ledger().timestamp();
+
         if now < refund_time {
             return Err(EscrowError::RefundTimeNotReached);
         }
 
         Self::transfer_from_contract(env, &escrow.token, &escrow.depositor, escrow.amount);
+
         escrow.status = EscrowStatus::Refunded;
         Self::save_escrow(env, escrow_id, escrow.clone());
 
@@ -206,6 +184,7 @@ impl EscrowManager {
         }
 
         Self::transfer_from_contract(env, &escrow.token, &escrow.depositor, escrow.amount);
+
         escrow.status = EscrowStatus::Cancelled;
         Self::save_escrow(env, escrow_id, escrow.clone());
 
@@ -250,6 +229,7 @@ impl EscrowManager {
         arbitrator.require_auth();
 
         let mut escrow = Self::load_escrow(env, escrow_id)?;
+
         if escrow.status != EscrowStatus::Disputed {
             return Err(EscrowError::EscrowNotInDispute);
         }
@@ -287,47 +267,32 @@ impl EscrowManager {
         Ok(())
     }
 
+    // ---------- Views ----------
+
     pub fn get_escrow(env: &Env, escrow_id: u64) -> Option<Escrow> {
-        let escrows = Self::load_escrows(env);
-        escrows.get(escrow_id)
+        Self::load_escrows(env).get(escrow_id)
     }
 
     pub fn get_escrow_count(env: &Env) -> u64 {
-        env.storage().instance().get(&ESCROW_COUNT).unwrap_or(0u64)
+        env.storage().instance().get(&ESCROW_COUNT).unwrap_or(0)
     }
 
     pub fn has_approved(env: &Env, escrow_id: u64, signer: Address) -> bool {
-        let approval_key = EscrowApprovalKey { escrow_id, signer };
-        env.storage().persistent().has(&approval_key)
+        let key = EscrowApprovalKey { escrow_id, signer };
+        env.storage().persistent().has(&key)
     }
 
-    fn ensure_unique_signers(env: &Env, signers: &Vec<Address>) -> Result<(), EscrowError> {
-        let mut seen: Map<Address, bool> = Map::new(env);
-        for signer in signers.iter() {
-            if seen.get(signer.clone()).unwrap_or(false) {
-                return Err(EscrowError::DuplicateSigner);
-            }
-            seen.set(signer.clone(), true);
-        }
-        Ok(())
-    }
+    // ---------- Internal Helpers ----------
 
     fn is_signer(signers: &Vec<Address>, signer: &Address) -> bool {
-        for candidate in signers.iter() {
-            if candidate == *signer {
+        for s in signers.iter() {
+            if s == *signer {
                 return true;
             }
         }
         false
     }
 
-    fn is_release_caller(escrow: &Escrow, caller: &Address) -> bool {
-        if *caller == escrow.depositor || *caller == escrow.beneficiary {
-            return true;
-        }
-        Self::is_signer(&escrow.signers, caller)
-    }
-
     fn ensure_pending(escrow: &Escrow) -> Result<(), EscrowError> {
         if escrow.status != EscrowStatus::Pending {
             return Err(EscrowError::EscrowNotPending);

contracts/teachlink/src/lib.rs

@@ -71,6 +71,7 @@ mod score;
 mod storage;
 mod tokenization;
 mod types;
+mod validation;
 
 pub use errors::{BridgeError, EscrowError, RewardsError};
 pub use types::{