whitelist replay deployer

[dustinxie]

Description

(#3965) has enabled pre-EIP155 unprotected tx. To ensure safety against replay attack, we limit the deployer address to an expected whitelist.

Fixes #(issue)

Type of change

Please delete options that are not relevant.

• [] Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• [] Code refactor or improvement
• [] Breaking change (fix or feature that would cause a new or changed behavior of existing functionality)
• [] This change requires a documentation update

How Has This Been Tested?

Please describe the tests that you ran to verify your changes. Provide instructions so we can reproduce. Please also list any relevant details for your test configuration

• make test
• [] fullsync
• [] Other test (please specify)

Test Configuration:

• Firmware version:
• Hardware:
• Toolchain:
• SDK:

Checklist:

• [] My code follows the style guidelines of this project
• [] I have performed a self-review of my code
• [] I have commented my code, particularly in hard-to-understand areas
• [] I have made corresponding changes to the documentation
• [] My changes generate no new warnings
• [] I have added tests that prove my fix is effective or that my feature works
• [] New and existing unit tests pass locally with my changes
• [] Any dependent changes have been merged and published in downstream modules

[CoderZhi]

for what?

[dustinxie]

for check the received action

[Liuhaai]

unnecessary to do filtering inside API

[dustinxie]

i think we should? otherwise it enters workingset and throws error
similar to ChainID check, we filter and reject inside API as well (also check and throw error in workingset)

[CoderZhi]

Let's leave it to next PR: not sure we need to add a function to the blockchain interface just for filtering purpose.

[dustinxie]

it is in blockchain interface for 2 reasons:

1. workingset needs it when processing actions
2. here core service use it for whitelist deployer check

or what is your suggestion?

[CoderZhi]

not sure whether it is appropriate to add it to context in this way. btw, if it is added to context, no need to add IsDeployerWhitelisted to Blockchain

[dustinxie]

add to context is for workingset to use when process actions, add to Blockchain is for coreservice to use, as explained above

or what is your suggestion?

[CoderZhi]

quote what you said above:

it is in blockchain interface for 2 reasons:

workingset needs it when processing actions
here core service use it for whitelist deployer check

[CoderZhi]

what if the field is added to genesis?

[dustinxie]

genesis.Blockchain is also an option, but looking at the fields I feel it is more appropriate to add here?
and by adding to genesis.Blockchain, we still need the new func in coreservice and context

[CoderZhi]

are you sure?

[codecov]

Codecov Report

Attention: 530 lines in your changes are missing coverage. Please review.

Comparison is base (e1f0636) 75.38% compared to head (fa9b5c6) 76.18%.
Report is 158 commits behind head on master.

Files	Patch %	Lines
action/protocol/staking/staking_statereader.go	69.76%	35 Missing and 17 partials ⚠️
action/protocol/execution/evm/evm.go	48.38%	47 Missing and 1 partial ⚠️
api/coreservice.go	62.96%	34 Missing and 6 partials ⚠️
api/web3server.go	79.24%	30 Missing and 3 partials ⚠️
action/candidate_endorsement.go	0.00%	31 Missing ⚠️
action/protocol/staking/protocol.go	36.36%	28 Missing ⚠️
action/candidate_activate.go	0.00%	25 Missing ⚠️
...tion/protocol/staking/contractstake_bucket_type.go	0.00%	24 Missing ⚠️
action/protocol/rewarding/fund.go	23.07%	19 Missing and 1 partial ⚠️
api/websocket.go	0.00%	20 Missing ⚠️
... and 36 more

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #4009      +/-   ##
==========================================
+ Coverage   75.38%   76.18%   +0.80%     
==========================================
  Files         303      338      +35     
  Lines       25923    28795    +2872     
==========================================
+ Hits        19541    21938    +2397     
- Misses       5360     5738     +378     
- Partials     1022     1119      +97     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[envestcc]

It's better to use a function to parse string to address, supporting ethAddr and ioAddr. Some similar code lies in ioctl/util/util.go:157.

[dustinxie]

fixed

[envestcc]

This check maybe more suitable to be placed in the validate function, executed before the runAction function.

[dustinxie]

validate() does not have actions as input, so cannot check the sender address is whitelisted or not

[sonarqubecloud]

Quality Gate passed

The SonarCloud Quality Gate passed, but some issues were introduced.

1 New issue
0 Security Hotspots
No data about Coverage
2.2% Duplication on New Code

See analysis details on SonarCloud