feat: Add CreateValidator access control feature #406
Conversation
0Tech
changed the title
Codecov Report
@@ Coverage Diff @@
## main #406 +/- ##
=======================================
Coverage ? 53.87%
=======================================
Files ? 683
Lines ? 69906
Branches ? 0
=======================================
Hits ? 37659
Misses ? 29225
Partials ? 3022 |
| // ValidatorAuth defines authorization info of a validator. | ||
| message ValidatorAuth { | ||
| string operator_address = 1 [(gogoproto.moretags) = "yaml:\"operator_address\""]; | ||
| bool creation_allowed = 2 [(gogoproto.moretags) = "yaml:\"creation_allowed\""]; | ||
| } |
There was a problem hiding this comment.
I will simplify the structure if the requirement of the consortium chain is fixed and no further details are added.
| staking.NewAppModule(appCodec, app.StakingKeeper, app.AccountKeeper, app.BankKeeper), | ||
| stakingplus.NewAppModule(appCodec, app.StakingKeeper, app.AccountKeeper, app.BankKeeper, app.ConsortiumKeeper), |
There was a problem hiding this comment.
Replace staking with the wrapper stakingplus.
x/consortium/client/cli/tx.go
Outdated
| FlagAllowedValidatorDelete = "delete" | ||
| ) | ||
|
|
||
| // NewCmdSubmitUpdateConsortiumParamsProposal implements the command to submit a update-consortium-params proposal |
There was a problem hiding this comment.
to submit a update-consortium-params
->
"an"
And below, I think all a need to be change to an in front of update or don't use an. 😅
x/consortium/client/cli/tx.go
Outdated
| deletingValidators := parseCommaSeparated(deletingValidatorsStr) | ||
|
|
||
| createAuths := func(addings, deletings []string) ([]*types.ValidatorAuth, error) { | ||
| auths := []*types.ValidatorAuth{} |
There was a problem hiding this comment.
How about changing like following.
var auths []*types.ValidatorAuth| return auths, nil | ||
| } | ||
|
|
||
| auths, err := createAuths(addingValidators, deletingValidators) |
There was a problem hiding this comment.
What happen if one of the lists to add and one to delete are the same?
There was a problem hiding this comment.
I was concerned about the case too, so it checks the duplication in the function and if it's the case, it will emit an error.
There was a problem hiding this comment.
And please add a unittest for this case.
x/consortium/client/rest/query.go
Outdated
| return | ||
| } | ||
|
|
||
| allowedOperators := []string{} |
There was a problem hiding this comment.
If possible, I think following code is good.
var allowedOperators []string
x/consortium/genesis.go
Outdated
| } | ||
|
|
||
| for _, auth := range validatorAuths { | ||
| keeper.SetValidatorAuth(ctx, auth) |
There was a problem hiding this comment.
This function can be occurred error. So need to handle the error.
x/consortium/keeper/grpc_query.go
Outdated
| return nil, status.Error(codes.InvalidArgument, "invalid request") | ||
| } | ||
|
|
||
| auths := []*types.ValidatorAuth{} |
There was a problem hiding this comment.
var auths []*types.ValidatorAuth
x/consortium/keeper/keeper.go
Outdated
| // | ||
| // CONTRACT: the parameter Subspace must have the param key table already initialized | ||
| func NewKeeper( | ||
| cdc codec.BinaryMarshaler, key sdk.StoreKey, |
There was a problem hiding this comment.
If possible, I think it's good to have each line for every params.
x/consortium/keeper/keeper.go
Outdated
| return ctx.Logger().With("module", "x/"+types.ModuleName) | ||
| } | ||
|
|
||
| // Clean up the states |
| return []abci.ValidatorUpdate{} | ||
| } | ||
|
|
||
| //____________________________________________________________________________ |
There was a problem hiding this comment.
Is it necessary the following codes?
| StakingKeeper interface { | ||
| IterateValidators(ctx sdk.Context, fn func(index int64, validator stakingtypes.ValidatorI) (stop bool)) | ||
| } |
There was a problem hiding this comment.
Good 👍
I thought It's good to describe more explanation about this interface.
|
The |
I added events to the module. Thank you for your suggestion. |
| @@ -0,0 +1,211 @@ | |||
| package cli | |||
There was a problem hiding this comment.
I didn't find unittest of this cli codes.
How about adding unittest of thease cli commands?
You can reference how to developing the cli unittest in https://github.com/line/lbm-sdk/blob/main/x/bank/client/cli/cli_test.go
There was a problem hiding this comment.
I will make a new issue on this.
If you agree, please approve this PR :)
|
If you change some profo files. Please check the You can update |
* main: (44 commits) feat: rewrite issue template and move PR template (#410) fix: validate validator addresses in update-validator-auths proposal (#411) feat: add `bankplus` function to restrict to send coin to inactive smart contract. (#400) build(deps): bump actions/setup-go from 2.1.4 to 2.1.5 (#408) ci: fix branch name on ci script (#409) feat: Add CreateValidator access control feature (#406) build(deps): bump github.com/spf13/viper from 1.9.0 to 1.10.1 (#403) build(deps): bump github.com/rs/zerolog from 1.26.0 to 1.26.1 (#402) fix: fix query signing infos command (#407) build(deps): bump github.com/spf13/cobra from 1.1.3 to 1.3.0 (#399) build(deps): github.com/ulikunitz/xz from 0.5.5 to 0.5.10 (#398) build(deps): bump actions/stale from 3 to 4.1.0 (#396) build(deps): bump actions/cache from 2.1.3 to 2.1.7 (#386) feat: Add the `instantiate_permission` in the `CodeInfoResponse` (#395) fix: fix bug where `StoreCodeAndInstantiateContract`, `UpdateContractStatus`, `UpdateContractStatusProposal` API does not work (#393) docs: modify with latest version of swagger REST interface docs. (#392) fix: fix invalid root hash by bumping up tm-db (#388) chore: fix swagger's config path for wasm (#391) build(deps): bump technote-space/get-diff-action from 5.0.1 to 5.0.2 (#379) fix: update allowance inside AllowedMsgAllowance (#383) ...
0Tech
added
C:x/foundation
Description
The first requirement of the consortium is an access control of
CreateValidatormessage. To implement this feature while not modifying the existing modules, this patch introduces two new modules.consortiummodule, the first one, has two proposals.UpdateConsortiumParamsProposalchanges the parameter of the module by which you may disable the entire consortium related features. You CANNOT enable the module again after disabling it, because it would bring the public chain back to the consortium chain. Therefore, you must enable it by changing the default genesis state (the default is off). The second one,UpdateValidatorAuthsProposalchanges the authorization information of the validators. It is incremental now, but the semantic is subject to change (it could be restful-like). The module has no transactions, but has three queries, one for querying the parameters, and the others for querying validator authorizations.stakingplusmodule, which was not included in the first plan, was introduced to mitigate a possible DoS attack vector. Basically, it is a thin wrapper of the originalstakingmodule, and it queries validator auth infos from the consortium module. If an operator attempts to create a validator without being authorized first, the transaction will be rejected.closes: #384
Before we can merge this PR, please make sure that all the following items have been
checked off. If any of the checklist items are not applicable, please leave them but
write a little note why.
docs/) or specification (x/<module>/spec/)godoccomments.Unreleasedsection inCHANGELOG.mdFiles changedin the Github PR explorerCodecov Reportin the comment section below once CI passes