Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(core): add timestamp check #72

Merged
merged 24 commits into from
Dec 9, 2024
Merged

feat(core): add timestamp check #72

merged 24 commits into from
Dec 9, 2024

Conversation

mariocao
Copy link
Member

@mariocao mariocao commented Dec 6, 2024

Motivation

To enhance the security and integrity of the SEDA protocol, we need to ensure that results cannot be posted with timestamps that precede their corresponding requests. This validation prevents potential temporal inconsistencies in the DR (Data Request) lifecycle.

Explanation of Changes

The changes introduce timestamp validation in the SedaCoreV1 contract:

  1. Added a new error type InvalidResultTimestamp for cases where result timestamps precede request timestamps
  2. Extended the storage layout with a requestTimestamps mapping to track timestamps of pending requests
  3. Modified postRequest to store the request timestamp
  4. Enhanced postResult to:
    • Validate that result timestamps are after request timestamps
    • Clean up the timestamp storage when processing results
    • Revert with InvalidResultTimestamp if validation fails

Important

The implementation allows for backwards compatibility by not enforcing validation for requests not tracked by this contract (where requestTimestamp = 0). Is this what we want?

Testing

Added new test cases in test/core/SedaCoreV1.test.ts:

  1. Modified the test fixtures to include an edge case with an invalid timestamp (set to 1 unix timestamp - 1970-01-01T00:00:01Z)
  2. Added a new test case should reject results with invalid timestamps that:
    • Posts a request
    • Attempts to post a result with a timestamp from 1970
    • Verifies that the transaction reverts with InvalidResultTimestamp error

Related PRs and Issues

mariocao and others added 23 commits December 3, 2024 15:43
@mariocao
feat(prover): support UUPS proxy and storage solution
208b4c4
@mariocao
test: update contracts to latest changes
ee8cd26
@mariocao
test: add UPPS proxy upgrade tests
58dc5c8
@mariocao
chore(ignition): fix modules to UUPS changes
622cd6d
@mariocao
chore: add prettier as sol formatter
8b38696
@mariocao
feat(core): add UUPS support
078e178
@mariocao
test: reorganize and update tests
7fba9d1
@mariocao
chore(ignition): update ignition core v1 module
5b2bc93
@mariocao
fix(prover): disable initializers on constructor
47ac2e3
@mariocao
feat(core): add support for UUPS proxy
ff34277
@mariocao
refactor: rename storage internal functions
8fadfa0
@mariocao
test(core): use proxy in test deployments
ccf94c5
@mariocao
chore: bump versions
48e09a9
@mariocao
chore(ignition): remove core v1 module
d787ee5
@mariocao
chore(tasks): add deploy tasks
30021ca
@mariocao
refactor(contracts): add ISedaCore interface
c5efef1
@mariocao
test(proxy): add seda core proxy tests
242dd3b
@mariocao
chore(tasks): fix minor bug and restructure
ca64aa5
@mariocao
chore(tasks): add reset flag to replace existing deployments
b3d515a
@Thomasvdam
chore(tasks): simplify parameter file validation
1173400 
Also make the deployProxyContract task typed, so it's more explicit
about the contracts we're supporting and what constructor arguments they
need.
@mariocao
refactor(permissioned): use getRequest from RequestHandlerBase
a50aeda
@mariocao
feat(core): add storage slot to RequestHandlerBase
f816df5
@mariocao
feat(core): check timestamp if request is tracked by contract
f9f0a01
Thomasvdam
Thomasvdam approved these changes Dec 9, 2024
View reviewed changes
Copy link
Member

@Thomasvdam Thomasvdam left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The implementation allows for backwards compatibility by not enforcing validation for requests not tracked by this contract (where requestTimestamp = 0). Is this what we want?

This makes sense to me for our reference implementation. If people want to add additional 'freshness' constraints they can implement that in their own core contract or another contract in between.

@mariocao mariocao merged commit f0ec1fa into main Dec 9, 2024
1 check passed
@mariocao mariocao deleted the feat/timestamp branch December 9, 2024 19:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Thomasvdam Thomasvdam Thomasvdam approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

✨ Add “result timestamp window” to core contract
2 participants
@mariocao @Thomasvdam