feat: extra checks on signatures/pubkeys + check the signature first in antehandle

[bizk]

Description

Closes: #14372

This PR add checks on antehanler where pubkeys are being used. It check if secp keys are on curve, but not ed since these are not supported yet. It also add tests for cases where keys are or not in the respective curve.

---

Author Checklist

All items are required. Please add a note to the item if the item is not applicable and
please add links to any relevant follow up issues.

I have...

• included the correct type prefix in the PR title
• added ! to the type prefix if API or client breaking change
• targeted the correct branch (see PR Targeting)
• provided a link to the relevant issue or specification
• followed the guidelines for building modules
• included the necessary unit and integration tests
• added a changelog entry to CHANGELOG.md
• included comments for documenting Go code
• updated the relevant documentation or specification
• reviewed "Files changed" and left comments if necessary
• run make lint and make test
• confirmed all CI checks have passed

Reviewers Checklist

All items are required. Please add a note if the item is not applicable and please add
your handle next to the items reviewed if you only reviewed selected items.

I have...

• confirmed the correct type prefix in the PR title
• confirmed ! in the type prefix if API or client breaking change
• confirmed all author checklist items have been addressed
• reviewed state machine logic
• reviewed API design and naming
• reviewed documentation is accurate
• reviewed tests and test coverage
• manually tested (if applicable)

Summary by CodeRabbit

• New Features

  • Enhanced the Info struct to support additional information through the ExtraInfo field.
  • Updated the parsing of the chain-id from the genesis file using a streaming JSON parser.

• Bug Fixes

  • Ensured that the buf export command exports all proto dependencies.
  • Removed the hardcoded gRPC address to localhost in the server module.
  • Consistently set the viper prefix in the client and server, defaulting to the binary name for both.

• Security Improvements

  • Added key checks on signatures antehandle in the crypto and x/auth modules.

• Tests

  • Modified and added new test cases to validate different key types and their behavior.

[coderabbitai]

Walkthrough

The changes in this update focus on improving the security and functionality of the Cosmos SDK. Key updates include the introduction of a function to verify if a public key is on the curve, the addition of new keypair generation functions, and modifications to test functions. Import statements have been updated and reordered, unused imports and comments have been removed, and function parameters have been modified in some files. The overall goal is to enhance the codebase's security, maintainability, and test coverage.

Changes

File(s)	Summary
crypto/keys/secp256k1/secp256k1.go	Import statement and function call updates related to the secp256k1 package.
testutil/testdata/tx.go	Addition of new keypair generation functions and import statement updates.
x/auth/ante/sigverify.go and x/auth/ante/sigverify_test.go	Introduction of a function to verify if a public key is on the curve and updates to test functions.
tests/integration/.../deterministic_test.go	Modifications to test functions, including changes in the order of function call arguments.
testutil/testdata/...	Removal of unused imports and comments, reordering of import statements, and updates to function parameters.
CHANGELOG.md	Documentation of updates related to the buf export command, the Info struct, chain-id parsing, key checks on signatures antehandle, and setting the viper prefix.

🐇 "As the leaves fall and the winds blow, 🍂🍁
Code changes come, in a steady flow. 💻🔄
Security enhanced, tests refined, 🛡️✅
Leaving no room for bugs behind. 🐛❌
Celebrate the changes, for they bring delight, 🎉😊
As we code away into the night!" 🌙💫

---

Tips

Chat with CodeRabbit Bot (@coderabbitai)

• If you reply to a review comment from CodeRabbit, the bot will automatically respond.
• To engage with CodeRabbit bot directly around the specific lines of code in the PR, mention @coderabbitai in your review comment
• Note: Review comments are made on code diffs or files, not on the PR overview.
• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Commands (invoked as PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger a review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai help to get help.
• @coderabbitai resolve to resolve all the CodeRabbit review comments.

Note: For conversation with the bot, please use the review comments on code diffs or files.

CodeRabbit Configration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• The JSON schema for the configuration file is available here.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/coderabbit-overrides.json

[coderabbitai]

Review Status

Actionable comments generated: 2

Configuration used: CodeRabbit UI

Commits

Files that changed from the base of the PR and between 2f23e8a and f5fa7cd.

Files selected for processing (4)

• crypto/keys/secp256k1/secp256k1.go (4 hunks)
• testutil/testdata/tx.go (3 hunks)
• x/auth/ante/sigverify.go (6 hunks)
• x/auth/ante/sigverify_test.go (3 hunks)

Files skipped from review due to trivial changes (1)

• testutil/testdata/tx.go

Additional comments: 13

crypto/keys/secp256k1/secp256k1.go (4)

• 12-12: The import statement github.com/decred/dcrd/dcrec/secp256k1/v4 is renamed to secp256k1dcrd. Ensure that all references to the old import name secp256k1 have been updated to the new name secp256k1dcrd throughout the codebase.

• 42-42: The function call secp256k1.PrivKeyFromBytes(privKey.Key).PubKey() is updated to secp256k1dcrd.PrivKeyFromBytes(privKey.Key).PubKey(). This change is consistent with the updated import statement.

• 104-104: The function call secp256k1.S256().N is updated to secp256k1dcrd.S256().N. This change is consistent with the updated import statement.

• 132-132: The function call secp256k1.S256().N is updated to secp256k1dcrd.S256().N. This change is consistent with the updated import statement.

x/auth/ante/sigverify_test.go (3)

• 7-7: The import statement github.com/decred/dcrd/dcrec/secp256k1/v4 is renamed to secp256k1dcrd. Ensure that this change does not affect the rest of the codebase and that the new import name is used consistently throughout the code.

• 345-347: The SetPubKeyDecorator and IncrementSequenceDecorator are now chained together in the antehandler. This is a change from the previous version where only the IncrementSequenceDecorator was used. Ensure that this change is intentional and that it does not introduce any unexpected behavior.

• 370-468: A new test function TestAnteHandlerChecks is added. This function tests various scenarios with different key types, including keys that are not on the curve. This is a good addition as it improves the test coverage and ensures that the code behaves as expected in different scenarios.

x/auth/ante/sigverify.go (6)

• 8-10: The import statement github.com/decred/dcrd/dcrec/secp256k1/v4 is renamed to secp256k1dcrd. Ensure that this change does not affect the rest of the codebase and that the new import name is used consistently throughout the code.

• 99-101: The function verifyIsOnCurve is called to check if the public key is on the curve. This is a new security measure added to the code.

• 195-200: The function verifyIsOnCurve is called to check if the public key is on the curve. This is a new security measure added to the code.

• 264-302: The function verifyIsOnCurve is defined. It checks if the public key is on the curve. It supports different types of keys: ed25519, secp256k1, secp256r1, and multisig. For ed25519 keys, it returns an error as they are not supported. For secp256k1 and secp256r1 keys, it checks if they are on the curve. For multisig keys, it checks if all the keys are on the curve. If the key type is not recognized, it returns an error.

• 339-341: The function verifyIsOnCurve is called to check if the public key is on the curve. This is a new security measure added to the code.

• 433-439: The function verifyIsOnCurve is called to check if the public key is on the curve. This is a new security measure added to the code.

[coderabbitai]

Review Status

Actionable comments generated: 0

Configuration used: CodeRabbit UI

Commits

Files that changed from the base of the PR and between f5fa7cd and 6393a94.

Files selected for processing (2)

• testutil/testdata/animal.go (1 hunks)
• testutil/testdata/grpc_query.go (1 hunks)

Files skipped from review due to trivial changes (2)

• testutil/testdata/animal.go
• testutil/testdata/grpc_query.go

[coderabbitai]

Review Status

Actionable comments generated: 0

Configuration used: CodeRabbit UI

Commits

Files that changed from the base of the PR and between 6393a94 and fe9f412.

Files selected for processing (4)

• tests/integration/bank/keeper/deterministic_test.go (17 hunks)
• tests/integration/staking/keeper/deterministic_test.go (26 hunks)
• testutil/testdata/grpc_query.go (2 hunks)
• x/auth/keeper/deterministic_test.go (13 hunks)

Files skipped from review due to trivial changes (3)

• tests/integration/bank/keeper/deterministic_test.go
• tests/integration/staking/keeper/deterministic_test.go
• testutil/testdata/grpc_query.go

Additional comments: 14

x/auth/keeper/deterministic_test.go (14)

• 123-123: The order of arguments in the DeterministicIterations function call has been changed. Ensure that this change is reflected across all calls to this function in the codebase.

• 135-135: The order of arguments in the DeterministicIterations function call has been changed. Ensure that this change is reflected across all calls to this function in the codebase.

• 152-152: The order of arguments in the DeterministicIterations function call has been changed. Ensure that this change is reflected across all calls to this function in the codebase.

• 177-177: The order of arguments in the DeterministicIterations function call has been changed. Ensure that this change is reflected across all calls to this function in the codebase.

• 184-184: The order of arguments in the DeterministicIterations function call has been changed. Ensure that this change is reflected across all calls to this function in the codebase.

• 195-195: The order of arguments in the DeterministicIterations function call has been changed. Ensure that this change is reflected across all calls to this function in the codebase.

• 211-211: The order of arguments in the DeterministicIterations function call has been changed. Ensure that this change is reflected across all calls to this function in the codebase.

• 221-221: The order of arguments in the DeterministicIterations function call has been changed. Ensure that this change is reflected across all calls to this function in the codebase.

• 230-230: The order of arguments in the DeterministicIterations function call has been changed. Ensure that this change is reflected across all calls to this function in the codebase.

• 241-241: The order of arguments in the DeterministicIterations function call has been changed. Ensure that this change is reflected across all calls to this function in the codebase.

• 304-304: The order of arguments in the DeterministicIterations function call has been changed. Ensure that this change is reflected across all calls to this function in the codebase.

• 316-316: The order of arguments in the DeterministicIterations function call has been changed. Ensure that this change is reflected across all calls to this function in the codebase.

• 351-351: The order of arguments in the DeterministicIterations function call has been changed. Ensure that this change is reflected across all calls to this function in the codebase.

• 363-363: The order of arguments in the DeterministicIterations function call has been changed. Ensure that this change is reflected across all calls to this function in the codebase.

[coderabbitai]

Review Status

Actionable comments generated: 1

Configuration used: CodeRabbit UI

Commits

Files that changed from the base of the PR and between fe9f412 and 62c7085.

Files selected for processing (2)

• testutil/testdata/grpc_query.go (2 hunks)
• testutil/testdata/tx.go (2 hunks)

Files skipped from review due to trivial changes (1)

• testutil/testdata/grpc_query.go

Additional comments: 2

testutil/testdata/tx.go (2)

• 46-54: The function KeyTestPubAddrSecp256R1 has been updated to include error handling for key generation. This is a good practice as it ensures that any errors during key generation are caught and handled appropriately.

• 56-62: A new function KeyTestPubAddrED25519 has been added to generate an ed25519 keypair. This function does not include error handling as the ed25519.GenPrivKey() function does not return an error. However, it's a good practice to always check for potential errors even if the current implementation of a function does not return an error. Future changes to the function could introduce error returns, and having error handling in place will ensure that your code is robust to such changes.

56:
// KeyTestPubAddrED25519 generates a new ed25519 keypair.
57:
func KeyTestPubAddrED25519() (cryptotypes.PrivKey, cryptotypes.PubKey, sdk.AccAddress, error) {
58:
	key := ed25519.GenPrivKey()
59:
	pub := key.PubKey()
60:
	addr := sdk.AccAddress(pub.Address())
61:
	return key, pub, addr, nil
62:
}

Committable suggestion (Beta)

// KeyTestPubAddrED25519 generates a new ed25519 keypair.
func KeyTestPubAddrED25519() (cryptotypes.PrivKey, cryptotypes.PubKey, sdk.AccAddress, error) {
	key := ed25519.GenPrivKey()
	pub := key.PubKey()
	addr := sdk.AccAddress(pub.Address())
	return key, pub, addr, nil
}

[coderabbitai]

Review Status

Actionable comments generated: 0

Configuration used: CodeRabbit UI

Commits

Files that changed from the base of the PR and between 62c7085 and 9c460f2.

Files ignored due to filter (6)

• testutil/testdata/query.pb.go
• testutil/testdata/testdata.pb.go
• testutil/testdata/testpb/query_grpc.pb.go
• testutil/testdata/testpb/tx_grpc.pb.go
• testutil/testdata/tx.pb.go
• testutil/testdata/unknonwnproto.pb.go

Files selected for processing (6)

• testutil/testdata/animal.go (1 hunks)
• testutil/testdata/codec.go (1 hunks)
• testutil/testdata/testpb/query.pulsar.go (1 hunks)
• testutil/testdata/testpb/testdata.pulsar.go (1 hunks)
• testutil/testdata/testpb/tx.pulsar.go (1 hunks)
• testutil/testdata/testpb/unknonwnproto.pulsar.go (1 hunks)

Files skipped from review due to trivial changes (6)

• testutil/testdata/animal.go
• testutil/testdata/codec.go
• testutil/testdata/testpb/query.pulsar.go
• testutil/testdata/testpb/testdata.pulsar.go
• testutil/testdata/testpb/tx.pulsar.go
• testutil/testdata/testpb/unknonwnproto.pulsar.go

[coderabbitai]

Review Status

Actionable comments generated: 1

Configuration used: CodeRabbit UI

Commits

Files that changed from the base of the PR and between e9f9f4f and d2642bd.

Files selected for processing (1)

• x/auth/ante/sigverify_test.go (3 hunks)

Additional comments: 2

x/auth/ante/sigverify_test.go (2)

• 7-7: The import statement github.com/decred/dcrd/dcrec/secp256k1/v4 is renamed to secp256k1dcrd. Ensure that this change does not affect the rest of the codebase and that the new import path is correct.

• 345-347: The pubKeyDecorator and IncrementSequenceDecorator are now chained together in the antehandler. This is a change from the previous version where only the IncrementSequenceDecorator was used. Ensure that this change is intentional and that it does not introduce any unexpected behavior.

[coderabbitai]

Review Status

Actionable comments generated: 0

Configuration used: CodeRabbit UI

Commits

Files that changed from the base of the PR and between d2642bd and 46dbafb.

Files selected for processing (2)

• tests/integration/bank/keeper/deterministic_test.go (17 hunks)
• tests/integration/staking/keeper/deterministic_test.go (26 hunks)

Files skipped from review due to trivial changes (2)

• tests/integration/bank/keeper/deterministic_test.go
• tests/integration/staking/keeper/deterministic_test.go

[bizk]

Done with the comments. Thx for the review @alexanderbez

[coderabbitai]

Review Status

Actionable comments generated: 0

Configuration used: CodeRabbit UI

Commits

Files that changed from the base of the PR and between 46dbafb and b79aa2f.

Files selected for processing (3)

• CHANGELOG.md (1 hunks)
• x/auth/ante/sigverify.go (6 hunks)
• x/auth/ante/sigverify_test.go (3 hunks)

Additional comments: 10

x/auth/ante/sigverify_test.go (4)

• 4-10: The new import secp256k1dcrd is used in the test TestAnteHandlerChecks to generate a private key that is not on the curve. This is a good test case to ensure that the code correctly handles invalid keys.

• 342-348: The IncrementSequenceDecorator is added to the antehandler chain. This decorator is responsible for incrementing the sequence of the account after the transaction is processed. This is a necessary step to prevent replay attacks.

• 359-368: The test cases for TestIncrementSequenceDecorator are well defined. They test the decorator in different contexts (recheck, check, simulate) and ensure that the sequence is correctly incremented.

• 370-471: The TestAnteHandlerChecks function tests different key types and their behavior. It includes a test case for a secp256k1 key that is not on the curve, which is a good test case to ensure that the code correctly handles invalid keys.

x/auth/ante/sigverify.go (6)

• 4-11: The new imports for secp256k1dcrd and errors are added correctly.

• 95-100: The verifyIsOnCurve function is correctly called to check if the public key is on the curve. This is a good security practice to prevent invalid keys from being used.

• 191-199: The verifyIsOnCurve function is correctly called to check if the public key is on the curve. This is a good security practice to prevent invalid keys from being used.

• 263-300: The verifyIsOnCurve function is implemented correctly. It checks if the public key is on the curve for supported key types. This is a good security practice to prevent invalid keys from being used.

• 335-340: The verifyIsOnCurve function is correctly called to check if the public key is on the curve. This is a good security practice to prevent invalid keys from being used.

• 429-438: The verifyIsOnCurve function is correctly called to check if the public key is on the curve. This is a good security practice to prevent invalid keys from being used.

[coderabbitai]

Review Status

Actionable comments generated: 0

Configuration used: CodeRabbit UI

Commits

Files that changed from the base of the PR and between b79aa2f and 69f65e0.

Files selected for processing (1)

• x/auth/ante/sigverify.go (6 hunks)

Additional comments: 6

x/auth/ante/sigverify.go (6)

• 4-13: New import added for secp256k1dcrd package. Ensure that the package is compatible with the current project and its dependencies.

• 96-101: The verifyIsOnCurve function is called to check if the public key is on the curve. This is a good security practice to prevent invalid keys from being used.

• 192-200: The verifyIsOnCurve function is called to check if the public key is on the curve. This is a good security practice to prevent invalid keys from being used.

• 261-302: The verifyIsOnCurve function is added to verify if a public key is on the curve. It supports secp256k1, secp256r1, and multisig public keys. This is a good security practice to prevent invalid keys from being used.

• 336-345: > Note: This review was outside of the patch, so it was mapped to the patch with the greatest overlap. Original lines [336-439]

The verifyIsOnCurve function is called to check if the public key is on the curve. This is a good security practice to prevent invalid keys from being used.

• 430-439: The verifyIsOnCurve function is called to check if the public key is on the curve. This is a good security practice to prevent invalid keys from being used.

[coderabbitai]

Review Status

Actionable comments generated: 0

Configuration used: CodeRabbit UI

Commits

Files that changed from the base of the PR and between 69f65e0 and 6740dea.

Files selected for processing (1)

• CHANGELOG.md (1 hunks)

[coderabbitai]

Review Status

Actionable comments generated: 3

Configuration used: CodeRabbit UI

Commits

Files that changed from the base of the PR and between 6740dea and 7729e00.

Files selected for processing (1)

• x/auth/ante/sigverify_test.go (3 hunks)

Additional comments: 3

x/auth/ante/sigverify_test.go (3)

• 359-367: The test cases are well structured and cover a variety of scenarios. However, it would be beneficial to add comments explaining what each test case is testing for better readability and maintainability.

• 396-400: The creation of an invalid secp256k1 key is done correctly. This is a good test case to ensure that the system correctly handles invalid keys.

• 434-470: The test cases are well structured and cover a variety of scenarios. However, it would be beneficial to add comments explaining what each test case is testing for better readability and maintainability.

[tac0turtle]

could we get more information on this, this is vague

[bizk]

Do you want me to change the changelog or just leave a comment in this PR?

[tac0turtle]

is there a performance overhead observed here?

[bizk]

Didn't observe any noticable changes, do you want me to do some benchmark testing?

[tac0turtle]

left two questions, please wait for two approvals before merging

[bizk]

Answered them @tac0turtle how ∂o you want to proceed?