decentraland / transactions-server

70%

master: 70%

LAST BUILD ON BRANCH refs/tags/1.13.0

branch: SELECT

CHANGE BRANCH

x

• No branch selected
• chore/add-coveralls
• dependabot/npm_and_yarn/browserslist-4.16.6
• docs/add-ai-files
• docs/default-env
• docs/relay-strategy-todo
• docs/update-readme
• feat/add-coveralls-to-pr
• feat/add-logs
• feat/add-oz-relayer
• feat/add-polygon-amoy-support
• feat/add-release-job
• feat/add-replicas
• feat/add-tracing
• feat/allow-regex-in-cors
• feat/change-gelato-api-endpoints
• feat/check-contract-address
• feat/check-coverall
• feat/check-gas-price
• feat/enable-store-low-sales
• feat/enhance-oz-relayer-metrics
• feat/enhance-relayer-security
• feat/error-codes
• feat/gifting-changes
• feat/implement-gelatto
• feat/improve-transaction-middleware-errors
• feat/min-sale-price
• feat/pg
• feat/pg-component
• feat/reenable-store-sale-check
• feat/refactor-relay-providers
• feat/remove-contract-label-metric
• feat/replace-goerli
• feat/replace-network-mapping
• feat/send-rejected-txn-metrics
• feat/test-coveralls
• feat/thegraph-component
• feat/track-relayer-errors
• feat/update-error-code-when-checking-gas-price
• feat/update-gelato-sdk-dependency
• feat/update-high-congestion-error-code
• feat/update-meta-tx-send-structure
• feat/use-new-ci
• feat/use-node-18-alpine
• feat/whitelist-txn-for-gas-cap
• feature/remove-old-service-infra
• fix/add-gas-error-metrics
• fix/add-tracer-to-logger
• fix/ci-chain-name
• fix/cors-split-missing
• fix/gas-error-metrics
• fix/install
• fix/polygon-mainnet
• fix/relayer
• fix/remove-data-from-metrics
• fix/remove-gelato-feature-flag
• fix/remove-old-infra-code
• fix/small-change
• fix/test-code-lol
• fix/update-dep
• fix/update-http-requests-logger
• fix/update-tests
• master
• refs/tags/1.10.0
• refs/tags/1.10.1
• refs/tags/1.10.2
• refs/tags/1.11.0
• refs/tags/1.12.0
• refs/tags/1.13.0
• refs/tags/1.2.0
• refs/tags/1.2.1
• refs/tags/1.3.0
• refs/tags/1.4.0
• refs/tags/1.4.1
• refs/tags/1.4.2
• refs/tags/1.4.3
• refs/tags/1.5.0
• refs/tags/1.5.1
• refs/tags/1.7.0
• refs/tags/1.8.0
• refs/tags/1.9.0
• refs/tags/1.9.1
• refs/tags/v1
• release
• staging

Build # 25521527543

Build Type

push

github

Committed by web-flow

Commit Message

feat: validate the relayed method is executeMetaTransaction (#137)

* feat: validate the relayed method is executeMetaTransaction

* fix: drop user-controlled selector label from rejection counter

The selector label on dcl_error_invalid_function_selector was derived
from untrusted input (the calldata's first 4 bytes), giving an attacker
unbounded cardinality on a Prometheus time series. The counter is now
scalar; the offending selector still rides on the typed error and the
warn log for triage.

* test: align checkFunctionSelector spec with dcl-testing conventions

Rename the drain-attack describe to use the "when ..." form, drop the
forbidden "when" from the it.each title, and replace generic "should not
throw" descriptions with ones that surface the metric assertion the
tests already make.

* feat: reject meta-tx whose userAddress matches a broadcaster EOA

Extends checkFunctionSelector with a self-relay guard: decodes the
executeMetaTransaction calldata and rejects when the inner userAddress
is one of the EOAs we use to broadcast on chain.

Wires getRelayerAddresses through the relay-router so the validator
stays provider-agnostic. Gelato funds its own broadcasters and omits
the method; OpenZeppelin lazily fetches and caches the set with a 1h
TTL — refresh failures are metric-only.

Public rejection message is generic ("Invalid transaction data.");
offending details stay on the error instance for structured warn logs.

- new SelfRelayUserAddressError -> 400 with generic body
- counters for rejection (dcl_error_self_relay_user_address) and
  cache-refresh failures (dcl_error_relayer_addresses_refresh_failed)
- integration spec hitting the real OZ API (skips when creds absent)

* feat: harden relayer against quota TOCTOU and sale-price bypass

- Atomic reserveQuota (advisory-locked SELECT/INSERT) plus session_id-keyed
  confirmReservation/releaseReservation; replaces the post-broadcast quota
  write and closes the per-user TOCTOU window.
- Read-only... (continued)

Coverage Stats

119 of 189 branches covered (62.96%)

Branch coverage included in aggregate %.

153 of 199 new or added lines in 15 files covered. (76.88%)

1 existing line in 1 file now uncovered.

573 of 796 relevant lines covered (71.98%)

7.1 hits per line