chore: bump deps

Author: mangas

Cargo.lock

@@ -6,14 +6,20 @@ resolver = "2"
 opt-level = 3
 
 [workspace.dependencies]
-alloy = { version = "0.2.1", features = [
+alloy = { version = "0.4.2", features = [
     "kzg",
     "signer-mnemonic",
+    "dyn-abi",
+    "sol-types",
+    "signer-local",
+    "eip712",
+    "rlp",
+    "signers",
 ], default-features = false }
 clap = "4.4.3"
 lazy_static = "1.4.0"
-axum = { version = "0.7.5", default-features = false }
-tokio = "1.39.2"
+axum = { version = "0.7.7", default-features = false }
+tokio = "1.40"
 prometheus = "0.13.3"
 anyhow = { version = "1.0.72" }
 thiserror = "1.0.49"
@@ -39,12 +45,12 @@ sqlx = { version = "0.8.2", features = [
 tracing = { version = "0.1.40", default-features = false }
 bigdecimal = "0.4.3"
 build-info = "0.0.38"
-tap_core = { git = "https://github.com/semiotic-ai/timeline-aggregation-protocol", rev = "ff856d9", default-features = false }
+tap_core = { git = "https://github.com/semiotic-ai/timeline-aggregation-protocol", rev = "c26e552", default-features = false }
 tracing-subscriber = { version = "0.3", features = [
     "json",
     "env-filter",
 ], default-features = false }
-thegraph-core = { git = "https://github.com/edgeandnode/toolshed", rev = "85ee00b", features = [
+thegraph-core = { git = "https://github.com/edgeandnode/toolshed", tag = "thegraph-core-v0.7.0", features = [
     "subgraph-client",
 ] }
 thegraph-graphql-http = "0.2.0"

Cargo.toml

@@ -47,8 +47,7 @@ pub struct IndexerServiceConfig {
 
 #[derive(Debug, Deserialize, Serialize, Clone)]
 pub struct IndexerDipsConfig {
-    pub expected_payee: String,
-    pub allowed_payers: Vec<String>,
+    pub allowed_payers: Vec<Address>,
 }
 
 #[derive(Clone, Debug, Deserialize, Serialize)]

common/src/indexer_service/http/config.rs

@@ -145,3 +145,6 @@ max_receipts_per_request = 10000
 # Key-Value of all senders and their aggregator endpoints
 0xdeadbeefcafebabedeadbeefcafebabedeadbeef = "https://example.com/aggregate-receipts"
 0x0123456789abcdef0123456789abcdef01234567 = "https://other.example.com/aggregate-receipts"
+
+[dips]
+expected_payers = ["0xdeadbeef"]

config/maximal-config-example.toml

@@ -63,3 +63,6 @@ receipts_verifier_address = "0x2222222222222222222222222222222222222222"
 # Key-Value of all senders and their aggregator endpoints
 0xdeadbeefcafebabedeadbeefcafebabedeadbeef = "https://example.com/aggregate-receipts"
 0x0123456789abcdef0123456789abcdef01234567 = "https://other.example.com/aggregate-receipts"
+
+[dips]
+allowed_payers = ["0x3333333333333333333333333333333333333333"]

config/minimal-config-example.toml

@@ -354,8 +354,7 @@ pub struct TapConfig {
 #[derive(Debug, Deserialize)]
 #[cfg_attr(test, derive(PartialEq))]
 pub struct DipsConfig {
-    pub expected_payee: String,
-    pub allowed_payers: Vec<String>,
+    pub allowed_payers: Vec<Address>,
 }
 
 impl TapConfig {

config/src/config.rs

@@ -4,11 +4,16 @@ version = "0.1.0"
 edition = "2021"
 
 [dependencies]
-alloy-core = "0.8.5"
-alloy-primitives = { version = "0.8.5", default-features = true, features = ["rlp"]}
-alloy-sol-types = "0.8.5"
-alloy-signer = "0.4.2"
-alloy-rlp = "0.3.8"
+alloy.workspace = true 
+thiserror.workspace = true
+anyhow.workspace = true
+alloy-sol-types = "=0.8.7"
+# alloy-signer = { version = "0.4", features = ["eip712"] }
+alloy-rlp = "0.3.8" 
+thegraph-core.workspace = true
 
-[dev-dependencies]
-alloy-signer-local = "0.4.2"
+# alloy-signer = "0.4.2"
+# alloy-rlp = "0.3.8"
+
+# [dev-dependencies]
+# alloy-signer-local = "=0.4.0"

dips/Cargo.toml

@@ -3,15 +3,14 @@
 
 use std::str::FromStr;
 
-pub use alloy_core;
+pub use alloy;
 pub use alloy_rlp;
-pub use alloy_signer;
-pub use alloy_sol_types;
 
-use alloy_core::primitives::Address;
-use alloy_rlp::{RlpDecodable, RlpEncodable};
-use alloy_signer::Signature;
-use alloy_sol_types::{sol, SolStruct};
+use alloy::core::primitives::Address;
+use alloy::rlp::{RlpDecodable, RlpEncodable};
+use alloy::signers::{Signature, SignerSync};
+use alloy_sol_types::{sol, Eip712Domain, SolStruct};
+use thiserror::Error;
 
 sol! {
     // EIP712 encoded bytes, ABI - ethers
@@ -52,45 +51,72 @@ sol! {
     }
 }
 
+#[derive(Error, Debug, PartialEq)]
+pub enum AgreementVoucherValidationError {
+    #[error("signature is not valid, error: {0}")]
+    InvalidSignature(String),
+    #[error("payer {0} not authorised")]
+    PayerNotAuthorised(Address),
+    #[error("voucher payee {actual} does not match the expected address {expected}")]
+    UnexpectedPayee { expected: Address, actual: Address },
+}
+
+impl IndexingAgreementVoucher {
+    pub fn sign<S: SignerSync>(
+        &self,
+        domain: &Eip712Domain,
+        signer: S,
+    ) -> anyhow::Result<SignedIndexingAgreementVoucher> {
+        let voucher = SignedIndexingAgreementVoucher {
+            voucher: self.clone(),
+            signature: signer.sign_typed_data_sync(self, domain)?.as_bytes().into(),
+        };
+
+        Ok(voucher)
+    }
+}
+
 impl SignedIndexingAgreementVoucher {
-    // TODO: Validate all values, maybe return a useful error on failure.
-    pub fn is_valid(
+    // TODO: Validate all values
+    pub fn validate(
         &self,
+        domain: &Eip712Domain,
         expected_payee: &Address,
         allowed_payers: impl AsRef<[Address]>,
-    ) -> bool {
-        let sig = match Signature::from_str(&self.signature.to_string()) {
-            Ok(s) => s,
-            Err(_) => return false,
-        };
+    ) -> Result<(), AgreementVoucherValidationError> {
+        let sig = Signature::from_str(&self.signature.to_string())
+            .map_err(|err| AgreementVoucherValidationError::InvalidSignature(err.to_string()))?;
 
         let payer = sig
-            .recover_address_from_msg(self.voucher.eip712_hash_struct())
-            .unwrap();
+            .recover_address_from_prehash(&self.voucher.eip712_signing_hash(domain))
+            .map_err(|err| AgreementVoucherValidationError::InvalidSignature(err.to_string()))?;
 
         if allowed_payers.as_ref().is_empty()
             || !allowed_payers.as_ref().iter().any(|addr| addr.eq(&payer))
         {
-            return false;
+            return Err(AgreementVoucherValidationError::PayerNotAuthorised(payer));
         }
 
         if !self.voucher.payee.eq(expected_payee) {
-            return false;
+            return Err(AgreementVoucherValidationError::UnexpectedPayee {
+                expected: *expected_payee,
+                actual: self.voucher.payee,
+            });
         }
 
-        true
+        Ok(())
     }
 }
 
 #[cfg(test)]
 mod test {
-    use alloy_core::primitives::{Address, FixedBytes, U256};
-    use alloy_signer::SignerSync;
-    use alloy_signer_local::PrivateKeySigner;
-    use alloy_sol_types::SolStruct;
+    use alloy::primitives::{Address, FixedBytes, U256};
+    use alloy::signers::local::PrivateKeySigner;
+    use alloy::sol_types::SolStruct;
+    use thegraph_core::attestation::eip712_domain;
 
     use crate::{
-        IndexingAgreementVoucher, SignedIndexingAgreementVoucher, SubgraphIndexingVoucherMetadata,
+        AgreementVoucherValidationError, IndexingAgreementVoucher, SubgraphIndexingVoucherMetadata,
     };
 
     #[test]
@@ -119,17 +145,15 @@ mod test {
             metadata: metadata.eip712_hash_struct().to_owned().into(),
         };
 
-        let signed = SignedIndexingAgreementVoucher {
-            voucher: voucher.clone(),
-            signature: payer
-                .sign_message_sync(voucher.eip712_hash_struct().as_slice())
-                .unwrap()
-                .as_bytes()
-                .into(),
-        };
-
-        assert!(signed.is_valid(&payee_addr, vec![]));
-        assert!(signed.is_valid(&payee_addr, vec![payer_addr]));
+        let domain = eip712_domain(0, Address::ZERO);
+        let signed = voucher.sign(&domain, payer).unwrap();
+        assert_eq!(
+            signed.validate(&domain, &payee_addr, vec![]).unwrap_err(),
+            AgreementVoucherValidationError::PayerNotAuthorised(voucher.payer)
+        );
+        assert!(signed
+            .validate(&domain, &payee_addr, vec![payer_addr])
+            .is_ok());
     }
 
     #[test]
@@ -157,17 +181,16 @@ mod test {
             durationEpochs: 1000,
             metadata: metadata.eip712_hash_struct().to_owned().into(),
         };
+        let domain = eip712_domain(0, Address::ZERO);
 
-        let mut signed = SignedIndexingAgreementVoucher {
-            voucher: voucher.clone(),
-            signature: payer
-                .sign_message_sync(voucher.eip712_hash_struct().as_slice())
-                .unwrap()
-                .as_bytes()
-                .into(),
-        };
+        let mut signed = voucher.sign(&domain, payer).unwrap();
         signed.voucher.service = Address::repeat_byte(9);
 
-        assert!(signed.is_valid(&payee_addr, vec![payer_addr]));
+        assert!(matches!(
+            signed
+                .validate(&domain, &payee_addr, vec![payer_addr])
+                .unwrap_err(),
+            AgreementVoucherValidationError::PayerNotAuthorised(_)
+        ));
     }
 }

dips/src/lib.rs

@@ -30,10 +30,10 @@ async-graphql = { version = "7.0.11", default-features = false }
 async-graphql-axum = "7.0.11"
 base64.workspace = true
 graphql = { git = "https://github.com/edgeandnode/toolshed", tag = "graphql-v0.3.0" }
-
+ 
 [dev-dependencies]
 hex-literal = "0.4.1"
-alloy-signer-local = "0.4.2"
+alloy.workspace = true
 
 [build-dependencies]
 build-info-build = { version = "0.0.38", default-features = false }

service/Cargo.toml

@@ -78,7 +78,6 @@ impl From<MainConfig> for Config {
                 receipt_max_value: value.service.tap.max_receipt_value_grt.get_value(),
             },
             dips: IndexerDipsConfig {
-                expected_payee: value.dips.expected_payee,
                 allowed_payers: value.dips.allowed_payers,
             },
         })