Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Adding experimental flag for blockaid #19819

Merged
merged 76 commits into from
Jul 20, 2023
Merged
Show file tree
Hide file tree
Changes from 71 commits
Commits
Show all changes
76 commits
Select commit Hold shift + click to select a range
be06ef7
Integrating ppom-validator with extension
jpuri Jun 8, 2023
3bde08e
Cleanup
jpuri Jun 8, 2023
f2ac25d
Merge branch 'develop' into integrate_ppom
jpuri Jun 8, 2023
4725f55
Fix
jpuri Jun 8, 2023
94d2f9c
Merge branch 'integrate_ppom' of github.com:MetaMask/metamask-extensi…
jpuri Jun 8, 2023
e6eefd3
Merge branch 'develop' of github.com:MetaMask/metamask-extension into…
jpuri Jun 9, 2023
6dd4fb5
Updates
jpuri Jun 9, 2023
ef555f3
Updates
jpuri Jun 9, 2023
de5b2aa
Update
jpuri Jun 13, 2023
fb7785c
Merge
jpuri Jun 14, 2023
ec8ca21
Update
jpuri Jun 14, 2023
e221853
Merge branch 'develop' into integrate_ppom
jpuri Jun 15, 2023
f2508e4
Update
jpuri Jun 15, 2023
e2bc18c
Merge branch 'develop' into integrate_ppom
jpuri Jun 15, 2023
ed4cee4
Fix build
jpuri Jun 16, 2023
0e3586b
Merge branch 'integrate_ppom' of github.com:MetaMask/metamask-extensi…
jpuri Jun 16, 2023
779af11
Merge branch 'develop' into integrate_ppom
jpuri Jun 16, 2023
9490821
Fix build
jpuri Jun 16, 2023
26061d4
Merge branch 'integrate_ppom' of github.com:MetaMask/metamask-extensi…
jpuri Jun 16, 2023
f327502
fix
jpuri Jun 16, 2023
ae55e26
Lavamoat update
jpuri Jun 16, 2023
9831e2c
Merge branch 'develop' into integrate_ppom
jpuri Jun 16, 2023
7ef885a
Merge branch 'develop' of github.com:MetaMask/metamask-extension into…
jpuri Jun 20, 2023
2399ce0
Update
jpuri Jun 20, 2023
ad990b7
Merge branch 'integrate_ppom' of github.com:MetaMask/metamask-extensi…
jpuri Jun 20, 2023
ed12d1a
Merge branch 'develop' into integrate_ppom
jpuri Jun 20, 2023
c4b2da6
Update
jpuri Jun 20, 2023
a46d077
Merge branch 'develop' into integrate_ppom
jpuri Jun 20, 2023
36bf3df
Merge branch 'integrate_ppom' of github.com:MetaMask/metamask-extensi…
jpuri Jun 20, 2023
3952fca
Update
jpuri Jun 20, 2023
a2805de
Fix
jpuri Jun 22, 2023
683f978
Fix
jpuri Jun 22, 2023
8d23a5b
Fix
jpuri Jun 22, 2023
5889612
Update
jpuri Jun 23, 2023
29a98cc
Merge branch 'develop' of github.com:MetaMask/metamask-extension into…
jpuri Jun 23, 2023
72ca68f
Update
jpuri Jun 23, 2023
40ff545
Merge branch 'develop' into integrate_ppom
jpuri Jun 23, 2023
c59ef57
Merge branch 'develop' into integrate_ppom
jpuri Jun 26, 2023
5cc769c
fix
jpuri Jun 26, 2023
0ac19ec
Merge branch 'develop' into integrate_ppom
jpuri Jun 26, 2023
62f7315
Merge branch 'develop' of github.com:MetaMask/metamask-extension into…
jpuri Jun 26, 2023
dd896b6
Update
jpuri Jun 26, 2023
e4d9ee1
Merge
jpuri Jun 27, 2023
8e3a587
Merge
jpuri Jun 27, 2023
4377ae9
Merge
jpuri Jun 27, 2023
6aed845
Merge
jpuri Jun 27, 2023
5e6b274
Merge
jpuri Jun 27, 2023
45d63ee
Merge branch 'develop' of github.com:MetaMask/metamask-extension into…
jpuri Jun 27, 2023
1bc9e45
Merge
jpuri Jun 27, 2023
eac4271
Merge branch 'develop' into integrate_ppom
jpuri Jun 27, 2023
5d1a51a
Merge
jpuri Jun 27, 2023
b4f40cb
Merge branch 'integrate_ppom' of github.com:MetaMask/metamask-extensi…
jpuri Jun 27, 2023
43f7dad
Merge
jpuri Jun 27, 2023
467972d
Merge
jpuri Jun 27, 2023
6cfc892
Merge
jpuri Jun 27, 2023
83e72a1
Merge
jpuri Jun 27, 2023
5a756d1
Merge
jpuri Jun 27, 2023
1df10db
Update
jpuri Jun 27, 2023
cede4f5
Build fix
jpuri Jun 27, 2023
64b421e
Merge branch 'develop' into integrate_ppom
jpuri Jun 27, 2023
1d38469
chages
jpuri Jun 27, 2023
15a7786
Merge branch 'integrate_ppom' of github.com:MetaMask/metamask-extensi…
jpuri Jun 27, 2023
9ad9967
Fix code fencing and revert changes to policy
FrederikBolding Jun 27, 2023
7e58163
Fix lint
FrederikBolding Jun 27, 2023
22629c6
Improvement
jpuri Jun 27, 2023
c479d64
Merge branch 'develop' into integrate_ppom
jpuri Jun 27, 2023
e0af11b
update
jpuri Jul 4, 2023
5c117f4
Merge branch 'develop' into integrate_ppom
jpuri Jul 4, 2023
bde6e56
update
jpuri Jul 4, 2023
2c9cf8d
Merge branch 'integrate_ppom' of github.com:MetaMask/metamask-extensi…
jpuri Jul 4, 2023
8e2a2af
Adding experimental flag for blockaid
jpuri Jun 27, 2023
d7957a3
Fixes
jpuri Jul 13, 2023
70f6b5d
Merge
jpuri Jul 14, 2023
401db2f
fix
jpuri Jul 14, 2023
784d950
fix
jpuri Jul 14, 2023
30cbd77
Merge branch 'develop' into adding_blockaid_preference
jpuri Jul 18, 2023
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
9 changes: 9 additions & 0 deletions app/_locales/en/messages.json

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion app/manifest/v2/chrome.json
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
{
"content_security_policy": "frame-ancestors 'none'; script-src 'self'; object-src 'self'",
"content_security_policy": "frame-ancestors 'none'; script-src 'self' 'wasm-unsafe-eval'; object-src 'self'",
"externally_connectable": {
"matches": ["https://metamask.io/*"],
"ids": ["*"]
Expand Down
16 changes: 16 additions & 0 deletions app/scripts/controllers/preferences.js
Original file line number Diff line number Diff line change
Expand Up @@ -41,6 +41,9 @@ export default class PreferencesController {
useNftDetection: false,
useCurrencyRateCheck: true,
openSeaEnabled: false,
///: BEGIN:ONLY_INCLUDE_IN(blockaid)
securityAlertsEnabled: false,
matthewwalsh0 marked this conversation as resolved.
Show resolved Hide resolved
///: END:ONLY_INCLUDE_IN
advancedGasFee: null,

// WARNING: Do not use feature flags for security-sensitive things.
Expand Down Expand Up @@ -185,6 +188,19 @@ export default class PreferencesController {
});
}

///: BEGIN:ONLY_INCLUDE_IN(blockaid)
/**
* Setter for the `securityAlertsEnabled` property
*
* @param {boolean} securityAlertsEnabled - Whether or not the user prefers to use the security alerts.
*/
setSecurityAlertsEnabled(securityAlertsEnabled) {
this.store.updateState({
securityAlertsEnabled,
});
}
///: END:ONLY_INCLUDE_IN

/**
* Setter for the `advancedGasFee` property
*
Expand Down
93 changes: 93 additions & 0 deletions app/scripts/lib/indexed-db-backend.test.ts
Original file line number Diff line number Diff line change
@@ -0,0 +1,93 @@
import 'fake-indexeddb/auto';

import { IndexedDBPPOMStorage } from './indexed-db-backend';

Object.defineProperty(globalThis, 'crypto', {
value: {
subtle: {
digest: () => new ArrayBuffer(12),
},
},
});

const enc = new TextEncoder();
const dec = new TextDecoder('utf-8');

describe('IndexedDBPPOMStorage', () => {
it('should be able to initialise correctly', () => {
const indexDBBackend = new IndexedDBPPOMStorage('PPOMDB', 1);
expect(indexDBBackend).toBeDefined();
});

it('should be able to write and read file data if checksum matches', async () => {
const indexDBBackend = new IndexedDBPPOMStorage('PPOMDB', 1);
await indexDBBackend.write(
{ name: 'fake_name', chainId: '5' },
enc.encode('fake_data'),
'000000000000000000000000',
);
const file = await indexDBBackend.read(
{ name: 'fake_name', chainId: '5' },
'000000000000000000000000',
);
expect(dec.decode(file)).toStrictEqual('fake_data');
});

it('should fail to write if checksum does not match', async () => {
const indexDBBackend = new IndexedDBPPOMStorage('PPOMDB', 1);
await expect(async () => {
await indexDBBackend.write(
{ name: 'fake_name', chainId: '5' },
enc.encode('fake_data'),
'XXX',
);
}).rejects.toThrow('Checksum mismatch');
});

it('should fail to read if checksum does not match', async () => {
const indexDBBackend = new IndexedDBPPOMStorage('PPOMDB', 1);
await expect(async () => {
await indexDBBackend.write(
{ name: 'fake_name', chainId: '5' },
enc.encode('fake_data'),
'000000000000000000000000',
);
await indexDBBackend.read({ name: 'fake_name', chainId: '5' }, 'XXX');
}).rejects.toThrow('Checksum mismatch');
});

it('should delete a file when delete method is called', async () => {
const indexDBBackend = new IndexedDBPPOMStorage('PPOMDB', 1);
await indexDBBackend.write(
{ name: 'fake_name', chainId: '5' },
enc.encode('fake_data'),
'000000000000000000000000',
);
await indexDBBackend.delete({ name: 'fake_name', chainId: '5' });
const result = await indexDBBackend.read(
{ name: 'fake_name', chainId: '5' },
'000000000000000000000000',
);
expect(result).toBeUndefined();
});

it('should list all keys when dir is called', async () => {
const keys = [
{ chainId: '5', name: 'fake_name_1' },
{ chainId: '1', name: 'fake_name_2' },
];
const indexDBBackend = new IndexedDBPPOMStorage('PPOMDB', 1);
await indexDBBackend.write(
keys[0],
enc.encode('fake_data_1'),
'000000000000000000000000',
);
await indexDBBackend.write(
keys[1],
enc.encode('fake_data_2'),
'000000000000000000000000',
);
const result = await indexDBBackend.dir();
expect(result).toStrictEqual(keys);
});
});
127 changes: 127 additions & 0 deletions app/scripts/lib/indexed-db-backend.ts
Original file line number Diff line number Diff line change
@@ -0,0 +1,127 @@
import { StorageBackend } from '@metamask/ppom-validator';

type StorageKey = {
name: string;
chainId: string;
};

const validateChecksum = async (
key: StorageKey,
data: ArrayBuffer,
checksum: string,
) => {
const hash = await crypto.subtle.digest('SHA-256', data);
const hashString = Array.from(new Uint8Array(hash))
.map((b) => b.toString(16).padStart(2, '0'))
.join('');

if (hashString !== checksum) {
throw new Error(`Checksum mismatch for key ${key}`);
}
};

export class IndexedDBPPOMStorage implements StorageBackend {
private storeName: string;

private dbVersion: number;

constructor(storeName: string, dbVersion: number) {
this.storeName = storeName;
this.dbVersion = dbVersion;
}

#getObjectStore(mode: IDBTransactionMode): Promise<IDBObjectStore> {
return new Promise((resolve, reject) => {
const request = indexedDB.open(this.storeName, this.dbVersion);

request.onerror = (event: Event) => {
reject(
new Error(
`Failed to open database ${this.storeName}: ${
(event.target as any)?.error
}`,
),
);
};

request.onupgradeneeded = (event) => {
const db = (event.target as IDBOpenDBRequest).result;

if (!db.objectStoreNames.contains(this.storeName)) {
db.createObjectStore(this.storeName, {
keyPath: ['name', 'chainId'],
});
}
};

request.onsuccess = (event) => {
const db = (event.target as IDBOpenDBRequest).result;
const transaction = db.transaction([this.storeName], mode);
const objectStore = transaction.objectStore(this.storeName);
resolve(objectStore);
};
});
}

private async objectStoreAction(
method: 'get' | 'delete' | 'put' | 'getAllKeys',
args?: any,
mode: IDBTransactionMode = 'readonly',
): Promise<any> {
return new Promise<Event>((resolve, reject) => {
this.#getObjectStore(mode)
.then((objectStore) => {
const request = objectStore[method](args);

request.onsuccess = async (event) => {
resolve(event);
};

request.onerror = (event) => {
reject(
new Error(
`Error in indexDB operation ${method}: ${
(event.target as any)?.error
}`,
),
);
};
})
.catch((error) => {
reject(error);
});
});
}

async read(key: StorageKey, checksum: string): Promise<ArrayBuffer> {
const event = await this.objectStoreAction('get', [key.name, key.chainId]);
const data = (event.target as any)?.result?.data;
await validateChecksum(key, data, checksum);
return data;
}

async write(
key: StorageKey,
data: ArrayBuffer,
checksum: string,
): Promise<void> {
await validateChecksum(key, data, checksum);
await this.objectStoreAction('put', { ...key, data }, 'readwrite');
}

async delete(key: StorageKey): Promise<void> {
await this.objectStoreAction(
'delete',
[key.name, key.chainId],
'readwrite',
);
}

async dir(): Promise<StorageKey[]> {
const event = await this.objectStoreAction('getAllKeys');
return (event.target as any)?.result.map(([name, chainId]: string[]) => ({
name,
chainId,
}));
}
}
40 changes: 40 additions & 0 deletions app/scripts/metamask-controller.js
Original file line number Diff line number Diff line change
Expand Up @@ -76,6 +76,9 @@ import { CustodyController } from '@metamask-institutional/custody-controller';
import { TransactionUpdateController } from '@metamask-institutional/transaction-update';
///: END:ONLY_INCLUDE_IN
import { SignatureController } from '@metamask/signature-controller';
///: BEGIN:ONLY_INCLUDE_IN(blockaid)
import { PPOMController, createPPOMMiddleware } from '@metamask/ppom-validator';
///: END:ONLY_INCLUDE_IN

///: BEGIN:ONLY_INCLUDE_IN(desktop)
// eslint-disable-next-line import/order
Expand Down Expand Up @@ -210,6 +213,9 @@ import {
} from './controllers/permissions';
import createRPCMethodTrackingMiddleware from './lib/createRPCMethodTrackingMiddleware';
import { securityProviderCheck } from './lib/security-provider-helpers';
///: BEGIN:ONLY_INCLUDE_IN(blockaid)
import { IndexedDBPPOMStorage } from './lib/indexed-db-backend';
///: END:ONLY_INCLUDE_IN
import { updateCurrentLocale } from './translate';

export const METAMASK_CONTROLLER_EVENTS = {
Expand Down Expand Up @@ -615,6 +621,27 @@ export default class MetamaskController extends EventEmitter {
this.phishingController.setStalelistRefreshInterval(30 * SECOND);
}

///: BEGIN:ONLY_INCLUDE_IN(blockaid)
this.ppomController = new PPOMController({
messenger: this.controllerMessenger.getRestricted({
name: 'PPOMController',
}),
storageBackend: new IndexedDBPPOMStorage('PPOMDB', 1),
provider: this.provider,
state: initState.PPOMController,
chainId: this.networkController.state.providerConfig.chainId,
onNetworkChange: networkControllerMessenger.subscribe.bind(
networkControllerMessenger,
'NetworkController:stateChange',
),
securityAlertsEnabled:
this.preferencesController.store.getState().securityAlertsEnabled,
onPreferencesChange: this.preferencesController.store.subscribe.bind(
this.preferencesController.store,
),
});
///: END:ONLY_INCLUDE_IN

const announcementMessenger = this.controllerMessenger.getRestricted({
name: 'AnnouncementController',
});
Expand Down Expand Up @@ -1544,6 +1571,9 @@ export default class MetamaskController extends EventEmitter {
this.institutionalFeaturesController.store,
MmiConfigurationController: this.mmiConfigurationController.store,
///: END:ONLY_INCLUDE_IN
///: BEGIN:ONLY_INCLUDE_IN(blockaid)
PPOMController: this.ppomController,
///: END:ONLY_INCLUDE_IN
...resetOnRestartStore,
});

Expand Down Expand Up @@ -2098,6 +2128,12 @@ export default class MetamaskController extends EventEmitter {
setOpenSeaEnabled: preferencesController.setOpenSeaEnabled.bind(
preferencesController,
),
///: BEGIN:ONLY_INCLUDE_IN(blockaid)
setSecurityAlertsEnabled:
preferencesController.setSecurityAlertsEnabled.bind(
preferencesController,
),
///: END:ONLY_INCLUDE_IN
setIpfsGateway: preferencesController.setIpfsGateway.bind(
preferencesController,
),
Expand Down Expand Up @@ -3879,6 +3915,10 @@ export default class MetamaskController extends EventEmitter {
engine.push(createLoggerMiddleware({ origin }));
engine.push(this.permissionLogController.createMiddleware());

///: BEGIN:ONLY_INCLUDE_IN(blockaid)
engine.push(createPPOMMiddleware(this.ppomController));
///: END:ONLY_INCLUDE_IN

engine.push(
createRPCMethodTrackingMiddleware({
trackEvent: this.metaMetricsController.trackEvent.bind(
Expand Down
1 change: 1 addition & 0 deletions builds.yml
Original file line number Diff line number Diff line change
Expand Up @@ -116,6 +116,7 @@ features:
- DISABLE_WEB_SOCKET_ENCRYPTION: false
- SKIP_OTP_PAIRING_FLOW: false
- WEB_SOCKET_PORT: null
blockaid:

###
# Build Type code extensions. Things like different support links, warning pages, banners
Expand Down
Loading