Smart contracts for the Besu permissioning system
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 
permissioning-smart-contracts/contracts/NodeRules.sol

159 lines
4.4 KiB

/*
* Copyright ConsenSys AG.
*
* Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on
* an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the
* specific language governing permissions and limitations under the License.
*
* SPDX-License-Identifier: Apache-2.0
*/
pragma solidity >=0.6.0 <0.9.0;
import "./NodeRulesProxy.sol";
import "./NodeRulesList.sol";
import "./NodeIngress.sol";
import "./Admin.sol";
contract NodeRules is NodeRulesProxy, NodeRulesList {
event NodeAdded(
bool nodeAdded,
string enodeId,
string enodeHost,
uint16 enodePort
);
event NodeRemoved(
bool nodeRemoved,
string enodeId,
string enodeHost,
uint16 enodePort
);
// in read-only mode rules can't be added/removed
// this will be used to protect data when upgrading contracts
bool private readOnlyMode = false;
// version of this contract: semver like 1.2.14 represented like 001002014
uint private version = 3000000;
NodeIngress private nodeIngressContract;
modifier onlyOnEditMode() {
require(!readOnlyMode, "In read only mode: rules cannot be modified");
_;
}
modifier onlyAdmin() {
address adminContractAddress = nodeIngressContract.getContractAddress(nodeIngressContract.ADMIN_CONTRACT());
require(adminContractAddress != address(0), "Ingress contract must have Admin contract registered");
require(Admin(adminContractAddress).isAuthorized(msg.sender), "Sender not authorized");
_;
}
constructor (NodeIngress _nodeIngressAddress, NodeStorage _storage) public {
setStorage(_storage);
nodeIngressContract = _nodeIngressAddress;
}
// VERSION
function getContractVersion() external view returns (uint) {
return version;
}
// READ ONLY MODE
function isReadOnly() external view returns (bool) {
return readOnlyMode;
}
function enterReadOnly() external onlyAdmin returns (bool) {
require(readOnlyMode == false, "Already in read only mode");
readOnlyMode = true;
return true;
}
function exitReadOnly() external onlyAdmin returns (bool) {
require(readOnlyMode == true, "Not in read only mode");
readOnlyMode = false;
return true;
}
function connectionAllowed(
string calldata enodeId,
string calldata enodeHost,
uint16 enodePort
) external override view returns (bool) {
return
enodePermitted (
enodeId,
enodeHost,
enodePort
);
}
function enodePermitted(
string memory enodeId,
string memory host,
uint16 port
) public view returns (bool) {
return exists(enodeId, host, port);
}
function addEnode(
string calldata enodeId,
string calldata host,
uint16 port
) external onlyAdmin onlyOnEditMode returns (bool) {
bool added = add(enodeId, host, port);
if (added) {
triggerRulesChangeEvent(false);
}
emit NodeAdded(
added,
enodeId,
host,
port
);
return added;
}
function removeEnode(
string calldata enodeId,
string calldata host,
uint16 port
) external onlyAdmin onlyOnEditMode returns (bool) {
bool removed = remove(enodeId, host, port);
if (removed) {
triggerRulesChangeEvent(true);
}
emit NodeRemoved(
removed,
enodeId,
host,
port
);
return removed;
}
function getSize() external view returns (uint) {
return size();
}
function triggerRulesChangeEvent(bool addsRestrictions) public {
nodeIngressContract.emitRulesChangeEvent(addsRestrictions);
}
function activateValidationEnodeIdOnly(bool _onlyUseEnodeId) external onlyAdmin onlyOnEditMode returns (bool) {
return setValidateEnodeIdOnly(_onlyUseEnodeId);
}
}