Fix/make OFAC list file path relative

[aarmoa]

• Changed the location of OFAC list file to make it relative and allow apps using the SDK without a Go environment (just running the app executable) to work properly.
• The issue with the previous version was that the ofac.json file was not included in the compiled app, and if the app was executed in a different environment than the one used to compile it, the path to the json file was still referencing the path at compile time

Summary by CodeRabbit

• New Features

  • Introduced a new OFAC checker functionality with updated naming conventions and structure.
  • Added a new JSON file containing Ethereum addresses for compliance tracking.

• Bug Fixes

  • Improved test functions for subaccount retrieval using new methods.

• Tests

  • Added a new test suite for the OFAC functionality, including setup and teardown methods.

• Documentation

  • Enhanced clarity in naming conventions for constants and methods related to the OFAC list.

[coderabbitai]

Walkthrough

The pull request involves several changes across multiple files related to the chain package. The chain_test.go file has been renamed to chain_test, modified to utilize the chain package, updating function calls and removing the OfacTestSuite. The ofac.go file has undergone naming convention updates and structural changes to the OFAC list functionality, while a new ofac_test.go file has been introduced to provide a test suite for OFAC functionality. Additionally, a new JSON file ofac.json has been added, containing an array of Ethereum addresses.

Changes

File Path	Change Summary
client/chain/chain_test.go	Renamed to chain_test, modified import statements, updated accountForTests and createClient functions, removed OfacTestSuite, and modified remaining test functions to use new chainClient methods.
client/chain/ofac.go	Updated naming conventions for constants and methods related to the OFAC list, introduced new constants, and modified DownloadOfacList to ensure directory existence.
client/chain/ofac_test.go	Introduced a new test suite OfacTestSuite, with setup and teardown methods, and implemented tests for OFAC checker functionality.
injective_data/ofac.json	Added new JSON file containing an array of Ethereum addresses in a simple array format.

Possibly related PRs

• (feat) Add OFAC list check #236: Introduces an OfacChecker to the chainClient structure and enhances testing capabilities related to OFAC compliance.
• Release/v1.52.0 #242: Focuses on integrating OFAC compliance checks into the chainClient, directly related to the changes in the main PR.
• (fix/solve) Solve ofac.json path issue #244: Streamlines path resolution for the OFAC list, relevant to the main PR's restructuring of OFAC-related functionalities.
• Fix/sync dev after v1.52.1 #245: Addresses path resolution for the OFAC list, pertinent to the overall changes in the main PR.

Suggested reviewers

• PavelInjective

🐇 In the code we hop and play,
With chains and checks, we pave the way.
OFAC lists in JSON stored,
New tests to ensure compliance adored.
So let’s code and test with glee,
For a brighter blockchain, come hop with me! 🐇✨

---

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 2

🧹 Outside diff range and nitpick comments (8)

client/chain/ofac.go (4)

13-13: LGTM! Consider adding a version to the URL.

The constant DefaultOfacListURL is correctly declared and follows Go naming conventions. However, consider adding a version or commit hash to the URL to ensure consistency and avoid potential issues if the repository structure changes.

Example:

DefaultOfacListURL = "https://raw.githubusercontent.com/InjectiveLabs/injective-lists/v1.0.0/wallets/ofac.json"

---

17-18: LGTM! Consider environment-based configuration.

The variables OfacListPath and OfacListFilename are correctly declared and follow Go naming conventions. However, to improve flexibility across different environments, consider allowing these values to be configurable through environment variables or a configuration file.

Example:

var (
    OfacListPath     = getEnv("OFAC_LIST_PATH", "injective_data")
    OfacListFilename = getEnv("OFAC_LIST_FILENAME", "ofac.json")
)

func getEnv(key, fallback string) string {
    if value, ok := os.LookupEnv(key); ok {
        return value
    }
    return fallback
}

---

41-43: LGTM! Consider adding error handling for empty paths.

The GetOfacListPath function is well-implemented and follows Go naming conventions. Using path.Join is the correct approach for constructing file paths. To improve robustness, consider adding a check for empty OfacListPath or OfacListFilename.

Example:

func GetOfacListPath() (string, error) {
    if OfacListPath == "" || OfacListFilename == "" {
        return "", fmt.Errorf("OfacListPath or OfacListFilename is empty")
    }
    return path.Join(OfacListPath, OfacListFilename), nil
}

---

56-59: LGTM! Consider handling potential error from GetOfacListPath.

The changes to DownloadOfacList are good improvements. Creating the directory before writing the file ensures the path exists, and using GetOfacListPath() centralizes the path logic. However, if GetOfacListPath() is modified to return an error as suggested earlier, make sure to handle that potential error here.

Example:

path, err := GetOfacListPath()
if err != nil {
    return err
}
outFile, err := os.Create(path)
if err != nil {
    return err
}

injective_data/ofac.json (1)

1-48: JSON structure is valid, but consider sorting and deduplicating the list.

The JSON file is well-formed and contains a valid array of Ethereum addresses. However, there are a few improvements that could be made:

1. The list is not sorted, which may impact performance for large lists when searching for specific addresses.
2. There are duplicate entries in the list, which is unnecessary and increases the file size.

Consider applying the following improvements:

1. Sort the list of addresses alphabetically for easier maintenance and potentially faster lookups.
2. Remove duplicate entries to reduce file size and improve clarity.

Here's a script to help you sort and deduplicate the list:

#!/bin/bash
# Sort and deduplicate the OFAC list
jq 'unique | sort' injective_data/ofac.json > injective_data/ofac_sorted_unique.json && mv injective_data/ofac_sorted_unique.json injective_data/ofac.json

This script will create a new file with sorted and unique addresses, then replace the original file.

client/chain/ofac_test.go (2)

26-53: LGTM: SetupTest method is comprehensive, with a minor suggestion.

The SetupTest method effectively initializes the test environment, including network setup and OFAC list preparation. It properly handles errors and sets up a temporary OFAC list for testing purposes.

Consider using defer for closing the file to ensure it's always closed, even if an error occurs:

 file, err := os.Create(chain.GetOfacListPath())
 suite.NoError(err)
+defer file.Close()

 _, err = io.WriteString(file, string(jsonData))
 suite.NoError(err)

-err = file.Close()
-suite.NoError(err)

---

59-83: LGTM: Comprehensive OFAC testing, with a suggestion for expansion.

The TestOfacList method effectively tests the OFAC checker's functionality, including both positive and negative cases. It also verifies the expected error when creating a new chain client with a blacklisted address. The TestOfacTestSuite function correctly runs the entire test suite.

Consider adding more test cases to increase coverage:

1. Test with multiple addresses in the OFAC list.
2. Test with an empty OFAC list.
3. Test the behavior when the OFAC list file is missing or corrupted.

Example additional test case:

func (suite *OfacTestSuite) TestEmptyOfacList() {
    // Create an empty OFAC list
    emptyList := []string{}
    jsonData, err := json.Marshal(emptyList)
    suite.NoError(err)

    // Write empty list to file
    err = os.WriteFile(chain.GetOfacListPath(), jsonData, 0644)
    suite.NoError(err)

    // Create new OFAC checker
    testChecker, err := chain.NewOfacChecker()
    suite.NoError(err)

    // Verify that no address is blacklisted
    suite.False(testChecker.IsBlacklisted(suite.senderAddress.String()))
    suite.False(testChecker.IsBlacklisted("inj1"))
}

client/chain/chain_test.go (1)

Line range hint 71-73: Correct typos in variable names for consistency

There are typos in the variable names expectedSubaccounOnetId and expectedSubaccounThirtytId. They should be corrected to expectedSubaccountOneId and expectedSubaccountThirtyId for clarity and consistency.

Apply this diff to fix the variable names:

-	expectedSubaccounOnetId := "0xaf79152ac5df276d9a8e1e2e22822f9713474902000000000000000000000001"
-	expectedSubaccounThirtytId := "0xaf79152ac5df276d9a8e1e2e22822f971347490200000000000000000000001e"
+	expectedSubaccountOneId := "0xaf79152ac5df276d9a8e1e2e22822f9713474902000000000000000000000001"
+	expectedSubaccountThirtyId := "0xaf79152ac5df276d9a8e1e2e22822f971347490200000000000000000000001e"

Also, update the corresponding hash variable names and usages:

-	expectedSubaccountOneIdHash := eth.HexToHash(expectedSubaccounOnetId)
-	expectedSubaccountThirtyIdHash := eth.HexToHash(expectedSubaccounThirtytId)
+	expectedSubaccountOneIdHash := eth.HexToHash(expectedSubaccountOneId)
+	expectedSubaccountThirtyIdHash := eth.HexToHash(expectedSubaccountThirtyId)

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Files that changed from the base of the PR and between 94c4b2c and a3b4eb0.

📒 Files selected for processing (4)

• client/chain/chain_test.go (3 hunks)
• client/chain/ofac.go (4 hunks)
• client/chain/ofac_test.go (1 hunks)
• injective_data/ofac.json (1 hunks)

🧰 Additional context used

🔇 Additional comments (7)

injective_data/ofac.json (2)

2-47: Ethereum addresses are in the correct format.

All Ethereum addresses in the list are correctly formatted:

• They are 42 characters long (including the "0x" prefix).
• They use lowercase hexadecimal characters (0-9 and a-f).
• They all start with the "0x" prefix.

The consistent and correct formatting of addresses is crucial for accurate matching and reduces the risk of false negatives in OFAC checks.

---

1-48: Verify the completeness and accuracy of the OFAC list.

The OFAC list is a critical component for compliance with U.S. sanctions. It's essential to ensure that this list is complete, up-to-date, and accurately reflects the current OFAC Specially Designated Nationals (SDN) list.

Please confirm the following:

1. The source and accuracy of this list of Ethereum addresses.
2. The process for keeping this list up-to-date with the official OFAC SDN list.
3. Any legal or compliance review that has been conducted on the use of this list.

Consider adding comments or documentation explaining the process for maintaining and updating this list to ensure ongoing compliance.

client/chain/ofac_test.go (4)

3-15: LGTM: Import statements are well-organized and relevant.

The import statements are comprehensive and appropriate for the test suite's requirements. They include necessary packages from the SDK, testing frameworks, and standard libraries.

---

17-24: LGTM: OfacTestSuite struct is well-defined.

The OfacTestSuite struct is appropriately designed for OFAC-related testing. It includes all necessary fields for network configuration, client setup, and address management. The originalOfacPath field indicates proper handling of the OFAC list path during tests.

---

55-57: LGTM: TearDownTest method effectively restores the original state.

The TearDownTest method correctly restores the original OFAC list path after the tests are completed. This ensures that the testing environment doesn't interfere with other tests or the actual application state.

---

1-83: Overall: Well-structured and comprehensive OFAC test suite.

This new test file introduces a robust suite for testing OFAC functionality. The code is clean, well-organized, and follows good testing practices. It effectively covers the main OFAC checking scenarios and includes proper setup and teardown methods.

Key strengths:

1. Comprehensive setup and teardown processes.
2. Effective testing of both positive and negative OFAC checking cases.
3. Good error handling throughout the tests.

Suggestions for improvement:

1. Consider adding more test cases to increase coverage, as mentioned in the previous comment.
2. Use defer for file closing in the SetupTest method.

Overall, this is a solid addition to the test suite that will help ensure the reliability of the OFAC checking functionality.

client/chain/chain_test.go (1)

1-1: Verify the impact of changing the package name to 'chain_test'

Changing the package name from chain to chain_test means your tests will run as an external package, only accessing exported identifiers from the chain package. Please ensure that all necessary identifiers are exported and that your tests function correctly after this change.

[coderabbitai]

🛠️ Refactor suggestion

Consider adding metadata and versioning to the OFAC list.

While the current format is simple and easy to parse, it lacks important metadata such as:

• The date when the list was last updated
• A version number for the list
• A source or reference for the OFAC data

Consider modifying the JSON structure to include metadata. Here's an example of how you could structure this:

{
  "version": "1.0.0",
  "last_updated": "2023-05-15",
  "source": "https://example.com/ofac_list",
  "addresses": [
    "0x179f48c78f57a3a78f0608cc9197b8972921d1d2",
    // ... rest of the addresses ...
  ]
}

This structure would provide more context and traceability for the OFAC list, which is crucial for compliance and auditing purposes.

[coderabbitai]

⚠️ Potential issue

Handle the error returned by rpchttp.New

The error returned by rpchttp.New is currently being ignored. It's important to handle this error to prevent potential runtime issues if the Tendermint RPC client fails to initialize.

Apply this diff to handle the error:

-	tmClient, _ := rpchttp.New(network.TmEndpoint, "/websocket")
+	tmClient, err := rpchttp.New(network.TmEndpoint, "/websocket")
+	if err != nil {
+		return nil, err
+	}

Committable suggestion was skipped due to low confidence.

[coderabbitai]

Actionable comments posted: 0

🧹 Outside diff range and nitpick comments (4)

client/chain/ofac.go (3)

13-13: LGTM, but consider URL reliability and security.

The constant DefaultOfacListURL is correctly declared and follows Go naming conventions. However, relying on an external URL for critical data like the OFAC list may introduce reliability and security concerns.

Consider implementing the following improvements:

1. Add a fallback mechanism in case the GitHub URL is unreachable.
2. Implement URL validation and HTTPS certificate verification when downloading the list.
3. Consider periodically caching the list locally to reduce dependency on external resources.

---

17-18: LGTM. Consider adding comments for clarity.

The variables OfacListPath and OfacListFilename are correctly declared and follow Go naming conventions. The use of a relative path for OfacListPath aligns with the PR objective.

Consider adding comments to explain the purpose of these variables and any constraints on their values. For example:

// OfacListPath is the relative path where the OFAC list file will be stored
var OfacListPath = "injective_data"

// OfacListFilename is the name of the OFAC list file
var OfacListFilename = "ofac.json"

---

46-46: LGTM. Good practice to ensure directory exists.

The changes in the DownloadOfacList function are well-implemented:

• The use of DefaultOfacListURL is consistent with earlier changes.
• Creating the directory before file creation prevents potential errors.

Consider combining error checks to reduce nesting and improve readability:

if err := os.MkdirAll(OfacListPath, 0755); err != nil { // nolint:gocritic // 0755 is the correct permission
    return fmt.Errorf("failed to create directory: %w", err)
}
outFile, err := os.Create(GetOfacListPath())
if err != nil {
    return fmt.Errorf("failed to create file: %w", err)
}
defer outFile.Close()

Also applies to: 56-59

client/chain/chain_test.go (1)

Line range hint 1-106: Summary of changes and recommendations.

The changes in this file effectively support the PR objective of making the OFAC list file path relative. The test file has been successfully updated to work with the new package structure, and the removal of OFAC-specific tests is consistent with this change.

Key points:

1. The package name and import statements have been correctly updated.
2. Functions have been modified to use the new chain package structure.
3. Test logic remains intact, ensuring continued verification of subaccount calculations.

One issue remains to be addressed:

• Error handling in the createClient function for rpchttp.New call.

Once the error handling issue is resolved, the changes in this file will be fully aligned with the PR objectives and best practices.

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Files that changed from the base of the PR and between a3b4eb0 and e777538.

📒 Files selected for processing (3)

• client/chain/chain_test.go (3 hunks)
• client/chain/ofac.go (4 hunks)
• client/chain/ofac_test.go (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (1)

• client/chain/ofac_test.go

🧰 Additional context used

🔇 Additional comments (8)

client/chain/ofac.go (3)

28-28: LGTM. Consistent with other changes.

The update to use GetOfacListPath() is correct and consistent with the function renaming.

---

41-43: LGTM. Well-implemented path construction.

The GetOfacListPath function is correctly implemented:

• It follows Go naming conventions for exported functions.
• It uses path.Join for cross-platform compatible path construction.
• It encapsulates the path construction logic, improving maintainability.

---

Line range hint 1-95: Overall, the changes effectively address the PR objectives.

The modifications in this file successfully make the OFAC list file path relative, addressing the issue of the file not being included in the compiled application. The changes consistently improve the structure, naming conventions, and exportability of OFAC-related code.

Key improvements:

1. Consistent naming of exported constants and variables.
2. Introduction of GetOfacListPath function for centralized path management.
3. Ensuring the directory exists before file operations in DownloadOfacList.

These changes should allow applications using the SDK to function correctly without requiring a Go environment, as per the PR objectives.

client/chain/chain_test.go (5)

1-14: LGTM: Package and import changes look good.

The package name change to chain_test is appropriate for a test file. The import statements have been correctly updated to reflect the new structure, removing unused imports and adding necessary ones from the github.com/InjectiveLabs/sdk-go/client package.

---

Line range hint 17-28: LGTM: accountForTests function updated correctly.

The accountForTests function has been properly updated to use chain.InitCosmosKeyring, aligning with the new package structure. The function signature and return values remain consistent, maintaining compatibility.

---

Line range hint 31-52: Address error handling and approve other changes.

The createClient function has been correctly updated to use chain.NewClientContext and chain.NewChainClient, aligning with the new package structure. The return type change to chain.ChainClient is also appropriate.

However, there's still an unresolved issue:

The error returned by rpchttp.New is still being ignored. Please handle this error to prevent potential runtime issues if the Tendermint RPC client fails to initialize.

Apply this diff to handle the error:

-	tmClient, _ := rpchttp.New(network.TmEndpoint, "/websocket")
+	tmClient, err := rpchttp.New(network.TmEndpoint, "/websocket")
+	if err != nil {
+		return nil, err
+	}

---

Line range hint 54-77: LGTM: TestDefaultSubaccount updated correctly.

The TestDefaultSubaccount function has been properly updated to use the new createClient function. The test logic remains intact, ensuring that the default subaccount calculation is still being verified correctly.

---

Line range hint 79-106: LGTM: TestGetSubaccountWithIndex updated correctly.

The TestGetSubaccountWithIndex function has been properly updated to use the new createClient function. The test logic remains intact, correctly verifying the calculation of subaccounts with indices 1 and 30.