use eip 191 standard for presigned transactions

contracts/MainChain.sol

@@ -101,25 +101,23 @@ contract MainChain is Freezable {
         emit Deposit(msg.sender, to, msg.value);
     }
 
-    /// @dev submit a transaction to be processed
-    /// @param msgHash sha3 hash of txHash destination value data and VERSION
-    /// @param txHash transaction hash of the deposit tx in side chain
-    /// @param destination destination provided in deposit tx in side chain
-    /// @param value msg.value of deposit tx in side chain
-    /// @param data data of deposit tx in side chain
-    /// @param v list of v part of sig
-    /// @param r list of r part of sig
-    /// @param s list of s part of sig
-    function submitTransaction(bytes32 msgHash, bytes32 txHash, address destination, uint256 value, bytes data, uint8[] v, bytes32[] r, bytes32[] s)
-      notNull(destination)
-      transactionDoesNotExists(txHash)
-      txNotBlackListed(txHash)
-      onlyWhenNotFrozen
-      public {
+	/// @dev submit a transaction to be processed
+	/// @param txHash transaction hash of the deposit tx in side chain
+	/// @param destination destination provided in deposit tx in side chain
+	/// @param value msg.value of deposit tx in side chain
+	/// @param data data of deposit tx in side chain
+	/// @param v list of v part of sig
+	/// @param r list of r part of sig
+	/// @param s list of s part of sig
+    function submitTransaction(bytes32 txHash, address destination, uint256 value, bytes data, uint8[] v, bytes32[] r, bytes32[] s)
+	  notNull(destination)
+	  transactionDoesNotExists(txHash)
+	  txNotBlackListed(txHash)
+	  onlyWhenNotFrozen
+	  public {
         require(v.length >= required);
 
-        bytes32 hashedTxParams = keccak256(txHash, destination, value, data, VERSION);
-        require(hashedTxParams == msgHash);
+        bytes32 msgHash = keccak256(byte(0x19), VERSION, address(this),txHash, destination, value, data);
 
         // execute the transaction after all checking the signatures
         require (hasEnoughRequiredSignatures(msgHash, v, r, s));
@@ -160,7 +158,6 @@ contract MainChain is Freezable {
     /// @param destination target destination
     /// @param value ether value
     /// @param data data payload
-    // @TODO still need to write tests for emergency withdrawal
     function emergencyWithdrawal(address destination, uint256 value, bytes data)
       onlyWhenFrozen
       ownerExists(msg.sender)

contracts/SideChain.sol

@@ -44,6 +44,7 @@ contract SideChain is Freezable {
     //	 Structs
     ////////////////////////
     struct Transaction {
+        bytes32 msgHash;
         address destination;
         uint256 value;
         bytes data;
@@ -76,30 +77,26 @@ contract SideChain is Freezable {
         emit Deposit(msg.sender, to, msg.value);
     }
 
-    /// @dev submit transaction to be processed pending the approvals
-    /// @param msgHash sha3 hash of txHash destination value data and VERSION
-    /// @param txHash transaction hash of the deposit tx in main chain
-    /// @param destination destination provided in deposit tx in main chain
-    /// @param value msg.value of deposit tx in main chain
-    /// @param data data of deposit tx in main chain
-    /// @param v part of sig
-    /// @param r part of sig
-    /// @param s part of sig
-    function submitTransactionSC(bytes32 msgHash, bytes32 txHash, address destination, uint256 value, bytes data, uint8 v, bytes32 r, bytes32 s)
+	/// @dev submit transaction to be processed pending the approvals
+	/// @param txHash transaction hash of the deposit tx in main chain
+	/// @param destination destination provided in deposit tx in main chain
+	/// @param value msg.value of deposit tx in main chain
+	/// @param data data of deposit tx in main chain
+    function submitTransactionSC(bytes32 txHash, address destination, uint256 value, bytes data)
         ownerExists(msg.sender)
         notNull(destination)
         public {
         require(!isSignedSC[txHash][msg.sender]);
-        address signer = ecrecover(msgHash, v, r, s);
-        require(msg.sender == signer);
-        bytes32 hashedTxParams = keccak256(txHash, destination, value, data, VERSION);
-        require(hashedTxParams == msgHash);
+
+        bytes32 msgHash = keccak256(txHash, destination, value, data, VERSION);
+
         if (sideChainTx[txHash].destination == address(0)) {
-            addTransactionSC(txHash, destination, value, data);
-        } else {
-            require(sideChainTx[txHash].destination == destination);
-            require(sideChainTx[txHash].value == value);
+            addTransactionSC(msgHash, txHash, destination, value, data);
         }
+
+        // this validates that all the parameters are the same as the previous submitter
+        require(sideChainTx[txHash].msgHash == msgHash);
+
         isSignedSC[txHash][msg.sender] = true;
         emit Confirmation(msg.sender, txHash);
         executeTransaction(txHash);
@@ -142,7 +139,7 @@ contract SideChain is Freezable {
       public
       returns(bool) {
         uint count = 0;
-        for (uint i=0; i<owners.length; i++) {
+        for (uint i = 0; i<owners.length; i++) {
             if (isSignedSC[txHash][owners[i]])
                 count += 1;
             if (count == required)
@@ -156,7 +153,7 @@ contract SideChain is Freezable {
       view
       public
       returns(uint count) {
-        for (uint i=0; i<owners.length; i++) {
+        for (uint i = 0; i<owners.length; i++) {
             if (isSignedSC[txHash][owners[i]]) {
                 count += 1;
             }
@@ -172,13 +169,13 @@ contract SideChain is Freezable {
         address[] memory isSignedSCTemp = new address[](owners.length);
         uint count = 0;
         uint i;
-        for (i=0; i<owners.length; i++)
+        for (i = 0; i<owners.length; i++)
             if (isSignedSC[txHash][owners[i]]) {
                 isSignedSCTemp[count] = owners[i];
                 count += 1;
             }
         _isSignedSC = new address[](count);
-        for (i=0; i<count; i++)
+        for (i = 0; i<count; i++)
             _isSignedSC[i] = isSignedSCTemp[i];
     }
 
@@ -188,14 +185,16 @@ contract SideChain is Freezable {
 
 
     /// @dev Adds a new transaction to the transaction mapping, if transaction does not exist yet.
+    /// @param msgHash keccek256 hash of the parameters
     /// @param txHash Transaction transactionHash
     /// @param destination Transaction target address.
     /// @param value Transaction ether value.
     /// @param data Transaction data payload.
-    function addTransactionSC(bytes32 txHash, address destination, uint value, bytes data)
+    function addTransactionSC(bytes32 msgHash, bytes32 txHash, address destination, uint value, bytes data)
       notNull(destination)
       private {
         sideChainTx[txHash] = Transaction({
+            msgHash: msgHash,
             destination: destination,
             value: value,
             executed: false,
@@ -230,27 +229,25 @@ contract SideChain is Freezable {
     // SUBMIT SIGNATURES TO WITHDRAW ON MAINCHAIN
     //////////////////////////////////////////////
 
-    /// @dev store signature to be submitted in mainchain
-    /// @param msgHash sha3 hash of txHash destination value data and VERSION
-    /// @param txHash transaction hash of the deposit tx in side chain
-    /// @param destination destination provided in deposit tx in side chain
-    /// @param value msg.value of deposit tx in side chain
-    /// @param data data of deposit tx in side chain
-    /// @param v part of sig
-    /// @param r part of sig
-    /// @param s part of sig
-    function submitSignatureMC(bytes32 msgHash, bytes32 txHash, address destination, uint256 value, bytes data, uint8 v, bytes32 r, bytes32 s)
+	/// @dev store signature to be submitted in mainchain
+	/// @param txHash transaction hash of the deposit tx in side chain
+	/// @param destination destination provided in deposit tx in side chain
+	/// @param value msg.value of deposit tx in side chain
+	/// @param data data of deposit tx in side chain
+	/// @param v part of sig
+	/// @param r part of sig
+	/// @param s part of sig
+    function submitSignatureMC(bytes32 txHash, address destination, uint256 value, bytes data, uint8 v, bytes32 r, bytes32 s)
       ownerExists(msg.sender)
       notNull(destination)
       public {
         require(!isSignedMC[txHash][msg.sender]);
 
+        bytes32 msgHash = keccak256(byte(0x19), VERSION, address(this),txHash, destination, value, data);
+
         address signer = ecrecover(msgHash, v, r, s);
         require(msg.sender == signer);
 
-        bytes32 hashedTxParams = keccak256(txHash, destination, value, data, VERSION);
-        require(hashedTxParams == msgHash);
-
         if(mainChainTxs[txHash].destination == address(0)){
             addTransactionMC(txHash, destination, value, data);
         }

contracts/libs/Freezable.sol

@@ -53,7 +53,7 @@ contract Freezable is MultiSigOwnable {
         if (frozenAt == 0 || approvalCount == 0) return false;
         else {
             uint256 frozenDuration = minTimeFrozen * (frozenDurationRatio ** (approvalCount - 1));
-            if (now < (frozenAt + frozenDuration)) return true;
+            if (block.timestamp < (frozenAt + frozenDuration)) return true;
         }
         return false;
     }
@@ -85,8 +85,8 @@ contract Freezable is MultiSigOwnable {
         approvalCount++;
 
         if (frozenAt == 0) {
-            frozenAt = now;
-            emit contractFrozen(now);
+            frozenAt = block.timestamp;
+            emit contractFrozen(block.timestamp);
         }
     }
 
@@ -100,7 +100,7 @@ contract Freezable is MultiSigOwnable {
 
         if (approvalCount == 0) {
             frozenAt = 0;
-            emit contractUnFrozen(now);
+            emit contractUnFrozen(block.timestamp);
         }
     }
 }

contracts/libs/MultiSigOwnable.sol

@@ -34,11 +34,10 @@ contract MultiSigOwnable {
     }
 
     modifier validRequirement(uint ownerCount, uint8 _required) {
-        require(
-            ownerCount <= MAX_OWNER_COUNT
-            && _required <= ownerCount
-            && _required != 0
-            && ownerCount != 0);
+        require(ownerCount <= MAX_OWNER_COUNT);
+        require(_required <= ownerCount);
+        require(_required != 0);
+        require(ownerCount != 0);
         _;
     }
 
@@ -84,9 +83,9 @@ contract MultiSigOwnable {
         ownerExists(owner)
         public {
         isOwner[owner] = false;
-        for (uint i=0; i< owners.length - 1; i++) {
+        for (uint i = 0; i < owners.length - 1; i++) {
             if (owners[i] == owner) {
-                owners[i] = owners[ owners.length - 1];
+                owners[i] = owners[owners.length - 1];
                 break;
             }
         }

test/MainChainUnitTest/addBlackListUnitTest.js

@@ -18,6 +18,7 @@ let txHash;
 let toAddress;
 let value;
 let version;
+let contractAddress;
 
 contract('MainChain: addBlackList Unit Test', function(accounts) {
   beforeEach(async function() {
@@ -27,6 +28,7 @@ contract('MainChain: addBlackList Unit Test', function(accounts) {
     toAddress = mainchainInstance.address;
     value = 0;
     version = await mainchainInstance.VERSION.call();
+    contractAddress = mainchainInstance.address;
   });
 
   it('checks that addBlackList work as intended if all the condition are valid', async function() {
@@ -44,14 +46,14 @@ contract('MainChain: addBlackList Unit Test', function(accounts) {
     );
     const sigs = utils.multipleSignedTransaction(
       [0, 1],
+      contractAddress,
       txHash,
       toAddress,
       value,
       addBlackListData,
       version,
     );
     await mainchainInstance.submitTransaction(
-      sigs.msgHash,
       txHash,
       toAddress,
       value,
@@ -90,14 +92,14 @@ contract('MainChain: addBlackList Unit Test', function(accounts) {
     );
     let sigs = utils.multipleSignedTransaction(
       [0, 1],
+      contractAddress,
       txHash,
       toAddress,
       value,
       addBlackListData,
       version,
     );
     await mainchainInstance.submitTransaction(
-      sigs.msgHash,
       txHash,
       toAddress,
       value,
@@ -114,14 +116,14 @@ contract('MainChain: addBlackList Unit Test', function(accounts) {
     // const data = mainchainInstance.contract.addBlackList.getData(txHash);
     sigs = utils.multipleSignedTransaction(
       [0, 1],
+      contractAddress,
       txHashes[1],
       toAddress,
       value,
       addBlackListData,
       version,
     );
     const res = await mainchainInstance.submitTransaction(
-      sigs.msgHash,
       txHashes[1],
       toAddress,
       value,
@@ -141,14 +143,14 @@ contract('MainChain: addBlackList Unit Test', function(accounts) {
     );
     const sigs = utils.multipleSignedTransaction(
       [0, 1],
+      contractAddress,
       txHash,
       toAddress,
       value,
       addBlackListData,
       version,
     );
     const res = await mainchainInstance.submitTransaction(
-      sigs.msgHash,
       txHash,
       toAddress,
       value,