Merge pull request #6417 from halibobo1205/fix/code-scanning

refactor(crypto,api): improve code quality

Author: kuny0707

actuator/src/main/java/org/tron/core/vm/PrecompiledContracts.java

@@ -41,6 +41,7 @@
 import org.apache.commons.lang3.tuple.Triple;
 import org.tron.common.crypto.Blake2bfMessageDigest;
 import org.tron.common.crypto.Hash;
+import org.tron.common.crypto.Rsv;
 import org.tron.common.crypto.SignUtils;
 import org.tron.common.crypto.SignatureInterface;
 import org.tron.common.crypto.zksnark.BN128;
@@ -352,22 +353,13 @@ private static byte[] encodeMultiRes(byte[]... words) {
   }
 
   private static byte[] recoverAddrBySign(byte[] sign, byte[] hash) {
-    byte v;
-    byte[] r;
-    byte[] s;
     byte[] out = null;
     if (ArrayUtils.isEmpty(sign) || sign.length < 65) {
       return new byte[0];
     }
     try {
-      r = Arrays.copyOfRange(sign, 0, 32);
-      s = Arrays.copyOfRange(sign, 32, 64);
-      v = sign[64];
-      if (v < 27) {
-        v += 27;
-      }
-
-      SignatureInterface signature = SignUtils.fromComponents(r, s, v,
+      Rsv rsv = Rsv.fromSignature(sign);
+      SignatureInterface signature = SignUtils.fromComponents(rsv.getR(), rsv.getS(), rsv.getV(),
           CommonParameter.getInstance().isECKeyCryptoEngine());
       if (signature.validateComponents()) {
         out = SignUtils.signatureToAddress(hash, signature,

chainbase/src/main/java/org/tron/core/capsule/TransactionCapsule.java

@@ -41,6 +41,7 @@
 import lombok.extern.slf4j.Slf4j;
 import org.apache.commons.lang3.ArrayUtils;
 import org.tron.common.crypto.ECKey.ECDSASignature;
+import org.tron.common.crypto.Rsv;
 import org.tron.common.crypto.SignInterface;
 import org.tron.common.crypto.SignUtils;
 import org.tron.common.es.ExecutorServiceManager;
@@ -456,14 +457,8 @@ public static long getCallValue(Transaction.Contract contract) {
   }
 
   public static String getBase64FromByteString(ByteString sign) {
-    byte[] r = sign.substring(0, 32).toByteArray();
-    byte[] s = sign.substring(32, 64).toByteArray();
-    byte v = sign.byteAt(64);
-    if (v < 27) {
-      v += 27; //revId -> v
-    }
-    ECDSASignature signature = ECDSASignature.fromComponents(r, s, v);
-    return signature.toBase64();
+    Rsv rsv = Rsv.fromSignature(sign.toByteArray());
+    return ECDSASignature.fromComponents(rsv.getR(), rsv.getS(), rsv.getV()).toBase64();
   }
 
   public static boolean validateSignature(Transaction transaction,

chainbase/src/main/java/org/tron/core/service/MortgageService.java

@@ -182,7 +182,7 @@ private long computeReward(long cycle, List<Pair<byte[], Long>> votes) {
       }
       long userVote = vote.getValue();
       double voteRate = (double) userVote / totalVote;
-      reward += voteRate * totalReward;
+      reward += (long) (voteRate * totalReward);
     }
     return reward;
   }

crypto/src/main/java/org/tron/common/crypto/Rsv.java

@@ -0,0 +1,26 @@
+package org.tron.common.crypto;
+
+
+import java.util.Arrays;
+import lombok.AllArgsConstructor;
+import lombok.Getter;
+
+@Getter
+@AllArgsConstructor
+public class Rsv {
+
+  private final byte[] r;
+  private final byte[] s;
+  private final byte v;
+
+
+  public static Rsv fromSignature(byte[] sign) {
+    byte[] r = Arrays.copyOfRange(sign, 0, 32);
+    byte[] s = Arrays.copyOfRange(sign, 32, 64);
+    byte v = sign[64];
+    if (v < 27) {
+      v += (byte) 27; //revId -> v
+    }
+    return new Rsv(r, s, v);
+  }
+}

framework/src/main/java/org/tron/core/capsule/utils/RLP.java

@@ -165,7 +165,7 @@ static short decodeShort(byte[] data, int index) {
       byte pow = (byte) (length - 1);
       for (int i = 1; i <= length; ++i) {
         // << (8 * pow) == bit shift to 0 (*1), 8 (*256) , 16 (*65..)
-        value += (data[index + i] & 0xFF) << (8 * pow);
+        value += (short) ((data[index + i] & 0xFF) << (8 * pow));
         pow--;
       }
     } else {

framework/src/main/java/org/tron/core/services/http/GetBrokerageServlet.java

@@ -28,8 +28,7 @@ protected void doGet(HttpServletRequest request, HttpServletResponse response) {
       response.getWriter().println("{\"brokerage\": " + value + "}");
     } catch (DecoderException | IllegalArgumentException e) {
       try {
-        response.getWriter()
-            .println("{\"Error\": " + "\"INVALID address, " + e.getMessage() + "\"}");
+        response.getWriter().println("{\"Error\": " + "\"INVALID address\"}");
       } catch (IOException ioe) {
         logger.debug("IOException: {}", ioe.getMessage());
       }

framework/src/main/java/org/tron/core/services/http/GetRewardServlet.java

@@ -27,8 +27,7 @@ protected void doGet(HttpServletRequest request, HttpServletResponse response) {
       response.getWriter().println("{\"reward\": " + value + "}");
     } catch (DecoderException | IllegalArgumentException e) {
       try {
-        response.getWriter()
-            .println("{\"Error\": " + "\"INVALID address, " + e.getMessage() + "\"}");
+        response.getWriter().println("{\"Error\": " + "\"INVALID address\"}");
       } catch (IOException ioe) {
         logger.debug("IOException: {}", ioe.getMessage());
       }

framework/src/main/java/org/tron/core/services/http/solidity/GetTransactionByIdSolidityServlet.java

@@ -30,12 +30,7 @@ protected void doGet(HttpServletRequest request, HttpServletResponse response) {
       String input = request.getParameter("value");
       fillResponse(ByteString.copyFrom(ByteArray.fromHexString(input)), visible, response);
     } catch (Exception e) {
-      logger.debug("Exception: {}", e.getMessage());
-      try {
-        response.getWriter().println(e.getMessage());
-      } catch (IOException ioe) {
-        logger.debug("IOException: {}", ioe.getMessage());
-      }
+      Util.processError(e, response);
     }
   }
 
@@ -46,12 +41,7 @@ protected void doPost(HttpServletRequest request, HttpServletResponse response)
       JsonFormat.merge(params.getParams(), build, params.isVisible());
       fillResponse(build.build().getValue(), params.isVisible(), response);
     } catch (Exception e) {
-      logger.debug("Exception: {}", e.getMessage());
-      try {
-        response.getWriter().println(e.getMessage());
-      } catch (IOException ioe) {
-        logger.debug("IOException: {}", ioe.getMessage());
-      }
+      Util.processError(e, response);
     }
   }
 

framework/src/main/java/org/tron/core/services/http/solidity/GetTransactionInfoByIdSolidityServlet.java

@@ -1,7 +1,6 @@
 package org.tron.core.services.http.solidity;
 
 import com.google.protobuf.ByteString;
-import java.io.IOException;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import lombok.extern.slf4j.Slf4j;
@@ -37,12 +36,7 @@ protected void doGet(HttpServletRequest request, HttpServletResponse response) {
         response.getWriter().println(JsonFormat.printToString(transInfo, visible));
       }
     } catch (Exception e) {
-      logger.debug("Exception: {}", e.getMessage());
-      try {
-        response.getWriter().println(e.getMessage());
-      } catch (IOException ioe) {
-        logger.debug("IOException: {}", ioe.getMessage());
-      }
+      Util.processError(e, response);
     }
   }
 
@@ -60,12 +54,7 @@ protected void doPost(HttpServletRequest request, HttpServletResponse response)
         response.getWriter().println(JsonFormat.printToString(transInfo, params.isVisible()));
       }
     } catch (Exception e) {
-      logger.debug("Exception: {}", e.getMessage());
-      try {
-        response.getWriter().println(e.getMessage());
-      } catch (IOException ioe) {
-        logger.debug("IOException: {}", ioe.getMessage());
-      }
+      Util.processError(e, response);
     }
   }
 

framework/src/main/java/org/tron/core/services/jsonrpc/types/TransactionResult.java

@@ -5,9 +5,9 @@
 
 import com.fasterxml.jackson.annotation.JsonPropertyOrder;
 import com.google.protobuf.ByteString;
-import java.util.Arrays;
 import lombok.Getter;
 import lombok.ToString;
+import org.tron.common.crypto.Rsv;
 import org.tron.common.utils.ByteArray;
 import org.tron.core.Wallet;
 import org.tron.core.capsule.BlockCapsule;
@@ -65,16 +65,10 @@ private void parseSignature(Transaction tx) {
     }
 
     ByteString signature = tx.getSignature(0); // r[32] + s[32] + v[1]
-    byte[] signData = signature.toByteArray();
-    byte[] rByte = Arrays.copyOfRange(signData, 0, 32);
-    byte[] sByte = Arrays.copyOfRange(signData, 32, 64);
-    byte vByte = signData[64];
-    if (vByte < 27) {
-      vByte += 27;
-    }
-    v = ByteArray.toJsonHex(vByte);
-    r = ByteArray.toJsonHex(rByte);
-    s = ByteArray.toJsonHex(sByte);
+    Rsv rsv = Rsv.fromSignature(signature.toByteArray());
+    r = ByteArray.toJsonHex(rsv.getR());
+    s = ByteArray.toJsonHex(rsv.getS());
+    v = ByteArray.toJsonHex(rsv.getV());
   }
 
   private String parseInput(Transaction tx) {