Skip to content

feat(ccq-server): enforce rate limits based on staking #4632

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
aapclark wants to merge 6 commits into
base: main
Choose a base branch
from
Draft

feat(ccq-server): enforce rate limits based on staking #4632

aapclark wants to merge 6 commits into from

Conversation

@aapclark
Copy link
Contributor

@aapclark aapclark commented Jan 6, 2026

  • (ccq-server): query ccq staking contract and look up rate limits in ipfs tranche

Rate limiting is enforced by the CCQ server before requests reach the guardian. Guardians trust that requests on the gossip network have already been validated. This aligns with the CCQ whitepaper: "The CCQ query server does request validation and responds with an error if it detects a bad request."

  • (ccq-server): support raw and eip191 signed messages

  • (ccq-server): remove unused permissions file

  • (ccq-server): add config values for contract address and ipfs host

  • (ccq-server): add X-Signature-Format header (values: "eip191" or default raw)

  • (ci): add ipfs provider with staking tranches

  • (ci): add queries staking contract deployment and pool creation

  • (js-query): switches to newer version of viem from web3

  • (js-query): add integration tests for staking-based rate limits

  • (js-query): add integration tests for raw and eip191 signed messages

aapclark
aapclark commented Jan 6, 2026
View reviewed changes
elee1766 and others added 5 commits January 8, 2026 12:27
@elee1766 @web3ashlee @aapclark
feat(ccq-server): enforce rate limits based on staking
0ab38ab 
- (ccq-server): query ccq staking contract and look up rate limits in ipfs
tranche

Rate limiting is enforced by the CCQ server before requests reach the guardian.
Guardians trust that requests on the gossip network have already been validated.
This aligns with the CCQ whitepaper: "The CCQ query server does request validation
and responds with an error if it detects a bad request."

- (ccq-server): support raw and eip191 signed messages

- (ccq-server): remove unused permissions file

- (ccq-server): add config values for contract address and ipfs host

- (ccq-server): add X-Signature-Format header (values: "eip191" or default raw)

- (ci): add ipfs provider with staking tranches

- (ci): add queries staking contract deployment and pool creation

- (js-query): switches to newer version of viem from web3

- (js-query): add integration tests for staking-based rate limits

- (js-query): add integration tests for raw and eip191 signed messages

Co-authored-by: web3ashlee <[email protected]>
@aapclark
fix: configure notary once in node test
8bcbc7c 
removes duplicate  call introduced by rebase
@aapclark
fix: address linter errors
e60ccca 
fix: configure notary once in node test

removes duplicate  call introduced by rebase

chore(ccq): update ccq metrics

chore(querystaking): update querystaking metrics

chore(query): update context handling in memorystore

fix(js-query): pass uint8Array buffer to BinaryReader

fix(query): use common.ReadSafe
@aapclark
chore: ignore eth-node in check-docker-pin.sh
c966e5c 
eth-node is built locally or in CI and is not a hosted docker image
@aapclark
fix(js-query): improve nonce handling for paralell integration tests
81ac7e8 
fix delegation test
@aapclark aapclark force-pushed the ccq-server-staking-rate-limits branch from cabf87e to 81ac7e8 Compare January 8, 2026 18:27
@aapclark
feat(ccq-server): use improved
e6812f6 
- switch to improved format for rate limit payload

- update querystaking and ipfs modules to retrieve and parse simplified
  payload

- update CI setup scripts and tests

fix(ccq-server): handle decayRate in queryType

- the addition of `decayRate` in the staking contract `queryType` field
  makes it cumbersome to lookup a pool. Instead, the server will use a
  list of staking pool addresses rather than querying the factory
  contract.

- add config option `stakingPoolAddresses` so that query-server can
  identify staking contracts without having to iterate through multiple
  possible decay rates

- make config flag `ccqFactoryAddress` optional

- update CI script to generate full queryType

- update tests with new query type addresses
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@evan-gray evan-gray Awaiting requested review from evan-gray evan-gray will be requested when the pull request is marked ready for review evan-gray is a code owner

@SEJeff SEJeff Awaiting requested review from SEJeff SEJeff will be requested when the pull request is marked ready for review SEJeff is a code owner

@panoel panoel Awaiting requested review from panoel panoel will be requested when the pull request is marked ready for review panoel is a code owner

@djb15 djb15 Awaiting requested review from djb15 djb15 will be requested when the pull request is marked ready for review djb15 is a code owner

@johnsaigle johnsaigle Awaiting requested review from johnsaigle johnsaigle will be requested when the pull request is marked ready for review johnsaigle is a code owner

@mdulin2 mdulin2 Awaiting requested review from mdulin2 mdulin2 will be requested when the pull request is marked ready for review mdulin2 is a code owner

@pleasew8t pleasew8t Awaiting requested review from pleasew8t pleasew8t will be requested when the pull request is marked ready for review pleasew8t is a code owner

@bemic bemic Awaiting requested review from bemic bemic will be requested when the pull request is marked ready for review bemic is a code owner

@fergarrui fergarrui Awaiting requested review from fergarrui fergarrui will be requested when the pull request is marked ready for review fergarrui is a code owner

@kev1n-peters kev1n-peters Awaiting requested review from kev1n-peters kev1n-peters will be requested when the pull request is marked ready for review kev1n-peters is a code owner

@kcsongor kcsongor Awaiting requested review from kcsongor kcsongor will be requested when the pull request is marked ready for review kcsongor is a code owner

@gator-boi gator-boi Awaiting requested review from gator-boi gator-boi will be requested when the pull request is marked ready for review gator-boi is a code owner

At least 2 approving reviews are required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@aapclark @elee1766