DAWN-399 ⁃ Producers Privileges

[bytemaster]

The producers account has powers that no other account has including:

1. to freeze / unfreeze an account
2. to update the code on an account with 30 day delay
   3. to create new accounts with the prefix eosio. (moved to Producers Privileges (create new accounts with prefix "eosio.") #1751)
3. to white list accounts for extra wasm API priv.

[wanderingbort]

Adding notes here regarding in-person discussion of how producers maintain a live chain

1. to freeze/unfreeze actions that reference a given accounts code
   • this allows the network to continue even if a malicious contract is identified by quarantining that contract
2. To put the chain into a "safe mode" where no new setcode actions can be applied
   • this minimizes the spread of newly discovered exploits while a proper immunization is deployed

[bytemaster]

The system account has privileged API access and so can update accounts without delay or with any delay enforced by WASM.

Freeze / unfreeze accounts can be implemented using the bandwidth rationing API, no special support required on backend.

Creating new accounts with eosio. should be something any "privileged" API can do.. this will need custom support.

Already have support for extra wasm API priv.

[gleehokie]

I moved point #3 to #1751.

[bytemaster]

freeze/unfreeze can be controlled by ratelimiting API
update account with 30 day delay is part of time delay priv issue
white list for permission has been implemented and merged.