SMA-27 Account Recovery Module: fixes upon audit

[filmakarov]

Summary

• Added a check for the outer method selector for the userOp.callData to avoid call to other methods rather than default executor
• Now guardians sign controlMessage + SA.address. This is even more secure in terms of revealing guardians address across SAs.
• Removed unneeded conditional

TODO: technically validAfter = request.timestamp + securityDelay may overflow as both validAfter and securityDelay are uint48s. Making securityDelay an uint24 should solve issue however it will limit delay to 194 days (which is enough I think). Waiting confirmation from auditors on this matter.

Related Issue: # SMA-27

Change Type

• [x] Bug Fix

Checklist

• [x] My code follows this project's style guidelines
• [x] I've reviewed my own code
• [x] I've added comments for any hard-to-understand areas
• [x] I've updated the documentation if necessary
• [x] My changes generate no new warnings
• [x] I've added tests that prove my fix is effective or my feature works
• [x] All unit tests pass locally with my changes
• [x] Any dependent changes have been merged and published

[linear[bot]]

SMA-27 Account Recovery Zellic

[livingrockrises]

resolve conflicts

[filmakarov]

all comments addressed