Use a pull model to withdraw deposit ETH balances #570

NicholasDotSol · 2020-04-09T08:41:14Z

Push models introduce security and stability concerns, a pull model allows for better security, as well as more flexibility and freedom to third-party contract fallbacks given .call.value()'s gas-forwarding.

Accumulated Eth balance can only be withdrawn after the contract reaches an end-state.

Closes #551.

enableWithdrawal - Enables a given address to withdraw value after the contract reaches an end state withdrawFunds - Withdraw the funds a given caller is allowed. Only callable after the contract has reached an end-state.

Use the pull model instead of forwarding value directly.

Allow for withdrawable-allowance querry.

We use this in liquidation tests now, it is still inherited for use where TestDepositUtils is used

contact -> contract _valueToDistribute -> valueToDistribute

solidity/contracts/deposit/DepositFunding.sol

solidity/contracts/deposit/DepositLiquidation.sol

solidity/contracts/deposit/DepositUtils.sol

Shadowfiend · 2020-04-09T18:42:27Z

solidity/contracts/deposit/DepositUtils.sol

+    }
+
+    /// @notice     Get the caller's withdraw allowance.
+    /// @return     The caller's withdrawable allowance in wei.


We're back-and-forthing between “withdraw allowance” and “withdrawable allowance”. I'm fine with “withdraw allowance”, but let's use it everywhere.

EDIT: And “withdrawal allowance”.

solidity/test/DepositFundingTest.js

solidity/test/DepositLiquidationTest.js

solidity/test/DepositUtilsTest.js

check `contractEthBalance > valueToDistribute + 1` to avoid spliting a balance of 1 wei.

more consistent naming, remove awkward possessive

Check that the contract has what it owes

For better test safety make sure the initial balance is not influences by other factors

Checking that the final balance is greated than the initial one does not prove that the withdraw() functions correctly. Instead, account for gas cost and check the exact value.

@dev

Users will not be directly interacting, therefore @dev is more appropreate

Shadowfiend

Still think it would make sense to make withdrawalAllowances be withdrawAllowances, but I think we can merge this as-is and get that in the next PR that handles the redemption abort liquidation path.

NicholasDotSol added 6 commits April 9, 2020 00:33

Implement withdrawal fundctions

c3883da

enableWithdrawal - Enables a given address to withdraw value after the contract reaches an end state withdrawFunds - Withdraw the funds a given caller is allowed. Only callable after the contract has reached an end-state.

Use withdrawal functions

f64f0e8

Use the pull model instead of forwarding value directly.

add getWithdrawAllowance method

0a6083a

Allow for withdrawable-allowance querry.

move auctionValue() to TestDeposit()

2e362fb

We use this in liquidation tests now, it is still inherited for use where TestDepositUtils is used

Test withdraw methods

5ee7544

Update remaining tests to check for pullable value

90b082e

NicholasDotSol requested review from Shadowfiend and a team April 9, 2020 08:41

typo and convention fix

3da16e5

contact -> contract _valueToDistribute -> valueToDistribute

NicholasDotSol mentioned this pull request Apr 9, 2020

Use a pull model to withdraw deposit ETH balances #569

Closed