Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

release v 1.1 #67

Open
wants to merge 369 commits into
base: master
Choose a base branch
from
Open

release v 1.1 #67

wants to merge 369 commits into from

Conversation

bulbozaur
Copy link
Contributor

@bulbozaur bulbozaur commented Apr 30, 2024
edited

Overview

This pull request introduces features for payments and node operators registry management.

Generalized payments with limit

Plug-in factories for Easy Track to be used by the Lido DAO committees with intrusive on-chain enforcement of periodically spendable limits.
Contracts based on the existing RewardPrograms set (RewardProgramsRegistry, AddRewardProgram, RemoveRewardProgram, TopUpRewardProgram) have the following differences from the existing ones:

  • The term "RewardProgram" was substituted for a more general "AllowedRecipient",
  • AllowedRecipientsRegistry (ex-RewardProgramsRegistry) stores and manages limits,
  • TopUpAllowedRecipients (ex-TopUpRewardProgram) can check if the payment satisfies the balance for the current period on motion creating and enaction.

AllowedRecipientsBuilder - provide ability to deploy payments setup with checks
AllowedRecipientsFactory - Factory for pauments related contracts
AllowedRecipientsRegistry - Registry of recipients and limits
AddAllowedRecipient - creates EVMScript to add recipient from registry
RemoveAllowedRecipient - creates EVMScript to remove recipient from registry
TopUpAllowedRecipients - creates EVMScript to transfer ERC-20 token to recipient
LimitsChecker - stores limits params and provides limit-enforcement logic
ADR LIP-18 Audit

Factories set for node operators registry management

This bench of EasyTrack EVM factories to manage an instance of the Simple DVT NodeOperatorsRegistry. The high-view overview of the management flow is presented in the below diagram.
image
ActivateNodeOperators - creates EVMScript to activate several node operators
AddNodeOperators - creates EVMScript to add a new batch of node operators
DeactivateNodeOperators - creates EVMScript to deactivate several node operators
ChangeNodeOperatorManagers - creates EVMScript to change signing keys manager for several node operators
IncreaseVettedValidatorsLimit - creates EVMScript to increase the staking limit for a node operator
SetNodeOperatorNames - creates EVMScript to set the name of several node operators
SetNodeOperatorRewardAddresses - creates EVMScript to set the reward address of several node operators
SetVettedValidatorsLimits - creates EVMScript to set the staking limit for node operators
UpdateTargetValidatorLimits - creates EVMScript to set the node operator's target validators limit
Specification Audit

Utils

  • Holesky testnet support
  • Slither checker for CI
  • Bash bytecode verificator
  • Bytecode diff checker
  • Dependencies update
  • Black linter

zuzueeka and others added 30 commits October 7, 2022 15:57
@zuzueeka
fix: renamed parameters in AllowedRecipientsRegistry
7ea6f8c
@zuzueeka
fix: added check on zero address for recipient address
a51a509
@zuzueeka
fix: NatSpec comments
33b6ed1
@arwer13
fix: AllowedRecipientsRegistry.sol compilation
702619b
@arwer13
test(AllowedRecipientsRegistry): constructor
9a0b7fd
@arwer13
test(TopUpAllowedRecipients.sol): refactor and add more cases
97abb05
@arwer13
test(limits): a few more allowed recipients motions
966f16a
@arwer13
fix(tests): make all current tests pass
18c21dd
@arwer13
refactor(tests): allowed recipients motions
d31a02f
@arwer13
tests(limits): test simple motions for top up factory
d6ad63c
@zuzueeka
fix: another comment for payment, error in docstring
ed2a829
@rkolpakov
feat: add tests for add/remove allowed recipient
4e20f92
@arwer13
Merge pull request #27 from lidofinance/feat/add-remove-allowed-recip…
4bc8959 
…ient-tests

feat: add tests for add/remove allowed recipient factories
@rkolpakov
feat: add tests for allowed recipient registry
cc36e4f
@arwer13
Merge pull request #28 from lidofinance/feature/allowed-recipients-re…
58ab57c 
…gistry-tests

feat: add tests for allowed recipient registry
@arwer13
tests(limits): various refactoring and small fixing
3e1c940
@arwer13
tests(limits): refine two top up motions tests
42305f8
@arwer13
tests(limits): fix possible test failure if run near the end of curre…
a3e5c1e 
…nt period
@arwer13
tests(limits): add 3 top up motion tests
f954de8
@arwer13
tests(limits): check spendable amount if limit increased/decreased
9f73bea
@arwer13
tests(limits): unparametrize test for period time range calculation
92ef2e6
@zuzueeka
fix: added test for AddAllowedRecipient on correct EVMScript
e12dbf6
@zuzueeka
fix: added test for AddAllowedRecipient for ERROR_ALLOWED_RECIPIENT_A…
57c239a 
…LREADY_ADDED
@zuzueeka
fix: added tests for RemoveAllowedRecipient for correct EVMScript and…
5dda91f 
… ERROR_ALLOWED_RECIPIENT_NOT_FOUND
@arwer13
Merge branch 'develop' of github.com:lidofinance/easy-track into develop
6c38cc9
@zuzueeka
fix: TopUpAllowedRecipients rearrranged tests, added test for permiss…
bbdbe2d 
…ionless
@zuzueeka
fix: TopUpAllowedRecipients rearrranged tests, added test for permiss…
4eeaaf3 
…ionless
@rkolpakov
feat: add tests for BokkyPooBahsDateTimeContract
31b61dd
@arwer13
Merge pull request #29 from lidofinance/feature/tests-for-datetime-lib
46a2fa2 
Feature/tests for datetime lib
@zuzueeka
fix: resrranged tests, added some for AllowedRecipientsRegistry
dc4484c
bulbozaur and others added 18 commits December 26, 2023 15:35
@bulbozaur
Merge pull request #65 from lidofinance/feature/add_holesky_network
433e22e 
Add holesky network configs
@bulbozaur
Simple DVT ET factories mainnet deployment
d5a63f1
@zuzueeka
add more acceptance tests for single recipient setup
38995b7
@bulbozaur
Merge pull request #66 from lidofinance/feature/add_holesky_network
a4d54dc 
add more acceptance tests for single recipient setup
@bulbozaur
fix wrong no active state
83f8c1c
@bulbozaur
Merge branch 'develop' into feature/extra-nor-factories
12bfab3
@bulbozaur
Merge pull request #54 from lidofinance/feature/extra-nor-factories
f62f107 
simple DVT related factories
@bulbozaur
update deps and fix deprecations
552bd8b
@bulbozaur
fix signature
878d8c1
@bulbozaur
remove unused
b6c6edc
@bulbozaur
black
4f03d2d
@bulbozaur
fix brownie revert
68d3530
@bulbozaur
fix slither ci
5738198
@bulbozaur
fix verify bytecode
0e905d5
@dgusakov
chore: Update gh action sintax
425be15
@dgusakov
chore: Remove error skip
e741c80
@bulbozaur
fix verify bytecode ci
285415e
@bulbozaur
Merge pull request #68 from lidofinance/fix-action
c5f7c5f 
chore: Update gh action syntax
@bulbozaur bulbozaur requested a review from Psirex April 30, 2024 16:02
@bulbozaur bulbozaur requested a review from rkolpakov May 7, 2024 09:59
github-advanced-security[bot]
github-advanced-security bot found potential problems May 7, 2024
View reviewed changes
contracts/EVMScriptFactories/SetNodeOperatorNames.sol
Comment on lines +98 to +138
function _validateInputData(SetNameInput[] memory _decodedCallData) private view {
uint256 maxNameLength = nodeOperatorsRegistry.MAX_NODE_OPERATOR_NAME_LENGTH();
uint256 nodeOperatorsCount = nodeOperatorsRegistry.getNodeOperatorsCount();

require(_decodedCallData.length > 0, ERROR_EMPTY_CALLDATA);
require(
_decodedCallData[_decodedCallData.length - 1].nodeOperatorId < nodeOperatorsCount,
ERROR_NODE_OPERATOR_INDEX_OUT_OF_RANGE
);

for (uint256 i = 0; i < _decodedCallData.length; ++i) {
require(
i == 0 ||
_decodedCallData[i].nodeOperatorId > _decodedCallData[i - 1].nodeOperatorId,
ERROR_NODE_OPERATORS_IS_NOT_SORTED
);
require(
bytes(_decodedCallData[i].name).length > 0 &&
bytes(_decodedCallData[i].name).length <= maxNameLength,
ERROR_WRONG_NAME_LENGTH
);

(
/* bool active */,
string memory name,
/* address rewardAddress */,
/* uint64 stakingLimit */,
/* uint64 stoppedValidators */,
/* uint64 totalSigningKeys */,
/* uint64 usedSigningKeys */
) = nodeOperatorsRegistry.getNodeOperator(
_decodedCallData[i].nodeOperatorId,
true
);

require(
keccak256(bytes(_decodedCallData[i].name)) != keccak256(bytes(name)),
ERROR_SAME_NAME
);
}
}
contracts/EVMScriptFactories/SetNodeOperatorRewardAddresses.sol
Comment on lines +104 to +137
function _validateInputData(SetRewardAddressInput[] memory _decodedCallData) private view {
uint256 nodeOperatorsCount = nodeOperatorsRegistry.getNodeOperatorsCount();

require(_decodedCallData.length > 0, ERROR_EMPTY_CALLDATA);
require(
_decodedCallData[_decodedCallData.length - 1].nodeOperatorId < nodeOperatorsCount,
ERROR_NODE_OPERATOR_INDEX_OUT_OF_RANGE
);

for (uint256 i = 0; i < _decodedCallData.length; ++i) {
require(
i == 0 ||
_decodedCallData[i].nodeOperatorId > _decodedCallData[i - 1].nodeOperatorId,
ERROR_NODE_OPERATORS_IS_NOT_SORTED
);
require(_decodedCallData[i].rewardAddress != lido, ERROR_LIDO_REWARD_ADDRESS);
require(_decodedCallData[i].rewardAddress != address(0), ERROR_ZERO_REWARD_ADDRESS);

(
/* bool active */,
/* string memory name */,
address rewardAddress,
/* uint64 stakingLimit */,
/* uint64 stoppedValidators */,
/* uint64 totalSigningKeys */,
/* uint64 usedSigningKeys */
) = nodeOperatorsRegistry.getNodeOperator(
_decodedCallData[i].nodeOperatorId,
false
);

require(_decodedCallData[i].rewardAddress != rewardAddress, ERROR_SAME_REWARD_ADDRESS);
}
}
contracts/EVMScriptFactories/IncreaseVettedValidatorsLimit.sol
Comment on lines +128 to +146
function _getNodeOperatorData(
uint256 _nodeOperatorId
) private view returns (NodeOperatorData memory _nodeOperatorData) {
(
bool active,
,
address rewardAddress,
uint64 stakingLimit,
,
uint64 totalSigningKeys,

) = nodeOperatorsRegistry.getNodeOperator(_nodeOperatorId, false);

_nodeOperatorData.id = _nodeOperatorId;
_nodeOperatorData.active = active;
_nodeOperatorData.rewardAddress = rewardAddress;
_nodeOperatorData.stakingLimit = stakingLimit;
_nodeOperatorData.totalSigningKeys = totalSigningKeys;
}
contracts/LimitsChecker.sol
Comment on lines +299 to +315
function _getPeriodStartFromTimestamp(uint256 _timestamp) internal view returns (uint256) {
// Get year and number of month of the timestamp:
(uint256 year, uint256 month, ) = bokkyPooBahsDateTimeContract.timestampToDate(_timestamp);
// We assume that the year will remain the same,
// because the beginning of the current calendar period will necessarily be in the same year.
uint256 periodStartYear = year;
// Get the number of the start date month:
uint256 periodStartMonth = _getFirstMonthInPeriodFromMonth(month, periodDurationMonths);
// The beginning of the period always matches the calendar date of the beginning of the month.
uint256 periodStartDay = 1;
return
bokkyPooBahsDateTimeContract.timestampFromDate(
periodStartYear,
periodStartMonth,
periodStartDay
);
}

Check warning

Code scanning / Slither

Unused return Medium

LimitsChecker._getPeriodStartFromTimestamp(uint256) ignores return value by (year,month,None) = bokkyPooBahsDateTimeContract.timestampToDate(_timestamp)
contracts/EVMScriptFactories/SetVettedValidatorsLimits.sol
Comment on lines +100 to +138
function _validateInputData(VettedValidatorsLimitInput[] memory _decodedCallData) private view {
uint256 nodeOperatorsCount = nodeOperatorsRegistry.getNodeOperatorsCount();
require(_decodedCallData.length > 0, ERROR_EMPTY_CALLDATA);
require(
_decodedCallData[_decodedCallData.length - 1].nodeOperatorId < nodeOperatorsCount,
ERROR_NODE_OPERATOR_INDEX_OUT_OF_RANGE
);

for (uint256 i = 0; i < _decodedCallData.length; ++i) {
require(
i == 0 ||
_decodedCallData[i].nodeOperatorId > _decodedCallData[i - 1].nodeOperatorId,
ERROR_NODE_OPERATORS_IS_NOT_SORTED
);

(
bool active,
/* string memory name */,
/* address rewardAddress */,
/* uint64 stakingLimit */,
/* uint64 stoppedValidators */,
uint64 totalSigningKeys,
/* uint64 usedSigningKeys */
) = nodeOperatorsRegistry.getNodeOperator(
_decodedCallData[i].nodeOperatorId,
false
);

require(
totalSigningKeys >= _decodedCallData[i].stakingLimit,
ERROR_NOT_ENOUGH_SIGNING_KEYS
);

require(
active == true,
ERROR_NODE_OPERATOR_IS_NOT_ACTIVE
);
}
}
contracts/EVMScriptFactories/TopUpAllowedRecipients.sol
address public token;

/// @notice Address of AllowedRecipientsRegistry contract
AllowedRecipientsRegistry public allowedRecipientsRegistry;

Check warning

Code scanning / Slither

State variables that could be declared immutable Warning

TopUpAllowedRecipients.allowedRecipientsRegistry should be immutable
contracts/EVMScriptFactories/AddAllowedRecipient.sol
// -------------

/// @notice Address of AllowedRecipientsRegistry
AllowedRecipientsRegistry public allowedRecipientsRegistry;

Check warning

Code scanning / Slither

State variables that could be declared immutable Warning

AddAllowedRecipient.allowedRecipientsRegistry should be immutable
contracts/EVMScriptFactories/TopUpAllowedRecipients.sol
IFinance public immutable finance;

/// @notice Address of payout token
address public token;

Check warning

Code scanning / Slither

State variables that could be declared immutable Warning

TopUpAllowedRecipients.token should be immutable
contracts/EVMScriptFactories/RemoveAllowedRecipient.sol
// -------------

/// @notice Address of AllowedRecipientsRegistry
AllowedRecipientsRegistry public allowedRecipientsRegistry;

Check warning

Code scanning / Slither

State variables that could be declared immutable Warning

RemoveAllowedRecipient.allowedRecipientsRegistry should be immutable
rkolpakov
rkolpakov approved these changes May 7, 2024
View reviewed changes
Copy link

@rkolpakov rkolpakov left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. Good job!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rkolpakov rkolpakov rkolpakov approved these changes

@Psirex Psirex Awaiting requested review from Psirex

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
8 participants
@bulbozaur @rkolpakov @zuzueeka @arwer13 @Psirex @dgusakov @TheDZhon @BATMAH69