Skip to content

reflexer-labs/ds-pause

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

242 Commits
lib
lib
 
 
src
src
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
.travis.yml
.travis.yml
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 

Repository files navigation

ds-pause

delegatecall based proxy with an enforced delay

ds-pause allows authorized users to schedule function calls that can only be executed once some predetermined waiting period has elapsed. The configurable delay attribute sets the minimum wait time.

ds-pause is designed to be used as a component in a governance system, to give affected parties time to respond to decisions. If those affected by governance decisions have e.g. exit or veto rights, then the pause can serve as an effective check on governance power.

Check out the more comprehensive documentation.

Invariants

A break of any of the following would be classified as a critical issue. Please submit bug reports to security@reflexer.finance.

high level

  • There is no way to bypass the delay
  • The code executed by the delegatecall cannot directly modify storage on the pause
  • The pause will always retain ownership of it's proxy

admin

  • authority, owner, and delay can only be changed if an authorized user creates a scheduledTransaction to do so

scheduledTransactions

  • A scheduledTransaction can only be plotted if its earliestExecutionTime is after block.timestamp + delay
  • A scheduledTransaction can only be plotted by authorized users

attachTransactionDescription

  • A attachTransactionDescription can only be called by the authority

protestAgainstTransaction

  • A protestAgainstTransaction can only be called once per scheduled transaction
  • A protestAgainstTransaction cannot delay an unscheduled transaction
  • A protestAgainstTransaction cannot delay a transaction more than delay * MAX_MULTIPLIER (unless it's not already delayed more than that)

executeTransaction

  • A scheduledTransaction can only be executed if it has previously been plotted
  • A scheduledTransaction can only be executed once it's earliestExecutionTime has passed
  • A scheduledTransaction can only be executed if its codeHash matches extcodehash(usr)
  • A scheduledTransaction can only be executed once
  • A scheduledTransaction can be executed by anyone

abandonTransaction

  • A scheduledTransaction can only be dropped by authorized users

Example Usage

// construct the pause

uint delay            = 2 days;
address owner         = address(0);
DSAuthority authority = new DSAuthority();

DSPause pause = new DSPause(delay, owner, authority); OR DSProtestPause pause = new DSProtestPause(delay, owner, authority);

// schedule the transaction

address      usr = address(0x0);
bytes32      codeHash;  assembly { codeHash := extcodehash(usr) }
bytes memory parameters = abi.encodeWithSignature("sig()");
uint         earliestExecutionTime = now + delay;

pause.scheduleTransaction(usr, codeHash, parameters, earliestExecutionTime);
// wait until block.timestamp is at least now + delay...
// and then execute the scheduledTransaction

bytes memory out = pause.executeTransaction(usr, codeHash, parameters, earliestExecutionTime);

Tests

About

Schedule function calls that can only be executed once some delay has elapsed

Resources

Readme

License

AGPL-3.0 license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

1 fork
Report repository

Releases

3 tags

Packages

 
 
 

Contributors

Languages

  • Solidity 99.9%
  • Makefile 0.1%