Gas Abstraction #301
Merged
Gas Abstraction #301
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add internal functions _approve and _transfer for code reuse
* Implement EIP712 helper functions * Implement transferWithAuthorization * Implement approveWithAuthorization * Implement cancelAuthorization * Apply all V1 an V1.1 tests to V2
These alternative methods mitigate ERC20 multiple withdrawal attack.
* Implement increaseAllowanceWithAuthorization * Implement decreaseAllowanceWithAuthorization
|
Slowly going through this, but in general looks good so far. One thing that would be helpful is adding a doc in the I can puzzle most of it out from the code/comments but would be nice to have it all in 1 place for future integrators who are trying to build on these features. |
eztierney
requested changes
Jun 5, 2020
There was a problem hiding this comment.
This looks really good - I noticed maybe 1 missing test, but code coverage indicates maybe a few more.
I think we should try to get ECRecover.sol and the v2 contracts to 100% for this PR. There are some 1.1 and upgradeablility issues in the coverage too, but those don't need to block this PR - and we should probably fix those in master anyways.
The code coverage report I got:
File | % Stmts | % Branch | % Funcs | % Lines |Uncovered Lines |
-------------------------------|----------|----------|----------|----------|----------------|
upgradeability/ | 100 | 78.57 | 100 | 100 | |
AdminUpgradeabilityProxy.sol | 100 | 80 | 100 | 100 | |
Proxy.sol | 100 | 100 | 100 | 100 | |
UpgradeabilityProxy.sol | 100 | 75 | 100 | 100 | |
util/ | 81.82 | 62.5 | 100 | 83.33 | |
ECRecover.sol | 71.43 | 50 | 100 | 71.43 | 63,67 |
EIP712.sol | 100 | 100 | 100 | 100 | |
v1.1/ | 100 | 75 | 100 | 100 | |
FiatTokenV1_1.sol | 100 | 100 | 100 | 100 | |
Rescuable.sol | 100 | 75 | 100 | 100 | |
v1/ | 100 | 96.3 | 100 | 100 | |
AbstractFiatTokenV1.sol | 100 | 100 | 100 | 100 | |
Blacklistable.sol | 100 | 100 | 100 | 100 | |
FiatTokenProxy.sol | 100 | 100 | 100 | 100 | |
FiatTokenV1.sol | 100 | 94.74 | 100 | 100 | |
Ownable.sol | 100 | 100 | 100 | 100 | |
Pausable.sol | 100 | 100 | 100 | 100 | |
v2/ | 96.23 | 90 | 90.91 | 96.23 | |
AbstractFiatTokenV2.sol | 100 | 100 | 100 | 100 | |
EIP712Domain.sol | 100 | 100 | 100 | 100 | |
FiatTokenV2.sol | 100 | 50 | 100 | 100 | |
GasAbstraction.sol | 96.88 | 100 | 88.89 | 96.88 | 71 |
Permit.sol | 80 | 100 | 50 | 80 | 53 |
-------------------------------|----------|----------|----------|----------|----------------|
All files | 97.89 | 88.89 | 97.56 | 98.05 | |
-------------------------------|----------|----------|----------|----------|----------------|```
|
Improved test coverage. New code is all at 100% now. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Technical Design Doc
increaseAllowanceanddecreaseAllowanceto mitigate ERC20 multi-withdrawal attack vulnerabilityapprovehas.transferWithAuthorization,approveWithAuthorization,increaseAllowanceWithAuthorization,decreaseAllowanceWithAuthorizationto enable ETH-less transactions.permit– an alternative to approveWithAuthorization, provided for compatibility with the draft EIP2612 proposed by Uniswap. Differences are laid out here.