feat: [v0.8-develop] Add allowlist sample hook, refactor test base #70
Conversation
| override | ||
| returns (uint256) | ||
| { | ||
| if (functionId == uint8(FunctionId.PRE_VALIDATION_HOOK)) { |
There was a problem hiding this comment.
What's the point of this check, and the similar one in the runtime validation hook?
There was a problem hiding this comment.
In other plugin examples we've been using an if-else chain for the internal function dispatcher, so I was following that pattern here too. I suppose we could cut it and just treat every function id the same here, because this one doesn't have multiple implementations.
There was a problem hiding this comment.
Like the idea of not having the functionId, especially the plugins are global singleton.
Actually, we should be explicit since we do ask the functionId var to be passed.
| } | ||
|
|
||
| // solhint-disable-next-line no-empty-blocks | ||
| function pluginManifest() external pure override returns (PluginManifest memory) {} |
There was a problem hiding this comment.
Is this blank because it's supposed to only be installed with a user-provided config?
There was a problem hiding this comment.
Yep, basically. The manifest is empty because this plugin doesn't define anything that the manifest can install:
- execution functions
- execution hooks
- validation functions
- signature validators
- call permissions
adamegyed
force-pushed
the
adam/per-hook-data
branch
from
62344f2 to
0e67b55
Compare
adamegyed
force-pushed
the
adam/sample-allowlist-hook
branch
from
b8637b4 to
4c147bf
Compare
adamegyed
force-pushed
the
adam/per-hook-data
branch
from
0e67b55 to
c2da4d0
Compare
adamegyed
force-pushed
the
adam/sample-allowlist-hook
branch
2 times, most recently
from
cd1637f to
8c7133c
Compare
| ); | ||
|
|
||
| vm.deal(address(account1), 100 ether); | ||
| _customValidationSetup(); |
There was a problem hiding this comment.
Do the old tests here test allowList fails?
Are the error thrown from AllowlistPlugin captured as AA errors?
There was a problem hiding this comment.
Yes, depending on the call path, they throw either user op or runtime errors, and the fuzzer expects them to be called.
The error to look for is loaded from here:
reference-implementation/test/samples/AllowlistPlugin.t.sol
Lines 142 to 199 in 8c7133c
And the test expects them here:
adamegyed
force-pushed
the
adam/per-hook-data
branch
from
64a9917 to
23cdc39
Compare
adamegyed
force-pushed
the
adam/sample-allowlist-hook
branch
from
8c7133c to
d48a9a4
Compare
adamegyed
force-pushed
the
adam/per-hook-data
branch
from
23cdc39 to
4599a2d
Compare
adamegyed
force-pushed
the
adam/sample-allowlist-hook
branch
from
d48a9a4 to
9bc6789
Compare
adamegyed
force-pushed
the
adam/per-hook-data
branch
from
4599a2d to
8a09d31
Compare
adamegyed
force-pushed
the
adam/sample-allowlist-hook
branch
from
9bc6789 to
17906b1
Compare
adamegyed
force-pushed
the
adam/per-hook-data
branch
from
8a09d31 to
d402361
Compare
adamegyed
force-pushed
the
adam/sample-allowlist-hook
branch
from
17906b1 to
e3ab9a2
Compare
adamegyed
force-pushed
the
adam/per-hook-data
branch
from
d402361 to
60916fa
Compare
adamegyed
force-pushed
the
adam/sample-allowlist-hook
branch
from
e3ab9a2 to
ae5c79a
Compare
| function pluginManifest() external pure override returns (PluginManifest memory) {} | ||
|
|
||
| function _checkAllowlistCalldata(bytes calldata callData) internal view { | ||
| if (bytes4(callData[:4]) == IStandardExecutor.execute.selector) { |
There was a problem hiding this comment.
Callout: when executeUserOp is used, we need to check calldata[4:8] instead
There was a problem hiding this comment.
If this hook doesn't depend on the contents of executeUserOp, then the account shouldn't send the user op, right? I guess this depends on how we do it, but it seems like the account should know whether to use msg.data or userOp.callData depending on the hook config.
There was a problem hiding this comment.
yeah agree that it should be abstracted from plugins. in the current permissions stack, we directly send over userOp.callData which could be abi.encodeCall(...) or abi.encodePacked(executeUserOp.selector, abi.encodeCall(...)) for hooks that don't require UO context, and for hooks that require UO context, they would always receive abi.encodePacked(executeUserOp.selector, abi.encodeCall(...)). Dislike that part and would likely change that though
There was a problem hiding this comment.
LGTM. Additionally, we developed a 6900 address book plugin that utilized the pre-validation hook.
adamegyed
force-pushed
the
adam/sample-allowlist-hook
branch
from
ae5c79a to
5785dba
Compare
adamegyed
force-pushed
the
adam/per-hook-data
branch
from
2afe76b to
94b7592
Compare
adamegyed
force-pushed
the
adam/sample-allowlist-hook
branch
from
5785dba to
2a965ac
Compare
adamegyed
force-pushed
the
adam/per-hook-data
branch
from
94b7592 to
e118421
Compare
adamegyed
force-pushed
the
adam/sample-allowlist-hook
branch
from
2a965ac to
4e0fdc3
Compare
adamegyed
force-pushed
the
adam/per-hook-data
branch
from
e118421 to
94a3764
Compare
adamegyed
force-pushed
the
adam/sample-allowlist-hook
branch
from
4e0fdc3 to
18abe0f
Compare
adamegyed
force-pushed
the
adam/per-hook-data
branch
from
94a3764 to
e4526cc
Compare
adamegyed
force-pushed
the
adam/sample-allowlist-hook
branch
from
18abe0f to
17ed4e0
Compare
adamegyed
force-pushed
the
adam/per-hook-data
branch
from
e4526cc to
68a5847
Compare
adamegyed
force-pushed
the
adam/sample-allowlist-hook
branch
from
17ed4e0 to
78ae1eb
Compare
adamegyed
force-pushed
the
adam/per-hook-data
branch
from
68a5847 to
b579102
Compare
adamegyed
force-pushed
the
adam/sample-allowlist-hook
branch
from
78ae1eb to
5c10b0d
Compare
Motivation
To provide better context for how pre-validation hooks should be used, it would help to provide some real use cases. A simple case is an allowlist plugin - limiting the addresses, and possibly the selectors, of the targets of
executeandexecuteBatchwhen using a specific validation function.Solution
AccountTestBase.AccountTestBasecalledCustomValidationTestBase, and update the Per-hook data test (and the allowlist test) to use this.