Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

General Review of Contracts #58

Closed
rheaplex opened this issue Sep 29, 2021 · 1 comment
Closed

General Review of Contracts #58

rheaplex opened this issue Sep 29, 2021 · 1 comment

Comments

@rheaplex
Copy link

These are looking good! Some more fine-grained comments...

PackNFT.cdc

28: pub fun mint(commitHash: String, issuer: Address) {

  • Return the NFT and place it into the collection in the transaction rather than handling fetching the capability here. This makes minting multiple items more efficient.

60: pub var status: String

  • This could be an enum.

64: pub fun getCommitHash(): String {

  • commitHash is pub let, so this function is not needed.

70: return self._verify(nfts: self.NFTs, salt: self.salt!, commitHash: self.commitHash)

  • Note that ! will panic/crash if salt is not set. You could use if let to check if the salt is set, and if not return false if that would make sense. Or if transactions should fail when the salt isn't set this is fine.

83: pub fun getSalt(): String? {

  • salt is pub let, so this function is not needed.

97: let hash = HashAlgorithm.SHA2_256.hash(hashString.utf8)

121: panic("commitHash was not verified")

  • This could be an assert() at line 115.

174: let nonfungibleToken <- token

204: pub fun borrowPackNFT(id: UInt64): &IPackNFT.NFT {

228..229: let c <- create Collection() return <- c

  • You can return the result of the create directly, e.g. return <- create Collection() .

233: adminAccount: AuthAccount,

  • If this is the contract account, it is available as self.account. If it is not, this will require an extra signature which will require more co-ordination to deploy.

PDS.cdc

60: pub fun mintPackNFT(commitHashes: [String], issuer: Address){

  • As you note, this is a tricky one. Usually returning an NFT for the transaction to store works well (see PackNFT.cdc L28 above).

92: pub var DistId: UInt64

  • For a contract-level var, prefer nextDistId or distCount .

186: if !pdsCollection.check(){

  • This block can be an assert().

193: access(contract) fun releaseEscrow(nftIds: [UInt64], owner: Address) {

  • Prefer passing borrowed reference to passing address. Transactions are usually a safer (if more verbose) place to handle borrowing.

208: pub fun createPackIssuer (): @PackIssuer{

  • Should anyone/everyone be able to create PackIssuers or should this be an admin capability within a DistributionCreator or some other constraint? It's fine if not, I just wanted to check. :-)
whalelephant added a commit that referenced this issue Sep 30, 2021
@whalelephant
fixes: #58 fixes
294e6fe
@whalelephant
Copy link
Contributor

whalelephant commented Oct 4, 2021
edited
Loading

Follow up actions to the comments.

PackNFT.cdc

Please see comments

28: pub fun mint(commitHash: String, issuer: Address) {

  • Return the NFT and place it into the collection in the transaction rather than handling fetching the capability here. This makes minting multiple items more efficient.

Please See #74

60: pub var status: String

  • This could be an enum.

64: pub fun getCommitHash(): String {

  • commitHash is pub let, so this function is not needed.

No longer applicable

70: return self._verify(nfts: self.NFTs, salt: self.salt!, commitHash: self.commitHash)

  • Note that ! will panic/crash if salt is not set. You could use if let to check if the salt is set, and if not return false if that would make sense. Or if transactions should fail when the salt isn't set this is fine.

This shoud crash without salt

83: pub fun getSalt(): String? {

  • salt is pub let, so this function is not needed.

No longer applicable

97: let hash = HashAlgorithm.SHA2_256.hash(hashString.utf8)

Please see comment on #57

121: panic("commitHash was not verified")

  • This could be an assert() at line 115.

Please See #74

174: let nonfungibleToken <- token

Please See #74

204: pub fun borrowPackNFT(id: UInt64): &IPackNFT.NFT {

Please See #74

228..229: let c <- create Collection() return <- c

  • You can return the result of the create directly, e.g. return <- create Collection() .

Please See #74

233: adminAccount: AuthAccount,

  • If this is the contract account, it is available as self.account. If it is not, this will require an extra signature which will require more co-ordination to deploy.

Please See #74

PDS.cdc

Please see comments

60: pub fun mintPackNFT(commitHashes: [String], issuer: Address){

  • As you note, this is a tricky one. Usually returning an NFT for the transaction to store works well (see PackNFT.cdc L28 above).

Please See #74

92: pub var DistId: UInt64

  • For a contract-level var, prefer nextDistId or distCount .

Please See #74

186: if !pdsCollection.check(){

  • This block can be an assert().

Please See #74

193: access(contract) fun releaseEscrow(nftIds: [UInt64], owner: Address) {

  • Prefer passing borrowed reference to passing address. Transactions are usually a safer (if more verbose) place to handle borrowing.

Please See #74

208: pub fun createPackIssuer (): @PackIssuer{

  • Should anyone/everyone be able to create PackIssuers or should this be an admin capability within a DistributionCreator or some other constraint? It's fine if not, I just wanted to check. :-)

The PackIssuer should be created by anyone as a capability receiver for DistCap

latenssi added a commit that referenced this issue Oct 4, 2021
@latenssi
Merge pull request #74 from flow-hydraulics/feat/contract-enhancement
e5603d2 
fixes: #58 fixes
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@rheaplex @whalelephant