[VAULTS] Polish Permissions contract and other minor improvements #935

failingtwice · 2025-01-30T11:42:00Z

This PR includes minor improvements to Permissions, some refactoring and improvements

github-actions · 2025-01-30T11:45:55Z

Hardhat Unit Tests Coverage Summary

Filename                                                       Stmts    Miss  Cover    Missing
-----------------------------------------------------------  -------  ------  -------  ------------------------------------------------------------------------------
contracts/0.4.24/Lido.sol                                        201       6  97.01%   741, 746, 787-789, 946-947
contracts/0.4.24/StETH.sol                                        79       0  100.00%
contracts/0.4.24/StETHPermit.sol                                  15       0  100.00%
contracts/0.4.24/lib/Packed64x4.sol                                5       0  100.00%
contracts/0.4.24/lib/SigningKeys.sol                              36       0  100.00%
contracts/0.4.24/lib/StakeLimitUtils.sol                          37       0  100.00%
contracts/0.4.24/nos/NodeOperatorsRegistry.sol                   512       0  100.00%
contracts/0.4.24/oracle/LegacyOracle.sol                          72       0  100.00%
contracts/0.4.24/utils/Pausable.sol                                9       0  100.00%
contracts/0.4.24/utils/Versioned.sol                               5       0  100.00%
contracts/0.6.12/WstETH.sol                                       17       0  100.00%
contracts/0.8.25/Accounting.sol                                   90       5  94.44%   117-120, 346, 372
contracts/0.8.25/interfaces/IDepositContract.sol                   0       0  100.00%
contracts/0.8.25/interfaces/ILido.sol                              0       0  100.00%
contracts/0.8.25/interfaces/IOracleReportSanityChecker.sol         0       0  100.00%
contracts/0.8.25/interfaces/IPostTokenRebaseReceiver.sol           0       0  100.00%
contracts/0.8.25/interfaces/IStakingRouter.sol                     0       0  100.00%
contracts/0.8.25/interfaces/IWithdrawalQueue.sol                   0       0  100.00%
contracts/0.8.25/utils/AccessControlVoteable.sol                  29       0  100.00%
contracts/0.8.25/utils/PausableUntilWithRoles.sol                  3       0  100.00%
contracts/0.8.25/vaults/Dashboard.sol                             84       0  100.00%
contracts/0.8.25/vaults/Delegation.sol                            39       0  100.00%
contracts/0.8.25/vaults/Permissions.sol                           32       6  81.25%   126-142
contracts/0.8.25/vaults/StakingVault.sol                         101       0  100.00%
contracts/0.8.25/vaults/VaultFactory.sol                          32       0  100.00%
contracts/0.8.25/vaults/VaultHub.sol                             144     102  29.17%   111-124, 180-269, 284-350, 382-431, 443-451, 457-487, 501
contracts/0.8.25/vaults/interfaces/IStakingVault.sol               0       0  100.00%
contracts/0.8.4/WithdrawalsManagerProxy.sol                       61       0  100.00%
contracts/0.8.9/BeaconChainDepositor.sol                          21       2  90.48%   48, 51
contracts/0.8.9/Burner.sol                                        72       0  100.00%
contracts/0.8.9/DepositSecurityModule.sol                        128       0  100.00%
contracts/0.8.9/EIP712StETH.sol                                   16       0  100.00%
contracts/0.8.9/LidoExecutionLayerRewardsVault.sol                16       0  100.00%
contracts/0.8.9/LidoLocator.sol                                   20       0  100.00%
contracts/0.8.9/OracleDaemonConfig.sol                            28       0  100.00%
contracts/0.8.9/StakingRouter.sol                                316       0  100.00%
contracts/0.8.9/WithdrawalQueue.sol                               88       0  100.00%
contracts/0.8.9/WithdrawalQueueBase.sol                          146       0  100.00%
contracts/0.8.9/WithdrawalQueueERC721.sol                         89       0  100.00%
contracts/0.8.9/WithdrawalVault.sol                               21       0  100.00%
contracts/0.8.9/lib/Math.sol                                       4       0  100.00%
contracts/0.8.9/lib/PositiveTokenRebaseLimiter.sol                22      22  0.00%    88-172
contracts/0.8.9/lib/UnstructuredRefStorage.sol                     2       0  100.00%
contracts/0.8.9/oracle/AccountingOracle.sol                      190       2  98.95%   154-155
contracts/0.8.9/oracle/BaseOracle.sol                             89       1  98.88%   397
contracts/0.8.9/oracle/HashConsensus.sol                         263       1  99.62%   1005
contracts/0.8.9/oracle/ValidatorsExitBusOracle.sol                91      91  0.00%    96-461
contracts/0.8.9/proxy/OssifiableProxy.sol                         17       0  100.00%
contracts/0.8.9/sanity_checks/OracleReportSanityChecker.sol      218      56  74.31%   195, 232, 273-324, 413-441, 495-507, 558-561, 569, 578, 586, 697, 702-747, 802
contracts/0.8.9/utils/DummyEmptyContract.sol                       0       0  100.00%
contracts/0.8.9/utils/PausableUntil.sol                           31       0  100.00%
contracts/0.8.9/utils/Versioned.sol                               11       0  100.00%
contracts/0.8.9/utils/access/AccessControl.sol                    23       0  100.00%
contracts/0.8.9/utils/access/AccessControlEnumerable.sol           9       0  100.00%
contracts/common/utils/PausableUntil.sol                          29       1  96.55%   33
contracts/testnets/sepolia/SepoliaDepositAdapter.sol              21      21  0.00%    49-100
TOTAL                                                           3584     316  91.18%

Diff against master

Filename                                                       Stmts    Miss  Cover
-----------------------------------------------------------  -------  ------  --------
contracts/0.4.24/Lido.sol                                        -11      +6  -2.99%
contracts/0.4.24/StETH.sol                                        +7       0  +100.00%
contracts/0.8.25/Accounting.sol                                  +90      +5  +94.44%
contracts/0.8.25/interfaces/IDepositContract.sol                   0       0  +100.00%
contracts/0.8.25/interfaces/ILido.sol                              0       0  +100.00%
contracts/0.8.25/interfaces/IOracleReportSanityChecker.sol         0       0  +100.00%
contracts/0.8.25/interfaces/IPostTokenRebaseReceiver.sol           0       0  +100.00%
contracts/0.8.25/interfaces/IStakingRouter.sol                     0       0  +100.00%
contracts/0.8.25/interfaces/IWithdrawalQueue.sol                   0       0  +100.00%
contracts/0.8.25/utils/AccessControlVoteable.sol                 +29       0  +100.00%
contracts/0.8.25/utils/PausableUntilWithRoles.sol                 +3       0  +100.00%
contracts/0.8.25/vaults/Dashboard.sol                            +84       0  +100.00%
contracts/0.8.25/vaults/Delegation.sol                           +39       0  +100.00%
contracts/0.8.25/vaults/Permissions.sol                          +32      +6  +81.25%
contracts/0.8.25/vaults/StakingVault.sol                        +101       0  +100.00%
contracts/0.8.25/vaults/VaultFactory.sol                         +32       0  +100.00%
contracts/0.8.25/vaults/VaultHub.sol                            +144    +102  +29.17%
contracts/0.8.25/vaults/interfaces/IStakingVault.sol               0       0  +100.00%
contracts/0.8.9/Burner.sol                                        +1       0  +100.00%
contracts/0.8.9/LidoLocator.sol                                   +2       0  +100.00%
contracts/0.8.9/lib/PositiveTokenRebaseLimiter.sol                 0     +22  -100.00%
contracts/0.8.9/sanity_checks/OracleReportSanityChecker.sol      -14     +56  -25.69%
contracts/common/utils/PausableUntil.sol                         +29      +1  +96.55%
TOTAL                                                           +568    +198  -4.91%

Results for commit: fdb7a08

Minimum allowed coverage is 90%

♻️ This comment has been updated with latest results

TheDZhon

👀

TheDZhon · 2025-01-31T09:08:07Z

contracts/0.8.25/utils/AccessControlMutuallyConfirmable.sol

+     * @notice The order of confirmations does not matter
+     *
+     */
+    modifier onlyMutuallyConfirmed(bytes32[] memory _roles) {


let's check for the empty _roles

TheDZhon · 2025-01-31T09:09:04Z

contracts/0.8.25/utils/AccessControlMutuallyConfirmable.sol

+    mapping(bytes32 callId => mapping(bytes32 role => uint256 timestamp)) public confirmations;
+
+    /**
+     * @notice Confirmation lifetime in seconds; after this period, the confirmation expires and no longer counts.
+     */
+    uint256 public confirmLifetime;


should it be non-linear storage though?

TheDZhon · 2025-01-31T09:11:17Z

contracts/0.8.25/utils/AccessControlMutuallyConfirmable.sol

+     * - role: role that confirmed the action
+     * - timestamp: timestamp of the confirmation.
+     */
+    mapping(bytes32 callId => mapping(bytes32 role => uint256 timestamp)) public confirmations;


should we add some getters to make it more accessible?

TheDZhon · 2025-01-31T09:17:33Z

contracts/0.8.25/utils/AccessControlMutuallyConfirmable.sol

+     * the confirmation is considered expired, no longer counts and must be recasted for the confirmation to go through.
+     * @param _newConfirmLifetime The new confirmation lifetime in seconds.
+     */
+    function _setConfirmLifetime(uint256 _newConfirmLifetime) internal {


⚠️ there is a vuln with retroactive increase

can track the last confirmation timestamp and revert this function if new conf precedes it

TheDZhon · 2025-01-31T09:22:13Z

contracts/0.8.25/vaults/Dashboard.sol

@@ -97,18 +89,18 @@ contract Dashboard is Permissions {
    /**
     * @notice Initializes the contract with the default admin role


outdated comment (doesn't mention the second parameter)

TheDZhon · 2025-01-31T09:26:05Z

contracts/0.8.25/vaults/Dashboard.sol

treasuryFee -> treasuryFeeBP and maybe other similar cases

TheDZhon · 2025-01-31T09:27:22Z

contracts/0.8.25/vaults/Dashboard.sol

wrong comment:

/** * @notice Withdraws stETH tokens from the staking vault to wrapped ether. * @param _recipient Address of the recipient * @param _amountOfWETH Amount of WETH to withdraw */ function withdrawWETH(address _recipient, uint256 _amountOfWETH) external { _withdraw(address(this), _amountOfWETH); WETH.deposit{value: _amountOfWETH}(); SafeERC20.safeTransfer(WETH, _recipient, _amountOfWETH); }

have similar issues for other utility functions here and there

TheDZhon · 2025-01-31T09:39:45Z

contracts/0.8.25/vaults/Delegation.sol

plz consider revamping comment sections

TheDZhon · 2025-01-31T09:46:29Z

contracts/0.8.25/vaults/Permissions.sol

+
+    /**
+     * @notice Mass-grants multiple roles to multiple accounts.
+     * @param _assignments An array of role assignments.


maybe note that duplicates wouldn't revert the call rather resulting in fewer events emitted (and cover this behavior with tests)

TheDZhon · 2025-01-31T09:55:14Z

contracts/0.8.25/vaults/VaultFactory.sol

maybe prohibit zero address for NodeOperator

failingtwice added 3 commits January 30, 2025 16:29

fix: remove unsafeWithdraw

23a4fa9

feat: move mass-role management to permissions

19755bb

fix: rename optional fund modifier

fdb7a08

failingtwice added 7 commits January 31, 2025 12:59

feat: hooray! renaming!

0ab9aa7

feat: update role ids

8c43b13

fix(Permissions): update role ids

3403a81

refactor(Permissions): hide assembly in an internal func

18f184b

feat: log default admin in initialized event

9839009

feat: pass confirm lifetime as init param

adeb088

feat: don't use msg.sender in init

34c2e62

TheDZhon reviewed Jan 31, 2025

View reviewed changes

failingtwice added 2 commits February 3, 2025 16:07

fix: modifier order

038e722

test: permissions setup

b16075c

tamtamchik added the vaults label Feb 3, 2025

failingtwice added 4 commits February 3, 2025 18:00

feat: store expiry instead of cast timestamp

3e82d3a

fix: use raw data for mapping key

62a8caa

fix: revert if roles array empty

b9dc9c3

fix: rename access control confirmable

fce5c97

failingtwice force-pushed the permissions-polish branch from a3c4a13 to fce5c97 Compare February 11, 2025 14:08

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[VAULTS] Polish Permissions contract and other minor improvements #935

[VAULTS] Polish Permissions contract and other minor improvements #935

failingtwice commented Jan 30, 2025

github-actions bot commented Jan 30, 2025 •

edited

Loading

TheDZhon left a comment

TheDZhon Jan 31, 2025

TheDZhon Jan 31, 2025

TheDZhon Jan 31, 2025

TheDZhon Jan 31, 2025

TheDZhon Jan 31, 2025

TheDZhon Jan 31, 2025

TheDZhon Jan 31, 2025

TheDZhon Jan 31, 2025

TheDZhon Jan 31, 2025

TheDZhon Jan 31, 2025

		@@ -97,18 +89,18 @@ contract Dashboard is Permissions {
		/**
		* @notice Initializes the contract with the default admin role

[VAULTS] Polish Permissions contract and other minor improvements #935

Are you sure you want to change the base?

[VAULTS] Polish Permissions contract and other minor improvements #935

Conversation

failingtwice commented Jan 30, 2025

github-actions bot commented Jan 30, 2025 • edited Loading

Hardhat Unit Tests Coverage Summary

Diff against master

TheDZhon left a comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

github-actions bot commented Jan 30, 2025 •

edited

Loading