[gms-1363] Add OALUpgradeable to be used behind proxy #163
Conversation
jasonzwli
force-pushed
the
jason/proxy
branch
2 times, most recently
from
89df76c to
6da134f
Compare
[gms-1363] Add OALUpgradeable to be used behind proxy
🚨 Report Summary
For more details view the full report in OpenZeppelin Code Inspector |
jasonzwli
force-pushed
the
jason/proxy
branch
from
6da134f to
8b1403f
Compare
jasonzwli
force-pushed
the
jason/proxy
branch
from
8b1403f to
f1029b6
Compare
|
|
||
| import "@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol"; | ||
| import "@openzeppelin/contracts-upgradeable/access/AccessControlUpgradeable.sol"; | ||
|
|
There was a problem hiding this comment.
fix linter issue by importing {AccessControlUpgradeable} from
| // SPDX-License-Identifier: Apache 2.0 | ||
| pragma solidity 0.8.19; | ||
|
|
||
| import "@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol"; |
There was a problem hiding this comment.
fix linter issue by importing specific contract
| // Interface to retrieve the implemention stored inside the Proxy contract | ||
| interface IProxy { | ||
| // Returns the current implementation address used by the proxy contract | ||
| function PROXY_getImplementation() external view returns (address); |
There was a problem hiding this comment.
Remove linter issue by adding:
// solhint-disable-next-line var-name-mixedcase
contracts/mocks/MockOAL.sol
Outdated
| @@ -0,0 +1,197 @@ | |||
| // Copyright Immutable Pty Ltd 2018 - 2023 | |||
There was a problem hiding this comment.
This contract should be with the test code. That is in /test/allowlist
| /// @notice Mapping of Allowlisted bytecodes | ||
| mapping(bytes32 => bool) private bytecodeAllowlist; | ||
|
|
||
| /// @notice storage gap for additional variables for upgrades |
There was a problem hiding this comment.
Storage gap should be at the end of the file.
Storage gap variable's name should be __OperatorAllowlistUpgradeableGap
Naming the gap variable makes it easier to read storage maps.
|
|
||
| /// ===== Events ===== | ||
|
|
||
| /// @notice Emitted when a target address is added or removed from the Allowlist |
There was a problem hiding this comment.
Events should be before storage variables.
| OperatorAllowlist is an implementation of a Allowlist registry, storing addresses and bytecode | ||
| which are allowed to be approved operators and execute transfers of interfacing token contracts (e.g. ERC721/ERC1155). | ||
| The registry will be a deployed contract that tokens may interface with and point to. | ||
| OperatorAllowlist is not designed to be upgradeable or extended. |
There was a problem hiding this comment.
Can probably remove OperatorAllowlist is not designed to be upgradeable or extended.
| import {IOperatorAllowlist} from "./IOperatorAllowlist.sol"; | ||
|
|
||
| // Interface to retrieve the implemention stored inside the Proxy contract | ||
| interface IProxy { |
There was a problem hiding this comment.
This should be a separate file. Doing this will allow the same interface file to be used by all usages, rather than the code being copy and pasted.
The file name should be IWalletProxy. The description should be:
Interface for Passport Wallet's proxy contract.
| __AccessControl_init(); | ||
| _grantRole(DEFAULT_ADMIN_ROLE, _roleAdmin); | ||
| _grantRole(UPGRADE_ROLE, _upgradeAdmin); | ||
| } |
There was a problem hiding this comment.
We should also initialize the REGISTRAR role here.
| /// ===== External functions ===== | ||
|
|
||
| /** | ||
| * @notice Add a target address to Allowlist |
There was a problem hiding this comment.
Update notice to reflect that a set of addresses is being passed in.
| * @notice Add a target address to Allowlist | ||
| * @param addressTargets the addresses to be added to the allowlist | ||
| */ | ||
| function addAddressToAllowlist(address[] calldata addressTargets) external onlyRole(REGISTRAR_ROLE) { |
There was a problem hiding this comment.
The function name should be addAddressToAllowLists. That is with an s at the end to imply multiple addresses.
There was a problem hiding this comment.
would addAddressesToAllowList be clearer, as an alternative
| } | ||
|
|
||
| /** | ||
| * @notice Remove a target address from Allowlist |
| * @notice Remove a target address from Allowlist | ||
| * @param addressTargets the addresses to be removed from the allowlist | ||
| */ | ||
| function removeAddressFromAllowlist(address[] calldata addressTargets) external onlyRole(REGISTRAR_ROLE) { |
| * @notice Allows admin to grant `user` `REGISTRAR_ROLE` role | ||
| * @param user the address that `REGISTRAR_ROLE` will be granted to | ||
| */ | ||
| function grantRegistrarRole(address user) external onlyRole(DEFAULT_ADMIN_ROLE) { |
There was a problem hiding this comment.
This function is not needed. It is available in the AccessControl Open Zeppelin contract.
| * @notice Allows admin to revoke `REGISTRAR_ROLE` role from `user` | ||
| * @param user the address that `REGISTRAR_ROLE` will be revoked from | ||
| */ | ||
| function revokeRegistrarRole(address user) external onlyRole(DEFAULT_ADMIN_ROLE) { |
There was a problem hiding this comment.
The function is not needed. The same functionality is available in AccessControl
contracts/mocks/MockOAL.sol
Outdated
| @@ -0,0 +1,197 @@ | |||
| // Copyright Immutable Pty Ltd 2018 - 2023 | |||
| // SPDX-License-Identifier: Apache 2.0 | |||
There was a problem hiding this comment.
I think this contract could just extend the OperatorAllowlist contract, just adding the extra storage location and function(s)
| @@ -0,0 +1,67 @@ | |||
| pragma solidity 0.8.19; | |||
There was a problem hiding this comment.
Add copyright and license
| @@ -0,0 +1,25 @@ | |||
| // SPDX-License-Identifier: Apache 2.0 | |||
There was a problem hiding this comment.
If this contract is only needed by allow list tests, put it in test/allowlist
There was a problem hiding this comment.
This is also used by the erc1155 test
| import "@openzeppelin/contracts/proxy/ERC1967/ERC1967Proxy.sol"; | ||
| import {OperatorAllowlistUpgradeable} from "../../contracts/allowlist/OperatorAllowlistUpgradeable.sol"; | ||
|
|
||
| contract DeployOperatorAllowlist { |
There was a problem hiding this comment.
Add a comment to the class so it is obvious what this class is for.
| @@ -0,0 +1,189 @@ | |||
| // Copyright Immutable Pty Ltd 2018 - 2023 | |||
There was a problem hiding this comment.
This contract has a lot in common with OperatorAllowlist. The two contracts should inherit from a common OperatorAllowlistBase that contains the common code and is written to be used by both of them.
There was a problem hiding this comment.
We will delete the regular OperatorAllowlist contract once the repo's dependencies are fixed
| uint256 registerarPrivateKey = 3; | ||
| uint256 feeReceiverKey = 4; | ||
|
|
||
| address admin = vm.addr(adminPrivateKey); |
There was a problem hiding this comment.
Remove and use:
address public roleAdmin = makeAddr("roleAdmin");
| @@ -5,15 +5,16 @@ import "forge-std/Test.sol"; | |||
| import {ImmutableERC1155} from "../../../contracts/token/erc1155/preset/draft-ImmutableERC1155.sol"; | |||
| import {IImmutableERC1155Errors} from "../../../contracts/errors/Errors.sol"; | |||
| import {OperatorAllowlistEnforcementErrors} from "../../../contracts/errors/Errors.sol"; | |||
| import {OperatorAllowlist} from "../../../contracts/allowlist/OperatorAllowlist.sol"; | |||
| import {OperatorAllowlistUpgradeable} from "../../../contracts/allowlist/OperatorAllowlistUpgradeable.sol"; | |||
There was a problem hiding this comment.
This implies that we are no longer testing OperatorAllowlist, and only testing the Upgradeable version. ???
There was a problem hiding this comment.
Yes, the plan is to no longer use and test OperatorAllowlist but it is a huge effort to rewrite all the tests for it in forge since ethers ^6.6.0(which we need to help test proxy deploys) will break a lot of the hardhat tests
There was a problem hiding this comment.
The basic functionalities that are common between OperatorAllowlist and OperatorAllowlistUpgradeable are tested by existing hardhat tests
| assertEq(address(immutableERC721.operatorAllowlist()), proxyAddr); | ||
| } | ||
|
|
||
| function testUpgradeToV2() public { |
There was a problem hiding this comment.
Add a test where the authorisation fails due to the account not being authorised.
jasonzwli
force-pushed
the
jason/proxy
branch
from
e9fe5bb to
d56b407
Compare
| The registry will be a deployed contract that tokens may interface with and point to. | ||
| */ | ||
|
|
||
| contract OperatorAllowlistUpgradeable is ERC165, AccessControlUpgradeable, UUPSUpgradeable, IOperatorAllowlist { |
There was a problem hiding this comment.
We must used AccessControlEnumerableUpgradeable
Being able to enumerate who the admins are is very important.
jasonzwli
force-pushed
the
jason/proxy
branch
2 times, most recently
from
951c8e0 to
948f228
Compare
jasonzwli
force-pushed
the
jason/proxy
branch
from
948f228 to
9bfb700
Compare
Adding OperaterAllowlistUpgradeable. The reasoning for not just overwriting the original OAL code is because the repo is fairly out of date with its packages, i.e overwriting the existing contract requires ethers ^6.6.0, which will break 95% of our hardhat tests. This is time consuming to fix, so I made the decision to write a new contract and test the essential proxy functions in forge. I've also replaced the OAL in the ERC1155 test with the new OALUpgradeable to test its interactions with collections. The regular Allowlist contract will be removed from the repo once we fix the tests that are written in hardhat