Merge pull request #3 from EthGlobalBangkok/refacto/contract-verifications

refacto: remove a verification from the order

Author: Intermarch3

.env.sample

@@ -1,4 +1,4 @@
-POLYSWAP_HANDLER=0x0D92aFDB0D334c221A946927877b12157Bed2F5d # with polymarket mock
+POLYSWAP_HANDLER=0x868c662d186689f773fAb37ea617E7cbeB293D86
 COMPOSABLE_COW=0xfdaFc9d1902f4e0b84f65F49f244b32b31013b74
 POLYMARKET_MOCK=0x62e36fBc7D6518A3DeEA0f863f50c8AC4c4a7695 # Polymarket mock contract
 POLYMARKET=0x4bFb41d5B3570DeFd03C39a9A4D8dE6Bd8B8982E

README.md

@@ -21,6 +21,7 @@ The `Polyswap` contract uses the Polymarket `CTFExchange` contract to check, via
 * the remaining amount is `0`.
 
 If both conditions are met, the swap is executed using the Composable CoW Swap protocol.
+Both conditions being met means that the limit order has been filled and that the price of the limit order has been achieved.
 
 ## 🧪 Stack
 
@@ -32,8 +33,8 @@ If both conditions are met, the swap is executed using the Composable CoW Swap p
 
 All contracts are deployed on **Polygon** for compatibility with Polymarket's on-chain infrastructure.
 
-Contract Address: `0xC75f4070B794cE1EC7273767a7d67354F845c7ce`
-View on [Sourcify](https://repo.sourcify.dev/137/0xC75f4070B794cE1EC7273767a7d67354F845c7ce)
+Contract Address: `0xE930639F0EbE2A7309f214e48e9F5ae3C5306Ff7`
+View on [Sourcify](https://repo.sourcify.dev/137/0xE930639F0EbE2A7309f214e48e9F5ae3C5306Ff7)
 
 ## 🧑‍💻 Authors
 

script/SubmitSingleOrder.s.sol

@@ -4,6 +4,7 @@ pragma solidity >=0.8.0 <0.9.0;
 import {Script} from "forge-std/Script.sol";
 import {console} from "forge-std/console.sol";
 
+import {GPv2Order} from "cowprotocol/contracts/libraries/GPv2Order.sol";
 import {IERC20} from "cowprotocol/contracts/interfaces/IERC20.sol";
 
 // Safe contracts
@@ -51,7 +52,7 @@ contract SubmitSingleOrder is Script {
             staticInput: abi.encode(polyswapOrder)
         });
 
-        console.logBytes32(composableCow.hash(params));
+        console.logBytes32(GPv2Order.hash(PolyswapOrder.orderFor(polyswapOrder), composableCow.domainSeparator()));
 
         vm.startBroadcast(deployerPrivateKey);
 

src/Polyswap.sol

@@ -50,7 +50,7 @@ contract Polyswap is BaseConditionalOrder {
          */
         PolyswapOrder.Data memory polyswapOrder = abi.decode(staticInput, (PolyswapOrder.Data));
 
-        order = PolyswapOrder.orderFor(polyswapOrder, polymarket);
+        order = PolyswapOrder.orderFor(polyswapOrder);
 
         // check if the polymarket order is fulfilled
         OrderStatus memory status = polymarket.getOrderStatus(polyswapOrder.polymarketOrderHash);
@@ -61,4 +61,13 @@ contract Polyswap is BaseConditionalOrder {
             revert IConditionalOrder.PollTryNextBlock(CONDITION_NOT_MET);
         }
     }
+
+    /**
+     * @dev Get the hash of the Polyswap order.
+     * @param polyswapOrder The Polyswap order to get the hash of.
+     * @return The hash of the Polyswap order.
+     */
+    function getOrderHash(PolyswapOrder.Data memory polyswapOrder) public view returns (bytes32) {
+        return GPv2Order.hash(PolyswapOrder.orderFor(polyswapOrder), composableCow.domainSeparator());
+    }
 }

src/PolyswapOrder.sol

@@ -18,6 +18,7 @@ string constant INVALID_MIN_BUY_AMOUNT = "invalid min buy amount";
 string constant INVALID_POLYMARKET_ORDER_HASH = "invalid order hash";
 string constant INVALID_START_DATE = "invalid start date";
 string constant INVALID_END_DATE = "invalid end date";
+string constant INVALID_RECEIVER = "invalid receiver";
 
 /**
  * @title Polyswap Order Library
@@ -46,32 +47,29 @@ library PolyswapOrder {
      * @dev revert if the order is invalid
      * @param self The PolyswapOrder order to validate
      */
-    function validate(Data memory self, Trading polymarket) internal view {
+    function validate(Data memory self) internal view {
         if (self.sellToken == self.buyToken) revert IConditionalOrder.OrderNotValid(INVALID_SAME_TOKEN);
         if (address(self.sellToken) == address(0) || address(self.buyToken) == address(0)) {
             revert IConditionalOrder.OrderNotValid(INVALID_TOKEN);
         }
+        if (self.receiver == address(0)) revert IConditionalOrder.OrderNotValid(INVALID_RECEIVER);
         if (self.t0 > block.timestamp) revert IConditionalOrder.OrderNotValid(INVALID_START_DATE);
         if (self.t <= self.t0 || self.t < block.timestamp) revert IConditionalOrder.OrderNotValid(INVALID_END_DATE);
         if (self.sellAmount < 0) revert IConditionalOrder.OrderNotValid(INVALID_SELL_AMOUNT);
         if (self.minBuyAmount < 0) revert IConditionalOrder.OrderNotValid(INVALID_MIN_BUY_AMOUNT);
 
         // Check if the Polymarket order is valid and not filled or cancelled.
         if (self.polymarketOrderHash == 0) revert IConditionalOrder.OrderNotValid(INVALID_POLYMARKET_ORDER_HASH);
-        OrderStatus memory order = polymarket.getOrderStatus(self.polymarketOrderHash);
-        if (order.remaining == 0 && order.isFilledOrCancelled == false) {
-            revert IConditionalOrder.OrderNotValid(INVALID_POLYMARKET_ORDER_HASH);
-        }
     }
 
     /**
      * @dev Generate the `GPv2Order` of the Polyswap order.
      * @param self The Polyswap order to generate the order for.
      * @return order The `GPv2Order` of the Polyswap order.
      */
-    function orderFor(Data memory self, Trading polymarket) internal view returns (GPv2Order.Data memory order) {
+    function orderFor(Data memory self) internal view returns (GPv2Order.Data memory order) {
         // First, validate and revert if the order is invalid.
-        validate(self, polymarket);
+        validate(self);
 
         order = GPv2Order.Data({
             sellToken: self.sellToken,

test/Notes.md

@@ -24,5 +24,5 @@
 #### create a polyswap order
 `forge script ./script/SubmitSingleOrder.s.sol:SubmitSingleOrder --rpc-url https://polygon-rpc.com --broadcast --private-key $PRIVATE_KEY`
 
-### set the order status to filled in the mock contract
+### set the order status to filled in the mock contract (simulate polymarket limit order filled)
 `cast send $POLYMARKET_MOCK "setOrderStatus(bytes32,bool,uint256)" $POLYMARKET_ORDER_HASH true 0 --private-key $PRIVATE_KEY --rpc-url https://polygon-rpc.com`

test/PolyswapTest.t.sol

@@ -15,7 +15,7 @@ import {Enum} from "safe/common/Enum.sol";
 // Composable CoW
 import {IConditionalOrder, ComposableCoW} from "composable-cow/src/ComposableCoW.sol";
 import {IValueFactory} from "composable-cow/src/interfaces/IValueFactory.sol";
-import {ExtensibleFallbackHandler} from "safe/handler/ExtensibleFallbackHandler.sol";
+import {ExtensibleFallbackHandler, ERC1271} from "safe/handler/ExtensibleFallbackHandler.sol";
 import {SignatureVerifierMuxer} from "safe/handler/extensible/SignatureVerifierMuxer.sol";
 import {ISafeSignatureVerifier} from "safe/handler/extensible/SignatureVerifierMuxer.sol";
 
@@ -50,8 +50,8 @@ contract PolyswapTest is Test {
     address public constant POLYGON_TIMESTAMP_VALUE_FACTORY = 0x52eD56Da04309Aca4c3FECC595298d80C2f16BAc; // TimestampValueFactory on Polygon
 
     // BLINDSPOT: Need real Polymarket contract address on Polygon
-    // Polymarket CTF Exchange contract address - needs to be updated with real address
-    address public constant POLYGON_POLYMARKET_EXCHANGE = address(0); // UPDATE REQUIRED
+    // Polymarket CTF Exchange contract address
+    address public constant POLYGON_POLYMARKET_EXCHANGE = address(0x4bFb41d5B3570DeFd03C39a9A4D8dE6Bd8B8982E);
 
     // Test tokens on Polygon
     address public constant USDC_POLYGON = 0x2791Bca1f2de4661ED88A30C99A7a9449Aa84174;
@@ -145,10 +145,10 @@ contract PolyswapTest is Test {
         PolyswapOrder.Data memory order = _createTestOrder();
 
         // Should not revert on validation
-        PolyswapOrder.validate(order, Trading(address(mockPolymarket)));
+        PolyswapOrder.validate(order);
 
         // Should generate valid GPv2Order
-        GPv2Order.Data memory gpv2Order = PolyswapOrder.orderFor(order, Trading(address(mockPolymarket)));
+        GPv2Order.Data memory gpv2Order = PolyswapOrder.orderFor(order);
 
         assertEq(address(gpv2Order.sellToken), address(order.sellToken));
         assertEq(address(gpv2Order.buyToken), address(order.buyToken));
@@ -206,28 +206,28 @@ contract PolyswapTest is Test {
         invalidOrder.buyToken = invalidOrder.sellToken;
 
         vm.expectRevert(abi.encodeWithSelector(IConditionalOrder.OrderNotValid.selector, "same token"));
-        PolyswapOrder.validate(invalidOrder, Trading(address(mockPolymarket)));
+        PolyswapOrder.validate(invalidOrder);
 
         // Test zero sell amount
         invalidOrder = _createTestOrder();
         invalidOrder.sellAmount = 0;
 
         vm.expectRevert(abi.encodeWithSelector(IConditionalOrder.OrderNotValid.selector, "invalid sell amount"));
-        PolyswapOrder.validate(invalidOrder, Trading(address(mockPolymarket)));
+        PolyswapOrder.validate(invalidOrder);
 
         // Test zero buy amount
         invalidOrder = _createTestOrder();
         invalidOrder.minBuyAmount = 0;
 
         vm.expectRevert(abi.encodeWithSelector(IConditionalOrder.OrderNotValid.selector, "invalid min buy amount"));
-        PolyswapOrder.validate(invalidOrder, Trading(address(mockPolymarket)));
+        PolyswapOrder.validate(invalidOrder);
 
         // Test invalid time range
         invalidOrder = _createTestOrder();
         invalidOrder.t = invalidOrder.t0 - 1;
 
         vm.expectRevert(abi.encodeWithSelector(IConditionalOrder.OrderNotValid.selector, "invalid end date"));
-        PolyswapOrder.validate(invalidOrder, Trading(address(mockPolymarket)));
+        PolyswapOrder.validate(invalidOrder);
     }
 
     // ===== INTEGRATION TESTS WITH REAL CONTRACTS =====
@@ -325,7 +325,7 @@ contract PolyswapTest is Test {
         order.t = uint256(block.timestamp - 1); // Expired
 
         vm.expectRevert(abi.encodeWithSelector(IConditionalOrder.OrderNotValid.selector, INVALID_END_DATE));
-        PolyswapOrder.validate(order, Trading(address(mockPolymarket)));
+        PolyswapOrder.validate(order);
     }
 
     /**
@@ -337,7 +337,7 @@ contract PolyswapTest is Test {
         order.polymarketOrderHash = bytes32(0);
 
         vm.expectRevert(abi.encodeWithSelector(IConditionalOrder.OrderNotValid.selector, INVALID_POLYMARKET_ORDER_HASH));
-        PolyswapOrder.validate(order, Trading(address(mockPolymarket)));
+        PolyswapOrder.validate(order);
     }
 
     // TODO more negative tests
@@ -352,13 +352,13 @@ contract PolyswapTest is Test {
 
         // Measure validation gas
         uint256 gasStart = gasleft();
-        PolyswapOrder.validate(order, Trading(address(mockPolymarket)));
+        PolyswapOrder.validate(order);
         uint256 validationGas = gasStart - gasleft();
         console.log("Validation gas:", validationGas);
 
         // Measure order generation gas
         gasStart = gasleft();
-        PolyswapOrder.orderFor(order, Trading(address(mockPolymarket)));
+        PolyswapOrder.orderFor(order);
         uint256 orderGenGas = gasStart - gasleft();
         console.log("Order generation gas:", orderGenGas);
 
@@ -367,6 +367,59 @@ contract PolyswapTest is Test {
         assertTrue(orderGenGas < 30000, "Order generation gas too high");
     }
 
+    /**
+     * @dev Test isValidSafeSignature function from ComposableCoW in real context
+     */
+    function test_integration_isValidSafeSignature() public {
+        // Setup: Polymarket order fulfilled so condition is met
+        mockPolymarket.setOrderStatus(TEST_ORDER_HASH, true, 0);
+
+        PolyswapOrder.Data memory order = _createTestOrder();
+
+        // Create conditional order params
+        IConditionalOrder.ConditionalOrderParams memory params = IConditionalOrder.ConditionalOrderParams({
+            handler: IConditionalOrder(address(polyswap)),
+            salt: keccak256(abi.encodePacked("signature-test", block.timestamp)),
+            staticInput: abi.encode(order)
+        });
+
+        // Create the conditional order first
+        vm.prank(owner);
+        testSafe.executeSingleOwner(
+            address(composableCow), 0, abi.encodeCall(composableCow.create, (params, false)), Enum.Operation.Call, owner
+        );
+
+        // Get the tradeable order that would be generated
+        GPv2Order.Data memory gpv2Order =
+            polyswap.getTradeableOrder(address(testSafe), address(this), bytes32(0), abi.encode(order), bytes(""));
+
+        // Create the payload for isValidSafeSignature
+        ComposableCoW.PayloadStruct memory payload = ComposableCoW.PayloadStruct({
+            proof: new bytes32[](0), // Empty proof for single order
+            params: params,
+            offchainInput: bytes("")
+        });
+
+        // Hash the order for signature validation
+        bytes32 orderHash = GPv2Order.hash(gpv2Order, composableCow.domainSeparator());
+
+        bytes32 domainSeparator = composableCow.domainSeparator();
+
+        // Call isValidSafeSignature - this should succeed
+        bytes4 result = composableCow.isValidSafeSignature(
+            testSafe,
+            address(this),
+            orderHash,
+            domainSeparator,
+            GPv2Order.TYPE_HASH,
+            abi.encode(gpv2Order),
+            abi.encode(payload)
+        );
+
+        // Should return the ERC1271 magic value
+        assertEq(result, ERC1271.isValidSignature.selector);
+    }
+
     // /**
     //  * @dev Test with maximum uint256 values to check for overflows
     //  */
@@ -409,7 +462,7 @@ contract PolyswapTest is Test {
         PolyswapOrder.Data memory order = PolyswapOrder.Data({
             sellToken: IERC20(USDC_POLYGON),
             buyToken: IERC20(USDT_POLYGON),
-            receiver: address(0),
+            receiver: address(1),
             sellAmount: sellAmount,
             minBuyAmount: minBuyAmount,
             t0: block.timestamp,
@@ -419,8 +472,8 @@ contract PolyswapTest is Test {
         });
 
         // Should not revert with valid parameters
-        PolyswapOrder.validate(order, Trading(address(mockPolymarket)));
-        GPv2Order.Data memory gpv2Order = PolyswapOrder.orderFor(order, Trading(address(mockPolymarket)));
+        PolyswapOrder.validate(order);
+        GPv2Order.Data memory gpv2Order = PolyswapOrder.orderFor(order);
 
         assertEq(gpv2Order.sellAmount, sellAmount);
         assertEq(gpv2Order.buyAmount, minBuyAmount);
@@ -469,19 +522,19 @@ contract PolyswapTest is Test {
             safeOwner
         );
 
-        // // Set domain verifier for CoW Protocol through the fallback handler
-        // bytes32 domainSeparator = composableCow.domainSeparator();
-        // safe.executeSingleOwner(
-        //     address(safe),
-        //     0,
-        //     abi.encodeWithSelector(
-        //         SignatureVerifierMuxer.setDomainVerifier.selector,
-        //         domainSeparator,
-        //         ISafeSignatureVerifier(composableCow)
-        //     ),
-        //     Enum.Operation.Call,
-        //     safeOwner
-        // );
+        // Set domain verifier for CoW Protocol through the fallback handler
+        bytes32 domainSeparator = composableCow.domainSeparator();
+        safe.executeSingleOwner(
+            address(safe),
+            0,
+            abi.encodeWithSelector(
+                SignatureVerifierMuxer.setDomainVerifier.selector,
+                domainSeparator,
+                ISafeSignatureVerifier(composableCow)
+            ),
+            Enum.Operation.Call,
+            safeOwner
+        );
 
         vm.stopPrank();
     }
@@ -507,7 +560,7 @@ contract PolyswapTest is Test {
         return PolyswapOrder.Data({
             sellToken: IERC20(USDC_POLYGON),
             buyToken: IERC20(USDT_POLYGON),
-            receiver: address(0),
+            receiver: address(1),
             sellAmount: 100000, // 0.1 USDC (6 decimals)
             minBuyAmount: 80000, // 0.08 USDT (6 decimals)
             t0: block.timestamp,