[hebao] 1.2.0 (#1926)

* [hebao] hebao optimization for gas reduction (#1891)

* [hebao] A few behavior changes and important bug fixes (#1913)

Change to use constant values instead of state variables for many configurations
Change min guardian count to 1.
Change lock period from 1 day to 3 days, change guardian addition/removal pending period from 1 day to 3 days. If a wallet owner's address is leaked, the owner now has more time to react.
Fix a bug that we didn't check the number of guardians who signed transactions
Allow guardian-approved transactions even if the wallet is locked.
add addGuardianImmediately , removeGuardianImmediately and removeFromWhitelistImmediately (not tested yet)

* [hebao 1.2] add multiple breaking changes  (#1931)

* [hebao1.2] fix tests (#1985)

* BaseModule has a default bindableMethods impl

* Remove MIN_ACTIVE_GUARDIANS and onlyHaveEnoughGuardians

* Remove MIN_ACTIVE_GUARDIANS and onlyHaveEnoughGuardians

* Remove MIN_ACTIVE_GUARDIANS and onlyHaveEnoughGuardians

* [hebao 1.2] #2 lock permanently and unlock with approval (#1932)

* lock permanently

* lock permanently

* lock permanently

* more

* more

* more

* more

* more

* more

* more

* more

* more

* more

* Allow wallet owner to specify the inheritance waiting period (2 months to 10 years)

Allow wallet owner to specify the inheritance waiting period (2 months to 10 years)

Co-authored-by: wangdong <[email protected]>

* remove two funcitons

* Add guardian tx aware (#1937)

* remove two funcitons

* remove two funcitons

Co-authored-by: wangdong <[email protected]>

* more

* more

* remove addGuardiansWithTheirApproval

* [Hebao1.2]Remove guardian group (#1938)

* remove-guardian-group

* more

* more

* more

* fix calculation

* more

* more

* more

* owner himself cannot be the majority

Co-authored-by: Daniel Wang <[email protected]>

* rename trustedForwarder to metaTxForwarder (#1950)

* Improve security store & remove all pending guardians after recovery (#1940)

* remove-guardian-group

* more

* more

* more

* fix calculation

* more

* more

* more

* owner himself cannot be the majority

* Improve SecurityStore

* Improve SecurityStore

* Improve SecurityStore

* Improve SecurityStore

* cancel on recovery

* Further Improve security store impl (#1948)

* more

Co-authored-by: kongliangzhong <[email protected]>
Co-authored-by: wangdong <[email protected]>

* Shall we require at least one guardian in majority? (#1952)

* [hebao] batch call (#1955)

* change event name (#1958)

* [hebao] add `lockWA` that does not use nonce (#1956)

* [hebao 1.2] do not touch last active without inheritor (#1969)

* adjust function modifier (#1971)

* [hebao1.2] Allow unlimited quota (#1966)

* [hebao 1.2] check caller only when necessary in datastore (#1973)

* [hebao 1.2] allow disabling quota (or unlimited quota)

* more

* more

* more

* more

* more

* more

* [hebao] QuotaStore optimizations (#1970)

* fix one small bug

* fix one small bug

* check caller only when necessary in datastore

* check caller only when necessary in datastore

* Update GuardianStore.sol

* merge

* more

* more

* minor

Co-authored-by: Brecht Devos <[email protected]>

* [hebao 1.2] Start using immutable (#1979)

* [hebao] Start using immutable

* [hebao] More immutable

* [hebao] Immutable stores in modules (#1981)

* [hebao 1.2] remove unused files (#1982)

* [hebao] Start using immutable

* [hebao] More immutable

* [hebao] Immutable stores in modules (#1981)

* remove unused files

Co-authored-by: Brechtpd <[email protected]>

* [hebao1.2] fix tests

* update

* update

* update

* fix merge

* update

* update

* update

* fix testWalletCreation

* update

* update

* update

* update

* all tests fixed

* Update GuardianModule.sol

* update

Co-authored-by: Daniel Wang <[email protected]>
Co-authored-by: wangdong <[email protected]>
Co-authored-by: Brecht Devos <[email protected]>

* set MAX_REIMBURSTMENT_OVERHEAD to 70000

* Update ForwarderModule.sol

* update UpgraderModule.sol

* update build-all-flattened.sh

* [hebao 1.2] minor improvements and cleanups -part 1 (#1992)

* [hebao 1.2] minor improvements and cleanups -part 2 (#1994)

* [hebao 1.2] Minor improvements (#1999)

* [hebao 1.2] Minor improvements

* [hebao] Consistency

* [hebao 1.2] Fix skipQuota (#1996)

* [hebao 1.2] change GUARDIAN_PENDING_PERIOD to 3 days (#2006)

Co-authored-by: Brecht Devos <[email protected]>
Co-authored-by: kongliangzhong <[email protected]>
Co-authored-by: wangdong <[email protected]>

Author: 4 people

packages/hebao_v1/GasUsage.md

@@ -0,0 +1,16 @@
+Gas usage comparison for a simple Ether/LRC transfer (v1.2.0)
+
+| TX Type | Token Transfered | Update Quota? | Reimburst in LRC? | Gas Used |
+| :------ | :--------------: | ------------: | ----------------: | -------: |
+| MetaTx  |       ETH        |             N |                 N |    80118 |
+| MetaTx  |       ETH        |             N |                 Y |   100889 |
+| MetaTx  |       ETH        |             Y |                 N |    90916 |
+| MetaTx  |       ETH        |             Y |                 Y |   120845 |
+| MetaTx  |       LRC        |             N |                 N |    89591 |
+| MetaTx  |       LRC        |             N |                 Y |   113181 |
+| MetaTx  |       LRC        |             Y |                 N |   103949 |
+| MetaTx  |       LRC        |             Y |                 Y |   137625 |
+| Plain   |       ETH        |             N |                 N |    53336 |
+| Plain   |       ETH        |             Y |                 N |    64218 |
+| Plain   |       LRC        |             N |                 N |    62820 |
+| Plain   |       LRC        |             Y |                 N |    77166 |

packages/hebao_v1/audit_report_solidified_response.md

@@ -67,19 +67,17 @@ Addressed in PR https://github.com/Loopring/protocols/pull/1185 and https://gith
 
 Addressed in PR https://github.com/Loopring/protocols/pull/1189 and https://github.com/Loopring/protocols/pull/1184
 
-
 ### 18. The initialization method initManager() could be front-run, unless it is called within the same transaction as the creation of the contract.
 
 Addressed by PR https://github.com/Loopring/protocols/pull/1194
 
-
 ### 19. AddressSet.sol
 
-Addressed by PR  https://github.com/Loopring/protocols/pull/1195
+Addressed by PR https://github.com/Loopring/protocols/pull/1195
 
 ### 20. Possible misleading comment in Module.sol
 
-Addressed by PR  https://github.com/Loopring/protocols/pull/1195
+Addressed by PR https://github.com/Loopring/protocols/pull/1195
 
 ### 21. Consider removing the option to make delegateCalls from wallet and vault
 
@@ -89,7 +87,6 @@ This method is not used and is internal only. We'll keep it there just in case t
 
 We implemented the `receive` function after sending the code for review: https://github.com/Loopring/protocols/blob/fc0a9bfdf82f07ccc60535b1a85493a29b897a6c/packages/hebao_v1/contracts/base/BaseWallet.sol#L226
 
-
 ## Additional Changes:
 
 - https://github.com/Loopring/protocols/pull/1201

packages/hebao_v1/contracts/aux/FeeCollector.sol

@@ -0,0 +1,24 @@
+// SPDX-License-Identifier: Apache-2.0
+// Copyright 2017 Loopring Technology Limited.
+pragma solidity ^0.7.0;
+
+import "../lib/Drainable.sol";
+import "../lib/OwnerManagable.sol";
+
+
+/// @title FeeCollector
+/// @author Daniel Wang - <[email protected]>
+contract FeeCollector is Drainable, OwnerManagable
+{
+    function canDrain(address drainer, address /*token*/)
+        public
+        override
+        view
+        returns (bool)
+    {
+        return isManager(drainer) || drainer == owner;
+    }
+
+    // Allow receiving ETH
+    receive() payable external {}
+}

packages/hebao_v1/contracts/base/BaseWallet.sol

@@ -13,9 +13,6 @@ import "./Controller.sol";
 /// @dev This contract provides basic implementation for a Wallet.
 ///
 /// @author Daniel Wang - <[email protected]>
-///
-/// The design of this contract is inspired by Argent's contract codebase:
-/// https://github.com/argentlabs/argent-contracts
 abstract contract BaseWallet is ReentrancyGuard, Wallet
 {
     // WARNING: do not delete wallet state data to make this implementation
@@ -38,13 +35,6 @@ abstract contract BaseWallet is ReentrancyGuard, Wallet
     event MethodBound           (bytes4  method, address module);
     event WalletSetup           (address owner);
 
-    event Transacted(
-        address module,
-        address to,
-        uint    value,
-        bytes   data
-    );
-
     modifier onlyFromModule
     {
         require(modules[msg.sender], "MODULE_UNAUTHORIZED");
@@ -81,7 +71,6 @@ abstract contract BaseWallet is ReentrancyGuard, Wallet
         )
         external
         onlyFromFactory
-        nonReentrant
     {
         require(controller != Controller(0), "NO_CONTROLLER");
         require(_owner == address(0), "INITIALIZED_ALREADY");
@@ -91,17 +80,18 @@ abstract contract BaseWallet is ReentrancyGuard, Wallet
         emit WalletSetup(_initialOwner);
     }
 
-    /// @dev Set up this wallet by assigning an controller.
+    /// @dev Set up this wallet by assigning a controller and initial modules.
     ///
     ///      Note that calling this method more than once will throw.
     ///      And this method must be invoked before owner is initialized
     ///
     /// @param _controller The Controller instance.
-    function initController(
-        Controller _controller
+    /// @param _modules The initial modules.
+    function init(
+        Controller _controller,
+        address[]  calldata _modules
         )
         external
-        nonReentrant
     {
         require(
             _owner == address(0) &&
@@ -111,11 +101,16 @@ abstract contract BaseWallet is ReentrancyGuard, Wallet
         );
 
         controller = _controller;
+
+        ModuleRegistry moduleRegistry = controller.moduleRegistry();
+        for (uint i = 0; i < _modules.length; i++) {
+            _addModule(_modules[i], moduleRegistry);
+        }
     }
 
     function owner()
         override
-        external
+        public
         view
         returns (address)
     {
@@ -125,7 +120,6 @@ abstract contract BaseWallet is ReentrancyGuard, Wallet
     function setOwner(address newOwner)
         external
         override
-        nonReentrant
         onlyFromModule
     {
         require(newOwner != address(0), "ZERO_ADDRESS");
@@ -137,7 +131,6 @@ abstract contract BaseWallet is ReentrancyGuard, Wallet
 
     function setController(Controller newController)
         external
-        nonReentrant
         onlyFromModule
     {
         require(newController != controller, "SAME_CONTROLLER");
@@ -151,7 +144,7 @@ abstract contract BaseWallet is ReentrancyGuard, Wallet
         override
         onlyFromFactoryOrModule
     {
-        addModuleInternal(_module);
+        _addModule(_module, controller.moduleRegistry());
     }
 
     function removeModule(address _module)
@@ -167,7 +160,7 @@ abstract contract BaseWallet is ReentrancyGuard, Wallet
     }
 
     function hasModule(address _module)
-        external
+        public
         view
         override
         returns (bool)
@@ -190,7 +183,7 @@ abstract contract BaseWallet is ReentrancyGuard, Wallet
     }
 
     function boundMethodModule(bytes4 _method)
-        external
+        public
         view
         override
         returns (address)
@@ -209,35 +202,15 @@ abstract contract BaseWallet is ReentrancyGuard, Wallet
         onlyFromFactoryOrModule
         returns (bytes memory returnData)
     {
-        require(
-            !controller.moduleRegistry().isModuleRegistered(to),
-            "TRANSACT_ON_MODULE_DISALLOWED"
-        );
-
         bool success;
-        (success, returnData) = nonReentrantCall(mode, to, value, data);
+        (success, returnData) = _call(mode, to, value, data);
 
         if (!success) {
             assembly {
                 returndatacopy(0, 0, returndatasize())
                 revert(0, returndatasize())
             }
         }
-        emit Transacted(msg.sender, to, value, data);
-    }
-
-    function addModuleInternal(address _module)
-        internal
-    {
-        require(_module != address(0), "NULL_MODULE");
-        require(modules[_module] == false, "MODULE_EXISTS");
-        require(
-            controller.moduleRegistry().isModuleEnabled(_module),
-            "INVALID_MODULE"
-        );
-        modules[_module] = true;
-        emit ModuleAdded(_module);
-        Module(_module).activate();
     }
 
     receive()
@@ -263,16 +236,27 @@ abstract contract BaseWallet is ReentrancyGuard, Wallet
         }
     }
 
-    // This call is introduced to support reentrany check.
-    // The caller shall NOT have the nonReentrant modifier.
-    function nonReentrantCall(
+    function _addModule(address _module, ModuleRegistry moduleRegistry)
+        internal
+    {
+        require(_module != address(0), "NULL_MODULE");
+        require(modules[_module] == false, "MODULE_EXISTS");
+        require(
+            moduleRegistry.isModuleEnabled(_module),
+            "INVALID_MODULE"
+        );
+        modules[_module] = true;
+        emit ModuleAdded(_module);
+        Module(_module).activate();
+    }
+
+    function _call(
         uint8          mode,
         address        target,
         uint           value,
         bytes calldata data
         )
         private
-        nonReentrant
         returns (
             bool success,
             bytes memory returnData

packages/hebao_v1/contracts/base/Controller.sol

@@ -3,15 +3,22 @@
 pragma solidity ^0.7.0;
 
 import "../iface/ModuleRegistry.sol";
-import "../iface/WalletRegistry.sol";
 
 
 /// @title Controller
 ///
 /// @author Daniel Wang - <[email protected]>
 abstract contract Controller
 {
-    ModuleRegistry public moduleRegistry;
-    WalletRegistry public walletRegistry;
-    address        public walletFactory;
+    function moduleRegistry()
+        external
+        view
+        virtual
+        returns (ModuleRegistry);
+
+    function walletFactory()
+        external
+        view
+        virtual
+        returns (address);
 }

packages/hebao_v1/contracts/base/DataStore.sol

@@ -10,14 +10,16 @@ import "../iface/Wallet.sol";
 ///      Using ModuleStorage will achieve better module decoupling.
 ///
 /// @author Daniel Wang - <[email protected]>
-///
-/// The design of this contract is inspired by Argent's contract codebase:
-/// https://github.com/argentlabs/argent-contracts
 abstract contract DataStore
 {
     modifier onlyWalletModule(address wallet)
     {
-        require(Wallet(wallet).hasModule(msg.sender), "UNAUTHORIZED");
+        requireWalletModule(wallet);
         _;
     }
+
+    function requireWalletModule(address wallet) view internal
+    {
+        require(Wallet(wallet).hasModule(msg.sender), "UNAUTHORIZED");
+    }
 }

packages/hebao_v1/contracts/base/WalletRegistryImpl.sol

@@ -10,9 +10,6 @@ import "./Wallet.sol";
 /// @dev Base contract for all smart wallet modules.
 ///
 /// @author Daniel Wang - <[email protected]>
-///
-/// The design of this contract is inspired by Argent's contract codebase:
-/// https://github.com/argentlabs/argent-contracts
 interface Module
 {
     /// @dev Activates the module for the given wallet (msg.sender) after the module is added.