fix: after review fixes

Author: Exef

contracts/SwapHelper/SwapHelper.sol

@@ -1,127 +1,216 @@
 // SPDX-License-Identifier: BSD-3-Clause
-pragma solidity 0.8.25;
+pragma solidity 0.8.28;
 
 import { SafeERC20Upgradeable, IERC20Upgradeable } from "@openzeppelin/contracts-upgradeable/token/ERC20/utils/SafeERC20Upgradeable.sol";
 import { AddressUpgradeable } from "@openzeppelin/contracts-upgradeable/utils/AddressUpgradeable.sol";
 import { EIP712 } from "@openzeppelin/contracts/utils/cryptography/EIP712.sol";
 import { ECDSA } from "@openzeppelin/contracts/utils/cryptography/ECDSA.sol";
+import { Ownable } from "@openzeppelin/contracts/access/Ownable.sol";
+import { ReentrancyGuard } from "@openzeppelin/contracts/security/ReentrancyGuard.sol";
 
 import { IWBNB } from "../Interfaces.sol";
 
-contract SwapHelper is EIP712 {
+/**
+ * @title SwapHelper
+ * @author Venus Protocol
+ * @notice Helper contract for executing multiple token operations atomically
+ * @dev This contract provides utilities for wrapping native tokens, managing approvals,
+ *      and executing arbitrary calls in a single transaction. It supports optional
+ *      signature verification using EIP-712 for backend-authorized operations.
+ *      All functions except multicall are designed to be called internally via multicall.
+ * @custom:security-contact security@venus.io
+ */
+contract SwapHelper is EIP712, Ownable, ReentrancyGuard {
     using SafeERC20Upgradeable for IERC20Upgradeable;
     using AddressUpgradeable for address;
 
-    uint256 internal constant REENTRANCY_LOCK_UNLOCKED = 1;
-    uint256 internal constant REENTRANCY_LOCK_LOCKED = 2;
-    bytes32 internal constant MULTICALL_TYPEHASH = keccak256("Multicall(bytes[] calls,uint256 deadline)");
+    /// @notice EIP-712 typehash for Multicall struct used in signature verification
+    /// @dev keccak256("Multicall(bytes[] calls,uint256 deadline,bytes32 salt)")
+    bytes32 internal constant MULTICALL_TYPEHASH = keccak256("Multicall(bytes[] calls,uint256 deadline,bytes32 salt)");
 
-    /// @notice Wrapped native asset
+    /// @notice Wrapped native asset contract (e.g., WBNB, WETH)
     IWBNB public immutable WRAPPED_NATIVE;
 
-    /// @notice Venus backend signer
-    address public immutable BACKEND_SIGNER;
+    /// @notice Address authorized to sign multicall operations
+    /// @dev Can be updated by contract owner via setBackendSigner
+    address public BACKEND_SIGNER;
 
-    /// @dev Reentrancy lock to prevent reentrancy attacks
-    uint256 private reentrancyLock;
+    /// @notice Mapping to track used salts for replay protection
+    /// @dev Maps salt => bool to prevent reuse of same salt
+    mapping(bytes32 => bool) public usedSalts;
 
-    /// @notice Error thrown when reentrancy is detected
-    error Reentrancy();
-
-    /// @notice Error thrown when deadline is reached
+    /// @notice Error thrown when transaction deadline has passed
+    /// @dev Emitted when block.timestamp > deadline in multicall
     error DeadlineReached();
 
-    /// @notice Error thrown when caller is not the authorized backend signer
+    /// @notice Error thrown when signature verification fails
+    /// @dev Emitted when recovered signer doesn't match BACKEND_SIGNER
     error Unauthorized();
 
-    /// @notice In the locked state, allow contract to call itself, but block all external calls
-    modifier externalLock() {
-        bool isExternal = msg.sender != address(this);
+    /// @notice Error thrown when zero address is provided as parameter
+    /// @dev Used in constructor and setBackendSigner validation
+    error ZeroAddress();
 
-        if (isExternal) {
-            if (reentrancyLock == REENTRANCY_LOCK_LOCKED) revert Reentrancy();
-            reentrancyLock = REENTRANCY_LOCK_LOCKED;
-        }
+    /// @notice Error thrown when salt has already been used
+    /// @dev Prevents replay attacks by ensuring each salt is used only once
+    error SaltAlreadyUsed();
 
-        _;
+    /// @notice Event emitted when backend signer is updated
+    /// @param oldSigner Previous backend signer address
+    /// @param newSigner New backend signer address
+    event BackendSignerUpdated(address indexed oldSigner, address indexed newSigner);
 
-        if (isExternal) reentrancyLock = REENTRANCY_LOCK_UNLOCKED;
-    }
+    /// @notice Event emitted when multicall is successfully executed
+    /// @param caller Address that initiated the multicall
+    /// @param callsCount Number of calls executed in the batch
+    /// @param deadline Deadline timestamp used for the operation
+    /// @param signatureVerified Whether signature verification was performed
+    event MulticallExecuted(address indexed caller, uint256 callsCount, uint256 deadline, bool signatureVerified);
 
     /// @notice Constructor
-    /// @param wrappedNative_ Address of the wrapped native asset
-    /// @param backendSigner_ Address of the backend signer
+    /// @param wrappedNative_ Address of the wrapped native asset contract
+    /// @param backendSigner_ Address authorized to sign multicall operations
+    /// @dev Initializes EIP-712 domain with name "VenusSwap" and version "1"
+    /// @dev Transfers ownership to msg.sender
+    /// @dev Reverts with ZeroAddress if either parameter is address(0)
+    /// @custom:error ZeroAddress if wrappedNative_ is address(0)
+    /// @custom:error ZeroAddress if backendSigner_ is address(0)
     constructor(address wrappedNative_, address backendSigner_) EIP712("VenusSwap", "1") {
+        if (wrappedNative_ == address(0) || backendSigner_ == address(0)) {
+            revert ZeroAddress();
+        }
+
         WRAPPED_NATIVE = IWBNB(wrappedNative_);
         BACKEND_SIGNER = backendSigner_;
+
+        _transferOwnership(msg.sender);
     }
 
     /// @notice Multicall function to execute multiple calls in a single transaction
-    /// @param calls Array of calldata to execute
-    /// @param deadline Deadline for the transaction
-    /// @param signature Backend signature
+    /// @param calls Array of encoded function calls to execute on this contract
+    /// @param deadline Unix timestamp after which the transaction will revert
+    /// @param salt Unique value to ensure this exact multicall can only be executed once
+    /// @param signature Optional EIP-712 signature from backend signer (empty bytes to skip verification)
+    /// @dev All calls are executed atomically - if any call fails, entire transaction reverts
+    /// @dev Calls must be to functions on this contract (address(this))
+    /// @dev Signature verification is only performed if signature.length != 0
+    /// @dev Protected by nonReentrant modifier to prevent reentrancy attacks
+    /// @dev Emits MulticallExecuted event upon successful execution
+    /// @custom:security Only the contract itself can call wrap, sweep, approveMax, and genericCall
+    /// @custom:error DeadlineReached if block.timestamp > deadline
+    /// @custom:error SaltAlreadyUsed if salt has been used before
+    /// @custom:error Unauthorized if signature verification fails
     function multicall(
         bytes[] calldata calls,
         uint256 deadline,
+        bytes32 salt,
         bytes calldata signature
-    ) external payable externalLock {
+    ) external payable nonReentrant {
         if (block.timestamp > deadline) {
             revert DeadlineReached();
         }
 
+        if (usedSalts[salt]) {
+            revert SaltAlreadyUsed();
+        }
+        usedSalts[salt] = true;
+
+        bool signatureVerified = false;
         if (signature.length != 0) {
-            bytes32 digest = _hashMulticall(calls, deadline);
+            bytes32 digest = _hashMulticall(calls, deadline, salt);
             address signer = ECDSA.recover(digest, signature);
             if (signer != BACKEND_SIGNER) {
                 revert Unauthorized();
             }
+            signatureVerified = true;
         }
 
         for (uint256 i = 0; i < calls.length; i++) {
-            address(this).functionCall(calls[i]);
+            (bool success, bytes memory returnData) = address(this).call(calls[i]);
+            if (!success) {
+                assembly {
+                    revert(add(returnData, 0x20), mload(returnData))
+                }
+            }
         }
+
+        emit MulticallExecuted(msg.sender, calls.length, deadline, signatureVerified);
     }
 
     /// @notice Generic call function to execute a call to an arbitrary address
-    /// @param target Address to call
-    /// @param data Calldata to execute
-    function genericCall(address target, bytes calldata data) external externalLock {
+    /// @param target Address of the contract to call
+    /// @param data Encoded function call data
+    /// @dev This function can interact with any external contract
+    /// @dev Should only be called via multicall for safety
+    /// @custom:security Use with extreme caution - can call any contract with any data
+    /// @custom:security Ensure proper validation of target and data in off-chain systems
+    function genericCall(address target, bytes calldata data) external payable {
         target.functionCall(data);
     }
 
-    /// @notice Wraps native asset into an ERC-20 token
-    /// @param amount Amount of native asset to wrap
-    function wrap(uint256 amount) external externalLock {
+    /// @notice Wraps native asset into an ERC-20 wrapped token
+    /// @param amount Amount of native asset to wrap (must match msg.value)
+    /// @dev Calls deposit() on WRAPPED_NATIVE contract with msg.value
+    /// @dev Wrapped tokens remain in this contract until swept
+    /// @dev Should only be called via multicall
+    /// @custom:security Ensure msg.value matches amount parameter
+    function wrap(uint256 amount) external payable {
         WRAPPED_NATIVE.deposit{ value: amount }();
     }
 
-    /// @notice Sweeps an ERC-20 token to a specified address
-    /// @param token ERC-20 token to sweep
-    /// @param to Address to send the token to
-    function sweep(IERC20Upgradeable token, address to) external externalLock {
+    /// @notice Sweeps entire balance of an ERC-20 token to a specified address
+    /// @param token ERC-20 token contract to sweep
+    /// @param to Recipient address for the swept tokens
+    /// @dev Transfers the entire balance of token held by this contract
+    /// @dev Uses SafeERC20 for safe transfer operations
+    /// @dev Should only be called via multicall
+    function sweep(IERC20Upgradeable token, address to) external {
         token.safeTransfer(to, token.balanceOf(address(this)));
     }
 
-    /// @notice Approves the maximum amount of an ERC-20 token to a specified address
-    /// @param token ERC-20 token to approve
-    /// @param spender Address to approve the token to
-    function approveMax(IERC20Upgradeable token, address spender) external externalLock {
-        token.forceApprove(spender, 0);
+    /// @notice Approves maximum amount of an ERC-20 token to a specified spender
+    /// @param token ERC-20 token contract to approve
+    /// @param spender Address to grant approval to
+    /// @dev Sets approval to type(uint256).max for unlimited spending
+    /// @dev Uses forceApprove to handle tokens that require 0 approval first
+    /// @dev Should only be called via multicall
+    /// @custom:security Grants unlimited approval - ensure spender is trusted
+    function approveMax(IERC20Upgradeable token, address spender) external {
         token.forceApprove(spender, type(uint256).max);
     }
 
+    /// @notice Updates the backend signer address
+    /// @param newSigner New backend signer address
+    /// @dev Only callable by contract owner
+    /// @dev Reverts with ZeroAddress if newSigner is address(0)
+    /// @dev Emits BackendSignerUpdated event
+    /// @custom:error ZeroAddress if newSigner is address(0)
+    /// @custom:error Ownable: caller is not the owner (from OpenZeppelin Ownable)
+    function setBackendSigner(address newSigner) external onlyOwner {
+        if (newSigner == address(0)) {
+            revert ZeroAddress();
+        }
+        address oldSigner = BACKEND_SIGNER;
+        BACKEND_SIGNER = newSigner;
+
+        emit BackendSignerUpdated(oldSigner, newSigner);
+    }
+
     /// @notice Produces an EIP-712 digest of the multicall data
-    /// @param calls Array of calldata to execute
-    /// @param deadline Deadline for the transaction
-    /// @return Digest of the multicall data
-    function _hashMulticall(bytes[] calldata calls, uint256 deadline) internal view returns (bytes32) {
+    /// @param calls Array of encoded function calls
+    /// @param deadline Unix timestamp deadline
+    /// @param salt Unique value to ensure replay protection
+    /// @return EIP-712 typed data hash for signature verification
+    /// @dev Hashes each call individually, then encodes with MULTICALL_TYPEHASH, deadline, and salt
+    /// @dev Uses EIP-712 _hashTypedDataV4 for domain-separated hashing
+    function _hashMulticall(bytes[] calldata calls, uint256 deadline, bytes32 salt) internal view returns (bytes32) {
         bytes32[] memory callHashes = new bytes32[](calls.length);
         for (uint256 i = 0; i < calls.length; i++) {
             callHashes[i] = keccak256(calls[i]);
         }
         return
             _hashTypedDataV4(
-                keccak256(abi.encode(MULTICALL_TYPEHASH, keccak256(abi.encodePacked(callHashes)), deadline))
+                keccak256(abi.encode(MULTICALL_TYPEHASH, keccak256(abi.encodePacked(callHashes)), deadline, salt))
             );
     }
 }

contracts/test/Imports-legacy.sol

@@ -0,0 +1,5 @@
+// SPDX-License-Identifier: BSD-3-Clause
+pragma solidity 0.5.16;
+
+import { InterestRateModelHarness } from "@venusprotocol/venus-protocol/contracts/test/InterestRateModelHarness.sol";
+import { FaucetToken } from "@venusprotocol/venus-protocol/contracts/test/FaucetToken.sol";

contracts/test/Imports.sol

@@ -1,11 +1,9 @@
 // SPDX-License-Identifier: BSD-3-Clause
-pragma solidity 0.5.16;
+pragma solidity 0.8.25;
 
 import { ComptrollerMock } from "@venusprotocol/venus-protocol/contracts/test/ComptrollerMock.sol";
 import { VBNB } from "@venusprotocol/venus-protocol/contracts/Tokens/VTokens/VBNB.sol";
 import { Diamond } from "@venusprotocol/venus-protocol/contracts/Comptroller/Diamond/Diamond.sol";
-import { InterestRateModelHarness } from "@venusprotocol/venus-protocol/contracts/test/InterestRateModelHarness.sol";
 import { MockVBNB } from "@venusprotocol/venus-protocol/contracts/test/MockVBNB.sol";
 import { VBep20Harness } from "@venusprotocol/venus-protocol/contracts/test/VBep20Harness.sol";
 import { ComptrollerLens } from "@venusprotocol/venus-protocol/contracts/Lens/ComptrollerLens.sol";
-import { FaucetToken } from "@venusprotocol/venus-protocol/contracts/test/FaucetToken.sol";

hardhat.config.ts

@@ -73,6 +73,23 @@ task("accounts", "Prints the list of accounts", async (taskArgs, hre) => {
 const config: HardhatUserConfig = {
   solidity: {
     compilers: [
+      {
+        version: "0.8.28",
+        settings: {
+          optimizer: {
+            enabled: true,
+            details: {
+              yul: !process.env.CI,
+            },
+          },
+          evmVersion: "cancun",
+          outputSelection: {
+            "*": {
+              "*": ["storageLayout"],
+            },
+          },
+        },
+      },
       {
         version: "0.8.25",
         settings: {

package.json

@@ -82,7 +82,7 @@
     "@venusprotocol/isolated-pools": "^4.3.0",
     "@venusprotocol/oracle": "^2.13.0",
     "@venusprotocol/protocol-reserve": "^3.3.0",
-    "@venusprotocol/venus-protocol": "file:../venus-protocol/venusprotocol-venus-protocol-9.8.0-dev.20.tgz",
+    "@venusprotocol/venus-protocol": "10.0.0",
     "bignumber.js": "9.0.0",
     "chai": "^4.3.6",
     "dotenv": "^10.0.0",