Add CallProxy_TopUp msg (#116)

* Add CallProxy_TopUp msg

* Add CallProxy top-up static limit

Author: krebernisak

contracts/contracts/mcms/call_proxy.tolk

@@ -1,5 +1,18 @@
 tolk 1.0
 
+// --- Messages - incoming ---
+
+/// @dev Top up contract with TON coins.
+/// Contract might receive/hold TON as part of the maintenance process.
+///
+struct (0x3b3d63b8) CallProxy_TopUp {
+    /// Query ID of the change owner request.
+    queryId: uint64;
+}
+
+/// @dev Union of all incoming messages.
+type CallProxy_InMessage = CallProxy_TopUp
+
 // --- Storage ---
 
 /// CallProxy contract storage, auto-serialized to/from cell.
@@ -17,21 +30,50 @@ fun CallProxy_Data.fromContractData() {
     return CallProxy_Data.fromCell(contract.getData());
 }
 
+// --- Constants ---
+
+const RENT_MAX_TON: int = ton("0.1");
+
+const ERROR_CONTRACT_MAX_FUNDED = 101;
+const ERROR_VALUE_OUT_OF_BOUNDS = 102;
+
 // --- Message handlers ---
 
 /// @notice a contract which acts as a forwarder that forwards the input from
 /// any caller to a target contract.
 fun onInternalMessage(in: InMessage) {
-    /// Load the contract storage as target address and proxy the message
-    val target = CallProxy_Data.fromContractData().target;
-
-    // Proxy a message to the target
-    createMessage({
-        bounce: false,
-        value: 0,
-        dest: target,
-        body: in.body
-    }).send(SEND_MODE_REGULAR | SEND_MODE_CARRY_ALL_REMAINING_MESSAGE_VALUE);
+    val msg = lazy CallProxy_InMessage.fromSlice(in.body);
+    match (msg) {
+        CallProxy_TopUp => {
+            // Top up the contract balance
+            // Notice: we put a simple static limit on max rent this contract can hold
+            //  - funds are only needed for rent
+            //  - funds can't be withdrawn once deposited
+
+            val current = contract.getOriginalBalance() - in.valueCoins;
+            if (current > RENT_MAX_TON) {
+                throw(ERROR_CONTRACT_MAX_FUNDED)
+            }
+
+            if (in.valueCoins > RENT_MAX_TON) {
+                throw(ERROR_VALUE_OUT_OF_BOUNDS)
+            }
+
+            return;
+        }
+        else => {
+             /// Load the contract storage as target address and proxy the message
+            val data = lazy CallProxy_Data.fromCell(contract.getData());
+
+            // Proxy a message to the target
+            createMessage({
+                bounce: false,
+                value: 0,
+                dest: data.target,
+                body: in.body
+            }).send(SEND_MODE_REGULAR | SEND_MODE_CARRY_ALL_REMAINING_MESSAGE_VALUE);
+        }
+    }
 }
 
 // --- Getters ---

contracts/contracts/mcms/mcms.tolk

@@ -464,7 +464,7 @@ struct Op {
     nonce: uint40;
     to: address;
     value: coins;
-    data: cell;  // body of the operation
+    data: cell; // body of the operation
 }
 
 // --- Methods ---
@@ -504,7 +504,7 @@ fun MCMS<T>.setRoot(
     validUntil: uint32,
     metadata: RootMetadata,
     metadataProof: Iterator<uint256>,
-    signatures: cell,     // vec<Signature>
+    signatures: cell // vec<Signature>
 ) {
     /// Construct the message that should be signed by the signers.
     val signedHash = beginCell()

contracts/tests/mcms/CallProxy.spec.ts

@@ -39,7 +39,7 @@ describe('CallProxy', () => {
     const deployResult = await bind.callProxy.sendInternal(
       deployer.getSender(),
       toNano('0.05'),
-      beginCell().endCell(), // Empty body for deployment
+      callProxy.builder.message.in.topUp.encode({ queryId: 1n }), // TopUp message to deploy
     )
 
     expect(deployResult.transactions).toHaveTransaction({
@@ -50,6 +50,11 @@ describe('CallProxy', () => {
     })
   })
 
+  it('Should compute crc32 opcodes', async () => {
+    // In opcodes
+    expect(callProxy.opcodes.in.TopUp).toBe(0x3b3d63b8)
+  })
+
   it('should deploy and set target correctly', async () => {
     // Verify the contract deployed successfully
     expect(bind.callProxy.address).toBeDefined()
@@ -63,6 +68,56 @@ describe('CallProxy', () => {
     expect(id).toBe(MOCK_TARGET_ID)
   })
 
+  it('should limit excess top-up', async () => {
+    const r = await bind.callProxy.sendInternal(
+      deployer.getSender(),
+      toNano('100.05'),
+      callProxy.builder.message.in.topUp.encode({ queryId: 1n }),
+    )
+
+    expect(r.transactions).toHaveTransaction({
+      from: deployer.address,
+      to: bind.callProxy.address,
+      exitCode: callProxy.Errors.ValueOutOfBounds,
+    })
+
+    const r1 = await bind.callProxy.sendInternal(
+      deployer.getSender(),
+      toNano('0.05'),
+      callProxy.builder.message.in.topUp.encode({ queryId: 1n }),
+    )
+
+    expect(r1.transactions).toHaveTransaction({
+      from: deployer.address,
+      to: bind.callProxy.address,
+      success: true,
+    })
+
+    const r2 = await bind.callProxy.sendInternal(
+      deployer.getSender(),
+      toNano('0.08'),
+      callProxy.builder.message.in.topUp.encode({ queryId: 1n }),
+    )
+
+    expect(r2.transactions).toHaveTransaction({
+      from: deployer.address,
+      to: bind.callProxy.address,
+      success: true,
+    })
+
+    const r3 = await bind.callProxy.sendInternal(
+      deployer.getSender(),
+      toNano('0.08'),
+      callProxy.builder.message.in.topUp.encode({ queryId: 1n }),
+    )
+
+    expect(r3.transactions).toHaveTransaction({
+      from: deployer.address,
+      to: bind.callProxy.address,
+      exitCode: callProxy.Errors.ContractMaxFunded,
+    })
+  })
+
   it('should forward messages to target', async () => {
     // Create a test message body
     const testBody = beginCell()

contracts/tests/mcms/Integration.spec.ts

@@ -21,6 +21,9 @@ import { merkleProof } from '../../src/mcms'
 describe('MCMS - IntegrationTest', () => {
   let blockchain: Blockchain
 
+  // TODO: blockchain global chain ID (will need to be signed int)
+  let chainId = -239n
+
   var code: {
     mcms: Cell
     timelock: Cell
@@ -530,15 +533,15 @@ describe('MCMS - IntegrationTest', () => {
       }))
       const validUntil = BigInt(blockchain.now || 0) + 2n * 60n * 60n // block.timestamp + 2 hours
       const metadata = {
-        chainId: -239n, // TODO: blockchain global chain ID (will need to be signed int)
+        chainId,
         multiSig: bind.mcmsPropose.address,
         preOpCount: 0n,
         postOpCount: 1n,
         overridePreviousRoot: false,
       }
       const ops: mcms.Op[] = [
         {
-          chainId: -239n, // TODO: blockchain global chain ID (will need to be signed int)
+          chainId,
           multiSig: bind.mcmsPropose.address,
           nonce: 0n,
           to: bind.timelock.address,
@@ -648,15 +651,15 @@ describe('MCMS - IntegrationTest', () => {
       }))
       const validUntil = BigInt(blockchain.now || 0) + 2n * 60n * 60n // block.timestamp + 2 hours
       const metadata = {
-        chainId: -239n, // TODO: blockchain global chain ID (will need to be signed int)
+        chainId,
         multiSig: bind.mcmsPropose.address,
         preOpCount: 1n,
         postOpCount: 2n,
         overridePreviousRoot: false,
       }
       const ops: mcms.Op[] = [
         {
-          chainId: -239n, // TODO: blockchain global chain ID (will need to be signed int)
+          chainId,
           multiSig: bind.mcmsPropose.address,
           nonce: 1n,
           to: bind.timelock.address,
@@ -779,15 +782,15 @@ describe('MCMS - IntegrationTest', () => {
       }))
       const validUntil = BigInt(blockchain.now || 0) + 2n * 60n * 60n // block.timestamp + 2 hours
       const metadata = {
-        chainId: -239n, // TODO: blockchain global chain ID (will need to be signed int)
+        chainId,
         multiSig: bind.mcmsBypass.address,
         preOpCount: 0n,
         postOpCount: 1n,
         overridePreviousRoot: false,
       }
       const ops: mcms.Op[] = [
         {
-          chainId: -239n, // TODO: blockchain global chain ID (will need to be signed int)
+          chainId,
           multiSig: bind.mcmsBypass.address,
           nonce: 0n,
           to: bind.timelock.address,
@@ -892,15 +895,15 @@ describe('MCMS - IntegrationTest', () => {
       }))
       const validUntil = BigInt(blockchain.now || 0) + 2n * 60n * 60n // block.timestamp + 2 hours
       const metadata = {
-        chainId: -239n, // TODO: blockchain global chain ID (will need to be signed int)
+        chainId,
         multiSig: bind.mcmsPropose.address,
         preOpCount: 2n,
         postOpCount: 3n,
         overridePreviousRoot: false,
       }
       const ops: mcms.Op[] = [
         {
-          chainId: -239n, // TODO: blockchain global chain ID (will need to be signed int)
+          chainId,
           multiSig: bind.mcmsPropose.address,
           nonce: 2n,
           to: bind.timelock.address,
@@ -972,15 +975,15 @@ describe('MCMS - IntegrationTest', () => {
         }))
         const validUntil = BigInt(blockchain.now || 0) + 2n * 60n * 60n // block.timestamp + 2 hours
         const metadata = {
-          chainId: -239n, // TODO: blockchain global chain ID (will need to be signed int)
+          chainId,
           multiSig: bind.mcmsVeto.address,
           preOpCount: 0n,
           postOpCount: 1n,
           overridePreviousRoot: false,
         }
         const ops: mcms.Op[] = [
           {
-            chainId: -239n, // TODO: blockchain global chain ID (will need to be signed int)
+            chainId,
             multiSig: bind.mcmsVeto.address,
             nonce: 0n,
             to: bind.timelock.address,
@@ -1097,15 +1100,15 @@ describe('MCMS - IntegrationTest', () => {
       }))
       const validUntil = BigInt(blockchain.now || 0) + 2n * 60n * 60n // block.timestamp + 2 hours
       const metadata = {
-        chainId: -239n, // TODO: blockchain global chain ID (will need to be signed int)
+        chainId,
         multiSig: bind.mcmsPropose.address,
         preOpCount: 3n,
         postOpCount: 4n,
         overridePreviousRoot: false,
       }
       const ops: mcms.Op[] = [
         {
-          chainId: -239n, // TODO: blockchain global chain ID (will need to be signed int)
+          chainId,
           multiSig: bind.mcmsPropose.address,
           nonce: 3n,
           to: bind.timelock.address,

contracts/wrappers/mcms/CallProxy.ts

@@ -8,8 +8,15 @@ import {
   Sender,
   SendMode,
 } from '@ton/core'
+import { crc32 } from 'zlib'
 import { CellCodec } from '../utils'
 
+// @dev Top up contract with TON coins.
+export type TopUp = {
+  // Query ID of the change owner request.
+  queryId: bigint
+}
+
 // CallProxy contract storage
 export type ContractData = {
   /// ID allows multiple independent instances, since contract address depends on initial state.
@@ -19,7 +26,39 @@ export type ContractData = {
   target: Address
 }
 
+export const opcodes = {
+  in: {
+    TopUp: crc32('CallProxy_TopUp'),
+  },
+  out: {},
+}
+
+export enum Errors {
+  ContractMaxFunded = 101,
+  ValueOutOfBounds = 102,
+}
+
 export const builder = {
+  message: {
+    in: {
+      // Creates a new `CallProxy_TopUp` message.
+      topUp: {
+        encode: (msg: TopUp): Cell => {
+          return beginCell() // break line
+            .storeUint(opcodes.in.TopUp, 32)
+            .storeUint(msg.queryId, 64)
+            .endCell()
+        },
+        decode: (cell: Cell): TopUp => {
+          const s = cell.beginParse()
+          s.skip(32) // skip opcode
+          return {
+            queryId: s.loadUintBig(64),
+          }
+        },
+      },
+    },
+  },
   data: (() => {
     // Creates a new `CallProxy_Data` contract data cell
     const contractData: CellCodec<ContractData> = {