WstEth L2 Token (#11)

* forge install: openzeppelin-contracts-upgradeable

v5.0.2

* Fix WstEthL2Token

* initial token tests

* forge install: openzeppelin-foundry-upgrades

v0.3.1

* Add token tests

* Isolate token logic changes

* Fixed tests

* Run formatter

* Respond to review comments: - remove unnecessary modifiers, use INttToken interface, clean up tests

* Updates: fix minter test, add comment about UUPSUpgradeable initializer

* Undo MockGateway comment out

* Remove INTTToken file and wstETHL2Token old file

* Fix Axelar transceiver tests

* Run formatter

Author: nik-suri

.gitmodules

@@ -16,3 +16,12 @@
 [submodule "lib/wormhole-solidity-sdk"]
 	path = lib/wormhole-solidity-sdk
 	url = https://github.com/wormhole-foundation/wormhole-solidity-sdk
+[submodule "lib/axelar-cgp-solidity"]
+	path = lib/axelar-cgp-solidity
+	url = https://github.com/axelarnetwork/axelar-cgp-solidity
+[submodule "lib/openzeppelin-contracts-upgradeable"]
+	path = lib/openzeppelin-contracts-upgradeable
+	url = https://github.com/OpenZeppelin/openzeppelin-contracts-upgradeable
+[submodule "lib/openzeppelin-foundry-upgrades"]
+	path = lib/openzeppelin-foundry-upgrades
+	url = https://github.com/OpenZeppelin/openzeppelin-foundry-upgrades

foundry.toml

@@ -1,21 +1,31 @@
 [profile.default]
-solc_version = "0.8.23"
-optimizer = true
-optimizer_runs = 200
-via_ir = false
-evm_version = "london"
-src = "src"
-out = "out"
-libs = ["lib"]
-fs_permissions = [{ access = "read", path = "./test/payloads"}]
+  build_info = true
+  evm_version = "paris"
+  extra_output = ["storageLayout"]
+  ffi = true
+  libs = ["lib"]
+  optimizer = true
+  optimizer_runs = 200
+  out = "out"
+  solc_version = "0.8.23"
+  src = "src"
+  via_ir = false
 
-[profile.prod]
-via_ir = true
-fs_permissions = [{access = "read", path = "./cfg/"}]
+[profile.ci]
+  fuzz = { runs = 256 }
+  invariant = { runs = 1000 }
+  via_ir = true
+
+[rpc_endpoints]
+  bsc = "${BSC_RPC_URL}"
+  mainnet = "${MAINNET_RPC_URL}"
 
 [fmt]
-line_length = 100
-multiline_func_header = "params_first"
-# wrap_comments = true
+  line_length = 100
+  multiline_func_header = "params_first"
+  # wrap_comments = true
+
+[profile.production]
+  via_ir = true
 
-# See more config options https://github.com/foundry-rs/foundry/blob/master/crates/config/README.md#all-options
+  # See more config options https://github.com/foundry-rs/foundry/blob/master/crates/config/README.md#all-options

lib/openzeppelin-contracts-upgradeable

@@ -1,2 +1,3 @@
 @axelar-network/axelar-gmp-sdk-solidity=lib/axelar-gmp-sdk-solidity/
 @wormhole-foundation/native_token_transfer=lib/example-native-token-transfers/evm/src
+@openzeppelin/foundry-upgrades/=lib/openzeppelin-foundry-upgrades/src/

lib/openzeppelin-foundry-upgrades

@@ -0,0 +1,56 @@
+// SPDX-License-Identifier: Apache 2
+// slither-disable-start reentrancy-benign
+pragma solidity >=0.8.8 <0.9.0;
+
+import {Vm} from "forge-std/Vm.sol";
+import {Upgrades as OzUpgrades, Options} from "@openzeppelin/foundry-upgrades/Upgrades.sol";
+import {DefenderDeploy} from "@openzeppelin/foundry-upgrades/internal/DefenderDeploy.sol";
+
+// Much of the code in this file was reused from https://github.com/OpenZeppelin/openzeppelin-foundry-upgrades/blob/c50a7968d369f852607cb72e653d1ed699d823c5/src/Upgrades.sol.
+library Upgrades {
+    address constant CHEATCODE_ADDRESS = 0x7109709ECfa91a80626fF3989D68f67F5b1DD12D;
+
+    function deployUUPSProxy(
+        string memory proxyContractPath,
+        string memory contractName,
+        bytes memory initializerData
+    ) internal returns (address) {
+        Options memory opts;
+        address impl = OzUpgrades.deployImplementation(contractName, opts);
+        return address(_deploy(proxyContractPath, abi.encode(impl, initializerData), opts));
+    }
+
+    function _deploy(
+        string memory contractName,
+        bytes memory constructorData,
+        Options memory opts
+    ) private returns (address) {
+        if (opts.defender.useDefenderDeploy) {
+            return DefenderDeploy.deploy(contractName, constructorData, opts.defender);
+        } else {
+            bytes memory creationCode = Vm(CHEATCODE_ADDRESS).getCode(contractName);
+            address deployedAddress =
+                _deployFromBytecode(abi.encodePacked(creationCode, constructorData));
+            if (deployedAddress == address(0)) {
+                revert(
+                    string.concat(
+                        "Failed to deploy contract ",
+                        contractName,
+                        ' using constructor data "',
+                        string(constructorData),
+                        '"'
+                    )
+                );
+            }
+            return deployedAddress;
+        }
+    }
+
+    function _deployFromBytecode(bytes memory bytecode) private returns (address) {
+        address addr;
+        assembly {
+            addr := create(0, add(bytecode, 32), mload(bytecode))
+        }
+        return addr;
+    }
+}

remappings.txt

@@ -0,0 +1,118 @@
+// SPDX-License-Identifier: Apache 2
+pragma solidity >=0.8.8 <0.9.0;
+
+import {OwnableUpgradeable} from
+    "openzeppelin-contracts-upgradeable/contracts/access/OwnableUpgradeable.sol";
+import {ERC20Upgradeable} from
+    "openzeppelin-contracts-upgradeable/contracts/token/ERC20/ERC20Upgradeable.sol";
+import {ERC20BurnableUpgradeable} from
+    "openzeppelin-contracts-upgradeable/contracts/token/ERC20/extensions/ERC20BurnableUpgradeable.sol";
+import {UUPSUpgradeable} from
+    "openzeppelin-contracts-upgradeable/contracts/proxy/utils/UUPSUpgradeable.sol";
+import {INttToken} from "@wormhole-foundation/native_token_transfer/interfaces/INttToken.sol";
+
+/// @title WstEthL2Token
+/// @notice A UUPS upgradeable token with access controlled minting and burning.
+contract WstEthL2Token is
+    INttToken,
+    UUPSUpgradeable,
+    ERC20Upgradeable,
+    ERC20BurnableUpgradeable,
+    OwnableUpgradeable
+{
+    // =============== Storage ==============================================================
+
+    struct MinterStorage {
+        address _minter;
+    }
+
+    bytes32 private constant MINTER_SLOT = bytes32(uint256(keccak256("wsteth.minter")) - 1);
+
+    // =============== Storage Getters/Setters ==============================================
+
+    function _getMinterStorage() internal pure returns (MinterStorage storage $) {
+        uint256 slot = uint256(MINTER_SLOT);
+        assembly ("memory-safe") {
+            $.slot := slot
+        }
+    }
+
+    /// @notice A function to set the new minter for the tokens.
+    /// @param newMinter The address to add as both a minter and burner.
+    function setMinter(address newMinter) external onlyOwner {
+        if (newMinter == address(0)) {
+            revert InvalidMinterZeroAddress();
+        }
+        address previousMinter = _getMinterStorage()._minter;
+        _getMinterStorage()._minter = newMinter;
+        emit NewMinter(previousMinter, newMinter);
+    }
+
+    /// @dev Returns the address of the current minter.
+    function minter() public view returns (address) {
+        MinterStorage storage $ = _getMinterStorage();
+        return $._minter;
+    }
+
+    /// @dev Throws if called by any account other than the minter.
+    modifier onlyMinter() {
+        if (minter() != _msgSender()) {
+            revert CallerNotMinter(_msgSender());
+        }
+        _;
+    }
+
+    /// @dev An error thrown when a method is not implemented.
+    error UnimplementedMethod();
+
+    /// @custom:oz-upgrades-unsafe-allow constructor
+    constructor() {
+        _disableInitializers();
+    }
+
+    /// @notice A one-time configuration method meant to be called immediately upon the deployment of `WstEthL2Token`. It sets
+    /// up the token's name, symbol, and owner
+    function initialize(
+        string memory _name,
+        string memory _symbol,
+        address _owner
+    ) external initializer {
+        // OpenZeppelin upgradeable contracts documentation says:
+        //
+        // "Use with multiple inheritance requires special care. Initializer
+        // functions are not linearized by the compiler like constructors.
+        // Because of this, each __{ContractName}_init function embeds the
+        // linearized calls to all parent initializers. As a consequence,
+        // calling two of these init functions can potentially initialize the
+        // same contract twice."
+        //
+        // Note that ERC20 extensions do not linearize calls to ERC20Upgradeable
+        // initializer so we call all extension initializers individually.
+        __ERC20_init(_name, _symbol);
+        __Ownable_init(_owner);
+
+        // These initializers don't do anything, so we won't call them
+        // __ERC20Burnable_init();
+        // __UUPSUpgradeable_init();
+    }
+
+    /// @notice A function that will burn tokens held by the `msg.sender`.
+    /// @param _value The amount of tokens to be burned.
+    function burn(uint256 _value) public override(INttToken, ERC20BurnableUpgradeable) onlyMinter {
+        ERC20BurnableUpgradeable.burn(_value);
+    }
+
+    /// @notice This method is not implemented and should not be called.
+    function burnFrom(address, uint256) public pure override {
+        revert UnimplementedMethod();
+    }
+
+    /// @notice A function that mints new tokens to a specific account.
+    /// @param _account The address where new tokens will be minted.
+    /// @param _amount The amount of new tokens that will be minted.
+    function mint(address _account, uint256 _amount) external onlyMinter {
+        _mint(_account, _amount);
+    }
+
+    function _authorizeUpgrade(address /* newImplementation */ ) internal view override onlyOwner {}
+}

script/lib/Upgrades.sol

@@ -10,7 +10,9 @@ import {NttManager} from "@wormhole-foundation/native_token_transfer/NttManager/
 import {INttManager} from "@wormhole-foundation/native_token_transfer/interfaces/INttManager.sol";
 import {IManagerBase} from "@wormhole-foundation/native_token_transfer/interfaces/IManagerBase.sol";
 import {ERC1967Proxy} from "openzeppelin-contracts/contracts/proxy/ERC1967/ERC1967Proxy.sol";
-import {wstETHL2Token} from "../../src/token/wstETHL2Token.sol";
+import {WstEthL2Token} from "src/token/WstEthL2Token.sol";
+import {WstEthL2TokenHarness} from "test/token/WstEthL2TokenHarness.sol";
+import {Upgrades} from "script/lib/Upgrades.sol";
 
 import "forge-std/console.sol";
 import "forge-std/Test.sol";
@@ -29,7 +31,7 @@ contract AxelarTransceiverTest is Test {
     IAxelarGateway gateway;
     IAxelarGasService gasService;
     NttManager manager;
-    wstETHL2Token token;
+    WstEthL2TokenHarness token;
 
     function setUp() public {
         string memory url = "https://ethereum-sepolia-rpc.publicnode.com";
@@ -38,7 +40,16 @@ contract AxelarTransceiverTest is Test {
         gateway = IAxelarGateway(new MockAxelarGateway());
         gasService = IAxelarGasService(address(new MockAxelarGasService()));
 
-        token = new wstETHL2Token("name", "symobl", OWNER, OWNER);
+        // Deploy the token
+        address proxy = Upgrades.deployUUPSProxy(
+            "out/ERC1967Proxy.sol/ERC1967Proxy.json",
+            "WstEthL2TokenHarness.sol",
+            abi.encodeCall(WstEthL2Token.initialize, ("Wrapped Staked Eth", "wstEth", OWNER))
+        );
+        vm.label(proxy, "Proxy");
+
+        token = WstEthL2TokenHarness(proxy);
+
         address managerImplementation = address(
             new NttManager(
                 address(token),
@@ -187,6 +198,8 @@ contract AxelarTransceiverTest is Test {
         vm.prank(OWNER);
         transceiver.setAxelarChainId(chainId, chainName, axelarAddress);
         vm.prank(OWNER);
+        token.setMinter(OWNER);
+        vm.prank(OWNER);
         token.mint(address(manager), amount);
 
         transceiver.execute(bytes32(0), chainName, axelarAddress, payload);