Cross-chain Strategy

[shahthepro]

Code Changes

Check readme: https://github.com/OriginProtocol/origin-dollar/blob/shah/cross-chain-strategy-cctpv2/contracts/contracts/strategies/crosschain/crosschain-strategy.md

[codecov]

Codecov Report

❌ Patch coverage is 86.00583% with 48 lines in your changes missing coverage. Please review.
✅ Project coverage is 43.65%. Comparing base (0329064) to head (2178676).
⚠️ Report is 3 commits behind head on master.

Files with missing lines	Patch %	Lines
...strategies/crosschain/CrossChainRemoteStrategy.sol	72.34%	26 Missing ⚠️
...s/strategies/crosschain/AbstractCCTPIntegrator.sol	90.65%	9 Missing and 1 partial ⚠️
...strategies/crosschain/CrossChainMasterStrategy.sol	88.50%	10 Missing ⚠️
...s/contracts/strategies/Generalized4626Strategy.sol	0.00%	2 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #2715      +/-   ##
==========================================
+ Coverage   39.40%   43.65%   +4.25%     
==========================================
  Files         126      133       +7     
  Lines        5789     6132     +343     
  Branches     1537     1634      +97     
==========================================
+ Hits         2281     2677     +396     
+ Misses       3506     3452      -54     
- Partials        2        3       +1     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[sparrowDom]

"- the Mainnet part" should probably be "- the L2 chain part"

[sparrowDom]

we can rename this to usdcToken?

[shahthepro]

That's a good point. Since we would only be dealing with USDC with CCTP

[naddison36]

This is my first pass of the contracts

[naddison36]

nit: lets make this Natspec with /// @notice

[naddison36]

nit: can be Natspec with /// @notice

[naddison36]

nit: best to make all these comments on public variables a Natspec with /// @notice

[naddison36]

nit: I'd add the example values. eg Ethereum 0, Base 6

[naddison36]

nit: a link to the CCTP
Finality thresholds would be good here https://developers.circle.com/cctp/technical-guide#finality-thresholds

[naddison36]

nit: I think its better to have CrossChainMasterStrategy specific Natspec. eg _recipient must be the vault and _asset must be USDC.

[naddison36]

nit: it feels safer to have this check in _getNextNonce

[naddison36]

nit: can be shortened to Must deposit something which is what a lot of other strategies use

[naddison36]

nit: can be shortened to Deposit amount exceeds max so it fits in an EVM word

[naddison36]

Is this saying the Strategist needs to be the vaultAddress?

The constructor states

// Vault address must always be the proxy address
// so that IVault(vaultAddress).strategistAddr() works

[shahthepro]

Nope. I think I could've worded this better, I'll change it.

So, the problem is that the Generalized4626Strategy uses IVault.strategistAddr(). However the remote strategy has no Vault, it only communicates with the Master strategy. So, whenever IVault.strategistAddr() is used in the abstract strategy, it'll revert. So, what I did is add a function with same signature as strategistAddr(), so whenever IVault.strategistAddr() is called, it'll be same as calling address(this).strategistAddr().

Strategist should always be the 2/8 multisig. But for Remote strategy, the Vault should be its own proxy addresss

[naddison36]

I see now. So the CrossChainRemoteStrategy constructor should check
_baseConfig.vaultAddress == address(this)

[clement-ux]

First surface pass

[clement-ux]

Global comment about slot arrangement, maybe we can:

• Move MAX_TRANSFER_AMOUNT above cctpMessageTransmitter to keep order: constant -> immutable -> variable
• cast minFinalityThreshold and feePremiumBps into uint16.
• move nonceProcessed bellow operator
• pack minFinalityThreshold, feePremiumBps and lastTransferNonce all together in a single slot.

[clement-ux]

Quick question, what's the reason for only supporting fast transfer and not standard transfer?

[clement-ux]

nit: Shouldn't we create a Library for these constants?

[clement-ux]

And maybe we could move this function into the library too:

origin-dollar/contracts/contracts/strategies/crosschain/AbstractCCTPIntegrator.sol

Lines 452 to 479 in b2feed1

	/**
	* @dev Decodes the CCTP message header
	* @param message Message to decode
	* @return version Version of the message
	* @return sourceDomainID Source domain ID
	* @return sender Sender of the message
	* @return recipient Recipient of the message
	* @return messageBody Message body
	*/
	function _decodeMessageHeader(bytes memory message)
	internal
	pure
	returns (
	uint32 version,
	uint32 sourceDomainID,
	address sender,
	address recipient,
	bytes memory messageBody
	)
	{
	version = message.extractUint32(VERSION_INDEX);
	sourceDomainID = message.extractUint32(SOURCE_DOMAIN_INDEX);
	// Address of MessageTransmitterV2 caller on source domain
	sender = message.extractAddress(SENDER_INDEX);
	// Address to handle message body on destination domain
	recipient = message.extractAddress(RECIPIENT_INDEX);
	messageBody = message.extractSlice(MESSAGE_BODY_INDEX, message.length);
	}

[clement-ux]

nit: I don't think it is necessary to cache undepositedUSDC, we can directly have:

return IERC20(baseToken).balanceOf(address(this)) + pendingAmount + remoteStrategyBalance;

[clement-ux]

gas: delete pendingAmount should be cheaper than pendingAmount = 0;

[clement-ux]

It fetches IERC20(baseToken).balanceOf(address(this)) two times, one at line 139, once again in checkBalance.
Maybe we can have something like this:

function withdrawAll() external virtual override onlyGovernorOrStrategist {
    _withdraw(address(this), baseToken, IERC4626(platformAddress).previewRedeem(platform.balanceOf(address(this))));
}

[clement-ux]

Maybe we can downcast them to uint128 or uint64, because USDC has only 6 decimals, and then use just one slot.
However, this is maybe not worth it.

[shahthepro]

The max value that can be here is 10M USDC (10M * 10**6), so yeah it can fit in uint64, let me think about it. Because it might cause problems, if we ever decide to use this strategy for OETH

[clement-ux]

Yes exactly, that's why it could be not worth it. Choose the solution you prefer.

[clement-ux]

Adding some comments

[clement-ux]

Maybe we can have something lighter and a bit more gas friendly:

function _onMessageReceived(bytes memory payload) internal override {
    require(
        payload.getMessageType() ==
            CrossChainStrategyHelper.BALANCE_CHECK_MESSAGE,
        "Unknown message type"
    );
    _processBalanceCheckMessage(payload);
}

[clement-ux]

It seems that checking if there is a "Transfer already pending" is checked two times:

• require(!isTransferPending(), "Transfer already pending");
• _getNextNonce()

I agree that having two times the check is not bad, but this means that we could probably lighten the code somewhere.
Should it be on the _getNextNonce()or on the _deposit()/_withdraw(), I let you be the judge.