Skip to content

9 - emergencyWithdraw override function to withdraw funds after strategy shutdown #44

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
mcclurejt wants to merge 3 commits into
base: main
Choose a base branch
from
Open

9 - emergencyWithdraw override function to withdraw funds after strategy shutdown #44

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
ea3f669
adds the emergencyWithdraw override function to withdraw funds after …
mcclurejt Dec 19, 2024
a69e210
comment wording fix
mcclurejt Dec 19, 2024
4e5b890
addressing feedback from @mrtoph
mcclurejt Jan 7, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
39 changes: 39 additions & 0 deletions contracts/EverlongStrategy.sol
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,8 @@
pragma solidity 0.8.24;

import { IHyperdrive } from "hyperdrive/contracts/src/interfaces/IHyperdrive.sol";
import { IMultiToken } from "hyperdrive/contracts/src/interfaces/IMultiToken.sol";
import { AssetId } from "hyperdrive/contracts/src/libraries/AssetId.sol";
import { FixedPointMath } from "hyperdrive/contracts/src/libraries/FixedPointMath.sol";
import { SafeCast } from "hyperdrive/contracts/src/libraries/SafeCast.sol";
import { SafeERC20 } from "openzeppelin/token/ERC20/utils/SafeERC20.sol";
Expand Down Expand Up @@ -219,6 +221,43 @@ contract EverlongStrategy is BaseStrategy {
return;
}

/// @dev Withdraw function that can be called after the vault is shut down.
/// Transfers bond positions to the `emergencyAdmin` address until
/// a position's transfer would exceed `_maxBondAmount` or there are
/// no longer any bond positions under the strategy's control.
/// @param _maxBondAmount Maximum amount of bonds to transfer from positions.
function _emergencyWithdraw(uint256 _maxBondAmount) internal override {
IEverlongStrategy.EverlongPosition memory position;
while (!_portfolio.isEmpty()) {
Copy link

@MrToph MrToph Dec 21, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

there might be a lot of open positions and closing them is not cheap. worst case, you can't fit them in a single block. consider just closing positions until at least amount parameter is reached (can still fully close the individual positions, something like while (!empty && closed < amount) { ... closed += bondAmount }. And then change the natspec that amount is actually a bond amount).

Copy link
Contributor Author

@mcclurejt mcclurejt Jan 7, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Added the change as described with one difference...

I found it more straightforward to have the parameter be a hard limit, meaning that the amount of bonds transferred is guaranteed not to exceed it.

Copy link
Contributor

@Sean329 Sean329 Jan 9, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Quick question: according to the current implementation, the limit is put on the bond amount, and the current position to work on is position = _portfolio.head();. Then, is there a possibility that once a very big position holding more than the maxBondAmount stands in the way, you won't be able to get around it even though there are still other smaller positions could have been able to be closed?
If the concern is on the gas cost & block size limit, maybe imposing the limit on the # of positions closed works better than using the bond amount?

Copy link

@MrToph MrToph Jan 19, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Then, is there a possibility that once a very big position holding more than the maxBondAmount stands in the way, you won't be able to get around it even though there are still other smaller positions could have been able to be closed?

so this queue is ordered and you can inspect it from off-chain and then see how much needs to be closed. I think in practice it doesn't make much difference if you use maxBondAmount for the bond amount or number of positions to close.
I just felt like bond amount was more flexible.

Maybe you're suggesting passing in an array of maturities to close so you can skip the head, but unfortunately this uint256 parameter is given by yearn's API and you can't change it.

// Retrieve the most mature position.
position = _portfolio.head();

// If transferring the position's bonds would cause the total amount
// transferred to exceed `_maxBondAmount` then exit.
if (position.bondAmount > _maxBondAmount) {
return;
}
// Deduct the position's bonds from `_maxBondAmount` so that it
// tracks how many more bonds can be transferred before hitting the
// limit.
else {
_maxBondAmount -= position.bondAmount;
}

// Transfer the tokens to the management address.
IMultiToken(hyperdrive).transferFrom(
AssetId.encodeAssetId(
AssetId.AssetIdPrefix.Long,
uint256(position.maturityTime)
),
address(this),
TokenizedStrategy.emergencyAdmin(),
uint256(position.bondAmount)
);
_portfolio.handleClosePosition();
}
}

/// @dev Attempt to free the '_amount' of 'asset'.
/// - Any difference between `_amount` and what is actually freed will be
/// counted as a loss and passed on to the withdrawer.
Expand Down
165 changes: 165 additions & 0 deletions test/everlong/units/EmergencyWithdraw.t.sol
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,165 @@
// SPDX-License-Identifier: Apache-2.0
pragma solidity ^0.8.20;

import { IMultiToken } from "hyperdrive/contracts/src/interfaces/IMultiToken.sol";
import { AssetId } from "hyperdrive/contracts/src/libraries/AssetId.sol";
import { IEverlongStrategy } from "../../../contracts/interfaces/IEverlongStrategy.sol";
import { EVERLONG_STRATEGY_KIND, EVERLONG_VERSION } from "../../../contracts/libraries/Constants.sol";
import { EverlongTest } from "../EverlongTest.sol";

/// @dev Tests emergency withdraw functionality.
contract TestEmergencyWithdraw is EverlongTest {
function test_call_from_non_management_failure() external {
// Shut down the strategy.
vm.startPrank(strategy.emergencyAdmin());
strategy.shutdownStrategy();
vm.stopPrank();

// Ensure calling emergencyWithdraw from a random address fails.
vm.startPrank(alice);
vm.expectRevert();
strategy.emergencyWithdraw(type(uint256).max);
vm.stopPrank();

// Ensure calling emergencyWithdraw from the keeper address fails.
vm.startPrank(keeper);
vm.expectRevert();
strategy.emergencyWithdraw(type(uint256).max);
vm.stopPrank();

// Ensure calling emergencyWithdraw from the keeper contract address
// fails.
vm.startPrank(address(keeperContract));
vm.expectRevert();
strategy.emergencyWithdraw(type(uint256).max);
vm.stopPrank();
}

/// @dev Ensure strategy can be shutdown when it has no positions.
function test_no_positions_open() external {
// Ensure the strategy has no open positions.
assertEq(IEverlongStrategy(address(strategy)).positionCount(), 0);

// Shut down the strategy and call `emergencyWithdraw`.
vm.startPrank(strategy.emergencyAdmin());
strategy.shutdownStrategy();
strategy.emergencyWithdraw(type(uint256).max);
vm.stopPrank();
}

/// @dev Ensure strategy can be shutdown when it has positions.
function test_positions_open() external {
// Deposit into the vault and "rebalance" to open a position in the
// strategy.
depositVault(100e18, alice, true);
rebalance();

// Ensure the strategy has one open position.
assertEq(IEverlongStrategy(address(strategy)).positionCount(), 1);

// Get the position.
IEverlongStrategy.EverlongPosition memory position = IEverlongStrategy(
address(strategy)
).positionAt(0);

// Record the strategy's balance of longs for that position.
uint256 strategyLongBalance = IMultiToken(hyperdrive).balanceOf(
AssetId.encodeAssetId(
AssetId.AssetIdPrefix.Long,
uint256(position.maturityTime)
),
address(strategy)
);

// Shut down the strategy and call `emergencyWithdraw`.
vm.startPrank(strategy.emergencyAdmin());
strategy.shutdownStrategy();
strategy.emergencyWithdraw(type(uint256).max);
vm.stopPrank();

// Ensure the emergency admin address's long balance matches the strategy's
// long balance prior to the emergency withdraw.
assertEq(
strategyLongBalance,
IMultiToken(hyperdrive).balanceOf(
AssetId.encodeAssetId(
AssetId.AssetIdPrefix.Long,
uint256(position.maturityTime)
),
address(strategy.emergencyAdmin())
)
);

// Ensure the strategy has no positions left.
assertEq(IEverlongStrategy(address(strategy)).positionCount(), 0);
}

function test_maxBondAmount() external {
// Deposit into the vault and "rebalance" to open a position in the
// strategy.
depositVault(100e18, alice, true);
rebalance();

// Ensure the strategy has one open position.
assertEq(IEverlongStrategy(address(strategy)).positionCount(), 1);

// Get the position.
IEverlongStrategy.EverlongPosition memory position = IEverlongStrategy(
address(strategy)
).positionAt(0);

// Record the strategy's balance of longs for that position.
uint256 strategyLongBalance = IMultiToken(hyperdrive).balanceOf(
AssetId.encodeAssetId(
AssetId.AssetIdPrefix.Long,
uint256(position.maturityTime)
),
address(strategy)
);

// Shut down the strategy and call `emergencyWithdraw` with
// `_maxBondAmount` set to a value less than the position's bond amount.
vm.startPrank(strategy.emergencyAdmin());
strategy.shutdownStrategy();
strategy.emergencyWithdraw(strategyLongBalance - 1);
vm.stopPrank();

// Ensure the emergency admin address's long balance is zero since no
// positions were transferred.
assertEq(
0,
IMultiToken(hyperdrive).balanceOf(
AssetId.encodeAssetId(
AssetId.AssetIdPrefix.Long,
uint256(position.maturityTime)
),
address(strategy.emergencyAdmin())
)
);

// Ensure the strategy still has one open position.
assertEq(IEverlongStrategy(address(strategy)).positionCount(), 1);

// Call `emergencyWithdraw` with `_maxBondAmount` set to a value more
// than the position's bond amount.
vm.startPrank(strategy.emergencyAdmin());
strategy.emergencyWithdraw(strategyLongBalance + 1);
vm.stopPrank();

// Ensure the emergency admin address's long balance matches the strategy's
// long balance prior to the emergency withdraw.
assertEq(
strategyLongBalance,
IMultiToken(hyperdrive).balanceOf(
AssetId.encodeAssetId(
AssetId.AssetIdPrefix.Long,
uint256(position.maturityTime)
),
address(strategy.emergencyAdmin())
)
);

// Ensure the strategy has no positions left.
assertEq(IEverlongStrategy(address(strategy)).positionCount(), 0);
}
}
Loading