Feat/excessively safe call (#23)

leekt · web-flow · commit 38a045bc4343 · 2024-03-29T02:14:06.000+09:00
* using module lib for removing module

* using erc2771 call

* rollback to action/fallback separation
diff --git a/.gitmodules b/.gitmodules
@@ -4,3 +4,6 @@
 [submodule "lib/solady"]
 	path = lib/solady
 	url = https://github.com/vectorized/solady
+[submodule "lib/ExcessivelySafeCall"]
+	path = lib/ExcessivelySafeCall
+	url = https://github.com/nomad-xyz/ExcessivelySafeCall
diff --git a/lib/ExcessivelySafeCall b/lib/ExcessivelySafeCall
@@ -0,0 +1 @@
+Subproject commit 81cd99ce3e69117d665d7601c330ea03b97acce0
diff --git a/remappings.txt b/remappings.txt
@@ -1 +1,4 @@
-solady/=lib/solady/
+ExcessivelySafeCall/=lib/ExcessivelySafeCall/src/
+ds-test/=lib/forge-std/lib/ds-test/src/
+forge-std/=lib/forge-std/src/
+solady/=lib/solady/src/
diff --git a/src/Kernel.sol b/src/Kernel.sol
@@ -6,6 +6,7 @@ import {IAccount, ValidationData, ValidAfter, ValidUntil, parseValidationData} f
 import {IEntryPoint} from "./interfaces/IEntryPoint.sol";
 import {IAccountExecute} from "./interfaces/IAccountExecute.sol";
 import {IERC7579Account} from "./interfaces/IERC7579Account.sol";
+import {ModuleLib} from "./utils/ModuleLib.sol";
 import {
     ValidationManager,
     ValidationMode,
@@ -23,7 +24,7 @@ import {HookManager} from "./core/HookManager.sol";
 import {ExecutorManager} from "./core/ExecutorManager.sol";
 import {SelectorManager} from "./core/SelectorManager.sol";
 import {IModule, IValidator, IHook, IExecutor, IFallback, IPolicy, ISigner} from "./interfaces/IERC7579Modules.sol";
-import {EIP712} from "solady/src/utils/EIP712.sol";
+import {EIP712} from "solady/utils/EIP712.sol";
 import {ExecLib, ExecMode, CallType, CALLTYPE_SINGLE, CALLTYPE_DELEGATECALL} from "./utils/ExecLib.sol";
 
 bytes32 constant ERC1967_IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
@@ -119,7 +120,7 @@ contract Kernel is IAccount, IAccountExecute, IERC7579Account, ValidationManager
             mstore(senderPtr, shl(96, caller()))
 
             // Add 20 bytes for the address appended add the end
-            // NOTE: we are only allowing static call for fallback
+            // NOTE: we are only allowing call for fallback
             success := staticcall(gas(), fallbackHandler, calldataPtr, add(calldatasize(), 20), 0, 0)
 
             result := mload(0x40)
@@ -330,6 +331,7 @@ contract Kernel is IAccount, IAccountExecute, IERC7579Account, ValidationManager
             _installExecutor(IExecutor(module), executorData, hook);
             _installHook(hook, hookData);
         } else if (moduleType == 3) {
+            //TODO : update this to use _installSelector
             bytes calldata fallbackData;
             bytes calldata hookData;
             assembly {
@@ -396,7 +398,7 @@ contract Kernel is IAccount, IAccountExecute, IERC7579Account, ValidationManager
     {
         if (moduleType == type(uint256).max) {
             // force uninstall option
-            IModule(module).onUninstall(deInitData);
+            ModuleLib.uninstallModule(module, deInitData);
         }
         if (moduleType == 1) {
             ValidationStorage storage vs = _validationStorage();
@@ -439,19 +441,19 @@ contract Kernel is IAccount, IAccountExecute, IERC7579Account, ValidationManager
             // force call onInstall for hook
             // NOTE: for hook, kernel does not support independant hook install,
             // hook is expected to be paired with proper validator/executor/selector
-            IHook(module).onUninstall(deInitData);
+            ModuleLib.uninstallModule(module, deInitData);
         } else if (moduleType == 5) {
             // force call onInstall for policy
             // NOTE: for policy, kernel does not support independant policy install,
             // policy is expected to be paired with proper permissionId
-            // to "ADD" permission, use "installValidations()" function
-            IPolicy(module).onUninstall(deInitData);
+            // to "REMOVE" permission, use "uninstallValidation()" function
+            ModuleLib.uninstallModule(module, deInitData);
         } else if (moduleType == 6) {
             // force call onInstall for signer
             // NOTE: for signer, kernel does not support independant signer install,
             // signer is expected to be paired with proper permissionId
-            // to "ADD" permission, use "installValidations()" function
-            ISigner(module).onUninstall(deInitData);
+            // to "REMOVE" permission, use "installValidation()" function
+            ModuleLib.uninstallModule(module, deInitData);
         } else if (moduleType == 7) {
             IHook hook = _uninstallSelector(bytes4(deInitData[0:4]));
             bytes calldata hookData = deInitData[4:];
@@ -483,7 +485,7 @@ contract Kernel is IAccount, IAccountExecute, IERC7579Account, ValidationManager
         } else if (moduleType == 3) {
             (IFallback fallbackHandler,) = _fallbackConfig();
             return fallbackHandler == IFallback(module);
-        } else if (moduleType == 6) {
+        } else if (moduleType == 7) {
             return _selectorConfig(bytes4(additionalContext[0:4])).target == module;
         } else {
             return false;
diff --git a/src/core/ExecutorManager.sol b/src/core/ExecutorManager.sol
@@ -1,6 +1,7 @@
 pragma solidity ^0.8.0;
 
 import {IHook, IExecutor} from "../interfaces/IERC7579Modules.sol";
+import {ModuleLib} from "../utils/ModuleLib.sol";
 
 bytes32 constant EXECUTOR_MANAGER_STORAGE_SLOT = 0x1bbee3173dbdc223633258c9f337a0fff8115f206d302bea0ed3eac003b68b86;
 
@@ -39,6 +40,6 @@ abstract contract ExecutorManager {
         ExecutorConfig storage config = _executorConfig(executor);
         hook = config.hook;
         config.hook = IHook(address(0));
-        executor.onUninstall(executorData);
+        ModuleLib.uninstallModule(address(executor), executorData);
     }
 }
diff --git a/src/core/HookManager.sol b/src/core/HookManager.sol
@@ -1,6 +1,7 @@
 pragma solidity ^0.8.0;
 
 import {IHook} from "../interfaces/IERC7579Modules.sol";
+import {ModuleLib} from "../utils/ModuleLib.sol";
 
 bytes32 constant HOOK_MANAGER_STORAGE_SLOT = 0x4605d5f70bb605094b2e761eccdc27bed9a362d8612792676bf3fb9b12832ffc;
 
@@ -46,7 +47,7 @@ abstract contract HookManager {
         }
         if (bytes1(hookData[0]) == bytes1(0xff)) {
             // 0xff means you want to call uninstall hook
-            hook.onUninstall(hookData[1:]);
+            ModuleLib.uninstallModule(address(hook), hookData[1:]);
             return;
         }
     }
diff --git a/src/core/SelectorManager.sol b/src/core/SelectorManager.sol
@@ -10,7 +10,7 @@ bytes32 constant SELECTOR_MANAGER_STORAGE_SLOT = 0x7c341349a4360fdd5d5bc07e69f32
 abstract contract SelectorManager {
     struct SelectorConfig {
         IHook hook; // 20 bytes for hook address
-        address target; // 20 bytes target will be fallback module, called with delegatecall or call
+        address target; // 20 bytes target will be fallback module, called with call
     }
 
     struct SelectorStorage {
diff --git a/src/core/ValidationManager.sol b/src/core/ValidationManager.sol
@@ -1,12 +1,13 @@
 pragma solidity ^0.8.0;
 
-import {IValidator, IHook, IPolicy, ISigner} from "../interfaces/IERC7579Modules.sol";
+import {IValidator, IHook, IPolicy, ISigner, IFallback} from "../interfaces/IERC7579Modules.sol";
 import {PackedUserOperation} from "../interfaces/PackedUserOperation.sol";
 import {SelectorManager} from "./SelectorManager.sol";
 import {HookManager} from "./HookManager.sol";
 import {ValidationData, ValidAfter, ValidUntil, parseValidationData} from "../interfaces/IAccount.sol";
 import {IAccountExecute} from "../interfaces/IAccountExecute.sol";
-import {EIP712} from "solady/src/utils/EIP712.sol";
+import {EIP712} from "solady/utils/EIP712.sol";
+import {ModuleLib} from "../utils/ModuleLib.sol";
 import {
     ValidationId,
     PolicyData,
@@ -158,7 +159,7 @@ abstract contract ValidationManager is EIP712, SelectorManager, HookManager {
         ValidationType vType = ValidatorLib.getType(vId);
         if (vType == VALIDATION_TYPE_VALIDATOR) {
             IValidator validator = ValidatorLib.getValidator(vId);
-            validator.onUninstall(validatorData);
+            ModuleLib.uninstallModule(address(validator), validatorData);
         } else if (vType == VALIDATION_TYPE_PERMISSION) {
             PermissionId permission = ValidatorLib.getPermissionId(vId);
             _uninstallPermission(permission, validatorData);
@@ -180,10 +181,13 @@ abstract contract ValidationManager is EIP712, SelectorManager, HookManager {
         PolicyData[] storage policyData = config.policyData;
         for (uint256 i = 0; i < policyData.length; i++) {
             (PassFlag flag, IPolicy policy) = ValidatorLib.decodePolicyData(policyData[i]);
-            policy.onUninstall(abi.encodePacked(bytes32(PermissionId.unwrap(pId)), permissionDisableData[i]));
+            ModuleLib.uninstallModule(
+                address(policy), abi.encodePacked(bytes32(PermissionId.unwrap(pId)), permissionDisableData[i])
+            );
             policyData[i] = PolicyData.wrap(bytes22(0));
         }
-        config.signer.onUninstall(
+        ModuleLib.uninstallModule(
+            address(config.signer),
             abi.encodePacked(bytes32(PermissionId.unwrap(pId)), permissionDisableData[permissionDisableData.length - 1])
         );
         config.signer = ISigner(address(0));
@@ -248,7 +252,7 @@ abstract contract ValidationManager is EIP712, SelectorManager, HookManager {
         }
 
         // clean up the policyData
-        if(state.permissionConfig[permission].policyData.length > 0) {
+        if (state.permissionConfig[permission].policyData.length > 0) {
             delete state.permissionConfig[permission].policyData;
         }
         unchecked {
@@ -364,7 +368,9 @@ abstract contract ValidationManager is EIP712, SelectorManager, HookManager {
             if (selectorData.length >= 44) {
                 // install selector with hook and target contract
                 _installSelector(
-                    selector, address(bytes20(selectorData[4:24])), IHook(address(bytes20(selectorData[24:44])))
+                    selector,
+                    address(bytes20(selectorData[4:24])),
+                    IHook(address(bytes20(selectorData[24:44])))
                 );
                 _installHook(IHook(address(bytes20(selectorData[24:44]))), selectorData[44:]);
                 _setSelector(vId, selector, true);
diff --git a/src/utils/ModuleLib.sol b/src/utils/ModuleLib.sol
@@ -0,0 +1,12 @@
+pragma solidity ^0.8.0;
+
+import {ExcessivelySafeCall} from "ExcessivelySafeCall/ExcessivelySafeCall.sol";
+
+library ModuleLib {
+    event ModuleUninstallResult(address module, bool result);
+
+    function uninstallModule(address module, bytes memory deinitData) internal returns (bool result) {
+        (result,) = ExcessivelySafeCall.excessivelySafeCall(module, gasleft(), 0, 0, deinitData);
+        emit ModuleUninstallResult(module, result);
+    }
+}
diff --git a/src/validator/ECDSAValidator.sol b/src/validator/ECDSAValidator.sol
@@ -1,6 +1,6 @@
 pragma solidity ^0.8.0;
 
-import {ECDSA} from "solady/src/utils/ECDSA.sol";
+import {ECDSA} from "solady/utils/ECDSA.sol";
 import {
     IValidator,
     IHook,
diff --git a/src/validator/WeightedECDSAValidator.sol b/src/validator/WeightedECDSAValidator.sol
@@ -1,8 +1,8 @@
 pragma solidity ^0.8.0;
 
 import "src/types/Types.sol";
-import {ECDSA} from "solady/src/utils/ECDSA.sol";
-import {EIP712} from "solady/src/utils/EIP712.sol";
+import {ECDSA} from "solady/utils/ECDSA.sol";
+import {EIP712} from "solady/utils/EIP712.sol";
 import {PackedUserOperation} from "../interfaces/PackedUserOperation.sol";
 import {
     IValidator, VALIDATION_FAILED, MODULE_TYPE_VALIDATOR, MODULE_TYPE_HOOK

Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,7 @@`
`1`	`1`	`pragma solidity ^0.8.0;`
`2`	`2`
`3`	`3`	`import {IHook, IExecutor} from "../interfaces/IERC7579Modules.sol";`
	`4`	`+import {ModuleLib} from "../utils/ModuleLib.sol";`
`4`	`5`
`5`	`6`	`bytes32 constant EXECUTOR_MANAGER_STORAGE_SLOT = 0x1bbee3173dbdc223633258c9f337a0fff8115f206d302bea0ed3eac003b68b86;`
`6`	`7`
`@@ -39,6 +40,6 @@ abstract contract ExecutorManager {`
`39`	`40`	`ExecutorConfig storage config = _executorConfig(executor);`
`40`	`41`	`hook = config.hook;`
`41`	`42`	`config.hook = IHook(address(0));`
`42`		`- executor.onUninstall(executorData);`
	`43`	`+ ModuleLib.uninstallModule(address(executor), executorData);`
`43`	`44`	`}`
`44`	`45`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,7 @@`
`1`	`1`	`pragma solidity ^0.8.0;`
`2`	`2`
`3`	`3`	`import {IHook} from "../interfaces/IERC7579Modules.sol";`
	`4`	`+import {ModuleLib} from "../utils/ModuleLib.sol";`
`4`	`5`
`5`	`6`	`bytes32 constant HOOK_MANAGER_STORAGE_SLOT = 0x4605d5f70bb605094b2e761eccdc27bed9a362d8612792676bf3fb9b12832ffc;`
`6`	`7`
`@@ -46,7 +47,7 @@ abstract contract HookManager {`
`46`	`47`	`}`
`47`	`48`	`if (bytes1(hookData[0]) == bytes1(0xff)) {`
`48`	`49`	`// 0xff means you want to call uninstall hook`
`49`		`- hook.onUninstall(hookData[1:]);`
	`50`	`+ ModuleLib.uninstallModule(address(hook), hookData[1:]);`
`50`	`51`	`return;`
`51`	`52`	`}`
`52`	`53`	`}`
Original file line number	Diff line number	Diff line change
`@@ -10,7 +10,7 @@ bytes32 constant SELECTOR_MANAGER_STORAGE_SLOT = 0x7c341349a4360fdd5d5bc07e69f32`
`10`	`10`	`abstract contract SelectorManager {`
`11`	`11`	`struct SelectorConfig {`
`12`	`12`	`IHook hook; // 20 bytes for hook address`
`13`		`- address target; // 20 bytes target will be fallback module, called with delegatecall or call`
	`13`	`+ address target; // 20 bytes target will be fallback module, called with call`
`14`	`14`	`}`
`15`	`15`
`16`	`16`	`struct SelectorStorage {`