hashmesan
commented
3 years ago Notes from recent changes
In addition to feature, we are hitting ceiling of bytecode very often so a lot of these changes are motivated to reduce size.
- Removed unneeded imports
- Shortened various messages to save bytecode
- Moved dailyLimit into struct to allow for Session struct variable
- Removed redudant onlyModule which is same as onlySelf
- Moved onlyValidTOTP to Recovery module to save bytecode
- isRestrictedMethod is used in 2 place, saved good size.
- getRequiredSignatures: no guardian is unrestricted, with guardian restricted to session, and multiCallWithSession
- multiCall needs to enforce limits in guardian mode, and block restricted methods
- multiCallWithSession, no restrictions
- startSession
- setDailyLimit and setDrainAddress and upgradeMasterCopy can only be called by itself (via multicall)
- removed cancel/isrecovering, finalze, which are old delayed recovery methods
- invoke and functionPrefix moved to library to save bytecode
MetaTX:
- Handle of session signature, verify expiration, and signing address to be owner (future may allow others to call it)
- functionPrefix, and invoke
Test cases
- Introduced commons.executeMetaTx for better reusability and readability
- Daily limit test now tests for guardian and no guardian daily limit set, enforcement.
- Daily Limit test also validate security of how startSession, and multiCalLSession can be called.
Motivation
Add session feature (like a sudo / super user mode) when user wants unrestricted access to their account for a period of time. This simplifies the need to approve a bunch of individual transactions.
Design
createSession(duration) clearSession() multiCallWithSession([txs]) -- allows unrestricted access