search

safe-global / safe-client-gateway

Serves as a bridge for the Safe{Wallet} clients (Android, iOS, Web)
https://docs.safe.global
MIT License
23 stars 47 forks source link

Allow relaying of counterfactual Safe deployments #1721

Open schmanu opened 4 days ago

schmanu commented 4 days ago

Description

Through our UI we offer to pay later for the safe deployment. This will cause the Safe to be deployed with its first transaction.

When a user chooses to do so on a chain which supports relaying (currently Gnosis Chain and partially Arbitrum), we do not offer relaying for the first counterfactual deployment tx as the relay service does not allow such transactions.

A counterfactual transaction is a multiSend to the MultiSendCallOnly contract which always contains two transactions:

  1. createProxyWithNonce on the SafeProxyFactory
  2. executeTransaction on the newly deployed Safe

Requirements

Allow counterfactual txs through the relay service. If it is a call to the MultiSendContract check

Additional information

No response

iamacook commented 3 days ago

Whilst 1. is relatively easy to implement, 2. will require us to reduce the strictness of the relayer.

Currently, we ensure that the executeTransaction call is coming from a deployed Safe. We'd need remove this check, but any matching signature will then be relayed. This is something we need to discuss before implementation.

schmanu commented 3 days ago

Alternatively we could predict the Safe address from the deployment of the first transaction and check that the second transaction is calling to that address.

iamacook commented 3 days ago

Alternatively we could predict the Safe address from the deployment of the first transaction and check that the second transaction is calling to that address.

Prediction requires on-chain data (proxy creation code) and gets quite complicated when considering chain-specific requirements, e.g. zkSync.

Ideally we'd use the SDK but it's an extra dependency for a somewhat simple change. We could hardcode/indefinitely cache the proxy creation code but they each come with caveats: remembering to update/making an on-chain call (although now possible!).

Great suggestion though - I'll make sure to include it in our discussion.