AtHeartEngineer/wax
1
0
Fork 0
mirror of https://github.com/getwax/wax.git synced 2026-01-09 15:18:02 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
c94c5312625137a021947dbeb1b657da7c080f67
wax/packages/plugins/test/e2e/SafeZkEmailRecoveryPlugin.test.ts
jacque006 37a07467a3 Disable legacy Zk plugins 
Add deterministic-deploy install to plugins install process.
2024-07-02 16:44:59 +02:00

549 lines
16 KiB
TypeScript
Raw Blame History

import { expect } from "chai";
import { JsonRpcProvider, NonceManager, Signer, ethers } from "ethers";
import { executeContractCallWithSigners } from "./utils/execution";
import DeterministicDeployer from "../../lib-ts/deterministic-deployer/DeterministicDeployer";
import {
MockDKIMRegsitry,
MockDKIMRegsitry__factory,
MockGroth16Verifier__factory,
Safe,
SafeECDSAFactory__factory,
SafeECDSAPlugin__factory,
SafeZkEmailRecoveryPlugin,
SafeZkEmailRecoveryPlugin__factory,
Safe__factory,
SimpleAccountFactory__factory,
SimpleAccount__factory,
} from "../../typechain-types";
import receiptOf from "./utils/receiptOf";
import { setupTests } from "./utils/setupTests";
import { createAndSendUserOpWithEcdsaSig } from "./utils/createUserOp";
describe.skip("SafeZkEmailRecoveryPlugin", () => {
let bundlerProvider: JsonRpcProvider;
let provider: JsonRpcProvider;
let admin: NonceManager;
let owner: Signer;
let otherAccount: Signer;
let entryPointAddress: string;
let safeSingleton: Safe;
let mockDkimRegistry: MockDKIMRegsitry;
let deployer: DeterministicDeployer;
let safeProxyAddress: string;
let recoveryPlugin: SafeZkEmailRecoveryPlugin;
beforeEach(async () => {
const setup = await setupTests();
({
provider,
bundlerProvider,
admin,
owner,
otherAccount,
entryPointAddress,
deployer,
safeSingleton,
} = setup);
const safeECDSAFactory = await deployer.connectOrDeploy(
SafeECDSAFactory__factory,
[],
);
const createArgs = [
safeSingleton,
entryPointAddress,
await owner.getAddress(),
0,
] satisfies Parameters<typeof safeECDSAFactory.create.staticCall>;
safeProxyAddress = await safeECDSAFactory.create.staticCall(...createArgs);
await receiptOf(safeECDSAFactory.create(...createArgs));
// Native tokens for the pre-fund
await receiptOf(
admin.sendTransaction({
to: safeProxyAddress,
value: ethers.parseEther("10"),
}),
);
const mockGroth16Verifier = await deployer.connectOrDeploy(
MockGroth16Verifier__factory,
[],
);
const defaultDkimRegistry = await deployer.connectOrDeploy(
MockDKIMRegsitry__factory,
[],
);
mockDkimRegistry = await deployer.connectOrDeploy(
MockDKIMRegsitry__factory,
[],
);
recoveryPlugin = await deployer.connectOrDeploy(
SafeZkEmailRecoveryPlugin__factory,
[
await mockGroth16Verifier.getAddress(),
await defaultDkimRegistry.getAddress(),
],
);
});
it("Should use recovery plugin via EOA and then send tx with new key.", async () => {
const recoveryPluginAddress = await recoveryPlugin.getAddress();
const ownerAddress = await owner.getAddress();
const safe = Safe__factory.connect(safeProxyAddress, owner);
// Enable recovery plugin
await receiptOf(
executeContractCallWithSigners(
safe,
safe,
"enableModule",
[recoveryPluginAddress],
// @ts-expect-error owner doesn't have all properties for some reason
[owner],
),
);
// Construct userOp to add recovery account
const chainId = (await provider.getNetwork()).chainId;
const email = ethers.keccak256(ethers.toUtf8Bytes("test2@mail.com"));
const salt = "test salt";
const recoveryhashDomain = ethers.solidityPackedKeccak256(
["string", "uint256", "uint256", "address"],
["RECOVERY_PLUGIN", 1, chainId, recoveryPluginAddress],
);
const recoveryHash = ethers.solidityPackedKeccak256(
["bytes32", "bytes32", "string"],
[recoveryhashDomain, email, salt],
);
const safeProxyWithEcdsaPluginInterface = SafeECDSAPlugin__factory.connect(
safeProxyAddress,
provider,
);
const safeECDSAPluginAddress =
await safeProxyWithEcdsaPluginInterface.myAddress();
// Generated via openssl
// Note: The actual DKIM registry hash may be dervied from splitting the DKIM public
// key into 17 chunks of 121 bits.
const dkimPublicKey =
"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxES3RTDdoDUcyrIFzApJx9Vkd89Sma86iSHn8Uz" +
"QRevFI69jNRSuqkOZfQQ0h+fK+Fh7DNz8QznLpSh6QBjOHEAfZVj/+eK1L4sbkULOSEvy1njCb7U+gkQ3D6" +
"0j35pKBefd1gkDoH5V/2E2qnld89ECwTaklWLrTYLAgHfSAj/A01JDQpvxCRneFNHHaZG+8LbPi2wZKgwmb" +
"97HWyPu9KokiKrnYg6tfQzLFVj5PqDRoqv4QCv9B/mXcnIRALSV0BPuLKBF4rsCEo0+FoYrcjbF+LIZzOw/" +
"cPbOCPGTXJPh0rDZjgpLO7l+A+hRxaqh4OLd+DrinY7VjPhcKo57dwIDAQAB";
const dkimPublicKeyHash = ethers.solidityPackedKeccak256(
["string"],
[dkimPublicKey],
);
const dkimRegistryAddress = await mockDkimRegistry.getAddress();
const zeroSeconds = 0;
const configureRecoveryCalldata =
recoveryPlugin.interface.encodeFunctionData("configureRecovery", [
safeECDSAPluginAddress,
ownerAddress,
recoveryHash,
dkimPublicKeyHash,
dkimRegistryAddress,
zeroSeconds,
]);
let safeEcdsaPlugin = SafeECDSAPlugin__factory.connect(
safeProxyAddress,
owner,
);
let userOpCallData = safeEcdsaPlugin.interface.encodeFunctionData(
"execTransaction",
[await recoveryPlugin.getAddress(), "0x00", configureRecoveryCalldata],
);
const factoryParams = {
factory: "0x",
factoryData: "0x",
};
const dummySignature = await owner.signMessage("dummy sig");
// Send userOp to add recovery account
await createAndSendUserOpWithEcdsaSig(
provider,
bundlerProvider,
owner,
safeProxyAddress,
factoryParams,
userOpCallData,
entryPointAddress,
dummySignature,
);
const recoveryRequest =
await recoveryPlugin.recoveryRequests(safeProxyAddress);
expect(recoveryRequest[0]).to.equal(recoveryHash);
expect(recoveryRequest[1]).to.equal(dkimPublicKeyHash);
// Construct tx to reset ecdsa address
const newEcdsaPluginSigner = new NonceManager(
ethers.Wallet.createRandom().connect(provider),
);
await receiptOf(
await admin.sendTransaction({
to: await newEcdsaPluginSigner.getAddress(),
value: ethers.parseEther("1"),
}),
);
const a: [bigint, bigint] = [BigInt(0), BigInt(0)];
const b: [[bigint, bigint], [bigint, bigint]] = [
[BigInt(0), BigInt(0)],
[BigInt(0), BigInt(0)],
];
const c: [bigint, bigint] = [BigInt(0), BigInt(0)];
const emailDomain = "google.com";
// set custom delay
const oneSecond = 1;
await receiptOf(
executeContractCallWithSigners(
safe,
recoveryPlugin,
"setRecoveryDelay",
[oneSecond],
// @ts-expect-error owner doesn't have all properties for some reason
[owner],
),
);
const initiateRecoveryArgs = [
safeProxyAddress,
await newEcdsaPluginSigner.getAddress(),
emailDomain,
a,
b,
c,
] satisfies Parameters<typeof recoveryPlugin.initiateRecovery.staticCall>;
await recoveryPlugin
.connect(owner)
.initiateRecovery.staticCall(...initiateRecoveryArgs);
// initiate recovery process
await receiptOf(
recoveryPlugin.connect(owner).initiateRecovery(...initiateRecoveryArgs),
);
// send two transactions to progress time enough for delay
await receiptOf(
admin.sendTransaction({
to: ethers.Wallet.createRandom().address,
value: ethers.parseEther("1"),
}),
);
await receiptOf(
admin.sendTransaction({
to: ethers.Wallet.createRandom().address,
value: ethers.parseEther("1"),
}),
);
const recoverPluginArgs = [
safeProxyAddress,
await safeEcdsaPlugin.myAddress(),
] satisfies Parameters<typeof recoveryPlugin.recoverPlugin.staticCall>;
await recoveryPlugin
.connect(newEcdsaPluginSigner)
.recoverPlugin.staticCall(...recoverPluginArgs);
// Send tx to reset ecdsa address
await receiptOf(
recoveryPlugin
.connect(newEcdsaPluginSigner)
.recoverPlugin(...recoverPluginArgs),
);
const newOwner = await safeEcdsaPlugin.ecdsaOwnerStorage(safeProxyAddress);
expect(newOwner).to.equal(await newEcdsaPluginSigner.getAddress());
// Send userOp with new owner
const recipientAddress = ethers.Wallet.createRandom().address;
const transferAmount = ethers.parseEther("1");
userOpCallData = safeEcdsaPlugin.interface.encodeFunctionData(
"execTransaction",
[recipientAddress, transferAmount, "0x00"],
);
const recipientBalanceBefore = await provider.getBalance(recipientAddress);
await createAndSendUserOpWithEcdsaSig(
provider,
bundlerProvider,
newEcdsaPluginSigner,
safeProxyAddress,
factoryParams,
userOpCallData,
entryPointAddress,
dummySignature,
);
const recipientBalanceAfter = await provider.getBalance(recipientAddress);
const expectedRecipientBalance = recipientBalanceBefore + transferAmount;
expect(recipientBalanceAfter).to.equal(expectedRecipientBalance);
});
it("Should use recovery plugin via smart account and then send tx with new key.", async () => {
const recoveryPluginAddress = await recoveryPlugin.getAddress();
const otherAccountAddress = await otherAccount.getAddress();
const ownerAddress = await owner.getAddress();
const safe = Safe__factory.connect(safeProxyAddress, owner);
// Enable recovery plugin
await receiptOf(
executeContractCallWithSigners(
safe,
safe,
"enableModule",
[recoveryPluginAddress],
// @ts-expect-error owner doesn't have all properties for some reason
[owner],
),
);
// Deploy guardian smart account
const simpleAccountFactory = await deployer.connectOrDeploy(
SimpleAccountFactory__factory,
[entryPointAddress],
);
const otherSimpleAccountAddress =
await simpleAccountFactory.createAccount.staticCall(
otherAccountAddress,
0,
);
await receiptOf(simpleAccountFactory.createAccount(otherAccountAddress, 0));
// Construct userOp to add recovery account
const chainId = (await provider.getNetwork()).chainId;
const email = ethers.keccak256(ethers.toUtf8Bytes("test@mail.com"));
const salt = "test salt";
const recoveryhashDomain = ethers.solidityPackedKeccak256(
["string", "uint256", "uint256", "address"],
["RECOVERY_PLUGIN", 1, chainId, recoveryPluginAddress],
);
const recoveryHash = ethers.solidityPackedKeccak256(
["bytes32", "bytes32", "string"],
[recoveryhashDomain, email, salt],
);
const safeProxyWithEcdsaPluginInterface = SafeECDSAPlugin__factory.connect(
safeProxyAddress,
provider,
);
const safeECDSAPluginAddress =
await safeProxyWithEcdsaPluginInterface.myAddress();
// Generated via openssl
// Note: The actual DKIM registry hash may be dervied from splitting the DKIM public
// key into 17 chunks of 121 bits.
const dkimPublicKey =
"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxES3RTDdoDUcyrIFzApJx9Vkd89Sma86iSHn8Uz" +
"QRevFI69jNRSuqkOZfQQ0h+fK+Fh7DNz8QznLpSh6QBjOHEAfZVj/+eK1L4sbkULOSEvy1njCb7U+gkQ3D6" +
"0j35pKBefd1gkDoH5V/2E2qnld89ECwTaklWLrTYLAgHfSAj/A01JDQpvxCRneFNHHaZG+8LbPi2wZKgwmb" +
"97HWyPu9KokiKrnYg6tfQzLFVj5PqDRoqv4QCv9B/mXcnIRALSV0BPuLKBF4rsCEo0+FoYrcjbF+LIZzOw/" +
"cPbOCPGTXJPh0rDZjgpLO7l+A+hRxaqh4OLd+DrinY7VjPhcKo57dwIDAQAB";
const dkimPublicKeyHash = ethers.solidityPackedKeccak256(
["string"],
[dkimPublicKey],
);
const dkimRegistryAddress = await mockDkimRegistry.getAddress();
const zeroSeconds = 0;
const addRecoveryHashCalldata = recoveryPlugin.interface.encodeFunctionData(
"configureRecovery",
[
safeECDSAPluginAddress,
ownerAddress,
recoveryHash,
dkimPublicKeyHash,
dkimRegistryAddress,
zeroSeconds,
],
);
let safeEcdsaPlugin = SafeECDSAPlugin__factory.connect(
safeProxyAddress,
owner,
);
let userOpCallData = safeEcdsaPlugin.interface.encodeFunctionData(
"execTransaction",
[await recoveryPlugin.getAddress(), "0x00", addRecoveryHashCalldata],
);
const factoryParams = {
factory: "0x",
factoryData: "0x",
};
const dummySignature = await owner.signMessage("dummy sig");
// Send userOp to add recovery account
await createAndSendUserOpWithEcdsaSig(
provider,
bundlerProvider,
owner,
safeProxyAddress,
factoryParams,
userOpCallData,
entryPointAddress,
dummySignature,
);
const recoveryRequest =
await recoveryPlugin.recoveryRequests(safeProxyAddress);
expect(recoveryRequest[0]).to.equal(recoveryHash);
expect(recoveryRequest[1]).to.equal(dkimPublicKeyHash);
// Construct userOp to reset ecdsa address
const newEcdsaPluginSigner = ethers.Wallet.createRandom().connect(provider);
const a: [bigint, bigint] = [BigInt(0), BigInt(0)];
const b: [[bigint, bigint], [bigint, bigint]] = [
[BigInt(0), BigInt(0)],
[BigInt(0), BigInt(0)],
];
const c: [bigint, bigint] = [BigInt(0), BigInt(0)];
const emailDomain = "google.com";
// set custom delay
const oneSecond = 1;
await receiptOf(
executeContractCallWithSigners(
safe,
recoveryPlugin,
"setRecoveryDelay",
[oneSecond],
// @ts-expect-error owner doesn't have all properties for some reason
[owner],
),
);
const initiateRecoveryCalldata =
recoveryPlugin.interface.encodeFunctionData("initiateRecovery", [
safeProxyAddress,
await newEcdsaPluginSigner.getAddress(),
emailDomain,
a,
b,
c,
]);
const simpleAccount = SimpleAccount__factory.createInterface();
userOpCallData = simpleAccount.encodeFunctionData("execute", [
await recoveryPlugin.getAddress(),
"0x00",
initiateRecoveryCalldata,
]);
// Native tokens for the pre-fund
await receiptOf(
admin.sendTransaction({
to: otherSimpleAccountAddress,
value: ethers.parseEther("10"),
}),
);
// Send userOp to initiate the recovery process
// Note: Failing with an unrecognised custom error when attempting to first construct
// the init code and pass it into the recovery user op, so deploying account
// first and using empty init code here
await createAndSendUserOpWithEcdsaSig(
provider,
bundlerProvider,
otherAccount,
otherSimpleAccountAddress,
factoryParams,
userOpCallData,
entryPointAddress,
dummySignature,
);
// send two transactions to progress time enough for delay
await receiptOf(
admin.sendTransaction({
to: ethers.Wallet.createRandom().address,
value: ethers.parseEther("1"),
}),
);
await receiptOf(
admin.sendTransaction({
to: ethers.Wallet.createRandom().address,
value: ethers.parseEther("1"),
}),
);
const recoverAccountCalldata = recoveryPlugin.interface.encodeFunctionData(
"recoverPlugin",
[safeProxyAddress, safeECDSAPluginAddress],
);
userOpCallData = simpleAccount.encodeFunctionData("execute", [
await recoveryPlugin.getAddress(),
"0x00",
recoverAccountCalldata,
]);
// Send userOp to recover plugin
await createAndSendUserOpWithEcdsaSig(
provider,
bundlerProvider,
otherAccount,
otherSimpleAccountAddress,
factoryParams,
userOpCallData,
entryPointAddress,
dummySignature,
);
const newOwner = await safeEcdsaPlugin.ecdsaOwnerStorage(safeProxyAddress);
expect(newOwner).to.equal(newEcdsaPluginSigner.address);
// Send userOp with new owner
const recipientAddress = ethers.Wallet.createRandom().address;
const transferAmount = ethers.parseEther("1");
userOpCallData = safeEcdsaPlugin.interface.encodeFunctionData(
"execTransaction",
[recipientAddress, transferAmount, "0x00"],
);
const recipientBalanceBefore = await provider.getBalance(recipientAddress);
await createAndSendUserOpWithEcdsaSig(
provider,
bundlerProvider,
newEcdsaPluginSigner,
safeProxyAddress,
factoryParams,
userOpCallData,
entryPointAddress,
dummySignature,
);
const recipientBalanceAfter = await provider.getBalance(recipientAddress);
const expectedRecipientBalance = recipientBalanceBefore + transferAmount;
expect(recipientBalanceAfter).to.equal(expectedRecipientBalance);
});
});
Reference in New Issue View Git Blame Copy Permalink