[EPIC]: Olympus (0.52)

[tac0turtle]

This issue is meant to describe components that needs to undergo QA before the final release of the Olympus.

Major Changes

• unordered tx
• creation of x/accounts
• x/staking
  • consensus key rotation
• x/auth
  • non atomic multimsg
  • removal of account creation for receiver of an action
  • x/tx - x/auth merger
• creation of x/protocolpool
• x/gov
  • proposal types
• x/mint
  • mint inflation function

QA Breakdown

• Audit
  • Audit Baseapp (@JulianToledano, @julienrbrt, @tac0turtle)
    • refactor(baseapp): audit QA v0.52 #21515
    • ok
  • Audit Types (@julienrbrt, @akhilkumarpilli)
    • refactor(types): audit QA #21355
    • ok
  • Audit Auth (@sontrinh16, @tac0turtle)
    • refactor(x/auth): audit x/auth changes #21146
    • ok
  • Audit Authz (@sontrinh16, @julienrbrt, @kocubinski)
    • refactor(x/authz): audit x/authz changes #21251
    • fix(x/authz): bring back msg response in DispatchActions #21044
    • docs(x/authz): update changelog to include API breaking events change #21522
  • Audit Bank (@facundomedica ✅, @akhilkumarpilli)
    • refactor(bank): audit/QA changes #21048
    • refactor(x/bank): audit QA #21459
  • Audit Circuit @facundomedica ✅,@lucaslopezf
    • refactor(x/circuit): audit QA #21370
  • Audit Consensus @facundomedica ✅, @JulianToledano
    • refactor(x/consensus): audit QA #21151
    • refactor(x/consensus): audit QA v0.52 #21416
  • Audit Distribution @facundomedica ✅, @lucaslopezf
    • refactor(x/distribution): audit QA #21316
  • Audit Epochs @facundomedica ✅
  • Audit Protocol Pool (@testinginprod, @lucaslopezf)
    • refactor(x/protocolpool): audit QA #21337
  • Audit Staking (@julienrbrt, @raynaudoe ✅)
    • docs: Fix old links in x/staking #21277
    • refactor(staking): check for nil ptrs after GetCachedValue() #21300
  • Audit Gov (@sontrinh16, @julienrbrt)
    • refactor(x/gov): Audit gov changes #21454
    • [x]
  • Audit Slashing (@JulianToledano, @akhilkumarpilli )
    • refactor(x/slashing): audit x/slashing changes #21270
    • refactor(x/slashing): audit QA #21477
  • Audit server (@hieuvubk, @lucaslopezf, @julienrbrt ✅)
    • refactor(server): audit QA #21442
  • Audit simapp (@hieuvubk, @julienrbrt)
  • refactor(simapp,runtime): audit changes #21310
  • refactor(simapp): Audit simapp #21311
  • Audit Runtime (@sontrinh16, @julienrbrt)
    • refactor(runtime): Audit runtime changes #21309
    • refactor(simapp,runtime): audit changes #21310
  • Audit mint (@testinginprod, @JulianToledano)
    • refactor(x/mint): v0.52 audit x/mint #21301
  • Audit gentutil (@julienrbrt, @kocubinski)
    • docs(x/genutil): audit genutil #21471 / refactor: clarify usage of genesis.TxHandler in v1 vs v2 #21213
  • Audit feegrant (@raynaudoe ✅, @JulianToledano)
    • docs(x/feegrant): Update readme #21364
    • refactor(x/feegrant)!: audit QA v0.52 #21377
• Release Alpha
• Public testnet
• v0.52 Documentation #21429
  • Upgrade Documentation
  • Changelog review (@julienrbrt)

Command to use to see the diffs
git difftool release/v0.50.x release/v0.52.x -- x/bank

Audit Template

please copy to a markdown to follow while you walk through the code
2 people should be assigned to each section

- [ ] API audit 
    - spec audit: check if the spec is complete.
    - Are Msg and Query methods and types well-named and organized?
    - Is everything well documented (inline godoc as well as [`/spec/` folder](https://github.com/cosmos/cosmos-sdk/blob/master/docs/spec/SPEC-SPEC.md) in module directory)
    - Document where panics became errors
    - check the proto definition - make sure everything is in accordance to ADR-30 (at least 1 person, TODO assignee)
      - Check new fields and endpoints have the Since annotations
      - Check api breaks (ref: https://github.com/cosmos/cosmos-sdk/issues/20905)
- [ ] Completeness audit, fully implemented with tests
    - [ ] Genesis import and export of all state
    - [ ] Query services
    - [ ] CLI methods
    - [ ] All necessary migration scripts are present (if this is an upgrade of existing module)
- [ ] State machine audit
    - [ ] Read through MsgServer code and verify correctness upon visual inspection
    - [ ] Ensure all state machine code which could be confusing is properly commented
    - [ ] Make sure state machine logic matches Msg method documentation
    - [ ] Ensure that all state machine edge cases are covered with tests and that test coverage is sufficient (at least 90% coverage on module code)
    - [ ] Assess potential threats for each method including spam attacks and ensure that threats have been addressed sufficiently. This should be done by writing up threat assessment for each method. Specifically we should be paying attention to: 
      - [ ] algorithmic complexity and places this could be exploited (ex. nested `for` loops)
      - [ ] charging gas complex computation (ex. `for` loops)
      - [ ] storage is safe (we don't pollute the state).
    - [ ] Assess potential risks of any new third party dependencies and decide whether a dependency audit is needed
    - [ ] Check correctness of simulation implementation if any
- [ ] Audit Changelog against commit log, ensuring all breaking changes, bug fixes, and improvements are properly documented.
- [ ] When auditing modules, check main changelog vs new changelog

If changes are needed or there is code that can be cleaned up, please feel free to make the needed changes

[sontrinh16]

is anybody doing auth module ?

[tac0turtle]

is anybody doing auth module ?

Go for it