feat: lock token transfer and parameter module #3176
Conversation
github-actions
bot
added
🧾 package/realm
Codecov ReportAttention: Patch coverage is 📢 Thoughts on this report? Let us know! |
There was a problem hiding this comment.
Thank you for pushing this out 🙏
I think the direction is good, but I'd love to discuss more about some implementation details. I'm mostly worried about us having a temporary implementation detail as a permanent state of a core object (check comments).
Pinging @moul to give a review as well.
Please check the CI 🙏
| "gno.land/r/gov/dao/bridge" | ||
| ) | ||
|
|
||
| const lockSendKey = "lockSend.bool" |
There was a problem hiding this comment.
Nitpick: you can group these in a const block
| id := ProposeUnlockSend() | ||
| urequire.PanicsWithMessage( | ||
| t, | ||
| simpledao.ErrProposalNotAccepted.Error(), |
There was a problem hiding this comment.
Do you think we should standardize errors like these, to avoid having to import simpledao?
It would mean that the dao package would need to know about specific implementation details like errors, so I'm not sure if this is the way to go
cc @moul
| stdout '(0 uint64)' | ||
|
|
||
|
|
||
| ## vote unlock proposal with unrestricted account test1 |
There was a problem hiding this comment.
Which accounts are going to be unrestricted in the initial version of the chain?
| for _, param := range state.Params { | ||
| param.register(ctx, cfg.paramsKpr) | ||
| } | ||
| // The account keeper's initial genesis state must be set after genesis areccounts are created. |
| {key: "foo", kind: "bool", value: true}, | ||
| {key: "foo", kind: "bytes", value: []byte{0x48, 0x69, 0x21}}, | ||
| }, | ||
| /* |
| // Otherwise, we cannot verify the unrestricted address in the genesis state. | ||
|
|
||
| for _, addr := range data.Params.UnrestrictedAddrs { | ||
| acc := ak.GetAccount(ctx, addr) |
There was a problem hiding this comment.
There is tight coupling here. The account keeper must have a previously initialized account in order for us to modify it in another func
Can't we keep the store of unrestricted accounts somewhere, instead of keeping the Unrestricted information on the account itself?
My biggest concern is that we're coupling temporary logic (account balance transfer locks) into a structure that will be encoded and saved permanently to disk. Every time we use the account, even in 10 years, we will have to keep track of its "restricted state".
This is why I'm suggesting we go with an approach that isn't so coupled
| @@ -67,3 +70,41 @@ func (p Params) String() string { | |||
| sb.WriteString(fmt.Sprintf("SigVerifyCostSecp256k1: %d\n", p.SigVerifyCostSecp256k1)) | |||
| return sb.String() | |||
| } | |||
|
|
|||
| func (p Params) Validate() error { | |||
| if p.TxSigLimit == 0 { | |||
There was a problem hiding this comment.
All of these should verify <= 0, not just ==
| ok, err := ak.paramk.GetParams(ctx, ModuleName, "p", params) | ||
|
|
||
| if !ok { | ||
| panic("params key " + ModuleName + " does not exist") |
| TxSizeCostPerByte int64 `json:"tx_size_cost_per_byte" yaml:"tx_size_cost_per_byte"` | ||
| SigVerifyCostED25519 int64 `json:"sig_verify_cost_ed25519" yaml:"sig_verify_cost_ed25519"` | ||
| SigVerifyCostSecp256k1 int64 `json:"sig_verify_cost_secp256k1" yaml:"sig_verify_cost_secp256k1"` | ||
| UnrestrictedAddrs []crypto.Address `json:"unrestricted_addrs" yaml:"unrestricted_addrs"` |
There was a problem hiding this comment.
Just a note we don't initialize this new field in DefaultParams
| TxSizeCostPerByte int64 `json:"tx_size_cost_per_byte" yaml:"tx_size_cost_per_byte"` | ||
| SigVerifyCostED25519 int64 `json:"sig_verify_cost_ed25519" yaml:"sig_verify_cost_ed25519"` | ||
| SigVerifyCostSecp256k1 int64 `json:"sig_verify_cost_secp256k1" yaml:"sig_verify_cost_secp256k1"` | ||
| UnrestrictedAddrs []crypto.Address `json:"unrestricted_addrs" yaml:"unrestricted_addrs"` | ||
| } | ||
|
|
||
| // NewParams creates a new Params object |
Context for Locking Token Transfer
This feature allows us to lock token transfers, except for paying gas fees to add a package or call a contract. The restriction will be unlocked through GovDAO voting on a proposal.
We also want a few whitelisted, unrestricted accounts to vote on the proposal since a separate fee is required to initiate and vote on proposals.
This implementation manages the lock and unlock settings in r/sys/params, where we change the chain’s parameters. Calling lock or unlock will automatically submit a proposal to GovDAO. Once GovDAO votes and approves the proposal, the token
transfer restriction will be removed instantly.
All changes to parameters specified in r/sys/params must go through GovDAO voting.
Here are some implementation details
Main Idea Behind the Alternative Approach To implement parameter module ( Discussion)
Todo: update other params...
Contributors' checklist...