GitBross Home Explore Help
Register Sign In
sol_Bo8des9o
/
openzeppelin-contracts
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: audit-v4.9
Branches Tags
openzeppelin-co...
/
test
/
token
/
ERC20
/
utils
/
SafeERC20.test.js

SafeERC20.test.js 13 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350 
  1. const { constants, expectEvent, expectRevert } = require('@openzeppelin/test-helpers');
    2. 

  2. 

  3. const SafeERC20 = artifacts.require('$SafeERC20');
    4. 

  4. const ERC20ReturnFalseMock = artifacts.require('$ERC20ReturnFalseMock');
    5. 

  5. const ERC20ReturnTrueMock = artifacts.require('$ERC20'); // default implementation returns true
    6. 

  6. const ERC20NoReturnMock = artifacts.require('$ERC20NoReturnMock');
    7. 

  7. const ERC20PermitNoRevertMock = artifacts.require('$ERC20PermitNoRevertMock');
    8. 

  8. const ERC20ForceApproveMock = artifacts.require('$ERC20ForceApproveMock');
    9. 

  9. 

  10. const { getDomain, domainType, Permit } = require('../../../helpers/eip712');
    11. 

  11. 

  12. const { fromRpcSig } = require('ethereumjs-util');
    13. 

  13. const ethSigUtil = require('eth-sig-util');
    14. 

  14. const Wallet = require('ethereumjs-wallet').default;
    15. 

  15. 

  16. const name = 'ERC20Mock';
    17. 

  17. const symbol = 'ERC20Mock';
    18. 

  18. 

  19. contract('SafeERC20', function (accounts) {
    20. 

  20.   const [hasNoCode] = accounts;
    21. 

  21. 

  22.   before(async function () {
    23. 

  23.     this.mock = await SafeERC20.new();
    24. 

  24.   });
    25. 

  25. 

  26.   describe('with address that has no contract code', function () {
    27. 

  27.     beforeEach(async function () {
    28. 

  28.       this.token = { address: hasNoCode };
    29. 

  29.     });
    30. 

  30. 

  31.     shouldRevertOnAllCalls(accounts, 'Address: call to non-contract');
    32. 

  32.   });
    33. 

  33. 

  34.   describe('with token that returns false on all calls', function () {
    35. 

  35.     beforeEach(async function () {
    36. 

  36.       this.token = await ERC20ReturnFalseMock.new(name, symbol);
    37. 

  37.     });
    38. 

  38. 

  39.     shouldRevertOnAllCalls(accounts, 'SafeERC20: ERC20 operation did not succeed');
    40. 

  40.   });
    41. 

  41. 

  42.   describe('with token that returns true on all calls', function () {
    43. 

  43.     beforeEach(async function () {
    44. 

  44.       this.token = await ERC20ReturnTrueMock.new(name, symbol);
    45. 

  45.     });
    46. 

  46. 

  47.     shouldOnlyRevertOnErrors(accounts);
    48. 

  48.   });
    49. 

  49. 

  50.   describe('with token that returns no boolean values', function () {
    51. 

  51.     beforeEach(async function () {
    52. 

  52.       this.token = await ERC20NoReturnMock.new(name, symbol);
    53. 

  53.     });
    54. 

  54. 

  55.     shouldOnlyRevertOnErrors(accounts);
    56. 

  56.   });
    57. 

  57. 

  58.   describe("with token that doesn't revert on invalid permit", function () {
    59. 

  59.     const wallet = Wallet.generate();
    60. 

  60.     const owner = wallet.getAddressString();
    61. 

  61.     const spender = hasNoCode;
    62. 

  62. 

  63.     beforeEach(async function () {
    64. 

  64.       this.token = await ERC20PermitNoRevertMock.new(name, symbol, name);
    65. 

  65. 

  66.       this.data = await getDomain(this.token).then(domain => ({
    67. 

  67.         primaryType: 'Permit',
    68. 

  68.         types: { EIP712Domain: domainType(domain), Permit },
    69. 

  69.         domain,
    70. 

  70.         message: { owner, spender, value: '42', nonce: '0', deadline: constants.MAX_UINT256 },
    71. 

  71.       }));
    72. 

  72. 

  73.       this.signature = fromRpcSig(ethSigUtil.signTypedMessage(wallet.getPrivateKey(), { data: this.data }));
    74. 

  74.     });
    75. 

  75. 

  76.     it('accepts owner signature', async function () {
    77. 

  77.       expect(await this.token.nonces(owner)).to.be.bignumber.equal('0');
    78. 

  78.       expect(await this.token.allowance(owner, spender)).to.be.bignumber.equal('0');
    79. 

  79. 

  80.       await this.mock.$safePermit(
    81. 

  81.         this.token.address,
    82. 

  82.         this.data.message.owner,
    83. 

  83.         this.data.message.spender,
    84. 

  84.         this.data.message.value,
    85. 

  85.         this.data.message.deadline,
    86. 

  86.         this.signature.v,
    87. 

  87.         this.signature.r,
    88. 

  88.         this.signature.s,
    89. 

  89.       );
    90. 

  90. 

  91.       expect(await this.token.nonces(owner)).to.be.bignumber.equal('1');
    92. 

  92.       expect(await this.token.allowance(owner, spender)).to.be.bignumber.equal(this.data.message.value);
    93. 

  93.     });
    94. 

  94. 

  95.     it('revert on reused signature', async function () {
    96. 

  96.       expect(await this.token.nonces(owner)).to.be.bignumber.equal('0');
    97. 

  97.       // use valid signature and consume nounce
    98. 

  98.       await this.mock.$safePermit(
    99. 

  99.         this.token.address,
    100. 

  100.         this.data.message.owner,
    101. 

  101.         this.data.message.spender,
    102. 

  102.         this.data.message.value,
    103. 

  103.         this.data.message.deadline,
    104. 

  104.         this.signature.v,
    105. 

  105.         this.signature.r,
    106. 

  106.         this.signature.s,
    107. 

  107.       );
    108. 

  108.       expect(await this.token.nonces(owner)).to.be.bignumber.equal('1');
    109. 

  109.       // invalid call does not revert for this token implementation
    110. 

  110.       await this.token.permit(
    111. 

  111.         this.data.message.owner,
    112. 

  112.         this.data.message.spender,
    113. 

  113.         this.data.message.value,
    114. 

  114.         this.data.message.deadline,
    115. 

  115.         this.signature.v,
    116. 

  116.         this.signature.r,
    117. 

  117.         this.signature.s,
    118. 

  118.       );
    119. 

  119.       expect(await this.token.nonces(owner)).to.be.bignumber.equal('1');
    120. 

  120.       // invalid call revert when called through the SafeERC20 library
    121. 

  121.       await expectRevert(
    122. 

  122.         this.mock.$safePermit(
    123. 

  123.           this.token.address,
    124. 

  124.           this.data.message.owner,
    125. 

  125.           this.data.message.spender,
    126. 

  126.           this.data.message.value,
    127. 

  127.           this.data.message.deadline,
    128. 

  128.           this.signature.v,
    129. 

  129.           this.signature.r,
    130. 

  130.           this.signature.s,
    131. 

  131.         ),
    132. 

  132.         'SafeERC20: permit did not succeed',
    133. 

  133.       );
    134. 

  134.       expect(await this.token.nonces(owner)).to.be.bignumber.equal('1');
    135. 

  135.     });
    136. 

  136. 

  137.     it('revert on invalid signature', async function () {
    138. 

  138.       // signature that is not valid for owner
    139. 

  139.       const invalidSignature = {
    140. 

  140.         v: 27,
    141. 

  141.         r: '0x71753dc5ecb5b4bfc0e3bc530d79ce5988760ed3f3a234c86a5546491f540775',
    142. 

  142.         s: '0x0049cedee5aed990aabed5ad6a9f6e3c565b63379894b5fa8b512eb2b79e485d',
    143. 

  143.       };
    144. 

  144. 

  145.       // invalid call does not revert for this token implementation
    146. 

  146.       await this.token.permit(
    147. 

  147.         this.data.message.owner,
    148. 

  148.         this.data.message.spender,
    149. 

  149.         this.data.message.value,
    150. 

  150.         this.data.message.deadline,
    151. 

  151.         invalidSignature.v,
    152. 

  152.         invalidSignature.r,
    153. 

  153.         invalidSignature.s,
    154. 

  154.       );
    155. 

  155. 

  156.       // invalid call revert when called through the SafeERC20 library
    157. 

  157.       await expectRevert(
    158. 

  158.         this.mock.$safePermit(
    159. 

  159.           this.token.address,
    160. 

  160.           this.data.message.owner,
    161. 

  161.           this.data.message.spender,
    162. 

  162.           this.data.message.value,
    163. 

  163.           this.data.message.deadline,
    164. 

  164.           invalidSignature.v,
    165. 

  165.           invalidSignature.r,
    166. 

  166.           invalidSignature.s,
    167. 

  167.         ),
    168. 

  168.         'SafeERC20: permit did not succeed',
    169. 

  169.       );
    170. 

  170.     });
    171. 

  171.   });
    172. 

  172. 

  173.   describe('with usdt approval beaviour', function () {
    174. 

  174.     const spender = hasNoCode;
    175. 

  175. 

  176.     beforeEach(async function () {
    177. 

  177.       this.token = await ERC20ForceApproveMock.new(name, symbol);
    178. 

  178.     });
    179. 

  179. 

  180.     describe('with initial approval', function () {
    181. 

  181.       beforeEach(async function () {
    182. 

  182.         await this.token.$_approve(this.mock.address, spender, 100);
    183. 

  183.       });
    184. 

  184. 

  185.       it('safeApprove fails to update approval to non-zero', async function () {
    186. 

  186.         await expectRevert(
    187. 

  187.           this.mock.$safeApprove(this.token.address, spender, 200),
    188. 

  188.           'SafeERC20: approve from non-zero to non-zero allowance',
    189. 

  189.         );
    190. 

  190.       });
    191. 

  191. 

  192.       it('safeApprove can update approval to zero', async function () {
    193. 

  193.         await this.mock.$safeApprove(this.token.address, spender, 0);
    194. 

  194.       });
    195. 

  195. 

  196.       it('safeApprove can increase approval', async function () {
    197. 

  197.         await expectRevert(this.mock.$safeIncreaseAllowance(this.token.address, spender, 10), 'USDT approval failure');
    198. 

  198.       });
    199. 

  199. 

  200.       it('safeApprove can decrease approval', async function () {
    201. 

  201.         await expectRevert(this.mock.$safeDecreaseAllowance(this.token.address, spender, 10), 'USDT approval failure');
    202. 

  202.       });
    203. 

  203. 

  204.       it('forceApprove works', async function () {
    205. 

  205.         await this.mock.$forceApprove(this.token.address, spender, 200);
    206. 

  206.       });
    207. 

  207.     });
    208. 

  208.   });
    209. 

  209. });
    210. 

  210. 

  211. function shouldRevertOnAllCalls([receiver, spender], reason) {
    212. 

  212.   it('reverts on transfer', async function () {
    213. 

  213.     await expectRevert(this.mock.$safeTransfer(this.token.address, receiver, 0), reason);
    214. 

  214.   });
    215. 

  215. 

  216.   it('reverts on transferFrom', async function () {
    217. 

  217.     await expectRevert(this.mock.$safeTransferFrom(this.token.address, this.mock.address, receiver, 0), reason);
    218. 

  218.   });
    219. 

  219. 

  220.   it('reverts on approve', async function () {
    221. 

  221.     await expectRevert(this.mock.$safeApprove(this.token.address, spender, 0), reason);
    222. 

  222.   });
    223. 

  223. 

  224.   it('reverts on increaseAllowance', async function () {
    225. 

  225.     // [TODO] make sure it's reverting for the right reason
    226. 

  226.     await expectRevert.unspecified(this.mock.$safeIncreaseAllowance(this.token.address, spender, 0));
    227. 

  227.   });
    228. 

  228. 

  229.   it('reverts on decreaseAllowance', async function () {
    230. 

  230.     // [TODO] make sure it's reverting for the right reason
    231. 

  231.     await expectRevert.unspecified(this.mock.$safeDecreaseAllowance(this.token.address, spender, 0));
    232. 

  232.   });
    233. 

  233. 

  234.   it('reverts on forceApprove', async function () {
    235. 

  235.     await expectRevert(this.mock.$forceApprove(this.token.address, spender, 0), reason);
    236. 

  236.   });
    237. 

  237. }
    238. 

  238. 

  239. function shouldOnlyRevertOnErrors([owner, receiver, spender]) {
    240. 

  240.   describe('transfers', function () {
    241. 

  241.     beforeEach(async function () {
    242. 

  242.       await this.token.$_mint(owner, 100);
    243. 

  243.       await this.token.$_mint(this.mock.address, 100);
    244. 

  244.       await this.token.approve(this.mock.address, constants.MAX_UINT256, { from: owner });
    245. 

  245.     });
    246. 

  246. 

  247.     it("doesn't revert on transfer", async function () {
    248. 

  248.       const { tx } = await this.mock.$safeTransfer(this.token.address, receiver, 10);
    249. 

  249.       await expectEvent.inTransaction(tx, this.token, 'Transfer', {
    250. 

  250.         from: this.mock.address,
    251. 

  251.         to: receiver,
    252. 

  252.         value: '10',
    253. 

  253.       });
    254. 

  254.     });
    255. 

  255. 

  256.     it("doesn't revert on transferFrom", async function () {
    257. 

  257.       const { tx } = await this.mock.$safeTransferFrom(this.token.address, owner, receiver, 10);
    258. 

  258.       await expectEvent.inTransaction(tx, this.token, 'Transfer', {
    259. 

  259.         from: owner,
    260. 

  260.         to: receiver,
    261. 

  261.         value: '10',
    262. 

  262.       });
    263. 

  263.     });
    264. 

  264.   });
    265. 

  265. 

  266.   describe('approvals', function () {
    267. 

  267.     context('with zero allowance', function () {
    268. 

  268.       beforeEach(async function () {
    269. 

  269.         await this.token.$_approve(this.mock.address, spender, 0);
    270. 

  270.       });
    271. 

  271. 

  272.       it("doesn't revert when approving a non-zero allowance", async function () {
    273. 

  273.         await this.mock.$safeApprove(this.token.address, spender, 100);
    274. 

  274.         expect(await this.token.allowance(this.mock.address, spender)).to.be.bignumber.equal('100');
    275. 

  275.       });
    276. 

  276. 

  277.       it("doesn't revert when approving a zero allowance", async function () {
    278. 

  278.         await this.mock.$safeApprove(this.token.address, spender, 0);
    279. 

  279.         expect(await this.token.allowance(this.mock.address, spender)).to.be.bignumber.equal('0');
    280. 

  280.       });
    281. 

  281. 

  282.       it("doesn't revert when force approving a non-zero allowance", async function () {
    283. 

  283.         await this.mock.$forceApprove(this.token.address, spender, 100);
    284. 

  284.         expect(await this.token.allowance(this.mock.address, spender)).to.be.bignumber.equal('100');
    285. 

  285.       });
    286. 

  286. 

  287.       it("doesn't revert when force approving a zero allowance", async function () {
    288. 

  288.         await this.mock.$forceApprove(this.token.address, spender, 0);
    289. 

  289.         expect(await this.token.allowance(this.mock.address, spender)).to.be.bignumber.equal('0');
    290. 

  290.       });
    291. 

  291. 

  292.       it("doesn't revert when increasing the allowance", async function () {
    293. 

  293.         await this.mock.$safeIncreaseAllowance(this.token.address, spender, 10);
    294. 

  294.         expect(await this.token.allowance(this.mock.address, spender)).to.be.bignumber.equal('10');
    295. 

  295.       });
    296. 

  296. 

  297.       it('reverts when decreasing the allowance', async function () {
    298. 

  298.         await expectRevert(
    299. 

  299.           this.mock.$safeDecreaseAllowance(this.token.address, spender, 10),
    300. 

  300.           'SafeERC20: decreased allowance below zero',
    301. 

  301.         );
    302. 

  302.       });
    303. 

  303.     });
    304. 

  304. 

  305.     context('with non-zero allowance', function () {
    306. 

  306.       beforeEach(async function () {
    307. 

  307.         await this.token.$_approve(this.mock.address, spender, 100);
    308. 

  308.       });
    309. 

  309. 

  310.       it('reverts when approving a non-zero allowance', async function () {
    311. 

  311.         await expectRevert(
    312. 

  312.           this.mock.$safeApprove(this.token.address, spender, 20),
    313. 

  313.           'SafeERC20: approve from non-zero to non-zero allowance',
    314. 

  314.         );
    315. 

  315.       });
    316. 

  316. 

  317.       it("doesn't revert when approving a zero allowance", async function () {
    318. 

  318.         await this.mock.$safeApprove(this.token.address, spender, 0);
    319. 

  319.         expect(await this.token.allowance(this.mock.address, spender)).to.be.bignumber.equal('0');
    320. 

  320.       });
    321. 

  321. 

  322.       it("doesn't revert when force approving a non-zero allowance", async function () {
    323. 

  323.         await this.mock.$forceApprove(this.token.address, spender, 20);
    324. 

  324.         expect(await this.token.allowance(this.mock.address, spender)).to.be.bignumber.equal('20');
    325. 

  325.       });
    326. 

  326. 

  327.       it("doesn't revert when force approving a zero allowance", async function () {
    328. 

  328.         await this.mock.$forceApprove(this.token.address, spender, 0);
    329. 

  329.         expect(await this.token.allowance(this.mock.address, spender)).to.be.bignumber.equal('0');
    330. 

  330.       });
    331. 

  331. 

  332.       it("doesn't revert when increasing the allowance", async function () {
    333. 

  333.         await this.mock.$safeIncreaseAllowance(this.token.address, spender, 10);
    334. 

  334.         expect(await this.token.allowance(this.mock.address, spender)).to.be.bignumber.equal('110');
    335. 

  335.       });
    336. 

  336. 

  337.       it("doesn't revert when decreasing the allowance to a positive value", async function () {
    338. 

  338.         await this.mock.$safeDecreaseAllowance(this.token.address, spender, 50);
    339. 

  339.         expect(await this.token.allowance(this.mock.address, spender)).to.be.bignumber.equal('50');
    340. 

  340.       });
    341. 

  341. 

  342.       it('reverts when decreasing the allowance to a negative value', async function () {
    343. 

  343.         await expectRevert(
    344. 

  344.           this.mock.$safeDecreaseAllowance(this.token.address, spender, 200),
    345. 

  345.           'SafeERC20: decreased allowance below zero',
    346. 

  346.         );
    347. 

  347.       });
    348. 

  348.     });
    349. 

  349.   });
    350. 

  350. }
    351.