Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CERT 8125 Support Multisig Address Check #83

Merged
merged 7 commits into from
Feb 12, 2025
Merged

CERT 8125 Support Multisig Address Check #83

merged 7 commits into from
Feb 12, 2025

Conversation

nivcertora
Copy link
Contributor

@nivcertora nivcertora commented Feb 9, 2025
edited
Loading

https://certora.atlassian.net/browse/CERT-8125

PR Message
Summary:

This PR introduces multisig support by adding a new module in src/quorum/apis/multisig/ with a SafeAPI class to interact with the Safe Multisig API.
The multisig integration is incorporated into the PriceFeedCheck class so that multisig wallet data is verified alongside other price feed providers.
A new test (test_mutisig_api.py) has been added to ensure that multisig data is correctly retrieved and parsed.

Key Changes:
Added src/quorum/apis/multisig/safe_api.py with a MultisigData model and SafeAPI class (using a singleton decorator).
Modified src/quorum/checks/price_feed.py to:
Instantiate SafeAPI and query multisig data for addresses.
Append multisig results to the list of verified variables.
Print a multisig-specific summary of validation results.

@nivcertora nivcertora self-assigned this Feb 9, 2025
@nivcertora nivcertora requested a review from a team as a code owner February 9, 2025 15:30
liav-certora
liav-certora previously approved these changes Feb 11, 2025
View reviewed changes
Copy link
Contributor

@liav-certora liav-certora left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks great.

yoav-el-certora
yoav-el-certora reviewed Feb 11, 2025
View reviewed changes
src/quorum/apis/multisig/safe_api.py
if not response.ok:
return None
data = response.json()
return MultisigData(**data)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can we ensure data format wont change?
Do we want to try/catch here or we don't expect this to happen?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can we ensure data format wont change?
Not really it is dependant on their API

Do we want to try/catch here or we don't expect this to happen?
It would be better to get the validation error and adjust the API to make sure we return the necessary data

yoav-el-certora
yoav-el-certora reviewed Feb 11, 2025
View reviewed changes
src/quorum/checks/price_feed.py
@@ -106,14 +109,20 @@ def verify_price_feed(self) -> None:
elif res := self.__check_address(address, self.token_providers):
verified_variables.append(res.price_feed.model_dump())
verified_tokens.add(res)
elif res := self.multisig_api.get_multisig_info(address):
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So our only way to understand if this is multisig, is to try and fetch the data from SafeAPI, and in case of failures/success we move forward?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yep, if the API return a valid obj then this address is a multisig else its not

yoav-el-certora
yoav-el-certora reviewed Feb 11, 2025
View reviewed changes
src/quorum/tests/test_mutisig_api.py
from quorum.apis.multisig.safe_api import SafeAPI


def test_safe_api():
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

As a continuation for the comment above, can we verify that the SafeAPI return None for non-multisig addresses?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done

yoav-el-certora
yoav-el-certora previously approved these changes Feb 11, 2025
View reviewed changes
Copy link
Contributor

@yoav-el-certora yoav-el-certora left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Straight forward implementation, mainly some questions or small improvements.
Please add another small test case as described in comments.

@nivcertora nivcertora merged commit eb535a3 into main Feb 12, 2025
3 checks passed
@nivcertora nivcertora deleted the niv/CERT-8125-Add-Multisig-Check branch February 12, 2025 08:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@yoav-el-certora yoav-el-certora yoav-el-certora approved these changes

@liav-certora liav-certora Awaiting requested review from liav-certora

Assignees

@nivcertora nivcertora

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@nivcertora @liav-certora @yoav-el-certora