Skip to content

feat(tip-1004): add EIP-2612 permit to TIP-20 precompile #2748

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
howydev merged 19 commits into from
Feb 23, 2026
Merged

feat(tip-1004): add EIP-2612 permit to TIP-20 precompile #2748

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
19 commits
Select commit Hold shift + click to select a range
9f72cba
feat(tip-1004): add EIP-2612 permit to TIP-20 precompile
howydev Feb 17, 2026
3806804
chore: lint
howydev Feb 18, 2026
3b99986
chore: rename permitNonces -> nonce
howydev Feb 18, 2026
d65a262
chore: rename to permit_nonces for clarity
howydev Feb 18, 2026
e5eaac9
feat: add unit, invariant tests
howydev Feb 18, 2026
f0b30dc
fix: update storage tests to use permit_nonces field name
howydev Feb 18, 2026
1cf008a
chore: disable permit tests for tempo for now
howydev Feb 18, 2026
07a004d
fix: use vm.assume in invariant handler instead of vm.skip
howydev Feb 18, 2026
8df0c39
chore: lint sol
howydev Feb 18, 2026
84212dc
Merge branch 'main' into howy/add-permit
howydev Feb 18, 2026
a7ac9b6
fix: regenerate tip20.layout.json for storage layout test
howydev Feb 18, 2026
4ecdf72
fix: restore tip20.layout.json from main, rename nonces -> permitNonces
howydev Feb 18, 2026
bd6fb4e
fix: review fixes
howydev Feb 18, 2026
fdb2fc7
fix: test fail, further cleanup
howydev Feb 18, 2026
92db261
chore: review fixes
howydev Feb 18, 2026
413d491
fix: ecdsa sig replayability
howydev Feb 18, 2026
1b9add1
Update tips/ref-impls/test/invariants/TIP20.t.sol
howydev Feb 19, 2026
e13c21e
fix: unchecked seed++ in _selectActorKeyExcluding to prevent overflow
howydev Feb 19, 2026
d612cb7
fix(tip-1004): reject zero-address ecrecover in permit, add edge-case…
howydev Feb 23, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
17 changes: 17 additions & 0 deletions crates/contracts/src/precompiles/tip20.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -85,6 +85,11 @@ crate::sol! {
/// @return The burn blocked role identifier
function BURN_BLOCKED_ROLE() external view returns (bytes32);

// EIP-2612 Permit Functions
function permit(address owner, address spender, uint256 value, uint256 deadline, uint8 v, bytes32 r, bytes32 s) external;
function nonces(address owner) external view returns (uint256);
function DOMAIN_SEPARATOR() external view returns (bytes32);

struct UserRewardInfo {
address rewardRecipient;
uint256 rewardPerToken;
Expand Down Expand Up @@ -135,6 +140,8 @@ crate::sol! {
error InvalidToken();
error Uninitialized();
error InvalidTransferPolicyId();
error PermitExpired();
error InvalidSignature();
}
}

Expand Down Expand Up @@ -244,4 +251,14 @@ impl TIP20Error {
pub const fn uninitialized() -> Self {
Self::Uninitialized(ITIP20::Uninitialized {})
}

/// Error when permit signature has expired (block.timestamp > deadline)
pub const fn permit_expired() -> Self {
Self::PermitExpired(ITIP20::PermitExpired {})
}

/// Error when permit signature is invalid
pub const fn invalid_signature() -> Self {
Self::InvalidSignature(ITIP20::InvalidSignature {})
}
}
82 changes: 77 additions & 5 deletions crates/precompiles/src/tip20/dispatch.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,9 +4,12 @@ use crate::{
input_cost, metadata, mutate, mutate_void,
storage::ContractStorage,
tip20::{ITIP20, TIP20Token},
view,
unknown_selector, view,
};
use alloy::{
primitives::Address,
sol_types::{SolCall, SolInterface},
};
use alloy::{primitives::Address, sol_types::SolInterface};
use revm::precompile::{PrecompileError, PrecompileResult};
use tempo_contracts::precompiles::{IRolesAuth::IRolesAuthCalls, ITIP20::ITIP20Calls, TIP20Error};

Expand Down Expand Up @@ -164,6 +167,28 @@ impl Precompile for TIP20Token {
view(call, |c| self.get_pending_rewards(c.account))
}

TIP20Call::TIP20(ITIP20Calls::permit(call)) => {
if !self.storage.spec().is_t2() {
return unknown_selector(ITIP20::permitCall::SELECTOR, self.storage.gas_used());
}
mutate_void(call, msg_sender, |_s, c| self.permit(c))
}
TIP20Call::TIP20(ITIP20Calls::nonces(call)) => {
if !self.storage.spec().is_t2() {
return unknown_selector(ITIP20::noncesCall::SELECTOR, self.storage.gas_used());
}
view(call, |c| self.nonces(c))
}
TIP20Call::TIP20(ITIP20Calls::DOMAIN_SEPARATOR(call)) => {
if !self.storage.spec().is_t2() {
return unknown_selector(
ITIP20::DOMAIN_SEPARATORCall::SELECTOR,
self.storage.gas_used(),
);
}
view(call, |_| self.domain_separator())
}

// RolesAuth functions
TIP20Call::RolesAuth(IRolesAuthCalls::hasRole(call)) => {
view(call, |c| self.has_role(c))
Expand Down Expand Up @@ -198,10 +223,12 @@ mod tests {
};
use alloy::{
primitives::{Bytes, U256, address},
sol_types::{SolCall, SolInterface, SolValue},
sol_types::{SolCall, SolError, SolInterface, SolValue},
};
use tempo_chainspec::hardfork::TempoHardfork;
use tempo_contracts::precompiles::{IRolesAuth, RolesAuthError, TIP20Error};
use tempo_contracts::precompiles::{
IRolesAuth, RolesAuthError, TIP20Error, UnknownFunctionSelector,
};

#[test]
fn test_function_selector_dispatch() -> eyre::Result<()> {
Expand Down Expand Up @@ -720,7 +747,9 @@ mod tests {
use crate::test_util::{assert_full_coverage, check_selector_coverage};
use tempo_contracts::precompiles::{IRolesAuth::IRolesAuthCalls, ITIP20::ITIP20Calls};

let (mut storage, admin) = setup_storage();
// Use T2 hardfork so T2-gated selectors (permit, nonces, DOMAIN_SEPARATOR) are active
let mut storage = HashMapStorageProvider::new_with_spec(1, TempoHardfork::T2);
let admin = Address::random();

StorageCtx::enter(&mut storage, || {
let mut token = TIP20Setup::create("Test", "TST", admin).apply()?;
Expand All @@ -741,4 +770,47 @@ mod tests {
Ok(())
})
}

#[test]
fn test_permit_selectors_gated_behind_t2() -> eyre::Result<()> {
// Pre-T2: permit/nonces/DOMAIN_SEPARATOR should return unknown selector
let mut storage = HashMapStorageProvider::new_with_spec(1, TempoHardfork::T1);
let admin = Address::random();

StorageCtx::enter(&mut storage, || {
let mut token = TIP20Setup::create("Test", "TST", admin).apply()?;

// Test permit selector is gated
let permit_calldata = ITIP20::permitCall {
owner: Address::random(),
spender: Address::random(),
value: U256::ZERO,
deadline: U256::MAX,
v: 27,
r: alloy::primitives::B256::ZERO,
s: alloy::primitives::B256::ZERO,
}
.abi_encode();
let result = token.call(&permit_calldata, admin)?;
assert!(result.reverted);
assert!(UnknownFunctionSelector::abi_decode(&result.bytes).is_ok());

// Test nonces selector is gated
let nonces_calldata = ITIP20::noncesCall {
owner: Address::random(),
}
.abi_encode();
let result = token.call(&nonces_calldata, admin)?;
assert!(result.reverted);
assert!(UnknownFunctionSelector::abi_decode(&result.bytes).is_ok());

// Test DOMAIN_SEPARATOR selector is gated
let ds_calldata = ITIP20::DOMAIN_SEPARATORCall {}.abi_encode();
let result = token.call(&ds_calldata, admin)?;
assert!(result.reverted);
assert!(UnknownFunctionSelector::abi_decode(&result.bytes).is_ok());

Ok(())
})
}
}
Loading
Loading