chore: Add scripts to replace SnapShotExecutor

Detoo · Detoo · commit 97b6d94be2a8 · 2025-05-17T16:32:35.000-07:00
diff --git a/scripts/yearnBorg.s.sol b/scripts/yearnBorg.s.sol
@@ -44,7 +44,7 @@ contract YearnBorgDeployScript is Script {
     uint256 snapShotWaitingPeriod = 3 days; // TODO Is it still necessary?
     uint256 snapShotCancelPeriod = 7 days;
     uint256 snapShotPendingProposalLimit = 3;
-    uint256 snapShotTtl = 30 days;
+    uint256 snapShotOracleTtl = 30 days;
     address oracle = 0xf00c0dE09574805389743391ada2A0259D6b7a00;
     
     SafeTxHelper safeTxHelper;
@@ -109,7 +109,7 @@ contract YearnBorgDeployScript is Script {
         // Create SnapShotExecutor
 
         executorAuth = new BorgAuth();
-        snapShotExecutor = new SnapShotExecutor(executorAuth, address(oracle), snapShotWaitingPeriod, snapShotCancelPeriod, snapShotPendingProposalLimit, snapShotTtl);
+        snapShotExecutor = new SnapShotExecutor(executorAuth, address(oracle), snapShotWaitingPeriod, snapShotCancelPeriod, snapShotPendingProposalLimit, snapShotOracleTtl);
 
         // Add modules
 
diff --git a/scripts/yearnBorgReplaceSnapShotExecutor.s.sol b/scripts/yearnBorgReplaceSnapShotExecutor.s.sol
@@ -0,0 +1,94 @@
+// SPDX-License-Identifier: AGPL-3.0-only
+pragma solidity 0.8.20;
+
+import {CommonBase} from "forge-std/Base.sol";
+import {Script} from "forge-std/Script.sol";
+import {StdChains} from "forge-std/StdChains.sol";
+import {StdCheatsSafe} from "forge-std/StdCheats.sol";
+import {StdUtils} from "forge-std/StdUtils.sol";
+import {console2} from "forge-std/console2.sol";
+import {ejectImplant} from "../src/implants/ejectImplant.sol";
+import {sudoImplant} from "../src/implants/sudoImplant.sol";
+import {BorgAuth} from "../src/libs/auth.sol";
+import {SnapShotExecutor} from "../src/libs/governance/snapShotExecutor.sol";
+import {IGnosisSafe} from "../test/libraries/safe.t.sol";
+
+contract YearnBorgReplaceSnapShotExecutorScript is Script {
+
+    // Warning: review and update the following before run
+
+    IGnosisSafe ychadSafe = IGnosisSafe(0xFEB4acf3df3cDEA7399794D0869ef76A6EfAff52); // ychad.eth
+
+    ejectImplant eject = ejectImplant(0xe44f5c9EAFB87731906AB87156E4F4cB3fa0Eb74);
+    sudoImplant sudo = sudoImplant(0x6766b727aa1489443b34A02ee89c34f39748600b);
+    SnapShotExecutor oldSnapShotExecutor = SnapShotExecutor(0x77691936fb6337d4B71dc62643b05b6bBE19285c);
+
+    // Configs: SnapShowExecutor
+    // Reuse the old one's parameters if we are just upgrading it to a newer version
+    uint256 snapShotWaitingPeriod = oldSnapShotExecutor.waitingPeriod();
+    uint256 snapShotCancelPeriod = oldSnapShotExecutor.proposalExpirySeconds();
+    uint256 snapShotPendingProposalLimit = oldSnapShotExecutor.pendingProposalLimit();
+    uint256 snapShotOracleTtl = oldSnapShotExecutor.oracleTtl();
+    address oracle = oldSnapShotExecutor.oracle();
+
+    BorgAuth executorAuth = oldSnapShotExecutor.AUTH();
+    BorgAuth implantAuth = eject.AUTH();
+
+    /// @dev For running from `forge script`. Provide the deployer private key through env var.
+    function run() public returns(SnapShotExecutor, bytes memory, bytes memory) {
+        return run(vm.envUint("DEPLOYER_PRIVATE_KEY"));
+    }
+
+    /// @dev For running in tests
+    function run(uint256 deployerPrivateKey) public returns(SnapShotExecutor, bytes memory, bytes memory) {
+        console2.log("Configs:");
+        console2.log("  Safe Multisig:", address(ychadSafe));
+        console2.log("  Eject Implant:", address(eject));
+        console2.log("  Sudo Implant:", address(sudo));
+        console2.log("  Old SnapShotExecutor:", address(oldSnapShotExecutor));
+
+        address deployerAddress = vm.addr(deployerPrivateKey);
+        console2.log("Deployer:", deployerAddress);
+
+        vm.startBroadcast(deployerPrivateKey);
+
+        // Deploy new SnapShotExecutor
+        SnapShotExecutor newSnapShotExecutor = new SnapShotExecutor(executorAuth, address(oracle), snapShotWaitingPeriod, snapShotCancelPeriod, snapShotPendingProposalLimit, snapShotOracleTtl);
+
+        vm.stopBroadcast();
+
+        console2.log("Deployed addresses:");
+        console2.log("  New SnapShotExecutor: ", address(newSnapShotExecutor));
+
+        // Generate the proposal calldata for old SnapShotExecutor to transfer its implant ownership to the new one.
+        // We can't just do it here. The proposal must go through the co-approval process to take effect.
+
+        bytes memory grantNewOwnerData = abi.encodeWithSelector(
+            implantAuth.updateRole.selector,
+            address(newSnapShotExecutor),
+            implantAuth.OWNER_ROLE()
+        );
+
+        bytes memory revokeOldOwnerData = abi.encodeWithSelector(
+            implantAuth.updateRole.selector,
+            address(oldSnapShotExecutor),
+            0
+        );
+
+        console2.log("Tx proposal for the old SnapShotExecutor:");
+        console2.log("  to:", address(implantAuth));
+        console2.log("  value: 0");
+        console2.log("  data:");
+        console2.logBytes(grantNewOwnerData);
+        console2.log("");
+
+        console2.log("Tx proposal for the new SnapShotExecutor:");
+        console2.log("  to:", address(implantAuth));
+        console2.log("  value: 0");
+        console2.log("  data:");
+        console2.logBytes(revokeOldOwnerData);
+        console2.log("");
+
+        return (newSnapShotExecutor, grantNewOwnerData, revokeOldOwnerData);
+    }
+}
diff --git a/test/yearnBorgReplaceSnapShotExecutor.t.sol b/test/yearnBorgReplaceSnapShotExecutor.t.sol
@@ -0,0 +1,76 @@
+// SPDX-License-Identifier: AGPL-3.0-only
+pragma solidity 0.8.20;
+
+import "forge-std/Test.sol";
+import {console2} from "forge-std/console2.sol";
+import {BorgAuth} from "../src/libs/auth.sol";
+import {SnapShotExecutor} from "../src/libs/governance/snapShotExecutor.sol";
+import {YearnBorgDeployScript} from "../scripts/yearnBorg.s.sol";
+import {YearnBorgAcceptanceTest} from "./yearnBorgAcceptance.t.sol";
+import {GnosisTransaction} from "../test/libraries/safe.t.sol";
+import {YearnBorgReplaceSnapShotExecutorScript} from "../scripts/yearnBorgReplaceSnapShotExecutor.s.sol";
+
+/// @dev Simulate replacing SnapShotExecutor of a normal Yearn BORG deployment. The Yearn BORG acceptance tests should still pass
+contract YearnBorgReplaceSnapShotExecutorTest is YearnBorgAcceptanceTest {
+    SnapShotExecutor oldSnapShotExecutor;
+
+    function setUp() public override {
+        // Assume Ethereum mainnet fork after block 22377182
+
+        // Simulate changing ychad.eth threshold and adding the test owner so we can run tests
+        vm.prank(address(ychadSafe));
+        ychadSafe.addOwnerWithThreshold(testSigner, 1);
+
+        // MetaLex to deploy new BORG contracts and generate corresponding Safe txs for ychad.eth
+        GnosisTransaction[] memory safeTxs;
+        (core, eject, sudo, oldSnapShotExecutor, safeTxs) = (new YearnBorgDeployScript()).run(testSignerPrivateKey);
+
+        // Simulate ychad.eth executing the provided Safe TXs (set guard & add module)
+        safeTxHelper.executeBatch(safeTxs);
+
+        // MetaLex to run SnapShotExecutor replacing script
+        bytes memory grantNewOwnerData;
+        bytes memory revokeOldOwnerData;
+        (snapShotExecutor, grantNewOwnerData, revokeOldOwnerData) = (new YearnBorgReplaceSnapShotExecutorScript()).run(testSignerPrivateKey);
+
+        BorgAuth implantAuth = eject.AUTH();
+
+        // Simulate proposing and executing the tx granting the new SnapShotExecutor as new owner
+        vm.prank(oracle);
+        bytes32 grantNewOwnerProposalId = oldSnapShotExecutor.propose(address(implantAuth), 0, grantNewOwnerData, "Grant new SnapShotExecutor as owner");
+        skip(oldSnapShotExecutor.waitingPeriod()); // After waiting period
+        safeTxHelper.executeSingle(GnosisTransaction({
+            to: address(oldSnapShotExecutor),
+            value: 0,
+            data: abi.encodeWithSelector(
+                oldSnapShotExecutor.execute.selector,
+                grantNewOwnerProposalId
+            )
+        }));
+
+        // Simulate proposing and executing the tx revoking the old SnapShotExecutor ownership
+        vm.prank(oracle);
+        bytes32 revokeOldOwnerProposalId = snapShotExecutor.propose(address(implantAuth), 0, revokeOldOwnerData, "Revoke old SnapShotExecutor ownership");
+        skip(snapShotExecutor.waitingPeriod()); // After waiting period
+        safeTxHelper.executeSingle(GnosisTransaction({
+            to: address(snapShotExecutor),
+            value: 0,
+            data: abi.encodeWithSelector(
+                snapShotExecutor.execute.selector,
+                revokeOldOwnerProposalId
+            )
+        }));
+    }
+
+    function testReplaceSnapShotExecutorScript() public {
+        BorgAuth implantAuth = eject.AUTH();
+
+        // Verify the ownership has been transferred
+        uint256 ownerRole = implantAuth.OWNER_ROLE();
+        implantAuth.onlyRole(ownerRole, address(snapShotExecutor));
+        vm.expectRevert(abi.encodeWithSelector(BorgAuth.BorgAuth_NotAuthorized.selector, ownerRole, address(oldSnapShotExecutor)));
+        implantAuth.onlyRole(ownerRole, address(oldSnapShotExecutor));
+    }
+
+    // The acceptance tests will run against the overridden setup
+}
