feat: escrow funds in unique clone contracts (#1387)

**Motivation:**

Current implementation is broken by rebase tokens.

**Modifications:**

- Rename SWR -> `SlashEscrowFactory`.
- Add factory logic that deploys clones unique to their slash ID.

**Result:**

Funds will now be stored in clone contracts unique to their slash ID.

Author: 0xClandestine

script/deploy/devnet/deploy_from_scratch.s.sol

@@ -14,10 +14,11 @@ import "../../../src/contracts/core/AVSDirectory.sol";
 import "../../../src/contracts/core/RewardsCoordinator.sol";
 import "../../../src/contracts/core/AllocationManager.sol";
 import "../../../src/contracts/permissions/PermissionController.sol";
-import "../../../src/contracts/core/SlashingWithdrawalRouter.sol";
+import "../../../src/contracts/core/SlashEscrowFactory.sol";
 import "../../../src/contracts/strategies/StrategyBaseTVLLimits.sol";
 import "../../../src/contracts/strategies/StrategyFactory.sol";
 import "../../../src/contracts/strategies/StrategyBase.sol";
+import "../../../src/contracts/core/SlashEscrow.sol";
 
 import "../../../src/contracts/pods/EigenPod.sol";
 import "../../../src/contracts/pods/EigenPodManager.sol";
@@ -63,8 +64,8 @@ contract DeployFromScratch is Script, Test {
     AllocationManager public allocationManager;
     PermissionController public permissionController;
     PermissionController public permissionControllerImplementation;
-    SlashingWithdrawalRouter public slashingWithdrawalRouter;
-    SlashingWithdrawalRouter public slashingWithdrawalRouterImplementation;
+    SlashEscrowFactory public slashEscrowFactory;
+    SlashEscrowFactory public slashEscrowFactoryImplementation;
 
     EmptyContract public emptyContract;
 
@@ -216,7 +217,7 @@ contract DeployFromScratch is Script, Test {
         permissionController = PermissionController(
             address(new TransparentUpgradeableProxy(address(emptyContract), address(eigenLayerProxyAdmin), ""))
         );
-        slashingWithdrawalRouter = SlashingWithdrawalRouter(
+        slashEscrowFactory = SlashEscrowFactory(
             address(new TransparentUpgradeableProxy(address(emptyContract), address(eigenLayerProxyAdmin), ""))
         );
 
@@ -240,8 +241,7 @@ contract DeployFromScratch is Script, Test {
             SEMVER
         );
 
-        strategyManagerImplementation =
-            new StrategyManager(delegation, slashingWithdrawalRouter, eigenLayerPauserReg, SEMVER);
+        strategyManagerImplementation = new StrategyManager(delegation, slashEscrowFactory, eigenLayerPauserReg, SEMVER);
         avsDirectoryImplementation = new AVSDirectory(delegation, eigenLayerPauserReg, SEMVER);
         eigenPodManagerImplementation =
             new EigenPodManager(ethPOSDeposit, eigenPodBeacon, delegation, eigenLayerPauserReg, SEMVER);
@@ -270,8 +270,8 @@ contract DeployFromScratch is Script, Test {
         );
         permissionControllerImplementation = new PermissionController(SEMVER);
         strategyFactoryImplementation = new StrategyFactory(strategyManager, eigenLayerPauserReg, SEMVER);
-        slashingWithdrawalRouterImplementation =
-            new SlashingWithdrawalRouter(allocationManager, strategyManager, eigenLayerPauserReg, SEMVER);
+        slashEscrowFactoryImplementation =
+            new SlashEscrowFactory(allocationManager, strategyManager, eigenLayerPauserReg, new SlashEscrow(), SEMVER);
 
         // Third, upgrade the proxy contracts to use the correct implementation contracts and initialize them.
         {

script/deploy/local/deploy_from_scratch.slashing.s.sol

@@ -14,7 +14,8 @@ import "../../../src/contracts/core/AVSDirectory.sol";
 import "../../../src/contracts/core/RewardsCoordinator.sol";
 import "../../../src/contracts/core/AllocationManager.sol";
 import "../../../src/contracts/permissions/PermissionController.sol";
-import "../../../src/contracts/core/SlashingWithdrawalRouter.sol";
+import "../../../src/contracts/core/SlashEscrowFactory.sol";
+import "../../../src/contracts/core/SlashEscrow.sol";
 
 import "../../../src/contracts/strategies/StrategyBaseTVLLimits.sol";
 
@@ -67,8 +68,8 @@ contract DeployFromScratch is Script, Test {
     AllocationManager public allocationManager;
     PermissionController public permissionControllerImplementation;
     PermissionController public permissionController;
-    SlashingWithdrawalRouter public slashingWithdrawalRouter;
-    SlashingWithdrawalRouter public slashingWithdrawalRouterImplementation;
+    SlashEscrowFactory public slashEscrowFactory;
+    SlashEscrowFactory public slashEscrowFactoryImplementation;
 
     EmptyContract public emptyContract;
 
@@ -224,7 +225,7 @@ contract DeployFromScratch is Script, Test {
         permissionController = PermissionController(
             address(new TransparentUpgradeableProxy(address(emptyContract), address(eigenLayerProxyAdmin), ""))
         );
-        slashingWithdrawalRouter = SlashingWithdrawalRouter(
+        slashEscrowFactory = SlashEscrowFactory(
             address(new TransparentUpgradeableProxy(address(emptyContract), address(eigenLayerProxyAdmin), ""))
         );
 
@@ -247,8 +248,7 @@ contract DeployFromScratch is Script, Test {
             MIN_WITHDRAWAL_DELAY,
             SEMVER
         );
-        strategyManagerImplementation =
-            new StrategyManager(delegation, slashingWithdrawalRouter, eigenLayerPauserReg, SEMVER);
+        strategyManagerImplementation = new StrategyManager(delegation, slashEscrowFactory, eigenLayerPauserReg, SEMVER);
         avsDirectoryImplementation = new AVSDirectory(delegation, eigenLayerPauserReg, SEMVER);
         eigenPodManagerImplementation =
             new EigenPodManager(ethPOSDeposit, eigenPodBeacon, delegation, eigenLayerPauserReg, SEMVER);
@@ -276,8 +276,8 @@ contract DeployFromScratch is Script, Test {
             SEMVER
         );
         permissionControllerImplementation = new PermissionController(SEMVER);
-        slashingWithdrawalRouterImplementation =
-            new SlashingWithdrawalRouter(allocationManager, strategyManager, eigenLayerPauserReg, SEMVER);
+        slashEscrowFactoryImplementation =
+            new SlashEscrowFactory(allocationManager, strategyManager, eigenLayerPauserReg, new SlashEscrow(), SEMVER);
 
         // Third, upgrade the proxy contracts to use the correct implementation contracts and initialize them.
         {

script/utils/ExistingDeploymentParser.sol

@@ -11,7 +11,8 @@ import "../../src/contracts/core/AVSDirectory.sol";
 import "../../src/contracts/core/RewardsCoordinator.sol";
 import "../../src/contracts/core/AllocationManager.sol";
 import "../../src/contracts/permissions/PermissionController.sol";
-import "../../src/contracts/core/SlashingWithdrawalRouter.sol";
+import "../../src/contracts/core/SlashEscrowFactory.sol";
+import "../../src/contracts/core/SlashEscrow.sol";
 
 import "../../src/contracts/strategies/StrategyFactory.sol";
 import "../../src/contracts/strategies/StrategyBase.sol";
@@ -137,9 +138,9 @@ contract ExistingDeploymentParser is Script, Logger {
     StrategyBase public baseStrategyImplementation;
     StrategyBase public strategyFactoryBeaconImplementation;
 
-    /// @dev SlashingWithdrawalRouter
-    SlashingWithdrawalRouter public slashingWithdrawalRouter;
-    SlashingWithdrawalRouter public slashingWithdrawalRouterImplementation;
+    /// @dev SlashEscrowFactory
+    SlashEscrowFactory public slashEscrowFactory;
+    SlashEscrowFactory public slashEscrowFactoryImplementation;
 
     // Token
     ProxyAdmin public tokenProxyAdmin;

src/contracts/core/DelegationManager.sol

@@ -540,10 +540,9 @@ contract DelegationManager is
 
         uint256[] memory prevSlashingFactors;
         {
-            // slashableUntil is block inclusive so we need to check if the current block is strictly greater than the slashableUntil block
-            // meaning the withdrawal can be completed.
-            // TODO: update delay blocks for redistribution + EIGEN_REDISTRIBUTION_DELAY_BLOCKS
-            uint32 delayBlocks = withdrawal.delegatedTo == address(this) ? 3.5 days : MIN_WITHDRAWAL_DELAY_BLOCKS;
+            // The slashableUntil block is inclusive, so we verify that the current block number exceeds it
+            // before allowing the withdrawal to be completed.
+            uint32 delayBlocks = withdrawal.delegatedTo == address(this) ? 4 days : MIN_WITHDRAWAL_DELAY_BLOCKS;
             uint32 slashableUntil = withdrawal.startBlock + delayBlocks;
             require(uint32(block.number) > slashableUntil, WithdrawalDelayNotElapsed());
 

src/contracts/core/SlashEscrow.sol

@@ -0,0 +1,49 @@
+// SPDX-License-Identifier: BUSL-1.1
+pragma solidity ^0.8.27;
+
+import "@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
+import "@openzeppelin-upgrades/contracts/proxy/ClonesUpgradeable.sol";
+import "../interfaces/ISlashEscrow.sol";
+import "../interfaces/ISlashEscrowFactory.sol";
+
+contract SlashEscrow is ISlashEscrow {
+    using OperatorSetLib for *;
+    using SafeERC20 for IERC20;
+
+    /// @inheritdoc ISlashEscrow
+    function burnOrRedistributeUnderlyingTokens(
+        ISlashEscrowFactory slashEscrowFactory,
+        ISlashEscrow slashEscrowImplementation,
+        OperatorSet calldata operatorSet,
+        uint256 slashId,
+        address recipient,
+        IStrategy strategy
+    ) external virtual {
+        // Assert that the deployment parameters are valid by validating against the address of this proxy.
+        require(
+            verifyDeploymentParameters(slashEscrowFactory, slashEscrowImplementation, operatorSet, slashId),
+            InvalidDeploymentParameters()
+        );
+
+        // Assert that the caller is the slash escrow factory.
+        require(msg.sender == address(slashEscrowFactory), OnlySlashEscrowFactory());
+
+        // Burn or redistribute the underlying tokens.
+        IERC20 underlyingToken = strategy.underlyingToken();
+        underlyingToken.safeTransfer(recipient, underlyingToken.balanceOf(address(this)));
+    }
+
+    /// @inheritdoc ISlashEscrow
+    function verifyDeploymentParameters(
+        ISlashEscrowFactory slashEscrowFactory,
+        ISlashEscrow slashEscrowImplementation,
+        OperatorSet calldata operatorSet,
+        uint256 slashId
+    ) public view virtual returns (bool) {
+        return ClonesUpgradeable.predictDeterministicAddress(
+            address(slashEscrowImplementation),
+            keccak256(abi.encodePacked(operatorSet.key(), slashId)),
+            address(slashEscrowFactory)
+        ) == address(this);
+    }
+}