Enhance approveAndCall logic

[elenadimitrova]

In the current implementation of approveTokenAndCallContract, the amount of tokens approved overwrites any existing amount of the same token and spender. Here we add logic to restore the original approved amount after the approveTokenAndCallContract call in both (ApprovedTransfer and TransferManager) and emit a new dedicated event with the following definition:

event ApprovedAndCalledContract(
        address indexed wallet,
        address indexed to,
        address spender,
        address indexed token,
        uint256 amountApproved,
        uint256 amountSpent,
        bytes data
    );

This PR also enables a different contract address for the approved spender and the called contract for TransferManager module, analogous to behaviour already implemented for ApprovedTransfer in #73

Also I needed SafeMath in the BaseTransfer contract so pushing it there meant this was provisioned to both ApprovedTransfer and TransferManager.

We also decommission the config.modules.TokenTransfer config entry.

[juniset]

We should add the deployment of the new TransferManager in 7_upgrade_1_6.js.

[juniset]

I think we should here approve currentAllowance + _amount so if unusedAllowance == currentAllowance after the contract call (which should be the majority of the cases) then we don't need to make the call on L121 and we save gas.

[elenadimitrova]

The problem with that is that the new allowance amount left can be different to the original allowance.

[th3m477]

Also we would be allowing that TX to use your existing allowance, so should set explicit amount before the call, make the call, and then reset to old allowance

[elenadimitrova]

Should we error if the called contract consumes more than they approved in this call (spending additionally from their original approved amount)?

[juniset]

Maybe we should index wallet token and amountSpent to mirror what we index in Transfer ? I suspect that it is the main information the clients are interested in. Maybe check with @th3m477 ?

[th3m477]

I don't think uint256 values need to be indexed generally, makes no client difference here as it's a new event.

Addresses make more sense as we are more likely to do exploratory network analysis in the future, or quick filters (i.e. "show me all the transfers I made to X address"), so more of a case for spender, but up to you @juniset @elenadimitrova

[elenadimitrova]

Actually we can only have up to 3 indexed arguments per event so leaving as is.

[juniset]

I think there is an IF missing if we want to save some gas and it should be:

if (unusedAllowance != existingAllowance) {
    // Restore the original allowance amount.
    methodData = abi.encodeWithSignature("approve(address,uint256)", _spender, existingAllowance);
    invokeWallet(address(_wallet), _token, 0, methodData);
}

[elenadimitrova]

I intentionally omitted it as we won't pay for storage updates when the value doesn't change. So implicitly this is enforced anyway while keeping the code simpler.

[juniset]

Yes, but I believe there will still be quite some gas consumed by invoking the wallet: internal call to the wallet, then delegatecall to the wallet implementation, then checking that the calling address is an authorised module, then calling the token contract which itself need to do a few check before updating the memory slot (even if this last step is free).

[elenadimitrova]

It's around 12470 gas which is approx 1 cent worth at current prices. I can't tell whether the complexity outweighs the advantage but I'll add it.

[juniset]

It should be config.modules.TransferManager and not config.modules.TokenTransfer.

[elenadimitrova]

But config.modules.TokenTransfer is the address of the old config.modules.TransferManager no?

[elenadimitrova]

Maybe when upgrading the TransferManager we should copy its old value here though

[juniset]

It is the address of the first version of the TransferManager, yes. But here we are going from the second version (config.modules.TransferManager) to the third one. So the new TransferManager needs to read the state of a wallet's limit from the second version which is config.modules.TransferManager.

[elenadimitrova]

But we update the config.modules.TransferManager address to the new one in the same script.

[elenadimitrova]

Okay, removed TokenTransfer in favour of using TransferManager value prior to upgrade updates.

[juniset]

Didn't we say we would set BACKWARD_COMPATIBILITY to 1 and remove the part of the script where we create a LegacyUpgrader? Or are we addressing this in a separate PR?

[elenadimitrova]

There's a separate PR for it #91 as I wanted to double check the clients can support the upgrade through 1.4 -> 1.6