feat(zetaclient): SUI withdrawals #3562

swift1337 · 2025-02-20T17:38:53Z

Summary by CodeRabbit

New Features
- Enhanced Sui network support with multi-address gateway configuration for more robust deposit, withdrawal, and cross-chain transaction processing.
- Introduced advanced cryptographic operations for secure transaction signing, validation, and address generation.
Improvements
- Optimized scheduler behavior with configurable task intervals for smoother operations.
- Streamlined event handling and logging, providing clearer feedback and improved error management.

coderabbitai · 2025-02-20T17:39:00Z

Important

Review skipped

Auto incremental reviews are disabled on this repository.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

📝 Walkthrough

Walkthrough

This pull request introduces extensive refactoring and enhancements to the Sui integration and scheduler components. Updates include parameter additions for scheduler initialization, renaming and restructuring of deposit/withdrawal data types, enhanced gateway construction and event parsing, new cryptographic utility functions, and significant extensions to signer and observer functionalities for outbound transaction processing. In addition, obsolete Sui signer utilities and associated tests have been removed, while new tests and mock methods have been added to improve error handling and concurrency.

Changes

File(s)	Change Summary
`cmd/zetaclientd/start.go`, `pkg/scheduler/scheduler.go`, `.../scheduler_test.go`, `.../v2_orchestrator_test.go`	Updated scheduler instantiation with an added `defaultInterval` parameter and revised test expectations.
`e2e/config/config.go`, `e2e/runner/setup_sui.go`, `.../utils/sui/signer.go` (removed)	Changed Sui signer instantiation (added parameter in `New` call), variable renaming in Sui runner, and removed obsolete signer utility and its tests.
`pkg/contracts/sui/crypto.go`, `pkg/contracts/sui/crypto_test.go`	Introduced new cryptographic functions (e.g., `Digest`, `messageWithIntentPrefix`, signature serialization/deserialization) along with corresponding tests.
`pkg/contracts/sui/deposit.go`, `pkg/contracts/sui/withdrawal.go`	Renamed and refactored inbound events to `DepositData` and introduced `WithdrawData` with updated method names and error handling.
`pkg/contracts/sui/gateway.go`, `pkg/contracts/sui/gateway_test.go`	Enhanced gateway struct with new fields (`objectID`, mutex) and methods (e.g., `NewGatewayFromPairID`, `ObjectID`, `UpdateIDs`) for improved event parsing and concurrent access.
`zetaclient/chains/sui/client/*.go`, `zetaclient/chains/sui/client/client_live_test.go`	Added `GetOwnedObjectID` method and updated cursor encoding/decoding in client to support new request formats.
`zetaclient/chains/sui/observer/*.go`	Revised inbound event processing (using deposit methods) and added fields/methods in Observer (e.g., `txMap`, gas price management, new outbound tracker support).
`zetaclient/chains/sui/signer/*.go`	Expanded Signer struct to include an RPC interface, gateway, and withdrawal capability; added methods for processing CCTX, signing transactions, outbound reporting, and withdrawal broadcast.
`zetaclient/chains/sui/sui.go`, `zetaclient/orchestrator/v2_bootstrap.go`, `.../v2_bootstrap_test.go`	Enhanced Sui scheduling logic (with chain parameter updates), updated gateway instantiation in bootstrap, and restructured orchestrator operations.
`zetaclient/testutils/constant.go`, `zetaclient/testutils/mocks/sui_client.go`, `zetaclient/testutils/mocks/sui_gen.go`	Updated gateway addresses by adding an extra address and added new mock methods for simulating Sui client behavior.
`zetaclient/tss/crypto.go`	Added new methods `AsECDSA` and `AddressSui` to `PubKey` and modified public key byte compression logic.

Sequence Diagram(s)

sequenceDiagram
    participant S as Signer
    participant SR as Sui RPC
    participant OT as Outbound Tracker
    participant Z as Zetacore
    S->>SR: MoveCall to build withdrawal transaction
    SR-->>S: Return txn metadata
    S->>SR: signTx (execute transaction block)
    SR-->>S: Return tx block response & digest
    S->>S: (Optional) getWithdrawCapID check
    S->>OT: reportOutboundTracker(nonce, digest)
    OT-->>S: Acknowledgment
    S->>Z: postTrackerVote(nonce, digest)
    Z-->>S: Vote acknowledged

sequenceDiagram
    participant O as Orchestrator (V2)
    participant G as Gateway
    participant Ob as Observer
    O->>G: NewGatewayFromPairID(packageID, gatewayObjectID)
    G-->>O: Initialized Gateway with objectID
    O->>Ob: Create Observer with Gateway instance
    Ob-->>Ob: Initialize txMap & gasPrice fields (with locking)
    Ob->>G: Request event parsing (Deposit/Withdrawal)

Suggested labels

no-changelog, zetaclient

Suggested reviewers

ws4charlie
gartnera
lumtis
skosito

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

Review comments: Directly reply to a review comment made by CodeRabbit. Example:
- I pushed a fix in commit <commit_id>, please review it.
- Generate unit testing code for this file.
- Open a follow-up GitHub issue for this discussion.
Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
- @coderabbitai generate unit testing code for this file.
- @coderabbitai modularize this function.
PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
- @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
- @coderabbitai read src/utils.ts and generate unit testing code.
- @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
- @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

@coderabbitai pause to pause the reviews on a PR.
@coderabbitai resume to resume the paused reviews.
@coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
@coderabbitai full review to do a full review from scratch and review all the files again.
@coderabbitai summary to regenerate the summary of the PR.
@coderabbitai generate docstrings to generate docstrings for this PR.
@coderabbitai resolve resolve all the CodeRabbit review comments.
@coderabbitai configuration to show the current CodeRabbit configuration for the repository.
@coderabbitai help to get help.

Other keywords and placeholders

Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
Add @coderabbitai anywhere in the PR title to generate the title automatically.

Documentation and Community

Visit our Documentation for detailed information on how to use CodeRabbit.
Join our Discord Community to get help, request features, and share feedback.
Follow us on X/Twitter for updates and announcements.

github-actions · 2025-02-20T17:39:16Z

!!!WARNING!!!
nosec detected in the following files: zetaclient/chains/sui/observer/outbound.go, zetaclient/chains/sui/sui.go

Be very careful about using #nosec in code. It can be a quick way to suppress security warnings and move forward with development, it should be employed with caution. Suppressing warnings with #nosec can hide potentially serious vulnerabilities. Only use #nosec when you're absolutely certain that the security issue is either a false positive or has been mitigated in another way.

Only suppress a single rule (or a specific set of rules) within a section of code, while continuing to scan for other problems. To do this, you can list the rule(s) to be suppressed within the #nosec annotation, e.g: /* #nosec G401 */ or //#nosec G201 G202 G203
Broad #nosec annotations should be avoided, as they can hide other vulnerabilities. The CI will block you from merging this PR until you remove #nosec annotations that do not target specific rules.

Pay extra attention to the way #nosec is being used in the files listed above.

zetaclient/chains/sui/sui.go

codecov · 2025-02-20T17:53:05Z

Codecov Report

Attention: Patch coverage is 55.95855% with 255 lines in your changes missing coverage. Please review.

Project coverage is 64.69%. Comparing base (1be98a3) to head (506896a).
Report is 1 commits behind head on develop.

Files with missing lines	Patch %	Lines
zetaclient/chains/sui/observer/outbound.go	56.44%	71 Missing and 27 partials ⚠️
zetaclient/chains/sui/sui.go	30.33%	58 Missing and 4 partials ⚠️
zetaclient/chains/sui/client/client.go	0.00%	21 Missing ⚠️
zetaclient/chains/sui/signer/signer_tx.go	63.15%	18 Missing and 3 partials ⚠️
zetaclient/chains/sui/signer/signer_tracker.go	64.58%	16 Missing and 1 partial ⚠️
zetaclient/chains/sui/signer/signer.go	74.13%	11 Missing and 4 partials ⚠️
zetaclient/chains/sui/signer/signer_withdrawcap.go	73.68%	7 Missing and 3 partials ⚠️
zetaclient/orchestrator/v2_bootstrap.go	42.85%	3 Missing and 1 partial ⚠️
zetaclient/tss/crypto.go	20.00%	4 Missing ⚠️
pkg/scheduler/scheduler.go	62.50%	2 Missing and 1 partial ⚠️

Additional details and impacted files

@@             Coverage Diff             @@
##           develop    #3562      +/-   ##
===========================================
- Coverage    64.88%   64.69%   -0.19%     
===========================================
  Files          462      466       +4     
  Lines        31928    32477     +549     
===========================================
+ Hits         20715    21010     +295     
- Misses       10301    10512     +211     
- Partials       912      955      +43

Files with missing lines	Coverage Δ
zetaclient/chains/sui/observer/inbound.go	`57.25% <100.00%> (+0.21%)`	⬆️
zetaclient/chains/sui/observer/observer.go	`55.91% <100.00%> (+7.16%)`	⬆️
pkg/scheduler/scheduler.go	`87.68% <62.50%> (-1.88%)`	⬇️
zetaclient/orchestrator/v2_bootstrap.go	`60.00% <42.85%> (+0.37%)`	⬆️
zetaclient/tss/crypto.go	`53.62% <20.00%> (-1.61%)`	⬇️
zetaclient/chains/sui/signer/signer_withdrawcap.go	`73.68% <73.68%> (ø)`
zetaclient/chains/sui/signer/signer.go	`74.13% <74.13%> (-25.87%)`	⬇️
zetaclient/chains/sui/signer/signer_tracker.go	`64.58% <64.58%> (ø)`
zetaclient/chains/sui/client/client.go	`0.00% <0.00%> (ø)`
zetaclient/chains/sui/signer/signer_tx.go	`63.15% <63.15%> (ø)`
... and 2 more

... and 1 file with indirect coverage changes

pkg/contracts/sui/crypto.go

lumtis

Looks on the right direction so far

zetaclient/chains/sui/sui.go

coderabbitai

Actionable comments posted: 3

🧹 Nitpick comments (33)

zetaclient/testutils/constant.go (1)
47-47: Updated gateway address format requires documentation.

The gateway address format for Sui has been changed to include two components separated by a comma (likely package ID and gateway object ID). Consider adding a comment explaining the new format and purpose of each component to improve maintainability and developer onboarding.
+ // SuiMainnet gateway address format: "$packageID,$gatewayObjectID"
  chains.SuiMainnet.ChainId: "0x5d4b302506645c37ff133b98fff50a5ae14841659738d6d733d59d0d217a9fff,0xffff302506645c37ff133b98fff50a5ae14841659738d6d733d59d0d217a9aaa",
zetaclient/orchestrator/v2_orchestrator_test.go (1)
126-126: Inconsistent default interval between tests and production code.

The test uses time.Second as the default interval while the production code uses 0. Consider using a constant to ensure consistency, or document why different values are appropriate in different contexts.
- schedulerService = scheduler.New(logger.Logger, time.Second)
+ // Use same default interval as production code (0) or document why a different value is needed
+ schedulerService = scheduler.New(logger.Logger, 0)
zetaclient/chains/sui/signer/signer_tracker.go (1)
12-61: Well-structured transaction tracking implementation

The reportOutboundTracker function employs effective timeout and retry mechanisms with proper error handling. The flag system to prevent duplicate reports is a good safeguard.

Consider extracting the timeout and interval constants to package-level variables if they may be reused elsewhere in the package:
-	// approx Sui checkpoint interval
-	const interval = 3 * time.Second
-
-	// some sanity timeout
-	const maxTimeout = time.Minute
+	// defined at package level
+	// const suiCheckpointInterval = 3 * time.Second
+	// const maxTrackingTimeout = time.Minute
Also, enhance error context by wrapping errors with additional information:
-			return errors.Errorf("timeout reached (%s)", maxTimeout.String())
+			return errors.Errorf("timeout reached (%s) while tracking tx %s for nonce %d", 
+				maxTimeout.String(), digest, nonce)
pkg/contracts/sui/withdrawal.go (1)
24-73: Consider refactoring repetitive parsing logic.

The parsing function follows a repetitive pattern of extracting fields and checking for errors. This could be refactored for more concise code.

You could define a helper function to reduce repetition:
+func extractAndParse[T any](
+    parsedJSON map[string]any, 
+    field string, 
+    parser func(string) (T, error),
+    errorMsg string,
+) (T, error) {
+    var zero T
+    raw, err := extractStr(parsedJSON, field)
+    if err != nil {
+        return zero, err
+    }
+    
+    val, err := parser(raw)
+    if err != nil {
+        return zero, errors.Wrap(err, errorMsg)
+    }
+    
+    return val, nil
+}
Then use it to simplify the parsing code:
-	amountRaw, err := extractStr(parsedJSON, "amount")
-	if err != nil {
-		return WithdrawData{}, err
-	}
-
-	amount, err := math.ParseUint(amountRaw)
-	if err != nil {
-		return WithdrawData{}, errors.Wrap(err, "unable to parse amount")
-	}
+	amount, err := extractAndParse(parsedJSON, "amount", math.ParseUint, "unable to parse amount")
+	if err != nil {
+		return WithdrawData{}, err
+	}
zetaclient/chains/sui/signer/signer_withdrawcap.go (2)

41-59: Be aware of potential concurrent fetch scenarios.
If multiple goroutines call getWithdrawCapIDCached around the same time when the cache is invalid, each might initiate a fetch. Consider a “double-checked locking” approach or an atomic flag to avoid redundant fetches.

61-72: Consider adding test coverage for 'getWithdrawCapID'.
Proactively create unit tests verifying correct error wrapping and the returned object ID in normal and edge cases (e.g., no owned objects).

zetaclient/chains/sui/sui.go (2)

28-34: Consider making 'outboundLookbackFactor' configurable.
Hardcoding the factor to 1.0 might be too rigid for some scenarios. Using a configurable value could allow future flexibility without changing the code.

124-204: Complex scheduling logic - good approach, but scrutinize potential edge cases.

You use time.Sleep(delay) before listing pending CCTX. Ensure that sleeping does not inadvertently mask time-sensitive tasks.

The logic in the for loop accounts for skipping CCTX based on nonce checks, but double-check concurrency with ProcessCCTX.

Updating the chain params immediately before scheduling is a nice move—just ensure that partial updates or error paths do not lock the system out of future scheduling attempts.
Otherwise, your outward flow looks coherent, with VoteOutbound in the error path to keep the ledger informed.

zetaclient/chains/sui/client/client.go (1)

133-156: Add dedicated tests to ensure retrieving a single object ID behaves correctly.
The code logic looks good, but static analysis indicates no coverage. Testing both the “0 objects found” and “multiple objects found” error cases, as well as success scenarios, will boost reliability.

🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 135-152: zetaclient/chains/sui/client/client.go#L135-L152
Added lines #L135 - L152 were not covered by tests

[warning] 155-155: zetaclient/chains/sui/client/client.go#L155
Added line #L155 was not covered by tests

zetaclient/chains/sui/signer/signer_tx.go (3)

19-23: Validate nil references before usage.
Kindly confirm that neither cctx nor params is ever nil, as these are immediately dereferenced. A precautionary check would make the function more robust.

24-40: Validate coin types more comprehensively.
The switch statement outlines valid coin types, but adding explicit logging or metrics for unsupported coin types can help in debugging future issues.

67-85: Enhance error handling for broadcast failures.
Consider explicitly retrying or adding structured logging if SuiExecuteTransactionBlock returns known transient errors.

zetaclient/chains/sui/observer/observer.go (2)

105-106: Update gas price after validation.
Setting latestGasPrice here is logical; consider logging the new price to aid in operational visibility.

122-126: Write-lock usage aligns well.
This method ensures correct concurrency control; consider adding an optional upper-bound check on gas price before assignment if applicable.

zetaclient/chains/sui/signer/signer_test.go (1)

25-102: Comprehensive coverage
The sub-test “ProcessCCTX” covers the typical success path well. Consider adding negative test scenarios (e.g., invalid or missing cctx fields) to validate error-handling logic.

zetaclient/chains/sui/observer/observer_test.go (4)

27-27: Empty map usage
someArgStub is a suitable placeholder for dynamic test arguments. Ensure it’s used consistently or consider populating it for clarity.

140-140: Embedded offset
Storing the offset ,0 within the same string works but can reduce clarity. Consider tracking the offset separately for maintainability.

227-289: ProcessOutboundTrackers
Test coverage is thorough. Including a broken scenario (e.g., missing OutboundTracker or incomplete Sui TX) would improve resilience.

291-370: VoteOutbound scenario
The test efficiently checks final statuses and block heights. Adding an edge-case test (e.g., invalid event fields) can enhance reliability.

pkg/contracts/sui/crypto.go (3)

20-34: Digest function
Implementation aligns with Sui’s cryptographic guidelines for the initial Blake2b hashing. Consider including unit tests that validate boundary conditions.

67-87: Signature serialization
This logic follows the required R|S format, omitting the V byte. Confirm usage across the code aligns with Sui’s spec.

119-156: SignerSecp256k1
Double-hashing for ECDSA compliance is well-implemented. Consider detecting invalid private keys (empty or malformed) for safer error handling.

zetaclient/chains/sui/signer/signer.go (3)

3-16: Imports look consistent and well-structured.
All newly introduced imports, including sha256, align with the current functionality. Also note that github.com/pkg/errors is used widely, but consider migrating to the Go standard library’s error wrapping features for a unified approach.

21-26: Document newly added fields for clarity.
The fields client, gateway, withdrawCap, and zetacore appear essential for Sui-specific logic. For maintainability, consider adding inline comments or docstrings on how each is intended to be used, especially since they hold pointers.

44-57: Constructor sets up needed fields successfully.
The New function thoroughly initializes each field. If withdrawCap is not used in certain scenarios, consider deferring its creation or documenting why it is always allocated.

pkg/contracts/sui/crypto_test.go (2)

15-43: Digest sub-test offers solid coverage.
Verifying the digest against an expected base64 output is a strong approach. Consider adding negative scenarios (e.g., malformed TxBytes) to robustly test error handling.

45-80: Address derivation logic is verified thoroughly.
Tests confirm that decompression and expected address values match. To strengthen confidence, you could add tests for invalid or corrupted public keys to ensure graceful failure.

pkg/contracts/sui/gateway.go (2)

56-59: Constructor for Gateway is straightforward.
This is sufficiently minimal. If additional validation of IDs is needed, consider consolidating it here.

74-82: Robust deposit data extraction.
The cast to DepositData ensures typed content. Consider also validating content fields for completeness.
zetaclient/chains/sui/observer/outbound.go (4)
28-33: Consider adding coverage for memory checks.
Even though the concurrency usage of ob.getTx(nonce) is safe, adding test cases for scenarios where the transaction does not exist or is invalid would improve robustness and maintain confidence in OutboundCreated.

I can provide sample tests if needed to verify memory lookups in varied conditions.

35-77: Enhance test coverage for error paths.
Error returns (e.g. empty HashList or failure to get cctx) are not covered by unit tests. Testing these code paths ensures the observer recovers gracefully instead of silently failing.

I can help by outlining test scenarios that induce each error condition for thorough validation.

🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 42-43: zetaclient/chains/sui/observer/outbound.go#L42-L43
Added lines #L42 - L43 were not covered by tests

[warning] 50-51: zetaclient/chains/sui/observer/outbound.go#L50-L51
Added lines #L50 - L51 were not covered by tests

[warning] 55-55: zetaclient/chains/sui/observer/outbound.go#L55
Added line #L55 was not covered by tests

[warning] 62-63: zetaclient/chains/sui/observer/outbound.go#L62-L63
Added lines #L62 - L63 were not covered by tests

[warning] 66-73: zetaclient/chains/sui/observer/outbound.go#L66-L73
Added lines #L66 - L73 were not covered by tests

79-163: Expand coverage for VoteOutbound error handling.
Multiple branches (missing transaction, checkpoint parse failure, zero gas price, post vote failure) lack explicit test coverage. Without test scenarios exercising these branches, unexpected behaviors could surface in production.

I can assist in creating negative test cases to ensure each error path is well-handled.

🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 89-90: zetaclient/chains/sui/observer/outbound.go#L89-L90
Added lines #L89 - L90 were not covered by tests

[warning] 95-96: zetaclient/chains/sui/observer/outbound.go#L95-L96
Added lines #L95 - L96 were not covered by tests

[warning] 111-112: zetaclient/chains/sui/observer/outbound.go#L111-L112
Added lines #L111 - L112 were not covered by tests

[warning] 115-116: zetaclient/chains/sui/observer/outbound.go#L115-L116
Added lines #L115 - L116 were not covered by tests

[warning] 128-129: zetaclient/chains/sui/observer/outbound.go#L128-L129
Added lines #L128 - L129 were not covered by tests

[warning] 133-134: zetaclient/chains/sui/observer/outbound.go#L133-L134
Added lines #L133 - L134 were not covered by tests

[warning] 157-158: zetaclient/chains/sui/observer/outbound.go#L157-L158
Added lines #L157 - L158 were not covered by tests

271-290: Perform type-safe parsing for value.
Relying on raw["value"].(string) without validating the type can lead to runtime panics if the JSON shape changes. Creating a small helper that checks for the string type before parsing would make the code more robust.
 func parseNonceFromWithdrawInputs(inputs []models.SuiCallArg) (uint64, error) {
+    val, ok := raw["value"].(string)
+    if !ok {
+        return 0, errors.New("invalid nonce format; expected string")
+    }
     return strconv.ParseUint(val, 10, 64)
 }
🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 273-274: zetaclient/chains/sui/observer/outbound.go#L273-L274
Added lines #L273 - L274 were not covered by tests

[warning] 286-287: zetaclient/chains/sui/observer/outbound.go#L286-L287
Added lines #L286 - L287 were not covered by tests

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 380b545 and 0f34c7f.

📒 Files selected for processing (32)

cmd/zetaclientd/start.go (1 hunks)
e2e/config/config.go (2 hunks)
e2e/runner/setup_sui.go (2 hunks)
e2e/utils/sui/signer.go (0 hunks)
e2e/utils/sui/signer_test.go (0 hunks)
pkg/contracts/sui/crypto.go (1 hunks)
pkg/contracts/sui/crypto_test.go (1 hunks)
pkg/contracts/sui/deposit.go (3 hunks)
pkg/contracts/sui/gateway.go (7 hunks)
pkg/contracts/sui/gateway_test.go (5 hunks)
pkg/contracts/sui/withdrawal.go (1 hunks)
pkg/scheduler/scheduler.go (3 hunks)
pkg/scheduler/scheduler_test.go (2 hunks)
zetaclient/chains/sui/client/client.go (2 hunks)
zetaclient/chains/sui/client/client_live_test.go (1 hunks)
zetaclient/chains/sui/observer/inbound.go (3 hunks)
zetaclient/chains/sui/observer/observer.go (5 hunks)
zetaclient/chains/sui/observer/observer_test.go (8 hunks)
zetaclient/chains/sui/observer/outbound.go (1 hunks)
zetaclient/chains/sui/signer/signer.go (1 hunks)
zetaclient/chains/sui/signer/signer_test.go (1 hunks)
zetaclient/chains/sui/signer/signer_tracker.go (1 hunks)
zetaclient/chains/sui/signer/signer_tx.go (1 hunks)
zetaclient/chains/sui/signer/signer_withdrawcap.go (1 hunks)
zetaclient/chains/sui/sui.go (5 hunks)
zetaclient/orchestrator/v2_bootstrap.go (1 hunks)
zetaclient/orchestrator/v2_bootstrap_test.go (1 hunks)
zetaclient/orchestrator/v2_orchestrator_test.go (1 hunks)
zetaclient/testutils/constant.go (1 hunks)
zetaclient/testutils/mocks/sui_client.go (3 hunks)
zetaclient/testutils/mocks/sui_gen.go (2 hunks)
zetaclient/tss/crypto.go (4 hunks)

💤 Files with no reviewable changes (2)

e2e/utils/sui/signer.go
e2e/utils/sui/signer_test.go

🧰 Additional context used

📓 Path-based instructions (1)

`**/*.go`: Review the Go code, point out issues relative to ...

**/*.go: Review the Go code, point out issues relative to principles of clean code, expressiveness, and performance.

zetaclient/orchestrator/v2_orchestrator_test.go
cmd/zetaclientd/start.go
zetaclient/testutils/constant.go
zetaclient/chains/sui/client/client_live_test.go
pkg/contracts/sui/gateway_test.go
zetaclient/orchestrator/v2_bootstrap_test.go
zetaclient/chains/sui/signer/signer_tracker.go
zetaclient/tss/crypto.go
zetaclient/testutils/mocks/sui_gen.go
zetaclient/orchestrator/v2_bootstrap.go
pkg/contracts/sui/deposit.go
pkg/scheduler/scheduler.go
e2e/config/config.go
zetaclient/chains/sui/sui.go
zetaclient/chains/sui/signer/signer_test.go
pkg/scheduler/scheduler_test.go
pkg/contracts/sui/withdrawal.go
zetaclient/testutils/mocks/sui_client.go
zetaclient/chains/sui/signer/signer.go
zetaclient/chains/sui/observer/observer.go
pkg/contracts/sui/gateway.go
zetaclient/chains/sui/observer/observer_test.go
zetaclient/chains/sui/signer/signer_withdrawcap.go
zetaclient/chains/sui/observer/outbound.go
zetaclient/chains/sui/client/client.go
e2e/runner/setup_sui.go
zetaclient/chains/sui/observer/inbound.go
pkg/contracts/sui/crypto_test.go
pkg/contracts/sui/crypto.go
zetaclient/chains/sui/signer/signer_tx.go

🧠 Learnings (1)

pkg/contracts/sui/crypto.go (1)

Learnt from: gartnera
PR: zeta-chain/node#3485
File: e2e/utils/sui/signer.go:24-35
Timestamp: 2025-02-06T16:29:58.925Z
Learning: The Sui blockchain requires signatures in [R || S || V] format, which is best generated using go-ethereum's crypto.Sign function that takes an ecdsa.PrivateKey.

🪛 GitHub Check: codecov/patch

pkg/scheduler/scheduler.go

[warning] 74-75: pkg/scheduler/scheduler.go#L74-L75
Added lines #L74 - L75 were not covered by tests

zetaclient/chains/sui/observer/outbound.go

[warning] 42-43: zetaclient/chains/sui/observer/outbound.go#L42-L43
Added lines #L42 - L43 were not covered by tests

[warning] 50-51: zetaclient/chains/sui/observer/outbound.go#L50-L51
Added lines #L50 - L51 were not covered by tests

[warning] 55-55: zetaclient/chains/sui/observer/outbound.go#L55
Added line #L55 was not covered by tests

[warning] 62-63: zetaclient/chains/sui/observer/outbound.go#L62-L63
Added lines #L62 - L63 were not covered by tests

[warning] 66-73: zetaclient/chains/sui/observer/outbound.go#L66-L73
Added lines #L66 - L73 were not covered by tests

[warning] 89-90: zetaclient/chains/sui/observer/outbound.go#L89-L90
Added lines #L89 - L90 were not covered by tests

[warning] 95-96: zetaclient/chains/sui/observer/outbound.go#L95-L96
Added lines #L95 - L96 were not covered by tests

[warning] 111-112: zetaclient/chains/sui/observer/outbound.go#L111-L112
Added lines #L111 - L112 were not covered by tests

[warning] 115-116: zetaclient/chains/sui/observer/outbound.go#L115-L116
Added lines #L115 - L116 were not covered by tests

[warning] 128-129: zetaclient/chains/sui/observer/outbound.go#L128-L129
Added lines #L128 - L129 were not covered by tests

[warning] 133-134: zetaclient/chains/sui/observer/outbound.go#L133-L134
Added lines #L133 - L134 were not covered by tests

[warning] 157-158: zetaclient/chains/sui/observer/outbound.go#L157-L158
Added lines #L157 - L158 were not covered by tests

[warning] 177-178: zetaclient/chains/sui/observer/outbound.go#L177-L178
Added lines #L177 - L178 were not covered by tests

[warning] 181-182: zetaclient/chains/sui/observer/outbound.go#L181-L182
Added lines #L181 - L182 were not covered by tests

[warning] 198-199: zetaclient/chains/sui/observer/outbound.go#L198-L199
Added lines #L198 - L199 were not covered by tests

[warning] 203-204: zetaclient/chains/sui/observer/outbound.go#L203-L204
Added lines #L203 - L204 were not covered by tests

[warning] 207-208: zetaclient/chains/sui/observer/outbound.go#L207-L208
Added lines #L207 - L208 were not covered by tests

[warning] 211-212: zetaclient/chains/sui/observer/outbound.go#L211-L212
Added lines #L211 - L212 were not covered by tests

[warning] 216-217: zetaclient/chains/sui/observer/outbound.go#L216-L217
Added lines #L216 - L217 were not covered by tests

[warning] 220-221: zetaclient/chains/sui/observer/outbound.go#L220-L221
Added lines #L220 - L221 were not covered by tests

[warning] 231-232: zetaclient/chains/sui/observer/outbound.go#L231-L232
Added lines #L231 - L232 were not covered by tests

[warning] 236-242: zetaclient/chains/sui/observer/outbound.go#L236-L242
Added lines #L236 - L242 were not covered by tests

[warning] 273-274: zetaclient/chains/sui/observer/outbound.go#L273-L274
Added lines #L273 - L274 were not covered by tests

[warning] 286-287: zetaclient/chains/sui/observer/outbound.go#L286-L287
Added lines #L286 - L287 were not covered by tests

[warning] 297-298: zetaclient/chains/sui/observer/outbound.go#L297-L298
Added lines #L297 - L298 were not covered by tests

zetaclient/chains/sui/client/client.go

[warning] 135-152: zetaclient/chains/sui/client/client.go#L135-L152
Added lines #L135 - L152 were not covered by tests

[warning] 155-155: zetaclient/chains/sui/client/client.go#L155
Added line #L155 was not covered by tests

[warning] 160-160: zetaclient/chains/sui/client/client.go#L160
Added line #L160 was not covered by tests

[warning] 169-169: zetaclient/chains/sui/client/client.go#L169
Added line #L169 was not covered by tests

⏰ Context from checks skipped due to timeout of 90000ms (1)

GitHub Check: build-and-test

🔇 Additional comments (80)

cmd/zetaclientd/start.go (1)

136-136:
✅ Verification successful

Verify scheduler behavior with zero default interval.

The scheduler is initialized with a default interval of 0, which could be problematic if the scheduler implementation doesn't properly handle this special case.

🏁 Script executed:
#!/bin/bash
# Check how the default interval is used in the scheduler implementation
rg -A 10 "func New\(" pkg/scheduler/scheduler.go
rg "defaultInterval" pkg/scheduler/scheduler.go
Length of output: 657
Verified Default Interval Handling

The scheduler implementation properly checks if the provided interval is less than or equal to zero and substitutes it with a 10-second interval. Passing 0 to scheduler.New (as in taskScheduler := scheduler.New(logger.Std, 0)) is safe and will result in an initialized scheduler with a default interval of 10 seconds. No changes are needed.
zetaclient/orchestrator/v2_bootstrap_test.go (1)

79-84: Consistent test isolation pattern.

The approach to disable other chains is good for test isolation. This pattern follows the same approach used in other test cases like the Solana test.

e2e/runner/setup_sui.go (3)

26-26: Variable name change improves clarity

The renaming from publishReq to publishTx better reflects that this is a transaction block rather than a request, enhancing code readability.

37-37: Method name refactoring enhances consistency

The change from SignTransactionBlock to SignTxBlock follows a more concise naming convention while maintaining semantic clarity. This is a positive improvement for API consistency.

41-41: Consistent variable usage

The updated usage of publishTx.TxBytes properly reflects the variable renaming and maintains functional equivalence.

pkg/contracts/sui/gateway_test.go (6)

18-18: Addition of gatewayID constant improves test configuration

The addition of this constant enhances the test configurability and aligns with the changes to the NewGateway function signature.

27-27: Updated function call with additional parameter

The updated function call properly includes the new gatewayID parameter, reflecting changes in the function signature of NewGateway.

57-66: API refinement from Inbound to Deposit

The change from out.Inbound() to out.Deposit() represents a semantic improvement, using more specific terminology that better describes the actual operation.

88-97: Consistent use of refined API

The renamed method is consistently used throughout the test suite, maintaining coherence with the architectural changes.

119-128: Uniform API usage pattern

The continued consistent usage of the renamed API method enhances code readability and maintains uniformity across the test suite.

131-158: Comprehensive test coverage for withdrawal functionality

The addition of a test case for "withdraw" events ensures proper coverage of the new withdrawal functionality, which is essential for maintaining code quality and preventing regressions.

zetaclient/chains/sui/signer/signer_tracker.go (1)

63-67: Concise tracker vote posting implementation

The postTrackerVote method is appropriately focused on a single responsibility and includes a helpful comment explaining that transaction success status is irrelevant at this stage.

zetaclient/tss/crypto.go (3)

91-93: Useful accessor method for ECDSA public key

The addition of the AsECDSA() method provides a clean way to access the underlying ECDSA public key, facilitating operations that require direct access to this key.

103-103: Enhanced public key compression method

The switch from elliptic.MarshalCompressed to crypto.CompressPubkey leverages the Ethereum crypto package's functionality, which may offer additional benefits or consistency with other parts of the codebase.

140-142: Support for Sui blockchain addresses

The addition of the AddressSui() method extends the PubKey struct's capabilities to support Sui blockchain operations, which is essential for implementing SUI withdrawals as specified in the PR objectives.
zetaclient/chains/sui/client/client_live_test.go (1)

97-118:
❓ Verification inconclusive

Good test structure with clear ARRANGE-ACT-ASSERT pattern

The test case for GetOwnedObjectID follows best practices with a clear separation of test phases and good comments explaining the purpose of each section.

However, I do have some concerns about the test's long-term maintainability:
-		// Given admin wallet us Cetus DEX team
+		// Given admin wallet of Cetus DEX team
Also, consider making this test more robust against future changes:

The test relies on a third-party wallet (Cetus DEX) that might change

The hardcoded object ID might need updating if the referenced object changes

🏁 Script executed:
#!/bin/bash
# Verify if the object ID still exists and matches the expected type
curl -s "https://sui-mainnet.public.blastapi.io" \
-H "Content-Type: application/json" \
-d '{
  "jsonrpc": "2.0",
  "id": 1,
  "method": "sui_getObject",
  "params": [
    "0x89c1a321291d15ddae5a086c9abc533dff697fde3d89e0ca836c41af73e36a75",
    {
      "showType": true,
      "showOwner": true
    }
  ]
}' | jq '.result.data | {owner: .owner, type: .type}'
Length of output: 564
Attention: Maintain Test Clarity & Future Robustness

The test for GetOwnedObjectID is well-structured with a clear ARRANGE-ACT-ASSERT pattern, and our verification confirms that the hardcoded object ID currently returns the expected owner and type. However, note the following points for long-term maintainability:
Update the inline comment to correct the typo:
-		// Given admin wallet us Cetus DEX team
+		// Given admin wallet of Cetus DEX team
The test relies on a specific third-party wallet (Cetus DEX), and the hardcoded object ID may become outdated if the wallet details or the referenced object change. Consider parameterizing these values or decoupling them from the test (e.g., through configuration or mocking) to safeguard against future changes.
pkg/scheduler/scheduler_test.go (2)

37-40: Updated test assertion to match new behavior

The comment and assertion have been properly updated to reflect the new behavior where the task runs at start and after 1 second interval.

364-364: Scheduler initialization updated to use new parameter

The test suite now initializes the scheduler with a 1-second default interval, which aligns with the updated constructor signature.

pkg/scheduler/scheduler.go (2)

22-27: Improved struct field ordering and added configurable default interval

The Scheduler struct fields have been reordered for better readability, and a new defaultInterval field has been added to make the scheduler more configurable.

96-96: Using configurable default interval instead of hardcoded value

The Register method now properly uses the configured defaultInterval instead of a hardcoded value, which is more flexible and consistent with the new design.

zetaclient/testutils/mocks/sui_gen.go (2)

21-21: Added interface method for retrieving owned object IDs

The new GetOwnedObjectID method extends the interface to support retrieving object IDs by owner and struct type, which aligns with the PR objectives for SUI withdrawals.

30-34: Added transaction execution methods to support withdrawals

These new interface methods (MoveCall and SuiExecuteTransactionBlock) provide the necessary functionality for building and executing transactions for SUI withdrawals.

These additions complete the necessary interface for implementing the withdrawal functionality described in the PR objectives.

e2e/config/config.go (2)

18-18: Clean import update.

The import has been appropriately updated to use the centralized package for Sui contracts rather than a utility package, which aligns with better code organization.

406-413: Improved signer implementation.

The SuiSigner method has been refactored to use the consolidated signing functionality from the centralized Sui package. This change simplifies the implementation and eliminates code duplication.

pkg/contracts/sui/withdrawal.go (2)

11-18: Well-structured data model for withdrawal events.

The WithdrawData struct clearly captures all necessary fields for a Sui withdrawal event, following the same pattern as other event data models in the codebase.

20-22: Simple utility method for gas identification.

The IsGas method provides a clean way to identify gas coin transactions.

pkg/contracts/sui/deposit.go (3)

10-11: Good semantic renaming of struct.

Renaming from Inbound to DepositData makes the purpose clearer and better represents the data structure's functionality.

21-21: Consistent method renaming.

The method name change from IsGasDeposit to IsGas aligns with the struct's new name and creates consistency with the WithdrawData implementation.

25-25: Function name now better reflects its purpose.

Renaming parseInbound to parseDeposit provides clarity about the function's specific role in handling deposit events.

zetaclient/orchestrator/v2_bootstrap.go (3)

203-207: Improved gateway initialization with clear documentation.

The comment clearly indicates the expected format for the gateway address, and the code now uses the appropriate constructor function that accepts this format.

211-214: Proper sequencing of operations.

The base observer is now created after the gateway, ensuring dependencies are properly established before they're needed.

218-218: Enhanced signer initialization with required dependencies.

The signer creation now includes all necessary dependencies (client, gateway, and core), which aligns with the PR's goal of enhancing SUI withdrawal functionality.

zetaclient/chains/sui/signer/signer_withdrawcap.go (3)

13-21: Well-structured concurrency usage in this struct.
You’ve wrapped the data in a setup that correctly uses a mutex and timestamp to handle cache validity, making it easy to reason about.

22-31: Good thread-safe implementation of 'valid'.
Locking with RLock ensures safe concurrent reads, and the TTL comparison is straightforward.

33-40: Efficient synchronization in 'set'.
Using the write lock before updating state avoids race conditions. This is concise and clear.

zetaclient/chains/sui/sui.go (4)

85-87: Verify that 'OutboundTicker' is non-zero to avoid potential zero-interval scheduling.
If OutboundTicker is zero, the scheduler might spin continuously or never run. Confirm that this configuration is set appropriately.

105-105: Skipping comment.
No real changes apart from job registration.

206-227: Appropriate place for chain param updates.
Since these updates can affect the entire scheduling logic downstream, the centralized approach reduces confusion. Ensure no concurrency conflicts arise if this is called repeatedly in overlapping intervals.

229-233: Well-structured 'outboundLogger'.
Attaching the outbound ID in the context is a concise way to track logs for each transaction flow.

zetaclient/chains/sui/client/client.go (2)

160-160: Consider verifying the delimiter change in all dependent code.
Switching from ‘#’ to ‘,’ might break existing consumers if they rely on the old format. Check references to EncodeCursor to confirm no regressions.

🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 160-160: zetaclient/chains/sui/client/client.go#L160
Added line #L160 was not covered by tests

169-169: Handle legacy cursor formats or confirm no backward compatibility issues.
The updated strings.Split(cursor, ",") might fail for older cursors. If backward compatibility is necessary, handle both delimiters gracefully or ensure old cursors don’t exist in the wild.

🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 169-169: zetaclient/chains/sui/client/client.go#L169
Added line #L169 was not covered by tests

zetaclient/chains/sui/signer/signer_tx.go (2)

49-53: Confirm concurrency behavior for cached data.
If s.getWithdrawCapIDCached returns shared data, consider whether concurrent calls require locks or synchronization to avoid race conditions.

54-64: Check numeric conversion safety.
Parameters like gasBudget are derived via strconv.FormatUint; ensure these values remain within Sui's allowed gas limits.

zetaclient/chains/sui/observer/inbound.go (1)

162-201: Verify deposit extraction correctness.
Switching from inbound to deposit is consistent with the broader refactoring. Confirm that all dependencies (e.g., deposit object, cross-chain call flags) remain intact.

zetaclient/chains/sui/observer/observer.go (2)

24-29: Ensure thread-safe access to txMap.
Using txMap with txMu is a good start. Confirm all interactions, including reads and writes, occur under the lock.

115-120: Read-lock usage looks clean.
This locking pattern is straightforward and safe, ensuring minimal overhead for gas price reads.

zetaclient/testutils/mocks/sui_client.go (3)

50-76: Stable mock setup
These lines follow the expected usage of testify's mocking. The function structure is conventional and should be reliable.

106-132: No improvements needed
The mocking approach is consistent, and argument handling appears correct for MoveCall.

171-197: Mock structure looks good
SuiExecuteTransactionBlock uses standard testify pattern for returning mock values, with no obvious issues.

zetaclient/chains/sui/signer/signer_test.go (7)

104-119: Well-structured testSuite
The testSuite struct offers a clear blueprint for managing mocks and test dependencies.

120-159: Solid overall setup
No issues identified. Environment initialization is straightforward and aligns with best practices.

161-164: Mock helper
Consistently follows the testify approach to define custom return values.

166-174: Adequate coverage
The mocked MoveCall helper is succinct and effectively captures arguments for verification.

175-185: MockExec is appropriate
This function aligns with the style and usage in the rest of the codebase, returning well-defined mock responses.

187-190: Minimal and clear
The testTracker struct is straightforward, with no apparent improvements needed.

192-211: Tracker bag logic
This function nicely appends newly identified trackers. The approach is simple yet effective.

zetaclient/chains/sui/observer/observer_test.go (1)

91-91: Cursor separator check
The change to comma-based cursor "ABC123_first_tx,0" should be verified in related logic to avoid unexpected mismatches with older cursor formats.

pkg/contracts/sui/crypto.go (4)

36-41: Static intent
defaultIntent correctly encodes the standard Sui transaction scope/version/app ID.

42-50: Prefix logic
messageWithIntentPrefix systematically prepends the default intent. No issues identified.

52-65: Sui address derivation
Combining secp256k1 flag and compressed pubKey is consistent with official Sui documentation.

89-117: Signature parsing
Validation steps and error messages are methodical, ensuring easier debugging.

zetaclient/chains/sui/signer/signer.go (2)

28-41: RPC interface is cohesive.
Having a typed interface with context-based calls clarifies usage and error handling. Ensure all implementations handle context cancellation properly to avoid lengthy blocking operations.

106-124: Signature flow is well-aligned with Sui’s ECDSA requirements.
Double-hashing with SHA-256 for Sui transactions appears correct per the documentation. The step to unify TSS signature logic under TSS().Sign() is also clear.

pkg/contracts/sui/crypto_test.go (3)

1-13: Test package and imports are well-organized.
Using testify/assert and require is an effective choice for streamlined test assertions.

82-112: Serialization and deserialization of ECDSA signatures is validated.
The test is comprehensive, checking signature length and re-validating the public key. This ensures correct round-tripping.

114-159: Secp256k1 signer tests are well-structured.
Private key handling and final address checks look correct. Good job verifying sign operations do not fail.

pkg/contracts/sui/gateway.go (12)

21-28: Added concurrency control with RWMutex.
The Gateway struct’s mu effectively guards packageID and objectID. Ensure that all getters and updaters consistently acquire locks to maintain data integrity.

45-54: New constructor promotes structured input.
NewGatewayFromPairID conveniently parses the comma-separated pair to set packageID and objectID. Handle unexpected formats gracefully, as you already do with parsePair.

70-72: IsDeposit check fosters clarity.
This explicit method clarifies event intention and ensures easy identification of deposit-type events.

84-86: IsWithdraw elegantly segregates withdraw events.
No issues noted; simple and direct.

88-96: Withdrawal data retrieval is consistent.
Similar to Deposit(), the type assertion is well-structured. Ensure that external code sets the correct event content.

98-101: Thread-safe access for PackageID().
Good use of read lock to prevent data races on packageID.

105-110: Thread-safe getter for ObjectID().
Matches the read-lock pattern used in PackageID(). No concerns here.

117-120: WithdrawCapType() uses existing PackageID().
Constructing the string with module name is straightforward.

122-136: UpdateIDs ensures concurrency safety.
The function properly locks before modifying both fields. Also, returning an explicit error when parsing fails is beneficial for debugging.

179-182: Withdrawal event parsing integrated with deposit logic.
The switch statement systematically handles recognized event types. This keeps the code well-organized for future expansions.

200-223: ParseTxWithdrawal gracefully handles missing or invalid events.
Filtering out older events or lacking events with explicit error returns helps identify upstream data issues. The function’s chain of calls (including event.Withdrawal()) is coherent.

275-283: parsePair properly extracts package and gateway IDs.
Error messaging is clear if the format is invalid.

zetaclient/chains/sui/observer/outbound.go (2)

189-224: Validate multiple signatures and improve coverage.
Currently, only the first signature in TxSignatures is checked. Should additional signatures appear, clarifying how they are handled or rejected might help. Also, many validation failure paths remain untested.

Please confirm whether multi-signature scenarios are expected and, if so, consider extending the logic or clarifying that only one signature is allowed.

🧰 Tools

🪛 GitHub Check: codecov/patch

[warning] 198-199: zetaclient/chains/sui/observer/outbound.go#L198-L199
Added lines #L198 - L199 were not covered by tests

[warning] 203-204: zetaclient/chains/sui/observer/outbound.go#L203-L204
Added lines #L203 - L204 were not covered by tests

[warning] 207-208: zetaclient/chains/sui/observer/outbound.go#L207-L208
Added lines #L207 - L208 were not covered by tests

[warning] 211-212: zetaclient/chains/sui/observer/outbound.go#L211-L212
Added lines #L211 - L212 were not covered by tests

[warning] 216-217: zetaclient/chains/sui/observer/outbound.go#L216-L217
Added lines #L216 - L217 were not covered by tests

[warning] 220-221: zetaclient/chains/sui/observer/outbound.go#L220-L221
Added lines #L220 - L221 were not covered by tests

248-269: Good concurrency approach for transaction storage.
The read-write locks in getTx, setTx, and unsetTx correctly protect the shared txMap. This design prevents data races and ensures consistent state. No immediate changes are needed.