• $71,250 USDC main award pot
• $3,750 USDC gas optimization award pot
• Join C4 Discord to register
• Submit findings using the C4 form
• Read our guidelines for more details
• Starts August 25, 2022 20:00 UTC
• Ends September 01, 2022 20:00 UTC

• Do you have a link to the repo that the contest will cover? https://github.com/OlympusDAO/bophades2 (private repo)
• How many (non-library) contracts are in the scope? 18
• Total sLoC in these contracts? 1944
• How many library dependencies? 0
• How many separate interfaces and struct definitions are there for the contracts within scope? 5
• Does most of your code generally use composition or inheritance? Inheritance
• How many external calls? 2
• Is there a need to understand a separate part of the codebase / get context in order to audit this part of the protocol? yes
• Please describe required context: Bond protocol for launching bonds. Will provide docs.
• Does it use an oracle? yes
• If yes, please describe what kind? e.g. chainlink or ..? Chainlink
• Does the token conform to the ERC20 standard? Yes
• Are there any novel or unique curve logic or mathematical models? No
• Does it use a timelock function? no
• Is it an NFT? no
• Does it have an AMM? no
• Is it a fork of a popular project? no
• Does it use rollups? no
• Is it multi-chain? no
• Does it use a side-chain? no
• Do you have a preferred timezone for communication? CST/EST

• Default kernel
• Main registry for protocol
• Controlled by the executor address
• Has defined Actions for mutating state of the registry
• Intended to be used with the OlympusGovernance policy
• Includes all of the main dependencies used for Policies and Modules
• Uses a KernelUtils.sol file to define common global functions

• Define common global utility functions to be used in any contract in the protocol

All modules have an assigned 5-byte keycode. Also have no dependencies other than the Kernel.

• Keycode: TRSRY
• Treasury for the protocol
• Holds all assets for the treasury
• Maintains debt balances for contracts that borrow funds

• Keycode: MINTR
• Wrapper for minting and burning capabilities of OHM token

• Keycode: PRICE
• Holds historical price oracle data for the Range-Bound Stability System

• Keycode: PRICE
• Holds range data for the Range-Bound Stability System

• Keycode: INSTR
• Used for storing batched Kernel instructions for convenient proposal execution in the Governance policy

• Keycode: VOTES
• Dummy votes token for phased governance rollout

All policies have their module dependencies defined inside the configureDependencies function. Policies may also have outside dependencies, which will be listed here.

• Main contract for the Range-Bound Stability system
• Facilitates bond markets (cushions) and treasury swaps (walls) when appropriate.
• Ext. Dependencies: BondAuctioneer (Bond Protocol)

• Contract to be used by BondAuctioneer to allow minting/burning of OHM for bond payouts.
• Ext. Dependencies: BondAggregator (Bond Protocol)

• Policy for keepers to activate regularly scheduled RBS functions and be compensated.

• Policy to allow specified role to adjust treasury debt and approvals.

• Governor contract, has vote locking and net-votes vote counting built in
• Intended to be used as the executor role in the Kernel

• Policy for distributing VOTES tokens (for phased rollout of governance)

• Kernel and the Default architecture
• Treasury hardening and making sure no potential accounting issues or unintended side effects
• Verification of the Range-Bound Stability contracts (Operator, BondCallback, Heart and associated modules) and any kind of accounting errors
• Verification of Governance policy and its custom vote counting and potential issues that might arise

In general, would like eyes on core functionality of the contracts. Gas optimizations are not prioritized but are welcome.

The Bophades project uses the Foundry framework to build, test, and deploy the system. It's expected that you're using a *nix-based development environment. All commands assume you are using a shell terminal and your current working directory is the project root.

If you don't already have Foundry, follow this short guide to install.

NOTE: Slither does not work in the repo (yet). If you find a way to do so, please share in the discord :)

Bophades relies on two (2) external project repositories as dependencies:

• forge-std
• solmate

External dependencies are stored in the /lib folder.

Foundry uses git submodules to manage dependencies from remote repositories. To install the Bophades dependencies, run:

$ git submodule update --init --recursive

Bophades also requires the use of jq for running some tests. jq is a program for manipulating JSON files from the command line, available on most OS's. jq installation instructions can be found here: https://stedolan.github.io/jq/download/

Once dependencies are installed, you can build the project by running:

$ forge build

The generated bytecode, ABI, and AST node structure is output to the /out folder.

The Bophades test suite is written in Solidity and uses the forge-std library and forge test framework. To run the full test suite, run:

$ forge test

To also generate a gas report, run:

$ FORGE_GAS_REPORT=true forge test

NOTE 1: the Bophades test suite uses a Solidity library that employs the --ffi cheatcode, which allows the test to execute the shell commands defined in the library. These commands simply read data from the /out folder to collect lists of functions which have access control modifiers for automatically generating permissioned accounts. --ffi is enabled by default in the foundry.toml config file for this project.

NOTE 2: There may be an error when testing with ffi:

ERROR foundry_evm::executor::inspector::cheatcodes::ext: stderr err="tr: warning: an unescaped backslash at end of string is not portable\n"

This is caused by an unknown issue, likely with ffi, but is inconsequential - all of the tests should still pass as expected. If you do find out why this issue is present, please let us know!

The project uses a forge script to deploy the system to a blockchain network, src/scripts/Deploy.sol. There are certain dependencies for the project which are assumed to exist prior to the deployment including the OHM token and a reserve token, which are not covered in the scope of the deployment script. However, some test files, such as Operator.t.sol show examples of providing mocks for these dependencies.

The hard-coded addresses pre-populated in the deployment script are for the Goerli testnet versions of dependencies that Olympus has deployed.

To deploy the system, run the following command:

forge script ./src/scripts/Deploy.sol:OlympusDeploy --sig "deploy(address,address)()" $GUARDIAN_ADDRESS $POLICY_ADDRESS --rpc-url $RPC_URL --private-key $PRIVATE_KEY --slow -vvv --broadcast --verify --etherscan-api-key $ETHERSCAN_KEY

Note: Removing everything after -vvv will simulate the script locally instead of sending to the network.

If you create a .env file and load it into the terminal prior to running the command, you can use the script as written. If the script fails in the middle, you can resume by running the same command and passing the --resume flag at the end.

Following deployment, the system must be initialized with another script, which can be run by calling the initialize function on the same contract:

forge script ./src/scripts/Deploy.sol:OlympusDeploy --sig "initialize()()" --rpc-url $RPC_URL --private-key $GUARDIAN_PRIVATE_KEY --froms $GUARDIAN_ADDRESS --slow -vvv --broadcast

Olympus V3, aka Bophades, is the next iteration of the Olympus protocol. It is a foundation for the future of the protocol, utilizing the Default framework to allow extensibility at the base layer via fully onchain governance mechanisms. There are a few major pieces to this release: the core registry (Kernel), treasury, minter, governor, and finally, the range-bound stability (RBS) system.

Range-Bound Stability is a system for algorithmically using treasury assets to support OHM exchange rates with its major liquidity pairs. More details can be found here:

• Whitepaper
• Initial spec
• Video overview

The Olympus governor is an adaptation of the Default governance contract, which uses token voting to interact with the kernel as its executor. This allows voters to add and remove contracts from the kernel. There are a few unique systems to this governor, like the net-votes vote counting system (vs the regular quorum voting as is common). More information can be found in the doc below.

• Documentation

Bophades uses the Default Framework to configure the protocol’s smart contracts and authorized addresses within the system. In this framework, all contract dependencies and authorizations are managed via “Actions” in the Kernel.sol contract. These actions are as follows:

• Installing/Upgrading a Module
• Activating/Deactivating a Policy
• Changing the Executor
  • Executor is the address able to call major Kernel functions
• Changing the Admin
  • Admin is controller of policy roles
• Migrating the Kernel

All non-Kernel smart contracts in the protocol are either Module Contracts or Policy Contracts, which you can think of as the protocol's "back-end” and “front-end” logic, respectively. In some ways, this shares similarities to the "core" vs. "periphery" design pattern used by protocols like Uniswap: core contracts (Modules) define the core system capabilities, while periphery contracts (Policies) expose the interfaces that enable EOAs use to interact with the protocol's various features.

While most protocols have ownership defined at the contract level, Default's philosophy is to define ownership at the protocol level, within the Kernel. This is the function of the Kernel's Executor—it is the address that has the ability to execute actions within the Kernel. In Default, the executor defaults to the Deployer, but this can be set to any address using the Kernel Action ChangeExecutor: it's entirely possible to have a Kernel managed by a single wallet, or a multisig, but it can also be a contract. In Bophades, the Kernel's owner will be the Governance (Policy) contract.

Protocols may sometimes have to call authorized functions to manage protocol operations, such as moving treasury funds or making adjustmenets to protocol parameters, requiring the use of operational multisigs to function correctly. To accomodate these situtations, the Kernel includes a simple role-based access control system. Not to be confused with the permissioned module modifier, Policies have their own modifier onlyRole to prevent certain functions to be called except by pre-approved addresses. In the Kernel, roles are simply two-way mappings between an address and a typed bytes32 variable, which is assigned in the Kernel via grantRole() and revokeRole(). These functions can only called by a separate address known as the Admin. The Admin cannot execute Kernel Actions—sole purpose is to grant and revoke roles.

Like the Executor, the Admin address defaults to the deployer, but can be changed using the Kernel Action ChangeAdmin.

The last and final action that can be performed by the Kernel is MigrateKernel. This action is particularly sensitive and should only be done the utmost care attention to detail. In Default, any contract that is installed or configured in a Kernel.sol needs to have an internal variable that points to the contract address of instance of the Kernel it is intended for. As a result, the same instance of a Module or a Policy cannot be reused across other Kernels. However, there may be circumstances in the future where new changes are made to the Kernel, like new Actions that are developed, gas optimizations found, or security improvements made that warrant porting the protocol contracts to a new instance of a Kernel without redeploying the contracts.

The MigrateKernel Action reconfigures the internal variable for each contract registered in the Kernel, which will brick it. There are no forseeable plans to use this action in Bophades, but it's important to be aware of its' existence.

Modules are internal-facing smart contracts that store shared state across the protocol, and are used as dependencies for Policies within the protocol. A module is a mix of a microservice and a data model: each Module is responsible for managing a particular data model within the system. Modules should have no dependencies of their own, and their logic should be limited to modifying their own internal state: in other words, a Module contract should not read from or the modify state of an external contract. By and large, EOAs should never call module contracts directly — if ever.

In Default protocols, Module contracts are referenced internally as 5 byte uppercase KEYCODE() representing their underlying data models. For example, an ERC20 token module might have the keycode TOKEN, while a Treasury module might have the keycode TRSRY. This abstraction is intended to help clarify and distinguish where side effects occur when the protocol experiences external interactions, which should simplify both reading, writing and auditing its business logic.

In Bophades, we have the following Modules:

• MINTR — The Minter Module, used for minting OHM. We use the MINTR module instead of a TOKEN module directly due to requiring backwards compatibility with the legacy OHM token.
• TRSRY — The Treasury Module, used for depositing and withdrawing assets within the protocol. Also manages token debt allocated to policies.
• PRICE — Used to store historical price oracle data. Used for the functionality of the Range-Bound Stability (RBS) system.
• RANGE — Stores range information for the RBS system.
• INSTR — The Instructions Module, used for storing batched Kernel instructions for convenient proposal execution in the Governance policy.
• VOTES — The Votes Module, used for keeping track of the number of votes an address has in the Governance policy. Used during phased roll-out of the governance.

In addition, Modules have a VERSION() and optional initialization logic INIT() thats called when the Module is integrated into the Kernel, which is mainly used when an existing module is upgraded and its state needs to be migrated. However, the contracts in Bophades do not utilize either of these properties, so for the purposes of the audit, these can be largely ignored.

Modules often have permissioned functions which should only be called by authorized Policy contracts, such as minting tokens or withdrawing treasury funds. These functions should include a permissioned modifier to ensure only authorized contracts can call access them.

While Module contracts define where protocol side effects occur, Policy contracts define how they occur. Policy contracts are external-facing contracts that intercept inbound calls to the protocol, then compose & route all the changes made in the protocol to the corresponding Modules. As a result, Policy contracts do have external dependencies, which are the Kernel Modules that they read and write from.

In Default protocols, Policies must declare their dependencies to the Kernel as part of the contracts state. You will notice that each Policy contract has two functions configureDependencies(), which return a list of Kernel modules by their Keycode, and requestPermissions(), which the function selectors of the privileged functions they need to call from within the contract logic.

Policies are not "stateless": they can store their own state. However, unlike Modules, the state in Policies should only be used internally, and never as part of another contract's logic. One mental model you can use is that Policies store local state in the protocol, while Modules store global state: if you find that any state is re-used across multiple Policies, it should most likely be abstracted into a Module.

The following Policies are included in Bophades:

• TreasuryCustodian.sol — Utility policy for allowing a specified role to modify treasury state in abnormal circumstances. Used for granting and removing approvals and managing debt.
• Operator.sol — Main policy for the Range-Bound Stability system. Inputs market orders, spins up bond markets and facilitates swaps with the treasury in line with the RBS spec (#Range-Bound Stability (RBS) system).
• BondCallback.sol — Used as a callback for bond markets. Allows bond markets to mint OHM for payouts.
• Heart.sol — Contract to allow easy access for keepers to call RBS keeper functions.
• PriceConfig.sol — Used for a specified role to adjust parameters in the PRICE module
• Governance.sol — Governor contract made to work with the Default framework. // TODO
• VoterRegistration.sol — Policy for distributing VOTES tokens (for phased rollout of governance)