feat: Checking LZ OFTLimits on transferTokenLayerZero (DEV-1140)

[TheMj0ln1r]

Summary by CodeRabbit

Release Notes

• New Features

  • Cross-chain token transfers now validate and enforce minimum and maximum amount limits before execution, preventing invalid transfers.

• Tests

  • Added comprehensive boundary condition tests for cross-chain transfer amount limits across multiple networks.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[notion-workspace]

Check limits from LZ on transferTokenLayerZero

[octane-security-app]

Summary by Octane

New Contracts

No new contracts were added.

Updated Contracts

• LayerZeroLib.sol: The smart contract now includes OFT limits to enforce minimum and maximum transaction amounts per message.

---

🔗 Commit Hash: b324168

[coderabbitai]

Important

Review skipped

Auto incremental reviews are disabled on this repository.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

• 🔍 Trigger a full review

Walkthrough

The changes enforce OFT (Omnichain Fungible Token) limit boundaries in the LayerZero library's transfer function by decoding and validating minimum and maximum amount limits before token transfer execution. Comprehensive test coverage is added to verify boundary-case scenarios across multiple test suites.

Changes

Cohort / File(s)	Summary
LayerZero OFT Limit Enforcement src/libraries/LayerZeroLib.sol	Introduces per-message amount bounds validation by decoding OFTLimit and OFTReceipt from quote results. Enforces amount >= limit.minAmountLD and amount <= limit.maxAmountLD (if set) with corresponding error messages. Updates sendParams.minAmountLD to use receipt.amountReceivedLD.
Boundary Condition Tests test/mainnet-fork/LayerZero.t.sol	Adds three new test_transferTokenLayerZero_OFTLimitBoundary() functions across MainnetControllerTransferLayerZeroFailureTests and ForeignControllerTransferLayerZeroFailureTests, verifying amount-above-max reverts and min/max boundary conditions.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Possibly related PRs

• fix: Get quote from ALM Proxy (DEV-1141) #230: Both modify OFT quote retrieval/decoding and the assignment of minAmountLD using decoded OFTReceipt values.
• refactor: LayerZero #216: Both modify LayerZeroLib.transferTokenLayerZero function logic for OFT transfers and quote handling.
• feat: Use LayerZeroLib in Foreign Controller (DEV-1142) #231: Both adjust the same LayerZeroLib.transferTokenLayerZero function for OFT limit handling.

Suggested reviewers

• lucas-manuel
• deluca-mike
• supercontracts

Poem

🐰 Bounds we hop, not past the fence,
Min and max make perfect sense,
LayerZero tokens safe at last,
Crossing chains with limits fast!
Tests ensure no bounds are breached,
Limits checked, the goal's now reached! ✨

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The PR title 'feat: Checking LZ OFTLimits on transferTokenLayerZero (DEV-1140)' follows the required format with a concise prefix and clearly describes the main change: adding OFT limit checks to the LayerZero transfer function.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch dev-1140-lz-oft-limit-checks

Warning

Review ran into problems

🔥 Problems

Errors were encountered while retrieving linked issues.

Errors (1)

• DEV-1140: Entity not found: Issue - Could not find referenced Issue.

Tip

🧪 Unit Test Generation v2 is now available!

We have significantly improved our unit test generation capabilities.

To enable: Add this to your .coderabbit.yaml configuration:

reviews:
  finishing_touches:
    unit_tests:
      enabled: true

Try it out by using the @coderabbitai generate unit tests command on your code files or under ✨ Finishing Touches on the walkthrough!

Have feedback? Share your thoughts on our Discord thread!

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🤖 Fix all issues with AI agents

In `@test/mainnet-fork/LayerZero.t.sol`:
- Around line 647-741: The test is operating against mainnet fixtures but runs
on the Arbitrum fork; replace references to mainnetController, rateLimits,
almProxy, usdt (and SPARK_PROXY when impersonating) with the corresponding
foreign-controller fixtures (e.g., foreignController, foreignRateLimits,
foreignAlmProxy, foreignUsdt, and foreign SPARK_PROXY variable) so the setup,
rate-limit mutation, deals, and transferTokenLayerZero calls target the Arbitrum
deployment; update calls to ILayerZero(USDT_OFT) to use the foreign token
variable and ensure setRateLimitData, setLayerZeroRecipient, deal() and
transferTokenLayerZero invocations reference the foreign fixtures and relayer as
in the other forked tests.

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Fix Arbitrum fork boundary test to use foreign controller fixtures.

This block configures and calls mainnetController/rateLimits/almProxy/usdt on the Arbitrum fork, so it targets the wrong deployment and will likely fail or become a no-op. Use the foreign controller fixtures instead.

Proposed fix

-        vm.startPrank(SPARK_PROXY);
+        vm.startPrank(SPARK_EXECUTOR);

-        rateLimits.setRateLimitData(
+        foreignRateLimits.setRateLimitData(
             keccak256(abi.encode(
-                mainnetController.LIMIT_LAYERZERO_TRANSFER(),
+                foreignController.LIMIT_LAYERZERO_TRANSFER(),
                 USDT_OFT,
                 destinationEndpointId
             )),
             type(uint256).max,
             0
         );

-        mainnetController.setLayerZeroRecipient(destinationEndpointId, target);
+        foreignController.setLayerZeroRecipient(destinationEndpointId, target);

-        deal(address(usdt), address(almProxy), type(uint256).max);
+        deal(USDT0, address(foreignAlmProxy), type(uint256).max);

-        mainnetController.transferTokenLayerZero{value: fee.nativeFee}(
+        foreignController.transferTokenLayerZero{value: fee.nativeFee}(
             USDT_OFT,
             limits.maxAmountLD + 1, 
             destinationEndpointId
         );

-        mainnetController.transferTokenLayerZero{value: fee.nativeFee}(
+        foreignController.transferTokenLayerZero{value: fee.nativeFee}(
             USDT_OFT,
             limits.minAmountLD,
             destinationEndpointId
         );

-        mainnetController.transferTokenLayerZero{value: fee.nativeFee}(
+        foreignController.transferTokenLayerZero{value: fee.nativeFee}(
             USDT_OFT,
             limits.maxAmountLD,
             destinationEndpointId
         );

🤖 Prompt for AI Agents

In `@test/mainnet-fork/LayerZero.t.sol` around lines 647 - 741, The test is
operating against mainnet fixtures but runs on the Arbitrum fork; replace
references to mainnetController, rateLimits, almProxy, usdt (and SPARK_PROXY
when impersonating) with the corresponding foreign-controller fixtures (e.g.,
foreignController, foreignRateLimits, foreignAlmProxy, foreignUsdt, and foreign
SPARK_PROXY variable) so the setup, rate-limit mutation, deals, and
transferTokenLayerZero calls target the Arbitrum deployment; update calls to
ILayerZero(USDT_OFT) to use the foreign token variable and ensure
setRateLimitData, setLayerZeroRecipient, deal() and transferTokenLayerZero
invocations reference the foreign fixtures and relayer as in the other forked
tests.

[octane-security-app]

Overview

Vulnerabilities found:	5

---

🔗 Commit Hash: b324168
🛡️ Octane Dashboard: All vulnerabilities

[github-actions]

Coverage after merging dev-1140-lz-oft-limit-checks into fix/rate-limit-for-transferTokenLayerZero will be

99.30%

Coverage Report

File	Stmts	Branches	Funcs	Lines	Uncovered Lines
deploy
ControllerDeploy.sol	100%	100%	100%	100%
ForeignControllerInit.sol	100%	100%	100%	100%
MainnetControllerInit.sol	97.37%	93.33%	100%	100%	152, 90
src
ALMProxy.sol	100%	100%	100%	100%
ALMProxyFreezable.sol	100%	100%	100%	100%
ForeignController.sol	96.10%	89.66%	95.65%	98.04%	130–131, 131, 131, 556
MainnetController.sol	99.18%	100%	98.36%	99.24%	596–597
OTCBuffer.sol	92.31%	100%	83.33%	93.75%	55
RateLimitHelpers.sol	100%	100%	100%	100%
RateLimits.sol	100%	100%	100%	100%
WEETHModule.sol	93.18%	90%	85.71%	96.30%	65, 72
src/libraries
AaveLib.sol	100%	100%	100%	100%
ApproveLib.sol	100%	100%	100%	100%
CCTPLib.sol	100%	100%	100%	100%
CurveLib.sol	100%	100%	100%	100%
ERC4626Lib.sol	97.06%	90%	100%	100%	117
LayerZeroLib.sol	96.55%	85.71%	100%	100%	109
PSMLib.sol	100%	100%	100%	100%
UniswapV4Lib.sol	99.32%	95.65%	100%	100%	282
WEETHLib.sol	100%	100%	100%	100%