tempo_precompiles/

error.rs

//! Unified error handling for Tempo precompiles.
//!
//! Provides [`TempoPrecompileError`] — the top-level error enum — along with an
//! ABI-selector-based decoder registry for mapping raw revert bytes back to
//! typed error variants.

use std::{
    collections::HashMap,
    sync::{Arc, LazyLock},
};

use crate::{tip20::TIP20Error, tip1060_storage_credits::StorageCreditsError};
use alloy::{
    primitives::{FixedBytes, Selector, U256},
    sol_types::{Panic, PanicKind, SolError, SolInterface},
};
use alloy_evm::EvmInternalsError;
use revm::{
    context::journaled_state::JournalLoadError,
    precompile::{PrecompileError, PrecompileHalt, PrecompileOutput, PrecompileResult},
};
use tempo_contracts::precompiles::{
    AccountKeychainError, AddrRegistryError, FeeManagerError, NonceError, ReceivePolicyGuardError,
    RolesAuthError, SignatureVerifierError, StablecoinDEXError, TIP20ChannelReserveError,
    TIP20FactoryError, TIP403RegistryError, TIP1060StorageCreditsError, TIPFeeAMMError,
    UnknownFunctionSelector, ValidatorConfigError, ValidatorConfigV2Error,
};

/// Top-level error type for all Tempo precompile operations
#[derive(
    Debug, Clone, PartialEq, Eq, thiserror::Error, derive_more::From, derive_more::TryInto,
)]
pub enum TempoPrecompileError {
    /// Stablecoin DEX error
    #[error("Stablecoin DEX error: {0:?}")]
    StablecoinDEX(StablecoinDEXError),

    /// Error from TIP20 token
    #[error("TIP20 token error: {0:?}")]
    TIP20(TIP20Error),

    /// Error from TIP20 factory
    #[error("TIP20 factory error: {0:?}")]
    TIP20Factory(TIP20FactoryError),

    /// Error from TIP-20 channel reserve
    #[error("TIP20 channel reserve error: {0:?}")]
    TIP20ChannelReserveError(TIP20ChannelReserveError),

    /// Error from roles auth
    #[error("Roles auth error: {0:?}")]
    RolesAuthError(RolesAuthError),

    /// Error from TIP20 registry (TIP-1022)
    #[error("TIP20 registry error: {0:?}")]
    AddrRegistryError(AddrRegistryError),

    /// Error from 403 registry
    #[error("TIP403 registry error: {0:?}")]
    TIP403RegistryError(TIP403RegistryError),

    /// Error from TIP fee manager
    #[error("TIP fee manager error: {0:?}")]
    FeeManagerError(FeeManagerError),

    /// Error from TIP fee AMM
    #[error("TIP fee AMM error: {0:?}")]
    TIPFeeAMMError(TIPFeeAMMError),

    /// Error from Tempo Transaction nonce manager
    #[error("Tempo Transaction nonce error: {0:?}")]
    NonceError(NonceError),

    /// EVM panic (i.e. arithmetic under/overflow, out-of-bounds access).
    #[error("Panic({0:?})")]
    Panic(PanicKind),

    /// Error from validator config
    #[error("Validator config error: {0:?}")]
    ValidatorConfigError(ValidatorConfigError),

    /// Error from validator config v2
    #[error("Validator config v2 error: {0:?}")]
    ValidatorConfigV2Error(ValidatorConfigV2Error),

    /// Error from account keychain precompile
    #[error("Account keychain error: {0:?}")]
    AccountKeychainError(AccountKeychainError),

    /// Error from signature verifier precompile
    #[error("Signature verifier error: {0:?}")]
    SignatureVerifierError(SignatureVerifierError),

    /// Error from TIP-1028 blocked transfers precompile
    #[error("TIP1028 blocked transfers error: {0:?}")]
    ReceivePolicyGuardError(ReceivePolicyGuardError),

    /// Error from TIP-1060 storage credits precompile
    #[error("TIP1060 storage credits error: {0:?}")]
    TIP1060StorageCreditsError(TIP1060StorageCreditsError),

    /// Gas limit exceeded during precompile execution.
    #[error("Gas limit exceeded")]
    OutOfGas,

    /// The calldata's 4-byte selector does not match any known precompile function.
    #[error("Unknown function selector: {0:?}")]
    UnknownFunctionSelector([u8; 4]),

    /// Unrecoverable internal error (e.g. database failure).
    #[error("Fatal precompile error: {0:?}")]
    #[from(skip)]
    Fatal(String),
}

impl From<EvmInternalsError> for TempoPrecompileError {
    fn from(value: EvmInternalsError) -> Self {
        match value {
            EvmInternalsError::Database(e) => Self::Fatal(e.to_string()),
        }
    }
}

impl From<JournalLoadError<EvmInternalsError>> for TempoPrecompileError {
    fn from(value: JournalLoadError<EvmInternalsError>) -> Self {
        match value {
            JournalLoadError::DBError(e) => Self::from(e),
            JournalLoadError::ColdLoadSkipped => Self::OutOfGas,
        }
    }
}

impl From<JournalLoadError<revm::context::ErasedError>> for TempoPrecompileError {
    fn from(value: JournalLoadError<revm::context::ErasedError>) -> Self {
        match value {
            JournalLoadError::DBError(e) => Self::Fatal(e.to_string()),
            JournalLoadError::ColdLoadSkipped => Self::OutOfGas,
        }
    }
}

/// Result type alias for Tempo precompile operations
pub type Result<T> = std::result::Result<T, TempoPrecompileError>;

impl TempoPrecompileError {
    /// Returns this error's ABI selector. For those variants which can't be encoded as a selector, it returns `FixedBytes<4>::ZERO`.
    pub fn selector(&self) -> FixedBytes<4> {
        match self {
            Self::StablecoinDEX(e) => e.selector(),
            Self::TIP20(e) => e.selector(),
            Self::TIP20ChannelReserveError(e) => e.selector(),
            Self::NonceError(e) => e.selector(),
            Self::TIP20Factory(e) => e.selector(),
            Self::RolesAuthError(e) => e.selector(),
            Self::AddrRegistryError(e) => e.selector(),
            Self::TIPFeeAMMError(e) => e.selector(),
            Self::FeeManagerError(e) => e.selector(),
            Self::TIP403RegistryError(e) => e.selector(),
            Self::ValidatorConfigError(e) => e.selector(),
            Self::ValidatorConfigV2Error(e) => e.selector(),
            Self::AccountKeychainError(e) => e.selector(),
            Self::SignatureVerifierError(e) => e.selector(),
            Self::ReceivePolicyGuardError(e) => e.selector(),
            Self::TIP1060StorageCreditsError(e) => e.selector(),
            Self::UnknownFunctionSelector(selector) => *selector,
            Self::Panic(_) => Panic::SELECTOR,
            Self::OutOfGas | Self::Fatal(_) => [0, 0, 0, 0],
        }
        .into()
    }

    /// Returns true if this error represents a system-level failure that must be propagated
    /// rather than swallowed, because state may be inconsistent.
    pub fn is_system_error(&self) -> bool {
        match self {
            Self::OutOfGas | Self::Fatal(_) | Self::Panic(_) => true,
            Self::StablecoinDEX(_)
            | Self::TIP20(_)
            | Self::TIP20ChannelReserveError(_)
            | Self::NonceError(_)
            | Self::TIP20Factory(_)
            | Self::RolesAuthError(_)
            | Self::AddrRegistryError(_)
            | Self::TIPFeeAMMError(_)
            | Self::FeeManagerError(_)
            | Self::TIP403RegistryError(_)
            | Self::ValidatorConfigError(_)
            | Self::ValidatorConfigV2Error(_)
            | Self::AccountKeychainError(_)
            | Self::SignatureVerifierError(_)
            | Self::ReceivePolicyGuardError(_)
            | Self::TIP1060StorageCreditsError(_)
            | Self::UnknownFunctionSelector(_) => false,
        }
    }

    /// Creates an arithmetic under/overflow panic error.
    pub fn under_overflow() -> Self {
        Self::Panic(PanicKind::UnderOverflow)
    }

    /// Creates an enum conversion error panic (Solidity Panic `0x21`).
    pub fn enum_conversion_error() -> Self {
        Self::Panic(PanicKind::EnumConversionError)
    }

    /// Creates an array out-of-bounds panic error.
    pub fn array_oob() -> Self {
        Self::Panic(PanicKind::ArrayOutOfBounds)
    }

    /// ABI-encodes this error and wraps it as a reverted [`PrecompileResult`].
    ///
    /// # Errors
    /// - `PrecompileOutput::halt(PrecompileHalt::OutOfGas, ..)` — if the variant is [`OutOfGas`](Self::OutOfGas)
    /// - `PrecompileError::Fatal` — if the variant is [`Fatal`](Self::Fatal)
    pub fn into_precompile_result(self, gas: u64, reservoir: u64) -> PrecompileResult {
        let bytes = match self {
            Self::StablecoinDEX(e) => e.abi_encode().into(),
            Self::TIP20(e) => e.abi_encode().into(),
            Self::TIP20Factory(e) => e.abi_encode().into(),
            Self::TIP20ChannelReserveError(e) => e.abi_encode().into(),
            Self::RolesAuthError(e) => e.abi_encode().into(),
            Self::AddrRegistryError(e) => e.abi_encode().into(),
            Self::TIP403RegistryError(e) => e.abi_encode().into(),
            Self::FeeManagerError(e) => e.abi_encode().into(),
            Self::TIPFeeAMMError(e) => e.abi_encode().into(),
            Self::NonceError(e) => e.abi_encode().into(),
            Self::Panic(kind) => {
                let panic = Panic {
                    code: U256::from(kind as u32),
                };

                panic.abi_encode().into()
            }
            Self::ValidatorConfigError(e) => e.abi_encode().into(),
            Self::ValidatorConfigV2Error(e) => e.abi_encode().into(),
            Self::AccountKeychainError(e) => e.abi_encode().into(),
            Self::SignatureVerifierError(e) => e.abi_encode().into(),
            Self::ReceivePolicyGuardError(e) => e.abi_encode().into(),
            Self::TIP1060StorageCreditsError(e) => e.abi_encode().into(),
            Self::OutOfGas => {
                return Ok(PrecompileOutput::halt(PrecompileHalt::OutOfGas, reservoir));
            }
            Self::UnknownFunctionSelector(selector) => UnknownFunctionSelector {
                selector: selector.into(),
            }
            .abi_encode()
            .into(),
            Self::Fatal(msg) => {
                return Err(PrecompileError::Fatal(msg));
            }
        };
        Ok(PrecompileOutput::revert(gas, bytes, reservoir))
    }
}

/// Registers all ABI error selectors for a [`SolInterface`] type into the decoder registry.
pub fn add_errors_to_registry<T: SolInterface>(
    registry: &mut TempoPrecompileErrorRegistry,
    converter: impl Fn(T) -> TempoPrecompileError + 'static + Send + Sync,
) {
    let converter = Arc::new(converter);
    for selector in T::selectors() {
        let converter = Arc::clone(&converter);
        registry.insert(
            selector.into(),
            Box::new(move |data: &[u8]| {
                T::abi_decode(data)
                    .ok()
                    .map(|error| DecodedTempoPrecompileError {
                        error: converter(error),
                        revert_bytes: data,
                    })
            }),
        );
    }
}

/// A decoded precompile error together with the raw revert bytes.
pub struct DecodedTempoPrecompileError<'a> {
    pub error: TempoPrecompileError,
    pub revert_bytes: &'a [u8],
}

/// Maps ABI error selectors to their decoder functions.
pub type TempoPrecompileErrorRegistry = HashMap<
    Selector,
    Box<dyn for<'a> Fn(&'a [u8]) -> Option<DecodedTempoPrecompileError<'a>> + Send + Sync>,
>;

/// Builds a [`TempoPrecompileErrorRegistry`] mapping every known error selector to its decoder.
pub fn error_decoder_registry() -> TempoPrecompileErrorRegistry {
    let mut registry: TempoPrecompileErrorRegistry = HashMap::new();

    add_errors_to_registry(&mut registry, TempoPrecompileError::StablecoinDEX);
    add_errors_to_registry(&mut registry, TempoPrecompileError::TIP20);
    add_errors_to_registry(&mut registry, TempoPrecompileError::TIP20Factory);
    add_errors_to_registry(
        &mut registry,
        TempoPrecompileError::TIP20ChannelReserveError,
    );
    add_errors_to_registry(&mut registry, TempoPrecompileError::RolesAuthError);
    add_errors_to_registry(&mut registry, TempoPrecompileError::AddrRegistryError);
    add_errors_to_registry(&mut registry, TempoPrecompileError::TIP403RegistryError);
    add_errors_to_registry(&mut registry, TempoPrecompileError::FeeManagerError);
    add_errors_to_registry(&mut registry, TempoPrecompileError::TIPFeeAMMError);
    add_errors_to_registry(&mut registry, TempoPrecompileError::NonceError);
    add_errors_to_registry(&mut registry, TempoPrecompileError::ValidatorConfigError);
    add_errors_to_registry(&mut registry, TempoPrecompileError::ValidatorConfigV2Error);
    add_errors_to_registry(&mut registry, TempoPrecompileError::AccountKeychainError);
    add_errors_to_registry(&mut registry, TempoPrecompileError::SignatureVerifierError);
    add_errors_to_registry(&mut registry, TempoPrecompileError::ReceivePolicyGuardError);
    add_errors_to_registry(
        &mut registry,
        TempoPrecompileError::TIP1060StorageCreditsError,
    );

    registry
}

/// Global lazily-initialized registry of all Tempo precompile error decoders.
pub static ERROR_REGISTRY: LazyLock<TempoPrecompileErrorRegistry> =
    LazyLock::new(error_decoder_registry);

/// Decodes raw revert bytes into a typed [`DecodedTempoPrecompileError`] using the global
/// [`ERROR_REGISTRY`], returning `None` if the data is shorter than 4 bytes or the selector
/// is unrecognized.
pub fn decode_error<'a>(data: &'a [u8]) -> Option<DecodedTempoPrecompileError<'a>> {
    if data.len() < 4 {
        return None;
    }

    let selector: [u8; 4] = data[0..4].try_into().ok()?;
    ERROR_REGISTRY
        .get(&selector)
        .and_then(|decoder| decoder(data))
}

/// Extension trait to convert `Result<T, TempoPrecompileError>` into a [`PrecompileResult`].
pub trait IntoPrecompileResult<T> {
    /// Converts `self` into a [`PrecompileResult`], using `encode_ok` for the success path.
    fn into_precompile_result(
        self,
        gas: u64,
        reservoir: u64,
        encode_ok: impl FnOnce(T) -> alloy::primitives::Bytes,
    ) -> PrecompileResult;
}

impl<T> IntoPrecompileResult<T> for Result<T> {
    fn into_precompile_result(
        self,
        gas: u64,
        reservoir: u64,
        encode_ok: impl FnOnce(T) -> alloy::primitives::Bytes,
    ) -> PrecompileResult {
        match self {
            Ok(res) => Ok(PrecompileOutput::new(gas, encode_ok(res), reservoir)),
            Err(err) => err.into_precompile_result(gas, reservoir),
        }
    }
}

impl StorageCreditsError for TempoPrecompileError {
    fn out_of_gas() -> Self {
        Self::OutOfGas
    }

    fn fatal_external() -> Self {
        Self::Fatal("invalid storage credits state".to_string())
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use tempo_contracts::precompiles::StablecoinDEXError;

    #[test]
    fn test_add_errors_to_registry_populates_registry() {
        let mut registry: TempoPrecompileErrorRegistry = HashMap::new();

        assert!(registry.is_empty());

        add_errors_to_registry(&mut registry, TempoPrecompileError::StablecoinDEX);

        assert!(!registry.is_empty());

        let order_not_found_selector = StablecoinDEXError::order_does_not_exist().selector();
        assert!(
            registry.contains_key(&order_not_found_selector),
            "Registry should contain OrderDoesNotExist selector"
        );
    }

    #[test]
    fn test_error_decoder_registry_is_not_empty() {
        let registry = error_decoder_registry();

        assert!(
            !registry.is_empty(),
            "error_decoder_registry should return a populated registry"
        );

        let dex_selector = StablecoinDEXError::order_does_not_exist().selector();
        assert!(registry.contains_key(&dex_selector));
    }

    #[test]
    fn test_decode_error_returns_some_for_valid_error() {
        let error = StablecoinDEXError::order_does_not_exist();
        let encoded = error.abi_encode();

        let result = decode_error(&encoded);
        assert!(
            result.is_some(),
            "decode_error should return Some for valid error"
        );

        let decoded = result.unwrap();
        assert!(matches!(
            decoded.error,
            TempoPrecompileError::StablecoinDEX(StablecoinDEXError::OrderDoesNotExist(_))
        ));
    }

    #[test]
    fn test_decode_error_data_length_boundary() {
        // Empty data (len = 0) should return None (0 < 4)
        let result = decode_error(&[]);
        assert!(result.is_none(), "Empty data should return None");

        // 1 byte (len = 1) should return None (1 < 4)
        let result = decode_error(&[0x01]);
        assert!(result.is_none(), "1 byte should return None");

        // 2 bytes (len = 2) should return None (2 < 4)
        let result = decode_error(&[0x01, 0x02]);
        assert!(result.is_none(), "2 bytes should return None");

        // 3 bytes (len = 3) should return None (3 < 4)
        let result = decode_error(&[0x01, 0x02, 0x03]);
        assert!(result.is_none(), "3 bytes should return None");

        // 4 bytes with unknown selector returns None (selector not found)
        let result = decode_error(&[0x00, 0x00, 0x00, 0x00]);
        assert!(
            result.is_none(),
            "Unknown 4-byte selector should return None"
        );

        // 4 bytes with valid selector (exactly at boundary) should succeed
        let error = StablecoinDEXError::order_does_not_exist();
        let encoded = error.abi_encode();
        let result = decode_error(&encoded);
        assert!(
            result.is_some(),
            "Valid error at 4+ bytes should return Some"
        );
    }

    #[test]
    fn test_into_precompile_result_revert() {
        let error = TempoPrecompileError::StablecoinDEX(StablecoinDEXError::order_does_not_exist());
        let result = error.into_precompile_result(0, 0);

        let output = result.expect("business-logic revert should be Ok");
        assert!(output.status.is_revert());
    }

    #[test]
    fn test_into_precompile_result_trait_success() {
        let result: Result<u64> = Ok(42);
        let precompile_result = result.into_precompile_result(0, 0, |val| {
            alloy::primitives::Bytes::from(val.to_be_bytes().to_vec())
        });

        let output = precompile_result.expect("success should be Ok");
        assert!(output.status.is_success());
    }

    #[test]
    fn test_decode_error_with_tip20_error() {
        // Use insufficient_allowance which has a unique selector (no collision with other errors)
        let error = TIP20Error::insufficient_allowance();
        let encoded = error.abi_encode();

        let result = decode_error(&encoded);
        assert!(result.is_some(), "Should decode TIP20 errors");

        let decoded = result.unwrap();
        // Verify it's a TIP20 error
        match decoded.error {
            TempoPrecompileError::TIP20(_) => {}
            other => panic!("Expected TIP20 error, got {other:?}"),
        }
    }
}