ServiceRegistry (without parameter reconfiguration)

[pirapira]

This is a part of #1087 .

---

Getting and Extending the Membership

There is always a deposit amount for six-month of membership.

• a new member can join the pool for making the deposit.
• an existing member can extend their membership for six months, for the same amount of deposit

The Change of Deposit Amounts

• whenever somebody joins or extends the membership, the price increases by 20%
• while nobody joins, the price decreases 0.5% per day.

Terms of the Deposits

The deposit is held until the six months period.

• A new member's deposit is held for six months.
• When an existing member extends the membership,
  • the new deposit is held until the end of the extended period
  • the old deposits' conditions stay unchanged

[codecov]

Codecov Report

❗ No coverage uploaded for pull request base (master@6ee58d4). Click here to learn what that means.
The diff coverage is 66.66%.

@@            Coverage Diff            @@
##             master    #1116   +/-   ##
=========================================
  Coverage          ?   80.96%           
=========================================
  Files             ?       21           
  Lines             ?     1408           
  Branches          ?      178           
=========================================
  Hits              ?     1140           
  Misses            ?      228           
  Partials          ?       40

Impacted Files	Coverage Δ
raiden_contracts/deploy/contract_verifier.py	87.32% <0%> (ø)
raiden_contracts/deploy/contract_deployer.py	91.4% <100%> (ø)
raiden_contracts/deploy/__main__.py	93.58% <100%> (ø)

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 6ee58d4...1fc9dee. Read the comment docs.

[codecov]

Codecov Report

Merging #1116 into master will increase coverage by 0.13%.
The diff coverage is 90%.

@@            Coverage Diff             @@
##           master    #1116      +/-   ##
==========================================
+ Coverage      81%   81.14%   +0.13%     
==========================================
  Files          21       21              
  Lines        1411     1432      +21     
  Branches      179      186       +7     
==========================================
+ Hits         1143     1162      +19     
- Misses        228      229       +1     
- Partials       40       41       +1

Impacted Files	Coverage Δ
raiden_contracts/deploy/contract_verifier.py	87.58% <100%> (+0.17%)	⬆️
raiden_contracts/utils/versions.py	100% <100%> (ø)	⬆️
raiden_contracts/deploy/__main__.py	93.58% <100%> (+0.04%)	⬆️
raiden_contracts/constants.py	100% <100%> (ø)	⬆️
raiden_contracts/deploy/contract_deployer.py	90% <50%> (-1.41%)	⬇️
raiden_contracts/contract_source_manager.py	89.15% <0%> (+0.84%)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 463b5e5...a7051ee. Read the comment docs.

[karlb]

Why does this function have a return value? It always returns true if it does not fail on a require.

[pirapira]

I think currently it's safer to always return a boolean (even when it's always true), and always check the return value.

Solidity compiler doesn't warn when we forget to check the return value of a function call, so sticking with "always check return values" is a safe convention to follow.

---

I'll document this in the contribution guide.

[pirapira]

I've written this in CONTRIBUTING.md.

[palango]

Why is this it's own contract? Couldn't you also model this as a struct inside the ServiceRegistry contract?

[pirapira]

Yes, everything could be in ServiceRegistry and that would be gas-efficient.

The current choice follows security-in-depth. Even if ServiceRegistry is compromized, the deposits made earlier would not be affected.

Is this conceptual security worth more than the additional gas? I don't know for sure, but the deposits are rarer and bigger than usual Raiden transfers.

[palango]

That argument makes sense to me, but I don't have much experience. The question was aimed at understanding the trade-off better!

[palango]

Is it possible to forbid this behaviour and only allow deposits with a deposit function, where one could check the token?

[pirapira]

Unfortunately, contracts cannot refuse incoming ERC20 tokens.

In the beginning, I had a deposit() function, but it did nothing useful. So I removed it.

[palango]

Should min_price be settable as well?

[pirapira]

This follows in the next PR. min_price, 6/5 bumping ratio and 200 days will be configurable.

[palango]

I'm not sure about low-level differences, but why do you use assert here?

[pirapira]

Because I know the assert is always true. So I use assert and then the SMT solver in solc tries to find a counterexample.

[karlb]

To say it in a different way: assert should only fail for bugs in the contract, require is for all other cases.

[palango]

Above you write that all functions should return true, so this one as well?

[pirapira]

I believe so. I'll add return true.

[palango]

Same here, should this return true?

[pirapira]

That's also true.

[palango]

s/correspnods/corresponds

[palango]

Once you make A configurable, you might have to check for an overflow here as well.

[pirapira]

Yes, the next PR will contain lots of those checks. I hope nobody needs the price decaying over billions of years.

[palango]

nit: You don't need braces here

[pirapira]

I like it without the braces, but it's with the braces everywhere in the codebase. For now I just follow the local convention.