Add Account Recovery module (#150)

* Added drafts of Account Recovery module

* Use EnumerableSet for recovery providers

* Removed zero address check for the newOwner

* Added reference to EIP-7947

* Updated slot constant

* Set functions to be virtual

* Updated README

* Added tests

* small fixes

* renamed the module to "account-abstraction"

* Added comments for AAccountRecovery

* Fixed tests

* some fixes

* update version & deps

---------

Co-authored-by: Artem Chystiakov <artem.ch31@gmail.com>

Author: RuslanProgrammer

README.md

@@ -20,6 +20,8 @@ contracts
 │   ├── ARBAC — "A powerful implementation of a true RBAC"
 │   └── extensions
 │       └── ARBACGroupable — "Groupable extension of ARBAC"
+├── account-abstraction
+│   └── AAccountRecovery — "ERC-7947 account recovery base implementation"
 ├── contracts—registry
 │   ├── AContractsRegistry — "Reference registry implementation of ERC-6224 pattern"
 │   ├── ADependant — "Reference dependant implementation of ERC-6224 pattern"

contracts/account-abstraction/AAccountRecovery.sol

@@ -0,0 +1,128 @@
+// SPDX-License-Identifier: MIT
+pragma solidity ^0.8.21;
+
+import {EnumerableSet} from "@openzeppelin/contracts/utils/structs/EnumerableSet.sol";
+
+import {IAccountRecovery} from "../interfaces/account-abstraction/IAccountRecovery.sol";
+import {IRecoveryProvider} from "../interfaces/account-abstraction/IRecoveryProvider.sol";
+
+/**
+ * @notice The Account Recovery module
+ *
+ * Contract module which provides a basic account recovery mechanism as specified in EIP-7947.
+ * You may use this module as a base contract for your own account recovery mechanism.
+ *
+ * The Account Recovery module allows to add recovery providers to the account.
+ * The recovery providers are used to recover the account ownership.
+ *
+ * For more information please refer to [EIP-7947](https://eips.ethereum.org/EIPS/eip-7947).
+ */
+abstract contract AAccountRecovery is IAccountRecovery {
+    using EnumerableSet for EnumerableSet.AddressSet;
+
+    struct AAccountRecoveryStorage {
+        EnumerableSet.AddressSet recoveryProviders;
+    }
+
+    // bytes32(uint256(keccak256("solarity.contract.AAccountRecovery")) - 1)
+    bytes32 private constant A_ACCOUNT_RECOVERY_STORAGE =
+        0x828c412330620ced6ea61864e26a29daa3e4c6ed06ccbde7b849e007ed9dd85a;
+
+    error ZeroAddress();
+    error ProviderAlreadyAdded(address provider);
+    error ProviderNotRegistered(address provider);
+
+    /**
+     * @inheritdoc IAccountRecovery
+     */
+    function addRecoveryProvider(address provider_, bytes memory recoveryData_) external virtual;
+
+    /**
+     * @inheritdoc IAccountRecovery
+     */
+    function removeRecoveryProvider(address provider_) external virtual;
+
+    /**
+     * @inheritdoc IAccountRecovery
+     */
+    function recoverOwnership(
+        address newOwner,
+        address provider,
+        bytes memory proof
+    ) external virtual returns (bool);
+
+    /**
+     * @inheritdoc IAccountRecovery
+     */
+    function recoveryProviderAdded(address provider_) public view virtual returns (bool) {
+        AAccountRecoveryStorage storage $ = _getAAccountRecoveryStorage();
+
+        return $.recoveryProviders.contains(provider_);
+    }
+
+    /**
+     * @notice A function to get the list of all the recovery providers added to the account
+     * @return the list of recovery providers
+     */
+    function getRecoveryProviders() public view virtual returns (address[] memory) {
+        AAccountRecoveryStorage storage $ = _getAAccountRecoveryStorage();
+
+        return $.recoveryProviders.values();
+    }
+
+    /**
+     * @notice Should be called in the `addRecoveryProvider` function
+     */
+    function _addRecoveryProvider(address provider_, bytes memory recoveryData_) internal virtual {
+        if (provider_ == address(0)) revert ZeroAddress();
+
+        AAccountRecoveryStorage storage $ = _getAAccountRecoveryStorage();
+
+        if (!$.recoveryProviders.add(provider_)) revert ProviderAlreadyAdded(provider_);
+
+        IRecoveryProvider(provider_).subscribe(recoveryData_);
+
+        emit RecoveryProviderAdded(provider_);
+    }
+
+    /**
+     * @notice Should be called in the `removeRecoveryProvider` function
+     */
+    function _removeRecoveryProvider(address provider_) internal virtual {
+        AAccountRecoveryStorage storage $ = _getAAccountRecoveryStorage();
+
+        if (!$.recoveryProviders.remove(provider_)) revert ProviderNotRegistered(provider_);
+
+        IRecoveryProvider(provider_).unsubscribe();
+
+        emit RecoveryProviderRemoved(provider_);
+    }
+
+    /**
+     * @notice Should be called in the `recoverOwnership` function before updating the account owner
+     */
+    function _validateRecovery(
+        address newOwner_,
+        address provider_,
+        bytes memory proof_
+    ) internal virtual {
+        AAccountRecoveryStorage storage $ = _getAAccountRecoveryStorage();
+
+        if (!$.recoveryProviders.contains(provider_)) revert ProviderNotRegistered(provider_);
+
+        IRecoveryProvider(provider_).recover(newOwner_, proof_);
+    }
+
+    /**
+     * @dev Returns a pointer to the storage namespace
+     */
+    function _getAAccountRecoveryStorage()
+        private
+        pure
+        returns (AAccountRecoveryStorage storage $)
+    {
+        assembly {
+            $.slot := A_ACCOUNT_RECOVERY_STORAGE
+        }
+    }
+}

contracts/interfaces/account-abstraction/IAccountRecovery.sol

@@ -0,0 +1,52 @@
+// SPDX-License-Identifier: MIT
+pragma solidity ^0.8.21;
+
+/**
+ * @notice The Account Recovery module
+ *
+ * Defines a common account recovery interface for smart accounts to implement.
+ *
+ * For more information please refer to [EIP-7947](https://eips.ethereum.org/EIPS/eip-7947).
+ */
+interface IAccountRecovery {
+    event OwnershipRecovered(address indexed oldOwner, address indexed newOwner);
+    event RecoveryProviderAdded(address indexed provider);
+    event RecoveryProviderRemoved(address indexed provider);
+
+    /**
+     * @notice A function to add a new recovery provider.
+     * SHOULD be access controlled.
+     *
+     * @param provider the address of a recovery provider (ZKP verifier) to add.
+     * @param recoveryData custom data (commitment) for the recovery provider.
+     */
+    function addRecoveryProvider(address provider, bytes memory recoveryData) external;
+
+    /**
+     * @notice A function to remove an existing recovery provider.
+     * SHOULD be access controlled.
+     *
+     * @param provider the address of a previously added recovery provider to remove.
+     */
+    function removeRecoveryProvider(address provider) external;
+
+    /**
+     * @notice A non-view function to recover ownership of a smart account.
+     * @param newOwner the address of a new owner.
+     * @param provider the address of a recovery provider.
+     * @param proof an encoded proof of recovery (ZKP/ZKAI, signature, etc).
+     * @return `true` if recovery is successful, `false` (or revert) otherwise.
+     */
+    function recoverOwnership(
+        address newOwner,
+        address provider,
+        bytes memory proof
+    ) external returns (bool);
+
+    /**
+     * @notice A view function to check if a provider has been previously added.
+     * @param provider the provider to check.
+     * @return true if the provider exists in the account, false otherwise.
+     */
+    function recoveryProviderAdded(address provider) external view returns (bool);
+}

contracts/interfaces/account-abstraction/IRecoveryProvider.sol

@@ -0,0 +1,46 @@
+// SPDX-License-Identifier: MIT
+pragma solidity ^0.8.21;
+
+/**
+ * @notice The Account Recovery module
+ *
+ * Defines a common recovery provider interface.
+ *
+ * For more information please refer to [EIP-7947](https://eips.ethereum.org/EIPS/eip-7947).
+ */
+interface IRecoveryProvider {
+    event AccountSubscribed(address indexed account);
+    event AccountUnsubscribed(address indexed account);
+
+    /**
+     * @notice A function that "subscribes" a smart account (msg.sender) to a recovery provider.
+     * SHOULD process and assign the `recoveryData` to the `msg.sender`.
+     *
+     * @param recoveryData a recovery commitment (hash/ZKP public output) to be used
+     * in the `recover` function to check a recovery proof validity.
+     */
+    function subscribe(bytes memory recoveryData) external;
+
+    /**
+     * @notice A function that revokes a smart account subscription.
+     */
+    function unsubscribe() external;
+
+    /**
+     * @notice A function that checks if a recovery of a smart account (msg.sender)
+     * to the `newOwner` is possible.
+     * SHOULD use `msg.sender`'s `recoveryData` to check the `proof` validity.
+     *
+     * @param newOwner the new owner to recover the `msg.sender` ownership to.
+     * @param proof the recovery proof.
+     */
+    function recover(address newOwner, bytes memory proof) external;
+
+    /**
+     * @notice A function to get a recovery data (commitment) of an account.
+     *
+     * @param account the account to get the recovery data of.
+     * @return the associated recovery data.
+     */
+    function getRecoveryData(address account) external view returns (bytes memory);
+}

contracts/mock/account-abstraction/AccountRecoveryMock.sol

@@ -0,0 +1,24 @@
+// SPDX-License-Identifier: MIT
+pragma solidity ^0.8.21;
+
+import {AAccountRecovery} from "../../account-abstraction/AAccountRecovery.sol";
+
+contract AccountRecoveryMock is AAccountRecovery {
+    function addRecoveryProvider(address provider_, bytes memory recoveryData_) external override {
+        _addRecoveryProvider(provider_, recoveryData_);
+    }
+
+    function removeRecoveryProvider(address provider_) external override {
+        _removeRecoveryProvider(provider_);
+    }
+
+    function validateRecovery(address newOwner_, address provider_, bytes memory proof_) external {
+        _validateRecovery(newOwner_, provider_, proof_);
+    }
+
+    function recoverOwnership(
+        address,
+        address,
+        bytes memory
+    ) external pure override returns (bool) {}
+}

contracts/mock/account-abstraction/RecoveryProviderMock.sol

@@ -0,0 +1,20 @@
+// SPDX-License-Identifier: MIT
+pragma solidity ^0.8.21;
+
+contract RecoveryProviderMock {
+    event SubscribeCalled(bytes recoveryData_);
+    event UnsubscribeCalled();
+    event RecoverCalled(address newOwner, bytes proof);
+
+    function subscribe(bytes memory recoveryData_) external {
+        emit SubscribeCalled(recoveryData_);
+    }
+
+    function unsubscribe() external {
+        emit UnsubscribeCalled();
+    }
+
+    function recover(address newOwner_, bytes memory proof_) external {
+        emit RecoverCalled(newOwner_, proof_);
+    }
+}