GP 11: Add 24 hour timelock to BOB contract on Optimism

The proposal has been confirmed and executed:

Optimism Safe transaction #7
Optimism tx: https://optimistic.etherscan.io/tx/0x0e70266852b15c465990068b96ab90daf37adb02eeaa6cffd7c99b5342a0d5b6

Proposal objective

With the addition of zkBob on Optimism and increased BOB usage, this proposal enacts a 24 hour timelock for all admin and owner controlled actions on the BOB token contract on Optimism.

A timelock provides additional security and transparency, and serves to increase confidence for third-party applications looking to integrate BOB.

Timelock-bound actions include:

Token contract upgradeability
Token ownership transfer
Addition/removal of additional/existing token minters
Updating recovery/blocklist admins

Proposal details

The OpenZeppelin Timelock contract implementation is proposed for this integration. https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/governance/TimelockController.sol

The only address allowed to submit delayed proposals is the BOB Governance Multisig on Optimism. 0x14fc6a1a996A2EB889cF86e5c8cD17323bC85290
The only address allowed to execute delayed proposals following the timelock is the BOB Deployer EOA. 0x39f0bd56c1439a22ee90b4972c16b7868d161981
The minimum enforced delay in the timelock contract is set to 24 hours.
The BOB protocol governance body is capable of changing the above configuration at any time, however any change is also subject to the existing timelock restrictions since the only admin of the timelock contract is the contract itself.

Proposal breakdown

Optimism

The transaction #7 in the Safe on Optimism contains 2 actions:

Action 1

Transfer proxy ownership and upgradeability rights on the BOB token contract to the timelock contracts 0xbe7D4E55D80fC3e67D80ebf988eB0E551cCA4eB7

The action is executed by calling setAdmin on the BOB token contract 0xB0B195aEFA3650A6908f15CdaC7D92F8a5791B0B

Action 2

Transfer token ownership rights on the BOB token contract to the Timelock contracts 0xbe7D4E55D80fC3e67D80ebf988eB0E551cCA4eB7

The action is executed by calling transferOwnership (the method selector is 0xf2fde38b) on the BOB token contract 0xB0B195aEFA3650A6908f15CdaC7D92F8a5791B0B

Additional verification

Timelock contract settings

In the “Read Contract” view on Etherscan execute the following requests:

1) Check the role id hashes. Go to the hasRole function and check the following.

2) Check that the Timelock contract [0xbe7D4E55D80fC3e67D80ebf988eB0E551cCA4eB7] has the admin role.

3) Check that BOB Governance Multisig on Optimism [0x14fc6a1a996A2EB889cF86e5c8cD17323bC85290] has the proposer and canceler roles

4) Check that BOB Deployer EOA [0x39f0bd56c1439a22ee90b4972c16b7868d161981] has the executor role.

Timelock operations simulation

Governance operations with the contracts can be verified using the following script -https://gist.github.com/k1rill-fedoseev/931f56f89c5bca1cbfada30c8d074220

PreviousGP 10: Reallocate previous Kyberswap inventory NextGP 12: Raise Polygon limits

Last updated 1 year ago