feat: add SlashingWithdrawalRouter (#1358)

**Motivation:**

We want to hold slashed funds in escrow temporarily to maintain protocol
security (prevent malicious actors from draining the contracts).

**Modifications:**

- Add `SlashingWithdrawalRouter`.

**Result:**

The `SlashingWithdrawalRouter` contract is added for managing slashed
funds in the EigenLayer protocol. It provides a mechanism to handle the
burning or redistribution of slashed shares after a delay period,
ensuring proper handling of slashed funds while maintaining protocol
security.

---------

Co-authored-by: Yash Patil <[email protected]>

Author: 0xClandestine

script/deploy/devnet/deploy_from_scratch.s.sol

@@ -14,7 +14,7 @@ import "../../../src/contracts/core/AVSDirectory.sol";
 import "../../../src/contracts/core/RewardsCoordinator.sol";
 import "../../../src/contracts/core/AllocationManager.sol";
 import "../../../src/contracts/permissions/PermissionController.sol";
-
+import "../../../src/contracts/core/SlashingWithdrawalRouter.sol";
 import "../../../src/contracts/strategies/StrategyBaseTVLLimits.sol";
 import "../../../src/contracts/strategies/StrategyFactory.sol";
 import "../../../src/contracts/strategies/StrategyBase.sol";
@@ -63,6 +63,8 @@ contract DeployFromScratch is Script, Test {
     AllocationManager public allocationManager;
     PermissionController public permissionController;
     PermissionController public permissionControllerImplementation;
+    SlashingWithdrawalRouter public slashingWithdrawalRouter;
+    SlashingWithdrawalRouter public slashingWithdrawalRouterImplementation;
 
     EmptyContract public emptyContract;
 
@@ -214,6 +216,9 @@ contract DeployFromScratch is Script, Test {
         permissionController = PermissionController(
             address(new TransparentUpgradeableProxy(address(emptyContract), address(eigenLayerProxyAdmin), ""))
         );
+        slashingWithdrawalRouter = SlashingWithdrawalRouter(
+            address(new TransparentUpgradeableProxy(address(emptyContract), address(eigenLayerProxyAdmin), ""))
+        );
 
         // if on mainnet, use the ETH2 deposit contract address
         if (chainId == 1) ethPOSDeposit = IETHPOSDeposit(0x00000000219ab540356cBB839Cbe05303d7705Fa);
@@ -235,7 +240,8 @@ contract DeployFromScratch is Script, Test {
             SEMVER
         );
 
-        strategyManagerImplementation = new StrategyManager(delegation, eigenLayerPauserReg, SEMVER);
+        strategyManagerImplementation =
+            new StrategyManager(delegation, slashingWithdrawalRouter, eigenLayerPauserReg, SEMVER);
         avsDirectoryImplementation = new AVSDirectory(delegation, eigenLayerPauserReg, SEMVER);
         eigenPodManagerImplementation =
             new EigenPodManager(ethPOSDeposit, eigenPodBeacon, delegation, eigenLayerPauserReg, SEMVER);
@@ -264,6 +270,8 @@ contract DeployFromScratch is Script, Test {
         );
         permissionControllerImplementation = new PermissionController(SEMVER);
         strategyFactoryImplementation = new StrategyFactory(strategyManager, eigenLayerPauserReg, SEMVER);
+        slashingWithdrawalRouterImplementation =
+            new SlashingWithdrawalRouter(allocationManager, strategyManager, eigenLayerPauserReg, SEMVER);
 
         // Third, upgrade the proxy contracts to use the correct implementation contracts and initialize them.
         {
@@ -537,9 +545,9 @@ contract DeployFromScratch is Script, Test {
 
     function _verifyInitialOwners() internal view {
         require(strategyManager.owner() == executorMultisig, "strategyManager: owner not set correctly");
-        require(delegation.owner() == executorMultisig, "delegation: owner not set correctly");
+        // require(delegation.owner() == executorMultisig, "delegation: owner not set correctly");
         require(eigenPodManager.owner() == executorMultisig, "eigenPodManager: owner not set correctly");
-        require(allocationManager.owner() == executorMultisig, "allocationManager: owner not set correctly");
+        // require(allocationManager.owner() == executorMultisig, "allocationManager: owner not set correctly");
         require(eigenLayerProxyAdmin.owner() == executorMultisig, "eigenLayerProxyAdmin: owner not set correctly");
         require(eigenPodBeacon.owner() == executorMultisig, "eigenPodBeacon: owner not set correctly");
         require(strategyBeacon.owner() == executorMultisig, "strategyBeacon: owner not set correctly");

script/deploy/local/deploy_from_scratch.slashing.s.sol

@@ -14,6 +14,7 @@ import "../../../src/contracts/core/AVSDirectory.sol";
 import "../../../src/contracts/core/RewardsCoordinator.sol";
 import "../../../src/contracts/core/AllocationManager.sol";
 import "../../../src/contracts/permissions/PermissionController.sol";
+import "../../../src/contracts/core/SlashingWithdrawalRouter.sol";
 
 import "../../../src/contracts/strategies/StrategyBaseTVLLimits.sol";
 
@@ -66,6 +67,8 @@ contract DeployFromScratch is Script, Test {
     AllocationManager public allocationManager;
     PermissionController public permissionControllerImplementation;
     PermissionController public permissionController;
+    SlashingWithdrawalRouter public slashingWithdrawalRouter;
+    SlashingWithdrawalRouter public slashingWithdrawalRouterImplementation;
 
     EmptyContract public emptyContract;
 
@@ -221,6 +224,9 @@ contract DeployFromScratch is Script, Test {
         permissionController = PermissionController(
             address(new TransparentUpgradeableProxy(address(emptyContract), address(eigenLayerProxyAdmin), ""))
         );
+        slashingWithdrawalRouter = SlashingWithdrawalRouter(
+            address(new TransparentUpgradeableProxy(address(emptyContract), address(eigenLayerProxyAdmin), ""))
+        );
 
         // if on mainnet, use the ETH2 deposit contract address
         if (chainId == 1) ethPOSDeposit = IETHPOSDeposit(0x00000000219ab540356cBB839Cbe05303d7705Fa);
@@ -241,7 +247,8 @@ contract DeployFromScratch is Script, Test {
             MIN_WITHDRAWAL_DELAY,
             SEMVER
         );
-        strategyManagerImplementation = new StrategyManager(delegation, eigenLayerPauserReg, SEMVER);
+        strategyManagerImplementation =
+            new StrategyManager(delegation, slashingWithdrawalRouter, eigenLayerPauserReg, SEMVER);
         avsDirectoryImplementation = new AVSDirectory(delegation, eigenLayerPauserReg, SEMVER);
         eigenPodManagerImplementation =
             new EigenPodManager(ethPOSDeposit, eigenPodBeacon, delegation, eigenLayerPauserReg, SEMVER);
@@ -269,6 +276,8 @@ contract DeployFromScratch is Script, Test {
             SEMVER
         );
         permissionControllerImplementation = new PermissionController(SEMVER);
+        slashingWithdrawalRouterImplementation =
+            new SlashingWithdrawalRouter(allocationManager, strategyManager, eigenLayerPauserReg, SEMVER);
 
         // Third, upgrade the proxy contracts to use the correct implementation contracts and initialize them.
         {
@@ -538,7 +547,7 @@ contract DeployFromScratch is Script, Test {
 
     function _verifyInitialOwners() internal view {
         require(strategyManager.owner() == executorMultisig, "strategyManager: owner not set correctly");
-        require(delegation.owner() == executorMultisig, "delegation: owner not set correctly");
+        // require(delegation.owner() == executorMultisig, "delegation: owner not set correctly");
         require(eigenPodManager.owner() == executorMultisig, "eigenPodManager: owner not set correctly");
 
         require(eigenLayerProxyAdmin.owner() == executorMultisig, "eigenLayerProxyAdmin: owner not set correctly");

script/output/devnet/SLASHING_deploy_from_scratch_deployment_data.json

@@ -144,7 +144,7 @@ contract Deploy is EOADeployer {
 
         DelegationManager delegation = Env.impl.delegationManager();
         vm.expectRevert(errInit);
-        delegation.initialize(address(0), 0);
+        delegation.initialize(0);
 
         /// pods/
         EigenPod eigenPod = Env.impl.eigenPod();

script/releases/v1.4.1-slashing/1-deployContracts.s.sol

@@ -89,8 +89,8 @@ contract Execute is QueueUpgrade {
 
         DelegationManager delegation = Env.proxy.delegationManager();
         vm.expectRevert(errInit);
-        delegation.initialize(address(0), 0);
-        assertTrue(delegation.owner() == Env.executorMultisig(), "dm.owner invalid");
+        delegation.initialize(0);
+        // assertTrue(delegation.owner() == Env.executorMultisig(), "dm.owner invalid");
         assertTrue(delegation.paused() == 0, "dm.paused invalid");
 
         EigenPodManager eigenPodManager = Env.proxy.eigenPodManager();

script/releases/v1.4.1-slashing/3-executeUpgrade.s.sol

@@ -11,6 +11,7 @@ import "../../src/contracts/core/AVSDirectory.sol";
 import "../../src/contracts/core/RewardsCoordinator.sol";
 import "../../src/contracts/core/AllocationManager.sol";
 import "../../src/contracts/permissions/PermissionController.sol";
+import "../../src/contracts/core/SlashingWithdrawalRouter.sol";
 
 import "../../src/contracts/strategies/StrategyFactory.sol";
 import "../../src/contracts/strategies/StrategyBase.sol";
@@ -136,6 +137,10 @@ contract ExistingDeploymentParser is Script, Logger {
     StrategyBase public baseStrategyImplementation;
     StrategyBase public strategyFactoryBeaconImplementation;
 
+    /// @dev SlashingWithdrawalRouter
+    SlashingWithdrawalRouter public slashingWithdrawalRouter;
+    SlashingWithdrawalRouter public slashingWithdrawalRouterImplementation;
+
     // Token
     ProxyAdmin public tokenProxyAdmin;
     IEigen public EIGEN;
@@ -524,7 +529,7 @@ contract ExistingDeploymentParser is Script, Logger {
         );
         // DelegationManager
         cheats.expectRevert(bytes("Initializable: contract is already initialized"));
-        delegationManager.initialize(address(0), 0);
+        delegationManager.initialize(0);
         // StrategyManager
         cheats.expectRevert(bytes("Initializable: contract is already initialized"));
         strategyManager.initialize(address(0), address(0), STRATEGY_MANAGER_INIT_PAUSED_STATUS);
@@ -605,7 +610,7 @@ contract ExistingDeploymentParser is Script, Logger {
             delegationManager.pauserRegistry() == eigenLayerPauserReg,
             "delegationManager: pauser registry not set correctly"
         );
-        assertEq(delegationManager.owner(), executorMultisig, "delegationManager: owner not set correctly");
+        // assertEq(delegationManager.owner(), executorMultisig, "delegationManager: owner not set correctly");
         assertEq(
             delegationManager.paused(),
             DELEGATION_MANAGER_INIT_PAUSED_STATUS,