DownloadGithubWebsite

Policy Rules

TL;DR

Vultisig's automation engine uses two rule types: MetaRules (high-level like ethereum.send or solana.swap) that automatically expand to protocol-specific implementations, and Direct Rules (low-level, ABI/IDL-mapped like ethereum.erc20.transfer) for precise control. Rules support seven constraint types (FIXED, MAX, MIN, MAGIC_CONSTANT, ANY, REGEXP, UNSPECIFIED) and use Magic Constants from vultisig/recipes for transparent address resolution. All app transactions require Verifier approval based on these rules before TSS signing.

Overview

Vultisig's policy engine supports two rule types that govern how apps interact with blockchain networks:

  • MetaRules: High-level, chain-agnostic abstractions automatically mapped to specific implementations.

  • Direct Rules: Low-level, protocol-specific rules that strictly follow blockchain or contract semantics.

All app transactions must comply with these rules and be approved by the Verifier before signing.

MetaRules: Protocol-Agnostic Abstractions

MetaRules summarize cross-chain actions (like send, swap) via simplified resource identifiers such as {chain}.send. The system expands these abstractions into concrete, protocol-specific Direct Rules tailored for each network.

Example MetaRules

MetaRule
Expands to (Examples)
Chains Supported

ethereum.send

ethereum.eth.transfer (native), ethereum.erc20.transfer (ERC20)

Ethereum

solana.send

solana.system.transfer, solana.spl_token.transfer

Solana

bitcoin.send

bitcoin.btc.transfer

Bitcoin

ethereum.swap

1inch, Uniswap V2/V3 calls

Ethereum

solana.swap

Jupiter aggregator calls

Solana

MetaRule Expansion (Go Example)

Direct Rules: Protocol-Specific Operations

Direct Rules are mapped directly to the target protocol's ABI (EVM) or IDL (Solana), providing fine-grained policy enforcement for app calls.

Rule Structure (protobuf)

Example Direct Rules

ERC-20 Transfer (Ethereum)

Solana SPL Token Transfer

Supported Blockchains & Protocols

Chain
Features Supported

Ethereum

ERC-20, Uniswap, 1inch, custom contracts

Bitcoin

Native BTC transfers

Solana

SPL tokens, Jupiter aggregator, Metaplex

Polygon

Polygon bridges, DEXs

ARB, BSC etc

Layer2 & EVM-specific features

THORChain

Cross-chain liquidity/swaps

XRPL

XRP Ledger native operations

Constraint Types

Based on constraint.proto:

Type
Description

CONSTRAINT_TYPE_FIXED

Enforce fixed value for parameter

CONSTRAINT_TYPE_MAX

Maximum allowed value

CONSTRAINT_TYPE_MIN

Minimum allowed value

CONSTRAINT_TYPE_MAGIC_CONSTANT

Special constant (system address, treasury, router, etc.)

CONSTRAINT_TYPE_ANY

Accept any value

CONSTRAINT_TYPE_REGEXP

Regular expression match for string params

CONSTRAINT_TYPE_UNSPECIFIED

Not specified - usually treated as deny

Magic Constants

Magic Constants are predefined system addresses and values maintained in the vultisig/recipes library that provide standardized references to important protocol addresses, treasury wallets, and infrastructure endpoints. They enable transparent, auditable automations while simplifying the user experience.

Name
Value
Purpose

VULTISIG_TREASURY

1

Treasury address

THORCHAIN_VAULT

2

Router/vault for THORChain

THORCHAIN_ROUTER

3

Router for THORChain swaps

What Are Magic Constants?

Magic Constants are symbolic references that resolve to actual blockchain addresses or protocol-specific values at runtime. Instead of hardcoding addresses directly in rules or requiring users to input complex addresses, developers reference these constants by name, and the Vultisig system automatically resolves them to the correct values based on the target chain and current protocol state.

Key characteristics:

  • Centrally Defined: All magic constants are defined and maintained in the vultisig/recipes repository, ensuring consistency across all apps

  • Chain-Aware: The same constant can resolve to different addresses on different chains (e.g., VULTISIG_TREASURY resolves to the appropriate treasury address for Ethereum, Solana, etc.)

  • Version-Safe: When protocol addresses change (upgrades, migrations), constants are updated centrally without breaking existing app rules

  • Auditable: Users can verify exactly which addresses are being used by inspecting the recipes library

When to Use Magic Constants

Use magic constants in these scenarios:

  1. Protocol Infrastructure Addresses

    • DEX routers (Uniswap, THORChain, Jupiter)

    • Vault contracts

    • Official protocol treasury addresses

  2. Cross-Chain Operations

    • Bridge contracts

    • Cross-chain routers

    • Liquidity pool addresses

  3. User-Friendly Automations

    • When users shouldn't need to know specific addresses

    • For operations that always use the same infrastructure

    • To prevent user errors from incorrect address input

Rule Development Guidelines

  • MetaRules: Use for simple, cross-chain actions or consistent business logic.

  • Direct Rules: Apply for advanced protocol features, fine-grained control, or where ABI details matter.

  • Constraints: Use principle of least privilege; always review all allowed parameters and document constraints.

  • Testing: Validate with protocol ABIs/IDLs and ensure all value constraints are respected before allow.

  • Magic Constants: Use system-defined constants for seamless app integrations and parameter substitutions.

PreviousServices ArchitectureNextInfrastructure

Last updated

Was this helpful?