test reentrancy guard on store + ERC721/ERC1155 recipient paths

[thedavidmeister]

Summary

Flow.flow carries nonReentrant and the LibFlow.flow NatSpec names four reentrancy entry points. PR #446 covers ERC20/ERC777-style reentrancy via a malicious token. This adds tests for the remaining three:

1. Malicious interpreter store: MaliciousReenteringStore.set re-enters flow.flow. Etched at the framework's STORE address. Storage slots from the deployed contract are copied across so the etched code retains its evaluable.
2. Malicious ERC721 recipient: MaliciousReenteringRecipient.onERC721Received re-enters. The framework's TOKEN_B is etched with StubERC721WithReceiverHook so the underlying safeTransferFrom call propagates into the recipient hook (the standard mock token does not call the hook).
3. Malicious ERC1155 recipient: same shape via StubERC1155WithReceiverHook at TOKEN_C and onERC1155Received.

Mutation verified: dropping nonReentrant from Flow.flow makes all three new tests fail; reverting passes.

Replaces the closed PR #440 (NatSpec-only enumeration). Closes #309.

Test plan

• all 3 tests pass under current code
• mutation: drop nonReentrant → all 3 fail

🤖 Generated with Claude Code

[coderabbitai]

Warning

Review limit reached

@thedavidmeister, we couldn't start this review because you've reached your PR review rate limit.

More reviews will be available in 44 minutes and 54 seconds. Learn how PR review limits work.

Your organization has used up its prepaid credits, and credit purchases are no longer available. Enable the review add-on in the billing tab to keep reviews running — you're only billed for reviews past your plan's rate limits ($0.25/file).

⌛ How to resolve this issue?

After more reviews become available, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans include higher PR review limits than trial, open-source, and free plans. In all cases, reviews become available again over time. During sustained high-volume PR review activity, CodeRabbit may temporarily slow when the next review becomes available.

Please see our Fair Usage Limits Policy for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: e985311f-b74e-4469-bc26-cadf2d0c085c

📥 Commits

Reviewing files that changed from the base of the PR and between 0af4624 and dc29a94.

📒 Files selected for processing (5)

• test/concrete/MaliciousReenteringRecipient.sol
• test/concrete/MaliciousReenteringStore.sol
• test/concrete/StubERC1155WithReceiverHook.sol
• test/concrete/StubERC721WithReceiverHook.sol
• test/src/concrete/Flow.transfer.t.sol

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch 2026-05-07-issue-309-reentrancy-per-path-tests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[thedavidmeister]

Reviewed dc29a94: rebased onto main (Flow.transfer.t.sol union — this PR 3 reentrancy-guard tests coexist with main 6 revert tests) and the forge fmt --check failure in the new tests fixed. 21 tests pass, build + fmt green. Test-only. LGTM.