Will only leave this once in code, but see overall comment about naming

Also want to challenge using the term "loan" here - the product itself is not a loan, it's a swap - the payoff curve for both counterparties looks different. I.e. the "borrower" (not really a borrower anymore) thinks of themselves as entering a "trade" as opposed to taking out a loan, and when they enter the trade they are not getting anything delivered to their wallet (not borrowing anything). For instance, there will be no "borrow" button on the product UI, it will be "fill order/trade". And there will be no "repay" button - it will be "settle/close position", which causes something that looks like repayment from LoanCore's perspective to happen, but that last part is just an implementation detail

Same comment about loan, stirfry, etc....in my framing, it's more like initializeSwap

Historically we've always used braces around if clauses, and a space after the if keyword, not sure if this was an intentional style change or not

Should we verify that funds are held in the vault, or should we actually collect funds from the lender and send them into the vault at this time? Thinking about the scenario where the vault is created and funded but does not instantly get filled; if the vault is pre-funded, then the borrower earns that pre-swap yield, right?

See comments below as well; could we just collect loanTerms.principal * stirfryData.payableToVaultedCurrencyRatio?

Yes, agree the OC should bundle the assets together.

When implementing this I found that we need to mint the Asset Vault to the OC before collecting the ERC20 tokens because LoanCore does not implement the IERC721Receiver interface. Which just means there is an extra transfer of the vault from the OC to LC before calling loanCore.startLoan(). But I also think this is safer from a security standpoint since the vault factory uses safeMint() and there would be a callback on LoanCore if it was minted to LC.

All these checks against the ratios seem to suggest that, if the ratio needs to match exactly, then there is no need for the StirfryData fields? See comment below on line 236

Could we just collect totalInterest * stirfryData.payableToVaultedCurrencyRatio?

Wouldn't vaultedCurrency need to be part of the signature? I think you need a new typehash for this; otherwise, let's say stirfryPairs allowed both sUSDe <> USDC and"uni v2 USDC<>USDT LP Token" <> USDC.

If I wanted to deliver fixed interest in USDC, then terms.payableCurrency would be USDC. Couldn't the counterparty swapping for fixed (the "lender" in terms of protocol designation) then call this function, but specify the other pair, the one against LP Tokens? It's not in my signature, so it seems like they could. Then all the sudden I'd be speculating on Uni V2 LP interest rates instead of sUSDe.

Made this change, good call. Rearranged the OriginationHelpers library contract a bit to add in the type hash (and encoding fn) and clean up a few things (moved isApprovedForContract() to OCBase). Signature recovery I put in the OCInterestRateSwap contract and kept it out of the OCBase contract.

We don't want to use predicates at all here; it seems like that only confuses things? All the balances we need for the swap are already being checked by this contract.

Re: ratio here? Does this only imply a ratio in terms of the number of decimals each token uses, or does it also imply some "price ratio"? If it's decimals, should it be encoded in allowedPairs instead of being provided by a counterparty?

If it's provided by a counterparty, then it seems like the caller can put in whatever they want. If I were swapping variable-to-fixed, then I'd just make it 0 (it's also not validated anywhere, so I could). Then, line 200 would mean that stirfryData.borrowerVaultedCurrencyAmount would have to equal 0. That's great for me, I just opened a loan without having to actually vault anything.

Yup, the payableToVaultedCurrencyRatio is the decimals ratio. This ratio is currently being captured by the allowedPairs hash. See the hash setter function as well as the validation function.

In the comment: and deposits 900,000 vs. 1,000,000.

Can remove import "../libraries/FeeLookups.sol"; on line 20.

proviededVaultedCurrencyAmount typo in provided.

proviededVaultedCurrencyAmount typo in provided.

Can remove import "../libraries/FeeLookups.sol"; from line 15.

This function can stay in OriginationController and OriginationControllerSTIRFRY because those are the only 2 contracts using it. CrossCurrencyRollover which also inherits OriginationControllerBase, does not use _validateCounterparties. And other potential new contracts may not use it either.

The reason for putting it in the OCBase contract is so there is not duplicate code across two different OriginationControllers. Additionally, the OCBase contract is home to isSelfOrApproved() which gets called twice in _validateCounterparties() so it seemed to make more sense to have it located in the OCBase contract. Other OriginationControllers that inherit the OCBase that don't need _validateCounterparties() should not be affected since it is an internal function.

lender's vault vs. lenders.

May be worth adding a test where the borrower repays the loan before the loan duration ends. All existing test that show successful repayment are repaid after the loan duration is passed.

Repayment flows are all tested in RepaymentController.ts.

I tested one repayment flow in the STIRFRY tests, just to show what the e2e flow looks like and how the amount of tokens the borrower needs to front in to receive the vaulted collateral. This can be extended to all repayment scenarios prior to the end of the loan. The borrower just needs to repay the prorata amount.

from the lender vs. form

Although the likelihood of hash collisions is very low in this context, we should be aware that generating keys through hashing could theoretically lead to issues.
But given that we are only dealing with a limited number of whitelisted pairs, our risk is very low.

Yeah, noted on the hash collisions, I would say if there were hundreds of things being whitelisted I would be a little more concerned. But due to the low number of combinations I think will be supported, I had the same reasoning as you that the likelihood is extremely low.

Maybe this var can just be called key instead of currencyHash because it is not really a hash of any currency.

It's worth adding a test where the payableToVaultedCurrencyRatio is a fraction or more complex than 1:1.

Since payableToVaultedCurrencyRatio is a uint, it cant be a fraction. The example in the tests uses a 1e12:1 ratio for sUSDe:USDC.

payableToVaultedCurrencyRatio is trusted input from the contract owner. There are notes about this in the natspec for setPair() detailing how to calculate this ratio and what it is used for.