2024-09-15 09:56:57 +00:00
|
|
|
// SPDX-License-Identifier: AGPL-3.0-only
|
|
|
|
pragma solidity ^0.8.26;
|
2024-03-24 13:00:54 +00:00
|
|
|
|
2024-09-17 05:04:08 +00:00
|
|
|
import "IERC20.sol";
|
2024-03-24 13:00:54 +00:00
|
|
|
|
2024-09-15 09:56:57 +00:00
|
|
|
import "Schnorr.sol";
|
2024-03-24 13:00:54 +00:00
|
|
|
|
2024-11-02 17:19:07 +00:00
|
|
|
import "IRouter.sol";
|
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
/*
|
|
|
|
The Router directly performs low-level calls in order to fine-tune the gas settings. Since this
|
|
|
|
contract is meant to relay an entire batch of transactions, the ability to exactly meter
|
|
|
|
individual transactions is critical.
|
|
|
|
|
|
|
|
We don't check the return values as we don't care if the calls succeeded. We solely care we made
|
|
|
|
them. If someone configures an external contract in a way which borks, we epxlicitly define that
|
|
|
|
as their fault and out-of-scope to this contract.
|
|
|
|
|
|
|
|
If an actual invariant within Serai exists, an escape hatch exists to move to a new contract. Any
|
|
|
|
improperly handled actions can be re-signed and re-executed at that point in time.
|
|
|
|
*/
|
|
|
|
// slither-disable-start low-level-calls,unchecked-lowlevel
|
|
|
|
|
|
|
|
/// @title Serai Router
|
|
|
|
/// @author Luke Parker <lukeparker@serai.exchange>
|
|
|
|
/// @notice Intakes coins for the Serai network and handles relaying batches of transfers out
|
2024-11-02 23:03:47 +00:00
|
|
|
contract Router is IRouterWithoutCollisions {
|
2024-10-31 01:35:43 +00:00
|
|
|
/**
|
|
|
|
* @dev The next nonce used to determine the address of contracts deployed with CREATE. This is
|
|
|
|
* used to predict the addresses of deployed contracts ahead of time.
|
|
|
|
*/
|
|
|
|
/*
|
|
|
|
We don't expose a getter for this as it shouldn't be expected to have any specific value at a
|
|
|
|
given moment in time. If someone wants to know the address of their deployed contract, they can
|
2024-11-02 23:03:47 +00:00
|
|
|
have it emit an event and verify the emitting contract is the expected one.
|
2024-10-31 01:35:43 +00:00
|
|
|
*/
|
2024-09-15 09:56:57 +00:00
|
|
|
uint256 private _smartContractNonce;
|
2024-03-24 13:00:54 +00:00
|
|
|
|
2024-10-31 06:23:59 +00:00
|
|
|
/**
|
|
|
|
* @dev The nonce to verify the next signature with, incremented upon an action to prevent
|
|
|
|
* replays/out-of-order execution
|
|
|
|
*/
|
|
|
|
uint256 private _nextNonce;
|
2024-10-31 01:35:43 +00:00
|
|
|
|
|
|
|
/**
|
|
|
|
* @dev The current public key for Serai's Ethereum validator set, in the form the Schnorr library
|
|
|
|
* expects
|
|
|
|
*/
|
2024-09-15 09:56:57 +00:00
|
|
|
bytes32 private _seraiKey;
|
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
/// @dev The address escaped to
|
|
|
|
address private _escapedTo;
|
|
|
|
|
2024-11-02 14:47:09 +00:00
|
|
|
/// @dev Updates the Serai key. This does not update `_nextNonce`
|
2024-10-31 01:35:43 +00:00
|
|
|
/// @param nonceUpdatedWith The nonce used to update the key
|
|
|
|
/// @param newSeraiKey The key updated to
|
2024-11-02 14:47:09 +00:00
|
|
|
function _updateSeraiKey(uint256 nonceUpdatedWith, bytes32 newSeraiKey) private {
|
2024-09-15 09:56:57 +00:00
|
|
|
_seraiKey = newSeraiKey;
|
2024-11-02 23:03:47 +00:00
|
|
|
emit SeraiKeyUpdated(nonceUpdatedWith, newSeraiKey);
|
2024-03-24 13:00:54 +00:00
|
|
|
}
|
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
/// @notice The constructor for the relayer
|
|
|
|
/// @param initialSeraiKey The initial key for Serai's Ethereum validators
|
2024-11-02 14:47:09 +00:00
|
|
|
constructor(bytes32 initialSeraiKey) {
|
2024-09-15 09:56:57 +00:00
|
|
|
// Nonces are incremented by 1 upon account creation, prior to any code execution, per EIP-161
|
|
|
|
// This is incompatible with any networks which don't have their nonces start at 0
|
|
|
|
_smartContractNonce = 1;
|
2024-10-31 01:35:43 +00:00
|
|
|
|
2024-11-02 14:47:09 +00:00
|
|
|
// Set the Serai key
|
|
|
|
_updateSeraiKey(0, initialSeraiKey);
|
|
|
|
|
|
|
|
// We just consumed nonce 0 when setting the initial Serai key
|
2024-10-31 06:23:59 +00:00
|
|
|
_nextNonce = 1;
|
2024-10-31 01:35:43 +00:00
|
|
|
|
|
|
|
// We haven't escaped to any address yet
|
|
|
|
_escapedTo = address(0);
|
|
|
|
}
|
|
|
|
|
2024-11-02 14:47:09 +00:00
|
|
|
/**
|
|
|
|
* @dev
|
2024-11-02 17:19:07 +00:00
|
|
|
* Verify a signature of the calldata, placed immediately after the function selector. The
|
|
|
|
* calldata should be signed with the nonce taking the place of the signature's commitment to
|
|
|
|
* its nonce, and the signature solution zeroed.
|
2024-11-02 14:47:09 +00:00
|
|
|
*/
|
|
|
|
function verifySignature()
|
|
|
|
private
|
|
|
|
returns (uint256 nonceUsed, bytes memory message, bytes32 messageHash)
|
|
|
|
{
|
2024-10-31 01:35:43 +00:00
|
|
|
// If the escape hatch was triggered, reject further signatures
|
|
|
|
if (_escapedTo != address(0)) {
|
2024-11-02 23:03:47 +00:00
|
|
|
revert EscapeHatchInvoked();
|
2024-10-31 01:35:43 +00:00
|
|
|
}
|
2024-11-02 14:47:09 +00:00
|
|
|
|
|
|
|
message = msg.data;
|
|
|
|
uint256 messageLen = message.length;
|
|
|
|
/*
|
|
|
|
function selector, signature
|
|
|
|
|
|
|
|
This check means we don't read memory, and as we attempt to clear portions, write past it
|
|
|
|
(triggering undefined behavior).
|
|
|
|
*/
|
|
|
|
if (messageLen < 68) {
|
2024-11-02 23:03:47 +00:00
|
|
|
revert InvalidSignature();
|
2024-11-02 14:47:09 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
// Read _nextNonce into memory as the nonce we'll use
|
|
|
|
nonceUsed = _nextNonce;
|
|
|
|
|
|
|
|
// Declare memory to copy the signature out to
|
|
|
|
bytes32 signatureC;
|
|
|
|
bytes32 signatureS;
|
|
|
|
|
|
|
|
// slither-disable-next-line assembly
|
|
|
|
assembly {
|
|
|
|
// Read the signature (placed after the function signature)
|
|
|
|
signatureC := mload(add(message, 36))
|
|
|
|
signatureS := mload(add(message, 68))
|
|
|
|
|
|
|
|
// Overwrite the signature challenge with the nonce
|
|
|
|
mstore(add(message, 36), nonceUsed)
|
|
|
|
// Overwrite the signature response with 0
|
|
|
|
mstore(add(message, 68), 0)
|
|
|
|
|
|
|
|
// Calculate the message hash
|
|
|
|
messageHash := keccak256(add(message, 32), messageLen)
|
|
|
|
}
|
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
// Verify the signature
|
2024-11-02 14:47:09 +00:00
|
|
|
if (!Schnorr.verify(_seraiKey, messageHash, signatureC, signatureS)) {
|
2024-11-02 23:03:47 +00:00
|
|
|
revert InvalidSignature();
|
2024-10-31 01:35:43 +00:00
|
|
|
}
|
2024-11-02 14:47:09 +00:00
|
|
|
|
2024-10-31 06:23:59 +00:00
|
|
|
// Set the next nonce
|
2024-10-31 01:35:43 +00:00
|
|
|
unchecked {
|
2024-11-02 14:47:09 +00:00
|
|
|
_nextNonce = nonceUsed + 1;
|
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
Advance the message past the function selector, enabling decoding the arguments. Ideally, we'd
|
|
|
|
also advance past the signature (to simplify decoding arguments and save some memory). This
|
|
|
|
would transfrom message from:
|
|
|
|
|
|
|
|
message (pointer)
|
|
|
|
v
|
|
|
|
------------------------------------------------------------
|
|
|
|
| 32-byte length | 4-byte selector | Signature | Arguments |
|
|
|
|
------------------------------------------------------------
|
|
|
|
|
|
|
|
to:
|
|
|
|
|
|
|
|
message (pointer)
|
|
|
|
v
|
|
|
|
----------------------------------------------
|
|
|
|
| Junk 68 bytes | 32-byte length | Arguments |
|
|
|
|
----------------------------------------------
|
|
|
|
|
|
|
|
Unfortunately, doing so corrupts the offsets defined within the ABI itself. We settle for a
|
|
|
|
transform to:
|
|
|
|
|
|
|
|
message (pointer)
|
|
|
|
v
|
|
|
|
---------------------------------------------------------
|
|
|
|
| Junk 4 bytes | 32-byte length | Signature | Arguments |
|
|
|
|
---------------------------------------------------------
|
|
|
|
*/
|
|
|
|
// slither-disable-next-line assembly
|
|
|
|
assembly {
|
|
|
|
message := add(message, 4)
|
|
|
|
mstore(message, sub(messageLen, 4))
|
2024-10-31 01:35:43 +00:00
|
|
|
}
|
2024-03-24 13:00:54 +00:00
|
|
|
}
|
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
/// @notice Update the key representing Serai's Ethereum validators
|
2024-11-02 22:11:09 +00:00
|
|
|
/**
|
|
|
|
* @dev This assumes the key is correct. No checks on it are performed.
|
|
|
|
*
|
|
|
|
* The hex bytes are to cause a collision with `IRouter.updateSeraiKey`.
|
|
|
|
*/
|
2024-11-02 14:47:09 +00:00
|
|
|
// @param signature The signature by the current key authorizing this update
|
|
|
|
// @param newSeraiKey The key to update to
|
2024-11-02 22:11:09 +00:00
|
|
|
function updateSeraiKey5A8542A2() external {
|
2024-11-02 14:47:09 +00:00
|
|
|
(uint256 nonceUsed, bytes memory args,) = verifySignature();
|
2024-11-02 17:19:07 +00:00
|
|
|
/*
|
|
|
|
We could replace this with a length check (if we don't simply assume the calldata is valid as
|
|
|
|
it was properly signed) + mload to save 24 gas but it's not worth the complexity.
|
|
|
|
*/
|
2024-11-02 14:47:09 +00:00
|
|
|
(,, bytes32 newSeraiKey) = abi.decode(args, (bytes32, bytes32, bytes32));
|
|
|
|
_updateSeraiKey(nonceUsed, newSeraiKey);
|
2024-03-24 13:00:54 +00:00
|
|
|
}
|
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
/// @notice Transfer coins into Serai with an instruction
|
|
|
|
/// @param coin The coin to transfer in (address(0) if Ether)
|
|
|
|
/// @param amount The amount to transfer in (msg.value if Ether)
|
|
|
|
/**
|
|
|
|
* @param instruction The Shorthand-encoded InInstruction for Serai to associate with this
|
|
|
|
* transfer in
|
|
|
|
*/
|
|
|
|
// Re-entrancy doesn't bork this function
|
|
|
|
// slither-disable-next-line reentrancy-events
|
2024-09-17 01:34:59 +00:00
|
|
|
function inInstruction(address coin, uint256 amount, bytes memory instruction) external payable {
|
2024-10-31 01:35:43 +00:00
|
|
|
// Check the transfer
|
Ethereum Integration (#557)
* Clean up Ethereum
* Consistent contract address for deployed contracts
* Flesh out Router a bit
* Add a Deployer for DoS-less deployment
* Implement Router-finding
* Use CREATE2 helper present in ethers
* Move from CREATE2 to CREATE
Bit more streamlined for our use case.
* Document ethereum-serai
* Tidy tests a bit
* Test updateSeraiKey
* Use encodePacked for updateSeraiKey
* Take in the block hash to read state during
* Add a Sandbox contract to the Ethereum integration
* Add retrieval of transfers from Ethereum
* Add inInstruction function to the Router
* Augment our handling of InInstructions events with a check the transfer event also exists
* Have the Deployer error upon failed deployments
* Add --via-ir
* Make get_transaction test-only
We only used it to get transactions to confirm the resolution of Eventualities.
Eventualities need to be modularized. By introducing the dedicated
confirm_completion function, we remove the need for a non-test get_transaction
AND begin this modularization (by no longer explicitly grabbing a transaction
to check with).
* Modularize Eventuality
Almost fully-deprecates the Transaction trait for Completion. Replaces
Transaction ID with Claim.
* Modularize the Scheduler behind a trait
* Add an extremely basic account Scheduler
* Add nonce uses, key rotation to the account scheduler
* Only report the account Scheduler empty after transferring keys
Also ban payments to the branch/change/forward addresses.
* Make fns reliant on state test-only
* Start of an Ethereum integration for the processor
* Add a session to the Router to prevent updateSeraiKey replaying
This would only happen if an old key was rotated to again, which would require
n-of-n collusion (already ridiculous and a valid fault attributable event). It
just clarifies the formal arguments.
* Add a RouterCommand + SignMachine for producing it to coins/ethereum
* Ethereum which compiles
* Have branch/change/forward return an option
Also defines a UtxoNetwork extension trait for MAX_INPUTS.
* Make external_address exclusively a test fn
* Move the "account" scheduler to "smart contract"
* Remove ABI artifact
* Move refund/forward Plan creation into the Processor
We create forward Plans in the scan path, and need to know their exact fees in
the scan path. This requires adding a somewhat wonky shim_forward_plan method
so we can obtain a Plan equivalent to the actual forward Plan for fee reasons,
yet don't expect it to be the actual forward Plan (which may be distinct if
the Plan pulls from the global state, such as with a nonce).
Also properly types a Scheduler addendum such that the SC scheduler isn't
cramming the nonce to use into the N::Output type.
* Flesh out the Ethereum integration more
* Two commits ago, into the **Scheduler, not Processor
* Remove misc TODOs in SC Scheduler
* Add constructor to RouterCommandMachine
* RouterCommand read, pairing with the prior added write
* Further add serialization methods
* Have the Router's key included with the InInstruction
This does not use the key at the time of the event. This uses the key at the
end of the block for the event. Its much simpler than getting the full event
streams for each, checking when they interlace.
This does not read the state. Every block, this makes a request for every
single key update and simply chooses the last one. This allows pruning state,
only keeping the event tree. Ideally, we'd also introduce a cache to reduce the
cost of the filter (small in events yielded, long in blocks searched).
Since Serai doesn't have any forwarding TXs, nor Branches, nor change, all of
our Plans should solely have payments out, and there's no expectation of a Plan
being made under one key broken by it being received by another key.
* Add read/write to InInstruction
* Abstract the ABI for Call/OutInstruction in ethereum-serai
* Fill out signable_transaction for Ethereum
* Move ethereum-serai to alloy
Resolves #331.
* Use the opaque sol macro instead of generated files
* Move the processor over to the now-alloy-based ethereum-serai
* Use the ecrecover provided by alloy
* Have the SC use nonce for rotation, not session (an independent nonce which wasn't synchronized)
* Always use the latest keys for SC scheduled plans
* get_eventuality_completions for Ethereum
* Finish fleshing out the processor Ethereum integration as needed for serai-processor tests
This doesn't not support any actual deployments, not even the ones simulated by
serai-processor-docker-tests.
* Add alloy-simple-request-transport to the GH workflows
* cargo update
* Clarify a few comments and make one check more robust
* Use a string for 27.0 in .github
* Remove optional from no-longer-optional dependencies in processor
* Add alloy to git deny exception
* Fix no longer optional specification in processor's binaries feature
* Use a version of foundry from 2024
* Correct fetching Bitcoin TXs in the processor docker tests
* Update rustls to resolve RUSTSEC warnings
* Use the monthly nightly foundry, not the deleted daily nightly
2024-04-21 10:02:12 +00:00
|
|
|
if (coin == address(0)) {
|
2024-11-02 23:03:47 +00:00
|
|
|
if (amount != msg.value) revert AmountMismatchesMsgValue();
|
Ethereum Integration (#557)
* Clean up Ethereum
* Consistent contract address for deployed contracts
* Flesh out Router a bit
* Add a Deployer for DoS-less deployment
* Implement Router-finding
* Use CREATE2 helper present in ethers
* Move from CREATE2 to CREATE
Bit more streamlined for our use case.
* Document ethereum-serai
* Tidy tests a bit
* Test updateSeraiKey
* Use encodePacked for updateSeraiKey
* Take in the block hash to read state during
* Add a Sandbox contract to the Ethereum integration
* Add retrieval of transfers from Ethereum
* Add inInstruction function to the Router
* Augment our handling of InInstructions events with a check the transfer event also exists
* Have the Deployer error upon failed deployments
* Add --via-ir
* Make get_transaction test-only
We only used it to get transactions to confirm the resolution of Eventualities.
Eventualities need to be modularized. By introducing the dedicated
confirm_completion function, we remove the need for a non-test get_transaction
AND begin this modularization (by no longer explicitly grabbing a transaction
to check with).
* Modularize Eventuality
Almost fully-deprecates the Transaction trait for Completion. Replaces
Transaction ID with Claim.
* Modularize the Scheduler behind a trait
* Add an extremely basic account Scheduler
* Add nonce uses, key rotation to the account scheduler
* Only report the account Scheduler empty after transferring keys
Also ban payments to the branch/change/forward addresses.
* Make fns reliant on state test-only
* Start of an Ethereum integration for the processor
* Add a session to the Router to prevent updateSeraiKey replaying
This would only happen if an old key was rotated to again, which would require
n-of-n collusion (already ridiculous and a valid fault attributable event). It
just clarifies the formal arguments.
* Add a RouterCommand + SignMachine for producing it to coins/ethereum
* Ethereum which compiles
* Have branch/change/forward return an option
Also defines a UtxoNetwork extension trait for MAX_INPUTS.
* Make external_address exclusively a test fn
* Move the "account" scheduler to "smart contract"
* Remove ABI artifact
* Move refund/forward Plan creation into the Processor
We create forward Plans in the scan path, and need to know their exact fees in
the scan path. This requires adding a somewhat wonky shim_forward_plan method
so we can obtain a Plan equivalent to the actual forward Plan for fee reasons,
yet don't expect it to be the actual forward Plan (which may be distinct if
the Plan pulls from the global state, such as with a nonce).
Also properly types a Scheduler addendum such that the SC scheduler isn't
cramming the nonce to use into the N::Output type.
* Flesh out the Ethereum integration more
* Two commits ago, into the **Scheduler, not Processor
* Remove misc TODOs in SC Scheduler
* Add constructor to RouterCommandMachine
* RouterCommand read, pairing with the prior added write
* Further add serialization methods
* Have the Router's key included with the InInstruction
This does not use the key at the time of the event. This uses the key at the
end of the block for the event. Its much simpler than getting the full event
streams for each, checking when they interlace.
This does not read the state. Every block, this makes a request for every
single key update and simply chooses the last one. This allows pruning state,
only keeping the event tree. Ideally, we'd also introduce a cache to reduce the
cost of the filter (small in events yielded, long in blocks searched).
Since Serai doesn't have any forwarding TXs, nor Branches, nor change, all of
our Plans should solely have payments out, and there's no expectation of a Plan
being made under one key broken by it being received by another key.
* Add read/write to InInstruction
* Abstract the ABI for Call/OutInstruction in ethereum-serai
* Fill out signable_transaction for Ethereum
* Move ethereum-serai to alloy
Resolves #331.
* Use the opaque sol macro instead of generated files
* Move the processor over to the now-alloy-based ethereum-serai
* Use the ecrecover provided by alloy
* Have the SC use nonce for rotation, not session (an independent nonce which wasn't synchronized)
* Always use the latest keys for SC scheduled plans
* get_eventuality_completions for Ethereum
* Finish fleshing out the processor Ethereum integration as needed for serai-processor tests
This doesn't not support any actual deployments, not even the ones simulated by
serai-processor-docker-tests.
* Add alloy-simple-request-transport to the GH workflows
* cargo update
* Clarify a few comments and make one check more robust
* Use a string for 27.0 in .github
* Remove optional from no-longer-optional dependencies in processor
* Add alloy to git deny exception
* Fix no longer optional specification in processor's binaries feature
* Use a version of foundry from 2024
* Correct fetching Bitcoin TXs in the processor docker tests
* Update rustls to resolve RUSTSEC warnings
* Use the monthly nightly foundry, not the deleted daily nightly
2024-04-21 10:02:12 +00:00
|
|
|
} else {
|
2024-09-17 01:34:59 +00:00
|
|
|
(bool success, bytes memory res) = address(coin).call(
|
|
|
|
abi.encodeWithSelector(IERC20.transferFrom.selector, msg.sender, address(this), amount)
|
|
|
|
);
|
Ethereum Integration (#557)
* Clean up Ethereum
* Consistent contract address for deployed contracts
* Flesh out Router a bit
* Add a Deployer for DoS-less deployment
* Implement Router-finding
* Use CREATE2 helper present in ethers
* Move from CREATE2 to CREATE
Bit more streamlined for our use case.
* Document ethereum-serai
* Tidy tests a bit
* Test updateSeraiKey
* Use encodePacked for updateSeraiKey
* Take in the block hash to read state during
* Add a Sandbox contract to the Ethereum integration
* Add retrieval of transfers from Ethereum
* Add inInstruction function to the Router
* Augment our handling of InInstructions events with a check the transfer event also exists
* Have the Deployer error upon failed deployments
* Add --via-ir
* Make get_transaction test-only
We only used it to get transactions to confirm the resolution of Eventualities.
Eventualities need to be modularized. By introducing the dedicated
confirm_completion function, we remove the need for a non-test get_transaction
AND begin this modularization (by no longer explicitly grabbing a transaction
to check with).
* Modularize Eventuality
Almost fully-deprecates the Transaction trait for Completion. Replaces
Transaction ID with Claim.
* Modularize the Scheduler behind a trait
* Add an extremely basic account Scheduler
* Add nonce uses, key rotation to the account scheduler
* Only report the account Scheduler empty after transferring keys
Also ban payments to the branch/change/forward addresses.
* Make fns reliant on state test-only
* Start of an Ethereum integration for the processor
* Add a session to the Router to prevent updateSeraiKey replaying
This would only happen if an old key was rotated to again, which would require
n-of-n collusion (already ridiculous and a valid fault attributable event). It
just clarifies the formal arguments.
* Add a RouterCommand + SignMachine for producing it to coins/ethereum
* Ethereum which compiles
* Have branch/change/forward return an option
Also defines a UtxoNetwork extension trait for MAX_INPUTS.
* Make external_address exclusively a test fn
* Move the "account" scheduler to "smart contract"
* Remove ABI artifact
* Move refund/forward Plan creation into the Processor
We create forward Plans in the scan path, and need to know their exact fees in
the scan path. This requires adding a somewhat wonky shim_forward_plan method
so we can obtain a Plan equivalent to the actual forward Plan for fee reasons,
yet don't expect it to be the actual forward Plan (which may be distinct if
the Plan pulls from the global state, such as with a nonce).
Also properly types a Scheduler addendum such that the SC scheduler isn't
cramming the nonce to use into the N::Output type.
* Flesh out the Ethereum integration more
* Two commits ago, into the **Scheduler, not Processor
* Remove misc TODOs in SC Scheduler
* Add constructor to RouterCommandMachine
* RouterCommand read, pairing with the prior added write
* Further add serialization methods
* Have the Router's key included with the InInstruction
This does not use the key at the time of the event. This uses the key at the
end of the block for the event. Its much simpler than getting the full event
streams for each, checking when they interlace.
This does not read the state. Every block, this makes a request for every
single key update and simply chooses the last one. This allows pruning state,
only keeping the event tree. Ideally, we'd also introduce a cache to reduce the
cost of the filter (small in events yielded, long in blocks searched).
Since Serai doesn't have any forwarding TXs, nor Branches, nor change, all of
our Plans should solely have payments out, and there's no expectation of a Plan
being made under one key broken by it being received by another key.
* Add read/write to InInstruction
* Abstract the ABI for Call/OutInstruction in ethereum-serai
* Fill out signable_transaction for Ethereum
* Move ethereum-serai to alloy
Resolves #331.
* Use the opaque sol macro instead of generated files
* Move the processor over to the now-alloy-based ethereum-serai
* Use the ecrecover provided by alloy
* Have the SC use nonce for rotation, not session (an independent nonce which wasn't synchronized)
* Always use the latest keys for SC scheduled plans
* get_eventuality_completions for Ethereum
* Finish fleshing out the processor Ethereum integration as needed for serai-processor tests
This doesn't not support any actual deployments, not even the ones simulated by
serai-processor-docker-tests.
* Add alloy-simple-request-transport to the GH workflows
* cargo update
* Clarify a few comments and make one check more robust
* Use a string for 27.0 in .github
* Remove optional from no-longer-optional dependencies in processor
* Add alloy to git deny exception
* Fix no longer optional specification in processor's binaries feature
* Use a version of foundry from 2024
* Correct fetching Bitcoin TXs in the processor docker tests
* Update rustls to resolve RUSTSEC warnings
* Use the monthly nightly foundry, not the deleted daily nightly
2024-04-21 10:02:12 +00:00
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
/*
|
|
|
|
Require there was nothing returned, which is done by some non-standard tokens, or that the
|
|
|
|
ERC20 contract did in fact return true
|
|
|
|
*/
|
2024-09-15 09:56:57 +00:00
|
|
|
bool nonStandardResOrTrue = (res.length == 0) || abi.decode(res, (bool));
|
2024-11-02 23:03:47 +00:00
|
|
|
if (!(success && nonStandardResOrTrue)) revert TransferFromFailed();
|
Ethereum Integration (#557)
* Clean up Ethereum
* Consistent contract address for deployed contracts
* Flesh out Router a bit
* Add a Deployer for DoS-less deployment
* Implement Router-finding
* Use CREATE2 helper present in ethers
* Move from CREATE2 to CREATE
Bit more streamlined for our use case.
* Document ethereum-serai
* Tidy tests a bit
* Test updateSeraiKey
* Use encodePacked for updateSeraiKey
* Take in the block hash to read state during
* Add a Sandbox contract to the Ethereum integration
* Add retrieval of transfers from Ethereum
* Add inInstruction function to the Router
* Augment our handling of InInstructions events with a check the transfer event also exists
* Have the Deployer error upon failed deployments
* Add --via-ir
* Make get_transaction test-only
We only used it to get transactions to confirm the resolution of Eventualities.
Eventualities need to be modularized. By introducing the dedicated
confirm_completion function, we remove the need for a non-test get_transaction
AND begin this modularization (by no longer explicitly grabbing a transaction
to check with).
* Modularize Eventuality
Almost fully-deprecates the Transaction trait for Completion. Replaces
Transaction ID with Claim.
* Modularize the Scheduler behind a trait
* Add an extremely basic account Scheduler
* Add nonce uses, key rotation to the account scheduler
* Only report the account Scheduler empty after transferring keys
Also ban payments to the branch/change/forward addresses.
* Make fns reliant on state test-only
* Start of an Ethereum integration for the processor
* Add a session to the Router to prevent updateSeraiKey replaying
This would only happen if an old key was rotated to again, which would require
n-of-n collusion (already ridiculous and a valid fault attributable event). It
just clarifies the formal arguments.
* Add a RouterCommand + SignMachine for producing it to coins/ethereum
* Ethereum which compiles
* Have branch/change/forward return an option
Also defines a UtxoNetwork extension trait for MAX_INPUTS.
* Make external_address exclusively a test fn
* Move the "account" scheduler to "smart contract"
* Remove ABI artifact
* Move refund/forward Plan creation into the Processor
We create forward Plans in the scan path, and need to know their exact fees in
the scan path. This requires adding a somewhat wonky shim_forward_plan method
so we can obtain a Plan equivalent to the actual forward Plan for fee reasons,
yet don't expect it to be the actual forward Plan (which may be distinct if
the Plan pulls from the global state, such as with a nonce).
Also properly types a Scheduler addendum such that the SC scheduler isn't
cramming the nonce to use into the N::Output type.
* Flesh out the Ethereum integration more
* Two commits ago, into the **Scheduler, not Processor
* Remove misc TODOs in SC Scheduler
* Add constructor to RouterCommandMachine
* RouterCommand read, pairing with the prior added write
* Further add serialization methods
* Have the Router's key included with the InInstruction
This does not use the key at the time of the event. This uses the key at the
end of the block for the event. Its much simpler than getting the full event
streams for each, checking when they interlace.
This does not read the state. Every block, this makes a request for every
single key update and simply chooses the last one. This allows pruning state,
only keeping the event tree. Ideally, we'd also introduce a cache to reduce the
cost of the filter (small in events yielded, long in blocks searched).
Since Serai doesn't have any forwarding TXs, nor Branches, nor change, all of
our Plans should solely have payments out, and there's no expectation of a Plan
being made under one key broken by it being received by another key.
* Add read/write to InInstruction
* Abstract the ABI for Call/OutInstruction in ethereum-serai
* Fill out signable_transaction for Ethereum
* Move ethereum-serai to alloy
Resolves #331.
* Use the opaque sol macro instead of generated files
* Move the processor over to the now-alloy-based ethereum-serai
* Use the ecrecover provided by alloy
* Have the SC use nonce for rotation, not session (an independent nonce which wasn't synchronized)
* Always use the latest keys for SC scheduled plans
* get_eventuality_completions for Ethereum
* Finish fleshing out the processor Ethereum integration as needed for serai-processor tests
This doesn't not support any actual deployments, not even the ones simulated by
serai-processor-docker-tests.
* Add alloy-simple-request-transport to the GH workflows
* cargo update
* Clarify a few comments and make one check more robust
* Use a string for 27.0 in .github
* Remove optional from no-longer-optional dependencies in processor
* Add alloy to git deny exception
* Fix no longer optional specification in processor's binaries feature
* Use a version of foundry from 2024
* Correct fetching Bitcoin TXs in the processor docker tests
* Update rustls to resolve RUSTSEC warnings
* Use the monthly nightly foundry, not the deleted daily nightly
2024-04-21 10:02:12 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
2024-10-31 01:35:43 +00:00
|
|
|
Due to fee-on-transfer tokens, emitting the amount directly is frowned upon. The amount
|
|
|
|
instructed to be transferred may not actually be the amount transferred.
|
|
|
|
|
|
|
|
If we add nonReentrant to every single function which can effect the balance, we can check the
|
|
|
|
amount exactly matches. This prevents transfers of less value than expected occurring, at
|
|
|
|
least, not without an additional transfer to top up the difference (which isn't routed through
|
|
|
|
this contract and accordingly isn't trying to artificially create events from this contract).
|
|
|
|
|
|
|
|
If we don't add nonReentrant, a transfer can be started, and then a new transfer for the
|
|
|
|
difference can follow it up (again and again until a rounding error is reached). This contract
|
|
|
|
would believe all transfers were done in full, despite each only being done in part (except
|
|
|
|
for the last one).
|
|
|
|
|
|
|
|
Given fee-on-transfer tokens aren't intended to be supported, the only token actively planned
|
|
|
|
to be supported is Dai and it doesn't have any fee-on-transfer logic, and how fee-on-transfer
|
|
|
|
tokens aren't even able to be supported at this time by the larger Serai network, we simply
|
|
|
|
classify this entire class of tokens as non-standard implementations which induce undefined
|
|
|
|
behavior.
|
|
|
|
|
|
|
|
It is the Serai network's role not to add support for any non-standard implementations.
|
Ethereum Integration (#557)
* Clean up Ethereum
* Consistent contract address for deployed contracts
* Flesh out Router a bit
* Add a Deployer for DoS-less deployment
* Implement Router-finding
* Use CREATE2 helper present in ethers
* Move from CREATE2 to CREATE
Bit more streamlined for our use case.
* Document ethereum-serai
* Tidy tests a bit
* Test updateSeraiKey
* Use encodePacked for updateSeraiKey
* Take in the block hash to read state during
* Add a Sandbox contract to the Ethereum integration
* Add retrieval of transfers from Ethereum
* Add inInstruction function to the Router
* Augment our handling of InInstructions events with a check the transfer event also exists
* Have the Deployer error upon failed deployments
* Add --via-ir
* Make get_transaction test-only
We only used it to get transactions to confirm the resolution of Eventualities.
Eventualities need to be modularized. By introducing the dedicated
confirm_completion function, we remove the need for a non-test get_transaction
AND begin this modularization (by no longer explicitly grabbing a transaction
to check with).
* Modularize Eventuality
Almost fully-deprecates the Transaction trait for Completion. Replaces
Transaction ID with Claim.
* Modularize the Scheduler behind a trait
* Add an extremely basic account Scheduler
* Add nonce uses, key rotation to the account scheduler
* Only report the account Scheduler empty after transferring keys
Also ban payments to the branch/change/forward addresses.
* Make fns reliant on state test-only
* Start of an Ethereum integration for the processor
* Add a session to the Router to prevent updateSeraiKey replaying
This would only happen if an old key was rotated to again, which would require
n-of-n collusion (already ridiculous and a valid fault attributable event). It
just clarifies the formal arguments.
* Add a RouterCommand + SignMachine for producing it to coins/ethereum
* Ethereum which compiles
* Have branch/change/forward return an option
Also defines a UtxoNetwork extension trait for MAX_INPUTS.
* Make external_address exclusively a test fn
* Move the "account" scheduler to "smart contract"
* Remove ABI artifact
* Move refund/forward Plan creation into the Processor
We create forward Plans in the scan path, and need to know their exact fees in
the scan path. This requires adding a somewhat wonky shim_forward_plan method
so we can obtain a Plan equivalent to the actual forward Plan for fee reasons,
yet don't expect it to be the actual forward Plan (which may be distinct if
the Plan pulls from the global state, such as with a nonce).
Also properly types a Scheduler addendum such that the SC scheduler isn't
cramming the nonce to use into the N::Output type.
* Flesh out the Ethereum integration more
* Two commits ago, into the **Scheduler, not Processor
* Remove misc TODOs in SC Scheduler
* Add constructor to RouterCommandMachine
* RouterCommand read, pairing with the prior added write
* Further add serialization methods
* Have the Router's key included with the InInstruction
This does not use the key at the time of the event. This uses the key at the
end of the block for the event. Its much simpler than getting the full event
streams for each, checking when they interlace.
This does not read the state. Every block, this makes a request for every
single key update and simply chooses the last one. This allows pruning state,
only keeping the event tree. Ideally, we'd also introduce a cache to reduce the
cost of the filter (small in events yielded, long in blocks searched).
Since Serai doesn't have any forwarding TXs, nor Branches, nor change, all of
our Plans should solely have payments out, and there's no expectation of a Plan
being made under one key broken by it being received by another key.
* Add read/write to InInstruction
* Abstract the ABI for Call/OutInstruction in ethereum-serai
* Fill out signable_transaction for Ethereum
* Move ethereum-serai to alloy
Resolves #331.
* Use the opaque sol macro instead of generated files
* Move the processor over to the now-alloy-based ethereum-serai
* Use the ecrecover provided by alloy
* Have the SC use nonce for rotation, not session (an independent nonce which wasn't synchronized)
* Always use the latest keys for SC scheduled plans
* get_eventuality_completions for Ethereum
* Finish fleshing out the processor Ethereum integration as needed for serai-processor tests
This doesn't not support any actual deployments, not even the ones simulated by
serai-processor-docker-tests.
* Add alloy-simple-request-transport to the GH workflows
* cargo update
* Clarify a few comments and make one check more robust
* Use a string for 27.0 in .github
* Remove optional from no-longer-optional dependencies in processor
* Add alloy to git deny exception
* Fix no longer optional specification in processor's binaries feature
* Use a version of foundry from 2024
* Correct fetching Bitcoin TXs in the processor docker tests
* Update rustls to resolve RUSTSEC warnings
* Use the monthly nightly foundry, not the deleted daily nightly
2024-04-21 10:02:12 +00:00
|
|
|
*/
|
2024-11-02 23:03:47 +00:00
|
|
|
emit InInstruction(msg.sender, coin, amount, instruction);
|
Ethereum Integration (#557)
* Clean up Ethereum
* Consistent contract address for deployed contracts
* Flesh out Router a bit
* Add a Deployer for DoS-less deployment
* Implement Router-finding
* Use CREATE2 helper present in ethers
* Move from CREATE2 to CREATE
Bit more streamlined for our use case.
* Document ethereum-serai
* Tidy tests a bit
* Test updateSeraiKey
* Use encodePacked for updateSeraiKey
* Take in the block hash to read state during
* Add a Sandbox contract to the Ethereum integration
* Add retrieval of transfers from Ethereum
* Add inInstruction function to the Router
* Augment our handling of InInstructions events with a check the transfer event also exists
* Have the Deployer error upon failed deployments
* Add --via-ir
* Make get_transaction test-only
We only used it to get transactions to confirm the resolution of Eventualities.
Eventualities need to be modularized. By introducing the dedicated
confirm_completion function, we remove the need for a non-test get_transaction
AND begin this modularization (by no longer explicitly grabbing a transaction
to check with).
* Modularize Eventuality
Almost fully-deprecates the Transaction trait for Completion. Replaces
Transaction ID with Claim.
* Modularize the Scheduler behind a trait
* Add an extremely basic account Scheduler
* Add nonce uses, key rotation to the account scheduler
* Only report the account Scheduler empty after transferring keys
Also ban payments to the branch/change/forward addresses.
* Make fns reliant on state test-only
* Start of an Ethereum integration for the processor
* Add a session to the Router to prevent updateSeraiKey replaying
This would only happen if an old key was rotated to again, which would require
n-of-n collusion (already ridiculous and a valid fault attributable event). It
just clarifies the formal arguments.
* Add a RouterCommand + SignMachine for producing it to coins/ethereum
* Ethereum which compiles
* Have branch/change/forward return an option
Also defines a UtxoNetwork extension trait for MAX_INPUTS.
* Make external_address exclusively a test fn
* Move the "account" scheduler to "smart contract"
* Remove ABI artifact
* Move refund/forward Plan creation into the Processor
We create forward Plans in the scan path, and need to know their exact fees in
the scan path. This requires adding a somewhat wonky shim_forward_plan method
so we can obtain a Plan equivalent to the actual forward Plan for fee reasons,
yet don't expect it to be the actual forward Plan (which may be distinct if
the Plan pulls from the global state, such as with a nonce).
Also properly types a Scheduler addendum such that the SC scheduler isn't
cramming the nonce to use into the N::Output type.
* Flesh out the Ethereum integration more
* Two commits ago, into the **Scheduler, not Processor
* Remove misc TODOs in SC Scheduler
* Add constructor to RouterCommandMachine
* RouterCommand read, pairing with the prior added write
* Further add serialization methods
* Have the Router's key included with the InInstruction
This does not use the key at the time of the event. This uses the key at the
end of the block for the event. Its much simpler than getting the full event
streams for each, checking when they interlace.
This does not read the state. Every block, this makes a request for every
single key update and simply chooses the last one. This allows pruning state,
only keeping the event tree. Ideally, we'd also introduce a cache to reduce the
cost of the filter (small in events yielded, long in blocks searched).
Since Serai doesn't have any forwarding TXs, nor Branches, nor change, all of
our Plans should solely have payments out, and there's no expectation of a Plan
being made under one key broken by it being received by another key.
* Add read/write to InInstruction
* Abstract the ABI for Call/OutInstruction in ethereum-serai
* Fill out signable_transaction for Ethereum
* Move ethereum-serai to alloy
Resolves #331.
* Use the opaque sol macro instead of generated files
* Move the processor over to the now-alloy-based ethereum-serai
* Use the ecrecover provided by alloy
* Have the SC use nonce for rotation, not session (an independent nonce which wasn't synchronized)
* Always use the latest keys for SC scheduled plans
* get_eventuality_completions for Ethereum
* Finish fleshing out the processor Ethereum integration as needed for serai-processor tests
This doesn't not support any actual deployments, not even the ones simulated by
serai-processor-docker-tests.
* Add alloy-simple-request-transport to the GH workflows
* cargo update
* Clarify a few comments and make one check more robust
* Use a string for 27.0 in .github
* Remove optional from no-longer-optional dependencies in processor
* Add alloy to git deny exception
* Fix no longer optional specification in processor's binaries feature
* Use a version of foundry from 2024
* Correct fetching Bitcoin TXs in the processor docker tests
* Update rustls to resolve RUSTSEC warnings
* Use the monthly nightly foundry, not the deleted daily nightly
2024-04-21 10:02:12 +00:00
|
|
|
}
|
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
/// @dev Perform an ERC20 transfer out
|
|
|
|
/// @param to The address to transfer the coins to
|
|
|
|
/// @param coin The coin to transfer
|
|
|
|
/// @param amount The amount of the coin to transfer
|
|
|
|
function erc20TransferOut(address to, address coin, uint256 amount) private {
|
|
|
|
/*
|
|
|
|
The ERC20s integrated are presumed to have a constant gas cost, meaning this can only be
|
|
|
|
insufficient:
|
|
|
|
|
|
|
|
A) An integrated ERC20 uses more gas than this limit (presumed not to be the case)
|
|
|
|
B) An integrated ERC20 is upgraded (integrated ERC20s are presumed to not be upgradeable)
|
|
|
|
C) This has a variable gas cost and the user set a hook on receive which caused this (in
|
|
|
|
which case, we accept dropping this)
|
|
|
|
D) The user was blacklisted (in which case, we again accept dropping this)
|
|
|
|
E) Other extreme edge cases, for which such tokens are assumed to not be integrated
|
|
|
|
F) Ethereum opcodes are repriced in a sufficiently breaking fashion
|
|
|
|
|
|
|
|
This should be in such excess of the gas requirements of integrated tokens we'll survive
|
|
|
|
repricing, so long as the repricing doesn't revolutionize EVM gas costs as we know it. In such
|
|
|
|
a case, Serai would have to migrate to a new smart contract using `escapeHatch`.
|
|
|
|
*/
|
|
|
|
uint256 _gas = 100_000;
|
2024-09-20 05:01:45 +00:00
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
bytes memory _calldata = abi.encodeWithSelector(IERC20.transfer.selector, to, amount);
|
|
|
|
bool _success;
|
|
|
|
// slither-disable-next-line assembly
|
|
|
|
assembly {
|
|
|
|
/*
|
|
|
|
`coin` is trusted so we can accept the risk of a return bomb here, yet we won't check the
|
|
|
|
return value anyways so there's no need to spend the gas decoding it. We assume failures
|
|
|
|
are the fault of the recipient, not us, the sender. We don't want to have such errors block
|
|
|
|
the queue of transfers to make.
|
|
|
|
|
|
|
|
If there ever was some invariant broken, off-chain actions is presumed to occur to move to a
|
|
|
|
new smart contract with whatever necessary changes made/response occurring.
|
|
|
|
*/
|
|
|
|
_success :=
|
|
|
|
call(
|
|
|
|
_gas,
|
|
|
|
coin,
|
|
|
|
// Ether value
|
|
|
|
0,
|
|
|
|
// calldata
|
|
|
|
add(_calldata, 0x20),
|
|
|
|
mload(_calldata),
|
|
|
|
// return data
|
|
|
|
0,
|
|
|
|
0
|
|
|
|
)
|
|
|
|
}
|
2024-09-20 05:01:45 +00:00
|
|
|
}
|
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
/// @dev Perform an ETH/ERC20 transfer out
|
|
|
|
/// @param to The address to transfer the coins to
|
|
|
|
/// @param coin The coin to transfer (address(0) if Ether)
|
|
|
|
/// @param amount The amount of the coin to transfer
|
|
|
|
function transferOut(address to, address coin, uint256 amount) private {
|
2024-09-15 09:56:57 +00:00
|
|
|
if (coin == address(0)) {
|
|
|
|
// Enough gas to service the transfer and a minimal amount of logic
|
2024-10-31 01:35:43 +00:00
|
|
|
uint256 _gas = 5_000;
|
|
|
|
// This uses assembly to prevent return bombs
|
|
|
|
bool _success;
|
|
|
|
// slither-disable-next-line assembly
|
|
|
|
assembly {
|
|
|
|
_success :=
|
|
|
|
call(
|
|
|
|
_gas,
|
|
|
|
to,
|
|
|
|
amount,
|
|
|
|
// calldata
|
|
|
|
0,
|
|
|
|
0,
|
|
|
|
// return data
|
|
|
|
0,
|
|
|
|
0
|
|
|
|
)
|
|
|
|
}
|
2024-09-15 09:56:57 +00:00
|
|
|
} else {
|
2024-10-31 01:35:43 +00:00
|
|
|
erc20TransferOut(to, coin, amount);
|
Ethereum Integration (#557)
* Clean up Ethereum
* Consistent contract address for deployed contracts
* Flesh out Router a bit
* Add a Deployer for DoS-less deployment
* Implement Router-finding
* Use CREATE2 helper present in ethers
* Move from CREATE2 to CREATE
Bit more streamlined for our use case.
* Document ethereum-serai
* Tidy tests a bit
* Test updateSeraiKey
* Use encodePacked for updateSeraiKey
* Take in the block hash to read state during
* Add a Sandbox contract to the Ethereum integration
* Add retrieval of transfers from Ethereum
* Add inInstruction function to the Router
* Augment our handling of InInstructions events with a check the transfer event also exists
* Have the Deployer error upon failed deployments
* Add --via-ir
* Make get_transaction test-only
We only used it to get transactions to confirm the resolution of Eventualities.
Eventualities need to be modularized. By introducing the dedicated
confirm_completion function, we remove the need for a non-test get_transaction
AND begin this modularization (by no longer explicitly grabbing a transaction
to check with).
* Modularize Eventuality
Almost fully-deprecates the Transaction trait for Completion. Replaces
Transaction ID with Claim.
* Modularize the Scheduler behind a trait
* Add an extremely basic account Scheduler
* Add nonce uses, key rotation to the account scheduler
* Only report the account Scheduler empty after transferring keys
Also ban payments to the branch/change/forward addresses.
* Make fns reliant on state test-only
* Start of an Ethereum integration for the processor
* Add a session to the Router to prevent updateSeraiKey replaying
This would only happen if an old key was rotated to again, which would require
n-of-n collusion (already ridiculous and a valid fault attributable event). It
just clarifies the formal arguments.
* Add a RouterCommand + SignMachine for producing it to coins/ethereum
* Ethereum which compiles
* Have branch/change/forward return an option
Also defines a UtxoNetwork extension trait for MAX_INPUTS.
* Make external_address exclusively a test fn
* Move the "account" scheduler to "smart contract"
* Remove ABI artifact
* Move refund/forward Plan creation into the Processor
We create forward Plans in the scan path, and need to know their exact fees in
the scan path. This requires adding a somewhat wonky shim_forward_plan method
so we can obtain a Plan equivalent to the actual forward Plan for fee reasons,
yet don't expect it to be the actual forward Plan (which may be distinct if
the Plan pulls from the global state, such as with a nonce).
Also properly types a Scheduler addendum such that the SC scheduler isn't
cramming the nonce to use into the N::Output type.
* Flesh out the Ethereum integration more
* Two commits ago, into the **Scheduler, not Processor
* Remove misc TODOs in SC Scheduler
* Add constructor to RouterCommandMachine
* RouterCommand read, pairing with the prior added write
* Further add serialization methods
* Have the Router's key included with the InInstruction
This does not use the key at the time of the event. This uses the key at the
end of the block for the event. Its much simpler than getting the full event
streams for each, checking when they interlace.
This does not read the state. Every block, this makes a request for every
single key update and simply chooses the last one. This allows pruning state,
only keeping the event tree. Ideally, we'd also introduce a cache to reduce the
cost of the filter (small in events yielded, long in blocks searched).
Since Serai doesn't have any forwarding TXs, nor Branches, nor change, all of
our Plans should solely have payments out, and there's no expectation of a Plan
being made under one key broken by it being received by another key.
* Add read/write to InInstruction
* Abstract the ABI for Call/OutInstruction in ethereum-serai
* Fill out signable_transaction for Ethereum
* Move ethereum-serai to alloy
Resolves #331.
* Use the opaque sol macro instead of generated files
* Move the processor over to the now-alloy-based ethereum-serai
* Use the ecrecover provided by alloy
* Have the SC use nonce for rotation, not session (an independent nonce which wasn't synchronized)
* Always use the latest keys for SC scheduled plans
* get_eventuality_completions for Ethereum
* Finish fleshing out the processor Ethereum integration as needed for serai-processor tests
This doesn't not support any actual deployments, not even the ones simulated by
serai-processor-docker-tests.
* Add alloy-simple-request-transport to the GH workflows
* cargo update
* Clarify a few comments and make one check more robust
* Use a string for 27.0 in .github
* Remove optional from no-longer-optional dependencies in processor
* Add alloy to git deny exception
* Fix no longer optional specification in processor's binaries feature
* Use a version of foundry from 2024
* Correct fetching Bitcoin TXs in the processor docker tests
* Update rustls to resolve RUSTSEC warnings
* Use the monthly nightly foundry, not the deleted daily nightly
2024-04-21 10:02:12 +00:00
|
|
|
}
|
2024-09-15 09:56:57 +00:00
|
|
|
}
|
2024-03-24 13:00:54 +00:00
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
/// @notice Execute some arbitrary code within a secure sandbox
|
|
|
|
/**
|
|
|
|
* @dev This performs sandboxing by deploying this code with `CREATE`. This is an external
|
|
|
|
* function as we can't meter `CREATE`/internal functions. We work around this by calling this
|
|
|
|
* function with `CALL` (which we can meter). This does forward `msg.value` to the newly
|
|
|
|
* deployed contract.
|
|
|
|
*/
|
|
|
|
/// @param code The code to execute
|
|
|
|
function executeArbitraryCode(bytes memory code) external payable {
|
2024-09-15 09:56:57 +00:00
|
|
|
// Because we're creating a contract, increment our nonce
|
|
|
|
_smartContractNonce += 1;
|
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
uint256 msgValue = msg.value;
|
2024-09-15 09:56:57 +00:00
|
|
|
address contractAddress;
|
2024-10-31 01:35:43 +00:00
|
|
|
// We need to use assembly here because Solidity doesn't expose CREATE
|
|
|
|
// slither-disable-next-line assembly
|
2024-09-15 09:56:57 +00:00
|
|
|
assembly {
|
2024-10-31 01:35:43 +00:00
|
|
|
contractAddress := create(msgValue, add(code, 0x20), mload(code))
|
2024-09-15 09:56:57 +00:00
|
|
|
}
|
|
|
|
}
|
Ethereum Integration (#557)
* Clean up Ethereum
* Consistent contract address for deployed contracts
* Flesh out Router a bit
* Add a Deployer for DoS-less deployment
* Implement Router-finding
* Use CREATE2 helper present in ethers
* Move from CREATE2 to CREATE
Bit more streamlined for our use case.
* Document ethereum-serai
* Tidy tests a bit
* Test updateSeraiKey
* Use encodePacked for updateSeraiKey
* Take in the block hash to read state during
* Add a Sandbox contract to the Ethereum integration
* Add retrieval of transfers from Ethereum
* Add inInstruction function to the Router
* Augment our handling of InInstructions events with a check the transfer event also exists
* Have the Deployer error upon failed deployments
* Add --via-ir
* Make get_transaction test-only
We only used it to get transactions to confirm the resolution of Eventualities.
Eventualities need to be modularized. By introducing the dedicated
confirm_completion function, we remove the need for a non-test get_transaction
AND begin this modularization (by no longer explicitly grabbing a transaction
to check with).
* Modularize Eventuality
Almost fully-deprecates the Transaction trait for Completion. Replaces
Transaction ID with Claim.
* Modularize the Scheduler behind a trait
* Add an extremely basic account Scheduler
* Add nonce uses, key rotation to the account scheduler
* Only report the account Scheduler empty after transferring keys
Also ban payments to the branch/change/forward addresses.
* Make fns reliant on state test-only
* Start of an Ethereum integration for the processor
* Add a session to the Router to prevent updateSeraiKey replaying
This would only happen if an old key was rotated to again, which would require
n-of-n collusion (already ridiculous and a valid fault attributable event). It
just clarifies the formal arguments.
* Add a RouterCommand + SignMachine for producing it to coins/ethereum
* Ethereum which compiles
* Have branch/change/forward return an option
Also defines a UtxoNetwork extension trait for MAX_INPUTS.
* Make external_address exclusively a test fn
* Move the "account" scheduler to "smart contract"
* Remove ABI artifact
* Move refund/forward Plan creation into the Processor
We create forward Plans in the scan path, and need to know their exact fees in
the scan path. This requires adding a somewhat wonky shim_forward_plan method
so we can obtain a Plan equivalent to the actual forward Plan for fee reasons,
yet don't expect it to be the actual forward Plan (which may be distinct if
the Plan pulls from the global state, such as with a nonce).
Also properly types a Scheduler addendum such that the SC scheduler isn't
cramming the nonce to use into the N::Output type.
* Flesh out the Ethereum integration more
* Two commits ago, into the **Scheduler, not Processor
* Remove misc TODOs in SC Scheduler
* Add constructor to RouterCommandMachine
* RouterCommand read, pairing with the prior added write
* Further add serialization methods
* Have the Router's key included with the InInstruction
This does not use the key at the time of the event. This uses the key at the
end of the block for the event. Its much simpler than getting the full event
streams for each, checking when they interlace.
This does not read the state. Every block, this makes a request for every
single key update and simply chooses the last one. This allows pruning state,
only keeping the event tree. Ideally, we'd also introduce a cache to reduce the
cost of the filter (small in events yielded, long in blocks searched).
Since Serai doesn't have any forwarding TXs, nor Branches, nor change, all of
our Plans should solely have payments out, and there's no expectation of a Plan
being made under one key broken by it being received by another key.
* Add read/write to InInstruction
* Abstract the ABI for Call/OutInstruction in ethereum-serai
* Fill out signable_transaction for Ethereum
* Move ethereum-serai to alloy
Resolves #331.
* Use the opaque sol macro instead of generated files
* Move the processor over to the now-alloy-based ethereum-serai
* Use the ecrecover provided by alloy
* Have the SC use nonce for rotation, not session (an independent nonce which wasn't synchronized)
* Always use the latest keys for SC scheduled plans
* get_eventuality_completions for Ethereum
* Finish fleshing out the processor Ethereum integration as needed for serai-processor tests
This doesn't not support any actual deployments, not even the ones simulated by
serai-processor-docker-tests.
* Add alloy-simple-request-transport to the GH workflows
* cargo update
* Clarify a few comments and make one check more robust
* Use a string for 27.0 in .github
* Remove optional from no-longer-optional dependencies in processor
* Add alloy to git deny exception
* Fix no longer optional specification in processor's binaries feature
* Use a version of foundry from 2024
* Correct fetching Bitcoin TXs in the processor docker tests
* Update rustls to resolve RUSTSEC warnings
* Use the monthly nightly foundry, not the deleted daily nightly
2024-04-21 10:02:12 +00:00
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
/// @notice Execute a batch of `OutInstruction`s
|
|
|
|
/**
|
|
|
|
* @dev All `OutInstruction`s in a batch are only for a single coin to simplify handling of the
|
2024-11-02 22:11:09 +00:00
|
|
|
* fee.
|
|
|
|
*
|
|
|
|
* The hex bytes are to cause a function selector collision with `IRouter.execute`.
|
2024-10-31 01:35:43 +00:00
|
|
|
*/
|
2024-11-02 14:47:09 +00:00
|
|
|
// @param signature The signature by the current key for Serai's Ethereum validators
|
|
|
|
// @param coin The coin all of these `OutInstruction`s are for
|
|
|
|
// @param fee The fee to pay (in coin) to the caller for their relaying of this batch
|
|
|
|
// @param outs The `OutInstruction`s to act on
|
2024-10-31 01:35:43 +00:00
|
|
|
// Each individual call is explicitly metered to ensure there isn't a DoS here
|
|
|
|
// slither-disable-next-line calls-loop
|
2024-11-02 22:11:09 +00:00
|
|
|
function execute4DE42904() external {
|
2024-11-02 14:47:09 +00:00
|
|
|
(uint256 nonceUsed, bytes memory args, bytes32 message) = verifySignature();
|
2024-11-02 17:19:07 +00:00
|
|
|
(,, address coin, uint256 fee, IRouter.OutInstruction[] memory outs) =
|
|
|
|
abi.decode(args, (bytes32, bytes32, address, uint256, IRouter.OutInstruction[]));
|
2024-03-24 13:00:54 +00:00
|
|
|
|
2024-10-31 06:23:59 +00:00
|
|
|
// TODO: Also include a bit mask here
|
2024-11-02 23:03:47 +00:00
|
|
|
emit Executed(nonceUsed, message);
|
2024-09-15 09:56:57 +00:00
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
/*
|
|
|
|
Since we don't have a re-entrancy guard, it is possible for instructions from later batches to
|
|
|
|
be executed before these instructions. This is deemed fine. We only require later batches be
|
|
|
|
relayed after earlier batches in order to form backpressure. This means if a batch has a fee
|
|
|
|
which isn't worth relaying the batch for, so long as later batches are sufficiently
|
|
|
|
worthwhile, every batch will be relayed.
|
|
|
|
*/
|
|
|
|
|
|
|
|
// slither-disable-next-line reentrancy-events
|
|
|
|
for (uint256 i = 0; i < outs.length; i++) {
|
2024-09-15 09:56:57 +00:00
|
|
|
// If the destination is an address, we perform a direct transfer
|
2024-11-02 17:19:07 +00:00
|
|
|
if (outs[i].destinationType == IRouter.DestinationType.Address) {
|
2024-10-31 01:35:43 +00:00
|
|
|
/*
|
2024-11-02 17:19:07 +00:00
|
|
|
This may cause a revert if the destination isn't actually a valid address. Serai is
|
2024-10-31 01:35:43 +00:00
|
|
|
trusted to not pass a malformed destination, yet if it ever did, it could simply re-sign a
|
|
|
|
corrected batch using this nonce.
|
|
|
|
*/
|
|
|
|
address destination = abi.decode(outs[i].destination, (address));
|
|
|
|
transferOut(destination, coin, outs[i].amount);
|
Ethereum Integration (#557)
* Clean up Ethereum
* Consistent contract address for deployed contracts
* Flesh out Router a bit
* Add a Deployer for DoS-less deployment
* Implement Router-finding
* Use CREATE2 helper present in ethers
* Move from CREATE2 to CREATE
Bit more streamlined for our use case.
* Document ethereum-serai
* Tidy tests a bit
* Test updateSeraiKey
* Use encodePacked for updateSeraiKey
* Take in the block hash to read state during
* Add a Sandbox contract to the Ethereum integration
* Add retrieval of transfers from Ethereum
* Add inInstruction function to the Router
* Augment our handling of InInstructions events with a check the transfer event also exists
* Have the Deployer error upon failed deployments
* Add --via-ir
* Make get_transaction test-only
We only used it to get transactions to confirm the resolution of Eventualities.
Eventualities need to be modularized. By introducing the dedicated
confirm_completion function, we remove the need for a non-test get_transaction
AND begin this modularization (by no longer explicitly grabbing a transaction
to check with).
* Modularize Eventuality
Almost fully-deprecates the Transaction trait for Completion. Replaces
Transaction ID with Claim.
* Modularize the Scheduler behind a trait
* Add an extremely basic account Scheduler
* Add nonce uses, key rotation to the account scheduler
* Only report the account Scheduler empty after transferring keys
Also ban payments to the branch/change/forward addresses.
* Make fns reliant on state test-only
* Start of an Ethereum integration for the processor
* Add a session to the Router to prevent updateSeraiKey replaying
This would only happen if an old key was rotated to again, which would require
n-of-n collusion (already ridiculous and a valid fault attributable event). It
just clarifies the formal arguments.
* Add a RouterCommand + SignMachine for producing it to coins/ethereum
* Ethereum which compiles
* Have branch/change/forward return an option
Also defines a UtxoNetwork extension trait for MAX_INPUTS.
* Make external_address exclusively a test fn
* Move the "account" scheduler to "smart contract"
* Remove ABI artifact
* Move refund/forward Plan creation into the Processor
We create forward Plans in the scan path, and need to know their exact fees in
the scan path. This requires adding a somewhat wonky shim_forward_plan method
so we can obtain a Plan equivalent to the actual forward Plan for fee reasons,
yet don't expect it to be the actual forward Plan (which may be distinct if
the Plan pulls from the global state, such as with a nonce).
Also properly types a Scheduler addendum such that the SC scheduler isn't
cramming the nonce to use into the N::Output type.
* Flesh out the Ethereum integration more
* Two commits ago, into the **Scheduler, not Processor
* Remove misc TODOs in SC Scheduler
* Add constructor to RouterCommandMachine
* RouterCommand read, pairing with the prior added write
* Further add serialization methods
* Have the Router's key included with the InInstruction
This does not use the key at the time of the event. This uses the key at the
end of the block for the event. Its much simpler than getting the full event
streams for each, checking when they interlace.
This does not read the state. Every block, this makes a request for every
single key update and simply chooses the last one. This allows pruning state,
only keeping the event tree. Ideally, we'd also introduce a cache to reduce the
cost of the filter (small in events yielded, long in blocks searched).
Since Serai doesn't have any forwarding TXs, nor Branches, nor change, all of
our Plans should solely have payments out, and there's no expectation of a Plan
being made under one key broken by it being received by another key.
* Add read/write to InInstruction
* Abstract the ABI for Call/OutInstruction in ethereum-serai
* Fill out signable_transaction for Ethereum
* Move ethereum-serai to alloy
Resolves #331.
* Use the opaque sol macro instead of generated files
* Move the processor over to the now-alloy-based ethereum-serai
* Use the ecrecover provided by alloy
* Have the SC use nonce for rotation, not session (an independent nonce which wasn't synchronized)
* Always use the latest keys for SC scheduled plans
* get_eventuality_completions for Ethereum
* Finish fleshing out the processor Ethereum integration as needed for serai-processor tests
This doesn't not support any actual deployments, not even the ones simulated by
serai-processor-docker-tests.
* Add alloy-simple-request-transport to the GH workflows
* cargo update
* Clarify a few comments and make one check more robust
* Use a string for 27.0 in .github
* Remove optional from no-longer-optional dependencies in processor
* Add alloy to git deny exception
* Fix no longer optional specification in processor's binaries feature
* Use a version of foundry from 2024
* Correct fetching Bitcoin TXs in the processor docker tests
* Update rustls to resolve RUSTSEC warnings
* Use the monthly nightly foundry, not the deleted daily nightly
2024-04-21 10:02:12 +00:00
|
|
|
} else {
|
2024-10-31 01:35:43 +00:00
|
|
|
// Prepare the transfer
|
|
|
|
uint256 ethValue = 0;
|
2024-09-20 05:01:45 +00:00
|
|
|
if (coin == address(0)) {
|
2024-10-31 01:35:43 +00:00
|
|
|
// If it's ETH, we transfer the amount with the call
|
|
|
|
ethValue = outs[i].amount;
|
2024-09-20 05:01:45 +00:00
|
|
|
} else {
|
2024-10-31 01:35:43 +00:00
|
|
|
/*
|
|
|
|
If it's an ERC20, we calculate the address of the will-be contract and transfer to it
|
|
|
|
before deployment. This avoids needing to deploy the contract, then call transfer, then
|
|
|
|
call the contract again
|
|
|
|
*/
|
|
|
|
address nextAddress = address(
|
|
|
|
uint160(uint256(keccak256(abi.encodePacked(address(this), _smartContractNonce))))
|
|
|
|
);
|
|
|
|
erc20TransferOut(nextAddress, coin, outs[i].amount);
|
2024-09-20 05:01:45 +00:00
|
|
|
}
|
|
|
|
|
2024-11-02 17:19:07 +00:00
|
|
|
(IRouter.CodeDestination memory destination) =
|
|
|
|
abi.decode(outs[i].destination, (IRouter.CodeDestination));
|
2024-10-31 01:35:43 +00:00
|
|
|
|
|
|
|
/*
|
|
|
|
Perform the deployment with the defined gas budget.
|
|
|
|
|
|
|
|
We don't care if the following call fails as we don't want to block/retry if it does.
|
|
|
|
Failures are considered the recipient's fault. We explicitly do not want the surface
|
|
|
|
area/inefficiency of caching these for later attempted retires.
|
|
|
|
|
|
|
|
We don't have to worry about a return bomb here as this is our own function which doesn't
|
|
|
|
return any data.
|
|
|
|
*/
|
|
|
|
address(this).call{ gas: destination.gasLimit, value: ethValue }(
|
|
|
|
abi.encodeWithSelector(Router.executeArbitraryCode.selector, destination.code)
|
2024-09-17 01:34:59 +00:00
|
|
|
);
|
2024-03-24 13:00:54 +00:00
|
|
|
}
|
|
|
|
}
|
2024-09-20 03:24:20 +00:00
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
// Transfer the fee to the relayer
|
|
|
|
transferOut(msg.sender, coin, fee);
|
2024-09-15 09:56:57 +00:00
|
|
|
}
|
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
/// @notice Escapes to a new smart contract
|
2024-11-02 22:11:09 +00:00
|
|
|
/**
|
|
|
|
* @dev This should be used upon an invariant being reached or new functionality being needed.
|
|
|
|
*
|
2024-11-02 23:03:47 +00:00
|
|
|
* The hex bytes are to cause a collision with `IRouter.escapeHatch`.
|
2024-11-02 22:11:09 +00:00
|
|
|
*/
|
2024-11-02 14:47:09 +00:00
|
|
|
// @param signature The signature by the current key for Serai's Ethereum validators
|
|
|
|
// @param escapeTo The address to escape to
|
2024-11-02 22:11:09 +00:00
|
|
|
function escapeHatchDCDD91CC() external {
|
2024-11-02 14:47:09 +00:00
|
|
|
// Verify the signature
|
|
|
|
(, bytes memory args,) = verifySignature();
|
|
|
|
|
|
|
|
(,, address escapeTo) = abi.decode(args, (bytes32, bytes32, address));
|
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
if (escapeTo == address(0)) {
|
2024-11-02 23:03:47 +00:00
|
|
|
revert InvalidEscapeAddress();
|
2024-10-31 01:35:43 +00:00
|
|
|
}
|
|
|
|
/*
|
|
|
|
We want to define the escape hatch so coins here now, and latently received, can be forwarded.
|
|
|
|
If the last Serai key set could update the escape hatch, they could siphon off latently
|
|
|
|
received coins without penalty (if they update the escape hatch after unstaking).
|
|
|
|
*/
|
|
|
|
if (_escapedTo != address(0)) {
|
2024-11-02 23:03:47 +00:00
|
|
|
revert EscapeHatchInvoked();
|
2024-10-31 01:35:43 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
_escapedTo = escapeTo;
|
2024-11-02 23:03:47 +00:00
|
|
|
emit EscapeHatch(escapeTo);
|
2024-10-31 01:35:43 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
/// @notice Escape coins after the escape hatch has been invoked
|
|
|
|
/// @param coin The coin to escape
|
|
|
|
function escape(address coin) external {
|
|
|
|
if (_escapedTo == address(0)) {
|
2024-11-02 23:03:47 +00:00
|
|
|
revert EscapeHatchNotInvoked();
|
2024-10-31 01:35:43 +00:00
|
|
|
}
|
|
|
|
|
2024-11-02 23:03:47 +00:00
|
|
|
emit Escaped(coin);
|
2024-10-31 01:35:43 +00:00
|
|
|
|
|
|
|
// Fetch the amount to escape
|
|
|
|
uint256 amount = address(this).balance;
|
|
|
|
if (coin != address(0)) {
|
|
|
|
amount = IERC20(coin).balanceOf(address(this));
|
|
|
|
}
|
|
|
|
|
|
|
|
// Perform the transfer
|
|
|
|
transferOut(_escapedTo, coin, amount);
|
2024-09-15 09:56:57 +00:00
|
|
|
}
|
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
/// @notice Fetch the next nonce to use by an action published to this contract
|
|
|
|
/// return The next nonce to use by an action published to this contract
|
2024-10-31 06:23:59 +00:00
|
|
|
function nextNonce() external view returns (uint256) {
|
|
|
|
return _nextNonce;
|
2024-09-15 09:56:57 +00:00
|
|
|
}
|
|
|
|
|
2024-10-31 01:35:43 +00:00
|
|
|
/// @notice Fetch the current key for Serai's Ethereum validator set
|
|
|
|
/// @return The current key for Serai's Ethereum validator set
|
2024-09-15 09:56:57 +00:00
|
|
|
function seraiKey() external view returns (bytes32) {
|
|
|
|
return _seraiKey;
|
2024-03-24 13:00:54 +00:00
|
|
|
}
|
2024-10-31 01:35:43 +00:00
|
|
|
|
|
|
|
/// @notice Fetch the address escaped to
|
|
|
|
/// @return The address which was escaped to (address(0) if the escape hatch hasn't been invoked)
|
|
|
|
function escapedTo() external view returns (address) {
|
|
|
|
return _escapedTo;
|
|
|
|
}
|
2024-03-24 13:00:54 +00:00
|
|
|
}
|
2024-10-31 01:35:43 +00:00
|
|
|
|
|
|
|
// slither-disable-end low-level-calls,unchecked-lowlevel
|