This project contains Ethereum smart contracts that enable the verification of transactions of a "target" blockchain on a different "verifying" blockchain in a trustless and decentralized way.
This means a user can send a request to the verifying chain asking whether or not a certain transaction has been included in the target chain. The verifying chain then provides a reliable and truthful answer without relying on any third party trust.
The ability to verify transactions "across" different blockchains is vital to enable applications such as cross-blockchain token transfers.
Important: Testimonium is a research prototype. It represents ongoing work conducted within the TAST research project. Use with care.
Testimonium is best enjoyed through the accompanying CLI tool, so go check it out here.
If you want to deploy the contracts manually, follow the steps below.
The following guide will walk you through the deployment of Testimonium with a local blockchain (Ganache) as the verifying chain and the main Ethereum blockchain as the target blockchain.
You need to have the following tools installed:
- Clone the repository:
git clone git@github.com:pantos-io/testimonium.git
- Change into the project directory:
cd testimonium/
- Install all dependencies:
npm install
- Deploy contracts:
truffle migrate --reset
Run the tests with truffle test
.
To generate the Go contract files and export them to the go-testimonium project run ./export.sh
For the export script to work correctly,
you should set the GOTESTIMONIUM
environment variable to the project root of go-testimonium on your machine, e.g.,
export GOTESTIMONIUM=~/code/.../go-testimonium/
. By default, it exports to ${GOPATH}/src/github.com/pantos-io/go-testimonium
.
Users can query the Testimonium contract living on the verifying blockchain by sending requests like "Is transaction tx in block b part of the target blockchain?" For the contract to answer the request it has to verify two things.
- Verify that block b is part of the target blockchain.
- Verify that transaction tx is part of block b.
The way this is achieved is the following:
To verify that a block b is part of the target blockchain, the Testimonium contract on the verifying chain needs to know about the state of the target blockchain.
For that, clients continuously submit block headers of the target chain to the Testimonium contract. For each block header that the contract receives, it performs a kind of light validation:
- Verify that the block's parent already exists within the contract.
- Verify that the block's number is exactly incremented by one.
- Verify that the block's timestamp is correct.
- Verify that the block's gas limit is correct.
If these checks are successful, the contract accepts the block and stores it internally.
The contract does not verify the Proof of Work (PoW) for each block it receives, as validating the PoW for every block becomes very expensive. Instead, the contract assigns a dispute period to newly added blocks. Within this period, clients have the possibility to dispute any block they think is illegal.
In case of a dispute, the full PoW verification is carried out. If the verification fails, the block and all its successors are removed from the contract.
This way, the target chain is replicated within the Testimonium contract on the verifying chain, so that the contract can reliably provide an answer to the question whether or not a block b is part of the target blockchain.
So now the contract knows whether or not a block b is part of the target blockchain. It now needs to verify that the transaction tx is part of block b.
Whenever a client sends a transaction verification request to the contract, it needs to generate a Merkle Proof first. The Merkle Proof is sent with the request and is then verified by the contract. If the proof validation is successful, transaction tx is part of block b. If the validation fails, tx is not part of b.
A more detailed explanation of the inner workings can be found here.
contracts/Testimonium.sol:1:1: Error: Source file requires different compiler version (current compiler is 0.5.9+commit.c68bc34e.Darwin.appleclang - note that nightly builds are considered to be strictly less than the released version
pragma solidity ^0.5.10;
^----------------------^
Make sure the solidity compiler is up-to-date with solc --version
.
To update the solidity compiler on Mac, run brew upgrade
When running the tests you might run into the following error: Returned error: legacy access request rate exceeded
.
To fix, create an account with Infura and create a new Infura project.
Then in file test/Testimonium.test.js
change the constant INFURA_ENDPOINT
to the
mainnet URL from your Infura project.
Testimonium is a research prototype. We welcome anyone to contribute. File a bug report or submit feature requests through the issue tracker. If you want to contribute feel free to submit a pull request.
- The development of this prototype was funded by Pantos within the TAST research project.
- The original code for the Ethash contract comes from the smartpool project.
- The code for the RLPReader contract comes from Hamdi Allam with parts of it taken from Andreas Olofsson.
This project is licensed under the MIT License.