Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: generic L2 forwarder base contract #609

Merged
merged 32 commits into from
Oct 2, 2024
Merged

feat: generic L2 forwarder base contract #609

Changes from 28 commits
Commits
Show all changes
32 commits
Select commit Hold shift + click to select a range
f9c0d62
feat: add L2 forwarder interface
bmzig Sep 17, 2024
cea0337
sync with upstream changes
bmzig Sep 18, 2024
0de9303
refactor and rename
bmzig Sep 19, 2024
0371348
Merge branch 'master' into bz/l2ForwarderInterface
bmzig Sep 20, 2024
fd94012
clean up interfaces
bmzig Sep 23, 2024
f2e3c41
simplify forwarder base and make it a proxy
bmzig Sep 23, 2024
f251354
disable implementation initialization
bmzig Sep 23, 2024
fe66b78
remove EIP 712
bmzig Sep 24, 2024
814498b
add/improve comments
bmzig Sep 24, 2024
a9cf8b1
update comments
bmzig Sep 24, 2024
110a8e9
comments
bmzig Sep 25, 2024
19813c6
update forwarder base
bmzig Sep 25, 2024
d78ad6f
extend AdapterInterface
bmzig Sep 25, 2024
2c97c2a
Merge branch 'master' into bz/l2ForwarderInterface
bmzig Sep 26, 2024
8ee13c0
refactor: move all Arbitrum interfaces to a single location
bmzig Sep 26, 2024
9544a96
Merge branch 'bz/refactorArbInterfaces' into bz/l2ForwarderInterface
bmzig Sep 26, 2024
c3950ac
new recursive format
bmzig Sep 27, 2024
2aac0f7
use events
bmzig Sep 27, 2024
06c8877
add remote token mapping and update comments
bmzig Sep 27, 2024
01b1a38
Merge branch 'master' into bz/l2ForwarderInterface
bmzig Sep 27, 2024
77bc3d5
remove unused file
bmzig Sep 27, 2024
64d3503
add more checks and improve comments
bmzig Sep 27, 2024
d330993
naming
bmzig Sep 30, 2024
7aa7d11
comments
bmzig Sep 30, 2024
e8590d4
Update ForwarderBase.sol
nicholaspai Sep 30, 2024
cbe2953
Update ForwarderBase.sol
nicholaspai Sep 30, 2024
14c5c41
Update contracts/chain-adapters/ForwarderBase.sol
nicholaspai Sep 30, 2024
242775d
Update ForwarderBase.sol
nicholaspai Sep 30, 2024
41b4856
reduce scope so that we only accomodate L3s. Use chain IDs as keys.
bmzig Oct 1, 2024
6298cc6
change function name
bmzig Oct 1, 2024
7e2adf1
update events
bmzig Oct 1, 2024
f03553b
naming
bmzig Oct 1, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
240 changes: 240 additions & 0 deletions contracts/chain-adapters/ForwarderBase.sol
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,240 @@
// SPDX-License-Identifier: BUSL-1.1
pragma solidity ^0.8.0;

import { UUPSUpgradeable } from "@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol";
import { AdapterInterface } from "./interfaces/AdapterInterface.sol";

/**
* @title ForwarderBase
* @notice This contract expects to receive messages and tokens from an authorized sender on a previous layer and forwards messages and tokens
* to contracts on subsequent layers. Messages are intended to originate from the hub pool or other forwarder contracts. The motivating use case
* for this contract is to aid with sending messages from L1 to an L3, which by definition is a network which does not have a direct connection
* with L1 but instead must communicate with that L1 via an L2. Each contract that extends the ForwarderBase maintains a mapping of
* contracts that exist on networks that are connected to the network that this contract is deployed on. For example, if this contract is deployed on
* Arbitrum, then there could be a mapping of contracts for each L3 that is connected to Arbitrum and communicates to L1 via Arbitrum. In other words,
* this contract maintains a mapping of important contracts on the "next layer" and is used to help relay messages from L1 to L3 by sending messages
* through the next layer. Messages could be forwarded across an indefinite amount of layers by recursively wrapping and sending messages over canonical
* bridges, only stopping when the following network contains the intended target contract.
* @custom:security-contact bugs@across.to
*/
abstract contract ForwarderBase is UUPSUpgradeable, AdapterInterface {
/**
* @notice Route contains all information needed in order to send a message to the next layer. It describes two possible paths: a message is sent
* through `adapter` (on this network) to the `forwarder` on the next layer, or a message is sent through `adapter` to the `spokePool`.
* @dev We need to know three different addresses:
* - The address of the adapter to delegatecall, so that we may propagate message and token relays. This contract lives on this layer.
* - The address of the next layer's forwarder, so that we can continue the message and token relay chain.
* - The address of the next layer's spoke pool, so that we can determine whether the following network contains the target spoke pool.
* these addresses describe the path a message or token relay must take to arrive at the next layer. A Route only describes the path to arrive
* a layer closer to to the ultimate target, unless one of the `forwarder` or `spokePool` addresses equal the target contract, in which case
* the path ends. All Routes must contain an adapter address; however, not all Routes must contain a forwarder or spokePool address. For example,
* we may send a message to a spoke pool on a network with no corresponding forwarder contract, or we may send a message to a network which contains
* a forwarder contract but no spoke pool.
*/
struct Route {
address adapter;
address forwarder;
address spokePool;
}

// Address that can relay messages using this contract and also upgrade this contract.
address public crossDomainAdmin;

// Map from a destination address to the next token/message bridge route to reach the destination address. The destination address can either be a
// spoke pool or a forwarder. Destination addresses are used as the key in this mapping because the `target` address is the only information
// we receive when `relay{Message/Token}` is called on this contract, so we assume that these destination contracts on all the possible next
bmzig marked this conversation as resolved.
Show resolved Hide resolved
// layers have unique addresses. Ideally we could use the destination chain ID as a key for this mapping but we don't have that available where this
// mapping is accessed in `relay{Message/Token}`
mapping(address => Route) possibleRoutes;

// Map which takes as input the destination address and a token address on the current network and outputs the corresponding remote token address,
// which is the equivalent of the token address on the destination network.
mapping(address => mapping(address => address)) destinationChainTokens;

event TokensForwarded(address indexed target, address indexed baseToken, uint256 amount);
event MessageForwarded(address indexed target, bytes message);
event RouteUpdated(address indexed target, Route route);
event SetXDomainAdmin(address indexed crossDomainAdmin);
event DestinationChainTokensUpdated(
address indexed target,
address indexed baseToken,
address indexed destinationChainToken
);
bmzig marked this conversation as resolved.
Show resolved Hide resolved

error InvalidL3SpokePool();
error RelayMessageFailed();
error RelayTokensFailed(address baseToken);
// Error which is triggered when there is no adapter set for a given route.
error UninitializedRoute();
// Error which is triggered when we attempted send tokens or a message relay to a forwarder which is uninitialized.
error MalformedRoute();

/*
* @dev Cross domain admin permissioning is implemented specifically for each L2 that this contract is deployed on, so this base contract
* simply prescribes this modifier to protect external functions using that L2's specific admin permissioning logic.
*/
modifier onlyAdmin() {
_requireAdminSender();
_;
}

/**
* @notice Constructs the Forwarder contract.
* @param _crossDomainAdmin L1 address of the contract which can send root bundles/messages
* to this forwarder contract.
* @dev _disableInitializers() restricts anybody from initializing the implementation contract, which if not done,
* may disrupt the proxy if another EOA were to initialize it.
*/
constructor() {
_disableInitializers();
}

/**
* @notice Initializes the forwarder contract.
*/
function __Forwarder_init(address _crossDomainAdmin) public onlyInitializing {
__UUPSUpgradeable_init();
nicholaspai marked this conversation as resolved.
Show resolved Hide resolved
_setCrossDomainAdmin(_crossDomainAdmin);
}

/**
* @notice Sets a new cross domain admin for this contract.
* @param _newCrossDomainAdmin L1 address of the new cross domain admin.
*/
function setCrossDomainAdmin(address _newCrossDomainAdmin) external onlyAdmin {
_setCrossDomainAdmin(_newCrossDomainAdmin);
}

/**
* @notice Maps a new set of contracts that exist on the network to a destination address.
* @param _destinationAddress The address on the destination chain that we want to send messages to from this contract.
* @param _route Contracts available on the destination network that we want to send messages to.
* @dev Each forwarder will not know how many layers it must traverse to arrive at _destinationAddress until it is precisely
* one layer away. The possibleRoutes mapping lets the forwarder know what path it should take to progess, and then relies on
* the forwarders on the subsequent layers to derive the next route in sequence.
*/
function updateRoute(address _destinationAddress, Route memory _route) external onlyAdmin {
possibleRoutes[_destinationAddress] = _route;
emit RouteUpdated(_destinationAddress, _route);
}

/**
* @notice Sets a new remote token in the destinationChainTokens mapping.
* @param _destinationAddress The address to set in the destinationChainTokens mapping. This is to identify the network associated with the
* destination chain token.
* @param _baseToken The address of the token which exists on the current network.
* @param _destinationChainToken The address of the token on the network which is next on the path to _destinationAddress.
* @dev This mapping also relies on using _destinationAddress to determine the network to bridge to. Consequently, it requires that a new
* _destinationAddress does not collide with an existing key in the `destinationChainTokens` mapping.
*/
function updateRemoteToken(
address _destinationAddress,
address _baseToken,
address _destinationChainToken
) external onlyAdmin {
destinationChainTokens[_destinationAddress][_baseToken] = _destinationChainToken;
emit DestinationChainTokensUpdated(_destinationAddress, _baseToken, _destinationChainToken);
}

/**
* @notice Relays a specified message to a contract on the following layer. If `target` exists on the following layer, then `message` is sent
* to it. Otherwise, `message` is sent to the next layer's forwarder contract.
* @param target The address of the spoke pool or forwarder contract that will receive the input message.
* @param message The data to execute on the target contract.
* @dev Each forwarder will only know if they are on the layer directly before the layer which contains the `target` contract.
* If the next layer contains the target, we send `message` cross-chain normally. Otherwise, we wrap `message` into a `relayMessage`
* call to the next layer's forwarder contract.
*/
function relayMessage(address target, bytes memory message) external payable override onlyAdmin {
Route storage nextLayerContracts = possibleRoutes[target];
if (nextLayerContracts.adapter == address(0)) revert UninitializedRoute();
bool success;
// Case 1: We are on the network immediately before our target, so we forward the original message over the canonical messaging bridge.
if (target == nextLayerContracts.spokePool || target == nextLayerContracts.forwarder) {
(success, ) = nextLayerContracts.adapter.delegatecall(abi.encodeCall(AdapterInterface.relayMessage, (target, message)));
} else {
if (nextLayerContracts.forwarder == address(0)) revert MalformedRoute();
// Case 2: We are not on the network immediately before our target, so we wrap the message in a `relayMessage` call and forward it
// to the next forwarder on the path to the target contract.
bytes memory wrappedMessage = abi.encodeCall(AdapterInterface.relayMessage, (target, message));
(success, ) = nextLayerContracts.adapter.delegatecall(
abi.encodeCall(AdapterInterface.relayMessage, (nextLayerContracts.forwarder, wrappedMessage))
);
}
if (!success) revert RelayMessageFailed();
emit MessageForwarded(target, message);
}

/**
* @notice Relays `amount` of a token to a contract on the following layer. If `target` does not exist on the following layer, then the tokens
* are sent to the following layer's forwarder contract.
* @param baseToken This layer's address of the token to send.
* @param destinationChainToken The next layer's address of the token to send.
* @param amount The amount of the token to send.
* @param target The address of the contract that which will *ultimately* receive the tokens. That is, the spoke pool contract address on an
* arbitrary layer which receives `amount` of a token after all forwards have been completed.
* @dev The relayTokens function (which must be implemented on a per-chain basis) needs to inductively determine the address of the remote token
* given a known baseToken. Then, once the correct addresses are obtained, this function may be called to finish the relay of tokens.
*/
function _relayTokens(
address baseToken,
address destinationChainToken,
uint256 amount,
address target
) internal {
Route storage nextLayerContracts = possibleRoutes[target];
if (nextLayerContracts.adapter == address(0)) revert UninitializedRoute();
bool success;
// Case 1: We are immediately before the target spoke pool, so we send the tokens to the spoke pool
// and do NOT follow it up with a message.
if (target == nextLayerContracts.spokePool) {
(success, ) = nextLayerContracts.adapter.delegatecall(
abi.encodeCall(AdapterInterface.relayTokens, (baseToken, destinationChainToken, amount, target))
);
if (!success) revert RelayTokensFailed(baseToken);
} else {
// Case 2: We are not immediately before the target spoke pool, so we send the tokens to the next
// forwarder and accompany it with a message containing information about its intended destination.

if (nextLayerContracts.forwarder == address(0)) revert MalformedRoute();
// Send tokens to the forwarder.
(success, ) = nextLayerContracts.adapter.delegatecall(
abi.encodeCall(
AdapterInterface.relayTokens,
(baseToken, destinationChainToken, amount, nextLayerContracts.forwarder)
)
);
if (!success) revert RelayTokensFailed(baseToken);

// Send a follow-up message to the forwarder which tells it to continue bridging.
bytes memory message = abi.encodeCall(
AdapterInterface.relayTokens,
(baseToken, destinationChainToken, amount, target)
);
(success, ) = nextLayerContracts.adapter.delegatecall(
abi.encodeCall(AdapterInterface.relayMessage, (nextLayerContracts.forwarder, message))
);
if (!success) revert RelayMessageFailed();
}
emit TokensForwarded(target, baseToken, amount);
}

// Function to be overridden in order to authenticate that messages sent to this contract originated
// from the expected account.
function _requireAdminSender() internal virtual;

// We also want to restrict who can upgrade this contract. The same admin that can relay messages through this
// contract can upgrade this contract.
function _authorizeUpgrade(address) internal virtual override onlyAdmin {}

function _setCrossDomainAdmin(address _newCrossDomainAdmin) internal {
if (_newCrossDomainAdmin == address(0)) revert InvalidCrossDomainAdmin();
crossDomainAdmin = _newCrossDomainAdmin;
emit SetXDomainAdmin(_newCrossDomainAdmin);
}

// Reserve storage slots for future versions of this base contract to add state variables without
// affecting the storage layout of child contracts. Decrement the size of __gap whenever state variables
// are added. This is at bottom of contract to make sure it's always at the end of storage.
uint256[1000] private __gap;
pxrl marked this conversation as resolved.
Show resolved Hide resolved
}
Loading