feature(AuthMultisig): removing auth logic from the gateway (#110)

* feature(AuthMultisig): removing auth logic from the gateway * refactor(AuthMultisig): removing old multi and singlesig interfaces * feature(AuthMultisig): finalizing the interface * fix(AuthMultisig): fixing existing tests * fix(AuthMultisig): fixing existing tests * feature(AuthMultisig): auth test coverage * fix(lint): errors * refactor(auth): simplifying params
axelarnetwork · Jun 16, 2022 · a941ff5 · a941ff5
1 parent ba953ac
commit a941ff5
Show file tree

Hide file tree

Showing 17 changed files with 892 additions and 2,584 deletions.
diff --git a/.solhint.json b/.solhint.json
@@ -3,6 +3,7 @@
   "plugins": [],
   "rules": {
     "quotes": ["error", "single"],
-    "compiler-version": ["off"]
+    "compiler-version": ["off"],
+    "func-visibility": ["warn", {"ignoreConstructors": true}]
   }
 }
diff --git a/contracts/AxelarAuthMultisig.sol b/contracts/AxelarAuthMultisig.sol
@@ -0,0 +1,104 @@
+// SPDX-License-Identifier: MIT
+
+pragma solidity 0.8.9;
+
+import { ECDSA } from './ECDSA.sol';
+import { IAxelarAuthMultisig } from './interfaces/IAxelarAuthMultisig.sol';
+import { Ownable } from './Ownable.sol';
+
+contract AxelarAuthMultisig is Ownable, IAxelarAuthMultisig {
+    error InvalidOperators();
+    error InvalidThreshold();
+    error SameOperators();
+    error MalformedSigners();
+
+    uint256 public currentEpoch;
+    mapping(uint256 => bytes32) public hashForEpoch;
+    mapping(bytes32 => uint256) public epochForHash;
+
+    uint8 internal constant OLD_KEY_RETENTION = 16;
+
+    constructor(bytes[] memory recentOperators) {
+        for (uint256 i; i < recentOperators.length; ++i) {
+            _transferOperatorship(recentOperators[i]);
+        }
+    }
+
+    /**************************\
+    |* External Functionality *|
+    \**************************/
+
+    function validateProof(bytes32 messageHash, bytes calldata proof) external view returns (bool currentOperators) {
+        (address[] memory operators, bytes[] memory signatures) = abi.decode(proof, (address[], bytes[]));
+
+        bytes32 operatorsHash = keccak256(abi.encode(operators, signatures.length));
+        uint256 operatorsEpoch = epochForHash[operatorsHash];
+        uint256 epoch = currentEpoch;
+
+        if (operatorsEpoch == 0 || epoch - operatorsEpoch >= OLD_KEY_RETENTION) revert InvalidOperators();
+
+        _validateSignatures(messageHash, operators, signatures);
+
+        currentOperators = operatorsEpoch == epoch;
+    }
+
+    /***********************\
+    |* Owner Functionality *|
+    \***********************/
+
+    function transferOperatorship(bytes calldata params) external onlyOwner {
+        _transferOperatorship(params);
+    }
+
+    /**************************\
+    |* Internal Functionality *|
+    \**************************/
+
+    function _transferOperatorship(bytes memory params) internal {
+        (address[] memory newOperators, uint256 newThreshold) = abi.decode(params, (address[], uint256));
+        uint256 operatorsLength = newOperators.length;
+
+        if (operatorsLength == 0 || !_isSortedAscAndContainsNoDuplicate(newOperators)) revert InvalidOperators();
+
+        if (newThreshold == 0 || operatorsLength < newThreshold) revert InvalidThreshold();
+
+        bytes32 newOperatorsHash = keccak256(params);
+
+        if (epochForHash[newOperatorsHash] > 0) revert SameOperators();
+
+        uint256 epoch = currentEpoch + 1;
+        currentEpoch = epoch;
+        hashForEpoch[epoch] = newOperatorsHash;
+        epochForHash[newOperatorsHash] = epoch;
+
+        emit OperatorshipTransferred(newOperators, newThreshold);
+    }
+
+    function _validateSignatures(
+        bytes32 messageHash,
+        address[] memory operators,
+        bytes[] memory signatures
+    ) internal pure {
+        uint256 j = 0;
+        // looking for signers within operators
+        // assuming that both operators and signatures are sorted
+        for (uint256 i = 0; i < signatures.length; ++i) {
+            address signer = ECDSA.recover(messageHash, signatures[i]);
+            // looping through remaining operators to find a match
+            for (; j < operators.length && signer != operators[j]; ++j) {}
+            if (j == operators.length) revert MalformedSigners();
+            // increasing operators index if match was found
+            ++j;
+        }
+    }
+
+    function _isSortedAscAndContainsNoDuplicate(address[] memory accounts) internal pure returns (bool) {
+        for (uint256 i; i < accounts.length - 1; ++i) {
+            if (accounts[i] >= accounts[i + 1] || accounts[i + 1] == address(0)) {
+                return false;
+            }
+        }
+
+        return accounts[0] != address(0);
+    }
+}