implemented safe bridge receiver/sender logic for unhappy path

shotaro · shotaro · commit 00d6d3664a7d · 2022-03-14T13:12:20.000Z
diff --git a/contracts/src/bridge/FastBridgeReceiver.sol b/contracts/src/bridge/FastBridgeReceiver.sol
@@ -1,7 +1,7 @@
 // SPDX-License-Identifier: MIT
 
 /**
- *  @authors: [@shalzz*, @hrishibhat]
+ *  @authors: [@shalzz*, @hrishibhat*, @shotaronowhere]
  *  @reviewers: []
  *  @auditors: []
  *  @bounties: []
@@ -25,9 +25,9 @@ contract FastBridgeReceiver is IFastBridgeReceiver {
 
     struct Claim {
         address bridger;
+        bytes32 messageHash;
         uint256 claimedAt;
         uint256 claimDeposit;
-        bool relayed;
         bool honest;
     }
 
@@ -38,12 +38,13 @@ contract FastBridgeReceiver is IFastBridgeReceiver {
         bool honest;
     }    
 
-    // messageHash => Claim
-    mapping(bytes32 => Claim) public claims;
-    mapping(bytes32 => Challenge) public challenges;
+    // fastMessageIndex => Claim[]
+    mapping(uint256 => Claim[]) public claims;
+    mapping(uint256 => Challenge[]) public challenges;
+    mapping(uint256 => bool) public relayed;
 
-    event ClaimReceived(bytes32 messageHash, uint256 claimedAt);
-    event ClaimChallenged(bytes32 messageHash, uint256 challengedAt);
+    event ClaimReceived(uint256 _fastMessageIndex, bytes32 _messageHash, uint256 claimedAt);
+    event ClaimChallenged(uint256 _fastMessageIndex, uint256 _claimIndex, bytes32 _messageHash, uint256 challengedAt);
 
     modifier onlyByGovernor() {
         require(governor == msg.sender, "Access not allowed: Governor only.");
@@ -66,136 +67,170 @@ contract FastBridgeReceiver is IFastBridgeReceiver {
         challengeDuration = _challengeDuration;
     }
 
-    function claim(bytes32 _messageHash) external payable {
+    function claim(uint256 _fastMessageIndex, bytes32 _messageHash) external payable override {
         require(msg.value >= claimDeposit, "Not enough claim deposit");
-        require(claims[_messageHash].bridger == address(0), "Claimed already made");
+        require(relayed[_fastMessageIndex] == false, "Message already relayed.");
+        // only accept additional claims if the previous claims are successfully challenged
+        // AND the message is not yet relayed
+        require(claims[_fastMessageIndex].length == 0 || challenges[_fastMessageIndex][claims[_fastMessageIndex].length-1].honest, "There is a previous unresolved claim");
 
-        claims[_messageHash] = Claim({
+        claims[_fastMessageIndex].push( Claim({
             bridger: msg.sender,
+            messageHash: _messageHash,
             claimedAt: block.timestamp,
             claimDeposit: msg.value,
-            honest: false,
-            relayed: false
-        });
+            honest: false
+        }));
 
-        emit ClaimReceived(_messageHash, block.timestamp);
+        emit ClaimReceived(_fastMessageIndex, _messageHash, block.timestamp);
     }
 
-    function verifyAndRelay(bytes32 _messageHash, bytes memory _encodedData) external {
+    function verifyAndRelay(uint _fastMessageIndex, bytes memory _encodedData) external override{
+
+        Claim[] storage claimsForIndex = claims[_fastMessageIndex];
+        require(claimsForIndex.length>0, "Claim does not exist");
+
 
-        Claim storage claim = claims[_messageHash];
-        require(claim.bridger != address(0), "Claim does not exist");
-        require(claim.claimedAt + challengeDuration < block.timestamp, "Challenge period not over");
-        require(claim.relayed == false, "Message already relayed");
+        require(claimsForIndex[claimsForIndex.length-1].claimedAt + challengeDuration < block.timestamp, "Challenge period not over");
+        require(relayed[_fastMessageIndex] == false, "Message already relayed");
 
-        Challenge storage challenge = challenges[_messageHash];
-        require(challenge.challenger == address(0), "This claim is Challenged");
+        Challenge[] storage challengesForIndex = challenges[_fastMessageIndex];
 
-        if(keccak256(_encodedData) == _messageHash){
-            claim.honest = true;
+        require(challengesForIndex.length<claimsForIndex.length, "This claim is Challenged");
+
+        if(keccak256(_encodedData) == claimsForIndex[claimsForIndex.length-1].messageHash){
+            claimsForIndex[claimsForIndex.length-1].honest = true;
             // Decode the receiver address from the data encoded by the IFastBridgeSender
             (address receiver, bytes memory data) = abi.decode(_encodedData, (address, bytes));
             (bool success, ) = address(receiver).call(data);
             require(success, "Failed to call contract");
 
-            claim.relayed = true;    
+            relayed[_fastMessageIndex] = true;    
         }
         
     }
 
-    function relayRule(bytes memory _encodedData) external {  
+    function relayRule(bytes memory _encodedData) external override{  
         IBridge bridge = inbox.bridge();
         require(msg.sender == address(bridge), "Not called by the Bridge");
 
         IOutbox outbox = IOutbox(inbox.bridge().activeOutbox());
         address l2Sender = outbox.l2ToL1Sender();
         require(l2Sender == safebridge, "Can be relayed only by Safe Bridge");
 
-        bytes32 _messageHash = keccak256(_encodedData);
-        Challenge storage challenge = challenges[_messageHash];
-        Claim storage claim = claims[_messageHash];
-        require(claim.relayed != true, "Claim already relayed");
-
-        if (claim.bridger != address(0) && challenge.challenger != address(0)) {
-            challenge.honest = false;
-            claim.honest = true;            
-        } else {
-            challenge.honest = true;
-            claim.honest = false;             
-        }
+        (uint256 _fastMessageIndex, bytes memory dataWithReceiver) = abi.decode(_encodedData, (uint256, bytes));
+        bytes32 messageHash = keccak256(dataWithReceiver);
 
-        // Decode the receiver address from the data encoded by the IFastBridgeSender
-        (address receiver, bytes memory data) = abi.decode(_encodedData, (address, bytes));
-        (bool success, ) = address(receiver).call(data);
-        require(success, "Failed to call contract");
+        require(relayed[_fastMessageIndex] != true, "Claim already relayed");
 
-        claim.relayed = true;    
+        Claim[] storage claimsForIndex = claims[_fastMessageIndex];
+        Challenge[] storage challengesForIndex = challenges[_fastMessageIndex];
+
+        if (claimsForIndex.length > 0){
+            // has claims
+            if (claimsForIndex[claimsForIndex.length-1].messageHash == messageHash){
+                claimsForIndex[claimsForIndex.length-1].honest = true;
+            } else if(challengesForIndex.length > 0){
+                // has challenges
+                challengesForIndex[challengesForIndex.length - 1].honest = true;
+            } 
+        } else{
+            // no claims, no challenges
+        }
+        // dispute ruled
+        if (dataWithReceiver.length != 0){
+            // Decode the receiver address from the data encoded by the IFastBridgeSender
+            (address receiver, bytes memory data) = abi.decode(dataWithReceiver, (address, bytes));
+            (bool success, ) = address(receiver).call(data);
+            require(success, "Failed to call contract");
+
+            relayed[_fastMessageIndex] = true;
+        } 
+            
         
     }
 
-    function withdrawClaimDeposit(bytes32 _messageHash) external {
-        Claim storage claim = claims[_messageHash];
-        require(claim.bridger != address(0), "Claim does not exist");
-        require(claim.claimedAt + challengeDuration < block.timestamp, "Challenge period not over");
-        require(claim.relayed == true, "Claim not relayed");
-
-        Challenge storage challenge = challenges[_messageHash];
-        uint256 amount = claim.claimDeposit;
-        if(challenge.honest == false){
-            amount += challenge.challengeDeposit;
-            challenge.challengeDeposit = 0;
+    function withdrawClaimDeposit(uint256 _fastMessageIndex) external override{
+        Claim[] storage claimsForIndex = claims[_fastMessageIndex];
+        require(claimsForIndex.length>0, "Claim does not exist");
+
+
+        require(claimsForIndex[claimsForIndex.length-1].claimedAt + challengeDuration < block.timestamp, "Challenge period not over");
+        require(relayed[_fastMessageIndex] == true, "Claim not relayed");
+
+        Challenge[] storage challengesForIndex = challenges[_fastMessageIndex];
+
+        uint256 amount = 0;
+        if(claimsForIndex[claimsForIndex.length-1].honest == true){
+            amount += claimsForIndex[claimsForIndex.length-1].claimDeposit;
+                if(challengesForIndex.length == claimsForIndex.length){
+                    if(challengesForIndex[challengesForIndex.length - 1].honest == false){
+                    amount += challengesForIndex[challengesForIndex.length - 1].challengeDeposit;
+                    challengesForIndex[challengesForIndex.length - 1].challengeDeposit = 0;
+                }
+            }
         }
 
-        claim.claimDeposit = 0;
-        payable(claim.bridger).send(amount);
+        claimsForIndex[claimsForIndex.length-1].claimDeposit = 0;
+        payable(claimsForIndex[claimsForIndex.length-1].bridger).send(amount);
     }
 
-    function challenge(bytes32 _messageHash) external payable {
-        Claim memory claim = claims[_messageHash];
-        require(claim.bridger != address(0), "Claim does not exist");        
-        require(block.timestamp - claim.claimedAt <  challengeDuration, "Challenge period over");
+    function challenge(uint256 _fastMessageIndex) external payable {
+        Claim[] memory claimsForIndex = claims[_fastMessageIndex];
+        require(claimsForIndex.length > 0, "Claim does not exist");        
+        require(relayed[_fastMessageIndex] == false, "Message already relayed");        
+        require(block.timestamp - claimsForIndex[claimsForIndex.length-1].claimedAt <  challengeDuration, "Challenge period over");
         require(msg.value >= challengeDeposit, "Not enough challenge deposit");
-        require(challenges[_messageHash].challenger == address(0), "Claim already challenged");
+        require(challenges[_fastMessageIndex].length < claimsForIndex.length, "Claim already challenged");
 
-        challenges[_messageHash] = Challenge({
+        challenges[_fastMessageIndex].push(Challenge({
             challenger: msg.sender,
             challengedAt: block.timestamp,
             challengeDeposit: msg.value,
             honest: false
-        });
+        }));
 
-        emit ClaimChallenged(_messageHash, block.timestamp);
+        emit ClaimChallenged(_fastMessageIndex,claimsForIndex.length-1, claimsForIndex[claimsForIndex.length-1].messageHash, block.timestamp);
     }
 
-    function withdrawChallengeDeposit(bytes32 _messageHash) external {
-        Challenge storage challenge = challenges[_messageHash];
-        require(challenge.challenger != address(0), "Challenge does not exist");
-        require(challenge.honest == true, "Challenge not honest");
+    function withdrawChallengeDeposit(uint256 _fastMessageIndex, uint256 challengeIndex) external {
+        Challenge[] storage challengesForIndex = challenges[_fastMessageIndex];
+        require(challengesForIndex.length>0 && challengeIndex < challengesForIndex.length, "Challenge does not exist");
 
-        Claim storage claim = claims[_messageHash];
-        require(block.timestamp > claim.claimedAt + challengeDuration, "Challenge period not over");
-        require(claim.relayed == true, "Claim not relayed");
+        Claim[] storage claimsForIndex = claims[_fastMessageIndex];
 
-        uint256 amount = challenge.challengeDeposit;
-        if(claim.honest == false){
-            amount += claim.claimDeposit;
-            claim.claimDeposit = 0;
+        uint256 amount = 0;
+        if(challengesForIndex[challengeIndex].honest == true){
+            amount += challengesForIndex[challengeIndex].challengeDeposit;
+            if(claimsForIndex[challengeIndex].honest == false){
+                amount += claimsForIndex[challengeIndex].claimDeposit;
+                claimsForIndex[challengeIndex].claimDeposit = 0;
+            }
         }
 
-        challenge.challengeDeposit = 0;
-        payable(challenge.challenger).send(amount);
+
+        challengesForIndex[challengeIndex].challengeDeposit = 0;
+        payable(challengesForIndex[challengeIndex].challenger).send(amount);
     }
      //**** View Functions ****//
-    function challengePeriod(bytes32 _messageHash) public view returns(uint start, uint end) {
-        start = claims[_messageHash].claimedAt;
-        end = start + challengeDuration;
+    function challengePeriod(uint256 _fastMessageIndex) public view returns(uint start, uint end) {
+        if (claims[_fastMessageIndex].length > 0){
+            start = claims[_fastMessageIndex][claims[_fastMessageIndex].length-1].claimedAt;
+            end = start + challengeDuration;
+        }
+       
         return (start, end);
     }
+
     //**** Governor functions ****//
 
     function setClaimDeposit(uint256 _claimDeposit) external onlyByGovernor {
         claimDeposit = _claimDeposit;
     }
+    //TODO
+    function viewClaimDeposit() external override view returns (uint256 amount){
+        return 0;
+    }
 
     function setChallengePeriodDuration(uint256 _challengeDuration) external onlyByGovernor {
         challengeDuration = _challengeDuration;
diff --git a/contracts/src/bridge/FastBridgeSender.sol b/contracts/src/bridge/FastBridgeSender.sol
@@ -1,7 +1,7 @@
 // SPDX-License-Identifier: MIT
 
 /**
- *  @authors: [@shalzz*, @hrishibhat]
+ *  @authors: [@shalzz*, @hrishibhat*, @shotaronowhere]
  *  @reviewers: []
  *  @auditors: []
  *  @bounties: []
@@ -18,12 +18,13 @@ contract FastBridgeSender is IFastBridgeSender {
     ISafeBridge public safebridge;
     IFastBridgeReceiver public fastBridgeReceiver;
     address public fastSender;
-
+    mapping(uint256 => bytes) public fastMessages;
+    uint256 fastMessageIndex;
     /**
      * The bridgers need to watch for these events and
      * relay the messageHash on the FastBridgeReceiver.
      */
-    event OutgoingMessage(address target, bytes32 messageHash, bytes message);
+    event OutgoingMessage(address target, bytes32 messageHash, uint256 fastMessageIndex, bytes message);
 
     constructor(ISafeBridge _safebridge, IFastBridgeReceiver _fastBridgeReceiver) {
         safebridge = _safebridge;
@@ -42,13 +43,15 @@ contract FastBridgeSender is IFastBridgeSender {
      * @param _receiver The L1 contract address who will receive the calldata
      * @param _calldata The receiving domain encoded message data.
      */
-    function sendFast(address _receiver, bytes memory _calldata) external {
+    function sendFast(address _receiver, bytes memory _calldata) external override {
         require(msg.sender == fastSender, "Access not allowed: Fast Sender only.");
 
         // Encode the receiver address with the function signature + arguments i.e calldata
         bytes memory encodedData = abi.encode(_receiver, _calldata);
+        fastMessages[fastMessageIndex] = encodedData;
+        fastMessageIndex += 1;
 
-        emit OutgoingMessage(_receiver, keccak256(encodedData), encodedData);
+        emit OutgoingMessage(_receiver, keccak256(encodedData), fastMessageIndex-1, encodedData);
     }
 
     /**
@@ -60,10 +63,10 @@ contract FastBridgeSender is IFastBridgeSender {
      * It may require some ETH (or whichever native token) to pay for the bridging cost,
      * depending on the underlying safe bridge.
      *
-     * @param _receiver The L1 contract address who will receive the calldata
-     * @param _calldata The receiving domain encoded message data.
+     * @param _fastMessageIndex The index of messageHash to send
      */
-    function sendSafe(address _receiver, bytes memory _calldata) external payable {
+    function sendSafe(uint256 _fastMessageIndex) external payable {
+        
         // The safe bridge sends the encoded data to the FastBridgeReceiver
         // in order for the FastBridgeReceiver to resolve any potential
         // challenges and then forwards the message to the actual
@@ -72,8 +75,9 @@ contract FastBridgeSender is IFastBridgeSender {
         // IFastBridgeReceiver function.
         // TODO: add access checks for this on the FastBridgeReceiver.
         // TODO: how much ETH should be provided for bridging? add an ISafeBridge.bridgingCost()
+        require(_fastMessageIndex<fastMessageIndex, "Fast message does not exit.");
 
-        bytes memory encodedData = abi.encode(_receiver, _calldata);
+        bytes memory encodedData = abi.encode(_fastMessageIndex, fastMessages[_fastMessageIndex]);
         bytes memory encodedTxData = abi.encodeWithSelector(fastBridgeReceiver.relayRule.selector, encodedData);
         safebridge.sendSafe{value: msg.value}(address(fastBridgeReceiver), encodedTxData);
     }
diff --git a/contracts/src/bridge/interfaces/IFastBridgeReceiver.sol b/contracts/src/bridge/interfaces/IFastBridgeReceiver.sol
@@ -3,13 +3,13 @@
 pragma solidity ^0.8.0;
 
 interface IFastBridgeReceiver {
-    function claim(bytes32 _messageHash) external payable;
+    function claim(uint256 _fastMessageIndex, bytes32 _messageHash) external payable;
 
-    function verifyAndRelay(bytes32 _messageHash, bytes memory _calldata) external;
+    function verifyAndRelay(uint _fastMessageIndex, bytes memory _encodedData) external;
 
-    function relayRule(bytes memory _calldata) external;
+    function relayRule(bytes memory _encodedData) external;
 
-    function withdrawClaimDeposit(bytes32 _messageHash) external;
+    function withdrawClaimDeposit(uint256 _fastMessageIndex) external;
 
     function viewClaimDeposit() external view returns (uint256 amount);
 }
