This repository contains AVM compatible smart contracts written in TEALScript for the Cross-Chain Transfer Protocol (CCTP).
The code was heavily inspired by the EVM smart contracts, and many of the comments have been copied over verbatim. Which is why they might not make much sense on Algorand. Further work is needed to tidy up the contracts and document how they operate.
Whilst the contracts function, they have not been thoroughly tested or audited in any way. Do not blindly use this in production!
Various design decisions were made to get this to work on the AVM. Below is a non-comprehensive list of some of the bigger differences.
- ASAs cannot be burnt. Therefore the burning mechanism on the AVM relies on sending the asset to the reserve address, removing it from circulation. This works well for assets such as USDC, who already have procedures in place to withdraw-from and deposit-to their reserve address.
- Redeeming an asset on the AVM smart contracts requires a single application call transaction along with a small payment of 0.0073 Algo to cover the MBR increase for storing the nonce. All resources needed for using the application are included in a single application call.
- To prevent minting of assets multiple times, the source domain + nonce is stored as a box (key) for each successful mint. This was the cheapest and simplest solution I could come up with, which requires zero maintenance from the application owner.
- Signature verification is done using ecdsa_pk_recover and comparing it to a list (box) of
enabledAttesters. Each use of the ecdsa_pk_recover opcode requires over 2,000 opcode budget and so we utilise the "OpUp" application deploy-n-destroy pattern. This increases the minting cost by approximately 0.003 Algo per signature. (At the time of writing, Ethereum requires a signature threshold of 2 out of 2 possible enabled attesters).
To install dependencies:
bun installTo compile contracts:
bunx tealscript src/*.algo.ts distSteps to test on dual AVM chains.
Summary
- Deploy contracts
- Fund accounts
- User needs FakeUSDC1 to burn
- Both Token Minters need their respective assets
- Make sure a CCTP attestation service is running
- Run
bun index.tsto simulate a CCTP transfer
Detailed
- Create Assets
- [AVM1] Create ASA with a valid reserve address
- [AVM2] Create ASA with a valid reserve address
- Deploy Contracts
- [AVM1] Deploy MessageTransmitter
- [AVM2] Deploy MessageTransmitter
- [AVM1] Deploy TokenMessenger
- [AVM2] Deploy TokenMessenger
- [AVM1] Deploy TokenMinter
- [AVM2] Deploy TokenMinter
- Configure MessageTransmitter
- [AVM1] Send MBR to MessageTransmitter for enabledAttester box
- [AVM1] Add Attester to MessageTransmitter (
enableAttester) - [AVM2] Send MBR to MessageTransmitter for enabledAttester box
- [AVM2] Add Attester to MessageTransmitter (
enableAttester)
- Configure TokenMessenger
- [AVM1] Send MBR to TokenMessenger for remoteTokenMessengers box
- [AVM1] Add remote TokenMessenger to TokenMessenger (
addRemoteTokenMessenger) - [AVM2] Send MBR to TokenMessenger for remoteTokenMessengers box
- [AVM2] Add remote TokenMessenger to TokenMessenger (
addRemoteTokenMessenger) - [AVM1] Add local TokenMinter to TokenMessenger (
addLocalMinter) - [AVM2] Add local TokenMinter to TokenMessenger (
addLocalMinter)
- Configure TokenMinter
- [AVM1] Send MBR to TokenMinter for holding hash(remoteDomain+assetId) box
- [AVM1] Link remote domain + local token to remote token in TokenMinter (
linkTokenPair) - [AVM2] Send MBR to TokenMinter for holding hash(remoteDomain+assetId) box
- [AVM2] Link remote domain + local token to remote token in TokenMinter (
linkTokenPair) - [AVM1] Set max burn amount per message for asset in TokenMinter (
setMaxBurnAmountPerMessage) - [AVM2] Set max burn amount per message for asset in TokenMinter (
setMaxBurnAmountPerMessage) - [AVM1] Add local TokenMessenger to TokenMinter (
addLocalTokenMessenger) - [AVM2] Add local TokenMessenger to TokenMinter (
addLocalTokenMessenger)
goal asset send \
--assetid $ASSET1 \
--from $YOUR_ADDRESS \
--to $TOKEN_MINTER_ADDR \
--amount 1000000 \
-o burn.txn
goal app method \
--app-id $TOKEN_MESSENGER \
--from $YOUR_ADDRESS \
--method "depositForBurn(axfer,uint32,byte[32],asset)uint64" \
--arg burn.txn \
--arg 9 # Destination Domain \
--arg '"i4C45SLboL5UDstqo37uKS1WzqqtOSlp+3COLk1LcEo="' # Mint Recipient \
--arg $ASSET1 # Just the ID, not a reference \
--box b64:AAAACQ== # Destination Domain (lookup remote token messenger) \
--foreign-app $TOKEN_MINTER # TokenMinter AppID \
--fee 4000 \
--box $TOKEN_MINTER,b64:AAAAAAAAA+w= # TokenMinter AssetID (for checking burn limit) \
--app-account $ASSET1_RESERVE_ADDRESS \
--foreign-app $MessageTransmitterPlease first open sign_message.ts and add the attester private key and log from the depositForBurn.
bun sign_message.tsgoal clerk send \
--from $YOUR_ADDRESS \
--to $MESSAGE_TRANSMITTER_ADDR \
--amount 7300 \
-o mbr.txn
goal app method \
--app-id $MESSAGE_TRANSMITTER \
--from $YOUR_ADDRESS \
--method "receiveMessage(pay,byte[],byte[])bool" \
--arg mbr.txn \
--arg '"AAAAAAAAAAUAAAAJAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP2AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+yLgLjlItugvlQOy2qjfu4pLVbOqq05KWn7cI4uTUtwSgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD0JAi4C45SLboL5UDstqo37uKS1WzqqtOSlp+3COLk1LcEo="' \
--arg '"32E8j2Rk+GJBIlYh7mm2uyQj3w77I7HOLXednfvrgTZHL4BK85nwurDyYsKRXDV5eRIXhNTNRiWtZ+R548Sb7hs="' \
--fee 12000 \
--box str:enabledAttesters \
--box b64:AAAABQAAAAAAAAAB \
--foreign-app $TOKEN_MESSENGER \
--box 1014,b64:AAAABQ== \
--foreign-app $TOKEN_MINTER \
--box 1015,b64:7IC93Vlr7wCjQrIaXKmNuUycqU+f8OdQs3EZGzxuoNw= \
--foreign-asset $ASSET2