feat(protocol): l1 and l2 implementation of Lido integration

[swarna1101]

This PR involves work regarding Taiko ~ Lido WstEth Bridge.

• This PR includes L1 contracts implementation, which are responsible for handling actions like deposit, L1 -> L2, communication, and withdrawals, bridge pausing mechanisms etc.
• Tests (incomplete)
• This PR also contains the L2 contracts implementation

[openzeppelin-code]

feat(protocol): l1 and l2 implementation of Lido integration

Generated at commit: 72f2fa9b5b38ca355ed40c57e2376b7dfd44006f

🚨 Report Summary

	Severity Level	Results
Contracts	Critical High Medium Low Note Total	2 2 0 9 42 55
Dependencies	Critical High Medium Low Note Total	0 0 0 0 0 0

---

For more details view the full report in OpenZeppelin Code Inspector

[adaki2004]

First, i'd have several remarks:

• I'm not sure if this is the right place for the files. Both file-system level in the repo (packages/protocol), or if this is the suitable repo itself, given it runs under GPL-3.0 license, while we have MIT. (Also pointed out by OpenZeppelin previously in their audit)
• I dont really get which is the code copied over and which is custom made by @swarna1101 ? I guess all of the solidity code is a take-over, in which case it is not at all final, since we need to adjust/tailor it to our Bridge.
• Would be good to have a concept, (a tiny/ugly diagram in excalidraw or paint would be enough) where the working mechanics of the whole bridging procedure is visible

The contracts need to be hooked into our Bridging system somehow. So "something" has to call the Bridge's sendMessage function.

[dantaik]

we have modules defined in packages/protocol, do not make another sub-foundry project inside an existing one.

[dantaik]

First, i'd have several remarks:

• I'm not sure if this is the right place for the files. Both file-system level in the repo (packages/protocol), or if this is the suitable repo itself, given it runs under GPL-3.0 license, while we have MIT. (Also pointed out by OpenZeppelin previously in their audit)
• I dont really get which is the code copied over and which is custom made by @swarna1101 ? I guess all of the solidity code is a take-over, in which case it is not at all final, since we need to adjust/tailor it to our Bridge.
• Would be good to have a concept, (a tiny/ugly diagram in excalidraw or paint would be enough) where the working mechanics of the whole bridging procedure is visible

The contracts need to be hooked into our Bridging system somehow. So "something" has to call the Bridge's sendMessage function.

Given the GPL license, maybe adding a sub-project makes more sense. And we do need to mark our code to be MIT.

[dantaik]

Any update?

[swarna1101]

Any update?

yes, I understood to make it compatible to our bridge, in the following commit, it will be:

• Compatible bridge
• Flow chart
• Minor Fixes with proper licensing

[dantaik]

Any update?

yes, I understood to make it compatible to our bridge, in the following commit, it will be:

• Compatible bridge
• Flow chart
• Minor Fixes with proper licensing

Ping me when this PR is ready. But I suggest we get this reviewed and approved by the end of this week.

[swarna1101]

Any update?

I have updated the contract as per the Bridge Implementation and also, made sure it is compatible with our bridge.

@adaki2004 added a flow chart as well

L2 implementation is also added now

[adaki2004]

It seems it is a custom Bridge architecture on the top of our Taiko native Bridge's cross-chain messaging - (which is good) - but i still lacking the bit of the context. For example i mean:

• Who implemented which contract exactly ? Which is a complete take-over, 100% (which might not require audit) and which is developped completely by you ?
• This is more of a component-kinda diagram than a flow chart. Would be cool to have a flow/sequence diagram to get to know the exact workflow (in order) to know what users and also reviews need to look and how.
• I see no unit tests - which would be very helpful also to get the context + flow a bit more.

If you could provide some answers to the first 2 points - that would definitely shorten my learning curve and can help a bit more.

[swarna1101]

It seems it is a custom Bridge architecture on the top of our Taiko native Bridge's cross-chain messaging - (which is good) - but i still lacking the bit of the context. For example i mean:

• Who implemented which contract exactly ? Which is a complete take-over, 100% (which might not require audit) and which is developped completely by you ?
• This is more of a component-kinda diagram than a flow chart. Would be cool to have a flow/sequence diagram to get to know the exact workflow (in order) to know what users and also reviews need to look and how.
• I see no unit tests - which would be very helpful also to get the context + flow a bit more.

If you could provide some answers to the first 2 points - that would definitely shorten my learning curve and can help a bit more.

• All the contracts in packages/protocol/contracts/thirdparty/lido is taken completely from the existing Lido implementation, and all the contracts in packages/protocol/contracts/partners/lido is implemented by me.
• this is the deposit flow , this is Withdram Flow , and this is fail msg .
• Yes, unit tests, I will add in next

[dantaik]

Suggested change

	function bridgeBurn(address to, uint256 amount) external onlyBridge {
	function bridgeBurn(address from, uint256 amount) external onlyBridge {

[dantaik]

lido's token decimal is 18?

[swarna1101]

Lidos token decimals on L2 is 18.

[dantaik]

You can use /// @inheritdoc ITaiILidoBridgedToken

[dantaik]

maybe put all interfaces inside lido/interfaces

[dantaik]

So all these contracts are not upgradable?

[swarna1101]

Currently not upgradable. Will make them upgradable

[dantaik]

if the token is any arbitrary ERC20 token, then we need this diff-check, if we know it's a specific token implementaiton, we don't.

Is Lido token on L1 a regular ERC20 token?

[swarna1101]

Yes regular erc20. Will remove check

[dantaik]

You have to implement the IMessageInvocable interface in IBridge.sol

[dantaik]

You will also need to check permission inside the onMessageInvocation function, please checkout checkProcessMessageContext in ERC20Vault.

[dantaik]

You probably want to implement IRecallableSender.onMessageRecalled.

[dantaik]

this function must be onMessageRecalled