Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: Bitcoin block header and merkle proof #1263

Merged
merged 16 commits into from
Oct 12, 2023
Merged

feat: Bitcoin block header and merkle proof #1263

merged 16 commits into from
Oct 12, 2023

Conversation

ws4charlie
Copy link
Contributor

Description

  1. Added Bitcoin block header support in zetacore.
  2. Added support for unpriviledged AddOutTxTracker for observed Bitcoin outTx.
  3. Added a RPC to check Bitcoin merkle proofs.
  4. Added a smoketest to test the Bitcoin merkle proof generation and use the prove RPC to verify proof validity

Type of change

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to not work as expected)
  • This change requires a documentation update

How Has This Been Tested?

Please describe the tests that you ran to verify your changes. Include instructions and any relevant details so others can reproduce.

  • Tested CCTX in localnet
  • Tested in development environment
  • Go unit tests
  • Go integration tests
  • Tested via GitHub Actions

Checklist:

  • I have added unit tests that prove my fix feature works

@github-actions
Copy link

github-actions bot commented Oct 10, 2023
edited

!!!WARNING!!!
nosec detected in the following files: common/utils.go, common/headers.go, common/proof.go, zetaclient/bitcoin_client.go, zetaclient/btc_signer.go

Be very careful about using #nosec in code. It can be a quick way to suppress security warnings and move forward with development, it should be employed with caution. Suppressing warnings with #nosec can hide potentially serious vulnerabilities. Only use #nosec when you're absolutely certain that the security issue is either a false positive or has been mitigated in another way.

Only suppress a single rule (or a specific set of rules) within a section of code, while continuing to scan for other problems. To do this, you can list the rule(s) to be suppressed within the #nosec annotation, e.g: /* #nosec G401 */ or //#nosec G201 G202 G203
Broad #nosec annotations should be avoided, as they can hide other vulnerabilities. The CI will block you from merging this PR until you remove #nosec annotations that do not target specific rules.

Pay extra attention to the way #nosec is being used in the files listed above.

@github-actions github-actions bot added the nosec label Oct 10, 2023
@ws4charlie ws4charlie mentioned this pull request Oct 10, 2023
Closed
lumtis
lumtis reviewed Oct 10, 2023
View reviewed changes
common/headers_test.go Outdated Show resolved Hide resolved
common/headers_test.go Outdated Show resolved Hide resolved
common/headers_test.go Show resolved Hide resolved
common/proof_test.go Show resolved Hide resolved
common/proof_test.go Outdated Show resolved Hide resolved
contrib/localnet/orchestrator/smoketest/test_bitcoin.go Show resolved Hide resolved
x/crosschain/keeper/keeper_out_tx_tracker.go Outdated Show resolved Hide resolved
x/observer/keeper/grpc_query_prove.go Outdated Show resolved Hide resolved
x/observer/keeper/grpc_query_prove.go
err = txx.UnmarshalBinary(val)
if err != nil {
return nil, status.Error(codes.Internal, fmt.Sprintf("failed to unmarshal transaction: %s", err))
if common.IsEVMChain(req.ChainId) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think the current Ethereum proof system is for Ethereum specifically and not EVM, and we should use IsEthereumChain instead

Maybe @brewmaster012 can confirm

Same comment for the other places where we use IsEVMChain

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good question. Current code base only accepts Ethereum block headers at ValidateBasic
We should explicitly restrict which chains are enabled in the source code in a consistent manner (on messages of MsgAddBlockHeader, QueryProveRequest) and MsgAddToOutTxTracker`)
@brewmaster012

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We should explicitly restrict which chains are enabled in the source code in a consistent manner (on messages of MsgAddBlockHeader, QueryProveRequest) and MsgAddToOutTxTracker`)

I meant it would solve it if we replace IsEVMChain with IsEthereumChain in the different locations, isn't it?

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Current Ethereum proof is based and tested on Ethereum only, so most relaible on Ethereum.
Most likely they also work for other EVM chains, if they are not messed up too much (deviating from go-ethereum too much). Klaytn might have problems, Polygon is unknown, BSC might be ok.

For now I think IsEVMChain() is fine because it basically means Ethereum/BSC.

zetaclient/bitcoin_client.go
}

const (
minConfirmations = 0
maxHeightDiff = 10000
dustOffset = 2000
btcBlocksPerDay = 144
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is it the same value for testnet?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think there is no defined rule on dustOffset for neither of them (testnet, mainnet). The block time is 10 mins on average in mainnet and very variable in testnet3 (1sec to 30 mins). Looking back to this variable, the LRU cache probably can have any reasonable length (e.g. 10, 100, 500, 1000) to avoid unnecessary RPC queries as long as it won't take too much resources and impact performance. I just put a meaningful name btcBlocksPerDay be a bit clear for people.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So having btcBlocksPerDay = 144 would not be an issue when using ZetaClient with Bitcoin testnet?

lumtis
lumtis approved these changes Oct 11, 2023
View reviewed changes
Copy link
Member

@lumtis lumtis left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looking good with the smoke tests
We'll have to do excperimentation

brewmaster012
brewmaster012 approved these changes Oct 12, 2023
View reviewed changes
Copy link
Collaborator

@brewmaster012 brewmaster012 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Excellent PR!
Looking forward to its merge and deployment and the stuff it enabled us to do.

@ws4charlie ws4charlie merged commit b6bfa57 into develop Oct 12, 2023
11 checks passed
@lumtis lumtis linked an issue Oct 12, 2023 that may be closed by this pull request
bitcoin header/proof #1221
Closed
ws4charlie added a commit that referenced this pull request Oct 13, 2023
@ws4charlie @lumtis
@brewmaster012 @kevinssgh @kingpinXD
fix: merge develop into inbound-tracker and unified proof verification (
1ab1338 
#1292)

* refactor: change default mempool version in config (#1238)

* fix(`MsgWhitelistERC20`): set unique index for generate cctx (#1245)

* update index

* remove deprecated functions

* make generate

* add return value in message

* initialize test

* whitelist tests

* make generate

* fix(`observer`): remove error return in `IsAuthorized` (#1250)

* update function

* regenerate interfaces

* update for crosschain

* fix(`GetForeignCoinFromAsset`): Ethereum comparaison checksum/non-checksum format (#1261)

* fix error message

* compare with ETH address type

* tests

* goimport

---------

Co-authored-by: brewmaster012 <88689859+brewmaster012@users.noreply.github.com>

* feat(`fungible`): add ability to update gas limit (#1260)

* add new field

* update message type

* message new logic

* fix: Blame index update (#1264)

* initial commit

* added queries and unit tests

* added cli

* fix parse error

* fix parse error 2

* fix lint and test errors

* ran make generate

* update index for keygen

* refactor query name

* refactor key calculation

* refactor lib name

* fix: feed sataoshi/B to zetacore and check actual outTx size (#1243)

* feed sataoshi/B to zetacore and check size limit

* removed fee cap

* replaced magic number 1000 with constant bytesPerKB

* put lowerbound, upperbound limit on sizeLimit

* use actual txSize for fee calculation

---------

Co-authored-by: charliec <charliec@zetachain.com>

* fix: cherry pick all hotfix from v10.0.x (zero-amount, precision, etc.) (#1235)

* cherry pick all hotfix from v10.0.x

* adjusted code to for nosec

* adusted error handling and code comments according to PR review feedback

* cherry pick hotfix for bitcoin outbound performance and updated some log prints

* cherry pick mock mainnet hotfix for duplicate payment on nonce 0

---------

Co-authored-by: charliec <charliec@zetachain.com>

* fix: register emissions grpc server (#1257)

* feat: Bitcoin block header and merkle proof (#1263)

* initiated bitcoin header and proof

* added smoke test for bitcoin merkle proof and RPC query

* make generate

* fix gosec and unit test

* Update common/headers_test.go

Co-authored-by: Lucas Bertrand <lucas.bertrand.22@gmail.com>

* code adjustment according to feedback of PR review

* corrected a typo and added more comment to function

* fix gosec error

---------

Co-authored-by: charliec <charliec@zetachain.com>
Co-authored-by: Lucas Bertrand <lucas.bertrand.22@gmail.com>
Co-authored-by: brewmaster012 <88689859+brewmaster012@users.noreply.github.com>

* fix: read gas limit from smart contract (#1277)

* read gas limit from smart contract

* add more checks for gas limit

* fix(`fungible`): add CLI command to query system contract (#1252)

* fix proto

* fix filename

* add cli query

* fix(`cmd`): add notice when using `--ledger` with Ethereum HD path (#1285)

* change comment

* add notice for ledger

* merge develop into inbound-tracker and unified proof verification

* fixed gosec errors

---------

Co-authored-by: Lucas Bertrand <lucas.bertrand.22@gmail.com>
Co-authored-by: brewmaster012 <88689859+brewmaster012@users.noreply.github.com>
Co-authored-by: kevinssgh <79858682+kevinssgh@users.noreply.github.com>
Co-authored-by: charliec <charliec@zetachain.com>
Co-authored-by: Tanmay <tanmay@zetachain.com>
@lumtis lumtis deleted the bitcoin-header-N-proof branch October 27, 2023 23:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lumtis lumtis lumtis approved these changes

@brewmaster012 brewmaster012 brewmaster012 approved these changes

@kingpinXD kingpinXD Awaiting requested review from kingpinXD kingpinXD is a code owner

@kevinssgh kevinssgh Awaiting requested review from kevinssgh

@fadeev fadeev Awaiting requested review from fadeev

Assignees
No one assigned
Labels
breaking:proto nosec
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

bitcoin header/proof
3 participants
@ws4charlie @lumtis @brewmaster012