Feat stateless batcher v1 (#72)

* Support multiple MR_ENCLAVE and MR_SIGNER (#50)

* Support multiple MR_ENCLAVE and MR_SIGNER

* fix interface

* fix interface

* fix emit

(cherry picked from commit 1b04973)

* Support blobs (#65)

* Support blobs

* update node setup

* use abi.encode

* add test

* test finally passing

Author: Sneh1999

.github/workflows/contract-tests.yml

@@ -76,7 +76,7 @@ jobs:
           exceptions_file: './test/unused-errors/exceptions.txt'
 
       - name: Setup nodejs
-        uses: actions/setup-node@v2
+        uses: actions/setup-node@v3
         with:
           node-version: '18'
           cache: 'yarn'
@@ -158,7 +158,7 @@ jobs:
           no-token-bridge: true
 
       - name: Setup nodejs
-        uses: actions/setup-node@v2
+        uses: actions/setup-node@v3
         with:
           node-version: 18
           cache: 'yarn'

src/bridge/EspressoTEEVerifier.sol

@@ -25,20 +25,18 @@ import {IEspressoTEEVerifier} from "./IEspressoTEEVerifier.sol";
  *         from automata to verify the quote. Along with some additional verification logic.
  */
 contract EspressoTEEVerifier is IEspressoTEEVerifier, Ownable2Step {
-    event MREnclaveSet(bytes32 indexed mrEnclave);
-    event MRSignerSet(bytes32 indexed mrSigner);
-
     using BytesUtils for bytes;
 
     // V3QuoteVerififer contract from automata to verify the quote
     V3QuoteVerifier public quoteVerifier;
-    bytes32 public mrEnclave;
-    bytes32 public mrSigner;
+
+    mapping(bytes32 => bool) public mrEnclaves;
+    mapping(bytes32 => bool) public mrSigners;
 
     constructor(bytes32 _mrEnclave, bytes32 _mrSigner, address _quoteVerifier) {
         quoteVerifier = V3QuoteVerifier(_quoteVerifier);
-        mrEnclave = _mrEnclave;
-        mrSigner = _mrSigner;
+        mrEnclaves[_mrEnclave] = true;
+        mrSigners[_mrSigner] = true;
     }
 
     /*
@@ -70,8 +68,7 @@ contract EspressoTEEVerifier is IEspressoTEEVerifier, Ownable2Step {
             revert FailedToParseEnclaveReport();
         }
 
-        // Check that mrEnclave and mrSigner match
-        if (localReport.mrEnclave != mrEnclave || localReport.mrSigner != mrSigner) {
+        if (!mrEnclaves[localReport.mrEnclave] || !mrSigners[localReport.mrSigner]) {
             revert InvalidMREnclaveOrSigner();
         }
 
@@ -129,16 +126,24 @@ contract EspressoTEEVerifier is IEspressoTEEVerifier, Ownable2Step {
     /*
      * @dev Set the mrEnclave of the contract
      */
-    function setMrEnclave(bytes32 _mrEnclave) external onlyOwner {
-        emit MREnclaveSet(_mrEnclave);
-        mrEnclave = _mrEnclave;
+    function setMrEnclave(bytes32 _mrEnclave, bool _isValid) external onlyOwner {
+        if (_isValid) {
+            mrEnclaves[_mrEnclave] = true;
+        } else {
+            delete mrEnclaves[_mrEnclave];
+        }
+        emit MREnclaveSet(_mrEnclave, _isValid);
     }
 
     /*
      * @dev Set the mrSigner of the contract
      */
-    function setMrSigner(bytes32 _mrSigner) external onlyOwner {
-        emit MRSignerSet(_mrSigner);
-        mrSigner = _mrSigner;
+    function setMrSigner(bytes32 _mrSigner, bool _isValid) external onlyOwner {
+        if (_isValid) {
+            mrSigners[_mrSigner] = true;
+        } else {
+            delete mrSigners[_mrSigner];
+        }
+        emit MRSignerSet(_mrSigner, _isValid);
     }
 }

src/bridge/IEspressoTEEVerifier.sol

@@ -16,6 +16,9 @@ interface IEspressoTEEVerifier {
     // This error is thrown when the reportDataHash doesn't match the hash signed by the TEE
     error InvalidReportDataHash();
 
+    event MREnclaveSet(bytes32 indexed mrEnclave, bool indexed _isValid);
+    event MRSignerSet(bytes32 indexed mrSigner, bool indexed _isValid);
+
     function verify(bytes calldata rawQuote, bytes32 reportDataHash) external view;
 
     function parseQuoteHeader(bytes calldata rawQuote) external pure returns (Header memory header);
@@ -24,7 +27,10 @@ interface IEspressoTEEVerifier {
         bytes memory rawEnclaveReport
     ) external pure returns (bool success, EnclaveReport memory enclaveReport);
 
-    function setMrEnclave(bytes32 _mrEnclave) external;
+    function mrEnclaves(bytes32 _mrEnclave) external view returns (bool);
+    function mrSigners(bytes32 _mrSigner) external view returns (bool);
+
+    function setMrEnclave(bytes32 _mrEnclave, bool _isValid) external;
 
-    function setMrSigner(bytes32 _mrSigner) external;
+    function setMrSigner(bytes32 _mrSigner, bool _isValid) external;
 }

src/bridge/ISequencerInbox.sol

@@ -202,6 +202,15 @@ interface ISequencerInbox is IDelayedMessageProvider {
         uint256 newMessageCount
     ) external;
 
+    function addSequencerL2BatchFromBlobs(
+        uint256 sequenceNumber,
+        uint256 afterDelayedMessagesRead,
+        IGasRefunder gasRefunder,
+        uint256 prevMessageCount,
+        uint256 newMessageCount,
+        bytes memory quote
+    ) external;
+
     // ---------- onlyRollupOrOwner functions ----------
 
     /**

src/bridge/SequencerInbox.sol

@@ -437,8 +437,38 @@ contract SequencerInbox is DelegateCallAware, GasRefundEnabled, ISequencerInbox
         IGasRefunder gasRefunder,
         uint256 prevMessageCount,
         uint256 newMessageCount
+    ) external refundsGas(gasRefunder, reader4844) {
+        revert Deprecated();
+    }
+
+    function addSequencerL2BatchFromBlobs(
+        uint256 sequenceNumber,
+        uint256 afterDelayedMessagesRead,
+        IGasRefunder gasRefunder,
+        uint256 prevMessageCount,
+        uint256 newMessageCount,
+        bytes memory quote
     ) external refundsGas(gasRefunder, reader4844) {
         if (!isBatchPoster[msg.sender]) revert NotBatchPoster();
+
+        bytes32[] memory dataHashes = reader4844.getDataHashes();
+        if (dataHashes.length == 0) revert MissingDataHashes();
+        // take keccak2256 hash of all the function arguments and encode packed blob hashes
+        // except the quote
+        bytes32 reportDataHash = keccak256(
+            abi.encode(
+                sequenceNumber,
+                afterDelayedMessagesRead,
+                address(gasRefunder),
+                prevMessageCount,
+                newMessageCount,
+                abi.encode(dataHashes)
+            )
+        );
+        // verify the quote for the batch poster running in the TEE
+        espressoTEEVerifier.verify(quote, reportDataHash);
+        emit TEEAttestationQuoteVerified(sequenceNumber);
+
         (
             bytes32 dataHash,
             IBridge.TimeBounds memory timeBounds,

src/mocks/EspressoTEEVerifierBlobsMock.sol

@@ -0,0 +1,127 @@
+// SPDX-License-Identifier: MIT
+pragma solidity ^0.8.25;
+
+import {EnclaveReport} from "@automata-network/dcap-attestation/contracts/types/V3Structs.sol";
+import {BELE} from "@automata-network/dcap-attestation/contracts/utils/BELE.sol";
+import {Header} from "@automata-network/dcap-attestation/contracts/types/CommonStruct.sol";
+import {
+    IQuoteVerifier
+} from "@automata-network/dcap-attestation/contracts/interfaces/IQuoteVerifier.sol";
+import {
+    HEADER_LENGTH,
+    ENCLAVE_REPORT_LENGTH
+} from "@automata-network/dcap-attestation/contracts/types/Constants.sol";
+import {EnclaveReport} from "@automata-network/dcap-attestation/contracts/types/V3Structs.sol";
+import {BytesUtils} from "@automata-network/dcap-attestation/contracts/utils/BytesUtils.sol";
+import {IEspressoTEEVerifier} from "../bridge/IEspressoTEEVerifier.sol";
+import {
+    V3QuoteVerifier
+} from "@automata-network/dcap-attestation/contracts/verifiers/V3QuoteVerifier.sol";
+import "@openzeppelin/contracts/access/Ownable2Step.sol";
+
+/**
+ *
+ * @title  Verifies quotes from the TEE and attests on-chain
+ * @notice Contains the logic to verify a quote from the TEE and attest on-chain. It uses the V3QuoteVerifier contract
+ *         to verify the quote. Along with some additional verification logic.
+ */
+
+contract EspressoTEEVerifierBlobsMock is IEspressoTEEVerifier {
+    using BytesUtils for bytes;
+
+    // V3QuoteVerififer contract from automata to verify the quote
+    V3QuoteVerifier public quoteVerifier;
+
+    mapping(bytes32 => bool) public mrEnclaves;
+    mapping(bytes32 => bool) public mrSigners;
+
+    constructor() {}
+
+    function verify(bytes calldata rawQuote, bytes32 reportDataHash) external view {
+        // Parse the header
+        Header memory header = parseQuoteHeader(rawQuote);
+
+        // Currently only version 3 is supported
+        if (header.version != 3) {
+            revert InvalidHeaderVersion();
+        }
+
+        // Parse enclave quote
+        uint256 lastIndex = HEADER_LENGTH + ENCLAVE_REPORT_LENGTH;
+        EnclaveReport memory localReport;
+        bool success;
+        (success, localReport) = parseEnclaveReport(rawQuote[HEADER_LENGTH:lastIndex]);
+        if (!success) {
+            revert FailedToParseEnclaveReport();
+        }
+
+        //  Verify that the reportDataHash if the hash signed by the TEE
+        // We do not check the signature because `quoteVerifier.verifyQuote` already does that
+        if (reportDataHash != bytes32(localReport.reportData.substring(0, 32))) {
+            revert InvalidReportDataHash();
+        }
+    }
+
+    /*
+        @notice Parses the enclave report from the quote
+        @param rawEnclaveReport The raw enclave report from the quote in bytes
+        @return success True if the enclave report was parsed successfully
+        @return enclaveReport The parsed enclave report
+    */
+    function parseEnclaveReport(
+        bytes memory rawEnclaveReport
+    ) public pure returns (bool success, EnclaveReport memory enclaveReport) {
+        if (rawEnclaveReport.length != ENCLAVE_REPORT_LENGTH) {
+            return (false, enclaveReport);
+        }
+        enclaveReport.cpuSvn = bytes16(rawEnclaveReport.substring(0, 16));
+        enclaveReport.miscSelect = bytes4(rawEnclaveReport.substring(16, 4));
+        enclaveReport.reserved1 = bytes28(rawEnclaveReport.substring(20, 28));
+        enclaveReport.attributes = bytes16(rawEnclaveReport.substring(48, 16));
+        enclaveReport.mrEnclave = bytes32(rawEnclaveReport.substring(64, 32));
+        enclaveReport.reserved2 = bytes32(rawEnclaveReport.substring(96, 32));
+        enclaveReport.mrSigner = bytes32(rawEnclaveReport.substring(128, 32));
+        enclaveReport.reserved3 = rawEnclaveReport.substring(160, 96);
+        enclaveReport.isvProdId = uint16(BELE.leBytesToBeUint(rawEnclaveReport.substring(256, 2)));
+        enclaveReport.isvSvn = uint16(BELE.leBytesToBeUint(rawEnclaveReport.substring(258, 2)));
+        enclaveReport.reserved4 = rawEnclaveReport.substring(260, 60);
+        enclaveReport.reportData = rawEnclaveReport.substring(320, 64);
+        success = true;
+    }
+
+    function parseQuoteHeader(bytes calldata rawQuote) public pure returns (Header memory header) {
+        header = Header({
+            version: uint16(BELE.leBytesToBeUint(rawQuote[0:2])),
+            attestationKeyType: bytes2(rawQuote[2:4]),
+            teeType: bytes4(uint32(BELE.leBytesToBeUint(rawQuote[4:8]))),
+            qeSvn: bytes2(rawQuote[8:10]),
+            pceSvn: bytes2(rawQuote[10:12]),
+            qeVendorId: bytes16(rawQuote[12:28]),
+            userData: bytes20(rawQuote[28:48])
+        });
+    }
+
+    /*
+     * @dev Set the mrEnclave of the contract
+     */
+    function setMrEnclave(bytes32 _mrEnclave, bool _isValid) external {
+        if (_isValid) {
+            mrEnclaves[_mrEnclave] = true;
+        } else {
+            delete mrEnclaves[_mrEnclave];
+        }
+        emit MREnclaveSet(_mrEnclave, _isValid);
+    }
+
+    /*
+     * @dev Set the mrSigner of the contract
+     */
+    function setMrSigner(bytes32 _mrSigner, bool _isValid) external {
+        if (_isValid) {
+            mrSigners[_mrSigner] = true;
+        } else {
+            delete mrSigners[_mrSigner];
+        }
+        emit MRSignerSet(_mrSigner, _isValid);
+    }
+}

src/mocks/Reader4844.sol

@@ -0,0 +1,18 @@
+// SPDX-License-Identifier: UNLICENSED
+pragma solidity ^0.8.4;
+
+import {IReader4844} from "../libraries/IReader4844.sol";
+
+contract Reader4844 is IReader4844 {
+    uint256 public constant BLOB_BASE_FEE = 100;
+
+    function getBlobBaseFee() external view returns (uint256) {
+        return BLOB_BASE_FEE;
+    }
+
+    function getDataHashes() external view returns (bytes32[] memory) {
+        bytes32[] memory dataHashes = new bytes32[](1); // Fixed size (e.g., 1 element)
+        dataHashes[0] = 0x014e8e17947683a76729b8efd62f59785227e0011c4ace32d7887589acd46ee7; // Assign hash
+        return dataHashes;
+    }
+}

test/contract/sequencerInbox.spec.4844.ts

@@ -434,13 +434,14 @@ describe('SequencerInbox', async () => {
       sequencerInbox.address,
       ['0x0142', '0x0143'],
       sequencerInbox.interface.encodeFunctionData(
-        'addSequencerL2BatchFromBlobs',
+        'addSequencerL2BatchFromBlobs(uint256,uint256,address,uint256,uint256,bytes)',
         [
           sequenceNumber,
           afterDelayedMessagesRead,
           gasRefunder.address,
           subMessageCount,
           subMessageCount.add(1),
+          '0x'
         ]
       )
     )

test/foundry/EspressoTEEVerifier.t.sol

@@ -100,17 +100,21 @@ contract EspressoTEEVerifierTest is Test {
 
     function testSetMrEnclave() public {
         vm.startPrank(adminTEE);
-        bytes32 newMrEnclave = bytes32(hex"01");
-        espressoTEEVerifier.setMrEnclave(newMrEnclave);
-        assertEq(espressoTEEVerifier.mrEnclave(), newMrEnclave);
+        bytes32 newMrEnclave = bytes32(hex"0123456789abcdef");
+        espressoTEEVerifier.setMrEnclave(newMrEnclave, false);
+        assertEq(espressoTEEVerifier.mrEnclaves(newMrEnclave), false);
+        espressoTEEVerifier.setMrEnclave(newMrEnclave, true);
+        assertEq(espressoTEEVerifier.mrEnclaves(newMrEnclave), true);
         vm.stopPrank();
     }
 
     function testSetMrSigner() public {
         vm.startPrank(adminTEE);
         bytes32 newMrSigner = bytes32(hex"01");
-        espressoTEEVerifier.setMrSigner(newMrSigner);
-        assertEq(espressoTEEVerifier.mrSigner(), newMrSigner);
+        espressoTEEVerifier.setMrSigner(newMrSigner, false);
+        assertEq(espressoTEEVerifier.mrSigners(newMrSigner), false);
+        espressoTEEVerifier.setMrSigner(newMrSigner, true);
+        assertEq(espressoTEEVerifier.mrSigners(newMrSigner), true);
         vm.stopPrank();
     }