Add key rotation tests (#224)

Author: QuentinI

espresso/devnet-tests/devnet_tools.go

@@ -3,6 +3,7 @@ package devnet_tests
 import (
 	"bytes"
 	"context"
+	"encoding/hex"
 	"fmt"
 	"math/big"
 	"os"
@@ -13,16 +14,20 @@ import (
 	"testing"
 	"time"
 
+	env "github.com/ethereum-optimism/optimism/espresso/environment"
+	"github.com/ethereum-optimism/optimism/op-e2e/bindings"
+	"github.com/ethereum-optimism/optimism/op-e2e/config/secrets"
 	"github.com/ethereum-optimism/optimism/op-e2e/e2eutils/wait"
 	"github.com/ethereum-optimism/optimism/op-e2e/system/helpers"
+	"github.com/ethereum-optimism/optimism/op-node/rollup"
+	opclient "github.com/ethereum-optimism/optimism/op-service/client"
+	"github.com/ethereum-optimism/optimism/op-service/sources"
+	"github.com/ethereum/go-ethereum/accounts/abi/bind"
 	"github.com/ethereum/go-ethereum/common"
 	"github.com/ethereum/go-ethereum/core/types"
 	"github.com/ethereum/go-ethereum/crypto"
 	"github.com/ethereum/go-ethereum/ethclient"
 	"github.com/ethereum/go-ethereum/log"
-
-	env "github.com/ethereum-optimism/optimism/espresso/environment"
-	"github.com/ethereum-optimism/optimism/op-e2e/config/secrets"
 )
 
 type Devnet struct {
@@ -31,8 +36,11 @@ type Devnet struct {
 	outageTime  time.Duration
 	successTime time.Duration
 
-	L2Seq   *ethclient.Client
-	L2Verif *ethclient.Client
+	L1            *ethclient.Client
+	L2Seq         *ethclient.Client
+	L2SeqRollup   *sources.RollupClient
+	L2Verif       *ethclient.Client
+	L2VerifRollup *sources.RollupClient
 }
 
 func NewDevnet(ctx context.Context, t *testing.T) *Devnet {
@@ -70,6 +78,10 @@ func (d *Devnet) Up(verbose bool) (err error) {
 		d.ctx,
 		"docker", "compose", "up", "-d",
 	)
+	cmd.Env = append(
+		cmd.Env,
+		fmt.Sprintf("OP_BATCHER_PRIVATE_KEY=%s", hex.EncodeToString(crypto.FromECDSA(d.secrets.Batcher))),
+	)
 	buf := new(bytes.Buffer)
 	cmd.Stderr = buf
 	if err := cmd.Run(); err != nil {
@@ -112,10 +124,22 @@ func (d *Devnet) Up(verbose bool) (err error) {
 	if err != nil {
 		return err
 	}
+	d.L2SeqRollup, err = d.rollupClient("op-node-sequencer", 9545)
+	if err != nil {
+		return err
+	}
 	d.L2Verif, err = d.serviceClient("op-geth-verifier", 8546)
 	if err != nil {
 		return err
 	}
+	d.L2VerifRollup, err = d.rollupClient("op-node-verifier", 9546)
+	if err != nil {
+		return err
+	}
+	d.L1, err = d.serviceClient("l1-geth", 8545)
+	if err != nil {
+		return err
+	}
 
 	return nil
 }
@@ -148,6 +172,28 @@ func (d *Devnet) ServiceRestart(service string) error {
 	return nil
 }
 
+func (d *Devnet) RollupConfig(ctx context.Context) (*rollup.Config, error) {
+	return d.L2SeqRollup.RollupConfig(ctx)
+}
+
+func (d *Devnet) SystemConfig(ctx context.Context) (*bindings.SystemConfig, *bind.TransactOpts, error) {
+	config, err := d.RollupConfig(ctx)
+	if err != nil {
+		return nil, nil, err
+	}
+	contract, err := bindings.NewSystemConfig(config.L1SystemConfigAddress, d.L1)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	owner, err := bind.NewKeyedTransactorWithChainID(d.secrets.Deployer, config.L1ChainID)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	return contract, owner, nil
+}
+
 // Submits a transaction and waits until it is confirmed by the sequencer (but not necessarily the verifier).
 func (d *Devnet) SubmitL2Tx(applyTxOpts helpers.TxOptsFn) (*types.Receipt, error) {
 	ctx, cancel := context.WithTimeout(d.ctx, 2*time.Minute)
@@ -238,6 +284,15 @@ func (d *Devnet) RunL2Tx(applyTxOpts helpers.TxOptsFn) error {
 	return d.VerifyL2Tx(receipt)
 }
 
+func (d *Devnet) SendL1Tx(ctx context.Context, tx *types.Transaction) (*types.Receipt, error) {
+	err := d.L1.SendTransaction(ctx, tx)
+	if err != nil {
+		return nil, err
+	}
+
+	return wait.ForReceiptOK(ctx, d.L1, tx.Hash())
+}
+
 type BurnReceipt struct {
 	InitialBurnBalance *big.Int
 	BurnAmount         *big.Int
@@ -354,9 +409,23 @@ func (d *Devnet) serviceClient(service string, port uint16) (*ethclient.Client,
 	if err != nil {
 		return nil, fmt.Errorf("could not get %s port: %w", service, err)
 	}
-	client, err := ethclient.DialContext(d.ctx, fmt.Sprintf("http://localhost:%d", port))
+	client, err := ethclient.DialContext(d.ctx, fmt.Sprintf("http://127.0.0.1:%d", port))
 	if err != nil {
 		return nil, fmt.Errorf("could not open %s RPC client: %w", service, err)
 	}
 	return client, nil
 }
+
+func (d *Devnet) rollupClient(service string, port uint16) (*sources.RollupClient, error) {
+	port, err := d.hostPort(service, port)
+	if err != nil {
+		return nil, fmt.Errorf("could not get %s port: %w", service, err)
+	}
+	rpc, err := opclient.NewRPC(d.ctx, log.Root(), fmt.Sprintf("http://127.0.0.1:%d", port), opclient.WithDialAttempts(10))
+	if err != nil {
+		return nil, fmt.Errorf("could not open %s RPC client: %w", service, err)
+	}
+
+	client := sources.NewRollupClient(rpc)
+	return client, nil
+}

espresso/devnet-tests/key_rotation_test.go

@@ -0,0 +1,86 @@
+package devnet_tests
+
+import (
+	"context"
+	"testing"
+
+	"github.com/ethereum-optimism/optimism/op-batcher/bindings"
+	"github.com/ethereum-optimism/optimism/op-service/eth"
+	"github.com/ethereum/go-ethereum/accounts/abi/bind"
+	"github.com/stretchr/testify/require"
+)
+
+func TestRotateBatcherKey(t *testing.T) {
+	ctx, cancel := context.WithCancel(context.Background())
+	defer cancel()
+
+	d := NewDevnet(ctx, t)
+
+	// We're going to change batcher key to Bob's, verify that it won't be a no-op
+	require.NotEqual(t, d.secrets.Batcher, d.secrets.Bob)
+
+	require.NoError(t, d.Up(testing.Verbose()))
+	defer func() {
+		require.NoError(t, d.Down())
+	}()
+
+	// Send a transaction just to check that everything has started up ok.
+	require.NoError(t, d.RunSimpleL2Burn())
+
+	// Shut down the batcher
+	require.NoError(t, d.ServiceDown("op-batcher"))
+	d.SleepOutageDuration()
+
+	// Change the batch sender key to Bob
+	contract, owner, err := d.SystemConfig(ctx)
+	require.NoError(t, err)
+
+	tx, err := contract.SetBatcherHash(owner, eth.AddressAsLeftPaddedHash(d.secrets.Addresses().Bob))
+	require.NoError(t, err)
+
+	_, err = d.SendL1Tx(ctx, tx)
+	require.NoError(t, err)
+
+	d.secrets.Batcher = d.secrets.Bob
+
+	// Restart the batcher
+	require.NoError(t, d.ServiceUp("op-batcher"))
+	d.SleepOutageDuration()
+
+	// Send a transaction to check the L2 still runs
+	require.NoError(t, d.RunSimpleL2Burn())
+}
+
+func TestChangeBatchInboxOwner(t *testing.T) {
+	ctx, cancel := context.WithCancel(context.Background())
+	defer cancel()
+
+	d := NewDevnet(ctx, t)
+
+	require.NoError(t, d.Up(testing.Verbose()))
+	defer func() {
+		require.NoError(t, d.Down())
+	}()
+
+	// Send a transaction just to check that everything has started up ok.
+	require.NoError(t, d.RunSimpleL2Burn())
+
+	config, err := d.RollupConfig(ctx)
+	require.NoError(t, err)
+
+	// Change the BatchAuthenticator's owner
+	batchAuthenticator, err := bindings.NewBatchAuthenticator(config.BatchAuthenticatorAddress, d.L1)
+	require.NoError(t, err)
+	tx, err := batchAuthenticator.TransferOwnership(&bind.TransactOpts{}, d.secrets.Addresses().Bob)
+	require.NoError(t, err)
+	_, err = d.SendL1Tx(ctx, tx)
+	require.NoError(t, err)
+
+	// Ensure the owner has been changed
+	newOwner, err := batchAuthenticator.Owner(&bind.CallOpts{})
+	require.NoError(t, err)
+	require.Equal(t, newOwner, d.secrets.Addresses().Bob)
+
+	// Check that everything still functions
+	require.NoError(t, d.RunSimpleL2Burn())
+}

espresso/docker-compose.yml

@@ -80,7 +80,7 @@ services:
       l1-genesis:
         condition: service_completed_successfully
     healthcheck:
-      test: [ "CMD", "curl", "-f", "http://localhost:${L1_HTTP_PORT}" ]
+      test: ["CMD", "curl", "-f", "http://localhost:${L1_HTTP_PORT}"]
       interval: 3s
       timeout: 2s
       retries: 40
@@ -171,6 +171,11 @@ services:
       context: ../
       dockerfile: espresso/docker/op-stack/Dockerfile
       target: op-node-target
+    healthcheck:
+      test: ["CMD", "curl", "-f", "http://localhost:${ROLLUP_PORT}"]
+      interval: 3s
+      timeout: 2s
+      retries: 40
     image: op-node-sequencer:espresso
     depends_on:
       l2-rollup:
@@ -205,6 +210,11 @@ services:
       context: ../
       dockerfile: espresso/docker/op-stack/Dockerfile
       target: op-node-target
+    healthcheck:
+      test: ["CMD", "curl", "-f", "http://localhost:${VERIFIER_PORT}"]
+      interval: 3s
+      timeout: 2s
+      retries: 40
     image: op-node-verifier:espresso
     depends_on:
       l2-rollup:
@@ -237,6 +247,11 @@ services:
       context: ../
       dockerfile: espresso/docker/op-stack/Dockerfile
       target: op-node-target
+    healthcheck:
+      test: ["CMD", "curl", "-f", "http://localhost:${CAFF_PORT}"]
+      interval: 3s
+      timeout: 2s
+      retries: 40
     image: caff-node:espresso
     depends_on:
       op-geth-caff-node:
@@ -307,9 +322,8 @@ services:
     command:
       - op-batcher
       - --espresso-light-client-addr=0x703848f4c85f18e3acd8196c8ec91eb0b7bd0797
-      - --testing-espresso-batcher-private-key=0xac0974bec39a17e36ba4a6b4d238ff944bacb478cbed5efcae784d7bf4f2ff80 # Default value for testing
-      - --mnemonic=test test test test test test test test test test test junk # Arbitrary value for testing
-      - --hd-path=m/44'/60'/0'/0/0 # Arbitrary value for testing
+      - --testing-espresso-batcher-private-key=${OP_TESTING_BATCHER_PRIVATE_KEY:-0xac0974bec39a17e36ba4a6b4d238ff944bacb478cbed5efcae784d7bf4f2ff80} # Default value for testing
+      - --private-key=${OP_BATCHER_PRIVATE_KEY:-"0xac0974bec39a17e36ba4a6b4d238ff944bacb478cbed5efcae784d7bf4f2ff80"} # Arbitrary value for testing
       - --throttle-threshold=0
       - --max-channel-duration=2
       - --target-num-frames=1
@@ -343,7 +357,11 @@ services:
       target: op-batcher-enclave-target
     image: op-batcher-tee:espresso
     healthcheck:
-      test: ["CMD-SHELL", "test -f /tmp/enclave-tools.pid && kill -0 $(cat /tmp/enclave-tools.pid) 2>/dev/null || exit 1"]
+      test:
+        [
+          "CMD-SHELL",
+          "test -f /tmp/enclave-tools.pid && kill -0 $(cat /tmp/enclave-tools.pid) 2>/dev/null || exit 1",
+        ]
       interval: 30s
       timeout: 10s
       retries: 3
@@ -380,16 +398,15 @@ services:
       - /dev/nitro_enclaves:/dev/nitro_enclaves
     restart: "no"
     command:
-    - sh
-    - -c
-    - |
-      export DEPLOYMENT_MODE=local
-      export L1_RPC_URL="http://127.0.0.1:${L1_HTTP_PORT}"
-      export L2_RPC_URL="http://127.0.0.1:${OP_HTTP_PORT}"
-      export ROLLUP_RPC_URL="http://127.0.0.1:${ROLLUP_PORT}"
-      export ESPRESSO_URL1="http://127.0.0.1:${ESPRESSO_SEQUENCER_API_PORT}"
-      /source/espresso/docker/op-batcher-tee/run-enclave.sh 
-
+      - sh
+      - -c
+      - |
+        export DEPLOYMENT_MODE=local
+        export L1_RPC_URL="http://127.0.0.1:${L1_HTTP_PORT}"
+        export L2_RPC_URL="http://127.0.0.1:${OP_HTTP_PORT}"
+        export ROLLUP_RPC_URL="http://127.0.0.1:${ROLLUP_PORT}"
+        export ESPRESSO_URL1="http://127.0.0.1:${ESPRESSO_SEQUENCER_API_PORT}"
+        /source/espresso/docker/op-batcher-tee/run-enclave.sh
 
   op-proposer:
     profiles: ["default"]
@@ -443,7 +460,7 @@ services:
       ESPRESSO_SEQUENCER_STORAGE_PATH: /data/espresso
       ESPRESSO_SEQUENCER_L1_PROVIDER: http://l1-geth:${L1_HTTP_PORT}
       ESPRESSO_DEPLOYER_ACCOUNT_INDEX: 0
-      ESPRESSO_DEV_NODE_EPOCH_HEIGHT: '4294967295'
+      ESPRESSO_DEV_NODE_EPOCH_HEIGHT: "4294967295"
       ESPRESSO_SEQUENCER_ETH_MNEMONIC: "giant issue aisle success illegal bike spike question tent bar rely arctic volcano long crawl hungry vocal artwork sniff fantasy very lucky have athlete"
 
 volumes: