Merge branch 'feature/erc7802bridge-v2' of https://github.com/OpenZeppelin/openzeppelin-community-contracts into feature/erc7802bridge-v2

Author: Amxx

contracts/crosschain/ERC7802Bridge.sol

@@ -0,0 +1,215 @@
+// SPDX-License-Identifier: MIT
+
+pragma solidity ^0.8.26;
+
+// Interfaces
+import {IERC20} from "@openzeppelin/contracts/interfaces/IERC20.sol";
+import {IERC7802} from "@openzeppelin/contracts/interfaces/draft-IERC7802.sol";
+import {IERC7786GatewaySource, IERC7786Receiver} from "../interfaces/IERC7786.sol";
+
+// Utilities
+import {Arrays} from "@openzeppelin/contracts/utils/Arrays.sol";
+import {BitMaps} from "@openzeppelin/contracts/utils/structs/BitMaps.sol";
+import {Bytes} from "@openzeppelin/contracts/utils/Bytes.sol";
+import {SafeCast} from "@openzeppelin/contracts/utils/math/SafeCast.sol";
+import {InteroperableAddress} from "@openzeppelin/contracts/utils/draft-InteroperableAddress.sol";
+import {IndirectCall} from "../utils/IndirectCall.sol";
+
+contract ERC7802Bridge is IERC7786Receiver {
+    using BitMaps for BitMaps.BitMap;
+    using InteroperableAddress for bytes;
+
+    struct BridgeMetadata {
+        address token;
+        bool isCustodial;
+        mapping(bytes chain => address) gateway;
+        mapping(bytes chain => bytes) remote;
+    }
+
+    mapping(bytes32 bridgeId => BridgeMetadata) private _bridges;
+    BitMaps.BitMap private _processed;
+
+    event Sent(address token, address from, bytes to, uint256 amount);
+    event Received(address token, bytes from, address to, uint256 amount);
+    event NewBridge(bytes32 indexed bridgeId, address indexed token);
+    event NewBridgeLink(bytes32 indexed bridgeId, address gateway, bytes remote);
+
+    error ERC7802BridgeInvalidBidgeId(bytes32 bridgeId);
+    error ERC7802BridgeMissingGateway(bytes32 bridgeId, bytes chain);
+    error ERC7802BridgeMissingRemote(bytes32 bridgeId, bytes chain);
+    error ERC7802BridgeDuplicate();
+    error ERC7802BridgeInvalidGateway();
+    error ERC7802BridgeInvalidSender();
+
+    function getBridgeEndpoint(bytes32 bridgeId) public returns (address) {
+        return IndirectCall.getRelayer(bridgeId);
+    }
+
+    function getBridgeToken(bytes32 bridgeId) public view returns (address token, bool isCustodial) {
+        token = _bridges[bridgeId].token;
+        isCustodial = _bridges[bridgeId].isCustodial;
+        if (token == address(0)) revert ERC7802BridgeInvalidBidgeId(bridgeId);
+    }
+
+    function getBridgeGateway(bytes32 bridgeId, bytes memory chain) public view returns (address) {
+        address result = _bridges[bridgeId].gateway[chain];
+        if (result == address(0)) revert ERC7802BridgeMissingGateway(bridgeId, chain);
+        return result;
+    }
+
+    function getBridgeRemote(bytes32 bridgeId, bytes memory chain) public view returns (bytes memory) {
+        bytes memory result = _bridges[bridgeId].remote[chain];
+        if (result.length == 0) revert ERC7802BridgeMissingRemote(bridgeId, chain);
+        return result;
+    }
+
+    struct Foreign {
+        bytes32 id;
+        address gateway;
+        bytes remote;
+    }
+    function createBridge(address token, bool isCustodial, Foreign[] calldata foreign) public returns (bytes32) {
+        bytes32[] memory ids = new bytes32[](foreign.length + 1);
+        bytes32[] memory links = new bytes32[](foreign.length);
+        for (uint256 i = 0; i < foreign.length; ++i) {
+            require(foreign[i].gateway != address(0));
+            require(foreign[i].remote.length > 0);
+            ids[i] = foreign[i].id;
+            links[i] = keccak256(
+                abi.encode(InteroperableAddress.formatEvmV1(block.chainid, foreign[i].gateway), foreign[i].remote)
+            );
+        }
+        ids[foreign.length] = keccak256(
+            abi.encode(
+                InteroperableAddress.formatEvmV1(block.chainid, token), // bytes token
+                bytes32(SafeCast.toUint(isCustodial)), // bytes32 tokenOptions
+                Arrays.sort(links)
+            )
+        );
+
+        bytes32 bridgeId = keccak256(abi.encodePacked(Arrays.sort(ids)));
+
+        // Should we check for collision. I don't think that is necessary
+        BridgeMetadata storage details = _bridges[bridgeId];
+        details.token = token;
+        details.isCustodial = isCustodial;
+
+        emit NewBridge(bridgeId, token);
+
+        for (uint256 i = 0; i < foreign.length; ++i) {
+            (bytes2 chainType, bytes memory chainReference, ) = foreign[i].remote.parseV1();
+            bytes memory chain = InteroperableAddress.formatV1(chainType, chainReference, "");
+            require(details.gateway[chain] == address(0));
+            details.gateway[chain] = foreign[i].gateway;
+            details.remote[chain] = foreign[i].remote;
+
+            emit NewBridgeLink(bridgeId, foreign[i].gateway, foreign[i].remote);
+        }
+
+        return bridgeId;
+    }
+
+    function send(
+        bytes32 bridgeId,
+        bytes memory to,
+        uint256 amount,
+        bytes[] memory attributes
+    ) public payable virtual returns (bytes32) {
+        address token = _fetchTokens(bridgeId, msg.sender, amount);
+
+        // identify destination chain
+        (bytes2 chainType, bytes memory chainReference, bytes memory recipient) = to.parseV1();
+        bytes memory destChain = InteroperableAddress.formatV1(chainType, chainReference, "");
+
+        // get details for that bridge: gateway, remote bridge, remote token
+        address gateway = getBridgeGateway(bridgeId, destChain);
+        bytes memory bridge = getBridgeRemote(bridgeId, destChain);
+
+        // prepare payload
+        bytes memory payload = abi.encode(
+            bridgeId,
+            InteroperableAddress.formatEvmV1(block.chainid, msg.sender),
+            recipient,
+            amount
+        );
+
+        // send crosschain signal
+        bytes32 sendId = IERC7786GatewaySource(gateway).sendMessage{value: msg.value}(bridge, payload, attributes);
+        emit Sent(token, msg.sender, to, amount);
+
+        return sendId;
+    }
+
+    function executeMessage(
+        bytes32 receiveId,
+        bytes memory sender,
+        bytes memory payload,
+        bytes[] memory /*attributes*/
+    ) public payable virtual returns (bytes4) {
+        // prevent duplicate
+        require(!_processed.get(uint256(receiveId)), ERC7802BridgeDuplicate());
+        _processed.set(uint256(receiveId));
+
+        // parse payload
+        (bytes32 bridgeId, bytes memory from, bytes memory recipient, uint256 amount) = abi.decode(
+            payload,
+            (bytes32, bytes, bytes, uint256)
+        );
+
+        // identify source chain and validate corresponding gateway
+        (bytes2 chainType, bytes memory chainReference, ) = from.parseV1();
+        bytes memory srcChain = InteroperableAddress.formatV1(chainType, chainReference, "");
+
+        require(msg.sender == getBridgeGateway(bridgeId, srcChain), ERC7802BridgeInvalidGateway());
+        require(Bytes.equal(sender, getBridgeRemote(bridgeId, srcChain)), ERC7802BridgeInvalidSender());
+
+        // get recipient
+        address to = address(bytes20(recipient));
+
+        // distribute bridged tokens
+        address token = _distributeTokens(bridgeId, to, amount);
+        emit Received(token, from, to, amount);
+
+        return IERC7786Receiver.executeMessage.selector;
+    }
+
+    function _fetchTokens(bytes32 bridgeId, address from, uint256 amount) internal virtual returns (address) {
+        (address token, bool isCustodial) = getBridgeToken(bridgeId);
+        if (isCustodial) {
+            (bool success, bytes memory returndata) = IndirectCall.indirectCall(
+                token,
+                abi.encodeCall(IERC20.transferFrom, (from, getBridgeEndpoint(bridgeId), amount)),
+                bridgeId
+            );
+            require(success && (returndata.length == 0 ? token.code.length == 0 : uint256(bytes32(returndata)) == 1));
+        } else {
+            (bool success, ) = IndirectCall.indirectCall(
+                token,
+                abi.encodeCall(IERC7802.crosschainBurn, (from, amount)),
+                bridgeId
+            );
+            require(success);
+        }
+        return token;
+    }
+
+    function _distributeTokens(bytes32 bridgeId, address to, uint256 amount) internal virtual returns (address) {
+        (address token, bool isCustodial) = getBridgeToken(bridgeId);
+        if (isCustodial) {
+            (bool success, bytes memory returndata) = IndirectCall.indirectCall(
+                token,
+                abi.encodeCall(IERC20.transfer, (to, amount)),
+                bridgeId
+            );
+            require(success && (returndata.length == 0 ? token.code.length == 0 : uint256(bytes32(returndata)) == 1));
+        } else {
+            (bool success, ) = IndirectCall.indirectCall(
+                token,
+                abi.encodeCall(IERC7802.crosschainMint, (to, amount)),
+                bridgeId
+            );
+            require(success);
+        }
+        return token;
+    }
+}

contracts/mocks/token/ERC20BridgeableMock.sol

@@ -0,0 +1,22 @@
+// SPDX-License-Identifier: MIT
+
+pragma solidity ^0.8.20;
+
+import {AccessControl} from "@openzeppelin/contracts/access/AccessControl.sol";
+import {ERC20Bridgeable} from "../../token/ERC20/extensions/ERC20Bridgeable.sol";
+
+abstract contract ERC20BridgeableMock is ERC20Bridgeable, AccessControl {
+    bytes32 public constant BRIDGE_ROLE = keccak256("BRIDGE");
+
+    constructor(address admin) {
+        _grantRole(DEFAULT_ADMIN_ROLE, admin);
+    }
+
+    function supportsInterface(
+        bytes4 interfaceId
+    ) public view virtual override(AccessControl, ERC20Bridgeable) returns (bool) {
+        return super.supportsInterface(interfaceId);
+    }
+
+    function _checkTokenBridge(address sender) internal view override onlyRole(BRIDGE_ROLE) {}
+}

contracts/utils/IndirectCall.sol

@@ -0,0 +1,114 @@
+// SPDX-License-Identifier: MIT
+
+pragma solidity ^0.8.20;
+
+import {Address} from "@openzeppelin/contracts/utils/Address.sol";
+import {Create2} from "@openzeppelin/contracts/utils/Create2.sol";
+
+/**
+ * @dev Helper contract for performing potentially dangerous calls through a relay the hide the address of the
+ * original sender.
+ *
+ * Some contract are required to perform arbitrary action controlled by user input. This is dangerous if the contract
+ * has special permissions, or holds assets. In such cases, using a relay contract can be useful to change the
+ * msg.sender of the outgoing call. This pattern is used in the ERC-4337 entrypoint that relies on a helper called the
+ * "senderCreator" when calling account factories. Similarly ERC-6942 does factory calls that could be dangerous if
+ * performed directly.
+ *
+ * This contract provides a `indirectCall` that can be used to perform dangerous calls. These calls are indirect
+ * through a minimal relayer.
+ */
+library IndirectCall {
+    function indirectCall(address target, bytes memory data) internal returns (bool, bytes memory) {
+        return indirectCall(target, 0, data);
+    }
+
+    function indirectCall(address target, uint256 value, bytes memory data) internal returns (bool, bytes memory) {
+        return indirectCall(target, value, data, bytes32(0));
+    }
+
+    function indirectCall(address target, bytes memory data, bytes32 salt) internal returns (bool, bytes memory) {
+        return indirectCall(target, 0, data, salt);
+    }
+
+    function indirectCall(
+        address target,
+        uint256 value,
+        bytes memory data,
+        bytes32 salt
+    ) internal returns (bool, bytes memory) {
+        return getRelayer(salt).call{value: value}(abi.encodePacked(target, data));
+    }
+
+    function getRelayer() internal returns (address) {
+        return getRelayer(bytes32(0));
+    }
+
+    function getRelayer(bytes32 salt) internal returns (address) {
+        // [Relayer details]
+        //
+        // deployment prefix: 3d602f80600a3d3981f3
+        // deployed bytecode: 60133611600a575f5ffd5b6014360360145f375f5f601436035f345f3560601c5af13d5f5f3e5f3d91602d57fd5bf3
+        // bytecode hash: 7bc0ea09c689dc0a6de3865d8789dae51a081efcf6569589ddae4b677df5dd3f
+        //
+        // offset | bytecode | opcode         | stack
+        // -------|----------|----------------|--------
+        // 0x0000 | 6013     | push1 0x13     | 0x13
+        // 0x0002 | 36       | calldatasize   | cds 0x13
+        // 0x0003 | 11       | gt             | (cds>0x13)
+        // 0x0004 | 600a     | push1 0x0a     | 0x0a (cds>0x13)
+        // 0x0006 | 57       | jumpi          | 0x0a (cds>0x13)
+        // 0x0007 | 5f       | push0          | 0
+        // 0x0008 | 5f       | push0          | 0 0
+        // 0x0009 | fd       | revert         |
+        // 0x000a | 5b       | jumpdest       |
+        // 0x000b | 6014     | push1 0x14     | 0x14
+        // 0x000d | 36       | calldatasize   | cds 0x14
+        // 0x000e | 03       | sub            | (cds-0x14)
+        // 0x000f | 6014     | push1 0x14     | 0x14 (cds-0x14)
+        // 0x0011 | 5f       | push0          | 0 0x14 (cds-0x14)
+        // 0x0012 | 37       | calldatacopy   |
+        // 0x0013 | 5f       | push0          | 0
+        // 0x0014 | 5f       | push0          | 0 0
+        // 0x0015 | 6014     | push1 0x14     | 0x14 0 0
+        // 0x0017 | 36       | calldatasize   | cds 0x14 0 0
+        // 0x0018 | 03       | sub            | (cds-0x14) 0 0
+        // 0x0019 | 5f       | push0          | 0 (cds-0x14) 0 0
+        // 0x001a | 34       | callvalue      | value 0 (cds-0x14) 0 0
+        // 0x001b | 5f       | push0          | 0 value 0 (cds-0x14) 0 0
+        // 0x001c | 35       | calldataload   | cd[0] value 0 (cds-0x14) 0 0
+        // 0x001d | 6060     | push1 0x60     | 0x60 cd[0] value 0 (cds-0x14) 0 0
+        // 0x001f | 1c       | shr            | target value 0 (cds-0x14) 0 0
+        // 0x0020 | 5a       | gas            | gas target value 0 (cds-0x14) 0 0
+        // 0x0021 | f1       | call           | suc
+        // 0x0022 | 3d       | returndatasize | rds suc
+        // 0x0023 | 5f       | push0          | 0 rds suc
+        // 0x0024 | 5f       | push0          | 0 0 rds suc
+        // 0x0025 | 3e       | returndatacopy | suc
+        // 0x0026 | 5f       | push0          | 0 suc
+        // 0x0027 | 3d       | returndatasize | rds 0 suc
+        // 0x0028 | 91       | swap2          | suc 0 rds
+        // 0x0029 | 602d     | push1 0x2d     | 0x2d suc 0 rds
+        // 0x002b | 57       | jumpi          | 0 rds
+        // 0x002c | fd       | revert         |
+        // 0x002d | 5b       | jumpdest       | 0 rds
+        // 0x002e | f3       | return         |
+
+        // Create2 address computation, and deploy it if not yet available
+        address relayer = Create2.computeAddress(
+            salt,
+            0x7bc0ea09c689dc0a6de3865d8789dae51a081efcf6569589ddae4b677df5dd3f
+        );
+        if (relayer.code.length == 0) {
+            assembly ("memory-safe") {
+                mstore(0x19, 0x1436035f345f3560601c5af13d5f5f3e5f3d91602d57fd5bf3)
+                mstore(0x00, 0x3d602f80600a3d3981f360133611600a575f5ffd5b6014360360145f375f5f60)
+                if iszero(create2(0, 0, 0x39, salt)) {
+                    returndatacopy(0, 0, returndatasize())
+                    revert(0, returndatasize())
+                }
+            }
+        }
+        return relayer;
+    }
+}