use the version of IndirectCall that verifies call origin

Author: Amxx

contracts/crosschain/ERC7802Bridge.sol

@@ -8,35 +8,18 @@ import {IERC7802} from "@openzeppelin/contracts/interfaces/draft-IERC7802.sol";
 import {IERC7786GatewaySource, IERC7786Receiver} from "../interfaces/IERC7786.sol";
 
 // Utilities
-import {Clones} from "@openzeppelin/contracts/proxy/Clones.sol";
 import {ERC721} from "@openzeppelin/contracts/token/ERC721/ERC721.sol";
 import {Arrays} from "@openzeppelin/contracts/utils/Arrays.sol";
 import {BitMaps} from "@openzeppelin/contracts/utils/structs/BitMaps.sol";
 import {Bytes} from "@openzeppelin/contracts/utils/Bytes.sol";
 import {SafeCast} from "@openzeppelin/contracts/utils/math/SafeCast.sol";
 import {InteroperableAddress} from "@openzeppelin/contracts/utils/draft-InteroperableAddress.sol";
-
-contract ERC7802BridgeSatellite {
-    address private immutable _bridge = msg.sender;
-
-    fallback(bytes calldata data) external payable returns (bytes memory) {
-        require(msg.sender == _bridge && data.length >= 20);
-
-        (bool success, bytes memory returndata) = address(bytes20(data)).call{value: msg.value}(data[20:]);
-
-        if (!success) {
-            assembly ("memory-safe") {
-                revert(add(returndata, 0x20), mload(returndata))
-            }
-        } else {
-            return returndata;
-        }
-    }
-}
+import {IndirectCall} from "../utils/IndirectCall.sol";
 
 contract ERC7802Bridge is ERC721("ERC7802Bridge", "ERC7802Bridge"), IERC7786Receiver {
     using BitMaps for BitMaps.BitMap;
     using InteroperableAddress for bytes;
+
     struct BridgeMetadata {
         address token;
         bool isPaused;
@@ -45,7 +28,6 @@ contract ERC7802Bridge is ERC721("ERC7802Bridge", "ERC7802Bridge"), IERC7786Rece
         mapping(bytes chain => bytes) remote;
     }
 
-    address private immutable _satellite = address(new ERC7802BridgeSatellite());
     mapping(bytes32 bridgeId => BridgeMetadata) private _bridges;
     BitMaps.BitMap private _processed;
 
@@ -70,8 +52,8 @@ contract ERC7802Bridge is ERC721("ERC7802Bridge", "ERC7802Bridge"), IERC7786Rece
     // ┌─────────────────────────────────────────────────────────────────────────────────────────────────────────────┐
     // │                                                   Getters                                                   │
     // └─────────────────────────────────────────────────────────────────────────────────────────────────────────────┘
-    function getBridgeEndpoint(bytes32 bridgeId) public view returns (address) {
-        return Clones.predictDeterministicAddress(_satellite, bridgeId);
+    function getBridgeEndpoint(bytes32 bridgeId) public returns (address) {
+        return IndirectCall.getRelayer(bridgeId);
     }
 
     function getBridgeToken(bytes32 bridgeId) public view returns (address token, bool isCustodial) {
@@ -128,7 +110,6 @@ contract ERC7802Bridge is ERC721("ERC7802Bridge", "ERC7802Bridge"), IERC7786Rece
         details.token = token;
         details.isCustodial = isCustodial;
 
-        Clones.cloneDeterministic(_satellite, bridgeId);
         _safeMint(admin == address(0) ? address(1) : admin, uint256(bridgeId));
 
         for (uint256 i = 0; i < foreign.length; ++i) {
@@ -237,11 +218,10 @@ contract ERC7802Bridge is ERC721("ERC7802Bridge", "ERC7802Bridge"), IERC7786Rece
     function _fetchTokens(bytes32 bridgeId, address from, uint256 amount) private returns (address) {
         address token = _bridges[bridgeId].token;
         if (_bridges[bridgeId].isCustodial) {
-            (bool success, bytes memory returndata) = getBridgeEndpoint(bridgeId).call(
-                abi.encodePacked(
-                    token,
-                    abi.encodeCall(IERC20.transferFrom, (from, getBridgeEndpoint(bridgeId), amount))
-                )
+            (bool success, bytes memory returndata) = IndirectCall.indirectCall(
+                token,
+                abi.encodeCall(IERC20.transferFrom, (from, getBridgeEndpoint(bridgeId), amount)),
+                bridgeId
             );
             require(success && (returndata.length == 0 ? token.code.length == 0 : uint256(bytes32(returndata)) == 1));
         } else {
@@ -256,8 +236,10 @@ contract ERC7802Bridge is ERC721("ERC7802Bridge", "ERC7802Bridge"), IERC7786Rece
     function _distributeTokens(bytes32 bridgeId, address to, uint256 amount) private returns (address) {
         address token = _bridges[bridgeId].token;
         if (_bridges[bridgeId].isCustodial) {
-            (bool success, bytes memory returndata) = getBridgeEndpoint(bridgeId).call(
-                abi.encodePacked(token, abi.encodeCall(IERC20.transfer, (to, amount)))
+            (bool success, bytes memory returndata) = IndirectCall.indirectCall(
+                token,
+                abi.encodeCall(IERC20.transfer, (to, amount)),
+                bridgeId
             );
             require(success && (returndata.length == 0 ? token.code.length == 0 : uint256(bytes32(returndata)) == 1));
         } else {

contracts/utils/IndirectCall.sol

@@ -0,0 +1,134 @@
+// SPDX-License-Identifier: MIT
+
+pragma solidity ^0.8.20;
+
+/**
+ * @dev Helper contract for performing potentially dangerous calls through a relay the hide the address of the
+ * original sender.
+ *
+ * Some contract are required to perform arbitrary action controlled by user input. This is dangerous if the contract
+ * has special permissions, or holds assets. In such cases, using a relay contract can be useful to change the
+ * msg.sender of the outgoing call. This pattern is used in the ERC-4337 entrypoint that relies on a helper called the
+ * "senderCreator" when calling account factories. Similarly ERC-6942 does factory calls that could be dangerous if
+ * performed directly.
+ *
+ * This contract provides a `indirectCall` that can be used to perform dangerous calls. These calls are indirect
+ * through a minimal relayer.
+ */
+library IndirectCall {
+    function indirectCall(address target, bytes memory data) internal returns (bool, bytes memory) {
+        return indirectCall(target, 0, data);
+    }
+
+    function indirectCall(address target, uint256 value, bytes memory data) internal returns (bool, bytes memory) {
+        return indirectCall(target, value, data, bytes32(0));
+    }
+
+    function indirectCall(address target, bytes memory data, bytes32 salt) internal returns (bool, bytes memory) {
+        return indirectCall(target, 0, data, salt);
+    }
+
+    function indirectCall(
+        address target,
+        uint256 value,
+        bytes memory data,
+        bytes32 salt
+    ) internal returns (bool, bytes memory) {
+        return getRelayer(salt).call{value: value}(abi.encodePacked(target, data));
+    }
+
+    function getRelayer() internal returns (address) {
+        return getRelayer(bytes32(0));
+    }
+
+    function getRelayer(bytes32 salt) internal returns (address relayer) {
+        // [Relayer details]
+        //
+        // deployment prefix: 5f604780600a5f3981f3
+        // deployed bytecode: 73<addr>331460133611166022575f5ffd5b6014360360145f375f5f601436035f345f3560601c5af13d5f5f3e5f3d91604557fd5bf3
+        //
+        // offset | bytecode    | opcode         | stack
+        // -------|-------------|----------------|--------
+        // 0x0000 | 73<factory> | push20 <addr>  | <factory>
+        // 0x0015 | 33          | address        | <caller> <factory>
+        // 0x0016 | 14          | eq             | access
+        // 0x0017 | 6013        | push1 0x13     | 0x13 access
+        // 0x0019 | 36          | calldatasize   | cds 0x13 access
+        // 0x001a | 11          | gt             | (cds>0x13) access
+        // 0x001b | 16          | and            | (cds>0x13 && access)
+        // 0x001c | 6022        | push1 0x22     | 0x22 (cds>0x13 && access)
+        // 0x001e | 57          | jumpi          | 0x22 (cds>0x13 && access)
+        // 0x001f | 5f          | push0          | 0
+        // 0x0020 | 5f          | push0          | 0 0
+        // 0x0021 | fd          | revert         |
+        // 0x0022 | 5b          | jumpdest       |
+        // 0x0023 | 6014        | push1 0x14     | 0x14
+        // 0x0025 | 36          | calldatasize   | cds 0x14
+        // 0x0026 | 03          | sub            | (cds-0x14)
+        // 0x0027 | 6014        | push1 0x14     | 0x14 (cds-0x14)
+        // 0x0029 | 5f          | push0          | 0 0x14 (cds-0x14)
+        // 0x002a | 37          | calldatacopy   |
+        // 0x002b | 5f          | push0          | 0
+        // 0x002c | 5f          | push0          | 0 0
+        // 0x002d | 6014        | push1 0x14     | 0x14 0 0
+        // 0x002f | 36          | calldatasize   | cds 0x14 0 0
+        // 0x0030 | 03          | sub            | (cds-0x14) 0 0
+        // 0x0031 | 5f          | push0          | 0 (cds-0x14) 0 0
+        // 0x0032 | 34          | callvalue      | value 0 (cds-0x14) 0 0
+        // 0x0033 | 5f          | push0          | 0 value 0 (cds-0x14) 0 0
+        // 0x0034 | 35          | calldataload   | cd[0] value 0 (cds-0x14) 0 0
+        // 0x0035 | 6060        | push1 0x60     | 0x60 cd[0] value 0 (cds-0x14) 0 0
+        // 0x0037 | 1c          | shr            | target value 0 (cds-0x14) 0 0
+        // 0x0038 | 5a          | gas            | gas target value 0 (cds-0x14) 0 0
+        // 0x0039 | f1          | call           | suc
+        // 0x003a | 3d          | returndatasize | rds suc
+        // 0x003b | 5f          | push0          | 0 rds suc
+        // 0x003c | 5f          | push0          | 0 0 rds suc
+        // 0x003d | 3e          | returndatacopy | suc
+        // 0x003e | 5f          | push0          | 0 suc
+        // 0x003f | 3d          | returndatasize | rds 0 suc
+        // 0x0040 | 91          | swap2          | suc 0 rds
+        // 0x0041 | 6045        | push1 0x45     | 0x45 suc 0 rds
+        // 0x0043 | 57          | jumpi          | 0 rds
+        // 0x0044 | fd          | revert         |
+        // 0x0045 | 5b          | jumpdest       | 0 rds
+        // 0x0046 | f3          | return         |
+
+        assembly ("memory-safe") {
+            let fmp := mload(0x40)
+
+            // build initcode at FMP
+            mstore(add(fmp, 0x46), 0x60145f375f5f601436035f345f3560601c5af13d5f5f3e5f3d91604557fd5bf3)
+            mstore(add(fmp, 0x26), 0x331460133611166022575f5ffd5b60143603)
+            mstore(add(fmp, 0x14), address())
+            mstore(add(fmp, 0), 0x5f604780600a5f3981f373)
+            let initcodehash := keccak256(add(fmp, 0x15), 0x51)
+
+            // compute create2 address
+            mstore(0x40, initcodehash)
+            mstore(0x20, salt)
+            mstore(0x00, address())
+            mstore8(0x0b, 0xff)
+            relayer := and(keccak256(0x0b, 0x55), shr(96, not(0)))
+
+            // is relayer not yet deployed, deploy it
+            if iszero(extcodesize(relayer)) {
+                if iszero(create2(0, add(fmp, 0x15), 0x51, salt)) {
+                    returndatacopy(fmp, 0, returndatasize())
+                    revert(fmp, returndatasize())
+                }
+            }
+
+            // cleanup fmp space used as scratch
+            mstore(0x40, fmp)
+        }
+
+        // For reference: equivalent in solidity
+        // bytes memory initcode = abi.encodePacked(hex"5f604780600a5f3981f373", address(this), hex"331460133611166022575f5ffd5b6014360360145f375f5f601436035f345f3560601c5af13d5f5f3e5f3d91604557fd5bf3");
+        // address relayer = Create2.computeAddress(salt, keccak256(initcode));
+        // if (relayer.code.length == 0) {
+        //     Create2.deploy(0, salt, initcode);
+        // }
+        // return relayer;
+    }
+}