2017-08-13 10:46:17 -07:00
# bridge
2017-08-24 09:31:23 -07:00
[![Build Status][travis-image]][travis-url]
2017-12-14 08:52:36 -08:00
[![Solidity Coverage Status][coveralls-image]][coveralls-url] (contracts only)
2017-08-24 09:31:23 -07:00
2017-09-28 15:51:53 -07:00
[travis-image]: https://travis-ci.org/paritytech/parity-bridge.svg?branch=master
[travis-url]: https://travis-ci.org/paritytech/parity-bridge
2017-12-14 08:52:36 -08:00
[coveralls-image]: https://coveralls.io/repos/github/paritytech/parity-bridge/badge.svg?branch=master
[coveralls-url]: https://coveralls.io/github/paritytech/parity-bridge?branch=master
2017-08-24 09:31:23 -07:00
2017-10-10 02:02:46 -07:00
Simple bridge between ValidatorSet-based parity chain (foreign) with any other Parity chain (home).
2017-08-13 10:46:17 -07:00
2017-09-28 16:26:15 -07:00
### build
```
cargo build -p bridge-cli --release
```
### cli options
```
Ethereum-Kovan bridge.
Copyright 2017 Parity Technologies (UK) Limited
Usage:
bridge --config < config > --database < database >
bridge -h | --help
Options:
-h, --help Display help message and exit.
```
- `--config` - location of the configuration file. configuration file must exist
- `--database` - location of the database file. if there is no file at specified location, new bridge contracts will be deployed and new database will be created
### configuration [file example](./examples/config.toml)
```toml
2018-01-09 04:11:23 -08:00
estimated_gas_cost_of_withdraw = 100000
2017-10-10 02:02:46 -07:00
[home]
2017-09-28 16:26:15 -07:00
account = "0x006e27b6a72e1f34c626762f3c4761547aff1421"
ipc = "/Users/marek/Library/Application Support/io.parity.ethereum/jsonrpc.ipc"
required_confirmations = 0
2017-10-10 02:02:46 -07:00
[home.contract]
2017-09-28 16:26:15 -07:00
bin = "contracts/EthereumBridge.bin"
2017-10-10 02:02:46 -07:00
[foreign]
2017-09-28 16:26:15 -07:00
account = "0x006e27b6a72e1f34c626762f3c4761547aff1421"
ipc = "/Users/marek/Library/Application Support/io.parity.ethereum/jsonrpc.ipc"
required_confirmations = 0
2017-10-10 02:02:46 -07:00
[foreign.contract]
2017-09-28 16:26:15 -07:00
bin = "contracts/KovanBridge.bin"
[authorities]
accounts = [
"0x006e27b6a72e1f34c626762f3c4761547aff1421",
"0x006e27b6a72e1f34c626762f3c4761547aff1421",
"0x006e27b6a72e1f34c626762f3c4761547aff1421"
]
required_signatures = 2
[transactions]
2017-10-10 02:02:46 -07:00
home_deploy = { gas = 500000 }
foreign_deploy = { gas = 500000 }
2017-09-28 16:26:15 -07:00
```
2018-01-09 04:11:23 -08:00
#### options
- `estimated_gas_cost_of_withdraw` - how much gas a transaction to `HomeBridge.withdraw` consumes (**required**)
2018-01-10 02:52:09 -08:00
- see [recipient pays relay cost to relaying authority ](#recipient-pays-relay-cost-to-relaying-authority ) below for details
2018-01-09 04:11:23 -08:00
- run [tools/estimate_gas_costs.sh ](tools/estimate_gas_costs.sh ) to compute an estimate
- currently recommended value: `100000`
2017-10-10 02:02:46 -07:00
#### home options
2017-09-28 16:26:15 -07:00
2017-10-10 02:02:46 -07:00
- `home.account` - authority address on the home (**required**)
- `home.ipc` - path to home parity ipc handle (**required**)
- `home.contract.bin` - path to the compiled bridge contract (**required**)
- `home.required_confirmations` - number of confirmation required to consider transaction final on home (default: **12** )
- `home.poll_interval` - specify how often home node should be polled for changes (in seconds, default: **1** )
- `home.request_timeout` - specify request timeout (in seconds, default: **5** )
2017-09-28 16:26:15 -07:00
2017-10-10 02:02:46 -07:00
#### foreign options
2017-09-28 16:26:15 -07:00
2017-10-10 02:02:46 -07:00
- `foreign.account` - authority address on the foreign (**required**)
- `foreign.ipc` - path to foreign parity ipc handle (**required**)
- `foreign.contract.bin` - path to the compiled bridge contract (**required**)
- `foreign.required_confirmations` - number of confirmation required to consider transaction final on foreign (default: **12** )
- `foreign.poll_interval` - specify how often home node should be polled for changes (in seconds, default: **1** )
- `foreign.request_timeout` - specify request timeout (in seconds, default: **5** )
2017-09-28 16:26:15 -07:00
#### authorities options
- `authorities.account` - all authorities (**required**)
- `authorities.required_signatures` - number of authorities signatures required to consider action final (**required**)
#### transaction options
2017-10-10 02:02:46 -07:00
- `transaction.home_deploy.gas` - specify how much gas should be consumed by home contract deploy
- `transaction.home_deploy.gas_price` - specify gas price for home contract deploy
- `transaction.foreign_deploy.gas` - specify how much gas should be consumed by foreign contract deploy
2017-12-09 00:11:40 -08:00
- `transaction.foreign_deploy.gas_price` - specify gas price for foreign contract deploy
2017-09-28 16:26:15 -07:00
- `transaction.deposit_relay.gas` - specify how much gas should be consumed by deposit relay
- `transaction.deposit_relay.gas_price` - specify gas price for deposit relay
- `transaction.withdraw_confirm.gas` - specify how much gas should be consumed by withdraw confirm
- `transaction.withdraw_confirm.gas_price` - specify gas price for withdraw confirm
- `transaction.withdraw_relay.gas` - specify how much gas should be consumed by withdraw relay
- `transaction.withdraw_relay.gas_price` - specify gas price for withdraw relay
### database file format
```toml
2017-10-10 02:02:46 -07:00
home_contract_address = "0x49edf201c1e139282643d5e7c6fb0c7219ad1db7"
foreign_contract_address = "0x49edf201c1e139282643d5e7c6fb0c7219ad1db8"
home_deploy = 100
foreign_deploy = 101
2017-09-28 16:26:15 -07:00
checked_deposit_relay = 120
checked_withdraw_relay = 121
checked_withdraw_confirm = 121
```
**all fields are required**
2017-10-10 02:02:46 -07:00
- `home_contract_address` - address of the bridge contract on home chain
- `foreign_contract_address` - address of the bridge contract on foreign chain
- `home_deploy` - block number at which home contract has been deployed
- `foreign_deploy` - block number at which foreign contract has been deployed
- `checked_deposit_relay` - number of the last block for which an authority has relayed deposits to the foreign
- `checked_withdraw_relay` - number of the last block for which an authority has relayed withdraws to the home
- `checked_withdraw_confirm` - number of the last block for which an authirty has confirmed withdraw
2017-09-28 16:26:15 -07:00
### example run
2017-09-28 16:32:31 -07:00
```
2017-12-09 04:51:59 -08:00
./target/release/bridge --config examples/config.toml --database db.toml
2017-09-28 16:32:31 -07:00
```
- example run requires a parity instance running
- this parity instance can be started by running `examples/parity_start.sh`
2017-10-10 02:02:46 -07:00
- it connects to this parity instance twice. one connection treats the node as `home` , whereas the other as `foreign`
2017-09-28 16:32:31 -07:00
- by default, parity tries to unlock account generates from seedphrase `this is sparta` - `0x006e27b6a72e1f34c626762f3c4761547aff1421`
- this is just an example. the 'real world' bridge needs to connect to the two different parity instances
2017-08-13 10:46:17 -07:00
### deposit
### withdraw
2017-12-14 08:54:49 -08:00
### truffle tests
2018-01-04 04:56:09 -08:00
[requires yarn to be installed ](https://yarnpkg.com/lang/en/docs/install/ )
2017-12-14 08:54:49 -08:00
```
cd truffle
2018-01-04 04:56:09 -08:00
yarn test
2017-12-14 08:54:49 -08:00
```
2018-01-10 02:52:09 -08:00
### recipient pays relay cost to relaying authority
a bridge `authority` has to pay for gas (`cost`) to execute `HomeBridge.withdraw` when
withdrawing `value` from `foreign` to `home` .
`value - cost` is transferred to the `recipient` . `cost` is transferred to the `authority`
doing the relay.
this way the `recipient` pays the relaying `authority` for the execution of the `withdraw` transaction.
that shuts down an attack that exhausts authorities funds on `home` .
read on for a more thorough explanation.
parity-bridge connects a value-bearing `home` ethereum blockchain
(usually the ethereum foundation chain)
to a non-value-bearing PoS `foreign` ethereum blockchain.
value-bearing means that the ether on that chain has usable value in the sense that
in order to obtain it one has to either mine it (trade in electricity)
or trade in another currency.
non-value-bearing means that once can easily obtain a large amount of ether
on that chain for free.
for example through a faucet in the case of testnets.
the bridge authorities are also the validators of the `foreign` PoA chain.
transactions by the authorities are therefore free (gas price = 0) on `foreign` .
to execute a transaction on `home` a bridge authority has to spend ether to
pay for the gas.
this opened up an attack where a malicious user could
deposit a very small amount of wei on `HomeBridge` , get it relayed to `ForeignBridge`
then spam the `ForeignBridge.transfer` with `1` wei withdraws.
it would cost the attacker very little actual `home` chain wei and essentially
free testnet wei to cause the authorities to spend orders of magnitude more wei
to relay the withdraw to `home` by executing `HomeBridge.withdraw` .
an attacker was able to exhaust bridge authorities funds on `home` .
to shut down this attack `HomeBridge.withdraw` was modified so
`value - cost` is transferred to the `recipient` and `cost` is transferred to the `authority`
doing the relay.
this way the `recipient` pays the relaying `authority` for the execution of the `withdraw` transaction.
if the value withdrawn is too low to pay for the relay at current gas prices then
bridge authorities will ignore it. one can think of it as value getting
spent entirely on paying the relay with no value left to pay out the recipient.
`HomeBridge.withdraw` is currently the only transaction bridge authorities execute on `home` .
care must be taken to secure future functions that bridge authorities will execute
on `home` in similar ways.
