Dispute game compatible wd mon (#10375)

* adding fault-wd-mon * adding faultproof wd-mon * adding faultproof wd-mon * fixing docker file * fixing how we get disputegame given a withdrawal log * code review fix * fix type

Dispute game compatible wd mon (#10375)
* adding fault-wd-mon * adding faultproof wd-mon * adding faultproof wd-mon * fixing docker file * fixing how we get disputegame given a withdrawal log * code review fix * fix type
101ad1a0 · Raffaele · GitHub · eba81875 · 101ad1a0 · 101ad1a0
Commit 101ad1a0 authored May 07, 2024 by Raffaele Committed by GitHub May 07, 2024
5 changed files
--- a/ops/docker/Dockerfile.packages
+++ b/ops/docker/Dockerfile.packages
@@ -122,6 +122,10 @@ FROM base as wd-mon
 WORKDIR /opt/optimism/packages/chain-mon/
 CMD ["start:wd-mon"]
+FROM base as faultproof-wd-mon
+WORKDIR /opt/optimism/packages/chain-mon/
+CMD ["start:faultproof-wd-mon"]
 FROM base as contracts-bedrock
 WORKDIR /opt/optimism/packages/contracts-bedrock
 CMD ["deploy"]
--- a/packages/chain-mon/package.json
+++ b/packages/chain-mon/package.json
@@ -16,6 +16,7 @@
    "dev:replica-mon": "tsx watch ./contrib/replica-mon/service.ts",
    "dev:wallet-mon": "tsx watch ./contrib/wallet-mon/service.ts",
    "dev:wd-mon": "tsx watch ./src/wd-mon/service.ts",
+    "dev:faultproof-wd-mon": "tsx ./src/faultproof-wd-mon/service.ts",
    "dev:initialized-upgraded-mon": "tsx watch ./contrib/initialized-upgraded-mon/service.ts",
    "start:balance-mon": "tsx ./internal/balance-mon/service.ts",
    "start:drippie-mon": "tsx ./contrib/drippie/service.ts",
@@ -24,6 +25,7 @@
    "start:replica-mon": "tsx ./contrib/replica-mon/service.ts",
    "start:wallet-mon": "tsx ./contrib/wallet-mon/service.ts",
    "start:wd-mon": "tsx ./src/wd-mon/service.ts",
+    "start:faultproof-wd-mon": "tsx ./src/faultproof-wd-mon/service.ts",
    "start:initialized-upgraded-mon": "tsx ./contrib/initialized-upgraded-mon/service.ts",
    "test": "hardhat test",
    "test:coverage": "nyc hardhat test && nyc merge .nyc_output coverage.json",

--- a/packages/chain-mon/src/faultproof-wd-mon/constants.ts
+++ b/packages/chain-mon/src/faultproof-wd-mon/constants.ts
+import { L2ChainID } from '@eth-optimism/sdk'
+// TODO: Consider moving to `@eth-optimism/constants` and generating from superchain registry.
+// @see https://github.com/ethereum-optimism/optimism/pull/9041
+/**
+ * Mapping of L2ChainIDs to the L1 block numbers where the wd-mon service should start looking for
+ * withdrawals by default. L1 block numbers here are based on the block number in which the
+ * OptimismPortal proxy contract was deployed to L1.
+ */
+export const DEFAULT_STARTING_BLOCK_NUMBERS: {
+  [ChainID in L2ChainID]?: number
+} = {
+  [L2ChainID.OPTIMISM]: 17365802 as const,
+  [L2ChainID.OPTIMISM_GOERLI]: 8299684 as const,
+  [L2ChainID.OPTIMISM_SEPOLIA]: 4071248 as const,
+  [L2ChainID.BASE_MAINNET]: 17482143 as const,
+  [L2ChainID.BASE_GOERLI]: 8411116 as const,
+  [L2ChainID.BASE_SEPOLIA]: 4370901 as const,
+  [L2ChainID.ZORA_MAINNET]: 17473938 as const,
+}
--- a/packages/chain-mon/src/faultproof-wd-mon/service.ts
+++ b/packages/chain-mon/src/faultproof-wd-mon/service.ts
+import {
+  BaseServiceV2,
+  StandardOptions,
+  ExpressRouter,
+  Gauge,
+  validators,
+  waitForProvider,
+} from '@eth-optimism/common-ts'
+import {
+  getOEContract,
+  DEFAULT_L2_CONTRACT_ADDRESSES,
+  makeStateTrieProof,
+  toJsonRpcProvider,
+} from '@eth-optimism/sdk'
+import { getChainId, sleep, toRpcHexString } from '@eth-optimism/core-utils'
+import { Provider } from '@ethersproject/abstract-provider'
+import { ethers } from 'ethers'
+import dateformat from 'dateformat'
+import { version } from '../../package.json'
+import { DEFAULT_STARTING_BLOCK_NUMBERS } from './constants'
+type Options = {
+  l1RpcProvider: Provider
+  l2RpcProvider: Provider
+  optimismPortalAddress: string
+  l2ToL1MessagePasserAddress: string
+  startBlockNumber: number
+  eventBlockRange: number
+  sleepTimeMs: number
+}
+type Metrics = {
+  highestCheckedBlockNumber: Gauge
+  highestKnownBlockNumber: Gauge
+  withdrawalsValidated: Gauge
+  invalidProposalWithdrawals: Gauge
+  invalidProofWithdrawals: Gauge
+  isDetectingForgeries: Gauge
+  nodeConnectionFailures: Gauge
+}
+type State = {
+  portal: ethers.Contract
+  messenger: ethers.Contract
+  highestUncheckedBlockNumber: number
+  faultProofWindow: number
+  forgeryDetected: boolean
+  invalidProposalWithdrawals: Array<{
+    withdrawalHash: string
+    senderAddress: string
+    disputeGame: ethers.Contract
+  }>
+  invalidProofWithdrawals: Array<{
+    withdrawalHash: string
+    senderAddress: string
+    disputeGame: ethers.Contract
+  }>
+}
+enum GameStatus {
+  // The game is currently in progress, and has not been resolved.
+  IN_PROGRESS,
+  // The game has concluded, and the `rootClaim` was challenged successfully.
+  CHALLENGER_WINS,
+  // The game has concluded, and the `rootClaim` could not be contested.
+  DEFENDER_WINS,
+}
+export class FaultProofWithdrawalMonitor extends BaseServiceV2<
+  Options,
+  Metrics,
+  State
+> {
+  /**
+   * Contract objects attached to their respective providers and addresses.
+   */
+  public l2ChainId: number
+  constructor(options?: Partial<Options & StandardOptions>) {
+    super({
+      version,
+      name: 'two-step-monitor',
+      loop: true,
+      options: {
+        loopIntervalMs: 1000,
+        ...options,
+      },
+      optionsSpec: {
+        l1RpcProvider: {
+          validator: validators.provider,
+          desc: 'Provider for interacting with L1',
+        },
+        l2RpcProvider: {
+          validator: validators.provider,
+          desc: 'Provider for interacting with L2',
+        },
+        optimismPortalAddress: {
+          validator: validators.address,
+          default: null,
+          desc: 'Address of the OptimismPortal proxy contract on L1',
+          public: true,
+        },
+        l2ToL1MessagePasserAddress: {
+          validator: validators.address,
+          default: DEFAULT_L2_CONTRACT_ADDRESSES.BedrockMessagePasser as string,
+          desc: 'Address of the L2ToL1MessagePasser contract on L2',
+          public: true,
+        },
+        startBlockNumber: {
+          validator: validators.num,
+          default: -1,
+          desc: 'L1 block number to start checking from',
+          public: true,
+        },
+        eventBlockRange: {
+          validator: validators.num,
+          default: 2000,
+          desc: 'Number of blocks to query for events over per loop',
+          public: true,
+        },
+        sleepTimeMs: {
+          validator: validators.num,
+          default: 15000,
+          desc: 'Time in ms to sleep when waiting for a node',
+          public: true,
+        },
+      },
+      metricsSpec: {
+        highestCheckedBlockNumber: {
+          type: Gauge,
+          desc: 'Highest L1 block number that we have searched.',
+          labels: ['type'],
+        },
+        highestKnownBlockNumber: {
+          type: Gauge,
+          desc: 'Highest L1 block number that we have seen.',
+          labels: ['type'],
+        },
+        invalidProposalWithdrawals: {
+          type: Gauge,
+          desc: 'Number of withdrawals against invalid proposals.',
+          labels: ['type'],
+        },
+        invalidProofWithdrawals: {
+          type: Gauge,
+          desc: 'Number of withdrawals with invalid proofs.',
+          labels: ['type'],
+        },
+        withdrawalsValidated: {
+          type: Gauge,
+          desc: 'Latest L1 Block (checked and known)',
+          labels: ['type'],
+        },
+        isDetectingForgeries: {
+          type: Gauge,
+          desc: '0 if state is ok. 1 or more if forged withdrawals are detected.',
+        },
+        nodeConnectionFailures: {
+          type: Gauge,
+          desc: 'Number of times node connection has failed',
+          labels: ['layer', 'section'],
+        },
+      },
+    })
+  }
+  async init(): Promise<void> {
+    // Connect to L1.
+    await waitForProvider(this.options.l1RpcProvider, {
+      logger: this.logger,
+      name: 'L1',
+    })
+    // Connect to L2.
+    await waitForProvider(this.options.l2RpcProvider, {
+      logger: this.logger,
+      name: 'L2',
+    })
+    // Need L2 chain ID to resolve contract addresses.
+    const l2ChainId = await getChainId(this.options.l2RpcProvider)
+    this.l2ChainId = l2ChainId
+    // Create the OptimismPortal contract instance. If the optimismPortal option is not provided
+    // then the SDK will attempt to resolve the address automatically based on the L2 chain ID. If
+    // the SDK isn't aware of the L2 chain ID then it will throw an error that makes it clear the
+    // user needs to provide this value explicitly.
+    this.state.portal = getOEContract('OptimismPortal2', l2ChainId, {
+      signerOrProvider: this.options.l1RpcProvider,
+      address: this.options.optimismPortalAddress,
+    })
+    // Create the L2ToL1MessagePasser contract instance. If the l2ToL1MessagePasser option is not
+    // provided then we'll use the default address which typically should be correct. It's very
+    // unlikely that any user would change this address so this should work in 99% of cases. If we
+    // really wanted to be extra safe we could do some sanity checks to make sure the contract has
+    // the interface we need but doesn't seem important for now.
+    this.state.messenger = getOEContract('L2ToL1MessagePasser', l2ChainId, {
+      signerOrProvider: this.options.l2RpcProvider,
+      address: this.options.l2ToL1MessagePasserAddress,
+    })
+    // Previous versions of wd-mon would try to pick the starting block number automatically but
+    // this had the possibility of missing certain withdrawals if the service was restarted at the
+    // wrong time. Given the added complexity of finding a starting point automatically after FPAC,
+    // it's much easier to simply start a fixed block number than trying to do something fancy. Use
+    // the default configured in this service or use zero if no default is defined.
+    this.state.highestUncheckedBlockNumber = this.options.startBlockNumber
+    if (this.options.startBlockNumber === -1) {
+      this.state.highestUncheckedBlockNumber =
+        DEFAULT_STARTING_BLOCK_NUMBERS[l2ChainId] || 0
+    }
+    // Default state is that forgeries have not been detected.
+    this.state.forgeryDetected = false
+    this.state.invalidProposalWithdrawals = []
+    this.state.invalidProofWithdrawals = []
+  }
+  // K8s healthcheck
+  async routes(router: ExpressRouter): Promise<void> {
+    router.get('/healthz', async (req, res) => {
+      return res.status(200).json({
+        ok: !this.state.forgeryDetected,
+      })
+    })
+  }
+  async main(): Promise<void> {
+    this.metrics.isDetectingForgeries.set(Number(this.state.forgeryDetected))
+    this.metrics.invalidProposalWithdrawals.set(
+      this.state.invalidProposalWithdrawals.length
+    )
+    this.metrics.invalidProofWithdrawals.set(
+      this.state.invalidProofWithdrawals.length
+    )
+    for (
+      let i = this.state.invalidProposalWithdrawals.length - 1;
+      i >= 0;
+      i--
+    ) {
+      const disputeGameData = this.state.invalidProposalWithdrawals[i]
+      const disputeGame = disputeGameData.disputeGame
+      const disputeGameAddress = disputeGame.address
+      const isGameBlacklisted =
+        this.state.portal.disputeGameBlacklist(disputeGameAddress)
+      if (isGameBlacklisted) {
+        this.state.invalidProposalWithdrawals.splice(i, 1)
+      } else {
+        const status = await disputeGame.status()
+        if (status === GameStatus.CHALLENGER_WINS) {
+          this.state.invalidProposalWithdrawals.splice(i, 1)
+        } else if (status === GameStatus.DEFENDER_WINS) {
+          this.state.forgeryDetected = true
+          this.metrics.isDetectingForgeries.set(
+            Number(this.state.forgeryDetected)
+          )
+        }
+      }
+    }
+    // Get the latest L1 block number.
+    let latestL1BlockNumber: number
+    try {
+      latestL1BlockNumber = await this.options.l1RpcProvider.getBlockNumber()
+    } catch (err) {
+      // Log the issue so we can debug it.
+      this.logger.error(`got error when connecting to node`, {
+        error: err,
+        node: 'l1',
+        section: 'getBlockNumber',
+      })
+      // Increment the metric so we can detect the issue.
+      this.metrics.nodeConnectionFailures.inc({
+        layer: 'l1',
+        section: 'getBlockNumber',
+      })
+      // Sleep for a little to give intermittent errors a chance to recover.
+      return sleep(this.options.sleepTimeMs)
+    }
+    // Update highest block number metrics so we can keep track of how the service is doing.
+    this.metrics.highestKnownBlockNumber.set(latestL1BlockNumber)
+    this.metrics.highestCheckedBlockNumber.set(
+      this.state.highestUncheckedBlockNumber
+    )
+    // Check if the RPC provider is behind us for some reason. Can happen occasionally,
+    // particularly if connected to an RPC provider that load balances over multiple nodes that
+    // might not be perfectly in sync.
+    if (latestL1BlockNumber <= this.state.highestUncheckedBlockNumber) {
+      // Sleep for a little to give the RPC a chance to catch up.
+      return sleep(this.options.sleepTimeMs)
+    }
+    // Generally better to use a relatively small block range because it means this service can be
+    // used alongside many different types of L1 nodes. For instance, Geth will typically only
+    // support a block range of 2000 blocks out of the box.
+    const toBlockNumber = Math.min(
+      this.state.highestUncheckedBlockNumber + this.options.eventBlockRange,
+      latestL1BlockNumber
+    )
+    // Useful to log this stuff just in case we get stuck or something.
+    this.logger.info(`checking recent blocks`, {
+      fromBlockNumber: this.state.highestUncheckedBlockNumber,
+      toBlockNumber,
+    })
+    // Query for WithdrawalProven events within the specified block range.
+    let events: ethers.Event[]
+    try {
+      events = await this.state.portal.queryFilter(
+        this.state.portal.filters.WithdrawalProven(),
+        this.state.highestUncheckedBlockNumber,
+        toBlockNumber
+      )
+    } catch (err) {
+      // Log the issue so we can debug it.
+      this.logger.error(`got error when connecting to node`, {
+        error: err,
+        node: 'l1',
+        section: 'querying for WithdrawalProven events',
+      })
+      // Increment the metric so we can detect the issue.
+      this.metrics.nodeConnectionFailures.inc({
+        layer: 'l1',
+        section: 'querying for WithdrawalProven events',
+      })
+      // Sleep for a little to give intermittent errors a chance to recover.
+      return sleep(this.options.sleepTimeMs)
+    }
+    // Go over all the events and check if the withdrawal hash actually exists on L2.
+    for (const event of events) {
+      // If this loop throws for whatever reason then the same event may be dropped into
+      // invalidProposalWithdrawals or invalidProofWithdrawals more than once. This can lead to
+      // inflated metrics. However, it's worth noting that inflated metrics are preferred over not
+      // incrementing the metrics at all. Documenting this behavior for future reference.
+      // Grab and format the timestamp for logging purposes.
+      const block = await event.getBlock()
+      const ts = `${dateformat(
+        new Date(block.timestamp * 1000),
+        'mmmm dS, yyyy, h:MM:ss TT',
+        true
+      )} UTC`
+      // Could consider using multicall here but this is efficient enough for now.
+      const hash = event.args.withdrawalHash
+      const disputeGamesData = await this.getWithdrawalDisputeGames(event)
+      for (const disputeGameData of disputeGamesData) {
+        const disputeGame = disputeGameData.disputeGame
+        const rootClaim = await disputeGame.rootClaim()
+        const l2BlockNumber = await disputeGame.l2BlockNumber()
+        const isValidRoot = await this.isValidOutputRoot(
+          rootClaim,
+          l2BlockNumber
+        )
+        if (isValidRoot) {
+          // Check if the withdrawal exists on L2.
+          const exists = await this.state.messenger.sentMessages(hash)
+          // Hopefully the withdrawal exists!
+          if (exists) {
+            // Unlike below we don't grab the timestamp here because it adds an unnecessary request.
+            this.logger.info(`valid withdrawal`, {
+              withdrawalHash: event.args.withdrawalHash,
+            })
+            // Bump the withdrawals metric so we can keep track.
+            this.metrics.withdrawalsValidated.inc()
+          } else {
+            this.state.invalidProofWithdrawals.push(disputeGameData)
+            // Uh oh!
+            this.logger.error(`withdrawalHash not seen on L2`, {
+              withdrawalHash: event.args.withdrawalHash,
+              provenAt: ts,
+            })
+            // Change to forgery state.
+            this.state.forgeryDetected = true
+            this.metrics.isDetectingForgeries.set(
+              Number(this.state.forgeryDetected)
+            )
+          }
+        } else {
+          this.state.invalidProposalWithdrawals.push(disputeGameData)
+          this.logger.info(`invalid proposal`, {
+            withdrawalHash: event.args.withdrawalHash,
+            provenAt: ts,
+          })
+        }
+      }
+    }
+    // Increment the highest unchecked block number for the next loop.
+    this.state.highestUncheckedBlockNumber = toBlockNumber
+  }
+  /**
+   * Retrieves the dispute games data associated with a withdrawal hash associated in an event.
+   *
+   * @param event The event containing the withdrawal hash.
+   * @returns An array of objects containing the withdrawal hash, sender address, and dispute game address.
+   */
+  async getWithdrawalDisputeGames(event: ethers.Event): Promise<
+    Array<{
+      withdrawalHash: string
+      senderAddress: string
+      disputeGame: ethers.Contract
+    }>
+  > {
+    const withdrawalHash = event.args.withdrawalHash
+    const disputeGameMap: Array<{
+      withdrawalHash: string
+      senderAddress: string
+      disputeGame: ethers.Contract
+    }> = []
+    const numProofSubmitter = await this.state.portal.numProofSubmitters(
+      withdrawalHash
+    )
+    // iterate for numProofSubmitter
+    const proofSubmitterAddresses = await Promise.all(
+      Array.from({ length: numProofSubmitter.toNumber() }, (_, i) =>
+        this.state.portal.proofSubmitters(withdrawalHash, i)
+      )
+    )
+    // Iterate for proofSubmitterAddresses and query provenWithdrawals to get the disputeGameProxy for each proofSubmitter
+    // Note: In the future, if rate limiting becomes an issue, consider breaking up this loop into smaller chunks.
+    await Promise.all(
+      proofSubmitterAddresses.map(async (proofSubmitter) => {
+        const provenWithdrawals_ = await this.state.portal.provenWithdrawals(
+          withdrawalHash,
+          proofSubmitter
+        )
+        const disputeGame_ = await this.getDisputeGameFromAddress(
+          provenWithdrawals_['disputeGameProxy']
+        )
+        disputeGameMap.push({
+          withdrawalHash,
+          senderAddress: proofSubmitter,
+          disputeGame: disputeGame_,
+        })
+      })
+    )
+    return disputeGameMap
+  }
+  /**
+   * Retrieves the FaultDisputeGame contract instance given the dispute game proxy address.
+   *
+   * @param disputeGameProxyAddress The address of the dispute game proxy contract.
+   * @returns The FaultDisputeGame contract instance.
+   */
+  async getDisputeGameFromAddress(
+    disputeGameProxyAddress: string
+  ): Promise<ethers.Contract> {
+    // Create the FaultDisputeGame contract instance using the provided dispute game proxy address.
+    const FaultDisputeGame = getOEContract('FaultDisputeGame', this.l2ChainId, {
+      signerOrProvider: this.options.l1RpcProvider,
+      address: disputeGameProxyAddress,
+    })
+    return FaultDisputeGame
+  }
+  /**
+   * A private cache to store the validity of output roots.
+   * The cache is implemented as a Map, where the key is a combination of the output root and the L2 block number,
+   * and the value is a boolean indicating if the output root is valid.
+   */
+  private outputRootCache: Map<string, boolean> = new Map<string, boolean>()
+  /**
+   * The maximum size of the output root cache.
+   * Once the cache reaches this size, the oldest entries will be automatically evicted to make room for new entries.
+   */
+  private MAX_CACHE_SIZE = 100
+  /**
+   * Checks if the provided output root is valid for the given L2 block number.
+   * Caches the result to improve performance.
+   *
+   * @param outputRoot The output root to validate.
+   * @param l2BlockNumber The L2 block number.
+   * @returns A promise that resolves to a boolean indicating if the output root is valid.
+   */
+  public async isValidOutputRoot(
+    outputRoot: string,
+    l2BlockNumber: number
+  ): Promise<boolean> {
+    const cacheKey = `${outputRoot}-${l2BlockNumber}`
+    const cachedValue = this.outputRootCache.get(cacheKey)
+    if (cachedValue !== undefined) {
+      return cachedValue
+    }
+    try {
+      // Make sure this is a JSON RPC provider.
+      const provider = toJsonRpcProvider(this.options.l2RpcProvider)
+      // Grab the block and storage proof at the same time.
+      const [block, proof] = await Promise.all([
+        provider.send('eth_getBlockByNumber', [
+          toRpcHexString(l2BlockNumber),
+          false,
+        ]),
+        makeStateTrieProof(
+          provider,
+          l2BlockNumber,
+          this.state.messenger.address,
+          ethers.constants.HashZero
+        ),
+      ])
+      // Compute the output.
+      const output = ethers.utils.solidityKeccak256(
+        ['bytes32', 'bytes32', 'bytes32', 'bytes32'],
+        [
+          ethers.constants.HashZero,
+          block.stateRoot,
+          proof.storageRoot,
+          block.hash,
+        ]
+      )
+      // If the output matches the proposal then we're good.
+      const valid = output === outputRoot
+      this.outputRootCache.set(cacheKey, valid)
+      if (this.outputRootCache.size > this.MAX_CACHE_SIZE) {
+        const oldestKey = this.outputRootCache.keys().next().value
+        this.outputRootCache.delete(oldestKey)
+      }
+      return valid
+    } catch (err) {
+      // Assume the game is invalid but don't add it to the cache just in case we had a temp error.
+      return false
+    }
+  }
+}
+if (require.main === module) {
+  const service = new FaultProofWithdrawalMonitor()
+  service.run()
+}
--- a/packages/chain-mon/src/index.ts
+++ b/packages/chain-mon/src/index.ts
@@ -3,5 +3,6 @@ export * from '../contrib/drippie-mon/service'
 export * from './fault-mon/index'
 export * from '../internal/multisig-mon/service'
 export * from './wd-mon/service'
+export * from './faultproof-wd-mon/service'
 export * from '../contrib/wallet-mon/service'
 export * from '../contrib/initialized-upgraded-mon/service'