Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: OptimismPortal wd invalidation mitigation #77

Merged
merged 2 commits into from
Oct 28, 2024
Merged

feat: OptimismPortal wd invalidation mitigation #77

merged 2 commits into from
Oct 28, 2024
+83 −0

Conversation

smartcontracts
Copy link
Contributor

Introduces a proposal that would prevent user withdrawals in the OptimismPortal from being invalidated any time that the fallback is utilized.

@smartcontracts
feat: OptimismPortal wd invalidation mitigation
ab7aafb 
Introduces a proposal that would prevent user withdrawals in the
OptimismPortal from being invalidated any time that the fallback
is utilized.
ajsutton
ajsutton reviewed Sep 15, 2024
View reviewed changes
Copy link
Contributor

@ajsutton ajsutton left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm in favour of this change. The validity checks are still really simple and it gives the guardian significantly more flexibility. The concern about user impact affects the guardian decision making process even if the actual impact winds up being small so providing better tools to simplify the decision making process seems well worth it to me.

@smartcontracts @wildmolasses
Update protocol/proofs/withdrawal-invalidation-mitigation.md
df63ea0 
Co-authored-by: Ed Mazurek <Edward.R.Mazurek@gmail.com>
clabby
clabby reviewed Sep 18, 2024
View reviewed changes
Copy link
Member

@clabby clabby left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This looks good to me. Simple enough to change up. Also will include some changes to the deputy guardian.

@smartcontracts
Copy link
Contributor Author

Reminder to self: do not allow invalidation timestamp to be greater than current timestamp

Ethnical
Ethnical previously approved these changes Sep 20, 2024
View reviewed changes
Copy link
Contributor

@Ethnical Ethnical left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Agreed, and let a comment but the rest looks a nice initiative to me!

This was referenced Sep 27, 2024
Open
Closed
@smartcontracts smartcontracts mentioned this pull request Oct 9, 2024
Closed
@smartcontracts smartcontracts dismissed Ethnical’s stale review October 19, 2024 04:56

Need fresh approvals

wildmolasses
wildmolasses approved these changes Oct 22, 2024
View reviewed changes
Copy link
Contributor

@wildmolasses wildmolasses left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm; looks like this doc defers on variable naming, i'll assume it comes during spec/impl phase 👍

@anikaraghu
Copy link

@smartcontracts a bit late to the game here, but wondering if there will be a way to have presigned fallbacks to the permissioned game that do invalidate all existing games (for incident response scenario). was chatting with @elihaims about this today and this could be really helpful to prevent a scenario in which we need to pause the whole bridge to remedy a widespread issue

@smartcontracts
Copy link
Contributor Author

@smartcontracts a bit late to the game here, but wondering if there will be a way to have presigned fallbacks to the permissioned game that do invalidate all existing games (for incident response scenario). was chatting with @elihaims about this today and this could be really helpful to prevent a scenario in which we need to pause the whole bridge to remedy a widespread issue

Fallback can be triggered by the Guardian so it should be possible to have pre-signed fallbacks that do invalidate existing games. Can account for this in the spec with a function that triggers the fallback + sets the invalidation timestamp to the current timestamp (this way you don't need to know the timestamp that you'll be using ahead of time).

Worth noting that you would need to have pre-signed fallbacks that have the same nonces as pre-signed pauses, but that's fine imo.

@smartcontracts smartcontracts merged commit a8cf8d3 into main Oct 28, 2024
@smartcontracts smartcontracts deleted the sc/fix-wd-invalidation branch October 28, 2024 08:06
@wildmolasses wildmolasses mentioned this pull request Dec 5, 2024
Draft
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@clabby clabby clabby left review comments

@wildmolasses wildmolasses wildmolasses approved these changes

@ajsutton ajsutton ajsutton approved these changes

@Ethnical Ethnical Ethnical left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@smartcontracts @anikaraghu @ajsutton @wildmolasses @clabby @Ethnical