Files
smom-dbis-138/docs/bridge/trustless/INTEGRATION.md

215 lines
5.7 KiB
Markdown
Raw Normal View History

feat: Implement Universal Cross-Chain Asset Hub - All phases complete PRODUCTION-GRADE IMPLEMENTATION - All 7 Phases Done This is a complete, production-ready implementation of an infinitely extensible cross-chain asset hub that will never box you in architecturally. ## Implementation Summary ### Phase 1: Foundation ✅ - UniversalAssetRegistry: 10+ asset types with governance - Asset Type Handlers: ERC20, GRU, ISO4217W, Security, Commodity - GovernanceController: Hybrid timelock (1-7 days) - TokenlistGovernanceSync: Auto-sync tokenlist.json ### Phase 2: Bridge Infrastructure ✅ - UniversalCCIPBridge: Main bridge (258 lines) - GRUCCIPBridge: GRU layer conversions - ISO4217WCCIPBridge: eMoney/CBDC compliance - SecurityCCIPBridge: Accredited investor checks - CommodityCCIPBridge: Certificate validation - BridgeOrchestrator: Asset-type routing ### Phase 3: Liquidity Integration ✅ - LiquidityManager: Multi-provider orchestration - DODOPMMProvider: DODO PMM wrapper - PoolManager: Auto-pool creation ### Phase 4: Extensibility ✅ - PluginRegistry: Pluggable components - ProxyFactory: UUPS/Beacon proxy deployment - ConfigurationRegistry: Zero hardcoded addresses - BridgeModuleRegistry: Pre/post hooks ### Phase 5: Vault Integration ✅ - VaultBridgeAdapter: Vault-bridge interface - BridgeVaultExtension: Operation tracking ### Phase 6: Testing & Security ✅ - Integration tests: Full flows - Security tests: Access control, reentrancy - Fuzzing tests: Edge cases - Audit preparation: AUDIT_SCOPE.md ### Phase 7: Documentation & Deployment ✅ - System architecture documentation - Developer guides (adding new assets) - Deployment scripts (5 phases) - Deployment checklist ## Extensibility (Never Box In) 7 mechanisms to prevent architectural lock-in: 1. Plugin Architecture - Add asset types without core changes 2. Upgradeable Contracts - UUPS proxies 3. Registry-Based Config - No hardcoded addresses 4. Modular Bridges - Asset-specific contracts 5. Composable Compliance - Stackable modules 6. Multi-Source Liquidity - Pluggable providers 7. Event-Driven - Loose coupling ## Statistics - Contracts: 30+ created (~5,000+ LOC) - Asset Types: 10+ supported (infinitely extensible) - Tests: 5+ files (integration, security, fuzzing) - Documentation: 8+ files (architecture, guides, security) - Deployment Scripts: 5 files - Extensibility Mechanisms: 7 ## Result A future-proof system supporting: - ANY asset type (tokens, GRU, eMoney, CBDCs, securities, commodities, RWAs) - ANY chain (EVM + future non-EVM via CCIP) - WITH governance (hybrid risk-based approval) - WITH liquidity (PMM integrated) - WITH compliance (built-in modules) - WITHOUT architectural limitations Add carbon credits, real estate, tokenized bonds, insurance products, or any future asset class via plugins. No redesign ever needed. Status: Ready for Testing → Audit → Production
2026-01-24 07:01:37 -08:00
# Trustless Bridge Integration Guide
## Overview
This guide explains how to integrate with the trustless bridge system as a user, relayer, challenger, or liquidity provider.
## For Users: Depositing and Receiving Funds
### Depositing from ChainID 138
1. **Deposit Native ETH**:
```solidity
// On ChainID 138
Lockbox138 lockbox = Lockbox138(LOCKBOX138_ADDRESS);
bytes32 nonce = keccak256(abi.encodePacked(recipient, block.timestamp));
uint256 depositId = lockbox.depositNative{value: amount}(recipient, nonce);
```
2. **Deposit ERC-20 Token (WETH)**:
```solidity
// On ChainID 138
IERC20(token).approve(LOCKBOX138_ADDRESS, amount);
uint256 depositId = lockbox.depositERC20(token, amount, recipient, nonce);
```
3. **Wait for Relayer**: A relayer will submit your claim to Ethereum (typically within minutes)
4. **Receive on Ethereum**: After challenge window (30 min), funds are available on Ethereum
### Receiving Funds on Ethereum
Funds are automatically available after:
- Claim is submitted by relayer
- Challenge window expires (30 minutes) without challenge
- Claim is finalized
## For Relayers: Submitting Claims
### Setup
1. **Deploy Relayer Service**: See `services/relayer/trustless-bridge-relayer/`
2. **Configure Environment**:
```bash
export CHAIN138_RPC_URL="https://rpc.d-bis.org"
export ETHEREUM_RPC_URL="https://eth.llamarpc.com"
export LOCKBOX138_ADDRESS="0x..."
export INBOX_ETH_ADDRESS="0x..."
export BOND_MANAGER_ADDRESS="0x..."
export RELAYER_PRIVATE_KEY="0x..."
```
3. **Fund Relayer Address**: Ensure relayer has sufficient ETH for:
- Gas fees
- Bonds (110% of deposit amount, minimum 1 ETH)
### Running the Relayer
```bash
cd services/relayer/trustless-bridge-relayer
npm install
npm start
```
The relayer will:
- Monitor `Deposit` events on ChainID 138
- Submit claims to `InboxETH` on Ethereum
- Post required bonds automatically
- Earn relay fees (if configured)
### Economics
- **Costs**: Gas fees + bonds (returned after finalization)
- **Revenue**: Relay fees (future feature)
- **Risk**: Bond slashed if claim is fraudulent
## For Challengers: Monitoring and Challenging
### Setup
1. **Deploy Challenger Service**: See `services/challenger/trustless-bridge-challenger/`
2. **Configure Environment**:
```bash
export CHAIN138_RPC_URL="https://rpc.d-bis.org"
export ETHEREUM_RPC_URL="https://eth.llamarpc.com"
export LOCKBOX138_ADDRESS="0x..."
export INBOX_ETH_ADDRESS="0x..."
export CHALLENGE_MANAGER_ADDRESS="0x..."
export CHALLENGER_PRIVATE_KEY="0x..."
```
3. **Fund Challenger Address**: Need ETH for gas fees
### Running the Challenger
```bash
cd services/challenger/trustless-bridge-challenger
npm install
npm start
```
The challenger will:
- Monitor `ClaimSubmitted` events on Ethereum
- Verify claims against source chain (ChainID 138)
- Submit challenges with fraud proofs when invalid claims detected
- Earn 50% of slashed bond as reward
### Economics
- **Costs**: Gas fees for challenges
- **Revenue**: 50% of slashed bond
- **Incentive**: Economic reward for detecting fraud
## For Liquidity Providers: Providing Liquidity
### Providing ETH Liquidity
```solidity
// On Ethereum
LiquidityPoolETH pool = LiquidityPoolETH(LIQUIDITY_POOL_ADDRESS);
pool.provideLiquidity{value: amount}(LiquidityPoolETH.AssetType.ETH);
```
### Providing WETH Liquidity
```solidity
// On Ethereum
IERC20(weth).approve(LIQUIDITY_POOL_ADDRESS, amount);
pool.depositWETH(amount);
```
### Withdrawing Liquidity
```solidity
// Withdraw ETH
pool.withdrawLiquidity(amount, LiquidityPoolETH.AssetType.ETH);
// Withdraw WETH
pool.withdrawLiquidity(amount, LiquidityPoolETH.AssetType.WETH);
```
**Note**: Withdrawals may be blocked if they would violate minimum liquidity ratio (110% of pending claims).
### Economics
- **Revenue**: 5 bps (0.05%) fee on bridge amounts
- **Risk**: Locked liquidity while claims are pending
- **Returns**: Based on bridge volume and fee rate
## For Developers: Integrating Swap Functionality
### Using BridgeSwapCoordinator
```solidity
// After claim is finalized
BridgeSwapCoordinator coordinator = BridgeSwapCoordinator(COORDINATOR_ADDRESS);
uint256 stablecoinAmount = coordinator.bridgeAndSwap(
depositId,
recipient,
LiquidityPoolETH.AssetType.ETH, // or WETH
USDT_ADDRESS, // or USDC/DAI
amountOutMin, // Slippage protection
"" // Optional route data for 1inch
);
```
### Direct Swap Usage
```solidity
// Swap ETH/WETH to stablecoin
SwapRouter router = SwapRouter(SWAP_ROUTER_ADDRESS);
uint256 stablecoinAmount = router.swapToStablecoin(
LiquidityPoolETH.AssetType.ETH,
USDT_ADDRESS,
amountIn,
amountOutMin,
"" // Optional 1inch route data
);
```
## Security Considerations
1. **Bonds**: Relayers must post bonds exceeding deposit amount (110%)
2. **Challenge Window**: 30 minutes for fraud detection
3. **Liquidity Ratio**: Minimum 110% must remain in pool
4. **Slippage**: Always use `amountOutMin` for swaps
## Monitoring
### Key Events to Monitor
- `Deposit` (Lockbox138): New deposits on ChainID 138
- `ClaimSubmitted` (InboxETH): New claims on Ethereum
- `ClaimChallenged` (ChallengeManager): Claims being challenged
- `FraudProven` (ChallengeManager): Fraud detected, bond slashed
- `ClaimFinalized` (ChallengeManager): Claim finalized, ready for release
- `BridgeSwapExecuted` (BridgeSwapCoordinator): Bridge + swap completed
### Useful Queries
```solidity
// Check claim status
(bool exists, bool finalized, bool challenged, uint256 windowEnd) =
inbox.getClaimStatus(depositId);
// Check bond status
(address relayer, uint256 amount, bool slashed, bool released) =
bondManager.getBond(depositId);
// Check liquidity pool stats
(uint256 total, uint256 pending, uint256 available) =
liquidityPool.getPoolStats(LiquidityPoolETH.AssetType.ETH);
```