Note: Mainnet-beta, testnet, devnet gateway program address:
ZETAjseVjuFsxdRxo6MmTCvqFwb3ZHUx56Co3vCmGis
The PDA account address (derived from seeds b"meta" and canonical bump) is
2f9SLuUNb7TNeM6gzBwT4ZjbL5ZyKzzHg1Ce9yiquEjj
The PDA account address (derived from seeds `b"rent-payer")
Am1aA3XQciu3vMG6E9yLa2Y9TcTf2XB3D3akLtjVzu3L
Important Note: The keypair in this repository is public and is used only for development purposes. It should not be used on testnet or mainnet environments.
This repository hosts the smart contract (program) deployed on the Solana network to enable ZetaChain's cross-chain functionality. It consists of a single program that supports the following actions:
- Users on the Solana network can send SOL to the program to deposit into ZetaChain, with the option to invoke a ZetaChain EVM contract.
- Contracts on the ZetaChain EVM can withdraw SOL to users on the Solana network.
Prerequisites: a recent version of rust compiler and cargo package manger
must be installed. The program is built with the anchor framework so it needs
to be installed as well; see
installation
Please install compatible Solana tools and anchor-cli before build, otherwise the program will not be built successfully
$ cargo install --git https://github.com/coral-xyz/anchor avm --force
$ avm install 0.31.0
$ sh -c "$(curl -sSfL https://release.anza.xyz/v2.1.0/install)"To show the installed versions of the tools
$ solana --version
solana-cli 2.1.0
$ rustc --version
rustc 1.81.0
$ anchor --version
anchor-cli 0.31.1To build (this will require at least 2GB disk space)
$ anchor buildTo run the tests
$ anchor testTo generate Go bindings for program's IDL Development environments : Localnet
$ make generate-devProduction environments : Mainnet,Testnet
$ make generate-prodAnyone can deposit and remote invoke ZetaChain contracts.
Only ZetaChain TSS account can call withdraw on the program. The ZetaChain TSS
account is a collection of Observer/Signers which uses ECDSA TSS (Threshold
Signature Scheme) to sign outbound transactions. The TSS address will appear in
this program a single ECDSA secp256k1 address; but it does not have a single
private key, rather its private key consists of multiple key shares and they
collectively sign a message in a KeySign MPC ceremony. The program authenticates
via verifying the TSS signature and is authorized by ZetaChain to perform
outbound transactions as part of ZetaChain cross-chain machinery.
The ZetaChain TSS is on ECDSA secp256k1 curve; But Solana native digital signature scheme is EdDSA Ed25519 curve. Therefore the program uses custom logic to verify the TSS ECDSA signature (like alternative authentication in smart contract wallet); the native transaction signer (fee payer on Solana) does not carry authorization and it's only used to build the transaction and pay tx fees. There are no restrictions on who the native transaction signer/fee payer is. The following code excerpt is for authenticating TSS signature in the contract itself, using the Rust secp256k1 library bundled with solana:
protocol-contracts-solana/programs/protocol-contracts-solana/src/lib.rs
Lines 116 to 121 in 01eeb97
The function recover_eth_address is implemented in the gateway program:
protocol-contracts-solana/programs/protocol-contracts-solana/src/lib.rs
Lines 180 to 196 in 01eeb97
The TSS signature is a ECDSA secp256k1 signature; its public key therefore
address (Ethereum compatible hashing from pubkey) is therefore verifiable using
the secp256k1_recover function. Alternatively, Solana runtime also provides a
program to provide this verification service via CPI; see proposal
48
which might be more cost efficient.
In the instruction, the ECDSA signed messagehash must commit to the nonce,
amount, and to address. See the check in these instructions like:
protocol-contracts-solana/programs/protocol-contracts-solana/src/lib.rs
Lines 110 to 114 in 01eeb97
nonce in the signature prevents replay of the TSS ECDSA
signed message. Also (to be added in
#6) a chain id of
Solana should be added to the commitment of the message hash, so that the
signature cannot be replayed on _other blockchains that potentially uses
similar authentication (say in TON).
The Gateway program derives a PDA (Program Derived Address) with seeds b"meta"
and canonical bump. This PDA account/address actually holds the SOL balance of
the Gateway program. For SPL tokens, the program stores the SPL token in PDA
derived ATAs. For each SPL token (different mint account), the program creates
an ATA from the PDA and the Mint (standard way of deriving ATA in Solana SPL
program).
The PDA account itself is a data account that holds Gateway program state, namely the following data types
protocol-contracts-solana/programs/protocol-contracts-solana/src/lib.rs
Lines 271 to 275 in 01eeb97
The nonce is incremented on each successful withdraw transaction, and it's
used to prevent replay of signed ECDSA messages. The tss_address is the TSS
address of ZetaChain (20Bytes, Ethereum style). authority is the one who can
update the TSS address stored in PDA account. The initialize instruction sets
nonce to 0.
If you see errors like
Unable to get latest blockhash. Test validator does not look started. Check ".anchor/test-ledger/test-ledger-log.txt" for errors. Consider increasing [test.startup_wait] in Anchor.toml.
or
% solana-test-validator --reset
Ledger location: test-ledger
Log: test-ledger/validator.log
Error: failed to start validator: Failed to create ledger at test-ledger: io error: Error checking to unpack genesis archive: Archive error: extra entry found: "._genesis.bin" RegularThis is because the BSD tar program is not compatible with the GNU tar program.
To fix the issue: install GNU tar program using homebrew and export it's
executable path in your .zshrc file:
Mac with Apple Silicon
brew install gnu-tar
# Put this in ~/.zshrc
export PATH="/opt/homebrew/opt/gnu-tar/libexec/gnubin:$PATH"Intel-based Mac
brew install gnu-tar
# Put this in ~/.zshrc
export PATH="/usr/local/opt/gnu-tar/libexec/gnubin:$PATH"