Skip to content

near/multichain-gas-station-contract

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

150 Commits

.github/workflows

.github/workflows

 
 

gas_station

gas_station

 
 

lib

lib

 
 

mock

mock

 
 

nft_key

nft_key

 
 

.gitignore

.gitignore

 
 

Cargo.lock

Cargo.lock

 
 

Cargo.toml

Cargo.toml

 
 

Makefile.toml

Makefile.toml

 
 

README.md

README.md

 
 

scripts.md

scripts.md

 
 

Repository files navigation

Multichain Gas Station Contract

This is still early software.

This smart contract accepts payments in NEAR tokens in exchange for gas funding on non-NEAR foreign chains. Part of the NEAR Multichain effort, it works in conjunction with the MPC recovery service to generate on-chain signatures.

Contract Testnet ID Mainnet ID
NFT Chain Key nft.kagi.testnet
Gas Station canhazgas.testnet

What is it?

This smart contract is a piece of the NEAR Multichain project, which makes NEAR Protocol an effortlessly cross-chain network. This contract accepts EVM transaction request payloads and facilitates the signing, gas funding, and relaying of the signed transactions to their destination chains. It works in conjunction with a few different services, including:

  • The MPC recovery service, also called the "MPC signer service", includes a network of trusted MPC signers, which hold keyshares and cooperatively sign transactions on behalf of the MPC network. It also includes an on-chain component, called the "MPC signer contract," which accepts on-chain signature requests and returns signatures computed by the MPC network.
  • The multichain relayer server scans this smart contract for signed transaction payloads and emits them to foreign chain RPCs.
  • The NFT chain key smart contract allows chain keys to be transferred between NEAR accounts, using the NEP-171 NFT smart contract standard.

How does it work?

Currently, relaying one transaction to a foreign chain requires three transactions. However, NEP-516 (delayed receipts / runtime triggers) will reduce this number to one.

Transaction breakdown:

  1. The first transaction is a call to the create_transaction function. This function accepts an EVM transaction request payload, an NFT chain key token ID (must have been previously approved to the gas station smart contract), and a deposit amount (to pay for gas on the foreign chain) and returns an id and a pending_transactions_count.
  2. The second transaction is a call to the sign_next function. This function accepts the id returned in step 1 and returns a signed payload. This payload is the gas funding transaction, transferring funds from a paymaster account on the foreign chain to the user's account on the foreign chain. It must be submitted to the foreign chain before the second signed payload.
  3. The third transaction is another call to the sign_next function, identical to the one before. This function accepts an id and returns a signed payload. This payload is the signed user transaction.

Three transactions are required because of the gas restrictions imposed by the protocol. Currently (pre-NEP-516), the MPC signing function requires a lot of gas, so dividing up the signing process into three parts is required to maximize the amount of gas available to each signing call.

Once this service and its supporting services are live, the multichain relayer server will be monitoring this gas station contract and relaying the signed transactions in the proper order as they become available, so it will not be strictly necessary for the users of this contract to ensure that the transactions are properly relayed, unless the user wishes to relay the transactions using their own RPC (e.g. to minimize latency).

sign_next call trace explanation

Let's say alice.near has already called create_transaction(..., use_paymaster=true) on the gas station contract gas-station.near, and has obtained a transaction sequence id as a result of that function call.

Next, alice.near calls gas-station.near::sign_next(id). Because this is the first sign_next call, the contract first generates a paymaster gas funding transaction. However, this is payload is unsigned at first. It is unwise1 to keep private keys on-chain (they would cease to be private), so the contract invokes another service, the MPC signing service.

This service allows us to request signatures from a particular private key that the gas station contract controls. The MPC service allows the gas station contract to request a key by "path," which is simply a string. The signing service then uses a combination of the predecessor account ID (in this case, gas-station.near), the path string provided as a parameter to the signature request, and a few other pieces of information to derive a recoverable signature for the payload that recovers to a stable public key.

In the case of the paymaster transaction, the gas station uses a special set of predetermined path strings that map to known addresses on the foreign chain. These addresses are pre-funded with the native (gas) token for that foreign chain. Thus, when the gas station contract requests signatures for the paymaster transaction payload, the signed transactions are able to manipulate the funds in that foreign account.

In the case of the second, user-provided transaction, the gas station passes the user's account ID as the path string to the MPC signer service. This means that each transaction requested by alice.near will receive a signature that recovers to the same public key (foreign address) every time.

Therefore, the call trace for the two sign_next transactions looks something like this:

  1. alice.neargas-station.near::sign_next(id) -> SignedTransaction
    • gas-station.nearmpc-signer.near::sign(payload=..., path=$0) -> Signature
  2. alice.neargas-station.near::sign_next(id) -> SignedTransaction
    • gas-station.nearmpc-signer.near::sign(payload=..., path=alice.near) -> Signature

Requirements

Build

cargo make build

The WASM binary will be generated in target/wasm32-unknown-unknown/release/.

The debug build can be generated with the command:

cargo make build-debug

Contract Interactions

Setup and Administration

  1. Initialize the contract with a call to new. The owner is initialized as the predecessor of this transaction. All of the following transactions must be called by the owner.
  2. Set up foreign chain configurations with add_foreign_chain.
  3. Add paymasters to each foreign chain by transferring NFT keys and then calling add_paymaster.

Usage

Users who wish to get transactions signed and relayed by this contract and its accompanying infrastructure should perform the following steps:

  1. Construct an unsigned transaction payload for the foreign chain they wish to interact with, e.g. Ethereum.
  2. Call create_transaction on this contract, passing in that payload and activating the use_paymaster toggle in the case that the user wishes to use a paymaster. If the user uses a paymaster, he must attach a sufficient quantity of NEAR tokens to this transaction to pay for the gas + service fee. This function call returns an id and a pending_transactions_count.
  3. Call sign_next, passing in the id value obtained in the previous step. This transaction should be executed with the maximum allowable quantity of gas (i.e. 300 TGas). This transaction will return a signed payload, part of the sequence of transactions necessary to send the user's transaction to the foreign chain. Repeat pending_transactions_count times.
  4. Relay each signed payload to the foreign chain RPC in the order they were requested.

Authors

Footnotes

  1. The debug/mock version of this contract does store private keys on-chain (big no-no), making it only suitable for testing.

About

No description, website, or topics provided.

Resources

Readme

Security policy

Security policy
Activity
Custom properties

Stars

6 stars

Watchers

4 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages