From 690f15e5c1c6006b476f8fdd705693d96cfe106e Mon Sep 17 00:00:00 2001 From: thedevbirb Date: Wed, 30 Oct 2024 16:58:21 +0100 Subject: [PATCH] fix(sidecar): use validator keys and not delegated ones for pub key check --- bolt-sidecar/src/driver.rs | 35 +++++++++++++++++++++++------------ 1 file changed, 23 insertions(+), 12 deletions(-) diff --git a/bolt-sidecar/src/driver.rs b/bolt-sidecar/src/driver.rs index 59962180e..d9741550d 100644 --- a/bolt-sidecar/src/driver.rs +++ b/bolt-sidecar/src/driver.rs @@ -162,21 +162,40 @@ impl SidecarDriver { commitment_signer: ECDSA, fetcher: C, ) -> eyre::Result { + let mut constraints_client = ConstraintsClient::new(opts.constraints_api_url.clone()); + + // read the delegations from disk if they exist and add them to the constraints client. + let validator_public_keys = if let Some(delegations_file_path) = + opts.constraint_signing.delegations_path.as_ref() + { + let delegations = read_signed_delegations_from_file(delegations_file_path)?; + let delegatees = + delegations.iter().map(|d| d.message.delegatee_pubkey.clone()).collect::>(); + constraints_client.add_delegations(delegations); + delegatees + } else { + Vec::from_iter(constraint_signer.available_pubkeys()) + }; + // Verify the operator and validator keys with the bolt manager if let Some(bolt_manager) = BoltManager::from_chain(opts.execution_api_url.clone(), opts.chain.chain) { let commitment_signer_pubkey = commitment_signer.public_key(); - let available_pubkeys = Vec::from_iter(constraint_signer.available_pubkeys()); - let available_pubkeys_len = available_pubkeys.len(); + let validator_public_keys_len = validator_public_keys.len(); bolt_manager - .verify_validator_pubkeys(available_pubkeys, commitment_signer_pubkey) + .verify_validator_pubkeys(validator_public_keys, commitment_signer_pubkey) .await?; info!( - available_pubkeys_len, + validator_public_keys_len, commitment_signer_pubkey = ?commitment_signer_pubkey, "Validators and operator keys verified with Bolt Manager successfully" ); + } else { + warn!( + "No Bolt Manager contract deployed on {} chain, skipping validators and operator public keys verification", + opts.chain.name() + ); } let beacon_client = BeaconClient::new(opts.beacon_api_url.clone()); @@ -216,14 +235,6 @@ impl SidecarDriver { let (api_events_tx, api_events_rx) = mpsc::channel(1024); CommitmentsApiServer::new(api_addr).run(api_events_tx).await; - let mut constraints_client = ConstraintsClient::new(opts.constraints_api_url.clone()); - - // read the delegaitons from disk if they exist and add them to the constraints client - if let Some(delegations_file_path) = opts.constraint_signing.delegations_path.as_ref() { - let delegations = read_signed_delegations_from_file(delegations_file_path)?; - constraints_client.add_delegations(delegations); - } - Ok(SidecarDriver { head_tracker, execution,