De-duplicate agent signing logic

agents/agents/guard/fraud.go

@@ -87,7 +87,7 @@ func (g Guard) shouldSubmitStateReport(ctx context.Context, snapshot *types.Frau
 // isStateSlashable checks if a state is slashable, i.e. if the state is valid on the
 // Origin, and if the agent is in a slashable status.
 func (g Guard) isStateSlashable(ctx context.Context, state types.State, agent common.Address) (bool, error) {
-	statePayload, err := types.EncodeState(state)
+	statePayload, err := state.Encode()
 	if err != nil {
 		return false, fmt.Errorf("could not encode state: %w", err)
 	}
@@ -142,7 +142,7 @@ func (g Guard) handleValidAttestation(ctx context.Context, fraudAttestation *typ
 
 	// Verify each state in the snapshot.
 	for stateIndex, state := range snapshot.States() {
-		snapPayload, err := types.EncodeSnapshot(snapshot)
+		snapPayload, err := snapshot.Encode()
 		if err != nil {
 			return fmt.Errorf("could not encode snapshot: %w", err)
 		}

agents/types/attestation.go

@@ -2,12 +2,10 @@ package types
 
 import (
 	"context"
-	"fmt"
 	"math/big"
 
 	"github.com/ethereum/go-ethereum/common"
 	"github.com/ethereum/go-ethereum/crypto"
-	"github.com/synapsecns/sanguine/core"
 	"github.com/synapsecns/sanguine/ethergo/signer/signer"
 )
 
@@ -22,6 +20,7 @@ const (
 
 // Attestation is the attestation interface.
 type Attestation interface {
+	Encoder
 	// SnapshotRoot is the root of the Snapshot Merkle Tree.
 	SnapshotRoot() [32]byte
 	// DataHash is the agent root and SnapGasHash combined into a single hash.
@@ -75,33 +74,14 @@ func (a attestation) Timestamp() *big.Int {
 	return a.timestamp
 }
 
-//nolint:dupl
 func (a attestation) SignAttestation(ctx context.Context, signer signer.Signer, valid bool) (signer.Signature, []byte, common.Hash, error) {
-	encodedAttestation, err := EncodeAttestation(a)
-	if err != nil {
-		return nil, nil, common.Hash{}, fmt.Errorf("could not encode attestation: %w", err)
-	}
-
-	var attestationSalt common.Hash
+	var attestationSalt string
 	if valid {
-		attestationSalt = crypto.Keccak256Hash([]byte("ATTESTATION_VALID_SALT"))
+		attestationSalt = AttestationValidSalt
 	} else {
-		attestationSalt = crypto.Keccak256Hash([]byte("ATTESTATION_INVALID_SALT"))
-	}
-
-	hashedEncodedAttestation := crypto.Keccak256Hash(encodedAttestation).Bytes()
-	toSign := append(attestationSalt.Bytes(), hashedEncodedAttestation...)
-
-	hashedAttestation, err := HashRawBytes(toSign)
-	if err != nil {
-		return nil, nil, common.Hash{}, fmt.Errorf("could not hash attestation: %w", err)
-	}
-
-	signature, err := signer.SignMessage(ctx, core.BytesToSlice(hashedAttestation), false)
-	if err != nil {
-		return nil, nil, common.Hash{}, fmt.Errorf("could not sign attestation: %w", err)
+		attestationSalt = AttestationInvalidSalt
 	}
-	return signature, encodedAttestation, hashedAttestation, nil
+	return signEncoder(ctx, signer, a, attestationSalt)
 }
 
 // GetAttestationDataHash generates the data hash from the agent root and SnapGasHash.

agents/types/encoder.go

@@ -20,6 +20,11 @@ const (
 	uint40Len = 5
 )
 
+// Encoder encodes a type to bytes.
+type Encoder interface {
+	Encode() ([]byte, error)
+}
+
 // EncodeGasData encodes a gasdata.
 func EncodeGasData(gasData GasData) ([]byte, error) {
 	b := make([]byte, 0)
@@ -106,23 +111,23 @@ func DecodeChainGas(toDecode []byte) (ChainGas, error) {
 	}, nil
 }
 
-// EncodeState encodes a state.
-func EncodeState(state State) ([]byte, error) {
+// Encode encodes a state.
+func (s state) Encode() ([]byte, error) {
 	b := make([]byte, 0)
 	originBytes := make([]byte, uint32Len)
 	nonceBytes := make([]byte, uint32Len)
 
-	binary.BigEndian.PutUint32(originBytes, state.Origin())
-	binary.BigEndian.PutUint32(nonceBytes, state.Nonce())
-	root := state.Root()
+	binary.BigEndian.PutUint32(originBytes, s.Origin())
+	binary.BigEndian.PutUint32(nonceBytes, s.Nonce())
+	root := s.Root()
 
 	// Note that since we are packing an 8 byte (int64) number into 5 bytes, we need to
-	// ensure that the result does not exceed the expected byte length for a valid State.
-	blockNumberBytes := math.PaddedBigBytes(state.BlockNumber(), uint40Len)
+	// ensure that the result does not exceed the expected byte length for a valid s.
+	blockNumberBytes := math.PaddedBigBytes(s.BlockNumber(), uint40Len)
 	if len(blockNumberBytes) != uint40Len {
 		return nil, fmt.Errorf("invalid block number length, expected %d, got %d", uint40Len, len(blockNumberBytes))
 	}
-	timestampBytes := math.PaddedBigBytes(state.Timestamp(), uint40Len)
+	timestampBytes := math.PaddedBigBytes(s.Timestamp(), uint40Len)
 	if len(timestampBytes) != uint40Len {
 		return nil, fmt.Errorf("invalid timestamp length, expected %d, got %d", uint40Len, len(timestampBytes))
 	}
@@ -133,7 +138,7 @@ func EncodeState(state State) ([]byte, error) {
 	b = append(b, blockNumberBytes...)
 	b = append(b, timestampBytes...)
 
-	gasDataEncoded, err := EncodeGasData(state.GasData())
+	gasDataEncoded, err := EncodeGasData(s.GasData())
 	if err != nil {
 		return nil, fmt.Errorf("failed to encode gas data for state %w", err)
 	}
@@ -173,9 +178,9 @@ func DecodeState(toDecode []byte) (State, error) {
 	}, nil
 }
 
-// EncodeSnapshot encodes a snapshot.
-func EncodeSnapshot(snapshot Snapshot) ([]byte, error) {
-	states := snapshot.States()
+// Encode encodes a snapshot.
+func (s snapshot) Encode() ([]byte, error) {
+	states := s.States()
 
 	if len(states) == 0 {
 		return nil, fmt.Errorf("no states to encode")
@@ -184,7 +189,7 @@ func EncodeSnapshot(snapshot Snapshot) ([]byte, error) {
 	encodedStates := make([]byte, 0)
 
 	for _, state := range states {
-		encodedState, err := EncodeState(state)
+		encodedState, err := state.Encode()
 		if err != nil {
 			return nil, fmt.Errorf("could not encode state: %w", err)
 		}
@@ -215,22 +220,22 @@ func DecodeSnapshot(toDecode []byte) (Snapshot, error) {
 	}, nil
 }
 
-// EncodeAttestation encodes an attestation.
-func EncodeAttestation(attestation Attestation) ([]byte, error) {
+// Encode encodes an attestation.
+func (a attestation) Encode() ([]byte, error) {
 	b := make([]byte, 0)
 	nonceBytes := make([]byte, uint32Len)
 
-	binary.BigEndian.PutUint32(nonceBytes, attestation.Nonce())
-	snapshotRoot := attestation.SnapshotRoot()
-	dataHash := attestation.DataHash()
+	binary.BigEndian.PutUint32(nonceBytes, a.Nonce())
+	snapshotRoot := a.SnapshotRoot()
+	dataHash := a.DataHash()
 
 	// Note that since we are packing an 8 byte (int64) number into 5 bytes, we need to
-	// ensure that the result does not exceed the expected byte length for a valid Attestation.
-	blockNumberBytes := math.PaddedBigBytes(attestation.BlockNumber(), uint40Len)
+	// ensure that the result does not exceed the expected byte length for a valid a.
+	blockNumberBytes := math.PaddedBigBytes(a.BlockNumber(), uint40Len)
 	if len(blockNumberBytes) != uint40Len {
 		return nil, fmt.Errorf("invalid block number length, expected %d, got %d", uint40Len, len(blockNumberBytes))
 	}
-	timestampBytes := math.PaddedBigBytes(attestation.Timestamp(), uint40Len)
+	timestampBytes := math.PaddedBigBytes(a.Timestamp(), uint40Len)
 	if len(timestampBytes) != uint40Len {
 		return nil, fmt.Errorf("invalid timestamp length, expected %d, got %d", uint40Len, len(timestampBytes))
 	}
@@ -558,26 +563,26 @@ func DecodeAgentStatus(toDecode []byte) (AgentStatus, error) {
 	}, nil
 }
 
-// EncodeReceipt encodes an receipt.
-func EncodeReceipt(receipt Receipt) ([]byte, error) {
+// Encode encodes an receipt.
+func (r receipt) Encode() ([]byte, error) {
 	b := make([]byte, 0)
 	originBytes := make([]byte, uint32Len)
-	binary.BigEndian.PutUint32(originBytes, receipt.Origin())
+	binary.BigEndian.PutUint32(originBytes, r.Origin())
 
 	destBytes := make([]byte, uint32Len)
-	binary.BigEndian.PutUint32(destBytes, receipt.Destination())
+	binary.BigEndian.PutUint32(destBytes, r.Destination())
 
-	messageHashBytes := receipt.MessageHash()
-	snapshotRootBytes := receipt.SnapshotRoot()
+	messageHashBytes := r.MessageHash()
+	snapshotRootBytes := r.SnapshotRoot()
 
 	b = append(b, originBytes...)
 	b = append(b, destBytes...)
 	b = append(b, messageHashBytes[:]...)
 	b = append(b, snapshotRootBytes[:]...)
-	b = append(b, []byte{receipt.StateIndex()}...)
-	b = append(b, receipt.AttestationNotary().Bytes()...)
-	b = append(b, receipt.FirstExecutor().Bytes()...)
-	b = append(b, receipt.FinalExecutor().Bytes()...)
+	b = append(b, []byte{r.StateIndex()}...)
+	b = append(b, r.AttestationNotary().Bytes()...)
+	b = append(b, r.FirstExecutor().Bytes()...)
+	b = append(b, r.FinalExecutor().Bytes()...)
 
 	return b, nil
 }

agents/types/receipt.go

@@ -2,11 +2,8 @@ package types
 
 import (
 	"context"
-	"fmt"
 
 	"github.com/ethereum/go-ethereum/common"
-	"github.com/ethereum/go-ethereum/crypto"
-	"github.com/synapsecns/sanguine/core"
 	"github.com/synapsecns/sanguine/ethergo/signer/signer"
 )
 
@@ -24,6 +21,7 @@ const (
 
 // Receipt is the receipt interface.
 type Receipt interface {
+	Encoder
 	// Origin is the origin of the receipt.
 	Origin() uint32
 	// Destination is the destination of the receipt.
@@ -101,31 +99,12 @@ func (r receipt) FinalExecutor() common.Address {
 	return r.finalExecutor
 }
 
-//nolint:dupl
 func (r receipt) SignReceipt(ctx context.Context, signer signer.Signer, valid bool) (signer.Signature, []byte, common.Hash, error) {
-	encodedReceipt, err := EncodeReceipt(r)
-	if err != nil {
-		return nil, nil, common.Hash{}, fmt.Errorf("could not encode receipt: %w", err)
-	}
-
-	var receiptSalt common.Hash
+	var receiptSalt string
 	if valid {
-		receiptSalt = crypto.Keccak256Hash([]byte("RECEIPT_VALID_SALT"))
+		receiptSalt = ReceiptValidSalt
 	} else {
-		receiptSalt = crypto.Keccak256Hash([]byte("RECEIPT_INVALID_SALT"))
-	}
-
-	hashedEncodedReceipt := crypto.Keccak256Hash(encodedReceipt).Bytes()
-	toSign := append(receiptSalt.Bytes(), hashedEncodedReceipt...)
-
-	hashedReceipt, err := HashRawBytes(toSign)
-	if err != nil {
-		return nil, nil, common.Hash{}, fmt.Errorf("could not hash receipt: %w", err)
-	}
-
-	signature, err := signer.SignMessage(ctx, core.BytesToSlice(hashedReceipt), false)
-	if err != nil {
-		return nil, nil, common.Hash{}, fmt.Errorf("could not sign receipt: %w", err)
+		receiptSalt = ReceiptInvalidSalt
 	}
-	return signature, encodedReceipt, hashedReceipt, nil
+	return signEncoder(ctx, signer, r, receiptSalt)
 }

agents/types/salt.go

@@ -0,0 +1,21 @@
+package types
+
+// Note: these salt values are taken from contracts/libs/Constants.sol.
+
+// AttestationValidSalt is the salt for ATTESTATION_VALID_SALT.
+const AttestationValidSalt = "ATTESTATION_VALID_SALT"
+
+// AttestationInvalidSalt is the salt for ATTESTATION_INVALID_SALT.
+const AttestationInvalidSalt = "ATTESTATION_INVALID_SALT"
+
+// ReceiptValidSalt is the salt for RECEIPT_VALID_SALT.
+const ReceiptValidSalt = "RECEIPT_VALID_SALT"
+
+// ReceiptInvalidSalt is the salt for RECEIPT_INVALID_SALT.
+const ReceiptInvalidSalt = "RECEIPT_INVALID_SALT"
+
+// SnapshotValidSalt is the salt for SNAPSHOT_VALID_SALT.
+const SnapshotValidSalt = "SNAPSHOT_VALID_SALT"
+
+// StateInvalidSalt is the salt for STATE_INVALID_SALT.
+const StateInvalidSalt = "STATE_INVALID_SALT"

agents/types/snapshot.go

@@ -5,16 +5,14 @@ import (
 	"fmt"
 	"math"
 
-	"github.com/ethereum/go-ethereum/crypto"
-
 	"github.com/ethereum/go-ethereum/common"
-	"github.com/synapsecns/sanguine/core"
 	"github.com/synapsecns/sanguine/core/merkle"
 	"github.com/synapsecns/sanguine/ethergo/signer/signer"
 )
 
 // Snapshot is the snapshot interface.
 type Snapshot interface {
+	Encoder
 	// States are the states of the snapshot.
 	States() []State
 
@@ -76,28 +74,8 @@ func (s snapshot) TreeHeight() uint32 {
 	return uint32(math.Log2(float64(len(s.states) * 2)))
 }
 
-//nolint:dupl
 func (s snapshot) SignSnapshot(ctx context.Context, signer signer.Signer) (signer.Signature, []byte, common.Hash, error) {
-	encodedSnapshot, err := EncodeSnapshot(s)
-	if err != nil {
-		return nil, nil, common.Hash{}, fmt.Errorf("could not encode snapshot: %w", err)
-	}
-
-	snapshotSalt := crypto.Keccak256Hash([]byte("SNAPSHOT_VALID_SALT"))
-
-	hashedEncodedSnapshot := crypto.Keccak256Hash(encodedSnapshot).Bytes()
-	toSign := append(snapshotSalt.Bytes(), hashedEncodedSnapshot...)
-
-	hashedSnapshot, err := HashRawBytes(toSign)
-	if err != nil {
-		return nil, nil, common.Hash{}, fmt.Errorf("could not hash snapshot: %w", err)
-	}
-
-	signature, err := signer.SignMessage(ctx, core.BytesToSlice(hashedSnapshot), false)
-	if err != nil {
-		return nil, nil, common.Hash{}, fmt.Errorf("could not sign snapshot: %w", err)
-	}
-	return signature, encodedSnapshot, hashedSnapshot, nil
+	return signEncoder(ctx, signer, s, SnapshotValidSalt)
 }
 
 var _ Snapshot = &snapshot{}