From 8e9c58b4e34d4338791d32db07efa83ce4ac50b6 Mon Sep 17 00:00:00 2001 From: Brian Bland Date: Wed, 12 Feb 2025 08:25:43 -0800 Subject: [PATCH] chore/fix: Update gas limit from 264M -> 288M with new Base contracts (#261) * Gas bump Jan 29 * fix: Use updated Base contracts, fixing rollback nonce * Update readme and templated version * Update contract version --------- Co-authored-by: Anika Raghuvanshi Co-authored-by: Francis Li --- mainnet/2025-01-29-increase-gas-limit/.env | 9 + .../2025-01-29-increase-gas-limit/Makefile | 43 +++ .../2025-01-29-increase-gas-limit/README.md | 289 ++++++++++++++++++ .../foundry.toml | 20 ++ .../template-gas-increase/README.md | 5 +- 5 files changed, 363 insertions(+), 3 deletions(-) create mode 100644 mainnet/2025-01-29-increase-gas-limit/.env create mode 100644 mainnet/2025-01-29-increase-gas-limit/Makefile create mode 100644 mainnet/2025-01-29-increase-gas-limit/README.md create mode 100644 mainnet/2025-01-29-increase-gas-limit/foundry.toml diff --git a/mainnet/2025-01-29-increase-gas-limit/.env b/mainnet/2025-01-29-increase-gas-limit/.env new file mode 100644 index 00000000..ca1abf67 --- /dev/null +++ b/mainnet/2025-01-29-increase-gas-limit/.env @@ -0,0 +1,9 @@ +OP_COMMIT=dff5f16c510e7f44f1be0574372ccb08bfec045c +# https://github.com/base/contracts/commit/cdedd0fe728eb1f9d63eaa4c6e59138cfb3803d3 commit with update to RollbackGasLimit +BASE_CONTRACTS_COMMIT=cdedd0fe728eb1f9d63eaa4c6e59138cfb3803d3 + +L1_SYSTEM_CONFIG_ADDRESS=0x73a79Fab69143498Ed3712e519A88a918e1f4072 +SYSTEM_CONFIG_OWNER=0x14536667Cd30e52C0b458BaACcB9faDA7046E056 + +OLD_GAS_LIMIT=264000000 +NEW_GAS_LIMIT=288000000 diff --git a/mainnet/2025-01-29-increase-gas-limit/Makefile b/mainnet/2025-01-29-increase-gas-limit/Makefile new file mode 100644 index 00000000..784fd015 --- /dev/null +++ b/mainnet/2025-01-29-increase-gas-limit/Makefile @@ -0,0 +1,43 @@ +include ../../Makefile +include ../.env +include .env + +ifndef LEDGER_ACCOUNT +override LEDGER_ACCOUNT = 0 +endif + +ifndef ROLLBACK_NONCE_OFFSET +override ROLLBACK_NONCE_OFFSET = 1 +endif + +.PHONY: sign-upgrade +sign-upgrade: + FROM_GAS_LIMIT=$(OLD_GAS_LIMIT) \ + TO_GAS_LIMIT=$(NEW_GAS_LIMIT) \ + $(GOPATH)/bin/eip712sign --ledger --hd-paths "m/44'/60'/$(LEDGER_ACCOUNT)'/0/0" -- \ + forge script --rpc-url $(L1_RPC_URL) lib/base-contracts/script/deploy/l1/SetGasLimit.sol \ + --sig "sign()" + +.PHONY: execute-upgrade +execute-upgrade: + FROM_GAS_LIMIT=$(OLD_GAS_LIMIT) \ + TO_GAS_LIMIT=$(NEW_GAS_LIMIT) \ + forge script --rpc-url $(L1_RPC_URL) lib/base-contracts/script/deploy/l1/SetGasLimit.sol \ + --sig "run(bytes)" $(SIGNATURES) --ledger --hd-paths "m/44'/60'/$(LEDGER_ACCOUNT)'/0/0" --broadcast + +.PHONY: sign-rollback +sign-rollback: + FROM_GAS_LIMIT=$(NEW_GAS_LIMIT) \ + TO_GAS_LIMIT=$(OLD_GAS_LIMIT) \ + SAFE_NONCE=$(shell expr $$(cast call $(SYSTEM_CONFIG_OWNER) "nonce()" --rpc-url $(L1_RPC_URL) | cast to-dec) + $(ROLLBACK_NONCE_OFFSET)) \ + $(GOPATH)/bin/eip712sign --ledger --hd-paths "m/44'/60'/$(LEDGER_ACCOUNT)'/0/0" -- \ + forge script --rpc-url $(L1_RPC_URL) lib/base-contracts/script/deploy/l1/SetGasLimit.sol \ + --sig "sign()" + +.PHONY: execute-rollback +execute-rollback: + FROM_GAS_LIMIT=$(NEW_GAS_LIMIT) \ + TO_GAS_LIMIT=$(OLD_GAS_LIMIT) \ + SAFE_NONCE=$(shell expr $$(cast call $(SYSTEM_CONFIG_OWNER) "nonce()" --rpc-url $(L1_RPC_URL) | cast to-dec) + $(ROLLBACK_NONCE_OFFSET)) \ + forge script --rpc-url $(L1_RPC_URL) lib/base-contracts/script/deploy/l1/SetGasLimit.sol \ + --sig "run(bytes)" $(SIGNATURES) --ledger --hd-paths "m/44'/60'/$(LEDGER_ACCOUNT)'/0/0" --broadcast diff --git a/mainnet/2025-01-29-increase-gas-limit/README.md b/mainnet/2025-01-29-increase-gas-limit/README.md new file mode 100644 index 00000000..740ed26c --- /dev/null +++ b/mainnet/2025-01-29-increase-gas-limit/README.md @@ -0,0 +1,289 @@ +# Update Gas Limit in L1 `SystemConfig` + +Status: READY TO SIGN + +## Objective + +We are updating the gas limit to improve TPS and reduce gas fees. + +This runbook invokes the following script which allows our signers to sign the same call with two different sets of parameters for our Incident Multisig, as defined in the [base-org/contracts](https://github.com/base-org/contracts) repository: + +`SetGasLimit` -- This script will update the gas limit to our new limit of 288M gas if invoked as part of the "upgrade" process, or revert to the old limit of 264M gas if invoked as part of the "rollback" process. + +The values we are sending are statically defined in the `.env`. + +> [!IMPORTANT] We have two transactions to sign. Please follow +> the flow for both "Approving the Update transaction" and +> "Approving the Rollback transaction". Hopefully we only need +> the former, but will have the latter available if needed. + +## Approving the Upgrade transaction + +### 1. Update repo and move to the appropriate folder: + +``` +cd contract-deployments +git pull +cd mainnet/2025-01-29-increase-gas-limit +make deps +``` + +### 2. Setup Ledger + +Your Ledger needs to be connected and unlocked. The Ethereum +application needs to be opened on Ledger with the message "Application +is ready". + +### 3. Simulate and validate the transaction + +Make sure your ledger is still unlocked and run the following. + +```shell +make sign-upgrade +``` + +Once you run the `make sign...` command successfully, you will see a "Simulation link" from the output. + +Paste this URL in your browser. A prompt may ask you to choose a +project, any project will do. You can create one if necessary. + +Click "Simulate Transaction". + +We will be performing 3 validations and then we'll extract the domain hash and +message hash to approve on your Ledger then verify completion: + +1. Validate integrity of the simulation. +2. Validate correctness of the state diff. +3. Validate and extract domain hash and message hash to approve. + +#### 3.1. Validate integrity of the simulation. + +Make sure you are on the "Overview" tab of the tenderly simulation, to +validate integrity of the simulation, we need to check the following: + +1. "Network": Check the network is Ethereum Mainnet. +2. "Timestamp": Check the simulation is performed on a block with a + recent timestamp (i.e. close to when you run the script). +3. "Sender": Check the address shown is your signer account. If not, + you will need to determine which “number” it is in the list of + addresses on your ledger. +4. "Success" with a green check mark + +#### 3.2. Validate correctness of the state diff. + +Now click on the "State" tab. Verify that: + +1. Verify that the nonce is incremented for the Incident Multisig under the "GnosisSafeProxy" at address `0x14536667Cd30e52C0b458BaACcB9faDA7046E056`. We should see the nonce increment from 49 to 50: + +``` +Key: 0x0000000000000000000000000000000000000000000000000000000000000005 +Before: 0x0000000000000000000000000000000000000000000000000000000000000031 +After: 0x0000000000000000000000000000000000000000000000000000000000000032 +``` + +2. Verify that gas limit value is appropriately updated under "Proxy" at address `0x73a79fab69143498ed3712e519a88a918e1f4072`. We should see that the gas limit has been changed from 264000000 to 288000000: + +``` +Key: 0x0000000000000000000000000000000000000000000000000000000000000068 +Before: 0x000000000000000000000000000000000000000000000000000000000fbc5200 +After: 0x00000000000000000000000000000000000000000000000000000000112a8800 +``` + +#### 3.3. Extract the domain hash and the message hash to approve. + +Now that we have verified the transaction performs the right +operation, we need to extract the domain hash and the message hash to +approve. + +Go back to the "Overview" tab, and find the +`GnosisSafe.checkSignatures` call. This call's `data` parameter +contains both the domain hash and the message hash that will show up +in your Ledger. + +Here is an example screenshot. Note that the value will be +different for each signer: + +![Screenshot 2024-03-07 at 5 49 02 PM](https://github.com/base-org/contract-deployments/assets/84420280/1b7905f1-1350-4634-a804-7b4458d0ddc9) + +It will be a concatenation of `0x1901`, the domain hash, and the +message hash: `0x1901[domain hash][message hash]`. + +Note down this value. You will need to compare it with the ones +displayed on the Ledger screen at signing. + +### 4. Approve the signature on your ledger + +Once the validations are done, it's time to actually sign the +transaction. Make sure your ledger is still unlocked and run the +following: + +```shell +make sign-upgrade +``` + +> [!IMPORTANT] This is the most security critical part of the +> playbook: make sure the domain hash and message hash in the +> following two places match: + +1. on your Ledger screen. +2. in the Tenderly simulation. You should use the same Tenderly + simulation as the one you used to verify the state diffs, instead + of opening the new one printed in the console. + +There is no need to verify anything printed in the console. There is +no need to open the new Tenderly simulation link either. + +After verification, sign the transaction. You will see the `Data`, +`Signer` and `Signature` printed in the console. Format should be +something like this: + +``` +Data: +Signer:
+Signature: +``` + +Double check the signer address is the right one. + +### 5. Send the output to Facilitator(s) + +Nothing has occurred onchain - these are offchain signatures which +will be collected by Facilitators for execution. Execution can occur +by anyone once a threshold of signatures are collected, so a +Facilitator will do the final execution for convenience. + +Share the `Data`, `Signer` and `Signature` with the Facilitator, and +congrats, you are done! + +## Approving the Rollback transaction + +Complete the above steps for `Approving the Update transaction` before continuing below. + +### 1. Simulate and validate the transaction + +Make sure your ledger is still unlocked and run the following. + +```shell +make sign-rollback +``` + +Once you run the make sign command successfully, you will see a "Simulation link" from the output. Once again paste this URL in your browser and click "Simulate Transaction". + +We will be performing 3 validations and then we'll extract the domain hash and +message hash to approve on your Ledger then verify completion: + +1. Validate integrity of the simulation. +2. Validate correctness of the state diff. +3. Validate and extract domain hash and message hash to approve. +4. Validate that the transaction completed successfully + +#### 3.1. Validate integrity of the simulation. + +Make sure you are on the "Overview" tab of the tenderly simulation, to +validate integrity of the simulation, we need to check the following: + +1. "Network": Check the network is Ethereum Mainnet. +2. "Timestamp": Check the simulation is performed on a block with a + recent timestamp (i.e. close to when you run the script). +3. "Sender": Check the address shown is your signer account. If not, + you will need to determine which “number” it is in the list of + addresses on your ledger. +4. "Success" with a green check mark + +#### 3.2. Validate correctness of the state diff. + +Now click on the "State" tab. Verify that: + +1. Verify that the nonce is incremented for the Incident Multisig under the "GnosisSafeProxy" at address `0x14536667Cd30e52C0b458BaACcB9faDA7046E056`: + +``` +Key: 0x0000000000000000000000000000000000000000000000000000000000000005 +Before: 0x0000000000000000000000000000000000000000000000000000000000000032 +After: 0x0000000000000000000000000000000000000000000000000000000000000033 +``` + +2. Verify that gas limit value is appropriately updated under "Proxy" at address `0x73a79fab69143498ed3712e519a88a918e1f4072`: + +``` +Key: 0x0000000000000000000000000000000000000000000000000000000000000068 +Before: 0x00000000000000000000000000000000000000000000000000000000112a8800 +After: 0x000000000000000000000000000000000000000000000000000000000fbc5200 +``` + +#### 3.3. Extract the domain hash and the message hash to approve. + +Now that we have verified the transaction performs the right +operation, we need to extract the domain hash and the message hash to +approve. + +Go back to the "Overview" tab, and find the +`GnosisSafe.checkSignatures` call. This call's `data` parameter +contains both the domain hash and the message hash that will show up +in your Ledger. + +Here is an example screenshot. Note that the value will be +different for each signer: + +![Screenshot 2024-03-07 at 5 49 32 PM](https://github.com/base-org/contract-deployments/assets/84420280/b6b5817f-0d05-4862-b16a-4f7f5f18f036) + +It will be a concatenation of `0x1901`, the domain hash, and the +message hash: `0x1901[domain hash][message hash]`. + +Note down this value. You will need to compare it with the ones +displayed on the Ledger screen at signing. + +### 4. Approve the signature on your ledger + +Once the validations are done, it's time to actually sign the +transaction. Make sure your ledger is still unlocked and run the +following: + +```shell +make sign-rollback +``` + +> [!IMPORTANT] This is the most security critical part of the +> playbook: make sure the domain hash and message hash in the +> following two places match: + +1. on your Ledger screen. +2. in the Tenderly simulation. You should use the same Tenderly + simulation as the one you used to verify the state diffs, instead + of opening the new one printed in the console. + +There is no need to verify anything printed in the console. There is +no need to open the new Tenderly simulation link either. + +After verification, sign the transaction. You will see the `Data`, +`Signer` and `Signature` printed in the console. Format should be +something like this: + +``` +Data: +Signer:
+Signature: +``` + +Double check the signer address is the right one. + +### 5. Send the output to Facilitator(s) + +Nothing has occurred onchain - these are offchain signatures which +will be collected by Facilitators for execution. Execution can occur +by anyone once a threshold of signatures are collected, so a +Facilitator will do the final execution for convenience. + +Share the `Data`, `Signer` and `Signature` with the Facilitator, and +congrats, you are done! + +## Execute the output + +1. Collect outputs from all participating signers. +2. Concatenate all signatures and export it as the `SIGNATURES` + environment variable, i.e. `export +SIGNATURES="0x[SIGNATURE1][SIGNATURE2]..."`. +3. Run `make execute-upgrade` + +> [!IMPORTANT] IN THE EVENT WE NEED TO PERFORM ROLLBACK +> Repeat the above, but replace the signatures with the signed +> rollback signatures collected, the call `make execute-rollback` diff --git a/mainnet/2025-01-29-increase-gas-limit/foundry.toml b/mainnet/2025-01-29-increase-gas-limit/foundry.toml new file mode 100644 index 00000000..1f932186 --- /dev/null +++ b/mainnet/2025-01-29-increase-gas-limit/foundry.toml @@ -0,0 +1,20 @@ +[profile.default] +src = 'src' +out = 'out' +libs = ['lib'] +broadcast = 'records' +fs_permissions = [ {access = "read-write", path = "./"} ] +optimizer = true +optimizer_runs = 999999 +solc_version = "0.8.15" +via-ir = false +remappings = [ + '@eth-optimism-bedrock/=lib/optimism/packages/contracts-bedrock/', + '@openzeppelin/contracts/=lib/openzeppelin-contracts/contracts', + '@openzeppelin/contracts-upgradeable/=lib/openzeppelin-contracts-upgradeable/contracts', + '@rari-capital/solmate/=lib/solmate/', + '@base-contracts/=lib/base-contracts', + '@solady/=lib/solady/src/' +] + +# See more config options https://github.com/foundry-rs/foundry/tree/master/config \ No newline at end of file diff --git a/setup-templates/template-gas-increase/README.md b/setup-templates/template-gas-increase/README.md index 1e56435f..5f4e667a 100644 --- a/setup-templates/template-gas-increase/README.md +++ b/setup-templates/template-gas-increase/README.md @@ -6,10 +6,9 @@ Status: TODO[READY TO SIGN|DONE] We are updating the gas limit to improve TPS and reduce gas fees. -This runbook invokes two scripts which allow our signers to sign two different calls for our Incident Multisig, which are both defined in the [base-org/contracts](https://github.com/base-org/contracts) repository: +This runbook invokes the following script which allows our signers to sign the same call with two different sets of parameters for our Incident Multisig, defined in the [base-org/contracts](https://github.com/base-org/contracts) repository: -1. `UpgradeGasLimit` -- This script will update the gas limit to our new limit of TODO gas -2. `RollbackGasLimit` -- This script establishes a rollback call in the case we need to revert to gas +`SetGasLimit` -- This script will update the gas limit to our new limit of TODO gas if invoked as part of the "upgrade" process, or revert to the old limit of TODO gas if invoked as part of the "rollback" process. The values we are sending are statically defined in the `.env`.