The Optimism Foundation has taken the extraordinary step of disabling its permissionless fraud proof system and reverting the network to a permissioned state after community-driven security audits uncovered high-severity vulnerabilities in critical smart contracts. The decision, announced on August 17, 2024, represents a significant setback for the Ethereum Layer 2 scaling solution, which had only launched its permissionless fraud proof system two months earlier on June 10.
The Exploit Mechanics
The vulnerabilities were discovered in the MIPS-related contracts within Optimism’s fault proof system. These contracts had been incorrectly classified under “Posing Liveness and Reputational Risk” categories rather than being flagged for the formal security audit process. Because of this classification error, the contracts escaped the rigorous review that other critical components received. Protocol engineer Mofi Taiwo from OP Labs explained that while the auditors did discover high-severity issues, the monitoring tooling in place was capable of detecting any exploitation attempts. The bugs specifically related to how the MIPS contracts processed and validated fraud proofs, potentially allowing bad actors to manipulate transaction verification under certain conditions.
Affected Systems
The rollback affects Optimism’s entire fault proof architecture, which was designed to allow any network participant to challenge potentially incorrect or fraudulent transactions in a decentralized manner. The permissionless system was a critical milestone that had enabled Optimism to achieve Stage 1 decentralization as defined by Ethereum co-founder Vitalik Buterin. With the reversion, only trusted proposers now have the ability to challenge transactions, concentrating power back into fewer hands. All pending withdrawals on the network were reset and will need to undergo the proving process again. The Optimism Foundation emphasized that no vulnerabilities were actually exploited and user assets were never at risk during this period. The network continued operating normally for end users, with the rollback serving as a precautionary measure to prevent any potential instability.
The Mitigation Strategy
OP Labs protocol engineer Mofi Taiwo submitted a comprehensive governance proposal dubbed “Granite” that outlines the path forward. The Granite network upgrade is scheduled for September 10, 2024, at 16:00:01 UTC and involves a Layer 2 hard fork to address the identified vulnerabilities. While the hard fork has not yet undergone a formal external audit, OP Labs conducted an internal security review and concluded the changes carry low risk. The proposal activates the permissioned fallback mechanism while the vulnerabilities are patched, ensuring the network remains stable. The three-week timeline between discovery and the planned fix reflects the urgency with which the Optimism Foundation is treating these security concerns.
Lessons Learned
This incident highlights several critical lessons for the broader blockchain ecosystem. First, audit scope classification matters enormously — the fact that these contracts were mislabeled as posing only “liveness and reputational risk” meant they never received the formal security scrutiny they required. Second, community-driven audits provide an essential safety net, as it was independent researchers rather than the internal team who identified these vulnerabilities. Third, the speed of the response demonstrates that the Optimism Foundation takes security seriously, choosing to sacrifice decentralization progress rather than put user funds at risk. The incident also underscores the inherent tension in Layer 2 scaling solutions between achieving meaningful decentralization and maintaining robust security guarantees.
User Action Required
Optimism users should be aware that any pending withdrawals have been reset and will need to be resubmitted through the proving process. While no user funds were compromised, anyone relying on Optimism for time-sensitive transactions should monitor the official Optimism governance forum for updates on the Granite upgrade. Developers building on Optimism should review the governance proposal to understand how the changes might affect their applications. As Bitcoin trades near $59,500 and Ethereum at $2,615 according to CoinMarketCap data, the broader market remains focused on Layer 2 security as these scaling solutions handle increasingly large volumes of user funds.
Disclaimer: This article is for informational purposes only and does not constitute financial advice. Always conduct your own research before making investment decisions.
permissionless fraud proofs lasted two whole months. two months. and they were incorrectly classified for audit, which is the most OP Labs thing ever
two months of permissionless fraud proofs and now back to multisig. the road to decentralization is paved with good intentions and audit failures
incorrectly classified under Posing Liveness and Reputational Risk… so they skipped the actual security audit on MIPS contracts. who approved that
whoever approved that risk classification needs a serious conversation. Posing Liveness Risk is not the same as critical MIPS contract bugs
Mofi Taiwo says the monitoring tooling could detect exploitation. That is comforting after the fact, but the whole point of fraud proofs is that you do not need to trust the monitoring team.
^ exactly. reverting to permissioned state means optimism is basically a multisig again. so much for trustless L2
The fact that community auditors found this and not the internal team tells you everything about OP Labs security culture. Good on the community though.