GIP-4: Decentralized Payout/Slashing (#244)

* GIP-4: Decentralized Payout/Slashing (#244)

Author: Gutyn

contracts/payouts/IPayoutsController.sol

@@ -0,0 +1,41 @@
+// SPDX-License-Identifier: UNLICENSED
+pragma solidity ^0.8.16;
+
+// Allows anyone to claim a token if they exist in a merkle root.
+interface IPayoutsController {
+    // Returns the address of the token distributed by this contract.
+    function getToken() external view returns (address);
+
+    // Returns the merkle root of the merkle tree containing account balances available to claim.
+    function getMerkleRoot(uint256 epochId) external view returns (bytes32);
+
+    // Returns the last epoch added.
+    function getLastEpoch() external view returns (uint256);
+
+    // Returns true if the index has been marked claimed.
+    function isClaimed(uint256 epochId, uint256 index)
+        external
+        view
+        returns (bool);
+
+    // Add a new Merkle Root and epoch.
+    function addMerkleRoot(bytes32 merkleRoot) external;
+
+    // Claim the given amount of the token to the given address. Reverts if the inputs are invalid.
+    function claim(
+        uint256 epochId,
+        uint256 index,
+        address account,
+        uint256 amount,
+        bytes32[] calldata merkleProof
+    ) external;
+
+    event Claimed(
+        uint256 epochId,
+        uint256 index,
+        address account,
+        uint256 amount
+    );
+    event MerkleRootAdded(uint256 newEpochId, bytes32 merkleRoot);
+    event RewardPricesChanged(uint256[] rewardPrices);
+}

contracts/payouts/PayoutsController.sol

@@ -0,0 +1,105 @@
+// SPDX-License-Identifier: UNLICENSED
+pragma solidity ^0.8.16;
+
+import '@openzeppelin/contracts-upgradeable/access/OwnableUpgradeable.sol';
+import {MerkleProof} from '@openzeppelin/contracts/utils/cryptography/MerkleProof.sol';
+import '@openzeppelin/contracts/utils/Counters.sol';
+import './IPayoutsController.sol';
+import {IERC20, SafeERC20} from '@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol';
+
+error AlreadyClaimed();
+error InvalidProof();
+
+/// @custom:security-contact [email protected]
+contract PayoutsController is
+    Initializable,
+    OwnableUpgradeable,
+    IPayoutsController
+{
+    using SafeERC20 for IERC20;
+    using Counters for Counters.Counter;
+
+    // ============ Private Storage ============
+
+    address private _token;
+    mapping(uint256 => bytes32) private _merkleRoots;
+    Counters.Counter private _epochIds;
+
+    // This is a mapping from epochIds to a packed array of booleans.
+    mapping(uint256 => mapping(uint256 => uint256))
+        private claimedBitMapByEpoch;
+
+    function getToken() external view returns (address) {
+        return _token;
+    }
+
+    function setToken(address token) external onlyOwner {
+        _token = token;
+    }
+
+    function getLastEpoch() external view returns (uint256) {
+        return _epochIds.current();
+    }
+
+    function getMerkleRoot(uint256 epochId) external view returns (bytes32) {
+        return _merkleRoots[epochId];
+    }
+
+    function initialize(address token) public initializer {
+        __Ownable_init();
+        _token = token;
+    }
+
+    function addMerkleRoot(bytes32 merkleRoot) external onlyOwner {
+        require(merkleRoot.length > 0, 'Empty merkleRoot');
+        // Start at index 1
+        _epochIds.increment();
+        uint256 newEpochId = _epochIds.current();
+        _merkleRoots[newEpochId] = merkleRoot;
+        emit MerkleRootAdded(newEpochId, merkleRoot);
+    }
+
+    function isClaimed(uint256 epochId, uint256 index)
+        public
+        view
+        returns (bool)
+    {
+        uint256 claimedWordIndex = index / 256;
+        uint256 claimedBitIndex = index % 256;
+        uint256 claimedWord = claimedBitMapByEpoch[epochId][claimedWordIndex];
+        uint256 mask = (1 << claimedBitIndex);
+        return claimedWord & mask == mask;
+    }
+
+    function _setClaimed(uint256 epochId, uint256 index) private {
+        uint256 claimedWordIndex = index / 256;
+        uint256 claimedBitIndex = index % 256;
+        claimedBitMapByEpoch[epochId][claimedWordIndex] =
+            claimedBitMapByEpoch[epochId][claimedWordIndex] |
+            (1 << claimedBitIndex);
+    }
+
+    function claim(
+        uint256 epochId,
+        uint256 index,
+        address account,
+        uint256 amount,
+        bytes32[] calldata merkleProof
+    ) public {
+        if (isClaimed(index, epochId)) revert AlreadyClaimed();
+        bytes32 merkleRoot = _merkleRoots[epochId];
+        require(merkleRoot.length > 0, 'Empty merkleRoot');
+
+        // Verify the merkle proof.
+        bytes32 node = keccak256(abi.encodePacked(index, account, amount));
+        require(node.length > 0, 'Empty node');
+        if (!MerkleProof.verify(merkleProof, merkleRoot, node))
+            revert InvalidProof();
+
+        // Mark it claimed and send the token.
+        _setClaimed(epochId, index);
+        IERC20(_token).safeTransfer(account, amount);
+
+        emit Claimed(epochId, index, account, amount);
+    }
+}

deploy/5_PayoutsController.ts

@@ -0,0 +1,55 @@
+import { HardhatRuntimeEnvironment } from 'hardhat/types';
+import { DeployFunction } from 'hardhat-deploy/types';
+import { network } from 'hardhat';
+
+// eslint-disable-next-line @typescript-eslint/ban-ts-comment
+// @ts-ignore
+import testHelpersConfig from '@openzeppelin/test-helpers/configure';
+// eslint-disable-next-line @typescript-eslint/ban-ts-comment
+// @ts-ignore
+import { singletons } from '@openzeppelin/test-helpers';
+import { deployerAddress } from '../hardhat.config';
+
+testHelpersConfig({ provider: network.provider });
+
+const contractName = 'PayoutsController';
+
+const deploy: DeployFunction = async function (hre: HardhatRuntimeEnvironment) {
+  const { deployments, getNamedAccounts, getUnnamedAccounts, network } = hre;
+  const { deploy, catchUnknownSigner } = deployments;
+
+  const { deployer } = await getNamedAccounts();
+
+  const dev = ['hardhat', 'localhost'].includes(network.name);
+
+  const GoldenTokenDeployment = await deployments.get('GoldenToken');
+  const goldenTokenAddress = GoldenTokenDeployment.address;
+
+  if (network.name === 'hardhat') {
+    const users = await getUnnamedAccounts();
+    await singletons.ERC1820Registry(users[0]);
+  }
+  const depl = dev ? deployer : deployerAddress;
+  await catchUnknownSigner(
+    deploy(contractName, {
+      from: depl,
+      log: true,
+      proxy: {
+        proxyContract: 'OpenZeppelinTransparentProxy',
+        owner: depl,
+        execute: {
+          init: {
+            methodName: 'initialize',
+            args: [goldenTokenAddress],
+          },
+        },
+      },
+    })
+  );
+};
+
+deploy.id = 'deploy_payouts_controller';
+deploy.tags = [contractName];
+deploy.dependencies = ['GoldenToken'];
+
+export default deploy;

package.json

@@ -38,6 +38,7 @@
   "dependencies": {
     "@gnosis.pm/safe-core-sdk": "^3.1.1",
     "@gnosis.pm/safe-ethers-lib": "^1.6.1",
+    "ethereumjs-util": "^7.1.5",
     "global": "^4.4.0"
   },
   "devDependencies": {

test/payouts/PayoutsController.ts

@@ -0,0 +1,134 @@
+import chai, { expect } from 'chai';
+import { deployments, ethers } from 'hardhat';
+import type { PayoutsController } from '../../typechain/contracts/payouts/PayoutsController';
+import { BigNumber } from 'ethers';
+import { SignerWithAddress } from '@nomiclabs/hardhat-ethers/signers';
+import getRandomBytesHexString from '../utils/getRandomBytesHexString';
+import BalanceTree from '../../trees/balance-tree';
+import { GoldenToken } from '../../typechain';
+chai.config.includeStack = true;
+chai.Assertion.includeStack = true;
+
+const address1 = '0x9ED5724f7dc9eCDd6b48185F875A8779c2059533';
+const address2 = '0x61bfCd8d7fcbd61508027Ba5935176A3298E941e';
+
+const ownableError = 'Ownable: caller is not the owner';
+const overrides = {
+  gasLimit: 9999999,
+};
+
+describe('PayoutsController', function () {
+  let PayoutsController: PayoutsController;
+  let GoldenToken: GoldenToken;
+  let owner: SignerWithAddress;
+
+  beforeEach(async function () {
+    await deployments.fixture(['GoldenToken']);
+    await deployments.fixture(['PayoutsController']);
+    PayoutsController = await ethers.getContract('PayoutsController');
+    GoldenToken = await ethers.getContract('GoldenToken');
+    expect(await PayoutsController.getToken()).to.equal(GoldenToken.address);
+    const [deployer] = await ethers.getSigners();
+    owner = deployer;
+    GoldenToken.connect(owner);
+    await GoldenToken.transfer(
+      PayoutsController.address,
+      '1000000000000000000000'
+    );
+    expect(await GoldenToken.balanceOf(PayoutsController.address)).to.equal(
+      '1000000000000000000000'
+    );
+  });
+
+  describe('Test functions', function () {
+    it('Should test contract functions', async () => {
+      expect(await PayoutsController.getLastEpoch()).to.equal(0);
+      const randomMerkleTree = getRandomBytesHexString(32);
+      await PayoutsController.addMerkleRoot(randomMerkleTree);
+      expect(await PayoutsController.getLastEpoch()).to.equal(1);
+    });
+  });
+
+  describe('Access control', function () {
+    it('Should test onlyOwner functions', async () => {
+      await PayoutsController.setToken(address1);
+      expect(await PayoutsController.getToken()).to.equal(address1);
+      const randomMerkleTree = getRandomBytesHexString(32);
+      await PayoutsController.addMerkleRoot(randomMerkleTree);
+      expect(
+        await PayoutsController.getMerkleRoot(
+          await PayoutsController.getLastEpoch()
+        )
+      ).to.equal(randomMerkleTree);
+      const randomMerkleTree2 = getRandomBytesHexString(32);
+      await PayoutsController.addMerkleRoot(randomMerkleTree2);
+      expect(
+        await PayoutsController.getMerkleRoot(
+          await PayoutsController.getLastEpoch()
+        )
+      ).to.equal(randomMerkleTree2);
+      expect(
+        await PayoutsController.getMerkleRoot(
+          (await PayoutsController.getLastEpoch()).sub(1)
+        )
+      ).to.equal(randomMerkleTree);
+    });
+    it('Should fail calling onlyOwner functions', async () => {
+      await PayoutsController.transferOwnership(
+        '0x15d34AAf54267DB7D7c367839AAf71A00a2C6A65'
+      );
+      await expect(PayoutsController.setToken(address1)).to.be.revertedWith(
+        ownableError
+      );
+      const randomMerkleTree = getRandomBytesHexString(32);
+      await expect(
+        PayoutsController.addMerkleRoot(randomMerkleTree)
+      ).to.be.revertedWith(ownableError);
+    });
+    it('Should test claiming functions', async () => {
+      const tree = new BalanceTree([
+        { account: address1, amount: BigNumber.from(100) },
+        { account: address2, amount: BigNumber.from(101) },
+      ]);
+      await PayoutsController.addMerkleRoot(tree.getHexRoot());
+      const proof1 = tree.getProof(0, address1, BigNumber.from(100));
+      expect(await PayoutsController.isClaimed(1, 0)).to.equal(false);
+      expect(await PayoutsController.isClaimed(1, 1)).to.equal(false);
+      expect(await GoldenToken.balanceOf(address1)).to.equal('0');
+      expect(await GoldenToken.balanceOf(address2)).to.equal('0');
+      await expect(
+        PayoutsController.claim(
+          1,
+          0,
+          address1,
+          BigNumber.from(100),
+          proof1,
+          overrides
+        )
+      )
+        .to.emit(PayoutsController, 'Claimed')
+        .withArgs(1, 0, address1, 100);
+      expect(await GoldenToken.balanceOf(address1)).to.equal('100');
+      expect(await GoldenToken.balanceOf(address2)).to.equal('0');
+      expect(await PayoutsController.isClaimed(1, 0)).to.equal(true);
+      expect(await PayoutsController.isClaimed(1, 1)).to.equal(false);
+      const proof2 = tree.getProof(1, address2, BigNumber.from(101));
+      await expect(
+        PayoutsController.claim(
+          1,
+          1,
+          address2,
+          BigNumber.from(101),
+          proof2,
+          overrides
+        )
+      )
+        .to.emit(PayoutsController, 'Claimed')
+        .withArgs(1, 1, address2, 101);
+      expect(await PayoutsController.isClaimed(1, 0)).to.equal(true);
+      expect(await PayoutsController.isClaimed(1, 1)).to.equal(true);
+      expect(await GoldenToken.balanceOf(address1)).to.equal('100');
+      expect(await GoldenToken.balanceOf(address2)).to.equal('101');
+    });
+  });
+});