-
Notifications
You must be signed in to change notification settings - Fork 13
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
1839 merkle payout #54
Open
tim-schultz
wants to merge
18
commits into
main
Choose a base branch
from
1839-merkle-payout
base: main
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Open
Changes from 16 commits
Commits
Show all changes
18 commits
Select commit
Hold shift + click to select a range
bf5fba7
feat(contracts): adding barebones staking contracts
d82d3d9
adding functionality, doing gas tests
0e77ca0
continuing gas tests
c152937
continuing gas tests
6f65797
continuing gas tests
908d49a
fixed test script
27a7d26
continuing gas tests
c9fd033
continuing gas tests
9cda7d9
Squashed commit of the following:
e71e1a1
added thorough tests for stake/slash/release, added slash nonce
e8a0dcc
chore: resolved conflicts
tim-schultz eab4f33
fix tests after merge
68c16be
fix: reset time manipulation after tests
tim-schultz 6d9e960
ownership checks
tim-schultz ec68956
feat: slash using merkle proof
tim-schultz 2e710f5
feat: withdraw based on merkle proof
tim-schultz b7ef2b7
WIP bad list merkle tree
tim-schultz e7623d3
fix proof params
tim-schultz File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,372 @@ | ||
// SPDX-License-Identifier: GPL | ||
pragma solidity ^0.8.23; | ||
|
||
import {Initializable, AccessControlUpgradeable} from "@openzeppelin/contracts-upgradeable/access/AccessControlUpgradeable.sol"; | ||
import {EnumerableSet} from "@openzeppelin/contracts/utils/structs/EnumerableSet.sol"; | ||
import {PausableUpgradeable} from "@openzeppelin/contracts-upgradeable/security/PausableUpgradeable.sol"; | ||
import {UUPSUpgradeable} from "@openzeppelin/contracts/proxy/utils/UUPSUpgradeable.sol"; | ||
import {GTC} from "./mocks/GTC.sol"; | ||
|
||
import "@openzeppelin/contracts/utils/cryptography/MerkleProof.sol"; | ||
|
||
import "hardhat/console.sol"; | ||
|
||
/** | ||
* @title GitcoinIdentityStaking | ||
* @notice This contract is used to stake GTC on self/community identity | ||
*/ | ||
|
||
// Control | ||
contract GitcoinIdentityStaking is | ||
Initializable, | ||
UUPSUpgradeable, | ||
AccessControlUpgradeable, | ||
PausableUpgradeable | ||
{ | ||
using EnumerableSet for EnumerableSet.AddressSet; | ||
|
||
error SlashProofHashNotFound(); | ||
error SlashProofHashNotValid(); | ||
error SlashProofHashAlreadyUsed(); | ||
error FundsNotAvailableToRelease(); | ||
error MinimumBurnRoundDurationNotMet(); | ||
error AmountMustBeGreaterThanZero(); | ||
error UnlockTimeMustBeInTheFuture(); | ||
error CannotStakeOnSelf(); | ||
error FailedTransfer(); | ||
error InvalidLockTime(); | ||
error StakeIsLocked(); | ||
error NotOwnerOfStake(); | ||
|
||
bytes32 public constant SLASHER_ROLE = keccak256("SLASHER_ROLE"); | ||
bytes32 public constant RELEASER_ROLE = keccak256("RELEASER_ROLE"); | ||
|
||
struct Stake { | ||
uint192 amount; | ||
uint64 unlockTime; | ||
} | ||
|
||
// TODO func selfStakeIdsLength(address) => uint256 | ||
mapping(address => uint256[]) public selfStakeIds; | ||
mapping(address => mapping(address => uint256[])) public communityStakeIds; | ||
|
||
mapping(uint256 stakeId => Stake) public stakes; | ||
uint256 public stakeCount; | ||
|
||
uint256 public currentSlashRound = 1; | ||
|
||
uint64 public burnRoundMinimumDuration = 90 days; | ||
|
||
uint256 public lastBurnTimestamp; | ||
|
||
address public burnAddress; | ||
|
||
mapping(uint256 round => uint192 amount) public totalSlashed; | ||
|
||
// Used to permit unfreeze | ||
mapping(bytes32 => bool) public slashProofHashes; | ||
|
||
mapping(bytes32 => bool) public slashMerkleRoots; | ||
Comment on lines
+67
to
+69
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. It would be great if we could drop these 2 mappings |
||
mapping(bytes32 => uint192) public slashTotals; | ||
|
||
bytes32 public slashMerkleRoot; | ||
|
||
event SelfStake( | ||
uint256 indexed id, | ||
address indexed staker, | ||
uint192 amount, | ||
uint64 unlockTime | ||
); | ||
|
||
event CommunityStake( | ||
uint256 indexed id, | ||
address indexed staker, | ||
address indexed stakee, | ||
uint192 amount, | ||
uint64 unlockTime | ||
); | ||
|
||
event SelfStakeWithdrawn( | ||
uint256 indexed id, | ||
address indexed staker, | ||
uint192 amount | ||
); | ||
|
||
event CommunityStakeWithdrawn( | ||
uint256 indexed id, | ||
address indexed staker, | ||
address indexed stakee, | ||
uint192 amount | ||
); | ||
|
||
event Slash( | ||
address indexed slasher, | ||
bytes32 slashProofHash, | ||
uint192 slashAmount | ||
); | ||
|
||
event Burn(uint256 indexed round, uint192 amount); | ||
|
||
GTC public gtc; | ||
|
||
function initialize( | ||
address gtcAddress, | ||
address _burnAddress | ||
) public initializer { | ||
_grantRole(DEFAULT_ADMIN_ROLE, msg.sender); | ||
|
||
__AccessControl_init(); | ||
__Pausable_init(); | ||
|
||
gtc = GTC(gtcAddress); | ||
burnAddress = _burnAddress; | ||
|
||
lastBurnTimestamp = block.timestamp; | ||
} | ||
|
||
function selfStake(uint192 amount, uint64 duration) external { | ||
// revert if amount is 0. Since this value is unsigned integer | ||
if (amount == 0) { | ||
revert AmountMustBeGreaterThanZero(); | ||
} | ||
|
||
uint64 unlockTime = duration + uint64(block.timestamp); | ||
|
||
if ( | ||
unlockTime < block.timestamp + 12 weeks || | ||
unlockTime > block.timestamp + 104 weeks | ||
) { | ||
revert InvalidLockTime(); | ||
} | ||
|
||
uint256 stakeId = ++stakeCount; | ||
stakes[stakeId].amount = amount; | ||
stakes[stakeId].unlockTime = unlockTime; | ||
|
||
selfStakeIds[msg.sender].push(stakeId); | ||
|
||
if (!gtc.transferFrom(msg.sender, address(this), amount)) { | ||
revert FailedTransfer(); | ||
} | ||
|
||
emit SelfStake(stakeId, msg.sender, amount, unlockTime); | ||
} | ||
|
||
function ownerOfStake(address staker, uint value) public view returns (bool) { | ||
uint[] memory currentStakes = selfStakeIds[staker]; | ||
for (uint i = 0; i < currentStakes.length; i++) { | ||
if (currentStakes[i] == value) { | ||
return true; | ||
} | ||
} | ||
return false; | ||
} | ||
|
||
error InvalidWithdrawProof(); | ||
|
||
function withdrawSelfStake( | ||
uint256 stakeId, | ||
uint192 slashAmnt, | ||
bytes32[] memory stakeProof | ||
) external { | ||
// not really needed anymore since withdraws are dependent on a valid proof that contains msg.sender | ||
// if (!ownerOfStake(msg.sender, stakeId)) { | ||
// revert NotOwnerOfStake(); | ||
// } | ||
|
||
if (stakes[stakeId].unlockTime < block.timestamp) { | ||
revert StakeIsLocked(); | ||
} | ||
|
||
console.log("slashAmnt", slashAmnt); | ||
console.log("stakes[stakeId].amount", stakes[stakeId].amount); | ||
bytes32 leaf = keccak256( | ||
bytes.concat(keccak256(abi.encode(msg.sender, slashAmnt, stakeId))) | ||
); | ||
|
||
console.logBytes32(slashMerkleRoot); | ||
if (!MerkleProof.verify(stakeProof, slashMerkleRoot, leaf)) { | ||
revert InvalidWithdrawProof(); | ||
} | ||
|
||
// For good users this will always be zero. For bad users this will be the slash amount | ||
uint192 amount = stakes[stakeId].amount - slashAmnt; | ||
|
||
gtc.transfer(msg.sender, amount); | ||
|
||
delete stakes[stakeId]; | ||
|
||
emit SelfStakeWithdrawn(stakeId, msg.sender, amount); | ||
} | ||
|
||
function communityStake( | ||
address stakee, | ||
uint192 amount, | ||
uint64 duration | ||
) external { | ||
if (stakee == msg.sender) { | ||
revert CannotStakeOnSelf(); | ||
} | ||
if (amount == 0) { | ||
revert AmountMustBeGreaterThanZero(); | ||
} | ||
|
||
uint64 unlockTime = duration + uint64(block.timestamp); | ||
|
||
if ( | ||
unlockTime < block.timestamp + 12 weeks || | ||
unlockTime > block.timestamp + 104 weeks | ||
) { | ||
revert InvalidLockTime(); | ||
} | ||
|
||
uint256 stakeId = ++stakeCount; | ||
stakes[stakeId].amount = amount; | ||
stakes[stakeId].unlockTime = uint64(unlockTime); | ||
|
||
communityStakeIds[msg.sender][stakee].push(stakeId); | ||
|
||
if (!gtc.transferFrom(msg.sender, address(this), amount)) { | ||
revert FailedTransfer(); | ||
} | ||
|
||
emit CommunityStake(stakeId, msg.sender, stakee, amount, unlockTime); | ||
} | ||
|
||
function ownerOfCommunityStake( | ||
address staker, | ||
address stakee, | ||
uint value | ||
) public view returns (bool) { | ||
uint[] memory currentStakes = communityStakeIds[staker][stakee]; | ||
for (uint i = 0; i < currentStakes.length; i++) { | ||
if (currentStakes[i] == value) { | ||
return true; | ||
} | ||
} | ||
return false; | ||
} | ||
|
||
function withdrawCommunityStake(address stakee, uint256 stakeId) external { | ||
if (!ownerOfCommunityStake(msg.sender, stakee, stakeId)) { | ||
revert NotOwnerOfStake(); | ||
} | ||
|
||
if (stakes[stakeId].unlockTime < block.timestamp) { | ||
revert StakeIsLocked(); | ||
} | ||
|
||
uint192 amount = stakes[stakeId].amount; | ||
|
||
delete stakes[stakeId]; | ||
|
||
gtc.transfer(msg.sender, amount); | ||
|
||
emit SelfStakeWithdrawn(stakeId, msg.sender, amount); | ||
} | ||
|
||
error InvalidSlashProof(); | ||
|
||
function slash( | ||
bytes32 currentSlashMerkleRoot, | ||
uint192 slashTotal, | ||
bytes32[] memory slashTotalProof | ||
) external onlyRole(SLASHER_ROLE) { | ||
if (slashMerkleRoots[currentSlashMerkleRoot]) { | ||
revert SlashProofHashAlreadyUsed(); | ||
} | ||
|
||
bytes32 leaf = keccak256( | ||
bytes.concat(keccak256(abi.encode(address(0), slashTotal, uint192(0)))) | ||
); | ||
if (!MerkleProof.verify(slashTotalProof, currentSlashMerkleRoot, leaf)) { | ||
revert InvalidSlashProof(); | ||
} | ||
|
||
slashMerkleRoots[currentSlashMerkleRoot] = true; | ||
slashTotals[currentSlashMerkleRoot] = slashTotal; | ||
slashMerkleRoot = currentSlashMerkleRoot; | ||
|
||
emit Slash(msg.sender, slashMerkleRoot, slashTotal); | ||
} | ||
|
||
// Burn last round and start next round (locking this round) | ||
// | ||
// Rounds don't matter for staking, this is just to | ||
// ensure that slashes are aged before being burned | ||
// | ||
// On each call... | ||
// - the current round contains all the slashes younger than the last | ||
// burn (a minimum of the round mimimum duration, 0-90 days) | ||
// - the previous round contains all the non-released slashes older | ||
// than this (at least 90 days), and so it is burned | ||
// - the current round becomes the previous round, and a new round | ||
// is initiated | ||
// On the very first call, nothing will be burned | ||
function burn() external { | ||
if (block.timestamp - lastBurnTimestamp < burnRoundMinimumDuration) { | ||
revert MinimumBurnRoundDurationNotMet(); | ||
} | ||
|
||
uint192 amountToBurn = totalSlashed[currentSlashRound - 1]; | ||
|
||
if (amountToBurn > 0) { | ||
if (!gtc.transfer(burnAddress, amountToBurn)) { | ||
revert FailedTransfer(); | ||
} | ||
} | ||
|
||
emit Burn(currentSlashRound - 1, amountToBurn); | ||
|
||
currentSlashRound++; | ||
lastBurnTimestamp = block.timestamp; | ||
} | ||
|
||
struct SlashMember { | ||
address account; | ||
uint192 amount; | ||
} | ||
|
||
// The nonce is used in the proof in case we need to | ||
// do the exact same slash multiple times | ||
function release( | ||
SlashMember[] calldata slashMembers, | ||
uint256 slashMemberIndex, | ||
uint192 amountToRelease, | ||
bytes32 slashProofHash, | ||
bytes32 nonce, | ||
bytes32 newNonce | ||
) external onlyRole(RELEASER_ROLE) { | ||
if (!slashProofHashes[slashProofHash]) { | ||
revert SlashProofHashNotFound(); | ||
} | ||
if (keccak256(abi.encode(slashMembers, nonce)) != slashProofHash) { | ||
revert SlashProofHashNotValid(); | ||
} | ||
|
||
SlashMember memory slashMemberToRelease = slashMembers[slashMemberIndex]; | ||
|
||
if (amountToRelease > slashMemberToRelease.amount) { | ||
revert FundsNotAvailableToRelease(); | ||
} | ||
|
||
SlashMember[] memory newSlashMembers = slashMembers; | ||
|
||
newSlashMembers[slashMemberIndex].amount -= amountToRelease; | ||
|
||
bytes32 newSlashProofHash = keccak256( | ||
abi.encode(newSlashMembers, newNonce) | ||
); | ||
|
||
slashProofHashes[slashProofHash] = false; | ||
slashProofHashes[newSlashProofHash] = true; | ||
|
||
if (!gtc.transfer(slashMemberToRelease.account, amountToRelease)) { | ||
revert FailedTransfer(); | ||
} | ||
} | ||
|
||
function _authorizeUpgrade( | ||
address | ||
) internal override onlyRole(DEFAULT_ADMIN_ROLE) {} | ||
} |
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Will probably be needed when tracking the burn operations.