文件 1 的 1:TokenDistributor.sol
pragma solidity 0.6.12;
interface GTCErc20 {
function delegateOnDist(address, address) external;
}
library ECDSA {
function recover(bytes32 hash, bytes memory signature) internal pure returns (address) {
if (signature.length != 65) {
revert("ECDSA: invalid signature length");
}
bytes32 r;
bytes32 s;
uint8 v;
assembly {
r := mload(add(signature, 0x20))
s := mload(add(signature, 0x40))
v := byte(0, mload(add(signature, 0x60)))
}
if (uint256(s) > 0x7FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF5D576E7357A4501DDFE92F46681B20A0) {
revert("ECDSA: invalid signature 's' value");
}
if (v != 27 && v != 28) {
revert("ECDSA: invalid signature 'v' value");
}
address signer = ecrecover(hash, v, r, s);
require(signer != address(0), "ECDSA: invalid signature");
return signer;
}
function toEthSignedMessageHash(bytes32 hash) internal pure returns (bytes32) {
return keccak256(abi.encodePacked("\x19Ethereum Signed Message:\n32", hash));
}
}
interface IERC20 {
function totalSupply() external view returns (uint256);
function balanceOf(address account) external view returns (uint256);
function transfer(address recipient, uint256 amount) external returns (bool);
function allowance(address owner, address spender) external view returns (uint256);
function approve(address spender, uint256 amount) external returns (bool);
function transferFrom(address sender, address recipient, uint256 amount) external returns (bool);
event Transfer(address indexed from, address indexed to, uint256 value);
event Approval(address indexed owner, address indexed spender, uint256 value);
}
library MerkleProof {
function verify(bytes32[] memory proof, bytes32 root, bytes32 leaf) internal pure returns (bool) {
bytes32 computedHash = leaf;
for (uint256 i = 0; i < proof.length; i++) {
bytes32 proofElement = proof[i];
if (computedHash <= proofElement) {
computedHash = keccak256(abi.encodePacked(computedHash, proofElement));
} else {
computedHash = keccak256(abi.encodePacked(proofElement, computedHash));
}
}
return computedHash == root;
}
}
contract TokenDistributor{
address immutable public signer;
address immutable public token;
uint immutable public deployTime;
address immutable public timeLockContract;
bytes32 immutable public merkleRoot;
bytes32 DOMAIN_SEPARATOR;
mapping(uint256 => uint256) private claimedBitMap;
struct EIP712Domain {
string name;
string version;
uint256 chainId;
address verifyingContract;
}
uint public constant CONTRACT_ACTIVE = 30 days;
bytes32 constant EIP712DOMAIN_TYPEHASH = keccak256(
"EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)"
);
bytes32 constant GTC_TOKEN_CLAIM_TYPEHASH = keccak256(
"Claim(uint32 user_id,address user_address,uint256 user_amount,address delegate_address,bytes32 leaf)"
);
event Claimed(uint256 user_id, address account, uint256 amount, bytes32 leaf);
event TransferUnclaimed(uint256 amount);
constructor(address _token, address _signer, address _timeLock, bytes32 _merkleRoot) public {
signer = _signer;
token = _token;
merkleRoot = _merkleRoot;
timeLockContract = _timeLock;
deployTime = block.timestamp;
DOMAIN_SEPARATOR = hash(EIP712Domain({
name: "GTC",
version: '1.0.0',
chainId: 1,
verifyingContract: address(this)
}));
}
function claimTokens(
uint32 user_id,
address user_address,
uint256 user_amount,
address delegate_address,
bytes32 eth_signed_message_hash_hex,
bytes memory eth_signed_signature_hex,
bytes32[] calldata merkleProof,
bytes32 leaf
) external {
require(msg.sender == user_address, 'TokenDistributor: Must be msg sender.');
require(!isClaimed(user_id), 'TokenDistributor: Tokens already claimed.');
require(isSigned(eth_signed_message_hash_hex, eth_signed_signature_hex), 'TokenDistributor: Valid Signature Required.');
bytes32 hashed_base_claim = keccak256(abi.encode(
GTC_TOKEN_CLAIM_TYPEHASH,
user_id,
user_address,
user_amount,
delegate_address,
leaf
));
bytes32 digest = keccak256(abi.encodePacked(
"\x19\x01",
DOMAIN_SEPARATOR,
hashed_base_claim
));
require(digest == eth_signed_message_hash_hex, 'TokenDistributor: Claim Hash Mismatch.');
bytes32 leaf_hash = keccak256(abi.encode(keccak256(abi.encode(user_id, user_amount))));
require(leaf == leaf_hash, 'TokenDistributor: Leaf Hash Mismatch.');
require(MerkleProof.verify(merkleProof, merkleRoot, leaf), 'TokenDistributor: Valid Proof Required.');
_delegateTokens(user_address, delegate_address);
_setClaimed(user_id);
require(IERC20(token).transfer(user_address, user_amount), 'TokenDistributor: Transfer failed.');
emit Claimed(user_id, user_address, user_amount, leaf);
}
function isClaimed(uint256 index) public view returns (bool) {
uint256 claimedWordIndex = index / 256;
uint256 claimedBitIndex = index % 256;
uint256 claimedWord = claimedBitMap[claimedWordIndex];
uint256 mask = (1 << claimedBitIndex);
return claimedWord & mask == mask;
}
function transferUnclaimed() public {
require(block.timestamp >= deployTime + CONTRACT_ACTIVE, 'TokenDistributor: Contract is still active.');
uint remainingBalance = IERC20(token).balanceOf(address(this));
require(IERC20(token).transfer(timeLockContract, remainingBalance), 'TokenDistributor: Transfer unclaimed failed.');
emit TransferUnclaimed(remainingBalance);
}
function isSigned(bytes32 eth_signed_message_hash_hex, bytes memory eth_signed_signature_hex) internal view returns (bool) {
address untrusted_signer = ECDSA.recover(eth_signed_message_hash_hex, eth_signed_signature_hex);
return untrusted_signer == signer;
}
function hash(EIP712Domain memory eip712Domain) internal pure returns (bytes32) {
return keccak256(abi.encode(
EIP712DOMAIN_TYPEHASH,
keccak256(bytes(eip712Domain.name)),
keccak256(bytes(eip712Domain.version)),
eip712Domain.chainId,
eip712Domain.verifyingContract
));
}
function _setClaimed(uint256 index) private {
uint256 claimedWordIndex = index / 256;
uint256 claimedBitIndex = index % 256;
claimedBitMap[claimedWordIndex] = claimedBitMap[claimedWordIndex] | (1 << claimedBitIndex);
}
function _delegateTokens(address delegator, address delegatee) private {
GTCErc20 GTCToken = GTCErc20(token);
GTCToken.delegateOnDist(delegator, delegatee);
}
}
