taikoxyz · dantaik · Apr 27, 2024 · Apr 24, 2024 · Apr 25, 2024 · Apr 25, 2024
diff --git a/packages/supplementary-contracts/contracts/TokenUnlocking.sol b/packages/supplementary-contracts/contracts/TokenUnlocking.sol
@@ -1,3 +1,279 @@
+// SPDX-License-Identifier: MIT
 pragma solidity 0.8.24;
 
-contract TokenUnlocking { }
+import "@openzeppelin/contracts-upgradeable/access/OwnableUpgradeable.sol";
+import "@openzeppelin/contracts-upgradeable/security/ReentrancyGuardUpgradeable.sol";
+import "@openzeppelin/contracts/token/ERC20/IERC20.sol";
+import "@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
+import "@openzeppelin/contracts/utils/cryptography/ECDSA.sol";
+
+/// @title TokenUnlocking
+/// @notice Contract for managing Taiko token unlocking.
+///
+/// It manages only unlocking and vested tokens will be deposited into this contract (through
+/// 'depositToGrantee()' function) when the purchase notice sent out by Taiko, is paid. Unlocking
+/// will be a 4-year immutable period, with a 1-year cliff, counting from TGE.
+///
+/// Vesting will be a regular (quarterly / twice a year, TBD) 'off-chain' legal payment action,
+/// where those purschase notices can be exercised (and paid up-front, so before depoists made).
+/// Once tokens are deposited into this contract it cannot be forfeited anymore. If an
+/// employment is ended, the company (Taiko) simply does not send out purchase notices anymore, so
+/// that more tokens would not be deposited, beside the eligible proportion of that same vesting
+/// release period (e.g.: if Bob spent 1 month at Taiko out of that quarterly/half-yearly vesting,
+/// those will be deposited of course).
+///
+/// We should deploy multiple instances of this contract per grantee and per grant. So each person
+/// should have the same amount of contract deployed as grants granted (grant 1, grant 2, etc.)
+/// @custom:security-contact security@taiko.xyz
+contract TokenUnlocking is OwnableUpgradeable, ReentrancyGuardUpgradeable {
+    using SafeERC20 for IERC20;
+
+    /// @notice It is basically the same as "amount deposited" or "total amount vested" (so
+    /// far).
+    uint128 amountVested;
+    /// @notice Represents how many tokens withdrawn already and helps with: withdrawable
+    /// amount.
+    // - The current "withdrawable amount" is determined by the help of this variable =
+    // (amountVested *(% of unlocked) ) - amountWithdrawn
+    uint128 amountWithdrawn;
+    /// @notice The address of the recipient.
+    address grantRecipient;
+    /// @notice For tests or sub-contracts, getTgeTimestamp() can be overridden.
+    uint64 tgeTimestamp;
+    /// @notice The Taiko token address.
+    address public taikoToken;
+    /// @notice The shared vault address, from which tko token deposits will be triggered by the
+    /// depositToGrantee() function
+    address public sharedVault;
+    /// @notice Mapping of recipient address to the next withdrawal nonce.
+    mapping(address recipient => uint256 withdrawalNonce) public withdrawalNonces;
+
+    uint256[45] private __gap;
+
+    /// @notice Emitted when the grant contract is set up with correct dates.
+    /// @param recipient The grant recipient.
+    /// @param unlockStartDate The TGE date.
+    /// @param unlockCliffDate The end date of cliff period.
+    /// @param unlockPeriod The unlock period.
+    event GrantInitialized(
+        address indexed recipient,
+        uint64 unlockStartDate,
+        uint64 unlockCliffDate,
+        uint32 unlockPeriod
+    );
+
+    /// @notice Emitted during vesting events.
+    /// @param recipient The grant recipient address.
+    /// @param currentDeposit The current deposited tko amount.
+    /// @param totalVestedAmount The total vested amount so far.
+    event VestTokenTriggered(
+        address indexed recipient, uint128 currentDeposit, uint128 totalVestedAmount
+    );
+
+    /// @notice Emitted when tokens are withdrawn.
+    /// @param recipient The grant recipient address.
+    /// @param to The address where the granted and unlocked tokens shall be sent to.
+    /// @param amount The amount of tokens withdrawn.
+    /// @param allAmountWithdrawn The all amount (including the current) already withdrawn.
+    event Withdrawn(
+        address indexed recipient, address to, uint128 amount, uint128 allAmountWithdrawn
+    );
+
+    error GRANT_NOT_INITIALIZED();
+    error INVALID_GRANTEE();
+    error INVALID_NONCE();
+    error INVALID_PARAM();
+    error INVALID_SIGNATURE();
+    error WRONG_GRANTEE_RECIPIENT();
+
+    /// @notice Initializes the contract.
+    /// @param _owner The contract owner address.
+    /// @param _taikoToken The Taiko token address.
+    /// @param _sharedVault The shared vault address.
+    /// @param _grantRecipient Who will be the grantee for this contract.
+    function init(
+        address _owner,
+        address _taikoToken,
+        address _sharedVault,
+        address _grantRecipient,
+        uint64 _tgeTimestamp
+    )
+        external
+        initializer
+    {
+        if (
+            _taikoToken == address(0) || _sharedVault == address(0) || _grantRecipient == address(0)
+                || _tgeTimestamp == 0
+        ) {
+            revert INVALID_PARAM();
+        }
+
+        // OZ 4.9.6. version does not allow param setting with __Ownable_init(), so we transfer the
+        // ownership afterwards.
+        __Ownable_init();
+        _transferOwnership(_owner);
+
+        taikoToken = _taikoToken;
+        sharedVault = _sharedVault;
+
+        // Initializing here, that the contract belongs to this grant recipient, and TGE starts or
+        // started at _tgeTimestamp.
+        grantRecipient = _grantRecipient;
+        tgeTimestamp = _tgeTimestamp;
+
+        emit GrantInitialized(
+            _grantRecipient, _tgeTimestamp, getCliffEndTimestamp(), getUnlockPeriod()
+        );
+    }
+
+    /// @notice Triggers a deposits through the vault to this contract.
+    /// This transaction should happen on a regular basis, e.g., quarterly.
+    /// @param _recipient The grant recipient address.
+    /// @param _currentDeposit The current deposit.
+    function vestToken(
+        address _recipient,
+        uint128 _currentDeposit
+    )
+        external
+        onlyOwner
+        nonReentrant
+    {
+        if (_recipient != grantRecipient) revert INVALID_GRANTEE();
+
+        // This contract shall be appproved() on the sharedVault for the given _currentDeposit
+        // amount
+        //This is needed because this is the way we can be sure, we know exactly how much vested
+        // already. Simple transfer from TaikoTreasury will not update anything hence it does not
+        // trigger receive() or fallback().
+        IERC20(taikoToken).safeTransferFrom(sharedVault, address(this), _currentDeposit);
+
+        amountVested += _currentDeposit;
+
+        emit VestTokenTriggered(_recipient, _currentDeposit, amountVested);
+    }
+
+    /// @notice Withdraws all withdrawable tokens.
+    function withdraw() external nonReentrant {
+        _withdraw(msg.sender, msg.sender);
+    }
+
+    /// @notice Withdraws all withdrawable tokens to a designated address.
+    /// @param _to The address where the granted and unlocked tokens shall be sent to.
+    /// @param _nonce The nonce to be used.
+    /// @param _sig Signature provided by the grant recipient.
+    function withdraw(address _to, uint256 _nonce, bytes calldata _sig) external nonReentrant {
+        if (_to == address(0)) revert INVALID_PARAM();
+
+        address account = ECDSA.recover(getWithdrawalHash(grantRecipient, _to, _nonce), _sig);
+        if (account == address(0)) revert INVALID_SIGNATURE();
+        if (withdrawalNonces[account] != _nonce) revert INVALID_NONCE();
+
+        withdrawalNonces[account] += 1;
+        _withdraw(account, _to);
+    }
+
+    /// @notice Gets the hash to be signed to authorize an withdrawal.
+    /// @param _grantOwner The owner of the grant.
+    /// @param _to The destination address.
+    /// @param _nonce The withdrawal nonce.
+    /// @return The hash to be signed.
+    function getWithdrawalHash(
+        address _grantOwner,
+        address _to,
+        uint256 _nonce
+    )
+        public
+        view
+        returns (bytes32)
+    {
+        return keccak256(
+            abi.encode("WITHDRAW_GRANT", _grantOwner, block.chainid, address(this), _to, _nonce)
+        );
+    }
+
+    /// @notice Returns the summary of the grant for a given recipient. Does not reverts if this
+    /// contract does not belong to _recipient, but returns all 0.
+    /// @param _recipient The supposed recipient.
+    /// @return amountVested_ The overall amount vested (including the already withdrawn).
+    /// @return amountUnlocked_ The overall amount unlocked (including the already withdrawn).
+    /// @return amountWithdrawn_ Already withdrawn amount.
+    /// @return amountToWithdraw_ Currently withdrawable.
+    function getMyGrantSummary(address _recipient)
+        public
+        view
+        returns (
+            uint128 amountVested_,
+            uint128 amountUnlocked_,
+            uint128 amountWithdrawn_,
+            uint128 amountToWithdraw_
+        )
+    {
+        if (_recipient != grantRecipient) {
+            // This unlocking contract is not for the supplied _recipient, so obviously 0
+            // everywhere.
+            return (0, 0, 0, 0);
+        }
+
+        amountVested_ = amountVested;
+        /// @notice Amount unlocked obviously represents the all unlocked per vested tokens so:
+        /// (amountUnlocked >= amountToWithdraw) && (amountUnlocked >= amountWithdrawn) -> Always
+        /// true. Because there might be some amount already withdrawn, but amountUnlocked does not
+        /// take into account that amount (!).
+        amountUnlocked_ = _calcAmountUnlocked(
+            amountVested, getTgeTimestamp(), getCliffEndTimestamp(), getUnlockPeriod()
+        );
+
+        amountWithdrawn_ = amountWithdrawn;
+        amountToWithdraw_ = amountUnlocked_ - amountWithdrawn_;
+    }
+
+    function getTgeTimestamp() public view virtual returns (uint64) {
+        return tgeTimestamp;
+    }
+
+    function getCliffEndTimestamp() public view virtual returns (uint64) {
+        return (getTgeTimestamp() + 365 days);
+    }
+
+    function getUnlockPeriod() public view virtual returns (uint32) {
+        return (4 * 365 days);
+    }
+
+    function _withdraw(address _recipient, address _to) private {
+        if (_recipient != grantRecipient) {
+            // This unlocking contract is not for the supplied _recipient, so revert.
+            revert WRONG_GRANTEE_RECIPIENT();
+        }
+
+        (,,, uint128 amountToWithdraw) = getMyGrantSummary(_recipient);
+
+        amountWithdrawn = amountToWithdraw;
+
+        // _to address get's the tokens
+        IERC20(taikoToken).safeTransferFrom(sharedVault, _to, amountToWithdraw);
+
+        emit Withdrawn(_recipient, _to, amountToWithdraw, amountWithdrawn);
+    }
+
+    function _calcAmountUnlocked(
+        uint128 _amount,
+        uint64 _start,
+        uint64 _cliff,
+        uint64 _period
+    )
+        private
+        view
+        returns (uint128)
+    {
+        if (_amount == 0) return 0;
+        if (_start == 0) return _amount;
+        if (block.timestamp <= _start) return 0;
+        // Remember! Cliff can be (theoretically) 0
+        if (_cliff != 0 && block.timestamp <= _cliff) return 0;
+        // Remember! Period can also be theoretically 0
+        if (_period == 0) return _amount;
+        if (block.timestamp >= _start + _period) return _amount;
+        // Else, calculate the proportion
+        return _amount * uint64(block.timestamp - _start) / _period;
+    }
+}
diff --git a/packages/supplementary-contracts/script/DeployTokenUnlocking.s.sol b/packages/supplementary-contracts/script/DeployTokenUnlocking.s.sol
@@ -0,0 +1,40 @@
+// SPDX-License-Identifier: MIT
+pragma solidity 0.8.24;
+
+import "forge-std/src/Script.sol";
+import "forge-std/src/console2.sol";
+
+import "@openzeppelin/contracts/proxy/ERC1967/ERC1967Proxy.sol";
+
+import "../contracts/TokenUnlocking.sol";
+
+contract DeployTokenUnlocking is Script {
+    address public CONTRACT_OWNER = vm.envAddress("TAIKO_LABS_MULTISIG");
+    address public TAIKO_TOKEN = vm.envAddress("TAIKO_TOKEN");
+    address public SHARED_TOKEN_VAULT = vm.envAddress("SHARED_TOKEN_VAULT");
+    address public GRANTEE = vm.envAddress("GRANTEE");
+    uint256 public TGE = vm.envUint("TGE_TIMESTAMP");
+
+    address tokenUnlocking;
+
+    function setUp() public { }
+
+    function run() external {
+        vm.startBroadcast();
+        tokenUnlocking = deployProxy({
+            impl: address(new TokenUnlocking()),
+            data: abi.encodeCall(
+                TokenUnlocking.init,
+                (CONTRACT_OWNER, TAIKO_TOKEN, SHARED_TOKEN_VAULT, GRANTEE, uint64(TGE))
+                )
+        });
+        vm.stopBroadcast();
+    }
+
+    function deployProxy(address impl, bytes memory data) public returns (address proxy) {
+        proxy = address(new ERC1967Proxy(impl, data));
+
+        console2.log("  proxy      :", proxy);
+        console2.log("  impl       :", impl);
+    }
+}
diff --git a/packages/supplementary-contracts/test/TokenUnlocking.t.sol b/packages/supplementary-contracts/test/TokenUnlocking.t.sol
@@ -0,0 +1,62 @@
+// SPDX-License-Identifier: MIT
+pragma solidity 0.8.24;
+
+import "forge-std/src/Test.sol";
+import "forge-std/src/console2.sol";
+
+import "@openzeppelin/contracts/proxy/ERC1967/ERC1967Proxy.sol";
+import "@openzeppelin/contracts/token/ERC20/ERC20.sol";
+
+import "../contracts/TokenUnlocking.sol";
+
+contract MyERC20 is ERC20 {
+    constructor(address owner) ERC20("Taiko Token", "TKO") {
+        _mint(owner, 1_000_000_000e18);
+    }
+}
+
+contract USDC is ERC20 {
+    constructor(address recipient) ERC20("USDC", "USDC") {
+        _mint(recipient, 1_000_000_000e6);
+    }
+
+    function decimals() public view virtual override returns (uint8) {
+        return 6;
+    }
+}
+
+contract TestTokenUnlocking is Test {
+    address internal Owner = vm.addr(0x1);
+    address internal Alice = vm.addr(0x2);
+    address internal Bob = vm.addr(0x3);
+    address internal Vault = vm.addr(0x4);
+
+    ERC20 tko = new MyERC20(Vault);
+    ERC20 usdc = new USDC(Alice);
+
+    uint128 public constant ONE_TKO_UNIT = 1e18;
+
+    TokenUnlocking tokenUnlocking;
+
+    function setUp() public {
+        tokenUnlocking = TokenUnlocking(
+            deployProxy({
+                impl: address(new TokenUnlocking()),
+                data: abi.encodeCall(
+                    TokenUnlocking.init, (Owner, address(tko), Vault, Alice, uint64(block.timestamp))
+                    )
+            })
+        );
+    }
+
+    function test_example() public pure {
+        console2.log("write_more_test");
+    }
+
+    function deployProxy(address impl, bytes memory data) public returns (address proxy) {
+        proxy = address(new ERC1967Proxy(impl, data));
+
+        console2.log("  proxy      :", proxy);
+        console2.log("  impl       :", impl);
+    }
+}