[BOOST-5261] feat(evm): add authorized clawbacks from incentives to TransparentBudget (#391)

Author: topocount

.github/workflows/verify.yml

@@ -36,6 +36,7 @@ jobs:
         uses: SpicyPizza/[email protected]
         with:
           envkey_TEST_SIGNER_PRIVATE_KEY: ${{ secrets.TEST_SIGNER_PRIVATE_KEY }}
+          envkey_VITE_SEPOLIA_RPC_URL: ${{ secrets.VITE_SEPOLIA_RPC_URL }}
           directory: packages/evm
           file_name: .env
 

packages/evm/.env.example

@@ -2,4 +2,5 @@ TEST_SIGNER_PRIVATE_KEY=
 BOOST_FEE_RECIPIENT=
 BOOST_DEPLOYMENT_SALT=
 ETHERSCAN_API_KEY=
-MAIN_ETHERSCAN_API_KEY=
+MAIN_ETHERSCAN_API_KEY=
+VITE_SEPOLIA_RPC_URL=

packages/evm/contracts/budgets/TransparentBudget.sol

@@ -4,6 +4,7 @@ pragma solidity ^0.8.24;
 import {IERC1155Receiver} from "@openzeppelin/contracts/token/ERC1155/IERC1155Receiver.sol";
 import {IERC1155} from "@openzeppelin/contracts/token/ERC1155/IERC1155.sol";
 import {IERC165} from "@openzeppelin/contracts/utils/introspection/IERC165.sol";
+import {IERC20} from "@openzeppelin/contracts/token/ERC20/IERC20.sol";
 import {DynamicArrayLib} from "@solady/utils/DynamicArrayLib.sol";
 import {LibTransient} from "@solady/utils/LibTransient.sol";
 
@@ -13,16 +14,13 @@ import {ReentrancyGuard} from "@solady/utils/ReentrancyGuard.sol";
 
 import {BoostCore} from "contracts/BoostCore.sol";
 import {BoostError} from "contracts/shared/BoostError.sol";
+import {BoostLib} from "contracts/shared/BoostLib.sol";
 import {ABudget} from "contracts/budgets/ABudget.sol";
 import {ACloneable} from "contracts/shared/ACloneable.sol";
+import {AIncentive} from "contracts/incentives/AIncentive.sol";
 import {ATransparentBudget} from "contracts/budgets/ATransparentBudget.sol";
-
-/*
-    TODO
-    1. implement clawback logic and tracking on deposits
-    2. implement clawback auth
-    3. implement permit2 support
-*/
+import {IClaw} from "contracts/shared/IClaw.sol";
+import {IPermit2} from "contracts/shared/IPermit2.sol";
 
 /// @title Simple ABudget
 /// @notice A minimal budget implementation that simply holds and distributes tokens (ERC20-like and native)
@@ -32,6 +30,8 @@ contract TransparentBudget is ATransparentBudget, ReentrancyGuard {
     using DynamicArrayLib for *;
     using LibTransient for *;
 
+    IPermit2 public constant PERMIT2 = IPermit2(0x000000000022D473030F116dDEE9F6B43aC78BA3);
+
     /// @dev The total amount of each fungible asset distributed from the budget
     mapping(address => uint256) private _distributedFungible;
 
@@ -44,10 +44,7 @@ contract TransparentBudget is ATransparentBudget, ReentrancyGuard {
         revert BoostError.NotImplemented();
     }
 
-    function createBoost(bytes[] calldata _allocations, BoostCore core, bytes calldata _boostPayload)
-        external
-        payable
-    {
+    function createBoost(bytes[] calldata _allocations, BoostCore core, bytes calldata _boostPayload) public payable {
         DynamicArrayLib.DynamicArray memory allocationKeys;
         allocationKeys.resize(_allocations.length);
 
@@ -65,6 +62,58 @@ contract TransparentBudget is ATransparentBudget, ReentrancyGuard {
         }
     }
 
+    function createBoostWithPermit2(
+        bytes[] calldata _allocations,
+        BoostCore core,
+        bytes calldata _boostPayload,
+        bytes calldata _permit2Signature,
+        uint256 nonce,
+        uint256 deadline
+    ) external payable {
+        DynamicArrayLib.DynamicArray memory allocationKeys;
+        allocationKeys.resize(_allocations.length);
+
+        IPermit2.SignatureTransferDetails[] memory transferDetails =
+            new IPermit2.SignatureTransferDetails[](_allocations.length);
+        IPermit2.TokenPermissions[] memory permissions = new IPermit2.TokenPermissions[](_allocations.length);
+        bytes32 key;
+        for (uint256 i = 0; i < _allocations.length; i++) {
+            Transfer memory request = abi.decode(_allocations[i], (Transfer));
+            if (request.assetType == AssetType.ERC20) {
+                (address asset, uint256 amount, bytes32 tKey) = _allocateERC20(request, false);
+                key = tKey;
+                transferDetails[i] = IPermit2.SignatureTransferDetails({to: address(this), requestedAmount: amount});
+                permissions[i] = IPermit2.TokenPermissions({token: IERC20(asset), amount: amount});
+            } else {
+                key = _allocate(_allocations[i]);
+            }
+            allocationKeys.set(i, key);
+        }
+
+        PERMIT2.permitTransferFrom(
+            // The permit message. Spender will be inferred as the caller (us).
+            IPermit2.PermitBatchTransferFrom({permitted: permissions, nonce: nonce, deadline: deadline}),
+            // The transfer recipients and amounts.
+            transferDetails,
+            // The owner of the tokens, which must also be
+            // the signer of the message, otherwise this call
+            // will fail.
+            msg.sender,
+            // The packed signature that was the result of signing
+            // the EIP712 hash of `permit`.
+            _permit2Signature
+        );
+
+        // Transfer `payload.amount` of the token to this contract
+
+        core.createBoost(_boostPayload);
+        bytes32[] memory keys = allocationKeys.asBytes32Array();
+        for (uint256 i = 0; i < keys.length; i++) {
+            LibTransient.TUint256 storage p = LibTransient.tUint256(keys[i]);
+            if (p.get() != 0) revert BoostError.Unauthorized();
+        }
+    }
+
     /// @notice Allocates assets to be distributed in the boost
     /// @param data_ The packed data for the {Transfer} request
     /// @return key The key of the amount allocated
@@ -83,16 +132,7 @@ contract TransparentBudget is ATransparentBudget, ReentrancyGuard {
             p.inc(payload.amount);
             key = tKey;
         } else if (request.assetType == AssetType.ERC20) {
-            FungiblePayload memory payload = abi.decode(request.data, (FungiblePayload));
-
-            // Transfer `payload.amount` of the token to this contract
-            request.asset.safeTransferFrom(request.target, address(this), payload.amount);
-            if (request.asset.balanceOf(address(this)) < payload.amount) {
-                revert InvalidAllocation(request.asset, payload.amount);
-            }
-            key = bytes32(uint256(uint160(request.asset)));
-            (LibTransient.TUint256 storage p, bytes32 tKey) = getFungibleAmountAndKey(request.asset);
-            p.inc(payload.amount);
+            (,, bytes32 tKey) = _allocateERC20(request, true);
             key = tKey;
         } else if (request.assetType == AssetType.ERC1155) {
             ERC1155Payload memory payload = abi.decode(request.data, (ERC1155Payload));
@@ -113,6 +153,24 @@ contract TransparentBudget is ATransparentBudget, ReentrancyGuard {
         }
     }
 
+    function _allocateERC20(Transfer memory request, bool transfer)
+        internal
+        returns (address asset, uint256 amount, bytes32 key)
+    {
+        FungiblePayload memory payload = abi.decode(request.data, (FungiblePayload));
+        if (transfer) {
+            request.asset.safeTransferFrom(request.target, address(this), payload.amount);
+            if (request.asset.balanceOf(address(this)) < payload.amount) {
+                revert InvalidAllocation(request.asset, payload.amount);
+            }
+        }
+        (LibTransient.TUint256 storage p, bytes32 tKey) = getFungibleAmountAndKey(request.asset);
+        p.inc(payload.amount);
+        amount = payload.amount;
+        asset = request.asset;
+        key = tKey;
+    }
+
     function isAuthorized(address account_) public view virtual override returns (bool) {
         if (account_ == address(this)) return true;
         return false;
@@ -145,6 +203,21 @@ contract TransparentBudget is ATransparentBudget, ReentrancyGuard {
         revert BoostError.NotImplemented();
     }
 
+    function clawbackFromTarget(address target, bytes calldata data_, uint256 boostId, uint256 incentiveId)
+        external
+        virtual
+        override
+        returns (uint256, address)
+    {
+        BoostLib.Boost memory boost = BoostCore(target).getBoost(boostId);
+        if (msg.sender != boost.owner) revert BoostError.Unauthorized();
+        AIncentive.ClawbackPayload memory payload =
+            AIncentive.ClawbackPayload({target: address(msg.sender), data: data_});
+        IClaw incentive = IClaw(target);
+        (uint256 amount, address asset) = incentive.clawback(abi.encode(payload), boostId, incentiveId);
+        return (amount, asset);
+    }
+
     /// @inheritdoc ABudget
     /// @notice Disburses assets from the budget to a single recipient
     /// @param data_ The packed {Transfer} request

packages/evm/contracts/shared/IPermit2.sol

@@ -0,0 +1,62 @@
+// SPDX-License-Identifier: MIT
+pragma solidity ^0.8.23;
+
+import {IERC20} from "@openzeppelin/contracts/token/ERC20/IERC20.sol";
+
+// Minimal Permit2 interface, derived from
+// https://github.com/Uniswap/permit2/blob/main/src/interfaces/ISignatureTransfer.sol
+interface IPermit2 {
+    // Token and amount in a permit message.
+    struct TokenPermissions {
+        // Token to transfer.
+        IERC20 token;
+        // Amount to transfer.
+        uint256 amount;
+    }
+
+    // The permit2 message.
+    struct PermitTransferFrom {
+        // Permitted token and maximum amount.
+        TokenPermissions permitted; // deadline on the permit signature
+        // Unique identifier for this permit.
+        uint256 nonce;
+        // Expiration for this permit.
+        uint256 deadline;
+    }
+
+    // The permit2 message for batch transfers.
+    struct PermitBatchTransferFrom {
+        // Permitted tokens and maximum amounts.
+        TokenPermissions[] permitted;
+        // Unique identifier for this permit.
+        uint256 nonce;
+        // Expiration for this permit.
+        uint256 deadline;
+    }
+
+    // Transfer details for permitTransferFrom().
+    struct SignatureTransferDetails {
+        // Recipient of tokens.
+        address to;
+        // Amount to transfer.
+        uint256 requestedAmount;
+    }
+
+    // Consume a permit2 message and transfer tokens.
+    function permitTransferFrom(
+        PermitTransferFrom calldata permit,
+        SignatureTransferDetails calldata transferDetails,
+        address owner,
+        bytes calldata signature
+    ) external;
+
+    // Consume a batch permit2 message and transfer tokens.
+    function permitTransferFrom(
+        PermitBatchTransferFrom calldata permit,
+        SignatureTransferDetails[] calldata transferDetails,
+        address owner,
+        bytes calldata signature
+    ) external;
+
+    function DOMAIN_SEPARATOR() external view returns (bytes32);
+}