Skip to content

Commit

Permalink
feat: Instant rewards smart contract
Browse files Browse the repository at this point in the history
  • Loading branch information
@andresaiello
andresaiello committed Aug 21, 2024
1 parent 03f8b9a commit 72e96be
Showing 1 changed file with 107 additions and 0 deletions.
107 changes: 107 additions & 0 deletions packages/zevm-app-contracts/contracts/instant-rewards/InstantRewards.sol
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,107 @@
// SPDX-License-Identifier: MIT
pragma solidity 0.8.7;

import "@openzeppelin/contracts/security/Pausable.sol";
import "@openzeppelin/contracts/access/Ownable.sol";
import "@openzeppelin/contracts/utils/cryptography/ECDSA.sol";
import "@openzeppelin/contracts/security/ReentrancyGuard.sol";

contract InstantRewards is Ownable, Pausable, ReentrancyGuard {
/* An ECDSA signature. */
struct Signature {
uint8 v;
bytes32 r;
bytes32 s;
}

struct ClaimData {
address to;
Signature signature;
bytes32 taskId;
uint256 amount;
}

mapping(address => mapping(bytes32 => bool)) public taskCompletedByUser;

address public signerAddress;

event Claimed(address indexed to, bytes32 indexed taskId, uint256 amount);

error InvalidSigner();
error InvalidAddress();
error TaskAlreadyClaimed();

constructor(address signerAddress_, address owner) Ownable() {
if (signerAddress_ == address(0)) revert InvalidAddress();
transferOwnership(owner);
signerAddress = signerAddress_;
}

// Helper function to convert uint to string
function _uint2str(uint _i) internal pure returns (string memory _uintAsString) {
if (_i == 0) {
return "0";
}
uint j = _i;
uint len;
while (j != 0) {
len++;
j /= 10;
}
bytes memory bstr = new bytes(len);
uint k = len;
while (_i != 0) {
k = k - 1;
uint8 temp = (uint8(48 + (_i % 10)));
bstr[k] = bytes1(temp);
_i /= 10;
}
return string(bstr);
}

Check warning

Code scanning / Slither

Dead-code Warning

InstantRewards._uint2str(uint256) is never used and should be removed

function _verify(ClaimData memory claimData) private view {
bytes32 payloadHash = _calculateHash(claimData);

bytes32 messageHash = ECDSA.toEthSignedMessageHash(payloadHash);

address messageSigner = ECDSA.recover(
messageHash,
claimData.signature.v,
claimData.signature.r,
claimData.signature.s
);

if (signerAddress != messageSigner) revert InvalidSigner();
}

// Function to compute the hash of the data and tasks for a token
function _calculateHash(ClaimData memory claimData) private pure returns (bytes32) {
bytes memory encodedData = abi.encode(claimData.to, claimData.taskId, claimData.amount);

return keccak256(encodedData);
}

function claim(ClaimData memory claimData) external whenNotPaused nonReentrant {
claimData.to = msg.sender;
_verify(claimData);

if (taskCompletedByUser[claimData.to][claimData.taskId]) revert TaskAlreadyClaimed();

taskCompletedByUser[claimData.to][claimData.taskId] = true;

payable(claimData.to).transfer(claimData.amount);

emit Claimed(claimData.to, claimData.taskId, claimData.amount);
}

Check warning

Code scanning / Slither

Reentrancy vulnerabilities Warning

Reentrancy in InstantRewards.claim(InstantRewards.ClaimData):
External calls:
- address(claimData.to).transfer(claimData.amount)
Event emitted after the call(s):
- Claimed(claimData.to,claimData.taskId,claimData.amount)

function setSignerAddress(address signerAddress_) external onlyOwner {
if (signerAddress_ == address(0)) revert InvalidAddress();
signerAddress = signerAddress_;
}

function withdraw(address wallet) external onlyOwner {

Check notice

Code scanning / Slither

Missing zero address validation Low

InstantRewards.withdraw(address).wallet lacks a zero-check on :
- address(wallet).transfer(address(this).balance)
payable(wallet).transfer(address(this).balance);
}

receive() external payable {}
}

0 comments on commit 72e96be

Please sign in to comment.