graphprotocol
diff --git a/‎contracts/statechannels/AllocationExchange.sol
Lines changed: 155 additions & 0 deletions b/‎contracts/statechannels/AllocationExchange.sol
Lines changed: 155 additions & 0 deletions
@@ -0,0 +1,155 @@
+// SPDX-License-Identifier: MIT
+
+pragma solidity ^0.7.3;
+pragma experimental ABIEncoderV2;
+
+import "@openzeppelin/contracts/cryptography/ECDSA.sol";
+
+import "../governance/Governed.sol";
+import "../staking/IStaking.sol";
+import "../token/IGraphToken.sol";
+
+/**
+ * @title Allocation Exchange
+ * @dev This contract holds tokens that anyone with a voucher signed by the
+ * authority can redeem. The contract validates if the voucher presented is valid
+ * and then sends tokens to the Staking contract by calling the collect() function
+ * passing the voucher allocationID. The contract enforces that only one voucher for
+ * an allocationID can be redeemed.
+ * Only governance can change the authority.
+ */
+contract AllocationExchange is Governed {
+    // An allocation voucher represents a signed message that allows
+    // redeeming an amount of funds from this contract and collect
+    // them as part of an allocation
+    struct AllocationVoucher {
+        address allocationID;
+        uint256 amount;
+        bytes signature; // 65 bytes
+    }
+
+    // -- Constants --
+
+    uint256 private constant MAX_UINT256 = 2**256 - 1;
+    uint256 private constant SIGNATURE_LENGTH = 65;
+
+    // -- State --
+
+    IStaking private immutable staking;
+    IGraphToken private immutable graphToken;
+    address public authority;
+    mapping(address => bool) public allocationsRedeemed;
+
+    // -- Events
+
+    event AuthoritySet(address indexed account);
+    event AllocationRedeemed(address indexed allocationID, uint256 amount);
+    event TokensWithdrawn(address indexed to, uint256 amount);
+
+    // -- Functions
+
+    constructor(
+        IGraphToken _graphToken,
+        IStaking _staking,
+        address _governor,
+        address _authority
+    ) {
+        Governed._initialize(_governor);
+
+        graphToken = _graphToken;
+        staking = _staking;
+        _setAuthority(_authority);
+    }
+
+    /**
+     * @notice Approve the staking contract to pull any amount of tokens from this contract.
+     * @dev Increased gas efficiency instead of approving on each voucher redeem
+     */
+    function approveAll() external {
+        graphToken.approve(address(staking), MAX_UINT256);
+    }
+
+    /**
+     * @notice Withdraw tokens held in the contract.
+     * @dev Only the governor can withdraw
+     * @param _to Destination to send the tokens
+     * @param _amount Amount of tokens to withdraw
+     */
+    function withdraw(address _to, uint256 _amount) external onlyGovernor {
+        require(_to != address(0), "Exchange: empty destination");
+        require(_amount != 0, "Exchange: empty amount");
+        require(graphToken.transfer(_to, _amount), "Exchange: cannot transfer");
+        emit TokensWithdrawn(_to, _amount);
+    }
+
+    /**
+     * @notice Set the authority allowed to sign vouchers.
+     * @dev Only the governor can set the authority
+     * @param _authority Address of the signing authority
+     */
+    function setAuthority(address _authority) external onlyGovernor {
+        _setAuthority(_authority);
+    }
+
+    /**
+     * @notice Set the authority allowed to sign vouchers.
+     * @param _authority Address of the signing authority
+     */
+    function _setAuthority(address _authority) private {
+        require(_authority != address(0), "Exchange: empty authority");
+        authority = _authority;
+        emit AuthoritySet(authority);
+    }
+
+    /**
+     * @notice Redeem a voucher signed by the authority. No voucher double spending is allowed.
+     * @dev The voucher must be signed using an Ethereum signed message
+     * @param _voucher Voucher data
+     */
+    function redeem(AllocationVoucher memory _voucher) external {
+        _redeem(_voucher);
+    }
+
+    /**
+     * @notice Redeem multiple vouchers.
+     * @dev Each voucher must be signed using an Ethereum signed message
+     * @param _vouchers An array of vouchers
+     */
+    function redeemMany(AllocationVoucher[] memory _vouchers) external {
+        for (uint256 i = 0; i < _vouchers.length; i++) {
+            _redeem(_vouchers[i]);
+        }
+    }
+
+    /**
+     * @notice Redeem a voucher signed by the authority. No voucher double spending is allowed.
+     * @dev The voucher must be signed using an Ethereum signed message
+     * @param _voucher Voucher data
+     */
+    function _redeem(AllocationVoucher memory _voucher) private {
+        require(_voucher.amount > 0, "Exchange: zero tokens voucher");
+        require(_voucher.signature.length == SIGNATURE_LENGTH, "Exchange: invalid signature");
+
+        // Already redeemed check
+        require(
+            !allocationsRedeemed[_voucher.allocationID],
+            "Exchange: allocation already redeemed"
+        );
+
+        // Signature check
+        bytes32 messageHash = keccak256(abi.encodePacked(_voucher.allocationID, _voucher.amount));
+        require(
+            authority == ECDSA.recover(messageHash, _voucher.signature),
+            "Exchange: invalid signer"
+        );
+
+        // Mark allocation as collected
+        allocationsRedeemed[_voucher.allocationID] = true;
+
+        // Make the staking contract collect funds from this contract
+        // The Staking contract will validate if the allocation is valid
+        staking.collect(_voucher.amount, _voucher.allocationID);
+
+        emit AllocationRedeemed(_voucher.allocationID, _voucher.amount);
+    }
+}