feat: add faucet pallet (#96)

This PR adds the faucet pallet.

Closes CHAIN-85

Author: devwckd

Cargo.lock

@@ -22,6 +22,7 @@ pallet-governance = { path = "./pallets/governance", default-features = false }
 pallet-governance-api = { path = "./pallets/governance/api", default-features = false }
 pallet-emission0 = { path = "./pallets/emission0", default-features = false }
 pallet-emission0-api = { path = "./pallets/emission0/api", default-features = false }
+pallet-faucet = { path = "./pallets/faucet", default-features = false }
 pallet-torus0 = { path = "./pallets/torus0", default-features = false }
 pallet-torus0-api = { path = "./pallets/torus0/api", default-features = false }
 pallet-permission0 = { path = "./pallets/permission0", default-features = false }

Cargo.toml

@@ -1,5 +1,13 @@
 default: check test
 
+# Build
+
+build-mainnet:
+  cargo build --release --timings --package torus-runtime
+
+build-testnet:
+  cargo build --release --features testnet --timings --package torus-runtime
+
 # Development
 
 check:

justfile

@@ -0,0 +1,32 @@
+[package]
+name = "pallet-faucet"
+description = "Testnet faucet pallet for the Torus network. Allows users to get test tokens by performing proof-of-work."
+version = "0.1.0"
+license = "MIT-0"
+authors.workspace = true
+edition.workspace = true
+
+[features]
+default = ["std"]
+std = ["codec/std", "polkadot-sdk/std", "scale-info/std"]
+runtime-benchmarks = ["polkadot-sdk/runtime-benchmarks"]
+try-runtime = ["polkadot-sdk/try-runtime"]
+testnet = []
+
+[dependencies]
+codec = { workspace = true, features = ["derive"] }
+scale-info = { workspace = true, features = ["derive"] }
+polkadot-sdk = { workspace = true, features = [
+    "experimental",
+    "runtime",
+    "pallet-balances",
+] }
+
+pallet-torus0-api.workspace = true
+
+[dev-dependencies]
+pallet-governance.workspace = true
+pallet-torus0.workspace = true
+pallet-emission0.workspace = true
+pallet-permission0.workspace = true
+pallet-governance-api.workspace = true

pallets/faucet/Cargo.toml

@@ -0,0 +1,17 @@
+//! Type aliases for the faucet pallet
+//!
+//! This module contains type definitions used throughout the faucet pallet code.
+
+use polkadot_sdk::frame_support::traits::Currency;
+
+/// Type alias for the Balance type used in the pallet
+///
+/// This represents the token amount type in the system, derived from the Currency configuration.
+pub(super) type BalanceOf<T> = <<T as crate::Config>::Currency as Currency<
+    <T as polkadot_sdk::frame_system::Config>::AccountId,
+>>::Balance;
+
+/// Type alias for the AccountId type used in the pallet
+///
+/// This represents the account identifier type in the system.
+pub(super) type AccountIdOf<T> = <T as polkadot_sdk::frame_system::Config>::AccountId;

pallets/faucet/src/ext.rs

@@ -0,0 +1,210 @@
+//! Implementation of the faucet functionality
+//!
+//! This module contains the core logic for the faucet pallet, including:
+//! - The execution function that handles faucet requests
+//! - Hash calculation and verification functions for proof-of-work
+//! - Block hash retrieval and validation functions
+
+use crate::Vec;
+use crate::{AccountIdOf, BalanceOf};
+use crate::{Error, Event};
+use codec::Encode;
+use polkadot_sdk::frame_support::{traits::Currency, LOG_TARGET};
+use polkadot_sdk::polkadot_sdk_frame::prelude::BlockNumberFor;
+use polkadot_sdk::sp_core::{keccak_256, H256};
+use polkadot_sdk::sp_core::{sha2_256, U256};
+use polkadot_sdk::sp_runtime::{DispatchError, MultiAddress};
+use polkadot_sdk::{
+    frame_support::ensure,
+    frame_system,
+    sp_tracing::{info, trace},
+};
+
+/// Main execution function for the faucet pallet
+///
+/// This function processes a faucet request after it has passed the unsigned validation.
+/// It performs the following steps:
+/// 1. Ensures the account exists (or creates it)
+/// 2. Validates that the block number is recent (within the last 3 blocks)
+/// 3. Verifies that the proof-of-work meets the difficulty requirement
+/// 4. Checks that the submitted work hash matches the expected seal hash
+/// 5. Deposits tokens to the account if all checks pass
+///
+/// # Parameters
+/// * `key` - The account that will receive tokens
+/// * `block_number` - The block number used for the proof-of-work
+/// * `nonce` - The nonce value that makes the hash meet the difficulty
+/// * `work` - The hash result to verify
+///
+/// # Returns
+/// * `Ok(())` if successful
+/// * `Err` with an error if any check fails
+pub fn execute<T: crate::Config>(
+    key: AccountIdOf<T>,
+    block_number: u64,
+    nonce: u64,
+    work: Vec<u8>,
+) -> crate::DispatchResult {
+    // Ensure the account exists in the system
+    if <frame_system::Pallet<T>>::account(&key) == Default::default() {
+        <frame_system::Pallet<T>>::inc_providers(&key);
+    }
+
+    info!("do faucet with key: {key:?} and block number: {block_number} and nonce: {nonce}");
+
+    // Get the current block number for validation
+    let current_block_number: u64 = frame_system::Pallet::<T>::block_number()
+        .try_into()
+        .map_err(|_| "block number exceeded u64")?;
+
+    // Ensure the block number is not in the future
+    ensure!(
+        block_number <= current_block_number,
+        Error::<T>::InvalidWorkBlock
+    );
+
+    // Ensure the block is recent (less than 3 blocks old)
+    ensure!(
+        current_block_number.saturating_sub(block_number) < 3,
+        Error::<T>::InvalidWorkBlock
+    );
+
+    // Validate the proof-of-work difficulty
+    let difficulty: U256 = U256::from(1_000_000);
+    let work_hash: H256 = H256::from_slice(&work);
+    ensure!(
+        hash_meets_difficulty(&work_hash, difficulty),
+        Error::<T>::InvalidDifficulty
+    );
+
+    // Verify that the submitted work hash matches the expected seal hash
+    let seal: H256 = create_seal_hash::<T>(block_number, nonce, &key)?;
+    ensure!(seal == work_hash, Error::<T>::InvalidSeal);
+
+    // Award tokens to the account (15 tokens with 18 decimals)
+    let amount: u64 = 15_000_000_000_000_000_000;
+    let amount: BalanceOf<T> = amount.try_into().map_err(|_| "Invalid amount")?;
+    let _ = T::Currency::deposit_creating(&key, amount);
+
+    // Log success and emit event
+    info!("faucet done successfully with key: {key:?} and amount: {amount:?})");
+    crate::Pallet::<T>::deposit_event(Event::<T>::Faucet(key, amount));
+
+    Ok(())
+}
+
+/// Creates a hash combining the block hash and account key
+///
+/// This function combines a block hash with an account key and produces a new hash.
+/// It takes the 32-byte block hash and combines it with the first 32 bytes of the
+/// account ID to create a 64-byte array, then hashes it with keccak-256.
+///
+/// # Parameters
+/// * `block_hash_bytes` - The 32-byte hash of a block
+/// * `key` - The account ID to combine with the block hash
+///
+/// # Returns
+/// * `Ok(H256)` - The resulting hash if successful
+/// * `Err` - If the key is too small
+pub fn hash_block_and_key<T: crate::Config>(
+    block_hash_bytes: &[u8; 32],
+    key: &T::AccountId,
+) -> Result<H256, DispatchError> {
+    let key_pubkey: MultiAddress<_, ()> = MultiAddress::Id(key.clone());
+    let binding = key_pubkey.encode();
+
+    // Skip the first byte of the encoded key (which is a type indicator)
+    let key_bytes = binding.get(1..).ok_or("Key is smaller than 1 byte")?;
+
+    let mut full_bytes = [0u8; 64];
+    let (first_half, second_half) = full_bytes.split_at_mut(32);
+
+    first_half.copy_from_slice(block_hash_bytes);
+
+    second_half.copy_from_slice(key_bytes.get(..32).ok_or("Key is smaller than 32 bytes")?);
+
+    let keccak_256_seal_hash_vec: [u8; 32] = keccak_256(&full_bytes[..]);
+
+    Ok(H256::from_slice(&keccak_256_seal_hash_vec))
+}
+
+/// Creates the seal hash used for proof-of-work verification
+///
+/// This function generates the hash that users need to match with their proof-of-work.
+/// The process is:
+/// 1. Get the hash of the specified block
+/// 2. Concatenate the block hash with the account key
+/// 3. Concatenate the nonce with the result from step 2
+/// 4. Hash the combined data with SHA-256
+/// 5. Hash the result with keccak-256
+pub fn create_seal_hash<T: crate::Config>(
+    block_number: u64,
+    nonce: u64,
+    hotkey: &T::AccountId,
+) -> Result<H256, DispatchError> {
+    let nonce = nonce.to_le_bytes();
+
+    let block_hash_at_number: H256 = get_block_hash_from_u64::<T>(block_number)?;
+    let block_hash_bytes: &[u8; 32] = block_hash_at_number.as_fixed_bytes();
+
+    let binding = hash_block_and_key::<T>(block_hash_bytes, hotkey)?;
+    let block_and_hotkey_hash_bytes: &[u8; 32] = binding.as_fixed_bytes();
+
+    let mut full_bytes = [0u8; 40];
+    let (first_chunk, second_chunk) = full_bytes.split_at_mut(8);
+    first_chunk.copy_from_slice(&nonce);
+    second_chunk.copy_from_slice(block_and_hotkey_hash_bytes);
+
+    let sha256_seal_hash_vec: [u8; 32] = sha2_256(&full_bytes[..]);
+    let keccak_256_seal_hash_vec: [u8; 32] = keccak_256(&sha256_seal_hash_vec);
+    let seal_hash: H256 = H256::from_slice(&keccak_256_seal_hash_vec);
+
+    trace!(
+            "hotkey:{hotkey:?} \nblock_number: {block_number:?}, \nnonce_u64: {nonce:?}, \nblock_hash: {block_hash_at_number:?}, \nfull_bytes: {full_bytes:?}, \nsha256_seal_hash_vec: {sha256_seal_hash_vec:?},  \nkeccak_256_seal_hash_vec: {keccak_256_seal_hash_vec:?}, \nseal_hash: {seal_hash:?}",
+        );
+
+    Ok(seal_hash)
+}
+
+/// Retrieves the hash of a block by its number
+///
+/// This function converts a u64 block number to the chain's BlockNumberFor type,
+/// retrieves the hash of that block from the system, and converts it to an H256 type.
+pub fn get_block_hash_from_u64<T: crate::Config>(block_number: u64) -> Result<H256, DispatchError> {
+    let block_number: BlockNumberFor<T> = block_number.try_into().map_err(|_| {
+        "Block number {block_number} is too large to be converted to BlockNumberFor<T>"
+    })?;
+
+    let block_hash_at_number = frame_system::Pallet::<T>::block_hash(block_number);
+
+    let vec_hash: Vec<u8> = block_hash_at_number.as_ref().to_vec();
+    let real_hash: H256 = H256::from_slice(&vec_hash);
+
+    trace!(
+        target: LOG_TARGET,
+        "block_number: vec_hash: {vec_hash:?}, real_hash: {real_hash:?}",
+    );
+
+    Ok(real_hash)
+}
+
+/// Checks if a hash meets the required difficulty for proof-of-work
+///
+/// This function verifies that a hash meets the difficulty criteria by converting the
+/// hash to a U256 value and checking if multiplying it by the difficulty overflows.
+/// If there's no overflow, the hash meets the required difficulty.
+pub fn hash_meets_difficulty(hash: &H256, difficulty: U256) -> bool {
+    let bytes: &[u8] = hash.as_bytes();
+    let num_hash: U256 = U256::from(bytes);
+
+    // Multiply the hash value by the difficulty
+    // If it overflows, the hash doesn't meet the difficulty requirement
+    let (value, overflowed) = num_hash.overflowing_mul(difficulty);
+
+    trace!(
+        target: LOG_TARGET,
+        "Difficulty: hash: {hash:?}, hash_bytes: {bytes:?}, hash_as_num: {num_hash:?}, difficulty: {difficulty:?}, value: {value:?} overflowed: {overflowed:?}",
+    );
+
+    !overflowed
+}