fixed #178

Author: aalavandhan

contracts/UFragments.sol

@@ -76,6 +76,34 @@ contract UFragments is ERC20Detailed, Ownable {
     // it's fully paid.
     mapping(address => mapping(address => uint256)) private _allowedFragments;
 
+    // EIP-2612: permit – 712-signed approvals
+    // https://eips.ethereum.org/EIPS/eip-2612
+    bytes public constant EIP712_REVISION = "1";
+    bytes32 public constant EIP712_DOMAIN =
+        keccak256(
+            "EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)"
+        );
+    bytes32 public constant PERMIT_TYPEHASH =
+        keccak256(
+            "Permit(address owner,address spender,uint256 value,uint256 nonce,uint256 deadline)"
+        );
+    bytes32 public constant DOMAIN_SEPARATOR =
+        keccak256(
+            abi.encode(
+                EIP712_DOMAIN,
+                // hardcoding token name
+                keccak256("Ampleforth"),
+                keccak256(EIP712_REVISION),
+                // hardcoding Ethereum chainId
+                uint256(1),
+                // hardcoding Ampleforth ethereum address
+                address(0xD46bA6D942050d489DBd938a2C909A5d5039A161)
+            )
+        );
+
+    // EIP-2612: keeps track of number of permits per address
+    mapping(address => uint256) private _nonces;
+
     /**
      * @param monetaryPolicy_ The address of the monetary policy contract to use for authentication.
      */
@@ -155,6 +183,14 @@ contract UFragments is ERC20Detailed, Ownable {
         return _gonBalances[who].div(_gonsPerFragment);
     }
 
+    /**
+     * @param who The address to query.
+     * @return The number of successful permits by the specified address.
+     */
+    function nonces(address who) public view returns (uint256) {
+        return _nonces[who];
+    }
+
     /**
      * @dev Transfer tokens to a specified address.
      * @param to The address to transfer to.
@@ -255,4 +291,39 @@ contract UFragments is ERC20Detailed, Ownable {
         emit Approval(msg.sender, spender, _allowedFragments[msg.sender][spender]);
         return true;
     }
+
+    /**
+     * @dev Allows for approvals to be made via secp256k1 signatures.
+     * @param owner The owner of the funds
+     * @param spender The spender
+     * @param value The amount
+     * @param deadline The deadline timestamp, type(uint256).max for max deadline
+     * @param v Signature param
+     * @param s Signature param
+     * @param r Signature param
+     */
+    function permit(
+        address owner,
+        address spender,
+        uint256 value,
+        uint256 deadline,
+        uint8 v,
+        bytes32 r,
+        bytes32 s
+    ) public {
+        require(block.timestamp <= deadline);
+
+        uint256 ownerNonce = _nonces[owner];
+        bytes32 permitDataDigest =
+            keccak256(abi.encode(PERMIT_TYPEHASH, owner, spender, value, ownerNonce, deadline));
+        bytes32 digest =
+            keccak256(abi.encodePacked("\x19\x01", DOMAIN_SEPARATOR, permitDataDigest));
+
+        require(owner == ecrecover(digest, v, r, s));
+
+        _nonces[owner] = ownerNonce.add(1);
+
+        _allowedFragments[owner][spender] = value;
+        emit Approval(owner, spender, value);
+    }
 }

package.json

@@ -38,7 +38,8 @@
     "bignumber.js": "^9.0.0",
     "chai": "^4.2.0",
     "ethereum-waffle": "^3.2.1",
-    "ethers": "^5.0.24",
+    "ethereumjs-util": "^7.0.7",
+    "ethers": "5.0.18",
     "hardhat": "^2.0.6",
     "pre-commit": "^1.2.2",
     "prettier": "^2.1.1",

test/unit/UFragments_erc20_permit.ts

@@ -0,0 +1,183 @@
+import { ethers, upgrades } from 'hardhat'
+import { Contract, Signer, Wallet, BigNumber } from 'ethers'
+import { expect } from 'chai'
+
+import {
+  sign,
+  EIP712_DOMAIN_TYPEHASH,
+  PERMIT_TYPEHASH,
+  getPermitDigest,
+  getDomainSeparator,
+} from '../utils/signatures'
+
+const ETHEREUM_CHAIN_ID = 1
+const ETHEREUM_AMPL_ADDRESS = '0xD46bA6D942050d489DBd938a2C909A5d5039A161'
+const EIP712_REVISION = '1'
+
+const TOKEN_NAME = 'Ampleforth'
+
+let accounts: Signer[],
+  deployer: Signer,
+  deployerAddress: string,
+  owner: Wallet,
+  ownerAddress: string,
+  spender: Wallet,
+  spenderAddress: string,
+  uFragments: Contract,
+  initialSupply: BigNumber
+
+async function setupContracts() {
+  // prepare signers
+  accounts = await ethers.getSigners()
+  deployer = accounts[0]
+  deployerAddress = await deployer.getAddress()
+
+  owner = Wallet.createRandom()
+  ownerAddress = await owner.getAddress()
+
+  spender = Wallet.createRandom()
+  spenderAddress = await spender.getAddress()
+
+  // deploy upgradable token
+  const factory = await ethers.getContractFactory('UFragments')
+  uFragments = await upgrades.deployProxy(factory, [deployerAddress], {
+    initializer: 'initialize(address)',
+  })
+  // fetch initial supply
+  initialSupply = await uFragments.totalSupply()
+}
+
+// https://eips.ethereum.org/EIPS/eip-2612
+describe('UFragments:Initialization', () => {
+  before('setup UFragments contract', setupContracts)
+
+  it('should set the EIP2612 parameters', async function () {
+    expect(await uFragments.EIP712_REVISION()).to.eq('0x31')
+    expect(await uFragments.EIP712_DOMAIN()).to.eq(EIP712_DOMAIN_TYPEHASH)
+    expect(await uFragments.PERMIT_TYPEHASH()).to.eq(PERMIT_TYPEHASH)
+    // with hard-coded parameters
+    expect(await uFragments.DOMAIN_SEPARATOR()).to.eq(
+      getDomainSeparator(
+        EIP712_REVISION,
+        TOKEN_NAME,
+        ETHEREUM_AMPL_ADDRESS,
+        ETHEREUM_CHAIN_ID,
+      ),
+    )
+  })
+
+  it('initial nonce is 0', async function () {
+    expect(await uFragments.nonces(deployerAddress)).to.eq('0')
+    expect(await uFragments.nonces(ownerAddress)).to.eq('0')
+    expect(await uFragments.nonces(spenderAddress)).to.eq('0')
+  })
+})
+
+// Using the cases specified by:
+// https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/test/drafts/ERC20Permit.test.js
+describe('UFragments:EIP-2612 Permit', () => {
+  const MAX_DEADLINE = BigNumber.from(2).pow(256).sub(1)
+
+  beforeEach('setup UFragments contract', setupContracts)
+
+  describe('permit', function () {
+    const signPermission = async (
+      signer: Wallet,
+      owner: string,
+      spender: string,
+      value: number,
+      nonce: number,
+      deadline: BigNumber,
+    ) => {
+      const digest = getPermitDigest(
+        EIP712_REVISION,
+        TOKEN_NAME,
+        ETHEREUM_AMPL_ADDRESS,
+        ETHEREUM_CHAIN_ID,
+        owner,
+        spender,
+        value,
+        nonce,
+        deadline,
+      )
+
+      return sign(digest, signer.privateKey)
+    }
+
+    it('accepts owner signature', async function () {
+      const { v, r, s } = await signPermission(
+        owner,
+        ownerAddress,
+        spenderAddress,
+        123,
+        0,
+        MAX_DEADLINE,
+      )
+      await expect(
+        uFragments
+          .connect(deployer)
+          .permit(ownerAddress, spenderAddress, 123, MAX_DEADLINE, v, r, s),
+      )
+        .to.emit(uFragments, 'Approval')
+        .withArgs(ownerAddress, spenderAddress, '123')
+      expect(await uFragments.nonces(ownerAddress)).to.eq('1')
+      expect(await uFragments.allowance(ownerAddress, spenderAddress)).to.eq(
+        '123',
+      )
+    })
+
+    it('rejects reused signature', async function () {
+      const { v, r, s } = await signPermission(
+        owner,
+        ownerAddress,
+        spenderAddress,
+        123,
+        0,
+        MAX_DEADLINE,
+      )
+      await uFragments
+        .connect(deployer)
+        .permit(ownerAddress, spenderAddress, 123, MAX_DEADLINE, v, r, s)
+      await expect(
+        uFragments
+          .connect(deployer)
+          .permit(ownerAddress, spenderAddress, 123, MAX_DEADLINE, v, r, s),
+      ).to.be.reverted
+    })
+
+    it('rejects other signature', async function () {
+      const { v, r, s } = await signPermission(
+        spender,
+        ownerAddress,
+        spenderAddress,
+        123,
+        0,
+        MAX_DEADLINE,
+      )
+      await expect(
+        uFragments
+          .connect(deployer)
+          .permit(ownerAddress, spenderAddress, 123, MAX_DEADLINE, v, r, s),
+      ).to.be.reverted
+    })
+
+    it('rejects expired permit', async function () {
+      const currentTs = (await ethers.provider.getBlock('latest')).timestamp
+      const olderTs = currentTs - 3600 * 24 * 7
+      const deadline = BigNumber.from(olderTs)
+      const { v, r, s } = await signPermission(
+        owner,
+        ownerAddress,
+        spenderAddress,
+        123,
+        0,
+        deadline,
+      )
+      await expect(
+        uFragments
+          .connect(deployer)
+          .permit(ownerAddress, spenderAddress, 123, deadline, v, r, s),
+      ).to.be.reverted
+    })
+  })
+})

test/utils/signatures.ts

@@ -0,0 +1,83 @@
+// https://github.com/albertocuestacanada/ERC20Permit/blob/master/utils/signatures.ts
+import {
+  keccak256,
+  defaultAbiCoder,
+  toUtf8Bytes,
+  solidityPack,
+} from 'ethers/lib/utils'
+import { ecsign } from 'ethereumjs-util'
+import { BigNumberish } from 'ethers'
+
+export const sign = (digest: any, privateKey: any) => {
+  return ecsign(
+    Buffer.from(digest.slice(2), 'hex'),
+    Buffer.from(privateKey.slice(2), 'hex'),
+  )
+}
+
+export const PERMIT_TYPEHASH = keccak256(
+  toUtf8Bytes(
+    'Permit(address owner,address spender,uint256 value,uint256 nonce,uint256 deadline)',
+  ),
+)
+
+export const EIP712_DOMAIN_TYPEHASH = keccak256(
+  toUtf8Bytes(
+    'EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)',
+  ),
+)
+
+// Returns the EIP712 hash which should be signed by the user
+// in order to make a call to `permit`
+export function getPermitDigest(
+  versionNumber: string,
+  name: string,
+  address: string,
+  chainId: number,
+  owner: string,
+  spender: string,
+  value: number,
+  nonce: number,
+  deadline: BigNumberish,
+) {
+  const DOMAIN_SEPARATOR = getDomainSeparator(
+    versionNumber,
+    name,
+    address,
+    chainId,
+  )
+  const permitHash = keccak256(
+    defaultAbiCoder.encode(
+      ['bytes32', 'address', 'address', 'uint256', 'uint256', 'uint256'],
+      [PERMIT_TYPEHASH, owner, spender, value, nonce, deadline],
+    ),
+  )
+  const hash = keccak256(
+    solidityPack(
+      ['bytes1', 'bytes1', 'bytes32', 'bytes32'],
+      ['0x19', '0x01', DOMAIN_SEPARATOR, permitHash],
+    ),
+  )
+  return hash
+}
+
+// Gets the EIP712 domain separator
+export function getDomainSeparator(
+  versionNumber: string,
+  name: string,
+  contractAddress: string,
+  chainId: number,
+) {
+  return keccak256(
+    defaultAbiCoder.encode(
+      ['bytes32', 'bytes32', 'bytes32', 'uint256', 'address'],
+      [
+        EIP712_DOMAIN_TYPEHASH,
+        keccak256(toUtf8Bytes(name)),
+        keccak256(toUtf8Bytes(versionNumber)),
+        chainId,
+        contractAddress,
+      ],
+    ),
+  )
+}