Filecoin Storage Bounty is an EVM contract built on Filecoin's FEVM to be used for making bounty-based payments to Filecoin Storage Providers for storing data specified in Storage Bounties.
Lifecycle for a bounty:
- Bounty creator creates a storage bounty for a list of Piece CIDs.
- Bounty sponsor deposits the bounty reward into escrow for the bounty.
- SP seals and stores data with Filecoin for all of the Piece CIDs.
- SP submits deal IDs containing all of the bounty's Piece CIDs and collects the bounty reward from escrow.
SP: Storage Provider
Piece CID: Content Identifier for the piece commitment of data to be stored with Filecoin
The general architecture of this contract is a singleton-style contract that manages multiple storage bounties in a single contract deployement. This was chosen over a "contract per bounty" architecture to avoid the gas overhead of deploying the contract's bytecode for every bounty. This gas is saved at the cost of more complexity and security considerations revolving around the contract managing token balances and permissions for multiple bounties concurrently.
- The data types defined in this spec are meant to represent funcionality of the types. They are not meant to specify any implementation details. For instance some of the struct arrays in these data types should not be actual arrays of structs, but should be integer arrays corresponding to indices in a mapping holding those struct instances. In addition function types defined here are only meant to communicate functionality, for instance no thought is given in the spec between
externalandpublicand many arguments are missing memory properties. - Related to previous point, there should be one single mapping for all
Eligibilityinstances, that can be referenced by bothbountyCreatorEligibilityin theGlobalConfigandspElibiligityinBountyStorageConfig. - This contract supports using both native FIL and/or any ERC20 token as bounty rewards. Any place the
addresstype is used to identify a token denomination, it's value should be either a valid ERC20 contract address oraddress(0)to indicate native FIL.
| Parameter | Type | Description |
|---|---|---|
| bountyCreatorEligibility | Eligibility |
Eligibility requirements for accounts to create a bounty. |
| minReplication | uint32 |
Minimum accepted replicationFactor when creating bounties. |
| maxReplication | uint32 |
Maximum accepted replicationFactor when creating bounties. (0 for no maximum) |
| Parameter | Type | Description |
|---|---|---|
| eligibilityType | EligibilityType |
The type of eligibility this instance represents. Enum with the following values:ACCOUNTS: Allowlist of account addressesERC20: Allowlist of ERC20 tokensERC721: Allowlist of ERC721 tokensAND: Recursive ANDOR: Recursive OROPEN: No eligibility requirements |
| addressList | address[] |
List of addresses for eligibility.ACCOUNTS: SP eligible if it has an account on this address listERC20: SP eligible if it holds ERC20 tokens specified by this address listERC721: SP eligible if it holds an ERC721 token on this address listAND OR OPEN: unused |
| param1 | uint256 |
General parameter 1.ERC20: minimum balance of ERC20 token for SP eligibilityACCOUNTS ERC721 AND OR OPEN: unused |
| param2 | Eligibility[] |
General parameter 2.AND: SP eligibile if all eligibility requirements in this list are satisfiedOR: SP eligibile if any eligibility requirements in this list are satisfiedACCOUNTS ERC20 ERC721 OPEN: unused |
| Parameter | Type | Description |
|---|---|---|
| creator | address |
Creator of the bounty, sets the bounty config parameters during bounty creation. |
| sponsor | address |
Sponsor funding the bounty. Can be the same as creator or can be a different address. This is the only account that can deposit into the escrow balance for the bounty or withdraw from the escrow balance if the bounty expires without being collected. |
| rewards | StorageBountyReward[] |
List of financial rewards for the bounty. This is a list to enable a bounty to include more than one token type or include multiple destinations for those tokens. |
| startEpoch | int64 |
Start epoch for the bounty. Bounty reward can't be collected before this time. |
| expireEpoch | int64 |
Expiration epoch for the bounty. If bounty has not been fulfilled by this time, the bounty expires and can no longer be fulfilled. Bounty balance now available to be withdrawn by Sponsor. |
| data | string[] |
List of Piece CIDs for prepared data. These are <=32Gb IPLD chunks that must be stored in storage deals for an SP to collect the bounty. Note: All Piece CIDs must be stored by an SP before they can collect the reward. An SP can't collect X% of reward after storing X% of Piece CIDs. |
| spEligibility | Eligibility |
Eligibility requirements for SPs to be able to fulfill and collect the bounty. |
| replicationFactor | uint32 |
Replication required before bounty can be paid out. Examples: replicationFactor = 1: no replication requiredreplicationFactor = 4: 4 different SPs must all store the data in the bounty before any payout is allowed, they each collect their 1/4 of the bounty reward independently. |
| Parameter | Type | Description |
|---|---|---|
| token | address |
Address of ERC20 token for this reward. (or address(0) for native FIL) |
| amount | uint256 |
Amount of the specified token. |
| destination | address |
Where the reward is transferred to when the bounty is collected. This can be set to address(0) to allow the collector of the bounty specify a destination at the time of collection. |
| Parameter | Type | Description |
|---|---|---|
| escrowBalances | StorageBountyEscrowBalance[] |
List of balances currently held by the contract for this bounty. |
| wasCollected | bool |
Set to true when the bounty is collected. |
| Parameter | Type | Description |
|---|---|---|
| token | address |
Address of an ERC20 token. (or address(0) for native FIL) |
| amount | uint256 |
Amount of the specified token. |
constructor()
external
{
...
}function setBountyCreatorEligibility(
uint256 bountyCreatorEligibilityId
)
external
{
...
}function setMinReplication(
uint32 minReplication
)
external
{
...
}function setMaxReplication(
uint32 maxReplication
)
external
{
...
}Add an eligibility definition to the global list held by the contract. This id can then be used to set GlobalConfig.bountyCreatorEligiblity or StorageBountyConfig.spEligiblity.
function addElibilityDefinition(
EligibilityType eligibilityType,
address[] addressList,
uint256 param1,
uint256[] param2
)
external
returns (uint256 eligiblityId)
{
...
}Add a reward definition to the global list held by the contract. These ids can then be used to set StorageBountyConfig.rewards.
function addBountyRewardDefinition(
address token,
uint256 amount,
address destination
)
external
returns (uint256 rewardId)
{
...
}function addBountyRewardDefinitions(
address[] token,
uint256[] amount,
address[] destination
)
external
returns (uint256 rewardIds)
{
...
}Create a new bounty.
- Can only be done by accounts satisfying
bountyCreatorEligibilityin the global config of the deployed contract.
function createBounty(
address sponsor,
uint256[] rewardIds,
int64 startEpoch,
int64 expireEpoch,
string[] data,
uint256 spEligibilityId,
uint32 replicationFactor
)
external
returns (uint256 bountyId)
{
...
}Sponsor a bounty.
- Can only be done by
sponsorof the bounty. - Can only be done if the the current block epoch is less than
expireEpoch. - Needs to be called separately for each different token denomination included in the rewards list for the bounty.
- For ERC20 tokens, the UI should also provide an interface and/or prompt for a sponser to transact directly with the ERC20 contract to set allowance for this contract.
function sponsorBounty(
uint256 bountyId,
address token,
uint256 amount
)
external
{
...
}Withdraw a bounty.
- This withdraws all rewards for the bounty back to the
sponsor's account. - Can only be done by
sponsorof the bounty. - Can only be done if the the current block epoch is greater than
expireEpochin the bounty and the bounty was not collected.
function withdrawBounty(
uint256 bountyId,
...TODO
)
external
{
...
}Collect a bounty.
- Can only be done by accounts satisfying
spEligiblityin the bounty. - Can only be done when the current block epoch is between
startEpochandexpireEpochin the bounty. - The SP must provide
dealIdscontaining a list of active storage deals that fulfill all the piece commitments listed indatain the bounty config. - If any reward destinations are unspecified by the creator of the bounty, they will go to
rewardDestinationprovided by the SP. If all reward destinations are specified, then this argument doesn't affect anything.
function collectBounty(
uint256 bountyId,
string[] dealIds,
address, rewardDestination,
)
external
{
...
}Typical read functions for getting list of bounties that exist and bounty info by id.
...
{read-only CRUD functions}
...Check if an account is eligible to create a bounty using this contract deployment.
function checkAccountIsEligibleToCreateBounty(
addresss account
)
external
return (bool accountIsEligible)
{
...
} Check if an account is eligible to fulfill a specific bounty. This bounty only checks an account against the spEligibility config for the bounty. It does not take into account any other state of the bounty such as startEpoch and expireEpoch times or whether the bounty has been sponsored or even already fulfilled and collected.
function checkAccountIsEligibleToFulfillBounty(
addresss account,
uint256 bountyId
)
external
return (bool accountIsEligible)
{
...
} Check if a list of deals fulfill a bounty.
- This is done by checking all the deal ids against the Storage Market Actor (built-in FVM actor)
- getDealDataCommitment to check against Piece CIDs in
datalist - getDealActivation to check that deal has been activated by SP
- NOTE: links above are to zondax sdk that provides solidity interface to the built-in FVM actors, but this could be forked for improved api design and usability if needed (
getDealActivationcan revert tx when really it should return an error code)
- getDealDataCommitment to check against Piece CIDs in
function checkDealsFulfillBounty(
uint256 bountyId,
string[] dealIds,
)
external
returns (bool dealsFulfillBounty)
{
...
}The contract has sufficient events such that the complete contract state can at all times be constructed from the event log.
The contract returns useful errors whenever a transaction is purposefully failed by the contract logic (bad eligibility, invalid arguments, unmet bounty requirements, etc)
There should be a separate factory contract capable of deploying and configuring some common configurations.
function deployWithOpenBountyCreatorEligibility(
uint32 minReplication,
uint32 maxReplication
)
external
returns (address deployedContract)
{
...
}function deployWithBountyCreatorAllowList(
address[] allowList,
uint32 minReplication,
uint32 maxReplication
)
external
returns (address deployedContract)
{
...
}function deployWithBountyCreatorNftRequirement(
address[] erc721Contracts,
uint32 minReplication,
uint32 maxReplication
)
external
returns (address deployedContract)
{
...
}function deployWithBountyErc20Requirement(
address[] erc20Contracts,
uint256 minTokenAmount,
uint32 minReplication,
uint32 maxReplication
)
external
returns (address deployedContract)
{
...
}