Source Code
Overview
ETH Balance
0 ETH
ETH Value
$0.00View more zero value Internal Transactions in Advanced View mode
Advanced mode:
Cross-Chain Transactions
Loading...
Loading
Contract Source Code Verified (Exact Match)
Contract Name:
NativeLBTC
Compiler Version
v0.8.24+commit.e11b9ed9
Optimization Enabled:
Yes with 200 runs
Other Settings:
paris EvmVersion
Contract Source Code (Solidity Standard Json-Input format)
// SPDX-License-Identifier: MIT
pragma solidity 0.8.24;
import {ERC20Upgradeable} from "@openzeppelin/contracts-upgradeable/token/ERC20/ERC20Upgradeable.sol";
import {ERC20PausableUpgradeable} from "@openzeppelin/contracts-upgradeable/token/ERC20/extensions/ERC20PausableUpgradeable.sol";
import {ERC20PermitUpgradeable} from "@openzeppelin/contracts-upgradeable/token/ERC20/extensions/ERC20PermitUpgradeable.sol";
import {ReentrancyGuardUpgradeable} from "@openzeppelin/contracts-upgradeable/utils/ReentrancyGuardUpgradeable.sol";
import {AccessControlDefaultAdminRulesUpgradeable} from "@openzeppelin/contracts-upgradeable/access/extensions/AccessControlDefaultAdminRulesUpgradeable.sol";
import {Math} from "@openzeppelin/contracts/utils/math/Math.sol";
import {BitcoinUtils, OutputType} from "../libs/BitcoinUtils.sol";
import {IBascule} from "../bascule/interfaces/IBascule.sol";
import {INativeLBTC} from "./INativeLBTC.sol";
import {Consortium} from "../consortium/Consortium.sol";
import {Actions} from "../libs/Actions.sol";
import {EIP1271SignatureUtils} from "../libs/EIP1271SignatureUtils.sol";
/**
* @title ERC20 representation of Liquid Bitcoin
* @author Lombard.Finance
* @notice This contract is part of the Lombard.Finance protocol
*/
contract NativeLBTC is
INativeLBTC,
ERC20PausableUpgradeable,
ReentrancyGuardUpgradeable,
ERC20PermitUpgradeable,
AccessControlDefaultAdminRulesUpgradeable
{
/// @custom:storage-location erc7201:lombardfinance.storage.NativeLBTC
struct NativeLBTCStorage {
// slot: 20 + 8 + 1 | 29/32
address consortium;
uint64 burnCommission; // absolute commission to charge on burn (unstake)
bool isWithdrawalsEnabled;
// slot: 20 | 20/32
address treasury;
// slot: 20 | 20/32
IBascule bascule;
// other slots by 32
string name;
string symbol;
uint256 dustFeeRate;
uint256 maximumFee;
mapping(bytes32 => bool) usedPayloads; // sha256(rawPayload) => used
}
// TODO: recalculate
// keccak256(abi.encode(uint256(keccak256("lombardfinance.storage.NativeLBTC")) - 1)) & ~bytes32(uint256(0xff))
bytes32 private constant NATIVE_LBTC_STORAGE_LOCATION =
0xb773c428c0cecc1b857b133b10e11481edd580cedc90e62754fff20b7c0d6000;
bytes32 public constant OPERATOR_ROLE = keccak256("OPERATOR_ROLE");
bytes32 public constant CLAIMER_ROLE = keccak256("CLAIMER_ROLE");
bytes32 public constant PAUSER_ROLE = keccak256("PAUSER_ROLE");
bytes32 public constant MINTER_ROLE = keccak256("MINTER_ROLE");
/// @dev https://docs.openzeppelin.com/upgrades-plugins/1.x/writing-upgradeable#initializing_the_implementation_contract
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() {
_disableInitializers();
}
/// INTIALIZERS ///
function initialize(
address consortium_,
address treasury,
string calldata _name,
string calldata _symbol,
address initialOwner
) external initializer {
__AccessControlDefaultAdminRules_init(0, initialOwner);
__ERC20_init("", "");
__ERC20Pausable_init();
__ReentrancyGuard_init();
__ERC20Permit_init(_name);
__LBTC_init(_name, _symbol, consortium_, treasury);
NativeLBTCStorage storage $ = _getNativeLBTCStorage();
$.dustFeeRate = BitcoinUtils.DEFAULT_DUST_FEE_RATE;
emit DustFeeRateChanged(0, $.dustFeeRate);
}
/// ONLY OWNER FUNCTIONS ///
function toggleWithdrawals() external onlyRole(DEFAULT_ADMIN_ROLE) {
NativeLBTCStorage storage $ = _getNativeLBTCStorage();
$.isWithdrawalsEnabled = !$.isWithdrawalsEnabled;
emit WithdrawalsEnabled($.isWithdrawalsEnabled);
}
function changeNameAndSymbol(
string calldata name_,
string calldata symbol_
) external onlyRole(DEFAULT_ADMIN_ROLE) {
_changeNameAndSymbol(name_, symbol_);
}
function changeConsortium(
address newVal
) external onlyRole(DEFAULT_ADMIN_ROLE) {
_changeConsortium(newVal);
}
/**
* @notice Set the contract current fee for mint
* @param fee New fee value
* @dev zero allowed to disable fee
*/
function setMintFee(uint256 fee) external onlyRole(OPERATOR_ROLE) {
NativeLBTCStorage storage $ = _getNativeLBTCStorage();
uint256 oldFee = $.maximumFee;
$.maximumFee = fee;
emit FeeChanged(oldFee, fee);
}
function changeTreasuryAddress(
address newValue
) external onlyRole(DEFAULT_ADMIN_ROLE) {
_changeTreasuryAddress(newValue);
}
function changeBurnCommission(
uint64 newValue
) external onlyRole(DEFAULT_ADMIN_ROLE) {
_changeBurnCommission(newValue);
}
function pause() external onlyRole(PAUSER_ROLE) {
_pause();
}
function unpause() external onlyRole(DEFAULT_ADMIN_ROLE) {
_unpause();
}
/// @notice Change the dust fee rate used for dust limit calculations
/// @dev Only the contract owner can call this function. The new rate must be positive.
/// @param newRate The new dust fee rate (in satoshis per 1000 bytes)
function changeDustFeeRate(
uint256 newRate
) external onlyRole(DEFAULT_ADMIN_ROLE) {
if (newRate == 0) revert InvalidDustFeeRate();
NativeLBTCStorage storage $ = _getNativeLBTCStorage();
uint256 oldRate = $.dustFeeRate;
$.dustFeeRate = newRate;
emit DustFeeRateChanged(oldRate, newRate);
}
/**
* Change the address of the Bascule drawbridge contract.
* Setting the address to 0 disables the Bascule check.
* @param newVal The new address.
*
* Emits a {BasculeChanged} event.
*/
function changeBascule(
address newVal
) external onlyRole(DEFAULT_ADMIN_ROLE) {
_changeBascule(newVal);
}
/// GETTERS ///
/**
* @notice Returns the current maximum mint fee
*/
function getMintFee() external view returns (uint256) {
return _getNativeLBTCStorage().maximumFee;
}
/// @notice Calculate the amount that will be unstaked and check if it's above the dust limit
/// @dev This function can be used by front-ends to verify burn amounts before submitting a transaction
/// @param scriptPubkey The Bitcoin script public key as a byte array
/// @param amount The amount of NativeLBTC to be burned
/// @return amountAfterFee The amount that will be unstaked (after deducting the burn commission)
/// @return isAboveDust Whether the amountAfterFee is equal to or above the dust limit
function calcUnstakeRequestAmount(
bytes calldata scriptPubkey,
uint256 amount
) external view returns (uint256 amountAfterFee, bool isAboveDust) {
NativeLBTCStorage storage $ = _getNativeLBTCStorage();
(amountAfterFee, , , isAboveDust) = _calcFeeAndDustLimit(
scriptPubkey,
amount,
$.burnCommission
);
return (amountAfterFee, isAboveDust);
}
function consortium() external view virtual returns (address) {
return _getNativeLBTCStorage().consortium;
}
/**
* @dev Returns the number of decimals used to get its user representation.
*
* Because NativeLBTC repsents BTC we use the same decimals.
*
*/
function decimals() public view virtual override returns (uint8) {
return 8;
}
/**
* @dev Returns the name of the token.
*/
function name() public view virtual override returns (string memory) {
return _getNativeLBTCStorage().name;
}
/**
* @dev Returns the symbol of the token, usually a shorter version of the
* name.
*/
function symbol() public view virtual override returns (string memory) {
return _getNativeLBTCStorage().symbol;
}
function getTreasury() public view override returns (address) {
return _getNativeLBTCStorage().treasury;
}
function getBurnCommission() public view returns (uint64) {
return _getNativeLBTCStorage().burnCommission;
}
/// @notice Get the current dust fee rate
/// @return The current dust fee rate (in satoshis per 1000 bytes)
function getDustFeeRate() public view returns (uint256) {
return _getNativeLBTCStorage().dustFeeRate;
}
/**
* Get Bascule contract.
*/
function Bascule() external view returns (IBascule) {
return _getNativeLBTCStorage().bascule;
}
/// USER ACTIONS ///
/**
* @notice Mint NativeLBTC to the specified address
* @param to The address to mint to
* @param amount The amount of NativeLBTC to mint
* @dev Only callable by whitelisted minters
*/
function mint(
address to,
uint256 amount
) external override onlyRole(MINTER_ROLE) {
_mint(to, amount);
}
/**
* @notice Mint NativeLBTC in batches
* @param to The addresses to mint to
* @param amount The amounts of NativeLBTC to mint
* @dev Only callable by whitelisted minters
*/
function batchMint(
address[] calldata to,
uint256[] calldata amount
) external onlyRole(MINTER_ROLE) {
if (to.length != amount.length) {
revert InvalidInputLength();
}
for (uint256 i; i < to.length; ++i) {
_mint(to[i], amount[i]);
}
}
/**
* @notice Mint NativeLBTC by proving DepositV1 payload
* @param payload The message with the stake data
* @param proof Signature of the consortium approving the mint
*/
function mintV1(
bytes calldata payload,
bytes calldata proof
) public nonReentrant {
// payload validation
if (bytes4(payload) != Actions.DEPOSIT_BTC_ACTION_V1) {
revert UnexpectedAction(bytes4(payload));
}
Actions.DepositBtcActionV1 memory action = Actions.depositBtcV1(
payload[4:]
);
_assertToken(action.tokenAddress);
_validateAndMint(
action.recipient,
action.amount,
action.amount,
payload,
proof
);
}
/**
* @notice Mint NativeLBTC in batches by DepositV1 payloads
* @param payload The messages with the stake data
* @param proof Signatures of the consortium approving the mints
*/
function batchMintV1(
bytes[] calldata payload,
bytes[] calldata proof
) external {
if (payload.length != proof.length) {
revert InvalidInputLength();
}
for (uint256 i; i < payload.length; ++i) {
// Pre-emptive check if payload was used. If so, we can skip the call.
bytes32 payloadHash = sha256(payload[i]);
if (isPayloadUsed(payloadHash)) {
emit BatchMintSkipped(payloadHash, payload[i]);
continue;
}
mintV1(payload[i], proof[i]);
}
}
/**
* @notice Mint NativeLBTC applying a commission to the amount
* @dev Payload should be same as mint to avoid reusing them with and without fee
* @param mintPayload DepositV1 payload
* @param proof Signature of the consortium approving the mint
* @param feePayload Contents of the fee approval signed by the user
* @param userSignature Signature of the user to allow Fee
*/
function mintV1WithFee(
bytes calldata mintPayload,
bytes calldata proof,
bytes calldata feePayload,
bytes calldata userSignature
) external onlyRole(CLAIMER_ROLE) {
_mintV1WithFee(mintPayload, proof, feePayload, userSignature);
}
/**
* @notice Mint NativeLBTC in batches proving stake actions happened
* @param mintPayload DepositV1 payloads
* @param proof Signatures of the consortium approving the mints
* @param feePayload Contents of the fee approvals signed by the user
* @param userSignature Signatures of the user to allow Fees
*/
function batchMintV1WithFee(
bytes[] calldata mintPayload,
bytes[] calldata proof,
bytes[] calldata feePayload,
bytes[] calldata userSignature
) external onlyRole(CLAIMER_ROLE) {
uint256 length = mintPayload.length;
if (
length != proof.length ||
length != feePayload.length ||
length != userSignature.length
) {
revert InvalidInputLength();
}
for (uint256 i; i < mintPayload.length; ++i) {
// Pre-emptive check if payload was used. If so, we can skip the call.
bytes32 payloadHash = sha256(mintPayload[i]);
if (isPayloadUsed(payloadHash)) {
emit BatchMintSkipped(payloadHash, mintPayload[i]);
continue;
}
_mintV1WithFee(
mintPayload[i],
proof[i],
feePayload[i],
userSignature[i]
);
}
}
/**
* @dev Burns NativeLBTC to initiate withdrawal of BTC to provided `scriptPubkey` with `amount`
*
* @param scriptPubkey scriptPubkey for output
* @param amount Amount of NativeLBTC to burn
*/
function redeem(bytes calldata scriptPubkey, uint256 amount) external {
NativeLBTCStorage storage $ = _getNativeLBTCStorage();
if (!$.isWithdrawalsEnabled) {
revert WithdrawalsDisabled();
}
uint64 fee = $.burnCommission;
(
uint256 amountAfterFee,
bool isAboveFee,
uint256 dustLimit,
bool isAboveDust
) = _calcFeeAndDustLimit(scriptPubkey, amount, fee);
if (!isAboveFee) {
revert AmountLessThanCommission(fee);
}
if (!isAboveDust) {
revert AmountBelowDustLimit(dustLimit);
}
address fromAddress = address(_msgSender());
_transfer(fromAddress, getTreasury(), fee);
_burn(fromAddress, amountAfterFee);
emit UnstakeRequest(fromAddress, scriptPubkey, amountAfterFee);
}
/**
* @dev Burns NativeLBTC
*
* @param amount Amount of NativeLBTC to burn
*/
function burn(uint256 amount) external {
_burn(_msgSender(), amount);
}
/**
* @dev Allows minters to burn NativeLBTC
*
* @param amount Amount of NativeLBTC to burn
*/
function burn(
address from,
uint256 amount
) external override onlyRole(MINTER_ROLE) {
_burn(from, amount);
}
/**
* @dev Returns whether a minting payload has been used already
*
* @param payloadHash The minting payload hash
*/
function isPayloadUsed(bytes32 payloadHash) public view returns (bool) {
NativeLBTCStorage storage $ = _getNativeLBTCStorage();
return $.usedPayloads[payloadHash];
}
/// PRIVATE FUNCTIONS ///
function __LBTC_init(
string memory name_,
string memory symbol_,
address consortium_,
address treasury
) internal onlyInitializing {
_changeNameAndSymbol(name_, symbol_);
_changeConsortium(consortium_);
_changeTreasuryAddress(treasury);
}
function _changeNameAndSymbol(
string memory name_,
string memory symbol_
) internal {
NativeLBTCStorage storage $ = _getNativeLBTCStorage();
$.name = name_;
$.symbol = symbol_;
emit NameAndSymbolChanged(name_, symbol_);
}
function _changeConsortium(address newVal) internal {
if (newVal == address(0)) {
revert ZeroAddress();
}
NativeLBTCStorage storage $ = _getNativeLBTCStorage();
emit ConsortiumChanged($.consortium, newVal);
$.consortium = newVal;
}
function _assertToken(address token) internal view {
if (token != address(this)) {
revert InvalidDestinationToken(address(this), token);
}
}
function _validateAndMint(
address recipient,
uint256 amountToMint,
uint256 depositAmount,
bytes calldata payload,
bytes calldata proof
) internal {
NativeLBTCStorage storage $ = _getNativeLBTCStorage();
if (amountToMint > depositAmount) revert InvalidMintAmount();
/// make sure that hash of payload not used before
/// need to check sha256 hash from payload without selector
bytes32 payloadHash = sha256(payload);
bytes32 legacyHash = keccak256(payload[4:]); // TODO: remove when bascule support sha256
if ($.usedPayloads[payloadHash]) {
revert PayloadAlreadyUsed();
}
Consortium($.consortium).checkProof(payloadHash, proof);
$.usedPayloads[payloadHash] = true;
// Confirm deposit against Bascule
_confirmDeposit($, legacyHash, depositAmount);
// Actually mint
_mint(recipient, amountToMint);
emit MintProofConsumed(recipient, payloadHash, payload);
}
function _changeBurnCommission(uint64 newValue) internal {
NativeLBTCStorage storage $ = _getNativeLBTCStorage();
uint64 prevValue = $.burnCommission;
$.burnCommission = newValue;
emit BurnCommissionChanged(prevValue, newValue);
}
/**
* @dev Checks that the deposit was validated by the Bascule drawbridge.
* @param $ NativeLBTC storage.
* @param depositID The unique ID of the deposit.
* @param amount The withdrawal amount.
*/
function _confirmDeposit(
NativeLBTCStorage storage $,
bytes32 depositID,
uint256 amount
) internal {
IBascule bascule = $.bascule;
if (address(bascule) != address(0)) {
bascule.validateWithdrawal(depositID, amount);
}
}
/**
* Change the address of the Bascule drawbridge contract.
* @param newVal The new address.
*
* Emits a {BasculeChanged} event.
*/
function _changeBascule(address newVal) internal {
NativeLBTCStorage storage $ = _getNativeLBTCStorage();
emit BasculeChanged(address($.bascule), newVal);
$.bascule = IBascule(newVal);
}
function _mintV1WithFee(
bytes calldata mintPayload,
bytes calldata proof,
bytes calldata feePayload,
bytes calldata userSignature
) internal nonReentrant {
// mint payload validation
if (bytes4(mintPayload) != Actions.DEPOSIT_BTC_ACTION_V1) {
revert UnexpectedAction(bytes4(mintPayload));
}
Actions.DepositBtcActionV1 memory mintAction = Actions.depositBtcV1(
mintPayload[4:]
);
_assertToken(mintAction.tokenAddress);
// fee payload validation
if (bytes4(feePayload) != Actions.FEE_APPROVAL_ACTION) {
revert UnexpectedAction(bytes4(feePayload));
}
Actions.FeeApprovalAction memory feeAction = Actions.feeApproval(
feePayload[4:]
);
NativeLBTCStorage storage $ = _getNativeLBTCStorage();
uint256 fee = $.maximumFee;
if (fee > feeAction.fee) {
fee = feeAction.fee;
}
if (fee >= mintAction.amount) {
revert FeeGreaterThanAmount();
}
{
// Fee validation
bytes32 digest = _hashTypedDataV4(
keccak256(
abi.encode(
Actions.FEE_APPROVAL_EIP712_ACTION,
block.chainid,
feeAction.fee,
feeAction.expiry
)
)
);
if (
!EIP1271SignatureUtils.checkSignature(
mintAction.recipient,
digest,
userSignature
)
) {
revert InvalidUserSignature();
}
}
// modified payload to be signed
_validateAndMint(
mintAction.recipient,
mintAction.amount - fee,
mintAction.amount,
mintPayload,
proof
);
// mint fee to treasury
_mint($.treasury, fee);
emit FeeCharged(fee, userSignature);
}
function _changeTreasuryAddress(address newValue) internal {
if (newValue == address(0)) {
revert ZeroAddress();
}
NativeLBTCStorage storage $ = _getNativeLBTCStorage();
address prevValue = $.treasury;
$.treasury = newValue;
emit TreasuryAddressChanged(prevValue, newValue);
}
function _calcFeeAndDustLimit(
bytes calldata scriptPubkey,
uint256 amount,
uint64 fee
) internal view returns (uint256, bool, uint256, bool) {
OutputType outType = BitcoinUtils.getOutputType(scriptPubkey);
if (outType == OutputType.UNSUPPORTED) {
revert ScriptPubkeyUnsupported();
}
if (amount <= fee) {
return (0, false, 0, false);
}
NativeLBTCStorage storage $ = _getNativeLBTCStorage();
uint256 amountAfterFee = amount - fee;
uint256 dustLimit = BitcoinUtils.getDustLimitForOutput(
outType,
scriptPubkey,
$.dustFeeRate
);
bool isAboveDust = amountAfterFee > dustLimit;
return (amountAfterFee, true, dustLimit, isAboveDust);
}
function _getNativeLBTCStorage()
private
pure
returns (NativeLBTCStorage storage $)
{
assembly {
$.slot := NATIVE_LBTC_STORAGE_LOCATION
}
}
/**
* @dev Override of the _update function to satisfy both ERC20Upgradeable and ERC20PausableUpgradeable
*/
function _update(
address from,
address to,
uint256 value
) internal virtual override(ERC20Upgradeable, ERC20PausableUpgradeable) {
super._update(from, to, value);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (access/AccessControl.sol)
pragma solidity ^0.8.20;
import {IAccessControl} from "@openzeppelin/contracts/access/IAccessControl.sol";
import {ContextUpgradeable} from "../utils/ContextUpgradeable.sol";
import {ERC165Upgradeable} from "../utils/introspection/ERC165Upgradeable.sol";
import {Initializable} from "../proxy/utils/Initializable.sol";
/**
* @dev Contract module that allows children to implement role-based access
* control mechanisms. This is a lightweight version that doesn't allow enumerating role
* members except through off-chain means by accessing the contract event logs. Some
* applications may benefit from on-chain enumerability, for those cases see
* {AccessControlEnumerable}.
*
* Roles are referred to by their `bytes32` identifier. These should be exposed
* in the external API and be unique. The best way to achieve this is by
* using `public constant` hash digests:
*
* ```solidity
* bytes32 public constant MY_ROLE = keccak256("MY_ROLE");
* ```
*
* Roles can be used to represent a set of permissions. To restrict access to a
* function call, use {hasRole}:
*
* ```solidity
* function foo() public {
* require(hasRole(MY_ROLE, msg.sender));
* ...
* }
* ```
*
* Roles can be granted and revoked dynamically via the {grantRole} and
* {revokeRole} functions. Each role has an associated admin role, and only
* accounts that have a role's admin role can call {grantRole} and {revokeRole}.
*
* By default, the admin role for all roles is `DEFAULT_ADMIN_ROLE`, which means
* that only accounts with this role will be able to grant or revoke other
* roles. More complex role relationships can be created by using
* {_setRoleAdmin}.
*
* WARNING: The `DEFAULT_ADMIN_ROLE` is also its own admin: it has permission to
* grant and revoke this role. Extra precautions should be taken to secure
* accounts that have been granted it. We recommend using {AccessControlDefaultAdminRules}
* to enforce additional security measures for this role.
*/
abstract contract AccessControlUpgradeable is Initializable, ContextUpgradeable, IAccessControl, ERC165Upgradeable {
struct RoleData {
mapping(address account => bool) hasRole;
bytes32 adminRole;
}
bytes32 public constant DEFAULT_ADMIN_ROLE = 0x00;
/// @custom:storage-location erc7201:openzeppelin.storage.AccessControl
struct AccessControlStorage {
mapping(bytes32 role => RoleData) _roles;
}
// keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.AccessControl")) - 1)) & ~bytes32(uint256(0xff))
bytes32 private constant AccessControlStorageLocation = 0x02dd7bc7dec4dceedda775e58dd541e08a116c6c53815c0bd028192f7b626800;
function _getAccessControlStorage() private pure returns (AccessControlStorage storage $) {
assembly {
$.slot := AccessControlStorageLocation
}
}
/**
* @dev Modifier that checks that an account has a specific role. Reverts
* with an {AccessControlUnauthorizedAccount} error including the required role.
*/
modifier onlyRole(bytes32 role) {
_checkRole(role);
_;
}
function __AccessControl_init() internal onlyInitializing {
}
function __AccessControl_init_unchained() internal onlyInitializing {
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return interfaceId == type(IAccessControl).interfaceId || super.supportsInterface(interfaceId);
}
/**
* @dev Returns `true` if `account` has been granted `role`.
*/
function hasRole(bytes32 role, address account) public view virtual returns (bool) {
AccessControlStorage storage $ = _getAccessControlStorage();
return $._roles[role].hasRole[account];
}
/**
* @dev Reverts with an {AccessControlUnauthorizedAccount} error if `_msgSender()`
* is missing `role`. Overriding this function changes the behavior of the {onlyRole} modifier.
*/
function _checkRole(bytes32 role) internal view virtual {
_checkRole(role, _msgSender());
}
/**
* @dev Reverts with an {AccessControlUnauthorizedAccount} error if `account`
* is missing `role`.
*/
function _checkRole(bytes32 role, address account) internal view virtual {
if (!hasRole(role, account)) {
revert AccessControlUnauthorizedAccount(account, role);
}
}
/**
* @dev Returns the admin role that controls `role`. See {grantRole} and
* {revokeRole}.
*
* To change a role's admin, use {_setRoleAdmin}.
*/
function getRoleAdmin(bytes32 role) public view virtual returns (bytes32) {
AccessControlStorage storage $ = _getAccessControlStorage();
return $._roles[role].adminRole;
}
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*
* May emit a {RoleGranted} event.
*/
function grantRole(bytes32 role, address account) public virtual onlyRole(getRoleAdmin(role)) {
_grantRole(role, account);
}
/**
* @dev Revokes `role` from `account`.
*
* If `account` had been granted `role`, emits a {RoleRevoked} event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*
* May emit a {RoleRevoked} event.
*/
function revokeRole(bytes32 role, address account) public virtual onlyRole(getRoleAdmin(role)) {
_revokeRole(role, account);
}
/**
* @dev Revokes `role` from the calling account.
*
* Roles are often managed via {grantRole} and {revokeRole}: this function's
* purpose is to provide a mechanism for accounts to lose their privileges
* if they are compromised (such as when a trusted device is misplaced).
*
* If the calling account had been revoked `role`, emits a {RoleRevoked}
* event.
*
* Requirements:
*
* - the caller must be `callerConfirmation`.
*
* May emit a {RoleRevoked} event.
*/
function renounceRole(bytes32 role, address callerConfirmation) public virtual {
if (callerConfirmation != _msgSender()) {
revert AccessControlBadConfirmation();
}
_revokeRole(role, callerConfirmation);
}
/**
* @dev Sets `adminRole` as ``role``'s admin role.
*
* Emits a {RoleAdminChanged} event.
*/
function _setRoleAdmin(bytes32 role, bytes32 adminRole) internal virtual {
AccessControlStorage storage $ = _getAccessControlStorage();
bytes32 previousAdminRole = getRoleAdmin(role);
$._roles[role].adminRole = adminRole;
emit RoleAdminChanged(role, previousAdminRole, adminRole);
}
/**
* @dev Attempts to grant `role` to `account` and returns a boolean indicating if `role` was granted.
*
* Internal function without access restriction.
*
* May emit a {RoleGranted} event.
*/
function _grantRole(bytes32 role, address account) internal virtual returns (bool) {
AccessControlStorage storage $ = _getAccessControlStorage();
if (!hasRole(role, account)) {
$._roles[role].hasRole[account] = true;
emit RoleGranted(role, account, _msgSender());
return true;
} else {
return false;
}
}
/**
* @dev Attempts to revoke `role` to `account` and returns a boolean indicating if `role` was revoked.
*
* Internal function without access restriction.
*
* May emit a {RoleRevoked} event.
*/
function _revokeRole(bytes32 role, address account) internal virtual returns (bool) {
AccessControlStorage storage $ = _getAccessControlStorage();
if (hasRole(role, account)) {
$._roles[role].hasRole[account] = false;
emit RoleRevoked(role, account, _msgSender());
return true;
} else {
return false;
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (access/extensions/AccessControlDefaultAdminRules.sol)
pragma solidity ^0.8.20;
import {IAccessControlDefaultAdminRules} from "@openzeppelin/contracts/access/extensions/IAccessControlDefaultAdminRules.sol";
import {AccessControlUpgradeable} from "../AccessControlUpgradeable.sol";
import {IAccessControl} from "@openzeppelin/contracts/access/IAccessControl.sol";
import {SafeCast} from "@openzeppelin/contracts/utils/math/SafeCast.sol";
import {Math} from "@openzeppelin/contracts/utils/math/Math.sol";
import {IERC5313} from "@openzeppelin/contracts/interfaces/IERC5313.sol";
import {Initializable} from "../../proxy/utils/Initializable.sol";
/**
* @dev Extension of {AccessControl} that allows specifying special rules to manage
* the `DEFAULT_ADMIN_ROLE` holder, which is a sensitive role with special permissions
* over other roles that may potentially have privileged rights in the system.
*
* If a specific role doesn't have an admin role assigned, the holder of the
* `DEFAULT_ADMIN_ROLE` will have the ability to grant it and revoke it.
*
* This contract implements the following risk mitigations on top of {AccessControl}:
*
* * Only one account holds the `DEFAULT_ADMIN_ROLE` since deployment until it's potentially renounced.
* * Enforces a 2-step process to transfer the `DEFAULT_ADMIN_ROLE` to another account.
* * Enforces a configurable delay between the two steps, with the ability to cancel before the transfer is accepted.
* * The delay can be changed by scheduling, see {changeDefaultAdminDelay}.
* * It is not possible to use another role to manage the `DEFAULT_ADMIN_ROLE`.
*
* Example usage:
*
* ```solidity
* contract MyToken is AccessControlDefaultAdminRules {
* constructor() AccessControlDefaultAdminRules(
* 3 days,
* msg.sender // Explicit initial `DEFAULT_ADMIN_ROLE` holder
* ) {}
* }
* ```
*/
abstract contract AccessControlDefaultAdminRulesUpgradeable is Initializable, IAccessControlDefaultAdminRules, IERC5313, AccessControlUpgradeable {
/// @custom:storage-location erc7201:openzeppelin.storage.AccessControlDefaultAdminRules
struct AccessControlDefaultAdminRulesStorage {
// pending admin pair read/written together frequently
address _pendingDefaultAdmin;
uint48 _pendingDefaultAdminSchedule; // 0 == unset
uint48 _currentDelay;
address _currentDefaultAdmin;
// pending delay pair read/written together frequently
uint48 _pendingDelay;
uint48 _pendingDelaySchedule; // 0 == unset
}
// keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.AccessControlDefaultAdminRules")) - 1)) & ~bytes32(uint256(0xff))
bytes32 private constant AccessControlDefaultAdminRulesStorageLocation = 0xeef3dac4538c82c8ace4063ab0acd2d15cdb5883aa1dff7c2673abb3d8698400;
function _getAccessControlDefaultAdminRulesStorage() private pure returns (AccessControlDefaultAdminRulesStorage storage $) {
assembly {
$.slot := AccessControlDefaultAdminRulesStorageLocation
}
}
/**
* @dev Sets the initial values for {defaultAdminDelay} and {defaultAdmin} address.
*/
function __AccessControlDefaultAdminRules_init(uint48 initialDelay, address initialDefaultAdmin) internal onlyInitializing {
__AccessControlDefaultAdminRules_init_unchained(initialDelay, initialDefaultAdmin);
}
function __AccessControlDefaultAdminRules_init_unchained(uint48 initialDelay, address initialDefaultAdmin) internal onlyInitializing {
AccessControlDefaultAdminRulesStorage storage $ = _getAccessControlDefaultAdminRulesStorage();
if (initialDefaultAdmin == address(0)) {
revert AccessControlInvalidDefaultAdmin(address(0));
}
$._currentDelay = initialDelay;
_grantRole(DEFAULT_ADMIN_ROLE, initialDefaultAdmin);
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return interfaceId == type(IAccessControlDefaultAdminRules).interfaceId || super.supportsInterface(interfaceId);
}
/**
* @dev See {IERC5313-owner}.
*/
function owner() public view virtual returns (address) {
return defaultAdmin();
}
///
/// Override AccessControl role management
///
/**
* @dev See {AccessControl-grantRole}. Reverts for `DEFAULT_ADMIN_ROLE`.
*/
function grantRole(bytes32 role, address account) public virtual override(AccessControlUpgradeable, IAccessControl) {
if (role == DEFAULT_ADMIN_ROLE) {
revert AccessControlEnforcedDefaultAdminRules();
}
super.grantRole(role, account);
}
/**
* @dev See {AccessControl-revokeRole}. Reverts for `DEFAULT_ADMIN_ROLE`.
*/
function revokeRole(bytes32 role, address account) public virtual override(AccessControlUpgradeable, IAccessControl) {
if (role == DEFAULT_ADMIN_ROLE) {
revert AccessControlEnforcedDefaultAdminRules();
}
super.revokeRole(role, account);
}
/**
* @dev See {AccessControl-renounceRole}.
*
* For the `DEFAULT_ADMIN_ROLE`, it only allows renouncing in two steps by first calling
* {beginDefaultAdminTransfer} to the `address(0)`, so it's required that the {pendingDefaultAdmin} schedule
* has also passed when calling this function.
*
* After its execution, it will not be possible to call `onlyRole(DEFAULT_ADMIN_ROLE)` functions.
*
* NOTE: Renouncing `DEFAULT_ADMIN_ROLE` will leave the contract without a {defaultAdmin},
* thereby disabling any functionality that is only available for it, and the possibility of reassigning a
* non-administrated role.
*/
function renounceRole(bytes32 role, address account) public virtual override(AccessControlUpgradeable, IAccessControl) {
AccessControlDefaultAdminRulesStorage storage $ = _getAccessControlDefaultAdminRulesStorage();
if (role == DEFAULT_ADMIN_ROLE && account == defaultAdmin()) {
(address newDefaultAdmin, uint48 schedule) = pendingDefaultAdmin();
if (newDefaultAdmin != address(0) || !_isScheduleSet(schedule) || !_hasSchedulePassed(schedule)) {
revert AccessControlEnforcedDefaultAdminDelay(schedule);
}
delete $._pendingDefaultAdminSchedule;
}
super.renounceRole(role, account);
}
/**
* @dev See {AccessControl-_grantRole}.
*
* For `DEFAULT_ADMIN_ROLE`, it only allows granting if there isn't already a {defaultAdmin} or if the
* role has been previously renounced.
*
* NOTE: Exposing this function through another mechanism may make the `DEFAULT_ADMIN_ROLE`
* assignable again. Make sure to guarantee this is the expected behavior in your implementation.
*/
function _grantRole(bytes32 role, address account) internal virtual override returns (bool) {
AccessControlDefaultAdminRulesStorage storage $ = _getAccessControlDefaultAdminRulesStorage();
if (role == DEFAULT_ADMIN_ROLE) {
if (defaultAdmin() != address(0)) {
revert AccessControlEnforcedDefaultAdminRules();
}
$._currentDefaultAdmin = account;
}
return super._grantRole(role, account);
}
/**
* @dev See {AccessControl-_revokeRole}.
*/
function _revokeRole(bytes32 role, address account) internal virtual override returns (bool) {
AccessControlDefaultAdminRulesStorage storage $ = _getAccessControlDefaultAdminRulesStorage();
if (role == DEFAULT_ADMIN_ROLE && account == defaultAdmin()) {
delete $._currentDefaultAdmin;
}
return super._revokeRole(role, account);
}
/**
* @dev See {AccessControl-_setRoleAdmin}. Reverts for `DEFAULT_ADMIN_ROLE`.
*/
function _setRoleAdmin(bytes32 role, bytes32 adminRole) internal virtual override {
if (role == DEFAULT_ADMIN_ROLE) {
revert AccessControlEnforcedDefaultAdminRules();
}
super._setRoleAdmin(role, adminRole);
}
///
/// AccessControlDefaultAdminRules accessors
///
/**
* @inheritdoc IAccessControlDefaultAdminRules
*/
function defaultAdmin() public view virtual returns (address) {
AccessControlDefaultAdminRulesStorage storage $ = _getAccessControlDefaultAdminRulesStorage();
return $._currentDefaultAdmin;
}
/**
* @inheritdoc IAccessControlDefaultAdminRules
*/
function pendingDefaultAdmin() public view virtual returns (address newAdmin, uint48 schedule) {
AccessControlDefaultAdminRulesStorage storage $ = _getAccessControlDefaultAdminRulesStorage();
return ($._pendingDefaultAdmin, $._pendingDefaultAdminSchedule);
}
/**
* @inheritdoc IAccessControlDefaultAdminRules
*/
function defaultAdminDelay() public view virtual returns (uint48) {
AccessControlDefaultAdminRulesStorage storage $ = _getAccessControlDefaultAdminRulesStorage();
uint48 schedule = $._pendingDelaySchedule;
return (_isScheduleSet(schedule) && _hasSchedulePassed(schedule)) ? $._pendingDelay : $._currentDelay;
}
/**
* @inheritdoc IAccessControlDefaultAdminRules
*/
function pendingDefaultAdminDelay() public view virtual returns (uint48 newDelay, uint48 schedule) {
AccessControlDefaultAdminRulesStorage storage $ = _getAccessControlDefaultAdminRulesStorage();
schedule = $._pendingDelaySchedule;
return (_isScheduleSet(schedule) && !_hasSchedulePassed(schedule)) ? ($._pendingDelay, schedule) : (0, 0);
}
/**
* @inheritdoc IAccessControlDefaultAdminRules
*/
function defaultAdminDelayIncreaseWait() public view virtual returns (uint48) {
return 5 days;
}
///
/// AccessControlDefaultAdminRules public and internal setters for defaultAdmin/pendingDefaultAdmin
///
/**
* @inheritdoc IAccessControlDefaultAdminRules
*/
function beginDefaultAdminTransfer(address newAdmin) public virtual onlyRole(DEFAULT_ADMIN_ROLE) {
_beginDefaultAdminTransfer(newAdmin);
}
/**
* @dev See {beginDefaultAdminTransfer}.
*
* Internal function without access restriction.
*/
function _beginDefaultAdminTransfer(address newAdmin) internal virtual {
uint48 newSchedule = SafeCast.toUint48(block.timestamp) + defaultAdminDelay();
_setPendingDefaultAdmin(newAdmin, newSchedule);
emit DefaultAdminTransferScheduled(newAdmin, newSchedule);
}
/**
* @inheritdoc IAccessControlDefaultAdminRules
*/
function cancelDefaultAdminTransfer() public virtual onlyRole(DEFAULT_ADMIN_ROLE) {
_cancelDefaultAdminTransfer();
}
/**
* @dev See {cancelDefaultAdminTransfer}.
*
* Internal function without access restriction.
*/
function _cancelDefaultAdminTransfer() internal virtual {
_setPendingDefaultAdmin(address(0), 0);
}
/**
* @inheritdoc IAccessControlDefaultAdminRules
*/
function acceptDefaultAdminTransfer() public virtual {
(address newDefaultAdmin, ) = pendingDefaultAdmin();
if (_msgSender() != newDefaultAdmin) {
// Enforce newDefaultAdmin explicit acceptance.
revert AccessControlInvalidDefaultAdmin(_msgSender());
}
_acceptDefaultAdminTransfer();
}
/**
* @dev See {acceptDefaultAdminTransfer}.
*
* Internal function without access restriction.
*/
function _acceptDefaultAdminTransfer() internal virtual {
AccessControlDefaultAdminRulesStorage storage $ = _getAccessControlDefaultAdminRulesStorage();
(address newAdmin, uint48 schedule) = pendingDefaultAdmin();
if (!_isScheduleSet(schedule) || !_hasSchedulePassed(schedule)) {
revert AccessControlEnforcedDefaultAdminDelay(schedule);
}
_revokeRole(DEFAULT_ADMIN_ROLE, defaultAdmin());
_grantRole(DEFAULT_ADMIN_ROLE, newAdmin);
delete $._pendingDefaultAdmin;
delete $._pendingDefaultAdminSchedule;
}
///
/// AccessControlDefaultAdminRules public and internal setters for defaultAdminDelay/pendingDefaultAdminDelay
///
/**
* @inheritdoc IAccessControlDefaultAdminRules
*/
function changeDefaultAdminDelay(uint48 newDelay) public virtual onlyRole(DEFAULT_ADMIN_ROLE) {
_changeDefaultAdminDelay(newDelay);
}
/**
* @dev See {changeDefaultAdminDelay}.
*
* Internal function without access restriction.
*/
function _changeDefaultAdminDelay(uint48 newDelay) internal virtual {
uint48 newSchedule = SafeCast.toUint48(block.timestamp) + _delayChangeWait(newDelay);
_setPendingDelay(newDelay, newSchedule);
emit DefaultAdminDelayChangeScheduled(newDelay, newSchedule);
}
/**
* @inheritdoc IAccessControlDefaultAdminRules
*/
function rollbackDefaultAdminDelay() public virtual onlyRole(DEFAULT_ADMIN_ROLE) {
_rollbackDefaultAdminDelay();
}
/**
* @dev See {rollbackDefaultAdminDelay}.
*
* Internal function without access restriction.
*/
function _rollbackDefaultAdminDelay() internal virtual {
_setPendingDelay(0, 0);
}
/**
* @dev Returns the amount of seconds to wait after the `newDelay` will
* become the new {defaultAdminDelay}.
*
* The value returned guarantees that if the delay is reduced, it will go into effect
* after a wait that honors the previously set delay.
*
* See {defaultAdminDelayIncreaseWait}.
*/
function _delayChangeWait(uint48 newDelay) internal view virtual returns (uint48) {
uint48 currentDelay = defaultAdminDelay();
// When increasing the delay, we schedule the delay change to occur after a period of "new delay" has passed, up
// to a maximum given by defaultAdminDelayIncreaseWait, by default 5 days. For example, if increasing from 1 day
// to 3 days, the new delay will come into effect after 3 days. If increasing from 1 day to 10 days, the new
// delay will come into effect after 5 days. The 5 day wait period is intended to be able to fix an error like
// using milliseconds instead of seconds.
//
// When decreasing the delay, we wait the difference between "current delay" and "new delay". This guarantees
// that an admin transfer cannot be made faster than "current delay" at the time the delay change is scheduled.
// For example, if decreasing from 10 days to 3 days, the new delay will come into effect after 7 days.
return
newDelay > currentDelay
? uint48(Math.min(newDelay, defaultAdminDelayIncreaseWait())) // no need to safecast, both inputs are uint48
: currentDelay - newDelay;
}
///
/// Private setters
///
/**
* @dev Setter of the tuple for pending admin and its schedule.
*
* May emit a DefaultAdminTransferCanceled event.
*/
function _setPendingDefaultAdmin(address newAdmin, uint48 newSchedule) private {
AccessControlDefaultAdminRulesStorage storage $ = _getAccessControlDefaultAdminRulesStorage();
(, uint48 oldSchedule) = pendingDefaultAdmin();
$._pendingDefaultAdmin = newAdmin;
$._pendingDefaultAdminSchedule = newSchedule;
// An `oldSchedule` from `pendingDefaultAdmin()` is only set if it hasn't been accepted.
if (_isScheduleSet(oldSchedule)) {
// Emit for implicit cancellations when another default admin was scheduled.
emit DefaultAdminTransferCanceled();
}
}
/**
* @dev Setter of the tuple for pending delay and its schedule.
*
* May emit a DefaultAdminDelayChangeCanceled event.
*/
function _setPendingDelay(uint48 newDelay, uint48 newSchedule) private {
AccessControlDefaultAdminRulesStorage storage $ = _getAccessControlDefaultAdminRulesStorage();
uint48 oldSchedule = $._pendingDelaySchedule;
if (_isScheduleSet(oldSchedule)) {
if (_hasSchedulePassed(oldSchedule)) {
// Materialize a virtual delay
$._currentDelay = $._pendingDelay;
} else {
// Emit for implicit cancellations when another delay was scheduled.
emit DefaultAdminDelayChangeCanceled();
}
}
$._pendingDelay = newDelay;
$._pendingDelaySchedule = newSchedule;
}
///
/// Private helpers
///
/**
* @dev Defines if an `schedule` is considered set. For consistency purposes.
*/
function _isScheduleSet(uint48 schedule) private pure returns (bool) {
return schedule != 0;
}
/**
* @dev Defines if an `schedule` is considered passed. For consistency purposes.
*/
function _hasSchedulePassed(uint48 schedule) private view returns (bool) {
return schedule < block.timestamp;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (access/Ownable2Step.sol)
pragma solidity ^0.8.20;
import {OwnableUpgradeable} from "./OwnableUpgradeable.sol";
import {Initializable} from "../proxy/utils/Initializable.sol";
/**
* @dev Contract module which provides access control mechanism, where
* there is an account (an owner) that can be granted exclusive access to
* specific functions.
*
* The initial owner is specified at deployment time in the constructor for `Ownable`. This
* can later be changed with {transferOwnership} and {acceptOwnership}.
*
* This module is used through inheritance. It will make available all functions
* from parent (Ownable).
*/
abstract contract Ownable2StepUpgradeable is Initializable, OwnableUpgradeable {
/// @custom:storage-location erc7201:openzeppelin.storage.Ownable2Step
struct Ownable2StepStorage {
address _pendingOwner;
}
// keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.Ownable2Step")) - 1)) & ~bytes32(uint256(0xff))
bytes32 private constant Ownable2StepStorageLocation = 0x237e158222e3e6968b72b9db0d8043aacf074ad9f650f0d1606b4d82ee432c00;
function _getOwnable2StepStorage() private pure returns (Ownable2StepStorage storage $) {
assembly {
$.slot := Ownable2StepStorageLocation
}
}
event OwnershipTransferStarted(address indexed previousOwner, address indexed newOwner);
function __Ownable2Step_init() internal onlyInitializing {
}
function __Ownable2Step_init_unchained() internal onlyInitializing {
}
/**
* @dev Returns the address of the pending owner.
*/
function pendingOwner() public view virtual returns (address) {
Ownable2StepStorage storage $ = _getOwnable2StepStorage();
return $._pendingOwner;
}
/**
* @dev Starts the ownership transfer of the contract to a new account. Replaces the pending transfer if there is one.
* Can only be called by the current owner.
*/
function transferOwnership(address newOwner) public virtual override onlyOwner {
Ownable2StepStorage storage $ = _getOwnable2StepStorage();
$._pendingOwner = newOwner;
emit OwnershipTransferStarted(owner(), newOwner);
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`) and deletes any pending owner.
* Internal function without access restriction.
*/
function _transferOwnership(address newOwner) internal virtual override {
Ownable2StepStorage storage $ = _getOwnable2StepStorage();
delete $._pendingOwner;
super._transferOwnership(newOwner);
}
/**
* @dev The new owner accepts the ownership transfer.
*/
function acceptOwnership() public virtual {
address sender = _msgSender();
if (pendingOwner() != sender) {
revert OwnableUnauthorizedAccount(sender);
}
_transferOwnership(sender);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (access/Ownable.sol)
pragma solidity ^0.8.20;
import {ContextUpgradeable} from "../utils/ContextUpgradeable.sol";
import {Initializable} from "../proxy/utils/Initializable.sol";
/**
* @dev Contract module which provides a basic access control mechanism, where
* there is an account (an owner) that can be granted exclusive access to
* specific functions.
*
* The initial owner is set to the address provided by the deployer. This can
* later be changed with {transferOwnership}.
*
* This module is used through inheritance. It will make available the modifier
* `onlyOwner`, which can be applied to your functions to restrict their use to
* the owner.
*/
abstract contract OwnableUpgradeable is Initializable, ContextUpgradeable {
/// @custom:storage-location erc7201:openzeppelin.storage.Ownable
struct OwnableStorage {
address _owner;
}
// keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.Ownable")) - 1)) & ~bytes32(uint256(0xff))
bytes32 private constant OwnableStorageLocation = 0x9016d09d72d40fdae2fd8ceac6b6234c7706214fd39c1cd1e609a0528c199300;
function _getOwnableStorage() private pure returns (OwnableStorage storage $) {
assembly {
$.slot := OwnableStorageLocation
}
}
/**
* @dev The caller account is not authorized to perform an operation.
*/
error OwnableUnauthorizedAccount(address account);
/**
* @dev The owner is not a valid owner account. (eg. `address(0)`)
*/
error OwnableInvalidOwner(address owner);
event OwnershipTransferred(address indexed previousOwner, address indexed newOwner);
/**
* @dev Initializes the contract setting the address provided by the deployer as the initial owner.
*/
function __Ownable_init(address initialOwner) internal onlyInitializing {
__Ownable_init_unchained(initialOwner);
}
function __Ownable_init_unchained(address initialOwner) internal onlyInitializing {
if (initialOwner == address(0)) {
revert OwnableInvalidOwner(address(0));
}
_transferOwnership(initialOwner);
}
/**
* @dev Throws if called by any account other than the owner.
*/
modifier onlyOwner() {
_checkOwner();
_;
}
/**
* @dev Returns the address of the current owner.
*/
function owner() public view virtual returns (address) {
OwnableStorage storage $ = _getOwnableStorage();
return $._owner;
}
/**
* @dev Throws if the sender is not the owner.
*/
function _checkOwner() internal view virtual {
if (owner() != _msgSender()) {
revert OwnableUnauthorizedAccount(_msgSender());
}
}
/**
* @dev Leaves the contract without owner. It will not be possible to call
* `onlyOwner` functions. Can only be called by the current owner.
*
* NOTE: Renouncing ownership will leave the contract without an owner,
* thereby disabling any functionality that is only available to the owner.
*/
function renounceOwnership() public virtual onlyOwner {
_transferOwnership(address(0));
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Can only be called by the current owner.
*/
function transferOwnership(address newOwner) public virtual onlyOwner {
if (newOwner == address(0)) {
revert OwnableInvalidOwner(address(0));
}
_transferOwnership(newOwner);
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Internal function without access restriction.
*/
function _transferOwnership(address newOwner) internal virtual {
OwnableStorage storage $ = _getOwnableStorage();
address oldOwner = $._owner;
$._owner = newOwner;
emit OwnershipTransferred(oldOwner, newOwner);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (proxy/utils/Initializable.sol)
pragma solidity ^0.8.20;
/**
* @dev This is a base contract to aid in writing upgradeable contracts, or any kind of contract that will be deployed
* behind a proxy. Since proxied contracts do not make use of a constructor, it's common to move constructor logic to an
* external initializer function, usually called `initialize`. It then becomes necessary to protect this initializer
* function so it can only be called once. The {initializer} modifier provided by this contract will have this effect.
*
* The initialization functions use a version number. Once a version number is used, it is consumed and cannot be
* reused. This mechanism prevents re-execution of each "step" but allows the creation of new initialization steps in
* case an upgrade adds a module that needs to be initialized.
*
* For example:
*
* [.hljs-theme-light.nopadding]
* ```solidity
* contract MyToken is ERC20Upgradeable {
* function initialize() initializer public {
* __ERC20_init("MyToken", "MTK");
* }
* }
*
* contract MyTokenV2 is MyToken, ERC20PermitUpgradeable {
* function initializeV2() reinitializer(2) public {
* __ERC20Permit_init("MyToken");
* }
* }
* ```
*
* TIP: To avoid leaving the proxy in an uninitialized state, the initializer function should be called as early as
* possible by providing the encoded function call as the `_data` argument to {ERC1967Proxy-constructor}.
*
* CAUTION: When used with inheritance, manual care must be taken to not invoke a parent initializer twice, or to ensure
* that all initializers are idempotent. This is not verified automatically as constructors are by Solidity.
*
* [CAUTION]
* ====
* Avoid leaving a contract uninitialized.
*
* An uninitialized contract can be taken over by an attacker. This applies to both a proxy and its implementation
* contract, which may impact the proxy. To prevent the implementation contract from being used, you should invoke
* the {_disableInitializers} function in the constructor to automatically lock it when it is deployed:
*
* [.hljs-theme-light.nopadding]
* ```
* /// @custom:oz-upgrades-unsafe-allow constructor
* constructor() {
* _disableInitializers();
* }
* ```
* ====
*/
abstract contract Initializable {
/**
* @dev Storage of the initializable contract.
*
* It's implemented on a custom ERC-7201 namespace to reduce the risk of storage collisions
* when using with upgradeable contracts.
*
* @custom:storage-location erc7201:openzeppelin.storage.Initializable
*/
struct InitializableStorage {
/**
* @dev Indicates that the contract has been initialized.
*/
uint64 _initialized;
/**
* @dev Indicates that the contract is in the process of being initialized.
*/
bool _initializing;
}
// keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.Initializable")) - 1)) & ~bytes32(uint256(0xff))
bytes32 private constant INITIALIZABLE_STORAGE = 0xf0c57e16840df040f15088dc2f81fe391c3923bec73e23a9662efc9c229c6a00;
/**
* @dev The contract is already initialized.
*/
error InvalidInitialization();
/**
* @dev The contract is not initializing.
*/
error NotInitializing();
/**
* @dev Triggered when the contract has been initialized or reinitialized.
*/
event Initialized(uint64 version);
/**
* @dev A modifier that defines a protected initializer function that can be invoked at most once. In its scope,
* `onlyInitializing` functions can be used to initialize parent contracts.
*
* Similar to `reinitializer(1)`, except that in the context of a constructor an `initializer` may be invoked any
* number of times. This behavior in the constructor can be useful during testing and is not expected to be used in
* production.
*
* Emits an {Initialized} event.
*/
modifier initializer() {
// solhint-disable-next-line var-name-mixedcase
InitializableStorage storage $ = _getInitializableStorage();
// Cache values to avoid duplicated sloads
bool isTopLevelCall = !$._initializing;
uint64 initialized = $._initialized;
// Allowed calls:
// - initialSetup: the contract is not in the initializing state and no previous version was
// initialized
// - construction: the contract is initialized at version 1 (no reininitialization) and the
// current contract is just being deployed
bool initialSetup = initialized == 0 && isTopLevelCall;
bool construction = initialized == 1 && address(this).code.length == 0;
if (!initialSetup && !construction) {
revert InvalidInitialization();
}
$._initialized = 1;
if (isTopLevelCall) {
$._initializing = true;
}
_;
if (isTopLevelCall) {
$._initializing = false;
emit Initialized(1);
}
}
/**
* @dev A modifier that defines a protected reinitializer function that can be invoked at most once, and only if the
* contract hasn't been initialized to a greater version before. In its scope, `onlyInitializing` functions can be
* used to initialize parent contracts.
*
* A reinitializer may be used after the original initialization step. This is essential to configure modules that
* are added through upgrades and that require initialization.
*
* When `version` is 1, this modifier is similar to `initializer`, except that functions marked with `reinitializer`
* cannot be nested. If one is invoked in the context of another, execution will revert.
*
* Note that versions can jump in increments greater than 1; this implies that if multiple reinitializers coexist in
* a contract, executing them in the right order is up to the developer or operator.
*
* WARNING: Setting the version to 2**64 - 1 will prevent any future reinitialization.
*
* Emits an {Initialized} event.
*/
modifier reinitializer(uint64 version) {
// solhint-disable-next-line var-name-mixedcase
InitializableStorage storage $ = _getInitializableStorage();
if ($._initializing || $._initialized >= version) {
revert InvalidInitialization();
}
$._initialized = version;
$._initializing = true;
_;
$._initializing = false;
emit Initialized(version);
}
/**
* @dev Modifier to protect an initialization function so that it can only be invoked by functions with the
* {initializer} and {reinitializer} modifiers, directly or indirectly.
*/
modifier onlyInitializing() {
_checkInitializing();
_;
}
/**
* @dev Reverts if the contract is not in an initializing state. See {onlyInitializing}.
*/
function _checkInitializing() internal view virtual {
if (!_isInitializing()) {
revert NotInitializing();
}
}
/**
* @dev Locks the contract, preventing any future reinitialization. This cannot be part of an initializer call.
* Calling this in the constructor of a contract will prevent that contract from being initialized or reinitialized
* to any version. It is recommended to use this to lock implementation contracts that are designed to be called
* through proxies.
*
* Emits an {Initialized} event the first time it is successfully executed.
*/
function _disableInitializers() internal virtual {
// solhint-disable-next-line var-name-mixedcase
InitializableStorage storage $ = _getInitializableStorage();
if ($._initializing) {
revert InvalidInitialization();
}
if ($._initialized != type(uint64).max) {
$._initialized = type(uint64).max;
emit Initialized(type(uint64).max);
}
}
/**
* @dev Returns the highest version that has been initialized. See {reinitializer}.
*/
function _getInitializedVersion() internal view returns (uint64) {
return _getInitializableStorage()._initialized;
}
/**
* @dev Returns `true` if the contract is currently initializing. See {onlyInitializing}.
*/
function _isInitializing() internal view returns (bool) {
return _getInitializableStorage()._initializing;
}
/**
* @dev Returns a pointer to the storage namespace.
*/
// solhint-disable-next-line var-name-mixedcase
function _getInitializableStorage() private pure returns (InitializableStorage storage $) {
assembly {
$.slot := INITIALIZABLE_STORAGE
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/ERC20.sol)
pragma solidity ^0.8.20;
import {IERC20} from "@openzeppelin/contracts/token/ERC20/IERC20.sol";
import {IERC20Metadata} from "@openzeppelin/contracts/token/ERC20/extensions/IERC20Metadata.sol";
import {ContextUpgradeable} from "../../utils/ContextUpgradeable.sol";
import {IERC20Errors} from "@openzeppelin/contracts/interfaces/draft-IERC6093.sol";
import {Initializable} from "../../proxy/utils/Initializable.sol";
/**
* @dev Implementation of the {IERC20} interface.
*
* This implementation is agnostic to the way tokens are created. This means
* that a supply mechanism has to be added in a derived contract using {_mint}.
*
* TIP: For a detailed writeup see our guide
* https://forum.openzeppelin.com/t/how-to-implement-erc20-supply-mechanisms/226[How
* to implement supply mechanisms].
*
* The default value of {decimals} is 18. To change this, you should override
* this function so it returns a different value.
*
* We have followed general OpenZeppelin Contracts guidelines: functions revert
* instead returning `false` on failure. This behavior is nonetheless
* conventional and does not conflict with the expectations of ERC20
* applications.
*
* Additionally, an {Approval} event is emitted on calls to {transferFrom}.
* This allows applications to reconstruct the allowance for all accounts just
* by listening to said events. Other implementations of the EIP may not emit
* these events, as it isn't required by the specification.
*/
abstract contract ERC20Upgradeable is Initializable, ContextUpgradeable, IERC20, IERC20Metadata, IERC20Errors {
/// @custom:storage-location erc7201:openzeppelin.storage.ERC20
struct ERC20Storage {
mapping(address account => uint256) _balances;
mapping(address account => mapping(address spender => uint256)) _allowances;
uint256 _totalSupply;
string _name;
string _symbol;
}
// keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.ERC20")) - 1)) & ~bytes32(uint256(0xff))
bytes32 private constant ERC20StorageLocation = 0x52c63247e1f47db19d5ce0460030c497f067ca4cebf71ba98eeadabe20bace00;
function _getERC20Storage() private pure returns (ERC20Storage storage $) {
assembly {
$.slot := ERC20StorageLocation
}
}
/**
* @dev Sets the values for {name} and {symbol}.
*
* All two of these values are immutable: they can only be set once during
* construction.
*/
function __ERC20_init(string memory name_, string memory symbol_) internal onlyInitializing {
__ERC20_init_unchained(name_, symbol_);
}
function __ERC20_init_unchained(string memory name_, string memory symbol_) internal onlyInitializing {
ERC20Storage storage $ = _getERC20Storage();
$._name = name_;
$._symbol = symbol_;
}
/**
* @dev Returns the name of the token.
*/
function name() public view virtual returns (string memory) {
ERC20Storage storage $ = _getERC20Storage();
return $._name;
}
/**
* @dev Returns the symbol of the token, usually a shorter version of the
* name.
*/
function symbol() public view virtual returns (string memory) {
ERC20Storage storage $ = _getERC20Storage();
return $._symbol;
}
/**
* @dev Returns the number of decimals used to get its user representation.
* For example, if `decimals` equals `2`, a balance of `505` tokens should
* be displayed to a user as `5.05` (`505 / 10 ** 2`).
*
* Tokens usually opt for a value of 18, imitating the relationship between
* Ether and Wei. This is the default value returned by this function, unless
* it's overridden.
*
* NOTE: This information is only used for _display_ purposes: it in
* no way affects any of the arithmetic of the contract, including
* {IERC20-balanceOf} and {IERC20-transfer}.
*/
function decimals() public view virtual returns (uint8) {
return 18;
}
/**
* @dev See {IERC20-totalSupply}.
*/
function totalSupply() public view virtual returns (uint256) {
ERC20Storage storage $ = _getERC20Storage();
return $._totalSupply;
}
/**
* @dev See {IERC20-balanceOf}.
*/
function balanceOf(address account) public view virtual returns (uint256) {
ERC20Storage storage $ = _getERC20Storage();
return $._balances[account];
}
/**
* @dev See {IERC20-transfer}.
*
* Requirements:
*
* - `to` cannot be the zero address.
* - the caller must have a balance of at least `value`.
*/
function transfer(address to, uint256 value) public virtual returns (bool) {
address owner = _msgSender();
_transfer(owner, to, value);
return true;
}
/**
* @dev See {IERC20-allowance}.
*/
function allowance(address owner, address spender) public view virtual returns (uint256) {
ERC20Storage storage $ = _getERC20Storage();
return $._allowances[owner][spender];
}
/**
* @dev See {IERC20-approve}.
*
* NOTE: If `value` is the maximum `uint256`, the allowance is not updated on
* `transferFrom`. This is semantically equivalent to an infinite approval.
*
* Requirements:
*
* - `spender` cannot be the zero address.
*/
function approve(address spender, uint256 value) public virtual returns (bool) {
address owner = _msgSender();
_approve(owner, spender, value);
return true;
}
/**
* @dev See {IERC20-transferFrom}.
*
* Emits an {Approval} event indicating the updated allowance. This is not
* required by the EIP. See the note at the beginning of {ERC20}.
*
* NOTE: Does not update the allowance if the current allowance
* is the maximum `uint256`.
*
* Requirements:
*
* - `from` and `to` cannot be the zero address.
* - `from` must have a balance of at least `value`.
* - the caller must have allowance for ``from``'s tokens of at least
* `value`.
*/
function transferFrom(address from, address to, uint256 value) public virtual returns (bool) {
address spender = _msgSender();
_spendAllowance(from, spender, value);
_transfer(from, to, value);
return true;
}
/**
* @dev Moves a `value` amount of tokens from `from` to `to`.
*
* This internal function is equivalent to {transfer}, and can be used to
* e.g. implement automatic token fees, slashing mechanisms, etc.
*
* Emits a {Transfer} event.
*
* NOTE: This function is not virtual, {_update} should be overridden instead.
*/
function _transfer(address from, address to, uint256 value) internal {
if (from == address(0)) {
revert ERC20InvalidSender(address(0));
}
if (to == address(0)) {
revert ERC20InvalidReceiver(address(0));
}
_update(from, to, value);
}
/**
* @dev Transfers a `value` amount of tokens from `from` to `to`, or alternatively mints (or burns) if `from`
* (or `to`) is the zero address. All customizations to transfers, mints, and burns should be done by overriding
* this function.
*
* Emits a {Transfer} event.
*/
function _update(address from, address to, uint256 value) internal virtual {
ERC20Storage storage $ = _getERC20Storage();
if (from == address(0)) {
// Overflow check required: The rest of the code assumes that totalSupply never overflows
$._totalSupply += value;
} else {
uint256 fromBalance = $._balances[from];
if (fromBalance < value) {
revert ERC20InsufficientBalance(from, fromBalance, value);
}
unchecked {
// Overflow not possible: value <= fromBalance <= totalSupply.
$._balances[from] = fromBalance - value;
}
}
if (to == address(0)) {
unchecked {
// Overflow not possible: value <= totalSupply or value <= fromBalance <= totalSupply.
$._totalSupply -= value;
}
} else {
unchecked {
// Overflow not possible: balance + value is at most totalSupply, which we know fits into a uint256.
$._balances[to] += value;
}
}
emit Transfer(from, to, value);
}
/**
* @dev Creates a `value` amount of tokens and assigns them to `account`, by transferring it from address(0).
* Relies on the `_update` mechanism
*
* Emits a {Transfer} event with `from` set to the zero address.
*
* NOTE: This function is not virtual, {_update} should be overridden instead.
*/
function _mint(address account, uint256 value) internal {
if (account == address(0)) {
revert ERC20InvalidReceiver(address(0));
}
_update(address(0), account, value);
}
/**
* @dev Destroys a `value` amount of tokens from `account`, lowering the total supply.
* Relies on the `_update` mechanism.
*
* Emits a {Transfer} event with `to` set to the zero address.
*
* NOTE: This function is not virtual, {_update} should be overridden instead
*/
function _burn(address account, uint256 value) internal {
if (account == address(0)) {
revert ERC20InvalidSender(address(0));
}
_update(account, address(0), value);
}
/**
* @dev Sets `value` as the allowance of `spender` over the `owner` s tokens.
*
* This internal function is equivalent to `approve`, and can be used to
* e.g. set automatic allowances for certain subsystems, etc.
*
* Emits an {Approval} event.
*
* Requirements:
*
* - `owner` cannot be the zero address.
* - `spender` cannot be the zero address.
*
* Overrides to this logic should be done to the variant with an additional `bool emitEvent` argument.
*/
function _approve(address owner, address spender, uint256 value) internal {
_approve(owner, spender, value, true);
}
/**
* @dev Variant of {_approve} with an optional flag to enable or disable the {Approval} event.
*
* By default (when calling {_approve}) the flag is set to true. On the other hand, approval changes made by
* `_spendAllowance` during the `transferFrom` operation set the flag to false. This saves gas by not emitting any
* `Approval` event during `transferFrom` operations.
*
* Anyone who wishes to continue emitting `Approval` events on the`transferFrom` operation can force the flag to
* true using the following override:
* ```
* function _approve(address owner, address spender, uint256 value, bool) internal virtual override {
* super._approve(owner, spender, value, true);
* }
* ```
*
* Requirements are the same as {_approve}.
*/
function _approve(address owner, address spender, uint256 value, bool emitEvent) internal virtual {
ERC20Storage storage $ = _getERC20Storage();
if (owner == address(0)) {
revert ERC20InvalidApprover(address(0));
}
if (spender == address(0)) {
revert ERC20InvalidSpender(address(0));
}
$._allowances[owner][spender] = value;
if (emitEvent) {
emit Approval(owner, spender, value);
}
}
/**
* @dev Updates `owner` s allowance for `spender` based on spent `value`.
*
* Does not update the allowance value in case of infinite allowance.
* Revert if not enough allowance is available.
*
* Does not emit an {Approval} event.
*/
function _spendAllowance(address owner, address spender, uint256 value) internal virtual {
uint256 currentAllowance = allowance(owner, spender);
if (currentAllowance != type(uint256).max) {
if (currentAllowance < value) {
revert ERC20InsufficientAllowance(spender, currentAllowance, value);
}
unchecked {
_approve(owner, spender, currentAllowance - value, false);
}
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/extensions/ERC20Pausable.sol)
pragma solidity ^0.8.20;
import {ERC20Upgradeable} from "../ERC20Upgradeable.sol";
import {PausableUpgradeable} from "../../../utils/PausableUpgradeable.sol";
import {Initializable} from "../../../proxy/utils/Initializable.sol";
/**
* @dev ERC20 token with pausable token transfers, minting and burning.
*
* Useful for scenarios such as preventing trades until the end of an evaluation
* period, or having an emergency switch for freezing all token transfers in the
* event of a large bug.
*
* IMPORTANT: This contract does not include public pause and unpause functions. In
* addition to inheriting this contract, you must define both functions, invoking the
* {Pausable-_pause} and {Pausable-_unpause} internal functions, with appropriate
* access control, e.g. using {AccessControl} or {Ownable}. Not doing so will
* make the contract pause mechanism of the contract unreachable, and thus unusable.
*/
abstract contract ERC20PausableUpgradeable is Initializable, ERC20Upgradeable, PausableUpgradeable {
function __ERC20Pausable_init() internal onlyInitializing {
__Pausable_init_unchained();
}
function __ERC20Pausable_init_unchained() internal onlyInitializing {
}
/**
* @dev See {ERC20-_update}.
*
* Requirements:
*
* - the contract must not be paused.
*/
function _update(address from, address to, uint256 value) internal virtual override whenNotPaused {
super._update(from, to, value);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/extensions/ERC20Permit.sol)
pragma solidity ^0.8.20;
import {IERC20Permit} from "@openzeppelin/contracts/token/ERC20/extensions/IERC20Permit.sol";
import {ERC20Upgradeable} from "../ERC20Upgradeable.sol";
import {ECDSA} from "@openzeppelin/contracts/utils/cryptography/ECDSA.sol";
import {EIP712Upgradeable} from "../../../utils/cryptography/EIP712Upgradeable.sol";
import {NoncesUpgradeable} from "../../../utils/NoncesUpgradeable.sol";
import {Initializable} from "../../../proxy/utils/Initializable.sol";
/**
* @dev Implementation of the ERC20 Permit extension allowing approvals to be made via signatures, as defined in
* https://eips.ethereum.org/EIPS/eip-2612[EIP-2612].
*
* Adds the {permit} method, which can be used to change an account's ERC20 allowance (see {IERC20-allowance}) by
* presenting a message signed by the account. By not relying on `{IERC20-approve}`, the token holder account doesn't
* need to send a transaction, and thus is not required to hold Ether at all.
*/
abstract contract ERC20PermitUpgradeable is Initializable, ERC20Upgradeable, IERC20Permit, EIP712Upgradeable, NoncesUpgradeable {
bytes32 private constant PERMIT_TYPEHASH =
keccak256("Permit(address owner,address spender,uint256 value,uint256 nonce,uint256 deadline)");
/**
* @dev Permit deadline has expired.
*/
error ERC2612ExpiredSignature(uint256 deadline);
/**
* @dev Mismatched signature.
*/
error ERC2612InvalidSigner(address signer, address owner);
/**
* @dev Initializes the {EIP712} domain separator using the `name` parameter, and setting `version` to `"1"`.
*
* It's a good idea to use the same `name` that is defined as the ERC20 token name.
*/
function __ERC20Permit_init(string memory name) internal onlyInitializing {
__EIP712_init_unchained(name, "1");
}
function __ERC20Permit_init_unchained(string memory) internal onlyInitializing {}
/**
* @inheritdoc IERC20Permit
*/
function permit(
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) public virtual {
if (block.timestamp > deadline) {
revert ERC2612ExpiredSignature(deadline);
}
bytes32 structHash = keccak256(abi.encode(PERMIT_TYPEHASH, owner, spender, value, _useNonce(owner), deadline));
bytes32 hash = _hashTypedDataV4(structHash);
address signer = ECDSA.recover(hash, v, r, s);
if (signer != owner) {
revert ERC2612InvalidSigner(signer, owner);
}
_approve(owner, spender, value);
}
/**
* @inheritdoc IERC20Permit
*/
function nonces(address owner) public view virtual override(IERC20Permit, NoncesUpgradeable) returns (uint256) {
return super.nonces(owner);
}
/**
* @inheritdoc IERC20Permit
*/
// solhint-disable-next-line func-name-mixedcase
function DOMAIN_SEPARATOR() external view virtual returns (bytes32) {
return _domainSeparatorV4();
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.1) (utils/Context.sol)
pragma solidity ^0.8.20;
import {Initializable} from "../proxy/utils/Initializable.sol";
/**
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/
abstract contract ContextUpgradeable is Initializable {
function __Context_init() internal onlyInitializing {
}
function __Context_init_unchained() internal onlyInitializing {
}
function _msgSender() internal view virtual returns (address) {
return msg.sender;
}
function _msgData() internal view virtual returns (bytes calldata) {
return msg.data;
}
function _contextSuffixLength() internal view virtual returns (uint256) {
return 0;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/cryptography/EIP712.sol)
pragma solidity ^0.8.20;
import {MessageHashUtils} from "@openzeppelin/contracts/utils/cryptography/MessageHashUtils.sol";
import {IERC5267} from "@openzeppelin/contracts/interfaces/IERC5267.sol";
import {Initializable} from "../../proxy/utils/Initializable.sol";
/**
* @dev https://eips.ethereum.org/EIPS/eip-712[EIP 712] is a standard for hashing and signing of typed structured data.
*
* The encoding scheme specified in the EIP requires a domain separator and a hash of the typed structured data, whose
* encoding is very generic and therefore its implementation in Solidity is not feasible, thus this contract
* does not implement the encoding itself. Protocols need to implement the type-specific encoding they need in order to
* produce the hash of their typed data using a combination of `abi.encode` and `keccak256`.
*
* This contract implements the EIP 712 domain separator ({_domainSeparatorV4}) that is used as part of the encoding
* scheme, and the final step of the encoding to obtain the message digest that is then signed via ECDSA
* ({_hashTypedDataV4}).
*
* The implementation of the domain separator was designed to be as efficient as possible while still properly updating
* the chain id to protect against replay attacks on an eventual fork of the chain.
*
* NOTE: This contract implements the version of the encoding known as "v4", as implemented by the JSON RPC method
* https://docs.metamask.io/guide/signing-data.html[`eth_signTypedDataV4` in MetaMask].
*
* NOTE: In the upgradeable version of this contract, the cached values will correspond to the address, and the domain
* separator of the implementation contract. This will cause the {_domainSeparatorV4} function to always rebuild the
* separator from the immutable values, which is cheaper than accessing a cached version in cold storage.
*/
abstract contract EIP712Upgradeable is Initializable, IERC5267 {
bytes32 private constant TYPE_HASH =
keccak256("EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)");
/// @custom:storage-location erc7201:openzeppelin.storage.EIP712
struct EIP712Storage {
/// @custom:oz-renamed-from _HASHED_NAME
bytes32 _hashedName;
/// @custom:oz-renamed-from _HASHED_VERSION
bytes32 _hashedVersion;
string _name;
string _version;
}
// keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.EIP712")) - 1)) & ~bytes32(uint256(0xff))
bytes32 private constant EIP712StorageLocation = 0xa16a46d94261c7517cc8ff89f61c0ce93598e3c849801011dee649a6a557d100;
function _getEIP712Storage() private pure returns (EIP712Storage storage $) {
assembly {
$.slot := EIP712StorageLocation
}
}
/**
* @dev Initializes the domain separator and parameter caches.
*
* The meaning of `name` and `version` is specified in
* https://eips.ethereum.org/EIPS/eip-712#definition-of-domainseparator[EIP 712]:
*
* - `name`: the user readable name of the signing domain, i.e. the name of the DApp or the protocol.
* - `version`: the current major version of the signing domain.
*
* NOTE: These parameters cannot be changed except through a xref:learn::upgrading-smart-contracts.adoc[smart
* contract upgrade].
*/
function __EIP712_init(string memory name, string memory version) internal onlyInitializing {
__EIP712_init_unchained(name, version);
}
function __EIP712_init_unchained(string memory name, string memory version) internal onlyInitializing {
EIP712Storage storage $ = _getEIP712Storage();
$._name = name;
$._version = version;
// Reset prior values in storage if upgrading
$._hashedName = 0;
$._hashedVersion = 0;
}
/**
* @dev Returns the domain separator for the current chain.
*/
function _domainSeparatorV4() internal view returns (bytes32) {
return _buildDomainSeparator();
}
function _buildDomainSeparator() private view returns (bytes32) {
return keccak256(abi.encode(TYPE_HASH, _EIP712NameHash(), _EIP712VersionHash(), block.chainid, address(this)));
}
/**
* @dev Given an already https://eips.ethereum.org/EIPS/eip-712#definition-of-hashstruct[hashed struct], this
* function returns the hash of the fully encoded EIP712 message for this domain.
*
* This hash can be used together with {ECDSA-recover} to obtain the signer of a message. For example:
*
* ```solidity
* bytes32 digest = _hashTypedDataV4(keccak256(abi.encode(
* keccak256("Mail(address to,string contents)"),
* mailTo,
* keccak256(bytes(mailContents))
* )));
* address signer = ECDSA.recover(digest, signature);
* ```
*/
function _hashTypedDataV4(bytes32 structHash) internal view virtual returns (bytes32) {
return MessageHashUtils.toTypedDataHash(_domainSeparatorV4(), structHash);
}
/**
* @dev See {IERC-5267}.
*/
function eip712Domain()
public
view
virtual
returns (
bytes1 fields,
string memory name,
string memory version,
uint256 chainId,
address verifyingContract,
bytes32 salt,
uint256[] memory extensions
)
{
EIP712Storage storage $ = _getEIP712Storage();
// If the hashed name and version in storage are non-zero, the contract hasn't been properly initialized
// and the EIP712 domain is not reliable, as it will be missing name and version.
require($._hashedName == 0 && $._hashedVersion == 0, "EIP712: Uninitialized");
return (
hex"0f", // 01111
_EIP712Name(),
_EIP712Version(),
block.chainid,
address(this),
bytes32(0),
new uint256[](0)
);
}
/**
* @dev The name parameter for the EIP712 domain.
*
* NOTE: This function reads from storage by default, but can be redefined to return a constant value if gas costs
* are a concern.
*/
function _EIP712Name() internal view virtual returns (string memory) {
EIP712Storage storage $ = _getEIP712Storage();
return $._name;
}
/**
* @dev The version parameter for the EIP712 domain.
*
* NOTE: This function reads from storage by default, but can be redefined to return a constant value if gas costs
* are a concern.
*/
function _EIP712Version() internal view virtual returns (string memory) {
EIP712Storage storage $ = _getEIP712Storage();
return $._version;
}
/**
* @dev The hash of the name parameter for the EIP712 domain.
*
* NOTE: In previous versions this function was virtual. In this version you should override `_EIP712Name` instead.
*/
function _EIP712NameHash() internal view returns (bytes32) {
EIP712Storage storage $ = _getEIP712Storage();
string memory name = _EIP712Name();
if (bytes(name).length > 0) {
return keccak256(bytes(name));
} else {
// If the name is empty, the contract may have been upgraded without initializing the new storage.
// We return the name hash in storage if non-zero, otherwise we assume the name is empty by design.
bytes32 hashedName = $._hashedName;
if (hashedName != 0) {
return hashedName;
} else {
return keccak256("");
}
}
}
/**
* @dev The hash of the version parameter for the EIP712 domain.
*
* NOTE: In previous versions this function was virtual. In this version you should override `_EIP712Version` instead.
*/
function _EIP712VersionHash() internal view returns (bytes32) {
EIP712Storage storage $ = _getEIP712Storage();
string memory version = _EIP712Version();
if (bytes(version).length > 0) {
return keccak256(bytes(version));
} else {
// If the version is empty, the contract may have been upgraded without initializing the new storage.
// We return the version hash in storage if non-zero, otherwise we assume the version is empty by design.
bytes32 hashedVersion = $._hashedVersion;
if (hashedVersion != 0) {
return hashedVersion;
} else {
return keccak256("");
}
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/introspection/ERC165.sol)
pragma solidity ^0.8.20;
import {IERC165} from "@openzeppelin/contracts/utils/introspection/IERC165.sol";
import {Initializable} from "../../proxy/utils/Initializable.sol";
/**
* @dev Implementation of the {IERC165} interface.
*
* Contracts that want to implement ERC165 should inherit from this contract and override {supportsInterface} to check
* for the additional interface id that will be supported. For example:
*
* ```solidity
* function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
* return interfaceId == type(MyInterface).interfaceId || super.supportsInterface(interfaceId);
* }
* ```
*/
abstract contract ERC165Upgradeable is Initializable, IERC165 {
function __ERC165_init() internal onlyInitializing {
}
function __ERC165_init_unchained() internal onlyInitializing {
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual returns (bool) {
return interfaceId == type(IERC165).interfaceId;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/Nonces.sol)
pragma solidity ^0.8.20;
import {Initializable} from "../proxy/utils/Initializable.sol";
/**
* @dev Provides tracking nonces for addresses. Nonces will only increment.
*/
abstract contract NoncesUpgradeable is Initializable {
/**
* @dev The nonce used for an `account` is not the expected current nonce.
*/
error InvalidAccountNonce(address account, uint256 currentNonce);
/// @custom:storage-location erc7201:openzeppelin.storage.Nonces
struct NoncesStorage {
mapping(address account => uint256) _nonces;
}
// keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.Nonces")) - 1)) & ~bytes32(uint256(0xff))
bytes32 private constant NoncesStorageLocation = 0x5ab42ced628888259c08ac98db1eb0cf702fc1501344311d8b100cd1bfe4bb00;
function _getNoncesStorage() private pure returns (NoncesStorage storage $) {
assembly {
$.slot := NoncesStorageLocation
}
}
function __Nonces_init() internal onlyInitializing {
}
function __Nonces_init_unchained() internal onlyInitializing {
}
/**
* @dev Returns the next unused nonce for an address.
*/
function nonces(address owner) public view virtual returns (uint256) {
NoncesStorage storage $ = _getNoncesStorage();
return $._nonces[owner];
}
/**
* @dev Consumes a nonce.
*
* Returns the current value and increments nonce.
*/
function _useNonce(address owner) internal virtual returns (uint256) {
NoncesStorage storage $ = _getNoncesStorage();
// For each account, the nonce has an initial value of 0, can only be incremented by one, and cannot be
// decremented or reset. This guarantees that the nonce never overflows.
unchecked {
// It is important to do x++ and not ++x here.
return $._nonces[owner]++;
}
}
/**
* @dev Same as {_useNonce} but checking that `nonce` is the next valid for `owner`.
*/
function _useCheckedNonce(address owner, uint256 nonce) internal virtual {
uint256 current = _useNonce(owner);
if (nonce != current) {
revert InvalidAccountNonce(owner, current);
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/Pausable.sol)
pragma solidity ^0.8.20;
import {ContextUpgradeable} from "../utils/ContextUpgradeable.sol";
import {Initializable} from "../proxy/utils/Initializable.sol";
/**
* @dev Contract module which allows children to implement an emergency stop
* mechanism that can be triggered by an authorized account.
*
* This module is used through inheritance. It will make available the
* modifiers `whenNotPaused` and `whenPaused`, which can be applied to
* the functions of your contract. Note that they will not be pausable by
* simply including this module, only once the modifiers are put in place.
*/
abstract contract PausableUpgradeable is Initializable, ContextUpgradeable {
/// @custom:storage-location erc7201:openzeppelin.storage.Pausable
struct PausableStorage {
bool _paused;
}
// keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.Pausable")) - 1)) & ~bytes32(uint256(0xff))
bytes32 private constant PausableStorageLocation = 0xcd5ed15c6e187e77e9aee88184c21f4f2182ab5827cb3b7e07fbedcd63f03300;
function _getPausableStorage() private pure returns (PausableStorage storage $) {
assembly {
$.slot := PausableStorageLocation
}
}
/**
* @dev Emitted when the pause is triggered by `account`.
*/
event Paused(address account);
/**
* @dev Emitted when the pause is lifted by `account`.
*/
event Unpaused(address account);
/**
* @dev The operation failed because the contract is paused.
*/
error EnforcedPause();
/**
* @dev The operation failed because the contract is not paused.
*/
error ExpectedPause();
/**
* @dev Initializes the contract in unpaused state.
*/
function __Pausable_init() internal onlyInitializing {
__Pausable_init_unchained();
}
function __Pausable_init_unchained() internal onlyInitializing {
PausableStorage storage $ = _getPausableStorage();
$._paused = false;
}
/**
* @dev Modifier to make a function callable only when the contract is not paused.
*
* Requirements:
*
* - The contract must not be paused.
*/
modifier whenNotPaused() {
_requireNotPaused();
_;
}
/**
* @dev Modifier to make a function callable only when the contract is paused.
*
* Requirements:
*
* - The contract must be paused.
*/
modifier whenPaused() {
_requirePaused();
_;
}
/**
* @dev Returns true if the contract is paused, and false otherwise.
*/
function paused() public view virtual returns (bool) {
PausableStorage storage $ = _getPausableStorage();
return $._paused;
}
/**
* @dev Throws if the contract is paused.
*/
function _requireNotPaused() internal view virtual {
if (paused()) {
revert EnforcedPause();
}
}
/**
* @dev Throws if the contract is not paused.
*/
function _requirePaused() internal view virtual {
if (!paused()) {
revert ExpectedPause();
}
}
/**
* @dev Triggers stopped state.
*
* Requirements:
*
* - The contract must not be paused.
*/
function _pause() internal virtual whenNotPaused {
PausableStorage storage $ = _getPausableStorage();
$._paused = true;
emit Paused(_msgSender());
}
/**
* @dev Returns to normal state.
*
* Requirements:
*
* - The contract must be paused.
*/
function _unpause() internal virtual whenPaused {
PausableStorage storage $ = _getPausableStorage();
$._paused = false;
emit Unpaused(_msgSender());
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/ReentrancyGuard.sol)
pragma solidity ^0.8.20;
import {Initializable} from "../proxy/utils/Initializable.sol";
/**
* @dev Contract module that helps prevent reentrant calls to a function.
*
* Inheriting from `ReentrancyGuard` will make the {nonReentrant} modifier
* available, which can be applied to functions to make sure there are no nested
* (reentrant) calls to them.
*
* Note that because there is a single `nonReentrant` guard, functions marked as
* `nonReentrant` may not call one another. This can be worked around by making
* those functions `private`, and then adding `external` `nonReentrant` entry
* points to them.
*
* TIP: If you would like to learn more about reentrancy and alternative ways
* to protect against it, check out our blog post
* https://blog.openzeppelin.com/reentrancy-after-istanbul/[Reentrancy After Istanbul].
*/
abstract contract ReentrancyGuardUpgradeable is Initializable {
// Booleans are more expensive than uint256 or any type that takes up a full
// word because each write operation emits an extra SLOAD to first read the
// slot's contents, replace the bits taken up by the boolean, and then write
// back. This is the compiler's defense against contract upgrades and
// pointer aliasing, and it cannot be disabled.
// The values being non-zero value makes deployment a bit more expensive,
// but in exchange the refund on every call to nonReentrant will be lower in
// amount. Since refunds are capped to a percentage of the total
// transaction's gas, it is best to keep them low in cases like this one, to
// increase the likelihood of the full refund coming into effect.
uint256 private constant NOT_ENTERED = 1;
uint256 private constant ENTERED = 2;
/// @custom:storage-location erc7201:openzeppelin.storage.ReentrancyGuard
struct ReentrancyGuardStorage {
uint256 _status;
}
// keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.ReentrancyGuard")) - 1)) & ~bytes32(uint256(0xff))
bytes32 private constant ReentrancyGuardStorageLocation = 0x9b779b17422d0df92223018b32b4d1fa46e071723d6817e2486d003becc55f00;
function _getReentrancyGuardStorage() private pure returns (ReentrancyGuardStorage storage $) {
assembly {
$.slot := ReentrancyGuardStorageLocation
}
}
/**
* @dev Unauthorized reentrant call.
*/
error ReentrancyGuardReentrantCall();
function __ReentrancyGuard_init() internal onlyInitializing {
__ReentrancyGuard_init_unchained();
}
function __ReentrancyGuard_init_unchained() internal onlyInitializing {
ReentrancyGuardStorage storage $ = _getReentrancyGuardStorage();
$._status = NOT_ENTERED;
}
/**
* @dev Prevents a contract from calling itself, directly or indirectly.
* Calling a `nonReentrant` function from another `nonReentrant`
* function is not supported. It is possible to prevent this from happening
* by making the `nonReentrant` function external, and making it call a
* `private` function that does the actual work.
*/
modifier nonReentrant() {
_nonReentrantBefore();
_;
_nonReentrantAfter();
}
function _nonReentrantBefore() private {
ReentrancyGuardStorage storage $ = _getReentrancyGuardStorage();
// On the first call to nonReentrant, _status will be NOT_ENTERED
if ($._status == ENTERED) {
revert ReentrancyGuardReentrantCall();
}
// Any calls to nonReentrant after this point will fail
$._status = ENTERED;
}
function _nonReentrantAfter() private {
ReentrancyGuardStorage storage $ = _getReentrancyGuardStorage();
// By storing the original value once again, a refund is triggered (see
// https://eips.ethereum.org/EIPS/eip-2200)
$._status = NOT_ENTERED;
}
/**
* @dev Returns true if the reentrancy guard is currently set to "entered", which indicates there is a
* `nonReentrant` function in the call stack.
*/
function _reentrancyGuardEntered() internal view returns (bool) {
ReentrancyGuardStorage storage $ = _getReentrancyGuardStorage();
return $._status == ENTERED;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (access/extensions/IAccessControlDefaultAdminRules.sol)
pragma solidity ^0.8.20;
import {IAccessControl} from "../IAccessControl.sol";
/**
* @dev External interface of AccessControlDefaultAdminRules declared to support ERC165 detection.
*/
interface IAccessControlDefaultAdminRules is IAccessControl {
/**
* @dev The new default admin is not a valid default admin.
*/
error AccessControlInvalidDefaultAdmin(address defaultAdmin);
/**
* @dev At least one of the following rules was violated:
*
* - The `DEFAULT_ADMIN_ROLE` must only be managed by itself.
* - The `DEFAULT_ADMIN_ROLE` must only be held by one account at the time.
* - Any `DEFAULT_ADMIN_ROLE` transfer must be in two delayed steps.
*/
error AccessControlEnforcedDefaultAdminRules();
/**
* @dev The delay for transferring the default admin delay is enforced and
* the operation must wait until `schedule`.
*
* NOTE: `schedule` can be 0 indicating there's no transfer scheduled.
*/
error AccessControlEnforcedDefaultAdminDelay(uint48 schedule);
/**
* @dev Emitted when a {defaultAdmin} transfer is started, setting `newAdmin` as the next
* address to become the {defaultAdmin} by calling {acceptDefaultAdminTransfer} only after `acceptSchedule`
* passes.
*/
event DefaultAdminTransferScheduled(address indexed newAdmin, uint48 acceptSchedule);
/**
* @dev Emitted when a {pendingDefaultAdmin} is reset if it was never accepted, regardless of its schedule.
*/
event DefaultAdminTransferCanceled();
/**
* @dev Emitted when a {defaultAdminDelay} change is started, setting `newDelay` as the next
* delay to be applied between default admin transfer after `effectSchedule` has passed.
*/
event DefaultAdminDelayChangeScheduled(uint48 newDelay, uint48 effectSchedule);
/**
* @dev Emitted when a {pendingDefaultAdminDelay} is reset if its schedule didn't pass.
*/
event DefaultAdminDelayChangeCanceled();
/**
* @dev Returns the address of the current `DEFAULT_ADMIN_ROLE` holder.
*/
function defaultAdmin() external view returns (address);
/**
* @dev Returns a tuple of a `newAdmin` and an accept schedule.
*
* After the `schedule` passes, the `newAdmin` will be able to accept the {defaultAdmin} role
* by calling {acceptDefaultAdminTransfer}, completing the role transfer.
*
* A zero value only in `acceptSchedule` indicates no pending admin transfer.
*
* NOTE: A zero address `newAdmin` means that {defaultAdmin} is being renounced.
*/
function pendingDefaultAdmin() external view returns (address newAdmin, uint48 acceptSchedule);
/**
* @dev Returns the delay required to schedule the acceptance of a {defaultAdmin} transfer started.
*
* This delay will be added to the current timestamp when calling {beginDefaultAdminTransfer} to set
* the acceptance schedule.
*
* NOTE: If a delay change has been scheduled, it will take effect as soon as the schedule passes, making this
* function returns the new delay. See {changeDefaultAdminDelay}.
*/
function defaultAdminDelay() external view returns (uint48);
/**
* @dev Returns a tuple of `newDelay` and an effect schedule.
*
* After the `schedule` passes, the `newDelay` will get into effect immediately for every
* new {defaultAdmin} transfer started with {beginDefaultAdminTransfer}.
*
* A zero value only in `effectSchedule` indicates no pending delay change.
*
* NOTE: A zero value only for `newDelay` means that the next {defaultAdminDelay}
* will be zero after the effect schedule.
*/
function pendingDefaultAdminDelay() external view returns (uint48 newDelay, uint48 effectSchedule);
/**
* @dev Starts a {defaultAdmin} transfer by setting a {pendingDefaultAdmin} scheduled for acceptance
* after the current timestamp plus a {defaultAdminDelay}.
*
* Requirements:
*
* - Only can be called by the current {defaultAdmin}.
*
* Emits a DefaultAdminRoleChangeStarted event.
*/
function beginDefaultAdminTransfer(address newAdmin) external;
/**
* @dev Cancels a {defaultAdmin} transfer previously started with {beginDefaultAdminTransfer}.
*
* A {pendingDefaultAdmin} not yet accepted can also be cancelled with this function.
*
* Requirements:
*
* - Only can be called by the current {defaultAdmin}.
*
* May emit a DefaultAdminTransferCanceled event.
*/
function cancelDefaultAdminTransfer() external;
/**
* @dev Completes a {defaultAdmin} transfer previously started with {beginDefaultAdminTransfer}.
*
* After calling the function:
*
* - `DEFAULT_ADMIN_ROLE` should be granted to the caller.
* - `DEFAULT_ADMIN_ROLE` should be revoked from the previous holder.
* - {pendingDefaultAdmin} should be reset to zero values.
*
* Requirements:
*
* - Only can be called by the {pendingDefaultAdmin}'s `newAdmin`.
* - The {pendingDefaultAdmin}'s `acceptSchedule` should've passed.
*/
function acceptDefaultAdminTransfer() external;
/**
* @dev Initiates a {defaultAdminDelay} update by setting a {pendingDefaultAdminDelay} scheduled for getting
* into effect after the current timestamp plus a {defaultAdminDelay}.
*
* This function guarantees that any call to {beginDefaultAdminTransfer} done between the timestamp this
* method is called and the {pendingDefaultAdminDelay} effect schedule will use the current {defaultAdminDelay}
* set before calling.
*
* The {pendingDefaultAdminDelay}'s effect schedule is defined in a way that waiting until the schedule and then
* calling {beginDefaultAdminTransfer} with the new delay will take at least the same as another {defaultAdmin}
* complete transfer (including acceptance).
*
* The schedule is designed for two scenarios:
*
* - When the delay is changed for a larger one the schedule is `block.timestamp + newDelay` capped by
* {defaultAdminDelayIncreaseWait}.
* - When the delay is changed for a shorter one, the schedule is `block.timestamp + (current delay - new delay)`.
*
* A {pendingDefaultAdminDelay} that never got into effect will be canceled in favor of a new scheduled change.
*
* Requirements:
*
* - Only can be called by the current {defaultAdmin}.
*
* Emits a DefaultAdminDelayChangeScheduled event and may emit a DefaultAdminDelayChangeCanceled event.
*/
function changeDefaultAdminDelay(uint48 newDelay) external;
/**
* @dev Cancels a scheduled {defaultAdminDelay} change.
*
* Requirements:
*
* - Only can be called by the current {defaultAdmin}.
*
* May emit a DefaultAdminDelayChangeCanceled event.
*/
function rollbackDefaultAdminDelay() external;
/**
* @dev Maximum time in seconds for an increase to {defaultAdminDelay} (that is scheduled using {changeDefaultAdminDelay})
* to take effect. Default to 5 days.
*
* When the {defaultAdminDelay} is scheduled to be increased, it goes into effect after the new delay has passed with
* the purpose of giving enough time for reverting any accidental change (i.e. using milliseconds instead of seconds)
* that may lock the contract. However, to avoid excessive schedules, the wait is capped by this function and it can
* be overrode for a custom {defaultAdminDelay} increase scheduling.
*
* IMPORTANT: Make sure to add a reasonable amount of time while overriding this value, otherwise,
* there's a risk of setting a high new delay that goes into effect almost immediately without the
* possibility of human intervention in the case of an input error (eg. set milliseconds instead of seconds).
*/
function defaultAdminDelayIncreaseWait() external view returns (uint48);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (access/IAccessControl.sol)
pragma solidity ^0.8.20;
/**
* @dev External interface of AccessControl declared to support ERC165 detection.
*/
interface IAccessControl {
/**
* @dev The `account` is missing a role.
*/
error AccessControlUnauthorizedAccount(address account, bytes32 neededRole);
/**
* @dev The caller of a function is not the expected one.
*
* NOTE: Don't confuse with {AccessControlUnauthorizedAccount}.
*/
error AccessControlBadConfirmation();
/**
* @dev Emitted when `newAdminRole` is set as ``role``'s admin role, replacing `previousAdminRole`
*
* `DEFAULT_ADMIN_ROLE` is the starting admin for all roles, despite
* {RoleAdminChanged} not being emitted signaling this.
*/
event RoleAdminChanged(bytes32 indexed role, bytes32 indexed previousAdminRole, bytes32 indexed newAdminRole);
/**
* @dev Emitted when `account` is granted `role`.
*
* `sender` is the account that originated the contract call, an admin role
* bearer except when using {AccessControl-_setupRole}.
*/
event RoleGranted(bytes32 indexed role, address indexed account, address indexed sender);
/**
* @dev Emitted when `account` is revoked `role`.
*
* `sender` is the account that originated the contract call:
* - if using `revokeRole`, it is the admin role bearer
* - if using `renounceRole`, it is the role bearer (i.e. `account`)
*/
event RoleRevoked(bytes32 indexed role, address indexed account, address indexed sender);
/**
* @dev Returns `true` if `account` has been granted `role`.
*/
function hasRole(bytes32 role, address account) external view returns (bool);
/**
* @dev Returns the admin role that controls `role`. See {grantRole} and
* {revokeRole}.
*
* To change a role's admin, use {AccessControl-_setRoleAdmin}.
*/
function getRoleAdmin(bytes32 role) external view returns (bytes32);
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function grantRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from `account`.
*
* If `account` had been granted `role`, emits a {RoleRevoked} event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function revokeRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from the calling account.
*
* Roles are often managed via {grantRole} and {revokeRole}: this function's
* purpose is to provide a mechanism for accounts to lose their privileges
* if they are compromised (such as when a trusted device is misplaced).
*
* If the calling account had been granted `role`, emits a {RoleRevoked}
* event.
*
* Requirements:
*
* - the caller must be `callerConfirmation`.
*/
function renounceRole(bytes32 role, address callerConfirmation) external;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (interfaces/draft-IERC6093.sol)
pragma solidity ^0.8.20;
/**
* @dev Standard ERC20 Errors
* Interface of the https://eips.ethereum.org/EIPS/eip-6093[ERC-6093] custom errors for ERC20 tokens.
*/
interface IERC20Errors {
/**
* @dev Indicates an error related to the current `balance` of a `sender`. Used in transfers.
* @param sender Address whose tokens are being transferred.
* @param balance Current balance for the interacting account.
* @param needed Minimum amount required to perform a transfer.
*/
error ERC20InsufficientBalance(address sender, uint256 balance, uint256 needed);
/**
* @dev Indicates a failure with the token `sender`. Used in transfers.
* @param sender Address whose tokens are being transferred.
*/
error ERC20InvalidSender(address sender);
/**
* @dev Indicates a failure with the token `receiver`. Used in transfers.
* @param receiver Address to which tokens are being transferred.
*/
error ERC20InvalidReceiver(address receiver);
/**
* @dev Indicates a failure with the `spender`’s `allowance`. Used in transfers.
* @param spender Address that may be allowed to operate on tokens without being their owner.
* @param allowance Amount of tokens a `spender` is allowed to operate with.
* @param needed Minimum amount required to perform a transfer.
*/
error ERC20InsufficientAllowance(address spender, uint256 allowance, uint256 needed);
/**
* @dev Indicates a failure with the `approver` of a token to be approved. Used in approvals.
* @param approver Address initiating an approval operation.
*/
error ERC20InvalidApprover(address approver);
/**
* @dev Indicates a failure with the `spender` to be approved. Used in approvals.
* @param spender Address that may be allowed to operate on tokens without being their owner.
*/
error ERC20InvalidSpender(address spender);
}
/**
* @dev Standard ERC721 Errors
* Interface of the https://eips.ethereum.org/EIPS/eip-6093[ERC-6093] custom errors for ERC721 tokens.
*/
interface IERC721Errors {
/**
* @dev Indicates that an address can't be an owner. For example, `address(0)` is a forbidden owner in EIP-20.
* Used in balance queries.
* @param owner Address of the current owner of a token.
*/
error ERC721InvalidOwner(address owner);
/**
* @dev Indicates a `tokenId` whose `owner` is the zero address.
* @param tokenId Identifier number of a token.
*/
error ERC721NonexistentToken(uint256 tokenId);
/**
* @dev Indicates an error related to the ownership over a particular token. Used in transfers.
* @param sender Address whose tokens are being transferred.
* @param tokenId Identifier number of a token.
* @param owner Address of the current owner of a token.
*/
error ERC721IncorrectOwner(address sender, uint256 tokenId, address owner);
/**
* @dev Indicates a failure with the token `sender`. Used in transfers.
* @param sender Address whose tokens are being transferred.
*/
error ERC721InvalidSender(address sender);
/**
* @dev Indicates a failure with the token `receiver`. Used in transfers.
* @param receiver Address to which tokens are being transferred.
*/
error ERC721InvalidReceiver(address receiver);
/**
* @dev Indicates a failure with the `operator`’s approval. Used in transfers.
* @param operator Address that may be allowed to operate on tokens without being their owner.
* @param tokenId Identifier number of a token.
*/
error ERC721InsufficientApproval(address operator, uint256 tokenId);
/**
* @dev Indicates a failure with the `approver` of a token to be approved. Used in approvals.
* @param approver Address initiating an approval operation.
*/
error ERC721InvalidApprover(address approver);
/**
* @dev Indicates a failure with the `operator` to be approved. Used in approvals.
* @param operator Address that may be allowed to operate on tokens without being their owner.
*/
error ERC721InvalidOperator(address operator);
}
/**
* @dev Standard ERC1155 Errors
* Interface of the https://eips.ethereum.org/EIPS/eip-6093[ERC-6093] custom errors for ERC1155 tokens.
*/
interface IERC1155Errors {
/**
* @dev Indicates an error related to the current `balance` of a `sender`. Used in transfers.
* @param sender Address whose tokens are being transferred.
* @param balance Current balance for the interacting account.
* @param needed Minimum amount required to perform a transfer.
* @param tokenId Identifier number of a token.
*/
error ERC1155InsufficientBalance(address sender, uint256 balance, uint256 needed, uint256 tokenId);
/**
* @dev Indicates a failure with the token `sender`. Used in transfers.
* @param sender Address whose tokens are being transferred.
*/
error ERC1155InvalidSender(address sender);
/**
* @dev Indicates a failure with the token `receiver`. Used in transfers.
* @param receiver Address to which tokens are being transferred.
*/
error ERC1155InvalidReceiver(address receiver);
/**
* @dev Indicates a failure with the `operator`’s approval. Used in transfers.
* @param operator Address that may be allowed to operate on tokens without being their owner.
* @param owner Address of the current owner of a token.
*/
error ERC1155MissingApprovalForAll(address operator, address owner);
/**
* @dev Indicates a failure with the `approver` of a token to be approved. Used in approvals.
* @param approver Address initiating an approval operation.
*/
error ERC1155InvalidApprover(address approver);
/**
* @dev Indicates a failure with the `operator` to be approved. Used in approvals.
* @param operator Address that may be allowed to operate on tokens without being their owner.
*/
error ERC1155InvalidOperator(address operator);
/**
* @dev Indicates an array length mismatch between ids and values in a safeBatchTransferFrom operation.
* Used in batch transfers.
* @param idsLength Length of the array of token identifiers
* @param valuesLength Length of the array of token amounts
*/
error ERC1155InvalidArrayLength(uint256 idsLength, uint256 valuesLength);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (interfaces/IERC1271.sol)
pragma solidity ^0.8.20;
/**
* @dev Interface of the ERC1271 standard signature validation method for
* contracts as defined in https://eips.ethereum.org/EIPS/eip-1271[ERC-1271].
*/
interface IERC1271 {
/**
* @dev Should return whether the signature provided is valid for the provided data
* @param hash Hash of the data to be signed
* @param signature Signature byte array associated with _data
*/
function isValidSignature(bytes32 hash, bytes memory signature) external view returns (bytes4 magicValue);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (interfaces/IERC5267.sol)
pragma solidity ^0.8.20;
interface IERC5267 {
/**
* @dev MAY be emitted to signal that the domain could have changed.
*/
event EIP712DomainChanged();
/**
* @dev returns the fields and values that describe the domain separator used by this contract for EIP-712
* signature.
*/
function eip712Domain()
external
view
returns (
bytes1 fields,
string memory name,
string memory version,
uint256 chainId,
address verifyingContract,
bytes32 salt,
uint256[] memory extensions
);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (interfaces/IERC5313.sol)
pragma solidity ^0.8.20;
/**
* @dev Interface for the Light Contract Ownership Standard.
*
* A standardized minimal interface required to identify an account that controls a contract
*/
interface IERC5313 {
/**
* @dev Gets the address of the owner.
*/
function owner() external view returns (address);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/extensions/IERC20Metadata.sol)
pragma solidity ^0.8.20;
import {IERC20} from "../IERC20.sol";
/**
* @dev Interface for the optional metadata functions from the ERC20 standard.
*/
interface IERC20Metadata is IERC20 {
/**
* @dev Returns the name of the token.
*/
function name() external view returns (string memory);
/**
* @dev Returns the symbol of the token.
*/
function symbol() external view returns (string memory);
/**
* @dev Returns the decimals places of the token.
*/
function decimals() external view returns (uint8);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/extensions/IERC20Permit.sol)
pragma solidity ^0.8.20;
/**
* @dev Interface of the ERC20 Permit extension allowing approvals to be made via signatures, as defined in
* https://eips.ethereum.org/EIPS/eip-2612[EIP-2612].
*
* Adds the {permit} method, which can be used to change an account's ERC20 allowance (see {IERC20-allowance}) by
* presenting a message signed by the account. By not relying on {IERC20-approve}, the token holder account doesn't
* need to send a transaction, and thus is not required to hold Ether at all.
*
* ==== Security Considerations
*
* There are two important considerations concerning the use of `permit`. The first is that a valid permit signature
* expresses an allowance, and it should not be assumed to convey additional meaning. In particular, it should not be
* considered as an intention to spend the allowance in any specific way. The second is that because permits have
* built-in replay protection and can be submitted by anyone, they can be frontrun. A protocol that uses permits should
* take this into consideration and allow a `permit` call to fail. Combining these two aspects, a pattern that may be
* generally recommended is:
*
* ```solidity
* function doThingWithPermit(..., uint256 value, uint256 deadline, uint8 v, bytes32 r, bytes32 s) public {
* try token.permit(msg.sender, address(this), value, deadline, v, r, s) {} catch {}
* doThing(..., value);
* }
*
* function doThing(..., uint256 value) public {
* token.safeTransferFrom(msg.sender, address(this), value);
* ...
* }
* ```
*
* Observe that: 1) `msg.sender` is used as the owner, leaving no ambiguity as to the signer intent, and 2) the use of
* `try/catch` allows the permit to fail and makes the code tolerant to frontrunning. (See also
* {SafeERC20-safeTransferFrom}).
*
* Additionally, note that smart contract wallets (such as Argent or Safe) are not able to produce permit signatures, so
* contracts should have entry points that don't rely on permit.
*/
interface IERC20Permit {
/**
* @dev Sets `value` as the allowance of `spender` over ``owner``'s tokens,
* given ``owner``'s signed approval.
*
* IMPORTANT: The same issues {IERC20-approve} has related to transaction
* ordering also apply here.
*
* Emits an {Approval} event.
*
* Requirements:
*
* - `spender` cannot be the zero address.
* - `deadline` must be a timestamp in the future.
* - `v`, `r` and `s` must be a valid `secp256k1` signature from `owner`
* over the EIP712-formatted function arguments.
* - the signature must use ``owner``'s current nonce (see {nonces}).
*
* For more information on the signature format, see the
* https://eips.ethereum.org/EIPS/eip-2612#specification[relevant EIP
* section].
*
* CAUTION: See Security Considerations above.
*/
function permit(
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) external;
/**
* @dev Returns the current nonce for `owner`. This value must be
* included whenever a signature is generated for {permit}.
*
* Every successful call to {permit} increases ``owner``'s nonce by one. This
* prevents a signature from being used multiple times.
*/
function nonces(address owner) external view returns (uint256);
/**
* @dev Returns the domain separator used in the encoding of the signature for {permit}, as defined by {EIP712}.
*/
// solhint-disable-next-line func-name-mixedcase
function DOMAIN_SEPARATOR() external view returns (bytes32);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/IERC20.sol)
pragma solidity ^0.8.20;
/**
* @dev Interface of the ERC20 standard as defined in the EIP.
*/
interface IERC20 {
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/
event Transfer(address indexed from, address indexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/
event Approval(address indexed owner, address indexed spender, uint256 value);
/**
* @dev Returns the value of tokens in existence.
*/
function totalSupply() external view returns (uint256);
/**
* @dev Returns the value of tokens owned by `account`.
*/
function balanceOf(address account) external view returns (uint256);
/**
* @dev Moves a `value` amount of tokens from the caller's account to `to`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transfer(address to, uint256 value) external returns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/
function allowance(address owner, address spender) external view returns (uint256);
/**
* @dev Sets a `value` amount of tokens as the allowance of `spender` over the
* caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/
function approve(address spender, uint256 value) external returns (bool);
/**
* @dev Moves a `value` amount of tokens from `from` to `to` using the
* allowance mechanism. `value` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transferFrom(address from, address to, uint256 value) external returns (bool);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/cryptography/ECDSA.sol)
pragma solidity ^0.8.20;
/**
* @dev Elliptic Curve Digital Signature Algorithm (ECDSA) operations.
*
* These functions can be used to verify that a message was signed by the holder
* of the private keys of a given address.
*/
library ECDSA {
enum RecoverError {
NoError,
InvalidSignature,
InvalidSignatureLength,
InvalidSignatureS
}
/**
* @dev The signature derives the `address(0)`.
*/
error ECDSAInvalidSignature();
/**
* @dev The signature has an invalid length.
*/
error ECDSAInvalidSignatureLength(uint256 length);
/**
* @dev The signature has an S value that is in the upper half order.
*/
error ECDSAInvalidSignatureS(bytes32 s);
/**
* @dev Returns the address that signed a hashed message (`hash`) with `signature` or an error. This will not
* return address(0) without also returning an error description. Errors are documented using an enum (error type)
* and a bytes32 providing additional information about the error.
*
* If no error is returned, then the address can be used for verification purposes.
*
* The `ecrecover` EVM precompile allows for malleable (non-unique) signatures:
* this function rejects them by requiring the `s` value to be in the lower
* half order, and the `v` value to be either 27 or 28.
*
* IMPORTANT: `hash` _must_ be the result of a hash operation for the
* verification to be secure: it is possible to craft signatures that
* recover to arbitrary addresses for non-hashed data. A safe way to ensure
* this is by receiving a hash of the original message (which may otherwise
* be too long), and then calling {MessageHashUtils-toEthSignedMessageHash} on it.
*
* Documentation for signature generation:
* - with https://web3js.readthedocs.io/en/v1.3.4/web3-eth-accounts.html#sign[Web3.js]
* - with https://docs.ethers.io/v5/api/signer/#Signer-signMessage[ethers]
*/
function tryRecover(bytes32 hash, bytes memory signature) internal pure returns (address, RecoverError, bytes32) {
if (signature.length == 65) {
bytes32 r;
bytes32 s;
uint8 v;
// ecrecover takes the signature parameters, and the only way to get them
// currently is to use assembly.
/// @solidity memory-safe-assembly
assembly {
r := mload(add(signature, 0x20))
s := mload(add(signature, 0x40))
v := byte(0, mload(add(signature, 0x60)))
}
return tryRecover(hash, v, r, s);
} else {
return (address(0), RecoverError.InvalidSignatureLength, bytes32(signature.length));
}
}
/**
* @dev Returns the address that signed a hashed message (`hash`) with
* `signature`. This address can then be used for verification purposes.
*
* The `ecrecover` EVM precompile allows for malleable (non-unique) signatures:
* this function rejects them by requiring the `s` value to be in the lower
* half order, and the `v` value to be either 27 or 28.
*
* IMPORTANT: `hash` _must_ be the result of a hash operation for the
* verification to be secure: it is possible to craft signatures that
* recover to arbitrary addresses for non-hashed data. A safe way to ensure
* this is by receiving a hash of the original message (which may otherwise
* be too long), and then calling {MessageHashUtils-toEthSignedMessageHash} on it.
*/
function recover(bytes32 hash, bytes memory signature) internal pure returns (address) {
(address recovered, RecoverError error, bytes32 errorArg) = tryRecover(hash, signature);
_throwError(error, errorArg);
return recovered;
}
/**
* @dev Overload of {ECDSA-tryRecover} that receives the `r` and `vs` short-signature fields separately.
*
* See https://eips.ethereum.org/EIPS/eip-2098[EIP-2098 short signatures]
*/
function tryRecover(bytes32 hash, bytes32 r, bytes32 vs) internal pure returns (address, RecoverError, bytes32) {
unchecked {
bytes32 s = vs & bytes32(0x7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff);
// We do not check for an overflow here since the shift operation results in 0 or 1.
uint8 v = uint8((uint256(vs) >> 255) + 27);
return tryRecover(hash, v, r, s);
}
}
/**
* @dev Overload of {ECDSA-recover} that receives the `r and `vs` short-signature fields separately.
*/
function recover(bytes32 hash, bytes32 r, bytes32 vs) internal pure returns (address) {
(address recovered, RecoverError error, bytes32 errorArg) = tryRecover(hash, r, vs);
_throwError(error, errorArg);
return recovered;
}
/**
* @dev Overload of {ECDSA-tryRecover} that receives the `v`,
* `r` and `s` signature fields separately.
*/
function tryRecover(
bytes32 hash,
uint8 v,
bytes32 r,
bytes32 s
) internal pure returns (address, RecoverError, bytes32) {
// EIP-2 still allows signature malleability for ecrecover(). Remove this possibility and make the signature
// unique. Appendix F in the Ethereum Yellow paper (https://ethereum.github.io/yellowpaper/paper.pdf), defines
// the valid range for s in (301): 0 < s < secp256k1n ÷ 2 + 1, and for v in (302): v ∈ {27, 28}. Most
// signatures from current libraries generate a unique signature with an s-value in the lower half order.
//
// If your library generates malleable signatures, such as s-values in the upper range, calculate a new s-value
// with 0xFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEBAAEDCE6AF48A03BBFD25E8CD0364141 - s1 and flip v from 27 to 28 or
// vice versa. If your library also generates signatures with 0/1 for v instead 27/28, add 27 to v to accept
// these malleable signatures as well.
if (uint256(s) > 0x7FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF5D576E7357A4501DDFE92F46681B20A0) {
return (address(0), RecoverError.InvalidSignatureS, s);
}
// If the signature is valid (and not malleable), return the signer address
address signer = ecrecover(hash, v, r, s);
if (signer == address(0)) {
return (address(0), RecoverError.InvalidSignature, bytes32(0));
}
return (signer, RecoverError.NoError, bytes32(0));
}
/**
* @dev Overload of {ECDSA-recover} that receives the `v`,
* `r` and `s` signature fields separately.
*/
function recover(bytes32 hash, uint8 v, bytes32 r, bytes32 s) internal pure returns (address) {
(address recovered, RecoverError error, bytes32 errorArg) = tryRecover(hash, v, r, s);
_throwError(error, errorArg);
return recovered;
}
/**
* @dev Optionally reverts with the corresponding custom error according to the `error` argument provided.
*/
function _throwError(RecoverError error, bytes32 errorArg) private pure {
if (error == RecoverError.NoError) {
return; // no error: do nothing
} else if (error == RecoverError.InvalidSignature) {
revert ECDSAInvalidSignature();
} else if (error == RecoverError.InvalidSignatureLength) {
revert ECDSAInvalidSignatureLength(uint256(errorArg));
} else if (error == RecoverError.InvalidSignatureS) {
revert ECDSAInvalidSignatureS(errorArg);
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/cryptography/MessageHashUtils.sol)
pragma solidity ^0.8.20;
import {Strings} from "../Strings.sol";
/**
* @dev Signature message hash utilities for producing digests to be consumed by {ECDSA} recovery or signing.
*
* The library provides methods for generating a hash of a message that conforms to the
* https://eips.ethereum.org/EIPS/eip-191[EIP 191] and https://eips.ethereum.org/EIPS/eip-712[EIP 712]
* specifications.
*/
library MessageHashUtils {
/**
* @dev Returns the keccak256 digest of an EIP-191 signed data with version
* `0x45` (`personal_sign` messages).
*
* The digest is calculated by prefixing a bytes32 `messageHash` with
* `"\x19Ethereum Signed Message:\n32"` and hashing the result. It corresponds with the
* hash signed when using the https://eth.wiki/json-rpc/API#eth_sign[`eth_sign`] JSON-RPC method.
*
* NOTE: The `messageHash` parameter is intended to be the result of hashing a raw message with
* keccak256, although any bytes32 value can be safely used because the final digest will
* be re-hashed.
*
* See {ECDSA-recover}.
*/
function toEthSignedMessageHash(bytes32 messageHash) internal pure returns (bytes32 digest) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x00, "\x19Ethereum Signed Message:\n32") // 32 is the bytes-length of messageHash
mstore(0x1c, messageHash) // 0x1c (28) is the length of the prefix
digest := keccak256(0x00, 0x3c) // 0x3c is the length of the prefix (0x1c) + messageHash (0x20)
}
}
/**
* @dev Returns the keccak256 digest of an EIP-191 signed data with version
* `0x45` (`personal_sign` messages).
*
* The digest is calculated by prefixing an arbitrary `message` with
* `"\x19Ethereum Signed Message:\n" + len(message)` and hashing the result. It corresponds with the
* hash signed when using the https://eth.wiki/json-rpc/API#eth_sign[`eth_sign`] JSON-RPC method.
*
* See {ECDSA-recover}.
*/
function toEthSignedMessageHash(bytes memory message) internal pure returns (bytes32) {
return
keccak256(bytes.concat("\x19Ethereum Signed Message:\n", bytes(Strings.toString(message.length)), message));
}
/**
* @dev Returns the keccak256 digest of an EIP-191 signed data with version
* `0x00` (data with intended validator).
*
* The digest is calculated by prefixing an arbitrary `data` with `"\x19\x00"` and the intended
* `validator` address. Then hashing the result.
*
* See {ECDSA-recover}.
*/
function toDataWithIntendedValidatorHash(address validator, bytes memory data) internal pure returns (bytes32) {
return keccak256(abi.encodePacked(hex"19_00", validator, data));
}
/**
* @dev Returns the keccak256 digest of an EIP-712 typed data (EIP-191 version `0x01`).
*
* The digest is calculated from a `domainSeparator` and a `structHash`, by prefixing them with
* `\x19\x01` and hashing the result. It corresponds to the hash signed by the
* https://eips.ethereum.org/EIPS/eip-712[`eth_signTypedData`] JSON-RPC method as part of EIP-712.
*
* See {ECDSA-recover}.
*/
function toTypedDataHash(bytes32 domainSeparator, bytes32 structHash) internal pure returns (bytes32 digest) {
/// @solidity memory-safe-assembly
assembly {
let ptr := mload(0x40)
mstore(ptr, hex"19_01")
mstore(add(ptr, 0x02), domainSeparator)
mstore(add(ptr, 0x22), structHash)
digest := keccak256(ptr, 0x42)
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/introspection/IERC165.sol)
pragma solidity ^0.8.20;
/**
* @dev Interface of the ERC165 standard, as defined in the
* https://eips.ethereum.org/EIPS/eip-165[EIP].
*
* Implementers can declare support of contract interfaces, which can then be
* queried by others ({ERC165Checker}).
*
* For an implementation, see {ERC165}.
*/
interface IERC165 {
/**
* @dev Returns true if this contract implements the interface defined by
* `interfaceId`. See the corresponding
* https://eips.ethereum.org/EIPS/eip-165#how-interfaces-are-identified[EIP section]
* to learn more about how these ids are created.
*
* This function call must use less than 30 000 gas.
*/
function supportsInterface(bytes4 interfaceId) external view returns (bool);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/math/Math.sol)
pragma solidity ^0.8.20;
/**
* @dev Standard math utilities missing in the Solidity language.
*/
library Math {
/**
* @dev Muldiv operation overflow.
*/
error MathOverflowedMulDiv();
enum Rounding {
Floor, // Toward negative infinity
Ceil, // Toward positive infinity
Trunc, // Toward zero
Expand // Away from zero
}
/**
* @dev Returns the addition of two unsigned integers, with an overflow flag.
*/
function tryAdd(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
uint256 c = a + b;
if (c < a) return (false, 0);
return (true, c);
}
}
/**
* @dev Returns the subtraction of two unsigned integers, with an overflow flag.
*/
function trySub(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
if (b > a) return (false, 0);
return (true, a - b);
}
}
/**
* @dev Returns the multiplication of two unsigned integers, with an overflow flag.
*/
function tryMul(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
// Gas optimization: this is cheaper than requiring 'a' not being zero, but the
// benefit is lost if 'b' is also tested.
// See: https://github.com/OpenZeppelin/openzeppelin-contracts/pull/522
if (a == 0) return (true, 0);
uint256 c = a * b;
if (c / a != b) return (false, 0);
return (true, c);
}
}
/**
* @dev Returns the division of two unsigned integers, with a division by zero flag.
*/
function tryDiv(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
if (b == 0) return (false, 0);
return (true, a / b);
}
}
/**
* @dev Returns the remainder of dividing two unsigned integers, with a division by zero flag.
*/
function tryMod(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
if (b == 0) return (false, 0);
return (true, a % b);
}
}
/**
* @dev Returns the largest of two numbers.
*/
function max(uint256 a, uint256 b) internal pure returns (uint256) {
return a > b ? a : b;
}
/**
* @dev Returns the smallest of two numbers.
*/
function min(uint256 a, uint256 b) internal pure returns (uint256) {
return a < b ? a : b;
}
/**
* @dev Returns the average of two numbers. The result is rounded towards
* zero.
*/
function average(uint256 a, uint256 b) internal pure returns (uint256) {
// (a + b) / 2 can overflow.
return (a & b) + (a ^ b) / 2;
}
/**
* @dev Returns the ceiling of the division of two numbers.
*
* This differs from standard division with `/` in that it rounds towards infinity instead
* of rounding towards zero.
*/
function ceilDiv(uint256 a, uint256 b) internal pure returns (uint256) {
if (b == 0) {
// Guarantee the same behavior as in a regular Solidity division.
return a / b;
}
// (a + b - 1) / b can overflow on addition, so we distribute.
return a == 0 ? 0 : (a - 1) / b + 1;
}
/**
* @notice Calculates floor(x * y / denominator) with full precision. Throws if result overflows a uint256 or
* denominator == 0.
* @dev Original credit to Remco Bloemen under MIT license (https://xn--2-umb.com/21/muldiv) with further edits by
* Uniswap Labs also under MIT license.
*/
function mulDiv(uint256 x, uint256 y, uint256 denominator) internal pure returns (uint256 result) {
unchecked {
// 512-bit multiply [prod1 prod0] = x * y. Compute the product mod 2^256 and mod 2^256 - 1, then use
// use the Chinese Remainder Theorem to reconstruct the 512 bit result. The result is stored in two 256
// variables such that product = prod1 * 2^256 + prod0.
uint256 prod0 = x * y; // Least significant 256 bits of the product
uint256 prod1; // Most significant 256 bits of the product
assembly {
let mm := mulmod(x, y, not(0))
prod1 := sub(sub(mm, prod0), lt(mm, prod0))
}
// Handle non-overflow cases, 256 by 256 division.
if (prod1 == 0) {
// Solidity will revert if denominator == 0, unlike the div opcode on its own.
// The surrounding unchecked block does not change this fact.
// See https://docs.soliditylang.org/en/latest/control-structures.html#checked-or-unchecked-arithmetic.
return prod0 / denominator;
}
// Make sure the result is less than 2^256. Also prevents denominator == 0.
if (denominator <= prod1) {
revert MathOverflowedMulDiv();
}
///////////////////////////////////////////////
// 512 by 256 division.
///////////////////////////////////////////////
// Make division exact by subtracting the remainder from [prod1 prod0].
uint256 remainder;
assembly {
// Compute remainder using mulmod.
remainder := mulmod(x, y, denominator)
// Subtract 256 bit number from 512 bit number.
prod1 := sub(prod1, gt(remainder, prod0))
prod0 := sub(prod0, remainder)
}
// Factor powers of two out of denominator and compute largest power of two divisor of denominator.
// Always >= 1. See https://cs.stackexchange.com/q/138556/92363.
uint256 twos = denominator & (0 - denominator);
assembly {
// Divide denominator by twos.
denominator := div(denominator, twos)
// Divide [prod1 prod0] by twos.
prod0 := div(prod0, twos)
// Flip twos such that it is 2^256 / twos. If twos is zero, then it becomes one.
twos := add(div(sub(0, twos), twos), 1)
}
// Shift in bits from prod1 into prod0.
prod0 |= prod1 * twos;
// Invert denominator mod 2^256. Now that denominator is an odd number, it has an inverse modulo 2^256 such
// that denominator * inv = 1 mod 2^256. Compute the inverse by starting with a seed that is correct for
// four bits. That is, denominator * inv = 1 mod 2^4.
uint256 inverse = (3 * denominator) ^ 2;
// Use the Newton-Raphson iteration to improve the precision. Thanks to Hensel's lifting lemma, this also
// works in modular arithmetic, doubling the correct bits in each step.
inverse *= 2 - denominator * inverse; // inverse mod 2^8
inverse *= 2 - denominator * inverse; // inverse mod 2^16
inverse *= 2 - denominator * inverse; // inverse mod 2^32
inverse *= 2 - denominator * inverse; // inverse mod 2^64
inverse *= 2 - denominator * inverse; // inverse mod 2^128
inverse *= 2 - denominator * inverse; // inverse mod 2^256
// Because the division is now exact we can divide by multiplying with the modular inverse of denominator.
// This will give us the correct result modulo 2^256. Since the preconditions guarantee that the outcome is
// less than 2^256, this is the final result. We don't need to compute the high bits of the result and prod1
// is no longer required.
result = prod0 * inverse;
return result;
}
}
/**
* @notice Calculates x * y / denominator with full precision, following the selected rounding direction.
*/
function mulDiv(uint256 x, uint256 y, uint256 denominator, Rounding rounding) internal pure returns (uint256) {
uint256 result = mulDiv(x, y, denominator);
if (unsignedRoundsUp(rounding) && mulmod(x, y, denominator) > 0) {
result += 1;
}
return result;
}
/**
* @dev Returns the square root of a number. If the number is not a perfect square, the value is rounded
* towards zero.
*
* Inspired by Henry S. Warren, Jr.'s "Hacker's Delight" (Chapter 11).
*/
function sqrt(uint256 a) internal pure returns (uint256) {
if (a == 0) {
return 0;
}
// For our first guess, we get the biggest power of 2 which is smaller than the square root of the target.
//
// We know that the "msb" (most significant bit) of our target number `a` is a power of 2 such that we have
// `msb(a) <= a < 2*msb(a)`. This value can be written `msb(a)=2**k` with `k=log2(a)`.
//
// This can be rewritten `2**log2(a) <= a < 2**(log2(a) + 1)`
// → `sqrt(2**k) <= sqrt(a) < sqrt(2**(k+1))`
// → `2**(k/2) <= sqrt(a) < 2**((k+1)/2) <= 2**(k/2 + 1)`
//
// Consequently, `2**(log2(a) / 2)` is a good first approximation of `sqrt(a)` with at least 1 correct bit.
uint256 result = 1 << (log2(a) >> 1);
// At this point `result` is an estimation with one bit of precision. We know the true value is a uint128,
// since it is the square root of a uint256. Newton's method converges quadratically (precision doubles at
// every iteration). We thus need at most 7 iteration to turn our partial result with one bit of precision
// into the expected uint128 result.
unchecked {
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
return min(result, a / result);
}
}
/**
* @notice Calculates sqrt(a), following the selected rounding direction.
*/
function sqrt(uint256 a, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = sqrt(a);
return result + (unsignedRoundsUp(rounding) && result * result < a ? 1 : 0);
}
}
/**
* @dev Return the log in base 2 of a positive value rounded towards zero.
* Returns 0 if given 0.
*/
function log2(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >> 128 > 0) {
value >>= 128;
result += 128;
}
if (value >> 64 > 0) {
value >>= 64;
result += 64;
}
if (value >> 32 > 0) {
value >>= 32;
result += 32;
}
if (value >> 16 > 0) {
value >>= 16;
result += 16;
}
if (value >> 8 > 0) {
value >>= 8;
result += 8;
}
if (value >> 4 > 0) {
value >>= 4;
result += 4;
}
if (value >> 2 > 0) {
value >>= 2;
result += 2;
}
if (value >> 1 > 0) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 2, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log2(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log2(value);
return result + (unsignedRoundsUp(rounding) && 1 << result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 10 of a positive value rounded towards zero.
* Returns 0 if given 0.
*/
function log10(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >= 10 ** 64) {
value /= 10 ** 64;
result += 64;
}
if (value >= 10 ** 32) {
value /= 10 ** 32;
result += 32;
}
if (value >= 10 ** 16) {
value /= 10 ** 16;
result += 16;
}
if (value >= 10 ** 8) {
value /= 10 ** 8;
result += 8;
}
if (value >= 10 ** 4) {
value /= 10 ** 4;
result += 4;
}
if (value >= 10 ** 2) {
value /= 10 ** 2;
result += 2;
}
if (value >= 10 ** 1) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 10, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log10(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log10(value);
return result + (unsignedRoundsUp(rounding) && 10 ** result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 256 of a positive value rounded towards zero.
* Returns 0 if given 0.
*
* Adding one to the result gives the number of pairs of hex symbols needed to represent `value` as a hex string.
*/
function log256(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >> 128 > 0) {
value >>= 128;
result += 16;
}
if (value >> 64 > 0) {
value >>= 64;
result += 8;
}
if (value >> 32 > 0) {
value >>= 32;
result += 4;
}
if (value >> 16 > 0) {
value >>= 16;
result += 2;
}
if (value >> 8 > 0) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 256, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log256(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log256(value);
return result + (unsignedRoundsUp(rounding) && 1 << (result << 3) < value ? 1 : 0);
}
}
/**
* @dev Returns whether a provided rounding mode is considered rounding up for unsigned integers.
*/
function unsignedRoundsUp(Rounding rounding) internal pure returns (bool) {
return uint8(rounding) % 2 == 1;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/math/SafeCast.sol)
// This file was procedurally generated from scripts/generate/templates/SafeCast.js.
pragma solidity ^0.8.20;
/**
* @dev Wrappers over Solidity's uintXX/intXX casting operators with added overflow
* checks.
*
* Downcasting from uint256/int256 in Solidity does not revert on overflow. This can
* easily result in undesired exploitation or bugs, since developers usually
* assume that overflows raise errors. `SafeCast` restores this intuition by
* reverting the transaction when such an operation overflows.
*
* Using this library instead of the unchecked operations eliminates an entire
* class of bugs, so it's recommended to use it always.
*/
library SafeCast {
/**
* @dev Value doesn't fit in an uint of `bits` size.
*/
error SafeCastOverflowedUintDowncast(uint8 bits, uint256 value);
/**
* @dev An int value doesn't fit in an uint of `bits` size.
*/
error SafeCastOverflowedIntToUint(int256 value);
/**
* @dev Value doesn't fit in an int of `bits` size.
*/
error SafeCastOverflowedIntDowncast(uint8 bits, int256 value);
/**
* @dev An uint value doesn't fit in an int of `bits` size.
*/
error SafeCastOverflowedUintToInt(uint256 value);
/**
* @dev Returns the downcasted uint248 from uint256, reverting on
* overflow (when the input is greater than largest uint248).
*
* Counterpart to Solidity's `uint248` operator.
*
* Requirements:
*
* - input must fit into 248 bits
*/
function toUint248(uint256 value) internal pure returns (uint248) {
if (value > type(uint248).max) {
revert SafeCastOverflowedUintDowncast(248, value);
}
return uint248(value);
}
/**
* @dev Returns the downcasted uint240 from uint256, reverting on
* overflow (when the input is greater than largest uint240).
*
* Counterpart to Solidity's `uint240` operator.
*
* Requirements:
*
* - input must fit into 240 bits
*/
function toUint240(uint256 value) internal pure returns (uint240) {
if (value > type(uint240).max) {
revert SafeCastOverflowedUintDowncast(240, value);
}
return uint240(value);
}
/**
* @dev Returns the downcasted uint232 from uint256, reverting on
* overflow (when the input is greater than largest uint232).
*
* Counterpart to Solidity's `uint232` operator.
*
* Requirements:
*
* - input must fit into 232 bits
*/
function toUint232(uint256 value) internal pure returns (uint232) {
if (value > type(uint232).max) {
revert SafeCastOverflowedUintDowncast(232, value);
}
return uint232(value);
}
/**
* @dev Returns the downcasted uint224 from uint256, reverting on
* overflow (when the input is greater than largest uint224).
*
* Counterpart to Solidity's `uint224` operator.
*
* Requirements:
*
* - input must fit into 224 bits
*/
function toUint224(uint256 value) internal pure returns (uint224) {
if (value > type(uint224).max) {
revert SafeCastOverflowedUintDowncast(224, value);
}
return uint224(value);
}
/**
* @dev Returns the downcasted uint216 from uint256, reverting on
* overflow (when the input is greater than largest uint216).
*
* Counterpart to Solidity's `uint216` operator.
*
* Requirements:
*
* - input must fit into 216 bits
*/
function toUint216(uint256 value) internal pure returns (uint216) {
if (value > type(uint216).max) {
revert SafeCastOverflowedUintDowncast(216, value);
}
return uint216(value);
}
/**
* @dev Returns the downcasted uint208 from uint256, reverting on
* overflow (when the input is greater than largest uint208).
*
* Counterpart to Solidity's `uint208` operator.
*
* Requirements:
*
* - input must fit into 208 bits
*/
function toUint208(uint256 value) internal pure returns (uint208) {
if (value > type(uint208).max) {
revert SafeCastOverflowedUintDowncast(208, value);
}
return uint208(value);
}
/**
* @dev Returns the downcasted uint200 from uint256, reverting on
* overflow (when the input is greater than largest uint200).
*
* Counterpart to Solidity's `uint200` operator.
*
* Requirements:
*
* - input must fit into 200 bits
*/
function toUint200(uint256 value) internal pure returns (uint200) {
if (value > type(uint200).max) {
revert SafeCastOverflowedUintDowncast(200, value);
}
return uint200(value);
}
/**
* @dev Returns the downcasted uint192 from uint256, reverting on
* overflow (when the input is greater than largest uint192).
*
* Counterpart to Solidity's `uint192` operator.
*
* Requirements:
*
* - input must fit into 192 bits
*/
function toUint192(uint256 value) internal pure returns (uint192) {
if (value > type(uint192).max) {
revert SafeCastOverflowedUintDowncast(192, value);
}
return uint192(value);
}
/**
* @dev Returns the downcasted uint184 from uint256, reverting on
* overflow (when the input is greater than largest uint184).
*
* Counterpart to Solidity's `uint184` operator.
*
* Requirements:
*
* - input must fit into 184 bits
*/
function toUint184(uint256 value) internal pure returns (uint184) {
if (value > type(uint184).max) {
revert SafeCastOverflowedUintDowncast(184, value);
}
return uint184(value);
}
/**
* @dev Returns the downcasted uint176 from uint256, reverting on
* overflow (when the input is greater than largest uint176).
*
* Counterpart to Solidity's `uint176` operator.
*
* Requirements:
*
* - input must fit into 176 bits
*/
function toUint176(uint256 value) internal pure returns (uint176) {
if (value > type(uint176).max) {
revert SafeCastOverflowedUintDowncast(176, value);
}
return uint176(value);
}
/**
* @dev Returns the downcasted uint168 from uint256, reverting on
* overflow (when the input is greater than largest uint168).
*
* Counterpart to Solidity's `uint168` operator.
*
* Requirements:
*
* - input must fit into 168 bits
*/
function toUint168(uint256 value) internal pure returns (uint168) {
if (value > type(uint168).max) {
revert SafeCastOverflowedUintDowncast(168, value);
}
return uint168(value);
}
/**
* @dev Returns the downcasted uint160 from uint256, reverting on
* overflow (when the input is greater than largest uint160).
*
* Counterpart to Solidity's `uint160` operator.
*
* Requirements:
*
* - input must fit into 160 bits
*/
function toUint160(uint256 value) internal pure returns (uint160) {
if (value > type(uint160).max) {
revert SafeCastOverflowedUintDowncast(160, value);
}
return uint160(value);
}
/**
* @dev Returns the downcasted uint152 from uint256, reverting on
* overflow (when the input is greater than largest uint152).
*
* Counterpart to Solidity's `uint152` operator.
*
* Requirements:
*
* - input must fit into 152 bits
*/
function toUint152(uint256 value) internal pure returns (uint152) {
if (value > type(uint152).max) {
revert SafeCastOverflowedUintDowncast(152, value);
}
return uint152(value);
}
/**
* @dev Returns the downcasted uint144 from uint256, reverting on
* overflow (when the input is greater than largest uint144).
*
* Counterpart to Solidity's `uint144` operator.
*
* Requirements:
*
* - input must fit into 144 bits
*/
function toUint144(uint256 value) internal pure returns (uint144) {
if (value > type(uint144).max) {
revert SafeCastOverflowedUintDowncast(144, value);
}
return uint144(value);
}
/**
* @dev Returns the downcasted uint136 from uint256, reverting on
* overflow (when the input is greater than largest uint136).
*
* Counterpart to Solidity's `uint136` operator.
*
* Requirements:
*
* - input must fit into 136 bits
*/
function toUint136(uint256 value) internal pure returns (uint136) {
if (value > type(uint136).max) {
revert SafeCastOverflowedUintDowncast(136, value);
}
return uint136(value);
}
/**
* @dev Returns the downcasted uint128 from uint256, reverting on
* overflow (when the input is greater than largest uint128).
*
* Counterpart to Solidity's `uint128` operator.
*
* Requirements:
*
* - input must fit into 128 bits
*/
function toUint128(uint256 value) internal pure returns (uint128) {
if (value > type(uint128).max) {
revert SafeCastOverflowedUintDowncast(128, value);
}
return uint128(value);
}
/**
* @dev Returns the downcasted uint120 from uint256, reverting on
* overflow (when the input is greater than largest uint120).
*
* Counterpart to Solidity's `uint120` operator.
*
* Requirements:
*
* - input must fit into 120 bits
*/
function toUint120(uint256 value) internal pure returns (uint120) {
if (value > type(uint120).max) {
revert SafeCastOverflowedUintDowncast(120, value);
}
return uint120(value);
}
/**
* @dev Returns the downcasted uint112 from uint256, reverting on
* overflow (when the input is greater than largest uint112).
*
* Counterpart to Solidity's `uint112` operator.
*
* Requirements:
*
* - input must fit into 112 bits
*/
function toUint112(uint256 value) internal pure returns (uint112) {
if (value > type(uint112).max) {
revert SafeCastOverflowedUintDowncast(112, value);
}
return uint112(value);
}
/**
* @dev Returns the downcasted uint104 from uint256, reverting on
* overflow (when the input is greater than largest uint104).
*
* Counterpart to Solidity's `uint104` operator.
*
* Requirements:
*
* - input must fit into 104 bits
*/
function toUint104(uint256 value) internal pure returns (uint104) {
if (value > type(uint104).max) {
revert SafeCastOverflowedUintDowncast(104, value);
}
return uint104(value);
}
/**
* @dev Returns the downcasted uint96 from uint256, reverting on
* overflow (when the input is greater than largest uint96).
*
* Counterpart to Solidity's `uint96` operator.
*
* Requirements:
*
* - input must fit into 96 bits
*/
function toUint96(uint256 value) internal pure returns (uint96) {
if (value > type(uint96).max) {
revert SafeCastOverflowedUintDowncast(96, value);
}
return uint96(value);
}
/**
* @dev Returns the downcasted uint88 from uint256, reverting on
* overflow (when the input is greater than largest uint88).
*
* Counterpart to Solidity's `uint88` operator.
*
* Requirements:
*
* - input must fit into 88 bits
*/
function toUint88(uint256 value) internal pure returns (uint88) {
if (value > type(uint88).max) {
revert SafeCastOverflowedUintDowncast(88, value);
}
return uint88(value);
}
/**
* @dev Returns the downcasted uint80 from uint256, reverting on
* overflow (when the input is greater than largest uint80).
*
* Counterpart to Solidity's `uint80` operator.
*
* Requirements:
*
* - input must fit into 80 bits
*/
function toUint80(uint256 value) internal pure returns (uint80) {
if (value > type(uint80).max) {
revert SafeCastOverflowedUintDowncast(80, value);
}
return uint80(value);
}
/**
* @dev Returns the downcasted uint72 from uint256, reverting on
* overflow (when the input is greater than largest uint72).
*
* Counterpart to Solidity's `uint72` operator.
*
* Requirements:
*
* - input must fit into 72 bits
*/
function toUint72(uint256 value) internal pure returns (uint72) {
if (value > type(uint72).max) {
revert SafeCastOverflowedUintDowncast(72, value);
}
return uint72(value);
}
/**
* @dev Returns the downcasted uint64 from uint256, reverting on
* overflow (when the input is greater than largest uint64).
*
* Counterpart to Solidity's `uint64` operator.
*
* Requirements:
*
* - input must fit into 64 bits
*/
function toUint64(uint256 value) internal pure returns (uint64) {
if (value > type(uint64).max) {
revert SafeCastOverflowedUintDowncast(64, value);
}
return uint64(value);
}
/**
* @dev Returns the downcasted uint56 from uint256, reverting on
* overflow (when the input is greater than largest uint56).
*
* Counterpart to Solidity's `uint56` operator.
*
* Requirements:
*
* - input must fit into 56 bits
*/
function toUint56(uint256 value) internal pure returns (uint56) {
if (value > type(uint56).max) {
revert SafeCastOverflowedUintDowncast(56, value);
}
return uint56(value);
}
/**
* @dev Returns the downcasted uint48 from uint256, reverting on
* overflow (when the input is greater than largest uint48).
*
* Counterpart to Solidity's `uint48` operator.
*
* Requirements:
*
* - input must fit into 48 bits
*/
function toUint48(uint256 value) internal pure returns (uint48) {
if (value > type(uint48).max) {
revert SafeCastOverflowedUintDowncast(48, value);
}
return uint48(value);
}
/**
* @dev Returns the downcasted uint40 from uint256, reverting on
* overflow (when the input is greater than largest uint40).
*
* Counterpart to Solidity's `uint40` operator.
*
* Requirements:
*
* - input must fit into 40 bits
*/
function toUint40(uint256 value) internal pure returns (uint40) {
if (value > type(uint40).max) {
revert SafeCastOverflowedUintDowncast(40, value);
}
return uint40(value);
}
/**
* @dev Returns the downcasted uint32 from uint256, reverting on
* overflow (when the input is greater than largest uint32).
*
* Counterpart to Solidity's `uint32` operator.
*
* Requirements:
*
* - input must fit into 32 bits
*/
function toUint32(uint256 value) internal pure returns (uint32) {
if (value > type(uint32).max) {
revert SafeCastOverflowedUintDowncast(32, value);
}
return uint32(value);
}
/**
* @dev Returns the downcasted uint24 from uint256, reverting on
* overflow (when the input is greater than largest uint24).
*
* Counterpart to Solidity's `uint24` operator.
*
* Requirements:
*
* - input must fit into 24 bits
*/
function toUint24(uint256 value) internal pure returns (uint24) {
if (value > type(uint24).max) {
revert SafeCastOverflowedUintDowncast(24, value);
}
return uint24(value);
}
/**
* @dev Returns the downcasted uint16 from uint256, reverting on
* overflow (when the input is greater than largest uint16).
*
* Counterpart to Solidity's `uint16` operator.
*
* Requirements:
*
* - input must fit into 16 bits
*/
function toUint16(uint256 value) internal pure returns (uint16) {
if (value > type(uint16).max) {
revert SafeCastOverflowedUintDowncast(16, value);
}
return uint16(value);
}
/**
* @dev Returns the downcasted uint8 from uint256, reverting on
* overflow (when the input is greater than largest uint8).
*
* Counterpart to Solidity's `uint8` operator.
*
* Requirements:
*
* - input must fit into 8 bits
*/
function toUint8(uint256 value) internal pure returns (uint8) {
if (value > type(uint8).max) {
revert SafeCastOverflowedUintDowncast(8, value);
}
return uint8(value);
}
/**
* @dev Converts a signed int256 into an unsigned uint256.
*
* Requirements:
*
* - input must be greater than or equal to 0.
*/
function toUint256(int256 value) internal pure returns (uint256) {
if (value < 0) {
revert SafeCastOverflowedIntToUint(value);
}
return uint256(value);
}
/**
* @dev Returns the downcasted int248 from int256, reverting on
* overflow (when the input is less than smallest int248 or
* greater than largest int248).
*
* Counterpart to Solidity's `int248` operator.
*
* Requirements:
*
* - input must fit into 248 bits
*/
function toInt248(int256 value) internal pure returns (int248 downcasted) {
downcasted = int248(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(248, value);
}
}
/**
* @dev Returns the downcasted int240 from int256, reverting on
* overflow (when the input is less than smallest int240 or
* greater than largest int240).
*
* Counterpart to Solidity's `int240` operator.
*
* Requirements:
*
* - input must fit into 240 bits
*/
function toInt240(int256 value) internal pure returns (int240 downcasted) {
downcasted = int240(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(240, value);
}
}
/**
* @dev Returns the downcasted int232 from int256, reverting on
* overflow (when the input is less than smallest int232 or
* greater than largest int232).
*
* Counterpart to Solidity's `int232` operator.
*
* Requirements:
*
* - input must fit into 232 bits
*/
function toInt232(int256 value) internal pure returns (int232 downcasted) {
downcasted = int232(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(232, value);
}
}
/**
* @dev Returns the downcasted int224 from int256, reverting on
* overflow (when the input is less than smallest int224 or
* greater than largest int224).
*
* Counterpart to Solidity's `int224` operator.
*
* Requirements:
*
* - input must fit into 224 bits
*/
function toInt224(int256 value) internal pure returns (int224 downcasted) {
downcasted = int224(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(224, value);
}
}
/**
* @dev Returns the downcasted int216 from int256, reverting on
* overflow (when the input is less than smallest int216 or
* greater than largest int216).
*
* Counterpart to Solidity's `int216` operator.
*
* Requirements:
*
* - input must fit into 216 bits
*/
function toInt216(int256 value) internal pure returns (int216 downcasted) {
downcasted = int216(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(216, value);
}
}
/**
* @dev Returns the downcasted int208 from int256, reverting on
* overflow (when the input is less than smallest int208 or
* greater than largest int208).
*
* Counterpart to Solidity's `int208` operator.
*
* Requirements:
*
* - input must fit into 208 bits
*/
function toInt208(int256 value) internal pure returns (int208 downcasted) {
downcasted = int208(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(208, value);
}
}
/**
* @dev Returns the downcasted int200 from int256, reverting on
* overflow (when the input is less than smallest int200 or
* greater than largest int200).
*
* Counterpart to Solidity's `int200` operator.
*
* Requirements:
*
* - input must fit into 200 bits
*/
function toInt200(int256 value) internal pure returns (int200 downcasted) {
downcasted = int200(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(200, value);
}
}
/**
* @dev Returns the downcasted int192 from int256, reverting on
* overflow (when the input is less than smallest int192 or
* greater than largest int192).
*
* Counterpart to Solidity's `int192` operator.
*
* Requirements:
*
* - input must fit into 192 bits
*/
function toInt192(int256 value) internal pure returns (int192 downcasted) {
downcasted = int192(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(192, value);
}
}
/**
* @dev Returns the downcasted int184 from int256, reverting on
* overflow (when the input is less than smallest int184 or
* greater than largest int184).
*
* Counterpart to Solidity's `int184` operator.
*
* Requirements:
*
* - input must fit into 184 bits
*/
function toInt184(int256 value) internal pure returns (int184 downcasted) {
downcasted = int184(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(184, value);
}
}
/**
* @dev Returns the downcasted int176 from int256, reverting on
* overflow (when the input is less than smallest int176 or
* greater than largest int176).
*
* Counterpart to Solidity's `int176` operator.
*
* Requirements:
*
* - input must fit into 176 bits
*/
function toInt176(int256 value) internal pure returns (int176 downcasted) {
downcasted = int176(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(176, value);
}
}
/**
* @dev Returns the downcasted int168 from int256, reverting on
* overflow (when the input is less than smallest int168 or
* greater than largest int168).
*
* Counterpart to Solidity's `int168` operator.
*
* Requirements:
*
* - input must fit into 168 bits
*/
function toInt168(int256 value) internal pure returns (int168 downcasted) {
downcasted = int168(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(168, value);
}
}
/**
* @dev Returns the downcasted int160 from int256, reverting on
* overflow (when the input is less than smallest int160 or
* greater than largest int160).
*
* Counterpart to Solidity's `int160` operator.
*
* Requirements:
*
* - input must fit into 160 bits
*/
function toInt160(int256 value) internal pure returns (int160 downcasted) {
downcasted = int160(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(160, value);
}
}
/**
* @dev Returns the downcasted int152 from int256, reverting on
* overflow (when the input is less than smallest int152 or
* greater than largest int152).
*
* Counterpart to Solidity's `int152` operator.
*
* Requirements:
*
* - input must fit into 152 bits
*/
function toInt152(int256 value) internal pure returns (int152 downcasted) {
downcasted = int152(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(152, value);
}
}
/**
* @dev Returns the downcasted int144 from int256, reverting on
* overflow (when the input is less than smallest int144 or
* greater than largest int144).
*
* Counterpart to Solidity's `int144` operator.
*
* Requirements:
*
* - input must fit into 144 bits
*/
function toInt144(int256 value) internal pure returns (int144 downcasted) {
downcasted = int144(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(144, value);
}
}
/**
* @dev Returns the downcasted int136 from int256, reverting on
* overflow (when the input is less than smallest int136 or
* greater than largest int136).
*
* Counterpart to Solidity's `int136` operator.
*
* Requirements:
*
* - input must fit into 136 bits
*/
function toInt136(int256 value) internal pure returns (int136 downcasted) {
downcasted = int136(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(136, value);
}
}
/**
* @dev Returns the downcasted int128 from int256, reverting on
* overflow (when the input is less than smallest int128 or
* greater than largest int128).
*
* Counterpart to Solidity's `int128` operator.
*
* Requirements:
*
* - input must fit into 128 bits
*/
function toInt128(int256 value) internal pure returns (int128 downcasted) {
downcasted = int128(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(128, value);
}
}
/**
* @dev Returns the downcasted int120 from int256, reverting on
* overflow (when the input is less than smallest int120 or
* greater than largest int120).
*
* Counterpart to Solidity's `int120` operator.
*
* Requirements:
*
* - input must fit into 120 bits
*/
function toInt120(int256 value) internal pure returns (int120 downcasted) {
downcasted = int120(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(120, value);
}
}
/**
* @dev Returns the downcasted int112 from int256, reverting on
* overflow (when the input is less than smallest int112 or
* greater than largest int112).
*
* Counterpart to Solidity's `int112` operator.
*
* Requirements:
*
* - input must fit into 112 bits
*/
function toInt112(int256 value) internal pure returns (int112 downcasted) {
downcasted = int112(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(112, value);
}
}
/**
* @dev Returns the downcasted int104 from int256, reverting on
* overflow (when the input is less than smallest int104 or
* greater than largest int104).
*
* Counterpart to Solidity's `int104` operator.
*
* Requirements:
*
* - input must fit into 104 bits
*/
function toInt104(int256 value) internal pure returns (int104 downcasted) {
downcasted = int104(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(104, value);
}
}
/**
* @dev Returns the downcasted int96 from int256, reverting on
* overflow (when the input is less than smallest int96 or
* greater than largest int96).
*
* Counterpart to Solidity's `int96` operator.
*
* Requirements:
*
* - input must fit into 96 bits
*/
function toInt96(int256 value) internal pure returns (int96 downcasted) {
downcasted = int96(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(96, value);
}
}
/**
* @dev Returns the downcasted int88 from int256, reverting on
* overflow (when the input is less than smallest int88 or
* greater than largest int88).
*
* Counterpart to Solidity's `int88` operator.
*
* Requirements:
*
* - input must fit into 88 bits
*/
function toInt88(int256 value) internal pure returns (int88 downcasted) {
downcasted = int88(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(88, value);
}
}
/**
* @dev Returns the downcasted int80 from int256, reverting on
* overflow (when the input is less than smallest int80 or
* greater than largest int80).
*
* Counterpart to Solidity's `int80` operator.
*
* Requirements:
*
* - input must fit into 80 bits
*/
function toInt80(int256 value) internal pure returns (int80 downcasted) {
downcasted = int80(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(80, value);
}
}
/**
* @dev Returns the downcasted int72 from int256, reverting on
* overflow (when the input is less than smallest int72 or
* greater than largest int72).
*
* Counterpart to Solidity's `int72` operator.
*
* Requirements:
*
* - input must fit into 72 bits
*/
function toInt72(int256 value) internal pure returns (int72 downcasted) {
downcasted = int72(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(72, value);
}
}
/**
* @dev Returns the downcasted int64 from int256, reverting on
* overflow (when the input is less than smallest int64 or
* greater than largest int64).
*
* Counterpart to Solidity's `int64` operator.
*
* Requirements:
*
* - input must fit into 64 bits
*/
function toInt64(int256 value) internal pure returns (int64 downcasted) {
downcasted = int64(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(64, value);
}
}
/**
* @dev Returns the downcasted int56 from int256, reverting on
* overflow (when the input is less than smallest int56 or
* greater than largest int56).
*
* Counterpart to Solidity's `int56` operator.
*
* Requirements:
*
* - input must fit into 56 bits
*/
function toInt56(int256 value) internal pure returns (int56 downcasted) {
downcasted = int56(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(56, value);
}
}
/**
* @dev Returns the downcasted int48 from int256, reverting on
* overflow (when the input is less than smallest int48 or
* greater than largest int48).
*
* Counterpart to Solidity's `int48` operator.
*
* Requirements:
*
* - input must fit into 48 bits
*/
function toInt48(int256 value) internal pure returns (int48 downcasted) {
downcasted = int48(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(48, value);
}
}
/**
* @dev Returns the downcasted int40 from int256, reverting on
* overflow (when the input is less than smallest int40 or
* greater than largest int40).
*
* Counterpart to Solidity's `int40` operator.
*
* Requirements:
*
* - input must fit into 40 bits
*/
function toInt40(int256 value) internal pure returns (int40 downcasted) {
downcasted = int40(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(40, value);
}
}
/**
* @dev Returns the downcasted int32 from int256, reverting on
* overflow (when the input is less than smallest int32 or
* greater than largest int32).
*
* Counterpart to Solidity's `int32` operator.
*
* Requirements:
*
* - input must fit into 32 bits
*/
function toInt32(int256 value) internal pure returns (int32 downcasted) {
downcasted = int32(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(32, value);
}
}
/**
* @dev Returns the downcasted int24 from int256, reverting on
* overflow (when the input is less than smallest int24 or
* greater than largest int24).
*
* Counterpart to Solidity's `int24` operator.
*
* Requirements:
*
* - input must fit into 24 bits
*/
function toInt24(int256 value) internal pure returns (int24 downcasted) {
downcasted = int24(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(24, value);
}
}
/**
* @dev Returns the downcasted int16 from int256, reverting on
* overflow (when the input is less than smallest int16 or
* greater than largest int16).
*
* Counterpart to Solidity's `int16` operator.
*
* Requirements:
*
* - input must fit into 16 bits
*/
function toInt16(int256 value) internal pure returns (int16 downcasted) {
downcasted = int16(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(16, value);
}
}
/**
* @dev Returns the downcasted int8 from int256, reverting on
* overflow (when the input is less than smallest int8 or
* greater than largest int8).
*
* Counterpart to Solidity's `int8` operator.
*
* Requirements:
*
* - input must fit into 8 bits
*/
function toInt8(int256 value) internal pure returns (int8 downcasted) {
downcasted = int8(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(8, value);
}
}
/**
* @dev Converts an unsigned uint256 into a signed int256.
*
* Requirements:
*
* - input must be less than or equal to maxInt256.
*/
function toInt256(uint256 value) internal pure returns (int256) {
// Note: Unsafe cast below is okay because `type(int256).max` is guaranteed to be positive
if (value > uint256(type(int256).max)) {
revert SafeCastOverflowedUintToInt(value);
}
return int256(value);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/math/SignedMath.sol)
pragma solidity ^0.8.20;
/**
* @dev Standard signed math utilities missing in the Solidity language.
*/
library SignedMath {
/**
* @dev Returns the largest of two signed numbers.
*/
function max(int256 a, int256 b) internal pure returns (int256) {
return a > b ? a : b;
}
/**
* @dev Returns the smallest of two signed numbers.
*/
function min(int256 a, int256 b) internal pure returns (int256) {
return a < b ? a : b;
}
/**
* @dev Returns the average of two signed numbers without overflow.
* The result is rounded towards zero.
*/
function average(int256 a, int256 b) internal pure returns (int256) {
// Formula from the book "Hacker's Delight"
int256 x = (a & b) + ((a ^ b) >> 1);
return x + (int256(uint256(x) >> 255) & (a ^ b));
}
/**
* @dev Returns the absolute unsigned value of a signed value.
*/
function abs(int256 n) internal pure returns (uint256) {
unchecked {
// must be unchecked in order to support `n = type(int256).min`
return uint256(n >= 0 ? n : -n);
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/Strings.sol)
pragma solidity ^0.8.20;
import {Math} from "./math/Math.sol";
import {SignedMath} from "./math/SignedMath.sol";
/**
* @dev String operations.
*/
library Strings {
bytes16 private constant HEX_DIGITS = "0123456789abcdef";
uint8 private constant ADDRESS_LENGTH = 20;
/**
* @dev The `value` string doesn't fit in the specified `length`.
*/
error StringsInsufficientHexLength(uint256 value, uint256 length);
/**
* @dev Converts a `uint256` to its ASCII `string` decimal representation.
*/
function toString(uint256 value) internal pure returns (string memory) {
unchecked {
uint256 length = Math.log10(value) + 1;
string memory buffer = new string(length);
uint256 ptr;
/// @solidity memory-safe-assembly
assembly {
ptr := add(buffer, add(32, length))
}
while (true) {
ptr--;
/// @solidity memory-safe-assembly
assembly {
mstore8(ptr, byte(mod(value, 10), HEX_DIGITS))
}
value /= 10;
if (value == 0) break;
}
return buffer;
}
}
/**
* @dev Converts a `int256` to its ASCII `string` decimal representation.
*/
function toStringSigned(int256 value) internal pure returns (string memory) {
return string.concat(value < 0 ? "-" : "", toString(SignedMath.abs(value)));
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation.
*/
function toHexString(uint256 value) internal pure returns (string memory) {
unchecked {
return toHexString(value, Math.log256(value) + 1);
}
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation with fixed length.
*/
function toHexString(uint256 value, uint256 length) internal pure returns (string memory) {
uint256 localValue = value;
bytes memory buffer = new bytes(2 * length + 2);
buffer[0] = "0";
buffer[1] = "x";
for (uint256 i = 2 * length + 1; i > 1; --i) {
buffer[i] = HEX_DIGITS[localValue & 0xf];
localValue >>= 4;
}
if (localValue != 0) {
revert StringsInsufficientHexLength(value, length);
}
return string(buffer);
}
/**
* @dev Converts an `address` with fixed length of 20 bytes to its not checksummed ASCII `string` hexadecimal
* representation.
*/
function toHexString(address addr) internal pure returns (string memory) {
return toHexString(uint256(uint160(addr)), ADDRESS_LENGTH);
}
/**
* @dev Returns true if the two strings are equal.
*/
function equal(string memory a, string memory b) internal pure returns (bool) {
return bytes(a).length == bytes(b).length && keccak256(bytes(a)) == keccak256(bytes(b));
}
}// SPDX-License-Identifier: MIT // Compatible with OpenZeppelin Contracts ^5.0.0 pragma solidity 0.8.24; /// Interface of the Bascule contract as used by on-chain contracts. /// @custom:security-contact [email protected] interface IBascule { /** * Event emitted when a withdrawal is validated. * @param withdrawalAmount Amount of the withdrawal. * @param depositID Unique identifier for a deposit that took place on another chain and was withdrawn on this chain. */ event WithdrawalValidated(bytes32 depositID, uint256 withdrawalAmount); /** * Error on attempt to withdraw an already withdrawn deposit. * @param depositID Unique identifier for deposit that failed validation. * @param withdrawalAmount Amount of the withdrawal. */ error AlreadyWithdrawn(bytes32 depositID, uint256 withdrawalAmount); /** * Error when a withdrawal fails validation. * This means the corresponding deposit is not in the map. * @param depositID Unique identifier for deposit that failed validation. * @param withdrawalAmount Amount of the withdrawal. */ error WithdrawalFailedValidation( bytes32 depositID, uint256 withdrawalAmount ); /** * Validate a withdrawal (before executing it) if the amount is above * threshold. * * This function checks if our accounting has recorded a deposit that * corresponds to this withdrawal request. A deposit can only be withdrawn * once. * * @param depositID Unique identifier of the deposit on another chain. * @param withdrawalAmount Amount of the withdrawal. * * Emits {WithdrawalValidated}. */ function validateWithdrawal( bytes32 depositID, uint256 withdrawalAmount ) external; }
// SPDX-License-Identifier: MIT
pragma solidity 0.8.24;
import {Ownable2StepUpgradeable} from "@openzeppelin/contracts-upgradeable/access/Ownable2StepUpgradeable.sol";
import {Math} from "@openzeppelin/contracts/utils/math/Math.sol";
import {MessageHashUtils} from "@openzeppelin/contracts/utils/cryptography/MessageHashUtils.sol";
import {Actions} from "../libs/Actions.sol";
import {INotaryConsortium} from "./INotaryConsortium.sol";
import {ECDSA} from "@openzeppelin/contracts/utils/cryptography/ECDSA.sol";
/// @title The contract utilizes consortium governance functions using multisignature verification
/// @author Lombard.Finance
/// @notice The contracts are a part of the Lombard.Finance protocol
contract Consortium is Ownable2StepUpgradeable, INotaryConsortium {
struct ValidatorSet {
/// @notice addresses of the signers
address[] validators;
/// @notice weight of each signer
uint256[] weights;
/// @notice current threshold for signatures weight to be accepted
uint256 weightThreshold;
}
/// @custom:storage-location erc7201:lombardfinance.storage.Consortium
struct ConsortiumStorage {
/// @notice Current epoch
uint256 epoch;
/// @notice Store the Validator set for each epoch
mapping(uint256 => ValidatorSet) validatorSet;
}
// keccak256(abi.encode(uint256(keccak256("lombardfinance.storage.Consortium")) - 1)) & ~bytes32(uint256(0xff))
bytes32 private constant CONSORTIUM_STORAGE_LOCATION =
0xbac09a3ab0e06910f94a49c10c16eb53146536ec1a9e948951735cde3a58b500;
/// @dev https://docs.openzeppelin.com/upgrades-plugins/1.x/writing-upgradeable#initializing_the_implementation_contract
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() {
_disableInitializers();
}
/// @notice Initializes the consortium contract
/// @param _owner - The address of the initial owner
function initialize(address _owner) external initializer {
__Ownable_init(_owner);
__Ownable2Step_init();
__Consortium_init();
}
/// ONLY OWNER FUNCTIONS ///
/// @notice Sets the initial validator set from any epoch
/// @param _initialValSet - The initial list of validators
function setInitialValidatorSet(
bytes calldata _initialValSet
) external onlyOwner {
// Payload validation
if (bytes4(_initialValSet) != Actions.NEW_VALSET)
revert UnexpectedAction(bytes4(_initialValSet));
ConsortiumStorage storage $ = _getConsortiumStorage();
Actions.ValSetAction memory action = Actions.validateValSet(
_initialValSet[4:]
);
if ($.epoch != 0) {
revert ValSetAlreadySet();
}
_setValidatorSet(
$,
action.validators,
action.weights,
action.weightThreshold,
action.epoch
);
}
/// USER ACTIONS ///
/// @notice Validates the provided signature against the given hash
/// @param _payloadHash the hash of the data to be signed
/// @param _proof nonce, expiry and signatures to validate
function checkProof(
bytes32 _payloadHash,
bytes calldata _proof
) public view override {
_checkProof(_payloadHash, _proof);
}
function setNextValidatorSet(
bytes calldata payload,
bytes calldata proof
) external {
// payload validation
if (bytes4(payload) != Actions.NEW_VALSET) {
revert UnexpectedAction(bytes4(payload));
}
Actions.ValSetAction memory action = Actions.validateValSet(
payload[4:]
);
ConsortiumStorage storage $ = _getConsortiumStorage();
// check proof
bytes32 payloadHash = sha256(payload);
checkProof(payloadHash, proof);
if (action.epoch != $.epoch + 1) revert InvalidEpoch();
_setValidatorSet(
$,
action.validators,
action.weights,
action.weightThreshold,
action.epoch
);
}
/// GETTERS ///
/// @notice Returns the validator for a given epoch
/// @param epoch the epoch to get the threshold for
function getValidatorSet(
uint256 epoch
) external view returns (ValidatorSet memory) {
return _getConsortiumStorage().validatorSet[epoch];
}
/// @notice Returns the current epoch
function curEpoch() external view returns (uint256) {
return _getConsortiumStorage().epoch;
}
/// PRIVATE FUNCTIONS ///
/// @notice Internal initializer for the consortium
function __Consortium_init() internal onlyInitializing {}
function _setValidatorSet(
ConsortiumStorage storage $,
address[] memory _validators,
uint256[] memory _weights,
uint256 _threshold,
uint256 _epoch
) internal {
// do not allow to rewrite existing valset
if ($.validatorSet[_epoch].weightThreshold != 0) {
revert InvalidEpoch();
}
$.epoch = _epoch;
$.validatorSet[_epoch] = ValidatorSet({
validators: _validators,
weights: _weights,
weightThreshold: _threshold
});
emit ValidatorSetUpdated(_epoch, _validators, _weights, _threshold);
}
/// @dev Checks that `_proof` is correct
/// @param _payloadHash data to be signed
/// @param _proof encoding of signatures array
/// @dev Negative weight means that the validator did not sign, any positive weight means that the validator signed
function _checkProof(
bytes32 _payloadHash,
bytes calldata _proof
) internal view virtual {
ConsortiumStorage storage $ = _getConsortiumStorage();
if ($.epoch == 0) {
revert NoValidatorSet();
}
// decode proof
bytes[] memory signatures = abi.decode(_proof, (bytes[]));
address[] storage validators = $.validatorSet[$.epoch].validators;
uint256 length = validators.length;
if (signatures.length != length) {
revert LengthMismatch();
}
uint256 weight = 0;
uint256[] storage weights = $.validatorSet[$.epoch].weights;
for (uint256 i; i < length; ++i) {
// each signature preset R || S values
// V is missed, because validators use Cosmos SDK keyring which is not signing in eth style
// We only check signatures which are the expected 64 bytes long - we are expecting
// a signatures array with the same amount of items as there are validators, but not all
// validators will need to sign for a proof to be valid, so validators who have not signed
// will have their corresponding signature set to 0 bytes.
// In case of a malformed signature (i.e. length isn't 0 bytes but also isn't 64 bytes)
// this signature will be discarded.
if (signatures[i].length == 64) {
// split signature by R and S values
bytes memory sig = signatures[i];
bytes32 r;
bytes32 s;
// load the first 32 bytes (r) and the second 32 bytes (s) from the sig
assembly {
r := mload(add(sig, 0x20)) // first 32 bytes (offset 0x20)
s := mload(add(sig, 0x40)) // next 32 bytes (offset 0x40)
}
if (r != bytes32(0) && s != bytes32(0)) {
// try recover with V = 27
(address signer, ECDSA.RecoverError err, ) = ECDSA
.tryRecover(_payloadHash, 27, r, s);
// ignore if bad signature
if (err != ECDSA.RecoverError.NoError) {
continue;
}
// if signer doesn't match try V = 28
if (signer != validators[i]) {
(signer, err, ) = ECDSA.tryRecover(
_payloadHash,
28,
r,
s
);
if (err != ECDSA.RecoverError.NoError) {
continue;
}
if (signer != validators[i]) {
continue;
}
}
// signature accepted
unchecked {
weight += weights[i];
}
}
}
}
if (weight < $.validatorSet[$.epoch].weightThreshold) {
revert NotEnoughSignatures();
}
}
/// @notice Retrieve the ConsortiumStorage struct from the specific storage slot
function _getConsortiumStorage()
private
pure
returns (ConsortiumStorage storage $)
{
assembly {
$.slot := CONSORTIUM_STORAGE_LOCATION
}
}
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.24;
import {ECDSA} from "@openzeppelin/contracts/utils/cryptography/ECDSA.sol";
interface INotaryConsortium {
/// @dev Error thrown when signature payload is already used
error PayloadAlreadyUsed();
/// @dev Error thrown when signatures length is not equal to signers length
error LengthMismatch();
/// @dev Error thrown when there are not enough signatures
error NotEnoughSignatures();
/// @dev Error thrown when unexpected action is used
error UnexpectedAction(bytes4 action);
/// @dev Event emitted when the validator set is updated
event ValidatorSetUpdated(
uint256 indexed epoch,
address[] validators,
uint256[] weights,
uint256 threshold
);
/// @dev Error thrown when validator set already set
error ValSetAlreadySet();
/// @dev Error thrown when no validator set is set
error NoValidatorSet();
/// @dev Error thrown when invalid epoch is provided
error InvalidEpoch();
function checkProof(
bytes32 _payloadHash,
bytes calldata _proof
) external view;
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.24;
interface IBaseLBTC {
error ZeroAddress();
error WithdrawalsDisabled();
error ScriptPubkeyUnsupported();
error AmountLessThanCommission(uint256 fee);
error AmountBelowDustLimit(uint256 dustLimit);
error InvalidDustFeeRate();
error UnexpectedAction(bytes4 action);
error InvalidUserSignature();
error PayloadAlreadyUsed();
error InvalidInputLength();
error InvalidMintAmount();
event UnstakeRequest(
address indexed fromAddress,
bytes scriptPubKey,
uint256 amount
);
event WithdrawalsEnabled(bool);
event NameAndSymbolChanged(string name, string symbol);
event ConsortiumChanged(address indexed prevVal, address indexed newVal);
event TreasuryAddressChanged(
address indexed prevValue,
address indexed newValue
);
event BurnCommissionChanged(
uint64 indexed prevValue,
uint64 indexed newValue
);
event DustFeeRateChanged(uint256 indexed oldRate, uint256 indexed newRate);
event BasculeChanged(address indexed prevVal, address indexed newVal);
event FeeCharged(uint256 indexed fee, bytes userSignature);
event FeeChanged(uint256 indexed oldFee, uint256 indexed newFee);
error FeeGreaterThanAmount();
event MintProofConsumed(
address indexed recipient,
bytes32 indexed payloadHash,
bytes payload
);
event BatchMintSkipped(bytes32 indexed payloadHash, bytes payload);
function burn(uint256 amount) external;
function burn(address from, uint256 amount) external;
function mint(address to, uint256 amount) external;
function getTreasury() external returns (address);
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.24;
import {IBaseLBTC} from "./IBaseLBTC.sol";
interface INativeLBTC is IBaseLBTC {
error InvalidDestinationToken(address expected, address got);
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.24;
library Actions {
struct DepositBtcActionV0 {
uint256 toChain;
address recipient;
uint256 amount;
bytes32 txid;
uint32 vout;
}
struct DepositBtcActionV1 {
uint256 toChain;
address recipient;
uint256 amount;
bytes32 txid;
uint32 vout;
address tokenAddress;
}
struct DepositBridgeAction {
uint256 fromChain;
bytes32 fromContract;
uint256 toChain;
address toContract;
address recipient;
uint64 amount;
uint256 nonce;
}
struct ValSetAction {
uint256 epoch;
address[] validators;
uint256[] weights;
uint256 weightThreshold;
uint256 height;
}
struct FeeApprovalAction {
uint256 fee;
uint256 expiry;
}
/// @dev Error thrown when invalid public key is provided
error InvalidPublicKey(bytes pubKey);
/// @dev Error thrown when signatures length is not equal to signers length
error Actions_LengthMismatch();
/// @dev Error thrown when threshold is invalid
error InvalidThreshold();
/// @dev Error thrown when validator set size is invalid
error InvalidValidatorSetSize();
/// @dev Error thrown when zero validator is provided
error ZeroValidator();
/// @dev Error thrown when wrong chain id is provided
error WrongChainId();
/// @dev Error thrown when wrong contract is provided
error WrongContract();
/// @dev Error thrown when zero address is provided
error Actions_ZeroAddress();
/// @dev Error thrown when zero amount is provided
error ZeroAmount();
/// @dev Error thrown when zero weight is provided
error ZeroWeight();
/// @dev Error thrown when fee approval is expired
error UserSignatureExpired(uint256 expiry);
/// @dev Error thrown when amount is below fee
error NotEnoughAmountToUseApproval();
/// @dev Error thrown when zero fee is used
error ZeroFee();
/// @dev Error thrown when payload length is too big
error InvalidPayloadSize(uint256 expected, uint256 actual);
// bytes4(keccak256("feeApproval(uint256,uint256)"))
bytes4 internal constant FEE_APPROVAL_ACTION = 0x8175ca94;
// keccak256("feeApproval(uint256 chainId,uint256 fee,uint256 expiry)")
bytes32 internal constant FEE_APPROVAL_EIP712_ACTION =
0x40ac9f6aa27075e64c1ed1ea2e831b20b8c25efdeb6b79fd0cf683c9a9c50725;
// bytes4(keccak256("payload(bytes32,bytes32,uint64,bytes32,uint32)"))
bytes4 internal constant DEPOSIT_BTC_ACTION_V0 = 0xf2e73f7c;
// bytes4(keccak256("payload(bytes32,bytes32,uint64,bytes32,uint32,bytes32)"))
bytes4 internal constant DEPOSIT_BTC_ACTION_V1 = 0xce25e7c2;
// bytes4(keccak256("payload(bytes32,bytes32,bytes32,bytes32,bytes32,uint64,uint256)"))
bytes4 internal constant DEPOSIT_BRIDGE_ACTION = 0x5c70a505;
// bytes4(keccak256("payload(uint256,bytes[],uint256[],uint256,uint256)"))
bytes4 internal constant NEW_VALSET = 0x4aab1d6f;
/// @dev Maximum number of validators allowed in the consortium.
/// @notice This value is determined by the minimum of CometBFT consensus limitations and gas considerations:
/// - CometBFT has a hard limit of 10,000 validators (https://docs.cometbft.com/v0.38/spec/core/state)
/// - Gas-based calculation:
/// - Assumes 4281 gas per ECDSA signature verification
/// - Uses a conservative 30 million gas block limit
/// - Maximum possible signatures: 30,000,000 / 4,281 ≈ 7007
/// - Reverse calculated for BFT consensus (2/3 + 1):
/// 7,007 = (10,509 * 2/3 + 1) rounded down
/// - The lower value of 10,000 (CometBFT limit) and 10,509 (gas calculation) is chosen
/// @dev This limit ensures compatibility with CometBFT while also considering gas limitations
/// for signature verification within a single block.
uint256 private constant MAX_VALIDATOR_SET_SIZE = 102;
/// @dev Minimum number of validators allowed in the system.
/// @notice While set to 1 to allow for non-distributed scenarios, this configuration
/// does not provide Byzantine fault tolerance. For a truly distributed and
/// fault-tolerant system, a minimum of 4 validators would be recommended to tolerate
/// at least one Byzantine fault.
uint256 private constant MIN_VALIDATOR_SET_SIZE = 1;
/// @dev A constant representing the number of bytes for a slot of information in a payload.
uint256 internal constant ABI_SLOT_SIZE = 32;
/**
* @notice Returns decoded deposit btc msg v0
* @dev Message should not contain the selector
* @param payload Body of the mint payload
*/
function depositBtcV0(
bytes memory payload
) internal view returns (DepositBtcActionV0 memory) {
if (payload.length != ABI_SLOT_SIZE * 5)
revert InvalidPayloadSize(ABI_SLOT_SIZE * 5, payload.length);
(
uint256 toChain,
address recipient,
uint256 amount,
bytes32 txid,
uint32 vout
) = abi.decode(payload, (uint256, address, uint256, bytes32, uint32));
if (toChain != block.chainid) {
revert WrongChainId();
}
if (recipient == address(0)) {
revert Actions_ZeroAddress();
}
if (amount == 0) {
revert ZeroAmount();
}
return DepositBtcActionV0(toChain, recipient, amount, txid, vout);
}
/**
* @notice Returns decoded deposit btc msg v1
* @dev Message should not contain the selector
* @param payload Body of the mint payload
*/
function depositBtcV1(
bytes memory payload
) internal view returns (DepositBtcActionV1 memory) {
if (payload.length != ABI_SLOT_SIZE * 6)
revert InvalidPayloadSize(ABI_SLOT_SIZE * 6, payload.length);
(
uint256 toChain,
address recipient,
uint256 amount,
bytes32 txid,
uint32 vout,
address tokenAddress
) = abi.decode(
payload,
(uint256, address, uint256, bytes32, uint32, address)
);
if (toChain != block.chainid) {
revert WrongChainId();
}
if (recipient == address(0)) {
revert Actions_ZeroAddress();
}
if (amount == 0) {
revert ZeroAmount();
}
return
DepositBtcActionV1(
toChain,
recipient,
amount,
txid,
vout,
tokenAddress
);
}
/**
* @notice Returns decoded bridge payload
* @dev Payload should not contain the selector
* @param payload Body of the burn payload
*/
function depositBridge(
bytes memory payload
) internal view returns (DepositBridgeAction memory) {
if (payload.length != ABI_SLOT_SIZE * 7)
revert InvalidPayloadSize(ABI_SLOT_SIZE * 7, payload.length);
(
uint256 fromChain,
bytes32 fromContract,
uint256 toChain,
address toContract,
address recipient,
uint64 amount,
uint256 nonce
) = abi.decode(
payload,
(uint256, bytes32, uint256, address, address, uint64, uint256)
);
if (toChain != block.chainid) {
revert WrongChainId();
}
if (recipient == address(0)) {
revert Actions_ZeroAddress();
}
if (amount == 0) {
revert ZeroAmount();
}
return
DepositBridgeAction(
fromChain,
fromContract,
toChain,
toContract,
recipient,
amount,
nonce
);
}
/**
* @notice Returns decoded validator set
* @dev Payload should not contain the selector
* @param payload Body of the set validators set payload
*/
function validateValSet(
bytes memory payload
) internal pure returns (ValSetAction memory) {
(
uint256 epoch,
bytes[] memory pubKeys,
uint256[] memory weights,
uint256 weightThreshold,
uint256 height
) = abi.decode(
payload,
(uint256, bytes[], uint256[], uint256, uint256)
);
// Since dynamic arrays can variably insert more slots of data for things such as data length,
// offset etc., we will just encode the received variables again and check for a length match.
bytes memory reEncodedPayload = abi.encode(
epoch,
pubKeys,
weights,
weightThreshold,
height
);
if (reEncodedPayload.length != payload.length)
revert InvalidPayloadSize(payload.length, reEncodedPayload.length);
if (
pubKeys.length < MIN_VALIDATOR_SET_SIZE ||
pubKeys.length > MAX_VALIDATOR_SET_SIZE
) revert InvalidValidatorSetSize();
if (pubKeys.length != weights.length) revert Actions_LengthMismatch();
if (weightThreshold == 0) revert InvalidThreshold();
uint256 sum = 0;
for (uint256 i; i < weights.length; ) {
if (weights[i] == 0) {
revert ZeroWeight();
}
sum += weights[i];
unchecked {
++i;
}
}
if (sum < weightThreshold) revert InvalidThreshold();
address[] memory validators = pubKeysToAddress(pubKeys);
return
ValSetAction(epoch, validators, weights, weightThreshold, height);
}
function pubKeysToAddress(
bytes[] memory _pubKeys
) internal pure returns (address[] memory) {
address[] memory addresses = new address[](_pubKeys.length);
for (uint256 i; i < _pubKeys.length; ) {
// each pubkey represented as uncompressed
if (_pubKeys[i].length == 65) {
bytes memory data = _pubKeys[i];
// Ensure that first byte of pubkey is 0x04
if (_pubKeys[i][0] != 0x04)
revert InvalidPublicKey(_pubKeys[i]);
// create a new array with length - 1 (excluding the first 0x04 byte)
bytes memory result = new bytes(data.length - 1);
// use inline assembly for memory manipulation
assembly {
// calculate the start of the `result` and `data` in memory
let resultData := add(result, 0x20) // points to the first byte of the result
let dataStart := add(data, 0x21) // points to the second byte of data (skip 0x04)
// copy 64 bytes from input (excluding the first byte) to result
mstore(resultData, mload(dataStart)) // copy the first 32 bytes
mstore(add(resultData, 0x20), mload(add(dataStart, 0x20))) // copy the next 32 bytes
}
addresses[i] = address(uint160(uint256(keccak256(result))));
} else {
revert InvalidPublicKey(_pubKeys[i]);
}
unchecked {
++i;
}
}
return addresses;
}
/**
* @notice Returns decoded fee approval
* @dev Payload should not contain the selector
* @param payload Body of the fee approval payload
*/
function feeApproval(
bytes memory payload
) internal view returns (FeeApprovalAction memory) {
if (payload.length != ABI_SLOT_SIZE * 2)
revert InvalidPayloadSize(ABI_SLOT_SIZE * 2, payload.length);
(uint256 fee, uint256 expiry) = abi.decode(payload, (uint256, uint256));
if (block.timestamp > expiry) {
revert UserSignatureExpired(expiry);
}
if (fee == 0) {
revert ZeroFee();
}
return FeeApprovalAction(fee, expiry);
}
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.24;
import {Math} from "@openzeppelin/contracts/utils/math/Math.sol";
enum OutputType {
UNSUPPORTED,
P2TR,
P2WPKH,
P2WSH
}
bytes1 constant OP_0 = 0x00;
bytes1 constant OP_1 = 0x51;
bytes1 constant OP_DATA_32 = 0x20;
bytes1 constant OP_DATA_20 = 0x14;
uint256 constant BASE_SPEND_COST = 49; // 32 (txid) + 4 (vout) + 1 (scriptSig size) + 4 (nSequence) + 8 (amount)
// Size of inputs spending different output types
uint256 constant NON_WITNESS_INPUT_SIZE = 107; // Used for non-witness outputs (P2PKH, P2SH)
uint256 constant WITNESS_INPUT_SIZE = 26; // floor(107 / 4), used for witness outputs (P2WPKH, P2WSH, P2TR)
library BitcoinUtils {
uint256 public constant DEFAULT_DUST_FEE_RATE = 3000; // Default value - 3 satoshis per byte
function getOutputType(
bytes calldata scriptPubkey
) internal pure returns (OutputType) {
if (
scriptPubkey.length == 22 &&
scriptPubkey[0] == OP_0 &&
scriptPubkey[1] == OP_DATA_20
) {
return OutputType.P2WPKH;
}
if (
scriptPubkey.length == 34 &&
scriptPubkey[0] == OP_1 &&
scriptPubkey[1] == OP_DATA_32
) {
return OutputType.P2TR;
}
if (
scriptPubkey.length == 34 &&
scriptPubkey[0] == OP_0 &&
scriptPubkey[1] == OP_DATA_32
) {
return OutputType.P2WSH;
}
return OutputType.UNSUPPORTED;
}
/// @notice Compute the dust limit for a given Bitcoin script public key
/// @dev The dust limit is the minimum payment to an address that is considered
/// spendable under consensus rules. This function is based on Bitcoin Core's
/// implementation.
/// @param scriptPubkey The Bitcoin script public key as a byte array
/// @param dustFeeRate The current dust fee rate (in satoshis per 1000 bytes)
/// @return dustLimit The calculated dust limit in satoshis
/// @custom:reference https://github.com/bitcoin/bitcoin/blob/43740f4971f45cd5499470b6a085b3ecd8b96d28/src/policy/policy.cpp#L54
function getDustLimitForOutput(
OutputType outType,
bytes calldata scriptPubkey,
uint256 dustFeeRate
) internal pure returns (uint256 dustLimit) {
uint256 spendCost = BASE_SPEND_COST;
if (
outType == OutputType.P2TR ||
outType == OutputType.P2WPKH ||
outType == OutputType.P2WSH
) {
// witness v0 and v1 has a cheaper payment formula
spendCost += WITNESS_INPUT_SIZE;
// The current addition creates a discrepancy of 1, and our final value should be 98 bytes.
// Thus, we add 1 here.
spendCost += 1;
} else {
spendCost += NON_WITNESS_INPUT_SIZE;
}
spendCost += scriptPubkey.length;
// Calculate dust limit
dustLimit = Math.ceilDiv(spendCost * dustFeeRate, 1000);
}
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.24;
import {IERC1271} from "@openzeppelin/contracts/interfaces/IERC1271.sol";
import {ECDSA} from "@openzeppelin/contracts/utils/cryptography/ECDSA.sol";
/**
* @title Library of utilities for making EIP1271-compliant signature checks.
* @author Lombard.Finance
* @notice The contracts is a part of Lombard.Finace protocol
*/
library EIP1271SignatureUtils {
// bytes4(keccak256("isValidSignature(bytes32,bytes)")
bytes4 internal constant EIP1271_MAGICVALUE = 0x1626ba7e;
bytes4 internal constant EIP1271_WRONGVALUE = 0xffffffff;
/**
* @notice Checks @param signature is a valid signature of @param digest from @param signer.
* If the `signer` contains no code -- i.e. it is not (yet, at least) a contract address, then checks using standard ECDSA logic
* Otherwise, passes on the signature to the signer to verify the signature and checks that it returns the `EIP1271_MAGICVALUE`.
*/
function checkSignature(
address signer,
bytes32 digest,
bytes memory signature
) internal view returns (bool) {
if (signer.code.length != 0) {
if (
IERC1271(signer).isValidSignature(digest, signature) !=
EIP1271_MAGICVALUE
) {
return false;
}
} else {
if (ECDSA.recover(digest, signature) != signer) {
return false;
}
}
return true;
}
}{
"optimizer": {
"enabled": true,
"runs": 200
},
"evmVersion": "paris",
"outputSelection": {
"*": {
"*": [
"evm.bytecode",
"evm.deployedBytecode",
"devdoc",
"userdoc",
"metadata",
"abi"
]
}
},
"metadata": {
"useLiteralContent": true
},
"libraries": {}
}Contract Security Audit
- No Contract Security Audit Submitted- Submit Audit Here
Contract ABI
API[{"inputs":[],"stateMutability":"nonpayable","type":"constructor"},{"inputs":[],"name":"AccessControlBadConfirmation","type":"error"},{"inputs":[{"internalType":"uint48","name":"schedule","type":"uint48"}],"name":"AccessControlEnforcedDefaultAdminDelay","type":"error"},{"inputs":[],"name":"AccessControlEnforcedDefaultAdminRules","type":"error"},{"inputs":[{"internalType":"address","name":"defaultAdmin","type":"address"}],"name":"AccessControlInvalidDefaultAdmin","type":"error"},{"inputs":[{"internalType":"address","name":"account","type":"address"},{"internalType":"bytes32","name":"neededRole","type":"bytes32"}],"name":"AccessControlUnauthorizedAccount","type":"error"},{"inputs":[],"name":"Actions_ZeroAddress","type":"error"},{"inputs":[{"internalType":"uint256","name":"dustLimit","type":"uint256"}],"name":"AmountBelowDustLimit","type":"error"},{"inputs":[{"internalType":"uint256","name":"fee","type":"uint256"}],"name":"AmountLessThanCommission","type":"error"},{"inputs":[],"name":"ECDSAInvalidSignature","type":"error"},{"inputs":[{"internalType":"uint256","name":"length","type":"uint256"}],"name":"ECDSAInvalidSignatureLength","type":"error"},{"inputs":[{"internalType":"bytes32","name":"s","type":"bytes32"}],"name":"ECDSAInvalidSignatureS","type":"error"},{"inputs":[{"internalType":"address","name":"spender","type":"address"},{"internalType":"uint256","name":"allowance","type":"uint256"},{"internalType":"uint256","name":"needed","type":"uint256"}],"name":"ERC20InsufficientAllowance","type":"error"},{"inputs":[{"internalType":"address","name":"sender","type":"address"},{"internalType":"uint256","name":"balance","type":"uint256"},{"internalType":"uint256","name":"needed","type":"uint256"}],"name":"ERC20InsufficientBalance","type":"error"},{"inputs":[{"internalType":"address","name":"approver","type":"address"}],"name":"ERC20InvalidApprover","type":"error"},{"inputs":[{"internalType":"address","name":"receiver","type":"address"}],"name":"ERC20InvalidReceiver","type":"error"},{"inputs":[{"internalType":"address","name":"sender","type":"address"}],"name":"ERC20InvalidSender","type":"error"},{"inputs":[{"internalType":"address","name":"spender","type":"address"}],"name":"ERC20InvalidSpender","type":"error"},{"inputs":[{"internalType":"uint256","name":"deadline","type":"uint256"}],"name":"ERC2612ExpiredSignature","type":"error"},{"inputs":[{"internalType":"address","name":"signer","type":"address"},{"internalType":"address","name":"owner","type":"address"}],"name":"ERC2612InvalidSigner","type":"error"},{"inputs":[],"name":"EnforcedPause","type":"error"},{"inputs":[],"name":"ExpectedPause","type":"error"},{"inputs":[],"name":"FeeGreaterThanAmount","type":"error"},{"inputs":[{"internalType":"address","name":"account","type":"address"},{"internalType":"uint256","name":"currentNonce","type":"uint256"}],"name":"InvalidAccountNonce","type":"error"},{"inputs":[{"internalType":"address","name":"expected","type":"address"},{"internalType":"address","name":"got","type":"address"}],"name":"InvalidDestinationToken","type":"error"},{"inputs":[],"name":"InvalidDustFeeRate","type":"error"},{"inputs":[],"name":"InvalidInitialization","type":"error"},{"inputs":[],"name":"InvalidInputLength","type":"error"},{"inputs":[],"name":"InvalidMintAmount","type":"error"},{"inputs":[{"internalType":"uint256","name":"expected","type":"uint256"},{"internalType":"uint256","name":"actual","type":"uint256"}],"name":"InvalidPayloadSize","type":"error"},{"inputs":[],"name":"InvalidUserSignature","type":"error"},{"inputs":[],"name":"NotInitializing","type":"error"},{"inputs":[],"name":"PayloadAlreadyUsed","type":"error"},{"inputs":[],"name":"ReentrancyGuardReentrantCall","type":"error"},{"inputs":[{"internalType":"uint8","name":"bits","type":"uint8"},{"internalType":"uint256","name":"value","type":"uint256"}],"name":"SafeCastOverflowedUintDowncast","type":"error"},{"inputs":[],"name":"ScriptPubkeyUnsupported","type":"error"},{"inputs":[{"internalType":"bytes4","name":"action","type":"bytes4"}],"name":"UnexpectedAction","type":"error"},{"inputs":[{"internalType":"uint256","name":"expiry","type":"uint256"}],"name":"UserSignatureExpired","type":"error"},{"inputs":[],"name":"WithdrawalsDisabled","type":"error"},{"inputs":[],"name":"WrongChainId","type":"error"},{"inputs":[],"name":"ZeroAddress","type":"error"},{"inputs":[],"name":"ZeroAmount","type":"error"},{"inputs":[],"name":"ZeroFee","type":"error"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"owner","type":"address"},{"indexed":true,"internalType":"address","name":"spender","type":"address"},{"indexed":false,"internalType":"uint256","name":"value","type":"uint256"}],"name":"Approval","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"prevVal","type":"address"},{"indexed":true,"internalType":"address","name":"newVal","type":"address"}],"name":"BasculeChanged","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"bytes32","name":"payloadHash","type":"bytes32"},{"indexed":false,"internalType":"bytes","name":"payload","type":"bytes"}],"name":"BatchMintSkipped","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"uint64","name":"prevValue","type":"uint64"},{"indexed":true,"internalType":"uint64","name":"newValue","type":"uint64"}],"name":"BurnCommissionChanged","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"prevVal","type":"address"},{"indexed":true,"internalType":"address","name":"newVal","type":"address"}],"name":"ConsortiumChanged","type":"event"},{"anonymous":false,"inputs":[],"name":"DefaultAdminDelayChangeCanceled","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"uint48","name":"newDelay","type":"uint48"},{"indexed":false,"internalType":"uint48","name":"effectSchedule","type":"uint48"}],"name":"DefaultAdminDelayChangeScheduled","type":"event"},{"anonymous":false,"inputs":[],"name":"DefaultAdminTransferCanceled","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"newAdmin","type":"address"},{"indexed":false,"internalType":"uint48","name":"acceptSchedule","type":"uint48"}],"name":"DefaultAdminTransferScheduled","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"uint256","name":"oldRate","type":"uint256"},{"indexed":true,"internalType":"uint256","name":"newRate","type":"uint256"}],"name":"DustFeeRateChanged","type":"event"},{"anonymous":false,"inputs":[],"name":"EIP712DomainChanged","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"uint256","name":"oldFee","type":"uint256"},{"indexed":true,"internalType":"uint256","name":"newFee","type":"uint256"}],"name":"FeeChanged","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"uint256","name":"fee","type":"uint256"},{"indexed":false,"internalType":"bytes","name":"userSignature","type":"bytes"}],"name":"FeeCharged","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"uint64","name":"version","type":"uint64"}],"name":"Initialized","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"recipient","type":"address"},{"indexed":true,"internalType":"bytes32","name":"payloadHash","type":"bytes32"},{"indexed":false,"internalType":"bytes","name":"payload","type":"bytes"}],"name":"MintProofConsumed","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"string","name":"name","type":"string"},{"indexed":false,"internalType":"string","name":"symbol","type":"string"}],"name":"NameAndSymbolChanged","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"address","name":"account","type":"address"}],"name":"Paused","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"bytes32","name":"role","type":"bytes32"},{"indexed":true,"internalType":"bytes32","name":"previousAdminRole","type":"bytes32"},{"indexed":true,"internalType":"bytes32","name":"newAdminRole","type":"bytes32"}],"name":"RoleAdminChanged","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"bytes32","name":"role","type":"bytes32"},{"indexed":true,"internalType":"address","name":"account","type":"address"},{"indexed":true,"internalType":"address","name":"sender","type":"address"}],"name":"RoleGranted","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"bytes32","name":"role","type":"bytes32"},{"indexed":true,"internalType":"address","name":"account","type":"address"},{"indexed":true,"internalType":"address","name":"sender","type":"address"}],"name":"RoleRevoked","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"from","type":"address"},{"indexed":true,"internalType":"address","name":"to","type":"address"},{"indexed":false,"internalType":"uint256","name":"value","type":"uint256"}],"name":"Transfer","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"prevValue","type":"address"},{"indexed":true,"internalType":"address","name":"newValue","type":"address"}],"name":"TreasuryAddressChanged","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"address","name":"account","type":"address"}],"name":"Unpaused","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"fromAddress","type":"address"},{"indexed":false,"internalType":"bytes","name":"scriptPubKey","type":"bytes"},{"indexed":false,"internalType":"uint256","name":"amount","type":"uint256"}],"name":"UnstakeRequest","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"bool","name":"","type":"bool"}],"name":"WithdrawalsEnabled","type":"event"},{"inputs":[],"name":"Bascule","outputs":[{"internalType":"contract IBascule","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"CLAIMER_ROLE","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"DEFAULT_ADMIN_ROLE","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"DOMAIN_SEPARATOR","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"MINTER_ROLE","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"OPERATOR_ROLE","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"PAUSER_ROLE","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"acceptDefaultAdminTransfer","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"owner","type":"address"},{"internalType":"address","name":"spender","type":"address"}],"name":"allowance","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"spender","type":"address"},{"internalType":"uint256","name":"value","type":"uint256"}],"name":"approve","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"account","type":"address"}],"name":"balanceOf","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address[]","name":"to","type":"address[]"},{"internalType":"uint256[]","name":"amount","type":"uint256[]"}],"name":"batchMint","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes[]","name":"payload","type":"bytes[]"},{"internalType":"bytes[]","name":"proof","type":"bytes[]"}],"name":"batchMintV1","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes[]","name":"mintPayload","type":"bytes[]"},{"internalType":"bytes[]","name":"proof","type":"bytes[]"},{"internalType":"bytes[]","name":"feePayload","type":"bytes[]"},{"internalType":"bytes[]","name":"userSignature","type":"bytes[]"}],"name":"batchMintV1WithFee","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"newAdmin","type":"address"}],"name":"beginDefaultAdminTransfer","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"burn","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"from","type":"address"},{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"burn","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes","name":"scriptPubkey","type":"bytes"},{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"calcUnstakeRequestAmount","outputs":[{"internalType":"uint256","name":"amountAfterFee","type":"uint256"},{"internalType":"bool","name":"isAboveDust","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"cancelDefaultAdminTransfer","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"newVal","type":"address"}],"name":"changeBascule","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"uint64","name":"newValue","type":"uint64"}],"name":"changeBurnCommission","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"newVal","type":"address"}],"name":"changeConsortium","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"uint48","name":"newDelay","type":"uint48"}],"name":"changeDefaultAdminDelay","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"uint256","name":"newRate","type":"uint256"}],"name":"changeDustFeeRate","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"string","name":"name_","type":"string"},{"internalType":"string","name":"symbol_","type":"string"}],"name":"changeNameAndSymbol","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"newValue","type":"address"}],"name":"changeTreasuryAddress","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"consortium","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"decimals","outputs":[{"internalType":"uint8","name":"","type":"uint8"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"defaultAdmin","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"defaultAdminDelay","outputs":[{"internalType":"uint48","name":"","type":"uint48"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"defaultAdminDelayIncreaseWait","outputs":[{"internalType":"uint48","name":"","type":"uint48"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"eip712Domain","outputs":[{"internalType":"bytes1","name":"fields","type":"bytes1"},{"internalType":"string","name":"name","type":"string"},{"internalType":"string","name":"version","type":"string"},{"internalType":"uint256","name":"chainId","type":"uint256"},{"internalType":"address","name":"verifyingContract","type":"address"},{"internalType":"bytes32","name":"salt","type":"bytes32"},{"internalType":"uint256[]","name":"extensions","type":"uint256[]"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"getBurnCommission","outputs":[{"internalType":"uint64","name":"","type":"uint64"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"getDustFeeRate","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"getMintFee","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"}],"name":"getRoleAdmin","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"getTreasury","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"},{"internalType":"address","name":"account","type":"address"}],"name":"grantRole","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"},{"internalType":"address","name":"account","type":"address"}],"name":"hasRole","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"consortium_","type":"address"},{"internalType":"address","name":"treasury","type":"address"},{"internalType":"string","name":"_name","type":"string"},{"internalType":"string","name":"_symbol","type":"string"},{"internalType":"address","name":"initialOwner","type":"address"}],"name":"initialize","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes32","name":"payloadHash","type":"bytes32"}],"name":"isPayloadUsed","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"to","type":"address"},{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"mint","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes","name":"payload","type":"bytes"},{"internalType":"bytes","name":"proof","type":"bytes"}],"name":"mintV1","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes","name":"mintPayload","type":"bytes"},{"internalType":"bytes","name":"proof","type":"bytes"},{"internalType":"bytes","name":"feePayload","type":"bytes"},{"internalType":"bytes","name":"userSignature","type":"bytes"}],"name":"mintV1WithFee","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"name","outputs":[{"internalType":"string","name":"","type":"string"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"owner","type":"address"}],"name":"nonces","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"owner","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"pause","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"paused","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"pendingDefaultAdmin","outputs":[{"internalType":"address","name":"newAdmin","type":"address"},{"internalType":"uint48","name":"schedule","type":"uint48"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"pendingDefaultAdminDelay","outputs":[{"internalType":"uint48","name":"newDelay","type":"uint48"},{"internalType":"uint48","name":"schedule","type":"uint48"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"owner","type":"address"},{"internalType":"address","name":"spender","type":"address"},{"internalType":"uint256","name":"value","type":"uint256"},{"internalType":"uint256","name":"deadline","type":"uint256"},{"internalType":"uint8","name":"v","type":"uint8"},{"internalType":"bytes32","name":"r","type":"bytes32"},{"internalType":"bytes32","name":"s","type":"bytes32"}],"name":"permit","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes","name":"scriptPubkey","type":"bytes"},{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"redeem","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"},{"internalType":"address","name":"account","type":"address"}],"name":"renounceRole","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"},{"internalType":"address","name":"account","type":"address"}],"name":"revokeRole","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"rollbackDefaultAdminDelay","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"uint256","name":"fee","type":"uint256"}],"name":"setMintFee","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes4","name":"interfaceId","type":"bytes4"}],"name":"supportsInterface","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"symbol","outputs":[{"internalType":"string","name":"","type":"string"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"toggleWithdrawals","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"totalSupply","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"to","type":"address"},{"internalType":"uint256","name":"value","type":"uint256"}],"name":"transfer","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"from","type":"address"},{"internalType":"address","name":"to","type":"address"},{"internalType":"uint256","name":"value","type":"uint256"}],"name":"transferFrom","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"unpause","outputs":[],"stateMutability":"nonpayable","type":"function"}]Contract Creation Code
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
Deployed Bytecode
0x608060405234801561001057600080fd5b50600436106103d05760003560e01c806380e787df116101ff578063cc8463c81161011a578063d6a02b6a116100ad578063eddd0d9c1161007c578063eddd0d9c1461084d578063f216acfb14610860578063f5b541a614610880578063fc5f18d3146108a757600080fd5b8063d6a02b6a146107f8578063dd62ed3e14610800578063e3248f9a14610813578063e63ab1e91461082657600080fd5b8063d505accf116100e9578063d505accf146107b5578063d5391393146107c8578063d547741f146107dd578063d602b9fd146107f057600080fd5b8063cc8463c81461076f578063cefc142914610777578063cf6eefb71461077f578063d239f003146107ad57600080fd5b80639ad1876511610192578063a3622bf011610161578063a3622bf014610723578063a6f353f014610736578063a9059cbb14610749578063b6c441e81461075c57600080fd5b80639ad18765146106d95780639dc29fac146106e1578063a1eda53c146106f4578063a217fddf1461071b57600080fd5b806384ef8ffc116101ce57806384ef8ffc146106ae5780638da5cb5b146106b657806391d14854146106be57806395d89b41146106d157600080fd5b806380e787df146106505780638307f738146106785780638456cb591461068b57806384b0196e1461069357600080fd5b80633644e515116102ef578063634e93da1161028257806370a082311161025157806370a082311461060f5780637a5caab3146106225780637ecebe001461062a5780637f56945e1461063d57600080fd5b8063634e93da146105c3578063649a5ec7146105d657806368573107146105e95780636b4f3afb146105fc57600080fd5b806340c10f19116102be57806340c10f191461057257806342966c681461058557806356712139146105985780635c975abb146105ab57600080fd5b80633644e5151461052f57806336568abe146105375780633b19e84a1461054a5780633f4ba83a1461056a57600080fd5b80630fd3f6e511610367578063248a9ca311610336578063248a9ca3146104e75780632f2ff15d146104fa578063313ce5671461050d578063362925c21461051c57600080fd5b80630fd3f6e5146104845780631721c6bc1461049757806318160ddd146104ad57806323b872dd146104d457600080fd5b806306fdde03116103a357806306fdde0314610441578063089bb99a14610456578063095ea7b3146104695780630aa6220b1461047c57600080fd5b806301d40387146103d557806301ffc9a7146103ea578063022d63fb146104125780630639beeb1461042e575b600080fd5b6103e86103e3366004613b9e565b6108ce565b005b6103fd6103f8366004613bcd565b610945565b60405190151581526020015b60405180910390f35b620697805b60405165ffffffffffff9091168152602001610409565b6103e861043c366004613c35565b610970565b610449610b75565b6040516104099190613d3e565b6103e8610464366004613d92565b610c10565b6103fd610477366004613e12565b610c95565b6103e8610cad565b6103e8610492366004613e3e565b610cc3565b61049f610e2b565b604051908152602001610409565b7f52c63247e1f47db19d5ce0460030c497f067ca4cebf71ba98eeadabe20bace025461049f565b6103fd6104e2366004613e9d565b610e3e565b61049f6104f5366004613b9e565b610e64565b6103e8610508366004613ede565b610e86565b60405160088152602001610409565b6103e861052a366004613f0e565b610eb2565b61049f611106565b6103e8610545366004613ede565b611115565b6105526111de565b6040516001600160a01b039091168152602001610409565b6103e86111fa565b6103e8610580366004613e12565b61120d565b6103e8610593366004613b9e565b61122f565b6103e86105a6366004613fb6565b611239565b6000805160206147728339815191525460ff166103fd565b6103e86105d1366004613fb6565b61124d565b6103e86105e4366004613fd3565b611261565b6103e86105f7366004613e3e565b611275565b6103fd61060a366004613b9e565b611310565b61049f61061d366004613fb6565b611333565b61049f611366565b61049f610638366004613fb6565b611379565b6103e861064b366004613fb6565b611384565b61066361065e366004613ffb565b611398565b60408051928352901515602083015201610409565b6103e8610686366004613d92565b6113da565b6103e86114c5565b61069b6114f7565b6040516104099796959493929190614046565b6105526115a3565b6105526115bf565b6103fd6106cc366004613ede565b6115c9565b610449611601565b610552611619565b6103e86106ef366004613e12565b611632565b6106fc611654565b6040805165ffffffffffff938416815292909116602083015201610409565b61049f600081565b6103e8610731366004613ffb565b6116c7565b6103e8610744366004613fb6565b6117e9565b6103fd610757366004613e12565b6117fd565b6103e861076a3660046140df565b61180b565b610417611850565b6103e86118ce565b61078761190e565b604080516001600160a01b03909316835265ffffffffffff909116602083015201610409565b6103e861193c565b6103e86107c336600461418e565b6119b2565b61049f60008051602061473283398151915281565b6103e86107eb366004613ede565b611b0b565b6103e8611b33565b610552611b46565b61049f61080e366004614205565b611b62565b6103e8610821366004614233565b611bac565b61049f7f65d7a28e3265b37a6474929f336521b332c1681b933f6cb9f3376673440d862a81565b6103e861085b366004613b9e565b611bc0565b610868611c35565b6040516001600160401b039091168152602001610409565b61049f7f97667070c54ef182b0f5858b034beac1b6f3089aa2d3188bb1e8929f4fa9b92981565b61049f7f11a8cb5a02bd6c42679835e867ef2118ba78f088f8300511420c6603c21d9c7881565b60006108d981611c55565b816000036108fa5760405163a3a6ed8760e01b815260040160405180910390fd5b6000610904611c5f565b6005810180549085905560405191925090849082907f78739e78c1e8bc1416322baf73f3397a683d656e9425f621050e243dc73ea03d90600090a350505050565b60006001600160e01b031982166318a4c3c360e11b148061096a575061096a82611c83565b92915050565b7f11a8cb5a02bd6c42679835e867ef2118ba78f088f8300511420c6603c21d9c7861099a81611c55565b8786811415806109aa5750808514155b806109b55750808314155b156109d357604051637db491eb60e01b815260040160405180910390fd5b60005b89811015610b6857600060028c8c848181106109f4576109f461425c565b9050602002810190610a069190614272565b604051610a149291906142b8565b602060405180830381855afa158015610a31573d6000803e3d6000fd5b5050506040513d601f19601f82011682018060405250810190610a5491906142c8565b9050610a5f81611310565b15610ac657807f199445030f34ba18eca81d4647be9cf6943287dd1a58d150f9cf093111240bff8d8d85818110610a9857610a9861425c565b9050602002810190610aaa9190614272565b604051610ab892919061430a565b60405180910390a250610b60565b610b5e8c8c84818110610adb57610adb61425c565b9050602002810190610aed9190614272565b8c8c86818110610aff57610aff61425c565b9050602002810190610b119190614272565b8c8c88818110610b2357610b2361425c565b9050602002810190610b359190614272565b8c8c8a818110610b4757610b4761425c565b9050602002810190610b599190614272565b611cb8565b505b6001016109d6565b5050505050505050505050565b6060610b7f611c5f565b6003018054610b8d9061431e565b80601f0160208091040260200160405190810160405280929190818152602001828054610bb99061431e565b8015610c065780601f10610bdb57610100808354040283529160200191610c06565b820191906000526020600020905b815481529060010190602001808311610be957829003601f168201915b5050505050905090565b6000610c1b81611c55565b610c8e85858080601f01602080910402602001604051908101604052809392919081815260200183838082843760009201919091525050604080516020601f89018190048102820181019092528781529250879150869081908401838280828437600092019190915250611f3d92505050565b5050505050565b600033610ca3818585611fa5565b5060019392505050565b6000610cb881611c55565b610cc0611fb2565b50565b828114610ce357604051637db491eb60e01b815260040160405180910390fd5b60005b83811015610c8e5760006002868684818110610d0457610d0461425c565b9050602002810190610d169190614272565b604051610d249291906142b8565b602060405180830381855afa158015610d41573d6000803e3d6000fd5b5050506040513d601f19601f82011682018060405250810190610d6491906142c8565b9050610d6f81611310565b15610dd657807f199445030f34ba18eca81d4647be9cf6943287dd1a58d150f9cf093111240bff878785818110610da857610da861425c565b9050602002810190610dba9190614272565b604051610dc892919061430a565b60405180910390a250610e23565b610e21868684818110610deb57610deb61425c565b9050602002810190610dfd9190614272565b868686818110610e0f57610e0f61425c565b90506020028101906106869190614272565b505b600101610ce6565b6000610e35611c5f565b60050154905090565b600033610e4c858285611fbf565b610e5785858561201f565b60019150505b9392505050565b6000908152600080516020614752833981519152602052604090206001015490565b81610ea457604051631fe1e13d60e11b815260040160405180910390fd5b610eae828261207e565b5050565b7ff0c57e16840df040f15088dc2f81fe391c3923bec73e23a9662efc9c229c6a008054600160401b810460ff1615906001600160401b0316600081158015610ef75750825b90506000826001600160401b03166001148015610f135750303b155b905081158015610f21575080155b15610f3f5760405163f92ee8a960e01b815260040160405180910390fd5b845467ffffffffffffffff191660011785558315610f6957845460ff60401b1916600160401b1785555b610f7460008761209a565b610f9c60405180602001604052806000815250604051806020016040528060008152506120ac565b610fa46120be565b610fac6120ce565b610feb8a8a8080601f0160208091040260200160405190810160405280939291908181526020018383808284376000920191909152506120de92505050565b61106e8a8a8080601f01602080910402602001604051908101604052809392919081815260200183838082843760009201919091525050604080516020601f8e018190048102820181019092528c815292508c91508b9081908401838280828437600081840152601f19601f820116905080830192505050505050508e8e612109565b6000611078611c5f565b610bb860058201819055604051919250906000907f78739e78c1e8bc1416322baf73f3397a683d656e9425f621050e243dc73ea03d908290a35083156110f857845460ff60401b19168555604051600181527fc7f505b2f371ae2175ee4913f4499e1f2633a7b5936321eed1cdaeb6115181d29060200160405180910390a15b505050505050505050505050565b600061111061212d565b905090565b6000805160206147128339815191528215801561114a57506111356115a3565b6001600160a01b0316826001600160a01b0316145b156111cf5760008061115a61190e565b90925090506001600160a01b03821615158061117c575065ffffffffffff8116155b8061118f57504265ffffffffffff821610155b156111bc576040516319ca5ebb60e01b815265ffffffffffff821660048201526024015b60405180910390fd5b5050805465ffffffffffff60a01b191681555b6111d98383612137565b505050565b60006111e8611c5f565b600101546001600160a01b0316919050565b600061120581611c55565b610cc061216a565b60008051602061473283398151915261122581611c55565b6111d983836121ca565b610cc03382612200565b600061124481611c55565b610eae82612236565b600061125881611c55565b610eae826122c4565b600061126c81611c55565b610eae82612337565b60008051602061473283398151915261128d81611c55565b8382146112ad57604051637db491eb60e01b815260040160405180910390fd5b60005b84811015611308576113008686838181106112cd576112cd61425c565b90506020020160208101906112e29190613fb6565b8585848181106112f4576112f461425c565b905060200201356121ca565b6001016112b0565b505050505050565b60008061131b611c5f565b60009384526007016020525050604090205460ff1690565b6000806000805160206146d28339815191525b6001600160a01b0390931660009081526020939093525050604090205490565b6000611370611c5f565b60060154905090565b600061096a826123a0565b600061138f81611c55565b610eae826123c9565b60008060006113a5611c5f565b90506113ca8686868460000160149054906101000a90046001600160401b0316612436565b9299929850919650505050505050565b6113e26124f3565b636712f3e160e11b6113f48486614358565b6001600160e01b031916146114335761140d8385614358565b60405163f3c2729f60e01b81526001600160e01b031990911660048201526024016111b3565b600061147f6114458560048189614388565b8080601f01602080910402602001604051908101604052809392919081815260200183838082843760009201919091525061252b92505050565b905061148e8160a00151612670565b602081015160408201516114a7919080888888886126aa565b506114bf600160008051602061479283398151915255565b50505050565b7f65d7a28e3265b37a6474929f336521b332c1681b933f6cb9f3376673440d862a6114ef81611c55565b610cc0612881565b600060608082808083816000805160206146f2833981519152805490915015801561152457506001810154155b6115685760405162461bcd60e51b81526020600482015260156024820152741152540dcc4c8e88155b9a5b9a5d1a585b1a5e9959605a1b60448201526064016111b3565b6115706128ca565b61157861298d565b60408051600080825260208201909252600f60f81b9c939b5091995046985030975095509350915050565b6000805160206147b2833981519152546001600160a01b031690565b60006111106115a3565b6000918252600080516020614752833981519152602090815260408084206001600160a01b0393909316845291905290205460ff1690565b606061160b611c5f565b6004018054610b8d9061431e565b6000611623611c5f565b546001600160a01b0316919050565b60008051602061473283398151915261164a81611c55565b6111d98383612200565b6000805160206147b283398151915254600090600160d01b900465ffffffffffff16600080516020614712833981519152811580159061169c57504265ffffffffffff831610155b6116a8576000806116be565b6001810154600160a01b900465ffffffffffff16825b92509250509091565b60006116d1611c5f565b8054909150600160e01b900460ff166116fd576040516346ee9e3560e01b815260040160405180910390fd5b8054600160a01b90046001600160401b0316600080808061172089898988612436565b93509350935093508261175157604051630a01b54160e11b81526001600160401b03861660048201526024016111b3565b80611772576040516335558cfd60e21b8152600481018390526024016111b3565b3361178e8161177f6111de565b886001600160401b031661201f565b6117988186612200565b806001600160a01b03167f48396c786750ed570cc1b02085ad1b3c1ffb59fd39686c23a263c1e0d974af1b8b8b886040516117d5939291906143c8565b60405180910390a250505050505050505050565b60006117f481611c55565b610eae826129cc565b600033610ca381858561201f565b7f11a8cb5a02bd6c42679835e867ef2118ba78f088f8300511420c6603c21d9c7861183581611c55565b6118458989898989898989611cb8565b505050505050505050565b6000805160206147b28339815191525460009060008051602061471283398151915290600160d01b900465ffffffffffff16801580159061189857504265ffffffffffff8216105b6118b2578154600160d01b900465ffffffffffff166118c7565b6001820154600160a01b900465ffffffffffff165b9250505090565b60006118d861190e565b509050336001600160a01b0382161461190657604051636116401160e11b81523360048201526024016111b3565b610cc0612a53565b600080516020614712833981519152546001600160a01b03811691600160a01b90910465ffffffffffff1690565b600061194781611c55565b6000611951611c5f565b805460ff600160e01b808304821615810260ff60e01b199093169290921780845560405192900416151581529091507f45e7e6146471a396eb58b618e88efd46f5c95bd1815b282ed75c5220a559ab10906020015b60405180910390a15050565b834211156119d65760405163313c898160e11b8152600481018590526024016111b3565b60007f6e71edae12b1b97f4d1f60370fef10105fa2faae0126114a169c64845d6126c9888888611a428c6001600160a01b031660009081527f5ab42ced628888259c08ac98db1eb0cf702fc1501344311d8b100cd1bfe4bb006020526040902080546001810190915590565b6040805160208101969096526001600160a01b0394851690860152929091166060840152608083015260a082015260c0810186905260e0016040516020818303038152906040528051906020012090506000611a9d82612af0565b90506000611aad82878787612b1d565b9050896001600160a01b0316816001600160a01b031614611af4576040516325c0072360e11b81526001600160a01b0380831660048301528b1660248201526044016111b3565b611aff8a8a8a611fa5565b50505050505050505050565b81611b2957604051631fe1e13d60e11b815260040160405180910390fd5b610eae8282612b4b565b6000611b3e81611c55565b610cc0612b67565b6000611b50611c5f565b600201546001600160a01b0316919050565b6001600160a01b0391821660009081527f52c63247e1f47db19d5ce0460030c497f067ca4cebf71ba98eeadabe20bace016020908152604080832093909416825291909152205490565b6000611bb781611c55565b610eae82612b72565b7f97667070c54ef182b0f5858b034beac1b6f3089aa2d3188bb1e8929f4fa9b929611bea81611c55565b6000611bf4611c5f565b6006810180549085905560405191925090849082907f5fc463da23c1b063e66f9e352006a7fbe8db7223c455dc429e881a2dfe2f94f190600090a350505050565b6000611c3f611c5f565b54600160a01b90046001600160401b0316919050565b610cc08133612bdb565b7fb773c428c0cecc1b857b133b10e11481edd580cedc90e62754fff20b7c0d600090565b60006001600160e01b03198216637965db0b60e01b148061096a57506301ffc9a760e01b6001600160e01b031983161461096a565b611cc06124f3565b636712f3e160e11b611cd2888a614358565b6001600160e01b03191614611ceb5761140d8789614358565b6000611cfd611445896004818d614388565b9050611d0c8160a00151612670565b63205d72a560e21b611d1e8587614358565b6001600160e01b03191614611d375761140d8486614358565b6000611d83611d49866004818a614388565b8080601f016020809104026020016040519081016040528093929190818152602001838380828437600092019190915250612c1492505050565b90506000611d8f611c5f565b6006810154835191925090811115611da5575081515b83604001518110611dc957604051632405ab8160e11b815260040160405180910390fd5b8251602080850151604051600093611e3b93611e20937f40ac9f6aa27075e64c1ed1ea2e831b20b8c25efdeb6b79fd0cf683c9a9c50725934693920193845260208401929092526040830152606082015260800190565b60405160208183030381529060405280519060200120612af0565b9050611e8285602001518289898080601f016020809104026020016040519081016040528093929190818152602001838380828437600092019190915250612cbf92505050565b611e9f576040516338fed95f60e21b815260040160405180910390fd5b50611ec68460200151828660400151611eb89190614402565b86604001518f8f8f8f6126aa565b6001820154611ede906001600160a01b0316826121ca565b807fcd0d4a9ad4b364951764307d0ae7b0d2ea482965b258e2e2452ef396c53b20f08787604051611f1092919061430a565b60405180910390a250505050611f33600160008051602061479283398151915255565b5050505050505050565b6000611f47611c5f565b905060038101611f57848261445d565b5060048101611f66838261445d565b507f4d807d72b2a493ff2c4e338967d3f82d3352481258457d12a4506a1762a44c698383604051611f9892919061451c565b60405180910390a1505050565b6111d98383836001612d88565b611fbd600080612e6f565b565b6000611fcb8484611b62565b905060001981146114bf578181101561201057604051637dc7a0d960e11b81526001600160a01b038416600482015260248101829052604481018390526064016111b3565b6114bf84848484036000612d88565b6001600160a01b03831661204957604051634b637e8f60e11b8152600060048201526024016111b3565b6001600160a01b0382166120735760405163ec442f0560e01b8152600060048201526024016111b3565b6111d9838383612f4a565b61208782610e64565b61209081611c55565b6114bf8383612f55565b6120a2612fcc565b610eae8282613015565b6120b4612fcc565b610eae828261307e565b6120c6612fcc565b611fbd6130cf565b6120d6612fcc565b611fbd6130f0565b6120e6612fcc565b610cc081604051806040016040528060018152602001603160f81b8152506130f8565b612111612fcc565b61211b8484611f3d565b61212482612236565b6114bf816129cc565b6000611110613159565b6001600160a01b03811633146121605760405163334bd91960e11b815260040160405180910390fd5b6111d982826131cd565b612172613226565b600080516020614772833981519152805460ff191681557f5db9ee0a495bf2e6ff9c91a7834c1ba4fdd244a5e8aa4e537bd38aeae4b073aa335b6040516001600160a01b03909116815260200160405180910390a150565b6001600160a01b0382166121f45760405163ec442f0560e01b8152600060048201526024016111b3565b610eae60008383612f4a565b6001600160a01b03821661222a57604051634b637e8f60e11b8152600060048201526024016111b3565b610eae82600083612f4a565b6001600160a01b03811661225d5760405163d92e233d60e01b815260040160405180910390fd5b6000612267611c5f565b80546040519192506001600160a01b03808516929116907f146dd8feba84cdc776f012478adc764591d6c0c9570adbc49ff09c648282a0a090600090a380546001600160a01b0319166001600160a01b0392909216919091179055565b60006122ce611850565b6122d742613256565b6122e1919061454a565b90506122ed828261328d565b60405165ffffffffffff821681526001600160a01b038316907f3377dc44241e779dd06afab5b788a35ca5f3b778836e2990bdb26a2a4b2e5ed69060200160405180910390a25050565b60006123428261331a565b61234b42613256565b612355919061454a565b90506123618282612e6f565b6040805165ffffffffffff8085168252831660208201527ff1038c18cf84a56e432fdbfaf746924b7ea511dfe03a6506a0ceba4888788d9b91016119a6565b6000807f5ab42ced628888259c08ac98db1eb0cf702fc1501344311d8b100cd1bfe4bb00611346565b60006123d3611c5f565b60028101546040519192506001600160a01b03808516929116907fa0317ebf02283589c190260fcd549e3a6de71bef31204aeb5417c07fb65c089490600090a360020180546001600160a01b0319166001600160a01b0392909216919091179055565b60008060008060006124488989613362565b9050600081600381111561245e5761245e614569565b0361247c57604051632695fabb60e01b815260040160405180910390fd5b856001600160401b031687116124a0576000806000809450945094509450506124e8565b60006124aa611c5f565b905060006124c16001600160401b0389168a614402565b905060006124d5848d8d86600501546134d0565b9197506001965090945050508285119150505b945094509450949050565b60008051602061479283398151915280546001190161252557604051633ee5aeb560e01b815260040160405180910390fd5b60029055565b6040805160c08101825260008082526020808301829052928201819052606082018190526080820181905260a08201529061256790600661457f565b82511461259e5761257a6020600661457f565b82516040516371cccdf360e11b8152600481019290925260248201526044016111b3565b600080600080600080878060200190518101906125bb9190614596565b9550955095509550955095504686146125e6576040516217e1ef60ea1b815260040160405180910390fd5b6001600160a01b03851661260d576040516351de9ae360e11b815260040160405180910390fd5b8360000361262e57604051631f2a200560e01b815260040160405180910390fd5b6040805160c0810182529687526001600160a01b039586166020880152860193909352606085019190915263ffffffff1660808401521660a082015292915050565b6001600160a01b0381163014610cc05760405163b387d99560e01b81523060048201526001600160a01b03821660248201526044016111b3565b60006126b4611c5f565b9050858711156126d75760405163199f5a0360e31b815260040160405180910390fd5b6000600286866040516126eb9291906142b8565b602060405180830381855afa158015612708573d6000803e3d6000fd5b5050506040513d601f19601f8201168201806040525081019061272b91906142c8565b9050600061273c866004818a614388565b60405161274a9291906142b8565b6040805191829003909120600084815260078601602052919091205490915060ff161561278a57604051637c4b379b60e01b815260040160405180910390fd5b8254604051631f68c5f560e11b81526001600160a01b0390911690633ed18bea906127bd90859089908990600401614609565b60006040518083038186803b1580156127d557600080fd5b505afa1580156127e9573d6000803e3d6000fd5b50505060008381526007850160205260409020805460ff191660011790555061281383828a61357e565b61281d8a8a6121ca565b818a6001600160a01b03167f91f5c148b0f5ac9ddafe7030867f0d968adec49652c7ea760cf51fa233424b14898960405161285992919061430a565b60405180910390a350505050505050505050565b600160008051602061479283398151915255565b6128896135ef565b600080516020614772833981519152805460ff191660011781557f62e78cea01bee320cd4e420270b5ea74000d11b0c9f74754ebdbfc544b05a258336121ac565b7fa16a46d94261c7517cc8ff89f61c0ce93598e3c849801011dee649a6a557d10280546060916000805160206146f2833981519152916129099061431e565b80601f01602080910402602001604051908101604052809291908181526020018280546129359061431e565b80156129825780601f1061295757610100808354040283529160200191612982565b820191906000526020600020905b81548152906001019060200180831161296557829003601f168201915b505050505091505090565b7fa16a46d94261c7517cc8ff89f61c0ce93598e3c849801011dee649a6a557d10380546060916000805160206146f2833981519152916129099061431e565b6001600160a01b0381166129f35760405163d92e233d60e01b815260040160405180910390fd5b60006129fd611c5f565b6001810180546001600160a01b038581166001600160a01b031983168117909355604051939450169182907f4fc6e7a37aea21888550b60360992adb6a9b3b4da644d63e9f3a420c2d86e28290600090a3505050565b600080516020614712833981519152600080612a6d61190e565b91509150612a828165ffffffffffff16151590565b1580612a9657504265ffffffffffff821610155b15612abe576040516319ca5ebb60e01b815265ffffffffffff821660048201526024016111b3565b612ad06000612acb6115a3565b6131cd565b50612adc600083612f55565b505081546001600160d01b03191690915550565b600061096a612afd61212d565b8360405161190160f01b8152600281019290925260228201526042902090565b600080600080612b2f88888888613620565b925092509250612b3f82826136ef565b50909695505050505050565b612b5482610e64565b612b5d81611c55565b6114bf83836131cd565b611fbd60008061328d565b6000612b7c611c5f565b80546001600160401b03848116600160a01b81810267ffffffffffffffff60a01b198516178555604051949550909204169182907f2e7c1540076270015f38f524150bcb5d6ba9db14aca34c2e6d32e6ffad37941a90600090a3505050565b612be582826115c9565b610eae5760405163e2517d3f60e01b81526001600160a01b0382166004820152602481018390526044016111b3565b6040805180820190915260008082526020820152612c346020600261457f565b825114612c475761257a6020600261457f565b60008083806020019051810190612c5e9190614623565b9150915080421115612c865760405163954aba7160e01b8152600481018290526024016111b3565b81600003612ca75760405163af13986d60e01b815260040160405180910390fd5b60408051808201909152918252602082015292915050565b60006001600160a01b0384163b15612d5e57604051630b135d3f60e11b808252906001600160a01b03861690631626ba7e90612d019087908790600401614647565b602060405180830381865afa158015612d1e573d6000803e3d6000fd5b505050506040513d601f19601f82011682018060405250810190612d429190614660565b6001600160e01b03191614612d5957506000610e5d565b610ca3565b836001600160a01b0316612d7284846137a8565b6001600160a01b031614610ca357506000610e5d565b6000805160206146d28339815191526001600160a01b038516612dc15760405163e602df0560e01b8152600060048201526024016111b3565b6001600160a01b038416612deb57604051634a1406b160e11b8152600060048201526024016111b3565b6001600160a01b03808616600090815260018301602090815260408083209388168352929052208390558115610c8e57836001600160a01b0316856001600160a01b03167f8c5be1e5ebec7d5bd14f71427d1e84f3dd0314c0f7b2291e5b200ac8c7c3b92585604051612e6091815260200190565b60405180910390a35050505050565b6000805160206147b28339815191525460008051602061471283398151915290600160d01b900465ffffffffffff168015612f0c574265ffffffffffff82161015612ee257600182015482546001600160d01b0316600160a01b90910465ffffffffffff16600160d01b02178255612f0c565b6040517f2b1fa2edafe6f7b9e97c1a9e0c3660e645beb2dcaa2d45bdbf9beaf5472e1ec590600090a15b5060010180546001600160a01b0316600160a01b65ffffffffffff948516026001600160d01b031617600160d01b9290931691909102919091179055565b6111d98383836137d2565b600060008051602061471283398151915283612fba576000612f756115a3565b6001600160a01b031614612f9c57604051631fe1e13d60e11b815260040160405180910390fd5b6001810180546001600160a01b0319166001600160a01b0385161790555b612fc484846137e5565b949350505050565b7ff0c57e16840df040f15088dc2f81fe391c3923bec73e23a9662efc9c229c6a0054600160401b900460ff16611fbd57604051631afcd79f60e31b815260040160405180910390fd5b61301d612fcc565b6000805160206147128339815191526001600160a01b03821661305657604051636116401160e11b8152600060048201526024016111b3565b80546001600160d01b0316600160d01b65ffffffffffff8516021781556114bf600083612f55565b613086612fcc565b6000805160206146d28339815191527f52c63247e1f47db19d5ce0460030c497f067ca4cebf71ba98eeadabe20bace036130c0848261445d565b50600481016114bf838261445d565b6130d7612fcc565b600080516020614772833981519152805460ff19169055565b61286d612fcc565b613100612fcc565b6000805160206146f28339815191527fa16a46d94261c7517cc8ff89f61c0ce93598e3c849801011dee649a6a557d10261313a848261445d565b5060038101613149838261445d565b5060008082556001909101555050565b60007f8b73c3c69bb8fe3d512ecc4cf759cc79239f7b179b0ffacaa9a75d522b39400f613184613891565b61318c6138fb565b60408051602081019490945283019190915260608201524660808201523060a082015260c00160405160208183030381529060405280519060200120905090565b60006000805160206147128339815191528315801561320457506131ef6115a3565b6001600160a01b0316836001600160a01b0316145b1561321c576001810180546001600160a01b03191690555b612fc4848461393f565b6000805160206147728339815191525460ff16611fbd57604051638dfc202b60e01b815260040160405180910390fd5b600065ffffffffffff821115613289576040516306dfcc6560e41b815260306004820152602481018390526044016111b3565b5090565b60008051602061471283398151915260006132a661190e565b835465ffffffffffff8616600160a01b026001600160d01b03199091166001600160a01b0388161717845591506132e690508165ffffffffffff16151590565b156114bf576040517f8886ebfc4259abdbc16601dd8fb5678e54878f47b3c34836cfc51154a960510990600090a150505050565b600080613325611850565b90508065ffffffffffff168365ffffffffffff161161334d57613348838261467d565b610e5d565b610e5d65ffffffffffff8416620697806139bb565b600060168214801561339757506000838382816133815761338161425c565b9050013560f81c60f81b6001600160f81b031916145b80156133cc5750600560fa1b838360018181106133b6576133b661425c565b9050013560f81c60f81b6001600160f81b031916145b156133d95750600261096a565b6022821480156134105750605160f81b83836000816133fa576133fa61425c565b9050013560f81c60f81b6001600160f81b031916145b80156134455750600160fd1b8383600181811061342f5761342f61425c565b9050013560f81c60f81b6001600160f81b031916145b156134525750600161096a565b602282148015613485575060008383828161346f5761346f61425c565b9050013560f81c60f81b6001600160f81b031916145b80156134ba5750600160fd1b838360018181106134a4576134a461425c565b9050013560f81c60f81b6001600160f81b031916145b156134c75750600361096a565b50600092915050565b6000603160018660038111156134e8576134e8614569565b14806135055750600286600381111561350357613503614569565b145b806135215750600386600381111561351f5761351f614569565b145b1561354557613531601a8261469c565b905061353e60018261469c565b9050613553565b613550606b8261469c565b90505b61355d848261469c565b905061357461356c848361457f565b6103e86139d1565b9695505050505050565b60028301546001600160a01b031680156114bf57604051632f0d338d60e11b815260048101849052602481018390526001600160a01b03821690635e1a671a90604401600060405180830381600087803b1580156135db57600080fd5b505af1158015611f33573d6000803e3d6000fd5b6000805160206147728339815191525460ff1615611fbd5760405163d93c066560e01b815260040160405180910390fd5b600080807f7fffffffffffffffffffffffffffffff5d576e7357a4501ddfe92f46681b20a084111561365b57506000915060039050826136e5565b604080516000808252602082018084528a905260ff891692820192909252606081018790526080810186905260019060a0016020604051602081039080840390855afa1580156136af573d6000803e3d6000fd5b5050604051601f1901519150506001600160a01b0381166136db575060009250600191508290506136e5565b9250600091508190505b9450945094915050565b600082600381111561370357613703614569565b0361370c575050565b600182600381111561372057613720614569565b0361373e5760405163f645eedf60e01b815260040160405180910390fd5b600282600381111561375257613752614569565b036137735760405163fce698f760e01b8152600481018290526024016111b3565b600382600381111561378757613787614569565b03610eae576040516335e2f38360e21b8152600481018290526024016111b3565b6000806000806137b88686613a13565b9250925092506137c882826136ef565b5090949350505050565b6137da6135ef565b6111d9838383613a60565b600060008051602061475283398151915261380084846115c9565b613880576000848152602082815260408083206001600160a01b03871684529091529020805460ff191660011790556138363390565b6001600160a01b0316836001600160a01b0316857f2f8788117e7eff1d82e926ec794901d17c78024a50270940304540a733656f0d60405160405180910390a4600191505061096a565b600091505061096a565b5092915050565b60006000805160206146f2833981519152816138ab6128ca565b8051909150156138c357805160209091012092915050565b815480156138d2579392505050565b7fc5d2460186f7233c927e7db2dcc703c0e500b653ca82273b7bfad8045d85a470935050505090565b60006000805160206146f28339815191528161391561298d565b80519091501561392d57805160209091012092915050565b600182015480156138d2579392505050565b600060008051602061475283398151915261395a84846115c9565b15613880576000848152602082815260408083206001600160a01b0387168085529252808320805460ff1916905551339287917ff6391f5c32d9c69d2a47ea670b442974b53935d1edc7fd64eb21e047a839171b9190a4600191505061096a565b60008183106139ca5781610e5d565b5090919050565b6000816000036139ec576139e582846146af565b905061096a565b82156134c757816139fe600185614402565b613a0891906146af565b61334890600161469c565b60008060008351604103613a4d5760208401516040850151606086015160001a613a3f88828585613620565b955095509550505050613a59565b50508151600091506002905b9250925092565b6000805160206146d28339815191526001600160a01b038416613a9c5781816002016000828254613a91919061469c565b90915550613b0e9050565b6001600160a01b03841660009081526020829052604090205482811015613aef5760405163391434e360e21b81526001600160a01b038616600482015260248101829052604481018490526064016111b3565b6001600160a01b03851660009081526020839052604090209083900390555b6001600160a01b038316613b2c576002810180548390039055613b4b565b6001600160a01b03831660009081526020829052604090208054830190555b826001600160a01b0316846001600160a01b03167fddf252ad1be2c89b69c2b068fc378daa952ba7f163c4a11628f55a4df523b3ef84604051613b9091815260200190565b60405180910390a350505050565b600060208284031215613bb057600080fd5b5035919050565b6001600160e01b031981168114610cc057600080fd5b600060208284031215613bdf57600080fd5b8135610e5d81613bb7565b60008083601f840112613bfc57600080fd5b5081356001600160401b03811115613c1357600080fd5b6020830191508360208260051b8501011115613c2e57600080fd5b9250929050565b6000806000806000806000806080898b031215613c5157600080fd5b88356001600160401b0380821115613c6857600080fd5b613c748c838d01613bea565b909a50985060208b0135915080821115613c8d57600080fd5b613c998c838d01613bea565b909850965060408b0135915080821115613cb257600080fd5b613cbe8c838d01613bea565b909650945060608b0135915080821115613cd757600080fd5b50613ce48b828c01613bea565b999c989b5096995094979396929594505050565b6000815180845260005b81811015613d1e57602081850181015186830182015201613d02565b506000602082860101526020601f19601f83011685010191505092915050565b602081526000610e5d6020830184613cf8565b60008083601f840112613d6357600080fd5b5081356001600160401b03811115613d7a57600080fd5b602083019150836020828501011115613c2e57600080fd5b60008060008060408587031215613da857600080fd5b84356001600160401b0380821115613dbf57600080fd5b613dcb88838901613d51565b90965094506020870135915080821115613de457600080fd5b50613df187828801613d51565b95989497509550505050565b6001600160a01b0381168114610cc057600080fd5b60008060408385031215613e2557600080fd5b8235613e3081613dfd565b946020939093013593505050565b60008060008060408587031215613e5457600080fd5b84356001600160401b0380821115613e6b57600080fd5b613e7788838901613bea565b90965094506020870135915080821115613e9057600080fd5b50613df187828801613bea565b600080600060608486031215613eb257600080fd5b8335613ebd81613dfd565b92506020840135613ecd81613dfd565b929592945050506040919091013590565b60008060408385031215613ef157600080fd5b823591506020830135613f0381613dfd565b809150509250929050565b600080600080600080600060a0888a031215613f2957600080fd5b8735613f3481613dfd565b96506020880135613f4481613dfd565b955060408801356001600160401b0380821115613f6057600080fd5b613f6c8b838c01613d51565b909750955060608a0135915080821115613f8557600080fd5b50613f928a828b01613d51565b9094509250506080880135613fa681613dfd565b8091505092959891949750929550565b600060208284031215613fc857600080fd5b8135610e5d81613dfd565b600060208284031215613fe557600080fd5b813565ffffffffffff81168114610e5d57600080fd5b60008060006040848603121561401057600080fd5b83356001600160401b0381111561402657600080fd5b61403286828701613d51565b909790965060209590950135949350505050565b60ff60f81b881681526000602060e0602084015261406760e084018a613cf8565b8381036040850152614079818a613cf8565b606085018990526001600160a01b038816608086015260a0850187905284810360c08601528551808252602080880193509091019060005b818110156140cd578351835292840192918401916001016140b1565b50909c9b505050505050505050505050565b6000806000806000806000806080898b0312156140fb57600080fd5b88356001600160401b038082111561411257600080fd5b61411e8c838d01613d51565b909a50985060208b013591508082111561413757600080fd5b6141438c838d01613d51565b909850965060408b013591508082111561415c57600080fd5b6141688c838d01613d51565b909650945060608b013591508082111561418157600080fd5b50613ce48b828c01613d51565b600080600080600080600060e0888a0312156141a957600080fd5b87356141b481613dfd565b965060208801356141c481613dfd565b95506040880135945060608801359350608088013560ff811681146141e857600080fd5b9699959850939692959460a0840135945060c09093013592915050565b6000806040838503121561421857600080fd5b823561422381613dfd565b91506020830135613f0381613dfd565b60006020828403121561424557600080fd5b81356001600160401b0381168114610e5d57600080fd5b634e487b7160e01b600052603260045260246000fd5b6000808335601e1984360301811261428957600080fd5b8301803591506001600160401b038211156142a357600080fd5b602001915036819003821315613c2e57600080fd5b8183823760009101908152919050565b6000602082840312156142da57600080fd5b5051919050565b81835281816020850137506000828201602090810191909152601f909101601f19169091010190565b602081526000612fc46020830184866142e1565b600181811c9082168061433257607f821691505b60208210810361435257634e487b7160e01b600052602260045260246000fd5b50919050565b6001600160e01b031981358181169160048510156143805780818660040360031b1b83161692505b505092915050565b6000808585111561439857600080fd5b838611156143a557600080fd5b5050820193919092039150565b634e487b7160e01b600052604160045260246000fd5b6040815260006143dc6040830185876142e1565b9050826020830152949350505050565b634e487b7160e01b600052601160045260246000fd5b8181038181111561096a5761096a6143ec565b601f8211156111d9576000816000526020600020601f850160051c8101602086101561443e5750805b601f850160051c820191505b818110156113085782815560010161444a565b81516001600160401b03811115614476576144766143b2565b61448a81614484845461431e565b84614415565b602080601f8311600181146144bf57600084156144a75750858301515b600019600386901b1c1916600185901b178555611308565b600085815260208120601f198616915b828110156144ee578886015182559484019460019091019084016144cf565b508582101561450c5787850151600019600388901b60f8161c191681555b5050505050600190811b01905550565b60408152600061452f6040830185613cf8565b82810360208401526145418185613cf8565b95945050505050565b65ffffffffffff81811683821601908082111561388a5761388a6143ec565b634e487b7160e01b600052602160045260246000fd5b808202811582820484141761096a5761096a6143ec565b60008060008060008060c087890312156145af57600080fd5b8651955060208701516145c181613dfd565b809550506040870151935060608701519250608087015163ffffffff811681146145ea57600080fd5b60a08801519092506145fb81613dfd565b809150509295509295509295565b8381526040602082015260006145416040830184866142e1565b6000806040838503121561463657600080fd5b505080516020909101519092909150565b828152604060208201526000612fc46040830184613cf8565b60006020828403121561467257600080fd5b8151610e5d81613bb7565b65ffffffffffff82811682821603908082111561388a5761388a6143ec565b8082018082111561096a5761096a6143ec565b6000826146cc57634e487b7160e01b600052601260045260246000fd5b50049056fe52c63247e1f47db19d5ce0460030c497f067ca4cebf71ba98eeadabe20bace00a16a46d94261c7517cc8ff89f61c0ce93598e3c849801011dee649a6a557d100eef3dac4538c82c8ace4063ab0acd2d15cdb5883aa1dff7c2673abb3d86984009f2df0fed2c77648de5860a4cc508cd0818c85b8b8a1ab4ceeef8d981c8956a602dd7bc7dec4dceedda775e58dd541e08a116c6c53815c0bd028192f7b626800cd5ed15c6e187e77e9aee88184c21f4f2182ab5827cb3b7e07fbedcd63f033009b779b17422d0df92223018b32b4d1fa46e071723d6817e2486d003becc55f00eef3dac4538c82c8ace4063ab0acd2d15cdb5883aa1dff7c2673abb3d8698401a2646970667358221220b531b4a6680e681dcde3045868c789073d794929ddcdf9cbefa756b27f9fb5be64736f6c63430008180033
Loading...
Loading
Loading...
Loading
0x630e12D53D4E041b8C5451aD035Ea841E08391d7
Multichain Portfolio | 34 Chains
| Chain | Token | Portfolio % | Price | Amount | Value |
|---|
Loading...
Loading
Loading...
Loading
Loading...
Loading
A contract address hosts a smart contract, which is a set of code stored on the blockchain that runs when predetermined conditions are met. Learn more about addresses in our Knowledge Base.