Sponsored
MoonPay
Buy, sell and swap Ethereum with MoonPay.Buy Now!
Spend less on fees, more on crypto. Buy crypto easily with MoonPay Balance. 20M+ users trust MoonPay worldwide.
MetaMask
Manage your web3 everything with MetaMask. Try Now!
Ready to onboard to Ethereum? With MetaMask, you're in control.
eToro
One-stop crypto shop: trusted, simple & safe.
Don’t invest unless you’re prepared to lose all the money you invest.
Sponsored
Сoins.game
100 free spins for registration. Spin now!
Everyday giveaways up to 100 ETH, Lucky Spins. Deposit BONUS 300% and Cashbacks!
BC.GAME
- The Best ETH Casino Claim Now!
5000+ Slots & Live Casino Games, 50+cryptos. Register with Etherscan and get 760% deposit bonus. Win Big$, withdraw it fast.
Stake
200% Bonus, 100K Daily Giveaways, Instant Withdrawals Play Now!
Slots, Roulette, Poker & more - Proud sponsors of UFC, Everton & StakeF1 team!
Sponsored
BC.GAME
- The Best ETH Casino Claim Now!
5000+ Slots & Live Casino Games, 50+cryptos. Register with Etherscan and get 760% deposit bonus. Win Big$, withdraw it fast.
CryptoSlots
Play & Get 25 Free Spins at CryptoSlots Play Now
Anonymous play on awesome games - sign up now for 25 free jackpot spins - worth $100s!
CryptoWins
200% More Funds to Play on Us up to 4 BTC! Claim Now!
100s of games, generous bonuses, 20+ years of trusted gaming. Join CryptoWins & start winning today!
Overview
ETH Balance
0 ETH
Eth Value
$0.00Token Holdings
More Info
Private Name Tags
ContractCreator
Latest 8 from a total of 8 transactions
| Transaction Hash |
Method
|
Block
|
From
|
To
|
|||||
|---|---|---|---|---|---|---|---|---|---|
| Deposit | 21749794 | 5 hrs ago | IN | 1 ETH | 0.00083599 | ||||
| Deploy Bunni Tok... | 21748607 | 9 hrs ago | IN | 0 ETH | 0.00071036 | ||||
| Deploy Bunni Tok... | 21748025 | 11 hrs ago | IN | 0 ETH | 0.00380216 | ||||
| Deploy Bunni Tok... | 21747728 | 12 hrs ago | IN | 0 ETH | 0.00116929 | ||||
| Deploy Bunni Tok... | 21747721 | 12 hrs ago | IN | 0 ETH | 0.00118541 | ||||
| Deploy Bunni Tok... | 21747704 | 12 hrs ago | IN | 0 ETH | 0.00295184 | ||||
| Deploy Bunni Tok... | 21747679 | 12 hrs ago | IN | 0 ETH | 0.00150597 | ||||
| Deploy Bunni Tok... | 21747666 | 12 hrs ago | IN | 0 ETH | 0.00174123 |
Latest 25 internal transactions (View All)
Advanced mode:
| Parent Transaction Hash | Block |
From
|
To
|
|||
|---|---|---|---|---|---|---|
| 21751308 | 23 mins ago | 1.56174043 ETH | ||||
| 21751308 | 23 mins ago | 1.56174043 ETH | ||||
| 21751308 | 23 mins ago | 3.50495793 ETH | ||||
| 21751308 | 23 mins ago | 3.50495793 ETH | ||||
| 21751307 | 23 mins ago | 1.53817731 ETH | ||||
| 21751307 | 23 mins ago | 1.53817731 ETH | ||||
| 21751251 | 35 mins ago | 1.69865199 ETH | ||||
| 21751251 | 35 mins ago | 1.69865199 ETH | ||||
| 21751092 | 1 hr ago | 2.69999969 ETH | ||||
| 21751092 | 1 hr ago | 2.69999969 ETH | ||||
| 21751068 | 1 hr ago | 1.4406368 ETH | ||||
| 21751068 | 1 hr ago | 1.4406368 ETH | ||||
| 21750944 | 1 hr ago | 1.15563244 ETH | ||||
| 21750944 | 1 hr ago | 1.15563244 ETH | ||||
| 21750894 | 1 hr ago | 0.05223192 ETH | ||||
| 21750894 | 1 hr ago | 0.00608746 ETH | ||||
| 21750894 | 1 hr ago | 0.05831938 ETH | ||||
| 21750833 | 1 hr ago | 0.05738449 ETH | ||||
| 21750833 | 1 hr ago | 0.00584459 ETH | ||||
| 21750833 | 1 hr ago | 0.06322909 ETH | ||||
| 21750261 | 3 hrs ago | 0.09543011 ETH | ||||
| 21750261 | 3 hrs ago | 0.01140811 ETH | ||||
| 21750261 | 3 hrs ago | 0.10683823 ETH | ||||
| 21750199 | 4 hrs ago | 0.03342791 ETH | ||||
| 21750199 | 4 hrs ago | 0.00375355 ETH |
Loading...
Loading
This contract may be a proxy contract. Click on More Options and select Is this a proxy? to confirm and enable the "Read as Proxy" & "Write as Proxy" tabs.
Contract Source Code Verified (Exact Match)
Contract Name:
BunniHub
Compiler Version
v0.8.25+commit.b61c2a91
Optimization Enabled:
Yes with 7500 runs
Other Settings:
cancun EvmVersion
Contract Source Code (Solidity Standard Json-Input format)
// SPDX-License-Identifier: BUSL-1.1
pragma solidity ^0.8.19;
import {IPermit2} from "permit2/src/interfaces/IPermit2.sol";
import "@uniswap/v4-core/src/types/BalanceDelta.sol";
import {PoolId, PoolIdLibrary} from "@uniswap/v4-core/src/types/PoolId.sol";
import {Currency, CurrencyLibrary} from "@uniswap/v4-core/src/types/Currency.sol";
import {IPoolManager, PoolKey} from "@uniswap/v4-core/src/interfaces/IPoolManager.sol";
import {IUnlockCallback} from "@uniswap/v4-core/src/interfaces/callback/IUnlockCallback.sol";
import {TransientStateLibrary} from "@uniswap/v4-core/src/libraries/TransientStateLibrary.sol";
import {WETH} from "solady/tokens/WETH.sol";
import {SSTORE2} from "solady/utils/SSTORE2.sol";
import {SafeCastLib} from "solady/utils/SafeCastLib.sol";
import {LibTransient} from "solady/utils/LibTransient.sol";
import {SafeTransferLib} from "solady/utils/SafeTransferLib.sol";
import {FixedPointMathLib} from "solady/utils/FixedPointMathLib.sol";
import "./lib/Math.sol";
import "./base/Errors.sol";
import "./lib/VaultMath.sol";
import "./base/Constants.sol";
import "./base/SharedStructs.sol";
import "./interfaces/IBunniHub.sol";
import {Ownable} from "./base/Ownable.sol";
import {IERC20} from "./interfaces/IERC20.sol";
import {BunniHubLogic} from "./lib/BunniHubLogic.sol";
import {IBunniHook} from "./interfaces/IBunniHook.sol";
import {IBunniToken} from "./interfaces/IBunniToken.sol";
import {ReentrancyGuard} from "./base/ReentrancyGuard.sol";
import {PoolState, getPoolState, getPoolParams} from "./types/PoolState.sol";
import {ExcessivelySafeTransfer2Lib} from "./lib/ExcessivelySafeTransfer2Lib.sol";
/// @title BunniHub
/// @author zefram.eth
/// @notice The main contract LPs interact with. Each BunniKey corresponds to a BunniToken,
/// which is the ERC20 LP token for the Uniswap V4 position specified by the BunniKey.
/// Use deposit()/withdraw() to mint/burn LP tokens.
contract BunniHub is IBunniHub, Ownable, ReentrancyGuard {
using SafeCastLib for *;
using LibTransient for *;
using SSTORE2 for address;
using FixedPointMathLib for *;
using PoolIdLibrary for PoolKey;
using SafeTransferLib for address;
using CurrencyLibrary for Currency;
using TransientStateLibrary for IPoolManager;
using ExcessivelySafeTransfer2Lib for address;
/// -----------------------------------------------------------------------
/// Constants
/// -----------------------------------------------------------------------
uint256 private constant INIT_DATA_TSLOT = uint256(keccak256("INIT_DATA_TSLOT")) - 1;
/// -----------------------------------------------------------------------
/// Immutable args
/// -----------------------------------------------------------------------
WETH internal immutable weth;
IPermit2 internal immutable permit2;
IPoolManager internal immutable poolManager;
IBunniToken internal immutable bunniTokenImplementation;
/// -----------------------------------------------------------
/// Storage variables
/// -----------------------------------------------------------
/// @dev The storage content of BunniHub. Useful for passing storage to BunniHubLogic.
HubStorage internal s;
/// -----------------------------------------------------------
/// Modifiers
/// -----------------------------------------------------------
modifier checkDeadline(uint256 deadline) {
if (block.timestamp > deadline) revert BunniHub__PastDeadline();
_;
}
modifier notPaused(uint256 position) {
(uint8 pauseFlags, bool unpauseFuse) = (s.pauseFlags, s.unpauseFuse);
// pause function if bit is set in `pauseFlags` and `unpauseFuse` is false
if (pauseFlags & (1 << position) != 0 && !unpauseFuse) revert BunniHub__Paused();
_;
}
/// -----------------------------------------------------------
/// Constructor
/// -----------------------------------------------------------
constructor(
IPoolManager poolManager_,
WETH weth_,
IPermit2 permit2_,
IBunniToken bunniTokenImplementation_,
address initialOwner,
address initialReferralRewardRecipient
) {
require(
address(permit2_) != address(0) && address(poolManager_) != address(0) && address(weth_) != address(0)
&& address(bunniTokenImplementation_) != address(0) && initialOwner != address(0)
&& initialReferralRewardRecipient != address(0)
);
weth = weth_;
permit2 = permit2_;
poolManager = poolManager_;
bunniTokenImplementation = bunniTokenImplementation_;
_initializeOwner(initialOwner);
s.referralRewardRecipient = initialReferralRewardRecipient;
emit SetReferralRewardRecipient(initialReferralRewardRecipient);
}
/// -----------------------------------------------------------
/// External functions
/// -----------------------------------------------------------
/// @inheritdoc IBunniHub
function deposit(DepositParams calldata params)
external
payable
virtual
override
nonReentrant
checkDeadline(params.deadline)
notPaused(0)
returns (uint256 shares, uint256 amount0, uint256 amount1)
{
return BunniHubLogic.deposit(
s,
BunniHubLogic.Env({
weth: weth,
permit2: permit2,
poolManager: poolManager,
bunniTokenImplementation: bunniTokenImplementation
}),
params
);
}
/// @inheritdoc IBunniHub
function queueWithdraw(QueueWithdrawParams calldata params) external virtual override nonReentrant notPaused(1) {
BunniHubLogic.queueWithdraw(s, params);
}
/// @inheritdoc IBunniHub
function withdraw(WithdrawParams calldata params)
external
virtual
override
nonReentrant
checkDeadline(params.deadline)
notPaused(2)
returns (uint256 amount0, uint256 amount1)
{
return BunniHubLogic.withdraw(
s,
BunniHubLogic.Env({
weth: weth,
permit2: permit2,
poolManager: poolManager,
bunniTokenImplementation: bunniTokenImplementation
}),
params
);
}
/// @inheritdoc IBunniHub
function deployBunniToken(DeployBunniTokenParams calldata params)
external
override
nonReentrant
notPaused(3)
returns (IBunniToken token, PoolKey memory key)
{
return BunniHubLogic.deployBunniToken(
s,
BunniHubLogic.Env({
weth: weth,
permit2: permit2,
poolManager: poolManager,
bunniTokenImplementation: bunniTokenImplementation
}),
params
);
}
/// @inheritdoc IBunniHub
function hookHandleSwap(PoolKey calldata key, bool zeroForOne, uint256 inputAmount, uint256 outputAmount)
external
override
nonReentrant
notPaused(4)
{
if (msg.sender != address(key.hooks)) revert BunniHub__Unauthorized();
// load state
PoolId poolId = key.toId();
PoolState memory state = getPoolState(s, poolId);
(Currency inputToken, Currency outputToken) =
zeroForOne ? (key.currency0, key.currency1) : (key.currency1, key.currency0);
(uint256 initialReserve0, uint256 initialReserve1) = (state.reserve0, state.reserve1);
// pull input claim tokens from hook
if (inputAmount != 0) {
zeroForOne ? state.rawBalance0 += inputAmount : state.rawBalance1 += inputAmount;
poolManager.transferFrom(address(key.hooks), address(this), inputToken.toId(), inputAmount);
}
// push output claim tokens to hook
if (outputAmount != 0) {
(uint256 outputRawBalance, ERC4626 outputVault) =
zeroForOne ? (state.rawBalance1, state.vault1) : (state.rawBalance0, state.vault0);
if (address(outputVault) != address(0) && outputRawBalance < outputAmount) {
// insufficient token balance
// withdraw tokens from reserves
(int256 reserveChange, int256 rawBalanceChange) = _updateVaultReserveViaClaimTokens(
(outputAmount - outputRawBalance).toInt256(), outputToken, outputVault
);
zeroForOne
? (state.reserve1, state.rawBalance1) =
(_updateBalance(state.reserve1, reserveChange), _updateBalance(state.rawBalance1, rawBalanceChange))
: (state.reserve0, state.rawBalance0) =
(_updateBalance(state.reserve0, reserveChange), _updateBalance(state.rawBalance0, rawBalanceChange));
}
zeroForOne ? state.rawBalance1 -= outputAmount : state.rawBalance0 -= outputAmount;
poolManager.transfer(address(key.hooks), outputToken.toId(), outputAmount);
}
// update raw token balances if we're using vaults and the (rawBalance / balance) ratio is outside the bounds
if (address(state.vault0) != address(0)) {
(state.reserve0, state.rawBalance0) = _updateRawBalanceIfNeeded(
key.currency0,
state.vault0,
state.rawBalance0,
state.reserve0,
state.minRawTokenRatio0,
state.maxRawTokenRatio0,
state.targetRawTokenRatio0
);
}
if (address(state.vault1) != address(0)) {
(state.reserve1, state.rawBalance1) = _updateRawBalanceIfNeeded(
key.currency1,
state.vault1,
state.rawBalance1,
state.reserve1,
state.minRawTokenRatio1,
state.maxRawTokenRatio1,
state.targetRawTokenRatio1
);
}
// update state
s.poolState[poolId].rawBalance0 = state.rawBalance0;
s.poolState[poolId].rawBalance1 = state.rawBalance1;
if (address(state.vault0) != address(0) && initialReserve0 != state.reserve0) {
s.reserve0[poolId] = state.reserve0;
}
if (address(state.vault1) != address(0) && initialReserve1 != state.reserve1) {
s.reserve1[poolId] = state.reserve1;
}
}
/// @inheritdoc IBunniHub
function hookSetIdleBalance(PoolKey calldata key, IdleBalance newIdleBalance) external notPaused(5) {
if (msg.sender != address(key.hooks)) revert BunniHub__Unauthorized();
s.idleBalance[key.toId()] = newIdleBalance;
}
/// @inheritdoc IBunniHub
function lockForRebalance(PoolKey calldata key) external notPaused(6) {
if (address(_getBunniTokenOfPool(key.toId())) == address(0)) revert BunniHub__BunniTokenNotInitialized();
if (msg.sender != address(key.hooks)) revert BunniHub__Unauthorized();
_nonReentrantBefore();
}
/// @inheritdoc IBunniHub
function unlockForRebalance(PoolKey calldata key) external notPaused(7) {
if (address(_getBunniTokenOfPool(key.toId())) == address(0)) revert BunniHub__BunniTokenNotInitialized();
if (msg.sender != address(key.hooks)) revert BunniHub__Unauthorized();
_nonReentrantAfter();
}
receive() external payable {}
/// -----------------------------------------------------------------------
/// Owner functions
/// -----------------------------------------------------------------------
/// @inheritdoc IBunniHub
function setReferralRewardRecipient(address newReferralRewardRecipient) external onlyOwner {
s.referralRewardRecipient = newReferralRewardRecipient;
emit SetReferralRewardRecipient(newReferralRewardRecipient);
}
/// @inheritdoc IBunniHub
function setPauser(address guy, bool status) external onlyOwner {
s.isPauser[guy] = status;
emit SetPauser(guy, status);
}
/// @inheritdoc IBunniHub
function setPauseFlags(uint8 pauseFlags) external {
// only owner or pauser can set pause flags
if (msg.sender != owner() && !s.isPauser[msg.sender]) revert BunniHub__Unauthorized();
s.pauseFlags = pauseFlags;
emit SetPauseFlags(pauseFlags);
}
/// @inheritdoc IBunniHub
function burnPauseFuse() external onlyOwner {
s.unpauseFuse = true; // all functions are permanently unpaused
emit BurnPauseFuse();
}
/// -----------------------------------------------------------------------
/// View functions
/// -----------------------------------------------------------------------
/// @inheritdoc IBunniHub
function poolState(PoolId poolId) external view returns (PoolState memory) {
return getPoolState(s, poolId);
}
/// @inheritdoc IBunniHub
function poolParams(PoolId poolId) external view returns (PoolState memory) {
return getPoolParams(s.poolState[poolId].immutableParamsPointer);
}
/// @inheritdoc IBunniHub
function bunniTokenOfPool(PoolId poolId) external view returns (IBunniToken) {
return _getBunniTokenOfPool(poolId);
}
/// @inheritdoc IBunniHub
function hookParams(PoolId poolId) external view returns (bytes memory) {
return _getHookParams(poolId);
}
/// @inheritdoc IBunniHub
function poolBalances(PoolId poolId) external view returns (uint256 balance0, uint256 balance1) {
PoolState memory state = getPoolState(s, poolId);
balance0 = state.rawBalance0 + getReservesInUnderlying(state.reserve0, state.vault0);
balance1 = state.rawBalance1 + getReservesInUnderlying(state.reserve1, state.vault1);
}
/// @inheritdoc IBunniHub
function idleBalance(PoolId poolId) external view returns (IdleBalance) {
return s.idleBalance[poolId];
}
/// @inheritdoc IBunniHub
function nonce(bytes32 bunniSubspace) external view override returns (uint24) {
return s.nonce[bunniSubspace];
}
/// @inheritdoc IBunniHub
function poolIdOfBunniToken(IBunniToken bunniToken) external view override returns (PoolId) {
return s.poolIdOfBunniToken[bunniToken];
}
/// @inheritdoc IBunniHub
function poolInitData() external view returns (bytes memory) {
return INIT_DATA_TSLOT.tBytes().get();
}
/// @inheritdoc IBunniHub
function getReferralRewardRecipient() external view returns (address) {
return s.referralRewardRecipient;
}
/// @inheritdoc IBunniHub
function isPauser(address guy) external view returns (bool) {
return s.isPauser[guy];
}
/// @inheritdoc IBunniHub
function getPauseStatus() external view returns (uint8 pauseFlags, bool unpauseFuse) {
return (s.pauseFlags, s.unpauseFuse);
}
/// -----------------------------------------------------------------------
/// Uniswap callback
/// -----------------------------------------------------------------------
enum UnlockCallbackType {
DEPOSIT,
WITHDRAW
}
struct DepositCallbackInputData {
address user;
PoolKey poolKey;
uint256 msgValue;
uint256 rawAmount0;
uint256 rawAmount1;
}
struct WithdrawCallbackInputData {
address user;
PoolKey poolKey;
uint256 rawAmount0;
uint256 rawAmount1;
}
/// @inheritdoc IUnlockCallback
function unlockCallback(bytes calldata data) external override returns (bytes memory) {
// verify sender
if (msg.sender != address(poolManager)) revert BunniHub__Unauthorized();
// decode input
(UnlockCallbackType t, bytes memory callbackData) = abi.decode(data, (UnlockCallbackType, bytes));
// redirect to respective callback
if (t == UnlockCallbackType.DEPOSIT) {
return _depositUnlockCallback(abi.decode(callbackData, (DepositCallbackInputData)));
} else if (t == UnlockCallbackType.WITHDRAW) {
_withdrawUnlockCallback(abi.decode(callbackData, (WithdrawCallbackInputData)));
}
// fallback
return bytes("");
}
function _depositUnlockCallback(DepositCallbackInputData memory data) internal returns (bytes memory) {
(address msgSender, PoolKey memory key, uint256 msgValue, uint256 rawAmount0, uint256 rawAmount1) =
(data.user, data.poolKey, data.msgValue, data.rawAmount0, data.rawAmount1);
PoolId poolId = key.toId();
uint256 paid0;
uint256 paid1;
if (rawAmount0 != 0) {
poolManager.sync(key.currency0);
// transfer tokens to poolManager
if (key.currency0.isAddressZero()) {
if (msgValue < rawAmount0) revert BunniHub__MsgValueInsufficient();
paid0 = poolManager.settle{value: rawAmount0}();
} else {
Currency.unwrap(key.currency0).excessivelySafeTransferFrom2(msgSender, address(poolManager), rawAmount0);
paid0 = poolManager.settle();
}
poolManager.mint(address(this), key.currency0.toId(), paid0);
s.poolState[poolId].rawBalance0 += paid0;
}
if (rawAmount1 != 0) {
poolManager.sync(key.currency1);
// transfer tokens to poolManager
if (key.currency1.isAddressZero()) {
if (msgValue < rawAmount1) revert BunniHub__MsgValueInsufficient();
paid1 = poolManager.settle{value: rawAmount1}();
} else {
Currency.unwrap(key.currency1).excessivelySafeTransferFrom2(msgSender, address(poolManager), rawAmount1);
paid1 = poolManager.settle();
}
poolManager.mint(address(this), key.currency1.toId(), paid1);
s.poolState[poolId].rawBalance1 += paid1;
}
return abi.encode(paid0, paid1);
}
function _withdrawUnlockCallback(WithdrawCallbackInputData memory data) internal {
(address recipient, PoolKey memory key, uint256 rawAmount0, uint256 rawAmount1) =
(data.user, data.poolKey, data.rawAmount0, data.rawAmount1);
PoolId poolId = key.toId();
if (rawAmount0 != 0) {
s.poolState[poolId].rawBalance0 -= rawAmount0;
poolManager.burn(address(this), key.currency0.toId(), rawAmount0);
poolManager.take(key.currency0, recipient, rawAmount0);
}
if (rawAmount1 != 0) {
s.poolState[poolId].rawBalance1 -= rawAmount1;
poolManager.burn(address(this), key.currency1.toId(), rawAmount1);
poolManager.take(key.currency1, recipient, rawAmount1);
}
}
/// -----------------------------------------------------------------------
/// Internal utilities
/// -----------------------------------------------------------------------
/// @dev Deposits/withdraws tokens from a vault via claim tokens.
/// @param rawBalanceChange The amount to deposit/withdraw. Positive for withdraw, negative for deposit.
/// @param currency The currency to deposit/withdraw.
/// @param vault The vault to deposit/withdraw from.
/// @return reserveChange The change in reserves. Positive for deposit, negative for withdraw.
/// @return actualRawBalanceChange The actual amount of raw tokens deposited/withdrawn. Positive for withdraw, negative for deposit.
function _updateVaultReserveViaClaimTokens(int256 rawBalanceChange, Currency currency, ERC4626 vault)
internal
returns (int256 reserveChange, int256 actualRawBalanceChange)
{
uint256 absAmount = FixedPointMathLib.abs(rawBalanceChange);
if (rawBalanceChange < 0) {
uint256 maxDepositAmount = vault.maxDeposit(address(this));
// if poolManager doesn't have enough tokens or we're trying to deposit more than the vault accepts
// then we only deposit what we can
// we're only maintaining the raw balance ratio so it's fine to deposit less than requested
uint256 poolManagerReserve = currency.balanceOf(address(poolManager));
absAmount = FixedPointMathLib.min(FixedPointMathLib.min(absAmount, maxDepositAmount), poolManagerReserve);
// burn claim tokens from this
poolManager.burn(address(this), currency.toId(), absAmount);
// take tokens from poolManager
poolManager.take(currency, address(this), absAmount);
// deposit tokens into vault
IERC20 token;
if (currency.isAddressZero()) {
// wrap ETH
weth.deposit{value: absAmount}();
token = IERC20(address(weth));
} else {
token = IERC20(Currency.unwrap(currency));
}
address(token).safeApproveWithRetry(address(vault), absAmount);
reserveChange = vault.deposit(absAmount, address(this)).toInt256();
// it's safe to use absAmount here since at worst the vault.deposit() call pulled less token
// than requested
actualRawBalanceChange = -absAmount.toInt256();
// revoke token approval to vault if necessary
if (token.allowance(address(this), address(vault)) != 0) {
address(token).safeApprove(address(vault), 0);
}
} else if (rawBalanceChange > 0) {
// sync poolManager balance before transferring assets to it
poolManager.sync(currency);
uint256 settleMsgValue;
if (currency.isAddressZero()) {
// withdraw WETH from vault to address(this)
reserveChange = -vault.withdraw(absAmount, address(this), address(this)).toInt256();
// burn WETH for ETH
weth.withdraw(absAmount);
// transfer ETH to poolManager
settleMsgValue = absAmount;
} else {
// normal ERC20
// withdraw tokens to poolManager
reserveChange = -vault.withdraw(absAmount, address(poolManager), address(this)).toInt256();
}
// settle with poolManager
// check actual settled amount to prevent malicious vaults from giving us less than we asked for
uint256 settleAmount = poolManager.settle{value: settleMsgValue}();
actualRawBalanceChange = settleAmount.toInt256();
// mint claim tokens to this
poolManager.mint(address(this), currency.toId(), settleAmount);
}
}
/// @dev Uses the reserve to update the raw balance so that the (rawBalance / balance) ratio is within bounds.
function _updateRawBalanceIfNeeded(
Currency currency,
ERC4626 vault,
uint256 rawBalance,
uint256 reserve,
uint256 minRatio,
uint256 maxRatio,
uint256 targetRatio
) internal returns (uint256 newReserve, uint256 newRawBalance) {
uint256 balance = rawBalance + getReservesInUnderlying(reserve, vault);
uint256 minRawBalance = balance.mulDiv(minRatio, RAW_TOKEN_RATIO_BASE);
uint256 maxRawBalance = balance.mulDiv(maxRatio, RAW_TOKEN_RATIO_BASE);
if (rawBalance < minRawBalance || rawBalance > maxRawBalance) {
uint256 targetRawBalance = balance.mulDiv(targetRatio, RAW_TOKEN_RATIO_BASE);
(int256 reserveChange, int256 rawBalanceChange) =
_updateVaultReserveViaClaimTokens(targetRawBalance.toInt256() - rawBalance.toInt256(), currency, vault);
newReserve = _updateBalance(reserve, reserveChange);
newRawBalance = _updateBalance(rawBalance, rawBalanceChange);
} else {
(newReserve, newRawBalance) = (reserve, rawBalance);
}
}
function _getBunniTokenOfPool(PoolId poolId) internal view returns (IBunniToken bunniToken) {
address ptr = s.poolState[poolId].immutableParamsPointer;
if (ptr == address(0)) return IBunniToken(address(0));
bytes memory rawValue = ptr.read({start: 20, end: 40});
bunniToken = IBunniToken(address(bytes20(rawValue)));
}
function _getHookParams(PoolId poolId) internal view returns (bytes memory result) {
address ptr = s.poolState[poolId].immutableParamsPointer;
if (ptr == address(0)) return bytes("");
result = ptr.read({start: 156});
}
function _updateBalance(uint256 balance, int256 delta) internal pure returns (uint256) {
return (balance.toInt256() + delta).toUint256();
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {ISignatureTransfer} from "./ISignatureTransfer.sol";
import {IAllowanceTransfer} from "./IAllowanceTransfer.sol";
/// @notice Permit2 handles signature-based transfers in SignatureTransfer and allowance-based transfers in AllowanceTransfer.
/// @dev Users must approve Permit2 before calling any of the transfer functions.
interface IPermit2 is ISignatureTransfer, IAllowanceTransfer {
// IPermit2 unifies the two interfaces so users have maximal flexibility with their approval.
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {SafeCast} from "../libraries/SafeCast.sol";
/// @dev Two `int128` values packed into a single `int256` where the upper 128 bits represent the amount0
/// and the lower 128 bits represent the amount1.
type BalanceDelta is int256;
using {add as +, sub as -, eq as ==, neq as !=} for BalanceDelta global;
using BalanceDeltaLibrary for BalanceDelta global;
using SafeCast for int256;
function toBalanceDelta(int128 _amount0, int128 _amount1) pure returns (BalanceDelta balanceDelta) {
assembly ("memory-safe") {
balanceDelta := or(shl(128, _amount0), and(sub(shl(128, 1), 1), _amount1))
}
}
function add(BalanceDelta a, BalanceDelta b) pure returns (BalanceDelta) {
int256 res0;
int256 res1;
assembly ("memory-safe") {
let a0 := sar(128, a)
let a1 := signextend(15, a)
let b0 := sar(128, b)
let b1 := signextend(15, b)
res0 := add(a0, b0)
res1 := add(a1, b1)
}
return toBalanceDelta(res0.toInt128(), res1.toInt128());
}
function sub(BalanceDelta a, BalanceDelta b) pure returns (BalanceDelta) {
int256 res0;
int256 res1;
assembly ("memory-safe") {
let a0 := sar(128, a)
let a1 := signextend(15, a)
let b0 := sar(128, b)
let b1 := signextend(15, b)
res0 := sub(a0, b0)
res1 := sub(a1, b1)
}
return toBalanceDelta(res0.toInt128(), res1.toInt128());
}
function eq(BalanceDelta a, BalanceDelta b) pure returns (bool) {
return BalanceDelta.unwrap(a) == BalanceDelta.unwrap(b);
}
function neq(BalanceDelta a, BalanceDelta b) pure returns (bool) {
return BalanceDelta.unwrap(a) != BalanceDelta.unwrap(b);
}
/// @notice Library for getting the amount0 and amount1 deltas from the BalanceDelta type
library BalanceDeltaLibrary {
/// @notice A BalanceDelta of 0
BalanceDelta public constant ZERO_DELTA = BalanceDelta.wrap(0);
function amount0(BalanceDelta balanceDelta) internal pure returns (int128 _amount0) {
assembly ("memory-safe") {
_amount0 := sar(128, balanceDelta)
}
}
function amount1(BalanceDelta balanceDelta) internal pure returns (int128 _amount1) {
assembly ("memory-safe") {
_amount1 := signextend(15, balanceDelta)
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {PoolKey} from "./PoolKey.sol";
type PoolId is bytes32;
/// @notice Library for computing the ID of a pool
library PoolIdLibrary {
/// @notice Returns value equal to keccak256(abi.encode(poolKey))
function toId(PoolKey memory poolKey) internal pure returns (PoolId poolId) {
assembly ("memory-safe") {
// 0xa0 represents the total size of the poolKey struct (5 slots of 32 bytes)
poolId := keccak256(poolKey, 0xa0)
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {IERC20Minimal} from "../interfaces/external/IERC20Minimal.sol";
import {CustomRevert} from "../libraries/CustomRevert.sol";
type Currency is address;
using {greaterThan as >, lessThan as <, greaterThanOrEqualTo as >=, equals as ==} for Currency global;
using CurrencyLibrary for Currency global;
function equals(Currency currency, Currency other) pure returns (bool) {
return Currency.unwrap(currency) == Currency.unwrap(other);
}
function greaterThan(Currency currency, Currency other) pure returns (bool) {
return Currency.unwrap(currency) > Currency.unwrap(other);
}
function lessThan(Currency currency, Currency other) pure returns (bool) {
return Currency.unwrap(currency) < Currency.unwrap(other);
}
function greaterThanOrEqualTo(Currency currency, Currency other) pure returns (bool) {
return Currency.unwrap(currency) >= Currency.unwrap(other);
}
/// @title CurrencyLibrary
/// @dev This library allows for transferring and holding native tokens and ERC20 tokens
library CurrencyLibrary {
/// @notice Additional context for ERC-7751 wrapped error when a native transfer fails
error NativeTransferFailed();
/// @notice Additional context for ERC-7751 wrapped error when an ERC20 transfer fails
error ERC20TransferFailed();
/// @notice A constant to represent the native currency
Currency public constant ADDRESS_ZERO = Currency.wrap(address(0));
function transfer(Currency currency, address to, uint256 amount) internal {
// altered from https://github.com/transmissions11/solmate/blob/44a9963d4c78111f77caa0e65d677b8b46d6f2e6/src/utils/SafeTransferLib.sol
// modified custom error selectors
bool success;
if (currency.isAddressZero()) {
assembly ("memory-safe") {
// Transfer the ETH and revert if it fails.
success := call(gas(), to, amount, 0, 0, 0, 0)
}
// revert with NativeTransferFailed, containing the bubbled up error as an argument
if (!success) {
CustomRevert.bubbleUpAndRevertWith(to, bytes4(0), NativeTransferFailed.selector);
}
} else {
assembly ("memory-safe") {
// Get a pointer to some free memory.
let fmp := mload(0x40)
// Write the abi-encoded calldata into memory, beginning with the function selector.
mstore(fmp, 0xa9059cbb00000000000000000000000000000000000000000000000000000000)
mstore(add(fmp, 4), and(to, 0xffffffffffffffffffffffffffffffffffffffff)) // Append and mask the "to" argument.
mstore(add(fmp, 36), amount) // Append the "amount" argument. Masking not required as it's a full 32 byte type.
success :=
and(
// Set success to whether the call reverted, if not we check it either
// returned exactly 1 (can't just be non-zero data), or had no return data.
or(and(eq(mload(0), 1), gt(returndatasize(), 31)), iszero(returndatasize())),
// We use 68 because the length of our calldata totals up like so: 4 + 32 * 2.
// We use 0 and 32 to copy up to 32 bytes of return data into the scratch space.
// Counterintuitively, this call must be positioned second to the or() call in the
// surrounding and() call or else returndatasize() will be zero during the computation.
call(gas(), currency, 0, fmp, 68, 0, 32)
)
// Now clean the memory we used
mstore(fmp, 0) // 4 byte `selector` and 28 bytes of `to` were stored here
mstore(add(fmp, 0x20), 0) // 4 bytes of `to` and 28 bytes of `amount` were stored here
mstore(add(fmp, 0x40), 0) // 4 bytes of `amount` were stored here
}
// revert with ERC20TransferFailed, containing the bubbled up error as an argument
if (!success) {
CustomRevert.bubbleUpAndRevertWith(
Currency.unwrap(currency), IERC20Minimal.transfer.selector, ERC20TransferFailed.selector
);
}
}
}
function balanceOfSelf(Currency currency) internal view returns (uint256) {
if (currency.isAddressZero()) {
return address(this).balance;
} else {
return IERC20Minimal(Currency.unwrap(currency)).balanceOf(address(this));
}
}
function balanceOf(Currency currency, address owner) internal view returns (uint256) {
if (currency.isAddressZero()) {
return owner.balance;
} else {
return IERC20Minimal(Currency.unwrap(currency)).balanceOf(owner);
}
}
function isAddressZero(Currency currency) internal pure returns (bool) {
return Currency.unwrap(currency) == Currency.unwrap(ADDRESS_ZERO);
}
function toId(Currency currency) internal pure returns (uint256) {
return uint160(Currency.unwrap(currency));
}
// If the upper 12 bytes are non-zero, they will be zero-ed out
// Therefore, fromId() and toId() are not inverses of each other
function fromId(uint256 id) internal pure returns (Currency) {
return Currency.wrap(address(uint160(id)));
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.24;
import {Currency} from "../types/Currency.sol";
import {PoolKey} from "../types/PoolKey.sol";
import {IHooks} from "./IHooks.sol";
import {IERC6909Claims} from "./external/IERC6909Claims.sol";
import {IProtocolFees} from "./IProtocolFees.sol";
import {BalanceDelta} from "../types/BalanceDelta.sol";
import {PoolId} from "../types/PoolId.sol";
import {IExtsload} from "./IExtsload.sol";
import {IExttload} from "./IExttload.sol";
/// @notice Interface for the PoolManager
interface IPoolManager is IProtocolFees, IERC6909Claims, IExtsload, IExttload {
/// @notice Thrown when a currency is not netted out after the contract is unlocked
error CurrencyNotSettled();
/// @notice Thrown when trying to interact with a non-initialized pool
error PoolNotInitialized();
/// @notice Thrown when unlock is called, but the contract is already unlocked
error AlreadyUnlocked();
/// @notice Thrown when a function is called that requires the contract to be unlocked, but it is not
error ManagerLocked();
/// @notice Pools are limited to type(int16).max tickSpacing in #initialize, to prevent overflow
error TickSpacingTooLarge(int24 tickSpacing);
/// @notice Pools must have a positive non-zero tickSpacing passed to #initialize
error TickSpacingTooSmall(int24 tickSpacing);
/// @notice PoolKey must have currencies where address(currency0) < address(currency1)
error CurrenciesOutOfOrderOrEqual(address currency0, address currency1);
/// @notice Thrown when a call to updateDynamicLPFee is made by an address that is not the hook,
/// or on a pool that does not have a dynamic swap fee.
error UnauthorizedDynamicLPFeeUpdate();
/// @notice Thrown when trying to swap amount of 0
error SwapAmountCannotBeZero();
///@notice Thrown when native currency is passed to a non native settlement
error NonzeroNativeValue();
/// @notice Thrown when `clear` is called with an amount that is not exactly equal to the open currency delta.
error MustClearExactPositiveDelta();
/// @notice Emitted when a new pool is initialized
/// @param id The abi encoded hash of the pool key struct for the new pool
/// @param currency0 The first currency of the pool by address sort order
/// @param currency1 The second currency of the pool by address sort order
/// @param fee The fee collected upon every swap in the pool, denominated in hundredths of a bip
/// @param tickSpacing The minimum number of ticks between initialized ticks
/// @param hooks The hooks contract address for the pool, or address(0) if none
/// @param sqrtPriceX96 The price of the pool on initialization
/// @param tick The initial tick of the pool corresponding to the initialized price
event Initialize(
PoolId indexed id,
Currency indexed currency0,
Currency indexed currency1,
uint24 fee,
int24 tickSpacing,
IHooks hooks,
uint160 sqrtPriceX96,
int24 tick
);
/// @notice Emitted when a liquidity position is modified
/// @param id The abi encoded hash of the pool key struct for the pool that was modified
/// @param sender The address that modified the pool
/// @param tickLower The lower tick of the position
/// @param tickUpper The upper tick of the position
/// @param liquidityDelta The amount of liquidity that was added or removed
/// @param salt The extra data to make positions unique
event ModifyLiquidity(
PoolId indexed id, address indexed sender, int24 tickLower, int24 tickUpper, int256 liquidityDelta, bytes32 salt
);
/// @notice Emitted for swaps between currency0 and currency1
/// @param id The abi encoded hash of the pool key struct for the pool that was modified
/// @param sender The address that initiated the swap call, and that received the callback
/// @param amount0 The delta of the currency0 balance of the pool
/// @param amount1 The delta of the currency1 balance of the pool
/// @param sqrtPriceX96 The sqrt(price) of the pool after the swap, as a Q64.96
/// @param liquidity The liquidity of the pool after the swap
/// @param tick The log base 1.0001 of the price of the pool after the swap
/// @param fee The swap fee in hundredths of a bip
event Swap(
PoolId indexed id,
address indexed sender,
int128 amount0,
int128 amount1,
uint160 sqrtPriceX96,
uint128 liquidity,
int24 tick,
uint24 fee
);
/// @notice Emitted for donations
/// @param id The abi encoded hash of the pool key struct for the pool that was donated to
/// @param sender The address that initiated the donate call
/// @param amount0 The amount donated in currency0
/// @param amount1 The amount donated in currency1
event Donate(PoolId indexed id, address indexed sender, uint256 amount0, uint256 amount1);
/// @notice All interactions on the contract that account deltas require unlocking. A caller that calls `unlock` must implement
/// `IUnlockCallback(msg.sender).unlockCallback(data)`, where they interact with the remaining functions on this contract.
/// @dev The only functions callable without an unlocking are `initialize` and `updateDynamicLPFee`
/// @param data Any data to pass to the callback, via `IUnlockCallback(msg.sender).unlockCallback(data)`
/// @return The data returned by the call to `IUnlockCallback(msg.sender).unlockCallback(data)`
function unlock(bytes calldata data) external returns (bytes memory);
/// @notice Initialize the state for a given pool ID
/// @dev A swap fee totaling MAX_SWAP_FEE (100%) makes exact output swaps impossible since the input is entirely consumed by the fee
/// @param key The pool key for the pool to initialize
/// @param sqrtPriceX96 The initial square root price
/// @return tick The initial tick of the pool
function initialize(PoolKey memory key, uint160 sqrtPriceX96) external returns (int24 tick);
struct ModifyLiquidityParams {
// the lower and upper tick of the position
int24 tickLower;
int24 tickUpper;
// how to modify the liquidity
int256 liquidityDelta;
// a value to set if you want unique liquidity positions at the same range
bytes32 salt;
}
/// @notice Modify the liquidity for the given pool
/// @dev Poke by calling with a zero liquidityDelta
/// @param key The pool to modify liquidity in
/// @param params The parameters for modifying the liquidity
/// @param hookData The data to pass through to the add/removeLiquidity hooks
/// @return callerDelta The balance delta of the caller of modifyLiquidity. This is the total of both principal, fee deltas, and hook deltas if applicable
/// @return feesAccrued The balance delta of the fees generated in the liquidity range. Returned for informational purposes
/// @dev Note that feesAccrued can be artificially inflated by a malicious actor and integrators should be careful using the value
/// For pools with a single liquidity position, actors can donate to themselves to inflate feeGrowthGlobal (and consequently feesAccrued)
/// atomically donating and collecting fees in the same unlockCallback may make the inflated value more extreme
function modifyLiquidity(PoolKey memory key, ModifyLiquidityParams memory params, bytes calldata hookData)
external
returns (BalanceDelta callerDelta, BalanceDelta feesAccrued);
struct SwapParams {
/// Whether to swap token0 for token1 or vice versa
bool zeroForOne;
/// The desired input amount if negative (exactIn), or the desired output amount if positive (exactOut)
int256 amountSpecified;
/// The sqrt price at which, if reached, the swap will stop executing
uint160 sqrtPriceLimitX96;
}
/// @notice Swap against the given pool
/// @param key The pool to swap in
/// @param params The parameters for swapping
/// @param hookData The data to pass through to the swap hooks
/// @return swapDelta The balance delta of the address swapping
/// @dev Swapping on low liquidity pools may cause unexpected swap amounts when liquidity available is less than amountSpecified.
/// Additionally note that if interacting with hooks that have the BEFORE_SWAP_RETURNS_DELTA_FLAG or AFTER_SWAP_RETURNS_DELTA_FLAG
/// the hook may alter the swap input/output. Integrators should perform checks on the returned swapDelta.
function swap(PoolKey memory key, SwapParams memory params, bytes calldata hookData)
external
returns (BalanceDelta swapDelta);
/// @notice Donate the given currency amounts to the in-range liquidity providers of a pool
/// @dev Calls to donate can be frontrun adding just-in-time liquidity, with the aim of receiving a portion donated funds.
/// Donors should keep this in mind when designing donation mechanisms.
/// @dev This function donates to in-range LPs at slot0.tick. In certain edge-cases of the swap algorithm, the `sqrtPrice` of
/// a pool can be at the lower boundary of tick `n`, but the `slot0.tick` of the pool is already `n - 1`. In this case a call to
/// `donate` would donate to tick `n - 1` (slot0.tick) not tick `n` (getTickAtSqrtPrice(slot0.sqrtPriceX96)).
/// Read the comments in `Pool.swap()` for more information about this.
/// @param key The key of the pool to donate to
/// @param amount0 The amount of currency0 to donate
/// @param amount1 The amount of currency1 to donate
/// @param hookData The data to pass through to the donate hooks
/// @return BalanceDelta The delta of the caller after the donate
function donate(PoolKey memory key, uint256 amount0, uint256 amount1, bytes calldata hookData)
external
returns (BalanceDelta);
/// @notice Writes the current ERC20 balance of the specified currency to transient storage
/// This is used to checkpoint balances for the manager and derive deltas for the caller.
/// @dev This MUST be called before any ERC20 tokens are sent into the contract, but can be skipped
/// for native tokens because the amount to settle is determined by the sent value.
/// However, if an ERC20 token has been synced and not settled, and the caller instead wants to settle
/// native funds, this function can be called with the native currency to then be able to settle the native currency
function sync(Currency currency) external;
/// @notice Called by the user to net out some value owed to the user
/// @dev Will revert if the requested amount is not available, consider using `mint` instead
/// @dev Can also be used as a mechanism for free flash loans
/// @param currency The currency to withdraw from the pool manager
/// @param to The address to withdraw to
/// @param amount The amount of currency to withdraw
function take(Currency currency, address to, uint256 amount) external;
/// @notice Called by the user to pay what is owed
/// @return paid The amount of currency settled
function settle() external payable returns (uint256 paid);
/// @notice Called by the user to pay on behalf of another address
/// @param recipient The address to credit for the payment
/// @return paid The amount of currency settled
function settleFor(address recipient) external payable returns (uint256 paid);
/// @notice WARNING - Any currency that is cleared, will be non-retrievable, and locked in the contract permanently.
/// A call to clear will zero out a positive balance WITHOUT a corresponding transfer.
/// @dev This could be used to clear a balance that is considered dust.
/// Additionally, the amount must be the exact positive balance. This is to enforce that the caller is aware of the amount being cleared.
function clear(Currency currency, uint256 amount) external;
/// @notice Called by the user to move value into ERC6909 balance
/// @param to The address to mint the tokens to
/// @param id The currency address to mint to ERC6909s, as a uint256
/// @param amount The amount of currency to mint
/// @dev The id is converted to a uint160 to correspond to a currency address
/// If the upper 12 bytes are not 0, they will be 0-ed out
function mint(address to, uint256 id, uint256 amount) external;
/// @notice Called by the user to move value from ERC6909 balance
/// @param from The address to burn the tokens from
/// @param id The currency address to burn from ERC6909s, as a uint256
/// @param amount The amount of currency to burn
/// @dev The id is converted to a uint160 to correspond to a currency address
/// If the upper 12 bytes are not 0, they will be 0-ed out
function burn(address from, uint256 id, uint256 amount) external;
/// @notice Updates the pools lp fees for the a pool that has enabled dynamic lp fees.
/// @dev A swap fee totaling MAX_SWAP_FEE (100%) makes exact output swaps impossible since the input is entirely consumed by the fee
/// @param key The key of the pool to update dynamic LP fees for
/// @param newDynamicLPFee The new dynamic pool LP fee
function updateDynamicLPFee(PoolKey memory key, uint24 newDynamicLPFee) external;
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/// @notice Interface for the callback executed when an address unlocks the pool manager
interface IUnlockCallback {
/// @notice Called by the pool manager on `msg.sender` when the manager is unlocked
/// @param data The data that was passed to the call to unlock
/// @return Any data that you want to be returned from the unlock call
function unlockCallback(bytes calldata data) external returns (bytes memory);
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.24;
import {IPoolManager} from "../interfaces/IPoolManager.sol";
import {Currency} from "../types/Currency.sol";
import {CurrencyReserves} from "./CurrencyReserves.sol";
import {NonzeroDeltaCount} from "./NonzeroDeltaCount.sol";
import {Lock} from "./Lock.sol";
/// @notice A helper library to provide state getters that use exttload
library TransientStateLibrary {
/// @notice returns the reserves for the synced currency
/// @param manager The pool manager contract.
/// @return uint256 The reserves of the currency.
/// @dev returns 0 if the reserves are not synced or value is 0.
/// Checks the synced currency to only return valid reserve values (after a sync and before a settle).
function getSyncedReserves(IPoolManager manager) internal view returns (uint256) {
if (getSyncedCurrency(manager).isAddressZero()) return 0;
return uint256(manager.exttload(CurrencyReserves.RESERVES_OF_SLOT));
}
function getSyncedCurrency(IPoolManager manager) internal view returns (Currency) {
return Currency.wrap(address(uint160(uint256(manager.exttload(CurrencyReserves.CURRENCY_SLOT)))));
}
/// @notice Returns the number of nonzero deltas open on the PoolManager that must be zeroed out before the contract is locked
function getNonzeroDeltaCount(IPoolManager manager) internal view returns (uint256) {
return uint256(manager.exttload(NonzeroDeltaCount.NONZERO_DELTA_COUNT_SLOT));
}
/// @notice Get the current delta for a caller in the given currency
/// @param target The credited account address
/// @param currency The currency for which to lookup the delta
function currencyDelta(IPoolManager manager, address target, Currency currency) internal view returns (int256) {
bytes32 key;
assembly ("memory-safe") {
mstore(0, and(target, 0xffffffffffffffffffffffffffffffffffffffff))
mstore(32, and(currency, 0xffffffffffffffffffffffffffffffffffffffff))
key := keccak256(0, 64)
}
return int256(uint256(manager.exttload(key)));
}
/// @notice Returns whether the contract is unlocked or not
function isUnlocked(IPoolManager manager) internal view returns (bool) {
return manager.exttload(Lock.IS_UNLOCKED_SLOT) != 0x0;
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
import {ERC20} from "./ERC20.sol";
/// @notice Simple Wrapped Ether implementation.
/// @author Solady (https://github.com/vectorized/solady/blob/main/src/tokens/WETH.sol)
/// @author Solmate (https://github.com/transmissions11/solmate/blob/main/src/tokens/WETH.sol)
/// @author Inspired by WETH9 (https://github.com/dapphub/ds-weth/blob/master/src/weth9.sol)
contract WETH is ERC20 {
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CUSTOM ERRORS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev The ETH transfer has failed.
error ETHTransferFailed();
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* ERC20 METADATA */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns the name of the token.
function name() public view virtual override returns (string memory) {
return "Wrapped Ether";
}
/// @dev Returns the symbol of the token.
function symbol() public view virtual override returns (string memory) {
return "WETH";
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* WETH */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Deposits `amount` ETH of the caller and mints `amount` WETH to the caller.
function deposit() public payable virtual {
_mint(msg.sender, msg.value);
}
/// @dev Burns `amount` WETH of the caller and sends `amount` ETH to the caller.
function withdraw(uint256 amount) public virtual {
_burn(msg.sender, amount);
/// @solidity memory-safe-assembly
assembly {
// Transfer the ETH and check if it succeeded or not.
if iszero(call(gas(), caller(), amount, codesize(), 0x00, codesize(), 0x00)) {
mstore(0x00, 0xb12d13eb) // `ETHTransferFailed()`.
revert(0x1c, 0x04)
}
}
}
/// @dev Equivalent to `deposit()`.
receive() external payable virtual {
deposit();
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
/// @notice Read and write to persistent storage at a fraction of the cost.
/// @author Solady (https://github.com/vectorized/solady/blob/main/src/utils/SSTORE2.sol)
/// @author Saw-mon-and-Natalie (https://github.com/Saw-mon-and-Natalie)
/// @author Modified from Solmate (https://github.com/transmissions11/solmate/blob/main/src/utils/SSTORE2.sol)
/// @author Modified from 0xSequence (https://github.com/0xSequence/sstore2/blob/master/contracts/SSTORE2.sol)
/// @author Modified from SSTORE3 (https://github.com/Philogy/sstore3)
library SSTORE2 {
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CONSTANTS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev The proxy initialization code.
uint256 private constant _CREATE3_PROXY_INITCODE = 0x67363d3d37363d34f03d5260086018f3;
/// @dev Hash of the `_CREATE3_PROXY_INITCODE`.
/// Equivalent to `keccak256(abi.encodePacked(hex"67363d3d37363d34f03d5260086018f3"))`.
bytes32 internal constant CREATE3_PROXY_INITCODE_HASH =
0x21c35dbe1b344a2488cf3321d6ce542f8e9f305544ff09e4993a62319a497c1f;
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CUSTOM ERRORS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Unable to deploy the storage contract.
error DeploymentFailed();
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* WRITE LOGIC */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Writes `data` into the bytecode of a storage contract and returns its address.
function write(bytes memory data) internal returns (address pointer) {
/// @solidity memory-safe-assembly
assembly {
let n := mload(data) // Let `l` be `n + 1`. +1 as we prefix a STOP opcode.
/**
* ---------------------------------------------------+
* Opcode | Mnemonic | Stack | Memory |
* ---------------------------------------------------|
* 61 l | PUSH2 l | l | |
* 80 | DUP1 | l l | |
* 60 0xa | PUSH1 0xa | 0xa l l | |
* 3D | RETURNDATASIZE | 0 0xa l l | |
* 39 | CODECOPY | l | [0..l): code |
* 3D | RETURNDATASIZE | 0 l | [0..l): code |
* F3 | RETURN | | [0..l): code |
* 00 | STOP | | |
* ---------------------------------------------------+
* @dev Prefix the bytecode with a STOP opcode to ensure it cannot be called.
* Also PUSH2 is used since max contract size cap is 24,576 bytes which is less than 2 ** 16.
*/
// Do a out-of-gas revert if `n + 1` is more than 2 bytes.
mstore(add(data, gt(n, 0xfffe)), add(0xfe61000180600a3d393df300, shl(0x40, n)))
// Deploy a new contract with the generated creation code.
pointer := create(0, add(data, 0x15), add(n, 0xb))
if iszero(pointer) {
mstore(0x00, 0x30116425) // `DeploymentFailed()`.
revert(0x1c, 0x04)
}
mstore(data, n) // Restore the length of `data`.
}
}
/// @dev Writes `data` into the bytecode of a storage contract with `salt`
/// and returns its normal CREATE2 deterministic address.
function writeCounterfactual(bytes memory data, bytes32 salt)
internal
returns (address pointer)
{
/// @solidity memory-safe-assembly
assembly {
let n := mload(data)
// Do a out-of-gas revert if `n + 1` is more than 2 bytes.
mstore(add(data, gt(n, 0xfffe)), add(0xfe61000180600a3d393df300, shl(0x40, n)))
// Deploy a new contract with the generated creation code.
pointer := create2(0, add(data, 0x15), add(n, 0xb), salt)
if iszero(pointer) {
mstore(0x00, 0x30116425) // `DeploymentFailed()`.
revert(0x1c, 0x04)
}
mstore(data, n) // Restore the length of `data`.
}
}
/// @dev Writes `data` into the bytecode of a storage contract and returns its address.
/// This uses the so-called "CREATE3" workflow,
/// which means that `pointer` is agnostic to `data, and only depends on `salt`.
function writeDeterministic(bytes memory data, bytes32 salt)
internal
returns (address pointer)
{
/// @solidity memory-safe-assembly
assembly {
let n := mload(data)
mstore(0x00, _CREATE3_PROXY_INITCODE) // Store the `_PROXY_INITCODE`.
let proxy := create2(0, 0x10, 0x10, salt)
if iszero(proxy) {
mstore(0x00, 0x30116425) // `DeploymentFailed()`.
revert(0x1c, 0x04)
}
mstore(0x14, proxy) // Store the proxy's address.
// 0xd6 = 0xc0 (short RLP prefix) + 0x16 (length of: 0x94 ++ proxy ++ 0x01).
// 0x94 = 0x80 + 0x14 (0x14 = the length of an address, 20 bytes, in hex).
mstore(0x00, 0xd694)
mstore8(0x34, 0x01) // Nonce of the proxy contract (1).
pointer := keccak256(0x1e, 0x17)
// Do a out-of-gas revert if `n + 1` is more than 2 bytes.
mstore(add(data, gt(n, 0xfffe)), add(0xfe61000180600a3d393df300, shl(0x40, n)))
if iszero(
mul( // The arguments of `mul` are evaluated last to first.
extcodesize(pointer),
call(gas(), proxy, 0, add(data, 0x15), add(n, 0xb), codesize(), 0x00)
)
) {
mstore(0x00, 0x30116425) // `DeploymentFailed()`.
revert(0x1c, 0x04)
}
mstore(data, n) // Restore the length of `data`.
}
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* ADDRESS CALCULATIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns the initialization code hash of the storage contract for `data`.
/// Used for mining vanity addresses with create2crunch.
function initCodeHash(bytes memory data) internal pure returns (bytes32 hash) {
/// @solidity memory-safe-assembly
assembly {
let n := mload(data)
// Do a out-of-gas revert if `n + 1` is more than 2 bytes.
returndatacopy(returndatasize(), returndatasize(), gt(n, 0xfffe))
mstore(data, add(0x61000180600a3d393df300, shl(0x40, n)))
hash := keccak256(add(data, 0x15), add(n, 0xb))
mstore(data, n) // Restore the length of `data`.
}
}
/// @dev Equivalent to `predictCounterfactualAddress(data, salt, address(this))`
function predictCounterfactualAddress(bytes memory data, bytes32 salt)
internal
view
returns (address pointer)
{
pointer = predictCounterfactualAddress(data, salt, address(this));
}
/// @dev Returns the CREATE2 address of the storage contract for `data`
/// deployed with `salt` by `deployer`.
/// Note: The returned result has dirty upper 96 bits. Please clean if used in assembly.
function predictCounterfactualAddress(bytes memory data, bytes32 salt, address deployer)
internal
pure
returns (address predicted)
{
bytes32 hash = initCodeHash(data);
/// @solidity memory-safe-assembly
assembly {
// Compute and store the bytecode hash.
mstore8(0x00, 0xff) // Write the prefix.
mstore(0x35, hash)
mstore(0x01, shl(96, deployer))
mstore(0x15, salt)
predicted := keccak256(0x00, 0x55)
// Restore the part of the free memory pointer that has been overwritten.
mstore(0x35, 0)
}
}
/// @dev Equivalent to `predictDeterministicAddress(salt, address(this))`.
function predictDeterministicAddress(bytes32 salt) internal view returns (address pointer) {
pointer = predictDeterministicAddress(salt, address(this));
}
/// @dev Returns the "CREATE3" deterministic address for `salt` with `deployer`.
function predictDeterministicAddress(bytes32 salt, address deployer)
internal
pure
returns (address pointer)
{
/// @solidity memory-safe-assembly
assembly {
let m := mload(0x40) // Cache the free memory pointer.
mstore(0x00, deployer) // Store `deployer`.
mstore8(0x0b, 0xff) // Store the prefix.
mstore(0x20, salt) // Store the salt.
mstore(0x40, CREATE3_PROXY_INITCODE_HASH) // Store the bytecode hash.
mstore(0x14, keccak256(0x0b, 0x55)) // Store the proxy's address.
mstore(0x40, m) // Restore the free memory pointer.
// 0xd6 = 0xc0 (short RLP prefix) + 0x16 (length of: 0x94 ++ proxy ++ 0x01).
// 0x94 = 0x80 + 0x14 (0x14 = the length of an address, 20 bytes, in hex).
mstore(0x00, 0xd694)
mstore8(0x34, 0x01) // Nonce of the proxy contract (1).
pointer := keccak256(0x1e, 0x17)
}
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* READ LOGIC */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Equivalent to `read(pointer, 0, 2 ** 256 - 1)`.
function read(address pointer) internal view returns (bytes memory data) {
/// @solidity memory-safe-assembly
assembly {
data := mload(0x40)
let n := and(0xffffffffff, sub(extcodesize(pointer), 0x01))
extcodecopy(pointer, add(data, 0x1f), 0x00, add(n, 0x21))
mstore(data, n) // Store the length.
mstore(0x40, add(n, add(data, 0x40))) // Allocate memory.
}
}
/// @dev Equivalent to `read(pointer, start, 2 ** 256 - 1)`.
function read(address pointer, uint256 start) internal view returns (bytes memory data) {
/// @solidity memory-safe-assembly
assembly {
data := mload(0x40)
let n := and(0xffffffffff, sub(extcodesize(pointer), 0x01))
let l := sub(n, and(0xffffff, mul(lt(start, n), start)))
extcodecopy(pointer, add(data, 0x1f), start, add(l, 0x21))
mstore(data, mul(sub(n, start), lt(start, n))) // Store the length.
mstore(0x40, add(data, add(0x40, mload(data)))) // Allocate memory.
}
}
/// @dev Returns a slice of the data on `pointer` from `start` to `end`.
/// `start` and `end` will be clamped to the range `[0, args.length]`.
/// The `pointer` MUST be deployed via the SSTORE2 write functions.
/// Otherwise, the behavior is undefined.
/// Out-of-gas reverts if `pointer` does not have any code.
function read(address pointer, uint256 start, uint256 end)
internal
view
returns (bytes memory data)
{
/// @solidity memory-safe-assembly
assembly {
data := mload(0x40)
if iszero(lt(end, 0xffff)) { end := 0xffff }
let d := mul(sub(end, start), lt(start, end))
extcodecopy(pointer, add(data, 0x1f), start, add(d, 0x01))
if iszero(and(0xff, mload(add(data, d)))) {
let n := sub(extcodesize(pointer), 0x01)
returndatacopy(returndatasize(), returndatasize(), shr(40, n))
d := mul(gt(n, start), sub(d, mul(gt(end, n), sub(end, n))))
}
mstore(data, d) // Store the length.
mstore(add(add(data, 0x20), d), 0) // Zeroize the slot after the bytes.
mstore(0x40, add(add(data, 0x40), d)) // Allocate memory.
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
/// @notice Safe integer casting library that reverts on overflow.
/// @author Solady (https://github.com/vectorized/solady/blob/main/src/utils/SafeCastLib.sol)
/// @author Modified from OpenZeppelin (https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/utils/math/SafeCast.sol)
/// @dev Optimized for runtime gas for very high number of optimizer runs (i.e. >= 1000000).
library SafeCastLib {
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CUSTOM ERRORS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Unable to cast to the target type due to overflow.
error Overflow();
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* UNSIGNED INTEGER SAFE CASTING OPERATIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Casts `x` to a uint8. Reverts on overflow.
function toUint8(uint256 x) internal pure returns (uint8) {
if (x >= 1 << 8) _revertOverflow();
return uint8(x);
}
/// @dev Casts `x` to a uint16. Reverts on overflow.
function toUint16(uint256 x) internal pure returns (uint16) {
if (x >= 1 << 16) _revertOverflow();
return uint16(x);
}
/// @dev Casts `x` to a uint24. Reverts on overflow.
function toUint24(uint256 x) internal pure returns (uint24) {
if (x >= 1 << 24) _revertOverflow();
return uint24(x);
}
/// @dev Casts `x` to a uint32. Reverts on overflow.
function toUint32(uint256 x) internal pure returns (uint32) {
if (x >= 1 << 32) _revertOverflow();
return uint32(x);
}
/// @dev Casts `x` to a uint40. Reverts on overflow.
function toUint40(uint256 x) internal pure returns (uint40) {
if (x >= 1 << 40) _revertOverflow();
return uint40(x);
}
/// @dev Casts `x` to a uint48. Reverts on overflow.
function toUint48(uint256 x) internal pure returns (uint48) {
if (x >= 1 << 48) _revertOverflow();
return uint48(x);
}
/// @dev Casts `x` to a uint56. Reverts on overflow.
function toUint56(uint256 x) internal pure returns (uint56) {
if (x >= 1 << 56) _revertOverflow();
return uint56(x);
}
/// @dev Casts `x` to a uint64. Reverts on overflow.
function toUint64(uint256 x) internal pure returns (uint64) {
if (x >= 1 << 64) _revertOverflow();
return uint64(x);
}
/// @dev Casts `x` to a uint72. Reverts on overflow.
function toUint72(uint256 x) internal pure returns (uint72) {
if (x >= 1 << 72) _revertOverflow();
return uint72(x);
}
/// @dev Casts `x` to a uint80. Reverts on overflow.
function toUint80(uint256 x) internal pure returns (uint80) {
if (x >= 1 << 80) _revertOverflow();
return uint80(x);
}
/// @dev Casts `x` to a uint88. Reverts on overflow.
function toUint88(uint256 x) internal pure returns (uint88) {
if (x >= 1 << 88) _revertOverflow();
return uint88(x);
}
/// @dev Casts `x` to a uint96. Reverts on overflow.
function toUint96(uint256 x) internal pure returns (uint96) {
if (x >= 1 << 96) _revertOverflow();
return uint96(x);
}
/// @dev Casts `x` to a uint104. Reverts on overflow.
function toUint104(uint256 x) internal pure returns (uint104) {
if (x >= 1 << 104) _revertOverflow();
return uint104(x);
}
/// @dev Casts `x` to a uint112. Reverts on overflow.
function toUint112(uint256 x) internal pure returns (uint112) {
if (x >= 1 << 112) _revertOverflow();
return uint112(x);
}
/// @dev Casts `x` to a uint120. Reverts on overflow.
function toUint120(uint256 x) internal pure returns (uint120) {
if (x >= 1 << 120) _revertOverflow();
return uint120(x);
}
/// @dev Casts `x` to a uint128. Reverts on overflow.
function toUint128(uint256 x) internal pure returns (uint128) {
if (x >= 1 << 128) _revertOverflow();
return uint128(x);
}
/// @dev Casts `x` to a uint136. Reverts on overflow.
function toUint136(uint256 x) internal pure returns (uint136) {
if (x >= 1 << 136) _revertOverflow();
return uint136(x);
}
/// @dev Casts `x` to a uint144. Reverts on overflow.
function toUint144(uint256 x) internal pure returns (uint144) {
if (x >= 1 << 144) _revertOverflow();
return uint144(x);
}
/// @dev Casts `x` to a uint152. Reverts on overflow.
function toUint152(uint256 x) internal pure returns (uint152) {
if (x >= 1 << 152) _revertOverflow();
return uint152(x);
}
/// @dev Casts `x` to a uint160. Reverts on overflow.
function toUint160(uint256 x) internal pure returns (uint160) {
if (x >= 1 << 160) _revertOverflow();
return uint160(x);
}
/// @dev Casts `x` to a uint168. Reverts on overflow.
function toUint168(uint256 x) internal pure returns (uint168) {
if (x >= 1 << 168) _revertOverflow();
return uint168(x);
}
/// @dev Casts `x` to a uint176. Reverts on overflow.
function toUint176(uint256 x) internal pure returns (uint176) {
if (x >= 1 << 176) _revertOverflow();
return uint176(x);
}
/// @dev Casts `x` to a uint184. Reverts on overflow.
function toUint184(uint256 x) internal pure returns (uint184) {
if (x >= 1 << 184) _revertOverflow();
return uint184(x);
}
/// @dev Casts `x` to a uint192. Reverts on overflow.
function toUint192(uint256 x) internal pure returns (uint192) {
if (x >= 1 << 192) _revertOverflow();
return uint192(x);
}
/// @dev Casts `x` to a uint200. Reverts on overflow.
function toUint200(uint256 x) internal pure returns (uint200) {
if (x >= 1 << 200) _revertOverflow();
return uint200(x);
}
/// @dev Casts `x` to a uint208. Reverts on overflow.
function toUint208(uint256 x) internal pure returns (uint208) {
if (x >= 1 << 208) _revertOverflow();
return uint208(x);
}
/// @dev Casts `x` to a uint216. Reverts on overflow.
function toUint216(uint256 x) internal pure returns (uint216) {
if (x >= 1 << 216) _revertOverflow();
return uint216(x);
}
/// @dev Casts `x` to a uint224. Reverts on overflow.
function toUint224(uint256 x) internal pure returns (uint224) {
if (x >= 1 << 224) _revertOverflow();
return uint224(x);
}
/// @dev Casts `x` to a uint232. Reverts on overflow.
function toUint232(uint256 x) internal pure returns (uint232) {
if (x >= 1 << 232) _revertOverflow();
return uint232(x);
}
/// @dev Casts `x` to a uint240. Reverts on overflow.
function toUint240(uint256 x) internal pure returns (uint240) {
if (x >= 1 << 240) _revertOverflow();
return uint240(x);
}
/// @dev Casts `x` to a uint248. Reverts on overflow.
function toUint248(uint256 x) internal pure returns (uint248) {
if (x >= 1 << 248) _revertOverflow();
return uint248(x);
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* SIGNED INTEGER SAFE CASTING OPERATIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Casts `x` to a int8. Reverts on overflow.
function toInt8(int256 x) internal pure returns (int8) {
unchecked {
if (((1 << 7) + uint256(x)) >> 8 == uint256(0)) return int8(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int16. Reverts on overflow.
function toInt16(int256 x) internal pure returns (int16) {
unchecked {
if (((1 << 15) + uint256(x)) >> 16 == uint256(0)) return int16(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int24. Reverts on overflow.
function toInt24(int256 x) internal pure returns (int24) {
unchecked {
if (((1 << 23) + uint256(x)) >> 24 == uint256(0)) return int24(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int32. Reverts on overflow.
function toInt32(int256 x) internal pure returns (int32) {
unchecked {
if (((1 << 31) + uint256(x)) >> 32 == uint256(0)) return int32(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int40. Reverts on overflow.
function toInt40(int256 x) internal pure returns (int40) {
unchecked {
if (((1 << 39) + uint256(x)) >> 40 == uint256(0)) return int40(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int48. Reverts on overflow.
function toInt48(int256 x) internal pure returns (int48) {
unchecked {
if (((1 << 47) + uint256(x)) >> 48 == uint256(0)) return int48(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int56. Reverts on overflow.
function toInt56(int256 x) internal pure returns (int56) {
unchecked {
if (((1 << 55) + uint256(x)) >> 56 == uint256(0)) return int56(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int64. Reverts on overflow.
function toInt64(int256 x) internal pure returns (int64) {
unchecked {
if (((1 << 63) + uint256(x)) >> 64 == uint256(0)) return int64(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int72. Reverts on overflow.
function toInt72(int256 x) internal pure returns (int72) {
unchecked {
if (((1 << 71) + uint256(x)) >> 72 == uint256(0)) return int72(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int80. Reverts on overflow.
function toInt80(int256 x) internal pure returns (int80) {
unchecked {
if (((1 << 79) + uint256(x)) >> 80 == uint256(0)) return int80(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int88. Reverts on overflow.
function toInt88(int256 x) internal pure returns (int88) {
unchecked {
if (((1 << 87) + uint256(x)) >> 88 == uint256(0)) return int88(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int96. Reverts on overflow.
function toInt96(int256 x) internal pure returns (int96) {
unchecked {
if (((1 << 95) + uint256(x)) >> 96 == uint256(0)) return int96(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int104. Reverts on overflow.
function toInt104(int256 x) internal pure returns (int104) {
unchecked {
if (((1 << 103) + uint256(x)) >> 104 == uint256(0)) return int104(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int112. Reverts on overflow.
function toInt112(int256 x) internal pure returns (int112) {
unchecked {
if (((1 << 111) + uint256(x)) >> 112 == uint256(0)) return int112(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int120. Reverts on overflow.
function toInt120(int256 x) internal pure returns (int120) {
unchecked {
if (((1 << 119) + uint256(x)) >> 120 == uint256(0)) return int120(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int128. Reverts on overflow.
function toInt128(int256 x) internal pure returns (int128) {
unchecked {
if (((1 << 127) + uint256(x)) >> 128 == uint256(0)) return int128(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int136. Reverts on overflow.
function toInt136(int256 x) internal pure returns (int136) {
unchecked {
if (((1 << 135) + uint256(x)) >> 136 == uint256(0)) return int136(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int144. Reverts on overflow.
function toInt144(int256 x) internal pure returns (int144) {
unchecked {
if (((1 << 143) + uint256(x)) >> 144 == uint256(0)) return int144(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int152. Reverts on overflow.
function toInt152(int256 x) internal pure returns (int152) {
unchecked {
if (((1 << 151) + uint256(x)) >> 152 == uint256(0)) return int152(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int160. Reverts on overflow.
function toInt160(int256 x) internal pure returns (int160) {
unchecked {
if (((1 << 159) + uint256(x)) >> 160 == uint256(0)) return int160(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int168. Reverts on overflow.
function toInt168(int256 x) internal pure returns (int168) {
unchecked {
if (((1 << 167) + uint256(x)) >> 168 == uint256(0)) return int168(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int176. Reverts on overflow.
function toInt176(int256 x) internal pure returns (int176) {
unchecked {
if (((1 << 175) + uint256(x)) >> 176 == uint256(0)) return int176(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int184. Reverts on overflow.
function toInt184(int256 x) internal pure returns (int184) {
unchecked {
if (((1 << 183) + uint256(x)) >> 184 == uint256(0)) return int184(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int192. Reverts on overflow.
function toInt192(int256 x) internal pure returns (int192) {
unchecked {
if (((1 << 191) + uint256(x)) >> 192 == uint256(0)) return int192(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int200. Reverts on overflow.
function toInt200(int256 x) internal pure returns (int200) {
unchecked {
if (((1 << 199) + uint256(x)) >> 200 == uint256(0)) return int200(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int208. Reverts on overflow.
function toInt208(int256 x) internal pure returns (int208) {
unchecked {
if (((1 << 207) + uint256(x)) >> 208 == uint256(0)) return int208(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int216. Reverts on overflow.
function toInt216(int256 x) internal pure returns (int216) {
unchecked {
if (((1 << 215) + uint256(x)) >> 216 == uint256(0)) return int216(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int224. Reverts on overflow.
function toInt224(int256 x) internal pure returns (int224) {
unchecked {
if (((1 << 223) + uint256(x)) >> 224 == uint256(0)) return int224(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int232. Reverts on overflow.
function toInt232(int256 x) internal pure returns (int232) {
unchecked {
if (((1 << 231) + uint256(x)) >> 232 == uint256(0)) return int232(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int240. Reverts on overflow.
function toInt240(int256 x) internal pure returns (int240) {
unchecked {
if (((1 << 239) + uint256(x)) >> 240 == uint256(0)) return int240(x);
_revertOverflow();
}
}
/// @dev Casts `x` to a int248. Reverts on overflow.
function toInt248(int256 x) internal pure returns (int248) {
unchecked {
if (((1 << 247) + uint256(x)) >> 248 == uint256(0)) return int248(x);
_revertOverflow();
}
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* OTHER SAFE CASTING OPERATIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Casts `x` to a int8. Reverts on overflow.
function toInt8(uint256 x) internal pure returns (int8) {
if (x >= 1 << 7) _revertOverflow();
return int8(int256(x));
}
/// @dev Casts `x` to a int16. Reverts on overflow.
function toInt16(uint256 x) internal pure returns (int16) {
if (x >= 1 << 15) _revertOverflow();
return int16(int256(x));
}
/// @dev Casts `x` to a int24. Reverts on overflow.
function toInt24(uint256 x) internal pure returns (int24) {
if (x >= 1 << 23) _revertOverflow();
return int24(int256(x));
}
/// @dev Casts `x` to a int32. Reverts on overflow.
function toInt32(uint256 x) internal pure returns (int32) {
if (x >= 1 << 31) _revertOverflow();
return int32(int256(x));
}
/// @dev Casts `x` to a int40. Reverts on overflow.
function toInt40(uint256 x) internal pure returns (int40) {
if (x >= 1 << 39) _revertOverflow();
return int40(int256(x));
}
/// @dev Casts `x` to a int48. Reverts on overflow.
function toInt48(uint256 x) internal pure returns (int48) {
if (x >= 1 << 47) _revertOverflow();
return int48(int256(x));
}
/// @dev Casts `x` to a int56. Reverts on overflow.
function toInt56(uint256 x) internal pure returns (int56) {
if (x >= 1 << 55) _revertOverflow();
return int56(int256(x));
}
/// @dev Casts `x` to a int64. Reverts on overflow.
function toInt64(uint256 x) internal pure returns (int64) {
if (x >= 1 << 63) _revertOverflow();
return int64(int256(x));
}
/// @dev Casts `x` to a int72. Reverts on overflow.
function toInt72(uint256 x) internal pure returns (int72) {
if (x >= 1 << 71) _revertOverflow();
return int72(int256(x));
}
/// @dev Casts `x` to a int80. Reverts on overflow.
function toInt80(uint256 x) internal pure returns (int80) {
if (x >= 1 << 79) _revertOverflow();
return int80(int256(x));
}
/// @dev Casts `x` to a int88. Reverts on overflow.
function toInt88(uint256 x) internal pure returns (int88) {
if (x >= 1 << 87) _revertOverflow();
return int88(int256(x));
}
/// @dev Casts `x` to a int96. Reverts on overflow.
function toInt96(uint256 x) internal pure returns (int96) {
if (x >= 1 << 95) _revertOverflow();
return int96(int256(x));
}
/// @dev Casts `x` to a int104. Reverts on overflow.
function toInt104(uint256 x) internal pure returns (int104) {
if (x >= 1 << 103) _revertOverflow();
return int104(int256(x));
}
/// @dev Casts `x` to a int112. Reverts on overflow.
function toInt112(uint256 x) internal pure returns (int112) {
if (x >= 1 << 111) _revertOverflow();
return int112(int256(x));
}
/// @dev Casts `x` to a int120. Reverts on overflow.
function toInt120(uint256 x) internal pure returns (int120) {
if (x >= 1 << 119) _revertOverflow();
return int120(int256(x));
}
/// @dev Casts `x` to a int128. Reverts on overflow.
function toInt128(uint256 x) internal pure returns (int128) {
if (x >= 1 << 127) _revertOverflow();
return int128(int256(x));
}
/// @dev Casts `x` to a int136. Reverts on overflow.
function toInt136(uint256 x) internal pure returns (int136) {
if (x >= 1 << 135) _revertOverflow();
return int136(int256(x));
}
/// @dev Casts `x` to a int144. Reverts on overflow.
function toInt144(uint256 x) internal pure returns (int144) {
if (x >= 1 << 143) _revertOverflow();
return int144(int256(x));
}
/// @dev Casts `x` to a int152. Reverts on overflow.
function toInt152(uint256 x) internal pure returns (int152) {
if (x >= 1 << 151) _revertOverflow();
return int152(int256(x));
}
/// @dev Casts `x` to a int160. Reverts on overflow.
function toInt160(uint256 x) internal pure returns (int160) {
if (x >= 1 << 159) _revertOverflow();
return int160(int256(x));
}
/// @dev Casts `x` to a int168. Reverts on overflow.
function toInt168(uint256 x) internal pure returns (int168) {
if (x >= 1 << 167) _revertOverflow();
return int168(int256(x));
}
/// @dev Casts `x` to a int176. Reverts on overflow.
function toInt176(uint256 x) internal pure returns (int176) {
if (x >= 1 << 175) _revertOverflow();
return int176(int256(x));
}
/// @dev Casts `x` to a int184. Reverts on overflow.
function toInt184(uint256 x) internal pure returns (int184) {
if (x >= 1 << 183) _revertOverflow();
return int184(int256(x));
}
/// @dev Casts `x` to a int192. Reverts on overflow.
function toInt192(uint256 x) internal pure returns (int192) {
if (x >= 1 << 191) _revertOverflow();
return int192(int256(x));
}
/// @dev Casts `x` to a int200. Reverts on overflow.
function toInt200(uint256 x) internal pure returns (int200) {
if (x >= 1 << 199) _revertOverflow();
return int200(int256(x));
}
/// @dev Casts `x` to a int208. Reverts on overflow.
function toInt208(uint256 x) internal pure returns (int208) {
if (x >= 1 << 207) _revertOverflow();
return int208(int256(x));
}
/// @dev Casts `x` to a int216. Reverts on overflow.
function toInt216(uint256 x) internal pure returns (int216) {
if (x >= 1 << 215) _revertOverflow();
return int216(int256(x));
}
/// @dev Casts `x` to a int224. Reverts on overflow.
function toInt224(uint256 x) internal pure returns (int224) {
if (x >= 1 << 223) _revertOverflow();
return int224(int256(x));
}
/// @dev Casts `x` to a int232. Reverts on overflow.
function toInt232(uint256 x) internal pure returns (int232) {
if (x >= 1 << 231) _revertOverflow();
return int232(int256(x));
}
/// @dev Casts `x` to a int240. Reverts on overflow.
function toInt240(uint256 x) internal pure returns (int240) {
if (x >= 1 << 239) _revertOverflow();
return int240(int256(x));
}
/// @dev Casts `x` to a int248. Reverts on overflow.
function toInt248(uint256 x) internal pure returns (int248) {
if (x >= 1 << 247) _revertOverflow();
return int248(int256(x));
}
/// @dev Casts `x` to a int256. Reverts on overflow.
function toInt256(uint256 x) internal pure returns (int256) {
if (int256(x) >= 0) return int256(x);
_revertOverflow();
}
/// @dev Casts `x` to a uint256. Reverts on overflow.
function toUint256(int256 x) internal pure returns (uint256) {
if (x >= 0) return uint256(x);
_revertOverflow();
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* PRIVATE HELPERS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
function _revertOverflow() private pure {
/// @solidity memory-safe-assembly
assembly {
// Store the function selector of `Overflow()`.
mstore(0x00, 0x35278d12)
// Revert with (offset, size).
revert(0x1c, 0x04)
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
/// @notice Library for transient storage operations.
/// @author Solady (https://github.com/vectorized/solady/blob/main/src/utils/LibTransient.sol)
/// @author Modified from Transient Goodies by Philogy (https://github.com/Philogy/transient-goodies/blob/main/src/TransientBytesLib.sol)
///
/// @dev Note: The functions postfixed with `Compat` will only use transient storage on L1.
/// L2s are super cheap anyway.
/// For best safety, always clear the storage after use.
library LibTransient {
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* STRUCTS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Pointer struct to a `uint256` in transient storage.
struct TUint256 {
uint256 _spacer;
}
/// @dev Pointer struct to a `int256` in transient storage.
struct TInt256 {
uint256 _spacer;
}
/// @dev Pointer struct to a `bytes32` in transient storage.
struct TBytes32 {
uint256 _spacer;
}
/// @dev Pointer struct to a `address` in transient storage.
struct TAddress {
uint256 _spacer;
}
/// @dev Pointer struct to a `bool` in transient storage.
struct TBool {
uint256 _spacer;
}
/// @dev Pointer struct to a `bytes` in transient storage.
struct TBytes {
uint256 _spacer;
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CONSTANTS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev The storage slot seed for converting a transient slot to a storage slot.
/// `bytes4(keccak256("_LIB_TRANSIENT_COMPAT_SLOT_SEED"))`.
uint256 private constant _LIB_TRANSIENT_COMPAT_SLOT_SEED = 0x5a0b45f2;
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* UINT256 OPERATIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns a pointer to a `uint256` in transient storage.
function tUint256(bytes32 tSlot) internal pure returns (TUint256 storage ptr) {
/// @solidity memory-safe-assembly
assembly {
ptr.slot := tSlot
}
}
/// @dev Returns a pointer to a `uint256` in transient storage.
function tUint256(uint256 tSlot) internal pure returns (TUint256 storage ptr) {
/// @solidity memory-safe-assembly
assembly {
ptr.slot := tSlot
}
}
/// @dev Returns the value at transient `ptr`.
function get(TUint256 storage ptr) internal view returns (uint256 result) {
/// @solidity memory-safe-assembly
assembly {
result := tload(ptr.slot)
}
}
/// @dev Returns the value at transient `ptr`.
function getCompat(TUint256 storage ptr) internal view returns (uint256 result) {
result = block.chainid == 1 ? get(ptr) : _compat(ptr)._spacer;
}
/// @dev Sets the value at transient `ptr`.
function set(TUint256 storage ptr, uint256 value) internal {
/// @solidity memory-safe-assembly
assembly {
tstore(ptr.slot, value)
}
}
/// @dev Sets the value at transient `ptr`.
function setCompat(TUint256 storage ptr, uint256 value) internal {
if (block.chainid == 1) return set(ptr, value);
_compat(ptr)._spacer = value;
}
/// @dev Clears the value at transient `ptr`.
function clear(TUint256 storage ptr) internal {
/// @solidity memory-safe-assembly
assembly {
tstore(ptr.slot, 0)
}
}
/// @dev Clears the value at transient `ptr`.
function clearCompat(TUint256 storage ptr) internal {
if (block.chainid == 1) return clear(ptr);
_compat(ptr)._spacer = 0;
}
/// @dev Increments the value at transient `ptr` by 1.
function inc(TUint256 storage ptr) internal returns (uint256 newValue) {
set(ptr, newValue = get(ptr) + 1);
}
/// @dev Increments the value at transient `ptr` by 1.
function incCompat(TUint256 storage ptr) internal returns (uint256 newValue) {
setCompat(ptr, newValue = getCompat(ptr) + 1);
}
/// @dev Increments the value at transient `ptr` by `delta`.
function inc(TUint256 storage ptr, uint256 delta) internal returns (uint256 newValue) {
set(ptr, newValue = get(ptr) + delta);
}
/// @dev Increments the value at transient `ptr` by `delta`.
function incCompat(TUint256 storage ptr, uint256 delta) internal returns (uint256 newValue) {
setCompat(ptr, newValue = getCompat(ptr) + delta);
}
/// @dev Decrements the value at transient `ptr` by 1.
function dec(TUint256 storage ptr) internal returns (uint256 newValue) {
set(ptr, newValue = get(ptr) - 1);
}
/// @dev Decrements the value at transient `ptr` by `delta`.
function decCompat(TUint256 storage ptr) internal returns (uint256 newValue) {
setCompat(ptr, newValue = getCompat(ptr) - 1);
}
/// @dev Decrements the value at transient `ptr` by `delta`.
function dec(TUint256 storage ptr, uint256 delta) internal returns (uint256 newValue) {
set(ptr, newValue = get(ptr) - delta);
}
/// @dev Decrements the value at transient `ptr` by `delta`.
function decCompat(TUint256 storage ptr, uint256 delta) internal returns (uint256 newValue) {
setCompat(ptr, newValue = getCompat(ptr) - delta);
}
/// @dev Increments the value at transient `ptr` by `delta`.
function incSigned(TUint256 storage ptr, int256 delta) internal returns (uint256 newValue) {
/// @solidity memory-safe-assembly
assembly {
let currentValue := tload(ptr.slot)
newValue := add(currentValue, delta)
if iszero(eq(lt(newValue, currentValue), slt(delta, 0))) {
mstore(0x00, 0x4e487b71) // `Panic(uint256)`.
mstore(0x20, 0x11) // Underflow or overflow panic.
revert(0x1c, 0x24)
}
tstore(ptr.slot, newValue)
}
}
/// @dev Increments the value at transient `ptr` by `delta`.
function incSignedCompat(TUint256 storage ptr, int256 delta)
internal
returns (uint256 newValue)
{
if (block.chainid == 1) return incSigned(ptr, delta);
ptr = _compat(ptr);
/// @solidity memory-safe-assembly
assembly {
let currentValue := sload(ptr.slot)
newValue := add(currentValue, delta)
if iszero(eq(lt(newValue, currentValue), slt(delta, 0))) {
mstore(0x00, 0x4e487b71) // `Panic(uint256)`.
mstore(0x20, 0x11) // Underflow or overflow panic.
revert(0x1c, 0x24)
}
sstore(ptr.slot, newValue)
}
}
/// @dev Decrements the value at transient `ptr` by `delta`.
function decSigned(TUint256 storage ptr, int256 delta) internal returns (uint256 newValue) {
/// @solidity memory-safe-assembly
assembly {
let currentValue := tload(ptr.slot)
newValue := sub(currentValue, delta)
if iszero(eq(lt(newValue, currentValue), sgt(delta, 0))) {
mstore(0x00, 0x4e487b71) // `Panic(uint256)`.
mstore(0x20, 0x11) // Underflow or overflow panic.
revert(0x1c, 0x24)
}
tstore(ptr.slot, newValue)
}
}
/// @dev Decrements the value at transient `ptr` by `delta`.
function decSignedCompat(TUint256 storage ptr, int256 delta)
internal
returns (uint256 newValue)
{
if (block.chainid == 1) return decSigned(ptr, delta);
ptr = _compat(ptr);
/// @solidity memory-safe-assembly
assembly {
let currentValue := sload(ptr.slot)
newValue := sub(currentValue, delta)
if iszero(eq(lt(newValue, currentValue), sgt(delta, 0))) {
mstore(0x00, 0x4e487b71) // `Panic(uint256)`.
mstore(0x20, 0x11) // Underflow or overflow panic.
revert(0x1c, 0x24)
}
sstore(ptr.slot, newValue)
}
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* INT256 OPERATIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns a pointer to a `int256` in transient storage.
function tInt256(bytes32 tSlot) internal pure returns (TInt256 storage ptr) {
/// @solidity memory-safe-assembly
assembly {
ptr.slot := tSlot
}
}
/// @dev Returns a pointer to a `int256` in transient storage.
function tInt256(uint256 tSlot) internal pure returns (TInt256 storage ptr) {
/// @solidity memory-safe-assembly
assembly {
ptr.slot := tSlot
}
}
/// @dev Returns the value at transient `ptr`.
function get(TInt256 storage ptr) internal view returns (int256 result) {
/// @solidity memory-safe-assembly
assembly {
result := tload(ptr.slot)
}
}
/// @dev Returns the value at transient `ptr`.
function getCompat(TInt256 storage ptr) internal view returns (int256 result) {
result = block.chainid == 1 ? get(ptr) : int256(_compat(ptr)._spacer);
}
/// @dev Sets the value at transient `ptr`.
function set(TInt256 storage ptr, int256 value) internal {
/// @solidity memory-safe-assembly
assembly {
tstore(ptr.slot, value)
}
}
/// @dev Sets the value at transient `ptr`.
function setCompat(TInt256 storage ptr, int256 value) internal {
if (block.chainid == 1) return set(ptr, value);
_compat(ptr)._spacer = uint256(value);
}
/// @dev Clears the value at transient `ptr`.
function clear(TInt256 storage ptr) internal {
/// @solidity memory-safe-assembly
assembly {
tstore(ptr.slot, 0)
}
}
/// @dev Clears the value at transient `ptr`.
function clearCompat(TInt256 storage ptr) internal {
if (block.chainid == 1) return clear(ptr);
_compat(ptr)._spacer = 0;
}
/// @dev Increments the value at transient `ptr` by 1.
function inc(TInt256 storage ptr) internal returns (int256 newValue) {
set(ptr, newValue = get(ptr) + 1);
}
/// @dev Increments the value at transient `ptr` by 1.
function incCompat(TInt256 storage ptr) internal returns (int256 newValue) {
setCompat(ptr, newValue = getCompat(ptr) + 1);
}
/// @dev Increments the value at transient `ptr` by `delta`.
function inc(TInt256 storage ptr, int256 delta) internal returns (int256 newValue) {
set(ptr, newValue = get(ptr) + delta);
}
/// @dev Increments the value at transient `ptr` by `delta`.
function incCompat(TInt256 storage ptr, int256 delta) internal returns (int256 newValue) {
setCompat(ptr, newValue = getCompat(ptr) + delta);
}
/// @dev Decrements the value at transient `ptr` by 1.
function dec(TInt256 storage ptr) internal returns (int256 newValue) {
set(ptr, newValue = get(ptr) - 1);
}
/// @dev Decrements the value at transient `ptr` by 1.
function decCompat(TInt256 storage ptr) internal returns (int256 newValue) {
setCompat(ptr, newValue = getCompat(ptr) - 1);
}
/// @dev Decrements the value at transient `ptr` by `delta`.
function dec(TInt256 storage ptr, int256 delta) internal returns (int256 newValue) {
set(ptr, newValue = get(ptr) - delta);
}
/// @dev Decrements the value at transient `ptr` by `delta`.
function decCompat(TInt256 storage ptr, int256 delta) internal returns (int256 newValue) {
setCompat(ptr, newValue = getCompat(ptr) - delta);
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* BYTES32 OPERATIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns a pointer to a `bytes32` in transient storage.
function tBytes32(bytes32 tSlot) internal pure returns (TBytes32 storage ptr) {
/// @solidity memory-safe-assembly
assembly {
ptr.slot := tSlot
}
}
/// @dev Returns a pointer to a `bytes32` in transient storage.
function tBytes32(uint256 tSlot) internal pure returns (TBytes32 storage ptr) {
/// @solidity memory-safe-assembly
assembly {
ptr.slot := tSlot
}
}
/// @dev Returns the value at transient `ptr`.
function get(TBytes32 storage ptr) internal view returns (bytes32 result) {
/// @solidity memory-safe-assembly
assembly {
result := tload(ptr.slot)
}
}
/// @dev Returns the value at transient `ptr`.
function getCompat(TBytes32 storage ptr) internal view returns (bytes32 result) {
result = block.chainid == 1 ? get(ptr) : bytes32(_compat(ptr)._spacer);
}
/// @dev Sets the value at transient `ptr`.
function set(TBytes32 storage ptr, bytes32 value) internal {
/// @solidity memory-safe-assembly
assembly {
tstore(ptr.slot, value)
}
}
/// @dev Sets the value at transient `ptr`.
function setCompat(TBytes32 storage ptr, bytes32 value) internal {
if (block.chainid == 1) return set(ptr, value);
_compat(ptr)._spacer = uint256(value);
}
/// @dev Clears the value at transient `ptr`.
function clear(TBytes32 storage ptr) internal {
/// @solidity memory-safe-assembly
assembly {
tstore(ptr.slot, 0)
}
}
/// @dev Clears the value at transient `ptr`.
function clearCompat(TBytes32 storage ptr) internal {
if (block.chainid == 1) return clear(ptr);
_compat(ptr)._spacer = 0;
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* ADDRESS OPERATIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns a pointer to a `address` in transient storage.
function tAddress(bytes32 tSlot) internal pure returns (TAddress storage ptr) {
/// @solidity memory-safe-assembly
assembly {
ptr.slot := tSlot
}
}
/// @dev Returns a pointer to a `address` in transient storage.
function tAddress(uint256 tSlot) internal pure returns (TAddress storage ptr) {
/// @solidity memory-safe-assembly
assembly {
ptr.slot := tSlot
}
}
/// @dev Returns the value at transient `ptr`.
function get(TAddress storage ptr) internal view returns (address result) {
/// @solidity memory-safe-assembly
assembly {
result := tload(ptr.slot)
}
}
/// @dev Returns the value at transient `ptr`.
function getCompat(TAddress storage ptr) internal view returns (address result) {
result = block.chainid == 1 ? get(ptr) : address(uint160(_compat(ptr)._spacer));
}
/// @dev Sets the value at transient `ptr`.
function set(TAddress storage ptr, address value) internal {
/// @solidity memory-safe-assembly
assembly {
tstore(ptr.slot, shr(96, shl(96, value)))
}
}
/// @dev Sets the value at transient `ptr`.
function setCompat(TAddress storage ptr, address value) internal {
if (block.chainid == 1) return set(ptr, value);
_compat(ptr)._spacer = uint160(value);
}
/// @dev Clears the value at transient `ptr`.
function clear(TAddress storage ptr) internal {
/// @solidity memory-safe-assembly
assembly {
tstore(ptr.slot, 0)
}
}
/// @dev Clears the value at transient `ptr`.
function clearCompat(TAddress storage ptr) internal {
if (block.chainid == 1) return clear(ptr);
_compat(ptr)._spacer = 0;
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* BOOL OPERATIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns a pointer to a `bool` in transient storage.
function tBool(bytes32 tSlot) internal pure returns (TBool storage ptr) {
/// @solidity memory-safe-assembly
assembly {
ptr.slot := tSlot
}
}
/// @dev Returns a pointer to a `bool` in transient storage.
function tBool(uint256 tSlot) internal pure returns (TBool storage ptr) {
/// @solidity memory-safe-assembly
assembly {
ptr.slot := tSlot
}
}
/// @dev Returns the value at transient `ptr`.
function get(TBool storage ptr) internal view returns (bool result) {
/// @solidity memory-safe-assembly
assembly {
result := tload(ptr.slot)
}
}
/// @dev Returns the value at transient `ptr`.
function getCompat(TBool storage ptr) internal view returns (bool result) {
result = block.chainid == 1 ? get(ptr) : _compat(ptr)._spacer != 0;
}
/// @dev Sets the value at transient `ptr`.
function set(TBool storage ptr, bool value) internal {
/// @solidity memory-safe-assembly
assembly {
tstore(ptr.slot, iszero(iszero(value)))
}
}
/// @dev Sets the value at transient `ptr`.
function setCompat(TBool storage ptr, bool value) internal {
if (block.chainid == 1) return set(ptr, value);
ptr = _compat(ptr);
/// @solidity memory-safe-assembly
assembly {
sstore(ptr.slot, iszero(iszero(value)))
}
}
/// @dev Clears the value at transient `ptr`.
function clear(TBool storage ptr) internal {
/// @solidity memory-safe-assembly
assembly {
tstore(ptr.slot, 0)
}
}
/// @dev Clears the value at transient `ptr`.
function clearCompat(TBool storage ptr) internal {
if (block.chainid == 1) return clear(ptr);
_compat(ptr)._spacer = 0;
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* BYTES OPERATIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns a pointer to a `bytes` in transient storage.
function tBytes(bytes32 tSlot) internal pure returns (TBytes storage ptr) {
/// @solidity memory-safe-assembly
assembly {
ptr.slot := tSlot
}
}
/// @dev Returns a pointer to a `bytes` in transient storage.
function tBytes(uint256 tSlot) internal pure returns (TBytes storage ptr) {
/// @solidity memory-safe-assembly
assembly {
ptr.slot := tSlot
}
}
/// @dev Returns the length of the bytes stored at transient `ptr`.
function length(TBytes storage ptr) internal view returns (uint256 result) {
/// @solidity memory-safe-assembly
assembly {
result := shr(224, tload(ptr.slot))
}
}
/// @dev Returns the length of the bytes stored at transient `ptr`.
function lengthCompat(TBytes storage ptr) internal view returns (uint256 result) {
if (block.chainid == 1) return length(ptr);
ptr = _compat(ptr);
/// @solidity memory-safe-assembly
assembly {
result := shr(224, sload(ptr.slot))
}
}
/// @dev Returns the bytes stored at transient `ptr`.
function get(TBytes storage ptr) internal view returns (bytes memory result) {
/// @solidity memory-safe-assembly
assembly {
result := mload(0x40)
mstore(result, 0x00)
mstore(add(result, 0x1c), tload(ptr.slot)) // Length and first `0x1c` bytes.
let n := mload(result)
let e := add(add(result, 0x20), n)
if iszero(lt(n, 0x1d)) {
mstore(0x00, ptr.slot)
let d := sub(keccak256(0x00, 0x20), result)
for { let o := add(result, 0x3c) } 1 {} {
mstore(o, tload(add(o, d)))
o := add(o, 0x20)
if iszero(lt(o, e)) { break }
}
}
mstore(e, 0) // Zeroize the slot after the string.
mstore(0x40, add(0x20, e)) // Allocate memory.
}
}
/// @dev Returns the bytes stored at transient `ptr`.
function getCompat(TBytes storage ptr) internal view returns (bytes memory result) {
if (block.chainid == 1) return get(ptr);
ptr = _compat(ptr);
/// @solidity memory-safe-assembly
assembly {
result := mload(0x40)
mstore(result, 0x00)
mstore(add(result, 0x1c), sload(ptr.slot)) // Length and first `0x1c` bytes.
let n := mload(result)
let e := add(add(result, 0x20), n)
if iszero(lt(n, 0x1d)) {
mstore(0x00, ptr.slot)
let d := sub(keccak256(0x00, 0x20), result)
for { let o := add(result, 0x3c) } 1 {} {
mstore(o, sload(add(o, d)))
o := add(o, 0x20)
if iszero(lt(o, e)) { break }
}
}
mstore(e, 0) // Zeroize the slot after the string.
mstore(0x40, add(0x20, e)) // Allocate memory.
}
}
/// @dev Sets the value at transient `ptr`.
function set(TBytes storage ptr, bytes memory value) internal {
/// @solidity memory-safe-assembly
assembly {
tstore(ptr.slot, mload(add(value, 0x1c)))
if iszero(lt(mload(value), 0x1d)) {
mstore(0x00, ptr.slot)
let e := add(add(value, 0x20), mload(value))
let d := sub(keccak256(0x00, or(0x20, sub(0, shr(32, mload(value))))), value)
for { let o := add(value, 0x3c) } 1 {} {
tstore(add(o, d), mload(o))
o := add(o, 0x20)
if iszero(lt(o, e)) { break }
}
}
}
}
/// @dev Sets the value at transient `ptr`.
function setCompat(TBytes storage ptr, bytes memory value) internal {
if (block.chainid == 1) return set(ptr, value);
ptr = _compat(ptr);
/// @solidity memory-safe-assembly
assembly {
sstore(ptr.slot, mload(add(value, 0x1c)))
if iszero(lt(mload(value), 0x1d)) {
mstore(0x00, ptr.slot)
let e := add(add(value, 0x20), mload(value))
let d := sub(keccak256(0x00, or(0x20, sub(0, shr(32, mload(value))))), value)
for { let o := add(value, 0x3c) } 1 {} {
sstore(add(o, d), mload(o))
o := add(o, 0x20)
if iszero(lt(o, e)) { break }
}
}
}
}
/// @dev Sets the value at transient `ptr`.
function setCalldata(TBytes storage ptr, bytes calldata value) internal {
/// @solidity memory-safe-assembly
assembly {
tstore(ptr.slot, or(shl(224, value.length), shr(32, calldataload(value.offset))))
if iszero(lt(value.length, 0x1d)) {
mstore(0x00, ptr.slot)
let e := add(value.offset, value.length)
// forgefmt: disable-next-item
let d := add(sub(keccak256(0x00, or(0x20, sub(0, shr(32, value.length)))),
value.offset), 0x20)
for { let o := add(value.offset, 0x1c) } 1 {} {
tstore(add(o, d), calldataload(o))
o := add(o, 0x20)
if iszero(lt(o, e)) { break }
}
}
}
}
/// @dev Sets the value at transient `ptr`.
function setCalldataCompat(TBytes storage ptr, bytes calldata value) internal {
if (block.chainid == 1) return setCalldata(ptr, value);
ptr = _compat(ptr);
/// @solidity memory-safe-assembly
assembly {
sstore(ptr.slot, or(shl(224, value.length), shr(32, calldataload(value.offset))))
if iszero(lt(value.length, 0x1d)) {
mstore(0x00, ptr.slot)
let e := add(value.offset, value.length)
// forgefmt: disable-next-item
let d := add(sub(keccak256(0x00, or(0x20, sub(0, shr(32, value.length)))),
value.offset), 0x20)
for { let o := add(value.offset, 0x1c) } 1 {} {
sstore(add(o, d), calldataload(o))
o := add(o, 0x20)
if iszero(lt(o, e)) { break }
}
}
}
}
/// @dev Clears the value at transient `ptr`.
function clear(TBytes storage ptr) internal {
/// @solidity memory-safe-assembly
assembly {
tstore(ptr.slot, 0)
}
}
/// @dev Clears the value at transient `ptr`.
function clearCompat(TBytes storage ptr) internal {
if (block.chainid == 1) return clear(ptr);
_compat(ptr)._spacer = 0;
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* PRIVATE HELPERS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns a regular storage pointer used for compatibility.
function _compat(TUint256 storage ptr) private pure returns (TUint256 storage c) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x04, _LIB_TRANSIENT_COMPAT_SLOT_SEED)
mstore(0x00, ptr.slot)
c.slot := keccak256(0x00, 0x24)
}
}
/// @dev Returns a regular storage pointer used for compatibility.
function _compat(TInt256 storage ptr) private pure returns (TInt256 storage c) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x04, _LIB_TRANSIENT_COMPAT_SLOT_SEED)
mstore(0x00, ptr.slot)
c.slot := keccak256(0x00, 0x24)
}
}
/// @dev Returns a regular storage pointer used for compatibility.
function _compat(TBytes32 storage ptr) private pure returns (TBytes32 storage c) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x04, _LIB_TRANSIENT_COMPAT_SLOT_SEED)
mstore(0x00, ptr.slot)
c.slot := keccak256(0x00, 0x24)
}
}
/// @dev Returns a regular storage pointer used for compatibility.
function _compat(TAddress storage ptr) private pure returns (TAddress storage c) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x04, _LIB_TRANSIENT_COMPAT_SLOT_SEED)
mstore(0x00, ptr.slot)
c.slot := keccak256(0x00, 0x24)
}
}
/// @dev Returns a regular storage pointer used for compatibility.
function _compat(TBool storage ptr) private pure returns (TBool storage c) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x04, _LIB_TRANSIENT_COMPAT_SLOT_SEED)
mstore(0x00, ptr.slot)
c.slot := keccak256(0x00, 0x24)
}
}
/// @dev Returns a regular storage pointer used for compatibility.
function _compat(TBytes storage ptr) private pure returns (TBytes storage c) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x04, _LIB_TRANSIENT_COMPAT_SLOT_SEED)
mstore(0x00, ptr.slot)
c.slot := keccak256(0x00, 0x24)
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
/// @notice Safe ETH and ERC20 transfer library that gracefully handles missing return values.
/// @author Solady (https://github.com/vectorized/solady/blob/main/src/utils/SafeTransferLib.sol)
/// @author Modified from Solmate (https://github.com/transmissions11/solmate/blob/main/src/utils/SafeTransferLib.sol)
/// @author Permit2 operations from (https://github.com/Uniswap/permit2/blob/main/src/libraries/Permit2Lib.sol)
///
/// @dev Note:
/// - For ETH transfers, please use `forceSafeTransferETH` for DoS protection.
library SafeTransferLib {
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CUSTOM ERRORS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev The ETH transfer has failed.
error ETHTransferFailed();
/// @dev The ERC20 `transferFrom` has failed.
error TransferFromFailed();
/// @dev The ERC20 `transfer` has failed.
error TransferFailed();
/// @dev The ERC20 `approve` has failed.
error ApproveFailed();
/// @dev The ERC20 `totalSupply` query has failed.
error TotalSupplyQueryFailed();
/// @dev The Permit2 operation has failed.
error Permit2Failed();
/// @dev The Permit2 amount must be less than `2**160 - 1`.
error Permit2AmountOverflow();
/// @dev The Permit2 approve operation has failed.
error Permit2ApproveFailed();
/// @dev The Permit2 lockdown operation has failed.
error Permit2LockdownFailed();
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CONSTANTS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Suggested gas stipend for contract receiving ETH that disallows any storage writes.
uint256 internal constant GAS_STIPEND_NO_STORAGE_WRITES = 2300;
/// @dev Suggested gas stipend for contract receiving ETH to perform a few
/// storage reads and writes, but low enough to prevent griefing.
uint256 internal constant GAS_STIPEND_NO_GRIEF = 100000;
/// @dev The unique EIP-712 domain domain separator for the DAI token contract.
bytes32 internal constant DAI_DOMAIN_SEPARATOR =
0xdbb8cf42e1ecb028be3f3dbc922e1d878b963f411dc388ced501601c60f7c6f7;
/// @dev The address for the WETH9 contract on Ethereum mainnet.
address internal constant WETH9 = 0xC02aaA39b223FE8D0A0e5C4F27eAD9083C756Cc2;
/// @dev The canonical Permit2 address.
/// [Github](https://github.com/Uniswap/permit2)
/// [Etherscan](https://etherscan.io/address/0x000000000022D473030F116dDEE9F6B43aC78BA3)
address internal constant PERMIT2 = 0x000000000022D473030F116dDEE9F6B43aC78BA3;
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* ETH OPERATIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
// If the ETH transfer MUST succeed with a reasonable gas budget, use the force variants.
//
// The regular variants:
// - Forwards all remaining gas to the target.
// - Reverts if the target reverts.
// - Reverts if the current contract has insufficient balance.
//
// The force variants:
// - Forwards with an optional gas stipend
// (defaults to `GAS_STIPEND_NO_GRIEF`, which is sufficient for most cases).
// - If the target reverts, or if the gas stipend is exhausted,
// creates a temporary contract to force send the ETH via `SELFDESTRUCT`.
// Future compatible with `SENDALL`: https://eips.ethereum.org/EIPS/eip-4758.
// - Reverts if the current contract has insufficient balance.
//
// The try variants:
// - Forwards with a mandatory gas stipend.
// - Instead of reverting, returns whether the transfer succeeded.
/// @dev Sends `amount` (in wei) ETH to `to`.
function safeTransferETH(address to, uint256 amount) internal {
/// @solidity memory-safe-assembly
assembly {
if iszero(call(gas(), to, amount, codesize(), 0x00, codesize(), 0x00)) {
mstore(0x00, 0xb12d13eb) // `ETHTransferFailed()`.
revert(0x1c, 0x04)
}
}
}
/// @dev Sends all the ETH in the current contract to `to`.
function safeTransferAllETH(address to) internal {
/// @solidity memory-safe-assembly
assembly {
// Transfer all the ETH and check if it succeeded or not.
if iszero(call(gas(), to, selfbalance(), codesize(), 0x00, codesize(), 0x00)) {
mstore(0x00, 0xb12d13eb) // `ETHTransferFailed()`.
revert(0x1c, 0x04)
}
}
}
/// @dev Force sends `amount` (in wei) ETH to `to`, with a `gasStipend`.
function forceSafeTransferETH(address to, uint256 amount, uint256 gasStipend) internal {
/// @solidity memory-safe-assembly
assembly {
if lt(selfbalance(), amount) {
mstore(0x00, 0xb12d13eb) // `ETHTransferFailed()`.
revert(0x1c, 0x04)
}
if iszero(call(gasStipend, to, amount, codesize(), 0x00, codesize(), 0x00)) {
mstore(0x00, to) // Store the address in scratch space.
mstore8(0x0b, 0x73) // Opcode `PUSH20`.
mstore8(0x20, 0xff) // Opcode `SELFDESTRUCT`.
if iszero(create(amount, 0x0b, 0x16)) { revert(codesize(), codesize()) } // For gas estimation.
}
}
}
/// @dev Force sends all the ETH in the current contract to `to`, with a `gasStipend`.
function forceSafeTransferAllETH(address to, uint256 gasStipend) internal {
/// @solidity memory-safe-assembly
assembly {
if iszero(call(gasStipend, to, selfbalance(), codesize(), 0x00, codesize(), 0x00)) {
mstore(0x00, to) // Store the address in scratch space.
mstore8(0x0b, 0x73) // Opcode `PUSH20`.
mstore8(0x20, 0xff) // Opcode `SELFDESTRUCT`.
if iszero(create(selfbalance(), 0x0b, 0x16)) { revert(codesize(), codesize()) } // For gas estimation.
}
}
}
/// @dev Force sends `amount` (in wei) ETH to `to`, with `GAS_STIPEND_NO_GRIEF`.
function forceSafeTransferETH(address to, uint256 amount) internal {
/// @solidity memory-safe-assembly
assembly {
if lt(selfbalance(), amount) {
mstore(0x00, 0xb12d13eb) // `ETHTransferFailed()`.
revert(0x1c, 0x04)
}
if iszero(call(GAS_STIPEND_NO_GRIEF, to, amount, codesize(), 0x00, codesize(), 0x00)) {
mstore(0x00, to) // Store the address in scratch space.
mstore8(0x0b, 0x73) // Opcode `PUSH20`.
mstore8(0x20, 0xff) // Opcode `SELFDESTRUCT`.
if iszero(create(amount, 0x0b, 0x16)) { revert(codesize(), codesize()) } // For gas estimation.
}
}
}
/// @dev Force sends all the ETH in the current contract to `to`, with `GAS_STIPEND_NO_GRIEF`.
function forceSafeTransferAllETH(address to) internal {
/// @solidity memory-safe-assembly
assembly {
// forgefmt: disable-next-item
if iszero(call(GAS_STIPEND_NO_GRIEF, to, selfbalance(), codesize(), 0x00, codesize(), 0x00)) {
mstore(0x00, to) // Store the address in scratch space.
mstore8(0x0b, 0x73) // Opcode `PUSH20`.
mstore8(0x20, 0xff) // Opcode `SELFDESTRUCT`.
if iszero(create(selfbalance(), 0x0b, 0x16)) { revert(codesize(), codesize()) } // For gas estimation.
}
}
}
/// @dev Sends `amount` (in wei) ETH to `to`, with a `gasStipend`.
function trySafeTransferETH(address to, uint256 amount, uint256 gasStipend)
internal
returns (bool success)
{
/// @solidity memory-safe-assembly
assembly {
success := call(gasStipend, to, amount, codesize(), 0x00, codesize(), 0x00)
}
}
/// @dev Sends all the ETH in the current contract to `to`, with a `gasStipend`.
function trySafeTransferAllETH(address to, uint256 gasStipend)
internal
returns (bool success)
{
/// @solidity memory-safe-assembly
assembly {
success := call(gasStipend, to, selfbalance(), codesize(), 0x00, codesize(), 0x00)
}
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* ERC20 OPERATIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Sends `amount` of ERC20 `token` from `from` to `to`.
/// Reverts upon failure.
///
/// The `from` account must have at least `amount` approved for
/// the current contract to manage.
function safeTransferFrom(address token, address from, address to, uint256 amount) internal {
/// @solidity memory-safe-assembly
assembly {
let m := mload(0x40) // Cache the free memory pointer.
mstore(0x60, amount) // Store the `amount` argument.
mstore(0x40, to) // Store the `to` argument.
mstore(0x2c, shl(96, from)) // Store the `from` argument.
mstore(0x0c, 0x23b872dd000000000000000000000000) // `transferFrom(address,address,uint256)`.
let success := call(gas(), token, 0, 0x1c, 0x64, 0x00, 0x20)
if iszero(and(eq(mload(0x00), 1), success)) {
if iszero(lt(or(iszero(extcodesize(token)), returndatasize()), success)) {
mstore(0x00, 0x7939f424) // `TransferFromFailed()`.
revert(0x1c, 0x04)
}
}
mstore(0x60, 0) // Restore the zero slot to zero.
mstore(0x40, m) // Restore the free memory pointer.
}
}
/// @dev Sends `amount` of ERC20 `token` from `from` to `to`.
///
/// The `from` account must have at least `amount` approved for the current contract to manage.
function trySafeTransferFrom(address token, address from, address to, uint256 amount)
internal
returns (bool success)
{
/// @solidity memory-safe-assembly
assembly {
let m := mload(0x40) // Cache the free memory pointer.
mstore(0x60, amount) // Store the `amount` argument.
mstore(0x40, to) // Store the `to` argument.
mstore(0x2c, shl(96, from)) // Store the `from` argument.
mstore(0x0c, 0x23b872dd000000000000000000000000) // `transferFrom(address,address,uint256)`.
success := call(gas(), token, 0, 0x1c, 0x64, 0x00, 0x20)
if iszero(and(eq(mload(0x00), 1), success)) {
success := lt(or(iszero(extcodesize(token)), returndatasize()), success)
}
mstore(0x60, 0) // Restore the zero slot to zero.
mstore(0x40, m) // Restore the free memory pointer.
}
}
/// @dev Sends all of ERC20 `token` from `from` to `to`.
/// Reverts upon failure.
///
/// The `from` account must have their entire balance approved for the current contract to manage.
function safeTransferAllFrom(address token, address from, address to)
internal
returns (uint256 amount)
{
/// @solidity memory-safe-assembly
assembly {
let m := mload(0x40) // Cache the free memory pointer.
mstore(0x40, to) // Store the `to` argument.
mstore(0x2c, shl(96, from)) // Store the `from` argument.
mstore(0x0c, 0x70a08231000000000000000000000000) // `balanceOf(address)`.
// Read the balance, reverting upon failure.
if iszero(
and( // The arguments of `and` are evaluated from right to left.
gt(returndatasize(), 0x1f), // At least 32 bytes returned.
staticcall(gas(), token, 0x1c, 0x24, 0x60, 0x20)
)
) {
mstore(0x00, 0x7939f424) // `TransferFromFailed()`.
revert(0x1c, 0x04)
}
mstore(0x00, 0x23b872dd) // `transferFrom(address,address,uint256)`.
amount := mload(0x60) // The `amount` is already at 0x60. We'll need to return it.
// Perform the transfer, reverting upon failure.
let success := call(gas(), token, 0, 0x1c, 0x64, 0x00, 0x20)
if iszero(and(eq(mload(0x00), 1), success)) {
if iszero(lt(or(iszero(extcodesize(token)), returndatasize()), success)) {
mstore(0x00, 0x7939f424) // `TransferFromFailed()`.
revert(0x1c, 0x04)
}
}
mstore(0x60, 0) // Restore the zero slot to zero.
mstore(0x40, m) // Restore the free memory pointer.
}
}
/// @dev Sends `amount` of ERC20 `token` from the current contract to `to`.
/// Reverts upon failure.
function safeTransfer(address token, address to, uint256 amount) internal {
/// @solidity memory-safe-assembly
assembly {
mstore(0x14, to) // Store the `to` argument.
mstore(0x34, amount) // Store the `amount` argument.
mstore(0x00, 0xa9059cbb000000000000000000000000) // `transfer(address,uint256)`.
// Perform the transfer, reverting upon failure.
let success := call(gas(), token, 0, 0x10, 0x44, 0x00, 0x20)
if iszero(and(eq(mload(0x00), 1), success)) {
if iszero(lt(or(iszero(extcodesize(token)), returndatasize()), success)) {
mstore(0x00, 0x90b8ec18) // `TransferFailed()`.
revert(0x1c, 0x04)
}
}
mstore(0x34, 0) // Restore the part of the free memory pointer that was overwritten.
}
}
/// @dev Sends all of ERC20 `token` from the current contract to `to`.
/// Reverts upon failure.
function safeTransferAll(address token, address to) internal returns (uint256 amount) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x00, 0x70a08231) // Store the function selector of `balanceOf(address)`.
mstore(0x20, address()) // Store the address of the current contract.
// Read the balance, reverting upon failure.
if iszero(
and( // The arguments of `and` are evaluated from right to left.
gt(returndatasize(), 0x1f), // At least 32 bytes returned.
staticcall(gas(), token, 0x1c, 0x24, 0x34, 0x20)
)
) {
mstore(0x00, 0x90b8ec18) // `TransferFailed()`.
revert(0x1c, 0x04)
}
mstore(0x14, to) // Store the `to` argument.
amount := mload(0x34) // The `amount` is already at 0x34. We'll need to return it.
mstore(0x00, 0xa9059cbb000000000000000000000000) // `transfer(address,uint256)`.
// Perform the transfer, reverting upon failure.
let success := call(gas(), token, 0, 0x10, 0x44, 0x00, 0x20)
if iszero(and(eq(mload(0x00), 1), success)) {
if iszero(lt(or(iszero(extcodesize(token)), returndatasize()), success)) {
mstore(0x00, 0x90b8ec18) // `TransferFailed()`.
revert(0x1c, 0x04)
}
}
mstore(0x34, 0) // Restore the part of the free memory pointer that was overwritten.
}
}
/// @dev Sets `amount` of ERC20 `token` for `to` to manage on behalf of the current contract.
/// Reverts upon failure.
function safeApprove(address token, address to, uint256 amount) internal {
/// @solidity memory-safe-assembly
assembly {
mstore(0x14, to) // Store the `to` argument.
mstore(0x34, amount) // Store the `amount` argument.
mstore(0x00, 0x095ea7b3000000000000000000000000) // `approve(address,uint256)`.
let success := call(gas(), token, 0, 0x10, 0x44, 0x00, 0x20)
if iszero(and(eq(mload(0x00), 1), success)) {
if iszero(lt(or(iszero(extcodesize(token)), returndatasize()), success)) {
mstore(0x00, 0x3e3f8f73) // `ApproveFailed()`.
revert(0x1c, 0x04)
}
}
mstore(0x34, 0) // Restore the part of the free memory pointer that was overwritten.
}
}
/// @dev Sets `amount` of ERC20 `token` for `to` to manage on behalf of the current contract.
/// If the initial attempt to approve fails, attempts to reset the approved amount to zero,
/// then retries the approval again (some tokens, e.g. USDT, requires this).
/// Reverts upon failure.
function safeApproveWithRetry(address token, address to, uint256 amount) internal {
/// @solidity memory-safe-assembly
assembly {
mstore(0x14, to) // Store the `to` argument.
mstore(0x34, amount) // Store the `amount` argument.
mstore(0x00, 0x095ea7b3000000000000000000000000) // `approve(address,uint256)`.
// Perform the approval, retrying upon failure.
let success := call(gas(), token, 0, 0x10, 0x44, 0x00, 0x20)
if iszero(and(eq(mload(0x00), 1), success)) {
if iszero(lt(or(iszero(extcodesize(token)), returndatasize()), success)) {
mstore(0x34, 0) // Store 0 for the `amount`.
mstore(0x00, 0x095ea7b3000000000000000000000000) // `approve(address,uint256)`.
pop(call(gas(), token, 0, 0x10, 0x44, codesize(), 0x00)) // Reset the approval.
mstore(0x34, amount) // Store back the original `amount`.
// Retry the approval, reverting upon failure.
success := call(gas(), token, 0, 0x10, 0x44, 0x00, 0x20)
if iszero(and(eq(mload(0x00), 1), success)) {
// Check the `extcodesize` again just in case the token selfdestructs lol.
if iszero(lt(or(iszero(extcodesize(token)), returndatasize()), success)) {
mstore(0x00, 0x3e3f8f73) // `ApproveFailed()`.
revert(0x1c, 0x04)
}
}
}
}
mstore(0x34, 0) // Restore the part of the free memory pointer that was overwritten.
}
}
/// @dev Returns the amount of ERC20 `token` owned by `account`.
/// Returns zero if the `token` does not exist.
function balanceOf(address token, address account) internal view returns (uint256 amount) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x14, account) // Store the `account` argument.
mstore(0x00, 0x70a08231000000000000000000000000) // `balanceOf(address)`.
amount :=
mul( // The arguments of `mul` are evaluated from right to left.
mload(0x20),
and( // The arguments of `and` are evaluated from right to left.
gt(returndatasize(), 0x1f), // At least 32 bytes returned.
staticcall(gas(), token, 0x10, 0x24, 0x20, 0x20)
)
)
}
}
/// @dev Returns the total supply of the `token`.
/// Reverts if the token does not exist or does not implement `totalSupply()`.
function totalSupply(address token) internal view returns (uint256 result) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x00, 0x18160ddd) // `totalSupply()`.
if iszero(
and(gt(returndatasize(), 0x1f), staticcall(gas(), token, 0x1c, 0x04, 0x00, 0x20))
) {
mstore(0x00, 0x54cd9435) // `TotalSupplyQueryFailed()`.
revert(0x1c, 0x04)
}
result := mload(0x00)
}
}
/// @dev Sends `amount` of ERC20 `token` from `from` to `to`.
/// If the initial attempt fails, try to use Permit2 to transfer the token.
/// Reverts upon failure.
///
/// The `from` account must have at least `amount` approved for the current contract to manage.
function safeTransferFrom2(address token, address from, address to, uint256 amount) internal {
if (!trySafeTransferFrom(token, from, to, amount)) {
permit2TransferFrom(token, from, to, amount);
}
}
/// @dev Sends `amount` of ERC20 `token` from `from` to `to` via Permit2.
/// Reverts upon failure.
function permit2TransferFrom(address token, address from, address to, uint256 amount)
internal
{
/// @solidity memory-safe-assembly
assembly {
let m := mload(0x40)
mstore(add(m, 0x74), shr(96, shl(96, token)))
mstore(add(m, 0x54), amount)
mstore(add(m, 0x34), to)
mstore(add(m, 0x20), shl(96, from))
// `transferFrom(address,address,uint160,address)`.
mstore(m, 0x36c78516000000000000000000000000)
let p := PERMIT2
let exists := eq(chainid(), 1)
if iszero(exists) { exists := iszero(iszero(extcodesize(p))) }
if iszero(
and(
call(gas(), p, 0, add(m, 0x10), 0x84, codesize(), 0x00),
lt(iszero(extcodesize(token)), exists) // Token has code and Permit2 exists.
)
) {
mstore(0x00, 0x7939f4248757f0fd) // `TransferFromFailed()` or `Permit2AmountOverflow()`.
revert(add(0x18, shl(2, iszero(iszero(shr(160, amount))))), 0x04)
}
}
}
/// @dev Permit a user to spend a given amount of
/// another user's tokens via native EIP-2612 permit if possible, falling
/// back to Permit2 if native permit fails or is not implemented on the token.
function permit2(
address token,
address owner,
address spender,
uint256 amount,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) internal {
bool success;
/// @solidity memory-safe-assembly
assembly {
for {} shl(96, xor(token, WETH9)) {} {
mstore(0x00, 0x3644e515) // `DOMAIN_SEPARATOR()`.
if iszero(
and( // The arguments of `and` are evaluated from right to left.
lt(iszero(mload(0x00)), eq(returndatasize(), 0x20)), // Returns 1 non-zero word.
// Gas stipend to limit gas burn for tokens that don't refund gas when
// an non-existing function is called. 5K should be enough for a SLOAD.
staticcall(5000, token, 0x1c, 0x04, 0x00, 0x20)
)
) { break }
// After here, we can be sure that token is a contract.
let m := mload(0x40)
mstore(add(m, 0x34), spender)
mstore(add(m, 0x20), shl(96, owner))
mstore(add(m, 0x74), deadline)
if eq(mload(0x00), DAI_DOMAIN_SEPARATOR) {
mstore(0x14, owner)
mstore(0x00, 0x7ecebe00000000000000000000000000) // `nonces(address)`.
mstore(
add(m, 0x94),
lt(iszero(amount), staticcall(gas(), token, 0x10, 0x24, add(m, 0x54), 0x20))
)
mstore(m, 0x8fcbaf0c000000000000000000000000) // `IDAIPermit.permit`.
// `nonces` is already at `add(m, 0x54)`.
// `amount != 0` is already stored at `add(m, 0x94)`.
mstore(add(m, 0xb4), and(0xff, v))
mstore(add(m, 0xd4), r)
mstore(add(m, 0xf4), s)
success := call(gas(), token, 0, add(m, 0x10), 0x104, codesize(), 0x00)
break
}
mstore(m, 0xd505accf000000000000000000000000) // `IERC20Permit.permit`.
mstore(add(m, 0x54), amount)
mstore(add(m, 0x94), and(0xff, v))
mstore(add(m, 0xb4), r)
mstore(add(m, 0xd4), s)
success := call(gas(), token, 0, add(m, 0x10), 0xe4, codesize(), 0x00)
break
}
}
if (!success) simplePermit2(token, owner, spender, amount, deadline, v, r, s);
}
/// @dev Simple permit on the Permit2 contract.
function simplePermit2(
address token,
address owner,
address spender,
uint256 amount,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) internal {
/// @solidity memory-safe-assembly
assembly {
let m := mload(0x40)
mstore(m, 0x927da105) // `allowance(address,address,address)`.
{
let addressMask := shr(96, not(0))
mstore(add(m, 0x20), and(addressMask, owner))
mstore(add(m, 0x40), and(addressMask, token))
mstore(add(m, 0x60), and(addressMask, spender))
mstore(add(m, 0xc0), and(addressMask, spender))
}
let p := mul(PERMIT2, iszero(shr(160, amount)))
if iszero(
and( // The arguments of `and` are evaluated from right to left.
gt(returndatasize(), 0x5f), // Returns 3 words: `amount`, `expiration`, `nonce`.
staticcall(gas(), p, add(m, 0x1c), 0x64, add(m, 0x60), 0x60)
)
) {
mstore(0x00, 0x6b836e6b8757f0fd) // `Permit2Failed()` or `Permit2AmountOverflow()`.
revert(add(0x18, shl(2, iszero(p))), 0x04)
}
mstore(m, 0x2b67b570) // `Permit2.permit` (PermitSingle variant).
// `owner` is already `add(m, 0x20)`.
// `token` is already at `add(m, 0x40)`.
mstore(add(m, 0x60), amount)
mstore(add(m, 0x80), 0xffffffffffff) // `expiration = type(uint48).max`.
// `nonce` is already at `add(m, 0xa0)`.
// `spender` is already at `add(m, 0xc0)`.
mstore(add(m, 0xe0), deadline)
mstore(add(m, 0x100), 0x100) // `signature` offset.
mstore(add(m, 0x120), 0x41) // `signature` length.
mstore(add(m, 0x140), r)
mstore(add(m, 0x160), s)
mstore(add(m, 0x180), shl(248, v))
if iszero( // Revert if token does not have code, or if the call fails.
mul(extcodesize(token), call(gas(), p, 0, add(m, 0x1c), 0x184, codesize(), 0x00))) {
mstore(0x00, 0x6b836e6b) // `Permit2Failed()`.
revert(0x1c, 0x04)
}
}
}
/// @dev Approves `spender` to spend `amount` of `token` for `address(this)`.
function permit2Approve(address token, address spender, uint160 amount, uint48 expiration)
internal
{
/// @solidity memory-safe-assembly
assembly {
let addressMask := shr(96, not(0))
let m := mload(0x40)
mstore(m, 0x87517c45) // `approve(address,address,uint160,uint48)`.
mstore(add(m, 0x20), and(addressMask, token))
mstore(add(m, 0x40), and(addressMask, spender))
mstore(add(m, 0x60), and(addressMask, amount))
mstore(add(m, 0x80), and(0xffffffffffff, expiration))
if iszero(call(gas(), PERMIT2, 0, add(m, 0x1c), 0xa0, codesize(), 0x00)) {
mstore(0x00, 0x324f14ae) // `Permit2ApproveFailed()`.
revert(0x1c, 0x04)
}
}
}
/// @dev Revokes an approval for `token` and `spender` for `address(this)`.
function permit2Lockdown(address token, address spender) internal {
/// @solidity memory-safe-assembly
assembly {
let m := mload(0x40)
mstore(m, 0xcc53287f) // `Permit2.lockdown`.
mstore(add(m, 0x20), 0x20) // Offset of the `approvals`.
mstore(add(m, 0x40), 1) // `approvals.length`.
mstore(add(m, 0x60), shr(96, shl(96, token)))
mstore(add(m, 0x80), shr(96, shl(96, spender)))
if iszero(call(gas(), PERMIT2, 0, add(m, 0x1c), 0xa0, codesize(), 0x00)) {
mstore(0x00, 0x96b3de23) // `Permit2LockdownFailed()`.
revert(0x1c, 0x04)
}
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
/// @notice Arithmetic library with operations for fixed-point numbers.
/// @author Solady (https://github.com/vectorized/solady/blob/main/src/utils/FixedPointMathLib.sol)
/// @author Modified from Solmate (https://github.com/transmissions11/solmate/blob/main/src/utils/FixedPointMathLib.sol)
library FixedPointMathLib {
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CUSTOM ERRORS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev The operation failed, as the output exceeds the maximum value of uint256.
error ExpOverflow();
/// @dev The operation failed, as the output exceeds the maximum value of uint256.
error FactorialOverflow();
/// @dev The operation failed, due to an overflow.
error RPowOverflow();
/// @dev The mantissa is too big to fit.
error MantissaOverflow();
/// @dev The operation failed, due to an multiplication overflow.
error MulWadFailed();
/// @dev The operation failed, due to an multiplication overflow.
error SMulWadFailed();
/// @dev The operation failed, either due to a multiplication overflow, or a division by a zero.
error DivWadFailed();
/// @dev The operation failed, either due to a multiplication overflow, or a division by a zero.
error SDivWadFailed();
/// @dev The operation failed, either due to a multiplication overflow, or a division by a zero.
error MulDivFailed();
/// @dev The division failed, as the denominator is zero.
error DivFailed();
/// @dev The full precision multiply-divide operation failed, either due
/// to the result being larger than 256 bits, or a division by a zero.
error FullMulDivFailed();
/// @dev The output is undefined, as the input is less-than-or-equal to zero.
error LnWadUndefined();
/// @dev The input outside the acceptable domain.
error OutOfDomain();
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CONSTANTS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev The scalar of ETH and most ERC20s.
uint256 internal constant WAD = 1e18;
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* SIMPLIFIED FIXED POINT OPERATIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Equivalent to `(x * y) / WAD` rounded down.
function mulWad(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
// Equivalent to `require(y == 0 || x <= type(uint256).max / y)`.
if gt(x, div(not(0), y)) {
if y {
mstore(0x00, 0xbac65e5b) // `MulWadFailed()`.
revert(0x1c, 0x04)
}
}
z := div(mul(x, y), WAD)
}
}
/// @dev Equivalent to `(x * y) / WAD` rounded down.
function sMulWad(int256 x, int256 y) internal pure returns (int256 z) {
/// @solidity memory-safe-assembly
assembly {
z := mul(x, y)
// Equivalent to `require((x == 0 || z / x == y) && !(x == -1 && y == type(int256).min))`.
if iszero(gt(or(iszero(x), eq(sdiv(z, x), y)), lt(not(x), eq(y, shl(255, 1))))) {
mstore(0x00, 0xedcd4dd4) // `SMulWadFailed()`.
revert(0x1c, 0x04)
}
z := sdiv(z, WAD)
}
}
/// @dev Equivalent to `(x * y) / WAD` rounded down, but without overflow checks.
function rawMulWad(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := div(mul(x, y), WAD)
}
}
/// @dev Equivalent to `(x * y) / WAD` rounded down, but without overflow checks.
function rawSMulWad(int256 x, int256 y) internal pure returns (int256 z) {
/// @solidity memory-safe-assembly
assembly {
z := sdiv(mul(x, y), WAD)
}
}
/// @dev Equivalent to `(x * y) / WAD` rounded up.
function mulWadUp(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := mul(x, y)
// Equivalent to `require(y == 0 || x <= type(uint256).max / y)`.
if iszero(eq(div(z, y), x)) {
if y {
mstore(0x00, 0xbac65e5b) // `MulWadFailed()`.
revert(0x1c, 0x04)
}
}
z := add(iszero(iszero(mod(z, WAD))), div(z, WAD))
}
}
/// @dev Equivalent to `(x * y) / WAD` rounded up, but without overflow checks.
function rawMulWadUp(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := add(iszero(iszero(mod(mul(x, y), WAD))), div(mul(x, y), WAD))
}
}
/// @dev Equivalent to `(x * WAD) / y` rounded down.
function divWad(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
// Equivalent to `require(y != 0 && x <= type(uint256).max / WAD)`.
if iszero(mul(y, lt(x, add(1, div(not(0), WAD))))) {
mstore(0x00, 0x7c5f487d) // `DivWadFailed()`.
revert(0x1c, 0x04)
}
z := div(mul(x, WAD), y)
}
}
/// @dev Equivalent to `(x * WAD) / y` rounded down.
function sDivWad(int256 x, int256 y) internal pure returns (int256 z) {
/// @solidity memory-safe-assembly
assembly {
z := mul(x, WAD)
// Equivalent to `require(y != 0 && ((x * WAD) / WAD == x))`.
if iszero(mul(y, eq(sdiv(z, WAD), x))) {
mstore(0x00, 0x5c43740d) // `SDivWadFailed()`.
revert(0x1c, 0x04)
}
z := sdiv(z, y)
}
}
/// @dev Equivalent to `(x * WAD) / y` rounded down, but without overflow and divide by zero checks.
function rawDivWad(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := div(mul(x, WAD), y)
}
}
/// @dev Equivalent to `(x * WAD) / y` rounded down, but without overflow and divide by zero checks.
function rawSDivWad(int256 x, int256 y) internal pure returns (int256 z) {
/// @solidity memory-safe-assembly
assembly {
z := sdiv(mul(x, WAD), y)
}
}
/// @dev Equivalent to `(x * WAD) / y` rounded up.
function divWadUp(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
// Equivalent to `require(y != 0 && x <= type(uint256).max / WAD)`.
if iszero(mul(y, lt(x, add(1, div(not(0), WAD))))) {
mstore(0x00, 0x7c5f487d) // `DivWadFailed()`.
revert(0x1c, 0x04)
}
z := add(iszero(iszero(mod(mul(x, WAD), y))), div(mul(x, WAD), y))
}
}
/// @dev Equivalent to `(x * WAD) / y` rounded up, but without overflow and divide by zero checks.
function rawDivWadUp(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := add(iszero(iszero(mod(mul(x, WAD), y))), div(mul(x, WAD), y))
}
}
/// @dev Equivalent to `x` to the power of `y`.
/// because `x ** y = (e ** ln(x)) ** y = e ** (ln(x) * y)`.
/// Note: This function is an approximation.
function powWad(int256 x, int256 y) internal pure returns (int256) {
// Using `ln(x)` means `x` must be greater than 0.
return expWad((lnWad(x) * y) / int256(WAD));
}
/// @dev Returns `exp(x)`, denominated in `WAD`.
/// Credit to Remco Bloemen under MIT license: https://2π.com/22/exp-ln
/// Note: This function is an approximation. Monotonically increasing.
function expWad(int256 x) internal pure returns (int256 r) {
unchecked {
// When the result is less than 0.5 we return zero.
// This happens when `x <= (log(1e-18) * 1e18) ~ -4.15e19`.
if (x <= -41446531673892822313) return r;
/// @solidity memory-safe-assembly
assembly {
// When the result is greater than `(2**255 - 1) / 1e18` we can not represent it as
// an int. This happens when `x >= floor(log((2**255 - 1) / 1e18) * 1e18) ≈ 135`.
if iszero(slt(x, 135305999368893231589)) {
mstore(0x00, 0xa37bfec9) // `ExpOverflow()`.
revert(0x1c, 0x04)
}
}
// `x` is now in the range `(-42, 136) * 1e18`. Convert to `(-42, 136) * 2**96`
// for more intermediate precision and a binary basis. This base conversion
// is a multiplication by 1e18 / 2**96 = 5**18 / 2**78.
x = (x << 78) / 5 ** 18;
// Reduce range of x to (-½ ln 2, ½ ln 2) * 2**96 by factoring out powers
// of two such that exp(x) = exp(x') * 2**k, where k is an integer.
// Solving this gives k = round(x / log(2)) and x' = x - k * log(2).
int256 k = ((x << 96) / 54916777467707473351141471128 + 2 ** 95) >> 96;
x = x - k * 54916777467707473351141471128;
// `k` is in the range `[-61, 195]`.
// Evaluate using a (6, 7)-term rational approximation.
// `p` is made monic, we'll multiply by a scale factor later.
int256 y = x + 1346386616545796478920950773328;
y = ((y * x) >> 96) + 57155421227552351082224309758442;
int256 p = y + x - 94201549194550492254356042504812;
p = ((p * y) >> 96) + 28719021644029726153956944680412240;
p = p * x + (4385272521454847904659076985693276 << 96);
// We leave `p` in `2**192` basis so we don't need to scale it back up for the division.
int256 q = x - 2855989394907223263936484059900;
q = ((q * x) >> 96) + 50020603652535783019961831881945;
q = ((q * x) >> 96) - 533845033583426703283633433725380;
q = ((q * x) >> 96) + 3604857256930695427073651918091429;
q = ((q * x) >> 96) - 14423608567350463180887372962807573;
q = ((q * x) >> 96) + 26449188498355588339934803723976023;
/// @solidity memory-safe-assembly
assembly {
// Div in assembly because solidity adds a zero check despite the unchecked.
// The q polynomial won't have zeros in the domain as all its roots are complex.
// No scaling is necessary because p is already `2**96` too large.
r := sdiv(p, q)
}
// r should be in the range `(0.09, 0.25) * 2**96`.
// We now need to multiply r by:
// - The scale factor `s ≈ 6.031367120`.
// - The `2**k` factor from the range reduction.
// - The `1e18 / 2**96` factor for base conversion.
// We do this all at once, with an intermediate result in `2**213`
// basis, so the final right shift is always by a positive amount.
r = int256(
(uint256(r) * 3822833074963236453042738258902158003155416615667) >> uint256(195 - k)
);
}
}
/// @dev Returns `ln(x)`, denominated in `WAD`.
/// Credit to Remco Bloemen under MIT license: https://2π.com/22/exp-ln
/// Note: This function is an approximation. Monotonically increasing.
function lnWad(int256 x) internal pure returns (int256 r) {
/// @solidity memory-safe-assembly
assembly {
// We want to convert `x` from `10**18` fixed point to `2**96` fixed point.
// We do this by multiplying by `2**96 / 10**18`. But since
// `ln(x * C) = ln(x) + ln(C)`, we can simply do nothing here
// and add `ln(2**96 / 10**18)` at the end.
// Compute `k = log2(x) - 96`, `r = 159 - k = 255 - log2(x) = 255 ^ log2(x)`.
r := shl(7, lt(0xffffffffffffffffffffffffffffffff, x))
r := or(r, shl(6, lt(0xffffffffffffffff, shr(r, x))))
r := or(r, shl(5, lt(0xffffffff, shr(r, x))))
r := or(r, shl(4, lt(0xffff, shr(r, x))))
r := or(r, shl(3, lt(0xff, shr(r, x))))
// We place the check here for more optimal stack operations.
if iszero(sgt(x, 0)) {
mstore(0x00, 0x1615e638) // `LnWadUndefined()`.
revert(0x1c, 0x04)
}
// forgefmt: disable-next-item
r := xor(r, byte(and(0x1f, shr(shr(r, x), 0x8421084210842108cc6318c6db6d54be)),
0xf8f9f9faf9fdfafbf9fdfcfdfafbfcfef9fafdfafcfcfbfefafafcfbffffffff))
// Reduce range of x to (1, 2) * 2**96
// ln(2^k * x) = k * ln(2) + ln(x)
x := shr(159, shl(r, x))
// Evaluate using a (8, 8)-term rational approximation.
// `p` is made monic, we will multiply by a scale factor later.
// forgefmt: disable-next-item
let p := sub( // This heavily nested expression is to avoid stack-too-deep for via-ir.
sar(96, mul(add(43456485725739037958740375743393,
sar(96, mul(add(24828157081833163892658089445524,
sar(96, mul(add(3273285459638523848632254066296,
x), x))), x))), x)), 11111509109440967052023855526967)
p := sub(sar(96, mul(p, x)), 45023709667254063763336534515857)
p := sub(sar(96, mul(p, x)), 14706773417378608786704636184526)
p := sub(mul(p, x), shl(96, 795164235651350426258249787498))
// We leave `p` in `2**192` basis so we don't need to scale it back up for the division.
// `q` is monic by convention.
let q := add(5573035233440673466300451813936, x)
q := add(71694874799317883764090561454958, sar(96, mul(x, q)))
q := add(283447036172924575727196451306956, sar(96, mul(x, q)))
q := add(401686690394027663651624208769553, sar(96, mul(x, q)))
q := add(204048457590392012362485061816622, sar(96, mul(x, q)))
q := add(31853899698501571402653359427138, sar(96, mul(x, q)))
q := add(909429971244387300277376558375, sar(96, mul(x, q)))
// `p / q` is in the range `(0, 0.125) * 2**96`.
// Finalization, we need to:
// - Multiply by the scale factor `s = 5.549…`.
// - Add `ln(2**96 / 10**18)`.
// - Add `k * ln(2)`.
// - Multiply by `10**18 / 2**96 = 5**18 >> 78`.
// The q polynomial is known not to have zeros in the domain.
// No scaling required because p is already `2**96` too large.
p := sdiv(p, q)
// Multiply by the scaling factor: `s * 5**18 * 2**96`, base is now `5**18 * 2**192`.
p := mul(1677202110996718588342820967067443963516166, p)
// Add `ln(2) * k * 5**18 * 2**192`.
// forgefmt: disable-next-item
p := add(mul(16597577552685614221487285958193947469193820559219878177908093499208371, sub(159, r)), p)
// Add `ln(2**96 / 10**18) * 5**18 * 2**192`.
p := add(600920179829731861736702779321621459595472258049074101567377883020018308, p)
// Base conversion: mul `2**18 / 2**192`.
r := sar(174, p)
}
}
/// @dev Returns `W_0(x)`, denominated in `WAD`.
/// See: https://en.wikipedia.org/wiki/Lambert_W_function
/// a.k.a. Product log function. This is an approximation of the principal branch.
/// Note: This function is an approximation. Monotonically increasing.
function lambertW0Wad(int256 x) internal pure returns (int256 w) {
// forgefmt: disable-next-item
unchecked {
if ((w = x) <= -367879441171442322) revert OutOfDomain(); // `x` less than `-1/e`.
(int256 wad, int256 p) = (int256(WAD), x);
uint256 c; // Whether we need to avoid catastrophic cancellation.
uint256 i = 4; // Number of iterations.
if (w <= 0x1ffffffffffff) {
if (-0x4000000000000 <= w) {
i = 1; // Inputs near zero only take one step to converge.
} else if (w <= -0x3ffffffffffffff) {
i = 32; // Inputs near `-1/e` take very long to converge.
}
} else if (uint256(w >> 63) == uint256(0)) {
/// @solidity memory-safe-assembly
assembly {
// Inline log2 for more performance, since the range is small.
let v := shr(49, w)
let l := shl(3, lt(0xff, v))
l := add(or(l, byte(and(0x1f, shr(shr(l, v), 0x8421084210842108cc6318c6db6d54be)),
0x0706060506020504060203020504030106050205030304010505030400000000)), 49)
w := sdiv(shl(l, 7), byte(sub(l, 31), 0x0303030303030303040506080c13))
c := gt(l, 60)
i := add(2, add(gt(l, 53), c))
}
} else {
int256 ll = lnWad(w = lnWad(w));
/// @solidity memory-safe-assembly
assembly {
// `w = ln(x) - ln(ln(x)) + b * ln(ln(x)) / ln(x)`.
w := add(sdiv(mul(ll, 1023715080943847266), w), sub(w, ll))
i := add(3, iszero(shr(68, x)))
c := iszero(shr(143, x))
}
if (c == uint256(0)) {
do { // If `x` is big, use Newton's so that intermediate values won't overflow.
int256 e = expWad(w);
/// @solidity memory-safe-assembly
assembly {
let t := mul(w, div(e, wad))
w := sub(w, sdiv(sub(t, x), div(add(e, t), wad)))
}
if (p <= w) break;
p = w;
} while (--i != uint256(0));
/// @solidity memory-safe-assembly
assembly {
w := sub(w, sgt(w, 2))
}
return w;
}
}
do { // Otherwise, use Halley's for faster convergence.
int256 e = expWad(w);
/// @solidity memory-safe-assembly
assembly {
let t := add(w, wad)
let s := sub(mul(w, e), mul(x, wad))
w := sub(w, sdiv(mul(s, wad), sub(mul(e, t), sdiv(mul(add(t, wad), s), add(t, t)))))
}
if (p <= w) break;
p = w;
} while (--i != c);
/// @solidity memory-safe-assembly
assembly {
w := sub(w, sgt(w, 2))
}
// For certain ranges of `x`, we'll use the quadratic-rate recursive formula of
// R. Iacono and J.P. Boyd for the last iteration, to avoid catastrophic cancellation.
if (c == uint256(0)) return w;
int256 t = w | 1;
/// @solidity memory-safe-assembly
assembly {
x := sdiv(mul(x, wad), t)
}
x = (t * (wad + lnWad(x)));
/// @solidity memory-safe-assembly
assembly {
w := sdiv(x, add(wad, t))
}
}
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* GENERAL NUMBER UTILITIES */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns `a * b == x * y`, with full precision.
function fullMulEq(uint256 a, uint256 b, uint256 x, uint256 y)
internal
pure
returns (bool result)
{
/// @solidity memory-safe-assembly
assembly {
result := and(eq(mul(a, b), mul(x, y)), eq(mulmod(x, y, not(0)), mulmod(a, b, not(0))))
}
}
/// @dev Calculates `floor(x * y / d)` with full precision.
/// Throws if result overflows a uint256 or when `d` is zero.
/// Credit to Remco Bloemen under MIT license: https://2π.com/21/muldiv
function fullMulDiv(uint256 x, uint256 y, uint256 d) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
// 512-bit multiply `[p1 p0] = x * y`.
// Compute the product mod `2**256` and mod `2**256 - 1`
// then use the Chinese Remainder Theorem to reconstruct
// the 512 bit result. The result is stored in two 256
// variables such that `product = p1 * 2**256 + p0`.
// Temporarily use `z` as `p0` to save gas.
z := mul(x, y) // Lower 256 bits of `x * y`.
for {} 1 {} {
// If overflows.
if iszero(mul(or(iszero(x), eq(div(z, x), y)), d)) {
let mm := mulmod(x, y, not(0))
let p1 := sub(mm, add(z, lt(mm, z))) // Upper 256 bits of `x * y`.
/*------------------- 512 by 256 division --------------------*/
// Make division exact by subtracting the remainder from `[p1 p0]`.
let r := mulmod(x, y, d) // Compute remainder using mulmod.
let t := and(d, sub(0, d)) // The least significant bit of `d`. `t >= 1`.
// Make sure `z` is less than `2**256`. Also prevents `d == 0`.
// Placing the check here seems to give more optimal stack operations.
if iszero(gt(d, p1)) {
mstore(0x00, 0xae47f702) // `FullMulDivFailed()`.
revert(0x1c, 0x04)
}
d := div(d, t) // Divide `d` by `t`, which is a power of two.
// Invert `d mod 2**256`
// Now that `d` is an odd number, it has an inverse
// modulo `2**256` such that `d * inv = 1 mod 2**256`.
// Compute the inverse by starting with a seed that is correct
// correct for four bits. That is, `d * inv = 1 mod 2**4`.
let inv := xor(2, mul(3, d))
// Now use Newton-Raphson iteration to improve the precision.
// Thanks to Hensel's lifting lemma, this also works in modular
// arithmetic, doubling the correct bits in each step.
inv := mul(inv, sub(2, mul(d, inv))) // inverse mod 2**8
inv := mul(inv, sub(2, mul(d, inv))) // inverse mod 2**16
inv := mul(inv, sub(2, mul(d, inv))) // inverse mod 2**32
inv := mul(inv, sub(2, mul(d, inv))) // inverse mod 2**64
inv := mul(inv, sub(2, mul(d, inv))) // inverse mod 2**128
z :=
mul(
// Divide [p1 p0] by the factors of two.
// Shift in bits from `p1` into `p0`. For this we need
// to flip `t` such that it is `2**256 / t`.
or(mul(sub(p1, gt(r, z)), add(div(sub(0, t), t), 1)), div(sub(z, r), t)),
mul(sub(2, mul(d, inv)), inv) // inverse mod 2**256
)
break
}
z := div(z, d)
break
}
}
}
/// @dev Calculates `floor(x * y / d)` with full precision.
/// Behavior is undefined if `d` is zero or the final result cannot fit in 256 bits.
/// Performs the full 512 bit calculation regardless.
function fullMulDivUnchecked(uint256 x, uint256 y, uint256 d)
internal
pure
returns (uint256 z)
{
/// @solidity memory-safe-assembly
assembly {
z := mul(x, y)
let mm := mulmod(x, y, not(0))
let p1 := sub(mm, add(z, lt(mm, z)))
let t := and(d, sub(0, d))
let r := mulmod(x, y, d)
d := div(d, t)
let inv := xor(2, mul(3, d))
inv := mul(inv, sub(2, mul(d, inv)))
inv := mul(inv, sub(2, mul(d, inv)))
inv := mul(inv, sub(2, mul(d, inv)))
inv := mul(inv, sub(2, mul(d, inv)))
inv := mul(inv, sub(2, mul(d, inv)))
z :=
mul(
or(mul(sub(p1, gt(r, z)), add(div(sub(0, t), t), 1)), div(sub(z, r), t)),
mul(sub(2, mul(d, inv)), inv)
)
}
}
/// @dev Calculates `floor(x * y / d)` with full precision, rounded up.
/// Throws if result overflows a uint256 or when `d` is zero.
/// Credit to Uniswap-v3-core under MIT license:
/// https://github.com/Uniswap/v3-core/blob/main/contracts/libraries/FullMath.sol
function fullMulDivUp(uint256 x, uint256 y, uint256 d) internal pure returns (uint256 z) {
z = fullMulDiv(x, y, d);
/// @solidity memory-safe-assembly
assembly {
if mulmod(x, y, d) {
z := add(z, 1)
if iszero(z) {
mstore(0x00, 0xae47f702) // `FullMulDivFailed()`.
revert(0x1c, 0x04)
}
}
}
}
/// @dev Calculates `floor(x * y / 2 ** n)` with full precision.
/// Throws if result overflows a uint256.
/// Credit to Philogy under MIT license:
/// https://github.com/SorellaLabs/angstrom/blob/main/contracts/src/libraries/X128MathLib.sol
function fullMulDivN(uint256 x, uint256 y, uint8 n) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
// Temporarily use `z` as `p0` to save gas.
z := mul(x, y) // Lower 256 bits of `x * y`. We'll call this `z`.
for {} 1 {} {
if iszero(or(iszero(x), eq(div(z, x), y))) {
let k := and(n, 0xff) // `n`, cleaned.
let mm := mulmod(x, y, not(0))
let p1 := sub(mm, add(z, lt(mm, z))) // Upper 256 bits of `x * y`.
// | p1 | z |
// Before: | p1_0 ¦ p1_1 | z_0 ¦ z_1 |
// Final: | 0 ¦ p1_0 | p1_1 ¦ z_0 |
// Check that final `z` doesn't overflow by checking that p1_0 = 0.
if iszero(shr(k, p1)) {
z := add(shl(sub(256, k), p1), shr(k, z))
break
}
mstore(0x00, 0xae47f702) // `FullMulDivFailed()`.
revert(0x1c, 0x04)
}
z := shr(and(n, 0xff), z)
break
}
}
}
/// @dev Returns `floor(x * y / d)`.
/// Reverts if `x * y` overflows, or `d` is zero.
function mulDiv(uint256 x, uint256 y, uint256 d) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := mul(x, y)
// Equivalent to `require(d != 0 && (y == 0 || x <= type(uint256).max / y))`.
if iszero(mul(or(iszero(x), eq(div(z, x), y)), d)) {
mstore(0x00, 0xad251c27) // `MulDivFailed()`.
revert(0x1c, 0x04)
}
z := div(z, d)
}
}
/// @dev Returns `ceil(x * y / d)`.
/// Reverts if `x * y` overflows, or `d` is zero.
function mulDivUp(uint256 x, uint256 y, uint256 d) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := mul(x, y)
// Equivalent to `require(d != 0 && (y == 0 || x <= type(uint256).max / y))`.
if iszero(mul(or(iszero(x), eq(div(z, x), y)), d)) {
mstore(0x00, 0xad251c27) // `MulDivFailed()`.
revert(0x1c, 0x04)
}
z := add(iszero(iszero(mod(z, d))), div(z, d))
}
}
/// @dev Returns `x`, the modular multiplicative inverse of `a`, such that `(a * x) % n == 1`.
function invMod(uint256 a, uint256 n) internal pure returns (uint256 x) {
/// @solidity memory-safe-assembly
assembly {
let g := n
let r := mod(a, n)
for { let y := 1 } 1 {} {
let q := div(g, r)
let t := g
g := r
r := sub(t, mul(r, q))
let u := x
x := y
y := sub(u, mul(y, q))
if iszero(r) { break }
}
x := mul(eq(g, 1), add(x, mul(slt(x, 0), n)))
}
}
/// @dev Returns `ceil(x / d)`.
/// Reverts if `d` is zero.
function divUp(uint256 x, uint256 d) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
if iszero(d) {
mstore(0x00, 0x65244e4e) // `DivFailed()`.
revert(0x1c, 0x04)
}
z := add(iszero(iszero(mod(x, d))), div(x, d))
}
}
/// @dev Returns `max(0, x - y)`.
function zeroFloorSub(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := mul(gt(x, y), sub(x, y))
}
}
/// @dev Returns `condition ? x : y`, without branching.
function ternary(bool condition, uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := xor(x, mul(xor(x, y), iszero(condition)))
}
}
/// @dev Returns `condition ? x : y`, without branching.
function ternary(bool condition, bytes32 x, bytes32 y) internal pure returns (bytes32 z) {
/// @solidity memory-safe-assembly
assembly {
z := xor(x, mul(xor(x, y), iszero(condition)))
}
}
/// @dev Returns `condition ? x : y`, without branching.
function ternary(bool condition, address x, address y) internal pure returns (address z) {
/// @solidity memory-safe-assembly
assembly {
z := xor(x, mul(xor(x, y), iszero(condition)))
}
}
/// @dev Exponentiate `x` to `y` by squaring, denominated in base `b`.
/// Reverts if the computation overflows.
function rpow(uint256 x, uint256 y, uint256 b) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := mul(b, iszero(y)) // `0 ** 0 = 1`. Otherwise, `0 ** n = 0`.
if x {
z := xor(b, mul(xor(b, x), and(y, 1))) // `z = isEven(y) ? scale : x`
let half := shr(1, b) // Divide `b` by 2.
// Divide `y` by 2 every iteration.
for { y := shr(1, y) } y { y := shr(1, y) } {
let xx := mul(x, x) // Store x squared.
let xxRound := add(xx, half) // Round to the nearest number.
// Revert if `xx + half` overflowed, or if `x ** 2` overflows.
if or(lt(xxRound, xx), shr(128, x)) {
mstore(0x00, 0x49f7642b) // `RPowOverflow()`.
revert(0x1c, 0x04)
}
x := div(xxRound, b) // Set `x` to scaled `xxRound`.
// If `y` is odd:
if and(y, 1) {
let zx := mul(z, x) // Compute `z * x`.
let zxRound := add(zx, half) // Round to the nearest number.
// If `z * x` overflowed or `zx + half` overflowed:
if or(xor(div(zx, x), z), lt(zxRound, zx)) {
// Revert if `x` is non-zero.
if x {
mstore(0x00, 0x49f7642b) // `RPowOverflow()`.
revert(0x1c, 0x04)
}
}
z := div(zxRound, b) // Return properly scaled `zxRound`.
}
}
}
}
}
/// @dev Returns the square root of `x`, rounded down.
function sqrt(uint256 x) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
// `floor(sqrt(2**15)) = 181`. `sqrt(2**15) - 181 = 2.84`.
z := 181 // The "correct" value is 1, but this saves a multiplication later.
// This segment is to get a reasonable initial estimate for the Babylonian method. With a bad
// start, the correct # of bits increases ~linearly each iteration instead of ~quadratically.
// Let `y = x / 2**r`. We check `y >= 2**(k + 8)`
// but shift right by `k` bits to ensure that if `x >= 256`, then `y >= 256`.
let r := shl(7, lt(0xffffffffffffffffffffffffffffffffff, x))
r := or(r, shl(6, lt(0xffffffffffffffffff, shr(r, x))))
r := or(r, shl(5, lt(0xffffffffff, shr(r, x))))
r := or(r, shl(4, lt(0xffffff, shr(r, x))))
z := shl(shr(1, r), z)
// Goal was to get `z*z*y` within a small factor of `x`. More iterations could
// get y in a tighter range. Currently, we will have y in `[256, 256*(2**16))`.
// We ensured `y >= 256` so that the relative difference between `y` and `y+1` is small.
// That's not possible if `x < 256` but we can just verify those cases exhaustively.
// Now, `z*z*y <= x < z*z*(y+1)`, and `y <= 2**(16+8)`, and either `y >= 256`, or `x < 256`.
// Correctness can be checked exhaustively for `x < 256`, so we assume `y >= 256`.
// Then `z*sqrt(y)` is within `sqrt(257)/sqrt(256)` of `sqrt(x)`, or about 20bps.
// For `s` in the range `[1/256, 256]`, the estimate `f(s) = (181/1024) * (s+1)`
// is in the range `(1/2.84 * sqrt(s), 2.84 * sqrt(s))`,
// with largest error when `s = 1` and when `s = 256` or `1/256`.
// Since `y` is in `[256, 256*(2**16))`, let `a = y/65536`, so that `a` is in `[1/256, 256)`.
// Then we can estimate `sqrt(y)` using
// `sqrt(65536) * 181/1024 * (a + 1) = 181/4 * (y + 65536)/65536 = 181 * (y + 65536)/2**18`.
// There is no overflow risk here since `y < 2**136` after the first branch above.
z := shr(18, mul(z, add(shr(r, x), 65536))) // A `mul()` is saved from starting `z` at 181.
// Given the worst case multiplicative error of 2.84 above, 7 iterations should be enough.
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
// If `x+1` is a perfect square, the Babylonian method cycles between
// `floor(sqrt(x))` and `ceil(sqrt(x))`. This statement ensures we return floor.
// See: https://en.wikipedia.org/wiki/Integer_square_root#Using_only_integer_division
z := sub(z, lt(div(x, z), z))
}
}
/// @dev Returns the cube root of `x`, rounded down.
/// Credit to bout3fiddy and pcaversaccio under AGPLv3 license:
/// https://github.com/pcaversaccio/snekmate/blob/main/src/utils/Math.vy
/// Formally verified by xuwinnie:
/// https://github.com/vectorized/solady/blob/main/audits/xuwinnie-solady-cbrt-proof.pdf
function cbrt(uint256 x) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
let r := shl(7, lt(0xffffffffffffffffffffffffffffffff, x))
r := or(r, shl(6, lt(0xffffffffffffffff, shr(r, x))))
r := or(r, shl(5, lt(0xffffffff, shr(r, x))))
r := or(r, shl(4, lt(0xffff, shr(r, x))))
r := or(r, shl(3, lt(0xff, shr(r, x))))
// Makeshift lookup table to nudge the approximate log2 result.
z := div(shl(div(r, 3), shl(lt(0xf, shr(r, x)), 0xf)), xor(7, mod(r, 3)))
// Newton-Raphson's.
z := div(add(add(div(x, mul(z, z)), z), z), 3)
z := div(add(add(div(x, mul(z, z)), z), z), 3)
z := div(add(add(div(x, mul(z, z)), z), z), 3)
z := div(add(add(div(x, mul(z, z)), z), z), 3)
z := div(add(add(div(x, mul(z, z)), z), z), 3)
z := div(add(add(div(x, mul(z, z)), z), z), 3)
z := div(add(add(div(x, mul(z, z)), z), z), 3)
// Round down.
z := sub(z, lt(div(x, mul(z, z)), z))
}
}
/// @dev Returns the square root of `x`, denominated in `WAD`, rounded down.
function sqrtWad(uint256 x) internal pure returns (uint256 z) {
unchecked {
if (x <= type(uint256).max / 10 ** 18) return sqrt(x * 10 ** 18);
z = (1 + sqrt(x)) * 10 ** 9;
z = (fullMulDivUnchecked(x, 10 ** 18, z) + z) >> 1;
}
/// @solidity memory-safe-assembly
assembly {
z := sub(z, gt(999999999999999999, sub(mulmod(z, z, x), 1))) // Round down.
}
}
/// @dev Returns the cube root of `x`, denominated in `WAD`, rounded down.
/// Formally verified by xuwinnie:
/// https://github.com/vectorized/solady/blob/main/audits/xuwinnie-solady-cbrt-proof.pdf
function cbrtWad(uint256 x) internal pure returns (uint256 z) {
unchecked {
if (x <= type(uint256).max / 10 ** 36) return cbrt(x * 10 ** 36);
z = (1 + cbrt(x)) * 10 ** 12;
z = (fullMulDivUnchecked(x, 10 ** 36, z * z) + z + z) / 3;
}
/// @solidity memory-safe-assembly
assembly {
let p := x
for {} 1 {} {
if iszero(shr(229, p)) {
if iszero(shr(199, p)) {
p := mul(p, 100000000000000000) // 10 ** 17.
break
}
p := mul(p, 100000000) // 10 ** 8.
break
}
if iszero(shr(249, p)) { p := mul(p, 100) }
break
}
let t := mulmod(mul(z, z), z, p)
z := sub(z, gt(lt(t, shr(1, p)), iszero(t))) // Round down.
}
}
/// @dev Returns the factorial of `x`.
function factorial(uint256 x) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := 1
if iszero(lt(x, 58)) {
mstore(0x00, 0xaba0f2a2) // `FactorialOverflow()`.
revert(0x1c, 0x04)
}
for {} x { x := sub(x, 1) } { z := mul(z, x) }
}
}
/// @dev Returns the log2 of `x`.
/// Equivalent to computing the index of the most significant bit (MSB) of `x`.
/// Returns 0 if `x` is zero.
function log2(uint256 x) internal pure returns (uint256 r) {
/// @solidity memory-safe-assembly
assembly {
r := shl(7, lt(0xffffffffffffffffffffffffffffffff, x))
r := or(r, shl(6, lt(0xffffffffffffffff, shr(r, x))))
r := or(r, shl(5, lt(0xffffffff, shr(r, x))))
r := or(r, shl(4, lt(0xffff, shr(r, x))))
r := or(r, shl(3, lt(0xff, shr(r, x))))
// forgefmt: disable-next-item
r := or(r, byte(and(0x1f, shr(shr(r, x), 0x8421084210842108cc6318c6db6d54be)),
0x0706060506020504060203020504030106050205030304010505030400000000))
}
}
/// @dev Returns the log2 of `x`, rounded up.
/// Returns 0 if `x` is zero.
function log2Up(uint256 x) internal pure returns (uint256 r) {
r = log2(x);
/// @solidity memory-safe-assembly
assembly {
r := add(r, lt(shl(r, 1), x))
}
}
/// @dev Returns the log10 of `x`.
/// Returns 0 if `x` is zero.
function log10(uint256 x) internal pure returns (uint256 r) {
/// @solidity memory-safe-assembly
assembly {
if iszero(lt(x, 100000000000000000000000000000000000000)) {
x := div(x, 100000000000000000000000000000000000000)
r := 38
}
if iszero(lt(x, 100000000000000000000)) {
x := div(x, 100000000000000000000)
r := add(r, 20)
}
if iszero(lt(x, 10000000000)) {
x := div(x, 10000000000)
r := add(r, 10)
}
if iszero(lt(x, 100000)) {
x := div(x, 100000)
r := add(r, 5)
}
r := add(r, add(gt(x, 9), add(gt(x, 99), add(gt(x, 999), gt(x, 9999)))))
}
}
/// @dev Returns the log10 of `x`, rounded up.
/// Returns 0 if `x` is zero.
function log10Up(uint256 x) internal pure returns (uint256 r) {
r = log10(x);
/// @solidity memory-safe-assembly
assembly {
r := add(r, lt(exp(10, r), x))
}
}
/// @dev Returns the log256 of `x`.
/// Returns 0 if `x` is zero.
function log256(uint256 x) internal pure returns (uint256 r) {
/// @solidity memory-safe-assembly
assembly {
r := shl(7, lt(0xffffffffffffffffffffffffffffffff, x))
r := or(r, shl(6, lt(0xffffffffffffffff, shr(r, x))))
r := or(r, shl(5, lt(0xffffffff, shr(r, x))))
r := or(r, shl(4, lt(0xffff, shr(r, x))))
r := or(shr(3, r), lt(0xff, shr(r, x)))
}
}
/// @dev Returns the log256 of `x`, rounded up.
/// Returns 0 if `x` is zero.
function log256Up(uint256 x) internal pure returns (uint256 r) {
r = log256(x);
/// @solidity memory-safe-assembly
assembly {
r := add(r, lt(shl(shl(3, r), 1), x))
}
}
/// @dev Returns the scientific notation format `mantissa * 10 ** exponent` of `x`.
/// Useful for compressing prices (e.g. using 25 bit mantissa and 7 bit exponent).
function sci(uint256 x) internal pure returns (uint256 mantissa, uint256 exponent) {
/// @solidity memory-safe-assembly
assembly {
mantissa := x
if mantissa {
if iszero(mod(mantissa, 1000000000000000000000000000000000)) {
mantissa := div(mantissa, 1000000000000000000000000000000000)
exponent := 33
}
if iszero(mod(mantissa, 10000000000000000000)) {
mantissa := div(mantissa, 10000000000000000000)
exponent := add(exponent, 19)
}
if iszero(mod(mantissa, 1000000000000)) {
mantissa := div(mantissa, 1000000000000)
exponent := add(exponent, 12)
}
if iszero(mod(mantissa, 1000000)) {
mantissa := div(mantissa, 1000000)
exponent := add(exponent, 6)
}
if iszero(mod(mantissa, 10000)) {
mantissa := div(mantissa, 10000)
exponent := add(exponent, 4)
}
if iszero(mod(mantissa, 100)) {
mantissa := div(mantissa, 100)
exponent := add(exponent, 2)
}
if iszero(mod(mantissa, 10)) {
mantissa := div(mantissa, 10)
exponent := add(exponent, 1)
}
}
}
}
/// @dev Convenience function for packing `x` into a smaller number using `sci`.
/// The `mantissa` will be in bits [7..255] (the upper 249 bits).
/// The `exponent` will be in bits [0..6] (the lower 7 bits).
/// Use `SafeCastLib` to safely ensure that the `packed` number is small
/// enough to fit in the desired unsigned integer type:
/// ```
/// uint32 packed = SafeCastLib.toUint32(FixedPointMathLib.packSci(777 ether));
/// ```
function packSci(uint256 x) internal pure returns (uint256 packed) {
(x, packed) = sci(x); // Reuse for `mantissa` and `exponent`.
/// @solidity memory-safe-assembly
assembly {
if shr(249, x) {
mstore(0x00, 0xce30380c) // `MantissaOverflow()`.
revert(0x1c, 0x04)
}
packed := or(shl(7, x), packed)
}
}
/// @dev Convenience function for unpacking a packed number from `packSci`.
function unpackSci(uint256 packed) internal pure returns (uint256 unpacked) {
unchecked {
unpacked = (packed >> 7) * 10 ** (packed & 0x7f);
}
}
/// @dev Returns the average of `x` and `y`. Rounds towards zero.
function avg(uint256 x, uint256 y) internal pure returns (uint256 z) {
unchecked {
z = (x & y) + ((x ^ y) >> 1);
}
}
/// @dev Returns the average of `x` and `y`. Rounds towards negative infinity.
function avg(int256 x, int256 y) internal pure returns (int256 z) {
unchecked {
z = (x >> 1) + (y >> 1) + (x & y & 1);
}
}
/// @dev Returns the absolute value of `x`.
function abs(int256 x) internal pure returns (uint256 z) {
unchecked {
z = (uint256(x) + uint256(x >> 255)) ^ uint256(x >> 255);
}
}
/// @dev Returns the absolute distance between `x` and `y`.
function dist(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := add(xor(sub(0, gt(x, y)), sub(y, x)), gt(x, y))
}
}
/// @dev Returns the absolute distance between `x` and `y`.
function dist(int256 x, int256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := add(xor(sub(0, sgt(x, y)), sub(y, x)), sgt(x, y))
}
}
/// @dev Returns the minimum of `x` and `y`.
function min(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := xor(x, mul(xor(x, y), lt(y, x)))
}
}
/// @dev Returns the minimum of `x` and `y`.
function min(int256 x, int256 y) internal pure returns (int256 z) {
/// @solidity memory-safe-assembly
assembly {
z := xor(x, mul(xor(x, y), slt(y, x)))
}
}
/// @dev Returns the maximum of `x` and `y`.
function max(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := xor(x, mul(xor(x, y), gt(y, x)))
}
}
/// @dev Returns the maximum of `x` and `y`.
function max(int256 x, int256 y) internal pure returns (int256 z) {
/// @solidity memory-safe-assembly
assembly {
z := xor(x, mul(xor(x, y), sgt(y, x)))
}
}
/// @dev Returns `x`, bounded to `minValue` and `maxValue`.
function clamp(uint256 x, uint256 minValue, uint256 maxValue)
internal
pure
returns (uint256 z)
{
/// @solidity memory-safe-assembly
assembly {
z := xor(x, mul(xor(x, minValue), gt(minValue, x)))
z := xor(z, mul(xor(z, maxValue), lt(maxValue, z)))
}
}
/// @dev Returns `x`, bounded to `minValue` and `maxValue`.
function clamp(int256 x, int256 minValue, int256 maxValue) internal pure returns (int256 z) {
/// @solidity memory-safe-assembly
assembly {
z := xor(x, mul(xor(x, minValue), sgt(minValue, x)))
z := xor(z, mul(xor(z, maxValue), slt(maxValue, z)))
}
}
/// @dev Returns greatest common divisor of `x` and `y`.
function gcd(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
for { z := x } y {} {
let t := y
y := mod(z, y)
z := t
}
}
}
/// @dev Returns `a + (b - a) * (t - begin) / (end - begin)`,
/// with `t` clamped between `begin` and `end` (inclusive).
/// Agnostic to the order of (`a`, `b`) and (`end`, `begin`).
/// If `begins == end`, returns `t <= begin ? a : b`.
function lerp(uint256 a, uint256 b, uint256 t, uint256 begin, uint256 end)
internal
pure
returns (uint256)
{
if (begin > end) (t, begin, end) = (~t, ~begin, ~end);
if (t <= begin) return a;
if (t >= end) return b;
unchecked {
if (b >= a) return a + fullMulDiv(b - a, t - begin, end - begin);
return a - fullMulDiv(a - b, t - begin, end - begin);
}
}
/// @dev Returns `a + (b - a) * (t - begin) / (end - begin)`.
/// with `t` clamped between `begin` and `end` (inclusive).
/// Agnostic to the order of (`a`, `b`) and (`end`, `begin`).
/// If `begins == end`, returns `t <= begin ? a : b`.
function lerp(int256 a, int256 b, int256 t, int256 begin, int256 end)
internal
pure
returns (int256)
{
if (begin > end) (t, begin, end) = (~t, ~begin, ~end);
if (t <= begin) return a;
if (t >= end) return b;
// forgefmt: disable-next-item
unchecked {
if (b >= a) return int256(uint256(a) + fullMulDiv(uint256(b - a),
uint256(t - begin), uint256(end - begin)));
return int256(uint256(a) - fullMulDiv(uint256(a - b),
uint256(t - begin), uint256(end - begin)));
}
}
/// @dev Returns if `x` is an even number. Some people may need this.
function isEven(uint256 x) internal pure returns (bool) {
return x & uint256(1) == uint256(0);
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* RAW NUMBER OPERATIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns `x + y`, without checking for overflow.
function rawAdd(uint256 x, uint256 y) internal pure returns (uint256 z) {
unchecked {
z = x + y;
}
}
/// @dev Returns `x + y`, without checking for overflow.
function rawAdd(int256 x, int256 y) internal pure returns (int256 z) {
unchecked {
z = x + y;
}
}
/// @dev Returns `x - y`, without checking for underflow.
function rawSub(uint256 x, uint256 y) internal pure returns (uint256 z) {
unchecked {
z = x - y;
}
}
/// @dev Returns `x - y`, without checking for underflow.
function rawSub(int256 x, int256 y) internal pure returns (int256 z) {
unchecked {
z = x - y;
}
}
/// @dev Returns `x * y`, without checking for overflow.
function rawMul(uint256 x, uint256 y) internal pure returns (uint256 z) {
unchecked {
z = x * y;
}
}
/// @dev Returns `x * y`, without checking for overflow.
function rawMul(int256 x, int256 y) internal pure returns (int256 z) {
unchecked {
z = x * y;
}
}
/// @dev Returns `x / y`, returning 0 if `y` is zero.
function rawDiv(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := div(x, y)
}
}
/// @dev Returns `x / y`, returning 0 if `y` is zero.
function rawSDiv(int256 x, int256 y) internal pure returns (int256 z) {
/// @solidity memory-safe-assembly
assembly {
z := sdiv(x, y)
}
}
/// @dev Returns `x % y`, returning 0 if `y` is zero.
function rawMod(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := mod(x, y)
}
}
/// @dev Returns `x % y`, returning 0 if `y` is zero.
function rawSMod(int256 x, int256 y) internal pure returns (int256 z) {
/// @solidity memory-safe-assembly
assembly {
z := smod(x, y)
}
}
/// @dev Returns `(x + y) % d`, return 0 if `d` if zero.
function rawAddMod(uint256 x, uint256 y, uint256 d) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := addmod(x, y, d)
}
}
/// @dev Returns `(x * y) % d`, return 0 if `d` if zero.
function rawMulMod(uint256 x, uint256 y, uint256 d) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := mulmod(x, y, d)
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.19;
import {SafeCastLib} from "solady/utils/SafeCastLib.sol";
import {TickMath} from "@uniswap/v4-core/src/libraries/TickMath.sol";
import {FixedPointMathLib} from "solady/utils/FixedPointMathLib.sol";
import "../base/Constants.sol";
using FixedPointMathLib for int256;
using FixedPointMathLib for uint256;
/// @dev modified from solady
function dist(uint256 x, uint256 y) pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
z := xor(mul(xor(sub(y, x), sub(x, y)), gt(x, y)), sub(y, x))
}
}
/// @dev modified from solady
function absDiff(uint256 x, uint256 y) pure returns (bool positive, uint256 diff) {
/// @solidity memory-safe-assembly
assembly {
positive := gt(x, y)
diff := xor(mul(xor(sub(y, x), sub(x, y)), gt(x, y)), sub(y, x))
}
}
function roundTick(int24 currentTick, int24 tickSpacing) pure returns (int24 roundedTick, int24 nextRoundedTick) {
int24 compressed = currentTick / tickSpacing;
if (currentTick < 0 && currentTick % tickSpacing != 0) compressed--; // round towards negative infinity
roundedTick = compressed * tickSpacing;
nextRoundedTick = roundedTick + tickSpacing;
}
function roundTickSingle(int24 currentTick, int24 tickSpacing) pure returns (int24 roundedTick) {
int24 compressed = currentTick / tickSpacing;
if (currentTick < 0 && currentTick % tickSpacing != 0) compressed--; // round towards negative infinity
roundedTick = compressed * tickSpacing;
}
function boundTick(int24 tick, int24 tickSpacing) pure returns (int24 boundedTick) {
(int24 minTick, int24 maxTick) = (TickMath.minUsableTick(tickSpacing), TickMath.maxUsableTick(tickSpacing));
return int24(FixedPointMathLib.clamp(tick, minTick, maxTick));
}
function weightedSum(uint256 value0, uint256 weight0, uint256 value1, uint256 weight1) pure returns (uint256) {
return (value0 * weight0 + value1 * weight1) / (weight0 + weight1);
}
/// @dev Converts xWad, the decimal index of a rounded tick scaled by WAD, to the corresponding rounded tick.
function xWadToRoundedTick(int256 xWad, int24 mu, int24 tickSpacing, bool roundUp) pure returns (int24) {
int24 x = SafeCastLib.toInt24(xWad / int256(WAD));
if (roundUp) {
if (xWad > 0 && xWad % int256(WAD) != 0) x++; // round towards positive infinity
} else {
if (xWad < 0 && xWad % int256(WAD) != 0) x--; // round towards negative infinity
}
return x * tickSpacing + mu;
}
function percentDelta(uint256 a, uint256 b) pure returns (uint256) {
uint256 absDelta = dist(a, b);
return FixedPointMathLib.divWad(absDelta, b);
}
/// @dev Returns ReLU(x - y) = max(x - y, 0)
function subReLU(uint256 x, uint256 y) pure returns (uint256) {
unchecked {
return x > y ? x - y : 0;
}
}
function divQ96RoundUp(uint256 value) pure returns (uint256) {
return (value + ((1 << 96) - 1)) >> 96;
}
function roundUpFullMulDivResult(uint256 x, uint256 y, uint256 d, uint256 resultRoundedDown)
pure
returns (uint256 result)
{
result = resultRoundedDown;
/// @solidity memory-safe-assembly
assembly {
if mulmod(x, y, d) {
result := add(resultRoundedDown, 1)
if iszero(result) {
mstore(0x00, 0xae47f702) // `FullMulDivFailed()`.
revert(0x1c, 0x04)
}
}
}
}// SPDX-License-Identifier: MIT pragma solidity >=0.6.0; pragma abicoder v2; error BunniHub__Paused(); error BunniHub__ZeroInput(); error BunniHub__PastDeadline(); error BunniHub__Unauthorized(); error BunniHub__InvalidReferrer(); error BunniHub__LDFCannotBeZero(); error BunniHub__MaxNonceReached(); error BunniHub__SlippageTooHigh(); error BunniHub__WithdrawalPaused(); error BunniHub__HookCannotBeZero(); error BunniHub__ZeroSharesMinted(); error BunniHub__InvalidLDFParams(); error BunniHub__InvalidHookParams(); error BunniHub__VaultFeeIncorrect(); error BunniHub__VaultAssetMismatch(); error BunniHub__GracePeriodExpired(); error BunniHub__NoExpiredWithdrawal(); error BunniHub__MsgValueInsufficient(); error BunniHub__DepositAmountTooSmall(); error BunniHub__QueuedWithdrawalNotReady(); error BunniHub__BunniTokenNotInitialized(); error BunniHub__NeedToUseQueuedWithdrawal(); error BunniHub__InvalidRawTokenRatioBounds(); error BunniHub__QueuedWithdrawalNonexistent(); error BunniHub__MsgValueNotZeroWhenPoolKeyHasNoNativeToken(); error BunniToken__NotBunniHub(); error BunniToken__NotPoolManager(); error BunniToken__ReferrerAddressIsZero(); error BunniHook__InvalidSwap(); error BunniHook__Unauthorized(); error BunniHook__InvalidModifier(); error BunniHook__InsufficientOutput(); error BunniHook__InvalidRebalanceOrderHash(); error BunniHook__PrehookPostConditionFailed(); error BunniHook__RequestedOutputExceedsBalance(); error BunniSwapMath__SwapFailed();
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.20;
import {ERC4626} from "solady/tokens/ERC4626.sol";
function getReservesInUnderlying(uint256 reserveAmount, ERC4626 vault) view returns (uint256) {
return address(vault) == address(0) ? reserveAmount : vault.previewRedeem(reserveAmount);
}// SPDX-License-Identifier: MIT pragma solidity >=0.6.0; pragma abicoder v2; uint256 constant WAD = 1e18; uint256 constant Q96 = 0x1000000000000000000000000; uint256 constant MAX_NONCE = 1e6; uint256 constant MIN_INITIAL_SHARES = 1e12; uint256 constant MAX_SWAP_FEE_RATIO = 2.88e20; // max ratio that avoids overflow in swap fee calculation, roughly sqrt(SWAP_FEE_BASE) * sqrt(sqrt((type(uint256).max - SWAP_FEE_BASE) / type(uint24).max) - 1) uint256 constant SWAP_FEE_BASE = 1e6; uint256 constant SWAP_FEE_BASE_SQUARED = 1e12; uint256 constant RAW_TOKEN_RATIO_BASE = 1e6; uint256 constant LN2_WAD = 693147180559945309; uint256 constant MAX_VAULT_FEE_ERROR = 1e6; uint256 constant MAX_CARDINALITY = 2 ** 24 - 1; uint56 constant WITHDRAW_DELAY = 1 minutes; uint56 constant WITHDRAW_GRACE_PERIOD = 3 minutes; uint256 constant REFERRAL_REWARD_PER_TOKEN_PRECISION = 1e30; uint256 constant MODIFIER_BASE = 1e6; uint256 constant MIN_DEPOSIT_BALANCE_INCREASE = 1e6; uint24 constant MAX_AMAMM_FEE = 0.1e6; uint256 constant REBALANCE_MAX_SLIPPAGE_BASE = 1e5; uint16 constant MAX_SURGE_HALFLIFE = 1 hours; uint16 constant MAX_SURGE_AUTOSTART_TIME = 1 hours; uint16 constant MAX_REBALANCE_MAX_SLIPPAGE = 0.25e5; // max value for rebalanceMaxSlippage is 25% uint16 constant MAX_REBALANCE_TWAP_SECONDS_AGO = 3 hours; uint16 constant MAX_REBALANCE_ORDER_TTL = 1 hours;
// SPDX-License-Identifier: MIT
pragma solidity >=0.6.0;
pragma abicoder v2;
import {PoolId, PoolKey} from "@uniswap/v4-core/src/interfaces/IPoolManager.sol";
import {ERC4626} from "solady/tokens/ERC4626.sol";
import "./Constants.sol";
import "../types/IdleBalance.sol";
import {Oracle} from "../lib/Oracle.sol";
import {RawPoolState} from "../types/PoolState.sol";
import {IBunniHook} from "../interfaces/IBunniHook.sol";
import {IBunniToken} from "../interfaces/IBunniToken.sol";
import {ILiquidityDensityFunction} from "../interfaces/ILiquidityDensityFunction.sol";
/// @title Contains structs shared between multiple contracts
struct QueuedWithdrawal {
uint200 shareAmount;
uint56 unlockTimestamp;
}
/// @notice The storage of BunniHub
/// @member poolState The state of a given pool
/// @member reserve0 The vault share tokens owned in vault0
/// @member reserve1 The vault share tokens owned in vault1
/// @member idleBalance The balance of the token that's in excess. Used when computing the total liquidity.
/// @member nonce The nonce for a given bunniSubspace
/// @member poolIdOfBunniToken The pool ID of a given BunniToken
/// @member queuedWithdrawals The queued withdrawals for a given pool & user
/// @member isPauser The set of addresses that can pause external functions
/// @member referralRewardRecipient The address of the recipient of referral rewards belonging to the default referrer address(0)
/// @member pauseFlags Bit flags for pausing external functions
/// @member unpauseFuse Can be permanently set to true to unpause all external functions
struct HubStorage {
mapping(PoolId poolId => RawPoolState) poolState;
mapping(PoolId poolId => uint256) reserve0;
mapping(PoolId poolId => uint256) reserve1;
mapping(PoolId poolId => IdleBalance) idleBalance;
mapping(bytes32 bunniSubspace => uint24) nonce;
mapping(IBunniToken bunniToken => PoolId) poolIdOfBunniToken;
mapping(PoolId poolId => mapping(address => QueuedWithdrawal)) queuedWithdrawals;
mapping(address guy => bool) isPauser;
address referralRewardRecipient;
uint8 pauseFlags;
bool unpauseFuse;
}
/// @notice The decoded hook params for a given pool
/// @member feeMin The minimum swap fee, 6 decimals
/// @member feeMax The maximum swap fee (may be exceeded if surge fee is active), 6 decimals
/// @member feeQuadraticMultiplier The quadratic multiplier for the dynamic swap fee formula, 6 decimals
/// @member feeTwapSecondsAgo The time window for the TWAP used by the dynamic swap fee formula
/// @member maxAmAmmFee The maximum swap fee that can be set by the am-AMM manager. Must <= MAX_AMAMM_FEE.
/// @member surgeFeeHalfLife The half-life of the surge fee in seconds. The surge fee decays exponentially, and the half-life is the time it takes for the surge fee to decay to half its value.
/// @member surgeFeeAutostartThreshold Time after a swap when the surge fee exponential decay autostarts, in seconds. The autostart avoids the pool being stuck on a high fee.
/// @member vaultSurgeThreshold0 The threshold for the vault0 share price change to trigger the surge fee. Only used if both vaults are set.
/// 1 / vaultSurgeThreshold is the minimum percentage change in the vault share price to trigger the surge fee.
/// @member vaultSurgeThreshold1 The threshold for the vault1 share price change to trigger the surge fee. Only used if both vaults are set.
/// 1 / vaultSurgeThreshold is the minimum percentage change in the vault share price to trigger the surge fee.
/// @member rebalanceThreshold The threshold for triggering a rebalance from excess liquidity.
/// 1 / rebalanceThreshold is the minimum ratio of excess liquidity to total liquidity to trigger a rebalance.
/// When set to 0, rebalancing is disabled.
/// @member rebalanceMaxSlippage The maximum slippage (vs TWAP) allowed during rebalancing, 5 decimals. At most MAX_REBALANCE_MAX_SLIPPAGE.
/// @member rebalanceTwapSecondsAgo The time window for the TWAP used during rebalancing. At most MAX_REBALANCE_TWAP_SECONDS_AGO.
/// @member rebalanceOrderTTL The time-to-live for a rebalance order, in seconds. At most MAX_REBALANCE_ORDER_TTL.
/// @member amAmmEnabled Whether the am-AMM is enabled for this pool
/// @member oracleMinInterval The minimum interval between TWAP oracle updates, in seconds
/// @member minRentMultiplier The multiplier applied to the BunniToken total supply to compute the minimum rent. 18 decimals. Must be > 0 unless amAmmEnabled == false.
struct DecodedHookParams {
uint24 feeMin;
uint24 feeMax;
uint24 feeQuadraticMultiplier;
uint24 feeTwapSecondsAgo;
uint24 maxAmAmmFee;
uint16 surgeFeeHalfLife;
uint16 surgeFeeAutostartThreshold;
uint16 vaultSurgeThreshold0;
uint16 vaultSurgeThreshold1;
uint16 rebalanceThreshold;
uint16 rebalanceMaxSlippage;
uint16 rebalanceTwapSecondsAgo;
uint16 rebalanceOrderTTL;
bool amAmmEnabled;
uint32 oracleMinInterval;
uint48 minRentMultiplier;
}
/// @notice Contains mappings used by both BunniHook and BunniLogic. Makes passing
/// mappings to BunniHookLogic easier & cheaper.
/// @member observations The list of observations for a given pool ID
/// @member states The current TWAP oracle state for a given pool ID
/// @member rebalanceOrderHash The hash of the currently active rebalance order
/// @member rebalanceOrderPermit2Hash The Permit2 hash that's verified when BunniHook.isValidSignature() is called
/// @member rebalanceOrderDeadline The deadline for the currently active rebalance order
/// @member vaultSharePricesAtLastSwap The share prices of the vaults used by the pool at the last swap
/// @member ldfStates The LDF state for a given pool ID
/// @member slot0s The slot0 state for a given pool ID
struct HookStorage {
mapping(PoolId => Oracle.Observation[MAX_CARDINALITY]) observations;
mapping(PoolId => IBunniHook.ObservationState) states;
mapping(PoolId id => bytes32) rebalanceOrderHash;
mapping(PoolId id => bytes32) rebalanceOrderPermit2Hash;
mapping(PoolId id => uint256) rebalanceOrderDeadline;
mapping(PoolId => VaultSharePrices) vaultSharePricesAtLastSwap;
mapping(PoolId => bytes32) ldfStates;
mapping(PoolId => Slot0) slot0s;
}
/// @notice The slot0 state of a given pool
/// @member sqrtPriceX96 A Fixed point Q64.96 number representing the sqrt of the ratio of the two assets (currency1/currency0)
/// @member tick The log base 1.0001 of the ratio of the two assets (currency1/currency0)
/// @member lastSwapTimestamp The timestamp of the last swap (or rebalance execution)
/// @member lastSurgeTimestamp The timestamp of the last surge
struct Slot0 {
uint160 sqrtPriceX96;
int24 tick;
uint32 lastSwapTimestamp;
uint32 lastSurgeTimestamp;
}
/// @notice Tracks the share prices of vaults used by a pool using vaults for both currencies. Used for computing surges.
/// @member initialized True if the share prices have been initialized
/// @member sharePrice0 The underlying assets each share of vault0 represents, scaled by 1e18
/// @member sharePrice1 The underlying assets each share of vault1 represents, scaled by 1e18
struct VaultSharePrices {
bool initialized;
uint120 sharePrice0;
uint120 sharePrice1;
}// SPDX-License-Identifier: MIT
pragma solidity >=0.6.0;
pragma abicoder v2;
import {PoolId} from "@uniswap/v4-core/src/types/PoolId.sol";
import {Currency} from "@uniswap/v4-core/src/types/Currency.sol";
import {IHooks} from "@uniswap/v4-core/src/interfaces/IHooks.sol";
import {BalanceDelta} from "@uniswap/v4-core/src/types/BalanceDelta.sol";
import {IPoolManager, PoolKey} from "@uniswap/v4-core/src/interfaces/IPoolManager.sol";
import {IUnlockCallback} from "@uniswap/v4-core/src/interfaces/callback/IUnlockCallback.sol";
import {WETH} from "solady/tokens/WETH.sol";
import {ERC4626} from "solady/tokens/ERC4626.sol";
import "../types/LDFType.sol";
import "../types/IdleBalance.sol";
import "../base/SharedStructs.sol";
import {IERC20} from "./IERC20.sol";
import {IHooklet} from "./IHooklet.sol";
import {IOwnable} from "./IOwnable.sol";
import {IBunniHook} from "./IBunniHook.sol";
import {IBunniToken} from "./IBunniToken.sol";
import {PoolState} from "../types/PoolState.sol";
import {ILiquidityDensityFunction} from "./ILiquidityDensityFunction.sol";
/// @title BunniHub
/// @author zefram.eth
/// @notice The main contract LPs interact with. Each BunniKey corresponds to a BunniToken,
/// which is the ERC20 LP token for the Uniswap V3 position specified by the BunniKey.
/// Use deposit()/withdraw() to mint/burn LP tokens, and use compound() to compound the swap fees
/// back into the LP position.
interface IBunniHub is IUnlockCallback, IOwnable {
/// @notice Emitted when liquidity is increased via deposit
/// @param sender The msg.sender address
/// @param recipient The address of the account that received the share tokens
/// @param poolId The Uniswap V4 pool's ID
/// @param amount0 The amount of token0 that was paid for the increase in liquidity
/// @param amount1 The amount of token1 that was paid for the increase in liquidity
/// @param shares The amount of share tokens minted to the recipient
event Deposit(
address indexed sender,
address indexed recipient,
PoolId indexed poolId,
uint256 amount0,
uint256 amount1,
uint256 shares
);
/// @notice Emitted when a withdrawal is queued
/// @param sender The msg.sender address
/// @param poolId The Uniswap V4 pool's ID
/// @param shares The amount of share tokens queued for withdrawal
event QueueWithdraw(address indexed sender, PoolId indexed poolId, uint256 shares);
/// @notice Emitted when liquidity is decreased via withdrawal
/// @param sender The msg.sender address
/// @param recipient The address of the account that received the collected tokens
/// @param poolId The Uniswap V4 pool's ID
/// @param amount0 The amount of token0 that was accounted for the decrease in liquidity
/// @param amount1 The amount of token1 that was accounted for the decrease in liquidity
/// @param shares The amount of share tokens burnt from the sender
event Withdraw(
address indexed sender,
address indexed recipient,
PoolId indexed poolId,
uint256 amount0,
uint256 amount1,
uint256 shares
);
/// @notice Emitted when a new IBunniToken is created
/// @param bunniToken The BunniToken associated with the call
/// @param poolId The Uniswap V4 pool's ID
event NewBunni(IBunniToken indexed bunniToken, PoolId indexed poolId);
/// @notice Emitted when the recipient of referral rewards of the default referrer address(0) is set
/// @param newReferralRewardRecipient The new recipient of referral rewards of the default referrer address(0)
event SetReferralRewardRecipient(address indexed newReferralRewardRecipient);
/// @notice Emitted when a new address is added to or removed from the pauser set
/// @param guy The address that was added or removed from the pauser set
/// @param isPauser True if the address was added to the pauser set, false if it was removed
event SetPauser(address indexed guy, bool indexed isPauser);
/// @notice Emitted when the pause flags are set
/// @param pauseFlags The new pause flags, each bit corresponds to a function in BunniHub and is set to 1 if the function is paused
event SetPauseFlags(uint8 indexed pauseFlags);
/// @notice Emitted when the pause fuse is burned
event BurnPauseFuse();
/// @param poolKey The PoolKey of the Uniswap V4 pool
/// @param recipient The recipient of the minted share tokens
/// @param refundRecipient The recipient of the refunded ETH
/// @param amount0Desired The desired amount of token0 to be spent,
/// @param amount1Desired The desired amount of token1 to be spent,
/// @param amount0Min The minimum amount of token0 to spend, which serves as a slippage check,
/// @param amount1Min The minimum amount of token1 to spend, which serves as a slippage check,
/// @param vaultFee0 When we deposit token0 into vault0, the deposit amount is multiplied by WAD / (WAD - vaultFee0),
/// @param vaultFee1 When we deposit token1 into vault1, the deposit amount is multiplied by WAD / (WAD - vaultFee1),
/// @param deadline The time by which the transaction must be included to effect the change
/// @param referrer The referrer of the liquidity provider. Used for fee sharing.
struct DepositParams {
PoolKey poolKey;
address recipient;
address refundRecipient;
uint256 amount0Desired;
uint256 amount1Desired;
uint256 amount0Min;
uint256 amount1Min;
uint256 vaultFee0;
uint256 vaultFee1;
uint256 deadline;
address referrer;
}
/// @notice Increases the amount of liquidity in a position, with tokens paid by the `msg.sender`
/// @dev Must be called after the corresponding BunniToken has been deployed via deployBunniToken()
/// @param params The input parameters
/// poolKey The PoolKey of the Uniswap V4 pool
/// recipient The recipient of the minted share tokens
/// refundRecipient The recipient of the refunded ETH
/// amount0Desired The desired amount of token0 to be spent,
/// amount1Desired The desired amount of token1 to be spent,
/// amount0Min The minimum amount of token0 to spend, which serves as a slippage check,
/// amount1Min The minimum amount of token1 to spend, which serves as a slippage check,
/// vaultFee0 When we deposit token0 into vault0, the deposit amount is multiplied by WAD / (WAD - vaultFee0),
/// vaultFee1 When we deposit token1 into vault1, the deposit amount is multiplied by WAD / (WAD - vaultFee1),
/// deadline The time by which the transaction must be included to effect the change
/// @return shares The new share tokens minted to the sender
/// @return amount0 The amount of token0 to acheive resulting liquidity
/// @return amount1 The amount of token1 to acheive resulting liquidity
function deposit(DepositParams calldata params)
external
payable
returns (uint256 shares, uint256 amount0, uint256 amount1);
/// @param poolKey The PoolKey of the Uniswap V4 pool
/// @param shares The amount of share tokens to burn. Ignored if an expired queued withdrawal exists.
struct QueueWithdrawParams {
PoolKey poolKey;
uint200 shares;
}
/// @notice Queues a withdrawal of liquidity. Need to use this before calling withdraw() if am-AMM is enabled
/// and a manager exists for the pool. A queued withdrawal is unlocked after WITHDRAW_DELAY (1 minutes) has passed,
/// and before WITHDRAW_GRACE_PERIOD (15 minutes) has passed after it's been unlocked. This ensures the am-AMM manager
/// has an opportunity to execute any arbitrage trades before a withdrawal is processed.
/// @param params The input parameters
/// poolKey The PoolKey of the Uniswap V4 pool
/// shares The amount of share tokens to burn
function queueWithdraw(QueueWithdrawParams calldata params) external;
/// @param poolKey The PoolKey of the Uniswap V4 pool
/// @param recipient The recipient of the withdrawn tokens
/// @param shares The amount of share tokens to burn
/// @param amount0Min The minimum amount of token0 that should be accounted for the burned liquidity
/// @param amount1Min The minimum amount of token1 that should be accounted for the burned liquidity
/// @param deadline The time by which the transaction must be included to effect the change
/// @param useQueuedWithdrawal If true, queued withdrawal share tokens will be used
struct WithdrawParams {
PoolKey poolKey;
address recipient;
uint256 shares;
uint256 amount0Min;
uint256 amount1Min;
uint256 deadline;
bool useQueuedWithdrawal;
}
/// @notice Decreases the amount of liquidity in the position and sends the tokens to the sender.
/// If withdrawing ETH, need to follow up with unwrapWETH9() and sweepToken()
/// @dev Must be called after the corresponding BunniToken has been deployed via deployBunniToken()
/// @param params The input parameters
/// poolKey The Uniswap v4 pool's key
/// recipient The recipient of the withdrawn tokens
/// shares The amount of share tokens to burn,
/// amount0Min The minimum amount of token0 that should be accounted for the burned liquidity,
/// amount1Min The minimum amount of token1 that should be accounted for the burned liquidity,
/// deadline The time by which the transaction must be included to effect the change
/// @return amount0 The amount of token0 withdrawn to the recipient
/// @return amount1 The amount of token1 withdrawn to the recipient
function withdraw(WithdrawParams calldata params) external returns (uint256 amount0, uint256 amount1);
/// @param currency0 The token0 of the Uniswap V4 pool
/// @param currency1 The token1 of the Uniswap V4 pool
/// @param tickSpacing The tick spacing of the Uniswap V4 pool
/// @param twapSecondsAgo The TWAP time period to use for the liquidity density function
/// @param liquidityDensityFunction The liquidity density function to use
/// @param ldfType The type of LDF. See LDFType.sol for details.
/// @param hooklet The hooklet to use for the Bunni pool. If it's address(0), then a hooklet is not used.
/// @param ldfParams The parameters for the liquidity density function
/// @param hooks The hooks to use for the Uniswap V4 pool
/// @param hookParams The parameters for the hooks
/// @param vault0 The vault for token0. If address(0), then a vault is not used.
/// @param vault1 The vault for token1. If address(0), then a vault is not used.
/// @param minRawTokenRatio0 The minimum (rawBalance / balance) ratio for token0
/// @param targetRawTokenRatio0 The target (rawBalance / balance) ratio for token0
/// @param maxRawTokenRatio0 The maximum (rawBalance / balance) ratio for token0
/// @param minRawTokenRatio1 The minimum (rawBalance / balance) ratio for token1
/// @param targetRawTokenRatio1 The target (rawBalance / balance) ratio for token1
/// @param maxRawTokenRatio1 The maximum (rawBalance / balance) ratio for token1
/// @param sqrtPriceX96 The initial sqrt price of the Uniswap V4 pool
/// @param name The name of the BunniToken
/// @param symbol The symbol of the BunniToken
/// @param owner The owner of the BunniToken. Only has the power to set the metadata URI.
/// @param metadataURI The initial metadata URI of the BunniToken, containing info like description, image, etc.
/// @param salt The salt for deploying the BunniToken via CREATE3.
struct DeployBunniTokenParams {
Currency currency0;
Currency currency1;
int24 tickSpacing;
uint24 twapSecondsAgo;
ILiquidityDensityFunction liquidityDensityFunction;
IHooklet hooklet;
LDFType ldfType;
bytes32 ldfParams;
IBunniHook hooks;
bytes hookParams;
ERC4626 vault0;
ERC4626 vault1;
uint24 minRawTokenRatio0;
uint24 targetRawTokenRatio0;
uint24 maxRawTokenRatio0;
uint24 minRawTokenRatio1;
uint24 targetRawTokenRatio1;
uint24 maxRawTokenRatio1;
uint160 sqrtPriceX96;
bytes32 name;
bytes32 symbol;
address owner;
string metadataURI;
bytes32 salt;
}
/// @notice Deploys the BunniToken contract for a Bunni position. This token
/// represents a user's share in the Uniswap V4 LP position.
/// @dev The BunniToken is deployed via CREATE3, which allows for a deterministic address.
/// @param params The input parameters
/// currency0 The token0 of the Uniswap V4 pool
/// currency1 The token1 of the Uniswap V4 pool
/// tickSpacing The tick spacing of the Uniswap V4 pool
/// twapSecondsAgo The TWAP time period to use for the liquidity density function
/// liquidityDensityFunction The liquidity density function to use
/// hooklet The hooklet to use for the Bunni pool. If it's address(0), then a hooklet is not used.
/// ldfParams The parameters for the liquidity density function
/// hooks The hooks to use for the Uniswap V4 pool
/// hookParams The parameters for the hooks
/// vault0 The vault for token0. If address(0), then a vault is not used.
/// vault1 The vault for token1. If address(0), then a vault is not used.
/// minRawTokenRatio0 The minimum (rawBalance / balance) ratio for token0
/// targetRawTokenRatio0 The target (rawBalance / balance) ratio for token0
/// maxRawTokenRatio0 The maximum (rawBalance / balance) ratio for token0
/// minRawTokenRatio1 The minimum (rawBalance / balance) ratio for token1
/// targetRawTokenRatio1 The target (rawBalance / balance) ratio for token1
/// maxRawTokenRatio1 The maximum (rawBalance / balance) ratio for token1
/// sqrtPriceX96 The initial sqrt price of the Uniswap V4 pool
/// name The name of the BunniToken
/// symbol The symbol of the BunniToken
/// owner The owner of the BunniToken. Only has the power to set the metadata URI.
/// metadataURI The initial metadata URI of the BunniToken, containing info like description, image, etc.
/// salt The salt for deploying the BunniToken via CREATE3.
/// @return token The deployed BunniToken
/// @return key The PoolKey of the Uniswap V4 pool
function deployBunniToken(DeployBunniTokenParams calldata params)
external
returns (IBunniToken token, PoolKey memory key);
/// @notice Called by the hook to execute a generalized swap from one token to the other. Also used during rebalancing.
/// @dev If the raw balance is insufficient, vault reserves will be automatically used.
/// Will update vault reserves if the raw/reserve ratio is outside of the bounds.
/// @param key The PoolKey of the Uniswap V4 pool
/// @param zeroForOne True if the swap is for token0->token1, false if token1->token0
/// @param inputAmount The amount of the input token to pull from the hook
/// @param outputAmount The amount of the output token to push to the hook
function hookHandleSwap(PoolKey calldata key, bool zeroForOne, uint256 inputAmount, uint256 outputAmount)
external;
/// @notice Called by the hook to set the idle balance of a Bunni pool.
/// @param key The PoolKey of the Uniswap V4 pool
/// @param newIdleBalance The new idle balance of the pool
function hookSetIdleBalance(PoolKey calldata key, IdleBalance newIdleBalance) external;
/// @notice Sets the address of the recipient of referral rewards belonging to the default referrer address(0). Only callable by the owner.
/// @param newReferralRewardRecipient The new address of the recipient of referral rewards
function setReferralRewardRecipient(address newReferralRewardRecipient) external;
/// @notice Adds or removes an address from the pauser set. Only callable by the owner.
/// @param guy The address to add or remove from the pauser set
/// @param isPauser True if the address should be added to the pauser set, false if it should be removed
function setPauser(address guy, bool isPauser) external;
/// @notice Sets the pause flags. Only callable by the owner.
/// @param pauseFlags The new pause flags, each bit corresponds to a function in BunniHub and is set to 1 if the function is paused
function setPauseFlags(uint8 pauseFlags) external;
/// @notice Burns the pause fuse. Only callable by the owner.
/// All functions are permanently unpaused after this function is called.
function burnPauseFuse() external;
/// @notice Called by key.hooks to lock BunniHub before a rebalance order's execution.
/// @param key The PoolKey of the Uniswap v4 pool
function lockForRebalance(PoolKey calldata key) external;
/// @notice Called by key.hooks to unlock BunniHub after a rebalance order's execution.
/// @param key The PoolKey of the Uniswap v4 pool
function unlockForRebalance(PoolKey calldata key) external;
/// @notice The state of a Bunni pool.
function poolState(PoolId poolId) external view returns (PoolState memory);
/// @notice The PoolState struct of a given pool with only the immutable params filled out.
function poolParams(PoolId poolId) external view returns (PoolState memory);
/// @notice The BunniToken of a given pool. address(0) if the pool is not a Bunni pool.
function bunniTokenOfPool(PoolId poolId) external view returns (IBunniToken);
/// @notice The params of the given Bunni pool's hook. bytes("") if the pool is not a Bunni pool.
function hookParams(PoolId poolId) external view returns (bytes memory);
/// @notice The next available nonce of the given Bunni subspace.
function nonce(bytes32 bunniSubspace) external view returns (uint24);
/// @notice The PoolId of a given BunniToken.
function poolIdOfBunniToken(IBunniToken bunniToken) external view returns (PoolId);
/// @notice The token balances of a Bunni pool. Reserves in vaults are converted to raw token balances via ERC4626.previewRedeem().
function poolBalances(PoolId poolId) external view returns (uint256 balance0, uint256 balance1);
/// @notice The idle balance of a Bunni pool.
function idleBalance(PoolId poolId) external view returns (IdleBalance);
/// @notice The address of the recipient of referral rewards belonging to the default referrer address(0).
function getReferralRewardRecipient() external view returns (address);
/// @notice Returns true if the given address is a pauser who can pause/unpause external functions.
function isPauser(address guy) external view returns (bool);
/// @notice The pause flags and pause fuse status.
/// @return pauseFlags The pause flags, each bit corresponds to a function in BunniHub and is set to 1 if the function is paused
/// @return unpauseFuse The pause fuse status. If true, all functions are permanently unpaused
function getPauseStatus() external view returns (uint8 pauseFlags, bool unpauseFuse);
/// @notice The init data of a Bunni pool. Stored in transient storage and used
/// during the IHooks.afterInitialize() call.
function poolInitData() external view returns (bytes memory);
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
import {IOwnable} from "../interfaces/IOwnable.sol";
/// @notice Simple single owner authorization mixin.
/// @author Solady (https://github.com/vectorized/solady/blob/main/src/auth/Ownable.sol)
///
/// @dev Note:
/// This implementation does NOT auto-initialize the owner to `msg.sender`.
/// You MUST call the `_initializeOwner` in the constructor / initializer.
///
/// While the ownable portion follows
/// [EIP-173](https://eips.ethereum.org/EIPS/eip-173) for compatibility,
/// the nomenclature for the 2-step ownership handover may be unique to this codebase.
abstract contract Ownable is IOwnable {
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* EVENTS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev `keccak256(bytes("OwnershipTransferred(address,address)"))`.
uint256 private constant _OWNERSHIP_TRANSFERRED_EVENT_SIGNATURE =
0x8be0079c531659141344cd1fd0a4f28419497f9722a3daafe3b4186f6b6457e0;
/// @dev `keccak256(bytes("OwnershipHandoverRequested(address)"))`.
uint256 private constant _OWNERSHIP_HANDOVER_REQUESTED_EVENT_SIGNATURE =
0xdbf36a107da19e49527a7176a1babf963b4b0ff8cde35ee35d6cd8f1f9ac7e1d;
/// @dev `keccak256(bytes("OwnershipHandoverCanceled(address)"))`.
uint256 private constant _OWNERSHIP_HANDOVER_CANCELED_EVENT_SIGNATURE =
0xfa7b8eab7da67f412cc9575ed43464468f9bfbae89d1675917346ca6d8fe3c92;
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* STORAGE */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev The owner slot is given by:
/// `bytes32(~uint256(uint32(bytes4(keccak256("_OWNER_SLOT_NOT")))))`.
/// It is intentionally chosen to be a high value
/// to avoid collision with lower slots.
/// The choice of manual storage layout is to enable compatibility
/// with both regular and upgradeable contracts.
bytes32 internal constant _OWNER_SLOT = 0xffffffffffffffffffffffffffffffffffffffffffffffffffffffff74873927;
/// The ownership handover slot of `newOwner` is given by:
/// ```
/// mstore(0x00, or(shl(96, user), _HANDOVER_SLOT_SEED))
/// let handoverSlot := keccak256(0x00, 0x20)
/// ```
/// It stores the expiry timestamp of the two-step ownership handover.
uint256 private constant _HANDOVER_SLOT_SEED = 0x389a75e1;
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* INTERNAL FUNCTIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Initializes the owner directly without authorization guard.
/// This function must be called upon initialization,
/// regardless of whether the contract is upgradeable or not.
/// This is to enable generalization to both regular and upgradeable contracts,
/// and to save gas in case the initial owner is not the caller.
/// For performance reasons, this function will not check if there
/// is an existing owner.
function _initializeOwner(address newOwner) internal virtual {
/// @solidity memory-safe-assembly
assembly {
// Clean the upper 96 bits.
newOwner := shr(96, shl(96, newOwner))
// Store the new value.
sstore(_OWNER_SLOT, newOwner)
// Emit the {OwnershipTransferred} event.
log3(0, 0, _OWNERSHIP_TRANSFERRED_EVENT_SIGNATURE, 0, newOwner)
}
}
/// @dev Sets the owner directly without authorization guard.
function _setOwner(address newOwner) internal virtual {
/// @solidity memory-safe-assembly
assembly {
let ownerSlot := _OWNER_SLOT
// Clean the upper 96 bits.
newOwner := shr(96, shl(96, newOwner))
// Emit the {OwnershipTransferred} event.
log3(0, 0, _OWNERSHIP_TRANSFERRED_EVENT_SIGNATURE, sload(ownerSlot), newOwner)
// Store the new value.
sstore(ownerSlot, newOwner)
}
}
/// @dev Throws if the sender is not the owner.
function _checkOwner() internal view virtual {
/// @solidity memory-safe-assembly
assembly {
// If the caller is not the stored owner, revert.
if iszero(eq(caller(), sload(_OWNER_SLOT))) {
mstore(0x00, 0x82b42900) // `Unauthorized()`.
revert(0x1c, 0x04)
}
}
}
/// @dev Returns how long a two-step ownership handover is valid for in seconds.
/// Override to return a different value if needed.
/// Made internal to conserve bytecode. Wrap it in a public function if needed.
function _ownershipHandoverValidFor() internal view virtual returns (uint64) {
return 48 * 3600;
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* PUBLIC UPDATE FUNCTIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Allows the owner to transfer the ownership to `newOwner`.
function transferOwnership(address newOwner) public payable virtual onlyOwner {
/// @solidity memory-safe-assembly
assembly {
if iszero(shl(96, newOwner)) {
mstore(0x00, 0x7448fbae) // `NewOwnerIsZeroAddress()`.
revert(0x1c, 0x04)
}
}
_setOwner(newOwner);
}
/// @dev Allows the owner to renounce their ownership.
function renounceOwnership() public payable virtual onlyOwner {
_setOwner(address(0));
}
/// @dev Request a two-step ownership handover to the caller.
/// The request will automatically expire in 48 hours (172800 seconds) by default.
function requestOwnershipHandover() public payable virtual {
unchecked {
uint256 expires = block.timestamp + _ownershipHandoverValidFor();
/// @solidity memory-safe-assembly
assembly {
// Compute and set the handover slot to `expires`.
mstore(0x0c, _HANDOVER_SLOT_SEED)
mstore(0x00, caller())
sstore(keccak256(0x0c, 0x20), expires)
// Emit the {OwnershipHandoverRequested} event.
log2(0, 0, _OWNERSHIP_HANDOVER_REQUESTED_EVENT_SIGNATURE, caller())
}
}
}
/// @dev Cancels the two-step ownership handover to the caller, if any.
function cancelOwnershipHandover() public payable virtual {
/// @solidity memory-safe-assembly
assembly {
// Compute and set the handover slot to 0.
mstore(0x0c, _HANDOVER_SLOT_SEED)
mstore(0x00, caller())
sstore(keccak256(0x0c, 0x20), 0)
// Emit the {OwnershipHandoverCanceled} event.
log2(0, 0, _OWNERSHIP_HANDOVER_CANCELED_EVENT_SIGNATURE, caller())
}
}
/// @dev Allows the owner to complete the two-step ownership handover to `pendingOwner`.
/// Reverts if there is no existing ownership handover requested by `pendingOwner`.
function completeOwnershipHandover(address pendingOwner) public payable virtual onlyOwner {
/// @solidity memory-safe-assembly
assembly {
// Compute and set the handover slot to 0.
mstore(0x0c, _HANDOVER_SLOT_SEED)
mstore(0x00, pendingOwner)
let handoverSlot := keccak256(0x0c, 0x20)
// If the handover does not exist, or has expired.
if gt(timestamp(), sload(handoverSlot)) {
mstore(0x00, 0x6f5e8818) // `NoHandoverRequest()`.
revert(0x1c, 0x04)
}
// Set the handover slot to 0.
sstore(handoverSlot, 0)
}
_setOwner(pendingOwner);
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* PUBLIC READ FUNCTIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns the owner of the contract.
function owner() public view virtual returns (address result) {
/// @solidity memory-safe-assembly
assembly {
result := sload(_OWNER_SLOT)
}
}
/// @dev Returns the expiry timestamp for the two-step ownership handover to `pendingOwner`.
function ownershipHandoverExpiresAt(address pendingOwner) public view virtual returns (uint256 result) {
/// @solidity memory-safe-assembly
assembly {
// Compute the handover slot.
mstore(0x0c, _HANDOVER_SLOT_SEED)
mstore(0x00, pendingOwner)
// Load the handover slot.
result := sload(keccak256(0x0c, 0x20))
}
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* MODIFIERS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Marks a function as only callable by the owner.
modifier onlyOwner() virtual {
_checkOwner();
_;
}
}// SPDX-License-Identifier: MIT
pragma solidity >=0.5.0;
/**
* @dev Interface of the ERC20 standard as defined in the EIP.
* Modified from OpenZeppelin's IERC20 contract
*/
interface IERC20 {
/**
* @dev Returns the amount of tokens in existence.
*/
function totalSupply() external view returns (uint256);
/**
* @dev Returns the amount of tokens owned by `account`.
*/
function balanceOf(address account) external view returns (uint256);
/**
* @dev Moves `amount` tokens from the caller's account to `recipient`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transfer(address recipient, uint256 amount) external returns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/
function allowance(address owner, address spender) external view returns (uint256);
/**
* @dev Sets `amount` as the allowance of `spender` over the caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/
function approve(address spender, uint256 amount) external returns (bool);
/**
* @dev Moves `amount` tokens from `sender` to `recipient` using the
* allowance mechanism. `amount` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transferFrom(address sender, address recipient, uint256 amount) external returns (bool);
/**
* @return The name of the token
*/
function name() external view returns (string memory);
/**
* @return The symbol of the token
*/
function symbol() external view returns (string memory);
/**
* @return The number of decimal places the token has
*/
function decimals() external view returns (uint8);
function nonces(address account) external view returns (uint256);
function permit(address owner, address spender, uint256 value, uint256 deadline, uint8 v, bytes32 r, bytes32 s)
external;
function DOMAIN_SEPARATOR() external view returns (bytes32);
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/
event Transfer(address indexed from, address indexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/
event Approval(address indexed owner, address indexed spender, uint256 value);
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity ^0.8.19;
import {IAmAmm} from "biddog/interfaces/IAmAmm.sol";
import {ClonesWithImmutableArgs} from "clones-with-immutable-args/ClonesWithImmutableArgs.sol";
import {LibMulticaller} from "multicaller/LibMulticaller.sol";
import {IPermit2} from "permit2/src/interfaces/IPermit2.sol";
import "@uniswap/v4-core/src/types/BalanceDelta.sol";
import "@uniswap/v4-core/src/libraries/SqrtPriceMath.sol";
import {TickMath} from "@uniswap/v4-core/src/libraries/TickMath.sol";
import {PoolId, PoolIdLibrary} from "@uniswap/v4-core/src/types/PoolId.sol";
import {Currency, CurrencyLibrary} from "@uniswap/v4-core/src/types/Currency.sol";
import {IPoolManager, PoolKey} from "@uniswap/v4-core/src/interfaces/IPoolManager.sol";
import {SSTORE2} from "solady/utils/SSTORE2.sol";
import {SafeCastLib} from "solady/utils/SafeCastLib.sol";
import {LibTransient} from "solady/utils/LibTransient.sol";
import {WETH} from "solady/tokens/WETH.sol";
import {SafeTransferLib} from "solady/utils/SafeTransferLib.sol";
import {FixedPointMathLib} from "solady/utils/FixedPointMathLib.sol";
import "./Math.sol";
import "./QueryTWAP.sol";
import "./VaultMath.sol";
import "../base/Errors.sol";
import "../types/LDFType.sol";
import "../base/Constants.sol";
import "../types/PoolState.sol";
import "../base/SharedStructs.sol";
import "../interfaces/IBunniHub.sol";
import {BunniHub} from "../BunniHub.sol";
import {HookletLib} from "./HookletLib.sol";
import {queryLDF} from "../lib/QueryLDF.sol";
import {BunniToken} from "../BunniToken.sol";
import {IERC20} from "../interfaces/IERC20.sol";
import {IHooklet} from "../interfaces/IHooklet.sol";
import {IBunniHook} from "../interfaces/IBunniHook.sol";
import {LiquidityAmounts} from "./LiquidityAmounts.sol";
import {IBunniToken} from "../interfaces/IBunniToken.sol";
import {ExcessivelySafeTransfer2Lib} from "../lib/ExcessivelySafeTransfer2Lib.sol";
library BunniHubLogic {
using LibTransient for *;
using SSTORE2 for bytes;
using SSTORE2 for address;
using SafeCastLib for int256;
using SafeCastLib for uint256;
using HookletLib for IHooklet;
using IdleBalanceLibrary for *;
using PoolIdLibrary for PoolKey;
using SafeTransferLib for address;
using CurrencyLibrary for Currency;
using FixedPointMathLib for uint128;
using FixedPointMathLib for uint256;
using ClonesWithImmutableArgs for address;
using ExcessivelySafeTransfer2Lib for address;
struct Env {
WETH weth;
IPermit2 permit2;
IPoolManager poolManager;
IBunniToken bunniTokenImplementation;
}
/// @dev Equal to uint256(keccak256("INIT_DATA_TSLOT")) - 1
uint256 private constant INIT_DATA_TSLOT = 0x96137a5f1e53cddba547a91858bea8e9bc3edf76a9ee921098105bd17c89344f;
/// -----------------------------------------------------------------------
/// Deposit
/// -----------------------------------------------------------------------
function deposit(HubStorage storage s, Env calldata env, IBunniHub.DepositParams calldata params)
external
returns (uint256 shares, uint256 amount0, uint256 amount1)
{
address msgSender = LibMulticaller.senderOrSigner();
PoolId poolId = params.poolKey.toId();
PoolState memory state = getPoolState(s, poolId);
/// -----------------------------------------------------------------------
/// Validation
/// -----------------------------------------------------------------------
if (msg.value != 0 && !params.poolKey.currency0.isAddressZero() && !params.poolKey.currency1.isAddressZero()) {
revert BunniHub__MsgValueNotZeroWhenPoolKeyHasNoNativeToken();
}
/// -----------------------------------------------------------------------
/// Hooklet call
/// -----------------------------------------------------------------------
state.hooklet.hookletBeforeDeposit(msgSender, params);
/// -----------------------------------------------------------------------
/// State updates
/// -----------------------------------------------------------------------
IBunniHook hook = IBunniHook(address(params.poolKey.hooks));
(uint160 sqrtPriceX96, int24 currentTick,,) = hook.slot0s(poolId);
hook.updateStateMachine(poolId); // trigger am-AMM state machine update to avoid sandwiching rent burns
DepositLogicReturnData memory depositReturnData = _depositLogic(
DepositLogicInputData({
state: state,
params: params,
poolId: poolId,
currentTick: currentTick,
sqrtPriceX96: sqrtPriceX96
})
);
uint256 reserveAmount0 = depositReturnData.reserveAmount0;
uint256 reserveAmount1 = depositReturnData.reserveAmount1;
amount0 = depositReturnData.amount0;
amount1 = depositReturnData.amount1;
/// -----------------------------------------------------------------------
/// External calls
/// -----------------------------------------------------------------------
// update raw balances
(uint256 rawAmount0, uint256 rawAmount1) = (
address(state.vault0) != address(0) ? amount0 - reserveAmount0 : amount0,
address(state.vault1) != address(0) ? amount1 - reserveAmount1 : amount1
);
(rawAmount0, rawAmount1) = abi.decode(
env.poolManager.unlock(
abi.encode(
BunniHub.UnlockCallbackType.DEPOSIT,
abi.encode(
BunniHub.DepositCallbackInputData({
user: msgSender,
poolKey: params.poolKey,
msgValue: msg.value,
rawAmount0: rawAmount0,
rawAmount1: rawAmount1
})
)
)
),
(uint256, uint256)
);
// update reserves
uint256 amount0Spent = rawAmount0;
uint256 amount1Spent = rawAmount1;
if (address(state.vault0) != address(0) && reserveAmount0 != 0) {
(uint256 reserveChange, uint256 reserveChangeInUnderlying, uint256 amountSpent) = _depositVaultReserve(
env, reserveAmount0, params.poolKey.currency0, state.vault0, msgSender, params.vaultFee0
);
s.reserve0[poolId] = state.reserve0 + reserveChange;
// use actual withdrawable value to handle vaults with withdrawal fees
reserveAmount0 = reserveChangeInUnderlying;
// add amount spent on vault deposit to the total amount spent
amount0Spent += amountSpent;
}
if (address(state.vault1) != address(0) && reserveAmount1 != 0) {
(uint256 reserveChange, uint256 reserveChangeInUnderlying, uint256 amountSpent) = _depositVaultReserve(
env, reserveAmount1, params.poolKey.currency1, state.vault1, msgSender, params.vaultFee1
);
s.reserve1[poolId] = state.reserve1 + reserveChange;
// use actual withdrawable value to handle vaults with withdrawal fees
reserveAmount1 = reserveChangeInUnderlying;
// add amount spent on vault deposit to the total amount spent
amount1Spent += amountSpent;
}
// update amount0 and amount1 to be the actual amounts added to the pool balance
amount0 = address(state.vault0) != address(0) ? rawAmount0 + reserveAmount0 : rawAmount0;
amount1 = address(state.vault1) != address(0) ? rawAmount1 + reserveAmount1 : rawAmount1;
// check slippage
if (amount0 < params.amount0Min || amount1 < params.amount1Min) {
revert BunniHub__SlippageTooHigh();
}
// mint shares using actual token amounts
shares = _mintShares(
msgSender,
state.bunniToken,
params.recipient,
amount0,
depositReturnData.balance0,
amount1,
depositReturnData.balance1,
params.referrer
);
if (depositReturnData.balance0 == 0 && depositReturnData.balance1 == 0) {
// zero balances, should zero out idle balance if necessary
if (state.idleBalance != IdleBalanceLibrary.ZERO) {
s.idleBalance[poolId] = IdleBalanceLibrary.ZERO;
}
} else {
// not zero balances, increase idle balance proportionally to the amount added
(uint256 balance, bool isToken0) = IdleBalanceLibrary.fromIdleBalance(state.idleBalance);
uint256 newBalance = balance
+ (
isToken0
? (depositReturnData.balance0 == 0 ? amount0 : amount0.mulDivUp(balance, depositReturnData.balance0))
: (depositReturnData.balance1 == 0 ? amount1 : amount1.mulDivUp(balance, depositReturnData.balance1))
);
if (newBalance != balance) {
s.idleBalance[poolId] = newBalance.toIdleBalance(isToken0);
}
}
// refund excess ETH
if (params.poolKey.currency0.isAddressZero()) {
if (address(this).balance != 0) {
params.refundRecipient.safeTransferETH(
FixedPointMathLib.min(address(this).balance, msg.value - amount0Spent)
);
}
} else if (params.poolKey.currency1.isAddressZero()) {
if (address(this).balance != 0) {
params.refundRecipient.safeTransferETH(
FixedPointMathLib.min(address(this).balance, msg.value - amount1Spent)
);
}
}
// emit event
emit IBunniHub.Deposit(msgSender, params.recipient, poolId, amount0, amount1, shares);
/// -----------------------------------------------------------------------
/// Hooklet call
/// -----------------------------------------------------------------------
state.hooklet.hookletAfterDeposit(
msgSender, params, IHooklet.DepositReturnData({shares: shares, amount0: amount0, amount1: amount1})
);
}
struct DepositLogicInputData {
PoolState state;
IBunniHub.DepositParams params;
PoolId poolId;
int24 currentTick;
uint160 sqrtPriceX96;
}
struct DepositLogicReturnData {
uint256 reserveAmount0;
uint256 reserveAmount1;
uint256 amount0;
uint256 amount1;
uint256 balance0;
uint256 balance1;
}
/// @dev Separated to avoid stack too deep error
function _depositLogic(DepositLogicInputData memory inputData)
private
returns (DepositLogicReturnData memory returnData)
{
// query existing assets
// assets = urrent tick tokens + reserve tokens + pool credits
(uint256 reserveBalance0, uint256 reserveBalance1) = (
getReservesInUnderlying(inputData.state.reserve0, inputData.state.vault0),
getReservesInUnderlying(inputData.state.reserve1, inputData.state.vault1)
);
(returnData.balance0, returnData.balance1) =
(inputData.state.rawBalance0 + reserveBalance0, inputData.state.rawBalance1 + reserveBalance1);
// update TWAP oracle and optionally observe
bool requiresLDF = returnData.balance0 == 0 && returnData.balance1 == 0;
if (requiresLDF) {
// use LDF to initialize token proportions
// compute total liquidity & token densities
bool useTwap = inputData.state.twapSecondsAgo != 0;
int24 arithmeticMeanTick =
useTwap ? queryTwap(inputData.params.poolKey, inputData.state.twapSecondsAgo) : int24(0);
IBunniHook hook = IBunniHook(address(inputData.params.poolKey.hooks));
bytes32 ldfState =
inputData.state.ldfType == LDFType.DYNAMIC_AND_STATEFUL ? hook.ldfStates(inputData.poolId) : bytes32(0);
(
uint256 totalLiquidity,
uint256 totalDensity0X96,
uint256 totalDensity1X96,
,
uint256 addedAmount0,
uint256 addedAmount1,
bytes32 newLdfState,
) = queryLDF({
key: inputData.params.poolKey,
sqrtPriceX96: inputData.sqrtPriceX96,
tick: inputData.currentTick,
arithmeticMeanTick: arithmeticMeanTick,
ldf: inputData.state.liquidityDensityFunction,
ldfParams: inputData.state.ldfParams,
ldfState: ldfState,
balance0: inputData.params.amount0Desired, // use amount0Desired since we're initializing liquidity
balance1: inputData.params.amount1Desired, // use amount1Desired since we're initializing liquidity
idleBalance: IdleBalanceLibrary.ZERO // if balances are 0 then idle balance must also be 0
});
if (inputData.state.ldfType == LDFType.DYNAMIC_AND_STATEFUL) {
hook.updateLdfState(inputData.poolId, newLdfState);
}
// compute token amounts to add
(returnData.amount0, returnData.amount1) = (addedAmount0, addedAmount1);
// sanity check against desired amounts
// the amounts can exceed the desired amounts due to math errors
if (
returnData.amount0 > inputData.params.amount0Desired
|| returnData.amount1 > inputData.params.amount1Desired
) {
// scale down amounts and take minimum
if (returnData.amount0 == 0) {
returnData.amount1 = inputData.params.amount1Desired;
} else if (returnData.amount1 == 0) {
returnData.amount0 = inputData.params.amount0Desired;
} else {
// both are non-zero
(returnData.amount0, returnData.amount1) = (
FixedPointMathLib.min(
inputData.params.amount0Desired,
returnData.amount0.mulDiv(inputData.params.amount1Desired, returnData.amount1)
),
FixedPointMathLib.min(
inputData.params.amount1Desired,
returnData.amount1.mulDiv(inputData.params.amount0Desired, returnData.amount0)
)
);
}
}
// ensure that the added amounts are not too small to mess with the shares math
if (
totalLiquidity == 0 || (returnData.amount0 < MIN_DEPOSIT_BALANCE_INCREASE && totalDensity0X96 != 0)
|| (returnData.amount1 < MIN_DEPOSIT_BALANCE_INCREASE && totalDensity1X96 != 0)
) {
revert BunniHub__DepositAmountTooSmall();
}
// update token amounts to deposit into vaults
(returnData.reserveAmount0, returnData.reserveAmount1) = (
returnData.amount0
- returnData.amount0.mulDiv(inputData.state.targetRawTokenRatio0, RAW_TOKEN_RATIO_BASE),
returnData.amount1
- returnData.amount1.mulDiv(inputData.state.targetRawTokenRatio1, RAW_TOKEN_RATIO_BASE)
);
} else {
// already initialized liquidity shape
// simply add tokens at the current ratio
// need to update: reserveAmount0, reserveAmount1, amount0, amount1
// compute amount0 and amount1 such that the ratio is the same as the current ratio
uint256 amount0Desired = inputData.params.amount0Desired;
uint256 amount1Desired = inputData.params.amount1Desired;
uint256 balance0 = returnData.balance0;
uint256 balance1 = returnData.balance1;
returnData.amount0 = balance1 == 0
? amount0Desired
: FixedPointMathLib.min(amount0Desired, amount1Desired.mulDiv(balance0, balance1));
returnData.amount1 = balance0 == 0
? amount1Desired
: FixedPointMathLib.min(amount1Desired, amount0Desired.mulDiv(balance1, balance0));
returnData.reserveAmount0 = balance0 == 0 ? 0 : returnData.amount0.mulDiv(reserveBalance0, balance0);
returnData.reserveAmount1 = balance1 == 0 ? 0 : returnData.amount1.mulDiv(reserveBalance1, balance1);
}
// modify reserveAmount0 and reserveAmount1 using ERC4626::maxDeposit()
{
uint256 maxDeposit0;
if (
address(inputData.state.vault0) != address(0) && returnData.reserveAmount0 != 0
&& returnData.reserveAmount0 > (maxDeposit0 = inputData.state.vault0.maxDeposit(address(this)))
) {
returnData.reserveAmount0 = maxDeposit0;
}
}
{
uint256 maxDeposit1;
if (
address(inputData.state.vault1) != address(0) && returnData.reserveAmount1 != 0
&& returnData.reserveAmount1 > (maxDeposit1 = inputData.state.vault1.maxDeposit(address(this)))
) {
returnData.reserveAmount1 = maxDeposit1;
}
}
}
/// -----------------------------------------------------------------------
/// Withdraw
/// -----------------------------------------------------------------------
function queueWithdraw(HubStorage storage s, IBunniHub.QueueWithdrawParams calldata params) external {
/// -----------------------------------------------------------------------
/// Validation
/// -----------------------------------------------------------------------
PoolId id = params.poolKey.toId();
IBunniToken bunniToken = _getBunniTokenOfPool(s, id);
if (address(bunniToken) == address(0)) revert BunniHub__BunniTokenNotInitialized();
/// -----------------------------------------------------------------------
/// State updates
/// -----------------------------------------------------------------------
address msgSender = LibMulticaller.senderOrSigner();
QueuedWithdrawal memory queued = s.queuedWithdrawals[id][msgSender];
// update queued withdrawal
// use unchecked to get unlockTimestamp to overflow back to 0 if overflow occurs
// which is fine since we only care about relative time
uint56 newUnlockTimestamp;
unchecked {
newUnlockTimestamp = uint56(block.timestamp) + WITHDRAW_DELAY;
}
if (queued.shareAmount != 0) {
// requeue expired queued withdrawal
if (queued.unlockTimestamp + WITHDRAW_GRACE_PERIOD >= block.timestamp) {
revert BunniHub__NoExpiredWithdrawal();
}
s.queuedWithdrawals[id][msgSender].unlockTimestamp = newUnlockTimestamp;
} else {
// create new queued withdrawal
if (params.shares == 0) revert BunniHub__ZeroInput();
s.queuedWithdrawals[id][msgSender] =
QueuedWithdrawal({shareAmount: params.shares, unlockTimestamp: newUnlockTimestamp});
}
/// -----------------------------------------------------------------------
/// External calls
/// -----------------------------------------------------------------------
if (queued.shareAmount == 0) {
// transfer shares from msgSender to address(this)
bunniToken.transferFrom(msgSender, address(this), params.shares);
}
emit IBunniHub.QueueWithdraw(msgSender, id, params.shares);
}
function withdraw(HubStorage storage s, Env calldata env, IBunniHub.WithdrawParams calldata params)
external
returns (uint256 amount0, uint256 amount1)
{
/// -----------------------------------------------------------------------
/// Validation
/// -----------------------------------------------------------------------
if (!params.useQueuedWithdrawal && params.shares == 0) revert BunniHub__ZeroInput();
PoolId poolId = params.poolKey.toId();
PoolState memory state = getPoolState(s, poolId);
IBunniHook hook = IBunniHook(address(params.poolKey.hooks));
IAmAmm.Bid memory topBid = hook.getTopBidWrite(poolId);
if (hook.getAmAmmEnabled(poolId) && topBid.manager != address(0) && !params.useQueuedWithdrawal) {
revert BunniHub__NeedToUseQueuedWithdrawal();
}
if (!hook.canWithdraw(poolId)) {
revert BunniHub__WithdrawalPaused();
}
/// -----------------------------------------------------------------------
/// Hooklet call
/// -----------------------------------------------------------------------
address msgSender = LibMulticaller.senderOrSigner();
state.hooklet.hookletBeforeWithdraw(msgSender, params);
/// -----------------------------------------------------------------------
/// State updates
/// -----------------------------------------------------------------------
uint256 currentTotalSupply = state.bunniToken.totalSupply();
uint256 shares;
// burn shares
if (params.useQueuedWithdrawal) {
// use queued withdrawal
// need to withdraw the full queued amount
QueuedWithdrawal memory queued = s.queuedWithdrawals[poolId][msgSender];
if (queued.shareAmount == 0 || queued.unlockTimestamp == 0) revert BunniHub__QueuedWithdrawalNonexistent();
if (block.timestamp < queued.unlockTimestamp) revert BunniHub__QueuedWithdrawalNotReady();
if (queued.unlockTimestamp + WITHDRAW_GRACE_PERIOD < block.timestamp) revert BunniHub__GracePeriodExpired();
shares = queued.shareAmount;
s.queuedWithdrawals[poolId][msgSender].shareAmount = 0; // don't delete the struct to save gas later
state.bunniToken.burn(address(this), shares); // BunniTokens were deposited to address(this) earlier with queueWithdraw()
} else {
shares = params.shares;
state.bunniToken.burn(msgSender, shares);
}
// at this point of execution we know shares <= currentTotalSupply
// since otherwise the burn() call would've reverted
// compute token amount to withdraw and the component amounts
uint256 reserveAmount0 =
getReservesInUnderlying(state.reserve0.mulDiv(shares, currentTotalSupply), state.vault0);
uint256 reserveAmount1 =
getReservesInUnderlying(state.reserve1.mulDiv(shares, currentTotalSupply), state.vault1);
uint256 rawAmount0 = state.rawBalance0.mulDiv(shares, currentTotalSupply);
uint256 rawAmount1 = state.rawBalance1.mulDiv(shares, currentTotalSupply);
amount0 = reserveAmount0 + rawAmount0;
amount1 = reserveAmount1 + rawAmount1;
if (amount0 < params.amount0Min || amount1 < params.amount1Min) {
revert BunniHub__SlippageTooHigh();
}
// decrease idle balance proportionally to the amount removed
{
(uint256 balance, bool isToken0) = IdleBalanceLibrary.fromIdleBalance(state.idleBalance);
uint256 newBalance = balance - balance.mulDiv(shares, currentTotalSupply);
if (newBalance != balance) {
s.idleBalance[poolId] = newBalance.toIdleBalance(isToken0);
}
}
/// -----------------------------------------------------------------------
/// External calls
/// -----------------------------------------------------------------------
// withdraw reserve tokens
if (address(state.vault0) != address(0) && reserveAmount0 != 0) {
// vault used
// withdraw reserves
uint256 reserveChange = _withdrawVaultReserve(
reserveAmount0, params.poolKey.currency0, state.vault0, params.recipient, env.weth
);
s.reserve0[poolId] = state.reserve0 - reserveChange;
}
if (address(state.vault1) != address(0) && reserveAmount1 != 0) {
// vault used
// withdraw from reserves
uint256 reserveChange = _withdrawVaultReserve(
reserveAmount1, params.poolKey.currency1, state.vault1, params.recipient, env.weth
);
s.reserve1[poolId] = state.reserve1 - reserveChange;
}
// withdraw raw tokens
env.poolManager.unlock(
abi.encode(
BunniHub.UnlockCallbackType.WITHDRAW,
abi.encode(params.recipient, params.poolKey, rawAmount0, rawAmount1)
)
);
emit IBunniHub.Withdraw(msgSender, params.recipient, poolId, amount0, amount1, shares);
/// -----------------------------------------------------------------------
/// Hooklet call
/// -----------------------------------------------------------------------
state.hooklet.hookletAfterWithdraw(
msgSender, params, IHooklet.WithdrawReturnData({amount0: amount0, amount1: amount1})
);
}
/// -----------------------------------------------------------------------
/// Deploy Bunni Token
/// -----------------------------------------------------------------------
function deployBunniToken(HubStorage storage s, Env calldata env, IBunniHub.DeployBunniTokenParams calldata params)
external
returns (IBunniToken token, PoolKey memory key)
{
/// -----------------------------------------------------------------------
/// Verification
/// -----------------------------------------------------------------------
// each Uniswap v4 pool corresponds to a single BunniToken
// since Univ4 pool key is deterministic based on poolKey, we use dynamic fee so that the lower 20 bits of `poolKey.fee` is used
// as nonce to differentiate the BunniTokens
// each "subspace" has its own nonce that's incremented whenever a BunniToken is deployed with the same tokens & tick spacing & hooks
// nonce can be at most 1e6 after which the deployment will fail
bytes32 bunniSubspace =
keccak256(abi.encode(params.currency0, params.currency1, params.tickSpacing, params.hooks));
uint24 nonce_ = s.nonce[bunniSubspace];
if (nonce_ > MAX_NONCE) revert BunniHub__MaxNonceReached();
// ensure LDF params are valid
key = PoolKey({
currency0: params.currency0,
currency1: params.currency1,
fee: nonce_,
tickSpacing: params.tickSpacing,
hooks: IHooks(address(params.hooks))
});
if (address(params.liquidityDensityFunction) == address(0)) revert BunniHub__LDFCannotBeZero();
if (!params.liquidityDensityFunction.isValidParams(key, params.twapSecondsAgo, params.ldfParams)) {
revert BunniHub__InvalidLDFParams();
}
// ensure hook params are valid
if (address(params.hooks) == address(0)) revert BunniHub__HookCannotBeZero();
if (!params.hooks.isValidParams(params.hookParams)) revert BunniHub__InvalidHookParams();
// validate vaults
_validateVault(params.vault0, params.currency0, env.weth);
_validateVault(params.vault1, params.currency1, env.weth);
// validate raw token ratio bounds
if (
(
address(params.vault0) != address(0)
&& !(
(params.minRawTokenRatio0 <= params.targetRawTokenRatio0)
&& (params.targetRawTokenRatio0 <= params.maxRawTokenRatio0)
&& (params.maxRawTokenRatio0 <= RAW_TOKEN_RATIO_BASE)
)
)
|| (
address(params.vault1) != address(0)
&& !(
(params.minRawTokenRatio1 <= params.targetRawTokenRatio1)
&& (params.targetRawTokenRatio1 <= params.maxRawTokenRatio1)
&& (params.maxRawTokenRatio1 <= RAW_TOKEN_RATIO_BASE)
)
)
) {
revert BunniHub__InvalidRawTokenRatioBounds();
}
/// -----------------------------------------------------------------------
/// Hooklet call
/// -----------------------------------------------------------------------
address msgSender = LibMulticaller.senderOrSigner();
params.hooklet.hookletBeforeInitialize(msgSender, params);
/// -----------------------------------------------------------------------
/// State updates
/// -----------------------------------------------------------------------
// deploy BunniToken
token = IBunniToken(
address(env.bunniTokenImplementation).clone3({
data: abi.encodePacked(
address(this),
params.currency0,
params.currency1,
params.name,
params.symbol,
env.poolManager,
nonce_,
params.tickSpacing,
params.hooks,
params.hooklet
),
salt: keccak256(abi.encodePacked(msgSender, params.salt)) // hash sender into salt to prevent griefing via frontrunning
})
);
token.initialize(params.owner, params.metadataURI);
PoolId poolId = key.toId();
s.poolIdOfBunniToken[token] = poolId;
// increment nonce
s.nonce[bunniSubspace] = nonce_ + 1;
// set immutable params
bytes memory immutableParams = abi.encodePacked(
params.liquidityDensityFunction,
token,
params.twapSecondsAgo,
params.ldfParams,
params.vault0,
params.vault1,
params.ldfType,
params.minRawTokenRatio0,
params.targetRawTokenRatio0,
params.maxRawTokenRatio0,
params.minRawTokenRatio1,
params.targetRawTokenRatio1,
params.maxRawTokenRatio1
);
immutableParams = bytes.concat(
immutableParams, abi.encodePacked(params.hooklet, params.hookParams.length.toUint16(), params.hookParams)
);
s.poolState[poolId].immutableParamsPointer = immutableParams.write();
/// -----------------------------------------------------------------------
/// External calls
/// -----------------------------------------------------------------------
// use transient storage to store params.twapSecondsAgo and params.hookParams so that the hook can read them
// no need to clear it since we always set it to the correct value before a new pool is initialized
bytes memory initData = abi.encode(params.twapSecondsAgo, params.hookParams);
INIT_DATA_TSLOT.tBytes().set(initData);
// initialize Uniswap v4 pool
env.poolManager.initialize(key, params.sqrtPriceX96);
emit IBunniHub.NewBunni(token, poolId);
/// -----------------------------------------------------------------------
/// Hooklet call
/// -----------------------------------------------------------------------
params.hooklet.hookletAfterInitialize(
msgSender, params, IHooklet.InitializeReturnData({bunniToken: token, key: key})
);
}
/// -----------------------------------------------------------------------
/// Utilities
/// -----------------------------------------------------------------------
/// @notice Mints share tokens to the recipient based on the amount of liquidity added.
/// @param msgSender The msg.sender of the transaction
/// @param shareToken The BunniToken to mint
/// @param recipient The recipient of the share tokens
/// @param addedAmount0 The amount of token0 added to the pool
/// @param existingAmount0 The existing amount of token0 in the pool
/// @param addedAmount1 The amount of token1 added to the pool
/// @param existingAmount1 The existing amount of token1 in the pool
/// @param referrer The referrer of the liquidity provider
/// @return shares The amount of share tokens minted to the sender.
function _mintShares(
address msgSender,
IBunniToken shareToken,
address recipient,
uint256 addedAmount0,
uint256 existingAmount0,
uint256 addedAmount1,
uint256 existingAmount1,
address referrer
) internal returns (uint256 shares) {
uint256 existingShareSupply = shareToken.totalSupply();
if (existingShareSupply == 0) {
// ensure that the added amounts are not too small to mess with the shares math
if (addedAmount0 < MIN_DEPOSIT_BALANCE_INCREASE && addedAmount1 < MIN_DEPOSIT_BALANCE_INCREASE) {
revert BunniHub__DepositAmountTooSmall();
}
// no existing shares, just give WAD
shares = WAD - MIN_INITIAL_SHARES;
// prevent first staker from stealing funds of subsequent stakers
// see https://code4rena.com/reports/2022-01-sherlock/#h-01-first-user-can-steal-everyone-elses-tokens
shareToken.mint(address(0), MIN_INITIAL_SHARES, address(0));
} else {
// given that the position may become single-sided, we need to handle the case where one of the existingAmount values is zero
if (existingAmount0 == 0 && existingAmount1 == 0) revert BunniHub__ZeroSharesMinted();
shares = FixedPointMathLib.min(
existingAmount0 == 0 ? type(uint256).max : existingShareSupply.mulDiv(addedAmount0, existingAmount0),
existingAmount1 == 0 ? type(uint256).max : existingShareSupply.mulDiv(addedAmount1, existingAmount1)
);
if (shares == 0) revert BunniHub__ZeroSharesMinted();
}
// mint shares to sender
// only use `referrer` if `msgSender == recipient` to avoid letting anyone
// set the referrer of any other address
if (msgSender == recipient) {
shareToken.mint(recipient, shares, referrer);
} else {
shareToken.mint(recipient, shares);
}
}
/// @dev Deposits tokens into a vault.
/// @param env The environment vars.
/// @param amount The amount to deposit.
/// @param currency The currency to deposit.
/// @param vault The vault to deposit into.
/// @param user The user to deposit tokens from.
/// @param vaultFee The vault's withdrawal fee, in 18 decimals.
/// @return reserveChange The change in reserve balance.
/// @return reserveChangeInUnderlying The change in reserve balance in underlying tokens.
function _depositVaultReserve(
Env calldata env,
uint256 amount,
Currency currency,
ERC4626 vault,
address user,
uint256 vaultFee
) internal returns (uint256 reserveChange, uint256 reserveChangeInUnderlying, uint256 amountSpent) {
// use the pre-fee amount to ensure `amount` is the amount of tokens
// that we'll be able to withdraw from the vault
// it's safe to rely on the user provided fee value here
// since if user provides fee=0 when it's actually not the amount of bunni shares minted goes down
// and if user provide fee!=0 when the fee is some other value (0 or non-zero) the validation will revert
uint256 postFeeAmount = amount; // cache amount to use for validation later
amount = amount.divWadUp(WAD - vaultFee);
amountSpent = amount;
IERC20 token;
if (currency.isAddressZero()) {
// wrap ETH
// no need to pull tokens from user since WETH is already in the contract
env.weth.deposit{value: amount}();
token = IERC20(address(env.weth));
} else {
// normal ERC20
token = IERC20(Currency.unwrap(currency));
address(token).excessivelySafeTransferFrom2(user, address(this), amount);
}
// do vault deposit
address(token).safeApproveWithRetry(address(vault), amount);
reserveChange = vault.deposit(amount, address(this));
reserveChangeInUnderlying = vault.previewRedeem(reserveChange);
// validate vault fee value
if (
vaultFee != 0 && dist(reserveChangeInUnderlying, postFeeAmount) > 1 // avoid reverting from normal rounding error
&& percentDelta(reserveChangeInUnderlying, postFeeAmount) > MAX_VAULT_FEE_ERROR
) {
revert BunniHub__VaultFeeIncorrect();
}
// revoke token approval to vault if necessary
if (token.allowance(address(this), address(vault)) != 0) {
address(token).safeApprove(address(vault), 0);
}
}
/// @dev Withdraws tokens from a vault.
/// @param amount The amount to withdraw.
/// @param currency The currency to withdraw.
/// @param vault The vault to withdraw from.
/// @param user The user to withdraw tokens to.
/// @param weth The WETH contract.
/// @return reserveChange The change in reserve balance.
function _withdrawVaultReserve(uint256 amount, Currency currency, ERC4626 vault, address user, WETH weth)
internal
returns (uint256 reserveChange)
{
if (currency.isAddressZero()) {
// withdraw WETH from vault to address(this)
reserveChange = vault.withdraw(amount, address(this), address(this));
// burn WETH for ETH
weth.withdraw(amount);
// transfer ETH to user
user.safeTransferETH(amount);
} else {
// normal ERC20
reserveChange = vault.withdraw(amount, user, address(this));
}
}
function _validateVault(ERC4626 vault, Currency currency, WETH weth) internal view {
// if vault is set, make sure the vault asset matches the currency
// if the currency is ETH, the vault asset must be WETH
if (address(vault) != address(0)) {
bool isNative = currency.isAddressZero();
address vaultAsset = address(vault.asset());
if ((isNative && vaultAsset != address(weth)) || (!isNative && vaultAsset != Currency.unwrap(currency))) {
revert BunniHub__VaultAssetMismatch();
}
}
}
function _getBunniTokenOfPool(HubStorage storage s, PoolId poolId) internal view returns (IBunniToken bunniToken) {
address ptr = s.poolState[poolId].immutableParamsPointer;
if (ptr == address(0)) return IBunniToken(address(0));
bytes memory rawValue = ptr.read({start: 20, end: 40});
bunniToken = IBunniToken(address(bytes20(rawValue)));
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {PoolId} from "@uniswap/v4-core/src/types/PoolId.sol";
import {PoolKey} from "@uniswap/v4-core/src/types/PoolKey.sol";
import {Currency} from "@uniswap/v4-core/src/types/Currency.sol";
import {IHooks} from "@uniswap/v4-core/src/interfaces/IHooks.sol";
import {IPoolManager} from "@uniswap/v4-core/src/interfaces/IPoolManager.sol";
import {IUnlockCallback} from "@uniswap/v4-core/src/interfaces/callback/IUnlockCallback.sol";
import {IAmAmm} from "biddog/interfaces/IAmAmm.sol";
import "flood-contracts/src/interfaces/IZone.sol";
import "flood-contracts/src/interfaces/IFloodPlain.sol";
import {IERC1271} from "permit2/src/interfaces/IERC1271.sol";
import "../base/Constants.sol";
import "../base/SharedStructs.sol";
import {IOwnable} from "./IOwnable.sol";
import {Oracle} from "../lib/Oracle.sol";
import {IBunniHub} from "./IBunniHub.sol";
import {IBaseHook} from "./IBaseHook.sol";
/// @title BunniHook
/// @author zefram.eth
/// @notice Uniswap v4 hook responsible for handling swaps on Bunni. Implements auto-rebalancing
/// executed via FloodPlain. Uses am-AMM to recapture LVR & MEV.
interface IBunniHook is IBaseHook, IOwnable, IUnlockCallback, IERC1271, IAmAmm {
/// -----------------------------------------------------------------------
/// Events
/// -----------------------------------------------------------------------
/// @notice Emitted for swaps between currency0 and currency1
/// @param id The abi encoded hash of the pool key struct for the pool that was modified
/// @param sender The address that initiated the swap call, and that received the callback
/// @param zeroForOne True if swapping token0 for token1, false otherwise
/// @param inputAmount The input token amount
/// @param outputAmount The output token amount
/// @param sqrtPriceX96 The sqrt(price) of the pool after the swap, as a Q64.96
/// @param tick The log base 1.0001 of the price of the pool after the swap
/// @param fee The swap fee rate charged, 6 decimals
/// @param totalLiquidity The total virtual liquidity of the pool during and after the swap
event Swap(
PoolId indexed id,
address indexed sender,
bool exactIn,
bool zeroForOne,
uint256 inputAmount,
uint256 outputAmount,
uint160 sqrtPriceX96,
int24 tick,
uint24 fee,
uint256 totalLiquidity
);
event SetZone(IZone zone);
event SetHookFeeRecipient(address hookFeeRecipient);
event SetModifiers(uint32 indexed hookFeeModifier, uint32 indexed referrerRewardModifier);
event ClaimProtocolFees(Currency[] currencyList, address indexed recipient);
/// -----------------------------------------------------------------------
/// Structs and enums
/// -----------------------------------------------------------------------
/// @notice The state of a TWAP oracle for a given pool
/// @member index The index of the last written observation for the pool
/// @member cardinality The cardinality of the observations array for the pool
/// @member cardinalityNext The cardinality target of the observations array for the pool, which will replace cardinality when enough observations are written
/// @member intermediateObservation Used to maintain a min interval between observations
struct ObservationState {
uint32 index;
uint32 cardinality;
uint32 cardinalityNext;
Oracle.Observation intermediateObservation;
}
/// @notice The arguments passed to the rebalance order prehook and posthook.
/// @dev The hash of the hook args is used for validation in the prehook and posthook.
/// @member key The pool key of the pool being rebalanced
/// @member preHookArgs The prehook arguments
/// @member postHookArgs The posthook arguments
struct RebalanceOrderHookArgs {
PoolKey key;
RebalanceOrderPreHookArgs preHookArgs;
RebalanceOrderPostHookArgs postHookArgs;
}
/// @notice The arguments passed to the rebalance order prehook.
/// @member currency The currency to take from BunniHub and sell via the rebalance order
/// @member amount The amount of currency to take from BunniHub and sell via the rebalance order
struct RebalanceOrderPreHookArgs {
Currency currency;
uint256 amount;
}
/// @notice The arguments passed to the rebalance order posthook.
/// @member currency The currency to receive from the rebalance order and give to BunniHub
struct RebalanceOrderPostHookArgs {
Currency currency;
}
/// -----------------------------------------------------------------------
/// View functions
/// -----------------------------------------------------------------------
/// @notice Returns the observation for the given pool key and observation index
/// @param key The pool key
/// @param index The observation index
/// @return observation The observation struct
function getObservation(PoolKey calldata key, uint256 index)
external
view
returns (Oracle.Observation memory observation);
/// @notice Returns the TWAP oracle observation state for the given pool key
/// @param key The pool key
/// @return state The state struct
function getState(PoolKey calldata key) external view returns (ObservationState memory state);
/// @notice Observe the given pool for the timestamps
/// @param key The pool key
/// @param secondsAgos The timestamps to observe
/// @return tickCumulatives The tick cumulatives for the given timestamps
function observe(PoolKey calldata key, uint32[] calldata secondsAgos)
external
view
returns (int56[] memory tickCumulatives);
/// @notice Validates if the given hook params are valid
/// @param hookParams The hook params
/// @return isValid True if the hook params are valid
function isValidParams(bytes calldata hookParams) external view returns (bool);
/// @notice The LDF state of a given pool. Used for evaluating the LDF.
/// @param id The pool id
/// @return The LDF state
function ldfStates(PoolId id) external view returns (bytes32);
/// @notice The slot0 state of a given pool
/// @param id The pool id
/// @return sqrtPriceX96
/// @return tick The tick of the pool
/// @return lastSwapTimestamp The timestamp of the last swap
/// @return lastSurgeTimestamp The timestamp of the last surge
function slot0s(PoolId id)
external
view
returns (uint160 sqrtPriceX96, int24 tick, uint32 lastSwapTimestamp, uint32 lastSurgeTimestamp);
/// @notice The share prices of the vaults used by the pool at the last swap
/// @param id The pool id
/// @return initialized True if the share prices have been initialized
/// @return sharePrice0 The underlying assets each share of vault0 represents, scaled by 1e18
/// @return sharePrice1 The underlying assets each share of vault1 represents, scaled by 1e18
function vaultSharePricesAtLastSwap(PoolId id)
external
view
returns (bool initialized, uint120 sharePrice0, uint120 sharePrice1);
/// @notice Whether am-AMM is enabled for the given pool.
function getAmAmmEnabled(PoolId id) external view returns (bool);
/// @notice Whether liquidity can be withdrawn from the given pool.
/// Currently used for pausing withdrawals when there is an active rebalance order.
/// @param id The pool id
/// @return Whether liquidity can be withdrawn from the given pool.
function canWithdraw(PoolId id) external view returns (bool);
/// @notice Returns the hook protocol fee recipient
function getHookFeeRecipient() external view returns (address);
/// @notice Returns the modifiers for computing hook fee and referral reward
function getModifiers() external view returns (uint32 hookFeeModifier_, uint32 referralRewardModifier_);
/// @notice Returns the claimable hook fees for the given currencies
/// @param currencyList The list of currencies to claim fees for
/// @return feeAmounts The list of claimable fees for each currency
function getClaimableHookFees(Currency[] calldata currencyList)
external
view
returns (uint256[] memory feeAmounts);
/// -----------------------------------------------------------------------
/// External functions
/// -----------------------------------------------------------------------
/// @notice Increase the cardinality target for the given pool
/// @param key The pool key
/// @param cardinalityNext The new cardinality target
/// @return cardinalityNextOld The old cardinality target
/// @return cardinalityNextNew The new cardinality target
function increaseCardinalityNext(PoolKey calldata key, uint32 cardinalityNext)
external
returns (uint32 cardinalityNextOld, uint32 cardinalityNextNew);
/// @notice Claim protocol fees for the given currency list.
/// @param currencyList The list of currencies to claim fees for
function claimProtocolFees(Currency[] calldata currencyList) external;
/// -----------------------------------------------------------------------
/// BunniHub functions
/// -----------------------------------------------------------------------
/// @notice Update the LDF state of the given pool. Only callable by BunniHub.
/// @param id The pool id
/// @param newState The new LDF state
function updateLdfState(PoolId id, bytes32 newState) external;
/// -----------------------------------------------------------------------
/// Owner functions
/// -----------------------------------------------------------------------
/// @notice Set the FloodZone contract address. Only callable by the owner.
/// @param zone The new FloodZone contract address
function setZone(IZone zone) external;
/// @notice Set the hook protocol fee recipient. Only callable by the owner.
/// @param newProtocolFeeRecipient The new protocol fee recipient address
function setHookFeeRecipient(address newProtocolFeeRecipient) external;
/// @notice Set the hook fee & referral reward params. Only callable by the owner.
/// @param newHookFeeModifier The new hook fee modifier. 6 decimals.
/// @param newReferralRewardModifier The new referral reward modifier. 6 decimals.
function setModifiers(uint32 newHookFeeModifier, uint32 newReferralRewardModifier) external;
/// -----------------------------------------------------------------------
/// Rebalance functions
/// -----------------------------------------------------------------------
/// @notice Called by the FloodPlain contract prior to executing a rebalance order.
/// Should ensure the hook has exactly `hookArgs.preHookArgs.amount` tokens of `hookArgs.preHookArgs.currency` upon return.
/// @param hookArgs The rebalance order hook arguments
function rebalanceOrderPreHook(RebalanceOrderHookArgs calldata hookArgs) external;
/// @notice Called by the FloodPlain contract after executing a rebalance order.
/// Should transfer any output tokens from the order to BunniHub and update pool balances.
/// @param hookArgs The rebalance order hook arguments
function rebalanceOrderPostHook(RebalanceOrderHookArgs calldata hookArgs) external;
}// SPDX-License-Identifier: MIT
pragma solidity >=0.6.0;
import "@uniswap/v4-core/src/types/Currency.sol";
import {PoolKey} from "@uniswap/v4-core/src/types/PoolKey.sol";
import {IPoolManager} from "@uniswap/v4-core/src/interfaces/IPoolManager.sol";
import {IUnlockCallback} from "@uniswap/v4-core/src/interfaces/callback/IUnlockCallback.sol";
import {IERC20} from "./IERC20.sol";
import {IOwnable} from "./IOwnable.sol";
import {IHooklet} from "./IHooklet.sol";
import {IBunniHub} from "./IBunniHub.sol";
import {IERC20Referrer} from "./IERC20Referrer.sol";
import {IERC20Lockable} from "./IERC20Lockable.sol";
/// @title BunniToken
/// @author zefram.eth
/// @notice ERC20 token that represents a user's LP position
interface IBunniToken is IERC20, IERC20Referrer, IERC20Lockable, IOwnable, IUnlockCallback {
event ClaimReferralRewards(address indexed referrer, uint256 reward0, uint256 reward1);
event SetMetadataURI(string newURI);
function hub() external view returns (IBunniHub);
function token0() external view returns (Currency);
function token1() external view returns (Currency);
function poolManager() external view returns (IPoolManager);
function poolKey() external view returns (PoolKey memory);
function hooklet() external view returns (IHooklet);
function mint(address to, uint256 amount) external;
function mint(address to, uint256 amount, address referrer) external;
function burn(address from, uint256 amount) external;
function burn(uint256 amount) external;
function initialize(address owner_, string calldata metadataURI_) external;
function metadataURI() external view returns (string memory);
function setMetadataURI(string calldata metadataURI_) external;
/// @notice Distributes referral rewards to all referrers. Usually called by the hook but can be called by anyone.
/// The referral rewards should be in the form of PoolManager ERC6909 claim tokens.
/// @dev Does not early return if the reward amount is 0, so the caller is responsible for not calling this function
/// if amount is indeed 0.
/// @param isToken0 Whether the rewards are in token0 or token1
/// @param amount The amount of rewards to distribute.
function distributeReferralRewards(bool isToken0, uint256 amount) external;
/// @notice Claims referral rewards for a given referrer ID. Can be called by anyone.
/// @param referrer The referrer to claim rewards for
/// @return reward0 The amount of token0 rewards claimed
/// @return reward1 The amount of token1 rewards claimed
function claimReferralRewards(address referrer) external returns (uint256 reward0, uint256 reward1);
/// @notice Returns the amount of referral rewards claimable by a given referrer ID.
/// @param referrer The referrer to check rewards for
/// @return reward0 The amount of token0 rewards claimable
/// @return reward1 The amount of token1 rewards claimable
function getClaimableReferralRewards(address referrer) external view returns (uint256 reward0, uint256 reward1);
/// @notice Increments the EIP-2612 permit nonce of the caller to invalidate permit signatures.
function incrementNonce() external;
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.19;
abstract contract ReentrancyGuard {
error ReentrancyGuard__ReentrantCall();
/// @dev Equal to uint256(keccak256("STATUS")) - 1
uint256 private constant STATUS_SLOT = 0x99d6ee9363d15a40a5ab48bebc5e3e7dd2c4e190c950f55fe724fad94b380d7e;
uint256 private constant NOT_ENTERED = 0;
uint256 private constant ENTERED = 1;
modifier nonReentrant() {
_nonReentrantBefore();
_;
_nonReentrantAfter();
}
function _nonReentrantBefore() internal {
uint256 statusSlot = STATUS_SLOT;
uint256 status;
/// @solidity memory-safe-assembly
assembly {
status := tload(statusSlot)
}
if (status == ENTERED) revert ReentrancyGuard__ReentrantCall();
uint256 entered = ENTERED;
/// @solidity memory-safe-assembly
assembly {
tstore(statusSlot, entered)
}
}
function _nonReentrantAfter() internal {
uint256 statusSlot = STATUS_SLOT;
uint256 notEntered = NOT_ENTERED;
/// @solidity memory-safe-assembly
assembly {
tstore(statusSlot, notEntered)
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
import {PoolId, PoolKey, Currency} from "@uniswap/v4-core/src/interfaces/IPoolManager.sol";
import {SSTORE2} from "solady/utils/SSTORE2.sol";
import {ERC4626} from "solady/tokens/ERC4626.sol";
import "./LDFType.sol";
import "./IdleBalance.sol";
import "../base/Errors.sol";
import {IHooklet} from "../interfaces/IHooklet.sol";
import {HubStorage} from "../base/SharedStructs.sol";
import {IBunniToken} from "../interfaces/IBunniToken.sol";
import {ILiquidityDensityFunction} from "../interfaces/ILiquidityDensityFunction.sol";
using SSTORE2 for address;
/// @notice The state of a Bunni pool
/// @member liquidityDensityFunction The LDF that dictates how liquidity is distributed
/// @member bunniToken The BunniToken for this pool
/// @member hooklet The hooklet for this pool. Set to address(0) if the pool does not have a hooklet.
/// @member twapSecondsAgo The time window for the TWAP used by the LDF. Set to 0 if the LDF does not use the TWAP.
/// @member ldfParams The parameters for the LDF
/// @member hookParams The hook parameters for the pool
/// @member vault0 The ERC4626 vault used for currency0
/// @member vault1 The ERC4626 vault used for currency1
/// @member ldfType The type of LDF. See LDFType.sol for details.
/// @member minRawTokenRatio0 The minimum (rawBalance / balance) ratio for currency0
/// @member targetRawTokenRatio0 The target (rawBalance / balance) ratio for currency0
/// @member maxRawTokenRatio0 The maximum (rawBalance / balance) ratio for currency0
/// @member minRawTokenRatio1 The minimum (rawBalance / balance) ratio for currency1
/// @member targetRawTokenRatio1 The target (rawBalance / balance) ratio for currency1
/// @member maxRawTokenRatio1 The maximum (rawBalance / balance) ratio for currency1
/// @member rawBalance0 The raw token balance of currency0. Raw just means it's not stored in a ERC4626 vault.
/// @member rawBalance1 The raw token balance of currency1. Raw just means it's not stored in a ERC4626 vault.
/// @member reserve0 The vault share tokens owned in vault0
/// @member reserve1 The vault share tokens owned in vault1
/// @member idleBalance The balance of the token that's in excess. Used when computing the total liquidity.
struct PoolState {
ILiquidityDensityFunction liquidityDensityFunction;
IBunniToken bunniToken;
IHooklet hooklet;
uint24 twapSecondsAgo;
bytes32 ldfParams;
bytes hookParams;
ERC4626 vault0;
ERC4626 vault1;
LDFType ldfType;
uint24 minRawTokenRatio0;
uint24 targetRawTokenRatio0;
uint24 maxRawTokenRatio0;
uint24 minRawTokenRatio1;
uint24 targetRawTokenRatio1;
uint24 maxRawTokenRatio1;
uint256 rawBalance0;
uint256 rawBalance1;
uint256 reserve0;
uint256 reserve1;
IdleBalance idleBalance;
}
/// @notice The raw state of a given pool
/// @dev Since a pool's parameters are immutable, we use SSTORE2 to store them cheaply and store the pointer here.
/// @member immutableParamsPointer The SSTORE2 pointer to the immutable parameters of the pool
/// @member rawBalance0 The raw token balance of currency0. Raw just means it's not stored in a ERC4626 vault.
/// @member rawBalance1 The raw token balance of currency1. Raw just means it's not stored in a ERC4626 vault.
struct RawPoolState {
address immutableParamsPointer;
uint256 rawBalance0;
uint256 rawBalance1;
}
function getPoolParams(address ptr) view returns (PoolState memory state) {
// read params via SSLOAD2
bytes memory immutableParams = ptr.read();
{
ILiquidityDensityFunction liquidityDensityFunction;
/// @solidity memory-safe-assembly
assembly {
liquidityDensityFunction := shr(96, mload(add(immutableParams, 32)))
}
state.liquidityDensityFunction = liquidityDensityFunction;
}
{
IBunniToken bunniToken;
/// @solidity memory-safe-assembly
assembly {
bunniToken := shr(96, mload(add(immutableParams, 52)))
}
state.bunniToken = bunniToken;
}
{
uint24 twapSecondsAgo;
/// @solidity memory-safe-assembly
assembly {
twapSecondsAgo := shr(232, mload(add(immutableParams, 72)))
}
state.twapSecondsAgo = twapSecondsAgo;
}
{
bytes32 ldfParams;
/// @solidity memory-safe-assembly
assembly {
ldfParams := mload(add(immutableParams, 75))
}
state.ldfParams = ldfParams;
}
{
ERC4626 vault0;
/// @solidity memory-safe-assembly
assembly {
vault0 := shr(96, mload(add(immutableParams, 107)))
}
state.vault0 = vault0;
}
{
ERC4626 vault1;
/// @solidity memory-safe-assembly
assembly {
vault1 := shr(96, mload(add(immutableParams, 127)))
}
state.vault1 = vault1;
}
{
LDFType ldfType;
/// @solidity memory-safe-assembly
assembly {
ldfType := shr(248, mload(add(immutableParams, 147)))
}
state.ldfType = ldfType;
}
{
uint24 minRawTokenRatio0;
/// @solidity memory-safe-assembly
assembly {
minRawTokenRatio0 := shr(232, mload(add(immutableParams, 148)))
}
state.minRawTokenRatio0 = minRawTokenRatio0;
}
{
uint24 targetRawTokenRatio0;
/// @solidity memory-safe-assembly
assembly {
targetRawTokenRatio0 := shr(232, mload(add(immutableParams, 151)))
}
state.targetRawTokenRatio0 = targetRawTokenRatio0;
}
{
uint24 maxRawTokenRatio0;
/// @solidity memory-safe-assembly
assembly {
maxRawTokenRatio0 := shr(232, mload(add(immutableParams, 154)))
}
state.maxRawTokenRatio0 = maxRawTokenRatio0;
}
{
uint24 minRawTokenRatio1;
/// @solidity memory-safe-assembly
assembly {
minRawTokenRatio1 := shr(232, mload(add(immutableParams, 157)))
}
state.minRawTokenRatio1 = minRawTokenRatio1;
}
{
uint24 targetRawTokenRatio1;
/// @solidity memory-safe-assembly
assembly {
targetRawTokenRatio1 := shr(232, mload(add(immutableParams, 160)))
}
state.targetRawTokenRatio1 = targetRawTokenRatio1;
}
{
uint24 maxRawTokenRatio1;
/// @solidity memory-safe-assembly
assembly {
maxRawTokenRatio1 := shr(232, mload(add(immutableParams, 163)))
}
state.maxRawTokenRatio1 = maxRawTokenRatio1;
}
{
IHooklet hooklet;
/// @solidity memory-safe-assembly
assembly {
hooklet := shr(96, mload(add(immutableParams, 166)))
}
state.hooklet = hooklet;
}
{
bytes memory hookParams;
/// @solidity memory-safe-assembly
assembly {
let hookParamsLen := shr(240, mload(add(immutableParams, 186))) // uint16
hookParams := add(immutableParams, 156) // 156 = 186 (hookParamsLen location) + 2 (hookParamsLen is uint16) - 32 (expand hookParamsLen to 32 bytes)
mstore(hookParams, hookParamsLen) // overwrite length field of `bytes memory hookParams`
}
state.hookParams = hookParams;
}
}
function getPoolState(HubStorage storage s, PoolId poolId) view returns (PoolState memory state) {
RawPoolState memory rawState = s.poolState[poolId];
if (rawState.immutableParamsPointer == address(0)) revert BunniHub__BunniTokenNotInitialized();
state = getPoolParams(rawState.immutableParamsPointer);
state.rawBalance0 = rawState.rawBalance0;
state.rawBalance1 = rawState.rawBalance1;
state.reserve0 = address(state.vault0) != address(0) ? s.reserve0[poolId] : 0;
state.reserve1 = address(state.vault1) != address(0) ? s.reserve1[poolId] : 0;
// idle balance is only needed when the LDF is not static since static LDFs
// can never become imbalanced
state.idleBalance = state.ldfType == LDFType.STATIC ? IdleBalanceLibrary.ZERO : s.idleBalance[poolId];
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.13;
import {SafeTransferLib} from "solady/utils/SafeTransferLib.sol";
import {IERC20} from "../interfaces/IERC20.sol";
library ExcessivelySafeTransfer2Lib {
using SafeTransferLib for address;
function excessivelySafeTransferFrom2(address token, address from, address to, uint256 amount) internal {
// check allowance
uint256 allowance = IERC20(token).allowance(from, address(this));
if (allowance < amount) {
// regular safe transfer from will fail
// use permit2 to transfer from
token.permit2TransferFrom(from, to, amount);
} else {
// regular safe transfer from will work
token.safeTransferFrom(from, to, amount);
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {IEIP712} from "./IEIP712.sol";
/// @title SignatureTransfer
/// @notice Handles ERC20 token transfers through signature based actions
/// @dev Requires user's token approval on the Permit2 contract
interface ISignatureTransfer is IEIP712 {
/// @notice Thrown when the requested amount for a transfer is larger than the permissioned amount
/// @param maxAmount The maximum amount a spender can request to transfer
error InvalidAmount(uint256 maxAmount);
/// @notice Thrown when the number of tokens permissioned to a spender does not match the number of tokens being transferred
/// @dev If the spender does not need to transfer the number of tokens permitted, the spender can request amount 0 to be transferred
error LengthMismatch();
/// @notice Emits an event when the owner successfully invalidates an unordered nonce.
event UnorderedNonceInvalidation(address indexed owner, uint256 word, uint256 mask);
/// @notice The token and amount details for a transfer signed in the permit transfer signature
struct TokenPermissions {
// ERC20 token address
address token;
// the maximum amount that can be spent
uint256 amount;
}
/// @notice The signed permit message for a single token transfer
struct PermitTransferFrom {
TokenPermissions permitted;
// a unique value for every token owner's signature to prevent signature replays
uint256 nonce;
// deadline on the permit signature
uint256 deadline;
}
/// @notice Specifies the recipient address and amount for batched transfers.
/// @dev Recipients and amounts correspond to the index of the signed token permissions array.
/// @dev Reverts if the requested amount is greater than the permitted signed amount.
struct SignatureTransferDetails {
// recipient address
address to;
// spender requested amount
uint256 requestedAmount;
}
/// @notice Used to reconstruct the signed permit message for multiple token transfers
/// @dev Do not need to pass in spender address as it is required that it is msg.sender
/// @dev Note that a user still signs over a spender address
struct PermitBatchTransferFrom {
// the tokens and corresponding amounts permitted for a transfer
TokenPermissions[] permitted;
// a unique value for every token owner's signature to prevent signature replays
uint256 nonce;
// deadline on the permit signature
uint256 deadline;
}
/// @notice A map from token owner address and a caller specified word index to a bitmap. Used to set bits in the bitmap to prevent against signature replay protection
/// @dev Uses unordered nonces so that permit messages do not need to be spent in a certain order
/// @dev The mapping is indexed first by the token owner, then by an index specified in the nonce
/// @dev It returns a uint256 bitmap
/// @dev The index, or wordPosition is capped at type(uint248).max
function nonceBitmap(address, uint256) external view returns (uint256);
/// @notice Transfers a token using a signed permit message
/// @dev Reverts if the requested amount is greater than the permitted signed amount
/// @param permit The permit data signed over by the owner
/// @param owner The owner of the tokens to transfer
/// @param transferDetails The spender's requested transfer details for the permitted token
/// @param signature The signature to verify
function permitTransferFrom(
PermitTransferFrom memory permit,
SignatureTransferDetails calldata transferDetails,
address owner,
bytes calldata signature
) external;
/// @notice Transfers a token using a signed permit message
/// @notice Includes extra data provided by the caller to verify signature over
/// @dev The witness type string must follow EIP712 ordering of nested structs and must include the TokenPermissions type definition
/// @dev Reverts if the requested amount is greater than the permitted signed amount
/// @param permit The permit data signed over by the owner
/// @param owner The owner of the tokens to transfer
/// @param transferDetails The spender's requested transfer details for the permitted token
/// @param witness Extra data to include when checking the user signature
/// @param witnessTypeString The EIP-712 type definition for remaining string stub of the typehash
/// @param signature The signature to verify
function permitWitnessTransferFrom(
PermitTransferFrom memory permit,
SignatureTransferDetails calldata transferDetails,
address owner,
bytes32 witness,
string calldata witnessTypeString,
bytes calldata signature
) external;
/// @notice Transfers multiple tokens using a signed permit message
/// @param permit The permit data signed over by the owner
/// @param owner The owner of the tokens to transfer
/// @param transferDetails Specifies the recipient and requested amount for the token transfer
/// @param signature The signature to verify
function permitTransferFrom(
PermitBatchTransferFrom memory permit,
SignatureTransferDetails[] calldata transferDetails,
address owner,
bytes calldata signature
) external;
/// @notice Transfers multiple tokens using a signed permit message
/// @dev The witness type string must follow EIP712 ordering of nested structs and must include the TokenPermissions type definition
/// @notice Includes extra data provided by the caller to verify signature over
/// @param permit The permit data signed over by the owner
/// @param owner The owner of the tokens to transfer
/// @param transferDetails Specifies the recipient and requested amount for the token transfer
/// @param witness Extra data to include when checking the user signature
/// @param witnessTypeString The EIP-712 type definition for remaining string stub of the typehash
/// @param signature The signature to verify
function permitWitnessTransferFrom(
PermitBatchTransferFrom memory permit,
SignatureTransferDetails[] calldata transferDetails,
address owner,
bytes32 witness,
string calldata witnessTypeString,
bytes calldata signature
) external;
/// @notice Invalidates the bits specified in mask for the bitmap at the word position
/// @dev The wordPos is maxed at type(uint248).max
/// @param wordPos A number to index the nonceBitmap at
/// @param mask A bitmap masked against msg.sender's current bitmap at the word position
function invalidateUnorderedNonces(uint256 wordPos, uint256 mask) external;
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {IEIP712} from "./IEIP712.sol";
/// @title AllowanceTransfer
/// @notice Handles ERC20 token permissions through signature based allowance setting and ERC20 token transfers by checking allowed amounts
/// @dev Requires user's token approval on the Permit2 contract
interface IAllowanceTransfer is IEIP712 {
/// @notice Thrown when an allowance on a token has expired.
/// @param deadline The timestamp at which the allowed amount is no longer valid
error AllowanceExpired(uint256 deadline);
/// @notice Thrown when an allowance on a token has been depleted.
/// @param amount The maximum amount allowed
error InsufficientAllowance(uint256 amount);
/// @notice Thrown when too many nonces are invalidated.
error ExcessiveInvalidation();
/// @notice Emits an event when the owner successfully invalidates an ordered nonce.
event NonceInvalidation(
address indexed owner, address indexed token, address indexed spender, uint48 newNonce, uint48 oldNonce
);
/// @notice Emits an event when the owner successfully sets permissions on a token for the spender.
event Approval(
address indexed owner, address indexed token, address indexed spender, uint160 amount, uint48 expiration
);
/// @notice Emits an event when the owner successfully sets permissions using a permit signature on a token for the spender.
event Permit(
address indexed owner,
address indexed token,
address indexed spender,
uint160 amount,
uint48 expiration,
uint48 nonce
);
/// @notice Emits an event when the owner sets the allowance back to 0 with the lockdown function.
event Lockdown(address indexed owner, address token, address spender);
/// @notice The permit data for a token
struct PermitDetails {
// ERC20 token address
address token;
// the maximum amount allowed to spend
uint160 amount;
// timestamp at which a spender's token allowances become invalid
uint48 expiration;
// an incrementing value indexed per owner,token,and spender for each signature
uint48 nonce;
}
/// @notice The permit message signed for a single token allowance
struct PermitSingle {
// the permit data for a single token alownce
PermitDetails details;
// address permissioned on the allowed tokens
address spender;
// deadline on the permit signature
uint256 sigDeadline;
}
/// @notice The permit message signed for multiple token allowances
struct PermitBatch {
// the permit data for multiple token allowances
PermitDetails[] details;
// address permissioned on the allowed tokens
address spender;
// deadline on the permit signature
uint256 sigDeadline;
}
/// @notice The saved permissions
/// @dev This info is saved per owner, per token, per spender and all signed over in the permit message
/// @dev Setting amount to type(uint160).max sets an unlimited approval
struct PackedAllowance {
// amount allowed
uint160 amount;
// permission expiry
uint48 expiration;
// an incrementing value indexed per owner,token,and spender for each signature
uint48 nonce;
}
/// @notice A token spender pair.
struct TokenSpenderPair {
// the token the spender is approved
address token;
// the spender address
address spender;
}
/// @notice Details for a token transfer.
struct AllowanceTransferDetails {
// the owner of the token
address from;
// the recipient of the token
address to;
// the amount of the token
uint160 amount;
// the token to be transferred
address token;
}
/// @notice A mapping from owner address to token address to spender address to PackedAllowance struct, which contains details and conditions of the approval.
/// @notice The mapping is indexed in the above order see: allowance[ownerAddress][tokenAddress][spenderAddress]
/// @dev The packed slot holds the allowed amount, expiration at which the allowed amount is no longer valid, and current nonce thats updated on any signature based approvals.
function allowance(address user, address token, address spender)
external
view
returns (uint160 amount, uint48 expiration, uint48 nonce);
/// @notice Approves the spender to use up to amount of the specified token up until the expiration
/// @param token The token to approve
/// @param spender The spender address to approve
/// @param amount The approved amount of the token
/// @param expiration The timestamp at which the approval is no longer valid
/// @dev The packed allowance also holds a nonce, which will stay unchanged in approve
/// @dev Setting amount to type(uint160).max sets an unlimited approval
function approve(address token, address spender, uint160 amount, uint48 expiration) external;
/// @notice Permit a spender to a given amount of the owners token via the owner's EIP-712 signature
/// @dev May fail if the owner's nonce was invalidated in-flight by invalidateNonce
/// @param owner The owner of the tokens being approved
/// @param permitSingle Data signed over by the owner specifying the terms of approval
/// @param signature The owner's signature over the permit data
function permit(address owner, PermitSingle memory permitSingle, bytes calldata signature) external;
/// @notice Permit a spender to the signed amounts of the owners tokens via the owner's EIP-712 signature
/// @dev May fail if the owner's nonce was invalidated in-flight by invalidateNonce
/// @param owner The owner of the tokens being approved
/// @param permitBatch Data signed over by the owner specifying the terms of approval
/// @param signature The owner's signature over the permit data
function permit(address owner, PermitBatch memory permitBatch, bytes calldata signature) external;
/// @notice Transfer approved tokens from one address to another
/// @param from The address to transfer from
/// @param to The address of the recipient
/// @param amount The amount of the token to transfer
/// @param token The token address to transfer
/// @dev Requires the from address to have approved at least the desired amount
/// of tokens to msg.sender.
function transferFrom(address from, address to, uint160 amount, address token) external;
/// @notice Transfer approved tokens in a batch
/// @param transferDetails Array of owners, recipients, amounts, and tokens for the transfers
/// @dev Requires the from addresses to have approved at least the desired amount
/// of tokens to msg.sender.
function transferFrom(AllowanceTransferDetails[] calldata transferDetails) external;
/// @notice Enables performing a "lockdown" of the sender's Permit2 identity
/// by batch revoking approvals
/// @param approvals Array of approvals to revoke.
function lockdown(TokenSpenderPair[] calldata approvals) external;
/// @notice Invalidate nonces for a given (token, spender) pair
/// @param token The token to invalidate nonces for
/// @param spender The spender to invalidate nonces for
/// @param newNonce The new nonce to set. Invalidates all nonces less than it.
/// @dev Can't invalidate more than 2**16 nonces per transaction.
function invalidateNonces(address token, address spender, uint48 newNonce) external;
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {CustomRevert} from "./CustomRevert.sol";
/// @title Safe casting methods
/// @notice Contains methods for safely casting between types
library SafeCast {
using CustomRevert for bytes4;
error SafeCastOverflow();
/// @notice Cast a uint256 to a uint160, revert on overflow
/// @param x The uint256 to be downcasted
/// @return y The downcasted integer, now type uint160
function toUint160(uint256 x) internal pure returns (uint160 y) {
y = uint160(x);
if (y != x) SafeCastOverflow.selector.revertWith();
}
/// @notice Cast a uint256 to a uint128, revert on overflow
/// @param x The uint256 to be downcasted
/// @return y The downcasted integer, now type uint128
function toUint128(uint256 x) internal pure returns (uint128 y) {
y = uint128(x);
if (x != y) SafeCastOverflow.selector.revertWith();
}
/// @notice Cast a int128 to a uint128, revert on overflow or underflow
/// @param x The int128 to be casted
/// @return y The casted integer, now type uint128
function toUint128(int128 x) internal pure returns (uint128 y) {
if (x < 0) SafeCastOverflow.selector.revertWith();
y = uint128(x);
}
/// @notice Cast a int256 to a int128, revert on overflow or underflow
/// @param x The int256 to be downcasted
/// @return y The downcasted integer, now type int128
function toInt128(int256 x) internal pure returns (int128 y) {
y = int128(x);
if (y != x) SafeCastOverflow.selector.revertWith();
}
/// @notice Cast a uint256 to a int256, revert on overflow
/// @param x The uint256 to be casted
/// @return y The casted integer, now type int256
function toInt256(uint256 x) internal pure returns (int256 y) {
y = int256(x);
if (y < 0) SafeCastOverflow.selector.revertWith();
}
/// @notice Cast a uint256 to a int128, revert on overflow
/// @param x The uint256 to be downcasted
/// @return The downcasted integer, now type int128
function toInt128(uint256 x) internal pure returns (int128) {
if (x >= 1 << 127) SafeCastOverflow.selector.revertWith();
return int128(int256(x));
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {Currency} from "./Currency.sol";
import {IHooks} from "../interfaces/IHooks.sol";
import {PoolIdLibrary} from "./PoolId.sol";
using PoolIdLibrary for PoolKey global;
/// @notice Returns the key for identifying a pool
struct PoolKey {
/// @notice The lower currency of the pool, sorted numerically
Currency currency0;
/// @notice The higher currency of the pool, sorted numerically
Currency currency1;
/// @notice The pool LP fee, capped at 1_000_000. If the highest bit is 1, the pool has a dynamic fee and must be exactly equal to 0x800000
uint24 fee;
/// @notice Ticks that involve positions must be a multiple of tick spacing
int24 tickSpacing;
/// @notice The hooks of the pool
IHooks hooks;
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/// @title Minimal ERC20 interface for Uniswap
/// @notice Contains a subset of the full ERC20 interface that is used in Uniswap V3
interface IERC20Minimal {
/// @notice Returns an account's balance in the token
/// @param account The account for which to look up the number of tokens it has, i.e. its balance
/// @return The number of tokens held by the account
function balanceOf(address account) external view returns (uint256);
/// @notice Transfers the amount of token from the `msg.sender` to the recipient
/// @param recipient The account that will receive the amount transferred
/// @param amount The number of tokens to send from the sender to the recipient
/// @return Returns true for a successful transfer, false for an unsuccessful transfer
function transfer(address recipient, uint256 amount) external returns (bool);
/// @notice Returns the current allowance given to a spender by an owner
/// @param owner The account of the token owner
/// @param spender The account of the token spender
/// @return The current allowance granted by `owner` to `spender`
function allowance(address owner, address spender) external view returns (uint256);
/// @notice Sets the allowance of a spender from the `msg.sender` to the value `amount`
/// @param spender The account which will be allowed to spend a given amount of the owners tokens
/// @param amount The amount of tokens allowed to be used by `spender`
/// @return Returns true for a successful approval, false for unsuccessful
function approve(address spender, uint256 amount) external returns (bool);
/// @notice Transfers `amount` tokens from `sender` to `recipient` up to the allowance given to the `msg.sender`
/// @param sender The account from which the transfer will be initiated
/// @param recipient The recipient of the transfer
/// @param amount The amount of the transfer
/// @return Returns true for a successful transfer, false for unsuccessful
function transferFrom(address sender, address recipient, uint256 amount) external returns (bool);
/// @notice Event emitted when tokens are transferred from one address to another, either via `#transfer` or `#transferFrom`.
/// @param from The account from which the tokens were sent, i.e. the balance decreased
/// @param to The account to which the tokens were sent, i.e. the balance increased
/// @param value The amount of tokens that were transferred
event Transfer(address indexed from, address indexed to, uint256 value);
/// @notice Event emitted when the approval amount for the spender of a given owner's tokens changes.
/// @param owner The account that approved spending of its tokens
/// @param spender The account for which the spending allowance was modified
/// @param value The new allowance from the owner to the spender
event Approval(address indexed owner, address indexed spender, uint256 value);
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/// @title Library for reverting with custom errors efficiently
/// @notice Contains functions for reverting with custom errors with different argument types efficiently
/// @dev To use this library, declare `using CustomRevert for bytes4;` and replace `revert CustomError()` with
/// `CustomError.selector.revertWith()`
/// @dev The functions may tamper with the free memory pointer but it is fine since the call context is exited immediately
library CustomRevert {
/// @dev ERC-7751 error for wrapping bubbled up reverts
error WrappedError(address target, bytes4 selector, bytes reason, bytes details);
/// @dev Reverts with the selector of a custom error in the scratch space
function revertWith(bytes4 selector) internal pure {
assembly ("memory-safe") {
mstore(0, selector)
revert(0, 0x04)
}
}
/// @dev Reverts with a custom error with an address argument in the scratch space
function revertWith(bytes4 selector, address addr) internal pure {
assembly ("memory-safe") {
mstore(0, selector)
mstore(0x04, and(addr, 0xffffffffffffffffffffffffffffffffffffffff))
revert(0, 0x24)
}
}
/// @dev Reverts with a custom error with an int24 argument in the scratch space
function revertWith(bytes4 selector, int24 value) internal pure {
assembly ("memory-safe") {
mstore(0, selector)
mstore(0x04, signextend(2, value))
revert(0, 0x24)
}
}
/// @dev Reverts with a custom error with a uint160 argument in the scratch space
function revertWith(bytes4 selector, uint160 value) internal pure {
assembly ("memory-safe") {
mstore(0, selector)
mstore(0x04, and(value, 0xffffffffffffffffffffffffffffffffffffffff))
revert(0, 0x24)
}
}
/// @dev Reverts with a custom error with two int24 arguments
function revertWith(bytes4 selector, int24 value1, int24 value2) internal pure {
assembly ("memory-safe") {
let fmp := mload(0x40)
mstore(fmp, selector)
mstore(add(fmp, 0x04), signextend(2, value1))
mstore(add(fmp, 0x24), signextend(2, value2))
revert(fmp, 0x44)
}
}
/// @dev Reverts with a custom error with two uint160 arguments
function revertWith(bytes4 selector, uint160 value1, uint160 value2) internal pure {
assembly ("memory-safe") {
let fmp := mload(0x40)
mstore(fmp, selector)
mstore(add(fmp, 0x04), and(value1, 0xffffffffffffffffffffffffffffffffffffffff))
mstore(add(fmp, 0x24), and(value2, 0xffffffffffffffffffffffffffffffffffffffff))
revert(fmp, 0x44)
}
}
/// @dev Reverts with a custom error with two address arguments
function revertWith(bytes4 selector, address value1, address value2) internal pure {
assembly ("memory-safe") {
let fmp := mload(0x40)
mstore(fmp, selector)
mstore(add(fmp, 0x04), and(value1, 0xffffffffffffffffffffffffffffffffffffffff))
mstore(add(fmp, 0x24), and(value2, 0xffffffffffffffffffffffffffffffffffffffff))
revert(fmp, 0x44)
}
}
/// @notice bubble up the revert message returned by a call and revert with a wrapped ERC-7751 error
/// @dev this method can be vulnerable to revert data bombs
function bubbleUpAndRevertWith(
address revertingContract,
bytes4 revertingFunctionSelector,
bytes4 additionalContext
) internal pure {
bytes4 wrappedErrorSelector = WrappedError.selector;
assembly ("memory-safe") {
// Ensure the size of the revert data is a multiple of 32 bytes
let encodedDataSize := mul(div(add(returndatasize(), 31), 32), 32)
let fmp := mload(0x40)
// Encode wrapped error selector, address, function selector, offset, additional context, size, revert reason
mstore(fmp, wrappedErrorSelector)
mstore(add(fmp, 0x04), and(revertingContract, 0xffffffffffffffffffffffffffffffffffffffff))
mstore(
add(fmp, 0x24),
and(revertingFunctionSelector, 0xffffffff00000000000000000000000000000000000000000000000000000000)
)
// offset revert reason
mstore(add(fmp, 0x44), 0x80)
// offset additional context
mstore(add(fmp, 0x64), add(0xa0, encodedDataSize))
// size revert reason
mstore(add(fmp, 0x84), returndatasize())
// revert reason
returndatacopy(add(fmp, 0xa4), 0, returndatasize())
// size additional context
mstore(add(fmp, add(0xa4, encodedDataSize)), 0x04)
// additional context
mstore(
add(fmp, add(0xc4, encodedDataSize)),
and(additionalContext, 0xffffffff00000000000000000000000000000000000000000000000000000000)
)
revert(fmp, add(0xe4, encodedDataSize))
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {PoolKey} from "../types/PoolKey.sol";
import {BalanceDelta} from "../types/BalanceDelta.sol";
import {IPoolManager} from "./IPoolManager.sol";
import {BeforeSwapDelta} from "../types/BeforeSwapDelta.sol";
/// @notice V4 decides whether to invoke specific hooks by inspecting the least significant bits
/// of the address that the hooks contract is deployed to.
/// For example, a hooks contract deployed to address: 0x0000000000000000000000000000000000002400
/// has the lowest bits '10 0100 0000 0000' which would cause the 'before initialize' and 'after add liquidity' hooks to be used.
/// See the Hooks library for the full spec.
/// @dev Should only be callable by the v4 PoolManager.
interface IHooks {
/// @notice The hook called before the state of a pool is initialized
/// @param sender The initial msg.sender for the initialize call
/// @param key The key for the pool being initialized
/// @param sqrtPriceX96 The sqrt(price) of the pool as a Q64.96
/// @return bytes4 The function selector for the hook
function beforeInitialize(address sender, PoolKey calldata key, uint160 sqrtPriceX96) external returns (bytes4);
/// @notice The hook called after the state of a pool is initialized
/// @param sender The initial msg.sender for the initialize call
/// @param key The key for the pool being initialized
/// @param sqrtPriceX96 The sqrt(price) of the pool as a Q64.96
/// @param tick The current tick after the state of a pool is initialized
/// @return bytes4 The function selector for the hook
function afterInitialize(address sender, PoolKey calldata key, uint160 sqrtPriceX96, int24 tick)
external
returns (bytes4);
/// @notice The hook called before liquidity is added
/// @param sender The initial msg.sender for the add liquidity call
/// @param key The key for the pool
/// @param params The parameters for adding liquidity
/// @param hookData Arbitrary data handed into the PoolManager by the liquidity provider to be passed on to the hook
/// @return bytes4 The function selector for the hook
function beforeAddLiquidity(
address sender,
PoolKey calldata key,
IPoolManager.ModifyLiquidityParams calldata params,
bytes calldata hookData
) external returns (bytes4);
/// @notice The hook called after liquidity is added
/// @param sender The initial msg.sender for the add liquidity call
/// @param key The key for the pool
/// @param params The parameters for adding liquidity
/// @param delta The caller's balance delta after adding liquidity; the sum of principal delta, fees accrued, and hook delta
/// @param feesAccrued The fees accrued since the last time fees were collected from this position
/// @param hookData Arbitrary data handed into the PoolManager by the liquidity provider to be passed on to the hook
/// @return bytes4 The function selector for the hook
/// @return BalanceDelta The hook's delta in token0 and token1. Positive: the hook is owed/took currency, negative: the hook owes/sent currency
function afterAddLiquidity(
address sender,
PoolKey calldata key,
IPoolManager.ModifyLiquidityParams calldata params,
BalanceDelta delta,
BalanceDelta feesAccrued,
bytes calldata hookData
) external returns (bytes4, BalanceDelta);
/// @notice The hook called before liquidity is removed
/// @param sender The initial msg.sender for the remove liquidity call
/// @param key The key for the pool
/// @param params The parameters for removing liquidity
/// @param hookData Arbitrary data handed into the PoolManager by the liquidity provider to be be passed on to the hook
/// @return bytes4 The function selector for the hook
function beforeRemoveLiquidity(
address sender,
PoolKey calldata key,
IPoolManager.ModifyLiquidityParams calldata params,
bytes calldata hookData
) external returns (bytes4);
/// @notice The hook called after liquidity is removed
/// @param sender The initial msg.sender for the remove liquidity call
/// @param key The key for the pool
/// @param params The parameters for removing liquidity
/// @param delta The caller's balance delta after removing liquidity; the sum of principal delta, fees accrued, and hook delta
/// @param feesAccrued The fees accrued since the last time fees were collected from this position
/// @param hookData Arbitrary data handed into the PoolManager by the liquidity provider to be be passed on to the hook
/// @return bytes4 The function selector for the hook
/// @return BalanceDelta The hook's delta in token0 and token1. Positive: the hook is owed/took currency, negative: the hook owes/sent currency
function afterRemoveLiquidity(
address sender,
PoolKey calldata key,
IPoolManager.ModifyLiquidityParams calldata params,
BalanceDelta delta,
BalanceDelta feesAccrued,
bytes calldata hookData
) external returns (bytes4, BalanceDelta);
/// @notice The hook called before a swap
/// @param sender The initial msg.sender for the swap call
/// @param key The key for the pool
/// @param params The parameters for the swap
/// @param hookData Arbitrary data handed into the PoolManager by the swapper to be be passed on to the hook
/// @return bytes4 The function selector for the hook
/// @return BeforeSwapDelta The hook's delta in specified and unspecified currencies. Positive: the hook is owed/took currency, negative: the hook owes/sent currency
/// @return uint24 Optionally override the lp fee, only used if three conditions are met: 1. the Pool has a dynamic fee, 2. the value's 2nd highest bit is set (23rd bit, 0x400000), and 3. the value is less than or equal to the maximum fee (1 million)
function beforeSwap(
address sender,
PoolKey calldata key,
IPoolManager.SwapParams calldata params,
bytes calldata hookData
) external returns (bytes4, BeforeSwapDelta, uint24);
/// @notice The hook called after a swap
/// @param sender The initial msg.sender for the swap call
/// @param key The key for the pool
/// @param params The parameters for the swap
/// @param delta The amount owed to the caller (positive) or owed to the pool (negative)
/// @param hookData Arbitrary data handed into the PoolManager by the swapper to be be passed on to the hook
/// @return bytes4 The function selector for the hook
/// @return int128 The hook's delta in unspecified currency. Positive: the hook is owed/took currency, negative: the hook owes/sent currency
function afterSwap(
address sender,
PoolKey calldata key,
IPoolManager.SwapParams calldata params,
BalanceDelta delta,
bytes calldata hookData
) external returns (bytes4, int128);
/// @notice The hook called before donate
/// @param sender The initial msg.sender for the donate call
/// @param key The key for the pool
/// @param amount0 The amount of token0 being donated
/// @param amount1 The amount of token1 being donated
/// @param hookData Arbitrary data handed into the PoolManager by the donor to be be passed on to the hook
/// @return bytes4 The function selector for the hook
function beforeDonate(
address sender,
PoolKey calldata key,
uint256 amount0,
uint256 amount1,
bytes calldata hookData
) external returns (bytes4);
/// @notice The hook called after donate
/// @param sender The initial msg.sender for the donate call
/// @param key The key for the pool
/// @param amount0 The amount of token0 being donated
/// @param amount1 The amount of token1 being donated
/// @param hookData Arbitrary data handed into the PoolManager by the donor to be be passed on to the hook
/// @return bytes4 The function selector for the hook
function afterDonate(
address sender,
PoolKey calldata key,
uint256 amount0,
uint256 amount1,
bytes calldata hookData
) external returns (bytes4);
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/// @notice Interface for claims over a contract balance, wrapped as a ERC6909
interface IERC6909Claims {
/*//////////////////////////////////////////////////////////////
EVENTS
//////////////////////////////////////////////////////////////*/
event OperatorSet(address indexed owner, address indexed operator, bool approved);
event Approval(address indexed owner, address indexed spender, uint256 indexed id, uint256 amount);
event Transfer(address caller, address indexed from, address indexed to, uint256 indexed id, uint256 amount);
/*//////////////////////////////////////////////////////////////
FUNCTIONS
//////////////////////////////////////////////////////////////*/
/// @notice Owner balance of an id.
/// @param owner The address of the owner.
/// @param id The id of the token.
/// @return amount The balance of the token.
function balanceOf(address owner, uint256 id) external view returns (uint256 amount);
/// @notice Spender allowance of an id.
/// @param owner The address of the owner.
/// @param spender The address of the spender.
/// @param id The id of the token.
/// @return amount The allowance of the token.
function allowance(address owner, address spender, uint256 id) external view returns (uint256 amount);
/// @notice Checks if a spender is approved by an owner as an operator
/// @param owner The address of the owner.
/// @param spender The address of the spender.
/// @return approved The approval status.
function isOperator(address owner, address spender) external view returns (bool approved);
/// @notice Transfers an amount of an id from the caller to a receiver.
/// @param receiver The address of the receiver.
/// @param id The id of the token.
/// @param amount The amount of the token.
/// @return bool True, always, unless the function reverts
function transfer(address receiver, uint256 id, uint256 amount) external returns (bool);
/// @notice Transfers an amount of an id from a sender to a receiver.
/// @param sender The address of the sender.
/// @param receiver The address of the receiver.
/// @param id The id of the token.
/// @param amount The amount of the token.
/// @return bool True, always, unless the function reverts
function transferFrom(address sender, address receiver, uint256 id, uint256 amount) external returns (bool);
/// @notice Approves an amount of an id to a spender.
/// @param spender The address of the spender.
/// @param id The id of the token.
/// @param amount The amount of the token.
/// @return bool True, always
function approve(address spender, uint256 id, uint256 amount) external returns (bool);
/// @notice Sets or removes an operator for the caller.
/// @param operator The address of the operator.
/// @param approved The approval status.
/// @return bool True, always
function setOperator(address operator, bool approved) external returns (bool);
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {Currency} from "../types/Currency.sol";
import {PoolId} from "../types/PoolId.sol";
import {PoolKey} from "../types/PoolKey.sol";
/// @notice Interface for all protocol-fee related functions in the pool manager
interface IProtocolFees {
/// @notice Thrown when protocol fee is set too high
error ProtocolFeeTooLarge(uint24 fee);
/// @notice Thrown when collectProtocolFees or setProtocolFee is not called by the controller.
error InvalidCaller();
/// @notice Thrown when collectProtocolFees is attempted on a token that is synced.
error ProtocolFeeCurrencySynced();
/// @notice Emitted when the protocol fee controller address is updated in setProtocolFeeController.
event ProtocolFeeControllerUpdated(address indexed protocolFeeController);
/// @notice Emitted when the protocol fee is updated for a pool.
event ProtocolFeeUpdated(PoolId indexed id, uint24 protocolFee);
/// @notice Given a currency address, returns the protocol fees accrued in that currency
/// @param currency The currency to check
/// @return amount The amount of protocol fees accrued in the currency
function protocolFeesAccrued(Currency currency) external view returns (uint256 amount);
/// @notice Sets the protocol fee for the given pool
/// @param key The key of the pool to set a protocol fee for
/// @param newProtocolFee The fee to set
function setProtocolFee(PoolKey memory key, uint24 newProtocolFee) external;
/// @notice Sets the protocol fee controller
/// @param controller The new protocol fee controller
function setProtocolFeeController(address controller) external;
/// @notice Collects the protocol fees for a given recipient and currency, returning the amount collected
/// @dev This will revert if the contract is unlocked
/// @param recipient The address to receive the protocol fees
/// @param currency The currency to withdraw
/// @param amount The amount of currency to withdraw
/// @return amountCollected The amount of currency successfully withdrawn
function collectProtocolFees(address recipient, Currency currency, uint256 amount)
external
returns (uint256 amountCollected);
/// @notice Returns the current protocol fee controller address
/// @return address The current protocol fee controller address
function protocolFeeController() external view returns (address);
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/// @notice Interface for functions to access any storage slot in a contract
interface IExtsload {
/// @notice Called by external contracts to access granular pool state
/// @param slot Key of slot to sload
/// @return value The value of the slot as bytes32
function extsload(bytes32 slot) external view returns (bytes32 value);
/// @notice Called by external contracts to access granular pool state
/// @param startSlot Key of slot to start sloading from
/// @param nSlots Number of slots to load into return value
/// @return values List of loaded values.
function extsload(bytes32 startSlot, uint256 nSlots) external view returns (bytes32[] memory values);
/// @notice Called by external contracts to access sparse pool state
/// @param slots List of slots to SLOAD from.
/// @return values List of loaded values.
function extsload(bytes32[] calldata slots) external view returns (bytes32[] memory values);
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.24;
/// @notice Interface for functions to access any transient storage slot in a contract
interface IExttload {
/// @notice Called by external contracts to access transient storage of the contract
/// @param slot Key of slot to tload
/// @return value The value of the slot as bytes32
function exttload(bytes32 slot) external view returns (bytes32 value);
/// @notice Called by external contracts to access sparse transient pool state
/// @param slots List of slots to tload
/// @return values List of loaded values
function exttload(bytes32[] calldata slots) external view returns (bytes32[] memory values);
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity ^0.8.24;
import {Currency} from "../types/Currency.sol";
import {CustomRevert} from "./CustomRevert.sol";
library CurrencyReserves {
using CustomRevert for bytes4;
/// bytes32(uint256(keccak256("ReservesOf")) - 1)
bytes32 constant RESERVES_OF_SLOT = 0x1e0745a7db1623981f0b2a5d4232364c00787266eb75ad546f190e6cebe9bd95;
/// bytes32(uint256(keccak256("Currency")) - 1)
bytes32 constant CURRENCY_SLOT = 0x27e098c505d44ec3574004bca052aabf76bd35004c182099d8c575fb238593b9;
function getSyncedCurrency() internal view returns (Currency currency) {
assembly ("memory-safe") {
currency := tload(CURRENCY_SLOT)
}
}
function resetCurrency() internal {
assembly ("memory-safe") {
tstore(CURRENCY_SLOT, 0)
}
}
function syncCurrencyAndReserves(Currency currency, uint256 value) internal {
assembly ("memory-safe") {
tstore(CURRENCY_SLOT, and(currency, 0xffffffffffffffffffffffffffffffffffffffff))
tstore(RESERVES_OF_SLOT, value)
}
}
function getSyncedReserves() internal view returns (uint256 value) {
assembly ("memory-safe") {
value := tload(RESERVES_OF_SLOT)
}
}
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity ^0.8.24;
/// @notice This is a temporary library that allows us to use transient storage (tstore/tload)
/// for the nonzero delta count.
/// TODO: This library can be deleted when we have the transient keyword support in solidity.
library NonzeroDeltaCount {
// The slot holding the number of nonzero deltas. bytes32(uint256(keccak256("NonzeroDeltaCount")) - 1)
bytes32 internal constant NONZERO_DELTA_COUNT_SLOT =
0x7d4b3164c6e45b97e7d87b7125a44c5828d005af88f9d751cfd78729c5d99a0b;
function read() internal view returns (uint256 count) {
assembly ("memory-safe") {
count := tload(NONZERO_DELTA_COUNT_SLOT)
}
}
function increment() internal {
assembly ("memory-safe") {
let count := tload(NONZERO_DELTA_COUNT_SLOT)
count := add(count, 1)
tstore(NONZERO_DELTA_COUNT_SLOT, count)
}
}
/// @notice Potential to underflow. Ensure checks are performed by integrating contracts to ensure this does not happen.
/// Current usage ensures this will not happen because we call decrement with known boundaries (only up to the number of times we call increment).
function decrement() internal {
assembly ("memory-safe") {
let count := tload(NONZERO_DELTA_COUNT_SLOT)
count := sub(count, 1)
tstore(NONZERO_DELTA_COUNT_SLOT, count)
}
}
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity ^0.8.24;
/// @notice This is a temporary library that allows us to use transient storage (tstore/tload)
/// TODO: This library can be deleted when we have the transient keyword support in solidity.
library Lock {
// The slot holding the unlocked state, transiently. bytes32(uint256(keccak256("Unlocked")) - 1)
bytes32 internal constant IS_UNLOCKED_SLOT = 0xc090fc4683624cfc3884e9d8de5eca132f2d0ec062aff75d43c0465d5ceeab23;
function unlock() internal {
assembly ("memory-safe") {
// unlock
tstore(IS_UNLOCKED_SLOT, true)
}
}
function lock() internal {
assembly ("memory-safe") {
tstore(IS_UNLOCKED_SLOT, false)
}
}
function isUnlocked() internal view returns (bool unlocked) {
assembly ("memory-safe") {
unlocked := tload(IS_UNLOCKED_SLOT)
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
/// @notice Simple ERC20 + EIP-2612 implementation.
/// @author Solady (https://github.com/vectorized/solady/blob/main/src/tokens/ERC20.sol)
/// @author Modified from Solmate (https://github.com/transmissions11/solmate/blob/main/src/tokens/ERC20.sol)
/// @author Modified from OpenZeppelin (https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/token/ERC20/ERC20.sol)
///
/// @dev Note:
/// - The ERC20 standard allows minting and transferring to and from the zero address,
/// minting and transferring zero tokens, as well as self-approvals.
/// For performance, this implementation WILL NOT revert for such actions.
/// Please add any checks with overrides if desired.
/// - The `permit` function uses the ecrecover precompile (0x1).
///
/// If you are overriding:
/// - NEVER violate the ERC20 invariant:
/// the total sum of all balances must be equal to `totalSupply()`.
/// - Check that the overridden function is actually used in the function you want to
/// change the behavior of. Much of the code has been manually inlined for performance.
abstract contract ERC20 {
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CUSTOM ERRORS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev The total supply has overflowed.
error TotalSupplyOverflow();
/// @dev The allowance has overflowed.
error AllowanceOverflow();
/// @dev The allowance has underflowed.
error AllowanceUnderflow();
/// @dev Insufficient balance.
error InsufficientBalance();
/// @dev Insufficient allowance.
error InsufficientAllowance();
/// @dev The permit is invalid.
error InvalidPermit();
/// @dev The permit has expired.
error PermitExpired();
/// @dev The allowance of Permit2 is fixed at infinity.
error Permit2AllowanceIsFixedAtInfinity();
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* EVENTS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Emitted when `amount` tokens is transferred from `from` to `to`.
event Transfer(address indexed from, address indexed to, uint256 amount);
/// @dev Emitted when `amount` tokens is approved by `owner` to be used by `spender`.
event Approval(address indexed owner, address indexed spender, uint256 amount);
/// @dev `keccak256(bytes("Transfer(address,address,uint256)"))`.
uint256 private constant _TRANSFER_EVENT_SIGNATURE =
0xddf252ad1be2c89b69c2b068fc378daa952ba7f163c4a11628f55a4df523b3ef;
/// @dev `keccak256(bytes("Approval(address,address,uint256)"))`.
uint256 private constant _APPROVAL_EVENT_SIGNATURE =
0x8c5be1e5ebec7d5bd14f71427d1e84f3dd0314c0f7b2291e5b200ac8c7c3b925;
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* STORAGE */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev The storage slot for the total supply.
uint256 private constant _TOTAL_SUPPLY_SLOT = 0x05345cdf77eb68f44c;
/// @dev The balance slot of `owner` is given by:
/// ```
/// mstore(0x0c, _BALANCE_SLOT_SEED)
/// mstore(0x00, owner)
/// let balanceSlot := keccak256(0x0c, 0x20)
/// ```
uint256 private constant _BALANCE_SLOT_SEED = 0x87a211a2;
/// @dev The allowance slot of (`owner`, `spender`) is given by:
/// ```
/// mstore(0x20, spender)
/// mstore(0x0c, _ALLOWANCE_SLOT_SEED)
/// mstore(0x00, owner)
/// let allowanceSlot := keccak256(0x0c, 0x34)
/// ```
uint256 private constant _ALLOWANCE_SLOT_SEED = 0x7f5e9f20;
/// @dev The nonce slot of `owner` is given by:
/// ```
/// mstore(0x0c, _NONCES_SLOT_SEED)
/// mstore(0x00, owner)
/// let nonceSlot := keccak256(0x0c, 0x20)
/// ```
uint256 private constant _NONCES_SLOT_SEED = 0x38377508;
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CONSTANTS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev `(_NONCES_SLOT_SEED << 16) | 0x1901`.
uint256 private constant _NONCES_SLOT_SEED_WITH_SIGNATURE_PREFIX = 0x383775081901;
/// @dev `keccak256("EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)")`.
bytes32 private constant _DOMAIN_TYPEHASH =
0x8b73c3c69bb8fe3d512ecc4cf759cc79239f7b179b0ffacaa9a75d522b39400f;
/// @dev `keccak256("1")`.
/// If you need to use a different version, override `_versionHash`.
bytes32 private constant _DEFAULT_VERSION_HASH =
0xc89efdaa54c0f20c7adf612882df0950f5a951637e0307cdcb4c672f298b8bc6;
/// @dev `keccak256("Permit(address owner,address spender,uint256 value,uint256 nonce,uint256 deadline)")`.
bytes32 private constant _PERMIT_TYPEHASH =
0x6e71edae12b1b97f4d1f60370fef10105fa2faae0126114a169c64845d6126c9;
/// @dev The canonical Permit2 address.
/// For signature-based allowance granting for single transaction ERC20 `transferFrom`.
/// To enable, override `_givePermit2InfiniteAllowance()`.
/// [Github](https://github.com/Uniswap/permit2)
/// [Etherscan](https://etherscan.io/address/0x000000000022D473030F116dDEE9F6B43aC78BA3)
address internal constant _PERMIT2 = 0x000000000022D473030F116dDEE9F6B43aC78BA3;
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* ERC20 METADATA */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns the name of the token.
function name() public view virtual returns (string memory);
/// @dev Returns the symbol of the token.
function symbol() public view virtual returns (string memory);
/// @dev Returns the decimals places of the token.
function decimals() public view virtual returns (uint8) {
return 18;
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* ERC20 */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns the amount of tokens in existence.
function totalSupply() public view virtual returns (uint256 result) {
/// @solidity memory-safe-assembly
assembly {
result := sload(_TOTAL_SUPPLY_SLOT)
}
}
/// @dev Returns the amount of tokens owned by `owner`.
function balanceOf(address owner) public view virtual returns (uint256 result) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, owner)
result := sload(keccak256(0x0c, 0x20))
}
}
/// @dev Returns the amount of tokens that `spender` can spend on behalf of `owner`.
function allowance(address owner, address spender)
public
view
virtual
returns (uint256 result)
{
if (_givePermit2InfiniteAllowance()) {
if (spender == _PERMIT2) return type(uint256).max;
}
/// @solidity memory-safe-assembly
assembly {
mstore(0x20, spender)
mstore(0x0c, _ALLOWANCE_SLOT_SEED)
mstore(0x00, owner)
result := sload(keccak256(0x0c, 0x34))
}
}
/// @dev Sets `amount` as the allowance of `spender` over the caller's tokens.
///
/// Emits a {Approval} event.
function approve(address spender, uint256 amount) public virtual returns (bool) {
if (_givePermit2InfiniteAllowance()) {
/// @solidity memory-safe-assembly
assembly {
// If `spender == _PERMIT2 && amount != type(uint256).max`.
if iszero(or(xor(shr(96, shl(96, spender)), _PERMIT2), iszero(not(amount)))) {
mstore(0x00, 0x3f68539a) // `Permit2AllowanceIsFixedAtInfinity()`.
revert(0x1c, 0x04)
}
}
}
/// @solidity memory-safe-assembly
assembly {
// Compute the allowance slot and store the amount.
mstore(0x20, spender)
mstore(0x0c, _ALLOWANCE_SLOT_SEED)
mstore(0x00, caller())
sstore(keccak256(0x0c, 0x34), amount)
// Emit the {Approval} event.
mstore(0x00, amount)
log3(0x00, 0x20, _APPROVAL_EVENT_SIGNATURE, caller(), shr(96, mload(0x2c)))
}
return true;
}
/// @dev Transfer `amount` tokens from the caller to `to`.
///
/// Requirements:
/// - `from` must at least have `amount`.
///
/// Emits a {Transfer} event.
function transfer(address to, uint256 amount) public virtual returns (bool) {
_beforeTokenTransfer(msg.sender, to, amount);
/// @solidity memory-safe-assembly
assembly {
// Compute the balance slot and load its value.
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, caller())
let fromBalanceSlot := keccak256(0x0c, 0x20)
let fromBalance := sload(fromBalanceSlot)
// Revert if insufficient balance.
if gt(amount, fromBalance) {
mstore(0x00, 0xf4d678b8) // `InsufficientBalance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated balance.
sstore(fromBalanceSlot, sub(fromBalance, amount))
// Compute the balance slot of `to`.
mstore(0x00, to)
let toBalanceSlot := keccak256(0x0c, 0x20)
// Add and store the updated balance of `to`.
// Will not overflow because the sum of all user balances
// cannot exceed the maximum uint256 value.
sstore(toBalanceSlot, add(sload(toBalanceSlot), amount))
// Emit the {Transfer} event.
mstore(0x20, amount)
log3(0x20, 0x20, _TRANSFER_EVENT_SIGNATURE, caller(), shr(96, mload(0x0c)))
}
_afterTokenTransfer(msg.sender, to, amount);
return true;
}
/// @dev Transfers `amount` tokens from `from` to `to`.
///
/// Note: Does not update the allowance if it is the maximum uint256 value.
///
/// Requirements:
/// - `from` must at least have `amount`.
/// - The caller must have at least `amount` of allowance to transfer the tokens of `from`.
///
/// Emits a {Transfer} event.
function transferFrom(address from, address to, uint256 amount) public virtual returns (bool) {
_beforeTokenTransfer(from, to, amount);
// Code duplication is for zero-cost abstraction if possible.
if (_givePermit2InfiniteAllowance()) {
/// @solidity memory-safe-assembly
assembly {
let from_ := shl(96, from)
if iszero(eq(caller(), _PERMIT2)) {
// Compute the allowance slot and load its value.
mstore(0x20, caller())
mstore(0x0c, or(from_, _ALLOWANCE_SLOT_SEED))
let allowanceSlot := keccak256(0x0c, 0x34)
let allowance_ := sload(allowanceSlot)
// If the allowance is not the maximum uint256 value.
if not(allowance_) {
// Revert if the amount to be transferred exceeds the allowance.
if gt(amount, allowance_) {
mstore(0x00, 0x13be252b) // `InsufficientAllowance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated allowance.
sstore(allowanceSlot, sub(allowance_, amount))
}
}
// Compute the balance slot and load its value.
mstore(0x0c, or(from_, _BALANCE_SLOT_SEED))
let fromBalanceSlot := keccak256(0x0c, 0x20)
let fromBalance := sload(fromBalanceSlot)
// Revert if insufficient balance.
if gt(amount, fromBalance) {
mstore(0x00, 0xf4d678b8) // `InsufficientBalance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated balance.
sstore(fromBalanceSlot, sub(fromBalance, amount))
// Compute the balance slot of `to`.
mstore(0x00, to)
let toBalanceSlot := keccak256(0x0c, 0x20)
// Add and store the updated balance of `to`.
// Will not overflow because the sum of all user balances
// cannot exceed the maximum uint256 value.
sstore(toBalanceSlot, add(sload(toBalanceSlot), amount))
// Emit the {Transfer} event.
mstore(0x20, amount)
log3(0x20, 0x20, _TRANSFER_EVENT_SIGNATURE, shr(96, from_), shr(96, mload(0x0c)))
}
} else {
/// @solidity memory-safe-assembly
assembly {
let from_ := shl(96, from)
// Compute the allowance slot and load its value.
mstore(0x20, caller())
mstore(0x0c, or(from_, _ALLOWANCE_SLOT_SEED))
let allowanceSlot := keccak256(0x0c, 0x34)
let allowance_ := sload(allowanceSlot)
// If the allowance is not the maximum uint256 value.
if not(allowance_) {
// Revert if the amount to be transferred exceeds the allowance.
if gt(amount, allowance_) {
mstore(0x00, 0x13be252b) // `InsufficientAllowance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated allowance.
sstore(allowanceSlot, sub(allowance_, amount))
}
// Compute the balance slot and load its value.
mstore(0x0c, or(from_, _BALANCE_SLOT_SEED))
let fromBalanceSlot := keccak256(0x0c, 0x20)
let fromBalance := sload(fromBalanceSlot)
// Revert if insufficient balance.
if gt(amount, fromBalance) {
mstore(0x00, 0xf4d678b8) // `InsufficientBalance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated balance.
sstore(fromBalanceSlot, sub(fromBalance, amount))
// Compute the balance slot of `to`.
mstore(0x00, to)
let toBalanceSlot := keccak256(0x0c, 0x20)
// Add and store the updated balance of `to`.
// Will not overflow because the sum of all user balances
// cannot exceed the maximum uint256 value.
sstore(toBalanceSlot, add(sload(toBalanceSlot), amount))
// Emit the {Transfer} event.
mstore(0x20, amount)
log3(0x20, 0x20, _TRANSFER_EVENT_SIGNATURE, shr(96, from_), shr(96, mload(0x0c)))
}
}
_afterTokenTransfer(from, to, amount);
return true;
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* EIP-2612 */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev For more performance, override to return the constant value
/// of `keccak256(bytes(name()))` if `name()` will never change.
function _constantNameHash() internal view virtual returns (bytes32 result) {}
/// @dev If you need a different value, override this function.
function _versionHash() internal view virtual returns (bytes32 result) {
result = _DEFAULT_VERSION_HASH;
}
/// @dev For inheriting contracts to increment the nonce.
function _incrementNonce(address owner) internal virtual {
/// @solidity memory-safe-assembly
assembly {
mstore(0x0c, _NONCES_SLOT_SEED)
mstore(0x00, owner)
let nonceSlot := keccak256(0x0c, 0x20)
sstore(nonceSlot, add(1, sload(nonceSlot)))
}
}
/// @dev Returns the current nonce for `owner`.
/// This value is used to compute the signature for EIP-2612 permit.
function nonces(address owner) public view virtual returns (uint256 result) {
/// @solidity memory-safe-assembly
assembly {
// Compute the nonce slot and load its value.
mstore(0x0c, _NONCES_SLOT_SEED)
mstore(0x00, owner)
result := sload(keccak256(0x0c, 0x20))
}
}
/// @dev Sets `value` as the allowance of `spender` over the tokens of `owner`,
/// authorized by a signed approval by `owner`.
///
/// Emits a {Approval} event.
function permit(
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) public virtual {
if (_givePermit2InfiniteAllowance()) {
/// @solidity memory-safe-assembly
assembly {
// If `spender == _PERMIT2 && value != type(uint256).max`.
if iszero(or(xor(shr(96, shl(96, spender)), _PERMIT2), iszero(not(value)))) {
mstore(0x00, 0x3f68539a) // `Permit2AllowanceIsFixedAtInfinity()`.
revert(0x1c, 0x04)
}
}
}
bytes32 nameHash = _constantNameHash();
// We simply calculate it on-the-fly to allow for cases where the `name` may change.
if (nameHash == bytes32(0)) nameHash = keccak256(bytes(name()));
bytes32 versionHash = _versionHash();
/// @solidity memory-safe-assembly
assembly {
// Revert if the block timestamp is greater than `deadline`.
if gt(timestamp(), deadline) {
mstore(0x00, 0x1a15a3cc) // `PermitExpired()`.
revert(0x1c, 0x04)
}
let m := mload(0x40) // Grab the free memory pointer.
// Clean the upper 96 bits.
owner := shr(96, shl(96, owner))
spender := shr(96, shl(96, spender))
// Compute the nonce slot and load its value.
mstore(0x0e, _NONCES_SLOT_SEED_WITH_SIGNATURE_PREFIX)
mstore(0x00, owner)
let nonceSlot := keccak256(0x0c, 0x20)
let nonceValue := sload(nonceSlot)
// Prepare the domain separator.
mstore(m, _DOMAIN_TYPEHASH)
mstore(add(m, 0x20), nameHash)
mstore(add(m, 0x40), versionHash)
mstore(add(m, 0x60), chainid())
mstore(add(m, 0x80), address())
mstore(0x2e, keccak256(m, 0xa0))
// Prepare the struct hash.
mstore(m, _PERMIT_TYPEHASH)
mstore(add(m, 0x20), owner)
mstore(add(m, 0x40), spender)
mstore(add(m, 0x60), value)
mstore(add(m, 0x80), nonceValue)
mstore(add(m, 0xa0), deadline)
mstore(0x4e, keccak256(m, 0xc0))
// Prepare the ecrecover calldata.
mstore(0x00, keccak256(0x2c, 0x42))
mstore(0x20, and(0xff, v))
mstore(0x40, r)
mstore(0x60, s)
let t := staticcall(gas(), 1, 0x00, 0x80, 0x20, 0x20)
// If the ecrecover fails, the returndatasize will be 0x00,
// `owner` will be checked if it equals the hash at 0x00,
// which evaluates to false (i.e. 0), and we will revert.
// If the ecrecover succeeds, the returndatasize will be 0x20,
// `owner` will be compared against the returned address at 0x20.
if iszero(eq(mload(returndatasize()), owner)) {
mstore(0x00, 0xddafbaef) // `InvalidPermit()`.
revert(0x1c, 0x04)
}
// Increment and store the updated nonce.
sstore(nonceSlot, add(nonceValue, t)) // `t` is 1 if ecrecover succeeds.
// Compute the allowance slot and store the value.
// The `owner` is already at slot 0x20.
mstore(0x40, or(shl(160, _ALLOWANCE_SLOT_SEED), spender))
sstore(keccak256(0x2c, 0x34), value)
// Emit the {Approval} event.
log3(add(m, 0x60), 0x20, _APPROVAL_EVENT_SIGNATURE, owner, spender)
mstore(0x40, m) // Restore the free memory pointer.
mstore(0x60, 0) // Restore the zero pointer.
}
}
/// @dev Returns the EIP-712 domain separator for the EIP-2612 permit.
function DOMAIN_SEPARATOR() public view virtual returns (bytes32 result) {
bytes32 nameHash = _constantNameHash();
// We simply calculate it on-the-fly to allow for cases where the `name` may change.
if (nameHash == bytes32(0)) nameHash = keccak256(bytes(name()));
bytes32 versionHash = _versionHash();
/// @solidity memory-safe-assembly
assembly {
let m := mload(0x40) // Grab the free memory pointer.
mstore(m, _DOMAIN_TYPEHASH)
mstore(add(m, 0x20), nameHash)
mstore(add(m, 0x40), versionHash)
mstore(add(m, 0x60), chainid())
mstore(add(m, 0x80), address())
result := keccak256(m, 0xa0)
}
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* INTERNAL MINT FUNCTIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Mints `amount` tokens to `to`, increasing the total supply.
///
/// Emits a {Transfer} event.
function _mint(address to, uint256 amount) internal virtual {
_beforeTokenTransfer(address(0), to, amount);
/// @solidity memory-safe-assembly
assembly {
let totalSupplyBefore := sload(_TOTAL_SUPPLY_SLOT)
let totalSupplyAfter := add(totalSupplyBefore, amount)
// Revert if the total supply overflows.
if lt(totalSupplyAfter, totalSupplyBefore) {
mstore(0x00, 0xe5cfe957) // `TotalSupplyOverflow()`.
revert(0x1c, 0x04)
}
// Store the updated total supply.
sstore(_TOTAL_SUPPLY_SLOT, totalSupplyAfter)
// Compute the balance slot and load its value.
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, to)
let toBalanceSlot := keccak256(0x0c, 0x20)
// Add and store the updated balance.
sstore(toBalanceSlot, add(sload(toBalanceSlot), amount))
// Emit the {Transfer} event.
mstore(0x20, amount)
log3(0x20, 0x20, _TRANSFER_EVENT_SIGNATURE, 0, shr(96, mload(0x0c)))
}
_afterTokenTransfer(address(0), to, amount);
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* INTERNAL BURN FUNCTIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Burns `amount` tokens from `from`, reducing the total supply.
///
/// Emits a {Transfer} event.
function _burn(address from, uint256 amount) internal virtual {
_beforeTokenTransfer(from, address(0), amount);
/// @solidity memory-safe-assembly
assembly {
// Compute the balance slot and load its value.
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, from)
let fromBalanceSlot := keccak256(0x0c, 0x20)
let fromBalance := sload(fromBalanceSlot)
// Revert if insufficient balance.
if gt(amount, fromBalance) {
mstore(0x00, 0xf4d678b8) // `InsufficientBalance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated balance.
sstore(fromBalanceSlot, sub(fromBalance, amount))
// Subtract and store the updated total supply.
sstore(_TOTAL_SUPPLY_SLOT, sub(sload(_TOTAL_SUPPLY_SLOT), amount))
// Emit the {Transfer} event.
mstore(0x00, amount)
log3(0x00, 0x20, _TRANSFER_EVENT_SIGNATURE, shr(96, shl(96, from)), 0)
}
_afterTokenTransfer(from, address(0), amount);
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* INTERNAL TRANSFER FUNCTIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Moves `amount` of tokens from `from` to `to`.
function _transfer(address from, address to, uint256 amount) internal virtual {
_beforeTokenTransfer(from, to, amount);
/// @solidity memory-safe-assembly
assembly {
let from_ := shl(96, from)
// Compute the balance slot and load its value.
mstore(0x0c, or(from_, _BALANCE_SLOT_SEED))
let fromBalanceSlot := keccak256(0x0c, 0x20)
let fromBalance := sload(fromBalanceSlot)
// Revert if insufficient balance.
if gt(amount, fromBalance) {
mstore(0x00, 0xf4d678b8) // `InsufficientBalance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated balance.
sstore(fromBalanceSlot, sub(fromBalance, amount))
// Compute the balance slot of `to`.
mstore(0x00, to)
let toBalanceSlot := keccak256(0x0c, 0x20)
// Add and store the updated balance of `to`.
// Will not overflow because the sum of all user balances
// cannot exceed the maximum uint256 value.
sstore(toBalanceSlot, add(sload(toBalanceSlot), amount))
// Emit the {Transfer} event.
mstore(0x20, amount)
log3(0x20, 0x20, _TRANSFER_EVENT_SIGNATURE, shr(96, from_), shr(96, mload(0x0c)))
}
_afterTokenTransfer(from, to, amount);
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* INTERNAL ALLOWANCE FUNCTIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Updates the allowance of `owner` for `spender` based on spent `amount`.
function _spendAllowance(address owner, address spender, uint256 amount) internal virtual {
if (_givePermit2InfiniteAllowance()) {
if (spender == _PERMIT2) return; // Do nothing, as allowance is infinite.
}
/// @solidity memory-safe-assembly
assembly {
// Compute the allowance slot and load its value.
mstore(0x20, spender)
mstore(0x0c, _ALLOWANCE_SLOT_SEED)
mstore(0x00, owner)
let allowanceSlot := keccak256(0x0c, 0x34)
let allowance_ := sload(allowanceSlot)
// If the allowance is not the maximum uint256 value.
if not(allowance_) {
// Revert if the amount to be transferred exceeds the allowance.
if gt(amount, allowance_) {
mstore(0x00, 0x13be252b) // `InsufficientAllowance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated allowance.
sstore(allowanceSlot, sub(allowance_, amount))
}
}
}
/// @dev Sets `amount` as the allowance of `spender` over the tokens of `owner`.
///
/// Emits a {Approval} event.
function _approve(address owner, address spender, uint256 amount) internal virtual {
if (_givePermit2InfiniteAllowance()) {
/// @solidity memory-safe-assembly
assembly {
// If `spender == _PERMIT2 && amount != type(uint256).max`.
if iszero(or(xor(shr(96, shl(96, spender)), _PERMIT2), iszero(not(amount)))) {
mstore(0x00, 0x3f68539a) // `Permit2AllowanceIsFixedAtInfinity()`.
revert(0x1c, 0x04)
}
}
}
/// @solidity memory-safe-assembly
assembly {
let owner_ := shl(96, owner)
// Compute the allowance slot and store the amount.
mstore(0x20, spender)
mstore(0x0c, or(owner_, _ALLOWANCE_SLOT_SEED))
sstore(keccak256(0x0c, 0x34), amount)
// Emit the {Approval} event.
mstore(0x00, amount)
log3(0x00, 0x20, _APPROVAL_EVENT_SIGNATURE, shr(96, owner_), shr(96, mload(0x2c)))
}
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* HOOKS TO OVERRIDE */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Hook that is called before any transfer of tokens.
/// This includes minting and burning.
function _beforeTokenTransfer(address from, address to, uint256 amount) internal virtual {}
/// @dev Hook that is called after any transfer of tokens.
/// This includes minting and burning.
function _afterTokenTransfer(address from, address to, uint256 amount) internal virtual {}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* PERMIT2 */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns whether to fix the Permit2 contract's allowance at infinity.
///
/// This value should be kept constant after contract initialization,
/// or else the actual allowance values may not match with the {Approval} events.
/// For best performance, return a compile-time constant for zero-cost abstraction.
function _givePermit2InfiniteAllowance() internal view virtual returns (bool) {
return true;
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {BitMath} from "./BitMath.sol";
import {CustomRevert} from "./CustomRevert.sol";
/// @title Math library for computing sqrt prices from ticks and vice versa
/// @notice Computes sqrt price for ticks of size 1.0001, i.e. sqrt(1.0001^tick) as fixed point Q64.96 numbers. Supports
/// prices between 2**-128 and 2**128
library TickMath {
using CustomRevert for bytes4;
/// @notice Thrown when the tick passed to #getSqrtPriceAtTick is not between MIN_TICK and MAX_TICK
error InvalidTick(int24 tick);
/// @notice Thrown when the price passed to #getTickAtSqrtPrice does not correspond to a price between MIN_TICK and MAX_TICK
error InvalidSqrtPrice(uint160 sqrtPriceX96);
/// @dev The minimum tick that may be passed to #getSqrtPriceAtTick computed from log base 1.0001 of 2**-128
/// @dev If ever MIN_TICK and MAX_TICK are not centered around 0, the absTick logic in getSqrtPriceAtTick cannot be used
int24 internal constant MIN_TICK = -887272;
/// @dev The maximum tick that may be passed to #getSqrtPriceAtTick computed from log base 1.0001 of 2**128
/// @dev If ever MIN_TICK and MAX_TICK are not centered around 0, the absTick logic in getSqrtPriceAtTick cannot be used
int24 internal constant MAX_TICK = 887272;
/// @dev The minimum tick spacing value drawn from the range of type int16 that is greater than 0, i.e. min from the range [1, 32767]
int24 internal constant MIN_TICK_SPACING = 1;
/// @dev The maximum tick spacing value drawn from the range of type int16, i.e. max from the range [1, 32767]
int24 internal constant MAX_TICK_SPACING = type(int16).max;
/// @dev The minimum value that can be returned from #getSqrtPriceAtTick. Equivalent to getSqrtPriceAtTick(MIN_TICK)
uint160 internal constant MIN_SQRT_PRICE = 4295128739;
/// @dev The maximum value that can be returned from #getSqrtPriceAtTick. Equivalent to getSqrtPriceAtTick(MAX_TICK)
uint160 internal constant MAX_SQRT_PRICE = 1461446703485210103287273052203988822378723970342;
/// @dev A threshold used for optimized bounds check, equals `MAX_SQRT_PRICE - MIN_SQRT_PRICE - 1`
uint160 internal constant MAX_SQRT_PRICE_MINUS_MIN_SQRT_PRICE_MINUS_ONE =
1461446703485210103287273052203988822378723970342 - 4295128739 - 1;
/// @notice Given a tickSpacing, compute the maximum usable tick
function maxUsableTick(int24 tickSpacing) internal pure returns (int24) {
unchecked {
return (MAX_TICK / tickSpacing) * tickSpacing;
}
}
/// @notice Given a tickSpacing, compute the minimum usable tick
function minUsableTick(int24 tickSpacing) internal pure returns (int24) {
unchecked {
return (MIN_TICK / tickSpacing) * tickSpacing;
}
}
/// @notice Calculates sqrt(1.0001^tick) * 2^96
/// @dev Throws if |tick| > max tick
/// @param tick The input tick for the above formula
/// @return sqrtPriceX96 A Fixed point Q64.96 number representing the sqrt of the price of the two assets (currency1/currency0)
/// at the given tick
function getSqrtPriceAtTick(int24 tick) internal pure returns (uint160 sqrtPriceX96) {
unchecked {
uint256 absTick;
assembly ("memory-safe") {
tick := signextend(2, tick)
// mask = 0 if tick >= 0 else -1 (all 1s)
let mask := sar(255, tick)
// if tick >= 0, |tick| = tick = 0 ^ tick
// if tick < 0, |tick| = ~~|tick| = ~(-|tick| - 1) = ~(tick - 1) = (-1) ^ (tick - 1)
// either way, |tick| = mask ^ (tick + mask)
absTick := xor(mask, add(mask, tick))
}
if (absTick > uint256(int256(MAX_TICK))) InvalidTick.selector.revertWith(tick);
// The tick is decomposed into bits, and for each bit with index i that is set, the product of 1/sqrt(1.0001^(2^i))
// is calculated (using Q128.128). The constants used for this calculation are rounded to the nearest integer
// Equivalent to:
// price = absTick & 0x1 != 0 ? 0xfffcb933bd6fad37aa2d162d1a594001 : 0x100000000000000000000000000000000;
// or price = int(2**128 / sqrt(1.0001)) if (absTick & 0x1) else 1 << 128
uint256 price;
assembly ("memory-safe") {
price := xor(shl(128, 1), mul(xor(shl(128, 1), 0xfffcb933bd6fad37aa2d162d1a594001), and(absTick, 0x1)))
}
if (absTick & 0x2 != 0) price = (price * 0xfff97272373d413259a46990580e213a) >> 128;
if (absTick & 0x4 != 0) price = (price * 0xfff2e50f5f656932ef12357cf3c7fdcc) >> 128;
if (absTick & 0x8 != 0) price = (price * 0xffe5caca7e10e4e61c3624eaa0941cd0) >> 128;
if (absTick & 0x10 != 0) price = (price * 0xffcb9843d60f6159c9db58835c926644) >> 128;
if (absTick & 0x20 != 0) price = (price * 0xff973b41fa98c081472e6896dfb254c0) >> 128;
if (absTick & 0x40 != 0) price = (price * 0xff2ea16466c96a3843ec78b326b52861) >> 128;
if (absTick & 0x80 != 0) price = (price * 0xfe5dee046a99a2a811c461f1969c3053) >> 128;
if (absTick & 0x100 != 0) price = (price * 0xfcbe86c7900a88aedcffc83b479aa3a4) >> 128;
if (absTick & 0x200 != 0) price = (price * 0xf987a7253ac413176f2b074cf7815e54) >> 128;
if (absTick & 0x400 != 0) price = (price * 0xf3392b0822b70005940c7a398e4b70f3) >> 128;
if (absTick & 0x800 != 0) price = (price * 0xe7159475a2c29b7443b29c7fa6e889d9) >> 128;
if (absTick & 0x1000 != 0) price = (price * 0xd097f3bdfd2022b8845ad8f792aa5825) >> 128;
if (absTick & 0x2000 != 0) price = (price * 0xa9f746462d870fdf8a65dc1f90e061e5) >> 128;
if (absTick & 0x4000 != 0) price = (price * 0x70d869a156d2a1b890bb3df62baf32f7) >> 128;
if (absTick & 0x8000 != 0) price = (price * 0x31be135f97d08fd981231505542fcfa6) >> 128;
if (absTick & 0x10000 != 0) price = (price * 0x9aa508b5b7a84e1c677de54f3e99bc9) >> 128;
if (absTick & 0x20000 != 0) price = (price * 0x5d6af8dedb81196699c329225ee604) >> 128;
if (absTick & 0x40000 != 0) price = (price * 0x2216e584f5fa1ea926041bedfe98) >> 128;
if (absTick & 0x80000 != 0) price = (price * 0x48a170391f7dc42444e8fa2) >> 128;
assembly ("memory-safe") {
// if (tick > 0) price = type(uint256).max / price;
if sgt(tick, 0) { price := div(not(0), price) }
// this divides by 1<<32 rounding up to go from a Q128.128 to a Q128.96.
// we then downcast because we know the result always fits within 160 bits due to our tick input constraint
// we round up in the division so getTickAtSqrtPrice of the output price is always consistent
// `sub(shl(32, 1), 1)` is `type(uint32).max`
// `price + type(uint32).max` will not overflow because `price` fits in 192 bits
sqrtPriceX96 := shr(32, add(price, sub(shl(32, 1), 1)))
}
}
}
/// @notice Calculates the greatest tick value such that getSqrtPriceAtTick(tick) <= sqrtPriceX96
/// @dev Throws in case sqrtPriceX96 < MIN_SQRT_PRICE, as MIN_SQRT_PRICE is the lowest value getSqrtPriceAtTick may
/// ever return.
/// @param sqrtPriceX96 The sqrt price for which to compute the tick as a Q64.96
/// @return tick The greatest tick for which the getSqrtPriceAtTick(tick) is less than or equal to the input sqrtPriceX96
function getTickAtSqrtPrice(uint160 sqrtPriceX96) internal pure returns (int24 tick) {
unchecked {
// Equivalent: if (sqrtPriceX96 < MIN_SQRT_PRICE || sqrtPriceX96 >= MAX_SQRT_PRICE) revert InvalidSqrtPrice();
// second inequality must be >= because the price can never reach the price at the max tick
// if sqrtPriceX96 < MIN_SQRT_PRICE, the `sub` underflows and `gt` is true
// if sqrtPriceX96 >= MAX_SQRT_PRICE, sqrtPriceX96 - MIN_SQRT_PRICE > MAX_SQRT_PRICE - MIN_SQRT_PRICE - 1
if ((sqrtPriceX96 - MIN_SQRT_PRICE) > MAX_SQRT_PRICE_MINUS_MIN_SQRT_PRICE_MINUS_ONE) {
InvalidSqrtPrice.selector.revertWith(sqrtPriceX96);
}
uint256 price = uint256(sqrtPriceX96) << 32;
uint256 r = price;
uint256 msb = BitMath.mostSignificantBit(r);
if (msb >= 128) r = price >> (msb - 127);
else r = price << (127 - msb);
int256 log_2 = (int256(msb) - 128) << 64;
assembly ("memory-safe") {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(63, f))
r := shr(f, r)
}
assembly ("memory-safe") {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(62, f))
r := shr(f, r)
}
assembly ("memory-safe") {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(61, f))
r := shr(f, r)
}
assembly ("memory-safe") {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(60, f))
r := shr(f, r)
}
assembly ("memory-safe") {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(59, f))
r := shr(f, r)
}
assembly ("memory-safe") {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(58, f))
r := shr(f, r)
}
assembly ("memory-safe") {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(57, f))
r := shr(f, r)
}
assembly ("memory-safe") {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(56, f))
r := shr(f, r)
}
assembly ("memory-safe") {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(55, f))
r := shr(f, r)
}
assembly ("memory-safe") {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(54, f))
r := shr(f, r)
}
assembly ("memory-safe") {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(53, f))
r := shr(f, r)
}
assembly ("memory-safe") {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(52, f))
r := shr(f, r)
}
assembly ("memory-safe") {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(51, f))
r := shr(f, r)
}
assembly ("memory-safe") {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(50, f))
}
int256 log_sqrt10001 = log_2 * 255738958999603826347141; // Q22.128 number
// Magic number represents the ceiling of the maximum value of the error when approximating log_sqrt10001(x)
int24 tickLow = int24((log_sqrt10001 - 3402992956809132418596140100660247210) >> 128);
// Magic number represents the minimum value of the error when approximating log_sqrt10001(x), when
// sqrtPrice is from the range (2^-64, 2^64). This is safe as MIN_SQRT_PRICE is more than 2^-64. If MIN_SQRT_PRICE
// is changed, this may need to be changed too
int24 tickHi = int24((log_sqrt10001 + 291339464771989622907027621153398088495) >> 128);
tick = tickLow == tickHi ? tickLow : getSqrtPriceAtTick(tickHi) <= sqrtPriceX96 ? tickHi : tickLow;
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
import {ERC20} from "./ERC20.sol";
import {FixedPointMathLib} from "../utils/FixedPointMathLib.sol";
import {SafeTransferLib} from "../utils/SafeTransferLib.sol";
/// @notice Simple ERC4626 tokenized Vault implementation.
/// @author Solady (https://github.com/vectorized/solady/blob/main/src/tokens/ERC4626.sol)
/// @author Modified from Solmate (https://github.com/transmissions11/solmate/blob/main/src/mixins/ERC4626.sol)
/// @author Modified from OpenZeppelin (https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/token/ERC20/extensions/ERC4626.sol)
abstract contract ERC4626 is ERC20 {
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CONSTANTS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev The default underlying decimals.
uint8 internal constant _DEFAULT_UNDERLYING_DECIMALS = 18;
/// @dev The default decimals offset.
uint8 internal constant _DEFAULT_DECIMALS_OFFSET = 0;
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CUSTOM ERRORS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Cannot deposit more than the max limit.
error DepositMoreThanMax();
/// @dev Cannot mint more than the max limit.
error MintMoreThanMax();
/// @dev Cannot withdraw more than the max limit.
error WithdrawMoreThanMax();
/// @dev Cannot redeem more than the max limit.
error RedeemMoreThanMax();
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* EVENTS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Emitted during a mint call or deposit call.
event Deposit(address indexed by, address indexed owner, uint256 assets, uint256 shares);
/// @dev Emitted during a withdraw call or redeem call.
event Withdraw(
address indexed by,
address indexed to,
address indexed owner,
uint256 assets,
uint256 shares
);
/// @dev `keccak256(bytes("Deposit(address,address,uint256,uint256)"))`.
uint256 private constant _DEPOSIT_EVENT_SIGNATURE =
0xdcbc1c05240f31ff3ad067ef1ee35ce4997762752e3a095284754544f4c709d7;
/// @dev `keccak256(bytes("Withdraw(address,address,address,uint256,uint256)"))`.
uint256 private constant _WITHDRAW_EVENT_SIGNATURE =
0xfbde797d201c681b91056529119e0b02407c7bb96a4a2c75c01fc9667232c8db;
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* ERC4626 CONSTANTS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev To be overridden to return the address of the underlying asset.
///
/// - MUST be an ERC20 token contract.
/// - MUST NOT revert.
function asset() public view virtual returns (address);
/// @dev To be overridden to return the number of decimals of the underlying asset.
/// Default: 18.
///
/// - MUST NOT revert.
function _underlyingDecimals() internal view virtual returns (uint8) {
return _DEFAULT_UNDERLYING_DECIMALS;
}
/// @dev Override to return a non-zero value to make the inflation attack even more unfeasible.
/// Only used when {_useVirtualShares} returns true.
/// Default: 0.
///
/// - MUST NOT revert.
function _decimalsOffset() internal view virtual returns (uint8) {
return _DEFAULT_DECIMALS_OFFSET;
}
/// @dev Returns whether virtual shares will be used to mitigate the inflation attack.
/// See: https://github.com/OpenZeppelin/openzeppelin-contracts/issues/3706
/// Override to return true or false.
/// Default: true.
///
/// - MUST NOT revert.
function _useVirtualShares() internal view virtual returns (bool) {
return true;
}
/// @dev Returns the decimals places of the token.
///
/// - MUST NOT revert.
function decimals() public view virtual override(ERC20) returns (uint8) {
if (!_useVirtualShares()) return _underlyingDecimals();
return _underlyingDecimals() + _decimalsOffset();
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* ASSET DECIMALS GETTER HELPER */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Helper function to get the decimals of the underlying asset.
/// Useful for setting the return value of `_underlyingDecimals` during initialization.
/// If the retrieval succeeds, `success` will be true, and `result` will hold the result.
/// Otherwise, `success` will be false, and `result` will be zero.
///
/// Example usage:
/// ```
/// (bool success, uint8 result) = _tryGetAssetDecimals(underlying);
/// _decimals = success ? result : _DEFAULT_UNDERLYING_DECIMALS;
/// ```
function _tryGetAssetDecimals(address underlying)
internal
view
returns (bool success, uint8 result)
{
/// @solidity memory-safe-assembly
assembly {
// Store the function selector of `decimals()`.
mstore(0x00, 0x313ce567)
// Arguments are evaluated last to first.
success :=
and(
// Returned value is less than 256, at left-padded to 32 bytes.
and(lt(mload(0x00), 0x100), gt(returndatasize(), 0x1f)),
// The staticcall succeeds.
staticcall(gas(), underlying, 0x1c, 0x04, 0x00, 0x20)
)
result := mul(mload(0x00), success)
}
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* ACCOUNTING LOGIC */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns the total amount of the underlying asset managed by the Vault.
///
/// - SHOULD include any compounding that occurs from the yield.
/// - MUST be inclusive of any fees that are charged against assets in the Vault.
/// - MUST NOT revert.
function totalAssets() public view virtual returns (uint256 assets) {
assets = SafeTransferLib.balanceOf(asset(), address(this));
}
/// @dev Returns the amount of shares that the Vault will exchange for the amount of
/// assets provided, in an ideal scenario where all conditions are met.
///
/// - MUST NOT be inclusive of any fees that are charged against assets in the Vault.
/// - MUST NOT show any variations depending on the caller.
/// - MUST NOT reflect slippage or other on-chain conditions, during the actual exchange.
/// - MUST NOT revert.
///
/// Note: This calculation MAY NOT reflect the "per-user" price-per-share, and instead
/// should reflect the "average-user's" price-per-share, i.e. what the average user should
/// expect to see when exchanging to and from.
function convertToShares(uint256 assets) public view virtual returns (uint256 shares) {
if (!_useVirtualShares()) {
uint256 supply = totalSupply();
return _eitherIsZero(assets, supply)
? _initialConvertToShares(assets)
: FixedPointMathLib.fullMulDiv(assets, supply, totalAssets());
}
uint256 o = _decimalsOffset();
if (o == uint256(0)) {
return FixedPointMathLib.fullMulDiv(assets, totalSupply() + 1, _inc(totalAssets()));
}
return FixedPointMathLib.fullMulDiv(assets, totalSupply() + 10 ** o, _inc(totalAssets()));
}
/// @dev Returns the amount of assets that the Vault will exchange for the amount of
/// shares provided, in an ideal scenario where all conditions are met.
///
/// - MUST NOT be inclusive of any fees that are charged against assets in the Vault.
/// - MUST NOT show any variations depending on the caller.
/// - MUST NOT reflect slippage or other on-chain conditions, during the actual exchange.
/// - MUST NOT revert.
///
/// Note: This calculation MAY NOT reflect the "per-user" price-per-share, and instead
/// should reflect the "average-user's" price-per-share, i.e. what the average user should
/// expect to see when exchanging to and from.
function convertToAssets(uint256 shares) public view virtual returns (uint256 assets) {
if (!_useVirtualShares()) {
uint256 supply = totalSupply();
return supply == uint256(0)
? _initialConvertToAssets(shares)
: FixedPointMathLib.fullMulDiv(shares, totalAssets(), supply);
}
uint256 o = _decimalsOffset();
if (o == uint256(0)) {
return FixedPointMathLib.fullMulDiv(shares, totalAssets() + 1, _inc(totalSupply()));
}
return FixedPointMathLib.fullMulDiv(shares, totalAssets() + 1, totalSupply() + 10 ** o);
}
/// @dev Allows an on-chain or off-chain user to simulate the effects of their deposit
/// at the current block, given current on-chain conditions.
///
/// - MUST return as close to and no more than the exact amount of Vault shares that
/// will be minted in a deposit call in the same transaction, i.e. deposit should
/// return the same or more shares as `previewDeposit` if call in the same transaction.
/// - MUST NOT account for deposit limits like those returned from `maxDeposit` and should
/// always act as if the deposit will be accepted, regardless of approvals, etc.
/// - MUST be inclusive of deposit fees. Integrators should be aware of this.
/// - MUST not revert.
///
/// Note: Any unfavorable discrepancy between `convertToShares` and `previewDeposit` SHOULD
/// be considered slippage in share price or some other type of condition, meaning
/// the depositor will lose assets by depositing.
function previewDeposit(uint256 assets) public view virtual returns (uint256 shares) {
shares = convertToShares(assets);
}
/// @dev Allows an on-chain or off-chain user to simulate the effects of their mint
/// at the current block, given current on-chain conditions.
///
/// - MUST return as close to and no fewer than the exact amount of assets that
/// will be deposited in a mint call in the same transaction, i.e. mint should
/// return the same or fewer assets as `previewMint` if called in the same transaction.
/// - MUST NOT account for mint limits like those returned from `maxMint` and should
/// always act as if the mint will be accepted, regardless of approvals, etc.
/// - MUST be inclusive of deposit fees. Integrators should be aware of this.
/// - MUST not revert.
///
/// Note: Any unfavorable discrepancy between `convertToAssets` and `previewMint` SHOULD
/// be considered slippage in share price or some other type of condition,
/// meaning the depositor will lose assets by minting.
function previewMint(uint256 shares) public view virtual returns (uint256 assets) {
if (!_useVirtualShares()) {
uint256 supply = totalSupply();
return supply == uint256(0)
? _initialConvertToAssets(shares)
: FixedPointMathLib.fullMulDivUp(shares, totalAssets(), supply);
}
uint256 o = _decimalsOffset();
if (o == uint256(0)) {
return FixedPointMathLib.fullMulDivUp(shares, totalAssets() + 1, _inc(totalSupply()));
}
return FixedPointMathLib.fullMulDivUp(shares, totalAssets() + 1, totalSupply() + 10 ** o);
}
/// @dev Allows an on-chain or off-chain user to simulate the effects of their withdrawal
/// at the current block, given the current on-chain conditions.
///
/// - MUST return as close to and no fewer than the exact amount of Vault shares that
/// will be burned in a withdraw call in the same transaction, i.e. withdraw should
/// return the same or fewer shares as `previewWithdraw` if call in the same transaction.
/// - MUST NOT account for withdrawal limits like those returned from `maxWithdraw` and should
/// always act as if the withdrawal will be accepted, regardless of share balance, etc.
/// - MUST be inclusive of withdrawal fees. Integrators should be aware of this.
/// - MUST not revert.
///
/// Note: Any unfavorable discrepancy between `convertToShares` and `previewWithdraw` SHOULD
/// be considered slippage in share price or some other type of condition,
/// meaning the depositor will lose assets by depositing.
function previewWithdraw(uint256 assets) public view virtual returns (uint256 shares) {
if (!_useVirtualShares()) {
uint256 supply = totalSupply();
return _eitherIsZero(assets, supply)
? _initialConvertToShares(assets)
: FixedPointMathLib.fullMulDivUp(assets, supply, totalAssets());
}
uint256 o = _decimalsOffset();
if (o == uint256(0)) {
return FixedPointMathLib.fullMulDivUp(assets, totalSupply() + 1, _inc(totalAssets()));
}
return FixedPointMathLib.fullMulDivUp(assets, totalSupply() + 10 ** o, _inc(totalAssets()));
}
/// @dev Allows an on-chain or off-chain user to simulate the effects of their redemption
/// at the current block, given current on-chain conditions.
///
/// - MUST return as close to and no more than the exact amount of assets that
/// will be withdrawn in a redeem call in the same transaction, i.e. redeem should
/// return the same or more assets as `previewRedeem` if called in the same transaction.
/// - MUST NOT account for redemption limits like those returned from `maxRedeem` and should
/// always act as if the redemption will be accepted, regardless of approvals, etc.
/// - MUST be inclusive of withdrawal fees. Integrators should be aware of this.
/// - MUST NOT revert.
///
/// Note: Any unfavorable discrepancy between `convertToAssets` and `previewRedeem` SHOULD
/// be considered slippage in share price or some other type of condition,
/// meaning the depositor will lose assets by depositing.
function previewRedeem(uint256 shares) public view virtual returns (uint256 assets) {
assets = convertToAssets(shares);
}
/// @dev Private helper to return if either value is zero.
function _eitherIsZero(uint256 a, uint256 b) private pure returns (bool result) {
/// @solidity memory-safe-assembly
assembly {
result := or(iszero(a), iszero(b))
}
}
/// @dev Private helper to return `x + 1` without the overflow check.
/// Used for computing the denominator input to `FixedPointMathLib.fullMulDiv(a, b, x + 1)`.
/// When `x == type(uint256).max`, we get `x + 1 == 0` (mod 2**256 - 1),
/// and `FixedPointMathLib.fullMulDiv` will revert as the denominator is zero.
function _inc(uint256 x) private pure returns (uint256) {
unchecked {
return x + 1;
}
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* DEPOSIT / WITHDRAWAL LIMIT LOGIC */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns the maximum amount of the underlying asset that can be deposited
/// into the Vault for `to`, via a deposit call.
///
/// - MUST return a limited value if `to` is subject to some deposit limit.
/// - MUST return `2**256-1` if there is no maximum limit.
/// - MUST NOT revert.
function maxDeposit(address to) public view virtual returns (uint256 maxAssets) {
to = to; // Silence unused variable warning.
maxAssets = type(uint256).max;
}
/// @dev Returns the maximum amount of the Vault shares that can be minter for `to`,
/// via a mint call.
///
/// - MUST return a limited value if `to` is subject to some mint limit.
/// - MUST return `2**256-1` if there is no maximum limit.
/// - MUST NOT revert.
function maxMint(address to) public view virtual returns (uint256 maxShares) {
to = to; // Silence unused variable warning.
maxShares = type(uint256).max;
}
/// @dev Returns the maximum amount of the underlying asset that can be withdrawn
/// from the `owner`'s balance in the Vault, via a withdraw call.
///
/// - MUST return a limited value if `owner` is subject to some withdrawal limit or timelock.
/// - MUST NOT revert.
function maxWithdraw(address owner) public view virtual returns (uint256 maxAssets) {
maxAssets = convertToAssets(balanceOf(owner));
}
/// @dev Returns the maximum amount of Vault shares that can be redeemed
/// from the `owner`'s balance in the Vault, via a redeem call.
///
/// - MUST return a limited value if `owner` is subject to some withdrawal limit or timelock.
/// - MUST return `balanceOf(owner)` otherwise.
/// - MUST NOT revert.
function maxRedeem(address owner) public view virtual returns (uint256 maxShares) {
maxShares = balanceOf(owner);
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* DEPOSIT / WITHDRAWAL LOGIC */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Mints `shares` Vault shares to `to` by depositing exactly `assets`
/// of underlying tokens.
///
/// - MUST emit the {Deposit} event.
/// - MAY support an additional flow in which the underlying tokens are owned by the Vault
/// contract before the deposit execution, and are accounted for during deposit.
/// - MUST revert if all of `assets` cannot be deposited, such as due to deposit limit,
/// slippage, insufficient approval, etc.
///
/// Note: Most implementations will require pre-approval of the Vault with the
/// Vault's underlying `asset` token.
function deposit(uint256 assets, address to) public virtual returns (uint256 shares) {
if (assets > maxDeposit(to)) _revert(0xb3c61a83); // `DepositMoreThanMax()`.
shares = previewDeposit(assets);
_deposit(msg.sender, to, assets, shares);
}
/// @dev Mints exactly `shares` Vault shares to `to` by depositing `assets`
/// of underlying tokens.
///
/// - MUST emit the {Deposit} event.
/// - MAY support an additional flow in which the underlying tokens are owned by the Vault
/// contract before the mint execution, and are accounted for during mint.
/// - MUST revert if all of `shares` cannot be deposited, such as due to deposit limit,
/// slippage, insufficient approval, etc.
///
/// Note: Most implementations will require pre-approval of the Vault with the
/// Vault's underlying `asset` token.
function mint(uint256 shares, address to) public virtual returns (uint256 assets) {
if (shares > maxMint(to)) _revert(0x6a695959); // `MintMoreThanMax()`.
assets = previewMint(shares);
_deposit(msg.sender, to, assets, shares);
}
/// @dev Burns `shares` from `owner` and sends exactly `assets` of underlying tokens to `to`.
///
/// - MUST emit the {Withdraw} event.
/// - MAY support an additional flow in which the underlying tokens are owned by the Vault
/// contract before the withdraw execution, and are accounted for during withdraw.
/// - MUST revert if all of `assets` cannot be withdrawn, such as due to withdrawal limit,
/// slippage, insufficient balance, etc.
///
/// Note: Some implementations will require pre-requesting to the Vault before a withdrawal
/// may be performed. Those methods should be performed separately.
function withdraw(uint256 assets, address to, address owner)
public
virtual
returns (uint256 shares)
{
if (assets > maxWithdraw(owner)) _revert(0x936941fc); // `WithdrawMoreThanMax()`.
shares = previewWithdraw(assets);
_withdraw(msg.sender, to, owner, assets, shares);
}
/// @dev Burns exactly `shares` from `owner` and sends `assets` of underlying tokens to `to`.
///
/// - MUST emit the {Withdraw} event.
/// - MAY support an additional flow in which the underlying tokens are owned by the Vault
/// contract before the redeem execution, and are accounted for during redeem.
/// - MUST revert if all of shares cannot be redeemed, such as due to withdrawal limit,
/// slippage, insufficient balance, etc.
///
/// Note: Some implementations will require pre-requesting to the Vault before a redeem
/// may be performed. Those methods should be performed separately.
function redeem(uint256 shares, address to, address owner)
public
virtual
returns (uint256 assets)
{
if (shares > maxRedeem(owner)) _revert(0x4656425a); // `RedeemMoreThanMax()`.
assets = previewRedeem(shares);
_withdraw(msg.sender, to, owner, assets, shares);
}
/// @dev Internal helper for reverting efficiently.
function _revert(uint256 s) private pure {
/// @solidity memory-safe-assembly
assembly {
mstore(0x00, s)
revert(0x1c, 0x04)
}
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* INTERNAL HELPERS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev For deposits and mints.
///
/// Emits a {Deposit} event.
function _deposit(address by, address to, uint256 assets, uint256 shares) internal virtual {
SafeTransferLib.safeTransferFrom(asset(), by, address(this), assets);
_mint(to, shares);
/// @solidity memory-safe-assembly
assembly {
// Emit the {Deposit} event.
mstore(0x00, assets)
mstore(0x20, shares)
let m := shr(96, not(0))
log3(0x00, 0x40, _DEPOSIT_EVENT_SIGNATURE, and(m, by), and(m, to))
}
_afterDeposit(assets, shares);
}
/// @dev For withdrawals and redemptions.
///
/// Emits a {Withdraw} event.
function _withdraw(address by, address to, address owner, uint256 assets, uint256 shares)
internal
virtual
{
if (by != owner) _spendAllowance(owner, by, shares);
_beforeWithdraw(assets, shares);
_burn(owner, shares);
SafeTransferLib.safeTransfer(asset(), to, assets);
/// @solidity memory-safe-assembly
assembly {
// Emit the {Withdraw} event.
mstore(0x00, assets)
mstore(0x20, shares)
let m := shr(96, not(0))
log4(0x00, 0x40, _WITHDRAW_EVENT_SIGNATURE, and(m, by), and(m, to), and(m, owner))
}
}
/// @dev Internal conversion function (from assets to shares) to apply when the Vault is empty.
/// Only used when {_useVirtualShares} returns false.
///
/// Note: Make sure to keep this function consistent with {_initialConvertToAssets}
/// when overriding it.
function _initialConvertToShares(uint256 assets)
internal
view
virtual
returns (uint256 shares)
{
shares = assets;
}
/// @dev Internal conversion function (from shares to assets) to apply when the Vault is empty.
/// Only used when {_useVirtualShares} returns false.
///
/// Note: Make sure to keep this function consistent with {_initialConvertToShares}
/// when overriding it.
function _initialConvertToAssets(uint256 shares)
internal
view
virtual
returns (uint256 assets)
{
assets = shares;
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* HOOKS TO OVERRIDE */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Hook that is called before any withdrawal or redemption.
function _beforeWithdraw(uint256 assets, uint256 shares) internal virtual {}
/// @dev Hook that is called after any deposit or mint.
function _afterDeposit(uint256 assets, uint256 shares) internal virtual {}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
import {FixedPointMathLib} from "solady/utils/FixedPointMathLib.sol";
import {subReLU} from "../lib/Math.sol";
type IdleBalance is bytes32;
using {equals as ==, notEqual as !=} for IdleBalance global;
using IdleBalanceLibrary for IdleBalance global;
function equals(IdleBalance bal, IdleBalance other) pure returns (bool) {
return IdleBalance.unwrap(bal) == IdleBalance.unwrap(other);
}
function notEqual(IdleBalance bal, IdleBalance other) pure returns (bool) {
return IdleBalance.unwrap(bal) != IdleBalance.unwrap(other);
}
library IdleBalanceLibrary {
using FixedPointMathLib for uint256;
using IdleBalanceLibrary for uint256;
uint256 private constant _BALANCE_MASK = 0x7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff;
/// @dev Set isToken0 to true in ZERO to keep storage slots dirty
IdleBalance internal constant ZERO =
IdleBalance.wrap(bytes32(0x8000000000000000000000000000000000000000000000000000000000000000));
error IdleBalanceLibrary__BalanceOverflow();
function fromIdleBalance(IdleBalance idleBalance) internal pure returns (uint256 rawBalance, bool isToken0) {
uint256 mask = _BALANCE_MASK;
assembly ("memory-safe") {
isToken0 := shr(255, idleBalance)
rawBalance := and(mask, idleBalance)
}
}
function toIdleBalance(uint256 rawBalance, bool isToken0) internal pure returns (IdleBalance) {
// revert if balance overflows 255 bits
if (rawBalance > _BALANCE_MASK) revert IdleBalanceLibrary__BalanceOverflow();
// pack isToken0 and balance into a single uint256
bytes32 packed;
assembly ("memory-safe") {
packed := or(shl(255, isToken0), rawBalance)
}
return IdleBalance.wrap(packed);
}
function computeIdleBalance(uint256 activeBalance0, uint256 activeBalance1, uint256 balance0, uint256 balance1)
internal
pure
returns (IdleBalance)
{
(uint256 extraBalance0, uint256 extraBalance1) =
(subReLU(balance0, activeBalance0), subReLU(balance1, activeBalance1));
(uint256 extraBalanceProportion0, uint256 extraBalanceProportion1) =
(balance0 == 0 ? 0 : extraBalance0.divWad(balance0), balance1 == 0 ? 0 : extraBalance1.divWad(balance1));
bool isToken0 = extraBalanceProportion0 >= extraBalanceProportion1;
return (isToken0 ? extraBalance0 : extraBalance1).toIdleBalance(isToken0);
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.19;
import {MAX_CARDINALITY} from "../base/Constants.sol";
/// @title Oracle
/// @notice Provides price data useful for a wide variety of system designs. Based on Uniswap's
/// truncated oracle.
/// @dev Instances of stored oracle data, "observations", are collected in the oracle array
/// Every pool is initialized with an oracle array length of 1. Anyone can pay the SSTOREs to increase the
/// maximum length of the oracle array. New slots will be added when the array is fully populated.
/// Observations are overwritten when the full length of the oracle array is populated.
/// The most recent observation is available, independent of the length of the oracle array, by passing 0 to observe()
/// A minimum observation interval is enforced to make the choice of cardinality more meaningful. This is done by
/// only recording an observation if the time elapsed since the last observation is >= minInterval, and recording the data
/// into a separate "intermediate" observation slot otherwise to ensure tickCumulative is accurate.
library Oracle {
/// @notice Thrown when trying to interact with an Oracle of a non-initialized pool
error OracleCardinalityCannotBeZero();
/// @notice Thrown when trying to observe a price that is older than the oldest recorded price
/// @param oldestTimestamp Timestamp of the oldest remaining observation
/// @param targetTimestamp Invalid timestamp targeted to be observed
error TargetPredatesOldestObservation(uint32 oldestTimestamp, uint32 targetTimestamp);
/// @notice This is the max amount of ticks in either direction that the pool is allowed to move at one time
int24 constant MAX_ABS_TICK_MOVE = 9116;
struct Observation {
// the block timestamp of the observation
uint32 blockTimestamp;
// the previous printed tick to calculate the change from time to time
int24 prevTick;
// the tick accumulator, i.e. tick * time elapsed since the pool was first initialized
int56 tickCumulative;
// whether or not the observation is initialized
bool initialized;
}
/// @notice Transforms a previous observation into a new observation, given the passage of time and the current tick values
/// @dev blockTimestamp _must_ be chronologically equal to or greater than last.blockTimestamp, safe for 0 or 1 overflows
/// @param last The specified observation to be transformed
/// @param blockTimestamp The timestamp of the new observation
/// @param tick The active tick at the time of the new observation
/// @return Observation The newly populated observation
function transform(Observation memory last, uint32 blockTimestamp, int24 tick)
private
pure
returns (Observation memory)
{
unchecked {
uint32 delta = blockTimestamp - last.blockTimestamp;
// if the current tick moves more than the max abs tick movement
// then we truncate it down
if ((tick - last.prevTick) > MAX_ABS_TICK_MOVE) {
tick = last.prevTick + MAX_ABS_TICK_MOVE;
} else if ((tick - last.prevTick) < -MAX_ABS_TICK_MOVE) {
tick = last.prevTick - MAX_ABS_TICK_MOVE;
}
return Observation({
blockTimestamp: blockTimestamp,
prevTick: tick,
tickCumulative: last.tickCumulative + int56(tick) * int56(uint56(delta)),
initialized: true
});
}
}
/// @notice Initialize the oracle array by writing the first slot. Called once for the lifecycle of the observations array
/// @param self The stored oracle array
/// @param time The time of the oracle initialization, via block.timestamp truncated to uint32
/// @return intermediate The intermediate observation in between min intervals
/// @return cardinality The number of populated elements in the oracle array
/// @return cardinalityNext The new length of the oracle array, independent of population
function initialize(Observation[MAX_CARDINALITY] storage self, uint32 time, int24 tick)
internal
returns (Observation memory intermediate, uint32 cardinality, uint32 cardinalityNext)
{
intermediate = Observation({blockTimestamp: time, prevTick: tick, tickCumulative: 0, initialized: true});
self[0] = intermediate;
return (intermediate, 1, 1);
}
/// @notice Writes an oracle observation to the array
/// @dev Writable at most once per block. Index represents the most recently written element. cardinality and index must be tracked externally.
/// If the index is at the end of the allowable array length (according to cardinality), and the next cardinality
/// is greater than the current one, cardinality may be increased. This restriction is created to preserve ordering.
/// @param self The stored oracle array
/// @param intermediate The intermediate observation in between min intervals. Always the most recent observation.
/// @param index The index of the observation that was most recently written to the observations array
/// @param blockTimestamp The timestamp of the new observation
/// @param tick The active tick at the time of the new observation
/// @param cardinality The number of populated elements in the oracle array
/// @param cardinalityNext The new length of the oracle array, independent of population
/// @param minInterval The minimum interval between observations.
/// @return intermediateUpdated The updated intermediate observation
/// @return indexUpdated The new index of the most recently written element in the oracle array
/// @return cardinalityUpdated The new cardinality of the oracle array
function write(
Observation[MAX_CARDINALITY] storage self,
Observation memory intermediate,
uint32 index,
uint32 blockTimestamp,
int24 tick,
uint32 cardinality,
uint32 cardinalityNext,
uint32 minInterval
) internal returns (Observation memory intermediateUpdated, uint32 indexUpdated, uint32 cardinalityUpdated) {
unchecked {
// early return if we've already written an observation this block
if (intermediate.blockTimestamp == blockTimestamp) {
return (intermediate, index, cardinality);
}
// update the intermediate observation using the most recent observation
// which is always the current intermediate observation
intermediateUpdated = transform(intermediate, blockTimestamp, tick);
// if the time since the last recorded observation is less than the minimum interval, we store the observation in the intermediate observation
if (blockTimestamp - self[index].blockTimestamp < minInterval) {
return (intermediateUpdated, index, cardinality);
}
// if the conditions are right, we can bump the cardinality
if (cardinalityNext > cardinality && index == (cardinality - 1)) {
cardinalityUpdated = cardinalityNext;
} else {
cardinalityUpdated = cardinality;
}
indexUpdated = (index + 1) % cardinalityUpdated;
self[indexUpdated] = intermediateUpdated;
}
}
/// @notice Prepares the oracle array to store up to `next` observations
/// @param self The stored oracle array
/// @param current The current next cardinality of the oracle array
/// @param next The proposed next cardinality which will be populated in the oracle array
/// @return next The next cardinality which will be populated in the oracle array
function grow(Observation[MAX_CARDINALITY] storage self, uint32 current, uint32 next) internal returns (uint32) {
unchecked {
if (current == 0) revert OracleCardinalityCannotBeZero();
// no-op if the passed next value isn't greater than the current next value
if (next <= current) return current;
// store in each slot to prevent fresh SSTOREs in swaps
// this data will not be used because the initialized boolean is still false
for (uint32 i = current; i < next; i++) {
self[i].blockTimestamp = 1;
}
return next;
}
}
/// @notice Fetches the observations beforeOrAt and atOrAfter a target, i.e. where [beforeOrAt, atOrAfter] is satisfied.
/// The result may be the same observation, or adjacent observations.
/// @dev The answer must be contained in the array, used when the target is located within the stored observation
/// boundaries: older than the most recent observation and younger, or the same age as, the oldest observation
/// @param self The stored oracle array
/// @param time The current block.timestamp
/// @param target The timestamp at which the reserved observation should be for
/// @param index The index of the observation that was most recently written to the observations array
/// @param cardinality The number of populated elements in the oracle array
/// @return beforeOrAt The observation recorded before, or at, the target
/// @return atOrAfter The observation recorded at, or after, the target
function binarySearch(
Observation[MAX_CARDINALITY] storage self,
uint32 time,
uint32 target,
uint32 index,
uint32 cardinality
) private view returns (Observation memory beforeOrAt, Observation memory atOrAfter) {
unchecked {
uint256 l = (index + 1) % cardinality; // oldest observation
uint256 r = l + cardinality - 1; // newest observation
uint256 i;
while (true) {
i = (l + r) / 2;
beforeOrAt = self[i % cardinality];
// we've landed on an uninitialized tick, keep searching higher (more recently)
if (!beforeOrAt.initialized) {
l = i + 1;
continue;
}
atOrAfter = self[(i + 1) % cardinality];
bool targetAtOrAfter = lte(time, beforeOrAt.blockTimestamp, target);
// check if we've found the answer!
if (targetAtOrAfter && lte(time, target, atOrAfter.blockTimestamp)) break;
if (!targetAtOrAfter) r = i - 1;
else l = i + 1;
}
}
}
/// @notice Fetches the observations beforeOrAt and atOrAfter a given target, i.e. where [beforeOrAt, atOrAfter] is satisfied
/// @dev Assumes there is at least 1 initialized observation.
/// Used by observeSingle() to compute the counterfactual accumulator values as of a given block timestamp.
/// @param self The stored oracle array
/// @param intermediate The intermediate observation in between min intervals. Always the most recent observation.
/// @param time The current block.timestamp
/// @param target The timestamp at which the reserved observation should be for
/// @param tick The active tick at the time of the returned or simulated observation
/// @param index The index of the observation that was most recently written to the observations array
/// @param cardinality The number of populated elements in the oracle array
/// @return beforeOrAt The observation which occurred at, or before, the given timestamp
/// @return atOrAfter The observation which occurred at, or after, the given timestamp
function getSurroundingObservations(
Observation[MAX_CARDINALITY] storage self,
Observation memory intermediate,
uint32 time,
uint32 target,
int24 tick,
uint32 index,
uint32 cardinality
) private view returns (Observation memory beforeOrAt, Observation memory atOrAfter) {
unchecked {
// optimistically set before to the newest observation
beforeOrAt = intermediate;
// if the target is chronologically at or after the newest observation, we can early return
if (lte(time, beforeOrAt.blockTimestamp, target)) {
if (beforeOrAt.blockTimestamp == target) {
// if newest observation equals target, we're in the same block, so we can ignore atOrAfter
return (beforeOrAt, atOrAfter);
} else {
// otherwise, we need to transform
return (beforeOrAt, transform(beforeOrAt, target, tick));
}
}
// now, set before to the newest *recorded* Observation
beforeOrAt = self[index];
atOrAfter = intermediate;
// if the target is chronologically at or after the newest recorded observation, we can early return
// beforeAt would be self[index] and atOrAfter would be intermediate
if (lte(time, beforeOrAt.blockTimestamp, target)) {
return (beforeOrAt, atOrAfter);
}
// now, set before to the oldest observation
beforeOrAt = self[(index + 1) % cardinality];
if (!beforeOrAt.initialized) beforeOrAt = self[0];
// ensure that the target is chronologically at or after the oldest observation
if (!lte(time, beforeOrAt.blockTimestamp, target)) {
revert TargetPredatesOldestObservation(beforeOrAt.blockTimestamp, target);
}
// if we've reached this point, we have to binary search
return binarySearch(self, time, target, index, cardinality);
}
}
/// @dev Reverts if an observation at or before the desired observation timestamp does not exist.
/// 0 may be passed as `secondsAgo' to return the current cumulative values.
/// If called with a timestamp falling between two observations, returns the counterfactual accumulator values
/// at exactly the timestamp between the two observations.
/// @param self The stored oracle array
/// @param intermediate The intermediate observation in between min intervals. Always the most recent observation.
/// @param time The current block timestamp
/// @param secondsAgo The amount of time to look back, in seconds, at which point to return an observation
/// @param tick The current tick
/// @param index The index of the observation that was most recently written to the observations array
/// @param cardinality The number of populated elements in the oracle array
/// @return tickCumulative The tick * time elapsed since the pool was first initialized, as of `secondsAgo`
function observeSingle(
Observation[MAX_CARDINALITY] storage self,
Observation memory intermediate,
uint32 time,
uint32 secondsAgo,
int24 tick,
uint32 index,
uint32 cardinality
) internal view returns (int56 tickCumulative) {
unchecked {
if (secondsAgo == 0) {
if (intermediate.blockTimestamp != time) intermediate = transform(intermediate, time, tick);
return intermediate.tickCumulative;
}
uint32 target = time - secondsAgo;
(Observation memory beforeOrAt, Observation memory atOrAfter) =
getSurroundingObservations(self, intermediate, time, target, tick, index, cardinality);
if (target == beforeOrAt.blockTimestamp) {
// we're at the left boundary
return beforeOrAt.tickCumulative;
} else if (target == atOrAfter.blockTimestamp) {
// we're at the right boundary
return atOrAfter.tickCumulative;
} else {
// we're in the middle
uint32 observationTimeDelta = atOrAfter.blockTimestamp - beforeOrAt.blockTimestamp;
uint32 targetDelta = target - beforeOrAt.blockTimestamp;
return beforeOrAt.tickCumulative
+ ((atOrAfter.tickCumulative - beforeOrAt.tickCumulative) / int56(uint56(observationTimeDelta)))
* int56(uint56(targetDelta));
}
}
}
/// @notice Returns the accumulator values as of each time seconds ago from the given time in the array of `secondsAgos`
/// @dev Reverts if `secondsAgos` > oldest observation
/// @param self The stored oracle array
/// @param intermediate The intermediate observation in between min intervals. Always the most recent observation.
/// @param time The current block.timestamp
/// @param secondsAgo0 Amount of time to look back, in seconds, at which point to return an observation
/// @param secondsAgo1 Amount of time to look back, in seconds, at which point to return an observation
/// @param tick The current tick
/// @param index The index of the observation that was most recently written to the observations array
/// @param cardinality The number of populated elements in the oracle array
/// @return tickCumulative0 The first tick * time elapsed since the pool was first initialized, as of `secondsAgo0`
/// @return tickCumulative1 The second tick * time elapsed since the pool was first initialized, as of `secondsAgo1`
function observeDouble(
Observation[MAX_CARDINALITY] storage self,
Observation memory intermediate,
uint32 time,
uint32 secondsAgo0,
uint32 secondsAgo1,
int24 tick,
uint32 index,
uint32 cardinality
) internal view returns (int56 tickCumulative0, int56 tickCumulative1) {
unchecked {
if (cardinality == 0) revert OracleCardinalityCannotBeZero();
tickCumulative0 = observeSingle(self, intermediate, time, secondsAgo0, tick, index, cardinality);
tickCumulative1 = observeSingle(self, intermediate, time, secondsAgo1, tick, index, cardinality);
}
}
function observeTriple(
Oracle.Observation[MAX_CARDINALITY] storage self,
Oracle.Observation memory intermediate,
uint32 time,
uint32 secondsAgo0,
uint32 secondsAgo1,
uint32 secondsAgo2,
int24 tick,
uint32 index,
uint32 cardinality
) internal view returns (int56 tickCumulative0, int56 tickCumulative1, int56 tickCumulative2) {
unchecked {
if (cardinality == 0) revert OracleCardinalityCannotBeZero();
tickCumulative0 = observeSingle(self, intermediate, time, secondsAgo0, tick, index, cardinality);
tickCumulative1 = observeSingle(self, intermediate, time, secondsAgo1, tick, index, cardinality);
tickCumulative2 = observeSingle(self, intermediate, time, secondsAgo2, tick, index, cardinality);
}
}
/// @notice Returns the accumulator values as of each time seconds ago from the given time in the array of `secondsAgos`
/// @dev Reverts if `secondsAgos` > oldest observation
/// @param self The stored oracle array
/// @param intermediate The intermediate observation in between min intervals. Always the most recent observation.
/// @param time The current block.timestamp
/// @param secondsAgos Each amount of time to look back, in seconds, at which point to return an observation
/// @param tick The current tick
/// @param index The index of the observation that was most recently written to the observations array
/// @param cardinality The number of populated elements in the oracle array
/// @return tickCumulatives The tick * time elapsed since the pool was first initialized, as of each `secondsAgo`
function observe(
Observation[MAX_CARDINALITY] storage self,
Observation memory intermediate,
uint32 time,
uint32[] memory secondsAgos,
int24 tick,
uint32 index,
uint32 cardinality
) internal view returns (int56[] memory tickCumulatives) {
unchecked {
if (cardinality == 0) revert OracleCardinalityCannotBeZero();
tickCumulatives = new int56[](secondsAgos.length);
for (uint256 i = 0; i < secondsAgos.length; i++) {
tickCumulatives[i] = observeSingle(self, intermediate, time, secondsAgos[i], tick, index, cardinality);
}
}
}
/// @notice comparator for 32-bit timestamps
/// @dev safe for 0 or 1 overflows, a and b _must_ be chronologically before or equal to time
/// @param time A timestamp truncated to 32 bits
/// @param a A comparison timestamp from which to determine the relative position of `time`
/// @param b From which to determine the relative position of `time`
/// @return Whether `a` is chronologically <= `b`
function lte(uint32 time, uint32 a, uint32 b) private pure returns (bool) {
unchecked {
// if there hasn't been overflow, no need to adjust
if (a <= time && b <= time) return a <= b;
uint256 aAdjusted = a > time ? a : a + 2 ** 32;
uint256 bAdjusted = b > time ? b : b + 2 ** 32;
return aAdjusted <= bAdjusted;
}
}
}// SPDX-License-Identifier: MIT
pragma solidity >=0.6.0;
pragma abicoder v2;
import {PoolKey} from "@uniswap/v4-core/src/interfaces/IPoolManager.sol";
/// @title ILiquidityDensityFunction
/// @author zefram.eth
/// @notice Interface for liquidity density functions (LDFs) that dictate how liquidity is distributed over a pool's rounded ticks (each with `tickSpacing` ticks).
/// Each rounded tick is identified by its leftmost tick, which is a multiple of `tickSpacing`. The liquidity density of all rounded ticks should add up to 1, similar to probability density functions (PDFs).
/// Also contains functions for efficiently computing the cumulative amount of tokens in a consecutive range of rounded ticks, as well as their inverse functions. These are essential for computing swaps.
/// Enables arbitrary liquidity shapes, shifting liquidity across ticks, and switching from one liquidity shape to another.
interface ILiquidityDensityFunction {
/// @notice Queries the liquidity density function for the given pool and rounded tick.
/// Returns the density of the rounded tick, cumulative token densities at adjacent ticks, and state relevant info.
/// @param key The key of the Uniswap v4 pool
/// @param roundedTick The rounded tick to query
/// @param twapTick The TWAP tick. Is 0 if `twapSecondsAgo` is 0. It's up to `isValidParams` to ensure `twapSecondsAgo != 0` if the LDF uses the TWAP.
/// @param spotPriceTick The spot price tick.
/// @param ldfParams The parameters for the liquidity density function
/// @param ldfState The current state of the liquidity density function
/// @return liquidityDensityX96 The density of the rounded tick, scaled by Q96
/// @return cumulativeAmount0DensityX96 The cumulative token0 density in rounded ticks [roundedTick + tickSpacing, maxUsableTick], scaled by Q96
/// @return cumulativeAmount1DensityX96 The cumulative token1 density in rounded ticks [minUsableTick, roundedTick - tickSpacing], scaled by Q96
/// @return newLdfState The new state of the liquidity density function
/// @return shouldSurge Whether the pool should surge. Usually corresponds to whether the LDF has shifted / changed shape.
function query(
PoolKey calldata key,
int24 roundedTick,
int24 twapTick,
int24 spotPriceTick,
bytes32 ldfParams,
bytes32 ldfState
)
external
view
returns (
uint256 liquidityDensityX96,
uint256 cumulativeAmount0DensityX96,
uint256 cumulativeAmount1DensityX96,
bytes32 newLdfState,
bool shouldSurge
);
/// @notice Aggregates LDF queries used during a swap.
/// @dev A Bunni swap uses the inverseCumulativeAmount function to compute the rounded tick for which the cumulativeAmount is the closest to `inverseCumulativeAmountInput`
/// and <= `inverseCumulativeAmountInput`. This rounded tick is the starting point for swapping the remaining tokens, which is done via Uniswap math (not done in this function though).
/// @param key The key of the Uniswap v4 pool
/// @param inverseCumulativeAmountInput The input to the inverseCumulativeAmount function
/// @param totalLiquidity The total liquidity in the pool
/// @param zeroForOne Whether the input token is token0
/// @param exactIn Whether it's an exact input swap or an exact output swap
/// @param twapTick The TWAP tick. Is 0 if `twapSecondsAgo` is 0. It's up to `isValidParams` to ensure `twapSecondsAgo != 0` if the LDF uses the TWAP.
/// @param spotPriceTick The spot price tick.
/// @param ldfParams The parameters for the liquidity density function
/// @param ldfState The current state of the liquidity density function
/// @return success Whether the swap computation was successful
/// @return roundedTick The rounded tick to start the remainder swap from
/// @return cumulativeAmount0_ The cumulative amount of token0 to the right of the starting tick of the Uniswap swap
/// @return cumulativeAmount1_ The cumulative amount of token1 to the left of the starting tick of the Uniswap swap
/// @return swapLiquidity The liquidity used for the remainder swap
function computeSwap(
PoolKey calldata key,
uint256 inverseCumulativeAmountInput,
uint256 totalLiquidity,
bool zeroForOne,
bool exactIn,
int24 twapTick,
int24 spotPriceTick,
bytes32 ldfParams,
bytes32 ldfState
)
external
view
returns (
bool success,
int24 roundedTick,
uint256 cumulativeAmount0_,
uint256 cumulativeAmount1_,
uint256 swapLiquidity
);
/// @notice Computes the cumulative amount of token0 in the rounded ticks [roundedTick, maxUsableTick].
/// @param key The key of the Uniswap v4 pool
/// @param roundedTick The rounded tick to query
/// @param totalLiquidity The total liquidity in the pool
/// @param twapTick The TWAP tick. Is 0 if `twapSecondsAgo` is 0. It's up to `isValidParams` to ensure `twapSecondsAgo != 0` if the LDF uses the TWAP.
/// @param spotPriceTick The spot price tick.
/// @param ldfParams The parameters for the liquidity density function
/// @param ldfState The current state of the liquidity density function
/// @return The cumulative amount of token0 in the rounded ticks [roundedTick, maxUsableTick]
function cumulativeAmount0(
PoolKey calldata key,
int24 roundedTick,
uint256 totalLiquidity,
int24 twapTick,
int24 spotPriceTick,
bytes32 ldfParams,
bytes32 ldfState
) external view returns (uint256);
/// @notice Computes the cumulative amount of token1 in the rounded ticks [minUsableTick, roundedTick].
/// @param key The key of the Uniswap v4 pool
/// @param roundedTick The rounded tick to query
/// @param totalLiquidity The total liquidity in the pool
/// @param twapTick The TWAP tick. Is 0 if `twapSecondsAgo` is 0. It's up to `isValidParams` to ensure `twapSecondsAgo != 0` if the LDF uses the TWAP.
/// @param spotPriceTick The spot price tick.
/// @param ldfParams The parameters for the liquidity density function
/// @param ldfState The current state of the liquidity density function
/// @return The cumulative amount of token1 in the rounded ticks [minUsableTick, roundedTick]
function cumulativeAmount1(
PoolKey calldata key,
int24 roundedTick,
uint256 totalLiquidity,
int24 twapTick,
int24 spotPriceTick,
bytes32 ldfParams,
bytes32 ldfState
) external view returns (uint256);
/// @notice Checks if the given LDF parameters are valid.
/// @param key The key of the Uniswap v4 pool
/// @param twapSecondsAgo The time window for the TWAP
/// @param ldfParams The parameters for the liquidity density function
/// @return Whether the parameters are valid
function isValidParams(PoolKey calldata key, uint24 twapSecondsAgo, bytes32 ldfParams)
external
view
returns (bool);
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
enum LDFType {
STATIC, // LDF does not change ever
DYNAMIC_NOT_STATEFUL, // LDF can change, does not use ldfState
DYNAMIC_AND_STATEFUL // LDF can change, uses ldfState
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {IPoolManager, PoolKey} from "@uniswap/v4-core/src/interfaces/IPoolManager.sol";
import {IBunniHub} from "./IBunniHub.sol";
import {IBunniToken} from "./IBunniToken.sol";
/// @title Hooklet
/// @notice Hooklets let developers execute custom logic before/after Bunni operations.
/// Each Bunni pool can have one hooklet attached to it. The least significant bits of the hooklet's
/// address is used to flag which hooklet functions should be callled.
interface IHooklet {
/// @notice Return data of an initialize operation.
/// @member bunniToken The BunniToken deployed.
/// @member key The Uniswap v4 pool's key.
struct InitializeReturnData {
IBunniToken bunniToken;
PoolKey key;
}
/// @notice Return data of a deposit operation.
/// @member shares The amount of shares minted.
/// @member amount0 The amount of token0 deposited.
/// @member amount1 The amount of token1 deposited.
struct DepositReturnData {
uint256 shares;
uint256 amount0;
uint256 amount1;
}
/// @notice Return data of a withdraw operation.
/// @member amount0 The amount of token0 withdrawn.
/// @member amount1 The amount of token1 withdrawn.
struct WithdrawReturnData {
uint256 amount0;
uint256 amount1;
}
/// @notice Return data of a swap operation.
/// @member updatedSqrtPriceX96 The pool's updated sqrt price after the swap.
/// @member updatedTick The pool's updated tick after the swap.
/// @member inputAmount The amount of input tokens swapped.
/// @member outputAmount The amount of output tokens received.
/// @member swapFee The swap fee used for the swap. 6 decimals.
/// @member totalLiquidity The pool's total liquidity after the swap.
struct SwapReturnData {
uint160 updatedSqrtPriceX96;
int24 updatedTick;
uint256 inputAmount;
uint256 outputAmount;
uint24 swapFee;
uint256 totalLiquidity;
}
/// @notice Overrides the swap fee of a pool before the swap is executed.
/// Ignored if the pool has an am-AMM manager.
/// @member overridden If true, the swap fee is overridden.
/// @member fee The swap fee to use for the swap. 6 decimals.
struct BeforeSwapFeeOverride {
bool overridden;
uint24 fee;
}
/// @notice Overrides the pool's spot price before the swap is executed.
/// @member overridden If true, the pool's spot price is overridden.
/// @member sqrtPriceX96 The spot price to use for the swap. Q96 value.
struct BeforeSwapPriceOverride {
bool overridden;
uint160 sqrtPriceX96;
}
/// @notice Called before a BunniToken transfer operation.
/// @param sender The address that initiated the transfer.
/// @param key The Uniswap v4 pool's key.
/// @param bunniToken The BunniToken being transferred.
/// @param from The address that is sending the tokens.
/// @param to The address that is receiving the tokens.
/// @param amount The amount of tokens being transferred.
/// @return selector IHooklet.beforeTransfer.selector if the call was successful.
function beforeTransfer(
address sender,
PoolKey calldata key,
IBunniToken bunniToken,
address from,
address to,
uint256 amount
) external returns (bytes4 selector);
/// @notice Called after a BunniToken transfer operation.
/// @param sender The address that initiated the transfer.
/// @param key The Uniswap v4 pool's key.
/// @param bunniToken The BunniToken being transferred.
/// @param from The address that is sending the tokens.
/// @param to The address that is receiving the tokens.
/// @param amount The amount of tokens being transferred.
/// @return selector IHooklet.afterTransfer.selector if the call was successful.
function afterTransfer(
address sender,
PoolKey calldata key,
IBunniToken bunniToken,
address from,
address to,
uint256 amount
) external returns (bytes4 selector);
/// @notice Called before a pool is initialized.
/// @param sender The address of the account that initiated the initialization.
/// @param params The initialization's input parameters.
/// @return selector IHooklet.beforeInitialize.selector if the call was successful.
function beforeInitialize(address sender, IBunniHub.DeployBunniTokenParams calldata params)
external
returns (bytes4 selector);
/// @notice Called after a pool is initialized.
/// @param sender The address of the account that initiated the initialization.
/// @param params The initialization's input parameters.
/// @param returnData The initialization operation's return data.
/// @return selector IHooklet.afterInitialize.selector if the call was successful.
function afterInitialize(
address sender,
IBunniHub.DeployBunniTokenParams calldata params,
InitializeReturnData calldata returnData
) external returns (bytes4 selector);
/// @notice Called before a deposit operation.
/// @param sender The address of the account that initiated the deposit.
/// @param params The deposit's input parameters.
/// @return selector IHooklet.beforeDeposit.selector if the call was successful.
function beforeDeposit(address sender, IBunniHub.DepositParams calldata params)
external
returns (bytes4 selector);
/// @notice View version of beforeDeposit(), used when computing deposit quotes like in BunniQuoter.
/// Should always have the same behavior as beforeDeposit().
/// @param sender The address of the account that initiated the deposit.
/// @param params The deposit's input parameters.
/// @return selector IHooklet.beforeDeposit.selector if the call was successful.
function beforeDepositView(address sender, IBunniHub.DepositParams calldata params)
external
view
returns (bytes4 selector);
/// @notice Called after a deposit operation.
/// @param sender The address of the account that initiated the deposit.
/// @param params The deposit's input parameters.
/// @param returnData The deposit operation's return data.
/// @return selector IHooklet.afterDeposit.selector if the call was successful.
function afterDeposit(
address sender,
IBunniHub.DepositParams calldata params,
DepositReturnData calldata returnData
) external returns (bytes4 selector);
/// @notice View version of afterDeposit(), used when computing deposit quotes like in BunniQuoter.
/// Should always have the same behavior as afterDeposit().
/// @param sender The address of the account that initiated the deposit.
/// @param params The deposit's input parameters.
/// @param returnData The deposit operation's return data.
/// @return selector IHooklet.afterDeposit.selector if the call was successful.
function afterDepositView(
address sender,
IBunniHub.DepositParams calldata params,
DepositReturnData calldata returnData
) external view returns (bytes4 selector);
/// @notice Called before a withdraw operation.
/// @param sender The address of the account that initiated the withdraw.
/// @param params The withdraw's input parameters.
/// @return selector IHooklet.beforeWithdraw.selector if the call was successful.
function beforeWithdraw(address sender, IBunniHub.WithdrawParams calldata params)
external
returns (bytes4 selector);
/// @notice View version of beforeWithdraw(), used when computing withdraw quotes like in BunniQuoter.
/// Should always have the same behavior as beforeWithdraw().
/// @param sender The address of the account that initiated the withdraw.
/// @param params The withdraw's input parameters.
/// @return selector IHooklet.beforeWithdraw.selector if the call was successful.
function beforeWithdrawView(address sender, IBunniHub.WithdrawParams calldata params)
external
view
returns (bytes4 selector);
/// @notice Called after a withdraw operation.
/// @param sender The address of the account that initiated the withdraw.
/// @param params The withdraw's input parameters.
/// @param returnData The withdraw operation's return data.
/// @return selector IHooklet.afterWithdraw.selector if the call was successful.
function afterWithdraw(
address sender,
IBunniHub.WithdrawParams calldata params,
WithdrawReturnData calldata returnData
) external returns (bytes4 selector);
/// @notice View version of afterWithdraw(), used when computing withdraw quotes like in BunniQuoter.
/// Should always have the same behavior as afterWithdraw().
/// @param sender The address of the account that initiated the withdraw.
/// @param params The withdraw's input parameters.
/// @param returnData The withdraw operation's return data.
/// @return selector IHooklet.afterWithdraw.selector if the call was successful.
function afterWithdrawView(
address sender,
IBunniHub.WithdrawParams calldata params,
WithdrawReturnData calldata returnData
) external view returns (bytes4 selector);
/// @notice Called before a swap operation. Allows the hooklet to override the swap fee & price
/// of the pool before the swap is executed.
/// @param sender The address of the account that initiated the swap.
/// @param key The Uniswap v4 pool's key.
/// @param params The swap's input parameters.
/// @return selector IHooklet.beforeSwap.selector if the call was successful.
/// @return feeOverriden If true, the swap fee is overridden. If the pool has an am-AMM manager
/// then the fee override is ignored.
/// @return fee The swap fee to use for the swap. 6 decimals.
/// @return priceOverridden If true, the pool's spot price is overridden.
/// @return sqrtPriceX96 The spot price to use for the swap. Q96 value.
function beforeSwap(address sender, PoolKey calldata key, IPoolManager.SwapParams calldata params)
external
returns (bytes4 selector, bool feeOverriden, uint24 fee, bool priceOverridden, uint160 sqrtPriceX96);
/// @notice View version of beforeSwap(), used when computing swap quotes like in BunniQuoter.
/// Should always return the same values as beforeSwap().
/// @param sender The address of the account that initiated the swap.
/// @param key The Uniswap v4 pool's key.
/// @param params The swap's input parameters.
/// @return selector IHooklet.beforeSwap.selector if the call was successful.
/// @return feeOverriden If true, the swap fee is overridden. If the pool has an am-AMM manager
/// then the fee override is ignored.
/// @return fee The swap fee to use for the swap. 6 decimals.
/// @return priceOverridden If true, the pool's spot price is overridden.
/// @return sqrtPriceX96 The spot price to use for the swap. Q96 value.
function beforeSwapView(address sender, PoolKey calldata key, IPoolManager.SwapParams calldata params)
external
view
returns (bytes4 selector, bool feeOverriden, uint24 fee, bool priceOverridden, uint160 sqrtPriceX96);
/// @notice Called after a swap operation.
/// @param sender The address of the account that initiated the swap.
/// @param key The Uniswap v4 pool's key.
/// @param params The swap's input parameters.
/// @param returnData The swap operation's return data.
function afterSwap(
address sender,
PoolKey calldata key,
IPoolManager.SwapParams calldata params,
SwapReturnData calldata returnData
) external returns (bytes4 selector);
/// @notice View version of afterSwap(), used when computing swap quotes like in BunniQuoter.
/// Should always have the same behavior as afterSwap().
/// @param sender The address of the account that initiated the swap.
/// @param key The Uniswap v4 pool's key.
/// @param params The swap's input parameters.
/// @param returnData The swap operation's return data.
/// @return selector IHooklet.afterSwap.selector if the call was successful.
function afterSwapView(
address sender,
PoolKey calldata key,
IPoolManager.SwapParams calldata params,
SwapReturnData calldata returnData
) external view returns (bytes4 selector);
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
interface IOwnable {
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CUSTOM ERRORS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev The caller is not authorized to call the function.
error Unauthorized();
/// @dev The `newOwner` cannot be the zero address.
error NewOwnerIsZeroAddress();
/// @dev The `pendingOwner` does not have a valid handover request.
error NoHandoverRequest();
/// @dev Cannot double-initialize.
error AlreadyInitialized();
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* EVENTS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev The ownership is transferred from `oldOwner` to `newOwner`.
/// This event is intentionally kept the same as OpenZeppelin's Ownable to be
/// compatible with indexers and [EIP-173](https://eips.ethereum.org/EIPS/eip-173),
/// despite it not being as lightweight as a single argument event.
event OwnershipTransferred(address indexed oldOwner, address indexed newOwner);
/// @dev An ownership handover to `pendingOwner` has been requested.
event OwnershipHandoverRequested(address indexed pendingOwner);
/// @dev The ownership handover to `pendingOwner` has been canceled.
event OwnershipHandoverCanceled(address indexed pendingOwner);
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* external UPDATE FUNCTIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Allows the owner to transfer the ownership to `newOwner`.
function transferOwnership(address newOwner) external payable;
/// @dev Allows the owner to renounce their ownership.
function renounceOwnership() external payable;
/// @dev Request a two-step ownership handover to the caller.
/// The request will automatically expire in 48 hours (172800 seconds) by default.
function requestOwnershipHandover() external payable;
/// @dev Cancels the two-step ownership handover to the caller, if any.
function cancelOwnershipHandover() external payable;
/// @dev Allows the owner to complete the two-step ownership handover to `pendingOwner`.
/// Reverts if there is no existing ownership handover requested by `pendingOwner`.
function completeOwnershipHandover(address pendingOwner) external payable;
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* external READ FUNCTIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns the owner of the contract.
function owner() external view returns (address result);
/// @dev Returns the expiry timestamp for the two-step ownership handover to `pendingOwner`.
function ownershipHandoverExpiresAt(address pendingOwner) external view returns (uint256 result);
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {PoolId} from "@uniswap/v4-core/src/types/PoolId.sol";
import {Currency} from "@uniswap/v4-core/src/types/Currency.sol";
interface IAmAmm {
error AmAmm__BidLocked();
error AmAmm__InvalidBid();
error AmAmm__NotEnabled();
error AmAmm__Unauthorized();
error AmAmm__InvalidDepositAmount();
event SubmitBid(
PoolId indexed id,
address indexed manager,
uint48 indexed blockIdx,
bytes6 payload,
uint128 rent,
uint128 deposit
);
event DepositIntoTopBid(PoolId indexed id, address indexed manager, uint128 amount);
event WithdrawFromTopBid(PoolId indexed id, address indexed manager, address indexed recipient, uint128 amount);
event DepositIntoNextBid(PoolId indexed id, address indexed manager, uint128 amount);
event WithdrawFromNextBid(PoolId indexed id, address indexed manager, address indexed recipient, uint128 amount);
event ClaimRefund(PoolId indexed id, address indexed manager, address indexed recipient, uint256 refund);
event ClaimFees(Currency indexed currency, address indexed manager, address indexed recipient, uint256 fees);
event SetBidPayload(PoolId indexed id, address indexed manager, bytes6 payload, bool topBid);
event IncreaseBidRent(
PoolId indexed id,
address indexed manager,
uint128 additionalRent,
uint128 updatedDeposit,
bool topBid,
address indexed withdrawRecipient,
uint128 amountDeposited,
uint128 amountWithdrawn
);
struct Bid {
address manager;
uint48 blockIdx; // block number (minus contract deployment block) when the bid was created / last charged rent
bytes6 payload; // payload specifying what parames the manager wants, e.g. swap fee
uint128 rent; // rent per block
uint128 deposit; // rent deposit amount
}
/// @notice Places a bid to become the manager of a pool
/// @param id The pool id
/// @param manager The address of the manager
/// @param payload The payload specifying what parameters the manager wants, e.g. swap fee
/// @param rent The rent per block
/// @param deposit The deposit amount, must be a multiple of rent and cover rent for >=K blocks
function bid(PoolId id, address manager, bytes6 payload, uint128 rent, uint128 deposit) external;
/// @notice Adds deposit to the top bid. Only callable by topBids[id].manager.
/// @param id The pool id
/// @param amount The amount to deposit, must be a multiple of rent
function depositIntoTopBid(PoolId id, uint128 amount) external;
/// @notice Withdraws from the deposit of the top bid. Only callable by topBids[id].manager. Reverts if D_top / R_top < K.
/// @param id The pool id
/// @param amount The amount to withdraw, must be a multiple of rent and leave D_top / R_top >= K
/// @param recipient The address of the recipient
function withdrawFromTopBid(PoolId id, uint128 amount, address recipient) external;
/// @notice Adds deposit to the next bid. Only callable by nextBids[id].manager.
/// @param id The pool id
/// @param amount The amount to deposit, must be a multiple of rent
function depositIntoNextBid(PoolId id, uint128 amount) external;
/// @notice Withdraws from the deposit of the next bid. Only callable by nextBids[id].manager. Reverts if D_next / R_next < K.
/// @param id The pool id
/// @param amount The amount to withdraw, must be a multiple of rent and leave D_next / R_next >= K
/// @param recipient The address of the recipient
function withdrawFromNextBid(PoolId id, uint128 amount, address recipient) external;
/// @notice Claims the refundable deposit of a pool owed to msg.sender.
/// @param id The pool id
/// @param recipient The address of the manager
/// @return refund The amount of refund claimed
function claimRefund(PoolId id, address recipient) external returns (uint256 refund);
/// @notice Claims the accrued fees of msg.sender.
/// @param currency The currency of the fees
/// @param recipient The address of the recipient
/// @return fees The amount of fees claimed
function claimFees(Currency currency, address recipient) external returns (uint256 fees);
/// @notice Increases the rent of a bid. Only callable by the manager of the relevant bid. Reverts if D / R < K after the update.
/// Reverts if updated deposit is not a multiple of the new rent. Noop if additionalRent is 0. Will take/send the difference between the old and new deposits.
/// @param id The pool id
/// @param additionalRent The additional rent to add
/// @param updatedDeposit The updated deposit amount of the bid
/// @param topBid True if the top bid manager is increasing the rent and deposit, false if the next bid manager is increasing the rent and deposit
/// @param withdrawRecipient The address to withdraw the difference between the old and new deposits to
/// @return amountDeposited The amount of deposit added, if any
/// @return amountWithdrawn The amount of deposit withdrawn, if any
function increaseBidRent(
PoolId id,
uint128 additionalRent,
uint128 updatedDeposit,
bool topBid,
address withdrawRecipient
) external returns (uint128 amountDeposited, uint128 amountWithdrawn);
/// @notice Sets the payload of a pool. Only callable by the manager of either the top bid or the next bid.
/// @param id The pool id
/// @param payload The payload specifying e.g. the swap fee
/// @param topBid True if the top bid manager is setting the fee, false if the next bid manager is setting the fee
function setBidPayload(PoolId id, bytes6 payload, bool topBid) external;
/// @notice Gets the top bid of a pool
function getTopBid(PoolId id) external view returns (Bid memory);
/// @notice Updates the am-AMM state of a pool and then gets the top bid
function getTopBidWrite(PoolId id) external returns (Bid memory);
/// @notice Gets the next bid of a pool
function getNextBid(PoolId id) external view returns (Bid memory);
/// @notice Updates the am-AMM state of a pool and then gets the next bid
function getNextBidWrite(PoolId id) external returns (Bid memory);
/// @notice Gets the refundable deposit of a pool
/// @param manager The address of the manager
/// @param id The pool id
function getRefund(address manager, PoolId id) external view returns (uint256);
/// @notice Updates the am-AMM state of a pool and then gets the refundable deposit owed to a manager in that pool
/// @param manager The address of the manager
/// @param id The pool id
function getRefundWrite(address manager, PoolId id) external returns (uint256);
/// @notice Gets the fees accrued by a manager
/// @param manager The address of the manager
/// @param currency The currency of the fees
function getFees(address manager, Currency currency) external view returns (uint256);
/// @notice Triggers a state machine update for the given pool
/// @param id The pool id
function updateStateMachine(PoolId id) external;
}// SPDX-License-Identifier: BSD
pragma solidity ^0.8.4;
/// @title ClonesWithImmutableArgs
/// @author wighawag, zefram.eth, nick.eth
/// @notice Enables creating clone contracts with immutable args
library ClonesWithImmutableArgs {
/// @dev The CREATE3 proxy bytecode.
uint256 private constant _CREATE3_PROXY_BYTECODE =
0x67363d3d37363d34f03d5260086018f3;
/// @dev Hash of the `_CREATE3_PROXY_BYTECODE`.
/// Equivalent to `keccak256(abi.encodePacked(hex"67363d3d37363d34f03d5260086018f3"))`.
bytes32 private constant _CREATE3_PROXY_BYTECODE_HASH =
0x21c35dbe1b344a2488cf3321d6ce542f8e9f305544ff09e4993a62319a497c1f;
error CreateFail();
error InitializeFail();
enum CloneType {
CREATE,
CREATE2,
PREDICT_CREATE2
}
/// @notice Creates a clone proxy of the implementation contract, with immutable args
/// @dev data cannot exceed 65535 bytes, since 2 bytes are used to store the data length
/// @param implementation The implementation contract to clone
/// @param data Encoded immutable args
/// @return instance The address of the created clone
function clone(
address implementation,
bytes memory data
) internal returns (address payable instance) {
return clone(implementation, data, 0);
}
/// @notice Creates a clone proxy of the implementation contract, with immutable args
/// @dev data cannot exceed 65535 bytes, since 2 bytes are used to store the data length
/// @param implementation The implementation contract to clone
/// @param data Encoded immutable args
/// @param value The amount of wei to transfer to the created clone
/// @return instance The address of the created clone
function clone(
address implementation,
bytes memory data,
uint256 value
) internal returns (address payable instance) {
bytes memory creationcode = getCreationBytecode(implementation, data);
// solhint-disable-next-line no-inline-assembly
assembly {
instance := create(
value,
add(creationcode, 0x20),
mload(creationcode)
)
}
if (instance == address(0)) {
revert CreateFail();
}
}
/// @notice Creates a clone proxy of the implementation contract, with immutable args,
/// using CREATE2
/// @dev data cannot exceed 65535 bytes, since 2 bytes are used to store the data length
/// @param implementation The implementation contract to clone
/// @param data Encoded immutable args
/// @return instance The address of the created clone
function clone2(
address implementation,
bytes memory data
) internal returns (address payable instance) {
return clone2(implementation, data, 0);
}
/// @notice Creates a clone proxy of the implementation contract, with immutable args,
/// using CREATE2
/// @dev data cannot exceed 65535 bytes, since 2 bytes are used to store the data length
/// @param implementation The implementation contract to clone
/// @param data Encoded immutable args
/// @param value The amount of wei to transfer to the created clone
/// @return instance The address of the created clone
function clone2(
address implementation,
bytes memory data,
uint256 value
) internal returns (address payable instance) {
bytes memory creationcode = getCreationBytecode(implementation, data);
// solhint-disable-next-line no-inline-assembly
assembly {
instance := create2(
value,
add(creationcode, 0x20),
mload(creationcode),
0
)
}
if (instance == address(0)) {
revert CreateFail();
}
}
/// @notice Computes the address of a clone created using CREATE2
/// @dev data cannot exceed 65535 bytes, since 2 bytes are used to store the data length
/// @param implementation The implementation contract to clone
/// @param data Encoded immutable args
/// @return instance The address of the clone
function addressOfClone2(
address implementation,
bytes memory data
) internal view returns (address payable instance) {
bytes memory creationcode = getCreationBytecode(implementation, data);
bytes32 bytecodeHash = keccak256(creationcode);
instance = payable(
address(
uint160(
uint256(
keccak256(
abi.encodePacked(
bytes1(0xff),
address(this),
bytes32(0),
bytecodeHash
)
)
)
)
)
);
}
/// @notice Computes bytecode for a clone
/// @dev data cannot exceed 65535 bytes, since 2 bytes are used to store the data length
/// @param implementation The implementation contract to clone
/// @param data Encoded immutable args
/// @return ret Creation bytecode for the clone contract
function getCreationBytecode(
address implementation,
bytes memory data
) internal pure returns (bytes memory ret) {
// unrealistic for memory ptr or data length to exceed 256 bits
unchecked {
uint256 extraLength = data.length + 2; // +2 bytes for telling how much data there is appended to the call
uint256 creationSize = 0x41 + extraLength;
uint256 runSize = creationSize - 10;
uint256 dataPtr;
uint256 ptr;
// solhint-disable-next-line no-inline-assembly
assembly {
ret := mload(0x40)
mstore(ret, creationSize)
mstore(0x40, add(ret, creationSize))
ptr := add(ret, 0x20)
// -------------------------------------------------------------------------------------------------------------
// CREATION (10 bytes)
// -------------------------------------------------------------------------------------------------------------
// 61 runtime | PUSH2 runtime (r) | r | –
mstore(
ptr,
0x6100000000000000000000000000000000000000000000000000000000000000
)
mstore(add(ptr, 0x01), shl(240, runSize)) // size of the contract running bytecode (16 bits)
// creation size = 0a
// 3d | RETURNDATASIZE | 0 r | –
// 81 | DUP2 | r 0 r | –
// 60 creation | PUSH1 creation (c) | c r 0 r | –
// 3d | RETURNDATASIZE | 0 c r 0 r | –
// 39 | CODECOPY | 0 r | [0-runSize): runtime code
// f3 | RETURN | | [0-runSize): runtime code
// -------------------------------------------------------------------------------------------------------------
// RUNTIME (55 bytes + extraLength)
// -------------------------------------------------------------------------------------------------------------
// 3d | RETURNDATASIZE | 0 | –
// 3d | RETURNDATASIZE | 0 0 | –
// 3d | RETURNDATASIZE | 0 0 0 | –
// 3d | RETURNDATASIZE | 0 0 0 0 | –
// 36 | CALLDATASIZE | cds 0 0 0 0 | –
// 3d | RETURNDATASIZE | 0 cds 0 0 0 0 | –
// 3d | RETURNDATASIZE | 0 0 cds 0 0 0 0 | –
// 37 | CALLDATACOPY | 0 0 0 0 | [0, cds) = calldata
// 61 | PUSH2 extra | extra 0 0 0 0 | [0, cds) = calldata
mstore(
add(ptr, 0x03),
0x3d81600a3d39f33d3d3d3d363d3d376100000000000000000000000000000000
)
mstore(add(ptr, 0x13), shl(240, extraLength))
// 60 0x37 | PUSH1 0x37 | 0x37 extra 0 0 0 0 | [0, cds) = calldata // 0x37 (55) is runtime size - data
// 36 | CALLDATASIZE | cds 0x37 extra 0 0 0 0 | [0, cds) = calldata
// 39 | CODECOPY | 0 0 0 0 | [0, cds) = calldata, [cds, cds+extra) = extraData
// 36 | CALLDATASIZE | cds 0 0 0 0 | [0, cds) = calldata, [cds, cds+extra) = extraData
// 61 extra | PUSH2 extra | extra cds 0 0 0 0 | [0, cds) = calldata, [cds, cds+extra) = extraData
mstore(
add(ptr, 0x15),
0x6037363936610000000000000000000000000000000000000000000000000000
)
mstore(add(ptr, 0x1b), shl(240, extraLength))
// 01 | ADD | cds+extra 0 0 0 0 | [0, cds) = calldata, [cds, cds+extra) = extraData
// 3d | RETURNDATASIZE | 0 cds+extra 0 0 0 0 | [0, cds) = calldata, [cds, cds+extra) = extraData
// 73 addr | PUSH20 0x123… | addr 0 cds+extra 0 0 0 0 | [0, cds) = calldata, [cds, cds+extra) = extraData
mstore(
add(ptr, 0x1d),
0x013d730000000000000000000000000000000000000000000000000000000000
)
mstore(add(ptr, 0x20), shl(0x60, implementation))
// 5a | GAS | gas addr 0 cds+extra 0 0 0 0 | [0, cds) = calldata, [cds, cds+extra) = extraData
// f4 | DELEGATECALL | success 0 0 | [0, cds) = calldata, [cds, cds+extra) = extraData
// 3d | RETURNDATASIZE | rds success 0 0 | [0, cds) = calldata, [cds, cds+extra) = extraData
// 3d | RETURNDATASIZE | rds rds success 0 0 | [0, cds) = calldata, [cds, cds+extra) = extraData
// 93 | SWAP4 | 0 rds success 0 rds | [0, cds) = calldata, [cds, cds+extra) = extraData
// 80 | DUP1 | 0 0 rds success 0 rds | [0, cds) = calldata, [cds, cds+extra) = extraData
// 3e | RETURNDATACOPY | success 0 rds | [0, rds) = return data (there might be some irrelevant leftovers in memory [rds, cds+0x37) when rds < cds+0x37)
// 60 0x35 | PUSH1 0x35 | 0x35 sucess 0 rds | [0, rds) = return data
// 57 | JUMPI | 0 rds | [0, rds) = return data
// fd | REVERT | – | [0, rds) = return data
// 5b | JUMPDEST | 0 rds | [0, rds) = return data
// f3 | RETURN | – | [0, rds) = return data
mstore(
add(ptr, 0x34),
0x5af43d3d93803e603557fd5bf300000000000000000000000000000000000000
)
}
// -------------------------------------------------------------------------------------------------------------
// APPENDED DATA (Accessible from extcodecopy)
// (but also send as appended data to the delegatecall)
// -------------------------------------------------------------------------------------------------------------
extraLength -= 2;
uint256 counter = extraLength;
uint256 copyPtr = ptr + 0x41;
// solhint-disable-next-line no-inline-assembly
assembly {
dataPtr := add(data, 32)
}
for (; counter >= 32; counter -= 32) {
// solhint-disable-next-line no-inline-assembly
assembly {
mstore(copyPtr, mload(dataPtr))
}
copyPtr += 32;
dataPtr += 32;
}
uint256 mask = ~(256 ** (32 - counter) - 1);
// solhint-disable-next-line no-inline-assembly
assembly {
mstore(copyPtr, and(mload(dataPtr), mask))
}
copyPtr += counter;
// solhint-disable-next-line no-inline-assembly
assembly {
mstore(copyPtr, shl(240, extraLength))
}
}
}
/// @notice Creates a clone proxy of the implementation contract, with immutable args. Uses CREATE3
/// to implement deterministic deployment.
/// @dev data cannot exceed 65535 bytes, since 2 bytes are used to store the data length
/// @param implementation The implementation contract to clone
/// @param data Encoded immutable args
/// @param salt The salt used by the CREATE3 deployment
/// @return deployed The address of the created clone
function clone3(
address implementation,
bytes memory data,
bytes32 salt
) internal returns (address deployed) {
return clone3(implementation, data, salt, 0);
}
/// @notice Creates a clone proxy of the implementation contract, with immutable args. Uses CREATE3
/// to implement deterministic deployment.
/// @dev data cannot exceed 65535 bytes, since 2 bytes are used to store the data length
/// @param implementation The implementation contract to clone
/// @param data Encoded immutable args
/// @param salt The salt used by the CREATE3 deployment
/// @param value The amount of wei to transfer to the created clone
/// @return deployed The address of the created clone
function clone3(
address implementation,
bytes memory data,
bytes32 salt,
uint256 value
) internal returns (address deployed) {
// unrealistic for memory ptr or data length to exceed 256 bits
unchecked {
uint256 extraLength = data.length + 2; // +2 bytes for telling how much data there is appended to the call
uint256 creationSize = 0x43 + extraLength;
uint256 ptr;
// solhint-disable-next-line no-inline-assembly
assembly {
ptr := mload(0x40)
// -------------------------------------------------------------------------------------------------------------
// CREATION (11 bytes)
// -------------------------------------------------------------------------------------------------------------
// 3d | RETURNDATASIZE | 0 | –
// 61 runtime | PUSH2 runtime (r) | r 0 | –
mstore(
ptr,
0x3d61000000000000000000000000000000000000000000000000000000000000
)
mstore(add(ptr, 0x02), shl(240, sub(creationSize, 11))) // size of the contract running bytecode (16 bits)
// creation size = 0b
// 80 | DUP1 | r r 0 | –
// 60 creation | PUSH1 creation (c) | c r r 0 | –
// 3d | RETURNDATASIZE | 0 c r r 0 | –
// 39 | CODECOPY | r 0 | [0-2d]: runtime code
// 81 | DUP2 | 0 c 0 | [0-2d]: runtime code
// f3 | RETURN | 0 | [0-2d]: runtime code
mstore(
add(ptr, 0x04),
0x80600b3d3981f300000000000000000000000000000000000000000000000000
)
// -------------------------------------------------------------------------------------------------------------
// RUNTIME
// -------------------------------------------------------------------------------------------------------------
// 36 | CALLDATASIZE | cds | –
// 3d | RETURNDATASIZE | 0 cds | –
// 3d | RETURNDATASIZE | 0 0 cds | –
// 37 | CALLDATACOPY | – | [0, cds] = calldata
// 61 | PUSH2 extra | extra | [0, cds] = calldata
mstore(
add(ptr, 0x0b),
0x363d3d3761000000000000000000000000000000000000000000000000000000
)
mstore(add(ptr, 0x10), shl(240, extraLength))
// 60 0x38 | PUSH1 0x38 | 0x38 extra | [0, cds] = calldata // 0x38 (56) is runtime size - data
// 36 | CALLDATASIZE | cds 0x38 extra | [0, cds] = calldata
// 39 | CODECOPY | _ | [0, cds] = calldata
// 3d | RETURNDATASIZE | 0 | [0, cds] = calldata
// 3d | RETURNDATASIZE | 0 0 | [0, cds] = calldata
// 3d | RETURNDATASIZE | 0 0 0 | [0, cds] = calldata
// 36 | CALLDATASIZE | cds 0 0 0 | [0, cds] = calldata
// 61 extra | PUSH2 extra | extra cds 0 0 0 | [0, cds] = calldata
mstore(
add(ptr, 0x12),
0x603836393d3d3d36610000000000000000000000000000000000000000000000
)
mstore(add(ptr, 0x1b), shl(240, extraLength))
// 01 | ADD | cds+extra 0 0 0 | [0, cds] = calldata
// 3d | RETURNDATASIZE | 0 cds 0 0 0 | [0, cds] = calldata
// 73 addr | PUSH20 0x123… | addr 0 cds 0 0 0 | [0, cds] = calldata
mstore(
add(ptr, 0x1d),
0x013d730000000000000000000000000000000000000000000000000000000000
)
mstore(add(ptr, 0x20), shl(0x60, implementation))
// 5a | GAS | gas addr 0 cds 0 0 0 | [0, cds] = calldata
// f4 | DELEGATECALL | success 0 | [0, cds] = calldata
// 3d | RETURNDATASIZE | rds success 0 | [0, cds] = calldata
// 82 | DUP3 | 0 rds success 0 | [0, cds] = calldata
// 80 | DUP1 | 0 0 rds success 0 | [0, cds] = calldata
// 3e | RETURNDATACOPY | success 0 | [0, rds] = return data (there might be some irrelevant leftovers in memory [rds, cds] when rds < cds)
// 90 | SWAP1 | 0 success | [0, rds] = return data
// 3d | RETURNDATASIZE | rds 0 success | [0, rds] = return data
// 91 | SWAP2 | success 0 rds | [0, rds] = return data
// 60 0x36 | PUSH1 0x36 | 0x36 sucess 0 rds | [0, rds] = return data
// 57 | JUMPI | 0 rds | [0, rds] = return data
// fd | REVERT | – | [0, rds] = return data
// 5b | JUMPDEST | 0 rds | [0, rds] = return data
// f3 | RETURN | – | [0, rds] = return data
mstore(
add(ptr, 0x34),
0x5af43d82803e903d91603657fd5bf30000000000000000000000000000000000
)
}
// -------------------------------------------------------------------------------------------------------------
// APPENDED DATA (Accessible from extcodecopy)
// (but also send as appended data to the delegatecall)
// -------------------------------------------------------------------------------------------------------------
extraLength -= 2;
uint256 counter = extraLength;
uint256 copyPtr = ptr + 0x43;
uint256 dataPtr;
// solhint-disable-next-line no-inline-assembly
assembly {
dataPtr := add(data, 32)
}
for (; counter >= 32; counter -= 32) {
// solhint-disable-next-line no-inline-assembly
assembly {
mstore(copyPtr, mload(dataPtr))
}
copyPtr += 32;
dataPtr += 32;
}
uint256 mask = ~(256 ** (32 - counter) - 1);
// solhint-disable-next-line no-inline-assembly
assembly {
mstore(copyPtr, and(mload(dataPtr), mask))
}
copyPtr += counter;
// solhint-disable-next-line no-inline-assembly
assembly {
mstore(copyPtr, shl(240, extraLength))
}
/// @solidity memory-safe-assembly
// solhint-disable-next-line no-inline-assembly
assembly {
// Store the `_PROXY_BYTECODE` into scratch space.
mstore(0x00, _CREATE3_PROXY_BYTECODE)
// Deploy a new contract with our pre-made bytecode via CREATE2.
let proxy := create2(0, 0x10, 0x10, salt)
// If the result of `create2` is the zero address, revert.
if iszero(proxy) {
// Store the function selector of `CreateFail()`.
mstore(0x00, 0xebfef188)
// Revert with (offset, size).
revert(0x1c, 0x04)
}
// Store the proxy's address.
mstore(0x14, proxy)
// 0xd6 = 0xc0 (short RLP prefix) + 0x16 (length of: 0x94 ++ proxy ++ 0x01).
// 0x94 = 0x80 + 0x14 (0x14 = the length of an address, 20 bytes, in hex).
mstore(0x00, 0xd694)
// Nonce of the proxy contract (1).
mstore8(0x34, 0x01)
deployed := and(
keccak256(0x1e, 0x17),
0xffffffffffffffffffffffffffffffffffffffff
)
// If the `call` fails or the code size of `deployed` is zero, revert.
// The second argument of the or() call is evaluated first, which is important
// here because extcodesize(deployed) is only non-zero after the call() to the proxy
// is made and the contract is successfully deployed.
if or(
iszero(extcodesize(deployed)),
iszero(
call(
gas(), // Gas remaining.
proxy, // Proxy's address.
value, // Ether value.
ptr, // Pointer to the creation code
creationSize, // Size of the creation code
0x00, // Offset of output.
0x00 // Length of output.
)
)
) {
// Store the function selector of `InitializeFail()`.
mstore(0x00, 0x8f86d2f1)
// Revert with (offset, size).
revert(0x1c, 0x04)
}
}
}
}
/// @notice Returns the CREATE3 deterministic address of the contract deployed via cloneDeterministic().
/// @dev Forked from https://github.com/Vectorized/solady/blob/main/src/utils/CREATE3.sol
/// @param salt The salt used by the CREATE3 deployment
function addressOfClone3(
bytes32 salt
) internal view returns (address deployed) {
/// @solidity memory-safe-assembly
// solhint-disable-next-line no-inline-assembly
assembly {
// Cache the free memory pointer.
let m := mload(0x40)
// Store `address(this)`.
mstore(0x00, address())
// Store the prefix.
mstore8(0x0b, 0xff)
// Store the salt.
mstore(0x20, salt)
// Store the bytecode hash.
mstore(0x40, _CREATE3_PROXY_BYTECODE_HASH)
// Store the proxy's address.
mstore(0x14, keccak256(0x0b, 0x55))
// Restore the free memory pointer.
mstore(0x40, m)
// 0xd6 = 0xc0 (short RLP prefix) + 0x16 (length of: 0x94 ++ proxy ++ 0x01).
// 0x94 = 0x80 + 0x14 (0x14 = the length of an address, 20 bytes, in hex).
mstore(0x00, 0xd694)
// Nonce of the proxy contract (1).
mstore8(0x34, 0x01)
deployed := and(
keccak256(0x1e, 0x17),
0xffffffffffffffffffffffffffffffffffffffff
)
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
/**
* @title LibMulticaller
* @author vectorized.eth
* @notice Library to read the `msg.sender` of the multicaller with sender contract.
*
* @dev Note:
* The functions in this library do NOT guard against reentrancy.
* A single transaction can recurse through different Multicallers
* (e.g. `MulticallerWithSender -> contract -> MulticallerWithSigner -> contract`).
*
* Think of these functions like `msg.sender`.
*
* If your contract `C` can handle reentrancy safely with plain old `msg.sender`
* for any `A -> C -> B -> C`, you should be fine substituting `msg.sender` with these functions.
*/
library LibMulticaller {
/**
* @dev The address of the multicaller contract.
*/
address internal constant MULTICALLER = 0x0000000000002Bdbf1Bf3279983603Ec279CC6dF;
/**
* @dev The address of the multicaller with sender contract.
*/
address internal constant MULTICALLER_WITH_SENDER = 0x00000000002Fd5Aeb385D324B580FCa7c83823A0;
/**
* @dev The address of the multicaller with signer contract.
*/
address internal constant MULTICALLER_WITH_SIGNER = 0x000000000000D9ECebf3C23529de49815Dac1c4c;
/**
* @dev Returns the caller of `aggregateWithSender` on `MULTICALLER_WITH_SENDER`.
*/
function multicallerSender() internal view returns (address result) {
return at(MULTICALLER_WITH_SENDER);
}
/**
* @dev Returns the signer of `aggregateWithSigner` on `MULTICALLER_WITH_SIGNER`.
*/
function multicallerSigner() internal view returns (address result) {
return at(MULTICALLER_WITH_SIGNER);
}
/**
* @dev Returns the caller of `aggregateWithSender` on `MULTICALLER_WITH_SENDER`,
* if the current context's `msg.sender` is `MULTICALLER_WITH_SENDER`.
* Otherwise, returns `msg.sender`.
*/
function sender() internal view returns (address result) {
return resolve(MULTICALLER_WITH_SENDER);
}
/**
* @dev Returns the caller of `aggregateWithSigner` on `MULTICALLER_WITH_SIGNER`,
* if the current context's `msg.sender` is `MULTICALLER_WITH_SIGNER`.
* Otherwise, returns `msg.sender`.
*/
function signer() internal view returns (address) {
return resolve(MULTICALLER_WITH_SIGNER);
}
/**
* @dev Returns the caller or signer at `a`.
* @param a The multicaller with sender / signer.
*/
function at(address a) internal view returns (address result) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x00, 0x00)
if iszero(staticcall(gas(), a, codesize(), 0x00, 0x00, 0x20)) {
revert(codesize(), codesize()) // For better gas estimation.
}
result := mload(0x00)
}
}
/**
* @dev Returns the caller or signer at `a`, if the caller is `a`.
* @param a The multicaller with sender / signer.
*/
function resolve(address a) internal view returns (address result) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x00, caller())
if eq(caller(), a) {
if iszero(staticcall(gas(), a, codesize(), 0x00, 0x00, 0x20)) {
revert(codesize(), codesize()) // For better gas estimation.
}
}
result := mload(0x00)
}
}
/**
* @dev Returns the caller of `aggregateWithSender` on `MULTICALLER_WITH_SENDER`,
* if the current context's `msg.sender` is `MULTICALLER_WITH_SENDER`.
* Returns the signer of `aggregateWithSigner` on `MULTICALLER_WITH_SIGNER`,
* if the current context's `msg.sender` is `MULTICALLER_WITH_SIGNER`.
* Otherwise, returns `msg.sender`.
*/
function senderOrSigner() internal view returns (address result) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x00, caller())
let withSender := MULTICALLER_WITH_SENDER
if eq(caller(), withSender) {
if iszero(staticcall(gas(), withSender, codesize(), 0x00, 0x00, 0x20)) {
revert(codesize(), codesize()) // For better gas estimation.
}
}
let withSigner := MULTICALLER_WITH_SIGNER
if eq(caller(), withSigner) {
if iszero(staticcall(gas(), withSigner, codesize(), 0x00, 0x00, 0x20)) {
revert(codesize(), codesize()) // For better gas estimation.
}
}
result := mload(0x00)
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {SafeCast} from "./SafeCast.sol";
import {FullMath} from "./FullMath.sol";
import {UnsafeMath} from "./UnsafeMath.sol";
import {FixedPoint96} from "./FixedPoint96.sol";
/// @title Functions based on Q64.96 sqrt price and liquidity
/// @notice Contains the math that uses square root of price as a Q64.96 and liquidity to compute deltas
library SqrtPriceMath {
using SafeCast for uint256;
error InvalidPriceOrLiquidity();
error InvalidPrice();
error NotEnoughLiquidity();
error PriceOverflow();
/// @notice Gets the next sqrt price given a delta of currency0
/// @dev Always rounds up, because in the exact output case (increasing price) we need to move the price at least
/// far enough to get the desired output amount, and in the exact input case (decreasing price) we need to move the
/// price less in order to not send too much output.
/// The most precise formula for this is liquidity * sqrtPX96 / (liquidity +- amount * sqrtPX96),
/// if this is impossible because of overflow, we calculate liquidity / (liquidity / sqrtPX96 +- amount).
/// @param sqrtPX96 The starting price, i.e. before accounting for the currency0 delta
/// @param liquidity The amount of usable liquidity
/// @param amount How much of currency0 to add or remove from virtual reserves
/// @param add Whether to add or remove the amount of currency0
/// @return The price after adding or removing amount, depending on add
function getNextSqrtPriceFromAmount0RoundingUp(uint160 sqrtPX96, uint128 liquidity, uint256 amount, bool add)
internal
pure
returns (uint160)
{
// we short circuit amount == 0 because the result is otherwise not guaranteed to equal the input price
if (amount == 0) return sqrtPX96;
uint256 numerator1 = uint256(liquidity) << FixedPoint96.RESOLUTION;
if (add) {
unchecked {
uint256 product = amount * sqrtPX96;
if (product / amount == sqrtPX96) {
uint256 denominator = numerator1 + product;
if (denominator >= numerator1) {
// always fits in 160 bits
return uint160(FullMath.mulDivRoundingUp(numerator1, sqrtPX96, denominator));
}
}
}
// denominator is checked for overflow
return uint160(UnsafeMath.divRoundingUp(numerator1, (numerator1 / sqrtPX96) + amount));
} else {
unchecked {
uint256 product = amount * sqrtPX96;
// if the product overflows, we know the denominator underflows
// in addition, we must check that the denominator does not underflow
// equivalent: if (product / amount != sqrtPX96 || numerator1 <= product) revert PriceOverflow();
assembly ("memory-safe") {
if iszero(
and(
eq(div(product, amount), and(sqrtPX96, 0xffffffffffffffffffffffffffffffffffffffff)),
gt(numerator1, product)
)
) {
mstore(0, 0xf5c787f1) // selector for PriceOverflow()
revert(0x1c, 0x04)
}
}
uint256 denominator = numerator1 - product;
return FullMath.mulDivRoundingUp(numerator1, sqrtPX96, denominator).toUint160();
}
}
}
/// @notice Gets the next sqrt price given a delta of currency1
/// @dev Always rounds down, because in the exact output case (decreasing price) we need to move the price at least
/// far enough to get the desired output amount, and in the exact input case (increasing price) we need to move the
/// price less in order to not send too much output.
/// The formula we compute is within <1 wei of the lossless version: sqrtPX96 +- amount / liquidity
/// @param sqrtPX96 The starting price, i.e., before accounting for the currency1 delta
/// @param liquidity The amount of usable liquidity
/// @param amount How much of currency1 to add, or remove, from virtual reserves
/// @param add Whether to add, or remove, the amount of currency1
/// @return The price after adding or removing `amount`
function getNextSqrtPriceFromAmount1RoundingDown(uint160 sqrtPX96, uint128 liquidity, uint256 amount, bool add)
internal
pure
returns (uint160)
{
// if we're adding (subtracting), rounding down requires rounding the quotient down (up)
// in both cases, avoid a mulDiv for most inputs
if (add) {
uint256 quotient = (
amount <= type(uint160).max
? (amount << FixedPoint96.RESOLUTION) / liquidity
: FullMath.mulDiv(amount, FixedPoint96.Q96, liquidity)
);
return (uint256(sqrtPX96) + quotient).toUint160();
} else {
uint256 quotient = (
amount <= type(uint160).max
? UnsafeMath.divRoundingUp(amount << FixedPoint96.RESOLUTION, liquidity)
: FullMath.mulDivRoundingUp(amount, FixedPoint96.Q96, liquidity)
);
// equivalent: if (sqrtPX96 <= quotient) revert NotEnoughLiquidity();
assembly ("memory-safe") {
if iszero(gt(and(sqrtPX96, 0xffffffffffffffffffffffffffffffffffffffff), quotient)) {
mstore(0, 0x4323a555) // selector for NotEnoughLiquidity()
revert(0x1c, 0x04)
}
}
// always fits 160 bits
unchecked {
return uint160(sqrtPX96 - quotient);
}
}
}
/// @notice Gets the next sqrt price given an input amount of currency0 or currency1
/// @dev Throws if price or liquidity are 0, or if the next price is out of bounds
/// @param sqrtPX96 The starting price, i.e., before accounting for the input amount
/// @param liquidity The amount of usable liquidity
/// @param amountIn How much of currency0, or currency1, is being swapped in
/// @param zeroForOne Whether the amount in is currency0 or currency1
/// @return uint160 The price after adding the input amount to currency0 or currency1
function getNextSqrtPriceFromInput(uint160 sqrtPX96, uint128 liquidity, uint256 amountIn, bool zeroForOne)
internal
pure
returns (uint160)
{
// equivalent: if (sqrtPX96 == 0 || liquidity == 0) revert InvalidPriceOrLiquidity();
assembly ("memory-safe") {
if or(
iszero(and(sqrtPX96, 0xffffffffffffffffffffffffffffffffffffffff)),
iszero(and(liquidity, 0xffffffffffffffffffffffffffffffff))
) {
mstore(0, 0x4f2461b8) // selector for InvalidPriceOrLiquidity()
revert(0x1c, 0x04)
}
}
// round to make sure that we don't pass the target price
return zeroForOne
? getNextSqrtPriceFromAmount0RoundingUp(sqrtPX96, liquidity, amountIn, true)
: getNextSqrtPriceFromAmount1RoundingDown(sqrtPX96, liquidity, amountIn, true);
}
/// @notice Gets the next sqrt price given an output amount of currency0 or currency1
/// @dev Throws if price or liquidity are 0 or the next price is out of bounds
/// @param sqrtPX96 The starting price before accounting for the output amount
/// @param liquidity The amount of usable liquidity
/// @param amountOut How much of currency0, or currency1, is being swapped out
/// @param zeroForOne Whether the amount out is currency1 or currency0
/// @return uint160 The price after removing the output amount of currency0 or currency1
function getNextSqrtPriceFromOutput(uint160 sqrtPX96, uint128 liquidity, uint256 amountOut, bool zeroForOne)
internal
pure
returns (uint160)
{
// equivalent: if (sqrtPX96 == 0 || liquidity == 0) revert InvalidPriceOrLiquidity();
assembly ("memory-safe") {
if or(
iszero(and(sqrtPX96, 0xffffffffffffffffffffffffffffffffffffffff)),
iszero(and(liquidity, 0xffffffffffffffffffffffffffffffff))
) {
mstore(0, 0x4f2461b8) // selector for InvalidPriceOrLiquidity()
revert(0x1c, 0x04)
}
}
// round to make sure that we pass the target price
return zeroForOne
? getNextSqrtPriceFromAmount1RoundingDown(sqrtPX96, liquidity, amountOut, false)
: getNextSqrtPriceFromAmount0RoundingUp(sqrtPX96, liquidity, amountOut, false);
}
/// @notice Gets the amount0 delta between two prices
/// @dev Calculates liquidity / sqrt(lower) - liquidity / sqrt(upper),
/// i.e. liquidity * (sqrt(upper) - sqrt(lower)) / (sqrt(upper) * sqrt(lower))
/// @param sqrtPriceAX96 A sqrt price
/// @param sqrtPriceBX96 Another sqrt price
/// @param liquidity The amount of usable liquidity
/// @param roundUp Whether to round the amount up or down
/// @return uint256 Amount of currency0 required to cover a position of size liquidity between the two passed prices
function getAmount0Delta(uint160 sqrtPriceAX96, uint160 sqrtPriceBX96, uint128 liquidity, bool roundUp)
internal
pure
returns (uint256)
{
unchecked {
if (sqrtPriceAX96 > sqrtPriceBX96) (sqrtPriceAX96, sqrtPriceBX96) = (sqrtPriceBX96, sqrtPriceAX96);
// equivalent: if (sqrtPriceAX96 == 0) revert InvalidPrice();
assembly ("memory-safe") {
if iszero(and(sqrtPriceAX96, 0xffffffffffffffffffffffffffffffffffffffff)) {
mstore(0, 0x00bfc921) // selector for InvalidPrice()
revert(0x1c, 0x04)
}
}
uint256 numerator1 = uint256(liquidity) << FixedPoint96.RESOLUTION;
uint256 numerator2 = sqrtPriceBX96 - sqrtPriceAX96;
return roundUp
? UnsafeMath.divRoundingUp(FullMath.mulDivRoundingUp(numerator1, numerator2, sqrtPriceBX96), sqrtPriceAX96)
: FullMath.mulDiv(numerator1, numerator2, sqrtPriceBX96) / sqrtPriceAX96;
}
}
/// @notice Equivalent to: `a >= b ? a - b : b - a`
function absDiff(uint160 a, uint160 b) internal pure returns (uint256 res) {
assembly ("memory-safe") {
let diff :=
sub(and(a, 0xffffffffffffffffffffffffffffffffffffffff), and(b, 0xffffffffffffffffffffffffffffffffffffffff))
// mask = 0 if a >= b else -1 (all 1s)
let mask := sar(255, diff)
// if a >= b, res = a - b = 0 ^ (a - b)
// if a < b, res = b - a = ~~(b - a) = ~(-(b - a) - 1) = ~(a - b - 1) = (-1) ^ (a - b - 1)
// either way, res = mask ^ (a - b + mask)
res := xor(mask, add(mask, diff))
}
}
/// @notice Gets the amount1 delta between two prices
/// @dev Calculates liquidity * (sqrt(upper) - sqrt(lower))
/// @param sqrtPriceAX96 A sqrt price
/// @param sqrtPriceBX96 Another sqrt price
/// @param liquidity The amount of usable liquidity
/// @param roundUp Whether to round the amount up, or down
/// @return amount1 Amount of currency1 required to cover a position of size liquidity between the two passed prices
function getAmount1Delta(uint160 sqrtPriceAX96, uint160 sqrtPriceBX96, uint128 liquidity, bool roundUp)
internal
pure
returns (uint256 amount1)
{
uint256 numerator = absDiff(sqrtPriceAX96, sqrtPriceBX96);
uint256 denominator = FixedPoint96.Q96;
uint256 _liquidity = uint256(liquidity);
/**
* Equivalent to:
* amount1 = roundUp
* ? FullMath.mulDivRoundingUp(liquidity, sqrtPriceBX96 - sqrtPriceAX96, FixedPoint96.Q96)
* : FullMath.mulDiv(liquidity, sqrtPriceBX96 - sqrtPriceAX96, FixedPoint96.Q96);
* Cannot overflow because `type(uint128).max * type(uint160).max >> 96 < (1 << 192)`.
*/
amount1 = FullMath.mulDiv(_liquidity, numerator, denominator);
assembly ("memory-safe") {
amount1 := add(amount1, and(gt(mulmod(_liquidity, numerator, denominator), 0), roundUp))
}
}
/// @notice Helper that gets signed currency0 delta
/// @param sqrtPriceAX96 A sqrt price
/// @param sqrtPriceBX96 Another sqrt price
/// @param liquidity The change in liquidity for which to compute the amount0 delta
/// @return int256 Amount of currency0 corresponding to the passed liquidityDelta between the two prices
function getAmount0Delta(uint160 sqrtPriceAX96, uint160 sqrtPriceBX96, int128 liquidity)
internal
pure
returns (int256)
{
unchecked {
return liquidity < 0
? getAmount0Delta(sqrtPriceAX96, sqrtPriceBX96, uint128(-liquidity), false).toInt256()
: -getAmount0Delta(sqrtPriceAX96, sqrtPriceBX96, uint128(liquidity), true).toInt256();
}
}
/// @notice Helper that gets signed currency1 delta
/// @param sqrtPriceAX96 A sqrt price
/// @param sqrtPriceBX96 Another sqrt price
/// @param liquidity The change in liquidity for which to compute the amount1 delta
/// @return int256 Amount of currency1 corresponding to the passed liquidityDelta between the two prices
function getAmount1Delta(uint160 sqrtPriceAX96, uint160 sqrtPriceBX96, int128 liquidity)
internal
pure
returns (int256)
{
unchecked {
return liquidity < 0
? getAmount1Delta(sqrtPriceAX96, sqrtPriceBX96, uint128(-liquidity), false).toInt256()
: -getAmount1Delta(sqrtPriceAX96, sqrtPriceBX96, uint128(liquidity), true).toInt256();
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.19;
import {PoolKey} from "@uniswap/v4-core/src/types/PoolKey.sol";
import {IBunniHook} from "../interfaces/IBunniHook.sol";
function queryTwap(PoolKey memory poolKey, uint24 twapSecondsAgo) view returns (int24 arithmeticMeanTick) {
IBunniHook hook = IBunniHook(address(poolKey.hooks));
uint32[] memory secondsAgos = new uint32[](2);
secondsAgos[0] = twapSecondsAgo;
secondsAgos[1] = 0;
int56[] memory tickCumulatives = hook.observe(poolKey, secondsAgos);
int56 tickCumulativesDelta = tickCumulatives[1] - tickCumulatives[0];
return int24(tickCumulativesDelta / int56(uint56(twapSecondsAgo)));
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.19;
import {TickMath} from "@uniswap/v4-core/src/libraries/TickMath.sol";
import {CustomRevert} from "@uniswap/v4-core/src/libraries/CustomRevert.sol";
import {IPoolManager, PoolKey} from "@uniswap/v4-core/src/interfaces/IPoolManager.sol";
import {FixedPointMathLib} from "solady/utils/FixedPointMathLib.sol";
import "../base/Constants.sol";
import {IHooklet} from "../interfaces/IHooklet.sol";
import {IBunniHub} from "../interfaces/IBunniHub.sol";
import {IBunniToken} from "../interfaces/IBunniToken.sol";
/// @dev Adapted from Uniswap v4's Hooks.sol
library HookletLib {
using CustomRevert for bytes4;
using HookletLib for IHooklet;
using FixedPointMathLib for *;
uint160 internal constant ALL_FLAGS_MASK = 0xFFF;
uint160 internal constant BEFORE_TRANSFER_FLAG = 1 << 11;
uint160 internal constant AFTER_TRANSFER_FLAG = 1 << 10;
uint160 internal constant BEFORE_INITIALIZE_FLAG = 1 << 9;
uint160 internal constant AFTER_INITIALIZE_FLAG = 1 << 8;
uint160 internal constant BEFORE_DEPOSIT_FLAG = 1 << 7;
uint160 internal constant AFTER_DEPOSIT_FLAG = 1 << 6;
uint160 internal constant BEFORE_WITHDRAW_FLAG = 1 << 5;
uint160 internal constant AFTER_WITHDRAW_FLAG = 1 << 4;
uint160 internal constant BEFORE_SWAP_FLAG = 1 << 3;
uint160 internal constant BEFORE_SWAP_OVERRIDE_FEE_FLAG = 1 << 2;
uint160 internal constant BEFORE_SWAP_OVERRIDE_PRICE_FLAG = 1 << 1;
uint160 internal constant AFTER_SWAP_FLAG = 1;
error HookletLib__FailedHookletCall();
error HookletLib__InvalidHookletResponse();
function callHooklet(IHooklet self, bytes4 selector, bytes memory data) internal returns (bytes memory result) {
bytes4 decodedSelector;
assembly ("memory-safe") {
if iszero(call(gas(), self, 0, add(data, 0x20), mload(data), 0, 0)) {
if iszero(returndatasize()) {
// if the call failed without a revert reason, revert with `HookletLib__FailedHookletCall()`
mstore(0, 0x855e32e7)
revert(0x1c, 0x04)
}
// bubble up revert
let fmp := mload(0x40)
returndatacopy(fmp, 0, returndatasize())
revert(fmp, returndatasize())
}
// allocate result byte array from the free memory pointer
result := mload(0x40)
// store new free memory pointer at the end of the array padded to 32 bytes
mstore(0x40, add(result, and(add(returndatasize(), 0x3f), not(0x1f))))
// store length in memory
mstore(result, returndatasize())
// copy return data to result
returndatacopy(add(result, 0x20), 0, returndatasize())
// get the selector from the return data
decodedSelector := mload(add(result, 0x20))
}
if (decodedSelector != selector) HookletLib__InvalidHookletResponse.selector.revertWith();
}
function staticcallHooklet(IHooklet self, bytes4 selector, bytes memory data)
internal
view
returns (bool success, bytes memory result)
{
bytes4 decodedSelector;
assembly ("memory-safe") {
switch staticcall(gas(), self, add(data, 0x20), mload(data), 0, 0)
case 0 {
// call reverted, set success to false
success := 0
}
default {
// call succeeded, set success to true
success := 1
// allocate result byte array from the free memory pointer
result := mload(0x40)
// store new free memory pointer at the end of the array padded to 32 bytes
mstore(0x40, add(result, and(add(returndatasize(), 0x3f), not(0x1f))))
// store length in memory
mstore(result, returndatasize())
// copy return data to result
returndatacopy(add(result, 0x20), 0, returndatasize())
// get the selector from the return data
decodedSelector := mload(add(result, 0x20))
}
}
if (decodedSelector != selector) return (false, bytes(""));
}
modifier noSelfCall(IHooklet self, address sender) {
if (sender != address(self)) {
_;
}
}
/// @dev The hasPermission check is done outside of this function in order to avoid unnecessarily constructing `key`
function hookletBeforeTransfer(
IHooklet self,
address sender,
PoolKey memory key,
IBunniToken bunniToken,
address from,
address to,
uint256 amount
) internal noSelfCall(self, sender) {
self.callHooklet(
IHooklet.beforeTransfer.selector,
abi.encodeCall(IHooklet.beforeTransfer, (sender, key, bunniToken, from, to, amount))
);
}
/// @dev The hasPermission check is done outside of this function in order to avoid unnecessarily constructing `key`
function hookletAfterTransfer(
IHooklet self,
address sender,
PoolKey memory key,
IBunniToken bunniToken,
address from,
address to,
uint256 amount
) internal noSelfCall(self, sender) {
self.callHooklet(
IHooklet.afterTransfer.selector,
abi.encodeCall(IHooklet.afterTransfer, (sender, key, bunniToken, from, to, amount))
);
}
function hookletBeforeInitialize(IHooklet self, address sender, IBunniHub.DeployBunniTokenParams calldata params)
internal
noSelfCall(self, sender)
{
if (self.hasPermission(BEFORE_INITIALIZE_FLAG)) {
self.callHooklet(
IHooklet.beforeInitialize.selector, abi.encodeCall(IHooklet.beforeInitialize, (sender, params))
);
}
}
function hookletAfterInitialize(
IHooklet self,
address sender,
IBunniHub.DeployBunniTokenParams calldata params,
IHooklet.InitializeReturnData memory returnData
) internal noSelfCall(self, sender) {
if (self.hasPermission(AFTER_INITIALIZE_FLAG)) {
self.callHooklet(
IHooklet.afterInitialize.selector,
abi.encodeCall(IHooklet.afterInitialize, (sender, params, returnData))
);
}
}
function hookletBeforeDeposit(IHooklet self, address sender, IBunniHub.DepositParams calldata params)
internal
noSelfCall(self, sender)
{
if (self.hasPermission(BEFORE_DEPOSIT_FLAG)) {
self.callHooklet(IHooklet.beforeDeposit.selector, abi.encodeCall(IHooklet.beforeDeposit, (sender, params)));
}
}
function hookletBeforeDepositView(IHooklet self, address sender, IBunniHub.DepositParams calldata params)
internal
view
noSelfCall(self, sender)
returns (bool success)
{
if (self.hasPermission(BEFORE_DEPOSIT_FLAG)) {
(success,) = self.staticcallHooklet(
IHooklet.beforeDepositView.selector, abi.encodeCall(IHooklet.beforeDepositView, (sender, params))
);
} else {
success = true;
}
}
function hookletAfterDeposit(
IHooklet self,
address sender,
IBunniHub.DepositParams calldata params,
IHooklet.DepositReturnData memory returnData
) internal noSelfCall(self, sender) {
if (self.hasPermission(AFTER_DEPOSIT_FLAG)) {
self.callHooklet(
IHooklet.afterDeposit.selector, abi.encodeCall(IHooklet.afterDeposit, (sender, params, returnData))
);
}
}
function hookletAfterDepositView(
IHooklet self,
address sender,
IBunniHub.DepositParams calldata params,
IHooklet.DepositReturnData memory returnData
) internal view noSelfCall(self, sender) returns (bool success) {
if (self.hasPermission(AFTER_DEPOSIT_FLAG)) {
(success,) = self.staticcallHooklet(
IHooklet.afterDepositView.selector,
abi.encodeCall(IHooklet.afterDepositView, (sender, params, returnData))
);
} else {
success = true;
}
}
function hookletBeforeWithdraw(IHooklet self, address sender, IBunniHub.WithdrawParams calldata params)
internal
noSelfCall(self, sender)
{
if (self.hasPermission(BEFORE_WITHDRAW_FLAG)) {
self.callHooklet(
IHooklet.beforeWithdraw.selector, abi.encodeCall(IHooklet.beforeWithdraw, (sender, params))
);
}
}
function hookletBeforeWithdrawView(IHooklet self, address sender, IBunniHub.WithdrawParams calldata params)
internal
view
noSelfCall(self, sender)
returns (bool success)
{
if (self.hasPermission(BEFORE_WITHDRAW_FLAG)) {
(success,) = self.staticcallHooklet(
IHooklet.beforeWithdrawView.selector, abi.encodeCall(IHooklet.beforeWithdrawView, (sender, params))
);
} else {
success = true;
}
}
function hookletAfterWithdraw(
IHooklet self,
address sender,
IBunniHub.WithdrawParams calldata params,
IHooklet.WithdrawReturnData memory returnData
) internal noSelfCall(self, sender) {
if (self.hasPermission(AFTER_WITHDRAW_FLAG)) {
self.callHooklet(
IHooklet.afterWithdraw.selector, abi.encodeCall(IHooklet.afterWithdraw, (sender, params, returnData))
);
}
}
function hookletAfterWithdrawView(
IHooklet self,
address sender,
IBunniHub.WithdrawParams calldata params,
IHooklet.WithdrawReturnData memory returnData
) internal view noSelfCall(self, sender) returns (bool success) {
if (self.hasPermission(AFTER_WITHDRAW_FLAG)) {
(success,) = self.staticcallHooklet(
IHooklet.afterWithdrawView.selector,
abi.encodeCall(IHooklet.afterWithdrawView, (sender, params, returnData))
);
} else {
success = true;
}
}
function hookletBeforeSwap(
IHooklet self,
address sender,
PoolKey calldata key,
IPoolManager.SwapParams calldata params
)
internal
noSelfCall(self, sender)
returns (bool feeOverridden, uint24 fee, bool priceOverridden, uint160 sqrtPriceX96)
{
if (self.hasPermission(BEFORE_SWAP_FLAG)) {
bytes memory result = self.callHooklet(
IHooklet.beforeSwap.selector, abi.encodeCall(IHooklet.beforeSwap, (sender, key, params))
);
(bool canOverrideFee, bool canOverridePrice) =
(self.hasPermission(BEFORE_SWAP_OVERRIDE_FEE_FLAG), self.hasPermission(BEFORE_SWAP_OVERRIDE_PRICE_FLAG));
if (canOverrideFee || canOverridePrice) {
// parse override data
// equivalent to the following Solidity code:
// (,feeOverridden, fee, priceOverridden, sqrtPriceX96) = abi.decode(result, (bytes4, bool, uint24, bool, uint160));
/// @solidity memory-safe-assembly
assembly {
feeOverridden := mload(add(result, 0x40))
fee := mload(add(result, 0x60))
priceOverridden := mload(add(result, 0x80))
sqrtPriceX96 := mload(add(result, 0xA0))
}
// ensure that the hooklet is allowed to override the fee and/or price
// if the hooklet doesn't have a permission but the override is set, the override is ignored
feeOverridden = canOverrideFee && feeOverridden;
priceOverridden = canOverridePrice && priceOverridden;
// clamp the override values to the valid range
fee = feeOverridden ? uint24(fee.clamp(0, SWAP_FEE_BASE)) : 0;
sqrtPriceX96 =
priceOverridden ? uint160(sqrtPriceX96.clamp(TickMath.MIN_SQRT_PRICE, TickMath.MAX_SQRT_PRICE)) : 0;
}
}
}
function hookletBeforeSwapView(
IHooklet self,
address sender,
PoolKey calldata key,
IPoolManager.SwapParams calldata params
)
internal
view
noSelfCall(self, sender)
returns (bool success, bool feeOverridden, uint24 fee, bool priceOverridden, uint160 sqrtPriceX96)
{
if (
self.hasPermission(BEFORE_SWAP_FLAG)
&& (
self.hasPermission(BEFORE_SWAP_OVERRIDE_FEE_FLAG) || self.hasPermission(BEFORE_SWAP_OVERRIDE_PRICE_FLAG)
)
) {
bytes memory result;
(success, result) = self.staticcallHooklet(
IHooklet.beforeSwapView.selector, abi.encodeCall(IHooklet.beforeSwapView, (sender, key, params))
);
if (!success) return (false, false, 0, false, 0);
(bool canOverrideFee, bool canOverridePrice) =
(self.hasPermission(BEFORE_SWAP_OVERRIDE_FEE_FLAG), self.hasPermission(BEFORE_SWAP_OVERRIDE_PRICE_FLAG));
// parse override data
// equivalent to the following Solidity code:
// (,feeOverridden, fee, priceOverridden, sqrtPriceX96) = abi.decode(result, (bytes4, bool, uint24, bool, uint160));
/// @solidity memory-safe-assembly
assembly {
feeOverridden := mload(add(result, 0x40))
fee := mload(add(result, 0x60))
priceOverridden := mload(add(result, 0x80))
sqrtPriceX96 := mload(add(result, 0xA0))
}
// ensure that the hooklet is allowed to override the fee and/or price
// if the hooklet doesn't have a permission but the override is set, the override is ignored
feeOverridden = canOverrideFee && feeOverridden;
priceOverridden = canOverridePrice && priceOverridden;
// clamp the override values to the valid range
fee = feeOverridden ? uint24(fee.clamp(0, SWAP_FEE_BASE)) : 0;
sqrtPriceX96 =
priceOverridden ? uint160(sqrtPriceX96.clamp(TickMath.MIN_SQRT_PRICE, TickMath.MAX_SQRT_PRICE)) : 0;
} else {
return (true, false, 0, false, 0);
}
}
/// @dev The hasPermission check is done outside of this function in order to avoid unnecessarily constructing returnData
/// when calling it.
function hookletAfterSwap(
IHooklet self,
address sender,
PoolKey calldata key,
IPoolManager.SwapParams calldata params,
IHooklet.SwapReturnData memory returnData
) internal noSelfCall(self, sender) {
self.callHooklet(
IHooklet.afterSwap.selector, abi.encodeCall(IHooklet.afterSwap, (sender, key, params, returnData))
);
}
function hookletAfterSwapView(
IHooklet self,
address sender,
PoolKey calldata key,
IPoolManager.SwapParams calldata params,
IHooklet.SwapReturnData memory returnData
) internal view noSelfCall(self, sender) returns (bool success) {
if (self.hasPermission(AFTER_SWAP_FLAG)) {
(success,) = self.staticcallHooklet(
IHooklet.afterSwapView.selector,
abi.encodeCall(IHooklet.afterSwapView, (sender, key, params, returnData))
);
} else {
success = true;
}
}
function hasPermission(IHooklet self, uint160 flag) internal pure returns (bool) {
return uint160(address(self)) & flag != 0;
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.19;
import {PoolKey} from "@uniswap/v4-core/src/types/PoolKey.sol";
import {TickMath} from "@uniswap/v4-core/src/libraries/TickMath.sol";
import {FixedPointMathLib} from "solady/utils/FixedPointMathLib.sol";
import "../types/IdleBalance.sol";
import {Q96} from "../base/Constants.sol";
import {FullMathX96} from "./FullMathX96.sol";
import {LiquidityAmounts} from "./LiquidityAmounts.sol";
import {roundTick, roundUpFullMulDivResult} from "./Math.sol";
import {ILiquidityDensityFunction} from "../interfaces/ILiquidityDensityFunction.sol";
using FullMathX96 for uint256;
using FixedPointMathLib for uint256;
/// @notice Queries the liquidity density function for the given pool and tick
/// @param key The pool key
/// @param sqrtPriceX96 The current sqrt price of the pool
/// @param tick The current tick of the pool
/// @param arithmeticMeanTick The TWAP oracle value
/// @param ldf The liquidity density function
/// @param ldfParams The parameters for the liquidity density function
/// @param ldfState The current state of the liquidity density function
/// @param balance0 The balance of token0 in the pool
/// @param balance1 The balance of token1 in the pool
/// @return totalLiquidity The total liquidity in the pool
/// @return totalDensity0X96 The total density of token0 in the pool, scaled by Q96
/// @return totalDensity1X96 The total density of token1 in the pool, scaled by Q96
/// @return liquidityDensityOfRoundedTickX96 The liquidity density of the rounded tick, scaled by Q96
/// @return activeBalance0 The active balance of token0 in the pool, which is the amount used by swap liquidity
/// @return activeBalance1 The active balance of token1 in the pool, which is the amount used by swap liquidity
/// @return newLdfState The new state of the liquidity density function
/// @return shouldSurge Whether the pool should surge
function queryLDF(
PoolKey memory key,
uint160 sqrtPriceX96,
int24 tick,
int24 arithmeticMeanTick,
ILiquidityDensityFunction ldf,
bytes32 ldfParams,
bytes32 ldfState,
uint256 balance0,
uint256 balance1,
IdleBalance idleBalance
)
view
returns (
uint256 totalLiquidity,
uint256 totalDensity0X96,
uint256 totalDensity1X96,
uint256 liquidityDensityOfRoundedTickX96,
uint256 activeBalance0,
uint256 activeBalance1,
bytes32 newLdfState,
bool shouldSurge
)
{
(int24 roundedTick, int24 nextRoundedTick) = roundTick(tick, key.tickSpacing);
(uint160 roundedTickSqrtRatio, uint160 nextRoundedTickSqrtRatio) =
(TickMath.getSqrtPriceAtTick(roundedTick), TickMath.getSqrtPriceAtTick(nextRoundedTick));
uint256 density0RightOfRoundedTickX96;
uint256 density1LeftOfRoundedTickX96;
(
liquidityDensityOfRoundedTickX96,
density0RightOfRoundedTickX96,
density1LeftOfRoundedTickX96,
newLdfState,
shouldSurge
) = ldf.query(key, roundedTick, arithmeticMeanTick, tick, ldfParams, ldfState);
(uint256 density0OfRoundedTickX96, uint256 density1OfRoundedTickX96) = LiquidityAmounts.getAmountsForLiquidity(
sqrtPriceX96, roundedTickSqrtRatio, nextRoundedTickSqrtRatio, uint128(liquidityDensityOfRoundedTickX96), true
);
totalDensity0X96 = density0RightOfRoundedTickX96 + density0OfRoundedTickX96;
totalDensity1X96 = density1LeftOfRoundedTickX96 + density1OfRoundedTickX96;
// modify balance0/balance1 to deduct the idle balance
// skip this if a surge happens since the idle balance will need to be recalculated
if (!shouldSurge) {
(uint256 balance, bool isToken0) = IdleBalanceLibrary.fromIdleBalance(idleBalance);
if (isToken0) {
balance0 = subReLU(balance0, balance);
} else {
balance1 = subReLU(balance1, balance);
}
}
if (balance0 != 0 || balance1 != 0) {
bool noToken0 = balance0 == 0 || totalDensity0X96 == 0;
bool noToken1 = balance1 == 0 || totalDensity1X96 == 0;
uint256 totalLiquidityEstimate0 = noToken0 ? 0 : balance0.fullMulDiv(Q96, totalDensity0X96);
uint256 totalLiquidityEstimate1 = noToken1 ? 0 : balance1.fullMulDiv(Q96, totalDensity1X96);
bool useLiquidityEstimate0 =
(totalLiquidityEstimate0 < totalLiquidityEstimate1 || totalDensity1X96 == 0) && totalDensity0X96 != 0;
if (useLiquidityEstimate0) {
totalLiquidity =
noToken0 ? 0 : roundUpFullMulDivResult(balance0, Q96, totalDensity0X96, totalLiquidityEstimate0);
(activeBalance0, activeBalance1) = (
noToken0 ? 0 : FixedPointMathLib.min(balance0, totalLiquidityEstimate0.fullMulX96(totalDensity0X96)),
noToken1 ? 0 : FixedPointMathLib.min(balance1, totalLiquidityEstimate0.fullMulX96(totalDensity1X96))
);
} else {
totalLiquidity =
noToken1 ? 0 : roundUpFullMulDivResult(balance1, Q96, totalDensity1X96, totalLiquidityEstimate1);
(activeBalance0, activeBalance1) = (
noToken0 ? 0 : FixedPointMathLib.min(balance0, totalLiquidityEstimate1.fullMulX96(totalDensity0X96)),
noToken1 ? 0 : FixedPointMathLib.min(balance1, totalLiquidityEstimate1.fullMulX96(totalDensity1X96))
);
}
}
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity ^0.8.15;
import {Clone} from "clones-with-immutable-args/Clone.sol";
import {LibMulticaller} from "multicaller/LibMulticaller.sol";
import "@uniswap/v4-core/src/types/Currency.sol";
import {PoolKey} from "@uniswap/v4-core/src/types/PoolKey.sol";
import {IHooks} from "@uniswap/v4-core/src/interfaces/IHooks.sol";
import {IPoolManager} from "@uniswap/v4-core/src/interfaces/IPoolManager.sol";
import {IUnlockCallback} from "@uniswap/v4-core/src/interfaces/callback/IUnlockCallback.sol";
import {SafeTransferLib} from "solady/utils/SafeTransferLib.sol";
import {FixedPointMathLib} from "solady/utils/FixedPointMathLib.sol";
import "./base/Errors.sol";
import "./base/Constants.sol";
import {ERC20} from "./base/ERC20.sol";
import {Ownable} from "./base/Ownable.sol";
import {IERC20} from "./interfaces/IERC20.sol";
import {HookletLib} from "./lib/HookletLib.sol";
import {IHooklet} from "./interfaces/IHooklet.sol";
import {IBunniHub} from "./interfaces/IBunniHub.sol";
import {IBunniToken} from "./interfaces/IBunniToken.sol";
import {ERC20Referrer} from "./base/ERC20Referrer.sol";
/// @title BunniToken
/// @author zefram.eth
/// @notice ERC20 token that represents a user's LP position
contract BunniToken is IBunniToken, ERC20Referrer, Clone, Ownable {
/// -----------------------------------------------------------------------
/// Library usage
/// -----------------------------------------------------------------------
using FixedPointMathLib for *;
using HookletLib for IHooklet;
using SafeTransferLib for address;
using CurrencyLibrary for Currency;
/// -----------------------------------------------------------------------
/// Storage
/// -----------------------------------------------------------------------
string public metadataURI;
/// @notice The latest referrer reward per token0
uint256 public referrerRewardPerToken0;
/// @notice The referrer reward per token0 paid
mapping(address referrer => uint256) public referrerRewardPerTokenPaid0;
/// @notice The referrer reward in token0 unclaimed
mapping(address referrer => uint256) public referrerRewardUnclaimed0;
/// @notice The referrer reward per token1 stored
uint256 public referrerRewardPerToken1;
/// @notice The referrer reward per token1 paid
mapping(address referrer => uint256) public referrerRewardPerTokenPaid1;
/// @notice The referrer reward in token1 unclaimed
mapping(address referrer => uint256) public referrerRewardUnclaimed1;
/// -----------------------------------------------------------------------
/// Immutable params
/// -----------------------------------------------------------------------
/// Packed data layout:
/// [0:20] address hub
/// [20:40] address token0
/// [40:60] address token1
/// [60:92] bytes32 name
/// [92:124] bytes32 symbol
/// [124:144] address poolManager
/// [144:147] uint24 fee
/// [147:150] int24 tickSpacing
/// [150:170] address hooks
/// [170:190] address hooklet
/// -----------------------------------------------------------------------
function hub() public pure override returns (IBunniHub) {
return IBunniHub(_getArgAddress(0));
}
function token0() public pure override returns (Currency) {
return Currency.wrap(_getArgAddress(20));
}
function token1() public pure override returns (Currency) {
return Currency.wrap(_getArgAddress(40));
}
function name() public pure override(ERC20, IERC20) returns (string memory) {
return string(abi.encodePacked(_getArgUint256(60)));
}
function symbol() public pure override(ERC20, IERC20) returns (string memory) {
return string(abi.encodePacked(_getArgUint256(92)));
}
function poolManager() public pure override returns (IPoolManager) {
return IPoolManager(_getArgAddress(124));
}
function poolKey() public pure override returns (PoolKey memory) {
return PoolKey({
currency0: Currency.wrap(_getArgAddress(20)),
currency1: Currency.wrap(_getArgAddress(40)),
fee: _getArgUint24(144),
tickSpacing: int24(_getArgUint24(147)),
hooks: IHooks(_getArgAddress(150))
});
}
function hooklet() public pure override returns (IHooklet) {
return IHooklet(_getArgAddress(170));
}
/// -----------------------------------------------------------------------
/// Initialization
/// -----------------------------------------------------------------------
function initialize(address owner_, string calldata metadataURI_) external override {
if (msg.sender != address(hub())) revert BunniToken__NotBunniHub();
_initializeOwner(owner_);
metadataURI = metadataURI_;
emit SetMetadataURI(metadataURI_);
}
/// -----------------------------------------------------------------------
/// Minting & burning
/// -----------------------------------------------------------------------
function mint(address to, uint256 amount) external override {
if (msg.sender != address(hub())) revert BunniToken__NotBunniHub();
_mint(to, amount);
}
function mint(address to, uint256 amount, address referrer) external override {
if (msg.sender != address(hub())) revert BunniToken__NotBunniHub();
_mint(to, amount, referrer);
}
function burn(address from, uint256 amount) external override {
if (msg.sender != address(hub())) revert BunniToken__NotBunniHub();
_burn(from, amount);
}
function burn(uint256 amount) external override {
_burn(msg.sender, amount);
}
/// -----------------------------------------------------------------------
/// Metadata
/// -----------------------------------------------------------------------
function setMetadataURI(string calldata metadataURI_) external override onlyOwner {
metadataURI = metadataURI_;
emit SetMetadataURI(metadataURI_);
}
/// -----------------------------------------------------------------------
/// Referral
/// -----------------------------------------------------------------------
/// @inheritdoc IBunniToken
function distributeReferralRewards(bool isToken0, uint256 amount) external override {
/// -----------------------------------------------------------------------
/// State updates
/// -----------------------------------------------------------------------
Currency token;
if (isToken0) {
token = token0();
referrerRewardPerToken0 += amount.fullMulDiv(REFERRAL_REWARD_PER_TOKEN_PRECISION, totalSupply());
} else {
token = token1();
referrerRewardPerToken1 += amount.fullMulDiv(REFERRAL_REWARD_PER_TOKEN_PRECISION, totalSupply());
}
/// -----------------------------------------------------------------------
/// External calls
/// -----------------------------------------------------------------------
// pull PoolManager claims tokens from msg.sender
poolManager().transferFrom(msg.sender, address(this), token.toId(), amount);
}
/// @inheritdoc IBunniToken
function claimReferralRewards(address referrer) external override returns (uint256 reward0, uint256 reward1) {
/// -----------------------------------------------------------------------
/// Storage loads
/// -----------------------------------------------------------------------
uint256 rewardPerToken0 = referrerRewardPerToken0;
uint256 rewardPerToken1 = referrerRewardPerToken1;
uint256 referrerScore = scoreOf(referrer);
/// -----------------------------------------------------------------------
/// State updates
/// -----------------------------------------------------------------------
// compute unclaimed reward 0
reward0 = _updatedUnclaimedReward(
referrerScore, rewardPerToken0, referrerRewardPerTokenPaid0[referrer], referrerRewardUnclaimed0[referrer]
);
referrerRewardPerTokenPaid0[referrer] = rewardPerToken0;
delete referrerRewardUnclaimed0[referrer];
// compute unclaimed reward 1
reward1 = _updatedUnclaimedReward(
referrerScore, rewardPerToken1, referrerRewardPerTokenPaid1[referrer], referrerRewardUnclaimed1[referrer]
);
referrerRewardPerTokenPaid1[referrer] = rewardPerToken1;
delete referrerRewardUnclaimed1[referrer];
/// -----------------------------------------------------------------------
/// External calls
/// -----------------------------------------------------------------------
// call PoolManager to convert claim tokens into underlying tokens
address recipient = referrer == address(0) ? hub().getReferralRewardRecipient() : referrer;
poolManager().unlock(abi.encode(recipient, reward0, reward1));
// emit event
emit ClaimReferralRewards(referrer, reward0, reward1);
}
/// @inheritdoc IBunniToken
function getClaimableReferralRewards(address referrer)
external
view
override
returns (uint256 reward0, uint256 reward1)
{
reward0 = _updatedUnclaimedReward(
scoreOf(referrer),
referrerRewardPerToken0,
referrerRewardPerTokenPaid0[referrer],
referrerRewardUnclaimed0[referrer]
);
reward1 = _updatedUnclaimedReward(
scoreOf(referrer),
referrerRewardPerToken1,
referrerRewardPerTokenPaid1[referrer],
referrerRewardUnclaimed1[referrer]
);
}
/// @inheritdoc IUnlockCallback
function unlockCallback(bytes calldata data) external override returns (bytes memory) {
// verify sender
IPoolManager manager = poolManager();
if (msg.sender != address(manager)) revert BunniToken__NotPoolManager();
// decode input
(address recipient, uint256 reward0, uint256 reward1) = abi.decode(data, (address, uint256, uint256));
// burn claim tokens and take underlying tokens for referrer
if (reward0 != 0) {
Currency token = token0();
manager.burn(address(this), token.toId(), reward0);
manager.take(token, recipient, reward0);
}
if (reward1 != 0) {
Currency token = token1();
manager.burn(address(this), token.toId(), reward1);
manager.take(token, recipient, reward1);
}
// fallback
return bytes("");
}
/// @dev Should accrue rewards for the referrers of `from` and `to` in both token0 and token1
/// If we're minting tokens to an account to referrer == 0 with a non-zero referrer, we need to accrue rewards
/// to the new referrer before minting to avoid double counting the account's balance for the new referrer.
function _beforeTokenTransfer(address from, address to, uint256 amount, address newReferrer) internal override {
uint256 rewardPerToken0 = referrerRewardPerToken0;
uint256 rewardPerToken1 = referrerRewardPerToken1;
address fromReferrer = from == address(0) ? address(0) : referrerOf(from);
uint256 fromReferrerScore = scoreOf(fromReferrer);
// accrue token0 rewards
referrerRewardUnclaimed0[fromReferrer] = _updatedUnclaimedReward(
fromReferrerScore,
rewardPerToken0,
referrerRewardPerTokenPaid0[fromReferrer],
referrerRewardUnclaimed0[fromReferrer]
);
referrerRewardPerTokenPaid0[fromReferrer] = rewardPerToken0;
// accrue token1 rewards
referrerRewardUnclaimed1[fromReferrer] = _updatedUnclaimedReward(
fromReferrerScore,
rewardPerToken1,
referrerRewardPerTokenPaid1[fromReferrer],
referrerRewardUnclaimed1[fromReferrer]
);
referrerRewardPerTokenPaid1[fromReferrer] = rewardPerToken1;
address toReferrer = to == address(0) ? address(0) : referrerOf(to);
// no need to accrue rewards again if from and to have the same referrer
if (fromReferrer != toReferrer) {
uint256 toReferrerScore = scoreOf(toReferrer);
// accrue token0 rewards
referrerRewardUnclaimed0[toReferrer] = _updatedUnclaimedReward(
toReferrerScore,
rewardPerToken0,
referrerRewardPerTokenPaid0[toReferrer],
referrerRewardUnclaimed0[toReferrer]
);
referrerRewardPerTokenPaid0[toReferrer] = rewardPerToken0;
// accrue token1 rewards
referrerRewardUnclaimed1[toReferrer] = _updatedUnclaimedReward(
toReferrerScore,
rewardPerToken1,
referrerRewardPerTokenPaid1[toReferrer],
referrerRewardUnclaimed1[toReferrer]
);
referrerRewardPerTokenPaid1[toReferrer] = rewardPerToken1;
}
// should accrue rewards to new referrer if the referrer of `to` will be updated
// referrer is immutable after set so the only time this can happen is when `toReferrer == 0`
// and `newReferrer != 0`
// also should not accrue rewards if `newReferrer == fromReferrer` since we already accrued rewards for `fromReferrer`
if (toReferrer == address(0) && newReferrer != address(0) && newReferrer != fromReferrer) {
uint256 newReferrerScore = scoreOf(newReferrer);
// accrue token0 rewards to new referrer
referrerRewardUnclaimed0[newReferrer] = _updatedUnclaimedReward(
newReferrerScore,
rewardPerToken0,
referrerRewardPerTokenPaid0[newReferrer],
referrerRewardUnclaimed0[newReferrer]
);
referrerRewardPerTokenPaid0[newReferrer] = rewardPerToken0;
// accrue token1 rewards to new referrer
referrerRewardUnclaimed1[newReferrer] = _updatedUnclaimedReward(
newReferrerScore,
rewardPerToken1,
referrerRewardPerTokenPaid1[newReferrer],
referrerRewardUnclaimed1[newReferrer]
);
referrerRewardPerTokenPaid1[newReferrer] = rewardPerToken1;
}
// call hooklet
// occurs after the referral reward accrual to prevent the hooklet from
// messing up the accounting
IHooklet hooklet_ = hooklet();
if (hooklet_.hasPermission(HookletLib.BEFORE_TRANSFER_FLAG)) {
hooklet_.hookletBeforeTransfer(msg.sender, poolKey(), this, from, to, amount);
}
}
function _afterTokenTransfer(address from, address to, uint256 amount) internal override {
// call hooklet
IHooklet hooklet_ = hooklet();
if (hooklet_.hasPermission(HookletLib.AFTER_TRANSFER_FLAG)) {
hooklet_.hookletAfterTransfer(msg.sender, poolKey(), this, from, to, amount);
}
}
/// -----------------------------------------------------------------------
/// EIP-2612
/// -----------------------------------------------------------------------
function incrementNonce() external override {
address msgSender = LibMulticaller.senderOrSigner();
_incrementNonce(msgSender);
}
/// -----------------------------------------------------------------------
/// Internal utilities
/// -----------------------------------------------------------------------
/// @dev Compute the updated unclaimed reward of a referrer
function _updatedUnclaimedReward(
uint256 referrerScore,
uint256 rewardPerToken,
uint256 rewardPerTokenPaid,
uint256 rewardUnclaimed
) internal pure returns (uint256) {
return referrerScore.fullMulDiv(rewardPerToken - rewardPerTokenPaid, REFERRAL_REWARD_PER_TOKEN_PRECISION)
+ rewardUnclaimed;
}
/// @notice Reads an immutable arg with type uint24
/// @param argOffset The offset of the arg in the packed data
/// @return arg The arg value
function _getArgUint24(uint256 argOffset) internal pure returns (uint24 arg) {
uint256 offset = _getImmutableArgsOffset();
// solhint-disable-next-line no-inline-assembly
assembly {
arg := shr(0xe8, calldataload(add(offset, argOffset)))
}
}
}// SPDX-License-Identifier: MIT
pragma solidity >=0.5.0;
import "@uniswap/v4-core/src/libraries/SqrtPriceMath.sol";
/// @title Liquidity amount functions
/// @notice Provides functions for computing liquidity amounts from token amounts and prices
library LiquidityAmounts {
/// @notice Downcasts uint256 to uint128
/// @param x The uint258 to be downcasted
/// @return y The passed value, downcasted to uint128
function toUint128(uint256 x) private pure returns (uint128 y) {
require((y = uint128(x)) == x);
}
/// @notice Computes the token0 and token1 value for a given amount of liquidity, the current
/// pool prices and the prices at the tick boundaries
/// @param sqrtRatioX96 A sqrt price representing the current pool prices
/// @param sqrtRatioAX96 A sqrt price representing the first tick boundary
/// @param sqrtRatioBX96 A sqrt price representing the second tick boundary
/// @param liquidity The liquidity being valued
/// @return amount0 The amount of token0
/// @return amount1 The amount of token1
function getAmountsForLiquidity(
uint160 sqrtRatioX96,
uint160 sqrtRatioAX96,
uint160 sqrtRatioBX96,
uint128 liquidity,
bool roundingUp
) internal pure returns (uint256 amount0, uint256 amount1) {
if (sqrtRatioAX96 > sqrtRatioBX96) (sqrtRatioAX96, sqrtRatioBX96) = (sqrtRatioBX96, sqrtRatioAX96);
if (sqrtRatioX96 <= sqrtRatioAX96) {
amount0 = SqrtPriceMath.getAmount0Delta(sqrtRatioAX96, sqrtRatioBX96, liquidity, roundingUp);
} else if (sqrtRatioX96 < sqrtRatioBX96) {
amount0 = SqrtPriceMath.getAmount0Delta(sqrtRatioX96, sqrtRatioBX96, liquidity, roundingUp);
amount1 = SqrtPriceMath.getAmount1Delta(sqrtRatioAX96, sqrtRatioX96, liquidity, roundingUp);
} else {
amount1 = SqrtPriceMath.getAmount1Delta(sqrtRatioAX96, sqrtRatioBX96, liquidity, roundingUp);
}
}
/// @notice Computes the amount of liquidity received for a given amount of token0 and price range
/// @dev Calculates amount0 * (sqrt(upper) * sqrt(lower)) / (sqrt(upper) - sqrt(lower))
/// @param sqrtRatioAX96 A sqrt price representing the first tick boundary
/// @param sqrtRatioBX96 A sqrt price representing the second tick boundary
/// @param amount0 The amount0 being sent in
/// @return liquidity The amount of returned liquidity
function getLiquidityForAmount0(uint160 sqrtRatioAX96, uint160 sqrtRatioBX96, uint256 amount0)
internal
pure
returns (uint128 liquidity)
{
if (sqrtRatioAX96 > sqrtRatioBX96) (sqrtRatioAX96, sqrtRatioBX96) = (sqrtRatioBX96, sqrtRatioAX96);
uint256 intermediate = FullMath.mulDiv(sqrtRatioAX96, sqrtRatioBX96, FixedPoint96.Q96);
return toUint128(FullMath.mulDiv(amount0, intermediate, sqrtRatioBX96 - sqrtRatioAX96));
}
/// @notice Computes the amount of liquidity received for a given amount of token1 and price range
/// @dev Calculates amount1 / (sqrt(upper) - sqrt(lower)).
/// @param sqrtRatioAX96 A sqrt price representing the first tick boundary
/// @param sqrtRatioBX96 A sqrt price representing the second tick boundary
/// @param amount1 The amount1 being sent in
/// @return liquidity The amount of returned liquidity
function getLiquidityForAmount1(uint160 sqrtRatioAX96, uint160 sqrtRatioBX96, uint256 amount1)
internal
pure
returns (uint128 liquidity)
{
if (sqrtRatioAX96 > sqrtRatioBX96) (sqrtRatioAX96, sqrtRatioBX96) = (sqrtRatioBX96, sqrtRatioAX96);
return toUint128(FullMath.mulDiv(amount1, FixedPoint96.Q96, sqrtRatioBX96 - sqrtRatioAX96));
}
}// SPDX-License-Identifier: MIT
pragma solidity >=0.8.0;
import {IFloodPlain} from "./IFloodPlain.sol";
interface IZone {
struct FeeInfo {
address recipient;
uint64 bps;
}
/**
* @notice Check if a fulfiller belongs to the zone.
*
* @dev Fulfiller must still ensure that
* - msg.sender is a the BOOK.
* - Book caller is authorized.
*
* @param order Order being fulfilled.
* @param fulfiller The address that will fulfill the order by supplying consideration items.
*
* @return True if fulfiller is enabled, false if fulfiller is not enabled.
*/
function validate(IFloodPlain.Order calldata order, address fulfiller) external view returns (bool);
/**
* @notice Get the fee information.
*
* @dev It is up to Fulfiller to respect the fees set in a zone.
*
* @return The address of the fee recipient who should receive the fees.
* The fee cut in BPS that should be taken from the output tokens.
*/
function fee(IFloodPlain.Order calldata order, address fulfiller) external view returns (FeeInfo memory);
}// SPDX-License-Identifier: MIT
pragma solidity >=0.8.0;
import {ISignatureTransfer} from "permit2/src/interfaces/ISignatureTransfer.sol";
interface IFloodPlain {
error InsufficientAmountReceived();
error NotAContract();
error ZoneDenied();
error DuplicateItems();
error ArrayLengthMismatch();
event OrderFulfilled(bytes32 indexed orderHash, address indexed zone, address indexed fulfiller, uint256 amountOut);
struct SignedOrder {
Order order;
bytes signature;
}
struct Order {
address offerer;
address zone;
address recipient;
Item[] offer;
Item consideration;
uint256 deadline;
uint256 nonce;
Hook[] preHooks;
Hook[] postHooks;
}
struct Item {
address token;
uint256 amount;
}
struct Hook {
address target;
bytes data;
}
/**
* @notice Get Permit2 SignatureTransfer contract that is used in verifying orders.
*/
function PERMIT2() external view returns (ISignatureTransfer);
/**
* @notice Retrieve the permit2 hash for a given order.
*
* @param order The components of the order.
*
* @return permitHash The permit2 hash as order as the witness.
*/
function getPermitHash(Order calldata order) external view returns (bytes32 permitHash);
/**
* @notice Retrieve the order hash for a given order.
*
* @param order The components of the order.
*
* @return orderHash The order hash.
*/
function getOrderHash(Order calldata order) external view returns (bytes32 orderHash);
/**
* @notice Check if the order deadline has passed or its nonce has been cancelled or used.
*
* @param order The components of the order.
*
* @return isValid A boolean guaranteeing the order cannot be fulfilled if false.
*/
function getOrderStatus(Order calldata order) external view returns (bool isValid);
/**
* @notice Check if the nonce of a user is available.
*
* @param user The address of the user to check the nonce of.
* @param nonce The nonce of the user to check.
*
* @return isValid A boolean returning true if the nonce is not flipped.
*/
function getNonceStatus(address user, uint256 nonce) external view returns (bool isValid);
/**
* @notice Allow receiving ether from Fulfiller. No checks are made to ensure the ether is
* sent from a Fulfiller. If ether is sent directly, it can be stolen.
*/
receive() external payable;
/**
* @notice Fulfill an order directly by transferring consideration from caller to offerer.
*
* @param package The order to fulfill and the permit2 signature with the order as the witness.
* Note that the offerer must first approve Permit2 contract to transfer any
* relevant tokens on their behalf.
*/
function fulfillOrder(SignedOrder calldata package) external payable;
/**
* @notice Fulfill single order.
*
* @param package The order to fulfill and its signatures. The offerer must first approve
* Permit2 contract to transfer any relevant tokens on their behalf.
* @param fulfiller The address that will receive offer items, then source consideration for
* the offerer.
* @param swapData Extra bytes passed to the Fulfiller.
*/
function fulfillOrder(SignedOrder calldata package, address fulfiller, bytes calldata swapData) external;
/**
* @notice Fulfill series of orders.
*
* @param packages The orders to fulfill and their signatures. The offerer must first approve
* Permit2 contract to transfer any relevant tokens on their behalf.
* @param fulfiller The address that will receive offer items, then source consideration items
* for the offerer.
* @param swapData Extra bytes passed to the Fulfiller.
*/
function fulfillOrders(SignedOrder[] calldata packages, address fulfiller, bytes calldata swapData) external;
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
interface IERC1271 {
/// @dev Should return whether the signature provided is valid for the provided data
/// @param hash Hash of the data to be signed
/// @param signature Signature byte array associated with _data
/// @return magicValue The bytes4 magic value 0x1626ba7e
function isValidSignature(bytes32 hash, bytes memory signature) external view returns (bytes4 magicValue);
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {PoolKey} from "@uniswap/v4-core/src/types/PoolKey.sol";
import {Hooks} from "@uniswap/v4-core/src/libraries/Hooks.sol";
import {IPoolManager} from "@uniswap/v4-core/src/interfaces/IPoolManager.sol";
import {BeforeSwapDelta} from "@uniswap/v4-core/src/types/BeforeSwapDelta.sol";
interface IBaseHook {
error NotPoolManager();
function poolManager() external view returns (IPoolManager);
/// @notice The hook called after the state of a pool is initialized
/// @param sender The initial msg.sender for the initialize call
/// @param key The key for the pool being initialized
/// @param sqrtPriceX96 The sqrt(price) of the pool as a Q64.96
/// @param tick The current tick after the state of a pool is initialized
/// @return bytes4 The function selector for the hook
function afterInitialize(address sender, PoolKey calldata key, uint160 sqrtPriceX96, int24 tick)
external
returns (bytes4);
/// @notice The hook called before a swap
/// @param sender The initial msg.sender for the swap call
/// @param key The key for the pool
/// @param params The parameters for the swap
/// @param hookData Arbitrary data handed into the PoolManager by the swapper to be be passed on to the hook
/// @return bytes4 The function selector for the hook
/// @return BeforeSwapDelta The hook's delta in specified and unspecified currencies. Positive: the hook is owed/took currency, negative: the hook owes/sent currency
/// @return uint24 Optionally override the lp fee, only used if three conditions are met: 1. the Pool has a dynamic fee, 2. the value's 2nd highest bit is set (23rd bit, 0x400000), and 3. the value is less than or equal to the maximum fee (1 million)
function beforeSwap(
address sender,
PoolKey calldata key,
IPoolManager.SwapParams calldata params,
bytes calldata hookData
) external returns (bytes4, BeforeSwapDelta, uint24);
}// SPDX-License-Identifier: MIT
pragma solidity >=0.5.0;
interface IERC20Referrer {
/// @notice Returns the score of a referrer. The score is the sum of all
/// balances of accounts that have the referrer as their referrer.
/// @param referrer The referrer whose score is to be returned.
/// @return score The score of the referrer.
function scoreOf(address referrer) external view returns (uint256 score);
/// @notice Returns the referrer of an account. Default referrer is 0.
/// @param account The account whose referrer is to be returned.
/// @return referrer The referrer of the account.
function referrerOf(address account) external view returns (address referrer);
}// SPDX-License-Identifier: MIT
pragma solidity >=0.5.0;
import "./IERC20Unlocker.sol";
/// @title IERC20Lockable - Interface for a lockable token account.
/// @notice A token holder can lock their account, preventing any transfers from the account.
/// An unlocker contract is able to unlock the account. The unlocker contract is expected to
/// implement the `IERC20Unlocker` interface.
/// Used mainly for staking contracts that don't require transferring the token into the contract.
interface IERC20Lockable {
event Lock(address indexed account, IERC20Unlocker indexed unlocker);
event Unlock(address indexed account, IERC20Unlocker indexed unlocker);
/// @dev Error when calling lock() and the account is already locked.
error AlreadyLocked();
/// @dev Error when calling unlock() and the account is already unlocked.
error AlreadyUnlocked();
/// @dev Error when the caller is not the unlocker of the account.
error NotUnlocker();
/// @dev Error when trasferring tokens from a locked account.
error AccountLocked();
/// @notice Called by a token holder to lock their account. Once locked an account
/// can no longer transfer tokens until it's been unlocked. Only `unlocker` has the
/// ability to unlock the account. Reverts if the account is already locked.
/// @dev `unlocker` will receive the data via a `lockCallback()` call from this contract.
/// @param unlocker The address that will be able to unlock the account.
/// @param data Additional data with no specified format.
function lock(IERC20Unlocker unlocker, bytes calldata data) external;
/// @notice Called by an unlocker contract to unlock an account.
/// Reverts if the caller is not the unlocker of the account, or if
/// the account is not locked.
/// @param account The account to unlock.
function unlock(address account) external;
/// @notice Returns true if the account is locked, false otherwise.
/// @param account The account to check.
/// @return True if the account is locked, false otherwise.
function isLocked(address account) external view returns (bool);
/// @notice Returns the unlocker of the account. Be aware that the unlocker
/// is not set to 0 after the account has been unlocked, so the caller should
/// use this function in combination with `isLocked()`.
/// @param account The account whose unlocker is to be returned.
/// @return unlocker The unlocker of the account.
function unlockerOf(address account) external view returns (IERC20Unlocker unlocker);
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
interface IEIP712 {
function DOMAIN_SEPARATOR() external view returns (bytes32);
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
// Return type of the beforeSwap hook.
// Upper 128 bits is the delta in specified tokens. Lower 128 bits is delta in unspecified tokens (to match the afterSwap hook)
type BeforeSwapDelta is int256;
// Creates a BeforeSwapDelta from specified and unspecified
function toBeforeSwapDelta(int128 deltaSpecified, int128 deltaUnspecified)
pure
returns (BeforeSwapDelta beforeSwapDelta)
{
assembly ("memory-safe") {
beforeSwapDelta := or(shl(128, deltaSpecified), and(sub(shl(128, 1), 1), deltaUnspecified))
}
}
/// @notice Library for getting the specified and unspecified deltas from the BeforeSwapDelta type
library BeforeSwapDeltaLibrary {
/// @notice A BeforeSwapDelta of 0
BeforeSwapDelta public constant ZERO_DELTA = BeforeSwapDelta.wrap(0);
/// extracts int128 from the upper 128 bits of the BeforeSwapDelta
/// returned by beforeSwap
function getSpecifiedDelta(BeforeSwapDelta delta) internal pure returns (int128 deltaSpecified) {
assembly ("memory-safe") {
deltaSpecified := sar(128, delta)
}
}
/// extracts int128 from the lower 128 bits of the BeforeSwapDelta
/// returned by beforeSwap and afterSwap
function getUnspecifiedDelta(BeforeSwapDelta delta) internal pure returns (int128 deltaUnspecified) {
assembly ("memory-safe") {
deltaUnspecified := signextend(15, delta)
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/// @title BitMath
/// @dev This library provides functionality for computing bit properties of an unsigned integer
/// @author Solady (https://github.com/Vectorized/solady/blob/8200a70e8dc2a77ecb074fc2e99a2a0d36547522/src/utils/LibBit.sol)
library BitMath {
/// @notice Returns the index of the most significant bit of the number,
/// where the least significant bit is at index 0 and the most significant bit is at index 255
/// @param x the value for which to compute the most significant bit, must be greater than 0
/// @return r the index of the most significant bit
function mostSignificantBit(uint256 x) internal pure returns (uint8 r) {
require(x > 0);
assembly ("memory-safe") {
r := shl(7, lt(0xffffffffffffffffffffffffffffffff, x))
r := or(r, shl(6, lt(0xffffffffffffffff, shr(r, x))))
r := or(r, shl(5, lt(0xffffffff, shr(r, x))))
r := or(r, shl(4, lt(0xffff, shr(r, x))))
r := or(r, shl(3, lt(0xff, shr(r, x))))
// forgefmt: disable-next-item
r := or(r, byte(and(0x1f, shr(shr(r, x), 0x8421084210842108cc6318c6db6d54be)),
0x0706060506020500060203020504000106050205030304010505030400000000))
}
}
/// @notice Returns the index of the least significant bit of the number,
/// where the least significant bit is at index 0 and the most significant bit is at index 255
/// @param x the value for which to compute the least significant bit, must be greater than 0
/// @return r the index of the least significant bit
function leastSignificantBit(uint256 x) internal pure returns (uint8 r) {
require(x > 0);
assembly ("memory-safe") {
// Isolate the least significant bit.
x := and(x, sub(0, x))
// For the upper 3 bits of the result, use a De Bruijn-like lookup.
// Credit to adhusson: https://blog.adhusson.com/cheap-find-first-set-evm/
// forgefmt: disable-next-item
r := shl(5, shr(252, shl(shl(2, shr(250, mul(x,
0xb6db6db6ddddddddd34d34d349249249210842108c6318c639ce739cffffffff))),
0x8040405543005266443200005020610674053026020000107506200176117077)))
// For the lower 5 bits of the result, use a De Bruijn lookup.
// forgefmt: disable-next-item
r := or(r, byte(and(div(0xd76453e0, shr(r, x)), 0x1f),
0x001f0d1e100c1d070f090b19131c1706010e11080a1a141802121b1503160405))
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/// @title Contains 512-bit math functions
/// @notice Facilitates multiplication and division that can have overflow of an intermediate value without any loss of precision
/// @dev Handles "phantom overflow" i.e., allows multiplication and division where an intermediate value overflows 256 bits
library FullMath {
/// @notice Calculates floor(a×b÷denominator) with full precision. Throws if result overflows a uint256 or denominator == 0
/// @param a The multiplicand
/// @param b The multiplier
/// @param denominator The divisor
/// @return result The 256-bit result
/// @dev Credit to Remco Bloemen under MIT license https://xn--2-umb.com/21/muldiv
function mulDiv(uint256 a, uint256 b, uint256 denominator) internal pure returns (uint256 result) {
unchecked {
// 512-bit multiply [prod1 prod0] = a * b
// Compute the product mod 2**256 and mod 2**256 - 1
// then use the Chinese Remainder Theorem to reconstruct
// the 512 bit result. The result is stored in two 256
// variables such that product = prod1 * 2**256 + prod0
uint256 prod0 = a * b; // Least significant 256 bits of the product
uint256 prod1; // Most significant 256 bits of the product
assembly ("memory-safe") {
let mm := mulmod(a, b, not(0))
prod1 := sub(sub(mm, prod0), lt(mm, prod0))
}
// Make sure the result is less than 2**256.
// Also prevents denominator == 0
require(denominator > prod1);
// Handle non-overflow cases, 256 by 256 division
if (prod1 == 0) {
assembly ("memory-safe") {
result := div(prod0, denominator)
}
return result;
}
///////////////////////////////////////////////
// 512 by 256 division.
///////////////////////////////////////////////
// Make division exact by subtracting the remainder from [prod1 prod0]
// Compute remainder using mulmod
uint256 remainder;
assembly ("memory-safe") {
remainder := mulmod(a, b, denominator)
}
// Subtract 256 bit number from 512 bit number
assembly ("memory-safe") {
prod1 := sub(prod1, gt(remainder, prod0))
prod0 := sub(prod0, remainder)
}
// Factor powers of two out of denominator
// Compute largest power of two divisor of denominator.
// Always >= 1.
uint256 twos = (0 - denominator) & denominator;
// Divide denominator by power of two
assembly ("memory-safe") {
denominator := div(denominator, twos)
}
// Divide [prod1 prod0] by the factors of two
assembly ("memory-safe") {
prod0 := div(prod0, twos)
}
// Shift in bits from prod1 into prod0. For this we need
// to flip `twos` such that it is 2**256 / twos.
// If twos is zero, then it becomes one
assembly ("memory-safe") {
twos := add(div(sub(0, twos), twos), 1)
}
prod0 |= prod1 * twos;
// Invert denominator mod 2**256
// Now that denominator is an odd number, it has an inverse
// modulo 2**256 such that denominator * inv = 1 mod 2**256.
// Compute the inverse by starting with a seed that is correct
// correct for four bits. That is, denominator * inv = 1 mod 2**4
uint256 inv = (3 * denominator) ^ 2;
// Now use Newton-Raphson iteration to improve the precision.
// Thanks to Hensel's lifting lemma, this also works in modular
// arithmetic, doubling the correct bits in each step.
inv *= 2 - denominator * inv; // inverse mod 2**8
inv *= 2 - denominator * inv; // inverse mod 2**16
inv *= 2 - denominator * inv; // inverse mod 2**32
inv *= 2 - denominator * inv; // inverse mod 2**64
inv *= 2 - denominator * inv; // inverse mod 2**128
inv *= 2 - denominator * inv; // inverse mod 2**256
// Because the division is now exact we can divide by multiplying
// with the modular inverse of denominator. This will give us the
// correct result modulo 2**256. Since the preconditions guarantee
// that the outcome is less than 2**256, this is the final result.
// We don't need to compute the high bits of the result and prod1
// is no longer required.
result = prod0 * inv;
return result;
}
}
/// @notice Calculates ceil(a×b÷denominator) with full precision. Throws if result overflows a uint256 or denominator == 0
/// @param a The multiplicand
/// @param b The multiplier
/// @param denominator The divisor
/// @return result The 256-bit result
function mulDivRoundingUp(uint256 a, uint256 b, uint256 denominator) internal pure returns (uint256 result) {
unchecked {
result = mulDiv(a, b, denominator);
if (mulmod(a, b, denominator) != 0) {
require(++result > 0);
}
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/// @title Math functions that do not check inputs or outputs
/// @notice Contains methods that perform common math functions but do not do any overflow or underflow checks
library UnsafeMath {
/// @notice Returns ceil(x / y)
/// @dev division by 0 will return 0, and should be checked externally
/// @param x The dividend
/// @param y The divisor
/// @return z The quotient, ceil(x / y)
function divRoundingUp(uint256 x, uint256 y) internal pure returns (uint256 z) {
assembly ("memory-safe") {
z := add(div(x, y), gt(mod(x, y), 0))
}
}
/// @notice Calculates floor(a×b÷denominator)
/// @dev division by 0 will return 0, and should be checked externally
/// @param a The multiplicand
/// @param b The multiplier
/// @param denominator The divisor
/// @return result The 256-bit result, floor(a×b÷denominator)
function simpleMulDiv(uint256 a, uint256 b, uint256 denominator) internal pure returns (uint256 result) {
assembly ("memory-safe") {
result := div(mul(a, b), denominator)
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/// @title FixedPoint96
/// @notice A library for handling binary fixed point numbers, see https://en.wikipedia.org/wiki/Q_(number_format)
/// @dev Used in SqrtPriceMath.sol
library FixedPoint96 {
uint8 internal constant RESOLUTION = 96;
uint256 internal constant Q96 = 0x1000000000000000000000000;
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.19;
library FullMathX96 {
uint256 internal constant Q96 = 0x1000000000000000000000000;
/// @dev Calculates `floor(x * y / 2 ** 96)` with full precision.
/// Throws if result overflows a uint256.
/// Credit to Philogy under MIT license:
/// https://github.com/SorellaLabs/angstrom/blob/main/contracts/src/libraries/X128MathLib.sol
function fullMulX96(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
// Temporarily use `z` as `p0` to save gas.
z := mul(x, y) // Lower 256 bits of `x * y`. We'll call this `z`.
for {} 1 {} {
if iszero(or(iszero(x), eq(div(z, x), y))) {
let mm := mulmod(x, y, not(0))
let p1 := sub(mm, add(z, lt(mm, z))) // Upper 256 bits of `x * y`.
// | p1 | z |
// Before: | p1_0 ¦ p1_1 | z_0 ¦ z_1 |
// Final: | 0 ¦ p1_0 | p1_1 ¦ z_0 |
// Check that final `z` doesn't overflow by checking that p1_0 = 0.
if iszero(shr(96, p1)) {
z := add(shl(160, p1), shr(96, z))
break
}
mstore(0x00, 0xae47f702) // `FullMulDivFailed()`.
revert(0x1c, 0x04)
}
z := shr(96, z)
break
}
}
}
function fullMulX96Up(uint256 x, uint256 y) internal pure returns (uint256 z) {
z = fullMulX96(x, y);
/// @solidity memory-safe-assembly
assembly {
if mulmod(x, y, Q96) {
z := add(z, 1)
if iszero(z) {
mstore(0x00, 0xae47f702) // `FullMulDivFailed()`.
revert(0x1c, 0x04)
}
}
}
}
}// SPDX-License-Identifier: BSD
pragma solidity ^0.8.4;
/// @title Clone
/// @author zefram.eth
/// @notice Provides helper functions for reading immutable args from calldata
contract Clone {
/// @notice Reads an immutable arg with type address
/// @param argOffset The offset of the arg in the packed data
/// @return arg The arg value
function _getArgAddress(
uint256 argOffset
) internal pure returns (address arg) {
uint256 offset = _getImmutableArgsOffset();
// solhint-disable-next-line no-inline-assembly
assembly {
arg := shr(0x60, calldataload(add(offset, argOffset)))
}
}
/// @notice Reads an immutable arg with type uint256
/// @param argOffset The offset of the arg in the packed data
/// @return arg The arg value
function _getArgUint256(
uint256 argOffset
) internal pure returns (uint256 arg) {
uint256 offset = _getImmutableArgsOffset();
// solhint-disable-next-line no-inline-assembly
assembly {
arg := calldataload(add(offset, argOffset))
}
}
/// @notice Reads a uint256 array stored in the immutable args.
/// @param argOffset The offset of the arg in the packed data
/// @param arrLen Number of elements in the array
/// @return arr The array
function _getArgUint256Array(
uint256 argOffset,
uint64 arrLen
) internal pure returns (uint256[] memory arr) {
uint256 offset = _getImmutableArgsOffset();
uint256 el;
arr = new uint256[](arrLen);
for (uint64 i = 0; i < arrLen; i++) {
// solhint-disable-next-line no-inline-assembly
assembly {
el := calldataload(add(add(offset, argOffset), mul(i, 32)))
}
arr[i] = el;
}
return arr;
}
/// @notice Reads an immutable arg with type uint64
/// @param argOffset The offset of the arg in the packed data
/// @return arg The arg value
function _getArgUint64(
uint256 argOffset
) internal pure returns (uint64 arg) {
uint256 offset = _getImmutableArgsOffset();
// solhint-disable-next-line no-inline-assembly
assembly {
arg := shr(0xc0, calldataload(add(offset, argOffset)))
}
}
/// @notice Reads an immutable arg with type uint8
/// @param argOffset The offset of the arg in the packed data
/// @return arg The arg value
function _getArgUint8(uint256 argOffset) internal pure returns (uint8 arg) {
uint256 offset = _getImmutableArgsOffset();
// solhint-disable-next-line no-inline-assembly
assembly {
arg := shr(0xf8, calldataload(add(offset, argOffset)))
}
}
/// @return offset The offset of the packed immutable args in calldata
function _getImmutableArgsOffset() internal pure returns (uint256 offset) {
// solhint-disable-next-line no-inline-assembly
assembly {
offset := sub(
calldatasize(),
add(shr(240, calldataload(sub(calldatasize(), 2))), 2)
)
}
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
import {IERC20} from "../interfaces/IERC20.sol";
/// @notice Simple ERC20 + EIP-2612 implementation.
/// @author Solady (https://github.com/vectorized/solady/blob/main/src/tokens/ERC20.sol)
/// @author Modified from Solmate (https://github.com/transmissions11/solmate/blob/main/src/tokens/ERC20.sol)
/// @author Modified from OpenZeppelin (https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/token/ERC20/ERC20.sol)
///
/// @dev Note:
/// - The ERC20 standard allows minting and transferring to and from the zero address,
/// minting and transferring zero tokens, as well as self-approvals.
/// For performance, this implementation WILL NOT revert for such actions.
/// Please add any checks with overrides if desired.
/// - The `permit` function uses the ecrecover precompile (0x1).
///
/// If you are overriding:
/// - NEVER violate the ERC20 invariant:
/// the total sum of all balances must be equal to `totalSupply()`.
/// - Check that the overridden function is actually used in the function you want to
/// change the behavior of. Much of the code has been manually inlined for performance.
abstract contract ERC20 is IERC20 {
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CUSTOM ERRORS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev The total supply has overflowed.
error TotalSupplyOverflow();
/// @dev The allowance has overflowed.
error AllowanceOverflow();
/// @dev The allowance has underflowed.
error AllowanceUnderflow();
/// @dev Insufficient balance.
error InsufficientBalance();
/// @dev Insufficient allowance.
error InsufficientAllowance();
/// @dev The permit is invalid.
error InvalidPermit();
/// @dev The permit has expired.
error PermitExpired();
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* EVENTS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev `keccak256(bytes("Transfer(address,address,uint256)"))`.
uint256 internal constant _TRANSFER_EVENT_SIGNATURE =
0xddf252ad1be2c89b69c2b068fc378daa952ba7f163c4a11628f55a4df523b3ef;
/// @dev `keccak256(bytes("Approval(address,address,uint256)"))`.
uint256 internal constant _APPROVAL_EVENT_SIGNATURE =
0x8c5be1e5ebec7d5bd14f71427d1e84f3dd0314c0f7b2291e5b200ac8c7c3b925;
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* STORAGE */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev The storage slot for the total supply.
uint256 internal constant _TOTAL_SUPPLY_SLOT = 0x05345cdf77eb68f44c;
/// @dev The balance slot of `owner` is given by:
/// ```
/// mstore(0x0c, _BALANCE_SLOT_SEED)
/// mstore(0x00, owner)
/// let balanceSlot := keccak256(0x0c, 0x20)
/// ```
uint256 internal constant _BALANCE_SLOT_SEED = 0x87a211a2;
/// @dev The allowance slot of (`owner`, `spender`) is given by:
/// ```
/// mstore(0x20, spender)
/// mstore(0x0c, _ALLOWANCE_SLOT_SEED)
/// mstore(0x00, owner)
/// let allowanceSlot := keccak256(0x0c, 0x34)
/// ```
uint256 internal constant _ALLOWANCE_SLOT_SEED = 0x7f5e9f20;
/// @dev The nonce slot of `owner` is given by:
/// ```
/// mstore(0x0c, _NONCES_SLOT_SEED)
/// mstore(0x00, owner)
/// let nonceSlot := keccak256(0x0c, 0x20)
/// ```
uint256 internal constant _NONCES_SLOT_SEED = 0x38377508;
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* CONSTANTS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev `(_NONCES_SLOT_SEED << 16) | 0x1901`.
uint256 internal constant _NONCES_SLOT_SEED_WITH_SIGNATURE_PREFIX = 0x383775081901;
/// @dev `keccak256("EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)")`.
bytes32 internal constant _DOMAIN_TYPEHASH = 0x8b73c3c69bb8fe3d512ecc4cf759cc79239f7b179b0ffacaa9a75d522b39400f;
/// @dev `keccak256("1")`.
bytes32 internal constant _VERSION_HASH = 0xc89efdaa54c0f20c7adf612882df0950f5a951637e0307cdcb4c672f298b8bc6;
/// @dev `keccak256("Permit(address owner,address spender,uint256 value,uint256 nonce,uint256 deadline)")`.
bytes32 internal constant _PERMIT_TYPEHASH = 0x6e71edae12b1b97f4d1f60370fef10105fa2faae0126114a169c64845d6126c9;
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* ERC20 METADATA */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns the name of the token.
function name() public view virtual returns (string memory);
/// @dev Returns the symbol of the token.
function symbol() public view virtual returns (string memory);
/// @dev Returns the decimals places of the token.
function decimals() public view virtual returns (uint8) {
return 18;
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* ERC20 */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Returns the amount of tokens in existence.
function totalSupply() public view virtual returns (uint256 result) {
/// @solidity memory-safe-assembly
assembly {
result := sload(_TOTAL_SUPPLY_SLOT)
}
}
/// @dev Returns the amount of tokens owned by `owner`.
function balanceOf(address owner) public view virtual returns (uint256 result) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, owner)
result := sload(keccak256(0x0c, 0x20))
}
}
/// @dev Returns the amount of tokens that `spender` can spend on behalf of `owner`.
function allowance(address owner, address spender) public view virtual returns (uint256 result) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x20, spender)
mstore(0x0c, _ALLOWANCE_SLOT_SEED)
mstore(0x00, owner)
result := sload(keccak256(0x0c, 0x34))
}
}
/// @dev Sets `amount` as the allowance of `spender` over the caller's tokens.
///
/// Emits a {Approval} event.
function approve(address spender, uint256 amount) public virtual returns (bool) {
/// @solidity memory-safe-assembly
assembly {
// Compute the allowance slot and store the amount.
mstore(0x20, spender)
mstore(0x0c, _ALLOWANCE_SLOT_SEED)
mstore(0x00, caller())
sstore(keccak256(0x0c, 0x34), amount)
// Emit the {Approval} event.
mstore(0x00, amount)
log3(0x00, 0x20, _APPROVAL_EVENT_SIGNATURE, caller(), shr(96, mload(0x2c)))
}
return true;
}
/// @dev Transfer `amount` tokens from the caller to `to`.
///
/// Requirements:
/// - `from` must at least have `amount`.
///
/// Emits a {Transfer} event.
function transfer(address to, uint256 amount) public virtual returns (bool) {
_beforeTokenTransfer(msg.sender, to, amount);
/// @solidity memory-safe-assembly
assembly {
// Compute the balance slot and load its value.
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, caller())
let fromBalanceSlot := keccak256(0x0c, 0x20)
let fromBalance := sload(fromBalanceSlot)
// Revert if insufficient balance.
if gt(amount, fromBalance) {
mstore(0x00, 0xf4d678b8) // `InsufficientBalance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated balance.
sstore(fromBalanceSlot, sub(fromBalance, amount))
// Compute the balance slot of `to`.
mstore(0x00, to)
let toBalanceSlot := keccak256(0x0c, 0x20)
// Add and store the updated balance of `to`.
// Will not overflow because the sum of all user balances
// cannot exceed the maximum uint256 value.
sstore(toBalanceSlot, add(sload(toBalanceSlot), amount))
// Emit the {Transfer} event.
mstore(0x20, amount)
log3(0x20, 0x20, _TRANSFER_EVENT_SIGNATURE, caller(), shr(96, mload(0x0c)))
}
_afterTokenTransfer(msg.sender, to, amount);
return true;
}
/// @dev Transfers `amount` tokens from `from` to `to`.
///
/// Note: Does not update the allowance if it is the maximum uint256 value.
///
/// Requirements:
/// - `from` must at least have `amount`.
/// - The caller must have at least `amount` of allowance to transfer the tokens of `from`.
///
/// Emits a {Transfer} event.
function transferFrom(address from, address to, uint256 amount) public virtual returns (bool) {
_beforeTokenTransfer(from, to, amount);
/// @solidity memory-safe-assembly
assembly {
let from_ := shl(96, from)
// Compute the allowance slot and load its value.
mstore(0x20, caller())
mstore(0x0c, or(from_, _ALLOWANCE_SLOT_SEED))
let allowanceSlot := keccak256(0x0c, 0x34)
let allowance_ := sload(allowanceSlot)
// If the allowance is not the maximum uint256 value.
if add(allowance_, 1) {
// Revert if the amount to be transferred exceeds the allowance.
if gt(amount, allowance_) {
mstore(0x00, 0x13be252b) // `InsufficientAllowance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated allowance.
sstore(allowanceSlot, sub(allowance_, amount))
}
// Compute the balance slot and load its value.
mstore(0x0c, or(from_, _BALANCE_SLOT_SEED))
let fromBalanceSlot := keccak256(0x0c, 0x20)
let fromBalance := sload(fromBalanceSlot)
// Revert if insufficient balance.
if gt(amount, fromBalance) {
mstore(0x00, 0xf4d678b8) // `InsufficientBalance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated balance.
sstore(fromBalanceSlot, sub(fromBalance, amount))
// Compute the balance slot of `to`.
mstore(0x00, to)
let toBalanceSlot := keccak256(0x0c, 0x20)
// Add and store the updated balance of `to`.
// Will not overflow because the sum of all user balances
// cannot exceed the maximum uint256 value.
sstore(toBalanceSlot, add(sload(toBalanceSlot), amount))
// Emit the {Transfer} event.
mstore(0x20, amount)
log3(0x20, 0x20, _TRANSFER_EVENT_SIGNATURE, shr(96, from_), shr(96, mload(0x0c)))
}
_afterTokenTransfer(from, to, amount);
return true;
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* EIP-2612 */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev For more performance, override to return the constant value
/// of `keccak256(bytes(name()))` if `name()` will never change.
function _constantNameHash() internal view virtual returns (bytes32 result) {}
/// @dev For inheriting contracts to increment the nonce.
function _incrementNonce(address owner) internal virtual {
/// @solidity memory-safe-assembly
assembly {
mstore(0x0c, _NONCES_SLOT_SEED)
mstore(0x00, owner)
let nonceSlot := keccak256(0x0c, 0x20)
sstore(nonceSlot, add(1, sload(nonceSlot)))
}
}
/// @dev Returns the current nonce for `owner`.
/// This value is used to compute the signature for EIP-2612 permit.
function nonces(address owner) public view virtual returns (uint256 result) {
/// @solidity memory-safe-assembly
assembly {
// Compute the nonce slot and load its value.
mstore(0x0c, _NONCES_SLOT_SEED)
mstore(0x00, owner)
result := sload(keccak256(0x0c, 0x20))
}
}
/// @dev Sets `value` as the allowance of `spender` over the tokens of `owner`,
/// authorized by a signed approval by `owner`.
///
/// Emits a {Approval} event.
function permit(address owner, address spender, uint256 value, uint256 deadline, uint8 v, bytes32 r, bytes32 s)
public
virtual
{
bytes32 nameHash = _constantNameHash();
// We simply calculate it on-the-fly to allow for cases where the `name` may change.
if (nameHash == bytes32(0)) nameHash = keccak256(bytes(name()));
/// @solidity memory-safe-assembly
assembly {
// Revert if the block timestamp is greater than `deadline`.
if gt(timestamp(), deadline) {
mstore(0x00, 0x1a15a3cc) // `PermitExpired()`.
revert(0x1c, 0x04)
}
let m := mload(0x40) // Grab the free memory pointer.
// Clean the upper 96 bits.
owner := shr(96, shl(96, owner))
spender := shr(96, shl(96, spender))
// Compute the nonce slot and load its value.
mstore(0x0e, _NONCES_SLOT_SEED_WITH_SIGNATURE_PREFIX)
mstore(0x00, owner)
let nonceSlot := keccak256(0x0c, 0x20)
let nonceValue := sload(nonceSlot)
// Prepare the domain separator.
mstore(m, _DOMAIN_TYPEHASH)
mstore(add(m, 0x20), nameHash)
mstore(add(m, 0x40), _VERSION_HASH)
mstore(add(m, 0x60), chainid())
mstore(add(m, 0x80), address())
mstore(0x2e, keccak256(m, 0xa0))
// Prepare the struct hash.
mstore(m, _PERMIT_TYPEHASH)
mstore(add(m, 0x20), owner)
mstore(add(m, 0x40), spender)
mstore(add(m, 0x60), value)
mstore(add(m, 0x80), nonceValue)
mstore(add(m, 0xa0), deadline)
mstore(0x4e, keccak256(m, 0xc0))
// Prepare the ecrecover calldata.
mstore(0x00, keccak256(0x2c, 0x42))
mstore(0x20, and(0xff, v))
mstore(0x40, r)
mstore(0x60, s)
let t := staticcall(gas(), 1, 0, 0x80, 0x20, 0x20)
// If the ecrecover fails, the returndatasize will be 0x00,
// `owner` will be checked if it equals the hash at 0x00,
// which evaluates to false (i.e. 0), and we will revert.
// If the ecrecover succeeds, the returndatasize will be 0x20,
// `owner` will be compared against the returned address at 0x20.
if iszero(eq(mload(returndatasize()), owner)) {
mstore(0x00, 0xddafbaef) // `InvalidPermit()`.
revert(0x1c, 0x04)
}
// Increment and store the updated nonce.
sstore(nonceSlot, add(nonceValue, t)) // `t` is 1 if ecrecover succeeds.
// Compute the allowance slot and store the value.
// The `owner` is already at slot 0x20.
mstore(0x40, or(shl(160, _ALLOWANCE_SLOT_SEED), spender))
sstore(keccak256(0x2c, 0x34), value)
// Emit the {Approval} event.
log3(add(m, 0x60), 0x20, _APPROVAL_EVENT_SIGNATURE, owner, spender)
mstore(0x40, m) // Restore the free memory pointer.
mstore(0x60, 0) // Restore the zero pointer.
}
}
/// @dev Returns the EIP-712 domain separator for the EIP-2612 permit.
function DOMAIN_SEPARATOR() public view virtual returns (bytes32 result) {
bytes32 nameHash = _constantNameHash();
// We simply calculate it on-the-fly to allow for cases where the `name` may change.
if (nameHash == bytes32(0)) nameHash = keccak256(bytes(name()));
/// @solidity memory-safe-assembly
assembly {
let m := mload(0x40) // Grab the free memory pointer.
mstore(m, _DOMAIN_TYPEHASH)
mstore(add(m, 0x20), nameHash)
mstore(add(m, 0x40), _VERSION_HASH)
mstore(add(m, 0x60), chainid())
mstore(add(m, 0x80), address())
result := keccak256(m, 0xa0)
}
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* INTERNAL MINT FUNCTIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Mints `amount` tokens to `to`, increasing the total supply.
///
/// Emits a {Transfer} event.
function _mint(address to, uint256 amount) internal virtual {
_beforeTokenTransfer(address(0), to, amount);
/// @solidity memory-safe-assembly
assembly {
let totalSupplyBefore := sload(_TOTAL_SUPPLY_SLOT)
let totalSupplyAfter := add(totalSupplyBefore, amount)
// Revert if the total supply overflows.
if lt(totalSupplyAfter, totalSupplyBefore) {
mstore(0x00, 0xe5cfe957) // `TotalSupplyOverflow()`.
revert(0x1c, 0x04)
}
// Store the updated total supply.
sstore(_TOTAL_SUPPLY_SLOT, totalSupplyAfter)
// Compute the balance slot and load its value.
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, to)
let toBalanceSlot := keccak256(0x0c, 0x20)
// Add and store the updated balance.
sstore(toBalanceSlot, add(sload(toBalanceSlot), amount))
// Emit the {Transfer} event.
mstore(0x20, amount)
log3(0x20, 0x20, _TRANSFER_EVENT_SIGNATURE, 0, shr(96, mload(0x0c)))
}
_afterTokenTransfer(address(0), to, amount);
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* INTERNAL BURN FUNCTIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Burns `amount` tokens from `from`, reducing the total supply.
///
/// Emits a {Transfer} event.
function _burn(address from, uint256 amount) internal virtual {
_beforeTokenTransfer(from, address(0), amount);
/// @solidity memory-safe-assembly
assembly {
// Compute the balance slot and load its value.
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, from)
let fromBalanceSlot := keccak256(0x0c, 0x20)
let fromBalance := sload(fromBalanceSlot)
// Revert if insufficient balance.
if gt(amount, fromBalance) {
mstore(0x00, 0xf4d678b8) // `InsufficientBalance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated balance.
sstore(fromBalanceSlot, sub(fromBalance, amount))
// Subtract and store the updated total supply.
sstore(_TOTAL_SUPPLY_SLOT, sub(sload(_TOTAL_SUPPLY_SLOT), amount))
// Emit the {Transfer} event.
mstore(0x00, amount)
log3(0x00, 0x20, _TRANSFER_EVENT_SIGNATURE, shr(96, shl(96, from)), 0)
}
_afterTokenTransfer(from, address(0), amount);
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* INTERNAL TRANSFER FUNCTIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Moves `amount` of tokens from `from` to `to`.
function _transfer(address from, address to, uint256 amount) internal virtual {
_beforeTokenTransfer(from, to, amount);
/// @solidity memory-safe-assembly
assembly {
let from_ := shl(96, from)
// Compute the balance slot and load its value.
mstore(0x0c, or(from_, _BALANCE_SLOT_SEED))
let fromBalanceSlot := keccak256(0x0c, 0x20)
let fromBalance := sload(fromBalanceSlot)
// Revert if insufficient balance.
if gt(amount, fromBalance) {
mstore(0x00, 0xf4d678b8) // `InsufficientBalance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated balance.
sstore(fromBalanceSlot, sub(fromBalance, amount))
// Compute the balance slot of `to`.
mstore(0x00, to)
let toBalanceSlot := keccak256(0x0c, 0x20)
// Add and store the updated balance of `to`.
// Will not overflow because the sum of all user balances
// cannot exceed the maximum uint256 value.
sstore(toBalanceSlot, add(sload(toBalanceSlot), amount))
// Emit the {Transfer} event.
mstore(0x20, amount)
log3(0x20, 0x20, _TRANSFER_EVENT_SIGNATURE, shr(96, from_), shr(96, mload(0x0c)))
}
_afterTokenTransfer(from, to, amount);
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* INTERNAL ALLOWANCE FUNCTIONS */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Updates the allowance of `owner` for `spender` based on spent `amount`.
function _spendAllowance(address owner, address spender, uint256 amount) internal virtual {
/// @solidity memory-safe-assembly
assembly {
// Compute the allowance slot and load its value.
mstore(0x20, spender)
mstore(0x0c, _ALLOWANCE_SLOT_SEED)
mstore(0x00, owner)
let allowanceSlot := keccak256(0x0c, 0x34)
let allowance_ := sload(allowanceSlot)
// If the allowance is not the maximum uint256 value.
if add(allowance_, 1) {
// Revert if the amount to be transferred exceeds the allowance.
if gt(amount, allowance_) {
mstore(0x00, 0x13be252b) // `InsufficientAllowance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated allowance.
sstore(allowanceSlot, sub(allowance_, amount))
}
}
}
/// @dev Sets `amount` as the allowance of `spender` over the tokens of `owner`.
///
/// Emits a {Approval} event.
function _approve(address owner, address spender, uint256 amount) internal virtual {
/// @solidity memory-safe-assembly
assembly {
let owner_ := shl(96, owner)
// Compute the allowance slot and store the amount.
mstore(0x20, spender)
mstore(0x0c, or(owner_, _ALLOWANCE_SLOT_SEED))
sstore(keccak256(0x0c, 0x34), amount)
// Emit the {Approval} event.
mstore(0x00, amount)
log3(0x00, 0x20, _APPROVAL_EVENT_SIGNATURE, shr(96, owner_), shr(96, mload(0x2c)))
}
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*/
/* HOOKS TO OVERRIDE */
/*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*/
/// @dev Hook that is called before any transfer of tokens.
/// This includes minting and burning.
function _beforeTokenTransfer(address from, address to, uint256 amount) internal virtual {}
/// @dev Hook that is called after any transfer of tokens.
/// This includes minting and burning.
function _afterTokenTransfer(address from, address to, uint256 amount) internal virtual {}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.4;
import {LibMulticaller} from "multicaller/LibMulticaller.sol";
import "./Constants.sol";
import {ERC20} from "./ERC20.sol";
import {IERC20Lockable} from "../interfaces/IERC20Lockable.sol";
import {IERC20Unlocker} from "../interfaces/IERC20Unlocker.sol";
import {IERC20Referrer} from "../interfaces/IERC20Referrer.sol";
/// @title ERC20Referrer
/// @notice An ERC20 token with referrer tracking and Multicaller support. Tracks
/// the score of each referrer, which is the sum of all balances of accounts that
/// have the referrer as their referrer. Supports locking accounts which enables
/// transfer-less staking contracts that don't disrupt the referrer tracking.
/// @dev Balances are stored as uint232 instead of uint256 since the upper 24 bits
/// of the storage slot are used to store the lock flag & referrer.
/// Referrer 0 should be reserved for the protocol since it's the default referrer.
abstract contract ERC20Referrer is ERC20, IERC20Referrer, IERC20Lockable {
/// -----------------------------------------------------------------------
/// Errors
/// -----------------------------------------------------------------------
/// @dev Error when the balance overflows uint232.
error BalanceOverflow();
/// -----------------------------------------------------------------------
/// Constants
/// -----------------------------------------------------------------------
/// @dev Mask for extracting the locked flag from balance slot. Bit 0.
bytes32 internal constant _LOCKED_MASK = 0x8000000000000000000000000000000000000000000000000000000000000000;
/// @dev Mask for extracting balance from balance slot. Bits [1, 255].
bytes32 internal constant _BALANCE_MASK = 0x7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff;
/// @dev Max balance for an account.
uint256 internal constant _MAX_BALANCE = 0x7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff;
/// @dev The size of a user's balance in bits.
uint256 internal constant _BALANCE_SIZE = 255;
/// -----------------------------------------------------------------------
/// Storage
/// -----------------------------------------------------------------------
/// @dev The score slot of `referrer` is given by:
/// ```
/// mstore(0x0c, _SCORE_SLOT_SEED)
/// mstore(0x00, referrer)
/// let scoreSlot := keccak256(0x0c, 0x20)
/// ```
uint256 internal constant _SCORE_SLOT_SEED = 0xea0f192f;
/// @dev The unlocker slot of `account` is given by:
/// ```
/// mstore(0x0c, _UNLOCKER_SLOT_SEED)
/// mstore(0x00, account)
/// let unlockerSlot := keccak256(0x0c, 0x20)
/// ```
uint256 internal constant _UNLOCKER_SLOT_SEED = 0x1816035a;
/// @dev The referrer slot of `account` is given by:
/// ```
/// mstore(0x0c, _REFERRER_SLOT_SEED)
/// mstore(0x00, account)
/// let referrerSlot := keccak256(0x0c, 0x20)
/// ```
uint256 internal constant _REFERRER_SLOT_SEED = 0x1bc7afec;
/// -----------------------------------------------------------------------
/// IERC20Lockable functions
/// -----------------------------------------------------------------------
/// @inheritdoc IERC20Lockable
function lock(IERC20Unlocker unlocker, bytes calldata data) external override {
address account = LibMulticaller.senderOrSigner();
uint256 accountBalance;
/// @solidity memory-safe-assembly
assembly {
/// -----------------------------------------------------------------------
/// Validation
/// -----------------------------------------------------------------------
// load balance slot
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, account)
let balanceSlot := keccak256(0x0c, 0x20)
let balanceSlotValue := sload(balanceSlot)
accountBalance := and(balanceSlotValue, _BALANCE_MASK)
// ensure account is not already locked
if and(balanceSlotValue, _LOCKED_MASK) {
mstore(0x00, 0x5f0ccd7c) // `AlreadyLocked()`.
revert(0x1c, 0x04)
}
/// -----------------------------------------------------------------------
/// Storage updates
/// -----------------------------------------------------------------------
// set account as locked
sstore(balanceSlot, or(balanceSlotValue, _LOCKED_MASK))
// update unlocker
mstore(0x0c, _UNLOCKER_SLOT_SEED)
mstore(0x00, account)
let unlockerSlot := keccak256(0x0c, 0x20)
sstore(unlockerSlot, unlocker)
}
/// -----------------------------------------------------------------------
/// External calls
/// -----------------------------------------------------------------------
unlocker.lockCallback(account, accountBalance, data);
emit Lock(account, unlocker);
}
/// @inheritdoc IERC20Lockable
function unlock(address account) external override {
IERC20Unlocker unlocker;
/// @solidity memory-safe-assembly
assembly {
/// -----------------------------------------------------------------------
/// Validation
/// -----------------------------------------------------------------------
// load balance slot
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, account)
let balanceSlot := keccak256(0x0c, 0x20)
let balanceSlotValue := sload(balanceSlot)
// ensure account is locked
if iszero(and(balanceSlotValue, _LOCKED_MASK)) {
mstore(0x00, 0x5090d6c6) // `AlreadyUnlocked()`.
revert(0x1c, 0x04)
}
// ensure sender is the unlocker
mstore(0x0c, _UNLOCKER_SLOT_SEED)
mstore(0x00, account)
let unlockerSlot := keccak256(0x0c, 0x20)
unlocker := sload(unlockerSlot)
if iszero(eq(unlocker, caller())) {
mstore(0x00, 0x746db0ff) // `NotUnlocker()`.
revert(0x1c, 0x04)
}
/// -----------------------------------------------------------------------
/// Storage updates
/// -----------------------------------------------------------------------
// set account as unlocked
sstore(balanceSlot, sub(balanceSlotValue, _LOCKED_MASK))
}
emit Unlock(account, unlocker);
}
/// @inheritdoc IERC20Lockable
function isLocked(address account) public view override returns (bool locked) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, account)
let balanceSlot := keccak256(0x0c, 0x20)
let balanceSlotValue := sload(balanceSlot)
locked := shr(255, and(balanceSlotValue, _LOCKED_MASK))
}
}
/// @inheritdoc IERC20Lockable
function unlockerOf(address account) public view override returns (IERC20Unlocker unlocker) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x0c, _UNLOCKER_SLOT_SEED)
mstore(0x00, account)
let unlockerSlot := keccak256(0x0c, 0x20)
unlocker := sload(unlockerSlot)
}
}
/// -----------------------------------------------------------------------
/// Referrer functions
/// -----------------------------------------------------------------------
/// @inheritdoc IERC20Referrer
function scoreOf(address referrer) public view override returns (uint256 score) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x0c, _SCORE_SLOT_SEED)
mstore(0x00, referrer)
score := sload(keccak256(0x0c, 0x20))
}
}
/// @inheritdoc IERC20Referrer
function referrerOf(address account) public view override returns (address referrer) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x0c, _REFERRER_SLOT_SEED)
mstore(0x00, account)
referrer := sload(keccak256(0x0c, 0x20))
}
}
/// -----------------------------------------------------------------------
/// ERC20 overrides
/// -----------------------------------------------------------------------
/// @inheritdoc ERC20
function balanceOf(address owner) public view virtual override returns (uint256 result) {
/// @solidity memory-safe-assembly
assembly {
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, owner)
result := sload(keccak256(0x0c, 0x20))
result := and(result, _BALANCE_MASK)
}
}
/// @inheritdoc ERC20
function approve(address spender, uint256 amount) public virtual override returns (bool) {
address msgSender = LibMulticaller.senderOrSigner();
/// @solidity memory-safe-assembly
assembly {
// Compute the allowance slot and store the amount.
mstore(0x20, spender)
mstore(0x0c, _ALLOWANCE_SLOT_SEED)
mstore(0x00, msgSender)
sstore(keccak256(0x0c, 0x34), amount)
// Emit the {Approval} event.
mstore(0x00, amount)
log3(0x00, 0x20, _APPROVAL_EVENT_SIGNATURE, msgSender, shr(96, mload(0x2c)))
}
return true;
}
/// @inheritdoc ERC20
/// @dev Uses upper 24 bits of balance slot for referrer. Updates referrer scores.
function transfer(address to, uint256 amount) public virtual override returns (bool) {
address msgSender = LibMulticaller.senderOrSigner();
bool toLocked;
_beforeTokenTransfer(msgSender, to, amount, address(0));
/// @solidity memory-safe-assembly
assembly {
// Compute the balance slot and load its value.
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, msgSender)
let fromBalanceSlot := keccak256(0x0c, 0x20)
let fromBalance := sload(fromBalanceSlot)
// Revert if the sender is locked.
if and(fromBalance, _LOCKED_MASK) {
mstore(0x00, 0x6315bfbb) // `AccountLocked()`.
revert(0x1c, 0x04)
}
fromBalance := and(fromBalance, _BALANCE_MASK)
// Revert if insufficient balance.
if gt(amount, fromBalance) {
mstore(0x00, 0xf4d678b8) // `InsufficientBalance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated balance.
// We know `from` is not locked so no need to store the flag.
sstore(fromBalanceSlot, sub(fromBalance, amount))
// Compute the balance slot of `to`.
mstore(0x00, to)
let toBalanceSlot := keccak256(0x0c, 0x20)
// Add and store the updated balance of `to`.
let toBalance := sload(toBalanceSlot)
toLocked := and(toBalance, _LOCKED_MASK)
toBalance := add(and(toBalance, _BALANCE_MASK), amount)
// Revert if updated balance overflows 255 bits
if gt(toBalance, _MAX_BALANCE) {
mstore(0x00, 0x89560ca1) // `BalanceOverflow()`.
revert(0x1c, 0x04)
}
sstore(toBalanceSlot, or(toLocked, toBalance))
// Shift `toLocked` to fit into a bool.
toLocked := shr(255, toLocked)
// Load referrers of `to` and `from`.
mstore(0x0c, _REFERRER_SLOT_SEED)
mstore(0x00, to)
let toReferrer := sload(keccak256(0x0c, 0x20))
mstore(0x00, msgSender)
let fromReferrer := sload(keccak256(0x0c, 0x20))
// Update referrer scores if referrers are different.
if iszero(eq(fromReferrer, toReferrer)) {
// Compute the score slot of `fromReferrer`.
mstore(0x0c, _SCORE_SLOT_SEED)
mstore(0x00, fromReferrer)
let fromScoreSlot := keccak256(0x0c, 0x20)
// Subtract and store the updated score of `fromReferrer`.
sstore(fromScoreSlot, sub(sload(fromScoreSlot), amount))
// Compute the score slot of `toReferrer`.
mstore(0x00, toReferrer)
let toScoreSlot := keccak256(0x0c, 0x20)
// Add and store the updated score of `toReferrer`.
sstore(toScoreSlot, add(sload(toScoreSlot), amount))
}
// Emit the {Transfer} event.
mstore(0x20, amount)
log3(0x20, 0x20, _TRANSFER_EVENT_SIGNATURE, msgSender, to)
}
_afterTokenTransfer(msgSender, to, amount);
// Unlocker callback if `to` is locked.
if (toLocked) {
IERC20Unlocker unlocker = unlockerOf(to);
unlocker.lockedUserReceiveCallback(to, amount);
}
return true;
}
/// @inheritdoc ERC20
/// @dev Uses upper 24 bits of balance slot for referrer. Updates referrer scores.
function transferFrom(address from, address to, uint256 amount) public virtual override returns (bool) {
address msgSender = LibMulticaller.senderOrSigner();
bool toLocked;
_beforeTokenTransfer(from, to, amount, address(0));
/// @solidity memory-safe-assembly
assembly {
let from_ := shl(96, from)
// Compute the allowance slot and load its value.
mstore(0x20, msgSender)
mstore(0x0c, _ALLOWANCE_SLOT_SEED)
mstore(0x00, from)
let allowanceSlot := keccak256(0x0c, 0x34)
let allowance_ := sload(allowanceSlot)
// If the allowance is not the maximum uint256 value.
if add(allowance_, 1) {
// Revert if the amount to be transferred exceeds the allowance.
if gt(amount, allowance_) {
mstore(0x00, 0x13be252b) // `InsufficientAllowance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated allowance.
sstore(allowanceSlot, sub(allowance_, amount))
}
// Compute the balance slot and load its value.
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, from)
let fromBalanceSlot := keccak256(0x0c, 0x20)
let fromBalance := sload(fromBalanceSlot)
// Revert if `from` is locked.
if and(fromBalance, _LOCKED_MASK) {
mstore(0x00, 0x6315bfbb) // `AccountLocked()`.
revert(0x1c, 0x04)
}
fromBalance := and(fromBalance, _BALANCE_MASK)
// Revert if insufficient balance.
if gt(amount, fromBalance) {
mstore(0x00, 0xf4d678b8) // `InsufficientBalance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated balance.
// We know `from` is not locked so no need to store the flag.
sstore(fromBalanceSlot, sub(fromBalance, amount))
// Compute the balance slot of `to`.
mstore(0x00, to)
let toBalanceSlot := keccak256(0x0c, 0x20)
// Add and store the updated balance of `to`.
let toBalance := sload(toBalanceSlot)
toLocked := and(toBalance, _LOCKED_MASK)
toBalance := add(and(toBalance, _BALANCE_MASK), amount)
// Revert if updated balance overflows 255 bits
if gt(toBalance, _MAX_BALANCE) {
mstore(0x00, 0x89560ca1) // `BalanceOverflow()`.
revert(0x1c, 0x04)
}
sstore(toBalanceSlot, or(toLocked, toBalance))
// Shift `toLocked` to fit into a bool.
toLocked := shr(255, toLocked)
// Load referrers of `to` and `from`.
mstore(0x0c, _REFERRER_SLOT_SEED)
mstore(0x00, to)
let toReferrer := sload(keccak256(0x0c, 0x20))
mstore(0x00, from)
let fromReferrer := sload(keccak256(0x0c, 0x20))
// Update referrer scores if referrers are different.
if iszero(eq(fromReferrer, toReferrer)) {
// Compute the score slot of `fromReferrer`.
mstore(0x0c, _SCORE_SLOT_SEED)
mstore(0x00, fromReferrer)
let fromScoreSlot := keccak256(0x0c, 0x20)
// Subtract and store the updated score of `fromReferrer`.
sstore(fromScoreSlot, sub(sload(fromScoreSlot), amount))
// Compute the score slot of `toReferrer`.
mstore(0x00, toReferrer)
let toScoreSlot := keccak256(0x0c, 0x20)
// Add and store the updated score of `toReferrer`.
sstore(toScoreSlot, add(sload(toScoreSlot), amount))
}
// Emit the {Transfer} event.
mstore(0x20, amount)
log3(0x20, 0x20, _TRANSFER_EVENT_SIGNATURE, from, to)
}
_afterTokenTransfer(from, to, amount);
// Unlocker callback if `to` is locked.
if (toLocked) {
IERC20Unlocker unlocker = unlockerOf(to);
unlocker.lockedUserReceiveCallback(to, amount);
}
return true;
}
/// @inheritdoc ERC20
/// @dev Uses upper 24 bits of balance slot for referrer. Updates referrer scores.
/// Uses the existing referrer of the `to` address.
function _mint(address to, uint256 amount) internal virtual override {
bool toLocked;
_beforeTokenTransfer(address(0), to, amount, address(0));
/// @solidity memory-safe-assembly
assembly {
let totalSupplyBefore := sload(_TOTAL_SUPPLY_SLOT)
let totalSupplyAfter := add(totalSupplyBefore, amount)
// Revert if the total supply overflows.
if lt(totalSupplyAfter, totalSupplyBefore) {
mstore(0x00, 0xe5cfe957) // `TotalSupplyOverflow()`.
revert(0x1c, 0x04)
}
// Store the updated total supply.
sstore(_TOTAL_SUPPLY_SLOT, totalSupplyAfter)
// Compute the balance slot and load its value.
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, to)
let toBalanceSlot := keccak256(0x0c, 0x20)
// Add and store the updated balance.
let toBalance := sload(toBalanceSlot)
toLocked := and(toBalance, _LOCKED_MASK)
toBalance := add(and(toBalance, _BALANCE_MASK), amount)
// Revert if updated balance overflows 255 bits
if gt(toBalance, _MAX_BALANCE) {
mstore(0x00, 0x89560ca1) // `BalanceOverflow()`.
revert(0x1c, 0x04)
}
sstore(toBalanceSlot, or(toLocked, toBalance))
// Shift `toLocked` to fit into a bool.
toLocked := shr(255, toLocked)
// Update referrer score.
// Load referrer of `to`.
mstore(0x0c, _REFERRER_SLOT_SEED)
mstore(0x00, to)
let toReferrer := sload(keccak256(0x0c, 0x20))
// Compute the score slot of `toReferrer`.
mstore(0x0c, _SCORE_SLOT_SEED)
mstore(0x00, toReferrer)
let toScoreSlot := keccak256(0x0c, 0x20)
// Add and store the updated score of `toReferrer`.
sstore(toScoreSlot, add(sload(toScoreSlot), amount))
// Emit the {Transfer} event.
mstore(0x20, amount)
log3(0x20, 0x20, _TRANSFER_EVENT_SIGNATURE, 0, to)
}
_afterTokenTransfer(address(0), to, amount);
// Unlocker callback if `to` is locked.
if (toLocked) {
IERC20Unlocker unlocker = unlockerOf(to);
unlocker.lockedUserReceiveCallback(to, amount);
}
}
/// @dev Uses upper 24 bits of balance slot for referrer. Updates referrer scores.
/// Updates the referrer of `to` to `referrer`.
function _mint(address to, uint256 amount, address referrer) internal virtual {
bool toLocked;
_beforeTokenTransfer(address(0), to, amount, referrer);
/// @solidity memory-safe-assembly
assembly {
let totalSupplyBefore := sload(_TOTAL_SUPPLY_SLOT)
let totalSupplyAfter := add(totalSupplyBefore, amount)
// Revert if the total supply overflows.
if lt(totalSupplyAfter, totalSupplyBefore) {
mstore(0x00, 0xe5cfe957) // `TotalSupplyOverflow()`.
revert(0x1c, 0x04)
}
// Store the updated total supply.
sstore(_TOTAL_SUPPLY_SLOT, totalSupplyAfter)
// Compute the balance slot and load its value.
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, to)
let toBalanceSlot := keccak256(0x0c, 0x20)
// Add and store the updated balance.
let toBalance := sload(toBalanceSlot)
toLocked := and(toBalance, _LOCKED_MASK)
toBalance := and(toBalance, _BALANCE_MASK)
let updatedToBalance := add(toBalance, amount)
// Revert if updated balance overflows 255 bits
if gt(updatedToBalance, _MAX_BALANCE) {
mstore(0x00, 0x89560ca1) // `BalanceOverflow()`.
revert(0x1c, 0x04)
}
sstore(toBalanceSlot, or(toLocked, updatedToBalance))
// Shift `toLocked` to fit into a bool.
toLocked := shr(255, toLocked)
// Load referrer of `to`.
mstore(0x0c, _REFERRER_SLOT_SEED)
mstore(0x00, to)
let toReferrerSlot := keccak256(0x0c, 0x20)
let toReferrer := sload(toReferrerSlot)
// if `toReferrer` is not 0, we ignore `referrer` and use `toReferrer`
// this ensures that once the referrer of an account is set, it cannot be updated
if toReferrer { referrer := toReferrer }
// Preload score slot seed since it's used in both branches
mstore(0x0c, _SCORE_SLOT_SEED)
// Update referrer scores.
switch eq(toReferrer, referrer)
case 0 {
// Referrers are different.
// Need to subtract `toBalance` from the original referrer's score
// and give `toBalance + amount` to the new referrer.
if toBalance {
// Compute the score slot of `toReferrer`.
mstore(0x00, toReferrer)
let toScoreSlot := keccak256(0x0c, 0x20)
// Subtract and store the updated score of `toReferrer`.
sstore(toScoreSlot, sub(sload(toScoreSlot), toBalance))
}
// Compute the score slot of `referrer`.
mstore(0x00, referrer)
let newReferrerScoreSlot := keccak256(0x0c, 0x20)
// Add and store the updated score of `referrer`.
sstore(newReferrerScoreSlot, add(sload(newReferrerScoreSlot), updatedToBalance))
// Set the referrer of `to` to `referrer`.
sstore(toReferrerSlot, referrer)
}
default {
// Same referrer as before.
// Simply add `amount` to the score of the referrer.
// Compute the score slot of `toReferrer`.
mstore(0x00, toReferrer)
let toScoreSlot := keccak256(0x0c, 0x20)
// Add and store the updated score of `toReferrer`.
sstore(toScoreSlot, add(sload(toScoreSlot), amount))
}
// Emit the {Transfer} event.
mstore(0x20, amount)
log3(0x20, 0x20, _TRANSFER_EVENT_SIGNATURE, 0, to)
}
_afterTokenTransfer(address(0), to, amount);
// Unlocker callback if `to` is locked.
if (toLocked) {
IERC20Unlocker unlocker = unlockerOf(to);
unlocker.lockedUserReceiveCallback(to, amount);
}
}
/// @dev Burns `amount` tokens from `from`, reducing the total supply.
///
/// Emits a {Transfer} event.
function _burn(address from, uint256 amount) internal virtual override {
_beforeTokenTransfer(from, address(0), amount, address(0));
/// @solidity memory-safe-assembly
assembly {
// Compute the balance slot and load its value.
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, from)
let fromBalanceSlot := keccak256(0x0c, 0x20)
let fromBalance := sload(fromBalanceSlot)
// Revert if `from` is locked.
if and(fromBalance, _LOCKED_MASK) {
mstore(0x00, 0x6315bfbb) // `AccountLocked()`.
revert(0x1c, 0x04)
}
fromBalance := and(fromBalance, _BALANCE_MASK)
// Revert if insufficient balance.
if gt(amount, fromBalance) {
mstore(0x00, 0xf4d678b8) // `InsufficientBalance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated balance.
// We know `from` is not locked so no need to store the flag.
sstore(fromBalanceSlot, sub(fromBalance, amount))
// Subtract and store the updated total supply.
sstore(_TOTAL_SUPPLY_SLOT, sub(sload(_TOTAL_SUPPLY_SLOT), amount))
// Update referrer score.
// Load referrer of `from`.
mstore(0x0c, _REFERRER_SLOT_SEED)
mstore(0x00, from)
let fromReferrer := sload(keccak256(0x0c, 0x20))
// Compute the score slot of `fromReferrer`.
mstore(0x0c, _SCORE_SLOT_SEED)
mstore(0x00, fromReferrer)
let fromScoreSlot := keccak256(0x0c, 0x20)
// Subtract and store the updated score of `fromReferrer`.
sstore(fromScoreSlot, sub(sload(fromScoreSlot), amount))
// Emit the {Transfer} event.
mstore(0x00, amount)
log3(0x00, 0x20, _TRANSFER_EVENT_SIGNATURE, from, 0)
}
_afterTokenTransfer(from, address(0), amount);
}
/// @dev Moves `amount` of tokens from `from` to `to`.
function _transfer(address from, address to, uint256 amount) internal virtual override {
bool toLocked;
_beforeTokenTransfer(from, to, amount, address(0));
/// @solidity memory-safe-assembly
assembly {
let from_ := shl(96, from)
// Compute the balance slot and load its value.
mstore(0x0c, _BALANCE_SLOT_SEED)
mstore(0x00, from)
let fromBalanceSlot := keccak256(0x0c, 0x20)
let fromBalance := sload(fromBalanceSlot)
// Revert if `from` is locked.
if and(fromBalance, _LOCKED_MASK) {
mstore(0x00, 0x6315bfbb) // `AccountLocked()`.
revert(0x1c, 0x04)
}
fromBalance := and(fromBalance, _BALANCE_MASK)
// Revert if insufficient balance.
if gt(amount, fromBalance) {
mstore(0x00, 0xf4d678b8) // `InsufficientBalance()`.
revert(0x1c, 0x04)
}
// Subtract and store the updated balance.
// We know `from` is not locked so no need to store the flag.
sstore(fromBalanceSlot, sub(fromBalance, amount))
// Compute the balance slot of `to`.
mstore(0x00, to)
let toBalanceSlot := keccak256(0x0c, 0x20)
let toBalance := sload(toBalanceSlot)
toLocked := and(toBalance, _LOCKED_MASK)
// Add and store the updated balance of `to`.
// Revert if updated balance overflows 255 bits
toBalance := add(and(toBalance, _BALANCE_MASK), amount)
if gt(toBalance, _MAX_BALANCE) {
mstore(0x00, 0x89560ca1) // `BalanceOverflow()`.
revert(0x1c, 0x04)
}
sstore(toBalanceSlot, or(toLocked, toBalance))
// Shift `toLocked` to fit into a bool.
toLocked := shr(255, toLocked)
// Load referrers of `to` and `from`.
mstore(0x0c, _REFERRER_SLOT_SEED)
mstore(0x00, to)
let toReferrer := sload(keccak256(0x0c, 0x20))
mstore(0x00, from)
let fromReferrer := sload(keccak256(0x0c, 0x20))
// Update referrer scores if referrers are different.
if iszero(eq(fromReferrer, toReferrer)) {
// Compute the score slot of `fromReferrer`.
mstore(0x0c, _SCORE_SLOT_SEED)
mstore(0x00, fromReferrer)
let fromScoreSlot := keccak256(0x0c, 0x20)
// Subtract and store the updated score of `fromReferrer`.
sstore(fromScoreSlot, sub(sload(fromScoreSlot), amount))
// Compute the score slot of `toReferrer`.
mstore(0x00, toReferrer)
let toScoreSlot := keccak256(0x0c, 0x20)
// Add and store the updated score of `toReferrer`.
sstore(toScoreSlot, add(sload(toScoreSlot), amount))
}
// Emit the {Transfer} event.
mstore(0x20, amount)
log3(0x20, 0x20, _TRANSFER_EVENT_SIGNATURE, from, to)
}
_afterTokenTransfer(from, to, amount);
// Unlocker callback if `to` is locked.
if (toLocked) {
IERC20Unlocker unlocker = unlockerOf(to);
unlocker.lockedUserReceiveCallback(to, amount);
}
}
function _beforeTokenTransfer(address from, address to, uint256 amount, address newReferrer) internal virtual {}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {PoolKey} from "../types/PoolKey.sol";
import {IHooks} from "../interfaces/IHooks.sol";
import {SafeCast} from "./SafeCast.sol";
import {LPFeeLibrary} from "./LPFeeLibrary.sol";
import {BalanceDelta, toBalanceDelta, BalanceDeltaLibrary} from "../types/BalanceDelta.sol";
import {BeforeSwapDelta, BeforeSwapDeltaLibrary} from "../types/BeforeSwapDelta.sol";
import {IPoolManager} from "../interfaces/IPoolManager.sol";
import {ParseBytes} from "./ParseBytes.sol";
import {CustomRevert} from "./CustomRevert.sol";
/// @notice V4 decides whether to invoke specific hooks by inspecting the least significant bits
/// of the address that the hooks contract is deployed to.
/// For example, a hooks contract deployed to address: 0x0000000000000000000000000000000000002400
/// has the lowest bits '10 0100 0000 0000' which would cause the 'before initialize' and 'after add liquidity' hooks to be used.
library Hooks {
using LPFeeLibrary for uint24;
using Hooks for IHooks;
using SafeCast for int256;
using BeforeSwapDeltaLibrary for BeforeSwapDelta;
using ParseBytes for bytes;
using CustomRevert for bytes4;
uint160 internal constant ALL_HOOK_MASK = uint160((1 << 14) - 1);
uint160 internal constant BEFORE_INITIALIZE_FLAG = 1 << 13;
uint160 internal constant AFTER_INITIALIZE_FLAG = 1 << 12;
uint160 internal constant BEFORE_ADD_LIQUIDITY_FLAG = 1 << 11;
uint160 internal constant AFTER_ADD_LIQUIDITY_FLAG = 1 << 10;
uint160 internal constant BEFORE_REMOVE_LIQUIDITY_FLAG = 1 << 9;
uint160 internal constant AFTER_REMOVE_LIQUIDITY_FLAG = 1 << 8;
uint160 internal constant BEFORE_SWAP_FLAG = 1 << 7;
uint160 internal constant AFTER_SWAP_FLAG = 1 << 6;
uint160 internal constant BEFORE_DONATE_FLAG = 1 << 5;
uint160 internal constant AFTER_DONATE_FLAG = 1 << 4;
uint160 internal constant BEFORE_SWAP_RETURNS_DELTA_FLAG = 1 << 3;
uint160 internal constant AFTER_SWAP_RETURNS_DELTA_FLAG = 1 << 2;
uint160 internal constant AFTER_ADD_LIQUIDITY_RETURNS_DELTA_FLAG = 1 << 1;
uint160 internal constant AFTER_REMOVE_LIQUIDITY_RETURNS_DELTA_FLAG = 1 << 0;
struct Permissions {
bool beforeInitialize;
bool afterInitialize;
bool beforeAddLiquidity;
bool afterAddLiquidity;
bool beforeRemoveLiquidity;
bool afterRemoveLiquidity;
bool beforeSwap;
bool afterSwap;
bool beforeDonate;
bool afterDonate;
bool beforeSwapReturnDelta;
bool afterSwapReturnDelta;
bool afterAddLiquidityReturnDelta;
bool afterRemoveLiquidityReturnDelta;
}
/// @notice Thrown if the address will not lead to the specified hook calls being called
/// @param hooks The address of the hooks contract
error HookAddressNotValid(address hooks);
/// @notice Hook did not return its selector
error InvalidHookResponse();
/// @notice Additional context for ERC-7751 wrapped error when a hook call fails
error HookCallFailed();
/// @notice The hook's delta changed the swap from exactIn to exactOut or vice versa
error HookDeltaExceedsSwapAmount();
/// @notice Utility function intended to be used in hook constructors to ensure
/// the deployed hooks address causes the intended hooks to be called
/// @param permissions The hooks that are intended to be called
/// @dev permissions param is memory as the function will be called from constructors
function validateHookPermissions(IHooks self, Permissions memory permissions) internal pure {
if (
permissions.beforeInitialize != self.hasPermission(BEFORE_INITIALIZE_FLAG)
|| permissions.afterInitialize != self.hasPermission(AFTER_INITIALIZE_FLAG)
|| permissions.beforeAddLiquidity != self.hasPermission(BEFORE_ADD_LIQUIDITY_FLAG)
|| permissions.afterAddLiquidity != self.hasPermission(AFTER_ADD_LIQUIDITY_FLAG)
|| permissions.beforeRemoveLiquidity != self.hasPermission(BEFORE_REMOVE_LIQUIDITY_FLAG)
|| permissions.afterRemoveLiquidity != self.hasPermission(AFTER_REMOVE_LIQUIDITY_FLAG)
|| permissions.beforeSwap != self.hasPermission(BEFORE_SWAP_FLAG)
|| permissions.afterSwap != self.hasPermission(AFTER_SWAP_FLAG)
|| permissions.beforeDonate != self.hasPermission(BEFORE_DONATE_FLAG)
|| permissions.afterDonate != self.hasPermission(AFTER_DONATE_FLAG)
|| permissions.beforeSwapReturnDelta != self.hasPermission(BEFORE_SWAP_RETURNS_DELTA_FLAG)
|| permissions.afterSwapReturnDelta != self.hasPermission(AFTER_SWAP_RETURNS_DELTA_FLAG)
|| permissions.afterAddLiquidityReturnDelta != self.hasPermission(AFTER_ADD_LIQUIDITY_RETURNS_DELTA_FLAG)
|| permissions.afterRemoveLiquidityReturnDelta
!= self.hasPermission(AFTER_REMOVE_LIQUIDITY_RETURNS_DELTA_FLAG)
) {
HookAddressNotValid.selector.revertWith(address(self));
}
}
/// @notice Ensures that the hook address includes at least one hook flag or dynamic fees, or is the 0 address
/// @param self The hook to verify
/// @param fee The fee of the pool the hook is used with
/// @return bool True if the hook address is valid
function isValidHookAddress(IHooks self, uint24 fee) internal pure returns (bool) {
// The hook can only have a flag to return a hook delta on an action if it also has the corresponding action flag
if (!self.hasPermission(BEFORE_SWAP_FLAG) && self.hasPermission(BEFORE_SWAP_RETURNS_DELTA_FLAG)) return false;
if (!self.hasPermission(AFTER_SWAP_FLAG) && self.hasPermission(AFTER_SWAP_RETURNS_DELTA_FLAG)) return false;
if (!self.hasPermission(AFTER_ADD_LIQUIDITY_FLAG) && self.hasPermission(AFTER_ADD_LIQUIDITY_RETURNS_DELTA_FLAG))
{
return false;
}
if (
!self.hasPermission(AFTER_REMOVE_LIQUIDITY_FLAG)
&& self.hasPermission(AFTER_REMOVE_LIQUIDITY_RETURNS_DELTA_FLAG)
) return false;
// If there is no hook contract set, then fee cannot be dynamic
// If a hook contract is set, it must have at least 1 flag set, or have a dynamic fee
return address(self) == address(0)
? !fee.isDynamicFee()
: (uint160(address(self)) & ALL_HOOK_MASK > 0 || fee.isDynamicFee());
}
/// @notice performs a hook call using the given calldata on the given hook that doesn't return a delta
/// @return result The complete data returned by the hook
function callHook(IHooks self, bytes memory data) internal returns (bytes memory result) {
bool success;
assembly ("memory-safe") {
success := call(gas(), self, 0, add(data, 0x20), mload(data), 0, 0)
}
// Revert with FailedHookCall, containing any error message to bubble up
if (!success) CustomRevert.bubbleUpAndRevertWith(address(self), bytes4(data), HookCallFailed.selector);
// The call was successful, fetch the returned data
assembly ("memory-safe") {
// allocate result byte array from the free memory pointer
result := mload(0x40)
// store new free memory pointer at the end of the array padded to 32 bytes
mstore(0x40, add(result, and(add(returndatasize(), 0x3f), not(0x1f))))
// store length in memory
mstore(result, returndatasize())
// copy return data to result
returndatacopy(add(result, 0x20), 0, returndatasize())
}
// Length must be at least 32 to contain the selector. Check expected selector and returned selector match.
if (result.length < 32 || result.parseSelector() != data.parseSelector()) {
InvalidHookResponse.selector.revertWith();
}
}
/// @notice performs a hook call using the given calldata on the given hook
/// @return int256 The delta returned by the hook
function callHookWithReturnDelta(IHooks self, bytes memory data, bool parseReturn) internal returns (int256) {
bytes memory result = callHook(self, data);
// If this hook wasn't meant to return something, default to 0 delta
if (!parseReturn) return 0;
// A length of 64 bytes is required to return a bytes4, and a 32 byte delta
if (result.length != 64) InvalidHookResponse.selector.revertWith();
return result.parseReturnDelta();
}
/// @notice modifier to prevent calling a hook if they initiated the action
modifier noSelfCall(IHooks self) {
if (msg.sender != address(self)) {
_;
}
}
/// @notice calls beforeInitialize hook if permissioned and validates return value
function beforeInitialize(IHooks self, PoolKey memory key, uint160 sqrtPriceX96) internal noSelfCall(self) {
if (self.hasPermission(BEFORE_INITIALIZE_FLAG)) {
self.callHook(abi.encodeCall(IHooks.beforeInitialize, (msg.sender, key, sqrtPriceX96)));
}
}
/// @notice calls afterInitialize hook if permissioned and validates return value
function afterInitialize(IHooks self, PoolKey memory key, uint160 sqrtPriceX96, int24 tick)
internal
noSelfCall(self)
{
if (self.hasPermission(AFTER_INITIALIZE_FLAG)) {
self.callHook(abi.encodeCall(IHooks.afterInitialize, (msg.sender, key, sqrtPriceX96, tick)));
}
}
/// @notice calls beforeModifyLiquidity hook if permissioned and validates return value
function beforeModifyLiquidity(
IHooks self,
PoolKey memory key,
IPoolManager.ModifyLiquidityParams memory params,
bytes calldata hookData
) internal noSelfCall(self) {
if (params.liquidityDelta > 0 && self.hasPermission(BEFORE_ADD_LIQUIDITY_FLAG)) {
self.callHook(abi.encodeCall(IHooks.beforeAddLiquidity, (msg.sender, key, params, hookData)));
} else if (params.liquidityDelta <= 0 && self.hasPermission(BEFORE_REMOVE_LIQUIDITY_FLAG)) {
self.callHook(abi.encodeCall(IHooks.beforeRemoveLiquidity, (msg.sender, key, params, hookData)));
}
}
/// @notice calls afterModifyLiquidity hook if permissioned and validates return value
function afterModifyLiquidity(
IHooks self,
PoolKey memory key,
IPoolManager.ModifyLiquidityParams memory params,
BalanceDelta delta,
BalanceDelta feesAccrued,
bytes calldata hookData
) internal returns (BalanceDelta callerDelta, BalanceDelta hookDelta) {
if (msg.sender == address(self)) return (delta, BalanceDeltaLibrary.ZERO_DELTA);
callerDelta = delta;
if (params.liquidityDelta > 0) {
if (self.hasPermission(AFTER_ADD_LIQUIDITY_FLAG)) {
hookDelta = BalanceDelta.wrap(
self.callHookWithReturnDelta(
abi.encodeCall(
IHooks.afterAddLiquidity, (msg.sender, key, params, delta, feesAccrued, hookData)
),
self.hasPermission(AFTER_ADD_LIQUIDITY_RETURNS_DELTA_FLAG)
)
);
callerDelta = callerDelta - hookDelta;
}
} else {
if (self.hasPermission(AFTER_REMOVE_LIQUIDITY_FLAG)) {
hookDelta = BalanceDelta.wrap(
self.callHookWithReturnDelta(
abi.encodeCall(
IHooks.afterRemoveLiquidity, (msg.sender, key, params, delta, feesAccrued, hookData)
),
self.hasPermission(AFTER_REMOVE_LIQUIDITY_RETURNS_DELTA_FLAG)
)
);
callerDelta = callerDelta - hookDelta;
}
}
}
/// @notice calls beforeSwap hook if permissioned and validates return value
function beforeSwap(IHooks self, PoolKey memory key, IPoolManager.SwapParams memory params, bytes calldata hookData)
internal
returns (int256 amountToSwap, BeforeSwapDelta hookReturn, uint24 lpFeeOverride)
{
amountToSwap = params.amountSpecified;
if (msg.sender == address(self)) return (amountToSwap, BeforeSwapDeltaLibrary.ZERO_DELTA, lpFeeOverride);
if (self.hasPermission(BEFORE_SWAP_FLAG)) {
bytes memory result = callHook(self, abi.encodeCall(IHooks.beforeSwap, (msg.sender, key, params, hookData)));
// A length of 96 bytes is required to return a bytes4, a 32 byte delta, and an LP fee
if (result.length != 96) InvalidHookResponse.selector.revertWith();
// dynamic fee pools that want to override the cache fee, return a valid fee with the override flag. If override flag
// is set but an invalid fee is returned, the transaction will revert. Otherwise the current LP fee will be used
if (key.fee.isDynamicFee()) lpFeeOverride = result.parseFee();
// skip this logic for the case where the hook return is 0
if (self.hasPermission(BEFORE_SWAP_RETURNS_DELTA_FLAG)) {
hookReturn = BeforeSwapDelta.wrap(result.parseReturnDelta());
// any return in unspecified is passed to the afterSwap hook for handling
int128 hookDeltaSpecified = hookReturn.getSpecifiedDelta();
// Update the swap amount according to the hook's return, and check that the swap type doesn't change (exact input/output)
if (hookDeltaSpecified != 0) {
bool exactInput = amountToSwap < 0;
amountToSwap += hookDeltaSpecified;
if (exactInput ? amountToSwap > 0 : amountToSwap < 0) {
HookDeltaExceedsSwapAmount.selector.revertWith();
}
}
}
}
}
/// @notice calls afterSwap hook if permissioned and validates return value
function afterSwap(
IHooks self,
PoolKey memory key,
IPoolManager.SwapParams memory params,
BalanceDelta swapDelta,
bytes calldata hookData,
BeforeSwapDelta beforeSwapHookReturn
) internal returns (BalanceDelta, BalanceDelta) {
if (msg.sender == address(self)) return (swapDelta, BalanceDeltaLibrary.ZERO_DELTA);
int128 hookDeltaSpecified = beforeSwapHookReturn.getSpecifiedDelta();
int128 hookDeltaUnspecified = beforeSwapHookReturn.getUnspecifiedDelta();
if (self.hasPermission(AFTER_SWAP_FLAG)) {
hookDeltaUnspecified += self.callHookWithReturnDelta(
abi.encodeCall(IHooks.afterSwap, (msg.sender, key, params, swapDelta, hookData)),
self.hasPermission(AFTER_SWAP_RETURNS_DELTA_FLAG)
).toInt128();
}
BalanceDelta hookDelta;
if (hookDeltaUnspecified != 0 || hookDeltaSpecified != 0) {
hookDelta = (params.amountSpecified < 0 == params.zeroForOne)
? toBalanceDelta(hookDeltaSpecified, hookDeltaUnspecified)
: toBalanceDelta(hookDeltaUnspecified, hookDeltaSpecified);
// the caller has to pay for (or receive) the hook's delta
swapDelta = swapDelta - hookDelta;
}
return (swapDelta, hookDelta);
}
/// @notice calls beforeDonate hook if permissioned and validates return value
function beforeDonate(IHooks self, PoolKey memory key, uint256 amount0, uint256 amount1, bytes calldata hookData)
internal
noSelfCall(self)
{
if (self.hasPermission(BEFORE_DONATE_FLAG)) {
self.callHook(abi.encodeCall(IHooks.beforeDonate, (msg.sender, key, amount0, amount1, hookData)));
}
}
/// @notice calls afterDonate hook if permissioned and validates return value
function afterDonate(IHooks self, PoolKey memory key, uint256 amount0, uint256 amount1, bytes calldata hookData)
internal
noSelfCall(self)
{
if (self.hasPermission(AFTER_DONATE_FLAG)) {
self.callHook(abi.encodeCall(IHooks.afterDonate, (msg.sender, key, amount0, amount1, hookData)));
}
}
function hasPermission(IHooks self, uint160 flag) internal pure returns (bool) {
return uint160(address(self)) & flag != 0;
}
}// SPDX-License-Identifier: MIT
pragma solidity >=0.5.0;
/// @title IERC20Unlocker - Interface for an unlocker contract for `IERC20Lockable`.
/// @notice An unlocker contract is able to unlock accounts that have been locked by a `IERC20Lockable` contract.
/// The unlocker contract is expected to implement the `IERC20Unlocker` interface.
interface IERC20Unlocker {
/// @notice Called when an account calls `IERC20Lockable.lock()` and specifies this contract as the unlocker.
/// @param account The account that called `IERC20Lockable.lock()`.
/// @param balance The balance of the account after the lock.
/// @param data The data passed to `IERC20Lockable.lock()`.
function lockCallback(address account, uint256 balance, bytes calldata data) external;
/// @notice Called when a locked account with this contract as the unlocker receives tokens.
/// @param account The account that received tokens.
/// @param receiveAmount The amount of tokens received.
function lockedUserReceiveCallback(address account, uint256 receiveAmount) external;
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {CustomRevert} from "./CustomRevert.sol";
/// @notice Library of helper functions for a pools LP fee
library LPFeeLibrary {
using LPFeeLibrary for uint24;
using CustomRevert for bytes4;
/// @notice Thrown when the static or dynamic fee on a pool exceeds 100%.
error LPFeeTooLarge(uint24 fee);
/// @notice An lp fee of exactly 0b1000000... signals a dynamic fee pool. This isn't a valid static fee as it is > MAX_LP_FEE
uint24 public constant DYNAMIC_FEE_FLAG = 0x800000;
/// @notice the second bit of the fee returned by beforeSwap is used to signal if the stored LP fee should be overridden in this swap
// only dynamic-fee pools can return a fee via the beforeSwap hook
uint24 public constant OVERRIDE_FEE_FLAG = 0x400000;
/// @notice mask to remove the override fee flag from a fee returned by the beforeSwaphook
uint24 public constant REMOVE_OVERRIDE_MASK = 0xBFFFFF;
/// @notice the lp fee is represented in hundredths of a bip, so the max is 100%
uint24 public constant MAX_LP_FEE = 1000000;
/// @notice returns true if a pool's LP fee signals that the pool has a dynamic fee
/// @param self The fee to check
/// @return bool True of the fee is dynamic
function isDynamicFee(uint24 self) internal pure returns (bool) {
return self == DYNAMIC_FEE_FLAG;
}
/// @notice returns true if an LP fee is valid, aka not above the maximum permitted fee
/// @param self The fee to check
/// @return bool True of the fee is valid
function isValid(uint24 self) internal pure returns (bool) {
return self <= MAX_LP_FEE;
}
/// @notice validates whether an LP fee is larger than the maximum, and reverts if invalid
/// @param self The fee to validate
function validate(uint24 self) internal pure {
if (!self.isValid()) LPFeeTooLarge.selector.revertWith(self);
}
/// @notice gets and validates the initial LP fee for a pool. Dynamic fee pools have an initial fee of 0.
/// @dev if a dynamic fee pool wants a non-0 initial fee, it should call `updateDynamicLPFee` in the afterInitialize hook
/// @param self The fee to get the initial LP from
/// @return initialFee 0 if the fee is dynamic, otherwise the fee (if valid)
function getInitialLPFee(uint24 self) internal pure returns (uint24) {
// the initial fee for a dynamic fee pool is 0
if (self.isDynamicFee()) return 0;
self.validate();
return self;
}
/// @notice returns true if the fee has the override flag set (2nd highest bit of the uint24)
/// @param self The fee to check
/// @return bool True of the fee has the override flag set
function isOverride(uint24 self) internal pure returns (bool) {
return self & OVERRIDE_FEE_FLAG != 0;
}
/// @notice returns a fee with the override flag removed
/// @param self The fee to remove the override flag from
/// @return fee The fee without the override flag set
function removeOverrideFlag(uint24 self) internal pure returns (uint24) {
return self & REMOVE_OVERRIDE_MASK;
}
/// @notice Removes the override flag and validates the fee (reverts if the fee is too large)
/// @param self The fee to remove the override flag from, and then validate
/// @return fee The fee without the override flag set (if valid)
function removeOverrideFlagAndValidate(uint24 self) internal pure returns (uint24 fee) {
fee = self.removeOverrideFlag();
fee.validate();
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/// @notice Parses bytes returned from hooks and the byte selector used to check return selectors from hooks.
/// @dev parseSelector also is used to parse the expected selector
/// For parsing hook returns, note that all hooks return either bytes4 or (bytes4, 32-byte-delta) or (bytes4, 32-byte-delta, uint24).
library ParseBytes {
function parseSelector(bytes memory result) internal pure returns (bytes4 selector) {
// equivalent: (selector,) = abi.decode(result, (bytes4, int256));
assembly ("memory-safe") {
selector := mload(add(result, 0x20))
}
}
function parseFee(bytes memory result) internal pure returns (uint24 lpFee) {
// equivalent: (,, lpFee) = abi.decode(result, (bytes4, int256, uint24));
assembly ("memory-safe") {
lpFee := mload(add(result, 0x60))
}
}
function parseReturnDelta(bytes memory result) internal pure returns (int256 hookReturn) {
// equivalent: (, hookReturnDelta) = abi.decode(result, (bytes4, int256));
assembly ("memory-safe") {
hookReturn := mload(add(result, 0x40))
}
}
}{
"remappings": [
"@uniswap/v4-core/=lib/v4-core/",
"solmate/src/=lib/solmate/src/",
"solmate/utils/=lib/solmate/src/utils/",
"@ensdomains/=lib/v4-core/node_modules/@ensdomains/",
"@openzeppelin/=lib/v4-core/lib/openzeppelin-contracts/",
"@openzeppelin/contracts/=lib/v4-core/lib/openzeppelin-contracts/contracts/",
"biddog/=lib/biddog/src/",
"clones-with-immutable-args/=lib/clones-with-immutable-args/src/",
"create3-factory/=lib/create3-factory/",
"ds-test/=lib/clones-with-immutable-args/lib/ds-test/src/",
"erc4626-tests/=lib/v4-core/lib/openzeppelin-contracts/lib/erc4626-tests/",
"flood-contracts/=lib/flood-contracts/",
"forge-gas-snapshot/=lib/permit2/lib/forge-gas-snapshot/src/",
"forge-std/=lib/forge-std/src/",
"hardhat/=lib/v4-core/node_modules/hardhat/",
"leb128-nooffset/=lib/flood-contracts/lib/leb128-nooffset/src/",
"leb128/=lib/flood-contracts/lib/leb128-nooffset/src/",
"multicaller/=lib/multicaller/src/",
"openzeppelin-contracts/=lib/v4-core/lib/openzeppelin-contracts/",
"permit2/=lib/permit2/",
"solady/=lib/solady/src/",
"v4-core/=lib/v4-core/src/"
],
"optimizer": {
"enabled": true,
"runs": 7500
},
"metadata": {
"useLiteralContent": false,
"bytecodeHash": "ipfs",
"appendCBOR": true
},
"outputSelection": {
"*": {
"*": [
"evm.bytecode",
"evm.deployedBytecode",
"devdoc",
"userdoc",
"metadata",
"abi"
]
}
},
"evmVersion": "cancun",
"viaIR": true,
"libraries": {
"src/lib/BunniHookLogic.sol": {
"BunniHookLogic": "0x59f17B5b56a3E156BEcfDCF1F12298fc88E165B7"
},
"src/lib/BunniHubLogic.sol": {
"BunniHubLogic": "0x7744Ba67842771d90c6173E28Bd086f7955e95B0"
},
"src/lib/BunniSwapMath.sol": {
"BunniSwapMath": "0x00000033f0C0735a7092E5B9B97D3557e340C1c0"
},
"src/lib/RebalanceLogic.sol": {
"RebalanceLogic": "0x17a78C115c234BB641ebFE2166E86Bbc7d06E9cF"
}
}
}Contract Security Audit
- No Contract Security Audit Submitted- Submit Audit Here
[{"inputs":[{"internalType":"contract IPoolManager","name":"poolManager_","type":"address"},{"internalType":"contract WETH","name":"weth_","type":"address"},{"internalType":"contract IPermit2","name":"permit2_","type":"address"},{"internalType":"contract IBunniToken","name":"bunniTokenImplementation_","type":"address"},{"internalType":"address","name":"initialOwner","type":"address"},{"internalType":"address","name":"initialReferralRewardRecipient","type":"address"}],"stateMutability":"nonpayable","type":"constructor"},{"inputs":[],"name":"AlreadyInitialized","type":"error"},{"inputs":[],"name":"BunniHub__BunniTokenNotInitialized","type":"error"},{"inputs":[],"name":"BunniHub__MsgValueInsufficient","type":"error"},{"inputs":[],"name":"BunniHub__PastDeadline","type":"error"},{"inputs":[],"name":"BunniHub__Paused","type":"error"},{"inputs":[],"name":"BunniHub__Unauthorized","type":"error"},{"inputs":[],"name":"NewOwnerIsZeroAddress","type":"error"},{"inputs":[],"name":"NoHandoverRequest","type":"error"},{"inputs":[],"name":"ReentrancyGuard__ReentrantCall","type":"error"},{"inputs":[],"name":"Unauthorized","type":"error"},{"anonymous":false,"inputs":[],"name":"BurnPauseFuse","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"sender","type":"address"},{"indexed":true,"internalType":"address","name":"recipient","type":"address"},{"indexed":true,"internalType":"PoolId","name":"poolId","type":"bytes32"},{"indexed":false,"internalType":"uint256","name":"amount0","type":"uint256"},{"indexed":false,"internalType":"uint256","name":"amount1","type":"uint256"},{"indexed":false,"internalType":"uint256","name":"shares","type":"uint256"}],"name":"Deposit","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"contract IBunniToken","name":"bunniToken","type":"address"},{"indexed":true,"internalType":"PoolId","name":"poolId","type":"bytes32"}],"name":"NewBunni","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"pendingOwner","type":"address"}],"name":"OwnershipHandoverCanceled","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"pendingOwner","type":"address"}],"name":"OwnershipHandoverRequested","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"oldOwner","type":"address"},{"indexed":true,"internalType":"address","name":"newOwner","type":"address"}],"name":"OwnershipTransferred","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"sender","type":"address"},{"indexed":true,"internalType":"PoolId","name":"poolId","type":"bytes32"},{"indexed":false,"internalType":"uint256","name":"shares","type":"uint256"}],"name":"QueueWithdraw","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"uint8","name":"pauseFlags","type":"uint8"}],"name":"SetPauseFlags","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"guy","type":"address"},{"indexed":true,"internalType":"bool","name":"isPauser","type":"bool"}],"name":"SetPauser","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"newReferralRewardRecipient","type":"address"}],"name":"SetReferralRewardRecipient","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"sender","type":"address"},{"indexed":true,"internalType":"address","name":"recipient","type":"address"},{"indexed":true,"internalType":"PoolId","name":"poolId","type":"bytes32"},{"indexed":false,"internalType":"uint256","name":"amount0","type":"uint256"},{"indexed":false,"internalType":"uint256","name":"amount1","type":"uint256"},{"indexed":false,"internalType":"uint256","name":"shares","type":"uint256"}],"name":"Withdraw","type":"event"},{"inputs":[{"internalType":"PoolId","name":"poolId","type":"bytes32"}],"name":"bunniTokenOfPool","outputs":[{"internalType":"contract IBunniToken","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"burnPauseFuse","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"cancelOwnershipHandover","outputs":[],"stateMutability":"payable","type":"function"},{"inputs":[{"internalType":"address","name":"pendingOwner","type":"address"}],"name":"completeOwnershipHandover","outputs":[],"stateMutability":"payable","type":"function"},{"inputs":[{"components":[{"internalType":"Currency","name":"currency0","type":"address"},{"internalType":"Currency","name":"currency1","type":"address"},{"internalType":"int24","name":"tickSpacing","type":"int24"},{"internalType":"uint24","name":"twapSecondsAgo","type":"uint24"},{"internalType":"contract ILiquidityDensityFunction","name":"liquidityDensityFunction","type":"address"},{"internalType":"contract IHooklet","name":"hooklet","type":"address"},{"internalType":"enum LDFType","name":"ldfType","type":"uint8"},{"internalType":"bytes32","name":"ldfParams","type":"bytes32"},{"internalType":"contract IBunniHook","name":"hooks","type":"address"},{"internalType":"bytes","name":"hookParams","type":"bytes"},{"internalType":"contract ERC4626","name":"vault0","type":"address"},{"internalType":"contract ERC4626","name":"vault1","type":"address"},{"internalType":"uint24","name":"minRawTokenRatio0","type":"uint24"},{"internalType":"uint24","name":"targetRawTokenRatio0","type":"uint24"},{"internalType":"uint24","name":"maxRawTokenRatio0","type":"uint24"},{"internalType":"uint24","name":"minRawTokenRatio1","type":"uint24"},{"internalType":"uint24","name":"targetRawTokenRatio1","type":"uint24"},{"internalType":"uint24","name":"maxRawTokenRatio1","type":"uint24"},{"internalType":"uint160","name":"sqrtPriceX96","type":"uint160"},{"internalType":"bytes32","name":"name","type":"bytes32"},{"internalType":"bytes32","name":"symbol","type":"bytes32"},{"internalType":"address","name":"owner","type":"address"},{"internalType":"string","name":"metadataURI","type":"string"},{"internalType":"bytes32","name":"salt","type":"bytes32"}],"internalType":"struct IBunniHub.DeployBunniTokenParams","name":"params","type":"tuple"}],"name":"deployBunniToken","outputs":[{"internalType":"contract IBunniToken","name":"token","type":"address"},{"components":[{"internalType":"Currency","name":"currency0","type":"address"},{"internalType":"Currency","name":"currency1","type":"address"},{"internalType":"uint24","name":"fee","type":"uint24"},{"internalType":"int24","name":"tickSpacing","type":"int24"},{"internalType":"contract IHooks","name":"hooks","type":"address"}],"internalType":"struct PoolKey","name":"key","type":"tuple"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"components":[{"components":[{"internalType":"Currency","name":"currency0","type":"address"},{"internalType":"Currency","name":"currency1","type":"address"},{"internalType":"uint24","name":"fee","type":"uint24"},{"internalType":"int24","name":"tickSpacing","type":"int24"},{"internalType":"contract IHooks","name":"hooks","type":"address"}],"internalType":"struct PoolKey","name":"poolKey","type":"tuple"},{"internalType":"address","name":"recipient","type":"address"},{"internalType":"address","name":"refundRecipient","type":"address"},{"internalType":"uint256","name":"amount0Desired","type":"uint256"},{"internalType":"uint256","name":"amount1Desired","type":"uint256"},{"internalType":"uint256","name":"amount0Min","type":"uint256"},{"internalType":"uint256","name":"amount1Min","type":"uint256"},{"internalType":"uint256","name":"vaultFee0","type":"uint256"},{"internalType":"uint256","name":"vaultFee1","type":"uint256"},{"internalType":"uint256","name":"deadline","type":"uint256"},{"internalType":"address","name":"referrer","type":"address"}],"internalType":"struct IBunniHub.DepositParams","name":"params","type":"tuple"}],"name":"deposit","outputs":[{"internalType":"uint256","name":"shares","type":"uint256"},{"internalType":"uint256","name":"amount0","type":"uint256"},{"internalType":"uint256","name":"amount1","type":"uint256"}],"stateMutability":"payable","type":"function"},{"inputs":[],"name":"getPauseStatus","outputs":[{"internalType":"uint8","name":"pauseFlags","type":"uint8"},{"internalType":"bool","name":"unpauseFuse","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"getReferralRewardRecipient","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[{"components":[{"internalType":"Currency","name":"currency0","type":"address"},{"internalType":"Currency","name":"currency1","type":"address"},{"internalType":"uint24","name":"fee","type":"uint24"},{"internalType":"int24","name":"tickSpacing","type":"int24"},{"internalType":"contract IHooks","name":"hooks","type":"address"}],"internalType":"struct PoolKey","name":"key","type":"tuple"},{"internalType":"bool","name":"zeroForOne","type":"bool"},{"internalType":"uint256","name":"inputAmount","type":"uint256"},{"internalType":"uint256","name":"outputAmount","type":"uint256"}],"name":"hookHandleSwap","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"PoolId","name":"poolId","type":"bytes32"}],"name":"hookParams","outputs":[{"internalType":"bytes","name":"","type":"bytes"}],"stateMutability":"view","type":"function"},{"inputs":[{"components":[{"internalType":"Currency","name":"currency0","type":"address"},{"internalType":"Currency","name":"currency1","type":"address"},{"internalType":"uint24","name":"fee","type":"uint24"},{"internalType":"int24","name":"tickSpacing","type":"int24"},{"internalType":"contract IHooks","name":"hooks","type":"address"}],"internalType":"struct PoolKey","name":"key","type":"tuple"},{"internalType":"IdleBalance","name":"newIdleBalance","type":"bytes32"}],"name":"hookSetIdleBalance","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"PoolId","name":"poolId","type":"bytes32"}],"name":"idleBalance","outputs":[{"internalType":"IdleBalance","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"guy","type":"address"}],"name":"isPauser","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[{"components":[{"internalType":"Currency","name":"currency0","type":"address"},{"internalType":"Currency","name":"currency1","type":"address"},{"internalType":"uint24","name":"fee","type":"uint24"},{"internalType":"int24","name":"tickSpacing","type":"int24"},{"internalType":"contract IHooks","name":"hooks","type":"address"}],"internalType":"struct PoolKey","name":"key","type":"tuple"}],"name":"lockForRebalance","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes32","name":"bunniSubspace","type":"bytes32"}],"name":"nonce","outputs":[{"internalType":"uint24","name":"","type":"uint24"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"owner","outputs":[{"internalType":"address","name":"result","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"pendingOwner","type":"address"}],"name":"ownershipHandoverExpiresAt","outputs":[{"internalType":"uint256","name":"result","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"PoolId","name":"poolId","type":"bytes32"}],"name":"poolBalances","outputs":[{"internalType":"uint256","name":"balance0","type":"uint256"},{"internalType":"uint256","name":"balance1","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"contract IBunniToken","name":"bunniToken","type":"address"}],"name":"poolIdOfBunniToken","outputs":[{"internalType":"PoolId","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"poolInitData","outputs":[{"internalType":"bytes","name":"","type":"bytes"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"PoolId","name":"poolId","type":"bytes32"}],"name":"poolParams","outputs":[{"components":[{"internalType":"contract ILiquidityDensityFunction","name":"liquidityDensityFunction","type":"address"},{"internalType":"contract IBunniToken","name":"bunniToken","type":"address"},{"internalType":"contract IHooklet","name":"hooklet","type":"address"},{"internalType":"uint24","name":"twapSecondsAgo","type":"uint24"},{"internalType":"bytes32","name":"ldfParams","type":"bytes32"},{"internalType":"bytes","name":"hookParams","type":"bytes"},{"internalType":"contract ERC4626","name":"vault0","type":"address"},{"internalType":"contract ERC4626","name":"vault1","type":"address"},{"internalType":"enum LDFType","name":"ldfType","type":"uint8"},{"internalType":"uint24","name":"minRawTokenRatio0","type":"uint24"},{"internalType":"uint24","name":"targetRawTokenRatio0","type":"uint24"},{"internalType":"uint24","name":"maxRawTokenRatio0","type":"uint24"},{"internalType":"uint24","name":"minRawTokenRatio1","type":"uint24"},{"internalType":"uint24","name":"targetRawTokenRatio1","type":"uint24"},{"internalType":"uint24","name":"maxRawTokenRatio1","type":"uint24"},{"internalType":"uint256","name":"rawBalance0","type":"uint256"},{"internalType":"uint256","name":"rawBalance1","type":"uint256"},{"internalType":"uint256","name":"reserve0","type":"uint256"},{"internalType":"uint256","name":"reserve1","type":"uint256"},{"internalType":"IdleBalance","name":"idleBalance","type":"bytes32"}],"internalType":"struct PoolState","name":"","type":"tuple"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"PoolId","name":"poolId","type":"bytes32"}],"name":"poolState","outputs":[{"components":[{"internalType":"contract ILiquidityDensityFunction","name":"liquidityDensityFunction","type":"address"},{"internalType":"contract IBunniToken","name":"bunniToken","type":"address"},{"internalType":"contract IHooklet","name":"hooklet","type":"address"},{"internalType":"uint24","name":"twapSecondsAgo","type":"uint24"},{"internalType":"bytes32","name":"ldfParams","type":"bytes32"},{"internalType":"bytes","name":"hookParams","type":"bytes"},{"internalType":"contract ERC4626","name":"vault0","type":"address"},{"internalType":"contract ERC4626","name":"vault1","type":"address"},{"internalType":"enum LDFType","name":"ldfType","type":"uint8"},{"internalType":"uint24","name":"minRawTokenRatio0","type":"uint24"},{"internalType":"uint24","name":"targetRawTokenRatio0","type":"uint24"},{"internalType":"uint24","name":"maxRawTokenRatio0","type":"uint24"},{"internalType":"uint24","name":"minRawTokenRatio1","type":"uint24"},{"internalType":"uint24","name":"targetRawTokenRatio1","type":"uint24"},{"internalType":"uint24","name":"maxRawTokenRatio1","type":"uint24"},{"internalType":"uint256","name":"rawBalance0","type":"uint256"},{"internalType":"uint256","name":"rawBalance1","type":"uint256"},{"internalType":"uint256","name":"reserve0","type":"uint256"},{"internalType":"uint256","name":"reserve1","type":"uint256"},{"internalType":"IdleBalance","name":"idleBalance","type":"bytes32"}],"internalType":"struct PoolState","name":"","type":"tuple"}],"stateMutability":"view","type":"function"},{"inputs":[{"components":[{"components":[{"internalType":"Currency","name":"currency0","type":"address"},{"internalType":"Currency","name":"currency1","type":"address"},{"internalType":"uint24","name":"fee","type":"uint24"},{"internalType":"int24","name":"tickSpacing","type":"int24"},{"internalType":"contract IHooks","name":"hooks","type":"address"}],"internalType":"struct PoolKey","name":"poolKey","type":"tuple"},{"internalType":"uint200","name":"shares","type":"uint200"}],"internalType":"struct IBunniHub.QueueWithdrawParams","name":"params","type":"tuple"}],"name":"queueWithdraw","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"renounceOwnership","outputs":[],"stateMutability":"payable","type":"function"},{"inputs":[],"name":"requestOwnershipHandover","outputs":[],"stateMutability":"payable","type":"function"},{"inputs":[{"internalType":"uint8","name":"pauseFlags","type":"uint8"}],"name":"setPauseFlags","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"guy","type":"address"},{"internalType":"bool","name":"status","type":"bool"}],"name":"setPauser","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"newReferralRewardRecipient","type":"address"}],"name":"setReferralRewardRecipient","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"newOwner","type":"address"}],"name":"transferOwnership","outputs":[],"stateMutability":"payable","type":"function"},{"inputs":[{"internalType":"bytes","name":"data","type":"bytes"}],"name":"unlockCallback","outputs":[{"internalType":"bytes","name":"","type":"bytes"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"components":[{"internalType":"Currency","name":"currency0","type":"address"},{"internalType":"Currency","name":"currency1","type":"address"},{"internalType":"uint24","name":"fee","type":"uint24"},{"internalType":"int24","name":"tickSpacing","type":"int24"},{"internalType":"contract IHooks","name":"hooks","type":"address"}],"internalType":"struct PoolKey","name":"key","type":"tuple"}],"name":"unlockForRebalance","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"components":[{"components":[{"internalType":"Currency","name":"currency0","type":"address"},{"internalType":"Currency","name":"currency1","type":"address"},{"internalType":"uint24","name":"fee","type":"uint24"},{"internalType":"int24","name":"tickSpacing","type":"int24"},{"internalType":"contract IHooks","name":"hooks","type":"address"}],"internalType":"struct PoolKey","name":"poolKey","type":"tuple"},{"internalType":"address","name":"recipient","type":"address"},{"internalType":"uint256","name":"shares","type":"uint256"},{"internalType":"uint256","name":"amount0Min","type":"uint256"},{"internalType":"uint256","name":"amount1Min","type":"uint256"},{"internalType":"uint256","name":"deadline","type":"uint256"},{"internalType":"bool","name":"useQueuedWithdrawal","type":"bool"}],"internalType":"struct IBunniHub.WithdrawParams","name":"params","type":"tuple"}],"name":"withdraw","outputs":[{"internalType":"uint256","name":"amount0","type":"uint256"},{"internalType":"uint256","name":"amount1","type":"uint256"}],"stateMutability":"nonpayable","type":"function"},{"stateMutability":"payable","type":"receive"}]Contract Creation Code
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
Deployed Bytecode
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
Constructor Arguments (ABI-Encoded and is the last bytes of the Contract Creation Code above)
000000000000000000000000000000000004444c5dc75cb358380d2e3de08a90000000000000000000000000c02aaa39b223fe8d0a0e5c4f27ead9083c756cc2000000000000000000000000000000000022d473030f116ddee9f6b43ac78ba3000000000000000000000000df9832fd5583f3ed52c28d401cde96ba51bd1b410000000000000000000000009a8fee232dcf73060af348a1b62cdb0a19852d130000000000000000000000009a8fee232dcf73060af348a1b62cdb0a19852d13
-----Decoded View---------------
Arg [0] : poolManager_ (address): 0x000000000004444c5dc75cB358380D2e3dE08A90
Arg [1] : weth_ (address): 0xC02aaA39b223FE8D0A0e5C4F27eAD9083C756Cc2
Arg [2] : permit2_ (address): 0x000000000022D473030F116dDEE9F6B43aC78BA3
Arg [3] : bunniTokenImplementation_ (address): 0xdf9832fD5583f3Ed52c28d401Cde96Ba51Bd1b41
Arg [4] : initialOwner (address): 0x9a8FEe232DCF73060Af348a1B62Cdb0a19852d13
Arg [5] : initialReferralRewardRecipient (address): 0x9a8FEe232DCF73060Af348a1B62Cdb0a19852d13
-----Encoded View---------------
6 Constructor Arguments found :
Arg [0] : 000000000000000000000000000000000004444c5dc75cb358380d2e3de08a90
Arg [1] : 000000000000000000000000c02aaa39b223fe8d0a0e5c4f27ead9083c756cc2
Arg [2] : 000000000000000000000000000000000022d473030f116ddee9f6b43ac78ba3
Arg [3] : 000000000000000000000000df9832fd5583f3ed52c28d401cde96ba51bd1b41
Arg [4] : 0000000000000000000000009a8fee232dcf73060af348a1b62cdb0a19852d13
Arg [5] : 0000000000000000000000009a8fee232dcf73060af348a1b62cdb0a19852d13
Loading...
Loading
Loading...
Loading
Multichain Portfolio | 30 Chains
| Chain | Token | Portfolio % | Price | Amount | Value |
|---|
Loading...
Loading
[ Download: CSV Export ]
[ Download: CSV Export ]
A contract address hosts a smart contract, which is a set of code stored on the blockchain that runs when predetermined conditions are met. Learn more about addresses in our Knowledge Base.