Sponsored
MetaMask
Meet MetaMask Portfolio - your key to getting more out of web3. Try Now
Ready to simplify your web3 experience? Try the all-in-one web3 app trusted by millions worldwide.
CEX.IO
Buy crypto in a few clicks. Buy instantly
Purchase 100+ cryptocurrencies instantly, with Visa/Mastercard, Google/Apple Pay, and a variety of other funding methods.
Sponsored
Сoins.game
100 free spins for registration. Spin now!
Everyday giveaways up to 100 ETH, Lucky Spins. Deposit BONUS 300% and Cashbacks!
Celsius Casino
- $400 Freespins - Instant Withdraw - No KYC - 200% Bonus. Spin Now!
9 years old Licensed Crypto Casino, Instant Withdraw 24/7, 6000+ Slots available, Paypal Deposit, Instant Live Support 24/7, 30% Rakeback.
BC.GAME
- The Best ETH Casino Claim Now!
5000+ Slots & Live Casino Games, 50+cryptos. Register with Etherscan and get 760% deposit bonus. Win Big$, withdraw it fast.
Sponsored
BC.GAME
- The Best ETH Casino Claim Now!
5000+ Slots & Live Casino Games, 50+cryptos. Register with Etherscan and get 760% deposit bonus. Win Big$, withdraw it fast.
CryptoWins
200% Welcome Bonus – Supercharge Your Crypto Up to 4 BTC! Claim Now!
Play 100s of games anonymously with all major cryptos. Join CryptoWins & start winning!
CryptoSlots
Play & Get 25 Free Spins at CryptoSlots Play Now
Anonymous play on awesome games - sign up now for 25 free jackpot spins - worth $100s!
Overview
ETH Balance
0 ETH
Eth Value
$0.00More Info
Private Name Tags
ContractCreator
TokenTracker
Latest 25 from a total of 396 transactions
| Transaction Hash |
Method
|
Block
|
From
|
To
|
|||||
|---|---|---|---|---|---|---|---|---|---|
| Swap | 20839272 | 44 hrs ago | IN | 0 ETH | 0.00516916 | ||||
| Swap | 20835142 | 2 days ago | IN | 0 ETH | 0.00906553 | ||||
| Redeem Rewards | 20789576 | 8 days ago | IN | 0 ETH | 0.0028326 | ||||
| Unwrap | 20706381 | 20 days ago | IN | 0 ETH | 0.00010891 | ||||
| Swap | 20703932 | 20 days ago | IN | 0 ETH | 0.00047531 | ||||
| Approve | 20703924 | 20 days ago | IN | 0 ETH | 0.00004813 | ||||
| Approve | 20691778 | 22 days ago | IN | 0 ETH | 0.00100387 | ||||
| Wrap | 20691772 | 22 days ago | IN | 0 ETH | 0.00179231 | ||||
| Swap | 20691159 | 22 days ago | IN | 0 ETH | 0.00242162 | ||||
| Redeem Rewards | 20689327 | 22 days ago | IN | 0 ETH | 0.00083768 | ||||
| Swap | 20688217 | 22 days ago | IN | 0 ETH | 0.00060875 | ||||
| Swap | 20683996 | 23 days ago | IN | 0 ETH | 0.00147984 | ||||
| Swap | 20678089 | 24 days ago | IN | 0 ETH | 0.00304097 | ||||
| Unwrap | 20640641 | 29 days ago | IN | 0 ETH | 0.00009028 | ||||
| Unwrap | 20639738 | 29 days ago | IN | 0 ETH | 0.00015816 | ||||
| Swap | 20627141 | 31 days ago | IN | 0 ETH | 0.00110267 | ||||
| Unwrap | 20590704 | 36 days ago | IN | 0 ETH | 0.00007198 | ||||
| Redeem Rewards | 20589083 | 36 days ago | IN | 0 ETH | 0.00067024 | ||||
| Swap | 20568947 | 39 days ago | IN | 0 ETH | 0.00038437 | ||||
| Unwrap | 20548601 | 42 days ago | IN | 0 ETH | 0.00018757 | ||||
| Swap | 20518170 | 46 days ago | IN | 0 ETH | 0.00056493 | ||||
| Unwrap | 20512569 | 47 days ago | IN | 0 ETH | 0.00066264 | ||||
| Swap | 20490773 | 50 days ago | IN | 0 ETH | 0.00135745 | ||||
| Redeem Rewards | 20488814 | 50 days ago | IN | 0 ETH | 0.00078091 | ||||
| Swap | 20484120 | 51 days ago | IN | 0 ETH | 0.00273127 |
View more zero value Internal Transactions in Advanced View mode
Advanced mode:
Loading...
Loading
Contract Name:
LpxCvx
Compiler Version
v0.8.12+commit.f00d7308
Optimization Enabled:
Yes with 179 runs
Other Settings:
default evmVersion
Contract Source Code (Solidity Standard Json-Input format)
// SPDX-License-Identifier: MIT
pragma solidity 0.8.12;
import {Ownable} from "openzeppelin/contracts/access/Ownable.sol";
import {ReentrancyGuard} from "@rari-capital/solmate/src/utils/ReentrancyGuard.sol";
import {ERC20} from "@rari-capital/solmate/src/tokens/ERC20.sol";
import {SafeTransferLib} from "@rari-capital/solmate/src/utils/SafeTransferLib.sol";
import {PirexCvx} from "./PirexCvx.sol";
import {ICurvePool} from "./interfaces/ICurvePool.sol";
contract LpxCvx is ERC20, Ownable, ReentrancyGuard {
using SafeTransferLib for ERC20;
// Enumeration for the token swap
enum Token {
CVX,
pxCVX
}
ERC20 public immutable pxCVX;
ERC20 public immutable CVX;
PirexCvx public pirexCvx;
// Contract of the curvePool for the CVX/lpxCVX pair
ICurvePool public curvePool;
// Receiver of the redeemed snapshot rewards from pirexCvx
address public rewardReceiver;
event SetPirexCvx(address pirexCvx);
event SetCurvePool(address curvePool);
event SetRewardReceiver(address rewardReceiver);
event Wrap(address indexed account, uint256 amount);
event Unwrap(address indexed account, uint256 amount);
event Swap(
address indexed account,
Token source,
uint256 sent,
uint256 received
);
error ZeroAddress();
error ZeroAmount();
error PoolNotSet();
error InvalidIndices();
/**
@notice The curvePool has to be set after as the pool can only be created after deploying lpxCVX
@param _pxCVX address pxCVX address
@param _CVX address CVX address
@param _pirexCvx address pirexCvx address
@param _rewardReceiver address Reward receiver address
*/
constructor(
address _pxCVX,
address _CVX,
address _pirexCvx,
address _rewardReceiver
) ERC20("LP Pirex CVX", "lpxCvx", 18) {
if (_pxCVX == address(0)) revert ZeroAddress();
if (_CVX == address(0)) revert ZeroAddress();
if (_pirexCvx == address(0)) revert ZeroAddress();
if (_rewardReceiver == address(0)) revert ZeroAddress();
pxCVX = ERC20(_pxCVX);
CVX = ERC20(_CVX);
pirexCvx = PirexCvx(_pirexCvx);
rewardReceiver = _rewardReceiver;
}
/**
@notice Set the pirexCvx contract
@param _pirexCvx address New pirexCvx address
*/
function setPirexCvx(address _pirexCvx) external onlyOwner {
if (_pirexCvx == address(0)) revert ZeroAddress();
pirexCvx = PirexCvx(_pirexCvx);
emit SetPirexCvx(_pirexCvx);
}
/**
@notice Set the curvePool contract for the CVX/lpxCVX pair
@param _curvePool address New curvePool address
*/
function setCurvePool(address _curvePool) external onlyOwner {
if (_curvePool == address(0)) revert ZeroAddress();
address oldCurvePool = address(curvePool);
curvePool = ICurvePool(_curvePool);
emit SetCurvePool(_curvePool);
// Clear out approvals for old pool contract when needed
if (oldCurvePool != address(0)) {
allowance[address(this)][oldCurvePool] = 0;
CVX.safeApprove(oldCurvePool, 0);
}
// Set the approval on both lpxCVX and CVX for the new pool contract
allowance[address(this)][_curvePool] = type(uint256).max;
CVX.safeApprove(_curvePool, type(uint256).max);
}
/**
@notice Set the reward receiver address
@param _rewardReceiver address New reward receiver address
*/
function setRewardReceiver(address _rewardReceiver) external onlyOwner {
if (_rewardReceiver == address(0)) revert ZeroAddress();
rewardReceiver = _rewardReceiver;
emit SetRewardReceiver(_rewardReceiver);
}
/**
@notice Redeem pxCVX snapshot rewards and transfer them to the currently set receiver
@param epoch uint256 Rewards epoch
@param rewardIndexes uint256[] Reward indexes
*/
function redeemRewards(uint256 epoch, uint256[] calldata rewardIndexes)
external
{
pirexCvx.redeemSnapshotRewards(epoch, rewardIndexes, rewardReceiver);
}
/**
@notice Wrap the specified amount of pxCVX into lpxCVX
@param amount uint256 Amount of pxCVX
*/
function wrap(uint256 amount) external nonReentrant {
if (amount == 0) revert ZeroAmount();
_mint(msg.sender, amount);
emit Wrap(msg.sender, amount);
pxCVX.safeTransferFrom(msg.sender, address(this), amount);
}
/**
@notice Unwrap the specified amount of lpxCVX back into pxCVX
@param amount uint256 Amount of lpxCVX
*/
function unwrap(uint256 amount) external nonReentrant {
if (amount == 0) revert ZeroAmount();
_burn(msg.sender, amount);
emit Unwrap(msg.sender, amount);
pxCVX.safeTransfer(msg.sender, amount);
}
/**
@notice Swap the specified amount of source token into the counterpart token via the curvePool
@param source enum Source token
@param amount uint256 Amount of source token
@param minReceived uint256 Minimum received amount of counterpart token
@param fromIndex uint256 Index of the source token
@param toIndex uint256 Index of the counterpart token
*/
function swap(
Token source,
uint256 amount,
uint256 minReceived,
uint256 fromIndex,
uint256 toIndex
) external nonReentrant {
if (address(curvePool) == address(0)) revert PoolNotSet();
if (amount == 0) revert ZeroAmount();
if (minReceived == 0) revert ZeroAmount();
if (fromIndex == toIndex) revert InvalidIndices();
uint256 received;
if (source == Token.pxCVX) {
// Transfer the pxCVX to the contract and mint the equivalent amount of lpxCVX
pxCVX.safeTransferFrom(msg.sender, address(this), amount);
_mint(address(this), amount);
// Swap the lpxCVX for CVX and directly send to the user
received = curvePool.exchange(
fromIndex,
toIndex,
amount,
minReceived,
false,
msg.sender
);
} else {
// Transfer the CVX to the contract for the actual swap
CVX.safeTransferFrom(msg.sender, address(this), amount);
// Swap the CVX for lpxCVX and calculate the final received amount
received = curvePool.exchange(
fromIndex,
toIndex,
amount,
minReceived,
false,
address(this)
);
// Burn the received lpxCVX and transfer the equivalent amount of pxCVX to the user
_burn(address(this), received);
pxCVX.safeTransfer(msg.sender, received);
}
emit Swap(msg.sender, source, amount, received);
}
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.12;
import {ReentrancyGuard} from "@rari-capital/solmate/src/utils/ReentrancyGuard.sol";
import {ERC20} from "@rari-capital/solmate/src/tokens/ERC20.sol";
import {SafeTransferLib} from "@rari-capital/solmate/src/utils/SafeTransferLib.sol";
import {Bytes32AddressLib} from "@rari-capital/solmate/src/utils/Bytes32AddressLib.sol";
import {PirexCvxConvex} from "./PirexCvxConvex.sol";
import {PxCvx} from "./PxCvx.sol";
import {PirexFees} from "./PirexFees.sol";
import {UnionPirexVault} from "./vault/UnionPirexVault.sol";
import {ERC1155Solmate} from "./tokens/ERC1155Solmate.sol";
import {ERC1155PresetMinterSupply} from "./tokens/ERC1155PresetMinterSupply.sol";
import {IVotiumMultiMerkleStash} from "./interfaces/IVotiumMultiMerkleStash.sol";
import {ICvxLocker} from "./interfaces/ICvxLocker.sol";
/**
For Jude 🐾 - kings never die. QmPXRvYyDSqiqk9Xj9zsoaLa3UMN2uL5A8J9CPQPHvPQ6i - kp
Arise, you have nothing to lose but your barbed wire fences! - never
Hakuna matata - greenbergz
ZA WARUDO - seiji
Why not both. The answer to all of life's questions. CVX locked or liquid? Crypto or childcare? - Percival
Dreams are made of these... QmU6oGG8J1cKWKiuQU1y9YTiBF89LBUyojTjfvfzZ4GMif - funky
🫡 - Sami
Put cereal in my coffee, INNOVATING ON CHAIN & OFF CHAIN - Marcel
Development will continue until morale improves - Alunara
Imagine using a lame ass quote instead of ascii art - Benny
*/
contract PirexCvx is ReentrancyGuard, PirexCvxConvex {
using SafeTransferLib for ERC20;
using Bytes32AddressLib for address;
/**
@notice Data pertaining to an emergency migration
@param recipient address Recipient of the tokens (e.g. new PirexCvx contract)
@param tokens address[] Token addresses
*/
struct EmergencyMigration {
address recipient;
address[] tokens;
}
// Users can choose between the two futures tokens when staking or initiating a redemption
enum Futures {
Vote,
Reward
}
// Configurable contracts
enum Contract {
PxCvx,
PirexFees,
Votium,
UpxCvx,
SpxCvx,
VpxCvx,
RpxCvx,
UnionPirexVault
}
// Configurable fees
enum Fees {
Reward,
RedemptionMax,
RedemptionMin,
Developers
}
// Convex voting round duration (1,209,600 seconds)
uint32 public constant EPOCH_DURATION = 2 weeks;
// Fee denominator
uint32 public constant FEE_DENOMINATOR = 1_000_000;
// Fee maximum
uint32 public constant FEE_MAX = 100_000;
// Maximum wait time for a CVX redemption (10,281,600 seconds)
uint32 public constant MAX_REDEMPTION_TIME = 17 weeks;
// Unused ERC1155 `data` param value
bytes private constant UNUSED_1155_DATA = "";
PxCvx public pxCvx;
PirexFees public pirexFees;
IVotiumMultiMerkleStash public votiumMultiMerkleStash;
ERC1155Solmate public upxCvx;
ERC1155Solmate public spxCvx;
ERC1155PresetMinterSupply public vpxCvx;
ERC1155PresetMinterSupply public rpxCvx;
UnionPirexVault public unionPirex;
// Fees (e.g. 5000 / 1000000 = 0.5%)
mapping(Fees => uint32) public fees;
// Convex unlock timestamps mapped to amount being redeemed
mapping(uint256 => uint256) public redemptions;
// Developers who are eligible for incentives as part of the new initiative
// to enable builders to sustainably build apps for the Pirex ecosystem
mapping(address => bool) public developers;
// Emergency migration data
EmergencyMigration public emergencyMigration;
// Non-Pirex multisig which has authority to fulfill emergency procedures
address public emergencyExecutor;
// In the case of a mass unlock by Convex, the current upxCVX would be deprecated
// and should allow holders to immediately redeem their CVX by burning upxCVX
bool public upxCvxDeprecated;
event SetContract(Contract indexed c, address contractAddress);
event SetFee(Fees indexed f, uint32 fee);
event AddDeveloper(address developer);
event RemoveDeveloper(address developer);
event MintFutures(
uint256 rounds,
Futures indexed f,
uint256 assets,
address indexed receiver
);
event Deposit(
uint256 assets,
address indexed receiver,
bool indexed shouldCompound,
address indexed developer
);
event InitiateRedemptions(
uint256[] lockIndexes,
Futures indexed f,
uint256[] assets,
address indexed receiver
);
event Redeem(
uint256[] unlockTimes,
uint256[] assets,
address indexed receiver,
bool legacy
);
event Stake(
uint256 rounds,
Futures indexed f,
uint256 assets,
address indexed receiver
);
event Unstake(uint256 id, uint256 assets, address indexed receiver);
event ClaimMiscRewards(uint256 timestamp, ConvexReward[] rewards);
event ClaimVotiumReward(
address indexed token,
uint256 index,
uint256 amount
);
event RedeemSnapshotRewards(
uint256 indexed epoch,
uint256[] rewardIndexes,
address indexed receiver,
uint256 snapshotBalance,
uint256 snapshotSupply
);
event RedeemFuturesRewards(
uint256 indexed epoch,
address indexed receiver,
bytes32[] rewards
);
event ExchangeFutures(
uint256 indexed epoch,
uint256 amount,
address indexed receiver,
Futures f
);
event InitializeEmergencyExecutor(address _emergencyExecutor);
event SetEmergencyMigration(EmergencyMigration _emergencyMigration);
event SetUpxCvxDeprecated(bool state);
event ExecuteEmergencyMigration(address recipient, address[] tokens);
error ZeroAmount();
error BeforeUnlock();
error InsufficientBalance();
error AlreadyRedeemed();
error InsufficientRedemptionAllowance();
error PastExchangePeriod();
error InvalidFee();
error BeforeEffectiveTimestamp();
error BeforeStakingExpiry();
error InvalidEpoch();
error EmptyArray();
error MismatchedArrayLengths();
error NoRewards();
error RedeemClosed();
error AlreadyInitialized();
error NoEmergencyExecutor();
error InvalidEmergencyMigration();
error NotAuthorized();
/**
@param _CVX address CVX address
@param _cvxLocker address CvxLocker address
@param _cvxDelegateRegistry address CvxDelegateRegistry address
@param _pxCvx address PxCvx address
@param _upxCvx address UpxCvx address
@param _spxCvx address SpxCvx address
@param _vpxCvx address VpxCvx address
@param _rpxCvx address RpxCvx address
@param _pirexFees address PirexFees address
@param _votiumMultiMerkleStash address VotiumMultiMerkleStash address
*/
constructor(
address _CVX,
address _cvxLocker,
address _cvxDelegateRegistry,
address _pxCvx,
address _upxCvx,
address _spxCvx,
address _vpxCvx,
address _rpxCvx,
address _pirexFees,
address _votiumMultiMerkleStash
) PirexCvxConvex(_CVX, _cvxLocker, _cvxDelegateRegistry) {
// Init with paused state, should only unpause after fully perform the full setup
_pause();
if (_pxCvx == address(0)) revert ZeroAddress();
if (_pirexFees == address(0)) revert ZeroAddress();
if (_upxCvx == address(0)) revert ZeroAddress();
if (_spxCvx == address(0)) revert ZeroAddress();
if (_vpxCvx == address(0)) revert ZeroAddress();
if (_rpxCvx == address(0)) revert ZeroAddress();
if (_votiumMultiMerkleStash == address(0)) revert ZeroAddress();
pxCvx = PxCvx(_pxCvx);
pirexFees = PirexFees(_pirexFees);
upxCvx = ERC1155Solmate(_upxCvx);
spxCvx = ERC1155Solmate(_spxCvx);
vpxCvx = ERC1155PresetMinterSupply(_vpxCvx);
rpxCvx = ERC1155PresetMinterSupply(_rpxCvx);
votiumMultiMerkleStash = IVotiumMultiMerkleStash(
_votiumMultiMerkleStash
);
}
/**
@notice Set a contract address
@param c enum Contract
@param contractAddress address Contract address
*/
function setContract(Contract c, address contractAddress)
external
onlyOwner
{
if (contractAddress == address(0)) revert ZeroAddress();
emit SetContract(c, contractAddress);
if (c == Contract.PxCvx) {
pxCvx = PxCvx(contractAddress);
return;
}
if (c == Contract.PirexFees) {
pirexFees = PirexFees(contractAddress);
return;
}
if (c == Contract.Votium) {
votiumMultiMerkleStash = IVotiumMultiMerkleStash(contractAddress);
return;
}
if (c == Contract.UpxCvx) {
upxCvx = ERC1155Solmate(contractAddress);
return;
}
if (c == Contract.SpxCvx) {
spxCvx = ERC1155Solmate(contractAddress);
return;
}
if (c == Contract.VpxCvx) {
vpxCvx = ERC1155PresetMinterSupply(contractAddress);
return;
}
if (c == Contract.RpxCvx) {
rpxCvx = ERC1155PresetMinterSupply(contractAddress);
return;
}
ERC20 pxCvxERC20 = ERC20(address(pxCvx));
address oldUnionPirex = address(unionPirex);
if (oldUnionPirex != address(0)) {
pxCvxERC20.safeApprove(oldUnionPirex, 0);
}
unionPirex = UnionPirexVault(contractAddress);
pxCvxERC20.safeApprove(address(unionPirex), type(uint256).max);
}
/**
@notice Set fee
@param f enum Fee
@param fee uint32 Fee amount
*/
function setFee(Fees f, uint32 fee) external onlyOwner {
if (fee > FEE_MAX) revert InvalidFee();
if (f == Fees.RedemptionMax && fee < fees[Fees.RedemptionMin])
revert InvalidFee();
if (f == Fees.RedemptionMin && fee > fees[Fees.RedemptionMax])
revert InvalidFee();
fees[f] = fee;
emit SetFee(f, fee);
}
/**
@notice Add developer to whitelist mapping
@param developer address Developer
*/
function addDeveloper(address developer) external onlyOwner {
if (developer == address(0)) revert ZeroAddress();
developers[developer] = true;
emit AddDeveloper(developer);
}
/**
@notice Remove developer from whitelist mapping
@param developer address Developer
*/
function removeDeveloper(address developer) external onlyOwner {
if (developer == address(0)) revert ZeroAddress();
developers[developer] = false;
emit RemoveDeveloper(developer);
}
/**
@notice Get current epoch
@return uint256 Current epoch
*/
function getCurrentEpoch() public view returns (uint256) {
return (block.timestamp / EPOCH_DURATION) * EPOCH_DURATION;
}
/**
@notice Mint futures tokens
@param rounds uint256 Rounds (i.e. Convex voting rounds)
@param f enum Futures enum
@param assets uint256 Futures amount
@param receiver address Receives futures
*/
function _mintFutures(
uint256 rounds,
Futures f,
uint256 assets,
address receiver
) internal {
emit MintFutures(rounds, f, assets, receiver);
ERC1155PresetMinterSupply token = f == Futures.Vote ? vpxCvx : rpxCvx;
uint256 startingEpoch = getCurrentEpoch() + EPOCH_DURATION;
uint256[] memory tokenIds = new uint256[](rounds);
uint256[] memory amounts = new uint256[](rounds);
for (uint256 i; i < rounds; ++i) {
tokenIds[i] = startingEpoch + i * EPOCH_DURATION;
amounts[i] = assets;
}
token.mintBatch(receiver, tokenIds, amounts, UNUSED_1155_DATA);
}
/**
@notice Redeem CVX for specified unlock times
@param unlockTimes uint256[] vlCVX unlock timestamps
@param assets uint256[] upxCVX amounts
@param receiver address Receives CVX
@param legacy bool Whether upxCVX has been deprecated
*/
function _redeem(
uint256[] calldata unlockTimes,
uint256[] calldata assets,
address receiver,
bool legacy
) internal {
uint256 unlockLen = unlockTimes.length;
if (unlockLen == 0) revert EmptyArray();
if (unlockLen != assets.length) revert MismatchedArrayLengths();
if (receiver == address(0)) revert ZeroAddress();
emit Redeem(unlockTimes, assets, receiver, legacy);
uint256 totalAssets;
for (uint256 i; i < unlockLen; ++i) {
uint256 asset = assets[i];
if (!legacy && unlockTimes[i] > block.timestamp)
revert BeforeUnlock();
if (asset == 0) revert ZeroAmount();
totalAssets += asset;
}
// Perform unlocking and locking procedure to ensure enough CVX is available
if (!legacy) {
_lock();
}
// Subtract redemption amount from outstanding CVX amount
outstandingRedemptions -= totalAssets;
// Reverts if sender has an insufficient upxCVX balance for any `unlockTime` id
upxCvx.burnBatch(msg.sender, unlockTimes, assets);
// Validates `to`
CVX.safeTransfer(receiver, totalAssets);
}
/**
@notice Calculate rewards
@param feePercent uint32 Reward fee percent
@param snapshotSupply uint256 pxCVX supply for the current snapshot id
@param rpxCvxSupply uint256 rpxCVX supply for the current epoch
@param received uint256 Received amount
@return rewardFee uint256 Fee for protocol
@return snapshotRewards uint256 Rewards for pxCVX token holders
@return futuresRewards uint256 Rewards for futures token holders
*/
function _calculateRewards(
uint32 feePercent,
uint256 snapshotSupply,
uint256 rpxCvxSupply,
uint256 received
)
internal
pure
returns (
uint256 rewardFee,
uint256 snapshotRewards,
uint256 futuresRewards
)
{
// Rewards paid to the protocol
rewardFee = (received * feePercent) / FEE_DENOMINATOR;
// Rewards distributed amongst snapshot and futures tokenholders
uint256 rewards = received - rewardFee;
// Rewards distributed to snapshotted tokenholders
snapshotRewards =
(rewards * snapshotSupply) /
(snapshotSupply + rpxCvxSupply);
// Rewards distributed to rpxCVX token holders
futuresRewards = rewards - snapshotRewards;
}
/**
@notice Deposit CVX
@param assets uint256 CVX amount
@param receiver address Receives pxCVX
@param shouldCompound bool Whether to auto-compound
@param developer address Developer incentive receiver
*/
function deposit(
uint256 assets,
address receiver,
bool shouldCompound,
address developer
) external whenNotPaused nonReentrant {
if (assets == 0) revert ZeroAmount();
if (receiver == address(0)) revert ZeroAddress();
emit Deposit(assets, receiver, shouldCompound, developer);
// Track amount of CVX waiting to be locked before `assets` is modified
pendingLocks += assets;
// Calculate the dev incentive, which will come out of the minted pxCVX
uint256 developerIncentive = developer != address(0) &&
developers[developer]
? (assets * fees[Fees.Developers]) / FEE_DENOMINATOR
: 0;
// Take snapshot if necessary
pxCvx.takeEpochSnapshot();
// Mint pxCVX sans developer incentive - recipient depends on shouldCompound
pxCvx.mint(
shouldCompound ? address(this) : receiver,
assets - developerIncentive
);
// Transfer CVX to self in preparation for lock
CVX.safeTransferFrom(msg.sender, address(this), assets);
if (developerIncentive != 0) {
// Mint pxCVX for the developer
pxCvx.mint(developer, developerIncentive);
}
if (shouldCompound) {
// Update assets to ensure only the appropriate amount is deposited in vault
assets -= developerIncentive;
// Deposit pxCVX into Union vault - user receives shares
unionPirex.deposit(assets, receiver);
}
}
/**
@notice Initiate CVX redemption
@param lockData ICvxLocker.LockedBalance Locked balance index
@param f enum Futures enum
@param assets uint256 pxCVX amount
@param receiver address Receives upxCVX
@param feeMin uint256 Initiate redemption fee min
@param feeMax uint256 Initiate redemption fee max
@return feeAmount uint256 Fee amount
*/
function _initiateRedemption(
ICvxLocker.LockedBalance memory lockData,
Futures f,
uint256 assets,
address receiver,
uint256 feeMin,
uint256 feeMax
) internal returns (uint256 feeAmount) {
if (assets == 0) revert ZeroAmount();
if (receiver == address(0)) revert ZeroAddress();
uint256 unlockTime = lockData.unlockTime;
// Used for calculating the fee and conditionally adding a round
uint256 waitTime = unlockTime - block.timestamp;
if (feeMax != 0) {
uint256 feePercent = feeMax -
(((feeMax - feeMin) * waitTime) / MAX_REDEMPTION_TIME);
feeAmount = (assets * feePercent) / FEE_DENOMINATOR;
}
uint256 postFeeAmount = assets - feeAmount;
// Increment redemptions for this unlockTime to prevent over-redeeming
redemptions[unlockTime] += postFeeAmount;
// Check if there is any sufficient allowance after factoring in redemptions by others
if (redemptions[unlockTime] > lockData.amount)
revert InsufficientRedemptionAllowance();
// Track assets that needs to remain unlocked for redemptions
outstandingRedemptions += postFeeAmount;
// Mint upxCVX with unlockTime as the id - validates `to`
upxCvx.mint(receiver, unlockTime, postFeeAmount, UNUSED_1155_DATA);
// Determine how many futures notes rounds to mint
uint256 rounds = waitTime / EPOCH_DURATION;
// Check if the lock was in the first week/half of an epoch
// Handle case where remaining time is between 1 and 2 weeks
if (
rounds == 0 &&
unlockTime % EPOCH_DURATION != 0 &&
waitTime > (EPOCH_DURATION / 2)
) {
// Rounds is 0 if waitTime is between 1 and 2 weeks
// Increment by 1 since user should receive 1 round of rewards
unchecked {
++rounds;
}
}
// Mint vpxCVX or rpxCVX (using assets as we do not take a fee from this)
_mintFutures(rounds, f, assets, receiver);
return feeAmount;
}
/**
@notice Initiate CVX redemptions
@param lockIndexes uint256[] Locked balance index
@param f enum Futures enum
@param assets uint256[] pxCVX amounts
@param receiver address Receives upxCVX
*/
function initiateRedemptions(
uint256[] calldata lockIndexes,
Futures f,
uint256[] calldata assets,
address receiver
) external whenNotPaused nonReentrant {
uint256 lockLen = lockIndexes.length;
if (lockLen == 0) revert EmptyArray();
if (lockLen != assets.length) revert MismatchedArrayLengths();
emit InitiateRedemptions(lockIndexes, f, assets, receiver);
(, , , ICvxLocker.LockedBalance[] memory lockData) = cvxLocker
.lockedBalances(address(this));
uint256 totalAssets;
uint256 feeAmount;
uint256 feeMin = fees[Fees.RedemptionMin];
uint256 feeMax = fees[Fees.RedemptionMax];
for (uint256 i; i < lockLen; ++i) {
totalAssets += assets[i];
feeAmount += _initiateRedemption(
lockData[lockIndexes[i]],
f,
assets[i],
receiver,
feeMin,
feeMax
);
}
// Burn pxCVX - reverts if sender balance is insufficient
pxCvx.burn(msg.sender, totalAssets - feeAmount);
if (feeAmount != 0) {
// Allow PirexFees to distribute fees directly from sender
pxCvx.operatorApprove(msg.sender, address(pirexFees), feeAmount);
// Distribute fees
pirexFees.distributeFees(msg.sender, address(pxCvx), feeAmount);
}
}
/**
@notice Redeem CVX for specified unlock times
@param unlockTimes uint256[] CVX unlock timestamps
@param assets uint256[] upxCVX amounts
@param receiver address Receives CVX
*/
function redeem(
uint256[] calldata unlockTimes,
uint256[] calldata assets,
address receiver
) external whenNotPaused nonReentrant {
if (upxCvxDeprecated) revert RedeemClosed();
_redeem(unlockTimes, assets, receiver, false);
}
/**
@notice Redeem CVX for deprecated upxCVX holders if enabled
@param unlockTimes uint256[] CVX unlock timestamps
@param assets uint256[] upxCVX amounts
@param receiver address Receives CVX
*/
function redeemLegacy(
uint256[] calldata unlockTimes,
uint256[] calldata assets,
address receiver
) external whenPaused nonReentrant {
if (!upxCvxDeprecated) revert RedeemClosed();
_redeem(unlockTimes, assets, receiver, true);
}
/**
@notice Stake pxCVX
@param rounds uint256 Rounds (i.e. Convex voting rounds)
@param f enum Futures enum
@param assets uint256 pxCVX amount
@param receiver address Receives spxCVX
*/
function stake(
uint256 rounds,
Futures f,
uint256 assets,
address receiver
) external whenNotPaused nonReentrant {
if (rounds == 0) revert ZeroAmount();
if (assets == 0) revert ZeroAmount();
if (receiver == address(0)) revert ZeroAddress();
// Burn pxCVX
pxCvx.burn(msg.sender, assets);
emit Stake(rounds, f, assets, receiver);
// Mint spxCVX with the stake expiry timestamp as the id
spxCvx.mint(
receiver,
getCurrentEpoch() + EPOCH_DURATION * rounds,
assets,
UNUSED_1155_DATA
);
_mintFutures(rounds, f, assets, receiver);
}
/**
@notice Unstake pxCVX
@param id uint256 spxCVX id (an epoch timestamp)
@param assets uint256 spxCVX amount
@param receiver address Receives pxCVX
*/
function unstake(
uint256 id,
uint256 assets,
address receiver
) external whenNotPaused nonReentrant {
if (id > block.timestamp) revert BeforeStakingExpiry();
if (assets == 0) revert ZeroAmount();
if (receiver == address(0)) revert ZeroAddress();
// Mint pxCVX for receiver
pxCvx.mint(receiver, assets);
emit Unstake(id, assets, receiver);
// Burn spxCVX from sender
spxCvx.burn(msg.sender, id, assets);
}
/**
@notice Claim multiple Votium rewards
@param votiumRewards VotiumRewards[] Votium rewards metadata
*/
function claimVotiumRewards(
IVotiumMultiMerkleStash.claimParam[] calldata votiumRewards
) external whenNotPaused nonReentrant {
uint256 tLen = votiumRewards.length;
if (tLen == 0) revert EmptyArray();
// Take snapshot before claiming rewards, if necessary
pxCvx.takeEpochSnapshot();
uint256 epoch = getCurrentEpoch();
(uint256 snapshotId, , , ) = pxCvx.getEpoch(epoch);
uint256 rpxCvxSupply = rpxCvx.totalSupply(epoch);
for (uint256 i; i < tLen; ++i) {
address token = votiumRewards[i].token;
uint256 index = votiumRewards[i].index;
uint256 amount = votiumRewards[i].amount;
bytes32[] memory merkleProof = votiumRewards[i].merkleProof;
if (token == address(0)) revert ZeroAddress();
if (amount == 0) revert ZeroAmount();
emit ClaimVotiumReward(token, index, amount);
ERC20 t = ERC20(token);
// Used for calculating the actual token amount received
uint256 prevBalance = t.balanceOf(address(this));
// Validates `token`, `index`, `amount`, and `merkleProof`
votiumMultiMerkleStash.claim(
token,
index,
address(this),
amount,
merkleProof
);
(
uint256 rewardFee,
uint256 snapshotRewards,
uint256 futuresRewards
) = _calculateRewards(
fees[Fees.Reward],
pxCvx.totalSupplyAt(snapshotId),
rpxCvxSupply,
t.balanceOf(address(this)) - prevBalance
);
// Add reward token address and snapshot/futuresRewards amounts (same index for all)
pxCvx.addEpochRewardMetadata(
epoch,
token.fillLast12Bytes(),
snapshotRewards,
futuresRewards
);
// Distribute fees
t.safeApprove(address(pirexFees), rewardFee);
pirexFees.distributeFees(address(this), token, rewardFee);
}
}
/**
@notice Claim misc. rewards (e.g. emissions) and distribute to stakeholders
*/
function claimMiscRewards() external nonReentrant {
// Get claimable rewards and balances
ConvexReward[] memory c = _claimableRewards();
emit ClaimMiscRewards(block.timestamp, c);
// Claim rewards from Convex
_getReward();
uint256 cLen = c.length;
// Iterate over rewards and distribute to stakeholders (rlBTRFLY, Redacted, and Pirex)
for (uint256 i; i < cLen; ++i) {
if (c[i].amount == 0) continue;
ERC20 t = ERC20(c[i].token);
uint256 received = t.balanceOf(address(this)) - c[i].balance;
// Distribute fees
t.safeApprove(address(pirexFees), received);
pirexFees.distributeFees(address(this), c[i].token, received);
}
}
/**
@notice Redeem multiple Snapshot rewards as a pxCVX holder
@param epoch uint256 Epoch
@param rewardIndexes uint256[] Reward token indexes
@param receiver address Receives snapshot rewards
*/
function redeemSnapshotRewards(
uint256 epoch,
uint256[] calldata rewardIndexes,
address receiver
) external whenNotPaused nonReentrant {
if (epoch == 0) revert InvalidEpoch();
if (receiver == address(0)) revert ZeroAddress();
uint256 rewardLen = rewardIndexes.length;
if (rewardLen == 0) revert EmptyArray();
(
uint256 snapshotId,
bytes32[] memory rewards,
uint256[] memory snapshotRewards,
) = pxCvx.getEpoch(epoch);
// Used to update the redeemed flag locally before updating to the storage all at once for gas efficiency
uint256 redeemed = pxCvx.getEpochRedeemedSnapshotRewards(
msg.sender,
epoch
);
// Check whether msg.sender maintained a positive balance before the snapshot
uint256 snapshotBalance = pxCvx.balanceOfAt(msg.sender, snapshotId);
uint256 snapshotSupply = pxCvx.totalSupplyAt(snapshotId);
if (snapshotBalance == 0) revert InsufficientBalance();
emit RedeemSnapshotRewards(
epoch,
rewardIndexes,
receiver,
snapshotBalance,
snapshotSupply
);
for (uint256 i; i < rewardLen; ++i) {
uint256 index = rewardIndexes[i];
uint256 indexRedeemed = (1 << index);
if ((redeemed & indexRedeemed) != 0) revert AlreadyRedeemed();
redeemed |= indexRedeemed;
ERC20(address(uint160(bytes20(rewards[index])))).safeTransfer(
receiver,
(snapshotRewards[index] * snapshotBalance) / snapshotSupply
);
}
// Update the redeemed rewards flag in storage to prevent double claimings
pxCvx.setEpochRedeemedSnapshotRewards(msg.sender, epoch, redeemed);
}
/**
@notice Redeem futures rewards for rpxCVX holders for an epoch
@param epoch uint256 Epoch (ERC1155 token id)
@param receiver address Receives futures rewards
*/
function redeemFuturesRewards(uint256 epoch, address receiver)
external
whenNotPaused
nonReentrant
{
if (epoch == 0) revert InvalidEpoch();
if (epoch > getCurrentEpoch()) revert InvalidEpoch();
if (receiver == address(0)) revert ZeroAddress();
// Prevent users from burning their futures notes before rewards are claimed
(, bytes32[] memory rewards, , uint256[] memory futuresRewards) = pxCvx
.getEpoch(epoch);
if (rewards.length == 0) revert NoRewards();
emit RedeemFuturesRewards(epoch, receiver, rewards);
// Check sender rpxCVX balance
uint256 rpxCvxBalance = rpxCvx.balanceOf(msg.sender, epoch);
if (rpxCvxBalance == 0) revert InsufficientBalance();
// Store rpxCVX total supply before burning
uint256 rpxCvxTotalSupply = rpxCvx.totalSupply(epoch);
// Burn rpxCVX tokens
rpxCvx.burn(msg.sender, epoch, rpxCvxBalance);
uint256 rLen = rewards.length;
// Loop over rewards and transfer the amount entitled to the rpxCVX token holder
for (uint256 i; i < rLen; ++i) {
uint256 rewardAmount = (futuresRewards[i] * rpxCvxBalance) /
rpxCvxTotalSupply;
// Update reward amount by deducting the amount transferred to the receiver
futuresRewards[i] -= rewardAmount;
// Proportionate to the % of rpxCVX owned out of the rpxCVX total supply
ERC20(address(uint160(bytes20(rewards[i])))).safeTransfer(
receiver,
rewardAmount
);
}
// Update future rewards to reflect the amounts remaining post-redemption
pxCvx.updateEpochFuturesRewards(epoch, futuresRewards);
}
/**
@notice Exchange one futures token for another
@param epoch uint256 Epoch (ERC1155 token id)
@param amount uint256 Exchange amount
@param receiver address Receives futures token
@param f enum Futures enum
*/
function exchangeFutures(
uint256 epoch,
uint256 amount,
address receiver,
Futures f
) external whenNotPaused {
// Users can only exchange futures tokens for future epochs
if (epoch <= getCurrentEpoch()) revert PastExchangePeriod();
if (amount == 0) revert ZeroAmount();
if (receiver == address(0)) revert ZeroAddress();
ERC1155PresetMinterSupply futuresIn = f == Futures.Vote
? vpxCvx
: rpxCvx;
ERC1155PresetMinterSupply futuresOut = f == Futures.Vote
? rpxCvx
: vpxCvx;
emit ExchangeFutures(epoch, amount, receiver, f);
// Validates `amount` (balance)
futuresIn.burn(msg.sender, epoch, amount);
// Validates `to`
futuresOut.mint(receiver, epoch, amount, UNUSED_1155_DATA);
}
/*//////////////////////////////////////////////////////////////
EMERGENCY/MIGRATION LOGIC
//////////////////////////////////////////////////////////////*/
/**
@notice Initialize the emergency executor address
@param _emergencyExecutor address Non-Pirex multisig
*/
function initializeEmergencyExecutor(address _emergencyExecutor)
external
onlyOwner
whenPaused
{
if (_emergencyExecutor == address(0)) revert ZeroAddress();
if (emergencyExecutor != address(0)) revert AlreadyInitialized();
emergencyExecutor = _emergencyExecutor;
emit InitializeEmergencyExecutor(_emergencyExecutor);
}
/**
@notice Set the emergency migration data
@param _emergencyMigration EmergencyMigration Emergency migration data
*/
function setEmergencyMigration(
EmergencyMigration calldata _emergencyMigration
) external onlyOwner whenPaused {
if (emergencyExecutor == address(0)) revert NoEmergencyExecutor();
if (_emergencyMigration.recipient == address(0))
revert InvalidEmergencyMigration();
if (_emergencyMigration.tokens.length == 0)
revert InvalidEmergencyMigration();
emergencyMigration = _emergencyMigration;
emit SetEmergencyMigration(_emergencyMigration);
}
/**
@notice Execute the emergency migration
*/
function executeEmergencyMigration() external whenPaused {
if (msg.sender != emergencyExecutor) revert NotAuthorized();
address migrationRecipient = emergencyMigration.recipient;
if (migrationRecipient == address(0))
revert InvalidEmergencyMigration();
address[] memory migrationTokens = emergencyMigration.tokens;
uint256 tLen = migrationTokens.length;
if (tLen == 0) revert InvalidEmergencyMigration();
uint256 o = outstandingRedemptions;
for (uint256 i; i < tLen; ++i) {
ERC20 token = ERC20(migrationTokens[i]);
uint256 balance = token.balanceOf(address(this));
if (token == CVX) {
// Transfer the diff between CVX balance and outstandingRedemptions
balance = balance > o ? balance - o : 0;
}
token.safeTransfer(migrationRecipient, balance);
}
emit ExecuteEmergencyMigration(migrationRecipient, migrationTokens);
}
/**
@notice Set whether the currently set upxCvx is deprecated or not
@param state bool Deprecation state
*/
function setUpxCvxDeprecated(bool state) external onlyOwner whenPaused {
upxCvxDeprecated = state;
emit SetUpxCvxDeprecated(state);
}
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.12;
import {Ownable} from "openzeppelin/contracts/access/Ownable.sol";
import {Pausable} from "openzeppelin/contracts/security/Pausable.sol";
import {ERC20} from "@rari-capital/solmate/src/tokens/ERC20.sol";
import {SafeTransferLib} from "@rari-capital/solmate/src/utils/SafeTransferLib.sol";
import {ICvxLocker} from "./interfaces/ICvxLocker.sol";
import {ICvxDelegateRegistry} from "./interfaces/ICvxDelegateRegistry.sol";
contract PirexCvxConvex is Ownable, Pausable {
using SafeTransferLib for ERC20;
/**
@notice Convex reward details
@param token address Token
@param amount uint256 Amount
@param balance uint256 Balance (used for calculating the actual received amount)
*/
struct ConvexReward {
address token;
uint256 amount;
uint256 balance;
}
// Configurable contracts
enum ConvexContract {
CvxLocker,
CvxDelegateRegistry
}
ERC20 public immutable CVX;
ICvxLocker public cvxLocker;
ICvxDelegateRegistry public cvxDelegateRegistry;
// Convex Snapshot space
bytes32 public delegationSpace = bytes32("cvx.eth");
// The amount of CVX that needs to remain unlocked for redemptions
uint256 public outstandingRedemptions;
// The amount of new CVX deposits that is awaiting lock
uint256 public pendingLocks;
event SetConvexContract(ConvexContract c, address contractAddress);
event SetDelegationSpace(string _delegationSpace, bool shouldClear);
event SetVoteDelegate(address voteDelegate);
event ClearVoteDelegate();
error ZeroAddress();
error EmptyString();
/**
@param _CVX address CVX address
@param _cvxLocker address CvxLocker address
@param _cvxDelegateRegistry address CvxDelegateRegistry address
*/
constructor(
address _CVX,
address _cvxLocker,
address _cvxDelegateRegistry
) {
if (_CVX == address(0)) revert ZeroAddress();
if (_cvxLocker == address(0)) revert ZeroAddress();
if (_cvxDelegateRegistry == address(0)) revert ZeroAddress();
CVX = ERC20(_CVX);
cvxLocker = ICvxLocker(_cvxLocker);
cvxDelegateRegistry = ICvxDelegateRegistry(_cvxDelegateRegistry);
// Max allowance for cvxLocker
CVX.safeApprove(address(cvxLocker), type(uint256).max);
}
/**
@notice Set a contract address
@param c enum ConvexContract enum
@param contractAddress address Contract address
*/
function setConvexContract(ConvexContract c, address contractAddress)
external
onlyOwner
{
if (contractAddress == address(0)) revert ZeroAddress();
emit SetConvexContract(c, contractAddress);
if (c == ConvexContract.CvxLocker) {
// Revoke approval from the old locker and add allowances to the new locker
CVX.safeApprove(address(cvxLocker), 0);
cvxLocker = ICvxLocker(contractAddress);
CVX.safeApprove(contractAddress, type(uint256).max);
return;
}
cvxDelegateRegistry = ICvxDelegateRegistry(contractAddress);
}
/**
@notice Unlock CVX
*/
function _unlock() internal {
(, uint256 unlockable, , ) = cvxLocker.lockedBalances(address(this));
if (unlockable != 0) cvxLocker.processExpiredLocks(false);
}
/**
@notice Unlock CVX and relock excess
*/
function _lock() internal {
_unlock();
uint256 balance = CVX.balanceOf(address(this));
bool balanceGreaterThanRedemptions = balance > outstandingRedemptions;
// Lock CVX if the balance is greater than outstanding redemptions or if there are pending locks
if (balanceGreaterThanRedemptions || pendingLocks != 0) {
uint256 balanceRedemptionsDifference = balanceGreaterThanRedemptions
? balance - outstandingRedemptions
: 0;
// Lock amount is the greater of the two: balanceRedemptionsDifference or pendingLocks
// balanceRedemptionsDifference is greater if there is unlocked CVX that isn't reserved for redemptions + deposits
// pendingLocks is greater if there are more new deposits than unlocked CVX that is reserved for redemptions
cvxLocker.lock(
address(this),
balanceRedemptionsDifference > pendingLocks
? balanceRedemptionsDifference
: pendingLocks,
0
);
pendingLocks = 0;
}
}
/**
@notice Non-permissioned relock method
*/
function lock() external whenNotPaused {
_lock();
}
/**
@notice Get claimable rewards and balances
@return rewards ConvexReward[] Claimable rewards and balances
*/
function _claimableRewards()
internal
view
returns (ConvexReward[] memory rewards)
{
address addr = address(this);
// Get claimable rewards
ICvxLocker.EarnedData[] memory c = cvxLocker.claimableRewards(addr);
uint256 cLen = c.length;
rewards = new ConvexReward[](cLen);
// Get the current balances for each token to calculate the amount received
for (uint256 i; i < cLen; ++i) {
rewards[i] = ConvexReward({
token: c[i].token,
amount: c[i].amount,
balance: ERC20(c[i].token).balanceOf(addr)
});
}
}
/**
@notice Claim Convex rewards
*/
function _getReward() internal {
// Claim rewards from Convex
cvxLocker.getReward(address(this), false);
}
/**
@notice Set delegationSpace
@param _delegationSpace string Convex Snapshot delegation space
@param shouldClear bool Whether to clear the vote delegate for current delegation space
*/
function setDelegationSpace(
string memory _delegationSpace,
bool shouldClear
) external onlyOwner {
if (shouldClear) {
// Clear the delegation for the current delegation space
clearVoteDelegate();
}
bytes memory d = bytes(_delegationSpace);
if (d.length == 0) revert EmptyString();
delegationSpace = bytes32(d);
emit SetDelegationSpace(_delegationSpace, shouldClear);
}
/**
@notice Set vote delegate
@param voteDelegate address Account to delegate votes to
*/
function setVoteDelegate(address voteDelegate) external onlyOwner {
if (voteDelegate == address(0)) revert ZeroAddress();
emit SetVoteDelegate(voteDelegate);
cvxDelegateRegistry.setDelegate(delegationSpace, voteDelegate);
}
/**
@notice Remove vote delegate
*/
function clearVoteDelegate() public onlyOwner {
emit ClearVoteDelegate();
cvxDelegateRegistry.clearDelegate(delegationSpace);
}
/*//////////////////////////////////////////////////////////////
EMERGENCY/MIGRATION LOGIC
//////////////////////////////////////////////////////////////*/
/**
@notice Set the contract's pause state
@param state bool Pause state
*/
function setPauseState(bool state) external onlyOwner {
if (state) {
_pause();
} else {
_unpause();
}
}
/**
@notice Manually unlock CVX in the case of a mass unlock
*/
function unlock() external whenPaused onlyOwner {
cvxLocker.processExpiredLocks(false);
}
/**
@notice Manually relock CVX with a new CvxLocker contract
*/
function pausedRelock() external whenPaused onlyOwner {
_lock();
}
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.12;
import {Ownable} from "openzeppelin/contracts/access/Ownable.sol";
import {ERC20} from "@rari-capital/solmate/src/tokens/ERC20.sol";
import {SafeTransferLib} from "@rari-capital/solmate/src/utils/SafeTransferLib.sol";
contract PirexFees is Ownable {
using SafeTransferLib for ERC20;
// Types of fee recipients
enum FeeRecipient {
Treasury,
Contributors
}
uint8 public constant PERCENT_DENOMINATOR = 100;
// Configurable fee recipient percent-share
uint8 public treasuryPercent = 75;
// Configurable fee recipient addresses
address public treasury;
address public contributors;
event SetFeeRecipient(FeeRecipient f, address recipient);
event SetTreasuryPercent(uint8 _treasuryPercent);
event DistributeFees(address token, uint256 amount);
error ZeroAddress();
error InvalidFeePercent();
/**
@param _treasury address Redacted treasury
@param _contributors address Pirex contributor multisig
*/
constructor(address _treasury, address _contributors) {
if (_treasury == address(0)) revert ZeroAddress();
if (_contributors == address(0)) revert ZeroAddress();
treasury = _treasury;
contributors = _contributors;
}
/**
@notice Set a fee recipient address
@param f enum FeeRecipient enum
@param recipient address Fee recipient address
*/
function setFeeRecipient(FeeRecipient f, address recipient)
external
onlyOwner
{
if (recipient == address(0)) revert ZeroAddress();
emit SetFeeRecipient(f, recipient);
if (f == FeeRecipient.Treasury) {
treasury = recipient;
return;
}
contributors = recipient;
}
/**
@notice Set treasury fee percent
@param _treasuryPercent uint8 Treasury fee percent
*/
function setTreasuryPercent(uint8 _treasuryPercent) external onlyOwner {
// Treasury fee percent should never exceed 75
if (_treasuryPercent > 75) revert InvalidFeePercent();
treasuryPercent = _treasuryPercent;
emit SetTreasuryPercent(_treasuryPercent);
}
/**
@notice Distribute fees
@param from address Fee source
@param token address Fee token
@param amount uint256 Fee token amount
*/
function distributeFees(
address from,
address token,
uint256 amount
) external {
emit DistributeFees(token, amount);
ERC20 t = ERC20(token);
uint256 treasuryDistribution = (amount * treasuryPercent) /
PERCENT_DENOMINATOR;
// Favoring push over pull to reduce accounting complexity for different tokens
t.safeTransferFrom(from, treasury, treasuryDistribution);
t.safeTransferFrom(from, contributors, amount - treasuryDistribution);
}
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.12;
import {Ownable} from "openzeppelin/contracts/access/Ownable.sol";
import {Pausable} from "openzeppelin/contracts/security/Pausable.sol";
import {ERC20SnapshotSolmate} from "./tokens/ERC20SnapshotSolmate.sol";
contract PxCvx is ERC20SnapshotSolmate("Pirex CVX", "pxCVX", 18), Ownable {
/**
@notice Epoch details
Reward/snapshotRewards/futuresRewards indexes are associated with 1 reward
@param snapshotId uint256 Snapshot id
@param rewards bytes32[] Rewards
@param snapshotRewards uint256[] Snapshot reward amounts
@param futuresRewards uint256[] Futures reward amounts
@param redeemedSnapshotRewards mapping Redeemed snapshot rewards
*/
struct Epoch {
uint256 snapshotId;
bytes32[] rewards;
uint256[] snapshotRewards;
uint256[] futuresRewards;
mapping(address => uint256) redeemedSnapshotRewards;
}
// Address of currently assigned operator
address public operator;
// Epochs mapped to epoch details
mapping(uint256 => Epoch) private epochs;
event SetOperator(address operator);
event UpdateEpochFuturesRewards(
uint256 indexed epoch,
uint256[] futuresRewards
);
error NotAuthorized();
error NoOperator();
error Paused();
error ZeroAddress();
error ZeroAmount();
error InvalidEpoch();
error InvalidFuturesRewards();
error MismatchedFuturesRewards();
modifier onlyOperator() {
if (msg.sender != operator) revert NotAuthorized();
_;
}
modifier onlyOperatorOrNotPaused() {
address _operator = operator;
// Ensure an operator is set
if (_operator == address(0)) revert NoOperator();
// This contract shares the same pause state as the operator
if (msg.sender != _operator && Pausable(_operator).paused())
revert Paused();
_;
}
/**
@notice Set a new operator address
@param _operator address New operator address
*/
function setOperator(address _operator) external onlyOwner {
if (_operator == address(0)) revert ZeroAddress();
emit SetOperator(_operator);
// If it's the first operator, also set up 1st epoch with snapshot id 1
// and prevent reward claims until subsequent epochs
if (operator == address(0)) {
uint256 currentEpoch = getCurrentEpoch();
epochs[currentEpoch].snapshotId = _snapshot();
}
operator = _operator;
}
/**
@notice Return the current snapshotId
@return uint256 Current snapshot id
*/
function getCurrentSnapshotId() external view returns (uint256) {
return _getCurrentSnapshotId();
}
/**
@notice Get current epoch
@return uint256 Current epoch
*/
function getCurrentEpoch() public view returns (uint256) {
return (block.timestamp / 1209600) * 1209600;
}
/**
@notice Get epoch
@param epoch uint256 Epoch
@return snapshotId uint256 Snapshot id
@return rewards address[] Reward tokens
@return snapshotRewards uint256[] Snapshot reward amounts
@return futuresRewards uint256[] Futures reward amounts
*/
function getEpoch(uint256 epoch)
external
view
returns (
uint256 snapshotId,
bytes32[] memory rewards,
uint256[] memory snapshotRewards,
uint256[] memory futuresRewards
)
{
Epoch storage e = epochs[epoch];
return (e.snapshotId, e.rewards, e.snapshotRewards, e.futuresRewards);
}
/**
@notice Get redeemed snapshot rewards bitmap
@param account address Account
@param epoch uint256 Epoch
@return uint256 Redeemed snapshot bitmap
*/
function getEpochRedeemedSnapshotRewards(address account, uint256 epoch)
external
view
returns (uint256)
{
return epochs[epoch].redeemedSnapshotRewards[account];
}
/**
@notice Add new epoch reward metadata
@param epoch uint256 Epoch
@param token address Token address
@param snapshotReward uint256 Snapshot reward amount
@param futuresReward uint256 Futures reward amount
*/
function addEpochRewardMetadata(
uint256 epoch,
bytes32 token,
uint256 snapshotReward,
uint256 futuresReward
) external onlyOperator {
Epoch storage e = epochs[epoch];
e.rewards.push(token);
e.snapshotRewards.push(snapshotReward);
e.futuresRewards.push(futuresReward);
}
/**
@notice Set redeemed snapshot rewards bitmap
@param account address Account
@param epoch uint256 Epoch
@param redeemed uint256 Redeemed bitmap
*/
function setEpochRedeemedSnapshotRewards(
address account,
uint256 epoch,
uint256 redeemed
) external onlyOperator {
epochs[epoch].redeemedSnapshotRewards[account] = redeemed;
}
/**
@notice Update epoch futures rewards to reflect amounts remaining after redemptions
@param epoch uint256 Epoch
@param futuresRewards uint256[] Futures rewards
*/
function updateEpochFuturesRewards(
uint256 epoch,
uint256[] memory futuresRewards
) external onlyOperator {
if (epoch == 0) revert InvalidEpoch();
uint256 fLen = epochs[epoch].futuresRewards.length;
if (fLen == 0) revert InvalidEpoch();
if (futuresRewards.length == 0) revert InvalidFuturesRewards();
if (futuresRewards.length != fLen) revert MismatchedFuturesRewards();
epochs[epoch].futuresRewards = futuresRewards;
emit UpdateEpochFuturesRewards(epoch, futuresRewards);
}
/**
@notice Mint the specified amount of tokens to the specified account
@param account address Receiver of the tokens
@param amount uint256 Amount to be minted
*/
function mint(address account, uint256 amount) external onlyOperator {
if (account == address(0)) revert ZeroAddress();
if (amount == 0) revert ZeroAmount();
_mint(account, amount);
}
/**
@notice Burn the specified amount of tokens from the specified account
@param account address Owner of the tokens
@param amount uint256 Amount to be burned
*/
function burn(address account, uint256 amount) external onlyOperator {
if (account == address(0)) revert ZeroAddress();
if (amount == 0) revert ZeroAmount();
_burn(account, amount);
}
/**
@notice Approve allowances by operator with specified accounts and amount
@param from address Owner of the tokens
@param to address Account to be approved
@param amount uint256 Amount to be approved
*/
function operatorApprove(
address from,
address to,
uint256 amount
) external onlyOperator {
if (from == address(0)) revert ZeroAddress();
if (to == address(0)) revert ZeroAddress();
if (amount == 0) revert ZeroAmount();
_approve(from, to, amount);
}
/**
@notice Snapshot token balances for the current epoch
*/
function takeEpochSnapshot() external onlyOperatorOrNotPaused {
uint256 currentEpoch = getCurrentEpoch();
// If snapshot has not been set for current epoch, take snapshot
if (epochs[currentEpoch].snapshotId == 0) {
epochs[currentEpoch].snapshotId = _snapshot();
}
}
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.12;
interface ICurvePool {
function add_liquidity(uint256[2] calldata amounts, uint256 minAmount)
external
payable;
function get_dy(
uint256 i,
uint256 j,
uint256 dx
) external view returns (uint256);
function exchange(
uint256 i,
uint256 j,
uint256 dx,
uint256 minDy,
bool useEth,
address receiver
) external payable returns (uint256);
function coins(uint256 i) external view returns (address);
}// SPDX-License-Identifier: LGPL-3.0-only
pragma solidity 0.8.12;
interface ICvxDelegateRegistry {
function setDelegate(bytes32 id, address delegate) external;
function clearDelegate(bytes32 id) external;
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.12;
interface ICvxLocker {
struct LockedBalance {
uint112 amount;
uint112 boosted;
uint32 unlockTime;
}
struct EarnedData {
address token;
uint256 amount;
}
function lock(
address _account,
uint256 _amount,
uint256 _spendRatio
) external;
function lockedBalances(address _user)
external
view
returns (
uint256 total,
uint256 unlockable,
uint256 locked,
LockedBalance[] memory lockData
);
function processExpiredLocks(bool _relock) external;
function claimableRewards(address _account)
external
view
returns (EarnedData[] memory userRewards);
function getReward(address _account, bool _stake) external;
function lockedBalanceOf(address _user)
external
view
returns (uint256 amount);
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.12;
interface IVotiumMultiMerkleStash {
struct claimParam {
address token;
uint256 index;
uint256 amount;
bytes32[] merkleProof;
}
function claim(
address token,
uint256 index,
address account,
uint256 amount,
bytes32[] calldata merkleProof
) external;
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.12;
import {ERC1155} from "openzeppelin/contracts/token/ERC1155/ERC1155.sol";
import {ERC1155Supply} from "openzeppelin/contracts/token/ERC1155/extensions/ERC1155Supply.sol";
import {ERC1155Burnable} from "openzeppelin/contracts/token/ERC1155/extensions/ERC1155Burnable.sol";
import {AccessControl} from "openzeppelin/contracts/access/AccessControl.sol";
import {Context} from "openzeppelin/contracts/utils/Context.sol";
/**
* @dev {ERC1155} token, including:
*
* - ability to check the total supply for a token id
* - ability for holders to burn (destroy) their tokens
* - a minter role that allows for token minting (creation)
*
* This contract uses {AccessControl} to lock permissioned functions using the
* different roles - head to its documentation for details.
*
* The account that deploys the contract will be granted the minter role as well
* as the default admin role, which will let it grant the minter role to other accounts.
*/
contract ERC1155PresetMinterSupply is
Context,
AccessControl,
ERC1155Supply,
ERC1155Burnable
{
bytes32 public constant MINTER_ROLE = keccak256("MINTER_ROLE");
/**
* @dev Grants `DEFAULT_ADMIN_ROLE` and `MINTER_ROLE` to the account that
* deploys the contract.
*/
constructor(string memory uri) ERC1155(uri) {
_setupRole(DEFAULT_ADMIN_ROLE, _msgSender());
_setupRole(MINTER_ROLE, _msgSender());
}
/**
* @dev Creates `amount` new tokens for `to`, of token type `id`.
*
* See {ERC1155-_mint}.
*
* Requirements:
*
* - the caller must have the `MINTER_ROLE`.
*/
function mint(
address to,
uint256 id,
uint256 amount,
bytes memory data
) public virtual {
require(
hasRole(MINTER_ROLE, _msgSender()),
"ERC1155PresetMinterPauser: must have minter role to mint"
);
_mint(to, id, amount, data);
}
/**
* @dev xref:ROOT:erc1155.adoc#batch-operations[Batched] variant of {mint}.
*/
function mintBatch(
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) public virtual {
require(
hasRole(MINTER_ROLE, _msgSender()),
"ERC1155PresetMinterPauser: must have minter role to mint"
);
_mintBatch(to, ids, amounts, data);
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId)
public
view
virtual
override(AccessControl, ERC1155)
returns (bool)
{
return super.supportsInterface(interfaceId);
}
function _beforeTokenTransfer(
address operator,
address from,
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) internal virtual override(ERC1155, ERC1155Supply) {
super._beforeTokenTransfer(operator, from, to, ids, amounts, data);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.5.0) (token/ERC1155/presets/ERC1155PresetMinterPauser.sol)
pragma solidity 0.8.12;
import {ERC1155} from "@rari-capital/solmate/src/tokens/ERC1155.sol";
import {AccessControl} from "openzeppelin/contracts/access/AccessControl.sol";
import {Context} from "openzeppelin/contracts/utils/Context.sol";
/**
* @dev {ERC1155} token, including:
*
* - ability to check the total supply for a token id
* - ability for holders to burn (destroy) their tokens
* - a minter role that allows for token minting (creation)
*
* This contract uses {AccessControl} to lock permissioned functions using the
* different roles - head to its documentation for details.
*
* The account that deploys the contract will be granted the minter and pauser
* roles, as well as the default admin role, which will let it grant both minter
* and pauser roles to other accounts.
*
* _Deprecated in favor of https://wizard.openzeppelin.com/[Contracts Wizard]._
*/
contract ERC1155Solmate is AccessControl, ERC1155 {
bytes32 public constant MINTER_ROLE = keccak256("MINTER_ROLE");
event GrantMinterRole(address minter);
event RevokeMinterRole(address minter);
error ZeroAddress();
error NotMinter();
constructor() {
_grantRole(DEFAULT_ADMIN_ROLE, msg.sender);
}
/**
@notice Grant the minter role to an address
@param minter address Address to grant the minter role
*/
function grantMinterRole(address minter)
external
onlyRole(DEFAULT_ADMIN_ROLE)
{
if (minter == address(0)) revert ZeroAddress();
_grantRole(MINTER_ROLE, minter);
emit GrantMinterRole(minter);
}
/**
@notice Revoke the minter role from an address
@param minter address Address to revoke the minter role
*/
function revokeMinterRole(address minter)
external
onlyRole(DEFAULT_ADMIN_ROLE)
{
if (hasRole(MINTER_ROLE, minter) == false) revert NotMinter();
_revokeRole(MINTER_ROLE, minter);
emit RevokeMinterRole(minter);
}
/**
* @dev Creates `amount` new tokens for `to`, of token type `id`.
*
* See {ERC1155-_mint}.
*
* Requirements:
*
* - the caller must have the `MINTER_ROLE`.
*/
function mint(
address to,
uint256 id,
uint256 amount,
bytes calldata data
) external onlyRole(MINTER_ROLE) {
_mint(to, id, amount, data);
}
function mintBatch(
address to,
uint256[] calldata ids,
uint256[] calldata amounts,
bytes calldata data
) external onlyRole(MINTER_ROLE) {
_batchMint(to, ids, amounts, data);
}
function burnBatch(
address from,
uint256[] calldata ids,
uint256[] calldata amounts
) external onlyRole(MINTER_ROLE) {
_batchBurn(from, ids, amounts);
}
function burn(
address from,
uint256 id,
uint256 amount
) external onlyRole(MINTER_ROLE) {
_burn(from, id, amount);
}
function uri(uint256 id) public view override returns (string memory) {}
// Necessary override due to AccessControl having the same method
function supportsInterface(bytes4 interfaceId)
public
pure
override(AccessControl, ERC1155)
returns (bool)
{
return
interfaceId == 0x01ffc9a7 || // ERC165 Interface ID for ERC165
interfaceId == 0xd9b67a26 || // ERC165 Interface ID for ERC1155
interfaceId == 0x0e89341c; // ERC165 Interface ID for ERC1155MetadataURI
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (token/ERC20/extensions/ERC20Snapshot.sol)
pragma solidity ^0.8.0;
import {Arrays} from "openzeppelin/contracts/utils/Arrays.sol";
import {Counters} from "openzeppelin/contracts/utils/Counters.sol";
import {ECDSA} from "openzeppelin/contracts/utils/cryptography/ECDSA.sol";
/// @notice Modern and gas efficient ERC20 + EIP-2612 implementation.
/// @author Solmate (https://github.com/Rari-Capital/solmate/blob/main/src/tokens/ERC20.sol)
/// @author Modified from Uniswap (https://github.com/Uniswap/uniswap-v2-core/blob/master/contracts/UniswapV2ERC20.sol)
/// @dev Do not manually set balances without updating totalSupply, as the sum of all user balances must not exceed it.
abstract contract ERC20 {
/*///////////////////////////////////////////////////////////////
EVENTS
//////////////////////////////////////////////////////////////*/
event Transfer(address indexed from, address indexed to, uint256 amount);
event Approval(
address indexed owner,
address indexed spender,
uint256 amount
);
/*///////////////////////////////////////////////////////////////
METADATA STORAGE
//////////////////////////////////////////////////////////////*/
string public name;
string public symbol;
uint8 public immutable decimals;
/*///////////////////////////////////////////////////////////////
ERC20 STORAGE
//////////////////////////////////////////////////////////////*/
uint256 public totalSupply;
mapping(address => uint256) public balanceOf;
mapping(address => mapping(address => uint256)) public allowance;
/*///////////////////////////////////////////////////////////////
EIP-2612 STORAGE
//////////////////////////////////////////////////////////////*/
uint256 internal immutable INITIAL_CHAIN_ID;
bytes32 internal immutable INITIAL_DOMAIN_SEPARATOR;
mapping(address => uint256) public nonces;
/*///////////////////////////////////////////////////////////////
CONSTRUCTOR
//////////////////////////////////////////////////////////////*/
constructor(
string memory _name,
string memory _symbol,
uint8 _decimals
) {
name = _name;
symbol = _symbol;
decimals = _decimals;
INITIAL_CHAIN_ID = block.chainid;
INITIAL_DOMAIN_SEPARATOR = computeDomainSeparator();
}
/*///////////////////////////////////////////////////////////////
ERC20 LOGIC
//////////////////////////////////////////////////////////////*/
function approve(address spender, uint256 amount)
public
virtual
returns (bool)
{
allowance[msg.sender][spender] = amount;
emit Approval(msg.sender, spender, amount);
return true;
}
function _approve(
address owner,
address spender,
uint256 amount
) internal {
allowance[owner][spender] = amount;
emit Approval(owner, spender, amount);
}
function transfer(address to, uint256 amount)
public
virtual
returns (bool)
{
_beforeTokenTransfer(msg.sender, to, amount);
balanceOf[msg.sender] -= amount;
// Cannot overflow because the sum of all user
// balances can't exceed the max uint256 value.
unchecked {
balanceOf[to] += amount;
}
emit Transfer(msg.sender, to, amount);
return true;
}
function transferFrom(
address from,
address to,
uint256 amount
) public virtual returns (bool) {
_beforeTokenTransfer(from, to, amount);
uint256 allowed = allowance[from][msg.sender]; // Saves gas for limited approvals.
if (allowed != type(uint256).max)
allowance[from][msg.sender] = allowed - amount;
balanceOf[from] -= amount;
// Cannot overflow because the sum of all user
// balances can't exceed the max uint256 value.
unchecked {
balanceOf[to] += amount;
}
emit Transfer(from, to, amount);
return true;
}
/*///////////////////////////////////////////////////////////////
EIP-2612 LOGIC
//////////////////////////////////////////////////////////////*/
function permit(
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) public virtual {
require(deadline >= block.timestamp, "PERMIT_DEADLINE_EXPIRED");
// Unchecked because the only math done is incrementing
// the owner's nonce which cannot realistically overflow.
unchecked {
address recoveredAddress = ECDSA.recover(
keccak256(
abi.encodePacked(
"\x19\x01",
DOMAIN_SEPARATOR(),
keccak256(
abi.encode(
keccak256(
"Permit(address owner,address spender,uint256 value,uint256 nonce,uint256 deadline)"
),
owner,
spender,
value,
nonces[owner]++,
deadline
)
)
)
),
v,
r,
s
);
require(
recoveredAddress != address(0) && recoveredAddress == owner,
"INVALID_SIGNER"
);
allowance[recoveredAddress][spender] = value;
}
emit Approval(owner, spender, value);
}
function DOMAIN_SEPARATOR() public view virtual returns (bytes32) {
return
block.chainid == INITIAL_CHAIN_ID
? INITIAL_DOMAIN_SEPARATOR
: computeDomainSeparator();
}
function computeDomainSeparator() internal view virtual returns (bytes32) {
return
keccak256(
abi.encode(
keccak256(
"EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)"
),
keccak256(bytes(name)),
keccak256("1"),
block.chainid,
address(this)
)
);
}
/*///////////////////////////////////////////////////////////////
INTERNAL MINT/BURN LOGIC
//////////////////////////////////////////////////////////////*/
function _mint(address to, uint256 amount) internal virtual {
_beforeTokenTransfer(address(0), to, amount);
totalSupply += amount;
// Cannot overflow because the sum of all user
// balances can't exceed the max uint256 value.
unchecked {
balanceOf[to] += amount;
}
emit Transfer(address(0), to, amount);
}
function _burn(address from, uint256 amount) internal virtual {
_beforeTokenTransfer(from, address(0), amount);
balanceOf[from] -= amount;
// Cannot underflow because a user's balance
// will never be larger than the total supply.
unchecked {
totalSupply -= amount;
}
emit Transfer(from, address(0), amount);
}
/**
* @dev Hook that is called before any transfer of tokens. This includes
* minting and burning.
*
* Calling conditions:
*
* - when `from` and `to` are both non-zero, `amount` of ``from``'s tokens
* will be transferred to `to`.
* - when `from` is zero, `amount` tokens will be minted for `to`.
* - when `to` is zero, `amount` of ``from``'s tokens will be burned.
* - `from` and `to` are never both zero.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/
function _beforeTokenTransfer(
address from,
address to,
uint256 amount
) internal virtual {}
}
/**
* @dev This contract extends an ERC20 token with a snapshot mechanism. When a snapshot is created, the balances and
* total supply at the time are recorded for later access.
*
* This can be used to safely create mechanisms based on token balances such as trustless dividends or weighted voting.
* In naive implementations it's possible to perform a "double spend" attack by reusing the same balance from different
* accounts. By using snapshots to calculate dividends or voting power, those attacks no longer apply. It can also be
* used to create an efficient ERC20 forking mechanism.
*
* Snapshots are created by the internal {_snapshot} function, which will emit the {Snapshot} event and return a
* snapshot id. To get the total supply at the time of a snapshot, call the function {totalSupplyAt} with the snapshot
* id. To get the balance of an account at the time of a snapshot, call the {balanceOfAt} function with the snapshot id
* and the account address.
*
* NOTE: Snapshot policy can be customized by overriding the {_getCurrentSnapshotId} method. For example, having it
* return `block.number` will trigger the creation of snapshot at the begining of each new block. When overridding this
* function, be careful about the monotonicity of its result. Non-monotonic snapshot ids will break the contract.
*
* Implementing snapshots for every block using this method will incur significant gas costs. For a gas-efficient
* alternative consider {ERC20Votes}.
*
* ==== Gas Costs
*
* Snapshots are efficient. Snapshot creation is _O(1)_. Retrieval of balances or total supply from a snapshot is _O(log
* n)_ in the number of snapshots that have been created, although _n_ for a specific account will generally be much
* smaller since identical balances in subsequent snapshots are stored as a single entry.
*
* There is a constant overhead for normal ERC20 transfers due to the additional snapshot bookkeeping. This overhead is
* only significant for the first transfer that immediately follows a snapshot for a particular account. Subsequent
* transfers will have normal cost until the next snapshot, and so on.
*/
contract ERC20SnapshotSolmate is ERC20 {
// Inspired by Jordi Baylina's MiniMeToken to record historical balances:
// https://github.com/Giveth/minimd/blob/ea04d950eea153a04c51fa510b068b9dded390cb/contracts/MiniMeToken.sol
using Arrays for uint256[];
using Counters for Counters.Counter;
// Snapshotted values have arrays of ids and the value corresponding to that id. These could be an array of a
// Snapshot struct, but that would impede usage of functions that work on an array.
struct Snapshots {
uint256[] ids;
uint256[] values;
}
mapping(address => Snapshots) private _accountBalanceSnapshots;
Snapshots private _totalSupplySnapshots;
// Snapshot ids increase monotonically, with the first value being 1. An id of 0 is invalid.
Counters.Counter private _currentSnapshotId;
/**
* @dev Emitted by {_snapshot} when a snapshot identified by `id` is created.
*/
event Snapshot(uint256 id);
constructor(
string memory _name,
string memory _symbol,
uint8 _decimals
) ERC20(_name, _symbol, _decimals) {}
/**
* @dev Creates a new snapshot and returns its snapshot id.
*
* Emits a {Snapshot} event that contains the same id.
*
* {_snapshot} is `internal` and you have to decide how to expose it externally. Its usage may be restricted to a
* set of accounts, for example using {AccessControl}, or it may be open to the public.
*
* [WARNING]
* ====
* While an open way of calling {_snapshot} is required for certain trust minimization mechanisms such as forking,
* you must consider that it can potentially be used by attackers in two ways.
*
* First, it can be used to increase the cost of retrieval of values from snapshots, although it will grow
* logarithmically thus rendering this attack ineffective in the long term. Second, it can be used to target
* specific accounts and increase the cost of ERC20 transfers for them, in the ways specified in the Gas Costs
* section above.
*
* We haven't measured the actual numbers; if this is something you're interested in please reach out to us.
* ====
*/
function _snapshot() internal virtual returns (uint256) {
_currentSnapshotId.increment();
uint256 currentId = _getCurrentSnapshotId();
emit Snapshot(currentId);
return currentId;
}
/**
* @dev Get the current snapshotId
*/
function _getCurrentSnapshotId() internal view virtual returns (uint256) {
return _currentSnapshotId.current();
}
/**
* @dev Retrieves the balance of `account` at the time `snapshotId` was created.
*/
function balanceOfAt(address account, uint256 snapshotId)
public
view
virtual
returns (uint256)
{
(bool snapshotted, uint256 value) = _valueAt(
snapshotId,
_accountBalanceSnapshots[account]
);
return snapshotted ? value : balanceOf[account];
}
/**
* @dev Retrieves the total supply at the time `snapshotId` was created.
*/
function totalSupplyAt(uint256 snapshotId)
public
view
virtual
returns (uint256)
{
(bool snapshotted, uint256 value) = _valueAt(
snapshotId,
_totalSupplySnapshots
);
return snapshotted ? value : totalSupply;
}
// Update balance and/or total supply snapshots before the values are modified. This is implemented
// in the _beforeTokenTransfer hook, which is executed for _mint, _burn, and _transfer operations.
function _beforeTokenTransfer(
address from,
address to,
uint256 amount
) internal virtual override {
super._beforeTokenTransfer(from, to, amount);
if (from == address(0)) {
// mint
_updateAccountSnapshot(to);
_updateTotalSupplySnapshot();
} else if (to == address(0)) {
// burn
_updateAccountSnapshot(from);
_updateTotalSupplySnapshot();
} else {
// transfer
_updateAccountSnapshot(from);
_updateAccountSnapshot(to);
}
}
function _valueAt(uint256 snapshotId, Snapshots storage snapshots)
private
view
returns (bool, uint256)
{
require(snapshotId > 0, "ERC20Snapshot: id is 0");
require(
snapshotId <= _getCurrentSnapshotId(),
"ERC20Snapshot: nonexistent id"
);
// When a valid snapshot is queried, there are three possibilities:
// a) The queried value was not modified after the snapshot was taken. Therefore, a snapshot entry was never
// created for this id, and all stored snapshot ids are smaller than the requested one. The value that corresponds
// to this id is the current one.
// b) The queried value was modified after the snapshot was taken. Therefore, there will be an entry with the
// requested id, and its value is the one to return.
// c) More snapshots were created after the requested one, and the queried value was later modified. There will be
// no entry for the requested id: the value that corresponds to it is that of the smallest snapshot id that is
// larger than the requested one.
//
// In summary, we need to find an element in an array, returning the index of the smallest value that is larger if
// it is not found, unless said value doesn't exist (e.g. when all values are smaller). Arrays.findUpperBound does
// exactly this.
uint256 index = snapshots.ids.findUpperBound(snapshotId);
if (index == snapshots.ids.length) {
return (false, 0);
} else {
return (true, snapshots.values[index]);
}
}
function _updateAccountSnapshot(address account) private {
_updateSnapshot(_accountBalanceSnapshots[account], balanceOf[account]);
}
function _updateTotalSupplySnapshot() private {
_updateSnapshot(_totalSupplySnapshots, totalSupply);
}
function _updateSnapshot(Snapshots storage snapshots, uint256 currentValue)
private
{
uint256 currentId = _getCurrentSnapshotId();
if (_lastSnapshotId(snapshots.ids) < currentId) {
snapshots.ids.push(currentId);
snapshots.values.push(currentValue);
}
}
function _lastSnapshotId(uint256[] storage ids)
private
view
returns (uint256)
{
uint256 idsLen = ids.length;
if (idsLen == 0) {
return 0;
} else {
return ids[idsLen - 1];
}
}
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.12;
import {ERC20} from "@rari-capital/solmate/src/tokens/ERC20.sol";
import {SafeTransferLib} from "@rari-capital/solmate/src/utils/SafeTransferLib.sol";
import "openzeppelin/contracts/access/Ownable.sol";
// https://docs.synthetix.io/contracts/source/contracts/StakingRewards/
// https://github.com/Synthetixio/synthetix/blob/v2.66.0/contracts/StakingRewards.sol
/**
Modifications
- Pin pragma to 0.8.12
- Remove IStakingRewards, RewardsDistributionRecipient, and Pausable
- Add and inherit from Ownable
- Add `RewardsDistributionRecipient` logic to contract
- Add `vault` state variable and `onlyVault` modifier
- Add `onlyVault` modifier to `stake` method
- Change `rewardsDuration` to 14 days
- Update contract to support only the vault as a user
- Remove SafeMath since pragma 0.8.0 has those checks built-in
- Replace OpenZeppelin ERC20, ReentrancyGuard, and SafeERC20 with Solmate v6 (audited)
- Consolidate `rewardsToken` and `stakingToken` since they're the same
- Remove `onlyVault` modifier from getReward
- Remove ReentrancyGuard as it is no longer needed
- Add `totalSupplyWithRewards` method to save gas as _totalSupply + rewards are accessed by vault
- Updated `notifyRewardsAmount`
- Remove the method parameter and compute the reward amount inside the function
- Remove the conditional logic since we will always distribute the rewards balance
- Remove overflow check since the caller cannot pass in the reward amount
*/
contract UnionPirexStaking is Ownable {
using SafeTransferLib for ERC20;
/* ========== STATE VARIABLES ========== */
address public immutable vault;
ERC20 public immutable token;
uint256 public constant rewardsDuration = 14 days;
address public distributor;
uint256 public periodFinish;
uint256 public rewardRate;
uint256 public lastUpdateTime;
uint256 public rewardPerTokenStored;
uint256 public userRewardPerTokenPaid;
uint256 public rewards;
uint256 internal _totalSupply;
/* ========== CONSTRUCTOR ========== */
constructor(
address _token,
address _distributor,
address _vault
) {
token = ERC20(_token);
distributor = _distributor;
vault = _vault;
}
/* ========== VIEWS ========== */
function totalSupply() external view returns (uint256) {
return _totalSupply;
}
function totalSupplyWithRewards() external view returns (uint256, uint256) {
uint256 t = _totalSupply;
return (
t,
((t * (rewardPerToken() - userRewardPerTokenPaid)) / 1e18) + rewards
);
}
function lastTimeRewardApplicable() public view returns (uint256) {
return block.timestamp < periodFinish ? block.timestamp : periodFinish;
}
function rewardPerToken() public view returns (uint256) {
if (_totalSupply == 0) {
return rewardPerTokenStored;
}
return
rewardPerTokenStored +
((((lastTimeRewardApplicable() - lastUpdateTime) * rewardRate) *
1e18) / _totalSupply);
}
function earned() public view returns (uint256) {
return
((_totalSupply * (rewardPerToken() - userRewardPerTokenPaid)) /
1e18) + rewards;
}
function getRewardForDuration() external view returns (uint256) {
return rewardRate * rewardsDuration;
}
/* ========== MUTATIVE FUNCTIONS ========== */
function stake(uint256 amount) external onlyVault updateReward(vault) {
require(amount > 0, "Cannot stake 0");
_totalSupply += amount;
token.safeTransferFrom(vault, address(this), amount);
emit Staked(amount);
}
function withdraw(uint256 amount) external onlyVault updateReward(vault) {
require(amount > 0, "Cannot withdraw 0");
_totalSupply -= amount;
token.safeTransfer(vault, amount);
emit Withdrawn(amount);
}
function getReward() external updateReward(vault) {
uint256 reward = rewards;
if (reward > 0) {
rewards = 0;
token.safeTransfer(vault, reward);
emit RewardPaid(reward);
}
}
/* ========== RESTRICTED FUNCTIONS ========== */
function notifyRewardAmount()
external
onlyDistributor
updateReward(address(0))
{
// Rewards transferred directly to this contract are not added to _totalSupply
// To get the rewards w/o relying on a potentially incorrect passed in arg,
// we can use the difference between the token balance and _totalSupply.
// Additionally, to avoid re-distributing rewards, deduct the output of `earned`
uint256 rewardBalance = token.balanceOf(address(this)) -
_totalSupply -
earned();
rewardRate = rewardBalance / rewardsDuration;
require(rewardRate != 0, "No rewards");
lastUpdateTime = block.timestamp;
periodFinish = block.timestamp + rewardsDuration;
emit RewardAdded(rewardBalance);
}
// Added to support recovering LP Rewards from other systems such as BAL to be distributed to holders
function recoverERC20(address tokenAddress, uint256 tokenAmount)
external
onlyOwner
{
require(
tokenAddress != address(token),
"Cannot withdraw the staking token"
);
ERC20(tokenAddress).safeTransfer(owner(), tokenAmount);
emit Recovered(tokenAddress, tokenAmount);
}
function setDistributor(address _distributor) external onlyOwner {
require(_distributor != address(0));
distributor = _distributor;
}
/* ========== MODIFIERS ========== */
modifier updateReward(address account) {
rewardPerTokenStored = rewardPerToken();
lastUpdateTime = lastTimeRewardApplicable();
if (account != address(0)) {
rewards = earned();
userRewardPerTokenPaid = rewardPerTokenStored;
}
_;
}
/* ========== EVENTS ========== */
event RewardAdded(uint256 reward);
event Staked(uint256 amount);
event Withdrawn(uint256 amount);
event RewardPaid(uint256 reward);
event Recovered(address token, uint256 amount);
modifier onlyDistributor() {
require((msg.sender == distributor), "Distributor only");
_;
}
modifier onlyVault() {
require((msg.sender == vault), "Vault only");
_;
}
}// SPDX-License-Identifier: MIT
pragma solidity 0.8.12;
import {Ownable} from "openzeppelin/contracts/access/Ownable.sol";
import {ERC4626} from "@rari-capital/solmate/src/mixins/ERC4626.sol";
import {ERC20} from "@rari-capital/solmate/src/tokens/ERC20.sol";
import {FixedPointMathLib} from "@rari-capital/solmate/src/utils/FixedPointMathLib.sol";
import {SafeTransferLib} from "@rari-capital/solmate/src/utils/SafeTransferLib.sol";
import {UnionPirexStaking} from "./UnionPirexStaking.sol";
contract UnionPirexVault is Ownable, ERC4626 {
using SafeTransferLib for ERC20;
using FixedPointMathLib for uint256;
UnionPirexStaking public strategy;
uint256 public constant MAX_WITHDRAWAL_PENALTY = 500;
uint256 public constant MAX_PLATFORM_FEE = 2000;
uint256 public constant FEE_DENOMINATOR = 10000;
uint256 public withdrawalPenalty = 300;
uint256 public platformFee = 1000;
address public platform;
event Harvest(address indexed caller, uint256 value);
event WithdrawalPenaltyUpdated(uint256 penalty);
event PlatformFeeUpdated(uint256 fee);
event PlatformUpdated(address indexed _platform);
event StrategySet(address indexed _strategy);
error ZeroAddress();
error ExceedsMax();
error AlreadySet();
constructor(address pxCvx) ERC4626(ERC20(pxCvx), "Union Pirex", "uCVX") {}
/**
@notice Set the withdrawal penalty
@param penalty uint256 Withdrawal penalty
*/
function setWithdrawalPenalty(uint256 penalty) external onlyOwner {
if (penalty > MAX_WITHDRAWAL_PENALTY) revert ExceedsMax();
withdrawalPenalty = penalty;
emit WithdrawalPenaltyUpdated(penalty);
}
/**
@notice Set the platform fee
@param fee uint256 Platform fee
*/
function setPlatformFee(uint256 fee) external onlyOwner {
if (fee > MAX_PLATFORM_FEE) revert ExceedsMax();
platformFee = fee;
emit PlatformFeeUpdated(fee);
}
/**
@notice Set the platform
@param _platform address Platform
*/
function setPlatform(address _platform) external onlyOwner {
if (_platform == address(0)) revert ZeroAddress();
platform = _platform;
emit PlatformUpdated(_platform);
}
/**
@notice Set the strategy
@param _strategy address Strategy
*/
function setStrategy(address _strategy) external onlyOwner {
if (_strategy == address(0)) revert ZeroAddress();
if (address(strategy) != address(0)) revert AlreadySet();
// Set new strategy contract and approve max allowance
strategy = UnionPirexStaking(_strategy);
asset.safeApprove(_strategy, type(uint256).max);
emit StrategySet(_strategy);
}
/**
@notice Get the pxCVX custodied by the UnionPirex contracts
@return uint256 Assets
*/
function totalAssets() public view override returns (uint256) {
// Vault assets + rewards should always be stored in strategy until withdrawal-time
(uint256 _totalSupply, uint256 rewards) = strategy
.totalSupplyWithRewards();
// Deduct the exact reward amount staked (after fees are deducted when calling `harvest`)
return
_totalSupply +
(
rewards == 0
? 0
: (rewards - ((rewards * platformFee) / FEE_DENOMINATOR))
);
}
/**
@notice Withdraw assets from the staking contract to prepare for transfer to user
@param assets uint256 Assets
*/
function beforeWithdraw(uint256 assets, uint256) internal override {
// Harvest rewards in the event where there is not enough staked assets to cover the withdrawal
if (assets > strategy.totalSupply()) harvest();
strategy.withdraw(assets);
}
/**
@notice Stake assets so that rewards can be properly distributed
@param assets uint256 Assets
*/
function afterDeposit(uint256 assets, uint256) internal override {
strategy.stake(assets);
}
/**
@notice Preview the amount of assets a user would receive from redeeming shares
@param shares uint256 Shares
@return uint256 Assets
*/
function previewRedeem(uint256 shares)
public
view
override
returns (uint256)
{
// Calculate assets based on a user's % ownership of vault shares
uint256 assets = convertToAssets(shares);
uint256 _totalSupply = totalSupply;
// Calculate a penalty - zero if user is the last to withdraw
uint256 penalty = (_totalSupply == 0 || _totalSupply - shares == 0)
? 0
: assets.mulDivDown(withdrawalPenalty, FEE_DENOMINATOR);
// Redeemable amount is the post-penalty amount
return assets - penalty;
}
/**
@notice Preview the amount of shares a user would need to redeem the specified asset amount
@notice This modified version takes into consideration the withdrawal fee
@param assets uint256 Assets
@return uint256 Shares
*/
function previewWithdraw(uint256 assets)
public
view
override
returns (uint256)
{
// Calculate shares based on the specified assets' proportion of the pool
uint256 shares = convertToShares(assets);
// Save 1 SLOAD
uint256 _totalSupply = totalSupply;
// Factor in additional shares to fulfill withdrawal if user is not the last to withdraw
return
(_totalSupply == 0 || _totalSupply - shares == 0)
? shares
: (shares * FEE_DENOMINATOR) /
(FEE_DENOMINATOR - withdrawalPenalty);
}
/**
@notice Harvest rewards
*/
function harvest() public {
// Claim rewards
strategy.getReward();
// Since we don't normally store pxCVX within the vault, a non-zero balance equals rewards
uint256 rewards = asset.balanceOf(address(this));
emit Harvest(msg.sender, rewards);
if (rewards != 0) {
// Fee for platform
uint256 feeAmount = (rewards * platformFee) / FEE_DENOMINATOR;
// Deduct fee from reward balance
rewards -= feeAmount;
// Claimed rewards should be in pxCVX
asset.safeTransfer(platform, feeAmount);
// Stake rewards sans fee
strategy.stake(rewards);
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.8.0) (access/AccessControl.sol)
pragma solidity ^0.8.0;
import "./IAccessControl.sol";
import "../utils/Context.sol";
import "../utils/Strings.sol";
import "../utils/introspection/ERC165.sol";
/**
* @dev Contract module that allows children to implement role-based access
* control mechanisms. This is a lightweight version that doesn't allow enumerating role
* members except through off-chain means by accessing the contract event logs. Some
* applications may benefit from on-chain enumerability, for those cases see
* {AccessControlEnumerable}.
*
* Roles are referred to by their `bytes32` identifier. These should be exposed
* in the external API and be unique. The best way to achieve this is by
* using `public constant` hash digests:
*
* ```
* bytes32 public constant MY_ROLE = keccak256("MY_ROLE");
* ```
*
* Roles can be used to represent a set of permissions. To restrict access to a
* function call, use {hasRole}:
*
* ```
* function foo() public {
* require(hasRole(MY_ROLE, msg.sender));
* ...
* }
* ```
*
* Roles can be granted and revoked dynamically via the {grantRole} and
* {revokeRole} functions. Each role has an associated admin role, and only
* accounts that have a role's admin role can call {grantRole} and {revokeRole}.
*
* By default, the admin role for all roles is `DEFAULT_ADMIN_ROLE`, which means
* that only accounts with this role will be able to grant or revoke other
* roles. More complex role relationships can be created by using
* {_setRoleAdmin}.
*
* WARNING: The `DEFAULT_ADMIN_ROLE` is also its own admin: it has permission to
* grant and revoke this role. Extra precautions should be taken to secure
* accounts that have been granted it.
*/
abstract contract AccessControl is Context, IAccessControl, ERC165 {
struct RoleData {
mapping(address => bool) members;
bytes32 adminRole;
}
mapping(bytes32 => RoleData) private _roles;
bytes32 public constant DEFAULT_ADMIN_ROLE = 0x00;
/**
* @dev Modifier that checks that an account has a specific role. Reverts
* with a standardized message including the required role.
*
* The format of the revert reason is given by the following regular expression:
*
* /^AccessControl: account (0x[0-9a-f]{40}) is missing role (0x[0-9a-f]{64})$/
*
* _Available since v4.1._
*/
modifier onlyRole(bytes32 role) {
_checkRole(role);
_;
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return interfaceId == type(IAccessControl).interfaceId || super.supportsInterface(interfaceId);
}
/**
* @dev Returns `true` if `account` has been granted `role`.
*/
function hasRole(bytes32 role, address account) public view virtual override returns (bool) {
return _roles[role].members[account];
}
/**
* @dev Revert with a standard message if `_msgSender()` is missing `role`.
* Overriding this function changes the behavior of the {onlyRole} modifier.
*
* Format of the revert message is described in {_checkRole}.
*
* _Available since v4.6._
*/
function _checkRole(bytes32 role) internal view virtual {
_checkRole(role, _msgSender());
}
/**
* @dev Revert with a standard message if `account` is missing `role`.
*
* The format of the revert reason is given by the following regular expression:
*
* /^AccessControl: account (0x[0-9a-f]{40}) is missing role (0x[0-9a-f]{64})$/
*/
function _checkRole(bytes32 role, address account) internal view virtual {
if (!hasRole(role, account)) {
revert(
string(
abi.encodePacked(
"AccessControl: account ",
Strings.toHexString(account),
" is missing role ",
Strings.toHexString(uint256(role), 32)
)
)
);
}
}
/**
* @dev Returns the admin role that controls `role`. See {grantRole} and
* {revokeRole}.
*
* To change a role's admin, use {_setRoleAdmin}.
*/
function getRoleAdmin(bytes32 role) public view virtual override returns (bytes32) {
return _roles[role].adminRole;
}
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*
* May emit a {RoleGranted} event.
*/
function grantRole(bytes32 role, address account) public virtual override onlyRole(getRoleAdmin(role)) {
_grantRole(role, account);
}
/**
* @dev Revokes `role` from `account`.
*
* If `account` had been granted `role`, emits a {RoleRevoked} event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*
* May emit a {RoleRevoked} event.
*/
function revokeRole(bytes32 role, address account) public virtual override onlyRole(getRoleAdmin(role)) {
_revokeRole(role, account);
}
/**
* @dev Revokes `role` from the calling account.
*
* Roles are often managed via {grantRole} and {revokeRole}: this function's
* purpose is to provide a mechanism for accounts to lose their privileges
* if they are compromised (such as when a trusted device is misplaced).
*
* If the calling account had been revoked `role`, emits a {RoleRevoked}
* event.
*
* Requirements:
*
* - the caller must be `account`.
*
* May emit a {RoleRevoked} event.
*/
function renounceRole(bytes32 role, address account) public virtual override {
require(account == _msgSender(), "AccessControl: can only renounce roles for self");
_revokeRole(role, account);
}
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event. Note that unlike {grantRole}, this function doesn't perform any
* checks on the calling account.
*
* May emit a {RoleGranted} event.
*
* [WARNING]
* ====
* This function should only be called from the constructor when setting
* up the initial roles for the system.
*
* Using this function in any other way is effectively circumventing the admin
* system imposed by {AccessControl}.
* ====
*
* NOTE: This function is deprecated in favor of {_grantRole}.
*/
function _setupRole(bytes32 role, address account) internal virtual {
_grantRole(role, account);
}
/**
* @dev Sets `adminRole` as ``role``'s admin role.
*
* Emits a {RoleAdminChanged} event.
*/
function _setRoleAdmin(bytes32 role, bytes32 adminRole) internal virtual {
bytes32 previousAdminRole = getRoleAdmin(role);
_roles[role].adminRole = adminRole;
emit RoleAdminChanged(role, previousAdminRole, adminRole);
}
/**
* @dev Grants `role` to `account`.
*
* Internal function without access restriction.
*
* May emit a {RoleGranted} event.
*/
function _grantRole(bytes32 role, address account) internal virtual {
if (!hasRole(role, account)) {
_roles[role].members[account] = true;
emit RoleGranted(role, account, _msgSender());
}
}
/**
* @dev Revokes `role` from `account`.
*
* Internal function without access restriction.
*
* May emit a {RoleRevoked} event.
*/
function _revokeRole(bytes32 role, address account) internal virtual {
if (hasRole(role, account)) {
_roles[role].members[account] = false;
emit RoleRevoked(role, account, _msgSender());
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (access/IAccessControl.sol)
pragma solidity ^0.8.0;
/**
* @dev External interface of AccessControl declared to support ERC165 detection.
*/
interface IAccessControl {
/**
* @dev Emitted when `newAdminRole` is set as ``role``'s admin role, replacing `previousAdminRole`
*
* `DEFAULT_ADMIN_ROLE` is the starting admin for all roles, despite
* {RoleAdminChanged} not being emitted signaling this.
*
* _Available since v3.1._
*/
event RoleAdminChanged(bytes32 indexed role, bytes32 indexed previousAdminRole, bytes32 indexed newAdminRole);
/**
* @dev Emitted when `account` is granted `role`.
*
* `sender` is the account that originated the contract call, an admin role
* bearer except when using {AccessControl-_setupRole}.
*/
event RoleGranted(bytes32 indexed role, address indexed account, address indexed sender);
/**
* @dev Emitted when `account` is revoked `role`.
*
* `sender` is the account that originated the contract call:
* - if using `revokeRole`, it is the admin role bearer
* - if using `renounceRole`, it is the role bearer (i.e. `account`)
*/
event RoleRevoked(bytes32 indexed role, address indexed account, address indexed sender);
/**
* @dev Returns `true` if `account` has been granted `role`.
*/
function hasRole(bytes32 role, address account) external view returns (bool);
/**
* @dev Returns the admin role that controls `role`. See {grantRole} and
* {revokeRole}.
*
* To change a role's admin, use {AccessControl-_setRoleAdmin}.
*/
function getRoleAdmin(bytes32 role) external view returns (bytes32);
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function grantRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from `account`.
*
* If `account` had been granted `role`, emits a {RoleRevoked} event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function revokeRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from the calling account.
*
* Roles are often managed via {grantRole} and {revokeRole}: this function's
* purpose is to provide a mechanism for accounts to lose their privileges
* if they are compromised (such as when a trusted device is misplaced).
*
* If the calling account had been granted `role`, emits a {RoleRevoked}
* event.
*
* Requirements:
*
* - the caller must be `account`.
*/
function renounceRole(bytes32 role, address account) external;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (access/Ownable.sol)
pragma solidity ^0.8.0;
import "../utils/Context.sol";
/**
* @dev Contract module which provides a basic access control mechanism, where
* there is an account (an owner) that can be granted exclusive access to
* specific functions.
*
* By default, the owner account will be the one that deploys the contract. This
* can later be changed with {transferOwnership}.
*
* This module is used through inheritance. It will make available the modifier
* `onlyOwner`, which can be applied to your functions to restrict their use to
* the owner.
*/
abstract contract Ownable is Context {
address private _owner;
event OwnershipTransferred(address indexed previousOwner, address indexed newOwner);
/**
* @dev Initializes the contract setting the deployer as the initial owner.
*/
constructor() {
_transferOwnership(_msgSender());
}
/**
* @dev Throws if called by any account other than the owner.
*/
modifier onlyOwner() {
_checkOwner();
_;
}
/**
* @dev Returns the address of the current owner.
*/
function owner() public view virtual returns (address) {
return _owner;
}
/**
* @dev Throws if the sender is not the owner.
*/
function _checkOwner() internal view virtual {
require(owner() == _msgSender(), "Ownable: caller is not the owner");
}
/**
* @dev Leaves the contract without owner. It will not be possible to call
* `onlyOwner` functions anymore. Can only be called by the current owner.
*
* NOTE: Renouncing ownership will leave the contract without an owner,
* thereby removing any functionality that is only available to the owner.
*/
function renounceOwnership() public virtual onlyOwner {
_transferOwnership(address(0));
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Can only be called by the current owner.
*/
function transferOwnership(address newOwner) public virtual onlyOwner {
require(newOwner != address(0), "Ownable: new owner is the zero address");
_transferOwnership(newOwner);
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Internal function without access restriction.
*/
function _transferOwnership(address newOwner) internal virtual {
address oldOwner = _owner;
_owner = newOwner;
emit OwnershipTransferred(oldOwner, newOwner);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (security/Pausable.sol)
pragma solidity ^0.8.0;
import "../utils/Context.sol";
/**
* @dev Contract module which allows children to implement an emergency stop
* mechanism that can be triggered by an authorized account.
*
* This module is used through inheritance. It will make available the
* modifiers `whenNotPaused` and `whenPaused`, which can be applied to
* the functions of your contract. Note that they will not be pausable by
* simply including this module, only once the modifiers are put in place.
*/
abstract contract Pausable is Context {
/**
* @dev Emitted when the pause is triggered by `account`.
*/
event Paused(address account);
/**
* @dev Emitted when the pause is lifted by `account`.
*/
event Unpaused(address account);
bool private _paused;
/**
* @dev Initializes the contract in unpaused state.
*/
constructor() {
_paused = false;
}
/**
* @dev Modifier to make a function callable only when the contract is not paused.
*
* Requirements:
*
* - The contract must not be paused.
*/
modifier whenNotPaused() {
_requireNotPaused();
_;
}
/**
* @dev Modifier to make a function callable only when the contract is paused.
*
* Requirements:
*
* - The contract must be paused.
*/
modifier whenPaused() {
_requirePaused();
_;
}
/**
* @dev Returns true if the contract is paused, and false otherwise.
*/
function paused() public view virtual returns (bool) {
return _paused;
}
/**
* @dev Throws if the contract is paused.
*/
function _requireNotPaused() internal view virtual {
require(!paused(), "Pausable: paused");
}
/**
* @dev Throws if the contract is not paused.
*/
function _requirePaused() internal view virtual {
require(paused(), "Pausable: not paused");
}
/**
* @dev Triggers stopped state.
*
* Requirements:
*
* - The contract must not be paused.
*/
function _pause() internal virtual whenNotPaused {
_paused = true;
emit Paused(_msgSender());
}
/**
* @dev Returns to normal state.
*
* Requirements:
*
* - The contract must be paused.
*/
function _unpause() internal virtual whenPaused {
_paused = false;
emit Unpaused(_msgSender());
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.8.0) (token/ERC1155/ERC1155.sol)
pragma solidity ^0.8.0;
import "./IERC1155.sol";
import "./IERC1155Receiver.sol";
import "./extensions/IERC1155MetadataURI.sol";
import "../../utils/Address.sol";
import "../../utils/Context.sol";
import "../../utils/introspection/ERC165.sol";
/**
* @dev Implementation of the basic standard multi-token.
* See https://eips.ethereum.org/EIPS/eip-1155
* Originally based on code by Enjin: https://github.com/enjin/erc-1155
*
* _Available since v3.1._
*/
contract ERC1155 is Context, ERC165, IERC1155, IERC1155MetadataURI {
using Address for address;
// Mapping from token ID to account balances
mapping(uint256 => mapping(address => uint256)) private _balances;
// Mapping from account to operator approvals
mapping(address => mapping(address => bool)) private _operatorApprovals;
// Used as the URI for all token types by relying on ID substitution, e.g. https://token-cdn-domain/{id}.json
string private _uri;
/**
* @dev See {_setURI}.
*/
constructor(string memory uri_) {
_setURI(uri_);
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override(ERC165, IERC165) returns (bool) {
return
interfaceId == type(IERC1155).interfaceId ||
interfaceId == type(IERC1155MetadataURI).interfaceId ||
super.supportsInterface(interfaceId);
}
/**
* @dev See {IERC1155MetadataURI-uri}.
*
* This implementation returns the same URI for *all* token types. It relies
* on the token type ID substitution mechanism
* https://eips.ethereum.org/EIPS/eip-1155#metadata[defined in the EIP].
*
* Clients calling this function must replace the `\{id\}` substring with the
* actual token type ID.
*/
function uri(uint256) public view virtual override returns (string memory) {
return _uri;
}
/**
* @dev See {IERC1155-balanceOf}.
*
* Requirements:
*
* - `account` cannot be the zero address.
*/
function balanceOf(address account, uint256 id) public view virtual override returns (uint256) {
require(account != address(0), "ERC1155: address zero is not a valid owner");
return _balances[id][account];
}
/**
* @dev See {IERC1155-balanceOfBatch}.
*
* Requirements:
*
* - `accounts` and `ids` must have the same length.
*/
function balanceOfBatch(address[] memory accounts, uint256[] memory ids)
public
view
virtual
override
returns (uint256[] memory)
{
require(accounts.length == ids.length, "ERC1155: accounts and ids length mismatch");
uint256[] memory batchBalances = new uint256[](accounts.length);
for (uint256 i = 0; i < accounts.length; ++i) {
batchBalances[i] = balanceOf(accounts[i], ids[i]);
}
return batchBalances;
}
/**
* @dev See {IERC1155-setApprovalForAll}.
*/
function setApprovalForAll(address operator, bool approved) public virtual override {
_setApprovalForAll(_msgSender(), operator, approved);
}
/**
* @dev See {IERC1155-isApprovedForAll}.
*/
function isApprovedForAll(address account, address operator) public view virtual override returns (bool) {
return _operatorApprovals[account][operator];
}
/**
* @dev See {IERC1155-safeTransferFrom}.
*/
function safeTransferFrom(
address from,
address to,
uint256 id,
uint256 amount,
bytes memory data
) public virtual override {
require(
from == _msgSender() || isApprovedForAll(from, _msgSender()),
"ERC1155: caller is not token owner or approved"
);
_safeTransferFrom(from, to, id, amount, data);
}
/**
* @dev See {IERC1155-safeBatchTransferFrom}.
*/
function safeBatchTransferFrom(
address from,
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) public virtual override {
require(
from == _msgSender() || isApprovedForAll(from, _msgSender()),
"ERC1155: caller is not token owner or approved"
);
_safeBatchTransferFrom(from, to, ids, amounts, data);
}
/**
* @dev Transfers `amount` tokens of token type `id` from `from` to `to`.
*
* Emits a {TransferSingle} event.
*
* Requirements:
*
* - `to` cannot be the zero address.
* - `from` must have a balance of tokens of type `id` of at least `amount`.
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155Received} and return the
* acceptance magic value.
*/
function _safeTransferFrom(
address from,
address to,
uint256 id,
uint256 amount,
bytes memory data
) internal virtual {
require(to != address(0), "ERC1155: transfer to the zero address");
address operator = _msgSender();
uint256[] memory ids = _asSingletonArray(id);
uint256[] memory amounts = _asSingletonArray(amount);
_beforeTokenTransfer(operator, from, to, ids, amounts, data);
uint256 fromBalance = _balances[id][from];
require(fromBalance >= amount, "ERC1155: insufficient balance for transfer");
unchecked {
_balances[id][from] = fromBalance - amount;
}
_balances[id][to] += amount;
emit TransferSingle(operator, from, to, id, amount);
_afterTokenTransfer(operator, from, to, ids, amounts, data);
_doSafeTransferAcceptanceCheck(operator, from, to, id, amount, data);
}
/**
* @dev xref:ROOT:erc1155.adoc#batch-operations[Batched] version of {_safeTransferFrom}.
*
* Emits a {TransferBatch} event.
*
* Requirements:
*
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155BatchReceived} and return the
* acceptance magic value.
*/
function _safeBatchTransferFrom(
address from,
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) internal virtual {
require(ids.length == amounts.length, "ERC1155: ids and amounts length mismatch");
require(to != address(0), "ERC1155: transfer to the zero address");
address operator = _msgSender();
_beforeTokenTransfer(operator, from, to, ids, amounts, data);
for (uint256 i = 0; i < ids.length; ++i) {
uint256 id = ids[i];
uint256 amount = amounts[i];
uint256 fromBalance = _balances[id][from];
require(fromBalance >= amount, "ERC1155: insufficient balance for transfer");
unchecked {
_balances[id][from] = fromBalance - amount;
}
_balances[id][to] += amount;
}
emit TransferBatch(operator, from, to, ids, amounts);
_afterTokenTransfer(operator, from, to, ids, amounts, data);
_doSafeBatchTransferAcceptanceCheck(operator, from, to, ids, amounts, data);
}
/**
* @dev Sets a new URI for all token types, by relying on the token type ID
* substitution mechanism
* https://eips.ethereum.org/EIPS/eip-1155#metadata[defined in the EIP].
*
* By this mechanism, any occurrence of the `\{id\}` substring in either the
* URI or any of the amounts in the JSON file at said URI will be replaced by
* clients with the token type ID.
*
* For example, the `https://token-cdn-domain/\{id\}.json` URI would be
* interpreted by clients as
* `https://token-cdn-domain/000000000000000000000000000000000000000000000000000000000004cce0.json`
* for token type ID 0x4cce0.
*
* See {uri}.
*
* Because these URIs cannot be meaningfully represented by the {URI} event,
* this function emits no events.
*/
function _setURI(string memory newuri) internal virtual {
_uri = newuri;
}
/**
* @dev Creates `amount` tokens of token type `id`, and assigns them to `to`.
*
* Emits a {TransferSingle} event.
*
* Requirements:
*
* - `to` cannot be the zero address.
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155Received} and return the
* acceptance magic value.
*/
function _mint(
address to,
uint256 id,
uint256 amount,
bytes memory data
) internal virtual {
require(to != address(0), "ERC1155: mint to the zero address");
address operator = _msgSender();
uint256[] memory ids = _asSingletonArray(id);
uint256[] memory amounts = _asSingletonArray(amount);
_beforeTokenTransfer(operator, address(0), to, ids, amounts, data);
_balances[id][to] += amount;
emit TransferSingle(operator, address(0), to, id, amount);
_afterTokenTransfer(operator, address(0), to, ids, amounts, data);
_doSafeTransferAcceptanceCheck(operator, address(0), to, id, amount, data);
}
/**
* @dev xref:ROOT:erc1155.adoc#batch-operations[Batched] version of {_mint}.
*
* Emits a {TransferBatch} event.
*
* Requirements:
*
* - `ids` and `amounts` must have the same length.
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155BatchReceived} and return the
* acceptance magic value.
*/
function _mintBatch(
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) internal virtual {
require(to != address(0), "ERC1155: mint to the zero address");
require(ids.length == amounts.length, "ERC1155: ids and amounts length mismatch");
address operator = _msgSender();
_beforeTokenTransfer(operator, address(0), to, ids, amounts, data);
for (uint256 i = 0; i < ids.length; i++) {
_balances[ids[i]][to] += amounts[i];
}
emit TransferBatch(operator, address(0), to, ids, amounts);
_afterTokenTransfer(operator, address(0), to, ids, amounts, data);
_doSafeBatchTransferAcceptanceCheck(operator, address(0), to, ids, amounts, data);
}
/**
* @dev Destroys `amount` tokens of token type `id` from `from`
*
* Emits a {TransferSingle} event.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `from` must have at least `amount` tokens of token type `id`.
*/
function _burn(
address from,
uint256 id,
uint256 amount
) internal virtual {
require(from != address(0), "ERC1155: burn from the zero address");
address operator = _msgSender();
uint256[] memory ids = _asSingletonArray(id);
uint256[] memory amounts = _asSingletonArray(amount);
_beforeTokenTransfer(operator, from, address(0), ids, amounts, "");
uint256 fromBalance = _balances[id][from];
require(fromBalance >= amount, "ERC1155: burn amount exceeds balance");
unchecked {
_balances[id][from] = fromBalance - amount;
}
emit TransferSingle(operator, from, address(0), id, amount);
_afterTokenTransfer(operator, from, address(0), ids, amounts, "");
}
/**
* @dev xref:ROOT:erc1155.adoc#batch-operations[Batched] version of {_burn}.
*
* Emits a {TransferBatch} event.
*
* Requirements:
*
* - `ids` and `amounts` must have the same length.
*/
function _burnBatch(
address from,
uint256[] memory ids,
uint256[] memory amounts
) internal virtual {
require(from != address(0), "ERC1155: burn from the zero address");
require(ids.length == amounts.length, "ERC1155: ids and amounts length mismatch");
address operator = _msgSender();
_beforeTokenTransfer(operator, from, address(0), ids, amounts, "");
for (uint256 i = 0; i < ids.length; i++) {
uint256 id = ids[i];
uint256 amount = amounts[i];
uint256 fromBalance = _balances[id][from];
require(fromBalance >= amount, "ERC1155: burn amount exceeds balance");
unchecked {
_balances[id][from] = fromBalance - amount;
}
}
emit TransferBatch(operator, from, address(0), ids, amounts);
_afterTokenTransfer(operator, from, address(0), ids, amounts, "");
}
/**
* @dev Approve `operator` to operate on all of `owner` tokens
*
* Emits an {ApprovalForAll} event.
*/
function _setApprovalForAll(
address owner,
address operator,
bool approved
) internal virtual {
require(owner != operator, "ERC1155: setting approval status for self");
_operatorApprovals[owner][operator] = approved;
emit ApprovalForAll(owner, operator, approved);
}
/**
* @dev Hook that is called before any token transfer. This includes minting
* and burning, as well as batched variants.
*
* The same hook is called on both single and batched variants. For single
* transfers, the length of the `ids` and `amounts` arrays will be 1.
*
* Calling conditions (for each `id` and `amount` pair):
*
* - When `from` and `to` are both non-zero, `amount` of ``from``'s tokens
* of token type `id` will be transferred to `to`.
* - When `from` is zero, `amount` tokens of token type `id` will be minted
* for `to`.
* - when `to` is zero, `amount` of ``from``'s tokens of token type `id`
* will be burned.
* - `from` and `to` are never both zero.
* - `ids` and `amounts` have the same, non-zero length.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/
function _beforeTokenTransfer(
address operator,
address from,
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) internal virtual {}
/**
* @dev Hook that is called after any token transfer. This includes minting
* and burning, as well as batched variants.
*
* The same hook is called on both single and batched variants. For single
* transfers, the length of the `id` and `amount` arrays will be 1.
*
* Calling conditions (for each `id` and `amount` pair):
*
* - When `from` and `to` are both non-zero, `amount` of ``from``'s tokens
* of token type `id` will be transferred to `to`.
* - When `from` is zero, `amount` tokens of token type `id` will be minted
* for `to`.
* - when `to` is zero, `amount` of ``from``'s tokens of token type `id`
* will be burned.
* - `from` and `to` are never both zero.
* - `ids` and `amounts` have the same, non-zero length.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/
function _afterTokenTransfer(
address operator,
address from,
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) internal virtual {}
function _doSafeTransferAcceptanceCheck(
address operator,
address from,
address to,
uint256 id,
uint256 amount,
bytes memory data
) private {
if (to.isContract()) {
try IERC1155Receiver(to).onERC1155Received(operator, from, id, amount, data) returns (bytes4 response) {
if (response != IERC1155Receiver.onERC1155Received.selector) {
revert("ERC1155: ERC1155Receiver rejected tokens");
}
} catch Error(string memory reason) {
revert(reason);
} catch {
revert("ERC1155: transfer to non-ERC1155Receiver implementer");
}
}
}
function _doSafeBatchTransferAcceptanceCheck(
address operator,
address from,
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) private {
if (to.isContract()) {
try IERC1155Receiver(to).onERC1155BatchReceived(operator, from, ids, amounts, data) returns (
bytes4 response
) {
if (response != IERC1155Receiver.onERC1155BatchReceived.selector) {
revert("ERC1155: ERC1155Receiver rejected tokens");
}
} catch Error(string memory reason) {
revert(reason);
} catch {
revert("ERC1155: transfer to non-ERC1155Receiver implementer");
}
}
}
function _asSingletonArray(uint256 element) private pure returns (uint256[] memory) {
uint256[] memory array = new uint256[](1);
array[0] = element;
return array;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (token/ERC1155/IERC1155.sol)
pragma solidity ^0.8.0;
import "../../utils/introspection/IERC165.sol";
/**
* @dev Required interface of an ERC1155 compliant contract, as defined in the
* https://eips.ethereum.org/EIPS/eip-1155[EIP].
*
* _Available since v3.1._
*/
interface IERC1155 is IERC165 {
/**
* @dev Emitted when `value` tokens of token type `id` are transferred from `from` to `to` by `operator`.
*/
event TransferSingle(address indexed operator, address indexed from, address indexed to, uint256 id, uint256 value);
/**
* @dev Equivalent to multiple {TransferSingle} events, where `operator`, `from` and `to` are the same for all
* transfers.
*/
event TransferBatch(
address indexed operator,
address indexed from,
address indexed to,
uint256[] ids,
uint256[] values
);
/**
* @dev Emitted when `account` grants or revokes permission to `operator` to transfer their tokens, according to
* `approved`.
*/
event ApprovalForAll(address indexed account, address indexed operator, bool approved);
/**
* @dev Emitted when the URI for token type `id` changes to `value`, if it is a non-programmatic URI.
*
* If an {URI} event was emitted for `id`, the standard
* https://eips.ethereum.org/EIPS/eip-1155#metadata-extensions[guarantees] that `value` will equal the value
* returned by {IERC1155MetadataURI-uri}.
*/
event URI(string value, uint256 indexed id);
/**
* @dev Returns the amount of tokens of token type `id` owned by `account`.
*
* Requirements:
*
* - `account` cannot be the zero address.
*/
function balanceOf(address account, uint256 id) external view returns (uint256);
/**
* @dev xref:ROOT:erc1155.adoc#batch-operations[Batched] version of {balanceOf}.
*
* Requirements:
*
* - `accounts` and `ids` must have the same length.
*/
function balanceOfBatch(address[] calldata accounts, uint256[] calldata ids)
external
view
returns (uint256[] memory);
/**
* @dev Grants or revokes permission to `operator` to transfer the caller's tokens, according to `approved`,
*
* Emits an {ApprovalForAll} event.
*
* Requirements:
*
* - `operator` cannot be the caller.
*/
function setApprovalForAll(address operator, bool approved) external;
/**
* @dev Returns true if `operator` is approved to transfer ``account``'s tokens.
*
* See {setApprovalForAll}.
*/
function isApprovedForAll(address account, address operator) external view returns (bool);
/**
* @dev Transfers `amount` tokens of token type `id` from `from` to `to`.
*
* Emits a {TransferSingle} event.
*
* Requirements:
*
* - `to` cannot be the zero address.
* - If the caller is not `from`, it must have been approved to spend ``from``'s tokens via {setApprovalForAll}.
* - `from` must have a balance of tokens of type `id` of at least `amount`.
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155Received} and return the
* acceptance magic value.
*/
function safeTransferFrom(
address from,
address to,
uint256 id,
uint256 amount,
bytes calldata data
) external;
/**
* @dev xref:ROOT:erc1155.adoc#batch-operations[Batched] version of {safeTransferFrom}.
*
* Emits a {TransferBatch} event.
*
* Requirements:
*
* - `ids` and `amounts` must have the same length.
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155BatchReceived} and return the
* acceptance magic value.
*/
function safeBatchTransferFrom(
address from,
address to,
uint256[] calldata ids,
uint256[] calldata amounts,
bytes calldata data
) external;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.5.0) (token/ERC1155/IERC1155Receiver.sol)
pragma solidity ^0.8.0;
import "../../utils/introspection/IERC165.sol";
/**
* @dev _Available since v3.1._
*/
interface IERC1155Receiver is IERC165 {
/**
* @dev Handles the receipt of a single ERC1155 token type. This function is
* called at the end of a `safeTransferFrom` after the balance has been updated.
*
* NOTE: To accept the transfer, this must return
* `bytes4(keccak256("onERC1155Received(address,address,uint256,uint256,bytes)"))`
* (i.e. 0xf23a6e61, or its own function selector).
*
* @param operator The address which initiated the transfer (i.e. msg.sender)
* @param from The address which previously owned the token
* @param id The ID of the token being transferred
* @param value The amount of tokens being transferred
* @param data Additional data with no specified format
* @return `bytes4(keccak256("onERC1155Received(address,address,uint256,uint256,bytes)"))` if transfer is allowed
*/
function onERC1155Received(
address operator,
address from,
uint256 id,
uint256 value,
bytes calldata data
) external returns (bytes4);
/**
* @dev Handles the receipt of a multiple ERC1155 token types. This function
* is called at the end of a `safeBatchTransferFrom` after the balances have
* been updated.
*
* NOTE: To accept the transfer(s), this must return
* `bytes4(keccak256("onERC1155BatchReceived(address,address,uint256[],uint256[],bytes)"))`
* (i.e. 0xbc197c81, or its own function selector).
*
* @param operator The address which initiated the batch transfer (i.e. msg.sender)
* @param from The address which previously owned the token
* @param ids An array containing ids of each token being transferred (order and length must match values array)
* @param values An array containing amounts of each token being transferred (order and length must match ids array)
* @param data Additional data with no specified format
* @return `bytes4(keccak256("onERC1155BatchReceived(address,address,uint256[],uint256[],bytes)"))` if transfer is allowed
*/
function onERC1155BatchReceived(
address operator,
address from,
uint256[] calldata ids,
uint256[] calldata values,
bytes calldata data
) external returns (bytes4);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.8.0) (token/ERC1155/extensions/ERC1155Burnable.sol)
pragma solidity ^0.8.0;
import "../ERC1155.sol";
/**
* @dev Extension of {ERC1155} that allows token holders to destroy both their
* own tokens and those that they have been approved to use.
*
* _Available since v3.1._
*/
abstract contract ERC1155Burnable is ERC1155 {
function burn(
address account,
uint256 id,
uint256 value
) public virtual {
require(
account == _msgSender() || isApprovedForAll(account, _msgSender()),
"ERC1155: caller is not token owner or approved"
);
_burn(account, id, value);
}
function burnBatch(
address account,
uint256[] memory ids,
uint256[] memory values
) public virtual {
require(
account == _msgSender() || isApprovedForAll(account, _msgSender()),
"ERC1155: caller is not token owner or approved"
);
_burnBatch(account, ids, values);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.6.0) (token/ERC1155/extensions/ERC1155Supply.sol)
pragma solidity ^0.8.0;
import "../ERC1155.sol";
/**
* @dev Extension of ERC1155 that adds tracking of total supply per id.
*
* Useful for scenarios where Fungible and Non-fungible tokens have to be
* clearly identified. Note: While a totalSupply of 1 might mean the
* corresponding is an NFT, there is no guarantees that no other token with the
* same id are not going to be minted.
*/
abstract contract ERC1155Supply is ERC1155 {
mapping(uint256 => uint256) private _totalSupply;
/**
* @dev Total amount of tokens in with a given id.
*/
function totalSupply(uint256 id) public view virtual returns (uint256) {
return _totalSupply[id];
}
/**
* @dev Indicates whether any token exist with a given id, or not.
*/
function exists(uint256 id) public view virtual returns (bool) {
return ERC1155Supply.totalSupply(id) > 0;
}
/**
* @dev See {ERC1155-_beforeTokenTransfer}.
*/
function _beforeTokenTransfer(
address operator,
address from,
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) internal virtual override {
super._beforeTokenTransfer(operator, from, to, ids, amounts, data);
if (from == address(0)) {
for (uint256 i = 0; i < ids.length; ++i) {
_totalSupply[ids[i]] += amounts[i];
}
}
if (to == address(0)) {
for (uint256 i = 0; i < ids.length; ++i) {
uint256 id = ids[i];
uint256 amount = amounts[i];
uint256 supply = _totalSupply[id];
require(supply >= amount, "ERC1155: burn amount exceeds totalSupply");
unchecked {
_totalSupply[id] = supply - amount;
}
}
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (token/ERC1155/extensions/IERC1155MetadataURI.sol)
pragma solidity ^0.8.0;
import "../IERC1155.sol";
/**
* @dev Interface of the optional ERC1155MetadataExtension interface, as defined
* in the https://eips.ethereum.org/EIPS/eip-1155#metadata-extensions[EIP].
*
* _Available since v3.1._
*/
interface IERC1155MetadataURI is IERC1155 {
/**
* @dev Returns the URI for token type `id`.
*
* If the `\{id\}` substring is present in the URI, it must be replaced by
* clients with the actual token type ID.
*/
function uri(uint256 id) external view returns (string memory);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.8.0) (utils/Address.sol)
pragma solidity ^0.8.1;
/**
* @dev Collection of functions related to the address type
*/
library Address {
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]
* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* - an externally-owned account
* - a contract in construction
* - an address where a contract will be created
* - an address where a contract lived, but was destroyed
* ====
*
* [IMPORTANT]
* ====
* You shouldn't rely on `isContract` to protect against flash loan attacks!
*
* Preventing calls from contracts is highly discouraged. It breaks composability, breaks support for smart wallets
* like Gnosis Safe, and does not provide security since it can be circumvented by calling from a contract
* constructor.
* ====
*/
function isContract(address account) internal view returns (bool) {
// This method relies on extcodesize/address.code.length, which returns 0
// for contracts in construction, since the code is only stored at the end
// of the constructor execution.
return account.code.length > 0;
}
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://diligence.consensys.net/posts/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.5.11/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/
function sendValue(address payable recipient, uint256 amount) internal {
require(address(this).balance >= amount, "Address: insufficient balance");
(bool success, ) = recipient.call{value: amount}("");
require(success, "Address: unable to send value, recipient may have reverted");
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain `call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, "Address: low-level call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCall(
address target,
bytes memory data,
string memory errorMessage
) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/
function functionCallWithValue(
address target,
bytes memory data,
uint256 value
) internal returns (bytes memory) {
return functionCallWithValue(target, data, value, "Address: low-level call with value failed");
}
/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCallWithValue(
address target,
bytes memory data,
uint256 value,
string memory errorMessage
) internal returns (bytes memory) {
require(address(this).balance >= value, "Address: insufficient balance for call");
(bool success, bytes memory returndata) = target.call{value: value}(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
return functionStaticCall(target, data, "Address: low-level static call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(
address target,
bytes memory data,
string memory errorMessage
) internal view returns (bytes memory) {
(bool success, bytes memory returndata) = target.staticcall(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(address target, bytes memory data) internal returns (bytes memory) {
return functionDelegateCall(target, data, "Address: low-level delegate call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(
address target,
bytes memory data,
string memory errorMessage
) internal returns (bytes memory) {
(bool success, bytes memory returndata) = target.delegatecall(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Tool to verify that a low level call to smart-contract was successful, and revert (either by bubbling
* the revert reason or using the provided one) in case of unsuccessful call or if target was not a contract.
*
* _Available since v4.8._
*/
function verifyCallResultFromTarget(
address target,
bool success,
bytes memory returndata,
string memory errorMessage
) internal view returns (bytes memory) {
if (success) {
if (returndata.length == 0) {
// only check isContract if the call was successful and the return data is empty
// otherwise we already know that it was a contract
require(isContract(target), "Address: call to non-contract");
}
return returndata;
} else {
_revert(returndata, errorMessage);
}
}
/**
* @dev Tool to verify that a low level call was successful, and revert if it wasn't, either by bubbling the
* revert reason or using the provided one.
*
* _Available since v4.3._
*/
function verifyCallResult(
bool success,
bytes memory returndata,
string memory errorMessage
) internal pure returns (bytes memory) {
if (success) {
return returndata;
} else {
_revert(returndata, errorMessage);
}
}
function _revert(bytes memory returndata, string memory errorMessage) private pure {
// Look for revert reason and bubble it up if present
if (returndata.length > 0) {
// The easiest way to bubble the revert reason is using memory via assembly
/// @solidity memory-safe-assembly
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.8.0) (utils/Arrays.sol)
pragma solidity ^0.8.0;
import "./StorageSlot.sol";
import "./math/Math.sol";
/**
* @dev Collection of functions related to array types.
*/
library Arrays {
using StorageSlot for bytes32;
/**
* @dev Searches a sorted `array` and returns the first index that contains
* a value greater or equal to `element`. If no such index exists (i.e. all
* values in the array are strictly less than `element`), the array length is
* returned. Time complexity O(log n).
*
* `array` is expected to be sorted in ascending order, and to contain no
* repeated elements.
*/
function findUpperBound(uint256[] storage array, uint256 element) internal view returns (uint256) {
if (array.length == 0) {
return 0;
}
uint256 low = 0;
uint256 high = array.length;
while (low < high) {
uint256 mid = Math.average(low, high);
// Note that mid will always be strictly less than high (i.e. it will be a valid array index)
// because Math.average rounds down (it does integer division with truncation).
if (unsafeAccess(array, mid).value > element) {
high = mid;
} else {
low = mid + 1;
}
}
// At this point `low` is the exclusive upper bound. We will return the inclusive upper bound.
if (low > 0 && unsafeAccess(array, low - 1).value == element) {
return low - 1;
} else {
return low;
}
}
/**
* @dev Access an array in an "unsafe" way. Skips solidity "index-out-of-range" check.
*
* WARNING: Only use if you are certain `pos` is lower than the array length.
*/
function unsafeAccess(address[] storage arr, uint256 pos) internal pure returns (StorageSlot.AddressSlot storage) {
bytes32 slot;
/// @solidity memory-safe-assembly
assembly {
mstore(0, arr.slot)
slot := add(keccak256(0, 0x20), pos)
}
return slot.getAddressSlot();
}
/**
* @dev Access an array in an "unsafe" way. Skips solidity "index-out-of-range" check.
*
* WARNING: Only use if you are certain `pos` is lower than the array length.
*/
function unsafeAccess(bytes32[] storage arr, uint256 pos) internal pure returns (StorageSlot.Bytes32Slot storage) {
bytes32 slot;
/// @solidity memory-safe-assembly
assembly {
mstore(0, arr.slot)
slot := add(keccak256(0, 0x20), pos)
}
return slot.getBytes32Slot();
}
/**
* @dev Access an array in an "unsafe" way. Skips solidity "index-out-of-range" check.
*
* WARNING: Only use if you are certain `pos` is lower than the array length.
*/
function unsafeAccess(uint256[] storage arr, uint256 pos) internal pure returns (StorageSlot.Uint256Slot storage) {
bytes32 slot;
/// @solidity memory-safe-assembly
assembly {
mstore(0, arr.slot)
slot := add(keccak256(0, 0x20), pos)
}
return slot.getUint256Slot();
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/Context.sol)
pragma solidity ^0.8.0;
/**
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/
abstract contract Context {
function _msgSender() internal view virtual returns (address) {
return msg.sender;
}
function _msgData() internal view virtual returns (bytes calldata) {
return msg.data;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/Counters.sol)
pragma solidity ^0.8.0;
/**
* @title Counters
* @author Matt Condon (@shrugs)
* @dev Provides counters that can only be incremented, decremented or reset. This can be used e.g. to track the number
* of elements in a mapping, issuing ERC721 ids, or counting request ids.
*
* Include with `using Counters for Counters.Counter;`
*/
library Counters {
struct Counter {
// This variable should never be directly accessed by users of the library: interactions must be restricted to
// the library's function. As of Solidity v0.5.2, this cannot be enforced, though there is a proposal to add
// this feature: see https://github.com/ethereum/solidity/issues/4637
uint256 _value; // default: 0
}
function current(Counter storage counter) internal view returns (uint256) {
return counter._value;
}
function increment(Counter storage counter) internal {
unchecked {
counter._value += 1;
}
}
function decrement(Counter storage counter) internal {
uint256 value = counter._value;
require(value > 0, "Counter: decrement overflow");
unchecked {
counter._value = value - 1;
}
}
function reset(Counter storage counter) internal {
counter._value = 0;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (utils/StorageSlot.sol)
pragma solidity ^0.8.0;
/**
* @dev Library for reading and writing primitive types to specific storage slots.
*
* Storage slots are often used to avoid storage conflict when dealing with upgradeable contracts.
* This library helps with reading and writing to such slots without the need for inline assembly.
*
* The functions in this library return Slot structs that contain a `value` member that can be used to read or write.
*
* Example usage to set ERC1967 implementation slot:
* ```
* contract ERC1967 {
* bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
*
* function _getImplementation() internal view returns (address) {
* return StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value;
* }
*
* function _setImplementation(address newImplementation) internal {
* require(Address.isContract(newImplementation), "ERC1967: new implementation is not a contract");
* StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
* }
* }
* ```
*
* _Available since v4.1 for `address`, `bool`, `bytes32`, and `uint256`._
*/
library StorageSlot {
struct AddressSlot {
address value;
}
struct BooleanSlot {
bool value;
}
struct Bytes32Slot {
bytes32 value;
}
struct Uint256Slot {
uint256 value;
}
/**
* @dev Returns an `AddressSlot` with member `value` located at `slot`.
*/
function getAddressSlot(bytes32 slot) internal pure returns (AddressSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `BooleanSlot` with member `value` located at `slot`.
*/
function getBooleanSlot(bytes32 slot) internal pure returns (BooleanSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Bytes32Slot` with member `value` located at `slot`.
*/
function getBytes32Slot(bytes32 slot) internal pure returns (Bytes32Slot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Uint256Slot` with member `value` located at `slot`.
*/
function getUint256Slot(bytes32 slot) internal pure returns (Uint256Slot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.8.0) (utils/Strings.sol)
pragma solidity ^0.8.0;
import "./math/Math.sol";
/**
* @dev String operations.
*/
library Strings {
bytes16 private constant _SYMBOLS = "0123456789abcdef";
uint8 private constant _ADDRESS_LENGTH = 20;
/**
* @dev Converts a `uint256` to its ASCII `string` decimal representation.
*/
function toString(uint256 value) internal pure returns (string memory) {
unchecked {
uint256 length = Math.log10(value) + 1;
string memory buffer = new string(length);
uint256 ptr;
/// @solidity memory-safe-assembly
assembly {
ptr := add(buffer, add(32, length))
}
while (true) {
ptr--;
/// @solidity memory-safe-assembly
assembly {
mstore8(ptr, byte(mod(value, 10), _SYMBOLS))
}
value /= 10;
if (value == 0) break;
}
return buffer;
}
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation.
*/
function toHexString(uint256 value) internal pure returns (string memory) {
unchecked {
return toHexString(value, Math.log256(value) + 1);
}
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation with fixed length.
*/
function toHexString(uint256 value, uint256 length) internal pure returns (string memory) {
bytes memory buffer = new bytes(2 * length + 2);
buffer[0] = "0";
buffer[1] = "x";
for (uint256 i = 2 * length + 1; i > 1; --i) {
buffer[i] = _SYMBOLS[value & 0xf];
value >>= 4;
}
require(value == 0, "Strings: hex length insufficient");
return string(buffer);
}
/**
* @dev Converts an `address` with fixed length of 20 bytes to its not checksummed ASCII `string` hexadecimal representation.
*/
function toHexString(address addr) internal pure returns (string memory) {
return toHexString(uint256(uint160(addr)), _ADDRESS_LENGTH);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.8.0) (utils/cryptography/ECDSA.sol)
pragma solidity ^0.8.0;
import "../Strings.sol";
/**
* @dev Elliptic Curve Digital Signature Algorithm (ECDSA) operations.
*
* These functions can be used to verify that a message was signed by the holder
* of the private keys of a given address.
*/
library ECDSA {
enum RecoverError {
NoError,
InvalidSignature,
InvalidSignatureLength,
InvalidSignatureS,
InvalidSignatureV // Deprecated in v4.8
}
function _throwError(RecoverError error) private pure {
if (error == RecoverError.NoError) {
return; // no error: do nothing
} else if (error == RecoverError.InvalidSignature) {
revert("ECDSA: invalid signature");
} else if (error == RecoverError.InvalidSignatureLength) {
revert("ECDSA: invalid signature length");
} else if (error == RecoverError.InvalidSignatureS) {
revert("ECDSA: invalid signature 's' value");
}
}
/**
* @dev Returns the address that signed a hashed message (`hash`) with
* `signature` or error string. This address can then be used for verification purposes.
*
* The `ecrecover` EVM opcode allows for malleable (non-unique) signatures:
* this function rejects them by requiring the `s` value to be in the lower
* half order, and the `v` value to be either 27 or 28.
*
* IMPORTANT: `hash` _must_ be the result of a hash operation for the
* verification to be secure: it is possible to craft signatures that
* recover to arbitrary addresses for non-hashed data. A safe way to ensure
* this is by receiving a hash of the original message (which may otherwise
* be too long), and then calling {toEthSignedMessageHash} on it.
*
* Documentation for signature generation:
* - with https://web3js.readthedocs.io/en/v1.3.4/web3-eth-accounts.html#sign[Web3.js]
* - with https://docs.ethers.io/v5/api/signer/#Signer-signMessage[ethers]
*
* _Available since v4.3._
*/
function tryRecover(bytes32 hash, bytes memory signature) internal pure returns (address, RecoverError) {
if (signature.length == 65) {
bytes32 r;
bytes32 s;
uint8 v;
// ecrecover takes the signature parameters, and the only way to get them
// currently is to use assembly.
/// @solidity memory-safe-assembly
assembly {
r := mload(add(signature, 0x20))
s := mload(add(signature, 0x40))
v := byte(0, mload(add(signature, 0x60)))
}
return tryRecover(hash, v, r, s);
} else {
return (address(0), RecoverError.InvalidSignatureLength);
}
}
/**
* @dev Returns the address that signed a hashed message (`hash`) with
* `signature`. This address can then be used for verification purposes.
*
* The `ecrecover` EVM opcode allows for malleable (non-unique) signatures:
* this function rejects them by requiring the `s` value to be in the lower
* half order, and the `v` value to be either 27 or 28.
*
* IMPORTANT: `hash` _must_ be the result of a hash operation for the
* verification to be secure: it is possible to craft signatures that
* recover to arbitrary addresses for non-hashed data. A safe way to ensure
* this is by receiving a hash of the original message (which may otherwise
* be too long), and then calling {toEthSignedMessageHash} on it.
*/
function recover(bytes32 hash, bytes memory signature) internal pure returns (address) {
(address recovered, RecoverError error) = tryRecover(hash, signature);
_throwError(error);
return recovered;
}
/**
* @dev Overload of {ECDSA-tryRecover} that receives the `r` and `vs` short-signature fields separately.
*
* See https://eips.ethereum.org/EIPS/eip-2098[EIP-2098 short signatures]
*
* _Available since v4.3._
*/
function tryRecover(
bytes32 hash,
bytes32 r,
bytes32 vs
) internal pure returns (address, RecoverError) {
bytes32 s = vs & bytes32(0x7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff);
uint8 v = uint8((uint256(vs) >> 255) + 27);
return tryRecover(hash, v, r, s);
}
/**
* @dev Overload of {ECDSA-recover} that receives the `r and `vs` short-signature fields separately.
*
* _Available since v4.2._
*/
function recover(
bytes32 hash,
bytes32 r,
bytes32 vs
) internal pure returns (address) {
(address recovered, RecoverError error) = tryRecover(hash, r, vs);
_throwError(error);
return recovered;
}
/**
* @dev Overload of {ECDSA-tryRecover} that receives the `v`,
* `r` and `s` signature fields separately.
*
* _Available since v4.3._
*/
function tryRecover(
bytes32 hash,
uint8 v,
bytes32 r,
bytes32 s
) internal pure returns (address, RecoverError) {
// EIP-2 still allows signature malleability for ecrecover(). Remove this possibility and make the signature
// unique. Appendix F in the Ethereum Yellow paper (https://ethereum.github.io/yellowpaper/paper.pdf), defines
// the valid range for s in (301): 0 < s < secp256k1n ÷ 2 + 1, and for v in (302): v ∈ {27, 28}. Most
// signatures from current libraries generate a unique signature with an s-value in the lower half order.
//
// If your library generates malleable signatures, such as s-values in the upper range, calculate a new s-value
// with 0xFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEBAAEDCE6AF48A03BBFD25E8CD0364141 - s1 and flip v from 27 to 28 or
// vice versa. If your library also generates signatures with 0/1 for v instead 27/28, add 27 to v to accept
// these malleable signatures as well.
if (uint256(s) > 0x7FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF5D576E7357A4501DDFE92F46681B20A0) {
return (address(0), RecoverError.InvalidSignatureS);
}
// If the signature is valid (and not malleable), return the signer address
address signer = ecrecover(hash, v, r, s);
if (signer == address(0)) {
return (address(0), RecoverError.InvalidSignature);
}
return (signer, RecoverError.NoError);
}
/**
* @dev Overload of {ECDSA-recover} that receives the `v`,
* `r` and `s` signature fields separately.
*/
function recover(
bytes32 hash,
uint8 v,
bytes32 r,
bytes32 s
) internal pure returns (address) {
(address recovered, RecoverError error) = tryRecover(hash, v, r, s);
_throwError(error);
return recovered;
}
/**
* @dev Returns an Ethereum Signed Message, created from a `hash`. This
* produces hash corresponding to the one signed with the
* https://eth.wiki/json-rpc/API#eth_sign[`eth_sign`]
* JSON-RPC method as part of EIP-191.
*
* See {recover}.
*/
function toEthSignedMessageHash(bytes32 hash) internal pure returns (bytes32) {
// 32 is the length in bytes of hash,
// enforced by the type signature above
return keccak256(abi.encodePacked("\x19Ethereum Signed Message:\n32", hash));
}
/**
* @dev Returns an Ethereum Signed Message, created from `s`. This
* produces hash corresponding to the one signed with the
* https://eth.wiki/json-rpc/API#eth_sign[`eth_sign`]
* JSON-RPC method as part of EIP-191.
*
* See {recover}.
*/
function toEthSignedMessageHash(bytes memory s) internal pure returns (bytes32) {
return keccak256(abi.encodePacked("\x19Ethereum Signed Message:\n", Strings.toString(s.length), s));
}
/**
* @dev Returns an Ethereum Signed Typed Data, created from a
* `domainSeparator` and a `structHash`. This produces hash corresponding
* to the one signed with the
* https://eips.ethereum.org/EIPS/eip-712[`eth_signTypedData`]
* JSON-RPC method as part of EIP-712.
*
* See {recover}.
*/
function toTypedDataHash(bytes32 domainSeparator, bytes32 structHash) internal pure returns (bytes32) {
return keccak256(abi.encodePacked("\x19\x01", domainSeparator, structHash));
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/introspection/ERC165.sol)
pragma solidity ^0.8.0;
import "./IERC165.sol";
/**
* @dev Implementation of the {IERC165} interface.
*
* Contracts that want to implement ERC165 should inherit from this contract and override {supportsInterface} to check
* for the additional interface id that will be supported. For example:
*
* ```solidity
* function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
* return interfaceId == type(MyInterface).interfaceId || super.supportsInterface(interfaceId);
* }
* ```
*
* Alternatively, {ERC165Storage} provides an easier to use but more expensive implementation.
*/
abstract contract ERC165 is IERC165 {
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return interfaceId == type(IERC165).interfaceId;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/introspection/IERC165.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC165 standard, as defined in the
* https://eips.ethereum.org/EIPS/eip-165[EIP].
*
* Implementers can declare support of contract interfaces, which can then be
* queried by others ({ERC165Checker}).
*
* For an implementation, see {ERC165}.
*/
interface IERC165 {
/**
* @dev Returns true if this contract implements the interface defined by
* `interfaceId`. See the corresponding
* https://eips.ethereum.org/EIPS/eip-165#how-interfaces-are-identified[EIP section]
* to learn more about how these ids are created.
*
* This function call must use less than 30 000 gas.
*/
function supportsInterface(bytes4 interfaceId) external view returns (bool);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.8.0) (utils/math/Math.sol)
pragma solidity ^0.8.0;
/**
* @dev Standard math utilities missing in the Solidity language.
*/
library Math {
enum Rounding {
Down, // Toward negative infinity
Up, // Toward infinity
Zero // Toward zero
}
/**
* @dev Returns the largest of two numbers.
*/
function max(uint256 a, uint256 b) internal pure returns (uint256) {
return a > b ? a : b;
}
/**
* @dev Returns the smallest of two numbers.
*/
function min(uint256 a, uint256 b) internal pure returns (uint256) {
return a < b ? a : b;
}
/**
* @dev Returns the average of two numbers. The result is rounded towards
* zero.
*/
function average(uint256 a, uint256 b) internal pure returns (uint256) {
// (a + b) / 2 can overflow.
return (a & b) + (a ^ b) / 2;
}
/**
* @dev Returns the ceiling of the division of two numbers.
*
* This differs from standard division with `/` in that it rounds up instead
* of rounding down.
*/
function ceilDiv(uint256 a, uint256 b) internal pure returns (uint256) {
// (a + b - 1) / b can overflow on addition, so we distribute.
return a == 0 ? 0 : (a - 1) / b + 1;
}
/**
* @notice Calculates floor(x * y / denominator) with full precision. Throws if result overflows a uint256 or denominator == 0
* @dev Original credit to Remco Bloemen under MIT license (https://xn--2-umb.com/21/muldiv)
* with further edits by Uniswap Labs also under MIT license.
*/
function mulDiv(
uint256 x,
uint256 y,
uint256 denominator
) internal pure returns (uint256 result) {
unchecked {
// 512-bit multiply [prod1 prod0] = x * y. Compute the product mod 2^256 and mod 2^256 - 1, then use
// use the Chinese Remainder Theorem to reconstruct the 512 bit result. The result is stored in two 256
// variables such that product = prod1 * 2^256 + prod0.
uint256 prod0; // Least significant 256 bits of the product
uint256 prod1; // Most significant 256 bits of the product
assembly {
let mm := mulmod(x, y, not(0))
prod0 := mul(x, y)
prod1 := sub(sub(mm, prod0), lt(mm, prod0))
}
// Handle non-overflow cases, 256 by 256 division.
if (prod1 == 0) {
return prod0 / denominator;
}
// Make sure the result is less than 2^256. Also prevents denominator == 0.
require(denominator > prod1);
///////////////////////////////////////////////
// 512 by 256 division.
///////////////////////////////////////////////
// Make division exact by subtracting the remainder from [prod1 prod0].
uint256 remainder;
assembly {
// Compute remainder using mulmod.
remainder := mulmod(x, y, denominator)
// Subtract 256 bit number from 512 bit number.
prod1 := sub(prod1, gt(remainder, prod0))
prod0 := sub(prod0, remainder)
}
// Factor powers of two out of denominator and compute largest power of two divisor of denominator. Always >= 1.
// See https://cs.stackexchange.com/q/138556/92363.
// Does not overflow because the denominator cannot be zero at this stage in the function.
uint256 twos = denominator & (~denominator + 1);
assembly {
// Divide denominator by twos.
denominator := div(denominator, twos)
// Divide [prod1 prod0] by twos.
prod0 := div(prod0, twos)
// Flip twos such that it is 2^256 / twos. If twos is zero, then it becomes one.
twos := add(div(sub(0, twos), twos), 1)
}
// Shift in bits from prod1 into prod0.
prod0 |= prod1 * twos;
// Invert denominator mod 2^256. Now that denominator is an odd number, it has an inverse modulo 2^256 such
// that denominator * inv = 1 mod 2^256. Compute the inverse by starting with a seed that is correct for
// four bits. That is, denominator * inv = 1 mod 2^4.
uint256 inverse = (3 * denominator) ^ 2;
// Use the Newton-Raphson iteration to improve the precision. Thanks to Hensel's lifting lemma, this also works
// in modular arithmetic, doubling the correct bits in each step.
inverse *= 2 - denominator * inverse; // inverse mod 2^8
inverse *= 2 - denominator * inverse; // inverse mod 2^16
inverse *= 2 - denominator * inverse; // inverse mod 2^32
inverse *= 2 - denominator * inverse; // inverse mod 2^64
inverse *= 2 - denominator * inverse; // inverse mod 2^128
inverse *= 2 - denominator * inverse; // inverse mod 2^256
// Because the division is now exact we can divide by multiplying with the modular inverse of denominator.
// This will give us the correct result modulo 2^256. Since the preconditions guarantee that the outcome is
// less than 2^256, this is the final result. We don't need to compute the high bits of the result and prod1
// is no longer required.
result = prod0 * inverse;
return result;
}
}
/**
* @notice Calculates x * y / denominator with full precision, following the selected rounding direction.
*/
function mulDiv(
uint256 x,
uint256 y,
uint256 denominator,
Rounding rounding
) internal pure returns (uint256) {
uint256 result = mulDiv(x, y, denominator);
if (rounding == Rounding.Up && mulmod(x, y, denominator) > 0) {
result += 1;
}
return result;
}
/**
* @dev Returns the square root of a number. If the number is not a perfect square, the value is rounded down.
*
* Inspired by Henry S. Warren, Jr.'s "Hacker's Delight" (Chapter 11).
*/
function sqrt(uint256 a) internal pure returns (uint256) {
if (a == 0) {
return 0;
}
// For our first guess, we get the biggest power of 2 which is smaller than the square root of the target.
//
// We know that the "msb" (most significant bit) of our target number `a` is a power of 2 such that we have
// `msb(a) <= a < 2*msb(a)`. This value can be written `msb(a)=2**k` with `k=log2(a)`.
//
// This can be rewritten `2**log2(a) <= a < 2**(log2(a) + 1)`
// → `sqrt(2**k) <= sqrt(a) < sqrt(2**(k+1))`
// → `2**(k/2) <= sqrt(a) < 2**((k+1)/2) <= 2**(k/2 + 1)`
//
// Consequently, `2**(log2(a) / 2)` is a good first approximation of `sqrt(a)` with at least 1 correct bit.
uint256 result = 1 << (log2(a) >> 1);
// At this point `result` is an estimation with one bit of precision. We know the true value is a uint128,
// since it is the square root of a uint256. Newton's method converges quadratically (precision doubles at
// every iteration). We thus need at most 7 iteration to turn our partial result with one bit of precision
// into the expected uint128 result.
unchecked {
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
return min(result, a / result);
}
}
/**
* @notice Calculates sqrt(a), following the selected rounding direction.
*/
function sqrt(uint256 a, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = sqrt(a);
return result + (rounding == Rounding.Up && result * result < a ? 1 : 0);
}
}
/**
* @dev Return the log in base 2, rounded down, of a positive value.
* Returns 0 if given 0.
*/
function log2(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >> 128 > 0) {
value >>= 128;
result += 128;
}
if (value >> 64 > 0) {
value >>= 64;
result += 64;
}
if (value >> 32 > 0) {
value >>= 32;
result += 32;
}
if (value >> 16 > 0) {
value >>= 16;
result += 16;
}
if (value >> 8 > 0) {
value >>= 8;
result += 8;
}
if (value >> 4 > 0) {
value >>= 4;
result += 4;
}
if (value >> 2 > 0) {
value >>= 2;
result += 2;
}
if (value >> 1 > 0) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 2, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log2(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log2(value);
return result + (rounding == Rounding.Up && 1 << result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 10, rounded down, of a positive value.
* Returns 0 if given 0.
*/
function log10(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >= 10**64) {
value /= 10**64;
result += 64;
}
if (value >= 10**32) {
value /= 10**32;
result += 32;
}
if (value >= 10**16) {
value /= 10**16;
result += 16;
}
if (value >= 10**8) {
value /= 10**8;
result += 8;
}
if (value >= 10**4) {
value /= 10**4;
result += 4;
}
if (value >= 10**2) {
value /= 10**2;
result += 2;
}
if (value >= 10**1) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 10, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log10(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log10(value);
return result + (rounding == Rounding.Up && 10**result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 256, rounded down, of a positive value.
* Returns 0 if given 0.
*
* Adding one to the result gives the number of pairs of hex symbols needed to represent `value` as a hex string.
*/
function log256(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >> 128 > 0) {
value >>= 128;
result += 16;
}
if (value >> 64 > 0) {
value >>= 64;
result += 8;
}
if (value >> 32 > 0) {
value >>= 32;
result += 4;
}
if (value >> 16 > 0) {
value >>= 16;
result += 2;
}
if (value >> 8 > 0) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 10, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log256(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log256(value);
return result + (rounding == Rounding.Up && 1 << (result * 8) < value ? 1 : 0);
}
}
}// SPDX-License-Identifier: AGPL-3.0-only
pragma solidity >=0.8.0;
import {ERC20} from "../tokens/ERC20.sol";
import {SafeTransferLib} from "../utils/SafeTransferLib.sol";
import {FixedPointMathLib} from "../utils/FixedPointMathLib.sol";
/// @notice Minimal ERC4626 tokenized Vault implementation.
/// @author Solmate (https://github.com/transmissions11/solmate/blob/main/src/mixins/ERC4626.sol)
abstract contract ERC4626 is ERC20 {
using SafeTransferLib for ERC20;
using FixedPointMathLib for uint256;
/*//////////////////////////////////////////////////////////////
EVENTS
//////////////////////////////////////////////////////////////*/
event Deposit(address indexed caller, address indexed owner, uint256 assets, uint256 shares);
event Withdraw(
address indexed caller,
address indexed receiver,
address indexed owner,
uint256 assets,
uint256 shares
);
/*//////////////////////////////////////////////////////////////
IMMUTABLES
//////////////////////////////////////////////////////////////*/
ERC20 public immutable asset;
constructor(
ERC20 _asset,
string memory _name,
string memory _symbol
) ERC20(_name, _symbol, _asset.decimals()) {
asset = _asset;
}
/*//////////////////////////////////////////////////////////////
DEPOSIT/WITHDRAWAL LOGIC
//////////////////////////////////////////////////////////////*/
function deposit(uint256 assets, address receiver) public virtual returns (uint256 shares) {
// Check for rounding error since we round down in previewDeposit.
require((shares = previewDeposit(assets)) != 0, "ZERO_SHARES");
// Need to transfer before minting or ERC777s could reenter.
asset.safeTransferFrom(msg.sender, address(this), assets);
_mint(receiver, shares);
emit Deposit(msg.sender, receiver, assets, shares);
afterDeposit(assets, shares);
}
function mint(uint256 shares, address receiver) public virtual returns (uint256 assets) {
assets = previewMint(shares); // No need to check for rounding error, previewMint rounds up.
// Need to transfer before minting or ERC777s could reenter.
asset.safeTransferFrom(msg.sender, address(this), assets);
_mint(receiver, shares);
emit Deposit(msg.sender, receiver, assets, shares);
afterDeposit(assets, shares);
}
function withdraw(
uint256 assets,
address receiver,
address owner
) public virtual returns (uint256 shares) {
shares = previewWithdraw(assets); // No need to check for rounding error, previewWithdraw rounds up.
if (msg.sender != owner) {
uint256 allowed = allowance[owner][msg.sender]; // Saves gas for limited approvals.
if (allowed != type(uint256).max) allowance[owner][msg.sender] = allowed - shares;
}
beforeWithdraw(assets, shares);
_burn(owner, shares);
emit Withdraw(msg.sender, receiver, owner, assets, shares);
asset.safeTransfer(receiver, assets);
}
function redeem(
uint256 shares,
address receiver,
address owner
) public virtual returns (uint256 assets) {
if (msg.sender != owner) {
uint256 allowed = allowance[owner][msg.sender]; // Saves gas for limited approvals.
if (allowed != type(uint256).max) allowance[owner][msg.sender] = allowed - shares;
}
// Check for rounding error since we round down in previewRedeem.
require((assets = previewRedeem(shares)) != 0, "ZERO_ASSETS");
beforeWithdraw(assets, shares);
_burn(owner, shares);
emit Withdraw(msg.sender, receiver, owner, assets, shares);
asset.safeTransfer(receiver, assets);
}
/*//////////////////////////////////////////////////////////////
ACCOUNTING LOGIC
//////////////////////////////////////////////////////////////*/
function totalAssets() public view virtual returns (uint256);
function convertToShares(uint256 assets) public view virtual returns (uint256) {
uint256 supply = totalSupply; // Saves an extra SLOAD if totalSupply is non-zero.
return supply == 0 ? assets : assets.mulDivDown(supply, totalAssets());
}
function convertToAssets(uint256 shares) public view virtual returns (uint256) {
uint256 supply = totalSupply; // Saves an extra SLOAD if totalSupply is non-zero.
return supply == 0 ? shares : shares.mulDivDown(totalAssets(), supply);
}
function previewDeposit(uint256 assets) public view virtual returns (uint256) {
return convertToShares(assets);
}
function previewMint(uint256 shares) public view virtual returns (uint256) {
uint256 supply = totalSupply; // Saves an extra SLOAD if totalSupply is non-zero.
return supply == 0 ? shares : shares.mulDivUp(totalAssets(), supply);
}
function previewWithdraw(uint256 assets) public view virtual returns (uint256) {
uint256 supply = totalSupply; // Saves an extra SLOAD if totalSupply is non-zero.
return supply == 0 ? assets : assets.mulDivUp(supply, totalAssets());
}
function previewRedeem(uint256 shares) public view virtual returns (uint256) {
return convertToAssets(shares);
}
/*//////////////////////////////////////////////////////////////
DEPOSIT/WITHDRAWAL LIMIT LOGIC
//////////////////////////////////////////////////////////////*/
function maxDeposit(address) public view virtual returns (uint256) {
return type(uint256).max;
}
function maxMint(address) public view virtual returns (uint256) {
return type(uint256).max;
}
function maxWithdraw(address owner) public view virtual returns (uint256) {
return convertToAssets(balanceOf[owner]);
}
function maxRedeem(address owner) public view virtual returns (uint256) {
return balanceOf[owner];
}
/*//////////////////////////////////////////////////////////////
INTERNAL HOOKS LOGIC
//////////////////////////////////////////////////////////////*/
function beforeWithdraw(uint256 assets, uint256 shares) internal virtual {}
function afterDeposit(uint256 assets, uint256 shares) internal virtual {}
}// SPDX-License-Identifier: AGPL-3.0-only
pragma solidity >=0.8.0;
/// @notice Minimalist and gas efficient standard ERC1155 implementation.
/// @author Solmate (https://github.com/transmissions11/solmate/blob/main/src/tokens/ERC1155.sol)
abstract contract ERC1155 {
/*//////////////////////////////////////////////////////////////
EVENTS
//////////////////////////////////////////////////////////////*/
event TransferSingle(
address indexed operator,
address indexed from,
address indexed to,
uint256 id,
uint256 amount
);
event TransferBatch(
address indexed operator,
address indexed from,
address indexed to,
uint256[] ids,
uint256[] amounts
);
event ApprovalForAll(address indexed owner, address indexed operator, bool approved);
event URI(string value, uint256 indexed id);
/*//////////////////////////////////////////////////////////////
ERC1155 STORAGE
//////////////////////////////////////////////////////////////*/
mapping(address => mapping(uint256 => uint256)) public balanceOf;
mapping(address => mapping(address => bool)) public isApprovedForAll;
/*//////////////////////////////////////////////////////////////
METADATA LOGIC
//////////////////////////////////////////////////////////////*/
function uri(uint256 id) public view virtual returns (string memory);
/*//////////////////////////////////////////////////////////////
ERC1155 LOGIC
//////////////////////////////////////////////////////////////*/
function setApprovalForAll(address operator, bool approved) public virtual {
isApprovedForAll[msg.sender][operator] = approved;
emit ApprovalForAll(msg.sender, operator, approved);
}
function safeTransferFrom(
address from,
address to,
uint256 id,
uint256 amount,
bytes calldata data
) public virtual {
require(msg.sender == from || isApprovedForAll[from][msg.sender], "NOT_AUTHORIZED");
balanceOf[from][id] -= amount;
balanceOf[to][id] += amount;
emit TransferSingle(msg.sender, from, to, id, amount);
require(
to.code.length == 0
? to != address(0)
: ERC1155TokenReceiver(to).onERC1155Received(msg.sender, from, id, amount, data) ==
ERC1155TokenReceiver.onERC1155Received.selector,
"UNSAFE_RECIPIENT"
);
}
function safeBatchTransferFrom(
address from,
address to,
uint256[] calldata ids,
uint256[] calldata amounts,
bytes calldata data
) public virtual {
require(ids.length == amounts.length, "LENGTH_MISMATCH");
require(msg.sender == from || isApprovedForAll[from][msg.sender], "NOT_AUTHORIZED");
// Storing these outside the loop saves ~15 gas per iteration.
uint256 id;
uint256 amount;
for (uint256 i = 0; i < ids.length; ) {
id = ids[i];
amount = amounts[i];
balanceOf[from][id] -= amount;
balanceOf[to][id] += amount;
// An array can't have a total length
// larger than the max uint256 value.
unchecked {
++i;
}
}
emit TransferBatch(msg.sender, from, to, ids, amounts);
require(
to.code.length == 0
? to != address(0)
: ERC1155TokenReceiver(to).onERC1155BatchReceived(msg.sender, from, ids, amounts, data) ==
ERC1155TokenReceiver.onERC1155BatchReceived.selector,
"UNSAFE_RECIPIENT"
);
}
function balanceOfBatch(address[] calldata owners, uint256[] calldata ids)
public
view
virtual
returns (uint256[] memory balances)
{
require(owners.length == ids.length, "LENGTH_MISMATCH");
balances = new uint256[](owners.length);
// Unchecked because the only math done is incrementing
// the array index counter which cannot possibly overflow.
unchecked {
for (uint256 i = 0; i < owners.length; ++i) {
balances[i] = balanceOf[owners[i]][ids[i]];
}
}
}
/*//////////////////////////////////////////////////////////////
ERC165 LOGIC
//////////////////////////////////////////////////////////////*/
function supportsInterface(bytes4 interfaceId) public view virtual returns (bool) {
return
interfaceId == 0x01ffc9a7 || // ERC165 Interface ID for ERC165
interfaceId == 0xd9b67a26 || // ERC165 Interface ID for ERC1155
interfaceId == 0x0e89341c; // ERC165 Interface ID for ERC1155MetadataURI
}
/*//////////////////////////////////////////////////////////////
INTERNAL MINT/BURN LOGIC
//////////////////////////////////////////////////////////////*/
function _mint(
address to,
uint256 id,
uint256 amount,
bytes memory data
) internal virtual {
balanceOf[to][id] += amount;
emit TransferSingle(msg.sender, address(0), to, id, amount);
require(
to.code.length == 0
? to != address(0)
: ERC1155TokenReceiver(to).onERC1155Received(msg.sender, address(0), id, amount, data) ==
ERC1155TokenReceiver.onERC1155Received.selector,
"UNSAFE_RECIPIENT"
);
}
function _batchMint(
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) internal virtual {
uint256 idsLength = ids.length; // Saves MLOADs.
require(idsLength == amounts.length, "LENGTH_MISMATCH");
for (uint256 i = 0; i < idsLength; ) {
balanceOf[to][ids[i]] += amounts[i];
// An array can't have a total length
// larger than the max uint256 value.
unchecked {
++i;
}
}
emit TransferBatch(msg.sender, address(0), to, ids, amounts);
require(
to.code.length == 0
? to != address(0)
: ERC1155TokenReceiver(to).onERC1155BatchReceived(msg.sender, address(0), ids, amounts, data) ==
ERC1155TokenReceiver.onERC1155BatchReceived.selector,
"UNSAFE_RECIPIENT"
);
}
function _batchBurn(
address from,
uint256[] memory ids,
uint256[] memory amounts
) internal virtual {
uint256 idsLength = ids.length; // Saves MLOADs.
require(idsLength == amounts.length, "LENGTH_MISMATCH");
for (uint256 i = 0; i < idsLength; ) {
balanceOf[from][ids[i]] -= amounts[i];
// An array can't have a total length
// larger than the max uint256 value.
unchecked {
++i;
}
}
emit TransferBatch(msg.sender, from, address(0), ids, amounts);
}
function _burn(
address from,
uint256 id,
uint256 amount
) internal virtual {
balanceOf[from][id] -= amount;
emit TransferSingle(msg.sender, from, address(0), id, amount);
}
}
/// @notice A generic interface for a contract which properly accepts ERC1155 tokens.
/// @author Solmate (https://github.com/transmissions11/solmate/blob/main/src/tokens/ERC1155.sol)
abstract contract ERC1155TokenReceiver {
function onERC1155Received(
address,
address,
uint256,
uint256,
bytes calldata
) external virtual returns (bytes4) {
return ERC1155TokenReceiver.onERC1155Received.selector;
}
function onERC1155BatchReceived(
address,
address,
uint256[] calldata,
uint256[] calldata,
bytes calldata
) external virtual returns (bytes4) {
return ERC1155TokenReceiver.onERC1155BatchReceived.selector;
}
}// SPDX-License-Identifier: AGPL-3.0-only
pragma solidity >=0.8.0;
/// @notice Modern and gas efficient ERC20 + EIP-2612 implementation.
/// @author Solmate (https://github.com/transmissions11/solmate/blob/main/src/tokens/ERC20.sol)
/// @author Modified from Uniswap (https://github.com/Uniswap/uniswap-v2-core/blob/master/contracts/UniswapV2ERC20.sol)
/// @dev Do not manually set balances without updating totalSupply, as the sum of all user balances must not exceed it.
abstract contract ERC20 {
/*//////////////////////////////////////////////////////////////
EVENTS
//////////////////////////////////////////////////////////////*/
event Transfer(address indexed from, address indexed to, uint256 amount);
event Approval(address indexed owner, address indexed spender, uint256 amount);
/*//////////////////////////////////////////////////////////////
METADATA STORAGE
//////////////////////////////////////////////////////////////*/
string public name;
string public symbol;
uint8 public immutable decimals;
/*//////////////////////////////////////////////////////////////
ERC20 STORAGE
//////////////////////////////////////////////////////////////*/
uint256 public totalSupply;
mapping(address => uint256) public balanceOf;
mapping(address => mapping(address => uint256)) public allowance;
/*//////////////////////////////////////////////////////////////
EIP-2612 STORAGE
//////////////////////////////////////////////////////////////*/
uint256 internal immutable INITIAL_CHAIN_ID;
bytes32 internal immutable INITIAL_DOMAIN_SEPARATOR;
mapping(address => uint256) public nonces;
/*//////////////////////////////////////////////////////////////
CONSTRUCTOR
//////////////////////////////////////////////////////////////*/
constructor(
string memory _name,
string memory _symbol,
uint8 _decimals
) {
name = _name;
symbol = _symbol;
decimals = _decimals;
INITIAL_CHAIN_ID = block.chainid;
INITIAL_DOMAIN_SEPARATOR = computeDomainSeparator();
}
/*//////////////////////////////////////////////////////////////
ERC20 LOGIC
//////////////////////////////////////////////////////////////*/
function approve(address spender, uint256 amount) public virtual returns (bool) {
allowance[msg.sender][spender] = amount;
emit Approval(msg.sender, spender, amount);
return true;
}
function transfer(address to, uint256 amount) public virtual returns (bool) {
balanceOf[msg.sender] -= amount;
// Cannot overflow because the sum of all user
// balances can't exceed the max uint256 value.
unchecked {
balanceOf[to] += amount;
}
emit Transfer(msg.sender, to, amount);
return true;
}
function transferFrom(
address from,
address to,
uint256 amount
) public virtual returns (bool) {
uint256 allowed = allowance[from][msg.sender]; // Saves gas for limited approvals.
if (allowed != type(uint256).max) allowance[from][msg.sender] = allowed - amount;
balanceOf[from] -= amount;
// Cannot overflow because the sum of all user
// balances can't exceed the max uint256 value.
unchecked {
balanceOf[to] += amount;
}
emit Transfer(from, to, amount);
return true;
}
/*//////////////////////////////////////////////////////////////
EIP-2612 LOGIC
//////////////////////////////////////////////////////////////*/
function permit(
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) public virtual {
require(deadline >= block.timestamp, "PERMIT_DEADLINE_EXPIRED");
// Unchecked because the only math done is incrementing
// the owner's nonce which cannot realistically overflow.
unchecked {
address recoveredAddress = ecrecover(
keccak256(
abi.encodePacked(
"\x19\x01",
DOMAIN_SEPARATOR(),
keccak256(
abi.encode(
keccak256(
"Permit(address owner,address spender,uint256 value,uint256 nonce,uint256 deadline)"
),
owner,
spender,
value,
nonces[owner]++,
deadline
)
)
)
),
v,
r,
s
);
require(recoveredAddress != address(0) && recoveredAddress == owner, "INVALID_SIGNER");
allowance[recoveredAddress][spender] = value;
}
emit Approval(owner, spender, value);
}
function DOMAIN_SEPARATOR() public view virtual returns (bytes32) {
return block.chainid == INITIAL_CHAIN_ID ? INITIAL_DOMAIN_SEPARATOR : computeDomainSeparator();
}
function computeDomainSeparator() internal view virtual returns (bytes32) {
return
keccak256(
abi.encode(
keccak256("EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)"),
keccak256(bytes(name)),
keccak256("1"),
block.chainid,
address(this)
)
);
}
/*//////////////////////////////////////////////////////////////
INTERNAL MINT/BURN LOGIC
//////////////////////////////////////////////////////////////*/
function _mint(address to, uint256 amount) internal virtual {
totalSupply += amount;
// Cannot overflow because the sum of all user
// balances can't exceed the max uint256 value.
unchecked {
balanceOf[to] += amount;
}
emit Transfer(address(0), to, amount);
}
function _burn(address from, uint256 amount) internal virtual {
balanceOf[from] -= amount;
// Cannot underflow because a user's balance
// will never be larger than the total supply.
unchecked {
totalSupply -= amount;
}
emit Transfer(from, address(0), amount);
}
}// SPDX-License-Identifier: AGPL-3.0-only
pragma solidity >=0.8.0;
/// @notice Library for converting between addresses and bytes32 values.
/// @author Solmate (https://github.com/transmissions11/solmate/blob/main/src/utils/Bytes32AddressLib.sol)
library Bytes32AddressLib {
function fromLast20Bytes(bytes32 bytesValue) internal pure returns (address) {
return address(uint160(uint256(bytesValue)));
}
function fillLast12Bytes(address addressValue) internal pure returns (bytes32) {
return bytes32(bytes20(addressValue));
}
}// SPDX-License-Identifier: AGPL-3.0-only
pragma solidity >=0.8.0;
/// @notice Arithmetic library with operations for fixed-point numbers.
/// @author Solmate (https://github.com/transmissions11/solmate/blob/main/src/utils/FixedPointMathLib.sol)
/// @author Inspired by USM (https://github.com/usmfum/USM/blob/master/contracts/WadMath.sol)
library FixedPointMathLib {
/*//////////////////////////////////////////////////////////////
SIMPLIFIED FIXED POINT OPERATIONS
//////////////////////////////////////////////////////////////*/
uint256 internal constant MAX_UINT256 = 2**256 - 1;
uint256 internal constant WAD = 1e18; // The scalar of ETH and most ERC20s.
function mulWadDown(uint256 x, uint256 y) internal pure returns (uint256) {
return mulDivDown(x, y, WAD); // Equivalent to (x * y) / WAD rounded down.
}
function mulWadUp(uint256 x, uint256 y) internal pure returns (uint256) {
return mulDivUp(x, y, WAD); // Equivalent to (x * y) / WAD rounded up.
}
function divWadDown(uint256 x, uint256 y) internal pure returns (uint256) {
return mulDivDown(x, WAD, y); // Equivalent to (x * WAD) / y rounded down.
}
function divWadUp(uint256 x, uint256 y) internal pure returns (uint256) {
return mulDivUp(x, WAD, y); // Equivalent to (x * WAD) / y rounded up.
}
/*//////////////////////////////////////////////////////////////
LOW LEVEL FIXED POINT OPERATIONS
//////////////////////////////////////////////////////////////*/
function mulDivDown(
uint256 x,
uint256 y,
uint256 denominator
) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
// Equivalent to require(denominator != 0 && (y == 0 || x <= type(uint256).max / y))
if iszero(mul(denominator, iszero(mul(y, gt(x, div(MAX_UINT256, y)))))) {
revert(0, 0)
}
// Divide x * y by the denominator.
z := div(mul(x, y), denominator)
}
}
function mulDivUp(
uint256 x,
uint256 y,
uint256 denominator
) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
// Equivalent to require(denominator != 0 && (y == 0 || x <= type(uint256).max / y))
if iszero(mul(denominator, iszero(mul(y, gt(x, div(MAX_UINT256, y)))))) {
revert(0, 0)
}
// If x * y modulo the denominator is strictly greater than 0,
// 1 is added to round up the division of x * y by the denominator.
z := add(gt(mod(mul(x, y), denominator), 0), div(mul(x, y), denominator))
}
}
function rpow(
uint256 x,
uint256 n,
uint256 scalar
) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
switch x
case 0 {
switch n
case 0 {
// 0 ** 0 = 1
z := scalar
}
default {
// 0 ** n = 0
z := 0
}
}
default {
switch mod(n, 2)
case 0 {
// If n is even, store scalar in z for now.
z := scalar
}
default {
// If n is odd, store x in z for now.
z := x
}
// Shifting right by 1 is like dividing by 2.
let half := shr(1, scalar)
for {
// Shift n right by 1 before looping to halve it.
n := shr(1, n)
} n {
// Shift n right by 1 each iteration to halve it.
n := shr(1, n)
} {
// Revert immediately if x ** 2 would overflow.
// Equivalent to iszero(eq(div(xx, x), x)) here.
if shr(128, x) {
revert(0, 0)
}
// Store x squared.
let xx := mul(x, x)
// Round to the nearest number.
let xxRound := add(xx, half)
// Revert if xx + half overflowed.
if lt(xxRound, xx) {
revert(0, 0)
}
// Set x to scaled xxRound.
x := div(xxRound, scalar)
// If n is even:
if mod(n, 2) {
// Compute z * x.
let zx := mul(z, x)
// If z * x overflowed:
if iszero(eq(div(zx, x), z)) {
// Revert if x is non-zero.
if iszero(iszero(x)) {
revert(0, 0)
}
}
// Round to the nearest number.
let zxRound := add(zx, half)
// Revert if zx + half overflowed.
if lt(zxRound, zx) {
revert(0, 0)
}
// Return properly scaled zxRound.
z := div(zxRound, scalar)
}
}
}
}
}
/*//////////////////////////////////////////////////////////////
GENERAL NUMBER UTILITIES
//////////////////////////////////////////////////////////////*/
function sqrt(uint256 x) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
let y := x // We start y at x, which will help us make our initial estimate.
z := 181 // The "correct" value is 1, but this saves a multiplication later.
// This segment is to get a reasonable initial estimate for the Babylonian method. With a bad
// start, the correct # of bits increases ~linearly each iteration instead of ~quadratically.
// We check y >= 2^(k + 8) but shift right by k bits
// each branch to ensure that if x >= 256, then y >= 256.
if iszero(lt(y, 0x10000000000000000000000000000000000)) {
y := shr(128, y)
z := shl(64, z)
}
if iszero(lt(y, 0x1000000000000000000)) {
y := shr(64, y)
z := shl(32, z)
}
if iszero(lt(y, 0x10000000000)) {
y := shr(32, y)
z := shl(16, z)
}
if iszero(lt(y, 0x1000000)) {
y := shr(16, y)
z := shl(8, z)
}
// Goal was to get z*z*y within a small factor of x. More iterations could
// get y in a tighter range. Currently, we will have y in [256, 256*2^16).
// We ensured y >= 256 so that the relative difference between y and y+1 is small.
// That's not possible if x < 256 but we can just verify those cases exhaustively.
// Now, z*z*y <= x < z*z*(y+1), and y <= 2^(16+8), and either y >= 256, or x < 256.
// Correctness can be checked exhaustively for x < 256, so we assume y >= 256.
// Then z*sqrt(y) is within sqrt(257)/sqrt(256) of sqrt(x), or about 20bps.
// For s in the range [1/256, 256], the estimate f(s) = (181/1024) * (s+1) is in the range
// (1/2.84 * sqrt(s), 2.84 * sqrt(s)), with largest error when s = 1 and when s = 256 or 1/256.
// Since y is in [256, 256*2^16), let a = y/65536, so that a is in [1/256, 256). Then we can estimate
// sqrt(y) using sqrt(65536) * 181/1024 * (a + 1) = 181/4 * (y + 65536)/65536 = 181 * (y + 65536)/2^18.
// There is no overflow risk here since y < 2^136 after the first branch above.
z := shr(18, mul(z, add(y, 65536))) // A mul() is saved from starting z at 181.
// Given the worst case multiplicative error of 2.84 above, 7 iterations should be enough.
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
// If x+1 is a perfect square, the Babylonian method cycles between
// floor(sqrt(x)) and ceil(sqrt(x)). This statement ensures we return floor.
// See: https://en.wikipedia.org/wiki/Integer_square_root#Using_only_integer_division
// Since the ceil is rare, we save gas on the assignment and repeat division in the rare case.
// If you don't care whether the floor or ceil square root is returned, you can remove this statement.
z := sub(z, lt(div(x, z), z))
}
}
function unsafeMod(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
// Mod x by y. Note this will return
// 0 instead of reverting if y is zero.
z := mod(x, y)
}
}
function unsafeDiv(uint256 x, uint256 y) internal pure returns (uint256 r) {
/// @solidity memory-safe-assembly
assembly {
// Divide x by y. Note this will return
// 0 instead of reverting if y is zero.
r := div(x, y)
}
}
function unsafeDivUp(uint256 x, uint256 y) internal pure returns (uint256 z) {
/// @solidity memory-safe-assembly
assembly {
// Add 1 to x * y if x % y > 0. Note this will
// return 0 instead of reverting if y is zero.
z := add(gt(mod(x, y), 0), div(x, y))
}
}
}// SPDX-License-Identifier: AGPL-3.0-only
pragma solidity >=0.8.0;
/// @notice Gas optimized reentrancy protection for smart contracts.
/// @author Solmate (https://github.com/transmissions11/solmate/blob/main/src/utils/ReentrancyGuard.sol)
/// @author Modified from OpenZeppelin (https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/security/ReentrancyGuard.sol)
abstract contract ReentrancyGuard {
uint256 private locked = 1;
modifier nonReentrant() virtual {
require(locked == 1, "REENTRANCY");
locked = 2;
_;
locked = 1;
}
}// SPDX-License-Identifier: AGPL-3.0-only
pragma solidity >=0.8.0;
import {ERC20} from "../tokens/ERC20.sol";
/// @notice Safe ETH and ERC20 transfer library that gracefully handles missing return values.
/// @author Solmate (https://github.com/transmissions11/solmate/blob/main/src/utils/SafeTransferLib.sol)
/// @dev Use with caution! Some functions in this library knowingly create dirty bits at the destination of the free memory pointer.
/// @dev Note that none of the functions in this library check that a token has code at all! That responsibility is delegated to the caller.
library SafeTransferLib {
/*//////////////////////////////////////////////////////////////
ETH OPERATIONS
//////////////////////////////////////////////////////////////*/
function safeTransferETH(address to, uint256 amount) internal {
bool success;
/// @solidity memory-safe-assembly
assembly {
// Transfer the ETH and store if it succeeded or not.
success := call(gas(), to, amount, 0, 0, 0, 0)
}
require(success, "ETH_TRANSFER_FAILED");
}
/*//////////////////////////////////////////////////////////////
ERC20 OPERATIONS
//////////////////////////////////////////////////////////////*/
function safeTransferFrom(
ERC20 token,
address from,
address to,
uint256 amount
) internal {
bool success;
/// @solidity memory-safe-assembly
assembly {
// Get a pointer to some free memory.
let freeMemoryPointer := mload(0x40)
// Write the abi-encoded calldata into memory, beginning with the function selector.
mstore(freeMemoryPointer, 0x23b872dd00000000000000000000000000000000000000000000000000000000)
mstore(add(freeMemoryPointer, 4), from) // Append the "from" argument.
mstore(add(freeMemoryPointer, 36), to) // Append the "to" argument.
mstore(add(freeMemoryPointer, 68), amount) // Append the "amount" argument.
success := and(
// Set success to whether the call reverted, if not we check it either
// returned exactly 1 (can't just be non-zero data), or had no return data.
or(and(eq(mload(0), 1), gt(returndatasize(), 31)), iszero(returndatasize())),
// We use 100 because the length of our calldata totals up like so: 4 + 32 * 3.
// We use 0 and 32 to copy up to 32 bytes of return data into the scratch space.
// Counterintuitively, this call must be positioned second to the or() call in the
// surrounding and() call or else returndatasize() will be zero during the computation.
call(gas(), token, 0, freeMemoryPointer, 100, 0, 32)
)
}
require(success, "TRANSFER_FROM_FAILED");
}
function safeTransfer(
ERC20 token,
address to,
uint256 amount
) internal {
bool success;
/// @solidity memory-safe-assembly
assembly {
// Get a pointer to some free memory.
let freeMemoryPointer := mload(0x40)
// Write the abi-encoded calldata into memory, beginning with the function selector.
mstore(freeMemoryPointer, 0xa9059cbb00000000000000000000000000000000000000000000000000000000)
mstore(add(freeMemoryPointer, 4), to) // Append the "to" argument.
mstore(add(freeMemoryPointer, 36), amount) // Append the "amount" argument.
success := and(
// Set success to whether the call reverted, if not we check it either
// returned exactly 1 (can't just be non-zero data), or had no return data.
or(and(eq(mload(0), 1), gt(returndatasize(), 31)), iszero(returndatasize())),
// We use 68 because the length of our calldata totals up like so: 4 + 32 * 2.
// We use 0 and 32 to copy up to 32 bytes of return data into the scratch space.
// Counterintuitively, this call must be positioned second to the or() call in the
// surrounding and() call or else returndatasize() will be zero during the computation.
call(gas(), token, 0, freeMemoryPointer, 68, 0, 32)
)
}
require(success, "TRANSFER_FAILED");
}
function safeApprove(
ERC20 token,
address to,
uint256 amount
) internal {
bool success;
/// @solidity memory-safe-assembly
assembly {
// Get a pointer to some free memory.
let freeMemoryPointer := mload(0x40)
// Write the abi-encoded calldata into memory, beginning with the function selector.
mstore(freeMemoryPointer, 0x095ea7b300000000000000000000000000000000000000000000000000000000)
mstore(add(freeMemoryPointer, 4), to) // Append the "to" argument.
mstore(add(freeMemoryPointer, 36), amount) // Append the "amount" argument.
success := and(
// Set success to whether the call reverted, if not we check it either
// returned exactly 1 (can't just be non-zero data), or had no return data.
or(and(eq(mload(0), 1), gt(returndatasize(), 31)), iszero(returndatasize())),
// We use 68 because the length of our calldata totals up like so: 4 + 32 * 2.
// We use 0 and 32 to copy up to 32 bytes of return data into the scratch space.
// Counterintuitively, this call must be positioned second to the or() call in the
// surrounding and() call or else returndatasize() will be zero during the computation.
call(gas(), token, 0, freeMemoryPointer, 68, 0, 32)
)
}
require(success, "APPROVE_FAILED");
}
}{
"remappings": [
"@rari-capital/=lib/",
"contracts/=contracts/",
"ds-test/=lib/ds-test/src/",
"forge-std/=lib/forge-std/src/",
"openzeppelin-contracts/=lib/openzeppelin-contracts/",
"openzeppelin/=lib/openzeppelin-contracts/",
"solmate/=lib/solmate/src/"
],
"optimizer": {
"enabled": true,
"runs": 179
},
"metadata": {
"bytecodeHash": "ipfs"
},
"outputSelection": {
"*": {
"*": [
"evm.bytecode",
"evm.deployedBytecode",
"devdoc",
"userdoc",
"metadata",
"abi"
]
}
},
"evmVersion": "london",
"libraries": {}
}Contract Security Audit
- No Contract Security Audit Submitted- Submit Audit Here
[{"inputs":[{"internalType":"address","name":"_pxCVX","type":"address"},{"internalType":"address","name":"_CVX","type":"address"},{"internalType":"address","name":"_pirexCvx","type":"address"},{"internalType":"address","name":"_rewardReceiver","type":"address"}],"stateMutability":"nonpayable","type":"constructor"},{"inputs":[],"name":"InvalidIndices","type":"error"},{"inputs":[],"name":"PoolNotSet","type":"error"},{"inputs":[],"name":"ZeroAddress","type":"error"},{"inputs":[],"name":"ZeroAmount","type":"error"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"owner","type":"address"},{"indexed":true,"internalType":"address","name":"spender","type":"address"},{"indexed":false,"internalType":"uint256","name":"amount","type":"uint256"}],"name":"Approval","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"previousOwner","type":"address"},{"indexed":true,"internalType":"address","name":"newOwner","type":"address"}],"name":"OwnershipTransferred","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"address","name":"curvePool","type":"address"}],"name":"SetCurvePool","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"address","name":"pirexCvx","type":"address"}],"name":"SetPirexCvx","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"address","name":"rewardReceiver","type":"address"}],"name":"SetRewardReceiver","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"account","type":"address"},{"indexed":false,"internalType":"enum LpxCvx.Token","name":"source","type":"uint8"},{"indexed":false,"internalType":"uint256","name":"sent","type":"uint256"},{"indexed":false,"internalType":"uint256","name":"received","type":"uint256"}],"name":"Swap","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"from","type":"address"},{"indexed":true,"internalType":"address","name":"to","type":"address"},{"indexed":false,"internalType":"uint256","name":"amount","type":"uint256"}],"name":"Transfer","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"account","type":"address"},{"indexed":false,"internalType":"uint256","name":"amount","type":"uint256"}],"name":"Unwrap","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"account","type":"address"},{"indexed":false,"internalType":"uint256","name":"amount","type":"uint256"}],"name":"Wrap","type":"event"},{"inputs":[],"name":"CVX","outputs":[{"internalType":"contract ERC20","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"DOMAIN_SEPARATOR","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"","type":"address"},{"internalType":"address","name":"","type":"address"}],"name":"allowance","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"spender","type":"address"},{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"approve","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"","type":"address"}],"name":"balanceOf","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"curvePool","outputs":[{"internalType":"contract ICurvePool","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"decimals","outputs":[{"internalType":"uint8","name":"","type":"uint8"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"name","outputs":[{"internalType":"string","name":"","type":"string"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"","type":"address"}],"name":"nonces","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"owner","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"owner","type":"address"},{"internalType":"address","name":"spender","type":"address"},{"internalType":"uint256","name":"value","type":"uint256"},{"internalType":"uint256","name":"deadline","type":"uint256"},{"internalType":"uint8","name":"v","type":"uint8"},{"internalType":"bytes32","name":"r","type":"bytes32"},{"internalType":"bytes32","name":"s","type":"bytes32"}],"name":"permit","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"pirexCvx","outputs":[{"internalType":"contract PirexCvx","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"pxCVX","outputs":[{"internalType":"contract ERC20","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"uint256","name":"epoch","type":"uint256"},{"internalType":"uint256[]","name":"rewardIndexes","type":"uint256[]"}],"name":"redeemRewards","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"renounceOwnership","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"rewardReceiver","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"_curvePool","type":"address"}],"name":"setCurvePool","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"_pirexCvx","type":"address"}],"name":"setPirexCvx","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"_rewardReceiver","type":"address"}],"name":"setRewardReceiver","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"enum LpxCvx.Token","name":"source","type":"uint8"},{"internalType":"uint256","name":"amount","type":"uint256"},{"internalType":"uint256","name":"minReceived","type":"uint256"},{"internalType":"uint256","name":"fromIndex","type":"uint256"},{"internalType":"uint256","name":"toIndex","type":"uint256"}],"name":"swap","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"symbol","outputs":[{"internalType":"string","name":"","type":"string"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"totalSupply","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"to","type":"address"},{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"transfer","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"from","type":"address"},{"internalType":"address","name":"to","type":"address"},{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"transferFrom","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"newOwner","type":"address"}],"name":"transferOwnership","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"unwrap","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"wrap","outputs":[],"stateMutability":"nonpayable","type":"function"}]Contract Creation Code
61012060405260016007553480156200001757600080fd5b5060405162001e2d38038062001e2d8339810160408190526200003a916200035e565b604080518082018252600c81526b098a040a0d2e4caf04086acb60a31b6020808301918252835180850190945260068452650d8e0f086ecf60d31b9084015281519192916012916200009091600091906200029b565b508151620000a69060019060208501906200029b565b5060ff81166080524660a052620000bc620001ad565b60c05250620000cf915033905062000249565b6001600160a01b038416620000f75760405163d92e233d60e01b815260040160405180910390fd5b6001600160a01b0383166200011f5760405163d92e233d60e01b815260040160405180910390fd5b6001600160a01b038216620001475760405163d92e233d60e01b815260040160405180910390fd5b6001600160a01b0381166200016f5760405163d92e233d60e01b815260040160405180910390fd5b6001600160a01b0393841660e05291831661010052600880549184166001600160a01b0319928316179055600a80549290931691161790556200049c565b60007f8b73c3c69bb8fe3d512ecc4cf759cc79239f7b179b0ffacaa9a75d522b39400f6000604051620001e19190620003f8565b6040805191829003822060208301939093528101919091527fc89efdaa54c0f20c7adf612882df0950f5a951637e0307cdcb4c672f298b8bc660608201524660808201523060a082015260c00160405160208183030381529060405280519060200120905090565b600680546001600160a01b038381166001600160a01b0319831681179093556040519116919082907f8be0079c531659141344cd1fd0a4f28419497f9722a3daafe3b4186f6b6457e090600090a35050565b828054620002a990620003bb565b90600052602060002090601f016020900481019282620002cd576000855562000318565b82601f10620002e857805160ff191683800117855562000318565b8280016001018555821562000318579182015b8281111562000318578251825591602001919060010190620002fb565b50620003269291506200032a565b5090565b5b808211156200032657600081556001016200032b565b80516001600160a01b03811681146200035957600080fd5b919050565b600080600080608085870312156200037557600080fd5b620003808562000341565b9350620003906020860162000341565b9250620003a06040860162000341565b9150620003b06060860162000341565b905092959194509250565b600181811c90821680620003d057607f821691505b60208210811415620003f257634e487b7160e01b600052602260045260246000fd5b50919050565b600080835481600182811c9150808316806200041557607f831692505b60208084108214156200043657634e487b7160e01b86526022600452602486fd5b8180156200044d57600181146200045f576200048e565b60ff198616895284890196506200048e565b60008a81526020902060005b86811015620004865781548b8201529085019083016200046b565b505084890196505b509498975050505050505050565b60805160a05160c05160e0516101005161191b62000512600039600081816102e30152818161063e015281816106990152610a480152600081816103690152818161098401528181610b0701528181610f320152610ff2015260006107de015260006107a901526000610254015261191b6000f3fe608060405234801561001057600080fd5b50600436106101795760003560e01c8063715018a6116100d9578063b024490311610087578063b024490314610364578063d505accf1461038b578063dae254dd1461039e578063dd62ed3e146103b1578063de0e9a3e146103dc578063ea598cb0146103ef578063f2fde38b1461040257600080fd5b8063715018a6146102d6578063759cb53b146102de5780637ecebe00146103055780638da5cb5b1461032557806395d89b41146103365780639dbecd121461033e578063a9059cbb1461035157600080fd5b8063218751b211610136578063218751b21461022957806323b872dd1461023c578063313ce5671461024f5780633644e515146102885780634f7dc3cb1461029057806369d69f12146102a357806370a08231146102b657600080fd5b806306fdde031461017e578063095ea7b31461019c57806318160ddd146101bf57806318bbb46f146101d65780631dac30b0146101eb578063212f5cef14610216575b600080fd5b610186610415565b6040516101939190611414565b60405180910390f35b6101af6101aa366004611485565b6104a3565b6040519015158152602001610193565b6101c860025481565b604051908152602001610193565b6101e96101e43660046114af565b61050f565b005b600a546101fe906001600160a01b031681565b6040516001600160a01b039091168152602001610193565b6101e961022436600461152e565b610580565b6009546101fe906001600160a01b031681565b6101af61024a366004611550565b6106c5565b6102767f000000000000000000000000000000000000000000000000000000000000000081565b60405160ff9091168152602001610193565b6101c86107a5565b6008546101fe906001600160a01b031681565b6101e96102b136600461152e565b610800565b6101c86102c436600461152e565b60036020526000908152604090205481565b6101e9610884565b6101fe7f000000000000000000000000000000000000000000000000000000000000000081565b6101c861031336600461152e565b60056020526000908152604090205481565b6006546001600160a01b03166101fe565b610186610898565b6101e961034c36600461158c565b6108a5565b6101af61035f366004611485565b610b80565b6101fe7f000000000000000000000000000000000000000000000000000000000000000081565b6101e96103993660046115d4565b610be6565b6101e96103ac36600461152e565b610e24565b6101c86103bf366004611647565b600460209081526000928352604080842090915290825290205481565b6101e96103ea36600461167a565b610ea1565b6101e96103fd36600461167a565b610f61565b6101e961041036600461152e565b61101a565b6000805461042290611693565b80601f016020809104026020016040519081016040528092919081815260200182805461044e90611693565b801561049b5780601f106104705761010080835404028352916020019161049b565b820191906000526020600020905b81548152906001019060200180831161047e57829003601f168201915b505050505081565b3360008181526004602090815260408083206001600160a01b038716808552925280832085905551919290917f8c5be1e5ebec7d5bd14f71427d1e84f3dd0314c0f7b2291e5b200ac8c7c3b925906104fe9086815260200190565b60405180910390a350600192915050565b600854600a5460405163409f21a760e11b81526001600160a01b039283169263813e434e92610549928892889288929116906004016116ce565b600060405180830381600087803b15801561056357600080fd5b505af1158015610577573d6000803e3d6000fd5b50505050505050565b610588611093565b6001600160a01b0381166105af5760405163d92e233d60e01b815260040160405180910390fd5b600980546001600160a01b038381166001600160a01b03198316811790935560405192835216907f26afd33794902b720b726254736089a43cb34bfd644c6088263475c56ef1fea79060200160405180910390a16001600160a01b03811615610668573060009081526004602090815260408083206001600160a01b03858116855292528220829055610668917f00000000000000000000000000000000000000000000000000000000000000009091169083906110ed565b3060009081526004602090815260408083206001600160a01b0386811685529252909120600019908190556106c1917f0000000000000000000000000000000000000000000000000000000000000000169084906110ed565b5050565b6001600160a01b03831660009081526004602090815260408083203384529091528120546000198114610721576106fc838261173e565b6001600160a01b03861660009081526004602090815260408083203384529091529020555b6001600160a01b0385166000908152600360205260408120805485929061074990849061173e565b90915550506001600160a01b03808516600081815260036020526040908190208054870190555190918716906000805160206118c6833981519152906107929087815260200190565b60405180910390a3506001949350505050565b60007f000000000000000000000000000000000000000000000000000000000000000046146107db576107d661116a565b905090565b507f000000000000000000000000000000000000000000000000000000000000000090565b610808611093565b6001600160a01b03811661082f5760405163d92e233d60e01b815260040160405180910390fd5b600880546001600160a01b0319166001600160a01b0383169081179091556040519081527f74acedfa8f44e60cfa0d9828053838d31e334e29ab93be903b2c140779197f8e906020015b60405180910390a150565b61088c611093565b6108966000611204565b565b6001805461042290611693565b6007546001146108d05760405162461bcd60e51b81526004016108c790611755565b60405180910390fd5b60026007556009546001600160a01b03166108fe57604051633c67586360e01b815260040160405180910390fd5b8361091c57604051631f2a200560e01b815260040160405180910390fd5b8261093a57604051631f2a200560e01b815260040160405180910390fd5b8082141561095b57604051632cd4dad360e01b815260040160405180910390fd5b6000600186600181111561097157610971611779565b1415610a3b576109ac6001600160a01b037f000000000000000000000000000000000000000000000000000000000000000016333088611256565b6109b630866112e0565b60095460405163ce7d650360e01b81526001600160a01b039091169063ce7d6503906109f190869086908a908a90600090339060040161178f565b6020604051808303816000875af1158015610a10573d6000803e3d6000fd5b505050506040513d601f19601f82011682018060405250810190610a3491906117c2565b9050610b2e565b610a706001600160a01b037f000000000000000000000000000000000000000000000000000000000000000016333088611256565b60095460405163ce7d650360e01b81526001600160a01b039091169063ce7d650390610aab90869086908a908a90600090309060040161178f565b6020604051808303816000875af1158015610aca573d6000803e3d6000fd5b505050506040513d601f19601f82011682018060405250810190610aee91906117c2565b9050610afa308261133a565b610b2e6001600160a01b037f000000000000000000000000000000000000000000000000000000000000000016338361139c565b336001600160a01b03167f4947c9e410c24999833c91c36a5a30509216c20b3f6cfb5acb71f29f5d8fb1a0878784604051610b6b939291906117db565b60405180910390a25050600160075550505050565b33600090815260036020526040812080548391908390610ba190849061173e565b90915550506001600160a01b038316600081815260036020526040908190208054850190555133906000805160206118c6833981519152906104fe9086815260200190565b42841015610c305760405162461bcd60e51b815260206004820152601760248201527614115493525517d11150511312539157d1561412549151604a1b60448201526064016108c7565b60006001610c3c6107a5565b6001600160a01b038a811660008181526005602090815260409182902080546001810190915582517f6e71edae12b1b97f4d1f60370fef10105fa2faae0126114a169c64845d6126c98184015280840194909452938d166060840152608083018c905260a083019390935260c08083018b90528151808403909101815260e08301909152805192019190912061190160f01b6101008301526101028201929092526101228101919091526101420160408051601f198184030181528282528051602091820120600084529083018083525260ff871690820152606081018590526080810184905260a0016020604051602081039080840390855afa158015610d48573d6000803e3d6000fd5b5050604051601f1901519150506001600160a01b03811615801590610d7e5750876001600160a01b0316816001600160a01b0316145b610dbb5760405162461bcd60e51b815260206004820152600e60248201526d24a72b20a624a22fa9a4a3a722a960911b60448201526064016108c7565b6001600160a01b0390811660009081526004602090815260408083208a8516808552908352928190208990555188815291928a16917f8c5be1e5ebec7d5bd14f71427d1e84f3dd0314c0f7b2291e5b200ac8c7c3b925910160405180910390a350505050505050565b610e2c611093565b6001600160a01b038116610e535760405163d92e233d60e01b815260040160405180910390fd5b600a80546001600160a01b0319166001600160a01b0383169081179091556040519081527fd43bd01c030090b3dfa3532dab4779d44930c6cb8f496af7c2481e9abe9dbaf790602001610879565b600754600114610ec35760405162461bcd60e51b81526004016108c790611755565b600260075580610ee657604051631f2a200560e01b815260040160405180910390fd5b610ef0338261133a565b60405181815233907f5dd085b6070b4cae004f84daafd199fd55b0bdfa11c3a802baffe89c2419d8c29060200160405180910390a2610f596001600160a01b037f000000000000000000000000000000000000000000000000000000000000000016338361139c565b506001600755565b600754600114610f835760405162461bcd60e51b81526004016108c790611755565b600260075580610fa657604051631f2a200560e01b815260040160405180910390fd5b610fb033826112e0565b60405181815233907fb61d00fdfee32467c7d81db64c811ae60c104c346debf36a14afe84b8fce59e59060200160405180910390a2610f596001600160a01b037f000000000000000000000000000000000000000000000000000000000000000016333084611256565b611022611093565b6001600160a01b0381166110875760405162461bcd60e51b815260206004820152602660248201527f4f776e61626c653a206e6577206f776e657220697320746865207a65726f206160448201526564647265737360d01b60648201526084016108c7565b61109081611204565b50565b6006546001600160a01b031633146108965760405162461bcd60e51b815260206004820181905260248201527f4f776e61626c653a2063616c6c6572206973206e6f7420746865206f776e657260448201526064016108c7565b600060405163095ea7b360e01b8152836004820152826024820152602060006044836000895af13d15601f3d11600160005114161716915050806111645760405162461bcd60e51b815260206004820152600e60248201526d1054141493d59157d1905253115160921b60448201526064016108c7565b50505050565b60007f8b73c3c69bb8fe3d512ecc4cf759cc79239f7b179b0ffacaa9a75d522b39400f600060405161119c9190611811565b6040805191829003822060208301939093528101919091527fc89efdaa54c0f20c7adf612882df0950f5a951637e0307cdcb4c672f298b8bc660608201524660808201523060a082015260c00160405160208183030381529060405280519060200120905090565b600680546001600160a01b038381166001600160a01b0319831681179093556040519116919082907f8be0079c531659141344cd1fd0a4f28419497f9722a3daafe3b4186f6b6457e090600090a35050565b60006040516323b872dd60e01b81528460048201528360248201528260448201526020600060648360008a5af13d15601f3d11600160005114161716915050806112d95760405162461bcd60e51b81526020600482015260146024820152731514905394d1915497d19493d357d1905253115160621b60448201526064016108c7565b5050505050565b80600260008282546112f291906118ad565b90915550506001600160a01b0382166000818152600360209081526040808320805486019055518481526000805160206118c683398151915291015b60405180910390a35050565b6001600160a01b0382166000908152600360205260408120805483929061136290849061173e565b90915550506002805482900390556040518181526000906001600160a01b038416906000805160206118c68339815191529060200161132e565b600060405163a9059cbb60e01b8152836004820152826024820152602060006044836000895af13d15601f3d11600160005114161716915050806111645760405162461bcd60e51b815260206004820152600f60248201526e1514905394d1915497d19052531151608a1b60448201526064016108c7565b600060208083528351808285015260005b8181101561144157858101830151858201604001528201611425565b81811115611453576000604083870101525b50601f01601f1916929092016040019392505050565b80356001600160a01b038116811461148057600080fd5b919050565b6000806040838503121561149857600080fd5b6114a183611469565b946020939093013593505050565b6000806000604084860312156114c457600080fd5b83359250602084013567ffffffffffffffff808211156114e357600080fd5b818601915086601f8301126114f757600080fd5b81358181111561150657600080fd5b8760208260051b850101111561151b57600080fd5b6020830194508093505050509250925092565b60006020828403121561154057600080fd5b61154982611469565b9392505050565b60008060006060848603121561156557600080fd5b61156e84611469565b925061157c60208501611469565b9150604084013590509250925092565b600080600080600060a086880312156115a457600080fd5b8535600281106115b357600080fd5b97602087013597506040870135966060810135965060800135945092505050565b600080600080600080600060e0888a0312156115ef57600080fd5b6115f888611469565b965061160660208901611469565b95506040880135945060608801359350608088013560ff8116811461162a57600080fd5b9699959850939692959460a0840135945060c09093013592915050565b6000806040838503121561165a57600080fd5b61166383611469565b915061167160208401611469565b90509250929050565b60006020828403121561168c57600080fd5b5035919050565b600181811c908216806116a757607f821691505b602082108114156116c857634e487b7160e01b600052602260045260246000fd5b50919050565b848152606060208201819052810183905260006001600160fb1b038411156116f557600080fd5b8360051b8086608085013760009083016080019081526001600160a01b0393909316604090920191909152509392505050565b634e487b7160e01b600052601160045260246000fd5b60008282101561175057611750611728565b500390565b6020808252600a90820152695245454e5452414e435960b01b604082015260600190565b634e487b7160e01b600052602160045260246000fd5b958652602086019490945260408501929092526060840152151560808301526001600160a01b031660a082015260c00190565b6000602082840312156117d457600080fd5b5051919050565b60608101600285106117fd57634e487b7160e01b600052602160045260246000fd5b938152602081019290925260409091015290565b600080835481600182811c91508083168061182d57607f831692505b602080841082141561184d57634e487b7160e01b86526022600452602486fd5b81801561186157600181146118725761189f565b60ff1986168952848901965061189f565b60008a81526020902060005b868110156118975781548b82015290850190830161187e565b505084890196505b509498975050505050505050565b600082198211156118c0576118c0611728565b50019056feddf252ad1be2c89b69c2b068fc378daa952ba7f163c4a11628f55a4df523b3efa2646970667358221220e4ba3b34983c1d7053459b3255105a15e58425b02e94fc63225e4c90bee3622864736f6c634300080c0033000000000000000000000000bce0cf87f513102f22232436cca2ca49e815c3ac0000000000000000000000004e3fbd56cd56c3e72c1403e103b45db9da5b9d2b00000000000000000000000035a398425d9f1029021a92bc3d2557d42c8588d70000000000000000000000006ed9c171e02de08aaedf0fc1d589923d807061d6
Deployed Bytecode
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
Constructor Arguments (ABI-Encoded and is the last bytes of the Contract Creation Code above)
000000000000000000000000bce0cf87f513102f22232436cca2ca49e815c3ac0000000000000000000000004e3fbd56cd56c3e72c1403e103b45db9da5b9d2b00000000000000000000000035a398425d9f1029021a92bc3d2557d42c8588d70000000000000000000000006ed9c171e02de08aaedf0fc1d589923d807061d6
-----Decoded View---------------
Arg [0] : _pxCVX (address): 0xBCe0Cf87F513102F22232436CCa2ca49e815C3aC
Arg [1] : _CVX (address): 0x4e3FBD56CD56c3e72c1403e103b45Db9da5B9D2B
Arg [2] : _pirexCvx (address): 0x35A398425d9f1029021A92bc3d2557D42C8588D7
Arg [3] : _rewardReceiver (address): 0x6ED9c171E02De08aaEDF0Fc1D589923D807061D6
-----Encoded View---------------
4 Constructor Arguments found :
Arg [0] : 000000000000000000000000bce0cf87f513102f22232436cca2ca49e815c3ac
Arg [1] : 0000000000000000000000004e3fbd56cd56c3e72c1403e103b45db9da5b9d2b
Arg [2] : 00000000000000000000000035a398425d9f1029021a92bc3d2557d42c8588d7
Arg [3] : 0000000000000000000000006ed9c171e02de08aaedf0fc1d589923d807061d6
Loading...
Loading
Loading...
Loading
Multichain Portfolio | 27 Chains
| Chain | Token | Portfolio % | Price | Amount | Value |
|---|
Loading...
Loading
[ Download: CSV Export ]
A contract address hosts a smart contract, which is a set of code stored on the blockchain that runs when predetermined conditions are met. Learn more about addresses in our Knowledge Base.