Overview
ETH Balance
0 ETH
Eth Value
$0.00More Info
Private Name Tags
ContractCreator
View more zero value Internal Transactions in Advanced View mode
Advanced mode:
Loading...
Loading
Contract Name:
Usd0PP
Compiler Version
v0.8.20+commit.a1b79de6
Optimization Enabled:
Yes with 200 runs
Other Settings:
shanghai EvmVersion
Contract Source Code (Solidity Standard Json-Input format)
// SPDX-License-Identifier: Apache-2.0 pragma solidity 0.8.20; import {ReentrancyGuardUpgradeable} from "openzeppelin-contracts-upgradeable/utils/ReentrancyGuardUpgradeable.sol"; import {ICurvePool} from "shared/interfaces/curve/ICurvePool.sol"; import {SafeERC20} from "openzeppelin-contracts/token/ERC20/utils/SafeERC20.sol"; import {ERC20Upgradeable} from "openzeppelin-contracts-upgradeable/token/ERC20/ERC20Upgradeable.sol"; import {ERC20PausableUpgradeable} from "openzeppelin-contracts-upgradeable/token/ERC20/extensions/ERC20PausableUpgradeable.sol"; import {ERC20PermitUpgradeable} from "openzeppelin-contracts-upgradeable/token/ERC20/extensions/ERC20PermitUpgradeable.sol"; import {IRegistryAccess} from "src/interfaces/registry/IRegistryAccess.sol"; import {IRegistryContract} from "src/interfaces/registry/IRegistryContract.sol"; import {IUsd0PP} from "src/interfaces/token/IUsd0PP.sol"; import {IUsd0} from "./../interfaces/token/IUsd0.sol"; import {IERC20} from "openzeppelin-contracts/token/ERC20/IERC20.sol"; import {IERC20Permit} from "openzeppelin-contracts/token/ERC20/extensions/IERC20Permit.sol"; import {CheckAccessControl} from "src/utils/CheckAccessControl.sol"; import { CONTRACT_REGISTRY_ACCESS, DEFAULT_ADMIN_ROLE, PEG_MAINTAINER_ROLE, CONTRACT_USD0, BOND_DURATION_FOUR_YEAR, CONTRACT_TREASURY, CURVE_POOL_USD0_USD0PP, CURVE_POOL_USD0_USD0PP_INTEGER_FOR_USD0, CURVE_POOL_USD0_USD0PP_INTEGER_FOR_USD0PP } from "src/constants.sol"; import { BondNotStarted, BondFinished, BondNotFinished, NotAuthorized, AmountIsZero, InvalidName, InvalidSymbol, BeginInPast, Blacklisted, AmountTooBig, PARNotRequired, PARNotSuccessful, ApprovalFailed, PARUSD0InputExceedsBalance } from "src/errors.sol"; /// @title Usd0PP Contract /// @notice Manages bond-like financial instruments for the UsualDAO ecosystem, providing functionality for minting, transferring, and unwrapping bonds. /// @dev Inherits from ERC20, ERC20PermitUpgradeable, and ReentrancyGuardUpgradeable to provide a range of functionalities along with protections against reentrancy attacks. /// @dev This contract is upgradeable, allowing for future improvements and enhancements. /// @author Usual Tech team contract Usd0PP is IUsd0PP, ERC20PausableUpgradeable, ERC20PermitUpgradeable, ReentrancyGuardUpgradeable { using CheckAccessControl for IRegistryAccess; using SafeERC20 for IERC20; /// @notice Emitted when a bond is unwrapped. /// @param user The address of the user unwrapping the bond. /// @param amount The amount of the bond unwrapped. event BondUnwrapped(address indexed user, uint256 amount); /// @notice Emitted when the PAR mechanism is triggered /// @param user The address of the caller triggering the mechanism /// @param amount The amount of USD0 supplied to the Curvepool to return to PAR. event PARMechanismActivated(address indexed user, uint256 amount); /// @notice Emitted when an emergency withdrawal occurs. /// @param account The address of the account initiating the emergency withdrawal. /// @param balance The balance withdrawn. event EmergencyWithdraw(address indexed account, uint256 balance); struct Usd0PPStorageV0 { /// The start time of the bond period. uint256 bondStart; /// The address of the registry contract. IRegistryContract registryContract; /// The address of the registry access contract. IRegistryAccess registryAccess; /// The USD0 token. IERC20 usd0; } // keccak256(abi.encode(uint256(keccak256("Usd0PP.storage.v0")) - 1)) & ~bytes32(uint256(0xff)) // solhint-disable-next-line bytes32 public constant Usd0PPStorageV0Location = 0x1519c21cc5b6e62f5c0018a7d32a0d00805e5b91f6eaa9f7bc303641242e3000; /// @notice Returns the storage struct of the contract. /// @return $ . function _usd0ppStorageV0() private pure returns (Usd0PPStorageV0 storage $) { bytes32 position = Usd0PPStorageV0Location; // solhint-disable-next-line no-inline-assembly assembly { $.slot := position } } /*////////////////////////////////////////////////////////////// Constructor //////////////////////////////////////////////////////////////*/ /// @custom:oz-upgrades-unsafe-allow constructor constructor() { _disableInitializers(); } /// @notice Initializes the contract with bond parameters and related registry and token information. /// @dev The end time of the bond period will be four years later. /// @param registryContract The address of the registry contract. /// @param name_ The name of the bond token. /// @param symbol_ The symbol of the bond token. /// @param startTime The start time of the bond period. // solhint-disable code-complexity function initialize( address registryContract, string memory name_, string memory symbol_, uint256 startTime ) public initializer { _createUsd0PPCheck(name_, symbol_, startTime); __ERC20_init_unchained(name_, symbol_); __ERC20Permit_init_unchained(name_); __EIP712_init_unchained(name_, "1"); __ReentrancyGuard_init_unchained(); // Create the bond token Usd0PPStorageV0 storage $ = _usd0ppStorageV0(); $.bondStart = startTime; $.registryContract = IRegistryContract(registryContract); $.usd0 = IERC20(IRegistryContract(registryContract).getContract(CONTRACT_USD0)); $.registryAccess = IRegistryAccess( IRegistryContract(registryContract).getContract(CONTRACT_REGISTRY_ACCESS) ); } /// @notice Checks the parameters for creating a bond. /// @param name The name of the bond token (cannot be empty) /// @param symbol The symbol of the bond token (cannot be empty) /// @param startTime The start time of the bond period (must be in the future) function _createUsd0PPCheck(string memory name, string memory symbol, uint256 startTime) internal view { // Check if the bond start date is after now if (startTime < block.timestamp) { revert BeginInPast(); } // Check if the name is not empty if (bytes(name).length == 0) { revert InvalidName(); } // Check if the symbol is not empty if (bytes(symbol).length == 0) { revert InvalidSymbol(); } } /// @notice Pauses all token transfers. /// @dev Can only be called by the admin. function pause() public { Usd0PPStorageV0 storage $ = _usd0ppStorageV0(); $.registryAccess.onlyMatchingRole(DEFAULT_ADMIN_ROLE); _pause(); } /// @notice Unpauses all token transfers. /// @dev Can only be called by the admin. function unpause() external { Usd0PPStorageV0 storage $ = _usd0ppStorageV0(); $.registryAccess.onlyMatchingRole(DEFAULT_ADMIN_ROLE); _unpause(); } // @inheritdoc IUsd0PP function mint(uint256 amountUsd0) public nonReentrant whenNotPaused { Usd0PPStorageV0 storage $ = _usd0ppStorageV0(); // revert if the bond period isn't started if (block.timestamp < $.bondStart) { revert BondNotStarted(); } // revert if the bond period is finished if (block.timestamp >= $.bondStart + BOND_DURATION_FOUR_YEAR) { revert BondFinished(); } // get the collateral token for the bond $.usd0.safeTransferFrom(msg.sender, address(this), amountUsd0); // mint the bond for the sender _mint(msg.sender, amountUsd0); } // @inheritdoc IUsd0PP function mintWithPermit(uint256 amountUsd0, uint256 deadline, uint8 v, bytes32 r, bytes32 s) external { Usd0PPStorageV0 storage $ = _usd0ppStorageV0(); try IERC20Permit(address($.usd0)).permit( msg.sender, address(this), amountUsd0, deadline, v, r, s ) {} catch {} // solhint-disable-line no-empty-blocks mint(amountUsd0); } function _update(address sender, address recipient, uint256 amount) internal override(ERC20PausableUpgradeable, ERC20Upgradeable) { if (amount == 0) { revert AmountIsZero(); } Usd0PPStorageV0 storage $ = _usd0ppStorageV0(); IUsd0 usd0 = IUsd0(address($.usd0)); if (usd0.isBlacklisted(sender) || usd0.isBlacklisted(recipient)) { revert Blacklisted(); } // we update the balance of the sender and the recipient super._update(sender, recipient, amount); } /// @notice Transfers `amount` tokens from the caller to `recipient`. /// @param recipient The address to transfer to. /// @param amount The amount to be transferred. /// @return True if the transfer was successful, otherwise false. function transfer(address recipient, uint256 amount) public override(ERC20Upgradeable, IERC20) returns (bool) { return super.transfer(recipient, amount); } // @inheritdoc IUsd0PP function unwrap() external nonReentrant whenNotPaused { Usd0PPStorageV0 storage $ = _usd0ppStorageV0(); // revert if the bond period is not finished if (block.timestamp < $.bondStart + BOND_DURATION_FOUR_YEAR) { revert BondNotFinished(); } uint256 usd0PPBalance = balanceOf(msg.sender); _burn(msg.sender, usd0PPBalance); $.usd0.safeTransfer(msg.sender, usd0PPBalance); emit BondUnwrapped(msg.sender, usd0PPBalance); } function unwrapPegMaintainer(uint256 amount) external nonReentrant whenNotPaused { Usd0PPStorageV0 storage $ = _usd0ppStorageV0(); $.registryAccess.onlyMatchingRole(PEG_MAINTAINER_ROLE); // revert if the bond period has not started if (block.timestamp < $.bondStart) { revert BondNotStarted(); } uint256 usd0PPBalance = balanceOf(msg.sender); if (usd0PPBalance < amount) { revert AmountTooBig(); } _burn(msg.sender, amount); $.usd0.safeTransfer(msg.sender, amount); emit BondUnwrapped(msg.sender, amount); } // @inheritdoc IUsd0PP function triggerPARMechanismCurvepool( uint256 parUsd0Amount, uint256 minimumPARMechanismGainedAmount ) external nonReentrant whenNotPaused { Usd0PPStorageV0 storage $ = _usd0ppStorageV0(); $.registryAccess.onlyMatchingRole(PEG_MAINTAINER_ROLE); // revert if the bond period has not started if (block.timestamp < $.bondStart) { revert BondNotStarted(); } if (parUsd0Amount == 0 || minimumPARMechanismGainedAmount == 0) { revert AmountIsZero(); } IERC20 usd0 = $.usd0; uint256 usd0BalanceBeforePAR = usd0.balanceOf(address(this)); uint256 usd0ppBalanceBeforePAR = balanceOf(address(this)); if (usd0BalanceBeforePAR < parUsd0Amount) { revert PARUSD0InputExceedsBalance(); } ICurvePool curvepool = ICurvePool(address(CURVE_POOL_USD0_USD0PP)); //@notice, deposit USD0 into curvepool to receive USD0++ if (!(usd0.approve(address(curvepool), parUsd0Amount))) { revert ApprovalFailed(); } uint256 receivedUsd0pp = curvepool.exchange( CURVE_POOL_USD0_USD0PP_INTEGER_FOR_USD0, CURVE_POOL_USD0_USD0PP_INTEGER_FOR_USD0PP, parUsd0Amount, parUsd0Amount + minimumPARMechanismGainedAmount, address(this) ); if (receivedUsd0pp < parUsd0Amount) { revert PARNotRequired(); } uint256 usd0ppBalanceChangeAfterPAR = balanceOf(address(this)) - usd0ppBalanceBeforePAR; _burn(address(this), usd0ppBalanceChangeAfterPAR); emit BondUnwrapped(address(this), usd0ppBalanceChangeAfterPAR); uint256 gainedUSD0AmountPAR = usd0ppBalanceChangeAfterPAR - parUsd0Amount; usd0.safeTransfer($.registryContract.getContract(CONTRACT_TREASURY), gainedUSD0AmountPAR); if (usd0.balanceOf(address(this)) < totalSupply()) { revert PARNotSuccessful(); } emit PARMechanismActivated(msg.sender, gainedUSD0AmountPAR); } // @inheritdoc IUsd0PP function totalBondTimes() public pure returns (uint256) { return BOND_DURATION_FOUR_YEAR; } // @inheritdoc IUsd0PP function getStartTime() external view returns (uint256) { Usd0PPStorageV0 storage $ = _usd0ppStorageV0(); return $.bondStart; } // @inheritdoc IUsd0PP function getEndTime() external view returns (uint256) { Usd0PPStorageV0 storage $ = _usd0ppStorageV0(); return $.bondStart + BOND_DURATION_FOUR_YEAR; } /// @notice function for executing the emergency withdrawal of Usd0. /// @param safeAccount The address of the account to withdraw the Usd0 to. /// @dev Reverts if the caller does not have the DEFAULT_ADMIN_ROLE role. function emergencyWithdraw(address safeAccount) external { Usd0PPStorageV0 storage $ = _usd0ppStorageV0(); if (!$.registryAccess.hasRole(DEFAULT_ADMIN_ROLE, msg.sender)) { revert NotAuthorized(); } IERC20 usd0 = $.usd0; uint256 balance = usd0.balanceOf(address(this)); // get the collateral token for the bond usd0.safeTransfer(safeAccount, balance); // Pause the contract _pause(); emit EmergencyWithdraw(safeAccount, balance); } /// @notice Transfers `amount` tokens from `sender` to `recipient`. /// @param sender The address to transfer from. /// @param recipient The address to transfer to. /// @param amount The amount to be transferred. /// @return True if the transfer was successful, otherwise false. function transferFrom(address sender, address recipient, uint256 amount) public override(ERC20Upgradeable, IERC20) returns (bool) { return super.transferFrom(sender, recipient, amount); } }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (utils/ReentrancyGuard.sol) pragma solidity ^0.8.20; import {Initializable} from "../proxy/utils/Initializable.sol"; /** * @dev Contract module that helps prevent reentrant calls to a function. * * Inheriting from `ReentrancyGuard` will make the {nonReentrant} modifier * available, which can be applied to functions to make sure there are no nested * (reentrant) calls to them. * * Note that because there is a single `nonReentrant` guard, functions marked as * `nonReentrant` may not call one another. This can be worked around by making * those functions `private`, and then adding `external` `nonReentrant` entry * points to them. * * TIP: If you would like to learn more about reentrancy and alternative ways * to protect against it, check out our blog post * https://blog.openzeppelin.com/reentrancy-after-istanbul/[Reentrancy After Istanbul]. */ abstract contract ReentrancyGuardUpgradeable is Initializable { // Booleans are more expensive than uint256 or any type that takes up a full // word because each write operation emits an extra SLOAD to first read the // slot's contents, replace the bits taken up by the boolean, and then write // back. This is the compiler's defense against contract upgrades and // pointer aliasing, and it cannot be disabled. // The values being non-zero value makes deployment a bit more expensive, // but in exchange the refund on every call to nonReentrant will be lower in // amount. Since refunds are capped to a percentage of the total // transaction's gas, it is best to keep them low in cases like this one, to // increase the likelihood of the full refund coming into effect. uint256 private constant NOT_ENTERED = 1; uint256 private constant ENTERED = 2; /// @custom:storage-location erc7201:openzeppelin.storage.ReentrancyGuard struct ReentrancyGuardStorage { uint256 _status; } // keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.ReentrancyGuard")) - 1)) & ~bytes32(uint256(0xff)) bytes32 private constant ReentrancyGuardStorageLocation = 0x9b779b17422d0df92223018b32b4d1fa46e071723d6817e2486d003becc55f00; function _getReentrancyGuardStorage() private pure returns (ReentrancyGuardStorage storage $) { assembly { $.slot := ReentrancyGuardStorageLocation } } /** * @dev Unauthorized reentrant call. */ error ReentrancyGuardReentrantCall(); function __ReentrancyGuard_init() internal onlyInitializing { __ReentrancyGuard_init_unchained(); } function __ReentrancyGuard_init_unchained() internal onlyInitializing { ReentrancyGuardStorage storage $ = _getReentrancyGuardStorage(); $._status = NOT_ENTERED; } /** * @dev Prevents a contract from calling itself, directly or indirectly. * Calling a `nonReentrant` function from another `nonReentrant` * function is not supported. It is possible to prevent this from happening * by making the `nonReentrant` function external, and making it call a * `private` function that does the actual work. */ modifier nonReentrant() { _nonReentrantBefore(); _; _nonReentrantAfter(); } function _nonReentrantBefore() private { ReentrancyGuardStorage storage $ = _getReentrancyGuardStorage(); // On the first call to nonReentrant, _status will be NOT_ENTERED if ($._status == ENTERED) { revert ReentrancyGuardReentrantCall(); } // Any calls to nonReentrant after this point will fail $._status = ENTERED; } function _nonReentrantAfter() private { ReentrancyGuardStorage storage $ = _getReentrancyGuardStorage(); // By storing the original value once again, a refund is triggered (see // https://eips.ethereum.org/EIPS/eip-2200) $._status = NOT_ENTERED; } /** * @dev Returns true if the reentrancy guard is currently set to "entered", which indicates there is a * `nonReentrant` function in the call stack. */ function _reentrancyGuardEntered() internal view returns (bool) { ReentrancyGuardStorage storage $ = _getReentrancyGuardStorage(); return $._status == ENTERED; } }
// SPDX-License-Identifier: Apache-2.0 pragma solidity 0.8.20; import {IERC20Metadata} from "openzeppelin-contracts/token/ERC20/extensions/IERC20Metadata.sol"; interface ICurvePool is IERC20Metadata { event TokenExchange( address indexed buyer, int128 sold_id, uint256 tokens_sold, int128 bought_id, uint256 tokens_bought ); event AddLiquidity( address indexed provider, uint256[] token_amounts, uint256[] fees, uint256 invariant, uint256 token_supply ); event RemoveLiquidity( address indexed provider, uint256[] token_amounts, uint256[] fees, uint256 token_supply ); event RemoveLiquidityOne( address indexed provider, int128 token_id, uint256 token_amount, uint256 coin_amount, uint256 token_supply ); event RemoveLiquidityImbalance( address indexed provider, uint256[] token_amounts, uint256[] fees, uint256 invariant, uint256 token_supply ); function version() external view returns (string memory); function salt() external view returns (bytes32); function exchange(int128 i, int128 j, uint256 _dx, uint256 _min_dy, address _receiver) external returns (uint256); function exchange_received(int128 i, int128 j, uint256 _dx, uint256 _min_dy, address _receiver) external returns (uint256); function add_liquidity(uint256[] memory _amounts, uint256 _min_mint_amount) external returns (uint256); function remove_liquidity(uint256 _burn_amount, uint256[] memory _min_amounts) external returns (uint256[] memory); function remove_liquidity_one_coin(uint256 _burn_amount, int128 _i, uint256 _min_received) external returns (uint256); function remove_liquidity_imbalance(uint256[] memory _amounts, uint256 _max_burn_amount) external returns (uint256); function calc_token_amount(uint256[] memory _amounts, bool _is_deposit) external view returns (uint256); function last_price(uint256 i) external view returns (uint256); function ema_price(uint256 i) external view returns (uint256); function price_oracle(uint256 i) external view returns (uint256); function stored_rates() external view returns (uint256[] memory); function get_virtual_price() external view returns (uint256); function get_dy(int128 i, int128 j, uint256 dx) external view returns (uint256); function balances(uint256 i) external view returns (uint256); function coins(uint256 i) external view returns (address); }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/utils/SafeERC20.sol) pragma solidity ^0.8.20; import {IERC20} from "../IERC20.sol"; import {IERC20Permit} from "../extensions/IERC20Permit.sol"; import {Address} from "../../../utils/Address.sol"; /** * @title SafeERC20 * @dev Wrappers around ERC20 operations that throw on failure (when the token * contract returns false). Tokens that return no value (and instead revert or * throw on failure) are also supported, non-reverting calls are assumed to be * successful. * To use this library you can add a `using SafeERC20 for IERC20;` statement to your contract, * which allows you to call the safe operations as `token.safeTransfer(...)`, etc. */ library SafeERC20 { using Address for address; /** * @dev An operation with an ERC20 token failed. */ error SafeERC20FailedOperation(address token); /** * @dev Indicates a failed `decreaseAllowance` request. */ error SafeERC20FailedDecreaseAllowance(address spender, uint256 currentAllowance, uint256 requestedDecrease); /** * @dev Transfer `value` amount of `token` from the calling contract to `to`. If `token` returns no value, * non-reverting calls are assumed to be successful. */ function safeTransfer(IERC20 token, address to, uint256 value) internal { _callOptionalReturn(token, abi.encodeCall(token.transfer, (to, value))); } /** * @dev Transfer `value` amount of `token` from `from` to `to`, spending the approval given by `from` to the * calling contract. If `token` returns no value, non-reverting calls are assumed to be successful. */ function safeTransferFrom(IERC20 token, address from, address to, uint256 value) internal { _callOptionalReturn(token, abi.encodeCall(token.transferFrom, (from, to, value))); } /** * @dev Increase the calling contract's allowance toward `spender` by `value`. If `token` returns no value, * non-reverting calls are assumed to be successful. */ function safeIncreaseAllowance(IERC20 token, address spender, uint256 value) internal { uint256 oldAllowance = token.allowance(address(this), spender); forceApprove(token, spender, oldAllowance + value); } /** * @dev Decrease the calling contract's allowance toward `spender` by `requestedDecrease`. If `token` returns no * value, non-reverting calls are assumed to be successful. */ function safeDecreaseAllowance(IERC20 token, address spender, uint256 requestedDecrease) internal { unchecked { uint256 currentAllowance = token.allowance(address(this), spender); if (currentAllowance < requestedDecrease) { revert SafeERC20FailedDecreaseAllowance(spender, currentAllowance, requestedDecrease); } forceApprove(token, spender, currentAllowance - requestedDecrease); } } /** * @dev Set the calling contract's allowance toward `spender` to `value`. If `token` returns no value, * non-reverting calls are assumed to be successful. Meant to be used with tokens that require the approval * to be set to zero before setting it to a non-zero value, such as USDT. */ function forceApprove(IERC20 token, address spender, uint256 value) internal { bytes memory approvalCall = abi.encodeCall(token.approve, (spender, value)); if (!_callOptionalReturnBool(token, approvalCall)) { _callOptionalReturn(token, abi.encodeCall(token.approve, (spender, 0))); _callOptionalReturn(token, approvalCall); } } /** * @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement * on the return value: the return value is optional (but if data is returned, it must not be false). * @param token The token targeted by the call. * @param data The call data (encoded using abi.encode or one of its variants). */ function _callOptionalReturn(IERC20 token, bytes memory data) private { // We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since // we're implementing it ourselves. We use {Address-functionCall} to perform this call, which verifies that // the target address contains contract code and also asserts for success in the low-level call. bytes memory returndata = address(token).functionCall(data); if (returndata.length != 0 && !abi.decode(returndata, (bool))) { revert SafeERC20FailedOperation(address(token)); } } /** * @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement * on the return value: the return value is optional (but if data is returned, it must not be false). * @param token The token targeted by the call. * @param data The call data (encoded using abi.encode or one of its variants). * * This is a variant of {_callOptionalReturn} that silents catches all reverts and returns a bool instead. */ function _callOptionalReturnBool(IERC20 token, bytes memory data) private returns (bool) { // We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since // we're implementing it ourselves. We cannot use {Address-functionCall} here since this should return false // and not revert is the subcall reverts. (bool success, bytes memory returndata) = address(token).call(data); return success && (returndata.length == 0 || abi.decode(returndata, (bool))) && address(token).code.length > 0; } }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/ERC20.sol) pragma solidity ^0.8.20; import {IERC20} from "@openzeppelin/contracts/token/ERC20/IERC20.sol"; import {IERC20Metadata} from "@openzeppelin/contracts/token/ERC20/extensions/IERC20Metadata.sol"; import {ContextUpgradeable} from "../../utils/ContextUpgradeable.sol"; import {IERC20Errors} from "@openzeppelin/contracts/interfaces/draft-IERC6093.sol"; import {Initializable} from "../../proxy/utils/Initializable.sol"; /** * @dev Implementation of the {IERC20} interface. * * This implementation is agnostic to the way tokens are created. This means * that a supply mechanism has to be added in a derived contract using {_mint}. * * TIP: For a detailed writeup see our guide * https://forum.openzeppelin.com/t/how-to-implement-erc20-supply-mechanisms/226[How * to implement supply mechanisms]. * * The default value of {decimals} is 18. To change this, you should override * this function so it returns a different value. * * We have followed general OpenZeppelin Contracts guidelines: functions revert * instead returning `false` on failure. This behavior is nonetheless * conventional and does not conflict with the expectations of ERC20 * applications. * * Additionally, an {Approval} event is emitted on calls to {transferFrom}. * This allows applications to reconstruct the allowance for all accounts just * by listening to said events. Other implementations of the EIP may not emit * these events, as it isn't required by the specification. */ abstract contract ERC20Upgradeable is Initializable, ContextUpgradeable, IERC20, IERC20Metadata, IERC20Errors { /// @custom:storage-location erc7201:openzeppelin.storage.ERC20 struct ERC20Storage { mapping(address account => uint256) _balances; mapping(address account => mapping(address spender => uint256)) _allowances; uint256 _totalSupply; string _name; string _symbol; } // keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.ERC20")) - 1)) & ~bytes32(uint256(0xff)) bytes32 private constant ERC20StorageLocation = 0x52c63247e1f47db19d5ce0460030c497f067ca4cebf71ba98eeadabe20bace00; function _getERC20Storage() private pure returns (ERC20Storage storage $) { assembly { $.slot := ERC20StorageLocation } } /** * @dev Sets the values for {name} and {symbol}. * * All two of these values are immutable: they can only be set once during * construction. */ function __ERC20_init(string memory name_, string memory symbol_) internal onlyInitializing { __ERC20_init_unchained(name_, symbol_); } function __ERC20_init_unchained(string memory name_, string memory symbol_) internal onlyInitializing { ERC20Storage storage $ = _getERC20Storage(); $._name = name_; $._symbol = symbol_; } /** * @dev Returns the name of the token. */ function name() public view virtual returns (string memory) { ERC20Storage storage $ = _getERC20Storage(); return $._name; } /** * @dev Returns the symbol of the token, usually a shorter version of the * name. */ function symbol() public view virtual returns (string memory) { ERC20Storage storage $ = _getERC20Storage(); return $._symbol; } /** * @dev Returns the number of decimals used to get its user representation. * For example, if `decimals` equals `2`, a balance of `505` tokens should * be displayed to a user as `5.05` (`505 / 10 ** 2`). * * Tokens usually opt for a value of 18, imitating the relationship between * Ether and Wei. This is the default value returned by this function, unless * it's overridden. * * NOTE: This information is only used for _display_ purposes: it in * no way affects any of the arithmetic of the contract, including * {IERC20-balanceOf} and {IERC20-transfer}. */ function decimals() public view virtual returns (uint8) { return 18; } /** * @dev See {IERC20-totalSupply}. */ function totalSupply() public view virtual returns (uint256) { ERC20Storage storage $ = _getERC20Storage(); return $._totalSupply; } /** * @dev See {IERC20-balanceOf}. */ function balanceOf(address account) public view virtual returns (uint256) { ERC20Storage storage $ = _getERC20Storage(); return $._balances[account]; } /** * @dev See {IERC20-transfer}. * * Requirements: * * - `to` cannot be the zero address. * - the caller must have a balance of at least `value`. */ function transfer(address to, uint256 value) public virtual returns (bool) { address owner = _msgSender(); _transfer(owner, to, value); return true; } /** * @dev See {IERC20-allowance}. */ function allowance(address owner, address spender) public view virtual returns (uint256) { ERC20Storage storage $ = _getERC20Storage(); return $._allowances[owner][spender]; } /** * @dev See {IERC20-approve}. * * NOTE: If `value` is the maximum `uint256`, the allowance is not updated on * `transferFrom`. This is semantically equivalent to an infinite approval. * * Requirements: * * - `spender` cannot be the zero address. */ function approve(address spender, uint256 value) public virtual returns (bool) { address owner = _msgSender(); _approve(owner, spender, value); return true; } /** * @dev See {IERC20-transferFrom}. * * Emits an {Approval} event indicating the updated allowance. This is not * required by the EIP. See the note at the beginning of {ERC20}. * * NOTE: Does not update the allowance if the current allowance * is the maximum `uint256`. * * Requirements: * * - `from` and `to` cannot be the zero address. * - `from` must have a balance of at least `value`. * - the caller must have allowance for ``from``'s tokens of at least * `value`. */ function transferFrom(address from, address to, uint256 value) public virtual returns (bool) { address spender = _msgSender(); _spendAllowance(from, spender, value); _transfer(from, to, value); return true; } /** * @dev Moves a `value` amount of tokens from `from` to `to`. * * This internal function is equivalent to {transfer}, and can be used to * e.g. implement automatic token fees, slashing mechanisms, etc. * * Emits a {Transfer} event. * * NOTE: This function is not virtual, {_update} should be overridden instead. */ function _transfer(address from, address to, uint256 value) internal { if (from == address(0)) { revert ERC20InvalidSender(address(0)); } if (to == address(0)) { revert ERC20InvalidReceiver(address(0)); } _update(from, to, value); } /** * @dev Transfers a `value` amount of tokens from `from` to `to`, or alternatively mints (or burns) if `from` * (or `to`) is the zero address. All customizations to transfers, mints, and burns should be done by overriding * this function. * * Emits a {Transfer} event. */ function _update(address from, address to, uint256 value) internal virtual { ERC20Storage storage $ = _getERC20Storage(); if (from == address(0)) { // Overflow check required: The rest of the code assumes that totalSupply never overflows $._totalSupply += value; } else { uint256 fromBalance = $._balances[from]; if (fromBalance < value) { revert ERC20InsufficientBalance(from, fromBalance, value); } unchecked { // Overflow not possible: value <= fromBalance <= totalSupply. $._balances[from] = fromBalance - value; } } if (to == address(0)) { unchecked { // Overflow not possible: value <= totalSupply or value <= fromBalance <= totalSupply. $._totalSupply -= value; } } else { unchecked { // Overflow not possible: balance + value is at most totalSupply, which we know fits into a uint256. $._balances[to] += value; } } emit Transfer(from, to, value); } /** * @dev Creates a `value` amount of tokens and assigns them to `account`, by transferring it from address(0). * Relies on the `_update` mechanism * * Emits a {Transfer} event with `from` set to the zero address. * * NOTE: This function is not virtual, {_update} should be overridden instead. */ function _mint(address account, uint256 value) internal { if (account == address(0)) { revert ERC20InvalidReceiver(address(0)); } _update(address(0), account, value); } /** * @dev Destroys a `value` amount of tokens from `account`, lowering the total supply. * Relies on the `_update` mechanism. * * Emits a {Transfer} event with `to` set to the zero address. * * NOTE: This function is not virtual, {_update} should be overridden instead */ function _burn(address account, uint256 value) internal { if (account == address(0)) { revert ERC20InvalidSender(address(0)); } _update(account, address(0), value); } /** * @dev Sets `value` as the allowance of `spender` over the `owner` s tokens. * * This internal function is equivalent to `approve`, and can be used to * e.g. set automatic allowances for certain subsystems, etc. * * Emits an {Approval} event. * * Requirements: * * - `owner` cannot be the zero address. * - `spender` cannot be the zero address. * * Overrides to this logic should be done to the variant with an additional `bool emitEvent` argument. */ function _approve(address owner, address spender, uint256 value) internal { _approve(owner, spender, value, true); } /** * @dev Variant of {_approve} with an optional flag to enable or disable the {Approval} event. * * By default (when calling {_approve}) the flag is set to true. On the other hand, approval changes made by * `_spendAllowance` during the `transferFrom` operation set the flag to false. This saves gas by not emitting any * `Approval` event during `transferFrom` operations. * * Anyone who wishes to continue emitting `Approval` events on the`transferFrom` operation can force the flag to * true using the following override: * ``` * function _approve(address owner, address spender, uint256 value, bool) internal virtual override { * super._approve(owner, spender, value, true); * } * ``` * * Requirements are the same as {_approve}. */ function _approve(address owner, address spender, uint256 value, bool emitEvent) internal virtual { ERC20Storage storage $ = _getERC20Storage(); if (owner == address(0)) { revert ERC20InvalidApprover(address(0)); } if (spender == address(0)) { revert ERC20InvalidSpender(address(0)); } $._allowances[owner][spender] = value; if (emitEvent) { emit Approval(owner, spender, value); } } /** * @dev Updates `owner` s allowance for `spender` based on spent `value`. * * Does not update the allowance value in case of infinite allowance. * Revert if not enough allowance is available. * * Does not emit an {Approval} event. */ function _spendAllowance(address owner, address spender, uint256 value) internal virtual { uint256 currentAllowance = allowance(owner, spender); if (currentAllowance != type(uint256).max) { if (currentAllowance < value) { revert ERC20InsufficientAllowance(spender, currentAllowance, value); } unchecked { _approve(owner, spender, currentAllowance - value, false); } } } }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/extensions/ERC20Pausable.sol) pragma solidity ^0.8.20; import {ERC20Upgradeable} from "../ERC20Upgradeable.sol"; import {PausableUpgradeable} from "../../../utils/PausableUpgradeable.sol"; import {Initializable} from "../../../proxy/utils/Initializable.sol"; /** * @dev ERC20 token with pausable token transfers, minting and burning. * * Useful for scenarios such as preventing trades until the end of an evaluation * period, or having an emergency switch for freezing all token transfers in the * event of a large bug. * * IMPORTANT: This contract does not include public pause and unpause functions. In * addition to inheriting this contract, you must define both functions, invoking the * {Pausable-_pause} and {Pausable-_unpause} internal functions, with appropriate * access control, e.g. using {AccessControl} or {Ownable}. Not doing so will * make the contract pause mechanism of the contract unreachable, and thus unusable. */ abstract contract ERC20PausableUpgradeable is Initializable, ERC20Upgradeable, PausableUpgradeable { function __ERC20Pausable_init() internal onlyInitializing { __Pausable_init_unchained(); } function __ERC20Pausable_init_unchained() internal onlyInitializing { } /** * @dev See {ERC20-_update}. * * Requirements: * * - the contract must not be paused. */ function _update(address from, address to, uint256 value) internal virtual override whenNotPaused { super._update(from, to, value); } }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/extensions/ERC20Permit.sol) pragma solidity ^0.8.20; import {IERC20Permit} from "@openzeppelin/contracts/token/ERC20/extensions/IERC20Permit.sol"; import {ERC20Upgradeable} from "../ERC20Upgradeable.sol"; import {ECDSA} from "@openzeppelin/contracts/utils/cryptography/ECDSA.sol"; import {EIP712Upgradeable} from "../../../utils/cryptography/EIP712Upgradeable.sol"; import {NoncesUpgradeable} from "../../../utils/NoncesUpgradeable.sol"; import {Initializable} from "../../../proxy/utils/Initializable.sol"; /** * @dev Implementation of the ERC20 Permit extension allowing approvals to be made via signatures, as defined in * https://eips.ethereum.org/EIPS/eip-2612[EIP-2612]. * * Adds the {permit} method, which can be used to change an account's ERC20 allowance (see {IERC20-allowance}) by * presenting a message signed by the account. By not relying on `{IERC20-approve}`, the token holder account doesn't * need to send a transaction, and thus is not required to hold Ether at all. */ abstract contract ERC20PermitUpgradeable is Initializable, ERC20Upgradeable, IERC20Permit, EIP712Upgradeable, NoncesUpgradeable { bytes32 private constant PERMIT_TYPEHASH = keccak256("Permit(address owner,address spender,uint256 value,uint256 nonce,uint256 deadline)"); /** * @dev Permit deadline has expired. */ error ERC2612ExpiredSignature(uint256 deadline); /** * @dev Mismatched signature. */ error ERC2612InvalidSigner(address signer, address owner); /** * @dev Initializes the {EIP712} domain separator using the `name` parameter, and setting `version` to `"1"`. * * It's a good idea to use the same `name` that is defined as the ERC20 token name. */ function __ERC20Permit_init(string memory name) internal onlyInitializing { __EIP712_init_unchained(name, "1"); } function __ERC20Permit_init_unchained(string memory) internal onlyInitializing {} /** * @inheritdoc IERC20Permit */ function permit( address owner, address spender, uint256 value, uint256 deadline, uint8 v, bytes32 r, bytes32 s ) public virtual { if (block.timestamp > deadline) { revert ERC2612ExpiredSignature(deadline); } bytes32 structHash = keccak256(abi.encode(PERMIT_TYPEHASH, owner, spender, value, _useNonce(owner), deadline)); bytes32 hash = _hashTypedDataV4(structHash); address signer = ECDSA.recover(hash, v, r, s); if (signer != owner) { revert ERC2612InvalidSigner(signer, owner); } _approve(owner, spender, value); } /** * @inheritdoc IERC20Permit */ function nonces(address owner) public view virtual override(IERC20Permit, NoncesUpgradeable) returns (uint256) { return super.nonces(owner); } /** * @inheritdoc IERC20Permit */ // solhint-disable-next-line func-name-mixedcase function DOMAIN_SEPARATOR() external view virtual returns (bytes32) { return _domainSeparatorV4(); } }
// SPDX-License-Identifier: Apache-2.0 pragma solidity 0.8.20; import {IAccessControlDefaultAdminRules} from "openzeppelin-contracts/access/extensions/IAccessControlDefaultAdminRules.sol"; // solhint-disable-next-line no-empty-blocks interface IRegistryAccess is IAccessControlDefaultAdminRules {}
// SPDX-License-Identifier: Apache-2.0 pragma solidity 0.8.20; interface IRegistryContract { function setContract(bytes32 name, address contractAddress) external; function getContract(bytes32 name) external view returns (address); }
// SPDX-License-Identifier: Apache-2.0 pragma solidity 0.8.20; import {IERC20Metadata} from "openzeppelin-contracts/token/ERC20/extensions/IERC20Metadata.sol"; interface IUsd0PP is IERC20Metadata { /// @notice Calculates the number of seconds from beginning to end of the bond period. /// @return The number of seconds. function totalBondTimes() external view returns (uint256); /// @notice get the start time /// @dev Used to determine if the bond can be minted. /// @return The block timestamp marking the bond starts. function getStartTime() external view returns (uint256); /// @notice get the end time /// @dev Used to determine if the bond can be unwrapped. /// @return The block timestamp marking the bond ends. function getEndTime() external view returns (uint256); /// @notice Mints Usd0PP tokens representing bonds. /// @dev Transfers collateral USD0 tokens and mints Usd0PP bonds. /// @param amountUsd0 The amount of Usd0 to mint bonds for. function mint(uint256 amountUsd0) external; /// @notice Mints Usd0PP tokens representing bonds with permit. /// @dev Transfers collateral Usd0PP tokens and mints Usd0PP bonds. /// @param amountUsd0 The amount of Usd0 to mint bonds for. /// @param deadline The deadline for the permit. /// @param v The v value for the permit. /// @param r The r value for the permit. /// @param s The s value for the permit. function mintWithPermit(uint256 amountUsd0, uint256 deadline, uint8 v, bytes32 r, bytes32 s) external; /// @notice Unwraps the bond after maturity, returning the collateral token. /// @dev Only the balance of the caller is unwrapped. /// @dev Burns bond tokens and transfers collateral back to the user. function unwrap() external; /** * @notice Triggers the PAR mechanism to maintain the peg between USD0 and USD0++ via Curvepool exchange. * @dev This function performs a series of actions: it checks for sufficient USD0 balances, exchanges USD0 for USD0++, * and unwraps USD0++ back to USD0 which is then burned and any excess sent to the treasury. The function reverts if the PAR mechanism does not result in more USD0++ gained overall then USD0 is exchanged for. * @param parUsd0Amount The amount of USD0 to be exchanged for USD0++. * @param minimumPARMechanismGainedAmount The minimum additional amount of USD0++ expected to gain on top of the exchanged amount to account for slippage. */ function triggerPARMechanismCurvepool( uint256 parUsd0Amount, uint256 minimumPARMechanismGainedAmount ) external; }
// SPDX-License-Identifier: Apache-2.0 pragma solidity 0.8.20; import {IERC20Metadata} from "openzeppelin-contracts/token/ERC20/extensions/IERC20Metadata.sol"; interface IUsd0 is IERC20Metadata { /// @notice mint Usd0 token /// @dev Can only be called by USD0_MINT role /// @param to address of the account who want to mint their token /// @param amount the amount of tokens to mint function mint(address to, uint256 amount) external; /// @notice burnFrom Usd0 token /// @dev Can only be called by USD0_BURN role /// @param account address of the account who want to burn /// @param amount the amount of tokens to burn function burnFrom(address account, uint256 amount) external; /// @notice burn Usd0 token /// @dev Can only be called by USD0_BURN role /// @param amount the amount of tokens to burn function burn(uint256 amount) external; /// @notice check if the account is blacklisted /// @param account address of the account to check /// @return bool function isBlacklisted(address account) external view returns (bool); }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/IERC20.sol) pragma solidity ^0.8.20; /** * @dev Interface of the ERC20 standard as defined in the EIP. */ interface IERC20 { /** * @dev Emitted when `value` tokens are moved from one account (`from`) to * another (`to`). * * Note that `value` may be zero. */ event Transfer(address indexed from, address indexed to, uint256 value); /** * @dev Emitted when the allowance of a `spender` for an `owner` is set by * a call to {approve}. `value` is the new allowance. */ event Approval(address indexed owner, address indexed spender, uint256 value); /** * @dev Returns the value of tokens in existence. */ function totalSupply() external view returns (uint256); /** * @dev Returns the value of tokens owned by `account`. */ function balanceOf(address account) external view returns (uint256); /** * @dev Moves a `value` amount of tokens from the caller's account to `to`. * * Returns a boolean value indicating whether the operation succeeded. * * Emits a {Transfer} event. */ function transfer(address to, uint256 value) external returns (bool); /** * @dev Returns the remaining number of tokens that `spender` will be * allowed to spend on behalf of `owner` through {transferFrom}. This is * zero by default. * * This value changes when {approve} or {transferFrom} are called. */ function allowance(address owner, address spender) external view returns (uint256); /** * @dev Sets a `value` amount of tokens as the allowance of `spender` over the * caller's tokens. * * Returns a boolean value indicating whether the operation succeeded. * * IMPORTANT: Beware that changing an allowance with this method brings the risk * that someone may use both the old and the new allowance by unfortunate * transaction ordering. One possible solution to mitigate this race * condition is to first reduce the spender's allowance to 0 and set the * desired value afterwards: * https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729 * * Emits an {Approval} event. */ function approve(address spender, uint256 value) external returns (bool); /** * @dev Moves a `value` amount of tokens from `from` to `to` using the * allowance mechanism. `value` is then deducted from the caller's * allowance. * * Returns a boolean value indicating whether the operation succeeded. * * Emits a {Transfer} event. */ function transferFrom(address from, address to, uint256 value) external returns (bool); }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/extensions/IERC20Permit.sol) pragma solidity ^0.8.20; /** * @dev Interface of the ERC20 Permit extension allowing approvals to be made via signatures, as defined in * https://eips.ethereum.org/EIPS/eip-2612[EIP-2612]. * * Adds the {permit} method, which can be used to change an account's ERC20 allowance (see {IERC20-allowance}) by * presenting a message signed by the account. By not relying on {IERC20-approve}, the token holder account doesn't * need to send a transaction, and thus is not required to hold Ether at all. * * ==== Security Considerations * * There are two important considerations concerning the use of `permit`. The first is that a valid permit signature * expresses an allowance, and it should not be assumed to convey additional meaning. In particular, it should not be * considered as an intention to spend the allowance in any specific way. The second is that because permits have * built-in replay protection and can be submitted by anyone, they can be frontrun. A protocol that uses permits should * take this into consideration and allow a `permit` call to fail. Combining these two aspects, a pattern that may be * generally recommended is: * * ```solidity * function doThingWithPermit(..., uint256 value, uint256 deadline, uint8 v, bytes32 r, bytes32 s) public { * try token.permit(msg.sender, address(this), value, deadline, v, r, s) {} catch {} * doThing(..., value); * } * * function doThing(..., uint256 value) public { * token.safeTransferFrom(msg.sender, address(this), value); * ... * } * ``` * * Observe that: 1) `msg.sender` is used as the owner, leaving no ambiguity as to the signer intent, and 2) the use of * `try/catch` allows the permit to fail and makes the code tolerant to frontrunning. (See also * {SafeERC20-safeTransferFrom}). * * Additionally, note that smart contract wallets (such as Argent or Safe) are not able to produce permit signatures, so * contracts should have entry points that don't rely on permit. */ interface IERC20Permit { /** * @dev Sets `value` as the allowance of `spender` over ``owner``'s tokens, * given ``owner``'s signed approval. * * IMPORTANT: The same issues {IERC20-approve} has related to transaction * ordering also apply here. * * Emits an {Approval} event. * * Requirements: * * - `spender` cannot be the zero address. * - `deadline` must be a timestamp in the future. * - `v`, `r` and `s` must be a valid `secp256k1` signature from `owner` * over the EIP712-formatted function arguments. * - the signature must use ``owner``'s current nonce (see {nonces}). * * For more information on the signature format, see the * https://eips.ethereum.org/EIPS/eip-2612#specification[relevant EIP * section]. * * CAUTION: See Security Considerations above. */ function permit( address owner, address spender, uint256 value, uint256 deadline, uint8 v, bytes32 r, bytes32 s ) external; /** * @dev Returns the current nonce for `owner`. This value must be * included whenever a signature is generated for {permit}. * * Every successful call to {permit} increases ``owner``'s nonce by one. This * prevents a signature from being used multiple times. */ function nonces(address owner) external view returns (uint256); /** * @dev Returns the domain separator used in the encoding of the signature for {permit}, as defined by {EIP712}. */ // solhint-disable-next-line func-name-mixedcase function DOMAIN_SEPARATOR() external view returns (bytes32); }
// SPDX-License-Identifier: Apache-2.0 pragma solidity 0.8.20; import {IRegistryAccess} from "src/interfaces/registry/IRegistryAccess.sol"; import {NotAuthorized} from "src/errors.sol"; /// @title Check Access control library library CheckAccessControl { /// @dev Function to restrict to one access role. /// @param registryAccess The registry access contract. /// @param role The role being checked. function onlyMatchingRole(IRegistryAccess registryAccess, bytes32 role) internal view { if (!registryAccess.hasRole(role, msg.sender)) { revert NotAuthorized(); } } }
// SPDX-License-Identifier: Apache-2.0 pragma solidity 0.8.20; bytes32 constant ADMIN = keccak256("ADMIN"); bytes32 constant DEFAULT_ADMIN_ROLE = 0x00; bytes32 constant DAO_COLLATERAL = keccak256("DAO_COLLATERAL_CONTRACT"); bytes32 constant USD0_MINT = keccak256("USD0_MINT"); bytes32 constant USD0_BURN = keccak256("USD0_BURN"); bytes32 constant USUAL_MINT = keccak256("USUAL_MINT"); bytes32 constant USUAL_BURN = keccak256("USUAL_BURN"); bytes32 constant INTENT_MATCHING_ROLE = keccak256("INTENT_MATCHING_ROLE"); bytes32 constant NONCE_THRESHOLD_SETTER_ROLE = keccak256("NONCE_THRESHOLD_SETTER_ROLE"); bytes32 constant PEG_MAINTAINER_ROLE = keccak256("PEG_MAINTAINER_ROLE"); bytes32 constant SWAPPER_ENGINE = keccak256("SWAPPER_ENGINE"); bytes32 constant INTENT_TYPE_HASH = keccak256( "SwapIntent(address recipient,address rwaToken,uint256 amountInTokenDecimals,uint256 nonce,uint256 deadline)" ); /* Contracts */ bytes32 constant CONTRACT_REGISTRY_ACCESS = keccak256("CONTRACT_REGISTRY_ACCESS"); bytes32 constant CONTRACT_DAO_COLLATERAL = keccak256("CONTRACT_DAO_COLLATERAL"); bytes32 constant CONTRACT_USD0PP = keccak256("CONTRACT_USD0PP"); bytes32 constant CONTRACT_TOKEN_MAPPING = keccak256("CONTRACT_TOKEN_MAPPING"); bytes32 constant CONTRACT_ORACLE = keccak256("CONTRACT_ORACLE"); bytes32 constant CONTRACT_ORACLE_USUAL = keccak256("CONTRACT_ORACLE_USUAL"); bytes32 constant CONTRACT_DATA_PUBLISHER = keccak256("CONTRACT_DATA_PUBLISHER"); bytes32 constant CONTRACT_TREASURY = keccak256("CONTRACT_TREASURY"); bytes32 constant CONTRACT_SWAPPER_ENGINE = keccak256("CONTRACT_SWAPPER_ENGINE"); /* Contract tokens */ bytes32 constant CONTRACT_USD0 = keccak256("CONTRACT_USD0"); bytes32 constant CONTRACT_USUAL = keccak256("CONTRACT_USUAL"); bytes32 constant CONTRACT_USDC = keccak256("CONTRACT_USDC"); /* Constants */ uint256 constant SCALAR_ONE = 1e18; uint256 constant SCALAR_TEN_KWEI = 10_000; uint256 constant MAX_REDEEM_FEE = 2500; uint256 constant MINIMUM_USDC_PROVIDED = 100e6; //minimum of 100 USDC deposit; // we take 12sec as the average block time // 1 year = 3600sec * 24 hours * 365 days * 4 years = 126144000 + 1 day // adding a leap day uint256 constant BOND_DURATION_FOUR_YEAR = 126_230_400; //including a leap day; uint256 constant BOND_START_DATE = 1_719_489_600; // Thu Jun 27 2024 12:00:00 GMT+0000 uint256 constant BASIS_POINT_BASE = 10_000; uint64 constant ONE_WEEK = 604_800; uint256 constant ONE_USDC = 1e6; /* Token Addresses */ address constant USYC = 0x136471a34f6ef19fE571EFFC1CA711fdb8E49f2b; /* * The maximum relative price difference between two oracle responses allowed in order for the PriceFeed * to return to using the Oracle oracle. 18-digit precision. */ uint256 constant INITIAL_MAX_DEPEG_THRESHOLD = 100; /* Maximum number of RWA tokens that can be associated with USD0 */ uint256 constant MAX_RWA_COUNT = 10; /* Curvepool Addresses */ address constant CURVE_POOL_USD0_USD0PP = 0x1d08E7adC263CfC70b1BaBe6dC5Bb339c16Eec52; int128 constant CURVE_POOL_USD0_USD0PP_INTEGER_FOR_USD0 = 0; int128 constant CURVE_POOL_USD0_USD0PP_INTEGER_FOR_USD0PP = 1;
// SPDX-License-Identifier: Apache-2.0 pragma solidity 0.8.20; error AlreadyClaimed(); error AlreadyWhitelisted(); error AmountTooBig(); error AmountTooLow(); error AmountIsZero(); error Blacklisted(); error Empty(); error ExpiredSignature(uint256 deadline); error SameValue(); error Invalid(); error InvalidToken(); error InvalidName(); error InvalidSigner(address owner); error InvalidDeadline(uint256 approvalDeadline, uint256 intentDeadline); error NoOrdersIdsProvided(); error InvalidSymbol(); error LockedOffer(); error NotAuthorized(); error NotClaimableYet(); error NullAddress(); error NullContract(); error OracleNotWorkingNotCurrent(); error OracleNotInitialized(); error OutOfBounds(); error InvalidTimeout(); error RedeemMustNotBePaused(); error RedeemMustBePaused(); error SwapMustNotBePaused(); error SwapMustBePaused(); error StablecoinDepeg(); error DepegThresholdTooHigh(); error TokenNotWhitelist(); error BondNotStarted(); error BondFinished(); error BondNotFinished(); error BeginInPast(); error CBRIsTooHigh(); error CBRIsNull(); error RedeemFeeTooBig(); error CancelFeeTooBig(); error MinterRewardTooBig(); error CollateralProviderRewardTooBig(); error DistributionRatioInvalid(); error TooManyRWA(); error FailingTransfer(); error InsufficientUSD0Balance(); error USDCAmountNotFullyMatched(); error OrderNotActive(); error NotRequester(); error InsufficientUSD0Allowance(); error ApprovalFailed(); error AmountExceedBacking(); error InvalidOrderAmount(address account, uint256 amount); error PARNotRequired(); error PARNotSuccessful(); error PARUSD0InputExceedsBalance();
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (proxy/utils/Initializable.sol) pragma solidity ^0.8.20; /** * @dev This is a base contract to aid in writing upgradeable contracts, or any kind of contract that will be deployed * behind a proxy. Since proxied contracts do not make use of a constructor, it's common to move constructor logic to an * external initializer function, usually called `initialize`. It then becomes necessary to protect this initializer * function so it can only be called once. The {initializer} modifier provided by this contract will have this effect. * * The initialization functions use a version number. Once a version number is used, it is consumed and cannot be * reused. This mechanism prevents re-execution of each "step" but allows the creation of new initialization steps in * case an upgrade adds a module that needs to be initialized. * * For example: * * [.hljs-theme-light.nopadding] * ```solidity * contract MyToken is ERC20Upgradeable { * function initialize() initializer public { * __ERC20_init("MyToken", "MTK"); * } * } * * contract MyTokenV2 is MyToken, ERC20PermitUpgradeable { * function initializeV2() reinitializer(2) public { * __ERC20Permit_init("MyToken"); * } * } * ``` * * TIP: To avoid leaving the proxy in an uninitialized state, the initializer function should be called as early as * possible by providing the encoded function call as the `_data` argument to {ERC1967Proxy-constructor}. * * CAUTION: When used with inheritance, manual care must be taken to not invoke a parent initializer twice, or to ensure * that all initializers are idempotent. This is not verified automatically as constructors are by Solidity. * * [CAUTION] * ==== * Avoid leaving a contract uninitialized. * * An uninitialized contract can be taken over by an attacker. This applies to both a proxy and its implementation * contract, which may impact the proxy. To prevent the implementation contract from being used, you should invoke * the {_disableInitializers} function in the constructor to automatically lock it when it is deployed: * * [.hljs-theme-light.nopadding] * ``` * /// @custom:oz-upgrades-unsafe-allow constructor * constructor() { * _disableInitializers(); * } * ``` * ==== */ abstract contract Initializable { /** * @dev Storage of the initializable contract. * * It's implemented on a custom ERC-7201 namespace to reduce the risk of storage collisions * when using with upgradeable contracts. * * @custom:storage-location erc7201:openzeppelin.storage.Initializable */ struct InitializableStorage { /** * @dev Indicates that the contract has been initialized. */ uint64 _initialized; /** * @dev Indicates that the contract is in the process of being initialized. */ bool _initializing; } // keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.Initializable")) - 1)) & ~bytes32(uint256(0xff)) bytes32 private constant INITIALIZABLE_STORAGE = 0xf0c57e16840df040f15088dc2f81fe391c3923bec73e23a9662efc9c229c6a00; /** * @dev The contract is already initialized. */ error InvalidInitialization(); /** * @dev The contract is not initializing. */ error NotInitializing(); /** * @dev Triggered when the contract has been initialized or reinitialized. */ event Initialized(uint64 version); /** * @dev A modifier that defines a protected initializer function that can be invoked at most once. In its scope, * `onlyInitializing` functions can be used to initialize parent contracts. * * Similar to `reinitializer(1)`, except that in the context of a constructor an `initializer` may be invoked any * number of times. This behavior in the constructor can be useful during testing and is not expected to be used in * production. * * Emits an {Initialized} event. */ modifier initializer() { // solhint-disable-next-line var-name-mixedcase InitializableStorage storage $ = _getInitializableStorage(); // Cache values to avoid duplicated sloads bool isTopLevelCall = !$._initializing; uint64 initialized = $._initialized; // Allowed calls: // - initialSetup: the contract is not in the initializing state and no previous version was // initialized // - construction: the contract is initialized at version 1 (no reininitialization) and the // current contract is just being deployed bool initialSetup = initialized == 0 && isTopLevelCall; bool construction = initialized == 1 && address(this).code.length == 0; if (!initialSetup && !construction) { revert InvalidInitialization(); } $._initialized = 1; if (isTopLevelCall) { $._initializing = true; } _; if (isTopLevelCall) { $._initializing = false; emit Initialized(1); } } /** * @dev A modifier that defines a protected reinitializer function that can be invoked at most once, and only if the * contract hasn't been initialized to a greater version before. In its scope, `onlyInitializing` functions can be * used to initialize parent contracts. * * A reinitializer may be used after the original initialization step. This is essential to configure modules that * are added through upgrades and that require initialization. * * When `version` is 1, this modifier is similar to `initializer`, except that functions marked with `reinitializer` * cannot be nested. If one is invoked in the context of another, execution will revert. * * Note that versions can jump in increments greater than 1; this implies that if multiple reinitializers coexist in * a contract, executing them in the right order is up to the developer or operator. * * WARNING: Setting the version to 2**64 - 1 will prevent any future reinitialization. * * Emits an {Initialized} event. */ modifier reinitializer(uint64 version) { // solhint-disable-next-line var-name-mixedcase InitializableStorage storage $ = _getInitializableStorage(); if ($._initializing || $._initialized >= version) { revert InvalidInitialization(); } $._initialized = version; $._initializing = true; _; $._initializing = false; emit Initialized(version); } /** * @dev Modifier to protect an initialization function so that it can only be invoked by functions with the * {initializer} and {reinitializer} modifiers, directly or indirectly. */ modifier onlyInitializing() { _checkInitializing(); _; } /** * @dev Reverts if the contract is not in an initializing state. See {onlyInitializing}. */ function _checkInitializing() internal view virtual { if (!_isInitializing()) { revert NotInitializing(); } } /** * @dev Locks the contract, preventing any future reinitialization. This cannot be part of an initializer call. * Calling this in the constructor of a contract will prevent that contract from being initialized or reinitialized * to any version. It is recommended to use this to lock implementation contracts that are designed to be called * through proxies. * * Emits an {Initialized} event the first time it is successfully executed. */ function _disableInitializers() internal virtual { // solhint-disable-next-line var-name-mixedcase InitializableStorage storage $ = _getInitializableStorage(); if ($._initializing) { revert InvalidInitialization(); } if ($._initialized != type(uint64).max) { $._initialized = type(uint64).max; emit Initialized(type(uint64).max); } } /** * @dev Returns the highest version that has been initialized. See {reinitializer}. */ function _getInitializedVersion() internal view returns (uint64) { return _getInitializableStorage()._initialized; } /** * @dev Returns `true` if the contract is currently initializing. See {onlyInitializing}. */ function _isInitializing() internal view returns (bool) { return _getInitializableStorage()._initializing; } /** * @dev Returns a pointer to the storage namespace. */ // solhint-disable-next-line var-name-mixedcase function _getInitializableStorage() private pure returns (InitializableStorage storage $) { assembly { $.slot := INITIALIZABLE_STORAGE } } }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/extensions/IERC20Metadata.sol) pragma solidity ^0.8.20; import {IERC20} from "../IERC20.sol"; /** * @dev Interface for the optional metadata functions from the ERC20 standard. */ interface IERC20Metadata is IERC20 { /** * @dev Returns the name of the token. */ function name() external view returns (string memory); /** * @dev Returns the symbol of the token. */ function symbol() external view returns (string memory); /** * @dev Returns the decimals places of the token. */ function decimals() external view returns (uint8); }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (utils/Address.sol) pragma solidity ^0.8.20; /** * @dev Collection of functions related to the address type */ library Address { /** * @dev The ETH balance of the account is not enough to perform the operation. */ error AddressInsufficientBalance(address account); /** * @dev There's no code at `target` (it is not a contract). */ error AddressEmptyCode(address target); /** * @dev A call to an address target failed. The target may have reverted. */ error FailedInnerCall(); /** * @dev Replacement for Solidity's `transfer`: sends `amount` wei to * `recipient`, forwarding all available gas and reverting on errors. * * https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost * of certain opcodes, possibly making contracts go over the 2300 gas limit * imposed by `transfer`, making them unable to receive funds via * `transfer`. {sendValue} removes this limitation. * * https://consensys.net/diligence/blog/2019/09/stop-using-soliditys-transfer-now/[Learn more]. * * IMPORTANT: because control is transferred to `recipient`, care must be * taken to not create reentrancy vulnerabilities. Consider using * {ReentrancyGuard} or the * https://solidity.readthedocs.io/en/v0.8.20/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern]. */ function sendValue(address payable recipient, uint256 amount) internal { if (address(this).balance < amount) { revert AddressInsufficientBalance(address(this)); } (bool success, ) = recipient.call{value: amount}(""); if (!success) { revert FailedInnerCall(); } } /** * @dev Performs a Solidity function call using a low level `call`. A * plain `call` is an unsafe replacement for a function call: use this * function instead. * * If `target` reverts with a revert reason or custom error, it is bubbled * up by this function (like regular Solidity function calls). However, if * the call reverted with no returned reason, this function reverts with a * {FailedInnerCall} error. * * Returns the raw returned data. To convert to the expected return value, * use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`]. * * Requirements: * * - `target` must be a contract. * - calling `target` with `data` must not revert. */ function functionCall(address target, bytes memory data) internal returns (bytes memory) { return functionCallWithValue(target, data, 0); } /** * @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], * but also transferring `value` wei to `target`. * * Requirements: * * - the calling contract must have an ETH balance of at least `value`. * - the called Solidity function must be `payable`. */ function functionCallWithValue(address target, bytes memory data, uint256 value) internal returns (bytes memory) { if (address(this).balance < value) { revert AddressInsufficientBalance(address(this)); } (bool success, bytes memory returndata) = target.call{value: value}(data); return verifyCallResultFromTarget(target, success, returndata); } /** * @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], * but performing a static call. */ function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) { (bool success, bytes memory returndata) = target.staticcall(data); return verifyCallResultFromTarget(target, success, returndata); } /** * @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], * but performing a delegate call. */ function functionDelegateCall(address target, bytes memory data) internal returns (bytes memory) { (bool success, bytes memory returndata) = target.delegatecall(data); return verifyCallResultFromTarget(target, success, returndata); } /** * @dev Tool to verify that a low level call to smart-contract was successful, and reverts if the target * was not a contract or bubbling up the revert reason (falling back to {FailedInnerCall}) in case of an * unsuccessful call. */ function verifyCallResultFromTarget( address target, bool success, bytes memory returndata ) internal view returns (bytes memory) { if (!success) { _revert(returndata); } else { // only check if target is a contract if the call was successful and the return data is empty // otherwise we already know that it was a contract if (returndata.length == 0 && target.code.length == 0) { revert AddressEmptyCode(target); } return returndata; } } /** * @dev Tool to verify that a low level call was successful, and reverts if it wasn't, either by bubbling the * revert reason or with a default {FailedInnerCall} error. */ function verifyCallResult(bool success, bytes memory returndata) internal pure returns (bytes memory) { if (!success) { _revert(returndata); } else { return returndata; } } /** * @dev Reverts with returndata if present. Otherwise reverts with {FailedInnerCall}. */ function _revert(bytes memory returndata) private pure { // Look for revert reason and bubble it up if present if (returndata.length > 0) { // The easiest way to bubble the revert reason is using memory via assembly /// @solidity memory-safe-assembly assembly { let returndata_size := mload(returndata) revert(add(32, returndata), returndata_size) } } else { revert FailedInnerCall(); } } }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.1) (utils/Context.sol) pragma solidity ^0.8.20; import {Initializable} from "../proxy/utils/Initializable.sol"; /** * @dev Provides information about the current execution context, including the * sender of the transaction and its data. While these are generally available * via msg.sender and msg.data, they should not be accessed in such a direct * manner, since when dealing with meta-transactions the account sending and * paying for execution may not be the actual sender (as far as an application * is concerned). * * This contract is only required for intermediate, library-like contracts. */ abstract contract ContextUpgradeable is Initializable { function __Context_init() internal onlyInitializing { } function __Context_init_unchained() internal onlyInitializing { } function _msgSender() internal view virtual returns (address) { return msg.sender; } function _msgData() internal view virtual returns (bytes calldata) { return msg.data; } function _contextSuffixLength() internal view virtual returns (uint256) { return 0; } }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (interfaces/draft-IERC6093.sol) pragma solidity ^0.8.20; /** * @dev Standard ERC20 Errors * Interface of the https://eips.ethereum.org/EIPS/eip-6093[ERC-6093] custom errors for ERC20 tokens. */ interface IERC20Errors { /** * @dev Indicates an error related to the current `balance` of a `sender`. Used in transfers. * @param sender Address whose tokens are being transferred. * @param balance Current balance for the interacting account. * @param needed Minimum amount required to perform a transfer. */ error ERC20InsufficientBalance(address sender, uint256 balance, uint256 needed); /** * @dev Indicates a failure with the token `sender`. Used in transfers. * @param sender Address whose tokens are being transferred. */ error ERC20InvalidSender(address sender); /** * @dev Indicates a failure with the token `receiver`. Used in transfers. * @param receiver Address to which tokens are being transferred. */ error ERC20InvalidReceiver(address receiver); /** * @dev Indicates a failure with the `spender`’s `allowance`. Used in transfers. * @param spender Address that may be allowed to operate on tokens without being their owner. * @param allowance Amount of tokens a `spender` is allowed to operate with. * @param needed Minimum amount required to perform a transfer. */ error ERC20InsufficientAllowance(address spender, uint256 allowance, uint256 needed); /** * @dev Indicates a failure with the `approver` of a token to be approved. Used in approvals. * @param approver Address initiating an approval operation. */ error ERC20InvalidApprover(address approver); /** * @dev Indicates a failure with the `spender` to be approved. Used in approvals. * @param spender Address that may be allowed to operate on tokens without being their owner. */ error ERC20InvalidSpender(address spender); } /** * @dev Standard ERC721 Errors * Interface of the https://eips.ethereum.org/EIPS/eip-6093[ERC-6093] custom errors for ERC721 tokens. */ interface IERC721Errors { /** * @dev Indicates that an address can't be an owner. For example, `address(0)` is a forbidden owner in EIP-20. * Used in balance queries. * @param owner Address of the current owner of a token. */ error ERC721InvalidOwner(address owner); /** * @dev Indicates a `tokenId` whose `owner` is the zero address. * @param tokenId Identifier number of a token. */ error ERC721NonexistentToken(uint256 tokenId); /** * @dev Indicates an error related to the ownership over a particular token. Used in transfers. * @param sender Address whose tokens are being transferred. * @param tokenId Identifier number of a token. * @param owner Address of the current owner of a token. */ error ERC721IncorrectOwner(address sender, uint256 tokenId, address owner); /** * @dev Indicates a failure with the token `sender`. Used in transfers. * @param sender Address whose tokens are being transferred. */ error ERC721InvalidSender(address sender); /** * @dev Indicates a failure with the token `receiver`. Used in transfers. * @param receiver Address to which tokens are being transferred. */ error ERC721InvalidReceiver(address receiver); /** * @dev Indicates a failure with the `operator`’s approval. Used in transfers. * @param operator Address that may be allowed to operate on tokens without being their owner. * @param tokenId Identifier number of a token. */ error ERC721InsufficientApproval(address operator, uint256 tokenId); /** * @dev Indicates a failure with the `approver` of a token to be approved. Used in approvals. * @param approver Address initiating an approval operation. */ error ERC721InvalidApprover(address approver); /** * @dev Indicates a failure with the `operator` to be approved. Used in approvals. * @param operator Address that may be allowed to operate on tokens without being their owner. */ error ERC721InvalidOperator(address operator); } /** * @dev Standard ERC1155 Errors * Interface of the https://eips.ethereum.org/EIPS/eip-6093[ERC-6093] custom errors for ERC1155 tokens. */ interface IERC1155Errors { /** * @dev Indicates an error related to the current `balance` of a `sender`. Used in transfers. * @param sender Address whose tokens are being transferred. * @param balance Current balance for the interacting account. * @param needed Minimum amount required to perform a transfer. * @param tokenId Identifier number of a token. */ error ERC1155InsufficientBalance(address sender, uint256 balance, uint256 needed, uint256 tokenId); /** * @dev Indicates a failure with the token `sender`. Used in transfers. * @param sender Address whose tokens are being transferred. */ error ERC1155InvalidSender(address sender); /** * @dev Indicates a failure with the token `receiver`. Used in transfers. * @param receiver Address to which tokens are being transferred. */ error ERC1155InvalidReceiver(address receiver); /** * @dev Indicates a failure with the `operator`’s approval. Used in transfers. * @param operator Address that may be allowed to operate on tokens without being their owner. * @param owner Address of the current owner of a token. */ error ERC1155MissingApprovalForAll(address operator, address owner); /** * @dev Indicates a failure with the `approver` of a token to be approved. Used in approvals. * @param approver Address initiating an approval operation. */ error ERC1155InvalidApprover(address approver); /** * @dev Indicates a failure with the `operator` to be approved. Used in approvals. * @param operator Address that may be allowed to operate on tokens without being their owner. */ error ERC1155InvalidOperator(address operator); /** * @dev Indicates an array length mismatch between ids and values in a safeBatchTransferFrom operation. * Used in batch transfers. * @param idsLength Length of the array of token identifiers * @param valuesLength Length of the array of token amounts */ error ERC1155InvalidArrayLength(uint256 idsLength, uint256 valuesLength); }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (utils/Pausable.sol) pragma solidity ^0.8.20; import {ContextUpgradeable} from "../utils/ContextUpgradeable.sol"; import {Initializable} from "../proxy/utils/Initializable.sol"; /** * @dev Contract module which allows children to implement an emergency stop * mechanism that can be triggered by an authorized account. * * This module is used through inheritance. It will make available the * modifiers `whenNotPaused` and `whenPaused`, which can be applied to * the functions of your contract. Note that they will not be pausable by * simply including this module, only once the modifiers are put in place. */ abstract contract PausableUpgradeable is Initializable, ContextUpgradeable { /// @custom:storage-location erc7201:openzeppelin.storage.Pausable struct PausableStorage { bool _paused; } // keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.Pausable")) - 1)) & ~bytes32(uint256(0xff)) bytes32 private constant PausableStorageLocation = 0xcd5ed15c6e187e77e9aee88184c21f4f2182ab5827cb3b7e07fbedcd63f03300; function _getPausableStorage() private pure returns (PausableStorage storage $) { assembly { $.slot := PausableStorageLocation } } /** * @dev Emitted when the pause is triggered by `account`. */ event Paused(address account); /** * @dev Emitted when the pause is lifted by `account`. */ event Unpaused(address account); /** * @dev The operation failed because the contract is paused. */ error EnforcedPause(); /** * @dev The operation failed because the contract is not paused. */ error ExpectedPause(); /** * @dev Initializes the contract in unpaused state. */ function __Pausable_init() internal onlyInitializing { __Pausable_init_unchained(); } function __Pausable_init_unchained() internal onlyInitializing { PausableStorage storage $ = _getPausableStorage(); $._paused = false; } /** * @dev Modifier to make a function callable only when the contract is not paused. * * Requirements: * * - The contract must not be paused. */ modifier whenNotPaused() { _requireNotPaused(); _; } /** * @dev Modifier to make a function callable only when the contract is paused. * * Requirements: * * - The contract must be paused. */ modifier whenPaused() { _requirePaused(); _; } /** * @dev Returns true if the contract is paused, and false otherwise. */ function paused() public view virtual returns (bool) { PausableStorage storage $ = _getPausableStorage(); return $._paused; } /** * @dev Throws if the contract is paused. */ function _requireNotPaused() internal view virtual { if (paused()) { revert EnforcedPause(); } } /** * @dev Throws if the contract is not paused. */ function _requirePaused() internal view virtual { if (!paused()) { revert ExpectedPause(); } } /** * @dev Triggers stopped state. * * Requirements: * * - The contract must not be paused. */ function _pause() internal virtual whenNotPaused { PausableStorage storage $ = _getPausableStorage(); $._paused = true; emit Paused(_msgSender()); } /** * @dev Returns to normal state. * * Requirements: * * - The contract must be paused. */ function _unpause() internal virtual whenPaused { PausableStorage storage $ = _getPausableStorage(); $._paused = false; emit Unpaused(_msgSender()); } }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (utils/cryptography/ECDSA.sol) pragma solidity ^0.8.20; /** * @dev Elliptic Curve Digital Signature Algorithm (ECDSA) operations. * * These functions can be used to verify that a message was signed by the holder * of the private keys of a given address. */ library ECDSA { enum RecoverError { NoError, InvalidSignature, InvalidSignatureLength, InvalidSignatureS } /** * @dev The signature derives the `address(0)`. */ error ECDSAInvalidSignature(); /** * @dev The signature has an invalid length. */ error ECDSAInvalidSignatureLength(uint256 length); /** * @dev The signature has an S value that is in the upper half order. */ error ECDSAInvalidSignatureS(bytes32 s); /** * @dev Returns the address that signed a hashed message (`hash`) with `signature` or an error. This will not * return address(0) without also returning an error description. Errors are documented using an enum (error type) * and a bytes32 providing additional information about the error. * * If no error is returned, then the address can be used for verification purposes. * * The `ecrecover` EVM precompile allows for malleable (non-unique) signatures: * this function rejects them by requiring the `s` value to be in the lower * half order, and the `v` value to be either 27 or 28. * * IMPORTANT: `hash` _must_ be the result of a hash operation for the * verification to be secure: it is possible to craft signatures that * recover to arbitrary addresses for non-hashed data. A safe way to ensure * this is by receiving a hash of the original message (which may otherwise * be too long), and then calling {MessageHashUtils-toEthSignedMessageHash} on it. * * Documentation for signature generation: * - with https://web3js.readthedocs.io/en/v1.3.4/web3-eth-accounts.html#sign[Web3.js] * - with https://docs.ethers.io/v5/api/signer/#Signer-signMessage[ethers] */ function tryRecover(bytes32 hash, bytes memory signature) internal pure returns (address, RecoverError, bytes32) { if (signature.length == 65) { bytes32 r; bytes32 s; uint8 v; // ecrecover takes the signature parameters, and the only way to get them // currently is to use assembly. /// @solidity memory-safe-assembly assembly { r := mload(add(signature, 0x20)) s := mload(add(signature, 0x40)) v := byte(0, mload(add(signature, 0x60))) } return tryRecover(hash, v, r, s); } else { return (address(0), RecoverError.InvalidSignatureLength, bytes32(signature.length)); } } /** * @dev Returns the address that signed a hashed message (`hash`) with * `signature`. This address can then be used for verification purposes. * * The `ecrecover` EVM precompile allows for malleable (non-unique) signatures: * this function rejects them by requiring the `s` value to be in the lower * half order, and the `v` value to be either 27 or 28. * * IMPORTANT: `hash` _must_ be the result of a hash operation for the * verification to be secure: it is possible to craft signatures that * recover to arbitrary addresses for non-hashed data. A safe way to ensure * this is by receiving a hash of the original message (which may otherwise * be too long), and then calling {MessageHashUtils-toEthSignedMessageHash} on it. */ function recover(bytes32 hash, bytes memory signature) internal pure returns (address) { (address recovered, RecoverError error, bytes32 errorArg) = tryRecover(hash, signature); _throwError(error, errorArg); return recovered; } /** * @dev Overload of {ECDSA-tryRecover} that receives the `r` and `vs` short-signature fields separately. * * See https://eips.ethereum.org/EIPS/eip-2098[EIP-2098 short signatures] */ function tryRecover(bytes32 hash, bytes32 r, bytes32 vs) internal pure returns (address, RecoverError, bytes32) { unchecked { bytes32 s = vs & bytes32(0x7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff); // We do not check for an overflow here since the shift operation results in 0 or 1. uint8 v = uint8((uint256(vs) >> 255) + 27); return tryRecover(hash, v, r, s); } } /** * @dev Overload of {ECDSA-recover} that receives the `r and `vs` short-signature fields separately. */ function recover(bytes32 hash, bytes32 r, bytes32 vs) internal pure returns (address) { (address recovered, RecoverError error, bytes32 errorArg) = tryRecover(hash, r, vs); _throwError(error, errorArg); return recovered; } /** * @dev Overload of {ECDSA-tryRecover} that receives the `v`, * `r` and `s` signature fields separately. */ function tryRecover( bytes32 hash, uint8 v, bytes32 r, bytes32 s ) internal pure returns (address, RecoverError, bytes32) { // EIP-2 still allows signature malleability for ecrecover(). Remove this possibility and make the signature // unique. Appendix F in the Ethereum Yellow paper (https://ethereum.github.io/yellowpaper/paper.pdf), defines // the valid range for s in (301): 0 < s < secp256k1n ÷ 2 + 1, and for v in (302): v ∈ {27, 28}. Most // signatures from current libraries generate a unique signature with an s-value in the lower half order. // // If your library generates malleable signatures, such as s-values in the upper range, calculate a new s-value // with 0xFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEBAAEDCE6AF48A03BBFD25E8CD0364141 - s1 and flip v from 27 to 28 or // vice versa. If your library also generates signatures with 0/1 for v instead 27/28, add 27 to v to accept // these malleable signatures as well. if (uint256(s) > 0x7FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF5D576E7357A4501DDFE92F46681B20A0) { return (address(0), RecoverError.InvalidSignatureS, s); } // If the signature is valid (and not malleable), return the signer address address signer = ecrecover(hash, v, r, s); if (signer == address(0)) { return (address(0), RecoverError.InvalidSignature, bytes32(0)); } return (signer, RecoverError.NoError, bytes32(0)); } /** * @dev Overload of {ECDSA-recover} that receives the `v`, * `r` and `s` signature fields separately. */ function recover(bytes32 hash, uint8 v, bytes32 r, bytes32 s) internal pure returns (address) { (address recovered, RecoverError error, bytes32 errorArg) = tryRecover(hash, v, r, s); _throwError(error, errorArg); return recovered; } /** * @dev Optionally reverts with the corresponding custom error according to the `error` argument provided. */ function _throwError(RecoverError error, bytes32 errorArg) private pure { if (error == RecoverError.NoError) { return; // no error: do nothing } else if (error == RecoverError.InvalidSignature) { revert ECDSAInvalidSignature(); } else if (error == RecoverError.InvalidSignatureLength) { revert ECDSAInvalidSignatureLength(uint256(errorArg)); } else if (error == RecoverError.InvalidSignatureS) { revert ECDSAInvalidSignatureS(errorArg); } } }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (utils/cryptography/EIP712.sol) pragma solidity ^0.8.20; import {MessageHashUtils} from "@openzeppelin/contracts/utils/cryptography/MessageHashUtils.sol"; import {IERC5267} from "@openzeppelin/contracts/interfaces/IERC5267.sol"; import {Initializable} from "../../proxy/utils/Initializable.sol"; /** * @dev https://eips.ethereum.org/EIPS/eip-712[EIP 712] is a standard for hashing and signing of typed structured data. * * The encoding scheme specified in the EIP requires a domain separator and a hash of the typed structured data, whose * encoding is very generic and therefore its implementation in Solidity is not feasible, thus this contract * does not implement the encoding itself. Protocols need to implement the type-specific encoding they need in order to * produce the hash of their typed data using a combination of `abi.encode` and `keccak256`. * * This contract implements the EIP 712 domain separator ({_domainSeparatorV4}) that is used as part of the encoding * scheme, and the final step of the encoding to obtain the message digest that is then signed via ECDSA * ({_hashTypedDataV4}). * * The implementation of the domain separator was designed to be as efficient as possible while still properly updating * the chain id to protect against replay attacks on an eventual fork of the chain. * * NOTE: This contract implements the version of the encoding known as "v4", as implemented by the JSON RPC method * https://docs.metamask.io/guide/signing-data.html[`eth_signTypedDataV4` in MetaMask]. * * NOTE: In the upgradeable version of this contract, the cached values will correspond to the address, and the domain * separator of the implementation contract. This will cause the {_domainSeparatorV4} function to always rebuild the * separator from the immutable values, which is cheaper than accessing a cached version in cold storage. */ abstract contract EIP712Upgradeable is Initializable, IERC5267 { bytes32 private constant TYPE_HASH = keccak256("EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)"); /// @custom:storage-location erc7201:openzeppelin.storage.EIP712 struct EIP712Storage { /// @custom:oz-renamed-from _HASHED_NAME bytes32 _hashedName; /// @custom:oz-renamed-from _HASHED_VERSION bytes32 _hashedVersion; string _name; string _version; } // keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.EIP712")) - 1)) & ~bytes32(uint256(0xff)) bytes32 private constant EIP712StorageLocation = 0xa16a46d94261c7517cc8ff89f61c0ce93598e3c849801011dee649a6a557d100; function _getEIP712Storage() private pure returns (EIP712Storage storage $) { assembly { $.slot := EIP712StorageLocation } } /** * @dev Initializes the domain separator and parameter caches. * * The meaning of `name` and `version` is specified in * https://eips.ethereum.org/EIPS/eip-712#definition-of-domainseparator[EIP 712]: * * - `name`: the user readable name of the signing domain, i.e. the name of the DApp or the protocol. * - `version`: the current major version of the signing domain. * * NOTE: These parameters cannot be changed except through a xref:learn::upgrading-smart-contracts.adoc[smart * contract upgrade]. */ function __EIP712_init(string memory name, string memory version) internal onlyInitializing { __EIP712_init_unchained(name, version); } function __EIP712_init_unchained(string memory name, string memory version) internal onlyInitializing { EIP712Storage storage $ = _getEIP712Storage(); $._name = name; $._version = version; // Reset prior values in storage if upgrading $._hashedName = 0; $._hashedVersion = 0; } /** * @dev Returns the domain separator for the current chain. */ function _domainSeparatorV4() internal view returns (bytes32) { return _buildDomainSeparator(); } function _buildDomainSeparator() private view returns (bytes32) { return keccak256(abi.encode(TYPE_HASH, _EIP712NameHash(), _EIP712VersionHash(), block.chainid, address(this))); } /** * @dev Given an already https://eips.ethereum.org/EIPS/eip-712#definition-of-hashstruct[hashed struct], this * function returns the hash of the fully encoded EIP712 message for this domain. * * This hash can be used together with {ECDSA-recover} to obtain the signer of a message. For example: * * ```solidity * bytes32 digest = _hashTypedDataV4(keccak256(abi.encode( * keccak256("Mail(address to,string contents)"), * mailTo, * keccak256(bytes(mailContents)) * ))); * address signer = ECDSA.recover(digest, signature); * ``` */ function _hashTypedDataV4(bytes32 structHash) internal view virtual returns (bytes32) { return MessageHashUtils.toTypedDataHash(_domainSeparatorV4(), structHash); } /** * @dev See {IERC-5267}. */ function eip712Domain() public view virtual returns ( bytes1 fields, string memory name, string memory version, uint256 chainId, address verifyingContract, bytes32 salt, uint256[] memory extensions ) { EIP712Storage storage $ = _getEIP712Storage(); // If the hashed name and version in storage are non-zero, the contract hasn't been properly initialized // and the EIP712 domain is not reliable, as it will be missing name and version. require($._hashedName == 0 && $._hashedVersion == 0, "EIP712: Uninitialized"); return ( hex"0f", // 01111 _EIP712Name(), _EIP712Version(), block.chainid, address(this), bytes32(0), new uint256[](0) ); } /** * @dev The name parameter for the EIP712 domain. * * NOTE: This function reads from storage by default, but can be redefined to return a constant value if gas costs * are a concern. */ function _EIP712Name() internal view virtual returns (string memory) { EIP712Storage storage $ = _getEIP712Storage(); return $._name; } /** * @dev The version parameter for the EIP712 domain. * * NOTE: This function reads from storage by default, but can be redefined to return a constant value if gas costs * are a concern. */ function _EIP712Version() internal view virtual returns (string memory) { EIP712Storage storage $ = _getEIP712Storage(); return $._version; } /** * @dev The hash of the name parameter for the EIP712 domain. * * NOTE: In previous versions this function was virtual. In this version you should override `_EIP712Name` instead. */ function _EIP712NameHash() internal view returns (bytes32) { EIP712Storage storage $ = _getEIP712Storage(); string memory name = _EIP712Name(); if (bytes(name).length > 0) { return keccak256(bytes(name)); } else { // If the name is empty, the contract may have been upgraded without initializing the new storage. // We return the name hash in storage if non-zero, otherwise we assume the name is empty by design. bytes32 hashedName = $._hashedName; if (hashedName != 0) { return hashedName; } else { return keccak256(""); } } } /** * @dev The hash of the version parameter for the EIP712 domain. * * NOTE: In previous versions this function was virtual. In this version you should override `_EIP712Version` instead. */ function _EIP712VersionHash() internal view returns (bytes32) { EIP712Storage storage $ = _getEIP712Storage(); string memory version = _EIP712Version(); if (bytes(version).length > 0) { return keccak256(bytes(version)); } else { // If the version is empty, the contract may have been upgraded without initializing the new storage. // We return the version hash in storage if non-zero, otherwise we assume the version is empty by design. bytes32 hashedVersion = $._hashedVersion; if (hashedVersion != 0) { return hashedVersion; } else { return keccak256(""); } } } }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (utils/Nonces.sol) pragma solidity ^0.8.20; import {Initializable} from "../proxy/utils/Initializable.sol"; /** * @dev Provides tracking nonces for addresses. Nonces will only increment. */ abstract contract NoncesUpgradeable is Initializable { /** * @dev The nonce used for an `account` is not the expected current nonce. */ error InvalidAccountNonce(address account, uint256 currentNonce); /// @custom:storage-location erc7201:openzeppelin.storage.Nonces struct NoncesStorage { mapping(address account => uint256) _nonces; } // keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.Nonces")) - 1)) & ~bytes32(uint256(0xff)) bytes32 private constant NoncesStorageLocation = 0x5ab42ced628888259c08ac98db1eb0cf702fc1501344311d8b100cd1bfe4bb00; function _getNoncesStorage() private pure returns (NoncesStorage storage $) { assembly { $.slot := NoncesStorageLocation } } function __Nonces_init() internal onlyInitializing { } function __Nonces_init_unchained() internal onlyInitializing { } /** * @dev Returns the next unused nonce for an address. */ function nonces(address owner) public view virtual returns (uint256) { NoncesStorage storage $ = _getNoncesStorage(); return $._nonces[owner]; } /** * @dev Consumes a nonce. * * Returns the current value and increments nonce. */ function _useNonce(address owner) internal virtual returns (uint256) { NoncesStorage storage $ = _getNoncesStorage(); // For each account, the nonce has an initial value of 0, can only be incremented by one, and cannot be // decremented or reset. This guarantees that the nonce never overflows. unchecked { // It is important to do x++ and not ++x here. return $._nonces[owner]++; } } /** * @dev Same as {_useNonce} but checking that `nonce` is the next valid for `owner`. */ function _useCheckedNonce(address owner, uint256 nonce) internal virtual { uint256 current = _useNonce(owner); if (nonce != current) { revert InvalidAccountNonce(owner, current); } } }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (access/extensions/IAccessControlDefaultAdminRules.sol) pragma solidity ^0.8.20; import {IAccessControl} from "../IAccessControl.sol"; /** * @dev External interface of AccessControlDefaultAdminRules declared to support ERC165 detection. */ interface IAccessControlDefaultAdminRules is IAccessControl { /** * @dev The new default admin is not a valid default admin. */ error AccessControlInvalidDefaultAdmin(address defaultAdmin); /** * @dev At least one of the following rules was violated: * * - The `DEFAULT_ADMIN_ROLE` must only be managed by itself. * - The `DEFAULT_ADMIN_ROLE` must only be held by one account at the time. * - Any `DEFAULT_ADMIN_ROLE` transfer must be in two delayed steps. */ error AccessControlEnforcedDefaultAdminRules(); /** * @dev The delay for transferring the default admin delay is enforced and * the operation must wait until `schedule`. * * NOTE: `schedule` can be 0 indicating there's no transfer scheduled. */ error AccessControlEnforcedDefaultAdminDelay(uint48 schedule); /** * @dev Emitted when a {defaultAdmin} transfer is started, setting `newAdmin` as the next * address to become the {defaultAdmin} by calling {acceptDefaultAdminTransfer} only after `acceptSchedule` * passes. */ event DefaultAdminTransferScheduled(address indexed newAdmin, uint48 acceptSchedule); /** * @dev Emitted when a {pendingDefaultAdmin} is reset if it was never accepted, regardless of its schedule. */ event DefaultAdminTransferCanceled(); /** * @dev Emitted when a {defaultAdminDelay} change is started, setting `newDelay` as the next * delay to be applied between default admin transfer after `effectSchedule` has passed. */ event DefaultAdminDelayChangeScheduled(uint48 newDelay, uint48 effectSchedule); /** * @dev Emitted when a {pendingDefaultAdminDelay} is reset if its schedule didn't pass. */ event DefaultAdminDelayChangeCanceled(); /** * @dev Returns the address of the current `DEFAULT_ADMIN_ROLE` holder. */ function defaultAdmin() external view returns (address); /** * @dev Returns a tuple of a `newAdmin` and an accept schedule. * * After the `schedule` passes, the `newAdmin` will be able to accept the {defaultAdmin} role * by calling {acceptDefaultAdminTransfer}, completing the role transfer. * * A zero value only in `acceptSchedule` indicates no pending admin transfer. * * NOTE: A zero address `newAdmin` means that {defaultAdmin} is being renounced. */ function pendingDefaultAdmin() external view returns (address newAdmin, uint48 acceptSchedule); /** * @dev Returns the delay required to schedule the acceptance of a {defaultAdmin} transfer started. * * This delay will be added to the current timestamp when calling {beginDefaultAdminTransfer} to set * the acceptance schedule. * * NOTE: If a delay change has been scheduled, it will take effect as soon as the schedule passes, making this * function returns the new delay. See {changeDefaultAdminDelay}. */ function defaultAdminDelay() external view returns (uint48); /** * @dev Returns a tuple of `newDelay` and an effect schedule. * * After the `schedule` passes, the `newDelay` will get into effect immediately for every * new {defaultAdmin} transfer started with {beginDefaultAdminTransfer}. * * A zero value only in `effectSchedule` indicates no pending delay change. * * NOTE: A zero value only for `newDelay` means that the next {defaultAdminDelay} * will be zero after the effect schedule. */ function pendingDefaultAdminDelay() external view returns (uint48 newDelay, uint48 effectSchedule); /** * @dev Starts a {defaultAdmin} transfer by setting a {pendingDefaultAdmin} scheduled for acceptance * after the current timestamp plus a {defaultAdminDelay}. * * Requirements: * * - Only can be called by the current {defaultAdmin}. * * Emits a DefaultAdminRoleChangeStarted event. */ function beginDefaultAdminTransfer(address newAdmin) external; /** * @dev Cancels a {defaultAdmin} transfer previously started with {beginDefaultAdminTransfer}. * * A {pendingDefaultAdmin} not yet accepted can also be cancelled with this function. * * Requirements: * * - Only can be called by the current {defaultAdmin}. * * May emit a DefaultAdminTransferCanceled event. */ function cancelDefaultAdminTransfer() external; /** * @dev Completes a {defaultAdmin} transfer previously started with {beginDefaultAdminTransfer}. * * After calling the function: * * - `DEFAULT_ADMIN_ROLE` should be granted to the caller. * - `DEFAULT_ADMIN_ROLE` should be revoked from the previous holder. * - {pendingDefaultAdmin} should be reset to zero values. * * Requirements: * * - Only can be called by the {pendingDefaultAdmin}'s `newAdmin`. * - The {pendingDefaultAdmin}'s `acceptSchedule` should've passed. */ function acceptDefaultAdminTransfer() external; /** * @dev Initiates a {defaultAdminDelay} update by setting a {pendingDefaultAdminDelay} scheduled for getting * into effect after the current timestamp plus a {defaultAdminDelay}. * * This function guarantees that any call to {beginDefaultAdminTransfer} done between the timestamp this * method is called and the {pendingDefaultAdminDelay} effect schedule will use the current {defaultAdminDelay} * set before calling. * * The {pendingDefaultAdminDelay}'s effect schedule is defined in a way that waiting until the schedule and then * calling {beginDefaultAdminTransfer} with the new delay will take at least the same as another {defaultAdmin} * complete transfer (including acceptance). * * The schedule is designed for two scenarios: * * - When the delay is changed for a larger one the schedule is `block.timestamp + newDelay` capped by * {defaultAdminDelayIncreaseWait}. * - When the delay is changed for a shorter one, the schedule is `block.timestamp + (current delay - new delay)`. * * A {pendingDefaultAdminDelay} that never got into effect will be canceled in favor of a new scheduled change. * * Requirements: * * - Only can be called by the current {defaultAdmin}. * * Emits a DefaultAdminDelayChangeScheduled event and may emit a DefaultAdminDelayChangeCanceled event. */ function changeDefaultAdminDelay(uint48 newDelay) external; /** * @dev Cancels a scheduled {defaultAdminDelay} change. * * Requirements: * * - Only can be called by the current {defaultAdmin}. * * May emit a DefaultAdminDelayChangeCanceled event. */ function rollbackDefaultAdminDelay() external; /** * @dev Maximum time in seconds for an increase to {defaultAdminDelay} (that is scheduled using {changeDefaultAdminDelay}) * to take effect. Default to 5 days. * * When the {defaultAdminDelay} is scheduled to be increased, it goes into effect after the new delay has passed with * the purpose of giving enough time for reverting any accidental change (i.e. using milliseconds instead of seconds) * that may lock the contract. However, to avoid excessive schedules, the wait is capped by this function and it can * be overrode for a custom {defaultAdminDelay} increase scheduling. * * IMPORTANT: Make sure to add a reasonable amount of time while overriding this value, otherwise, * there's a risk of setting a high new delay that goes into effect almost immediately without the * possibility of human intervention in the case of an input error (eg. set milliseconds instead of seconds). */ function defaultAdminDelayIncreaseWait() external view returns (uint48); }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (utils/cryptography/MessageHashUtils.sol) pragma solidity ^0.8.20; import {Strings} from "../Strings.sol"; /** * @dev Signature message hash utilities for producing digests to be consumed by {ECDSA} recovery or signing. * * The library provides methods for generating a hash of a message that conforms to the * https://eips.ethereum.org/EIPS/eip-191[EIP 191] and https://eips.ethereum.org/EIPS/eip-712[EIP 712] * specifications. */ library MessageHashUtils { /** * @dev Returns the keccak256 digest of an EIP-191 signed data with version * `0x45` (`personal_sign` messages). * * The digest is calculated by prefixing a bytes32 `messageHash` with * `"\x19Ethereum Signed Message:\n32"` and hashing the result. It corresponds with the * hash signed when using the https://eth.wiki/json-rpc/API#eth_sign[`eth_sign`] JSON-RPC method. * * NOTE: The `messageHash` parameter is intended to be the result of hashing a raw message with * keccak256, although any bytes32 value can be safely used because the final digest will * be re-hashed. * * See {ECDSA-recover}. */ function toEthSignedMessageHash(bytes32 messageHash) internal pure returns (bytes32 digest) { /// @solidity memory-safe-assembly assembly { mstore(0x00, "\x19Ethereum Signed Message:\n32") // 32 is the bytes-length of messageHash mstore(0x1c, messageHash) // 0x1c (28) is the length of the prefix digest := keccak256(0x00, 0x3c) // 0x3c is the length of the prefix (0x1c) + messageHash (0x20) } } /** * @dev Returns the keccak256 digest of an EIP-191 signed data with version * `0x45` (`personal_sign` messages). * * The digest is calculated by prefixing an arbitrary `message` with * `"\x19Ethereum Signed Message:\n" + len(message)` and hashing the result. It corresponds with the * hash signed when using the https://eth.wiki/json-rpc/API#eth_sign[`eth_sign`] JSON-RPC method. * * See {ECDSA-recover}. */ function toEthSignedMessageHash(bytes memory message) internal pure returns (bytes32) { return keccak256(bytes.concat("\x19Ethereum Signed Message:\n", bytes(Strings.toString(message.length)), message)); } /** * @dev Returns the keccak256 digest of an EIP-191 signed data with version * `0x00` (data with intended validator). * * The digest is calculated by prefixing an arbitrary `data` with `"\x19\x00"` and the intended * `validator` address. Then hashing the result. * * See {ECDSA-recover}. */ function toDataWithIntendedValidatorHash(address validator, bytes memory data) internal pure returns (bytes32) { return keccak256(abi.encodePacked(hex"19_00", validator, data)); } /** * @dev Returns the keccak256 digest of an EIP-712 typed data (EIP-191 version `0x01`). * * The digest is calculated from a `domainSeparator` and a `structHash`, by prefixing them with * `\x19\x01` and hashing the result. It corresponds to the hash signed by the * https://eips.ethereum.org/EIPS/eip-712[`eth_signTypedData`] JSON-RPC method as part of EIP-712. * * See {ECDSA-recover}. */ function toTypedDataHash(bytes32 domainSeparator, bytes32 structHash) internal pure returns (bytes32 digest) { /// @solidity memory-safe-assembly assembly { let ptr := mload(0x40) mstore(ptr, hex"19_01") mstore(add(ptr, 0x02), domainSeparator) mstore(add(ptr, 0x22), structHash) digest := keccak256(ptr, 0x42) } } }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (interfaces/IERC5267.sol) pragma solidity ^0.8.20; interface IERC5267 { /** * @dev MAY be emitted to signal that the domain could have changed. */ event EIP712DomainChanged(); /** * @dev returns the fields and values that describe the domain separator used by this contract for EIP-712 * signature. */ function eip712Domain() external view returns ( bytes1 fields, string memory name, string memory version, uint256 chainId, address verifyingContract, bytes32 salt, uint256[] memory extensions ); }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (access/IAccessControl.sol) pragma solidity ^0.8.20; /** * @dev External interface of AccessControl declared to support ERC165 detection. */ interface IAccessControl { /** * @dev The `account` is missing a role. */ error AccessControlUnauthorizedAccount(address account, bytes32 neededRole); /** * @dev The caller of a function is not the expected one. * * NOTE: Don't confuse with {AccessControlUnauthorizedAccount}. */ error AccessControlBadConfirmation(); /** * @dev Emitted when `newAdminRole` is set as ``role``'s admin role, replacing `previousAdminRole` * * `DEFAULT_ADMIN_ROLE` is the starting admin for all roles, despite * {RoleAdminChanged} not being emitted signaling this. */ event RoleAdminChanged(bytes32 indexed role, bytes32 indexed previousAdminRole, bytes32 indexed newAdminRole); /** * @dev Emitted when `account` is granted `role`. * * `sender` is the account that originated the contract call, an admin role * bearer except when using {AccessControl-_setupRole}. */ event RoleGranted(bytes32 indexed role, address indexed account, address indexed sender); /** * @dev Emitted when `account` is revoked `role`. * * `sender` is the account that originated the contract call: * - if using `revokeRole`, it is the admin role bearer * - if using `renounceRole`, it is the role bearer (i.e. `account`) */ event RoleRevoked(bytes32 indexed role, address indexed account, address indexed sender); /** * @dev Returns `true` if `account` has been granted `role`. */ function hasRole(bytes32 role, address account) external view returns (bool); /** * @dev Returns the admin role that controls `role`. See {grantRole} and * {revokeRole}. * * To change a role's admin, use {AccessControl-_setRoleAdmin}. */ function getRoleAdmin(bytes32 role) external view returns (bytes32); /** * @dev Grants `role` to `account`. * * If `account` had not been already granted `role`, emits a {RoleGranted} * event. * * Requirements: * * - the caller must have ``role``'s admin role. */ function grantRole(bytes32 role, address account) external; /** * @dev Revokes `role` from `account`. * * If `account` had been granted `role`, emits a {RoleRevoked} event. * * Requirements: * * - the caller must have ``role``'s admin role. */ function revokeRole(bytes32 role, address account) external; /** * @dev Revokes `role` from the calling account. * * Roles are often managed via {grantRole} and {revokeRole}: this function's * purpose is to provide a mechanism for accounts to lose their privileges * if they are compromised (such as when a trusted device is misplaced). * * If the calling account had been granted `role`, emits a {RoleRevoked} * event. * * Requirements: * * - the caller must be `callerConfirmation`. */ function renounceRole(bytes32 role, address callerConfirmation) external; }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (utils/Strings.sol) pragma solidity ^0.8.20; import {Math} from "./math/Math.sol"; import {SignedMath} from "./math/SignedMath.sol"; /** * @dev String operations. */ library Strings { bytes16 private constant HEX_DIGITS = "0123456789abcdef"; uint8 private constant ADDRESS_LENGTH = 20; /** * @dev The `value` string doesn't fit in the specified `length`. */ error StringsInsufficientHexLength(uint256 value, uint256 length); /** * @dev Converts a `uint256` to its ASCII `string` decimal representation. */ function toString(uint256 value) internal pure returns (string memory) { unchecked { uint256 length = Math.log10(value) + 1; string memory buffer = new string(length); uint256 ptr; /// @solidity memory-safe-assembly assembly { ptr := add(buffer, add(32, length)) } while (true) { ptr--; /// @solidity memory-safe-assembly assembly { mstore8(ptr, byte(mod(value, 10), HEX_DIGITS)) } value /= 10; if (value == 0) break; } return buffer; } } /** * @dev Converts a `int256` to its ASCII `string` decimal representation. */ function toStringSigned(int256 value) internal pure returns (string memory) { return string.concat(value < 0 ? "-" : "", toString(SignedMath.abs(value))); } /** * @dev Converts a `uint256` to its ASCII `string` hexadecimal representation. */ function toHexString(uint256 value) internal pure returns (string memory) { unchecked { return toHexString(value, Math.log256(value) + 1); } } /** * @dev Converts a `uint256` to its ASCII `string` hexadecimal representation with fixed length. */ function toHexString(uint256 value, uint256 length) internal pure returns (string memory) { uint256 localValue = value; bytes memory buffer = new bytes(2 * length + 2); buffer[0] = "0"; buffer[1] = "x"; for (uint256 i = 2 * length + 1; i > 1; --i) { buffer[i] = HEX_DIGITS[localValue & 0xf]; localValue >>= 4; } if (localValue != 0) { revert StringsInsufficientHexLength(value, length); } return string(buffer); } /** * @dev Converts an `address` with fixed length of 20 bytes to its not checksummed ASCII `string` hexadecimal * representation. */ function toHexString(address addr) internal pure returns (string memory) { return toHexString(uint256(uint160(addr)), ADDRESS_LENGTH); } /** * @dev Returns true if the two strings are equal. */ function equal(string memory a, string memory b) internal pure returns (bool) { return bytes(a).length == bytes(b).length && keccak256(bytes(a)) == keccak256(bytes(b)); } }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (utils/math/Math.sol) pragma solidity ^0.8.20; /** * @dev Standard math utilities missing in the Solidity language. */ library Math { /** * @dev Muldiv operation overflow. */ error MathOverflowedMulDiv(); enum Rounding { Floor, // Toward negative infinity Ceil, // Toward positive infinity Trunc, // Toward zero Expand // Away from zero } /** * @dev Returns the addition of two unsigned integers, with an overflow flag. */ function tryAdd(uint256 a, uint256 b) internal pure returns (bool, uint256) { unchecked { uint256 c = a + b; if (c < a) return (false, 0); return (true, c); } } /** * @dev Returns the subtraction of two unsigned integers, with an overflow flag. */ function trySub(uint256 a, uint256 b) internal pure returns (bool, uint256) { unchecked { if (b > a) return (false, 0); return (true, a - b); } } /** * @dev Returns the multiplication of two unsigned integers, with an overflow flag. */ function tryMul(uint256 a, uint256 b) internal pure returns (bool, uint256) { unchecked { // Gas optimization: this is cheaper than requiring 'a' not being zero, but the // benefit is lost if 'b' is also tested. // See: https://github.com/OpenZeppelin/openzeppelin-contracts/pull/522 if (a == 0) return (true, 0); uint256 c = a * b; if (c / a != b) return (false, 0); return (true, c); } } /** * @dev Returns the division of two unsigned integers, with a division by zero flag. */ function tryDiv(uint256 a, uint256 b) internal pure returns (bool, uint256) { unchecked { if (b == 0) return (false, 0); return (true, a / b); } } /** * @dev Returns the remainder of dividing two unsigned integers, with a division by zero flag. */ function tryMod(uint256 a, uint256 b) internal pure returns (bool, uint256) { unchecked { if (b == 0) return (false, 0); return (true, a % b); } } /** * @dev Returns the largest of two numbers. */ function max(uint256 a, uint256 b) internal pure returns (uint256) { return a > b ? a : b; } /** * @dev Returns the smallest of two numbers. */ function min(uint256 a, uint256 b) internal pure returns (uint256) { return a < b ? a : b; } /** * @dev Returns the average of two numbers. The result is rounded towards * zero. */ function average(uint256 a, uint256 b) internal pure returns (uint256) { // (a + b) / 2 can overflow. return (a & b) + (a ^ b) / 2; } /** * @dev Returns the ceiling of the division of two numbers. * * This differs from standard division with `/` in that it rounds towards infinity instead * of rounding towards zero. */ function ceilDiv(uint256 a, uint256 b) internal pure returns (uint256) { if (b == 0) { // Guarantee the same behavior as in a regular Solidity division. return a / b; } // (a + b - 1) / b can overflow on addition, so we distribute. return a == 0 ? 0 : (a - 1) / b + 1; } /** * @notice Calculates floor(x * y / denominator) with full precision. Throws if result overflows a uint256 or * denominator == 0. * @dev Original credit to Remco Bloemen under MIT license (https://xn--2-umb.com/21/muldiv) with further edits by * Uniswap Labs also under MIT license. */ function mulDiv(uint256 x, uint256 y, uint256 denominator) internal pure returns (uint256 result) { unchecked { // 512-bit multiply [prod1 prod0] = x * y. Compute the product mod 2^256 and mod 2^256 - 1, then use // use the Chinese Remainder Theorem to reconstruct the 512 bit result. The result is stored in two 256 // variables such that product = prod1 * 2^256 + prod0. uint256 prod0 = x * y; // Least significant 256 bits of the product uint256 prod1; // Most significant 256 bits of the product assembly { let mm := mulmod(x, y, not(0)) prod1 := sub(sub(mm, prod0), lt(mm, prod0)) } // Handle non-overflow cases, 256 by 256 division. if (prod1 == 0) { // Solidity will revert if denominator == 0, unlike the div opcode on its own. // The surrounding unchecked block does not change this fact. // See https://docs.soliditylang.org/en/latest/control-structures.html#checked-or-unchecked-arithmetic. return prod0 / denominator; } // Make sure the result is less than 2^256. Also prevents denominator == 0. if (denominator <= prod1) { revert MathOverflowedMulDiv(); } /////////////////////////////////////////////// // 512 by 256 division. /////////////////////////////////////////////// // Make division exact by subtracting the remainder from [prod1 prod0]. uint256 remainder; assembly { // Compute remainder using mulmod. remainder := mulmod(x, y, denominator) // Subtract 256 bit number from 512 bit number. prod1 := sub(prod1, gt(remainder, prod0)) prod0 := sub(prod0, remainder) } // Factor powers of two out of denominator and compute largest power of two divisor of denominator. // Always >= 1. See https://cs.stackexchange.com/q/138556/92363. uint256 twos = denominator & (0 - denominator); assembly { // Divide denominator by twos. denominator := div(denominator, twos) // Divide [prod1 prod0] by twos. prod0 := div(prod0, twos) // Flip twos such that it is 2^256 / twos. If twos is zero, then it becomes one. twos := add(div(sub(0, twos), twos), 1) } // Shift in bits from prod1 into prod0. prod0 |= prod1 * twos; // Invert denominator mod 2^256. Now that denominator is an odd number, it has an inverse modulo 2^256 such // that denominator * inv = 1 mod 2^256. Compute the inverse by starting with a seed that is correct for // four bits. That is, denominator * inv = 1 mod 2^4. uint256 inverse = (3 * denominator) ^ 2; // Use the Newton-Raphson iteration to improve the precision. Thanks to Hensel's lifting lemma, this also // works in modular arithmetic, doubling the correct bits in each step. inverse *= 2 - denominator * inverse; // inverse mod 2^8 inverse *= 2 - denominator * inverse; // inverse mod 2^16 inverse *= 2 - denominator * inverse; // inverse mod 2^32 inverse *= 2 - denominator * inverse; // inverse mod 2^64 inverse *= 2 - denominator * inverse; // inverse mod 2^128 inverse *= 2 - denominator * inverse; // inverse mod 2^256 // Because the division is now exact we can divide by multiplying with the modular inverse of denominator. // This will give us the correct result modulo 2^256. Since the preconditions guarantee that the outcome is // less than 2^256, this is the final result. We don't need to compute the high bits of the result and prod1 // is no longer required. result = prod0 * inverse; return result; } } /** * @notice Calculates x * y / denominator with full precision, following the selected rounding direction. */ function mulDiv(uint256 x, uint256 y, uint256 denominator, Rounding rounding) internal pure returns (uint256) { uint256 result = mulDiv(x, y, denominator); if (unsignedRoundsUp(rounding) && mulmod(x, y, denominator) > 0) { result += 1; } return result; } /** * @dev Returns the square root of a number. If the number is not a perfect square, the value is rounded * towards zero. * * Inspired by Henry S. Warren, Jr.'s "Hacker's Delight" (Chapter 11). */ function sqrt(uint256 a) internal pure returns (uint256) { if (a == 0) { return 0; } // For our first guess, we get the biggest power of 2 which is smaller than the square root of the target. // // We know that the "msb" (most significant bit) of our target number `a` is a power of 2 such that we have // `msb(a) <= a < 2*msb(a)`. This value can be written `msb(a)=2**k` with `k=log2(a)`. // // This can be rewritten `2**log2(a) <= a < 2**(log2(a) + 1)` // → `sqrt(2**k) <= sqrt(a) < sqrt(2**(k+1))` // → `2**(k/2) <= sqrt(a) < 2**((k+1)/2) <= 2**(k/2 + 1)` // // Consequently, `2**(log2(a) / 2)` is a good first approximation of `sqrt(a)` with at least 1 correct bit. uint256 result = 1 << (log2(a) >> 1); // At this point `result` is an estimation with one bit of precision. We know the true value is a uint128, // since it is the square root of a uint256. Newton's method converges quadratically (precision doubles at // every iteration). We thus need at most 7 iteration to turn our partial result with one bit of precision // into the expected uint128 result. unchecked { result = (result + a / result) >> 1; result = (result + a / result) >> 1; result = (result + a / result) >> 1; result = (result + a / result) >> 1; result = (result + a / result) >> 1; result = (result + a / result) >> 1; result = (result + a / result) >> 1; return min(result, a / result); } } /** * @notice Calculates sqrt(a), following the selected rounding direction. */ function sqrt(uint256 a, Rounding rounding) internal pure returns (uint256) { unchecked { uint256 result = sqrt(a); return result + (unsignedRoundsUp(rounding) && result * result < a ? 1 : 0); } } /** * @dev Return the log in base 2 of a positive value rounded towards zero. * Returns 0 if given 0. */ function log2(uint256 value) internal pure returns (uint256) { uint256 result = 0; unchecked { if (value >> 128 > 0) { value >>= 128; result += 128; } if (value >> 64 > 0) { value >>= 64; result += 64; } if (value >> 32 > 0) { value >>= 32; result += 32; } if (value >> 16 > 0) { value >>= 16; result += 16; } if (value >> 8 > 0) { value >>= 8; result += 8; } if (value >> 4 > 0) { value >>= 4; result += 4; } if (value >> 2 > 0) { value >>= 2; result += 2; } if (value >> 1 > 0) { result += 1; } } return result; } /** * @dev Return the log in base 2, following the selected rounding direction, of a positive value. * Returns 0 if given 0. */ function log2(uint256 value, Rounding rounding) internal pure returns (uint256) { unchecked { uint256 result = log2(value); return result + (unsignedRoundsUp(rounding) && 1 << result < value ? 1 : 0); } } /** * @dev Return the log in base 10 of a positive value rounded towards zero. * Returns 0 if given 0. */ function log10(uint256 value) internal pure returns (uint256) { uint256 result = 0; unchecked { if (value >= 10 ** 64) { value /= 10 ** 64; result += 64; } if (value >= 10 ** 32) { value /= 10 ** 32; result += 32; } if (value >= 10 ** 16) { value /= 10 ** 16; result += 16; } if (value >= 10 ** 8) { value /= 10 ** 8; result += 8; } if (value >= 10 ** 4) { value /= 10 ** 4; result += 4; } if (value >= 10 ** 2) { value /= 10 ** 2; result += 2; } if (value >= 10 ** 1) { result += 1; } } return result; } /** * @dev Return the log in base 10, following the selected rounding direction, of a positive value. * Returns 0 if given 0. */ function log10(uint256 value, Rounding rounding) internal pure returns (uint256) { unchecked { uint256 result = log10(value); return result + (unsignedRoundsUp(rounding) && 10 ** result < value ? 1 : 0); } } /** * @dev Return the log in base 256 of a positive value rounded towards zero. * Returns 0 if given 0. * * Adding one to the result gives the number of pairs of hex symbols needed to represent `value` as a hex string. */ function log256(uint256 value) internal pure returns (uint256) { uint256 result = 0; unchecked { if (value >> 128 > 0) { value >>= 128; result += 16; } if (value >> 64 > 0) { value >>= 64; result += 8; } if (value >> 32 > 0) { value >>= 32; result += 4; } if (value >> 16 > 0) { value >>= 16; result += 2; } if (value >> 8 > 0) { result += 1; } } return result; } /** * @dev Return the log in base 256, following the selected rounding direction, of a positive value. * Returns 0 if given 0. */ function log256(uint256 value, Rounding rounding) internal pure returns (uint256) { unchecked { uint256 result = log256(value); return result + (unsignedRoundsUp(rounding) && 1 << (result << 3) < value ? 1 : 0); } } /** * @dev Returns whether a provided rounding mode is considered rounding up for unsigned integers. */ function unsignedRoundsUp(Rounding rounding) internal pure returns (bool) { return uint8(rounding) % 2 == 1; } }
// SPDX-License-Identifier: MIT // OpenZeppelin Contracts (last updated v5.0.0) (utils/math/SignedMath.sol) pragma solidity ^0.8.20; /** * @dev Standard signed math utilities missing in the Solidity language. */ library SignedMath { /** * @dev Returns the largest of two signed numbers. */ function max(int256 a, int256 b) internal pure returns (int256) { return a > b ? a : b; } /** * @dev Returns the smallest of two signed numbers. */ function min(int256 a, int256 b) internal pure returns (int256) { return a < b ? a : b; } /** * @dev Returns the average of two signed numbers without overflow. * The result is rounded towards zero. */ function average(int256 a, int256 b) internal pure returns (int256) { // Formula from the book "Hacker's Delight" int256 x = (a & b) + ((a ^ b) >> 1); return x + (int256(uint256(x) >> 255) & (a ^ b)); } /** * @dev Returns the absolute unsigned value of a signed value. */ function abs(int256 n) internal pure returns (uint256) { unchecked { // must be unchecked in order to support `n = type(int256).min` return uint256(n >= 0 ? n : -n); } } }
{ "remappings": [ "ds-test/=lib/forge-std/lib/ds-test/src/", "forge-std/=lib/forge-std/src/", "openzeppelin-contracts/=lib/openzeppelin-contracts/contracts/", "openzeppelin-contracts-upgradeable/=lib/openzeppelin-contracts-upgradeable/contracts/", "utils/=lib/utils/", "@openzeppelin/=lib/openzeppelin-contracts/", "solidity-stringutils/=lib/openzeppelin-foundry-upgrades/lib/solidity-stringutils/", "openzeppelin-foundry-upgrades/=lib/openzeppelin-foundry-upgrades/src/", "src/=src/" ], "optimizer": { "enabled": true, "runs": 200 }, "metadata": { "useLiteralContent": false, "bytecodeHash": "ipfs", "appendCBOR": true }, "outputSelection": { "*": { "*": [ "evm.bytecode", "evm.deployedBytecode", "devdoc", "userdoc", "metadata", "abi" ] } }, "evmVersion": "shanghai", "viaIR": false, "libraries": {} }
Contract Security Audit
- No Contract Security Audit Submitted- Submit Audit Here
[{"inputs":[],"stateMutability":"nonpayable","type":"constructor"},{"inputs":[{"internalType":"address","name":"target","type":"address"}],"name":"AddressEmptyCode","type":"error"},{"inputs":[{"internalType":"address","name":"account","type":"address"}],"name":"AddressInsufficientBalance","type":"error"},{"inputs":[],"name":"AmountIsZero","type":"error"},{"inputs":[],"name":"AmountTooBig","type":"error"},{"inputs":[],"name":"ApprovalFailed","type":"error"},{"inputs":[],"name":"BeginInPast","type":"error"},{"inputs":[],"name":"Blacklisted","type":"error"},{"inputs":[],"name":"BondFinished","type":"error"},{"inputs":[],"name":"BondNotFinished","type":"error"},{"inputs":[],"name":"BondNotStarted","type":"error"},{"inputs":[],"name":"ECDSAInvalidSignature","type":"error"},{"inputs":[{"internalType":"uint256","name":"length","type":"uint256"}],"name":"ECDSAInvalidSignatureLength","type":"error"},{"inputs":[{"internalType":"bytes32","name":"s","type":"bytes32"}],"name":"ECDSAInvalidSignatureS","type":"error"},{"inputs":[{"internalType":"address","name":"spender","type":"address"},{"internalType":"uint256","name":"allowance","type":"uint256"},{"internalType":"uint256","name":"needed","type":"uint256"}],"name":"ERC20InsufficientAllowance","type":"error"},{"inputs":[{"internalType":"address","name":"sender","type":"address"},{"internalType":"uint256","name":"balance","type":"uint256"},{"internalType":"uint256","name":"needed","type":"uint256"}],"name":"ERC20InsufficientBalance","type":"error"},{"inputs":[{"internalType":"address","name":"approver","type":"address"}],"name":"ERC20InvalidApprover","type":"error"},{"inputs":[{"internalType":"address","name":"receiver","type":"address"}],"name":"ERC20InvalidReceiver","type":"error"},{"inputs":[{"internalType":"address","name":"sender","type":"address"}],"name":"ERC20InvalidSender","type":"error"},{"inputs":[{"internalType":"address","name":"spender","type":"address"}],"name":"ERC20InvalidSpender","type":"error"},{"inputs":[{"internalType":"uint256","name":"deadline","type":"uint256"}],"name":"ERC2612ExpiredSignature","type":"error"},{"inputs":[{"internalType":"address","name":"signer","type":"address"},{"internalType":"address","name":"owner","type":"address"}],"name":"ERC2612InvalidSigner","type":"error"},{"inputs":[],"name":"EnforcedPause","type":"error"},{"inputs":[],"name":"ExpectedPause","type":"error"},{"inputs":[],"name":"FailedInnerCall","type":"error"},{"inputs":[{"internalType":"address","name":"account","type":"address"},{"internalType":"uint256","name":"currentNonce","type":"uint256"}],"name":"InvalidAccountNonce","type":"error"},{"inputs":[],"name":"InvalidInitialization","type":"error"},{"inputs":[],"name":"InvalidName","type":"error"},{"inputs":[],"name":"InvalidSymbol","type":"error"},{"inputs":[],"name":"NotAuthorized","type":"error"},{"inputs":[],"name":"NotInitializing","type":"error"},{"inputs":[],"name":"PARNotRequired","type":"error"},{"inputs":[],"name":"PARNotSuccessful","type":"error"},{"inputs":[],"name":"PARUSD0InputExceedsBalance","type":"error"},{"inputs":[],"name":"ReentrancyGuardReentrantCall","type":"error"},{"inputs":[{"internalType":"address","name":"token","type":"address"}],"name":"SafeERC20FailedOperation","type":"error"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"owner","type":"address"},{"indexed":true,"internalType":"address","name":"spender","type":"address"},{"indexed":false,"internalType":"uint256","name":"value","type":"uint256"}],"name":"Approval","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"user","type":"address"},{"indexed":false,"internalType":"uint256","name":"amount","type":"uint256"}],"name":"BondUnwrapped","type":"event"},{"anonymous":false,"inputs":[],"name":"EIP712DomainChanged","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"account","type":"address"},{"indexed":false,"internalType":"uint256","name":"balance","type":"uint256"}],"name":"EmergencyWithdraw","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"uint64","name":"version","type":"uint64"}],"name":"Initialized","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"user","type":"address"},{"indexed":false,"internalType":"uint256","name":"amount","type":"uint256"}],"name":"PARMechanismActivated","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"address","name":"account","type":"address"}],"name":"Paused","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"from","type":"address"},{"indexed":true,"internalType":"address","name":"to","type":"address"},{"indexed":false,"internalType":"uint256","name":"value","type":"uint256"}],"name":"Transfer","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"address","name":"account","type":"address"}],"name":"Unpaused","type":"event"},{"inputs":[],"name":"DOMAIN_SEPARATOR","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"Usd0PPStorageV0Location","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"owner","type":"address"},{"internalType":"address","name":"spender","type":"address"}],"name":"allowance","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"spender","type":"address"},{"internalType":"uint256","name":"value","type":"uint256"}],"name":"approve","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"account","type":"address"}],"name":"balanceOf","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"decimals","outputs":[{"internalType":"uint8","name":"","type":"uint8"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"eip712Domain","outputs":[{"internalType":"bytes1","name":"fields","type":"bytes1"},{"internalType":"string","name":"name","type":"string"},{"internalType":"string","name":"version","type":"string"},{"internalType":"uint256","name":"chainId","type":"uint256"},{"internalType":"address","name":"verifyingContract","type":"address"},{"internalType":"bytes32","name":"salt","type":"bytes32"},{"internalType":"uint256[]","name":"extensions","type":"uint256[]"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"safeAccount","type":"address"}],"name":"emergencyWithdraw","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"getEndTime","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"getStartTime","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"registryContract","type":"address"},{"internalType":"string","name":"name_","type":"string"},{"internalType":"string","name":"symbol_","type":"string"},{"internalType":"uint256","name":"startTime","type":"uint256"}],"name":"initialize","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"uint256","name":"amountUsd0","type":"uint256"}],"name":"mint","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"uint256","name":"amountUsd0","type":"uint256"},{"internalType":"uint256","name":"deadline","type":"uint256"},{"internalType":"uint8","name":"v","type":"uint8"},{"internalType":"bytes32","name":"r","type":"bytes32"},{"internalType":"bytes32","name":"s","type":"bytes32"}],"name":"mintWithPermit","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"name","outputs":[{"internalType":"string","name":"","type":"string"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"owner","type":"address"}],"name":"nonces","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"pause","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"paused","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"owner","type":"address"},{"internalType":"address","name":"spender","type":"address"},{"internalType":"uint256","name":"value","type":"uint256"},{"internalType":"uint256","name":"deadline","type":"uint256"},{"internalType":"uint8","name":"v","type":"uint8"},{"internalType":"bytes32","name":"r","type":"bytes32"},{"internalType":"bytes32","name":"s","type":"bytes32"}],"name":"permit","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"symbol","outputs":[{"internalType":"string","name":"","type":"string"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"totalBondTimes","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"pure","type":"function"},{"inputs":[],"name":"totalSupply","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"recipient","type":"address"},{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"transfer","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"sender","type":"address"},{"internalType":"address","name":"recipient","type":"address"},{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"transferFrom","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"uint256","name":"parUsd0Amount","type":"uint256"},{"internalType":"uint256","name":"minimumPARMechanismGainedAmount","type":"uint256"}],"name":"triggerPARMechanismCurvepool","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"unpause","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"unwrap","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"unwrapPegMaintainer","outputs":[],"stateMutability":"nonpayable","type":"function"}]
Contract Creation Code
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
Deployed Bytecode
0x608060405234801561000f575f80fd5b50600436106101a1575f3560e01c806370a08231116100f3578063a9059cbb11610093578063d0248fb41161006e578063d0248fb41461035f578063d505accf14610372578063dd62ed3e14610385578063fd02ffb714610398575f80fd5b8063a9059cbb14610324578063ac8c3cd514610337578063c828371e1461034b575f80fd5b80638456cb59116100ce5780638456cb59146102e657806384b0196e146102ee57806395d89b4114610309578063a0712d6814610311575f80fd5b806370a08231146102b65780637ecebe00146102c95780638220d85a146102dc575f80fd5b80633644e5151161015e578063439f5ac211610139578063439f5ac2146102715780634d12d4b6146102795780635c975abb1461028c5780636ff1c9bc146102a3575f80fd5b80633644e5151461024e5780633e54957d146102565780633f4ba83a14610269575f80fd5b806306fdde03146101a5578063095ea7b3146101c35780630c8ff741146101e657806318160ddd146101fb57806323b872dd1461022c578063313ce5671461023f575b5f80fd5b6101ad6103a0565b6040516101ba9190612210565b60405180910390f35b6101d66101d1366004612236565b610445565b60405190151581526020016101ba565b6101f96101f4366004612260565b61045e565b005b7f52c63247e1f47db19d5ce0460030c497f067ca4cebf71ba98eeadabe20bace02545b6040519081526020016101ba565b6101d661023a366004612277565b610581565b604051601281526020016101ba565b61021e610597565b6101f96102643660046122b5565b6105a5565b6101f9610a53565b61021e610a8c565b6101f9610287366004612372565b610ab4565b5f805160206128068339815191525460ff166101d6565b6101f96102b13660046123eb565b610d76565b61021e6102c43660046123eb565b610eec565b61021e6102d73660046123eb565b610f1c565b6307861f8061021e565b6101f9610f26565b6102f6610f5f565b6040516101ba9796959493929190612406565b6101ad61100d565b6101f961031f366004612260565b61104b565b6101d6610332366004612236565b6110f6565b61021e5f8051602061278683398151915281565b5f805160206127868339815191525461021e565b6101f961036d3660046124af565b611101565b6101f96103803660046124f2565b6111a3565b61021e61039336600461255b565b6112f8565b6101f9611341565b60605f5f805160206127a68339815191525b90508060030180546103c390612592565b80601f01602080910402602001604051908101604052809291908181526020018280546103ef90612592565b801561043a5780601f106104115761010080835404028352916020019161043a565b820191905f5260205f20905b81548152906001019060200180831161041d57829003601f168201915b505050505091505090565b5f3361045281858561140e565b60019150505b92915050565b610466611420565b61046e611457565b5f805160206127e6833981519152545f80516020612786833981519152906104bf906001600160a01b03167fbdc53f83072c71e1e9325d88e502a5ab36b8615bedc542c6ba6e6ae86abde813611487565b80544210156104e157604051631c61403d60e01b815260040160405180910390fd5b5f6104eb33610eec565b90508281101561050e57604051636b2f218360e01b815260040160405180910390fd5b6105183384611511565b6003820154610531906001600160a01b03163385611545565b60405183815233907f483f448a09ee336a602fd2f2af6ad12bdf4aac53b0c7697353938f82930c3f7b9060200160405180910390a2505061057e60015f8051602061282683398151915255565b50565b5f61058d8484846115b7565b90505b9392505050565b5f6105a06115da565b905090565b6105ad611420565b6105b5611457565b5f805160206127e6833981519152545f8051602061278683398151915290610606906001600160a01b03167fbdc53f83072c71e1e9325d88e502a5ab36b8615bedc542c6ba6e6ae86abde813611487565b805442101561062857604051631c61403d60e01b815260040160405180910390fd5b821580610633575081155b15610651576040516310eb483f60e21b815260040160405180910390fd5b60038101546040516370a0823160e01b81523060048201526001600160a01b03909116905f9082906370a0823190602401602060405180830381865afa15801561069d573d5f803e3d5ffd5b505050506040513d601f19601f820116820180604052508101906106c191906125ca565b90505f6106cd30610eec565b9050858210156106f057604051630775424d60e01b815260040160405180910390fd5b60405163095ea7b360e01b8152731d08e7adc263cfc70b1babe6dc5bb339c16eec526004820181905260248201889052906001600160a01b0385169063095ea7b3906044016020604051808303815f875af1158015610751573d5f803e3d5ffd5b505050506040513d601f19601f8201168201806040525081019061077591906125e1565b610792576040516340b27c2160e11b815260040160405180910390fd5b5f6001600160a01b03821663ddc1f59d8260018b6107b08c82612614565b6040516001600160e01b031960e087901b168152600f94850b60048201529290930b60248301526044820152606481019190915230608482015260a4016020604051808303815f875af1158015610809573d5f803e3d5ffd5b505050506040513d601f19601f8201168201806040525081019061082d91906125ca565b9050878110156108505760405163f4ca2f0560e01b815260040160405180910390fd5b5f8361085b30610eec565b6108659190612627565b90506108713082611511565b60405181815230907f483f448a09ee336a602fd2f2af6ad12bdf4aac53b0c7697353938f82930c3f7b9060200160405180910390a25f6108b18a83612627565b6001890154604051631c2d8fb360e31b81527f3c74554757c1203534218042b8d76bc79e3c883a6630fe8cc9cc4374e80f38646004820152919250610955916001600160a01b039091169063e16c7d9890602401602060405180830381865afa158015610920573d5f803e3d5ffd5b505050506040513d601f19601f82011682018060405250810190610944919061263a565b6001600160a01b0389169083611545565b7f52c63247e1f47db19d5ce0460030c497f067ca4cebf71ba98eeadabe20bace02546040516370a0823160e01b81523060048201526001600160a01b038916906370a0823190602401602060405180830381865afa1580156109b9573d5f803e3d5ffd5b505050506040513d601f19601f820116820180604052508101906109dd91906125ca565b10156109fc57604051636dc5671160e11b815260040160405180910390fd5b60405181815233907fb125f006d2cd34524a1bde580fa62b518fc885078e39aa1a2255ef7861f94b4f9060200160405180910390a25050505050505050610a4f60015f8051602061282683398151915255565b5050565b5f805160206127e6833981519152545f8051602061278683398151915290610a84906001600160a01b03165f611487565b61057e6115e3565b5f8051602061278683398151915280545f9190610aae906307861f8090612614565b91505090565b7ff0c57e16840df040f15088dc2f81fe391c3923bec73e23a9662efc9c229c6a008054600160401b810460ff16159067ffffffffffffffff165f81158015610af95750825b90505f8267ffffffffffffffff166001148015610b155750303b155b905081158015610b23575080155b15610b415760405163f92ee8a960e01b815260040160405180910390fd5b845467ffffffffffffffff191660011785558315610b6b57845460ff60401b1916600160401b1785555b610b76888888611642565b610b8088886116a5565b610b89886116fb565b610bac88604051806040016040528060018152602001603160f81b815250611703565b610bb4611762565b5f5f805160206127868339815191528781556001810180546001600160a01b0319166001600160a01b038d16908117909155604051631c2d8fb360e31b81527f99fc6866b8a0382ea875d05d6adb7080c9f332c7f87adc01f2bd8c1dc2991c7760048201529192509063e16c7d9890602401602060405180830381865afa158015610c41573d5f803e3d5ffd5b505050506040513d601f19601f82011682018060405250810190610c65919061263a565b6003820180546001600160a01b0319166001600160a01b03928316179055604051631c2d8fb360e31b81527f5a92fc7720b8c2c63ba7a9aec6e2269feb0e8c23b216e4162abc2b6ed5e5a22b6004820152908b169063e16c7d9890602401602060405180830381865afa158015610cde573d5f803e3d5ffd5b505050506040513d601f19601f82011682018060405250810190610d02919061263a565b60029190910180546001600160a01b0319166001600160a01b039092169190911790558315610d6b57845460ff60401b19168555604051600181527fc7f505b2f371ae2175ee4913f4499e1f2633a7b5936321eed1cdaeb6115181d29060200160405180910390a15b505050505050505050565b5f5f805160206127868339815191526002810154604051632474521560e21b81525f60048201523360248201529192506001600160a01b0316906391d1485490604401602060405180830381865afa158015610dd4573d5f803e3d5ffd5b505050506040513d601f19601f82011682018060405250810190610df891906125e1565b610e155760405163ea8e4eb560e01b815260040160405180910390fd5b60038101546040516370a0823160e01b81523060048201526001600160a01b03909116905f9082906370a0823190602401602060405180830381865afa158015610e61573d5f803e3d5ffd5b505050506040513d601f19601f82011682018060405250810190610e8591906125ca565b9050610e9b6001600160a01b0383168583611545565b610ea361176a565b836001600160a01b03167f5fafa99d0643513820be26656b45130b01e1c03062e1266bf36f88cbd3bd969582604051610ede91815260200190565b60405180910390a250505050565b5f805f805160206127a68339815191525b6001600160a01b039093165f9081526020939093525050604090205490565b5f610458826117b2565b5f805160206127e6833981519152545f8051602061278683398151915290610f57906001600160a01b03165f611487565b61057e61176a565b5f60608082808083815f805160206127c68339815191528054909150158015610f8a57506001810154155b610fd35760405162461bcd60e51b81526020600482015260156024820152741152540dcc4c8e88155b9a5b9a5d1a585b1a5e9959605a1b60448201526064015b60405180910390fd5b610fdb6117da565b610fe3611818565b604080515f80825260208201909252600f60f81b9c939b5091995046985030975095509350915050565b7f52c63247e1f47db19d5ce0460030c497f067ca4cebf71ba98eeadabe20bace0480546060915f805160206127a6833981519152916103c390612592565b611053611420565b61105b611457565b5f80516020612786833981519152805442101561108b57604051631c61403d60e01b815260040160405180910390fd5b805461109c906307861f8090612614565b42106110bb57604051634c78fb4960e01b815260040160405180910390fd5b60038101546110d5906001600160a01b031633308561182e565b6110df3383611867565b5061057e60015f8051602061282683398151915255565b5f610590838361189b565b5f5f80516020612786833981519152600381015460405163d505accf60e01b8152336004820152306024820152604481018990526064810188905260ff8716608482015260a4810186905260c481018590529192506001600160a01b03169063d505accf9060e4015f604051808303815f87803b158015611180575f80fd5b505af1925050508015611191575060015b5061119b8661104b565b505050505050565b834211156111c75760405163313c898160e11b815260048101859052602401610fca565b5f7f6e71edae12b1b97f4d1f60370fef10105fa2faae0126114a169c64845d6126c98888886112318c6001600160a01b03165f9081527f5ab42ced628888259c08ac98db1eb0cf702fc1501344311d8b100cd1bfe4bb006020526040902080546001810190915590565b6040805160208101969096526001600160a01b0394851690860152929091166060840152608083015260a082015260c0810186905260e0016040516020818303038152906040528051906020012090505f61128b826118a8565b90505f61129a828787876118d4565b9050896001600160a01b0316816001600160a01b0316146112e1576040516325c0072360e11b81526001600160a01b0380831660048301528b166024820152604401610fca565b6112ec8a8a8a61140e565b50505050505050505050565b6001600160a01b039182165f9081527f52c63247e1f47db19d5ce0460030c497f067ca4cebf71ba98eeadabe20bace016020908152604080832093909416825291909152205490565b611349611420565b611351611457565b5f805160206127868339815191528054611370906307861f8090612614565b4210156113905760405163126244d560e11b815260040160405180910390fd5b5f61139a33610eec565b90506113a63382611511565b60038201546113bf906001600160a01b03163383611545565b60405181815233907f483f448a09ee336a602fd2f2af6ad12bdf4aac53b0c7697353938f82930c3f7b9060200160405180910390a2505061140c60015f8051602061282683398151915255565b565b61141b8383836001611900565b505050565b5f8051602061282683398151915280546001190161145157604051633ee5aeb560e01b815260040160405180910390fd5b60029055565b5f805160206128068339815191525460ff161561140c5760405163d93c066560e01b815260040160405180910390fd5b604051632474521560e21b8152600481018290523360248201526001600160a01b038316906391d1485490604401602060405180830381865afa1580156114d0573d5f803e3d5ffd5b505050506040513d601f19601f820116820180604052508101906114f491906125e1565b610a4f5760405163ea8e4eb560e01b815260040160405180910390fd5b6001600160a01b03821661153a57604051634b637e8f60e11b81525f6004820152602401610fca565b610a4f825f836119e4565b6040516001600160a01b0383811660248301526044820183905261141b91859182169063a9059cbb906064015b604051602081830303815290604052915060e01b6020820180516001600160e01b038381831617835250505050611b1c565b60015f8051602061282683398151915255565b5f336115c4858285611b7d565b6115cf858585611bda565b506001949350505050565b5f6105a0611c37565b6115eb611caa565b5f80516020612806833981519152805460ff191681557f5db9ee0a495bf2e6ff9c91a7834c1ba4fdd244a5e8aa4e537bd38aeae4b073aa335b6040516001600160a01b03909116815260200160405180910390a150565b4281101561166357604051634783fddb60e11b815260040160405180910390fd5b82515f036116845760405163430f13b360e01b815260040160405180910390fd5b81515f0361141b5760405163010466f160e21b815260040160405180910390fd5b6116ad611cd9565b5f805160206127a68339815191527f52c63247e1f47db19d5ce0460030c497f067ca4cebf71ba98eeadabe20bace036116e6848261269a565b50600481016116f5838261269a565b50505050565b61057e611cd9565b61170b611cd9565b5f805160206127c68339815191527fa16a46d94261c7517cc8ff89f61c0ce93598e3c849801011dee649a6a557d102611744848261269a565b5060038101611753838261269a565b505f8082556001909101555050565b6115a4611cd9565b611772611457565b5f80516020612806833981519152805460ff191660011781557f62e78cea01bee320cd4e420270b5ea74000d11b0c9f74754ebdbfc544b05a25833611624565b5f807f5ab42ced628888259c08ac98db1eb0cf702fc1501344311d8b100cd1bfe4bb00610efd565b7fa16a46d94261c7517cc8ff89f61c0ce93598e3c849801011dee649a6a557d10280546060915f805160206127c6833981519152916103c390612592565b60605f5f805160206127c68339815191526103b2565b6040516001600160a01b0384811660248301528381166044830152606482018390526116f59186918216906323b872dd90608401611572565b6001600160a01b0382166118905760405163ec442f0560e01b81525f6004820152602401610fca565b610a4f5f83836119e4565b5f33610452818585611bda565b5f6104586118b46115da565b8360405161190160f01b8152600281019290925260228201526042902090565b5f805f806118e488888888611d22565b9250925092506118f48282611dea565b50909695505050505050565b5f805160206127a68339815191526001600160a01b0385166119375760405163e602df0560e01b81525f6004820152602401610fca565b6001600160a01b03841661196057604051634a1406b160e11b81525f6004820152602401610fca565b6001600160a01b038086165f908152600183016020908152604080832093881683529290522083905581156119dd57836001600160a01b0316856001600160a01b03167f8c5be1e5ebec7d5bd14f71427d1e84f3dd0314c0f7b2291e5b200ac8c7c3b925856040516119d491815260200190565b60405180910390a35b5050505050565b805f03611a04576040516310eb483f60e21b815260040160405180910390fd5b5f5f80516020612786833981519152600381015460405163fe575a8760e01b81526001600160a01b038781166004830152929350911690819063fe575a8790602401602060405180830381865afa158015611a61573d5f803e3d5ffd5b505050506040513d601f19601f82011682018060405250810190611a8591906125e1565b80611af3575060405163fe575a8760e01b81526001600160a01b03858116600483015282169063fe575a8790602401602060405180830381865afa158015611acf573d5f803e3d5ffd5b505050506040513d601f19601f82011682018060405250810190611af391906125e1565b15611b11576040516309550c7760e01b815260040160405180910390fd5b6119dd858585611ea2565b5f611b306001600160a01b03841683611eb5565b905080515f14158015611b54575080806020019051810190611b5291906125e1565b155b1561141b57604051635274afe760e01b81526001600160a01b0384166004820152602401610fca565b5f611b8884846112f8565b90505f1981146116f55781811015611bcc57604051637dc7a0d960e11b81526001600160a01b03841660048201526024810182905260448101839052606401610fca565b6116f584848484035f611900565b6001600160a01b038316611c0357604051634b637e8f60e11b81525f6004820152602401610fca565b6001600160a01b038216611c2c5760405163ec442f0560e01b81525f6004820152602401610fca565b61141b8383836119e4565b5f7f8b73c3c69bb8fe3d512ecc4cf759cc79239f7b179b0ffacaa9a75d522b39400f611c61611ec2565b611c69611f2a565b60408051602081019490945283019190915260608201524660808201523060a082015260c00160405160208183030381529060405280519060200120905090565b5f805160206128068339815191525460ff1661140c57604051638dfc202b60e01b815260040160405180910390fd5b7ff0c57e16840df040f15088dc2f81fe391c3923bec73e23a9662efc9c229c6a0054600160401b900460ff1661140c57604051631afcd79f60e31b815260040160405180910390fd5b5f80807f7fffffffffffffffffffffffffffffff5d576e7357a4501ddfe92f46681b20a0841115611d5b57505f91506003905082611de0565b604080515f808252602082018084528a905260ff891692820192909252606081018790526080810186905260019060a0016020604051602081039080840390855afa158015611dac573d5f803e3d5ffd5b5050604051601f1901519150506001600160a01b038116611dd757505f925060019150829050611de0565b92505f91508190505b9450945094915050565b5f826003811115611dfd57611dfd612756565b03611e06575050565b6001826003811115611e1a57611e1a612756565b03611e385760405163f645eedf60e01b815260040160405180910390fd5b6002826003811115611e4c57611e4c612756565b03611e6d5760405163fce698f760e01b815260048101829052602401610fca565b6003826003811115611e8157611e81612756565b03610a4f576040516335e2f38360e21b815260048101829052602401610fca565b611eaa611457565b61141b838383611f6c565b606061059083835f6120a5565b5f5f805160206127c683398151915281611eda6117da565b805190915015611ef257805160209091012092915050565b81548015611f01579392505050565b7fc5d2460186f7233c927e7db2dcc703c0e500b653ca82273b7bfad8045d85a470935050505090565b5f5f805160206127c683398151915281611f42611818565b805190915015611f5a57805160209091012092915050565b60018201548015611f01579392505050565b5f805160206127a68339815191526001600160a01b038416611fa65781816002015f828254611f9b9190612614565b909155506120169050565b6001600160a01b0384165f9081526020829052604090205482811015611ff85760405163391434e360e21b81526001600160a01b03861660048201526024810182905260448101849052606401610fca565b6001600160a01b0385165f9081526020839052604090209083900390555b6001600160a01b038316612034576002810180548390039055612052565b6001600160a01b0383165f9081526020829052604090208054830190555b826001600160a01b0316846001600160a01b03167fddf252ad1be2c89b69c2b068fc378daa952ba7f163c4a11628f55a4df523b3ef8460405161209791815260200190565b60405180910390a350505050565b6060814710156120ca5760405163cd78605960e01b8152306004820152602401610fca565b5f80856001600160a01b031684866040516120e5919061276a565b5f6040518083038185875af1925050503d805f811461211f576040519150601f19603f3d011682016040523d82523d5f602084013e612124565b606091505b509150915061213486838361213e565b9695505050505050565b6060826121535761214e8261219a565b610590565b815115801561216a57506001600160a01b0384163b155b1561219357604051639996b31560e01b81526001600160a01b0385166004820152602401610fca565b5080610590565b8051156121aa5780518082602001fd5b604051630a12f52160e11b815260040160405180910390fd5b5f5b838110156121dd5781810151838201526020016121c5565b50505f910152565b5f81518084526121fc8160208601602086016121c3565b601f01601f19169290920160200192915050565b602081525f61059060208301846121e5565b6001600160a01b038116811461057e575f80fd5b5f8060408385031215612247575f80fd5b823561225281612222565b946020939093013593505050565b5f60208284031215612270575f80fd5b5035919050565b5f805f60608486031215612289575f80fd5b833561229481612222565b925060208401356122a481612222565b929592945050506040919091013590565b5f80604083850312156122c6575f80fd5b50508035926020909101359150565b634e487b7160e01b5f52604160045260245ffd5b5f82601f8301126122f8575f80fd5b813567ffffffffffffffff80821115612313576123136122d5565b604051601f8301601f19908116603f0116810190828211818310171561233b5761233b6122d5565b81604052838152866020858801011115612353575f80fd5b836020870160208301375f602085830101528094505050505092915050565b5f805f8060808587031215612385575f80fd5b843561239081612222565b9350602085013567ffffffffffffffff808211156123ac575f80fd5b6123b8888389016122e9565b945060408701359150808211156123cd575f80fd5b506123da878288016122e9565b949793965093946060013593505050565b5f602082840312156123fb575f80fd5b813561059081612222565b60ff60f81b881681525f602060e08184015261242560e084018a6121e5565b8381036040850152612437818a6121e5565b606085018990526001600160a01b038816608086015260a0850187905284810360c086015285518082528387019250908301905f5b818110156124885783518352928401929184019160010161246c565b50909c9b505050505050505050505050565b803560ff811681146124aa575f80fd5b919050565b5f805f805f60a086880312156124c3575f80fd5b85359450602086013593506124da6040870161249a565b94979396509394606081013594506080013592915050565b5f805f805f805f60e0888a031215612508575f80fd5b873561251381612222565b9650602088013561252381612222565b9550604088013594506060880135935061253f6080890161249a565b925060a0880135915060c0880135905092959891949750929550565b5f806040838503121561256c575f80fd5b823561257781612222565b9150602083013561258781612222565b809150509250929050565b600181811c908216806125a657607f821691505b6020821081036125c457634e487b7160e01b5f52602260045260245ffd5b50919050565b5f602082840312156125da575f80fd5b5051919050565b5f602082840312156125f1575f80fd5b81518015158114610590575f80fd5b634e487b7160e01b5f52601160045260245ffd5b8082018082111561045857610458612600565b8181038181111561045857610458612600565b5f6020828403121561264a575f80fd5b815161059081612222565b601f82111561141b575f81815260208120601f850160051c8101602086101561267b5750805b601f850160051c820191505b8181101561119b57828155600101612687565b815167ffffffffffffffff8111156126b4576126b46122d5565b6126c8816126c28454612592565b84612655565b602080601f8311600181146126fb575f84156126e45750858301515b5f19600386901b1c1916600185901b17855561119b565b5f85815260208120601f198616915b828110156127295788860151825594840194600190910190840161270a565b508582101561274657878501515f19600388901b60f8161c191681555b5050505050600190811b01905550565b634e487b7160e01b5f52602160045260245ffd5b5f825161277b8184602087016121c3565b919091019291505056fe1519c21cc5b6e62f5c0018a7d32a0d00805e5b91f6eaa9f7bc303641242e300052c63247e1f47db19d5ce0460030c497f067ca4cebf71ba98eeadabe20bace00a16a46d94261c7517cc8ff89f61c0ce93598e3c849801011dee649a6a557d1001519c21cc5b6e62f5c0018a7d32a0d00805e5b91f6eaa9f7bc303641242e3002cd5ed15c6e187e77e9aee88184c21f4f2182ab5827cb3b7e07fbedcd63f033009b779b17422d0df92223018b32b4d1fa46e071723d6817e2486d003becc55f00a2646970667358221220351ce22b099a8f6844990bbe41eeb076d64fcbfee8f127d94374ccdc5a1ad07c64736f6c63430008140033
Loading...
Loading
Loading...
Loading
Multichain Portfolio | 30 Chains
Chain | Token | Portfolio % | Price | Amount | Value |
---|
Loading...
Loading
A contract address hosts a smart contract, which is a set of code stored on the blockchain that runs when predetermined conditions are met. Learn more about addresses in our Knowledge Base.