Sponsored
Сoins.game
100 free spins for registration. Spin now!
Everyday giveaways up to 100 ETH, Lucky Spins. Deposit BONUS 300% and Cashbacks!
Celsius Casino
- $400 Freespins - Instant Withdraw - No KYC - 200% Bonus. Spin Now!
9 years old Licensed Crypto Casino, Instant Withdraw 24/7, 6000+ Slots available, Paypal Deposit, Instant Live Support 24/7, 30% Rakeback.
BC.GAME
- The Best ETH Casino Claim Now!
5000+ Slots & Live Casino Games, 50+cryptos. Register with Etherscan and get 760% deposit bonus. Win Big$, withdraw it fast.
Sponsored
BC.GAME
- The Best ETH Casino Claim Now!
5000+ Slots & Live Casino Games, 50+cryptos. Register with Etherscan and get 760% deposit bonus. Win Big$, withdraw it fast.
CryptoWins
$5 Freebie + 137% Match up to 1 BTC Welcome Booster! Claim Now!
Dive into 100s of games and play anonymously with major cryptos. Join CryptoWins today!
CryptoSlots
Play & Get 25 Free Spins at CryptoSlots Play Now
Anonymous play on awesome games - sign up now for 25 free jackpot spins - worth $100s!
Feature Tip: Add private address tag to any address under My Name Tag !
Overview
ETH Balance
0 ETH
Eth Value
$0.00More Info
Private Name Tags
ContractCreator
Latest 2 internal transactions
Advanced mode:
| Parent Transaction Hash | Block | From | To | |||
|---|---|---|---|---|---|---|
| 16067954 | 690 days ago | Contract Creation | 0 ETH | |||
| 16067954 | 690 days ago | Contract Creation | 0 ETH |
Loading...
Loading
This contract may be a proxy contract. Click on More Options and select Is this a proxy? to confirm and enable the "Read as Proxy" & "Write as Proxy" tabs.
Contract Name:
Collectionstaker
Compiler Version
v0.8.17+commit.8df45f5f
Optimization Enabled:
Yes with 150 runs
Other Settings:
default evmVersion
Contract Source Code (Solidity Standard Json-Input format)
// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import "./ICollectionswap.sol";
import "./RewardPoolETH.sol";
import "./RewardPoolETHDraw.sol";
import {Ownable} from "@openzeppelin/contracts/access/Ownable.sol";
import {RNGChainlinkV2Interface} from "./rng/RNGChainlinkV2Interface.sol";
import "@openzeppelin/contracts/proxy/Clones.sol";
contract Collectionstaker is Ownable {
using SafeERC20 for IERC20;
ICollectionswap immutable lpToken;
RewardPoolETH immutable rewardPoolETHLogic;
RewardPoolETHDraw immutable rewardPoolETHDrawLogic;
uint256 public constant MAX_REWARD_TOKENS = 5;
RNGChainlinkV2Interface public rngChainlink;
/// @notice Event emitted when a liquidity mining incentive has been created
/// @param poolAddress The Reward pool address
/// @param rewardTokens The tokens being distributed as a reward
/// @param rewards The amount of reward tokens to be distributed
/// @param startTime The time when the incentive program begins
/// @param endTime The time when rewards stop accruing
event IncentiveETHCreated(
address poolAddress,
IERC20[] rewardTokens,
uint256[] rewards,
uint256 startTime,
uint256 endTime
);
event IncentiveETHDrawCreated(
address poolAddress,
IERC20[] rewardTokens,
uint256[] rewards,
uint256 startTime,
uint256 endTime
);
constructor(ICollectionswap _lpToken) {
lpToken = _lpToken;
rewardPoolETHLogic = new RewardPoolETH();
rewardPoolETHDrawLogic = new RewardPoolETHDraw();
}
function setRNG(RNGChainlinkV2Interface _rngChainlink) external onlyOwner {
rngChainlink = _rngChainlink;
}
function createIncentiveETH(
IERC721 nft,
address bondingCurve,
uint128 delta,
uint96 fee,
IERC20[] calldata rewardTokens,
uint256[] calldata rewards,
uint256 startTime,
uint256 endTime
) external {
require(startTime > block.timestamp, "cannot backdate");
uint256 rewardTokensLength = rewardTokens.length;
require(
rewardTokensLength <= MAX_REWARD_TOKENS,
"too many reward tokens"
);
require(rewardTokensLength == rewards.length, "unequal lengths");
uint256[] memory rewardRates = new uint256[](rewardTokensLength);
for (uint256 i; i < rewardTokensLength; ) {
rewardRates[i] = rewards[i] / (endTime - startTime); // guaranteed endTime > startTime
require(rewardRates[i] != 0, "0 reward rate");
unchecked {
++i;
}
}
RewardPoolETH rewardPool = RewardPoolETH(
Clones.clone(address(rewardPoolETHLogic))
);
lpToken.setCanSpecifySender(address(rewardPool), true);
rewardPool.initialize(
owner(),
msg.sender,
lpToken,
nft,
bondingCurve,
delta,
fee,
rewardTokens,
rewardRates,
startTime,
endTime
);
// transfer reward tokens to RewardPool
for (uint256 i; i < rewardTokensLength; ) {
rewardTokens[i].safeTransferFrom(
msg.sender,
address(rewardPool),
rewards[i]
);
unchecked {
++i;
}
}
emit IncentiveETHCreated(
address(rewardPool),
rewardTokens,
rewards,
startTime,
endTime
);
}
modifier randomnessIsSet() {
require(address(rngChainlink) != address(0), "randomness not set");
_;
}
function createIncentiveETHDraw(
IERC721 nft,
address bondingCurve,
uint128 delta,
uint96 fee,
IERC20[] calldata rewardTokens,
uint256[] calldata rewards,
uint256 rewardStartTime,
uint256 rewardEndTime,
IERC20[] calldata _additionalERC20DrawPrize,
uint256[] calldata _additionalERC20DrawAmounts,
IERC721[] calldata _nftCollectionsPrize,
uint256[] calldata _nftIdsPrize,
uint256 _prizesPerWinner,
uint256 drawStartTime,
uint256 drawPeriodFinish
) public randomnessIsSet {
uint256 rewardTokensLength = rewardTokens.length;
if (rewardStartTime != 0) {
// deployer intends to use normal reward distribution functionality
// same checks apply as per createIncentiveETH()
require(rewardStartTime > block.timestamp, "cannot backdate");
require(rewardTokensLength <= MAX_REWARD_TOKENS, "too many reward tokens");
require(rewardTokensLength == rewards.length, "unequal lengths");
} else {
// rewardStartTime == 0 => deployer intends to initially utilise draw functionality only
require(rewardTokensLength == 0, "bad config");
}
uint256[] memory rewardRates = new uint256[](rewardTokensLength);
for (uint256 i; i < rewardTokensLength; ) {
rewardRates[i] = rewards[i] / (rewardEndTime - rewardStartTime); // guaranteed endTime > startTime
require(rewardRates[i] != 0, "0 reward rate");
unchecked {
++i;
}
}
RewardPoolETHDraw rewardPool = RewardPoolETHDraw(
Clones.clone(address(rewardPoolETHDrawLogic))
);
lpToken.setCanSpecifySender(address(rewardPool), true);
rewardPool.initialize(
owner(),
address(this),
msg.sender,
lpToken,
nft,
bondingCurve,
delta,
fee,
rewardTokens,
rewardRates,
rewardStartTime,
rewardEndTime,
rngChainlink,
_additionalERC20DrawPrize,
_additionalERC20DrawAmounts,
_nftCollectionsPrize,
_nftIdsPrize,
_prizesPerWinner,
drawStartTime,
drawPeriodFinish
);
rngChainlink.setAllowedCaller(address(rewardPool));
// transfer erc20 drawTokens to RewardPool
for (uint256 i; i < _additionalERC20DrawPrize.length; ) {
_additionalERC20DrawPrize[i].safeTransferFrom(
msg.sender,
address(rewardPool),
_additionalERC20DrawAmounts[i]
);
unchecked {
++i;
}
}
// transfer erc721 drawTokens to RewardPool
for (uint256 i; i < _nftCollectionsPrize.length; ) {
_nftCollectionsPrize[i].safeTransferFrom(
msg.sender,
address(rewardPool),
_nftIdsPrize[i]
);
unchecked {
++i;
}
}
// transfer reward tokens to RewardPool
for (uint256 i; i < rewardTokensLength; ) {
rewardTokens[i].safeTransferFrom(
msg.sender,
address(rewardPool),
rewards[i]
);
unchecked {
++i;
}
}
emit IncentiveETHDrawCreated(address(rewardPool), rewardTokens, rewards, rewardStartTime, rewardEndTime);
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {IERC721} from "@openzeppelin/contracts/token/ERC721/IERC721.sol";
import {ICurve} from "./bonding-curves/ICurve.sol";
import {ILSSVMPairETH} from "./ILSSVMPair.sol";
import {IERC721Enumerable} from "@openzeppelin/contracts/token/ERC721/extensions/IERC721Enumerable.sol";
interface ICollectionswap is IERC721, IERC721Enumerable {
struct LPTokenParams721ETH {
address nftAddress;
address bondingCurveAddress;
address payable poolAddress;
uint96 fee;
uint128 delta;
uint128 initialSpotPrice;
uint256 initialPoolBalance;
uint256 initialNFTIDsLength;
}
/**
* @notice Create a sudoswap pair and issue an LP token for this pair to
* `tx.origin`.
*
* @param _nft The NFT collection which the pair will interact with
* @param _bondingCurve The bonding curve which the pair will use to
* calculate prices
* @param _delta The delta of the curve
* @param _fee The fee of the curve
* @param _spotPrice The spot price of the curve
* @param _initialNFTIDs The tokenIds of the NFTs to add to the pair
*
* @return newPair The sudoswap pair created
* @return newTokenId The tokenId of the newly issued LP token
*/
function createDirectPairETH(
address _user,
IERC721 _nft,
ICurve _bondingCurve,
uint128 _delta,
uint96 _fee,
uint128 _spotPrice,
uint256[] calldata _initialNFTIDs
) external payable returns (ILSSVMPairETH newPair, uint256 newTokenId);
function setCanSpecifySender(address user, bool canSet) external;
function useLPTokenToDestroyDirectPairETH(address user, uint256 _lpTokenId) external;
/**
* @return poolParams the parameters of the pool matching `tokenId`.
*/
function viewPoolParams(uint256 tokenId)
external
view
returns (LPTokenParams721ETH memory poolParams);
/**
* @param tokenId The tokenId of the pool to validate
* @param nftAddress The address of the NFT collection which the pool
* should accept
* @param bondingCurveAddress The address of the bonding curve the pool
* should be using
* @param fee The maximum fee the pool should have
* @param delta The maximum delta the pool should have
*
* @return true iff the pool specified by `tokenId` has the correct
* NFT address, bonding curve address, and has fee and delta == `fee` and
* `delta`, respectively
*/
function validatePoolParamsLte(
uint256 tokenId,
address nftAddress,
address bondingCurveAddress,
uint96 fee,
uint128 delta
)
external
view
returns (bool);
/**
* @param tokenId The tokenId of the pool to validate
* @param nftAddress The address of the NFT collection which the pool
* should accept
* @param bondingCurveAddress The address of the bonding curve the pool
* should be using
* @param fee The fee the pool should have
* @param delta The delta the pool should have
*
* @return true iff the pool specified by `tokenId` has the correct
* NFT address, bonding curve address, and has fee and delta <= `fee` and
* `delta`, respectively
*/
function validatePoolParamsEq(
uint256 tokenId,
address nftAddress,
address bondingCurveAddress,
uint96 fee,
uint128 delta
)
external
view
returns (bool);
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {Initializable} from "@openzeppelin/contracts/proxy/utils/Initializable.sol";
import {IERC20} from "@openzeppelin/contracts/token/ERC20/IERC20.sol";
import {SafeERC20} from "@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
import {IERC721Receiver} from "@openzeppelin/contracts/token/ERC721/IERC721Receiver.sol";
import {Math} from "@openzeppelin/contracts/utils/math/Math.sol";
import "./ICollectionswap.sol";
import "./ILSSVMPair.sol";
contract RewardPoolETH is IERC721Receiver, Initializable {
using SafeERC20 for IERC20;
struct LPTokenInfo {
uint256 amount0;
uint256 amount1;
uint256 amount;
address owner;
}
/// @dev The number of NFTs in the pool
uint128 private reserve0; // uses single storage slot, accessible via getReserves
/// @dev The amount of ETH in the pool
uint128 private reserve1; // uses single storage slot, accessible via getReserves
address protocolOwner;
address deployer;
ICollectionswap public lpToken;
IERC721 nft;
address bondingCurve;
uint128 delta;
uint96 fee;
uint256 public constant MAX_REWARD_TOKENS = 5;
uint256 public LOCK_TIME = 30 days;
/// @dev The total number of tokens minted
uint256 private _totalSupply;
mapping(address => uint256) internal _balances;
/// @dev maps from tokenId to pool LPToken information
mapping(uint256 => LPTokenInfo) public lpTokenInfo;
IERC20[] public rewardTokens;
mapping(IERC20 => bool) public rewardTokenValid;
uint256 public periodFinish;
uint256 public rewardSweepTime;
/// @dev maps from ERC20 token to the reward amount / duration of period
mapping(IERC20 => uint256) public rewardRates;
uint256 public lastUpdateTime;
/**
* @dev maps from ERC20 token to the reward amount accumulated per unit of
* reward token
*/
mapping(IERC20 => uint256) public rewardPerTokenStored;
mapping(IERC20 => mapping(address => uint256))
public userRewardPerTokenPaid;
mapping(IERC20 => mapping(address => uint256)) public rewards;
event RewardAdded(uint256 reward);
event Staked(address indexed user, uint256 tokenId, uint256 amount);
event Withdrawn(address indexed user, uint256 tokenId, uint256 amount);
event RewardPaid(
IERC20 indexed rewardToken,
address indexed user,
uint256 reward
);
event RewardSwept();
event RewardPoolRecharged(
IERC20[] rewardTokens,
uint256[] rewards,
uint256 startTime,
uint256 endTime
);
modifier updateReward(address account) {
// skip update after rewards program starts
// cannot include equality because
// multiple accounts can perform actions in the same block
// and we have to update account's rewards and userRewardPerTokenPaid values
if (block.timestamp < lastUpdateTime) {
_;
return;
}
uint256 rewardTokensLength = rewardTokens.length;
// lastUpdateTime is set to startTime in constructor
if (block.timestamp > lastUpdateTime) {
for (uint256 i; i < rewardTokensLength; ) {
IERC20 rewardToken = rewardTokens[i];
rewardPerTokenStored[rewardToken] = rewardPerToken(rewardToken);
unchecked {
++i;
}
}
lastUpdateTime = lastTimeRewardApplicable();
}
if (account != address(0)) {
for (uint256 i; i < rewardTokensLength; ) {
IERC20 rewardToken = rewardTokens[i];
rewards[rewardToken][account] = earned(account, rewardToken);
userRewardPerTokenPaid[rewardToken][
account
] = rewardPerTokenStored[rewardToken];
unchecked {
++i;
}
}
}
_;
}
constructor() {
_disableInitializers();
}
function initialize(
address _protocolOwner,
address _deployer,
ICollectionswap _lpToken,
IERC721 _nft,
address _bondingCurve,
uint128 _delta,
uint96 _fee,
IERC20[] calldata _rewardTokens,
uint256[] calldata _rewardRates,
uint256 _startTime,
uint256 _periodFinish
) public initializer {
protocolOwner = _protocolOwner;
require(_nft.supportsInterface(0x80ac58cd), "NFT not ERC721"); // check if it supports ERC721
deployer = _deployer;
lpToken = _lpToken;
nft = _nft;
bondingCurve = _bondingCurve;
delta = _delta;
fee = _fee;
rewardTokens = _rewardTokens;
unchecked {
for (uint256 i; i < rewardTokens.length; ++i) {
require(
!rewardTokenValid[_rewardTokens[i]],
"Repeated token"
);
rewardRates[_rewardTokens[i]] = _rewardRates[i];
rewardTokenValid[_rewardTokens[i]] = true;
}
}
lastUpdateTime = _startTime == 0 ? block.timestamp : _startTime;
periodFinish = _periodFinish;
rewardSweepTime = _periodFinish + LOCK_TIME;
}
/**
* @notice Add ERC20 tokens to the pool and set the `newPeriodFinish` value of
* the pool
*
* @dev new reward tokens are to be appended to inputRewardTokens
*
* @param inputRewardTokens An array of ERC20 tokens to recharge the pool with
* @param inputRewardAmounts An array of the amounts of each ERC20 token to
* recharge the pool with
* @param _newPeriodFinish The value to update this pool's `periodFinish` variable to
*/
function rechargeRewardPool(
IERC20[] calldata inputRewardTokens,
uint256[] calldata inputRewardAmounts,
uint256 _newPeriodFinish
) public virtual updateReward(address(0)) {
require(
msg.sender == deployer || msg.sender == protocolOwner,
"Not authorized"
);
require(_newPeriodFinish > block.timestamp, "Invalid period finish");
require(
block.timestamp > periodFinish,
"Ongoing rewards"
);
uint256 oldRewardTokensLength = rewardTokens.length;
uint256 newRewardTokensLength = inputRewardTokens.length;
require(oldRewardTokensLength <= newRewardTokensLength, "Bad token config");
require(newRewardTokensLength <= MAX_REWARD_TOKENS, "Exceed max tokens");
require(
newRewardTokensLength == inputRewardAmounts.length,
"Inconsistent length"
);
// Mark each ERC20 in the input as used by this pool, and ensure no
// duplicates within the input
uint256 newReward;
for (uint256 i; i < newRewardTokensLength; ) {
IERC20 inputRewardToken = inputRewardTokens[i];
// ensure same ordering for existing tokens
if (i < oldRewardTokensLength) {
require(inputRewardToken == rewardTokens[i], "Reward token mismatch");
} else {
// adding new token
require(
!rewardTokenValid[inputRewardToken],
"Repeated token"
);
rewardTokenValid[inputRewardToken] = true;
}
// note that reward amounts can be zero
newReward = inputRewardAmounts[i];
// pull tokens
if (newReward > 0) {
inputRewardToken.safeTransferFrom(
msg.sender,
address(this),
newReward
);
// newReward = new reward rate
newReward /= (_newPeriodFinish - block.timestamp);
require(newReward != 0, "0 reward rate");
}
rewardRates[inputRewardToken] = newReward;
unchecked {
++i;
}
}
rewardTokens = inputRewardTokens;
lastUpdateTime = block.timestamp;
periodFinish = _newPeriodFinish;
rewardSweepTime = _newPeriodFinish + LOCK_TIME;
emit RewardPoolRecharged(
inputRewardTokens,
inputRewardAmounts,
block.timestamp,
_newPeriodFinish
);
}
/**
* @notice Sends all ERC20 token balances of this pool to the deployer.
*/
function sweepRewards() external {
require(msg.sender == deployer, "Not authorized");
require(block.timestamp >= rewardSweepTime, "Too early");
emit RewardSwept();
uint256 rewardTokensLength = rewardTokens.length;
unchecked {
for (uint256 i; i < rewardTokensLength; ++i) {
IERC20 rewardToken = rewardTokens[i];
rewardToken.safeTransfer(
msg.sender,
rewardToken.balanceOf(address(this))
);
}
}
}
function atomicPoolAndVault(
IERC721 _nft,
ICurve _bondingCurve,
uint128 _delta,
uint96 _fee,
uint128 _spotPrice,
uint256[] calldata _initialNFTIDs
) public payable returns (uint256 currTokenId) {
ICollectionswap _lpToken = lpToken;
(,currTokenId) = _lpToken.createDirectPairETH{value:msg.value}(msg.sender, _nft,_bondingCurve, _delta, _fee, _spotPrice, _initialNFTIDs);
stake(currTokenId);
}
function atomicExitAndUnpool(
uint256 _tokenId
) external {
exit(_tokenId);
ICollectionswap _lpToken = lpToken;
_lpToken.useLPTokenToDestroyDirectPairETH(msg.sender, _tokenId);
}
/**
* @notice Add the balances of an LP token to the reward pool and mint
* reward tokens
* @param tokenId The tokenId of the LP token to be added to this reward
* pool
* @return amount The number of tokens minted
*/
function mint(uint256 tokenId) private returns (uint256 amount) {
ICollectionswap _lpToken = lpToken;
require(_lpToken.ownerOf(tokenId) == msg.sender, "Not owner");
IERC721 _nft = nft;
require(
_lpToken.validatePoolParamsLte(
tokenId,
address(_nft),
bondingCurve,
fee,
delta
),
"Wrong pool"
);
ILSSVMPair _pair = ILSSVMPair(_lpToken.viewPoolParams(tokenId).poolAddress);
// Calculate the number of tokens to mint. Equal to
// sqrt(NFT balance * ETH balance) if there's enough ETH for the pool to
// buy at least 1 NFT. Else 0.
(uint128 _reserve0, uint128 _reserve1) = getReserves(); // gas savings
uint256 amount0 = _nft.balanceOf(address(_pair));
uint256 amount1 = address(_pair).balance;
( , , ,uint256 bidPrice, ) = _pair.getSellNFTQuote(1);
if (amount1 >= bidPrice) {
amount = Math.sqrt(amount0 * amount1);
}
uint256 balance0 = _reserve0 + amount0;
uint256 balance1 = _reserve1 + amount1;
require(
balance0 <= type(uint128).max && balance1 <= type(uint128).max,
"Balance overflow"
);
reserve0 = uint128(balance0);
reserve1 = uint128(balance1);
lpTokenInfo[tokenId] = LPTokenInfo({
amount0: amount0,
amount1: amount1,
amount: amount,
owner: msg.sender
});
}
/**
* @notice Remove the balances of an LP token from the reward pool and burn
* reward tokens
* @param tokenId The tokenId of the LP token to be added to this reward
* pool
* @return amount The number of lp tokens burned
*/
function burn(uint256 tokenId) internal virtual returns (uint256 amount) {
LPTokenInfo memory lpTokenIdInfo = lpTokenInfo[tokenId];
require(lpTokenIdInfo.owner == msg.sender, "Not owner");
amount = lpTokenIdInfo.amount;
(uint128 _reserve0, uint128 _reserve1) = getReserves(); // gas savings
uint256 balance0 = _reserve0 - lpTokenIdInfo.amount0;
uint256 balance1 = _reserve1 - lpTokenIdInfo.amount1;
reserve0 = uint128(balance0);
reserve1 = uint128(balance1);
delete lpTokenInfo[tokenId];
}
function onERC721Received(
address,
address,
uint256,
bytes memory
) external pure returns (bytes4) {
return IERC721Receiver.onERC721Received.selector;
}
function totalSupply() public view returns (uint256) {
return _totalSupply;
}
function balanceOf(address account) public view returns (uint256) {
return _balances[account];
}
/**
* @return The end of the period, or now if earlier
*/
function lastTimeRewardApplicable() public view returns (uint256) {
return Math.min(block.timestamp, periodFinish);
}
/**
* @notice Calculate the amount of `_rewardToken` rewards accrued per reward
* token.
* @param _rewardToken The ERC20 token to be rewarded
* @return The amount of `_rewardToken` awardable per reward token
*
*/
function rewardPerToken(IERC20 _rewardToken) public view returns (uint256) {
uint256 lastRewardTime = lastTimeRewardApplicable();
// latter condition required because calculations will revert when called externally
// even though internally this function will only be called if lastRewardTime > lastUpdateTime
if (totalSupply() == 0 || lastRewardTime <= lastUpdateTime) {
return rewardPerTokenStored[_rewardToken];
}
return
rewardPerTokenStored[_rewardToken] +
(((lastRewardTime - lastUpdateTime) *
rewardRates[_rewardToken] *
1e18) / totalSupply());
}
/**
* @notice Calculate the amount of `_rewardToken` earned by `account`
* @dev
*
* @param account The account to calculate earnings for
* @param _rewardToken The ERC20 token to calculate earnings of
* @return The amount of ERC20 token earned
*/
function earned(address account, IERC20 _rewardToken) public view virtual returns (uint256) {
return balanceOf(account)
* (rewardPerToken(_rewardToken) - userRewardPerTokenPaid[_rewardToken][account])
/ (1e18)
+ rewards[_rewardToken][account];
}
/**
* @notice Stake an LP token into the reward pool
* @param tokenId The tokenId of the LP token to stake
* @return amount The amount of reward token minted as a result
*/
function stake(uint256 tokenId) public virtual updateReward(msg.sender) returns (uint256 amount) {
require(tx.origin == msg.sender, "Caller must be EOA");
amount = mint(tokenId);
require(amount > 0, "Cannot stake one-sided LPs");
_totalSupply += amount;
_balances[msg.sender] += amount;
lpToken.safeTransferFrom(msg.sender, address(this), tokenId);
emit Staked(msg.sender, tokenId, amount);
}
function withdraw(uint256 tokenId) public updateReward(msg.sender) {
// amount will never be 0 because it is checked in stake()
uint256 amount = burn(tokenId);
_totalSupply -= amount;
_balances[msg.sender] -= amount;
lpToken.safeTransferFrom(address(this), msg.sender, tokenId);
emit Withdrawn(msg.sender, tokenId, amount);
}
function exit(uint256 tokenId) public {
withdraw(tokenId);
getReward();
}
function getReward() public updateReward(msg.sender) {
uint256 rewardTokensLength = rewardTokens.length;
for (uint256 i; i < rewardTokensLength; ) {
IERC20 rewardToken = rewardTokens[i];
uint256 reward = earned(msg.sender, rewardToken);
if (reward > 0) {
rewards[rewardToken][msg.sender] = 0;
emit RewardPaid(rewardToken, msg.sender, reward);
rewardToken.safeTransfer(msg.sender, reward);
}
unchecked {
++i;
}
}
}
function getReserves()
public
view
returns (uint128 _reserve0, uint128 _reserve1)
{
_reserve0 = reserve0;
_reserve1 = reserve1;
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {IERC20} from "@openzeppelin/contracts/token/ERC20/IERC20.sol";
import {SafeERC20} from "@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
import {RewardPoolETH} from "./RewardPoolETH.sol";
import "./ICollectionswap.sol";
import "./ILSSVMPair.sol";
import "./SortitionSumTreeFactory.sol";
import "./lib/ReentrancyGuard.sol";
import {RNGInterface} from "./rng/RNGInterface.sol";
contract RewardPoolETHDraw is ReentrancyGuard, RewardPoolETH {
using SafeERC20 for IERC20;
using SortitionSumTreeFactory for SortitionSumTreeFactory.SortitionSumTrees;
address public factory;
/// @notice RNG contract interface
RNGInterface public rng;
uint256 public thisEpoch;
uint32 public myRNGRequestId;
mapping(uint256 => uint256) public epochToStartTime;
mapping(uint256 => uint256) public epochToFinishTime;
mapping(uint256 => uint256) public epochToRandomNumber;
struct SimpleObservation {
uint256 timestamp;
uint256 lastAmount;
uint256 twapCumSum;
uint256 predictedEndSum; // relies on knowing epoch end in advance
}
// list of addresses who have interacted with this contract - necessary to get the list of all interactors
address[] internal totalVaultInteractorList;
mapping(address => SimpleObservation) public lastTWAPObservation;
enum DrawStatus {
Open,
Closed,
Resolved
}
DrawStatus public drawStatus;
//////////////////////////////////////////
// DRAW AMOUNTS
//////////////////////////////////////////
bytes32 private TREE_KEY;
uint256 private constant MAX_TREE_LEAVES = 5;
uint256 public constant MAX_REWARD_NFTS = 200;
uint256 public constant MAX_PRIZE_WINNERS_PER_EPOCH = 500;
address private constant DUMMY_ADDRESS = address(0);
SortitionSumTreeFactory.SortitionSumTrees internal sortitionSumTrees;
struct NFTData {
IERC721 nftAddress;
uint256 nftID;
}
struct PrizeSet {
// ERC20 tokens to reward
IERC20[] erc20RewardTokens;
// ERC721 tokens to reward
IERC721[] erc721RewardTokens;
uint256 numERC721Prizes;
uint256 prizePerWinner;
}
struct WinnerConfig {
uint256 numberOfDrawWinners;
uint256 numberOfPrizesPerWinner;
uint256 remainder;
}
// Mappings of epoch to prize data
mapping(uint256 => PrizeSet) public epochPrizeSets;
mapping(uint256 => mapping(IERC20 => uint256)) public epochERC20PrizeAmounts;
mapping(uint256 => mapping(IERC721 => bool)) public epochERC721Collections;
mapping(uint256 => mapping(uint256 => NFTData)) public epochERC721PrizeIdsData;
mapping(uint256 => WinnerConfig) public epochWinnerConfigs;
mapping(uint256 => mapping(address => uint256)) public epochUserERC20NumWinnerEntries; // denominator is epochWinnerConfigs[epoch].numberOfDrawWinners
// NFT prizes
/**
* @dev epoch => user => `index_arr`, where `address` is awardable
* `epochERC721PrizeIdsData[index * numberOfPrizesPerWinner + 1]`
* to
* `epochERC721PrizeIdsData[(index + 1) * numberOfPrizesPerWinner]`
* for all `index` in `index_arr`
*/
mapping(uint256 => mapping(address => uint256[])) public epochUserPrizeStartIndices;
// Both ERC20 and ERC721 prizes
mapping(uint256 => mapping(address => bool)) public isPrizeClaimable;
//////////////////////////////////////////
// EVENTS
//////////////////////////////////////////
event DrawOpen(uint256 epoch);
event DrawClosed(uint256 epoch);
event ERC721PrizesAdded(
IERC721[] nftCollections,
uint256[] nftIds
);
event ERC20PrizesAdded(
IERC20[] rewardTokens,
uint256[] rewardAmounts
);
event DrawResolved(uint256 epoch, address[] winners);
event Claimed(address user, uint256 epoch);
modifier onlyDeployer() {
require(msg.sender == deployer, "Only deployer");
_;
}
constructor() {
_disableInitializers();
}
/**
@dev - this is called by the factory.
@param _protocolOwner - the owner of the protocol
@param _factory - the factory address
@param _deployer - the vault deployer's address
@param _lpToken - Collectionswap deployment address
@param _rng - RNG contract address
@param _additionalERC20DrawPrize - additional ERC20 prize to add to the draw, list
@param _additionalERC20DrawPrizeAmounts - additional ERC20 prize amount to add to the draw, list
@param _nftCollectionsPrize - additional ERC721 prize to add to the draw, list
@param _nftIdsPrize - additional ERC721 prize ID to add to the draw, list
**/
function initialize(
address _protocolOwner,
address _factory,
address _deployer,
ICollectionswap _lpToken,
IERC721 _nft,
address _bondingCurve,
uint128 _delta,
uint96 _fee,
IERC20[] calldata _rewardTokens,
uint256[] calldata _rewardRates,
uint256 _rewardStartTime,
uint256 _rewardPeriodFinish,
RNGInterface _rng,
IERC20[] calldata _additionalERC20DrawPrize,
uint256[] calldata _additionalERC20DrawPrizeAmounts,
IERC721[] calldata _nftCollectionsPrize,
uint256[] calldata _nftIdsPrize,
uint256 _prizesPerWinner,
uint256 _drawStartTime,
uint256 _drawPeriodFinish
) external {
__ReentrancyGuard_init();
LOCK_TIME = 90 days;
factory = _factory;
super.initialize({
_protocolOwner: _protocolOwner,
_deployer: _deployer,
_lpToken: _lpToken,
_nft: _nft,
_bondingCurve: _bondingCurve,
_delta: _delta,
_fee: _fee,
_rewardTokens: _rewardTokens,
_rewardRates: _rewardRates,
_startTime: _rewardStartTime,
_periodFinish: _rewardPeriodFinish
});
rng = _rng;
TREE_KEY = keccak256(abi.encodePacked(uint256(1)));
sortitionSumTrees.createTree(TREE_KEY, MAX_TREE_LEAVES);
// Ensure that there is always a non-zero initial stake.
// This is to prevent the sortition tree from being empty.
// Can be anyone, have set to DUMMY_ADDRESS, soft guarantee of not zeroing out
// draw stake midway (stake then unstake)
bytes32 _ID = addressToBytes32(DUMMY_ADDRESS);
sortitionSumTrees.set(TREE_KEY, 1, _ID);
// thisEpoch is incremented in function below
_addNewPrizeEpoch({
_nftCollectionsPrize: _nftCollectionsPrize,
_nftIdsPrize: _nftIdsPrize,
_prizesPerWinner: _prizesPerWinner,
_erc20Prize: _additionalERC20DrawPrize,
_erc20PrizeAmounts: _additionalERC20DrawPrizeAmounts,
_drawStartTime: _drawStartTime,
_drawPeriodFinish: _drawPeriodFinish,
_callerIsDeployer: false,
_epoch: thisEpoch
});
}
/**
@dev - add ERC721 prizes and / or ERC20 prizes to the prize set
any mutation functions to prize sets should not permit epoch parameterization
@dev - Only callable by deployer
@dev - Specify zero drawStartTime to add during an epoch, else adding after an epoch
**/
function addNewPrizes(
IERC721[] calldata _nftCollectionsPrize,
uint256[] calldata _nftIdsPrize,
IERC20[] calldata _erc20Prize,
uint256[] calldata _erc20PrizeAmounts,
uint256 _prizesPerWinner,
uint256 _drawStartTime,
uint256 _drawPeriodFinish
) external onlyDeployer {
_addNewPrizeEpoch({
_nftCollectionsPrize: _nftCollectionsPrize,
_nftIdsPrize: _nftIdsPrize,
_erc20Prize: _erc20Prize,
_erc20PrizeAmounts: _erc20PrizeAmounts,
_prizesPerWinner: _prizesPerWinner,
_drawStartTime: _drawStartTime,
_drawPeriodFinish: _drawPeriodFinish,
_callerIsDeployer: true,
_epoch: thisEpoch
});
// Add after epoch
// fast forward sortition tree
if (_drawStartTime != 0) recalcSortitionTreesEpochStart();
}
/**
@dev - internal method for transferring and adding ERC721 and ERC20 prizes to the prize set.
@dev - Factory has a special-workflow for not transferring as it is easier to initialize state and then transfer tokens in.
**/
function _addNewPrizeEpoch(
IERC721[] calldata _nftCollectionsPrize,
uint256[] calldata _nftIdsPrize,
IERC20[] calldata _erc20Prize,
uint256[] calldata _erc20PrizeAmounts,
uint256 _prizesPerWinner,
uint256 _drawStartTime,
uint256 _drawPeriodFinish,
bool _callerIsDeployer,
uint256 _epoch
) internal nonReentrant {
uint256 numNfts = _nftCollectionsPrize.length;
/////////////////////////////
/// UPDATES FOR NEW EPOCH ///
/////////////////////////////
if (_drawStartTime != 0) {
// ensure that current epoch has been resolved
// excludes base case of _epoch == 0 (uninitialized)
if (_epoch != 0) require(drawStatus == DrawStatus.Resolved, "Should be resolved");
// when setting new epoch,
// we need numNfts > 0 to ensure the draw is workable
// because the distribution of the prizes depends on the number of ERC721 tokens
require(numNfts > 0, "Min 1 NFT");
require(_drawStartTime > block.timestamp, "start < now");
require(_drawPeriodFinish > _drawStartTime, "end <= start");
// update thisEpoch storage variable
// and increment _epoch to new epoch
thisEpoch = ++_epoch;
// initialize prize set for new epoch
_initPrizeSet(_epoch);
// set new epoch times
epochToStartTime[_epoch] = _drawStartTime;
epochToFinishTime[_epoch] = _drawPeriodFinish;
// update reward sweep time if it will exceed current reward sweep time
uint256 newRewardSweepTime = _drawPeriodFinish + LOCK_TIME;
if (rewardSweepTime < newRewardSweepTime) rewardSweepTime = newRewardSweepTime;
drawStatus = DrawStatus.Open;
emit DrawOpen(_epoch);
} else {
if (_epoch != 0) {
// when adding to an existing epoch,
// require that the draw is not resolved
require(drawStatus != DrawStatus.Resolved, "Should not be resolved");
} else {
// If epoch is zero (initialization),
// We assume the project is only using the reward distribution portion initially,
// and would use the draw functionality in the future
// Hence, we check that no rewards are being distributed
require(numNfts == 0 && _erc20Prize.length == 0, "Init with 0 startTime");
}
}
////////////////////////////
/// HANDLING NFT PRIZES ///
////////////////////////////
require(numNfts == _nftIdsPrize.length, "Diff NFT lengths");
PrizeSet storage prizeSet = epochPrizeSets[_epoch];
// index for appending to existing number of NFTs
uint256 prizeIdIndex = prizeSet.numERC721Prizes;
require(prizeIdIndex + numNfts < MAX_REWARD_NFTS, "Exceed max NFTs");
// iterate through each nft in prizePool.nftCollections and transfer to this contract if caller is deployer
for (uint256 i; i < numNfts; ++i) {
IERC721 myCollAdd = (_nftCollectionsPrize[i]);
if (!epochERC721Collections[_epoch][myCollAdd]) {
// new collection for this epoch
require(_nftCollectionsPrize[i].supportsInterface(0x80ac58cd), "NFT Prize not ERC721"); // check if it supports ERC721
epochERC721Collections[_epoch][myCollAdd] = true;
prizeSet.erc721RewardTokens.push(myCollAdd);
}
// @dev: only need transfer NFTs in if caller is deployer
if (_callerIsDeployer) {
_nftCollectionsPrize[i].safeTransferFrom(msg.sender, address(this), _nftIdsPrize[i]);
}
epochERC721PrizeIdsData[_epoch][++prizeIdIndex] = NFTData(myCollAdd, _nftIdsPrize[i]);
}
// update only if numNfts is non-zero
if (numNfts != 0) {
prizeSet.numERC721Prizes = prizeIdIndex;
_setPrizePerWinner(prizeSet, _prizesPerWinner);
}
emit ERC721PrizesAdded(_nftCollectionsPrize, _nftIdsPrize);
/////////////////////////////
/// HANDLING ERC20 PRIZES ///
/////////////////////////////
require(_erc20Prize.length == _erc20PrizeAmounts.length, "Diff ERC20 lengths");
// iterate through each ERC20 token and transfer to this contract
for (uint256 i; i < _erc20Prize.length; ++i) {
require(_erc20PrizeAmounts[i] != 0, "0 prize amount");
// @dev: only need transfer tokens in if caller is deployer
if (_callerIsDeployer) {
_erc20Prize[i].safeTransferFrom(msg.sender, address(this), _erc20PrizeAmounts[i]);
}
IERC20 myCollAdd = _erc20Prize[i];
uint256 epochAmount = epochERC20PrizeAmounts[_epoch][myCollAdd];
if (epochAmount == 0) {
// not encountered before
prizeSet.erc20RewardTokens.push(myCollAdd);
// ensure no. of ERC20 tokens don't exceed MAX_REWARD_TOKENS
require(prizeSet.erc20RewardTokens.length <= MAX_REWARD_TOKENS, "Exceed max tokens");
}
epochERC20PrizeAmounts[_epoch][myCollAdd] = epochAmount + _erc20PrizeAmounts[i];
}
emit ERC20PrizesAdded(_erc20Prize, _erc20PrizeAmounts);
}
function rechargeRewardPool(
IERC20[] calldata inputRewardTokens,
uint256[] calldata inputRewardAmounts,
uint256 _newPeriodFinish
) public override {
uint256 currentRewardSweepTime = rewardSweepTime;
// sweep time gets updated to _newPeriodFinish + LOCK_TIME
super.rechargeRewardPool(inputRewardTokens, inputRewardAmounts, _newPeriodFinish);
// reset to currentRewardSweepTime if new sweep time is shorter
// ie. rewardSweepTime should always be the maximum of its current and updated value
if (rewardSweepTime < currentRewardSweepTime) rewardSweepTime = currentRewardSweepTime;
}
/**
@dev - initializes prize set for new epoch. Callable internally only after epoch has been incremented.
**/
function _initPrizeSet(uint256 epoch) internal {
epochPrizeSets[epoch] = PrizeSet({
erc721RewardTokens: new IERC721[](0),
numERC721Prizes: 0,
erc20RewardTokens: new IERC20[](0),
prizePerWinner: 1
});
}
/**
@dev - O(1) lookup for previous interaction
**/
function firstTimeUser(address user) public view returns (bool) {
return lastTWAPObservation[user].timestamp == 0;
}
/**
* @notice Fresh state for the sortition tree at the start of a new epoch.
* prune interactors with 0 `lastAmount` as they are effectively irrelevant
* @dev - As we are taking a TWAB and using a persistent sortition tree, we
* need to maintain a list of addresses who have interacted with the vault
* in the past, and recalc the TWAB for each epoch. This is done by the
* deployer, and is part of the cost of recharging. The interactor list is
* pruned upon calling this function.
*/
function recalcSortitionTreesEpochStart() internal {
uint256 amountTimeRemainingToVaultEnd = getFunctionalTimeRemainingInVault(block.timestamp);
// Recalculate sortition trees for everything in vaultInteractorList,
// for the new periodFinish. Use i - 1 because (0 - 1) underflows to
// uintmax which causes a revert
for (uint256 i = totalVaultInteractorList.length; i > 0; --i) {
address vaultInteractor = totalVaultInteractorList[i - 1];
SimpleObservation storage lastObservation = lastTWAPObservation[vaultInteractor];
uint256 sortitionValue;
// `lastObservation.lastAmount` remains the same
if (lastObservation.lastAmount == 0) {
// Delete the vault interactor from storage if they have 0 balance
// (this is why we iterate in reverse order).
totalVaultInteractorList[i - 1] = totalVaultInteractorList[totalVaultInteractorList.length - 1];
totalVaultInteractorList.pop();
// Delete vault interactor from `lastTWAPObservation`
delete lastTWAPObservation[vaultInteractor];
} else {
lastObservation.timestamp = block.timestamp;
lastObservation.twapCumSum = 0;
lastObservation.predictedEndSum = lastObservation.lastAmount * amountTimeRemainingToVaultEnd;
sortitionValue = lastObservation.predictedEndSum;
}
// Update the sortition tree. Sortition tree library deletes 0
// entries for us
bytes32 _ID = addressToBytes32(vaultInteractor);
sortitionSumTrees.set(TREE_KEY, sortitionValue, _ID);
}
}
/**
* @notice Stake an LP token
* @param tokenId The tokenId of the LP token to stake
* @return amount The amount of reward token minted as a result
* @dev - Maintain the new expected TWAB balance for the user.
*/
function stake(uint256 tokenId) public override returns (uint256 amount) {
if (firstTimeUser(msg.sender)) totalVaultInteractorList.push(msg.sender);
amount = super.stake(tokenId);
updateSortitionStake(msg.sender, amount, true, (drawStatus == DrawStatus.Open));
}
/**
@dev - if draw is open, directly calculate the expected TWAB balance for the user.
**/
function burn(uint256 tokenId) internal override returns (uint256 amount) {
amount = super.burn(tokenId);
updateSortitionStake(msg.sender, amount, false, (drawStatus == DrawStatus.Open));
}
/**
@dev - get "functional time" = the remaining amount of usable time to extend on the current TWAB cumsum. This is to calculate the expected TWAB at drawFinish so that we don't have to iterate through all addresses to get the right epoch-end weighted stake.
We check that (A) eventTimestamp is less than drawFinish. And it is always bounded by the drawFinish - start time, even if the vault hasn't started.
**/
function getFunctionalTimeRemainingInVault(uint256 eventTimestamp) public view returns (uint256) {
uint256 _epoch = thisEpoch;
uint256 _drawStart = epochToStartTime[_epoch];
uint256 _drawFinish = epochToFinishTime[_epoch];
if (eventTimestamp < _drawStart) {
// draw program has not commenced
return _drawFinish - _drawStart;
}
return eventTimestamp > _drawFinish ? 0 : _drawFinish - eventTimestamp;
}
function getEffectiveTimeElapsedThisEpoch(uint256 eventTimestamp, uint256 lastObservationTimestamp) public view returns (uint256) {
uint256 _epoch = thisEpoch;
uint256 _drawStart = epochToStartTime[_epoch];
uint256 _drawFinish = epochToFinishTime[_epoch];
// return 0 if draw program has not commenced
if (eventTimestamp < _drawStart) return 0;
// min(drawFinish, eventTimestamp) - max(drawStart, lastObservationTimestamp)
uint256 effectiveEndPoint = eventTimestamp > _drawFinish ? _drawFinish : eventTimestamp;
uint256 effectiveStartPoint = lastObservationTimestamp < _drawStart ? _drawStart : lastObservationTimestamp;
return effectiveEndPoint - effectiveStartPoint;
}
/**
@dev - updateSortitionStake (updates Sortition stake and TWAB). This is called either when a user stakes/burns, but sortition tree is modified only when draw is open
**/
function updateSortitionStake(address _staker, uint256 _amount, bool isIncrement, bool modifySortition) internal {
uint256 amountTimeRemainingToVaultEnd = getFunctionalTimeRemainingInVault(block.timestamp);
SimpleObservation storage lastObservation = lastTWAPObservation[_staker];
uint256 timeElapsed = getEffectiveTimeElapsedThisEpoch(block.timestamp, lastObservation.timestamp);
// update lastObservation parameters
// increment cumulative sum given effective time elapsed
lastObservation.twapCumSum += timeElapsed * lastObservation.lastAmount;
lastObservation.lastAmount = isIncrement ?
lastObservation.lastAmount + _amount :
lastObservation.lastAmount - _amount;
lastObservation.timestamp = block.timestamp;
lastObservation.predictedEndSum = lastObservation.twapCumSum + (amountTimeRemainingToVaultEnd * lastObservation.lastAmount);
if (modifySortition) {
bytes32 _ID = addressToBytes32(_staker);
sortitionSumTrees.set(TREE_KEY, lastObservation.predictedEndSum, _ID);
}
}
/**
@dev - get numerator/denominator for chances of winning
**/
function viewChanceOfDraw(address _staker) external view returns (uint256 chanceNumerator, uint256 chanceDenominator) {
bytes32 _ID = addressToBytes32(_staker);
bytes32 _treeKey = TREE_KEY;
chanceNumerator = sortitionSumTrees.stakeOf(_treeKey, _ID);
chanceDenominator = sortitionSumTrees.total(_treeKey);
}
/**
@dev - get number of winners and number of prizes per winner
**/
function getDrawDistribution(uint256 epoch) public view returns (uint256 numberOfDrawWinners, uint256 numberOfPrizesPerWinner, uint256 remainder) {
numberOfPrizesPerWinner = epochPrizeSets[epoch].prizePerWinner;
uint256 numPrizes = epochPrizeSets[epoch].numERC721Prizes;
// numberOfPrizesPerWinner has been checked to be <= numPrizes
// ensuring at least 1 winner
numberOfDrawWinners = numPrizes / numberOfPrizesPerWinner;
if (numberOfDrawWinners > MAX_PRIZE_WINNERS_PER_EPOCH) numberOfDrawWinners = MAX_PRIZE_WINNERS_PER_EPOCH;
numberOfPrizesPerWinner = numPrizes / numberOfDrawWinners;
remainder = numPrizes % numberOfDrawWinners;
}
function setPrizePerWinner(uint256 _prizePerWinner) external onlyDeployer {
// not necessary to check drawStatus because winner config will be saved upon draw resolution: resolveDrawResults()
_setPrizePerWinner(epochPrizeSets[thisEpoch], _prizePerWinner);
}
function _setPrizePerWinner(PrizeSet storage prizeSet, uint256 _prizePerWinner) internal {
require(_prizePerWinner <= prizeSet.numERC721Prizes, "prizePerWinner > NFTs");
require(_prizePerWinner > 0, "0 prizePerWinner");
prizeSet.prizePerWinner = _prizePerWinner;
}
/**
@dev - allows draw to be closed once the periodFinish has passed. Can be called by anyone (not just deployer) - in case deployer goes missing
**/
function closeDraw() external
returns (uint32 requestId, uint32 lockBlock)
{
require(drawStatus == DrawStatus.Open, "Draw not open");
require(block.timestamp > epochToFinishTime[thisEpoch], "Too early");
drawStatus = DrawStatus.Closed;
(requestId, lockBlock) = rng.requestRandomNumber();
myRNGRequestId = requestId;
emit DrawClosed(thisEpoch);
}
/**
@dev - pseudorandom number generation from a verifiably random starting point.
**/
function getWinner(uint256 randomNumber, uint256 iteration) private view returns (address winner) {
// uint256 randomNumber = epochToRandomNumber[thisEpoch];
uint i;
bytes32 _treeKey = TREE_KEY;
while (true) {
uint256 finalRandom = uint256(keccak256(abi.encodePacked(randomNumber, iteration, i)));
winner = bytes32ToAddress(sortitionSumTrees.draw(_treeKey, finalRandom));
if (winner != DUMMY_ADDRESS) {
return winner;
}
++i;
}
}
/**
@dev - resolvesDrawResults. This can be called by anyone (not just deployer) - in case deployer goes missing. Sets the winners and their start indices, taking reference from NFT address x ID tuples
**/
function resolveDrawResults() external {
// cache storage read
uint32 _myRNGRequestId = myRNGRequestId;
require(drawStatus == DrawStatus.Closed, "Draw not closed");
require(rng.isRequestComplete(_myRNGRequestId), "Request incomplete");
uint256 _epoch = thisEpoch;
// set drawStatus to resolved
drawStatus = DrawStatus.Resolved;
uint256 randomNum = rng.randomNumber(_myRNGRequestId);
epochToRandomNumber[_epoch] = randomNum;
// prize Distribution
(uint256 numberOfDrawWinners, uint256 numberOfPrizesPerWinner, uint256 remainder) = getDrawDistribution(_epoch);
epochWinnerConfigs[_epoch] = WinnerConfig(numberOfDrawWinners, numberOfPrizesPerWinner, remainder);
// iterate through the Number of Winners
uint256 denominator = sortitionSumTrees.total(TREE_KEY);
bool noDrawParticipants = (denominator == 1);
// winner list may contain duplicate addresses
// emitted in the WinnersDrawn event but not stored
address[] memory winnerList = new address[](numberOfDrawWinners);
for (uint256 i; i < numberOfDrawWinners; ++i) {
// get the winner
address winner = noDrawParticipants ? deployer : getWinner(randomNum, i);
//////////////////////////////////////
// NFT amount
//////////////////////////////////////
epochUserPrizeStartIndices[_epoch][winner].push(i);
// set claimable status
if (!isPrizeClaimable[_epoch][winner]) {
isPrizeClaimable[_epoch][winner] = true;
}
// save in winner list
winnerList[i] = winner;
//////////////////////////////////////
// ERC20 amount
//////////////////////////////////////
epochUserERC20NumWinnerEntries[_epoch][winner] += 1;
}
emit DrawResolved(_epoch, winnerList);
}
/**
@dev - Claims your share of the prize per epoch. Takes cue from the number of ERC721 tokens, first-class prizes. ERC20 tokens distribution are determined from ERC-721 tokens
**/
function claimMyShare(uint256 epoch) public {
require(isPrizeClaimable[epoch][msg.sender], "No claimable share");
// blocks re-entrancy for the same epoch
isPrizeClaimable[epoch][msg.sender] = false;
// NFTs
uint256[] memory startIndices = epochUserPrizeStartIndices[epoch][msg.sender];
uint256 numberOfPrizesPerWinner = epochWinnerConfigs[epoch].numberOfPrizesPerWinner;
// Award each winner N := numberOfPrizesPerWinner NFTs
// winner 1 would be awarded NFTs of prize indices 1 to N
// winner 2 would be awarded NFTs of prize indices N+1 to 2N
// etc.
uint256 prizeIndex;
for (uint256 i; i < startIndices.length; ++i) {
prizeIndex = startIndices[i] * numberOfPrizesPerWinner;
for (uint256 j = 0; j < numberOfPrizesPerWinner; ++j) {
// starting prize index is 1-indexed, not 0-indexed
// hence, we use the prefix increment so that value after increment is returned and used
NFTData storage mytuple = epochERC721PrizeIdsData[epoch][++prizeIndex];
mytuple.nftAddress.safeTransferFrom(address(this), msg.sender, mytuple.nftID);
}
}
// claimMyShareERC20(epoch);
// ERC20s
uint256 numerator = epochUserERC20NumWinnerEntries[epoch][msg.sender];
/**
* @dev numberOfDrawWinners is the number of winners with duplicates
*/
uint256 denominator = epochWinnerConfigs[epoch].numberOfDrawWinners;
IERC20[] memory erc20RewardTokens = epochPrizeSets[epoch].erc20RewardTokens;
for (uint256 i; i < erc20RewardTokens.length; i++) {
IERC20 token = erc20RewardTokens[i];
uint256 totalReward = epochERC20PrizeAmounts[epoch][token];
uint256 userReward = (totalReward * numerator) / denominator;
token.safeTransfer(msg.sender, userReward);
}
emit Claimed(msg.sender, epoch);
}
/**
@dev - Claims your share of the prize for all epochs
**/
function claimAllKnownShares() external {
uint256 epoch = thisEpoch;
unchecked {
for (uint256 i = 1; i <= epoch; ++i) {
if (isPrizeClaimable[i][msg.sender]) {
claimMyShare(i);
}
}
}
}
/**
@dev - Sweeps remaining NFTs after draw resolution
**/
function sweepRemainderNfts(uint256 epoch) external onlyDeployer {
require(epochToRandomNumber[epoch] != 0, "Unresolved draw");
uint256 numNfts = epochPrizeSets[epoch].numERC721Prizes;
// undistributed NFTs will be from the last index
// prizeData is 1-indexed
uint256 endIndex = numNfts - epochWinnerConfigs[epoch].remainder;
unchecked {
for (uint256 i = numNfts; i > endIndex; --i) {
NFTData storage nftData = epochERC721PrizeIdsData[epoch][i];
nftData.nftAddress.safeTransferFrom(address(this), msg.sender, nftData.nftID);
}
}
}
/**
@dev - Sweeps unclaimed NFTs, but only after rewardSweepTime
**/
function sweepUnclaimedNfts(uint256 epoch, uint256[] calldata prizeIndices) external onlyDeployer {
require(block.timestamp > rewardSweepTime, "Too early");
unchecked {
for (uint256 i; i < prizeIndices.length; ++i) {
NFTData storage nftData = epochERC721PrizeIdsData[epoch][prizeIndices[i]];
nftData.nftAddress.safeTransferFrom(address(this), msg.sender, nftData.nftID);
}
}
}
/**
@dev - Helper functions
**/
function addressToBytes32(address _address) internal pure returns (bytes32) {
return bytes32(uint256(uint160(_address)));
}
function bytes32ToAddress(bytes32 _bytes32) internal pure returns (address) {
return address(uint160(uint256(_bytes32)));
}
}// SPDX-License-Identifier: GPL-3.0
pragma solidity ^0.8.6;
import "@chainlink/contracts/src/v0.8/interfaces/VRFCoordinatorV2Interface.sol";
import "./RNGInterface.sol";
/**
* @title RNG Chainlink V2 Interface
* @notice Provides an interface for requesting random numbers from Chainlink VRF V2.
*/
interface RNGChainlinkV2Interface is RNGInterface {
/**
* @notice Get Chainlink VRF keyHash associated with this contract.
* @return bytes32 Chainlink VRF keyHash
*/
function getKeyHash() external view returns (bytes32);
/**
* @notice Get Chainlink VRF subscription id associated with this contract.
* @return uint64 Chainlink VRF subscription id
*/
function getSubscriptionId() external view returns (uint64);
/**
* @notice Get Chainlink VRF coordinator contract address associated with this contract.
* @return address Chainlink VRF coordinator address
*/
function getVrfCoordinator() external view returns (VRFCoordinatorV2Interface);
/**
* @notice Set Chainlink VRF keyHash.
* @dev This function is only callable by the owner.
* @param keyHash Chainlink VRF keyHash
*/
function setKeyhash(bytes32 keyHash) external;
/**
* @notice Set Chainlink VRF subscription id associated with this contract.
* @dev This function is only callable by the owner.
* @param subscriptionId Chainlink VRF subscription id
*/
function setSubscriptionId(uint64 subscriptionId) external;
/// for a factory contract to set the child contracts as allowed callers
function setAllowedCaller(address allowed) external;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (proxy/Clones.sol)
pragma solidity ^0.8.0;
/**
* @dev https://eips.ethereum.org/EIPS/eip-1167[EIP 1167] is a standard for
* deploying minimal proxy contracts, also known as "clones".
*
* > To simply and cheaply clone contract functionality in an immutable way, this standard specifies
* > a minimal bytecode implementation that delegates all calls to a known, fixed address.
*
* The library includes functions to deploy a proxy using either `create` (traditional deployment) or `create2`
* (salted deterministic deployment). It also includes functions to predict the addresses of clones deployed using the
* deterministic method.
*
* _Available since v3.4._
*/
library Clones {
/**
* @dev Deploys and returns the address of a clone that mimics the behaviour of `implementation`.
*
* This function uses the create opcode, which should never revert.
*/
function clone(address implementation) internal returns (address instance) {
/// @solidity memory-safe-assembly
assembly {
let ptr := mload(0x40)
mstore(ptr, 0x3d602d80600a3d3981f3363d3d373d3d3d363d73000000000000000000000000)
mstore(add(ptr, 0x14), shl(0x60, implementation))
mstore(add(ptr, 0x28), 0x5af43d82803e903d91602b57fd5bf30000000000000000000000000000000000)
instance := create(0, ptr, 0x37)
}
require(instance != address(0), "ERC1167: create failed");
}
/**
* @dev Deploys and returns the address of a clone that mimics the behaviour of `implementation`.
*
* This function uses the create2 opcode and a `salt` to deterministically deploy
* the clone. Using the same `implementation` and `salt` multiple time will revert, since
* the clones cannot be deployed twice at the same address.
*/
function cloneDeterministic(address implementation, bytes32 salt) internal returns (address instance) {
/// @solidity memory-safe-assembly
assembly {
let ptr := mload(0x40)
mstore(ptr, 0x3d602d80600a3d3981f3363d3d373d3d3d363d73000000000000000000000000)
mstore(add(ptr, 0x14), shl(0x60, implementation))
mstore(add(ptr, 0x28), 0x5af43d82803e903d91602b57fd5bf30000000000000000000000000000000000)
instance := create2(0, ptr, 0x37, salt)
}
require(instance != address(0), "ERC1167: create2 failed");
}
/**
* @dev Computes the address of a clone deployed using {Clones-cloneDeterministic}.
*/
function predictDeterministicAddress(
address implementation,
bytes32 salt,
address deployer
) internal pure returns (address predicted) {
/// @solidity memory-safe-assembly
assembly {
let ptr := mload(0x40)
mstore(ptr, 0x3d602d80600a3d3981f3363d3d373d3d3d363d73000000000000000000000000)
mstore(add(ptr, 0x14), shl(0x60, implementation))
mstore(add(ptr, 0x28), 0x5af43d82803e903d91602b57fd5bf3ff00000000000000000000000000000000)
mstore(add(ptr, 0x38), shl(0x60, deployer))
mstore(add(ptr, 0x4c), salt)
mstore(add(ptr, 0x6c), keccak256(ptr, 0x37))
predicted := keccak256(add(ptr, 0x37), 0x55)
}
}
/**
* @dev Computes the address of a clone deployed using {Clones-cloneDeterministic}.
*/
function predictDeterministicAddress(address implementation, bytes32 salt)
internal
view
returns (address predicted)
{
return predictDeterministicAddress(implementation, salt, address(this));
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (access/Ownable.sol)
pragma solidity ^0.8.0;
import "../utils/Context.sol";
/**
* @dev Contract module which provides a basic access control mechanism, where
* there is an account (an owner) that can be granted exclusive access to
* specific functions.
*
* By default, the owner account will be the one that deploys the contract. This
* can later be changed with {transferOwnership}.
*
* This module is used through inheritance. It will make available the modifier
* `onlyOwner`, which can be applied to your functions to restrict their use to
* the owner.
*/
abstract contract Ownable is Context {
address private _owner;
event OwnershipTransferred(address indexed previousOwner, address indexed newOwner);
/**
* @dev Initializes the contract setting the deployer as the initial owner.
*/
constructor() {
_transferOwnership(_msgSender());
}
/**
* @dev Throws if called by any account other than the owner.
*/
modifier onlyOwner() {
_checkOwner();
_;
}
/**
* @dev Returns the address of the current owner.
*/
function owner() public view virtual returns (address) {
return _owner;
}
/**
* @dev Throws if the sender is not the owner.
*/
function _checkOwner() internal view virtual {
require(owner() == _msgSender(), "Ownable: caller is not the owner");
}
/**
* @dev Leaves the contract without owner. It will not be possible to call
* `onlyOwner` functions anymore. Can only be called by the current owner.
*
* NOTE: Renouncing ownership will leave the contract without an owner,
* thereby removing any functionality that is only available to the owner.
*/
function renounceOwnership() public virtual onlyOwner {
_transferOwnership(address(0));
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Can only be called by the current owner.
*/
function transferOwnership(address newOwner) public virtual onlyOwner {
require(newOwner != address(0), "Ownable: new owner is the zero address");
_transferOwnership(newOwner);
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Internal function without access restriction.
*/
function _transferOwnership(address newOwner) internal virtual {
address oldOwner = _owner;
_owner = newOwner;
emit OwnershipTransferred(oldOwner, newOwner);
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {CurveErrorCodes} from "./CurveErrorCodes.sol";
interface ICurve {
/**
@notice Validates if a delta value is valid for the curve. The criteria for
validity can be different for each type of curve, for instance ExponentialCurve
requires delta to be greater than 1.
@param delta The delta value to be validated
@return valid True if delta is valid, false otherwise
*/
function validateDelta(uint128 delta) external pure returns (bool valid);
/**
@notice Validates if a new spot price is valid for the curve. Spot price is generally assumed to be the immediate sell price of 1 NFT to the pool, in units of the pool's paired token.
@param newSpotPrice The new spot price to be set
@return valid True if the new spot price is valid, false otherwise
*/
function validateSpotPrice(uint128 newSpotPrice)
external
view
returns (bool valid);
/**
@notice Given the current state of the pair and the trade, computes how much the user
should pay to purchase an NFT from the pair, the new spot price, and other values.
@param spotPrice The current selling spot price of the pair, in tokens
@param delta The delta parameter of the pair, what it means depends on the curve
@param numItems The number of NFTs the user is buying from the pair
@param feeMultiplier Determines how much fee the LP takes from this trade, 18 decimals
@param protocolFeeMultiplier Determines how much fee the protocol takes from this trade, 18 decimals
@return error Any math calculation errors, only Error.OK means the returned values are valid
@return newSpotPrice The updated selling spot price, in tokens
@return newDelta The updated delta, used to parameterize the bonding curve
@return inputValue The amount that the user should pay, in tokens
@return protocolFee The amount of fee to send to the protocol, in tokens
*/
function getBuyInfo(
uint128 spotPrice,
uint128 delta,
uint256 numItems,
uint256 feeMultiplier,
uint256 protocolFeeMultiplier
)
external
view
returns (
CurveErrorCodes.Error error,
uint128 newSpotPrice,
uint128 newDelta,
uint256 inputValue,
uint256 protocolFee
);
/**
@notice Given the current state of the pair and the trade, computes how much the user
should receive when selling NFTs to the pair, the new spot price, and other values.
@param spotPrice The current selling spot price of the pair, in tokens
@param delta The delta parameter of the pair, what it means depends on the curve
@param numItems The number of NFTs the user is selling to the pair
@param feeMultiplier Determines how much fee the LP takes from this trade, 18 decimals
@param protocolFeeMultiplier Determines how much fee the protocol takes from this trade, 18 decimals
@return error Any math calculation errors, only Error.OK means the returned values are valid
@return newSpotPrice The updated selling spot price, in tokens
@return newDelta The updated delta, used to parameterize the bonding curve
@return outputValue The amount that the user should receive, in tokens
@return protocolFee The amount of fee to send to the protocol, in tokens
*/
function getSellInfo(
uint128 spotPrice,
uint128 delta,
uint256 numItems,
uint256 feeMultiplier,
uint256 protocolFeeMultiplier
)
external
view
returns (
CurveErrorCodes.Error error,
uint128 newSpotPrice,
uint128 newDelta,
uint256 outputValue,
uint256 protocolFee
);
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {IERC20} from "@openzeppelin/contracts/token/ERC20/IERC20.sol";
import {IERC721} from "@openzeppelin/contracts/token/ERC721/IERC721.sol";
import {IERC1155} from "@openzeppelin/contracts/token/ERC1155/IERC1155.sol";
import {ICurve} from "./bonding-curves/ICurve.sol";
import {CurveErrorCodes} from "./bonding-curves/CurveErrorCodes.sol";
interface ILSSVMPair {
enum PoolType {
TOKEN,
NFT,
TRADE
}
function bondingCurve() external view returns (ICurve);
function getAllHeldIds() external view returns (uint256[] memory);
function delta() external view returns (uint128);
function fee() external view returns (uint96);
function nft() external view returns (IERC721);
function spotPrice() external view returns (uint128);
function withdrawERC721(IERC721 a, uint256[] calldata nftIds) external;
function withdrawERC20(IERC20 a, uint256 amount) external;
function withdrawERC1155(IERC1155 a, uint256[] calldata ids, uint256[] calldata amounts) external;
function getSellNFTQuote(uint256 numNFTs) external view
returns (
CurveErrorCodes.Error error,
uint256 newSpotPrice,
uint256 newDelta,
uint256 outputAmount,
uint256 protocolFee
);
}
interface ILSSVMPairETH is ILSSVMPair {
function withdrawAllETH() external;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (token/ERC721/IERC721.sol)
pragma solidity ^0.8.0;
import "../../utils/introspection/IERC165.sol";
/**
* @dev Required interface of an ERC721 compliant contract.
*/
interface IERC721 is IERC165 {
/**
* @dev Emitted when `tokenId` token is transferred from `from` to `to`.
*/
event Transfer(address indexed from, address indexed to, uint256 indexed tokenId);
/**
* @dev Emitted when `owner` enables `approved` to manage the `tokenId` token.
*/
event Approval(address indexed owner, address indexed approved, uint256 indexed tokenId);
/**
* @dev Emitted when `owner` enables or disables (`approved`) `operator` to manage all of its assets.
*/
event ApprovalForAll(address indexed owner, address indexed operator, bool approved);
/**
* @dev Returns the number of tokens in ``owner``'s account.
*/
function balanceOf(address owner) external view returns (uint256 balance);
/**
* @dev Returns the owner of the `tokenId` token.
*
* Requirements:
*
* - `tokenId` must exist.
*/
function ownerOf(uint256 tokenId) external view returns (address owner);
/**
* @dev Safely transfers `tokenId` token from `from` to `to`.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `tokenId` token must exist and be owned by `from`.
* - If the caller is not `from`, it must be approved to move this token by either {approve} or {setApprovalForAll}.
* - If `to` refers to a smart contract, it must implement {IERC721Receiver-onERC721Received}, which is called upon a safe transfer.
*
* Emits a {Transfer} event.
*/
function safeTransferFrom(
address from,
address to,
uint256 tokenId,
bytes calldata data
) external;
/**
* @dev Safely transfers `tokenId` token from `from` to `to`, checking first that contract recipients
* are aware of the ERC721 protocol to prevent tokens from being forever locked.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `tokenId` token must exist and be owned by `from`.
* - If the caller is not `from`, it must have been allowed to move this token by either {approve} or {setApprovalForAll}.
* - If `to` refers to a smart contract, it must implement {IERC721Receiver-onERC721Received}, which is called upon a safe transfer.
*
* Emits a {Transfer} event.
*/
function safeTransferFrom(
address from,
address to,
uint256 tokenId
) external;
/**
* @dev Transfers `tokenId` token from `from` to `to`.
*
* WARNING: Usage of this method is discouraged, use {safeTransferFrom} whenever possible.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `tokenId` token must be owned by `from`.
* - If the caller is not `from`, it must be approved to move this token by either {approve} or {setApprovalForAll}.
*
* Emits a {Transfer} event.
*/
function transferFrom(
address from,
address to,
uint256 tokenId
) external;
/**
* @dev Gives permission to `to` to transfer `tokenId` token to another account.
* The approval is cleared when the token is transferred.
*
* Only a single account can be approved at a time, so approving the zero address clears previous approvals.
*
* Requirements:
*
* - The caller must own the token or be an approved operator.
* - `tokenId` must exist.
*
* Emits an {Approval} event.
*/
function approve(address to, uint256 tokenId) external;
/**
* @dev Approve or remove `operator` as an operator for the caller.
* Operators can call {transferFrom} or {safeTransferFrom} for any token owned by the caller.
*
* Requirements:
*
* - The `operator` cannot be the caller.
*
* Emits an {ApprovalForAll} event.
*/
function setApprovalForAll(address operator, bool _approved) external;
/**
* @dev Returns the account approved for `tokenId` token.
*
* Requirements:
*
* - `tokenId` must exist.
*/
function getApproved(uint256 tokenId) external view returns (address operator);
/**
* @dev Returns if the `operator` is allowed to manage all of the assets of `owner`.
*
* See {setApprovalForAll}
*/
function isApprovedForAll(address owner, address operator) external view returns (bool);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.5.0) (token/ERC721/extensions/IERC721Enumerable.sol)
pragma solidity ^0.8.0;
import "../IERC721.sol";
/**
* @title ERC-721 Non-Fungible Token Standard, optional enumeration extension
* @dev See https://eips.ethereum.org/EIPS/eip-721
*/
interface IERC721Enumerable is IERC721 {
/**
* @dev Returns the total amount of tokens stored by the contract.
*/
function totalSupply() external view returns (uint256);
/**
* @dev Returns a token ID owned by `owner` at a given `index` of its token list.
* Use along with {balanceOf} to enumerate all of ``owner``'s tokens.
*/
function tokenOfOwnerByIndex(address owner, uint256 index) external view returns (uint256);
/**
* @dev Returns a token ID at a given `index` of all the tokens stored by the contract.
* Use along with {totalSupply} to enumerate all tokens.
*/
function tokenByIndex(uint256 index) external view returns (uint256);
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
contract CurveErrorCodes {
enum Error {
OK, // No error
INVALID_NUMITEMS, // The numItem value is 0
SPOT_PRICE_OVERFLOW // The updated spot price doesn't fit into 128 bits
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.6.0) (token/ERC20/IERC20.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC20 standard as defined in the EIP.
*/
interface IERC20 {
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/
event Transfer(address indexed from, address indexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/
event Approval(address indexed owner, address indexed spender, uint256 value);
/**
* @dev Returns the amount of tokens in existence.
*/
function totalSupply() external view returns (uint256);
/**
* @dev Returns the amount of tokens owned by `account`.
*/
function balanceOf(address account) external view returns (uint256);
/**
* @dev Moves `amount` tokens from the caller's account to `to`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transfer(address to, uint256 amount) external returns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/
function allowance(address owner, address spender) external view returns (uint256);
/**
* @dev Sets `amount` as the allowance of `spender` over the caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/
function approve(address spender, uint256 amount) external returns (bool);
/**
* @dev Moves `amount` tokens from `from` to `to` using the
* allowance mechanism. `amount` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transferFrom(
address from,
address to,
uint256 amount
) external returns (bool);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (token/ERC1155/IERC1155.sol)
pragma solidity ^0.8.0;
import "../../utils/introspection/IERC165.sol";
/**
* @dev Required interface of an ERC1155 compliant contract, as defined in the
* https://eips.ethereum.org/EIPS/eip-1155[EIP].
*
* _Available since v3.1._
*/
interface IERC1155 is IERC165 {
/**
* @dev Emitted when `value` tokens of token type `id` are transferred from `from` to `to` by `operator`.
*/
event TransferSingle(address indexed operator, address indexed from, address indexed to, uint256 id, uint256 value);
/**
* @dev Equivalent to multiple {TransferSingle} events, where `operator`, `from` and `to` are the same for all
* transfers.
*/
event TransferBatch(
address indexed operator,
address indexed from,
address indexed to,
uint256[] ids,
uint256[] values
);
/**
* @dev Emitted when `account` grants or revokes permission to `operator` to transfer their tokens, according to
* `approved`.
*/
event ApprovalForAll(address indexed account, address indexed operator, bool approved);
/**
* @dev Emitted when the URI for token type `id` changes to `value`, if it is a non-programmatic URI.
*
* If an {URI} event was emitted for `id`, the standard
* https://eips.ethereum.org/EIPS/eip-1155#metadata-extensions[guarantees] that `value` will equal the value
* returned by {IERC1155MetadataURI-uri}.
*/
event URI(string value, uint256 indexed id);
/**
* @dev Returns the amount of tokens of token type `id` owned by `account`.
*
* Requirements:
*
* - `account` cannot be the zero address.
*/
function balanceOf(address account, uint256 id) external view returns (uint256);
/**
* @dev xref:ROOT:erc1155.adoc#batch-operations[Batched] version of {balanceOf}.
*
* Requirements:
*
* - `accounts` and `ids` must have the same length.
*/
function balanceOfBatch(address[] calldata accounts, uint256[] calldata ids)
external
view
returns (uint256[] memory);
/**
* @dev Grants or revokes permission to `operator` to transfer the caller's tokens, according to `approved`,
*
* Emits an {ApprovalForAll} event.
*
* Requirements:
*
* - `operator` cannot be the caller.
*/
function setApprovalForAll(address operator, bool approved) external;
/**
* @dev Returns true if `operator` is approved to transfer ``account``'s tokens.
*
* See {setApprovalForAll}.
*/
function isApprovedForAll(address account, address operator) external view returns (bool);
/**
* @dev Transfers `amount` tokens of token type `id` from `from` to `to`.
*
* Emits a {TransferSingle} event.
*
* Requirements:
*
* - `to` cannot be the zero address.
* - If the caller is not `from`, it must have been approved to spend ``from``'s tokens via {setApprovalForAll}.
* - `from` must have a balance of tokens of type `id` of at least `amount`.
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155Received} and return the
* acceptance magic value.
*/
function safeTransferFrom(
address from,
address to,
uint256 id,
uint256 amount,
bytes calldata data
) external;
/**
* @dev xref:ROOT:erc1155.adoc#batch-operations[Batched] version of {safeTransferFrom}.
*
* Emits a {TransferBatch} event.
*
* Requirements:
*
* - `ids` and `amounts` must have the same length.
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155BatchReceived} and return the
* acceptance magic value.
*/
function safeBatchTransferFrom(
address from,
address to,
uint256[] calldata ids,
uint256[] calldata amounts,
bytes calldata data
) external;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/introspection/IERC165.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC165 standard, as defined in the
* https://eips.ethereum.org/EIPS/eip-165[EIP].
*
* Implementers can declare support of contract interfaces, which can then be
* queried by others ({ERC165Checker}).
*
* For an implementation, see {ERC165}.
*/
interface IERC165 {
/**
* @dev Returns true if this contract implements the interface defined by
* `interfaceId`. See the corresponding
* https://eips.ethereum.org/EIPS/eip-165#how-interfaces-are-identified[EIP section]
* to learn more about how these ids are created.
*
* This function call must use less than 30 000 gas.
*/
function supportsInterface(bytes4 interfaceId) external view returns (bool);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.6.0) (token/ERC721/IERC721Receiver.sol)
pragma solidity ^0.8.0;
/**
* @title ERC721 token receiver interface
* @dev Interface for any contract that wants to support safeTransfers
* from ERC721 asset contracts.
*/
interface IERC721Receiver {
/**
* @dev Whenever an {IERC721} `tokenId` token is transferred to this contract via {IERC721-safeTransferFrom}
* by `operator` from `from`, this function is called.
*
* It must return its Solidity selector to confirm the token transfer.
* If any other value is returned or the interface is not implemented by the recipient, the transfer will be reverted.
*
* The selector can be obtained in Solidity with `IERC721Receiver.onERC721Received.selector`.
*/
function onERC721Received(
address operator,
address from,
uint256 tokenId,
bytes calldata data
) external returns (bytes4);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (proxy/utils/Initializable.sol)
pragma solidity ^0.8.2;
import "../../utils/Address.sol";
/**
* @dev This is a base contract to aid in writing upgradeable contracts, or any kind of contract that will be deployed
* behind a proxy. Since proxied contracts do not make use of a constructor, it's common to move constructor logic to an
* external initializer function, usually called `initialize`. It then becomes necessary to protect this initializer
* function so it can only be called once. The {initializer} modifier provided by this contract will have this effect.
*
* The initialization functions use a version number. Once a version number is used, it is consumed and cannot be
* reused. This mechanism prevents re-execution of each "step" but allows the creation of new initialization steps in
* case an upgrade adds a module that needs to be initialized.
*
* For example:
*
* [.hljs-theme-light.nopadding]
* ```
* contract MyToken is ERC20Upgradeable {
* function initialize() initializer public {
* __ERC20_init("MyToken", "MTK");
* }
* }
* contract MyTokenV2 is MyToken, ERC20PermitUpgradeable {
* function initializeV2() reinitializer(2) public {
* __ERC20Permit_init("MyToken");
* }
* }
* ```
*
* TIP: To avoid leaving the proxy in an uninitialized state, the initializer function should be called as early as
* possible by providing the encoded function call as the `_data` argument to {ERC1967Proxy-constructor}.
*
* CAUTION: When used with inheritance, manual care must be taken to not invoke a parent initializer twice, or to ensure
* that all initializers are idempotent. This is not verified automatically as constructors are by Solidity.
*
* [CAUTION]
* ====
* Avoid leaving a contract uninitialized.
*
* An uninitialized contract can be taken over by an attacker. This applies to both a proxy and its implementation
* contract, which may impact the proxy. To prevent the implementation contract from being used, you should invoke
* the {_disableInitializers} function in the constructor to automatically lock it when it is deployed:
*
* [.hljs-theme-light.nopadding]
* ```
* /// @custom:oz-upgrades-unsafe-allow constructor
* constructor() {
* _disableInitializers();
* }
* ```
* ====
*/
abstract contract Initializable {
/**
* @dev Indicates that the contract has been initialized.
* @custom:oz-retyped-from bool
*/
uint8 private _initialized;
/**
* @dev Indicates that the contract is in the process of being initialized.
*/
bool private _initializing;
/**
* @dev Triggered when the contract has been initialized or reinitialized.
*/
event Initialized(uint8 version);
/**
* @dev A modifier that defines a protected initializer function that can be invoked at most once. In its scope,
* `onlyInitializing` functions can be used to initialize parent contracts. Equivalent to `reinitializer(1)`.
*/
modifier initializer() {
bool isTopLevelCall = !_initializing;
require(
(isTopLevelCall && _initialized < 1) || (!Address.isContract(address(this)) && _initialized == 1),
"Initializable: contract is already initialized"
);
_initialized = 1;
if (isTopLevelCall) {
_initializing = true;
}
_;
if (isTopLevelCall) {
_initializing = false;
emit Initialized(1);
}
}
/**
* @dev A modifier that defines a protected reinitializer function that can be invoked at most once, and only if the
* contract hasn't been initialized to a greater version before. In its scope, `onlyInitializing` functions can be
* used to initialize parent contracts.
*
* `initializer` is equivalent to `reinitializer(1)`, so a reinitializer may be used after the original
* initialization step. This is essential to configure modules that are added through upgrades and that require
* initialization.
*
* Note that versions can jump in increments greater than 1; this implies that if multiple reinitializers coexist in
* a contract, executing them in the right order is up to the developer or operator.
*/
modifier reinitializer(uint8 version) {
require(!_initializing && _initialized < version, "Initializable: contract is already initialized");
_initialized = version;
_initializing = true;
_;
_initializing = false;
emit Initialized(version);
}
/**
* @dev Modifier to protect an initialization function so that it can only be invoked by functions with the
* {initializer} and {reinitializer} modifiers, directly or indirectly.
*/
modifier onlyInitializing() {
require(_initializing, "Initializable: contract is not initializing");
_;
}
/**
* @dev Locks the contract, preventing any future reinitialization. This cannot be part of an initializer call.
* Calling this in the constructor of a contract will prevent that contract from being initialized or reinitialized
* to any version. It is recommended to use this to lock implementation contracts that are designed to be called
* through proxies.
*/
function _disableInitializers() internal virtual {
require(!_initializing, "Initializable: contract is initializing");
if (_initialized < type(uint8).max) {
_initialized = type(uint8).max;
emit Initialized(type(uint8).max);
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (utils/math/Math.sol)
pragma solidity ^0.8.0;
/**
* @dev Standard math utilities missing in the Solidity language.
*/
library Math {
enum Rounding {
Down, // Toward negative infinity
Up, // Toward infinity
Zero // Toward zero
}
/**
* @dev Returns the largest of two numbers.
*/
function max(uint256 a, uint256 b) internal pure returns (uint256) {
return a >= b ? a : b;
}
/**
* @dev Returns the smallest of two numbers.
*/
function min(uint256 a, uint256 b) internal pure returns (uint256) {
return a < b ? a : b;
}
/**
* @dev Returns the average of two numbers. The result is rounded towards
* zero.
*/
function average(uint256 a, uint256 b) internal pure returns (uint256) {
// (a + b) / 2 can overflow.
return (a & b) + (a ^ b) / 2;
}
/**
* @dev Returns the ceiling of the division of two numbers.
*
* This differs from standard division with `/` in that it rounds up instead
* of rounding down.
*/
function ceilDiv(uint256 a, uint256 b) internal pure returns (uint256) {
// (a + b - 1) / b can overflow on addition, so we distribute.
return a == 0 ? 0 : (a - 1) / b + 1;
}
/**
* @notice Calculates floor(x * y / denominator) with full precision. Throws if result overflows a uint256 or denominator == 0
* @dev Original credit to Remco Bloemen under MIT license (https://xn--2-umb.com/21/muldiv)
* with further edits by Uniswap Labs also under MIT license.
*/
function mulDiv(
uint256 x,
uint256 y,
uint256 denominator
) internal pure returns (uint256 result) {
unchecked {
// 512-bit multiply [prod1 prod0] = x * y. Compute the product mod 2^256 and mod 2^256 - 1, then use
// use the Chinese Remainder Theorem to reconstruct the 512 bit result. The result is stored in two 256
// variables such that product = prod1 * 2^256 + prod0.
uint256 prod0; // Least significant 256 bits of the product
uint256 prod1; // Most significant 256 bits of the product
assembly {
let mm := mulmod(x, y, not(0))
prod0 := mul(x, y)
prod1 := sub(sub(mm, prod0), lt(mm, prod0))
}
// Handle non-overflow cases, 256 by 256 division.
if (prod1 == 0) {
return prod0 / denominator;
}
// Make sure the result is less than 2^256. Also prevents denominator == 0.
require(denominator > prod1);
///////////////////////////////////////////////
// 512 by 256 division.
///////////////////////////////////////////////
// Make division exact by subtracting the remainder from [prod1 prod0].
uint256 remainder;
assembly {
// Compute remainder using mulmod.
remainder := mulmod(x, y, denominator)
// Subtract 256 bit number from 512 bit number.
prod1 := sub(prod1, gt(remainder, prod0))
prod0 := sub(prod0, remainder)
}
// Factor powers of two out of denominator and compute largest power of two divisor of denominator. Always >= 1.
// See https://cs.stackexchange.com/q/138556/92363.
// Does not overflow because the denominator cannot be zero at this stage in the function.
uint256 twos = denominator & (~denominator + 1);
assembly {
// Divide denominator by twos.
denominator := div(denominator, twos)
// Divide [prod1 prod0] by twos.
prod0 := div(prod0, twos)
// Flip twos such that it is 2^256 / twos. If twos is zero, then it becomes one.
twos := add(div(sub(0, twos), twos), 1)
}
// Shift in bits from prod1 into prod0.
prod0 |= prod1 * twos;
// Invert denominator mod 2^256. Now that denominator is an odd number, it has an inverse modulo 2^256 such
// that denominator * inv = 1 mod 2^256. Compute the inverse by starting with a seed that is correct for
// four bits. That is, denominator * inv = 1 mod 2^4.
uint256 inverse = (3 * denominator) ^ 2;
// Use the Newton-Raphson iteration to improve the precision. Thanks to Hensel's lifting lemma, this also works
// in modular arithmetic, doubling the correct bits in each step.
inverse *= 2 - denominator * inverse; // inverse mod 2^8
inverse *= 2 - denominator * inverse; // inverse mod 2^16
inverse *= 2 - denominator * inverse; // inverse mod 2^32
inverse *= 2 - denominator * inverse; // inverse mod 2^64
inverse *= 2 - denominator * inverse; // inverse mod 2^128
inverse *= 2 - denominator * inverse; // inverse mod 2^256
// Because the division is now exact we can divide by multiplying with the modular inverse of denominator.
// This will give us the correct result modulo 2^256. Since the preconditions guarantee that the outcome is
// less than 2^256, this is the final result. We don't need to compute the high bits of the result and prod1
// is no longer required.
result = prod0 * inverse;
return result;
}
}
/**
* @notice Calculates x * y / denominator with full precision, following the selected rounding direction.
*/
function mulDiv(
uint256 x,
uint256 y,
uint256 denominator,
Rounding rounding
) internal pure returns (uint256) {
uint256 result = mulDiv(x, y, denominator);
if (rounding == Rounding.Up && mulmod(x, y, denominator) > 0) {
result += 1;
}
return result;
}
/**
* @dev Returns the square root of a number. It the number is not a perfect square, the value is rounded down.
*
* Inspired by Henry S. Warren, Jr.'s "Hacker's Delight" (Chapter 11).
*/
function sqrt(uint256 a) internal pure returns (uint256) {
if (a == 0) {
return 0;
}
// For our first guess, we get the biggest power of 2 which is smaller than the square root of the target.
// We know that the "msb" (most significant bit) of our target number `a` is a power of 2 such that we have
// `msb(a) <= a < 2*msb(a)`.
// We also know that `k`, the position of the most significant bit, is such that `msb(a) = 2**k`.
// This gives `2**k < a <= 2**(k+1)` → `2**(k/2) <= sqrt(a) < 2 ** (k/2+1)`.
// Using an algorithm similar to the msb conmputation, we are able to compute `result = 2**(k/2)` which is a
// good first aproximation of `sqrt(a)` with at least 1 correct bit.
uint256 result = 1;
uint256 x = a;
if (x >> 128 > 0) {
x >>= 128;
result <<= 64;
}
if (x >> 64 > 0) {
x >>= 64;
result <<= 32;
}
if (x >> 32 > 0) {
x >>= 32;
result <<= 16;
}
if (x >> 16 > 0) {
x >>= 16;
result <<= 8;
}
if (x >> 8 > 0) {
x >>= 8;
result <<= 4;
}
if (x >> 4 > 0) {
x >>= 4;
result <<= 2;
}
if (x >> 2 > 0) {
result <<= 1;
}
// At this point `result` is an estimation with one bit of precision. We know the true value is a uint128,
// since it is the square root of a uint256. Newton's method converges quadratically (precision doubles at
// every iteration). We thus need at most 7 iteration to turn our partial result with one bit of precision
// into the expected uint128 result.
unchecked {
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
return min(result, a / result);
}
}
/**
* @notice Calculates sqrt(a), following the selected rounding direction.
*/
function sqrt(uint256 a, Rounding rounding) internal pure returns (uint256) {
uint256 result = sqrt(a);
if (rounding == Rounding.Up && result * result < a) {
result += 1;
}
return result;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (token/ERC20/utils/SafeERC20.sol)
pragma solidity ^0.8.0;
import "../IERC20.sol";
import "../extensions/draft-IERC20Permit.sol";
import "../../../utils/Address.sol";
/**
* @title SafeERC20
* @dev Wrappers around ERC20 operations that throw on failure (when the token
* contract returns false). Tokens that return no value (and instead revert or
* throw on failure) are also supported, non-reverting calls are assumed to be
* successful.
* To use this library you can add a `using SafeERC20 for IERC20;` statement to your contract,
* which allows you to call the safe operations as `token.safeTransfer(...)`, etc.
*/
library SafeERC20 {
using Address for address;
function safeTransfer(
IERC20 token,
address to,
uint256 value
) internal {
_callOptionalReturn(token, abi.encodeWithSelector(token.transfer.selector, to, value));
}
function safeTransferFrom(
IERC20 token,
address from,
address to,
uint256 value
) internal {
_callOptionalReturn(token, abi.encodeWithSelector(token.transferFrom.selector, from, to, value));
}
/**
* @dev Deprecated. This function has issues similar to the ones found in
* {IERC20-approve}, and its usage is discouraged.
*
* Whenever possible, use {safeIncreaseAllowance} and
* {safeDecreaseAllowance} instead.
*/
function safeApprove(
IERC20 token,
address spender,
uint256 value
) internal {
// safeApprove should only be called when setting an initial allowance,
// or when resetting it to zero. To increase and decrease it, use
// 'safeIncreaseAllowance' and 'safeDecreaseAllowance'
require(
(value == 0) || (token.allowance(address(this), spender) == 0),
"SafeERC20: approve from non-zero to non-zero allowance"
);
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, value));
}
function safeIncreaseAllowance(
IERC20 token,
address spender,
uint256 value
) internal {
uint256 newAllowance = token.allowance(address(this), spender) + value;
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, newAllowance));
}
function safeDecreaseAllowance(
IERC20 token,
address spender,
uint256 value
) internal {
unchecked {
uint256 oldAllowance = token.allowance(address(this), spender);
require(oldAllowance >= value, "SafeERC20: decreased allowance below zero");
uint256 newAllowance = oldAllowance - value;
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, newAllowance));
}
}
function safePermit(
IERC20Permit token,
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) internal {
uint256 nonceBefore = token.nonces(owner);
token.permit(owner, spender, value, deadline, v, r, s);
uint256 nonceAfter = token.nonces(owner);
require(nonceAfter == nonceBefore + 1, "SafeERC20: permit did not succeed");
}
/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*/
function _callOptionalReturn(IERC20 token, bytes memory data) private {
// We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since
// we're implementing it ourselves. We use {Address.functionCall} to perform this call, which verifies that
// the target address contains contract code and also asserts for success in the low-level call.
bytes memory returndata = address(token).functionCall(data, "SafeERC20: low-level call failed");
if (returndata.length > 0) {
// Return data is optional
require(abi.decode(returndata, (bool)), "SafeERC20: ERC20 operation did not succeed");
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (utils/Address.sol)
pragma solidity ^0.8.1;
/**
* @dev Collection of functions related to the address type
*/
library Address {
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]
* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* - an externally-owned account
* - a contract in construction
* - an address where a contract will be created
* - an address where a contract lived, but was destroyed
* ====
*
* [IMPORTANT]
* ====
* You shouldn't rely on `isContract` to protect against flash loan attacks!
*
* Preventing calls from contracts is highly discouraged. It breaks composability, breaks support for smart wallets
* like Gnosis Safe, and does not provide security since it can be circumvented by calling from a contract
* constructor.
* ====
*/
function isContract(address account) internal view returns (bool) {
// This method relies on extcodesize/address.code.length, which returns 0
// for contracts in construction, since the code is only stored at the end
// of the constructor execution.
return account.code.length > 0;
}
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://diligence.consensys.net/posts/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.5.11/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/
function sendValue(address payable recipient, uint256 amount) internal {
require(address(this).balance >= amount, "Address: insufficient balance");
(bool success, ) = recipient.call{value: amount}("");
require(success, "Address: unable to send value, recipient may have reverted");
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain `call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCall(target, data, "Address: low-level call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCall(
address target,
bytes memory data,
string memory errorMessage
) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/
function functionCallWithValue(
address target,
bytes memory data,
uint256 value
) internal returns (bytes memory) {
return functionCallWithValue(target, data, value, "Address: low-level call with value failed");
}
/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCallWithValue(
address target,
bytes memory data,
uint256 value,
string memory errorMessage
) internal returns (bytes memory) {
require(address(this).balance >= value, "Address: insufficient balance for call");
require(isContract(target), "Address: call to non-contract");
(bool success, bytes memory returndata) = target.call{value: value}(data);
return verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
return functionStaticCall(target, data, "Address: low-level static call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(
address target,
bytes memory data,
string memory errorMessage
) internal view returns (bytes memory) {
require(isContract(target), "Address: static call to non-contract");
(bool success, bytes memory returndata) = target.staticcall(data);
return verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(address target, bytes memory data) internal returns (bytes memory) {
return functionDelegateCall(target, data, "Address: low-level delegate call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(
address target,
bytes memory data,
string memory errorMessage
) internal returns (bytes memory) {
require(isContract(target), "Address: delegate call to non-contract");
(bool success, bytes memory returndata) = target.delegatecall(data);
return verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Tool to verifies that a low level call was successful, and revert if it wasn't, either by bubbling the
* revert reason using the provided one.
*
* _Available since v4.3._
*/
function verifyCallResult(
bool success,
bytes memory returndata,
string memory errorMessage
) internal pure returns (bytes memory) {
if (success) {
return returndata;
} else {
// Look for revert reason and bubble it up if present
if (returndata.length > 0) {
// The easiest way to bubble the revert reason is using memory via assembly
/// @solidity memory-safe-assembly
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (token/ERC20/extensions/draft-IERC20Permit.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC20 Permit extension allowing approvals to be made via signatures, as defined in
* https://eips.ethereum.org/EIPS/eip-2612[EIP-2612].
*
* Adds the {permit} method, which can be used to change an account's ERC20 allowance (see {IERC20-allowance}) by
* presenting a message signed by the account. By not relying on {IERC20-approve}, the token holder account doesn't
* need to send a transaction, and thus is not required to hold Ether at all.
*/
interface IERC20Permit {
/**
* @dev Sets `value` as the allowance of `spender` over ``owner``'s tokens,
* given ``owner``'s signed approval.
*
* IMPORTANT: The same issues {IERC20-approve} has related to transaction
* ordering also apply here.
*
* Emits an {Approval} event.
*
* Requirements:
*
* - `spender` cannot be the zero address.
* - `deadline` must be a timestamp in the future.
* - `v`, `r` and `s` must be a valid `secp256k1` signature from `owner`
* over the EIP712-formatted function arguments.
* - the signature must use ``owner``'s current nonce (see {nonces}).
*
* For more information on the signature format, see the
* https://eips.ethereum.org/EIPS/eip-2612#specification[relevant EIP
* section].
*/
function permit(
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) external;
/**
* @dev Returns the current nonce for `owner`. This value must be
* included whenever a signature is generated for {permit}.
*
* Every successful call to {permit} increases ``owner``'s nonce by one. This
* prevents a signature from being used multiple times.
*/
function nonces(address owner) external view returns (uint256);
/**
* @dev Returns the domain separator used in the encoding of the signature for {permit}, as defined by {EIP712}.
*/
// solhint-disable-next-line func-name-mixedcase
function DOMAIN_SEPARATOR() external view returns (bytes32);
}/** * @reviewers: [@clesaege, @unknownunknown1, @ferittuncer] * @auditors: [] * @bounties: [<14 days 10 ETH max payout>] * @deployments: [] */ pragma solidity ^0.8.0; /** * @title SortitionSumTreeFactory * @author Enrique Piqueras - <[email protected]> * @dev A factory of trees that keep track of staked values for sortition. */ library SortitionSumTreeFactory { /* Structs */ struct SortitionSumTree { uint K; // The maximum number of childs per node. // We use this to keep track of vacant positions in the tree after removing a leaf. This is for keeping the tree as balanced as possible without spending gas on moving nodes around. uint[] stack; uint[] nodes; // Two-way mapping of IDs to node indexes. Note that node index 0 is reserved for the root node, and means the ID does not have a node. mapping(bytes32 => uint) IDsToNodeIndexes; mapping(uint => bytes32) nodeIndexesToIDs; } /* Storage */ struct SortitionSumTrees { mapping(bytes32 => SortitionSumTree) sortitionSumTrees; } /* internal */ /** * @dev Create a sortition sum tree at the specified key. * @param _key The key of the new tree. * @param _K The number of children each node in the tree should have. */ function createTree(SortitionSumTrees storage self, bytes32 _key, uint _K) internal { SortitionSumTree storage tree = self.sortitionSumTrees[_key]; require(tree.K == 0, "Tree already exists."); require(_K > 1, "K must be greater than one."); tree.K = _K; tree.stack = new uint[](0); tree.nodes = new uint[](0); tree.nodes.push(0); } /** * @dev Set a value of a tree. * @param _key The key of the tree. * @param _value The new value. * @param _ID The ID of the value. * `O(log_k(n))` where * `k` is the maximum number of childs per node in the tree, * and `n` is the maximum number of nodes ever appended. */ function set(SortitionSumTrees storage self, bytes32 _key, uint _value, bytes32 _ID) internal { SortitionSumTree storage tree = self.sortitionSumTrees[_key]; uint treeIndex = tree.IDsToNodeIndexes[_ID]; if (treeIndex == 0) { // No existing node. if (_value != 0) { // Non zero value. // Append. // Add node. if (tree.stack.length == 0) { // No vacant spots. // Get the index and append the value. treeIndex = tree.nodes.length; tree.nodes.push(_value); // Potentially append a new node and make the parent a sum node. if (treeIndex != 1 && (treeIndex - 1) % tree.K == 0) { // Is first child. uint parentIndex = treeIndex / tree.K; bytes32 parentID = tree.nodeIndexesToIDs[parentIndex]; uint newIndex = treeIndex + 1; tree.nodes.push(tree.nodes[parentIndex]); delete tree.nodeIndexesToIDs[parentIndex]; tree.IDsToNodeIndexes[parentID] = newIndex; tree.nodeIndexesToIDs[newIndex] = parentID; } } else { // Some vacant spot. // Pop the stack and append the value. treeIndex = tree.stack[tree.stack.length - 1]; tree.stack.pop(); tree.nodes[treeIndex] = _value; } // Add label. tree.IDsToNodeIndexes[_ID] = treeIndex; tree.nodeIndexesToIDs[treeIndex] = _ID; updateParents(self, _key, treeIndex, true, _value); } } else { // Existing node. if (_value == 0) { // Zero value. // Remove. // Remember value and set to 0. uint value = tree.nodes[treeIndex]; tree.nodes[treeIndex] = 0; // Push to stack. tree.stack.push(treeIndex); // Clear label. delete tree.IDsToNodeIndexes[_ID]; delete tree.nodeIndexesToIDs[treeIndex]; updateParents(self, _key, treeIndex, false, value); } else if (_value != tree.nodes[treeIndex]) { // New, non zero value. // Set. bool plusOrMinus = tree.nodes[treeIndex] <= _value; uint plusOrMinusValue = plusOrMinus ? _value - tree.nodes[treeIndex] : tree.nodes[treeIndex] - _value; tree.nodes[treeIndex] = _value; updateParents(self, _key, treeIndex, plusOrMinus, plusOrMinusValue); } } } /* internal Views */ /** * @dev Query the leaves of a tree. Note that if `startIndex == 0`, the tree is empty and the root node will be returned. * @param _key The key of the tree to get the leaves from. * @param _cursor The pagination cursor. * @param _count The number of items to return. * @return startIndex The index at which leaves start * @return values The values of the returned leaves * @return hasMore Whether there are more for pagination. * `O(n)` where * `n` is the maximum number of nodes ever appended. */ function queryLeafs( SortitionSumTrees storage self, bytes32 _key, uint _cursor, uint _count ) internal view returns(uint startIndex, uint[] memory values, bool hasMore) { SortitionSumTree storage tree = self.sortitionSumTrees[_key]; // Find the start index. for (uint i = 0; i < tree.nodes.length; i++) { if ((tree.K * i) + 1 >= tree.nodes.length) { startIndex = i; break; } } // Get the values. uint loopStartIndex = startIndex + _cursor; values = new uint[](loopStartIndex + _count > tree.nodes.length ? tree.nodes.length - loopStartIndex : _count); uint valuesIndex = 0; for (uint j = loopStartIndex; j < tree.nodes.length; j++) { if (valuesIndex < _count) { values[valuesIndex] = tree.nodes[j]; valuesIndex++; } else { hasMore = true; break; } } } /** * @dev Draw an ID from a tree using a number. Note that this function reverts if the sum of all values in the tree is 0. * @param _key The key of the tree. * @param _drawnNumber The drawn number. * @return ID The drawn ID. * `O(k * log_k(n))` where * `k` is the maximum number of childs per node in the tree, * and `n` is the maximum number of nodes ever appended. */ function draw(SortitionSumTrees storage self, bytes32 _key, uint _drawnNumber) internal view returns(bytes32 ID) { SortitionSumTree storage tree = self.sortitionSumTrees[_key]; uint treeIndex = 0; uint currentDrawnNumber = _drawnNumber % tree.nodes[0]; while ((tree.K * treeIndex) + 1 < tree.nodes.length) // While it still has children. for (uint i = 1; i <= tree.K; i++) { // Loop over children. uint nodeIndex = (tree.K * treeIndex) + i; uint nodeValue = tree.nodes[nodeIndex]; if (currentDrawnNumber >= nodeValue) currentDrawnNumber -= nodeValue; // Go to the next child. else { // Pick this child. treeIndex = nodeIndex; break; } } ID = tree.nodeIndexesToIDs[treeIndex]; } /** @dev Gets a specified ID's associated value. * @param _key The key of the tree. * @param _ID The ID of the value. * @return value The associated value. */ function stakeOf(SortitionSumTrees storage self, bytes32 _key, bytes32 _ID) internal view returns(uint value) { SortitionSumTree storage tree = self.sortitionSumTrees[_key]; uint treeIndex = tree.IDsToNodeIndexes[_ID]; if (treeIndex == 0) value = 0; else value = tree.nodes[treeIndex]; } function total(SortitionSumTrees storage self, bytes32 _key) internal view returns (uint) { SortitionSumTree storage tree = self.sortitionSumTrees[_key]; if (tree.nodes.length == 0) { return 0; } else { return tree.nodes[0]; } } /* Private */ /** * @dev Update all the parents of a node. * @param _key The key of the tree to update. * @param _treeIndex The index of the node to start from. * @param _plusOrMinus Wether to add (true) or substract (false). * @param _value The value to add or substract. * `O(log_k(n))` where * `k` is the maximum number of childs per node in the tree, * and `n` is the maximum number of nodes ever appended. */ function updateParents(SortitionSumTrees storage self, bytes32 _key, uint _treeIndex, bool _plusOrMinus, uint _value) private { SortitionSumTree storage tree = self.sortitionSumTrees[_key]; uint parentIndex = _treeIndex; while (parentIndex != 0) { parentIndex = (parentIndex - 1) / tree.K; tree.nodes[parentIndex] = _plusOrMinus ? tree.nodes[parentIndex] + _value : tree.nodes[parentIndex] - _value; } } }
// SPDX-License-Identifier: MIT
// Forked from OpenZeppelin Contracts v4.4.1 (security/ReentrancyGuard.sol),
// removed initializer check as we already do that in our modified Ownable
pragma solidity ^0.8.0;
/**
* @dev Contract module that helps prevent reentrant calls to a function.
*
* Inheriting from `ReentrancyGuard` will make the {nonReentrant} modifier
* available, which can be applied to functions to make sure there are no nested
* (reentrant) calls to them.
*
* Note that because there is a single `nonReentrant` guard, functions marked as
* `nonReentrant` may not call one another. This can be worked around by making
* those functions `private`, and then adding `external` `nonReentrant` entry
* points to them.
*
* TIP: If you would like to learn more about reentrancy and alternative ways
* to protect against it, check out our blog post
* https://blog.openzeppelin.com/reentrancy-after-istanbul/[Reentrancy After Istanbul].
*/
abstract contract ReentrancyGuard {
// Booleans are more expensive than uint256 or any type that takes up a full
// word because each write operation emits an extra SLOAD to first read the
// slot's contents, replace the bits taken up by the boolean, and then write
// back. This is the compiler's defense against contract upgrades and
// pointer aliasing, and it cannot be disabled.
// The values being non-zero value makes deployment a bit more expensive,
// but in exchange the refund on every call to nonReentrant will be lower in
// amount. Since refunds are capped to a percentage of the total
// transaction's gas, it is best to keep them low in cases like this one, to
// increase the likelihood of the full refund coming into effect.
uint256 private constant _NOT_ENTERED = 1;
uint256 private constant _ENTERED = 2;
uint256 private _status;
function __ReentrancyGuard_init() internal {
_status = _NOT_ENTERED;
}
/**
* @dev Prevents a contract from calling itself, directly or indirectly.
* Calling a `nonReentrant` function from another `nonReentrant`
* function is not supported. It is possible to prevent this from happening
* by making the `nonReentrant` function external, and making it call a
* `private` function that does the actual work.
*/
modifier nonReentrant() {
// On the first call to nonReentrant, _notEntered will be true
require(_status != _ENTERED, "ReentrancyGuard: reentrant call");
// Any calls to nonReentrant after this point will fail
_status = _ENTERED;
_;
// By storing the original value once again, a refund is triggered (see
// https://eips.ethereum.org/EIPS/eip-2200)
_status = _NOT_ENTERED;
}
}// SPDX-License-Identifier: GPL-3.0
pragma solidity ^0.8.6;
/**
* @title Random Number Generator Interface
* @notice Provides an interface for requesting random numbers from 3rd-party RNG services (Chainlink VRF, Starkware VDF, etc..)
*/
interface RNGInterface {
/**
* @notice Emitted when a new request for a random number has been submitted
* @param requestId The indexed ID of the request used to get the results of the RNG service
* @param sender The indexed address of the sender of the request
*/
event RandomNumberRequested(uint32 indexed requestId, address indexed sender);
/**
* @notice Emitted when an existing request for a random number has been completed
* @param requestId The indexed ID of the request used to get the results of the RNG service
* @param randomNumber The random number produced by the 3rd-party service
*/
event RandomNumberCompleted(uint32 indexed requestId, uint256 randomNumber);
/**
* @notice Gets the last request id used by the RNG service
* @return requestId The last request id used in the last request
*/
function getLastRequestId() external view returns (uint32 requestId);
/**
* @notice Gets the Fee for making a Request against an RNG service
* @return feeToken The address of the token that is used to pay fees
* @return requestFee The fee required to be paid to make a request
*/
function getRequestFee() external view returns (address feeToken, uint256 requestFee);
/**
* @notice Sends a request for a random number to the 3rd-party service
* @dev Some services will complete the request immediately, others may have a time-delay
* @dev Some services require payment in the form of a token, such as $LINK for Chainlink VRF
* @return requestId The ID of the request used to get the results of the RNG service
* @return lockBlock The block number at which the RNG service will start generating time-delayed randomness.
* The calling contract should "lock" all activity until the result is available via the `requestId`
*/
function requestRandomNumber() external returns (uint32 requestId, uint32 lockBlock);
/**
* @notice Checks if the request for randomness from the 3rd-party service has completed
* @dev For time-delayed requests, this function is used to check/confirm completion
* @param requestId The ID of the request used to get the results of the RNG service
* @return isCompleted True if the request has completed and a random number is available, false otherwise
*/
function isRequestComplete(uint32 requestId) external view returns (bool isCompleted);
/**
* @notice Gets the random number produced by the 3rd-party service
* @param requestId The ID of the request used to get the results of the RNG service
* @return randomNum The random number
*/
function randomNumber(uint32 requestId) external returns (uint256 randomNum);
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
interface VRFCoordinatorV2Interface {
/**
* @notice Get configuration relevant for making requests
* @return minimumRequestConfirmations global min for request confirmations
* @return maxGasLimit global max for request gas limit
* @return s_provingKeyHashes list of registered key hashes
*/
function getRequestConfig()
external
view
returns (
uint16,
uint32,
bytes32[] memory
);
/**
* @notice Request a set of random words.
* @param keyHash - Corresponds to a particular oracle job which uses
* that key for generating the VRF proof. Different keyHash's have different gas price
* ceilings, so you can select a specific one to bound your maximum per request cost.
* @param subId - The ID of the VRF subscription. Must be funded
* with the minimum subscription balance required for the selected keyHash.
* @param minimumRequestConfirmations - How many blocks you'd like the
* oracle to wait before responding to the request. See SECURITY CONSIDERATIONS
* for why you may want to request more. The acceptable range is
* [minimumRequestBlockConfirmations, 200].
* @param callbackGasLimit - How much gas you'd like to receive in your
* fulfillRandomWords callback. Note that gasleft() inside fulfillRandomWords
* may be slightly less than this amount because of gas used calling the function
* (argument decoding etc.), so you may need to request slightly more than you expect
* to have inside fulfillRandomWords. The acceptable range is
* [0, maxGasLimit]
* @param numWords - The number of uint256 random values you'd like to receive
* in your fulfillRandomWords callback. Note these numbers are expanded in a
* secure way by the VRFCoordinator from a single random value supplied by the oracle.
* @return requestId - A unique identifier of the request. Can be used to match
* a request to a response in fulfillRandomWords.
*/
function requestRandomWords(
bytes32 keyHash,
uint64 subId,
uint16 minimumRequestConfirmations,
uint32 callbackGasLimit,
uint32 numWords
) external returns (uint256 requestId);
/**
* @notice Create a VRF subscription.
* @return subId - A unique subscription id.
* @dev You can manage the consumer set dynamically with addConsumer/removeConsumer.
* @dev Note to fund the subscription, use transferAndCall. For example
* @dev LINKTOKEN.transferAndCall(
* @dev address(COORDINATOR),
* @dev amount,
* @dev abi.encode(subId));
*/
function createSubscription() external returns (uint64 subId);
/**
* @notice Get a VRF subscription.
* @param subId - ID of the subscription
* @return balance - LINK balance of the subscription in juels.
* @return reqCount - number of requests for this subscription, determines fee tier.
* @return owner - owner of the subscription.
* @return consumers - list of consumer address which are able to use this subscription.
*/
function getSubscription(uint64 subId)
external
view
returns (
uint96 balance,
uint64 reqCount,
address owner,
address[] memory consumers
);
/**
* @notice Request subscription owner transfer.
* @param subId - ID of the subscription
* @param newOwner - proposed new owner of the subscription
*/
function requestSubscriptionOwnerTransfer(uint64 subId, address newOwner) external;
/**
* @notice Request subscription owner transfer.
* @param subId - ID of the subscription
* @dev will revert if original owner of subId has
* not requested that msg.sender become the new owner.
*/
function acceptSubscriptionOwnerTransfer(uint64 subId) external;
/**
* @notice Add a consumer to a VRF subscription.
* @param subId - ID of the subscription
* @param consumer - New consumer which can use the subscription
*/
function addConsumer(uint64 subId, address consumer) external;
/**
* @notice Remove a consumer from a VRF subscription.
* @param subId - ID of the subscription
* @param consumer - Consumer to remove from the subscription
*/
function removeConsumer(uint64 subId, address consumer) external;
/**
* @notice Cancel a subscription
* @param subId - ID of the subscription
* @param to - Where to send the remaining LINK to
*/
function cancelSubscription(uint64 subId, address to) external;
/*
* @notice Check to see if there exists a request commitment consumers
* for all consumers and keyhashes for a given sub.
* @param subId - ID of the subscription
* @return true if there exists at least one unfulfilled request for the subscription, false
* otherwise.
*/
function pendingRequestExists(uint64 subId) external view returns (bool);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/Context.sol)
pragma solidity ^0.8.0;
/**
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/
abstract contract Context {
function _msgSender() internal view virtual returns (address) {
return msg.sender;
}
function _msgData() internal view virtual returns (bytes calldata) {
return msg.data;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (security/Pausable.sol)
pragma solidity ^0.8.0;
import "../utils/Context.sol";
/**
* @dev Contract module which allows children to implement an emergency stop
* mechanism that can be triggered by an authorized account.
*
* This module is used through inheritance. It will make available the
* modifiers `whenNotPaused` and `whenPaused`, which can be applied to
* the functions of your contract. Note that they will not be pausable by
* simply including this module, only once the modifiers are put in place.
*/
abstract contract Pausable is Context {
/**
* @dev Emitted when the pause is triggered by `account`.
*/
event Paused(address account);
/**
* @dev Emitted when the pause is lifted by `account`.
*/
event Unpaused(address account);
bool private _paused;
/**
* @dev Initializes the contract in unpaused state.
*/
constructor() {
_paused = false;
}
/**
* @dev Modifier to make a function callable only when the contract is not paused.
*
* Requirements:
*
* - The contract must not be paused.
*/
modifier whenNotPaused() {
_requireNotPaused();
_;
}
/**
* @dev Modifier to make a function callable only when the contract is paused.
*
* Requirements:
*
* - The contract must be paused.
*/
modifier whenPaused() {
_requirePaused();
_;
}
/**
* @dev Returns true if the contract is paused, and false otherwise.
*/
function paused() public view virtual returns (bool) {
return _paused;
}
/**
* @dev Throws if the contract is paused.
*/
function _requireNotPaused() internal view virtual {
require(!paused(), "Pausable: paused");
}
/**
* @dev Throws if the contract is not paused.
*/
function _requirePaused() internal view virtual {
require(paused(), "Pausable: not paused");
}
/**
* @dev Triggers stopped state.
*
* Requirements:
*
* - The contract must not be paused.
*/
function _pause() internal virtual whenNotPaused {
_paused = true;
emit Paused(_msgSender());
}
/**
* @dev Returns to normal state.
*
* Requirements:
*
* - The contract must be paused.
*/
function _unpause() internal virtual whenPaused {
_paused = false;
emit Unpaused(_msgSender());
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (token/ERC721/extensions/ERC721Pausable.sol)
pragma solidity ^0.8.0;
import "../ERC721.sol";
import "../../../security/Pausable.sol";
/**
* @dev ERC721 token with pausable token transfers, minting and burning.
*
* Useful for scenarios such as preventing trades until the end of an evaluation
* period, or having an emergency switch for freezing all token transfers in the
* event of a large bug.
*/
abstract contract ERC721Pausable is ERC721, Pausable {
/**
* @dev See {ERC721-_beforeTokenTransfer}.
*
* Requirements:
*
* - the contract must not be paused.
*/
function _beforeTokenTransfer(
address from,
address to,
uint256 tokenId
) internal virtual override {
super._beforeTokenTransfer(from, to, tokenId);
require(!paused(), "ERC721Pausable: token transfer while paused");
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (token/ERC721/ERC721.sol)
pragma solidity ^0.8.0;
import "./IERC721.sol";
import "./IERC721Receiver.sol";
import "./extensions/IERC721Metadata.sol";
import "../../utils/Address.sol";
import "../../utils/Context.sol";
import "../../utils/Strings.sol";
import "../../utils/introspection/ERC165.sol";
/**
* @dev Implementation of https://eips.ethereum.org/EIPS/eip-721[ERC721] Non-Fungible Token Standard, including
* the Metadata extension, but not including the Enumerable extension, which is available separately as
* {ERC721Enumerable}.
*/
contract ERC721 is Context, ERC165, IERC721, IERC721Metadata {
using Address for address;
using Strings for uint256;
// Token name
string private _name;
// Token symbol
string private _symbol;
// Mapping from token ID to owner address
mapping(uint256 => address) private _owners;
// Mapping owner address to token count
mapping(address => uint256) private _balances;
// Mapping from token ID to approved address
mapping(uint256 => address) private _tokenApprovals;
// Mapping from owner to operator approvals
mapping(address => mapping(address => bool)) private _operatorApprovals;
/**
* @dev Initializes the contract by setting a `name` and a `symbol` to the token collection.
*/
constructor(string memory name_, string memory symbol_) {
_name = name_;
_symbol = symbol_;
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override(ERC165, IERC165) returns (bool) {
return
interfaceId == type(IERC721).interfaceId ||
interfaceId == type(IERC721Metadata).interfaceId ||
super.supportsInterface(interfaceId);
}
/**
* @dev See {IERC721-balanceOf}.
*/
function balanceOf(address owner) public view virtual override returns (uint256) {
require(owner != address(0), "ERC721: address zero is not a valid owner");
return _balances[owner];
}
/**
* @dev See {IERC721-ownerOf}.
*/
function ownerOf(uint256 tokenId) public view virtual override returns (address) {
address owner = _owners[tokenId];
require(owner != address(0), "ERC721: invalid token ID");
return owner;
}
/**
* @dev See {IERC721Metadata-name}.
*/
function name() public view virtual override returns (string memory) {
return _name;
}
/**
* @dev See {IERC721Metadata-symbol}.
*/
function symbol() public view virtual override returns (string memory) {
return _symbol;
}
/**
* @dev See {IERC721Metadata-tokenURI}.
*/
function tokenURI(uint256 tokenId) public view virtual override returns (string memory) {
_requireMinted(tokenId);
string memory baseURI = _baseURI();
return bytes(baseURI).length > 0 ? string(abi.encodePacked(baseURI, tokenId.toString())) : "";
}
/**
* @dev Base URI for computing {tokenURI}. If set, the resulting URI for each
* token will be the concatenation of the `baseURI` and the `tokenId`. Empty
* by default, can be overridden in child contracts.
*/
function _baseURI() internal view virtual returns (string memory) {
return "";
}
/**
* @dev See {IERC721-approve}.
*/
function approve(address to, uint256 tokenId) public virtual override {
address owner = ERC721.ownerOf(tokenId);
require(to != owner, "ERC721: approval to current owner");
require(
_msgSender() == owner || isApprovedForAll(owner, _msgSender()),
"ERC721: approve caller is not token owner nor approved for all"
);
_approve(to, tokenId);
}
/**
* @dev See {IERC721-getApproved}.
*/
function getApproved(uint256 tokenId) public view virtual override returns (address) {
_requireMinted(tokenId);
return _tokenApprovals[tokenId];
}
/**
* @dev See {IERC721-setApprovalForAll}.
*/
function setApprovalForAll(address operator, bool approved) public virtual override {
_setApprovalForAll(_msgSender(), operator, approved);
}
/**
* @dev See {IERC721-isApprovedForAll}.
*/
function isApprovedForAll(address owner, address operator) public view virtual override returns (bool) {
return _operatorApprovals[owner][operator];
}
/**
* @dev See {IERC721-transferFrom}.
*/
function transferFrom(
address from,
address to,
uint256 tokenId
) public virtual override {
//solhint-disable-next-line max-line-length
require(_isApprovedOrOwner(_msgSender(), tokenId), "ERC721: caller is not token owner nor approved");
_transfer(from, to, tokenId);
}
/**
* @dev See {IERC721-safeTransferFrom}.
*/
function safeTransferFrom(
address from,
address to,
uint256 tokenId
) public virtual override {
safeTransferFrom(from, to, tokenId, "");
}
/**
* @dev See {IERC721-safeTransferFrom}.
*/
function safeTransferFrom(
address from,
address to,
uint256 tokenId,
bytes memory data
) public virtual override {
require(_isApprovedOrOwner(_msgSender(), tokenId), "ERC721: caller is not token owner nor approved");
_safeTransfer(from, to, tokenId, data);
}
/**
* @dev Safely transfers `tokenId` token from `from` to `to`, checking first that contract recipients
* are aware of the ERC721 protocol to prevent tokens from being forever locked.
*
* `data` is additional data, it has no specified format and it is sent in call to `to`.
*
* This internal function is equivalent to {safeTransferFrom}, and can be used to e.g.
* implement alternative mechanisms to perform token transfer, such as signature-based.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `tokenId` token must exist and be owned by `from`.
* - If `to` refers to a smart contract, it must implement {IERC721Receiver-onERC721Received}, which is called upon a safe transfer.
*
* Emits a {Transfer} event.
*/
function _safeTransfer(
address from,
address to,
uint256 tokenId,
bytes memory data
) internal virtual {
_transfer(from, to, tokenId);
require(_checkOnERC721Received(from, to, tokenId, data), "ERC721: transfer to non ERC721Receiver implementer");
}
/**
* @dev Returns whether `tokenId` exists.
*
* Tokens can be managed by their owner or approved accounts via {approve} or {setApprovalForAll}.
*
* Tokens start existing when they are minted (`_mint`),
* and stop existing when they are burned (`_burn`).
*/
function _exists(uint256 tokenId) internal view virtual returns (bool) {
return _owners[tokenId] != address(0);
}
/**
* @dev Returns whether `spender` is allowed to manage `tokenId`.
*
* Requirements:
*
* - `tokenId` must exist.
*/
function _isApprovedOrOwner(address spender, uint256 tokenId) internal view virtual returns (bool) {
address owner = ERC721.ownerOf(tokenId);
return (spender == owner || isApprovedForAll(owner, spender) || getApproved(tokenId) == spender);
}
/**
* @dev Safely mints `tokenId` and transfers it to `to`.
*
* Requirements:
*
* - `tokenId` must not exist.
* - If `to` refers to a smart contract, it must implement {IERC721Receiver-onERC721Received}, which is called upon a safe transfer.
*
* Emits a {Transfer} event.
*/
function _safeMint(address to, uint256 tokenId) internal virtual {
_safeMint(to, tokenId, "");
}
/**
* @dev Same as {xref-ERC721-_safeMint-address-uint256-}[`_safeMint`], with an additional `data` parameter which is
* forwarded in {IERC721Receiver-onERC721Received} to contract recipients.
*/
function _safeMint(
address to,
uint256 tokenId,
bytes memory data
) internal virtual {
_mint(to, tokenId);
require(
_checkOnERC721Received(address(0), to, tokenId, data),
"ERC721: transfer to non ERC721Receiver implementer"
);
}
/**
* @dev Mints `tokenId` and transfers it to `to`.
*
* WARNING: Usage of this method is discouraged, use {_safeMint} whenever possible
*
* Requirements:
*
* - `tokenId` must not exist.
* - `to` cannot be the zero address.
*
* Emits a {Transfer} event.
*/
function _mint(address to, uint256 tokenId) internal virtual {
require(to != address(0), "ERC721: mint to the zero address");
require(!_exists(tokenId), "ERC721: token already minted");
_beforeTokenTransfer(address(0), to, tokenId);
_balances[to] += 1;
_owners[tokenId] = to;
emit Transfer(address(0), to, tokenId);
_afterTokenTransfer(address(0), to, tokenId);
}
/**
* @dev Destroys `tokenId`.
* The approval is cleared when the token is burned.
*
* Requirements:
*
* - `tokenId` must exist.
*
* Emits a {Transfer} event.
*/
function _burn(uint256 tokenId) internal virtual {
address owner = ERC721.ownerOf(tokenId);
_beforeTokenTransfer(owner, address(0), tokenId);
// Clear approvals
_approve(address(0), tokenId);
_balances[owner] -= 1;
delete _owners[tokenId];
emit Transfer(owner, address(0), tokenId);
_afterTokenTransfer(owner, address(0), tokenId);
}
/**
* @dev Transfers `tokenId` from `from` to `to`.
* As opposed to {transferFrom}, this imposes no restrictions on msg.sender.
*
* Requirements:
*
* - `to` cannot be the zero address.
* - `tokenId` token must be owned by `from`.
*
* Emits a {Transfer} event.
*/
function _transfer(
address from,
address to,
uint256 tokenId
) internal virtual {
require(ERC721.ownerOf(tokenId) == from, "ERC721: transfer from incorrect owner");
require(to != address(0), "ERC721: transfer to the zero address");
_beforeTokenTransfer(from, to, tokenId);
// Clear approvals from the previous owner
_approve(address(0), tokenId);
_balances[from] -= 1;
_balances[to] += 1;
_owners[tokenId] = to;
emit Transfer(from, to, tokenId);
_afterTokenTransfer(from, to, tokenId);
}
/**
* @dev Approve `to` to operate on `tokenId`
*
* Emits an {Approval} event.
*/
function _approve(address to, uint256 tokenId) internal virtual {
_tokenApprovals[tokenId] = to;
emit Approval(ERC721.ownerOf(tokenId), to, tokenId);
}
/**
* @dev Approve `operator` to operate on all of `owner` tokens
*
* Emits an {ApprovalForAll} event.
*/
function _setApprovalForAll(
address owner,
address operator,
bool approved
) internal virtual {
require(owner != operator, "ERC721: approve to caller");
_operatorApprovals[owner][operator] = approved;
emit ApprovalForAll(owner, operator, approved);
}
/**
* @dev Reverts if the `tokenId` has not been minted yet.
*/
function _requireMinted(uint256 tokenId) internal view virtual {
require(_exists(tokenId), "ERC721: invalid token ID");
}
/**
* @dev Internal function to invoke {IERC721Receiver-onERC721Received} on a target address.
* The call is not executed if the target address is not a contract.
*
* @param from address representing the previous owner of the given token ID
* @param to target address that will receive the tokens
* @param tokenId uint256 ID of the token to be transferred
* @param data bytes optional data to send along with the call
* @return bool whether the call correctly returned the expected magic value
*/
function _checkOnERC721Received(
address from,
address to,
uint256 tokenId,
bytes memory data
) private returns (bool) {
if (to.isContract()) {
try IERC721Receiver(to).onERC721Received(_msgSender(), from, tokenId, data) returns (bytes4 retval) {
return retval == IERC721Receiver.onERC721Received.selector;
} catch (bytes memory reason) {
if (reason.length == 0) {
revert("ERC721: transfer to non ERC721Receiver implementer");
} else {
/// @solidity memory-safe-assembly
assembly {
revert(add(32, reason), mload(reason))
}
}
}
} else {
return true;
}
}
/**
* @dev Hook that is called before any token transfer. This includes minting
* and burning.
*
* Calling conditions:
*
* - When `from` and `to` are both non-zero, ``from``'s `tokenId` will be
* transferred to `to`.
* - When `from` is zero, `tokenId` will be minted for `to`.
* - When `to` is zero, ``from``'s `tokenId` will be burned.
* - `from` and `to` are never both zero.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/
function _beforeTokenTransfer(
address from,
address to,
uint256 tokenId
) internal virtual {}
/**
* @dev Hook that is called after any transfer of tokens. This includes
* minting and burning.
*
* Calling conditions:
*
* - when `from` and `to` are both non-zero.
* - `from` and `to` are never both zero.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/
function _afterTokenTransfer(
address from,
address to,
uint256 tokenId
) internal virtual {}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/introspection/ERC165.sol)
pragma solidity ^0.8.0;
import "./IERC165.sol";
/**
* @dev Implementation of the {IERC165} interface.
*
* Contracts that want to implement ERC165 should inherit from this contract and override {supportsInterface} to check
* for the additional interface id that will be supported. For example:
*
* ```solidity
* function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
* return interfaceId == type(MyInterface).interfaceId || super.supportsInterface(interfaceId);
* }
* ```
*
* Alternatively, {ERC165Storage} provides an easier to use but more expensive implementation.
*/
abstract contract ERC165 is IERC165 {
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return interfaceId == type(IERC165).interfaceId;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (utils/Strings.sol)
pragma solidity ^0.8.0;
/**
* @dev String operations.
*/
library Strings {
bytes16 private constant _HEX_SYMBOLS = "0123456789abcdef";
uint8 private constant _ADDRESS_LENGTH = 20;
/**
* @dev Converts a `uint256` to its ASCII `string` decimal representation.
*/
function toString(uint256 value) internal pure returns (string memory) {
// Inspired by OraclizeAPI's implementation - MIT licence
// https://github.com/oraclize/ethereum-api/blob/b42146b063c7d6ee1358846c198246239e9360e8/oraclizeAPI_0.4.25.sol
if (value == 0) {
return "0";
}
uint256 temp = value;
uint256 digits;
while (temp != 0) {
digits++;
temp /= 10;
}
bytes memory buffer = new bytes(digits);
while (value != 0) {
digits -= 1;
buffer[digits] = bytes1(uint8(48 + uint256(value % 10)));
value /= 10;
}
return string(buffer);
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation.
*/
function toHexString(uint256 value) internal pure returns (string memory) {
if (value == 0) {
return "0x00";
}
uint256 temp = value;
uint256 length = 0;
while (temp != 0) {
length++;
temp >>= 8;
}
return toHexString(value, length);
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation with fixed length.
*/
function toHexString(uint256 value, uint256 length) internal pure returns (string memory) {
bytes memory buffer = new bytes(2 * length + 2);
buffer[0] = "0";
buffer[1] = "x";
for (uint256 i = 2 * length + 1; i > 1; --i) {
buffer[i] = _HEX_SYMBOLS[value & 0xf];
value >>= 4;
}
require(value == 0, "Strings: hex length insufficient");
return string(buffer);
}
/**
* @dev Converts an `address` with fixed length of 20 bytes to its not checksummed ASCII `string` hexadecimal representation.
*/
function toHexString(address addr) internal pure returns (string memory) {
return toHexString(uint256(uint160(addr)), _ADDRESS_LENGTH);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (token/ERC721/extensions/IERC721Metadata.sol)
pragma solidity ^0.8.0;
import "../IERC721.sol";
/**
* @title ERC-721 Non-Fungible Token Standard, optional metadata extension
* @dev See https://eips.ethereum.org/EIPS/eip-721
*/
interface IERC721Metadata is IERC721 {
/**
* @dev Returns the token collection name.
*/
function name() external view returns (string memory);
/**
* @dev Returns the token collection symbol.
*/
function symbol() external view returns (string memory);
/**
* @dev Returns the Uniform Resource Identifier (URI) for `tokenId` token.
*/
function tokenURI(uint256 tokenId) external view returns (string memory);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (token/ERC721/extensions/ERC721Burnable.sol)
pragma solidity ^0.8.0;
import "../ERC721.sol";
import "../../../utils/Context.sol";
/**
* @title ERC721 Burnable Token
* @dev ERC721 Token that can be burned (destroyed).
*/
abstract contract ERC721Burnable is Context, ERC721 {
/**
* @dev Burns `tokenId`. See {ERC721-_burn}.
*
* Requirements:
*
* - The caller must own `tokenId` or be an approved operator.
*/
function burn(uint256 tokenId) public virtual {
//solhint-disable-next-line max-line-length
require(_isApprovedOrOwner(_msgSender(), tokenId), "ERC721: caller is not token owner nor approved");
_burn(tokenId);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.5.0) (token/ERC721/presets/ERC721PresetMinterPauserAutoId.sol)
pragma solidity ^0.8.0;
import "../ERC721.sol";
import "../extensions/ERC721Enumerable.sol";
import "../extensions/ERC721Burnable.sol";
import "../extensions/ERC721Pausable.sol";
import "../../../access/AccessControlEnumerable.sol";
import "../../../utils/Context.sol";
import "../../../utils/Counters.sol";
/**
* @dev {ERC721} token, including:
*
* - ability for holders to burn (destroy) their tokens
* - a minter role that allows for token minting (creation)
* - a pauser role that allows to stop all token transfers
* - token ID and URI autogeneration
*
* This contract uses {AccessControl} to lock permissioned functions using the
* different roles - head to its documentation for details.
*
* The account that deploys the contract will be granted the minter and pauser
* roles, as well as the default admin role, which will let it grant both minter
* and pauser roles to other accounts.
*
* _Deprecated in favor of https://wizard.openzeppelin.com/[Contracts Wizard]._
*/
contract ERC721PresetMinterPauserAutoId is
Context,
AccessControlEnumerable,
ERC721Enumerable,
ERC721Burnable,
ERC721Pausable
{
using Counters for Counters.Counter;
bytes32 public constant MINTER_ROLE = keccak256("MINTER_ROLE");
bytes32 public constant PAUSER_ROLE = keccak256("PAUSER_ROLE");
Counters.Counter private _tokenIdTracker;
string private _baseTokenURI;
/**
* @dev Grants `DEFAULT_ADMIN_ROLE`, `MINTER_ROLE` and `PAUSER_ROLE` to the
* account that deploys the contract.
*
* Token URIs will be autogenerated based on `baseURI` and their token IDs.
* See {ERC721-tokenURI}.
*/
constructor(
string memory name,
string memory symbol,
string memory baseTokenURI
) ERC721(name, symbol) {
_baseTokenURI = baseTokenURI;
_setupRole(DEFAULT_ADMIN_ROLE, _msgSender());
_setupRole(MINTER_ROLE, _msgSender());
_setupRole(PAUSER_ROLE, _msgSender());
}
function _baseURI() internal view virtual override returns (string memory) {
return _baseTokenURI;
}
/**
* @dev Creates a new token for `to`. Its token ID will be automatically
* assigned (and available on the emitted {IERC721-Transfer} event), and the token
* URI autogenerated based on the base URI passed at construction.
*
* See {ERC721-_mint}.
*
* Requirements:
*
* - the caller must have the `MINTER_ROLE`.
*/
function mint(address to) public virtual {
require(hasRole(MINTER_ROLE, _msgSender()), "ERC721PresetMinterPauserAutoId: must have minter role to mint");
// We cannot just use balanceOf to create the new tokenId because tokens
// can be burned (destroyed), so we need a separate counter.
_mint(to, _tokenIdTracker.current());
_tokenIdTracker.increment();
}
/**
* @dev Pauses all token transfers.
*
* See {ERC721Pausable} and {Pausable-_pause}.
*
* Requirements:
*
* - the caller must have the `PAUSER_ROLE`.
*/
function pause() public virtual {
require(hasRole(PAUSER_ROLE, _msgSender()), "ERC721PresetMinterPauserAutoId: must have pauser role to pause");
_pause();
}
/**
* @dev Unpauses all token transfers.
*
* See {ERC721Pausable} and {Pausable-_unpause}.
*
* Requirements:
*
* - the caller must have the `PAUSER_ROLE`.
*/
function unpause() public virtual {
require(hasRole(PAUSER_ROLE, _msgSender()), "ERC721PresetMinterPauserAutoId: must have pauser role to unpause");
_unpause();
}
function _beforeTokenTransfer(
address from,
address to,
uint256 tokenId
) internal virtual override(ERC721, ERC721Enumerable, ERC721Pausable) {
super._beforeTokenTransfer(from, to, tokenId);
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId)
public
view
virtual
override(AccessControlEnumerable, ERC721, ERC721Enumerable)
returns (bool)
{
return super.supportsInterface(interfaceId);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (token/ERC721/extensions/ERC721Enumerable.sol)
pragma solidity ^0.8.0;
import "../ERC721.sol";
import "./IERC721Enumerable.sol";
/**
* @dev This implements an optional extension of {ERC721} defined in the EIP that adds
* enumerability of all the token ids in the contract as well as all token ids owned by each
* account.
*/
abstract contract ERC721Enumerable is ERC721, IERC721Enumerable {
// Mapping from owner to list of owned token IDs
mapping(address => mapping(uint256 => uint256)) private _ownedTokens;
// Mapping from token ID to index of the owner tokens list
mapping(uint256 => uint256) private _ownedTokensIndex;
// Array with all token ids, used for enumeration
uint256[] private _allTokens;
// Mapping from token id to position in the allTokens array
mapping(uint256 => uint256) private _allTokensIndex;
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override(IERC165, ERC721) returns (bool) {
return interfaceId == type(IERC721Enumerable).interfaceId || super.supportsInterface(interfaceId);
}
/**
* @dev See {IERC721Enumerable-tokenOfOwnerByIndex}.
*/
function tokenOfOwnerByIndex(address owner, uint256 index) public view virtual override returns (uint256) {
require(index < ERC721.balanceOf(owner), "ERC721Enumerable: owner index out of bounds");
return _ownedTokens[owner][index];
}
/**
* @dev See {IERC721Enumerable-totalSupply}.
*/
function totalSupply() public view virtual override returns (uint256) {
return _allTokens.length;
}
/**
* @dev See {IERC721Enumerable-tokenByIndex}.
*/
function tokenByIndex(uint256 index) public view virtual override returns (uint256) {
require(index < ERC721Enumerable.totalSupply(), "ERC721Enumerable: global index out of bounds");
return _allTokens[index];
}
/**
* @dev Hook that is called before any token transfer. This includes minting
* and burning.
*
* Calling conditions:
*
* - When `from` and `to` are both non-zero, ``from``'s `tokenId` will be
* transferred to `to`.
* - When `from` is zero, `tokenId` will be minted for `to`.
* - When `to` is zero, ``from``'s `tokenId` will be burned.
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/
function _beforeTokenTransfer(
address from,
address to,
uint256 tokenId
) internal virtual override {
super._beforeTokenTransfer(from, to, tokenId);
if (from == address(0)) {
_addTokenToAllTokensEnumeration(tokenId);
} else if (from != to) {
_removeTokenFromOwnerEnumeration(from, tokenId);
}
if (to == address(0)) {
_removeTokenFromAllTokensEnumeration(tokenId);
} else if (to != from) {
_addTokenToOwnerEnumeration(to, tokenId);
}
}
/**
* @dev Private function to add a token to this extension's ownership-tracking data structures.
* @param to address representing the new owner of the given token ID
* @param tokenId uint256 ID of the token to be added to the tokens list of the given address
*/
function _addTokenToOwnerEnumeration(address to, uint256 tokenId) private {
uint256 length = ERC721.balanceOf(to);
_ownedTokens[to][length] = tokenId;
_ownedTokensIndex[tokenId] = length;
}
/**
* @dev Private function to add a token to this extension's token tracking data structures.
* @param tokenId uint256 ID of the token to be added to the tokens list
*/
function _addTokenToAllTokensEnumeration(uint256 tokenId) private {
_allTokensIndex[tokenId] = _allTokens.length;
_allTokens.push(tokenId);
}
/**
* @dev Private function to remove a token from this extension's ownership-tracking data structures. Note that
* while the token is not assigned a new owner, the `_ownedTokensIndex` mapping is _not_ updated: this allows for
* gas optimizations e.g. when performing a transfer operation (avoiding double writes).
* This has O(1) time complexity, but alters the order of the _ownedTokens array.
* @param from address representing the previous owner of the given token ID
* @param tokenId uint256 ID of the token to be removed from the tokens list of the given address
*/
function _removeTokenFromOwnerEnumeration(address from, uint256 tokenId) private {
// To prevent a gap in from's tokens array, we store the last token in the index of the token to delete, and
// then delete the last slot (swap and pop).
uint256 lastTokenIndex = ERC721.balanceOf(from) - 1;
uint256 tokenIndex = _ownedTokensIndex[tokenId];
// When the token to delete is the last token, the swap operation is unnecessary
if (tokenIndex != lastTokenIndex) {
uint256 lastTokenId = _ownedTokens[from][lastTokenIndex];
_ownedTokens[from][tokenIndex] = lastTokenId; // Move the last token to the slot of the to-delete token
_ownedTokensIndex[lastTokenId] = tokenIndex; // Update the moved token's index
}
// This also deletes the contents at the last position of the array
delete _ownedTokensIndex[tokenId];
delete _ownedTokens[from][lastTokenIndex];
}
/**
* @dev Private function to remove a token from this extension's token tracking data structures.
* This has O(1) time complexity, but alters the order of the _allTokens array.
* @param tokenId uint256 ID of the token to be removed from the tokens list
*/
function _removeTokenFromAllTokensEnumeration(uint256 tokenId) private {
// To prevent a gap in the tokens array, we store the last token in the index of the token to delete, and
// then delete the last slot (swap and pop).
uint256 lastTokenIndex = _allTokens.length - 1;
uint256 tokenIndex = _allTokensIndex[tokenId];
// When the token to delete is the last token, the swap operation is unnecessary. However, since this occurs so
// rarely (when the last minted token is burnt) that we still do the swap here to avoid the gas cost of adding
// an 'if' statement (like in _removeTokenFromOwnerEnumeration)
uint256 lastTokenId = _allTokens[lastTokenIndex];
_allTokens[tokenIndex] = lastTokenId; // Move the last token to the slot of the to-delete token
_allTokensIndex[lastTokenId] = tokenIndex; // Update the moved token's index
// This also deletes the contents at the last position of the array
delete _allTokensIndex[tokenId];
_allTokens.pop();
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.5.0) (access/AccessControlEnumerable.sol)
pragma solidity ^0.8.0;
import "./IAccessControlEnumerable.sol";
import "./AccessControl.sol";
import "../utils/structs/EnumerableSet.sol";
/**
* @dev Extension of {AccessControl} that allows enumerating the members of each role.
*/
abstract contract AccessControlEnumerable is IAccessControlEnumerable, AccessControl {
using EnumerableSet for EnumerableSet.AddressSet;
mapping(bytes32 => EnumerableSet.AddressSet) private _roleMembers;
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return interfaceId == type(IAccessControlEnumerable).interfaceId || super.supportsInterface(interfaceId);
}
/**
* @dev Returns one of the accounts that have `role`. `index` must be a
* value between 0 and {getRoleMemberCount}, non-inclusive.
*
* Role bearers are not sorted in any particular way, and their ordering may
* change at any point.
*
* WARNING: When using {getRoleMember} and {getRoleMemberCount}, make sure
* you perform all queries on the same block. See the following
* https://forum.openzeppelin.com/t/iterating-over-elements-on-enumerableset-in-openzeppelin-contracts/2296[forum post]
* for more information.
*/
function getRoleMember(bytes32 role, uint256 index) public view virtual override returns (address) {
return _roleMembers[role].at(index);
}
/**
* @dev Returns the number of accounts that have `role`. Can be used
* together with {getRoleMember} to enumerate all bearers of a role.
*/
function getRoleMemberCount(bytes32 role) public view virtual override returns (uint256) {
return _roleMembers[role].length();
}
/**
* @dev Overload {_grantRole} to track enumerable memberships
*/
function _grantRole(bytes32 role, address account) internal virtual override {
super._grantRole(role, account);
_roleMembers[role].add(account);
}
/**
* @dev Overload {_revokeRole} to track enumerable memberships
*/
function _revokeRole(bytes32 role, address account) internal virtual override {
super._revokeRole(role, account);
_roleMembers[role].remove(account);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/Counters.sol)
pragma solidity ^0.8.0;
/**
* @title Counters
* @author Matt Condon (@shrugs)
* @dev Provides counters that can only be incremented, decremented or reset. This can be used e.g. to track the number
* of elements in a mapping, issuing ERC721 ids, or counting request ids.
*
* Include with `using Counters for Counters.Counter;`
*/
library Counters {
struct Counter {
// This variable should never be directly accessed by users of the library: interactions must be restricted to
// the library's function. As of Solidity v0.5.2, this cannot be enforced, though there is a proposal to add
// this feature: see https://github.com/ethereum/solidity/issues/4637
uint256 _value; // default: 0
}
function current(Counter storage counter) internal view returns (uint256) {
return counter._value;
}
function increment(Counter storage counter) internal {
unchecked {
counter._value += 1;
}
}
function decrement(Counter storage counter) internal {
uint256 value = counter._value;
require(value > 0, "Counter: decrement overflow");
unchecked {
counter._value = value - 1;
}
}
function reset(Counter storage counter) internal {
counter._value = 0;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (utils/structs/EnumerableSet.sol)
pragma solidity ^0.8.0;
/**
* @dev Library for managing
* https://en.wikipedia.org/wiki/Set_(abstract_data_type)[sets] of primitive
* types.
*
* Sets have the following properties:
*
* - Elements are added, removed, and checked for existence in constant time
* (O(1)).
* - Elements are enumerated in O(n). No guarantees are made on the ordering.
*
* ```
* contract Example {
* // Add the library methods
* using EnumerableSet for EnumerableSet.AddressSet;
*
* // Declare a set state variable
* EnumerableSet.AddressSet private mySet;
* }
* ```
*
* As of v3.3.0, sets of type `bytes32` (`Bytes32Set`), `address` (`AddressSet`)
* and `uint256` (`UintSet`) are supported.
*
* [WARNING]
* ====
* Trying to delete such a structure from storage will likely result in data corruption, rendering the structure unusable.
* See https://github.com/ethereum/solidity/pull/11843[ethereum/solidity#11843] for more info.
*
* In order to clean an EnumerableSet, you can either remove all elements one by one or create a fresh instance using an array of EnumerableSet.
* ====
*/
library EnumerableSet {
// To implement this library for multiple types with as little code
// repetition as possible, we write it in terms of a generic Set type with
// bytes32 values.
// The Set implementation uses private functions, and user-facing
// implementations (such as AddressSet) are just wrappers around the
// underlying Set.
// This means that we can only create new EnumerableSets for types that fit
// in bytes32.
struct Set {
// Storage of set values
bytes32[] _values;
// Position of the value in the `values` array, plus 1 because index 0
// means a value is not in the set.
mapping(bytes32 => uint256) _indexes;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/
function _add(Set storage set, bytes32 value) private returns (bool) {
if (!_contains(set, value)) {
set._values.push(value);
// The value is stored at length-1, but we add 1 to all indexes
// and use 0 as a sentinel value
set._indexes[value] = set._values.length;
return true;
} else {
return false;
}
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/
function _remove(Set storage set, bytes32 value) private returns (bool) {
// We read and store the value's index to prevent multiple reads from the same storage slot
uint256 valueIndex = set._indexes[value];
if (valueIndex != 0) {
// Equivalent to contains(set, value)
// To delete an element from the _values array in O(1), we swap the element to delete with the last one in
// the array, and then remove the last element (sometimes called as 'swap and pop').
// This modifies the order of the array, as noted in {at}.
uint256 toDeleteIndex = valueIndex - 1;
uint256 lastIndex = set._values.length - 1;
if (lastIndex != toDeleteIndex) {
bytes32 lastValue = set._values[lastIndex];
// Move the last value to the index where the value to delete is
set._values[toDeleteIndex] = lastValue;
// Update the index for the moved value
set._indexes[lastValue] = valueIndex; // Replace lastValue's index to valueIndex
}
// Delete the slot where the moved value was stored
set._values.pop();
// Delete the index for the deleted slot
delete set._indexes[value];
return true;
} else {
return false;
}
}
/**
* @dev Returns true if the value is in the set. O(1).
*/
function _contains(Set storage set, bytes32 value) private view returns (bool) {
return set._indexes[value] != 0;
}
/**
* @dev Returns the number of values on the set. O(1).
*/
function _length(Set storage set) private view returns (uint256) {
return set._values.length;
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/
function _at(Set storage set, uint256 index) private view returns (bytes32) {
return set._values[index];
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/
function _values(Set storage set) private view returns (bytes32[] memory) {
return set._values;
}
// Bytes32Set
struct Bytes32Set {
Set _inner;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/
function add(Bytes32Set storage set, bytes32 value) internal returns (bool) {
return _add(set._inner, value);
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/
function remove(Bytes32Set storage set, bytes32 value) internal returns (bool) {
return _remove(set._inner, value);
}
/**
* @dev Returns true if the value is in the set. O(1).
*/
function contains(Bytes32Set storage set, bytes32 value) internal view returns (bool) {
return _contains(set._inner, value);
}
/**
* @dev Returns the number of values in the set. O(1).
*/
function length(Bytes32Set storage set) internal view returns (uint256) {
return _length(set._inner);
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/
function at(Bytes32Set storage set, uint256 index) internal view returns (bytes32) {
return _at(set._inner, index);
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/
function values(Bytes32Set storage set) internal view returns (bytes32[] memory) {
return _values(set._inner);
}
// AddressSet
struct AddressSet {
Set _inner;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/
function add(AddressSet storage set, address value) internal returns (bool) {
return _add(set._inner, bytes32(uint256(uint160(value))));
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/
function remove(AddressSet storage set, address value) internal returns (bool) {
return _remove(set._inner, bytes32(uint256(uint160(value))));
}
/**
* @dev Returns true if the value is in the set. O(1).
*/
function contains(AddressSet storage set, address value) internal view returns (bool) {
return _contains(set._inner, bytes32(uint256(uint160(value))));
}
/**
* @dev Returns the number of values in the set. O(1).
*/
function length(AddressSet storage set) internal view returns (uint256) {
return _length(set._inner);
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/
function at(AddressSet storage set, uint256 index) internal view returns (address) {
return address(uint160(uint256(_at(set._inner, index))));
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/
function values(AddressSet storage set) internal view returns (address[] memory) {
bytes32[] memory store = _values(set._inner);
address[] memory result;
/// @solidity memory-safe-assembly
assembly {
result := store
}
return result;
}
// UintSet
struct UintSet {
Set _inner;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/
function add(UintSet storage set, uint256 value) internal returns (bool) {
return _add(set._inner, bytes32(value));
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/
function remove(UintSet storage set, uint256 value) internal returns (bool) {
return _remove(set._inner, bytes32(value));
}
/**
* @dev Returns true if the value is in the set. O(1).
*/
function contains(UintSet storage set, uint256 value) internal view returns (bool) {
return _contains(set._inner, bytes32(value));
}
/**
* @dev Returns the number of values on the set. O(1).
*/
function length(UintSet storage set) internal view returns (uint256) {
return _length(set._inner);
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/
function at(UintSet storage set, uint256 index) internal view returns (uint256) {
return uint256(_at(set._inner, index));
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/
function values(UintSet storage set) internal view returns (uint256[] memory) {
bytes32[] memory store = _values(set._inner);
uint256[] memory result;
/// @solidity memory-safe-assembly
assembly {
result := store
}
return result;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (access/AccessControl.sol)
pragma solidity ^0.8.0;
import "./IAccessControl.sol";
import "../utils/Context.sol";
import "../utils/Strings.sol";
import "../utils/introspection/ERC165.sol";
/**
* @dev Contract module that allows children to implement role-based access
* control mechanisms. This is a lightweight version that doesn't allow enumerating role
* members except through off-chain means by accessing the contract event logs. Some
* applications may benefit from on-chain enumerability, for those cases see
* {AccessControlEnumerable}.
*
* Roles are referred to by their `bytes32` identifier. These should be exposed
* in the external API and be unique. The best way to achieve this is by
* using `public constant` hash digests:
*
* ```
* bytes32 public constant MY_ROLE = keccak256("MY_ROLE");
* ```
*
* Roles can be used to represent a set of permissions. To restrict access to a
* function call, use {hasRole}:
*
* ```
* function foo() public {
* require(hasRole(MY_ROLE, msg.sender));
* ...
* }
* ```
*
* Roles can be granted and revoked dynamically via the {grantRole} and
* {revokeRole} functions. Each role has an associated admin role, and only
* accounts that have a role's admin role can call {grantRole} and {revokeRole}.
*
* By default, the admin role for all roles is `DEFAULT_ADMIN_ROLE`, which means
* that only accounts with this role will be able to grant or revoke other
* roles. More complex role relationships can be created by using
* {_setRoleAdmin}.
*
* WARNING: The `DEFAULT_ADMIN_ROLE` is also its own admin: it has permission to
* grant and revoke this role. Extra precautions should be taken to secure
* accounts that have been granted it.
*/
abstract contract AccessControl is Context, IAccessControl, ERC165 {
struct RoleData {
mapping(address => bool) members;
bytes32 adminRole;
}
mapping(bytes32 => RoleData) private _roles;
bytes32 public constant DEFAULT_ADMIN_ROLE = 0x00;
/**
* @dev Modifier that checks that an account has a specific role. Reverts
* with a standardized message including the required role.
*
* The format of the revert reason is given by the following regular expression:
*
* /^AccessControl: account (0x[0-9a-f]{40}) is missing role (0x[0-9a-f]{64})$/
*
* _Available since v4.1._
*/
modifier onlyRole(bytes32 role) {
_checkRole(role);
_;
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return interfaceId == type(IAccessControl).interfaceId || super.supportsInterface(interfaceId);
}
/**
* @dev Returns `true` if `account` has been granted `role`.
*/
function hasRole(bytes32 role, address account) public view virtual override returns (bool) {
return _roles[role].members[account];
}
/**
* @dev Revert with a standard message if `_msgSender()` is missing `role`.
* Overriding this function changes the behavior of the {onlyRole} modifier.
*
* Format of the revert message is described in {_checkRole}.
*
* _Available since v4.6._
*/
function _checkRole(bytes32 role) internal view virtual {
_checkRole(role, _msgSender());
}
/**
* @dev Revert with a standard message if `account` is missing `role`.
*
* The format of the revert reason is given by the following regular expression:
*
* /^AccessControl: account (0x[0-9a-f]{40}) is missing role (0x[0-9a-f]{64})$/
*/
function _checkRole(bytes32 role, address account) internal view virtual {
if (!hasRole(role, account)) {
revert(
string(
abi.encodePacked(
"AccessControl: account ",
Strings.toHexString(uint160(account), 20),
" is missing role ",
Strings.toHexString(uint256(role), 32)
)
)
);
}
}
/**
* @dev Returns the admin role that controls `role`. See {grantRole} and
* {revokeRole}.
*
* To change a role's admin, use {_setRoleAdmin}.
*/
function getRoleAdmin(bytes32 role) public view virtual override returns (bytes32) {
return _roles[role].adminRole;
}
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*
* May emit a {RoleGranted} event.
*/
function grantRole(bytes32 role, address account) public virtual override onlyRole(getRoleAdmin(role)) {
_grantRole(role, account);
}
/**
* @dev Revokes `role` from `account`.
*
* If `account` had been granted `role`, emits a {RoleRevoked} event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*
* May emit a {RoleRevoked} event.
*/
function revokeRole(bytes32 role, address account) public virtual override onlyRole(getRoleAdmin(role)) {
_revokeRole(role, account);
}
/**
* @dev Revokes `role` from the calling account.
*
* Roles are often managed via {grantRole} and {revokeRole}: this function's
* purpose is to provide a mechanism for accounts to lose their privileges
* if they are compromised (such as when a trusted device is misplaced).
*
* If the calling account had been revoked `role`, emits a {RoleRevoked}
* event.
*
* Requirements:
*
* - the caller must be `account`.
*
* May emit a {RoleRevoked} event.
*/
function renounceRole(bytes32 role, address account) public virtual override {
require(account == _msgSender(), "AccessControl: can only renounce roles for self");
_revokeRole(role, account);
}
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event. Note that unlike {grantRole}, this function doesn't perform any
* checks on the calling account.
*
* May emit a {RoleGranted} event.
*
* [WARNING]
* ====
* This function should only be called from the constructor when setting
* up the initial roles for the system.
*
* Using this function in any other way is effectively circumventing the admin
* system imposed by {AccessControl}.
* ====
*
* NOTE: This function is deprecated in favor of {_grantRole}.
*/
function _setupRole(bytes32 role, address account) internal virtual {
_grantRole(role, account);
}
/**
* @dev Sets `adminRole` as ``role``'s admin role.
*
* Emits a {RoleAdminChanged} event.
*/
function _setRoleAdmin(bytes32 role, bytes32 adminRole) internal virtual {
bytes32 previousAdminRole = getRoleAdmin(role);
_roles[role].adminRole = adminRole;
emit RoleAdminChanged(role, previousAdminRole, adminRole);
}
/**
* @dev Grants `role` to `account`.
*
* Internal function without access restriction.
*
* May emit a {RoleGranted} event.
*/
function _grantRole(bytes32 role, address account) internal virtual {
if (!hasRole(role, account)) {
_roles[role].members[account] = true;
emit RoleGranted(role, account, _msgSender());
}
}
/**
* @dev Revokes `role` from `account`.
*
* Internal function without access restriction.
*
* May emit a {RoleRevoked} event.
*/
function _revokeRole(bytes32 role, address account) internal virtual {
if (hasRole(role, account)) {
_roles[role].members[account] = false;
emit RoleRevoked(role, account, _msgSender());
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (access/IAccessControlEnumerable.sol)
pragma solidity ^0.8.0;
import "./IAccessControl.sol";
/**
* @dev External interface of AccessControlEnumerable declared to support ERC165 detection.
*/
interface IAccessControlEnumerable is IAccessControl {
/**
* @dev Returns one of the accounts that have `role`. `index` must be a
* value between 0 and {getRoleMemberCount}, non-inclusive.
*
* Role bearers are not sorted in any particular way, and their ordering may
* change at any point.
*
* WARNING: When using {getRoleMember} and {getRoleMemberCount}, make sure
* you perform all queries on the same block. See the following
* https://forum.openzeppelin.com/t/iterating-over-elements-on-enumerableset-in-openzeppelin-contracts/2296[forum post]
* for more information.
*/
function getRoleMember(bytes32 role, uint256 index) external view returns (address);
/**
* @dev Returns the number of accounts that have `role`. Can be used
* together with {getRoleMember} to enumerate all bearers of a role.
*/
function getRoleMemberCount(bytes32 role) external view returns (uint256);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (access/IAccessControl.sol)
pragma solidity ^0.8.0;
/**
* @dev External interface of AccessControl declared to support ERC165 detection.
*/
interface IAccessControl {
/**
* @dev Emitted when `newAdminRole` is set as ``role``'s admin role, replacing `previousAdminRole`
*
* `DEFAULT_ADMIN_ROLE` is the starting admin for all roles, despite
* {RoleAdminChanged} not being emitted signaling this.
*
* _Available since v3.1._
*/
event RoleAdminChanged(bytes32 indexed role, bytes32 indexed previousAdminRole, bytes32 indexed newAdminRole);
/**
* @dev Emitted when `account` is granted `role`.
*
* `sender` is the account that originated the contract call, an admin role
* bearer except when using {AccessControl-_setupRole}.
*/
event RoleGranted(bytes32 indexed role, address indexed account, address indexed sender);
/**
* @dev Emitted when `account` is revoked `role`.
*
* `sender` is the account that originated the contract call:
* - if using `revokeRole`, it is the admin role bearer
* - if using `renounceRole`, it is the role bearer (i.e. `account`)
*/
event RoleRevoked(bytes32 indexed role, address indexed account, address indexed sender);
/**
* @dev Returns `true` if `account` has been granted `role`.
*/
function hasRole(bytes32 role, address account) external view returns (bool);
/**
* @dev Returns the admin role that controls `role`. See {grantRole} and
* {revokeRole}.
*
* To change a role's admin, use {AccessControl-_setRoleAdmin}.
*/
function getRoleAdmin(bytes32 role) external view returns (bytes32);
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function grantRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from `account`.
*
* If `account` had been granted `role`, emits a {RoleRevoked} event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function revokeRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from the calling account.
*
* Roles are often managed via {grantRole} and {revokeRole}: this function's
* purpose is to provide a mechanism for accounts to lose their privileges
* if they are compromised (such as when a trusted device is misplaced).
*
* If the calling account had been granted `role`, emits a {RoleRevoked}
* event.
*
* Requirements:
*
* - the caller must be `account`.
*/
function renounceRole(bytes32 role, address account) external;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (token/ERC1155/utils/ERC1155Receiver.sol)
pragma solidity ^0.8.0;
import "../IERC1155Receiver.sol";
import "../../../utils/introspection/ERC165.sol";
/**
* @dev _Available since v3.1._
*/
abstract contract ERC1155Receiver is ERC165, IERC1155Receiver {
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override(ERC165, IERC165) returns (bool) {
return interfaceId == type(IERC1155Receiver).interfaceId || super.supportsInterface(interfaceId);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.5.0) (token/ERC1155/IERC1155Receiver.sol)
pragma solidity ^0.8.0;
import "../../utils/introspection/IERC165.sol";
/**
* @dev _Available since v3.1._
*/
interface IERC1155Receiver is IERC165 {
/**
* @dev Handles the receipt of a single ERC1155 token type. This function is
* called at the end of a `safeTransferFrom` after the balance has been updated.
*
* NOTE: To accept the transfer, this must return
* `bytes4(keccak256("onERC1155Received(address,address,uint256,uint256,bytes)"))`
* (i.e. 0xf23a6e61, or its own function selector).
*
* @param operator The address which initiated the transfer (i.e. msg.sender)
* @param from The address which previously owned the token
* @param id The ID of the token being transferred
* @param value The amount of tokens being transferred
* @param data Additional data with no specified format
* @return `bytes4(keccak256("onERC1155Received(address,address,uint256,uint256,bytes)"))` if transfer is allowed
*/
function onERC1155Received(
address operator,
address from,
uint256 id,
uint256 value,
bytes calldata data
) external returns (bytes4);
/**
* @dev Handles the receipt of a multiple ERC1155 token types. This function
* is called at the end of a `safeBatchTransferFrom` after the balances have
* been updated.
*
* NOTE: To accept the transfer(s), this must return
* `bytes4(keccak256("onERC1155BatchReceived(address,address,uint256[],uint256[],bytes)"))`
* (i.e. 0xbc197c81, or its own function selector).
*
* @param operator The address which initiated the batch transfer (i.e. msg.sender)
* @param from The address which previously owned the token
* @param ids An array containing ids of each token being transferred (order and length must match values array)
* @param values An array containing amounts of each token being transferred (order and length must match ids array)
* @param data Additional data with no specified format
* @return `bytes4(keccak256("onERC1155BatchReceived(address,address,uint256[],uint256[],bytes)"))` if transfer is allowed
*/
function onERC1155BatchReceived(
address operator,
address from,
uint256[] calldata ids,
uint256[] calldata values,
bytes calldata data
) external returns (bytes4);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.2) (utils/introspection/ERC165Checker.sol)
pragma solidity ^0.8.0;
import "./IERC165.sol";
/**
* @dev Library used to query support of an interface declared via {IERC165}.
*
* Note that these functions return the actual result of the query: they do not
* `revert` if an interface is not supported. It is up to the caller to decide
* what to do in these cases.
*/
library ERC165Checker {
// As per the EIP-165 spec, no interface should ever match 0xffffffff
bytes4 private constant _INTERFACE_ID_INVALID = 0xffffffff;
/**
* @dev Returns true if `account` supports the {IERC165} interface,
*/
function supportsERC165(address account) internal view returns (bool) {
// Any contract that implements ERC165 must explicitly indicate support of
// InterfaceId_ERC165 and explicitly indicate non-support of InterfaceId_Invalid
return
_supportsERC165Interface(account, type(IERC165).interfaceId) &&
!_supportsERC165Interface(account, _INTERFACE_ID_INVALID);
}
/**
* @dev Returns true if `account` supports the interface defined by
* `interfaceId`. Support for {IERC165} itself is queried automatically.
*
* See {IERC165-supportsInterface}.
*/
function supportsInterface(address account, bytes4 interfaceId) internal view returns (bool) {
// query support of both ERC165 as per the spec and support of _interfaceId
return supportsERC165(account) && _supportsERC165Interface(account, interfaceId);
}
/**
* @dev Returns a boolean array where each value corresponds to the
* interfaces passed in and whether they're supported or not. This allows
* you to batch check interfaces for a contract where your expectation
* is that some interfaces may not be supported.
*
* See {IERC165-supportsInterface}.
*
* _Available since v3.4._
*/
function getSupportedInterfaces(address account, bytes4[] memory interfaceIds)
internal
view
returns (bool[] memory)
{
// an array of booleans corresponding to interfaceIds and whether they're supported or not
bool[] memory interfaceIdsSupported = new bool[](interfaceIds.length);
// query support of ERC165 itself
if (supportsERC165(account)) {
// query support of each interface in interfaceIds
for (uint256 i = 0; i < interfaceIds.length; i++) {
interfaceIdsSupported[i] = _supportsERC165Interface(account, interfaceIds[i]);
}
}
return interfaceIdsSupported;
}
/**
* @dev Returns true if `account` supports all the interfaces defined in
* `interfaceIds`. Support for {IERC165} itself is queried automatically.
*
* Batch-querying can lead to gas savings by skipping repeated checks for
* {IERC165} support.
*
* See {IERC165-supportsInterface}.
*/
function supportsAllInterfaces(address account, bytes4[] memory interfaceIds) internal view returns (bool) {
// query support of ERC165 itself
if (!supportsERC165(account)) {
return false;
}
// query support of each interface in _interfaceIds
for (uint256 i = 0; i < interfaceIds.length; i++) {
if (!_supportsERC165Interface(account, interfaceIds[i])) {
return false;
}
}
// all interfaces supported
return true;
}
/**
* @notice Query if a contract implements an interface, does not check ERC165 support
* @param account The address of the contract to query for support of an interface
* @param interfaceId The interface identifier, as specified in ERC-165
* @return true if the contract at account indicates support of the interface with
* identifier interfaceId, false otherwise
* @dev Assumes that account contains a contract that supports ERC165, otherwise
* the behavior of this method is undefined. This precondition can be checked
* with {supportsERC165}.
* Interface identification is specified in ERC-165.
*/
function _supportsERC165Interface(address account, bytes4 interfaceId) private view returns (bool) {
// prepare call
bytes memory encodedParams = abi.encodeWithSelector(IERC165.supportsInterface.selector, interfaceId);
// perform static call
bool success;
uint256 returnSize;
uint256 returnValue;
assembly {
success := staticcall(30000, account, add(encodedParams, 0x20), mload(encodedParams), 0x00, 0x20)
returnSize := returndatasize()
returnValue := mload(0x00)
}
return success && returnSize >= 0x20 && returnValue > 0;
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.4;
import {ERC165Checker} from "@openzeppelin/contracts/utils/introspection/ERC165Checker.sol";
import {IOwnershipTransferCallback} from "./IOwnershipTransferCallback.sol";
import {Address} from "@openzeppelin/contracts/utils/Address.sol";
abstract contract OwnableWithTransferCallback {
using ERC165Checker for address;
using Address for address;
bytes4 constant TRANSFER_CALLBACK =
type(IOwnershipTransferCallback).interfaceId;
error Ownable_NotOwner();
error Ownable_NewOwnerZeroAddress();
address private _owner;
event OwnershipTransferred(address indexed newOwner);
/// @dev Initializes the contract setting the deployer as the initial owner.
function __Ownable_init(address initialOwner) internal {
_owner = initialOwner;
}
/// @dev Returns the address of the current owner.
function owner() public view virtual returns (address) {
return _owner;
}
/// @dev Throws if called by any account other than the owner.
modifier onlyOwner() {
if (owner() != msg.sender) revert Ownable_NotOwner();
_;
}
/// @dev Transfers ownership of the contract to a new account (`newOwner`).
/// Disallows setting to the zero address as a way to more gas-efficiently avoid reinitialization
/// When ownership is transferred, if the new owner implements IOwnershipTransferCallback, we make a callback
/// Can only be called by the current owner.
function transferOwnership(address newOwner) public virtual onlyOwner {
if (newOwner == address(0)) revert Ownable_NewOwnerZeroAddress();
_transferOwnership(newOwner);
// Call the on ownership transfer callback if it exists
// @dev try/catch is around 5k gas cheaper than doing ERC165 checking
if (newOwner.isContract()) {
try
IOwnershipTransferCallback(newOwner).onOwnershipTransfer(msg.sender)
{} catch (bytes memory) {}
}
}
/// @dev Transfers ownership of the contract to a new account (`newOwner`).
/// Internal function without access restriction.
function _transferOwnership(address newOwner) internal virtual {
_owner = newOwner;
emit OwnershipTransferred(newOwner);
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.4;
interface IOwnershipTransferCallback {
function onOwnershipTransfer(address oldOwner) external;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (token/ERC20/extensions/IERC20Metadata.sol)
pragma solidity ^0.8.0;
import "../IERC20.sol";
/**
* @dev Interface for the optional metadata functions from the ERC20 standard.
*
* _Available since v4.1._
*/
interface IERC20Metadata is IERC20 {
/**
* @dev Returns the name of the token.
*/
function name() external view returns (string memory);
/**
* @dev Returns the symbol of the token.
*/
function symbol() external view returns (string memory);
/**
* @dev Returns the decimals places of the token.
*/
function decimals() external view returns (uint8);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (token/ERC20/ERC20.sol)
pragma solidity ^0.8.0;
import "./IERC20.sol";
import "./extensions/IERC20Metadata.sol";
import "../../utils/Context.sol";
/**
* @dev Implementation of the {IERC20} interface.
*
* This implementation is agnostic to the way tokens are created. This means
* that a supply mechanism has to be added in a derived contract using {_mint}.
* For a generic mechanism see {ERC20PresetMinterPauser}.
*
* TIP: For a detailed writeup see our guide
* https://forum.zeppelin.solutions/t/how-to-implement-erc20-supply-mechanisms/226[How
* to implement supply mechanisms].
*
* We have followed general OpenZeppelin Contracts guidelines: functions revert
* instead returning `false` on failure. This behavior is nonetheless
* conventional and does not conflict with the expectations of ERC20
* applications.
*
* Additionally, an {Approval} event is emitted on calls to {transferFrom}.
* This allows applications to reconstruct the allowance for all accounts just
* by listening to said events. Other implementations of the EIP may not emit
* these events, as it isn't required by the specification.
*
* Finally, the non-standard {decreaseAllowance} and {increaseAllowance}
* functions have been added to mitigate the well-known issues around setting
* allowances. See {IERC20-approve}.
*/
contract ERC20 is Context, IERC20, IERC20Metadata {
mapping(address => uint256) private _balances;
mapping(address => mapping(address => uint256)) private _allowances;
uint256 private _totalSupply;
string private _name;
string private _symbol;
/**
* @dev Sets the values for {name} and {symbol}.
*
* The default value of {decimals} is 18. To select a different value for
* {decimals} you should overload it.
*
* All two of these values are immutable: they can only be set once during
* construction.
*/
constructor(string memory name_, string memory symbol_) {
_name = name_;
_symbol = symbol_;
}
/**
* @dev Returns the name of the token.
*/
function name() public view virtual override returns (string memory) {
return _name;
}
/**
* @dev Returns the symbol of the token, usually a shorter version of the
* name.
*/
function symbol() public view virtual override returns (string memory) {
return _symbol;
}
/**
* @dev Returns the number of decimals used to get its user representation.
* For example, if `decimals` equals `2`, a balance of `505` tokens should
* be displayed to a user as `5.05` (`505 / 10 ** 2`).
*
* Tokens usually opt for a value of 18, imitating the relationship between
* Ether and Wei. This is the value {ERC20} uses, unless this function is
* overridden;
*
* NOTE: This information is only used for _display_ purposes: it in
* no way affects any of the arithmetic of the contract, including
* {IERC20-balanceOf} and {IERC20-transfer}.
*/
function decimals() public view virtual override returns (uint8) {
return 18;
}
/**
* @dev See {IERC20-totalSupply}.
*/
function totalSupply() public view virtual override returns (uint256) {
return _totalSupply;
}
/**
* @dev See {IERC20-balanceOf}.
*/
function balanceOf(address account) public view virtual override returns (uint256) {
return _balances[account];
}
/**
* @dev See {IERC20-transfer}.
*
* Requirements:
*
* - `to` cannot be the zero address.
* - the caller must have a balance of at least `amount`.
*/
function transfer(address to, uint256 amount) public virtual override returns (bool) {
address owner = _msgSender();
_transfer(owner, to, amount);
return true;
}
/**
* @dev See {IERC20-allowance}.
*/
function allowance(address owner, address spender) public view virtual override returns (uint256) {
return _allowances[owner][spender];
}
/**
* @dev See {IERC20-approve}.
*
* NOTE: If `amount` is the maximum `uint256`, the allowance is not updated on
* `transferFrom`. This is semantically equivalent to an infinite approval.
*
* Requirements:
*
* - `spender` cannot be the zero address.
*/
function approve(address spender, uint256 amount) public virtual override returns (bool) {
address owner = _msgSender();
_approve(owner, spender, amount);
return true;
}
/**
* @dev See {IERC20-transferFrom}.
*
* Emits an {Approval} event indicating the updated allowance. This is not
* required by the EIP. See the note at the beginning of {ERC20}.
*
* NOTE: Does not update the allowance if the current allowance
* is the maximum `uint256`.
*
* Requirements:
*
* - `from` and `to` cannot be the zero address.
* - `from` must have a balance of at least `amount`.
* - the caller must have allowance for ``from``'s tokens of at least
* `amount`.
*/
function transferFrom(
address from,
address to,
uint256 amount
) public virtual override returns (bool) {
address spender = _msgSender();
_spendAllowance(from, spender, amount);
_transfer(from, to, amount);
return true;
}
/**
* @dev Atomically increases the allowance granted to `spender` by the caller.
*
* This is an alternative to {approve} that can be used as a mitigation for
* problems described in {IERC20-approve}.
*
* Emits an {Approval} event indicating the updated allowance.
*
* Requirements:
*
* - `spender` cannot be the zero address.
*/
function increaseAllowance(address spender, uint256 addedValue) public virtual returns (bool) {
address owner = _msgSender();
_approve(owner, spender, allowance(owner, spender) + addedValue);
return true;
}
/**
* @dev Atomically decreases the allowance granted to `spender` by the caller.
*
* This is an alternative to {approve} that can be used as a mitigation for
* problems described in {IERC20-approve}.
*
* Emits an {Approval} event indicating the updated allowance.
*
* Requirements:
*
* - `spender` cannot be the zero address.
* - `spender` must have allowance for the caller of at least
* `subtractedValue`.
*/
function decreaseAllowance(address spender, uint256 subtractedValue) public virtual returns (bool) {
address owner = _msgSender();
uint256 currentAllowance = allowance(owner, spender);
require(currentAllowance >= subtractedValue, "ERC20: decreased allowance below zero");
unchecked {
_approve(owner, spender, currentAllowance - subtractedValue);
}
return true;
}
/**
* @dev Moves `amount` of tokens from `from` to `to`.
*
* This internal function is equivalent to {transfer}, and can be used to
* e.g. implement automatic token fees, slashing mechanisms, etc.
*
* Emits a {Transfer} event.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `from` must have a balance of at least `amount`.
*/
function _transfer(
address from,
address to,
uint256 amount
) internal virtual {
require(from != address(0), "ERC20: transfer from the zero address");
require(to != address(0), "ERC20: transfer to the zero address");
_beforeTokenTransfer(from, to, amount);
uint256 fromBalance = _balances[from];
require(fromBalance >= amount, "ERC20: transfer amount exceeds balance");
unchecked {
_balances[from] = fromBalance - amount;
}
_balances[to] += amount;
emit Transfer(from, to, amount);
_afterTokenTransfer(from, to, amount);
}
/** @dev Creates `amount` tokens and assigns them to `account`, increasing
* the total supply.
*
* Emits a {Transfer} event with `from` set to the zero address.
*
* Requirements:
*
* - `account` cannot be the zero address.
*/
function _mint(address account, uint256 amount) internal virtual {
require(account != address(0), "ERC20: mint to the zero address");
_beforeTokenTransfer(address(0), account, amount);
_totalSupply += amount;
_balances[account] += amount;
emit Transfer(address(0), account, amount);
_afterTokenTransfer(address(0), account, amount);
}
/**
* @dev Destroys `amount` tokens from `account`, reducing the
* total supply.
*
* Emits a {Transfer} event with `to` set to the zero address.
*
* Requirements:
*
* - `account` cannot be the zero address.
* - `account` must have at least `amount` tokens.
*/
function _burn(address account, uint256 amount) internal virtual {
require(account != address(0), "ERC20: burn from the zero address");
_beforeTokenTransfer(account, address(0), amount);
uint256 accountBalance = _balances[account];
require(accountBalance >= amount, "ERC20: burn amount exceeds balance");
unchecked {
_balances[account] = accountBalance - amount;
}
_totalSupply -= amount;
emit Transfer(account, address(0), amount);
_afterTokenTransfer(account, address(0), amount);
}
/**
* @dev Sets `amount` as the allowance of `spender` over the `owner` s tokens.
*
* This internal function is equivalent to `approve`, and can be used to
* e.g. set automatic allowances for certain subsystems, etc.
*
* Emits an {Approval} event.
*
* Requirements:
*
* - `owner` cannot be the zero address.
* - `spender` cannot be the zero address.
*/
function _approve(
address owner,
address spender,
uint256 amount
) internal virtual {
require(owner != address(0), "ERC20: approve from the zero address");
require(spender != address(0), "ERC20: approve to the zero address");
_allowances[owner][spender] = amount;
emit Approval(owner, spender, amount);
}
/**
* @dev Updates `owner` s allowance for `spender` based on spent `amount`.
*
* Does not update the allowance amount in case of infinite allowance.
* Revert if not enough allowance is available.
*
* Might emit an {Approval} event.
*/
function _spendAllowance(
address owner,
address spender,
uint256 amount
) internal virtual {
uint256 currentAllowance = allowance(owner, spender);
if (currentAllowance != type(uint256).max) {
require(currentAllowance >= amount, "ERC20: insufficient allowance");
unchecked {
_approve(owner, spender, currentAllowance - amount);
}
}
}
/**
* @dev Hook that is called before any transfer of tokens. This includes
* minting and burning.
*
* Calling conditions:
*
* - when `from` and `to` are both non-zero, `amount` of ``from``'s tokens
* will be transferred to `to`.
* - when `from` is zero, `amount` tokens will be minted for `to`.
* - when `to` is zero, `amount` of ``from``'s tokens will be burned.
* - `from` and `to` are never both zero.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/
function _beforeTokenTransfer(
address from,
address to,
uint256 amount
) internal virtual {}
/**
* @dev Hook that is called after any transfer of tokens. This includes
* minting and burning.
*
* Calling conditions:
*
* - when `from` and `to` are both non-zero, `amount` of ``from``'s tokens
* has been transferred to `to`.
* - when `from` is zero, `amount` tokens have been minted for `to`.
* - when `to` is zero, `amount` of ``from``'s tokens have been burned.
* - `from` and `to` are never both zero.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/
function _afterTokenTransfer(
address from,
address to,
uint256 amount
) internal virtual {}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (token/ERC20/extensions/ERC20Pausable.sol)
pragma solidity ^0.8.0;
import "../ERC20.sol";
import "../../../security/Pausable.sol";
/**
* @dev ERC20 token with pausable token transfers, minting and burning.
*
* Useful for scenarios such as preventing trades until the end of an evaluation
* period, or having an emergency switch for freezing all token transfers in the
* event of a large bug.
*/
abstract contract ERC20Pausable is ERC20, Pausable {
/**
* @dev See {ERC20-_beforeTokenTransfer}.
*
* Requirements:
*
* - the contract must not be paused.
*/
function _beforeTokenTransfer(
address from,
address to,
uint256 amount
) internal virtual override {
super._beforeTokenTransfer(from, to, amount);
require(!paused(), "ERC20Pausable: token transfer while paused");
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.5.0) (token/ERC20/presets/ERC20PresetMinterPauser.sol)
pragma solidity ^0.8.0;
import "../ERC20.sol";
import "../extensions/ERC20Burnable.sol";
import "../extensions/ERC20Pausable.sol";
import "../../../access/AccessControlEnumerable.sol";
import "../../../utils/Context.sol";
/**
* @dev {ERC20} token, including:
*
* - ability for holders to burn (destroy) their tokens
* - a minter role that allows for token minting (creation)
* - a pauser role that allows to stop all token transfers
*
* This contract uses {AccessControl} to lock permissioned functions using the
* different roles - head to its documentation for details.
*
* The account that deploys the contract will be granted the minter and pauser
* roles, as well as the default admin role, which will let it grant both minter
* and pauser roles to other accounts.
*
* _Deprecated in favor of https://wizard.openzeppelin.com/[Contracts Wizard]._
*/
contract ERC20PresetMinterPauser is Context, AccessControlEnumerable, ERC20Burnable, ERC20Pausable {
bytes32 public constant MINTER_ROLE = keccak256("MINTER_ROLE");
bytes32 public constant PAUSER_ROLE = keccak256("PAUSER_ROLE");
/**
* @dev Grants `DEFAULT_ADMIN_ROLE`, `MINTER_ROLE` and `PAUSER_ROLE` to the
* account that deploys the contract.
*
* See {ERC20-constructor}.
*/
constructor(string memory name, string memory symbol) ERC20(name, symbol) {
_setupRole(DEFAULT_ADMIN_ROLE, _msgSender());
_setupRole(MINTER_ROLE, _msgSender());
_setupRole(PAUSER_ROLE, _msgSender());
}
/**
* @dev Creates `amount` new tokens for `to`.
*
* See {ERC20-_mint}.
*
* Requirements:
*
* - the caller must have the `MINTER_ROLE`.
*/
function mint(address to, uint256 amount) public virtual {
require(hasRole(MINTER_ROLE, _msgSender()), "ERC20PresetMinterPauser: must have minter role to mint");
_mint(to, amount);
}
/**
* @dev Pauses all token transfers.
*
* See {ERC20Pausable} and {Pausable-_pause}.
*
* Requirements:
*
* - the caller must have the `PAUSER_ROLE`.
*/
function pause() public virtual {
require(hasRole(PAUSER_ROLE, _msgSender()), "ERC20PresetMinterPauser: must have pauser role to pause");
_pause();
}
/**
* @dev Unpauses all token transfers.
*
* See {ERC20Pausable} and {Pausable-_unpause}.
*
* Requirements:
*
* - the caller must have the `PAUSER_ROLE`.
*/
function unpause() public virtual {
require(hasRole(PAUSER_ROLE, _msgSender()), "ERC20PresetMinterPauser: must have pauser role to unpause");
_unpause();
}
function _beforeTokenTransfer(
address from,
address to,
uint256 amount
) internal virtual override(ERC20, ERC20Pausable) {
super._beforeTokenTransfer(from, to, amount);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.5.0) (token/ERC20/extensions/ERC20Burnable.sol)
pragma solidity ^0.8.0;
import "../ERC20.sol";
import "../../../utils/Context.sol";
/**
* @dev Extension of {ERC20} that allows token holders to destroy both their own
* tokens and those that they have an allowance for, in a way that can be
* recognized off-chain (via event analysis).
*/
abstract contract ERC20Burnable is Context, ERC20 {
/**
* @dev Destroys `amount` tokens from the caller.
*
* See {ERC20-_burn}.
*/
function burn(uint256 amount) public virtual {
_burn(_msgSender(), amount);
}
/**
* @dev Destroys `amount` tokens from `account`, deducting from the caller's
* allowance.
*
* See {ERC20-_burn} and {ERC20-allowance}.
*
* Requirements:
*
* - the caller must have allowance for ``accounts``'s tokens of at least
* `amount`.
*/
function burnFrom(address account, uint256 amount) public virtual {
_spendAllowance(account, _msgSender(), amount);
_burn(account, amount);
}
}import '@openzeppelin/contracts/token/ERC20/presets/ERC20PresetMinterPauser.sol'; import '@openzeppelin/contracts/token/ERC721/presets/ERC721PresetMinterPauserAutoId.sol';
// SPDX-License-Identifier: GPL-3.0
pragma solidity ^0.8.6;
import "./RNGInterface.sol";
contract RNGServiceMock is RNGInterface {
uint256 internal random;
address internal feeToken;
uint256 internal requestFee;
uint32 internal _lastRequestId = 0;
function getLastRequestId() external view override returns (uint32 requestId) {
return _lastRequestId;
}
function setRequestFee(address _feeToken, uint256 _requestFee) external {
feeToken = _feeToken;
requestFee = _requestFee;
}
/// @return _feeToken
/// @return _requestFee
function getRequestFee()
external
view
override
returns (address _feeToken, uint256 _requestFee)
{
return (feeToken, requestFee);
}
function setRandomNumber(uint256 _random) external {
random = _random;
}
function requestRandomNumber() external override returns (uint32, uint32) {
++_lastRequestId;
return (_lastRequestId, 1);
}
function isRequestComplete(uint32) external pure override returns (bool) {
return true;
}
function randomNumber(uint32) external view override returns (uint256) {
return random;
}
}// SPDX-License-Identifier: GPL-3.0
pragma solidity ^0.8.6;
// import {RNGServiceMock} from "./RNGServiceMock.sol";
import {RNGChainlinkV2Interface} from "./RNGChainlinkV2Interface.sol";
import "@chainlink/contracts/src/v0.8/interfaces/VRFCoordinatorV2Interface.sol";
contract RNGServiceMockChainlink is RNGChainlinkV2Interface {
uint256 internal random;
address internal feeToken;
uint256 internal requestFee;
uint32 internal _lastRequestId = 0;
function getLastRequestId() external view override returns (uint32 requestId) {
return _lastRequestId;
}
function setRequestFee(address _feeToken, uint256 _requestFee) external {
feeToken = _feeToken;
requestFee = _requestFee;
}
/// @return _feeToken
/// @return _requestFee
function getRequestFee()
external
view
override
returns (address _feeToken, uint256 _requestFee)
{
return (feeToken, requestFee);
}
function setRandomNumber(uint256 _random) external {
random = _random;
}
function requestRandomNumber() external override returns (uint32, uint32) {
++_lastRequestId;
return (_lastRequestId, 1);
}
function isRequestComplete(uint32) external pure override returns (bool) {
return true;
}
function randomNumber(uint32) external view override returns (uint256) {
return random;
}
function getKeyHash() external view override returns (bytes32) {
return bytes32(0);
}
function getSubscriptionId() external view override returns (uint64) {
return 0;
}
function getVrfCoordinator()
external
view
override
returns (VRFCoordinatorV2Interface)
{
return VRFCoordinatorV2Interface(address(0));
}
function setKeyhash(bytes32 keyHash) external override {
}
function setSubscriptionId(uint64 subscriptionId) external override {}
function setAllowedCaller(address allowed) external override {}
}// SPDX-License-Identifier: GPL-3.0
pragma solidity ^0.8.6;
import "@chainlink/contracts/src/v0.8/interfaces/VRFCoordinatorV2Interface.sol";
import "@chainlink/contracts/src/v0.8/VRFConsumerBaseV2.sol";
import "../lib/Manageable.sol";
import "./RNGChainlinkV2Interface.sol";
contract RNGChainlinkV2 is RNGChainlinkV2Interface, VRFConsumerBaseV2, Manageable {
/* ============ Global Variables ============ */
/// @dev Reference to the VRFCoordinatorV2 deployed contract
VRFCoordinatorV2Interface internal vrfCoordinator;
/// @dev A counter for the number of requests made used for request ids
uint32 internal requestCounter;
/// @dev Chainlink VRF subscription id
uint64 internal subscriptionId;
/// @dev Hash of the public key used to verify the VRF proof
bytes32 internal keyHash;
/// @dev A list of random numbers from past requests mapped by request id
mapping(uint32 => uint256) internal randomNumbers;
/// @dev A list of blocks to be locked at based on past requests mapped by request id
mapping(uint32 => uint32) internal requestLockBlock;
/// @dev A mapping from Chainlink request ids to internal request ids
mapping(uint256 => uint32) internal chainlinkRequestIds;
/// mapping of allowances
mapping(address => bool) internal allowedToCallRandomness;
/* ============ Events ============ */
/**
* @notice Emitted when the Chainlink VRF keyHash is set
* @param keyHash Chainlink VRF keyHash
*/
event KeyHashSet(bytes32 keyHash);
/**
* @notice Emitted when the Chainlink VRF subscription id is set
* @param subscriptionId Chainlink VRF subscription id
*/
event SubscriptionIdSet(uint64 subscriptionId);
/**
* @notice Emitted when the Chainlink VRF Coordinator address is set
* @param vrfCoordinator Address of the VRF Coordinator
*/
event VrfCoordinatorSet(VRFCoordinatorV2Interface indexed vrfCoordinator);
/* ============ Constructor ============ */
/**
* @notice Constructor of the contract
* @param _owner Owner of the contract
* @param _vrfCoordinator Address of the VRF Coordinator
* @param _subscriptionId Chainlink VRF subscription id
* @param _keyHash Hash of the public key used to verify the VRF proof
*/
constructor(
address _owner,
VRFCoordinatorV2Interface _vrfCoordinator,
uint64 _subscriptionId,
bytes32 _keyHash
) Ownable(_owner) VRFConsumerBaseV2(address(_vrfCoordinator)) {
_setVRFCoordinator(_vrfCoordinator);
_setSubscriptionId(_subscriptionId);
_setKeyhash(_keyHash);
allowedToCallRandomness[_owner] = true;
allowedToCallRandomness[msg.sender] = true;
}
/* ============ External Functions ============ */
/// @inheritdoc RNGInterface
function requestRandomNumber()
external
override
onlyAllowedCaller
returns (uint32 requestId, uint32 lockBlock)
{
uint256 _vrfRequestId = vrfCoordinator.requestRandomWords(
keyHash,
subscriptionId,
3,
1000000,
1
);
requestCounter++;
uint32 _requestCounter = requestCounter;
requestId = _requestCounter;
chainlinkRequestIds[_vrfRequestId] = _requestCounter;
lockBlock = uint32(block.number);
requestLockBlock[_requestCounter] = lockBlock;
emit RandomNumberRequested(_requestCounter, msg.sender);
}
/// @inheritdoc RNGInterface
function isRequestComplete(uint32 _internalRequestId)
external
view
override
returns (bool isCompleted)
{
return randomNumbers[_internalRequestId] != 0;
}
/// @inheritdoc RNGInterface
function randomNumber(uint32 _internalRequestId)
external
view
override
returns (uint256 randomNum)
{
return randomNumbers[_internalRequestId];
}
/// @inheritdoc RNGInterface
function getLastRequestId() external view override returns (uint32 requestId) {
return requestCounter;
}
/// @inheritdoc RNGInterface
function getRequestFee() external pure override returns (address feeToken, uint256 requestFee) {
return (address(0), 0);
}
/// @inheritdoc RNGChainlinkV2Interface
function getKeyHash() external view override returns (bytes32) {
return keyHash;
}
/// @inheritdoc RNGChainlinkV2Interface
function getSubscriptionId() external view override returns (uint64) {
return subscriptionId;
}
/// @inheritdoc RNGChainlinkV2Interface
function getVrfCoordinator() external view override returns (VRFCoordinatorV2Interface) {
return vrfCoordinator;
}
/// @inheritdoc RNGChainlinkV2Interface
function setSubscriptionId(uint64 _subscriptionId) external override onlyOwner {
_setSubscriptionId(_subscriptionId);
}
/// @inheritdoc RNGChainlinkV2Interface
function setKeyhash(bytes32 _keyHash) external override onlyOwner {
_setKeyhash(_keyHash);
}
/// for a factory contract to set the child contracts as allowed callers
function setAllowedCaller(address allowed) external override onlyAllowedCaller {
allowedToCallRandomness[allowed] = true;
}
/* ============ Internal Functions ============ */
/**
* @notice Callback function called by VRF Coordinator
* @dev The VRF Coordinator will only call it once it has verified the proof associated with the randomness.
* @param _vrfRequestId Chainlink VRF request id
* @param _randomWords Chainlink VRF array of random words
*/
function fulfillRandomWords(uint256 _vrfRequestId, uint256[] memory _randomWords)
internal
override
{
uint32 _internalRequestId = chainlinkRequestIds[_vrfRequestId];
require(_internalRequestId > 0, "RNGChainLink/requestId-incorrect");
uint256 _randomNumber = _randomWords[0];
// range is from 1 to type(uint256).max
randomNumbers[_internalRequestId] = (_randomNumber % type(uint256).max) + 1;
emit RandomNumberCompleted(_internalRequestId, _randomNumber);
}
/**
* @notice Set Chainlink VRF coordinator contract address.
* @param _vrfCoordinator Chainlink VRF coordinator contract address
*/
function _setVRFCoordinator(VRFCoordinatorV2Interface _vrfCoordinator) internal {
require(address(_vrfCoordinator) != address(0), "RNGChainLink/vrf-not-zero-addr");
vrfCoordinator = _vrfCoordinator;
emit VrfCoordinatorSet(_vrfCoordinator);
}
/**
* @notice Set Chainlink VRF subscription id associated with this contract.
* @param _subscriptionId Chainlink VRF subscription id
*/
function _setSubscriptionId(uint64 _subscriptionId) internal {
require(_subscriptionId > 0, "RNGChainLink/subId-gt-zero");
subscriptionId = _subscriptionId;
emit SubscriptionIdSet(_subscriptionId);
}
/**
* @notice Set Chainlink VRF keyHash.
* @param _keyHash Chainlink VRF keyHash
*/
function _setKeyhash(bytes32 _keyHash) internal {
require(_keyHash != bytes32(0), "RNGChainLink/keyHash-not-empty");
keyHash = _keyHash;
emit KeyHashSet(_keyHash);
}
modifier onlyAllowedCaller() {
require(allowedToCallRandomness[msg.sender], "RNGChainLink/caller-not-allowed");
_;
}
}// SPDX-License-Identifier: GPL-3.0
pragma solidity ^0.8.0;
/**
* @title Abstract ownable contract that can be inherited by other contracts
* @notice Contract module which provides a basic access control mechanism, where
* there is an account (an owner) that can be granted exclusive access to
* specific functions.
*
* By default, the owner is the deployer of the contract.
*
* The owner account is set through a two steps process.
* 1. The current `owner` calls {transferOwnership} to set a `pendingOwner`
* 2. The `pendingOwner` calls {acceptOwnership} to accept the ownership transfer
*
* The manager account needs to be set using {setManager}.
*
* This module is used through inheritance. It will make available the modifier
* `onlyOwner`, which can be applied to your functions to restrict their use to
* the owner.
*/
abstract contract Ownable {
address private _owner;
address private _pendingOwner;
/**
* @dev Emitted when `_pendingOwner` has been changed.
* @param pendingOwner new `_pendingOwner` address.
*/
event OwnershipOffered(address indexed pendingOwner);
/**
* @dev Emitted when `_owner` has been changed.
* @param previousOwner previous `_owner` address.
* @param newOwner new `_owner` address.
*/
event OwnershipTransferred(address indexed previousOwner, address indexed newOwner);
/* ============ Deploy ============ */
/**
* @notice Initializes the contract setting `_initialOwner` as the initial owner.
* @param _initialOwner Initial owner of the contract.
*/
constructor(address _initialOwner) {
_setOwner(_initialOwner);
}
/* ============ External Functions ============ */
/**
* @notice Returns the address of the current owner.
*/
function owner() public view virtual returns (address) {
return _owner;
}
/**
* @notice Gets current `_pendingOwner`.
* @return Current `_pendingOwner` address.
*/
function pendingOwner() external view virtual returns (address) {
return _pendingOwner;
}
/**
* @notice Renounce ownership of the contract.
* @dev Leaves the contract without owner. It will not be possible to call
* `onlyOwner` functions anymore. Can only be called by the current owner.
*
* NOTE: Renouncing ownership will leave the contract without an owner,
* thereby removing any functionality that is only available to the owner.
*/
function renounceOwnership() external virtual onlyOwner {
_setOwner(address(0));
}
/**
* @notice Allows current owner to set the `_pendingOwner` address.
* @param _newOwner Address to transfer ownership to.
*/
function transferOwnership(address _newOwner) external onlyOwner {
require(_newOwner != address(0), "Ownable/pendingOwner-not-zero-address");
_pendingOwner = _newOwner;
emit OwnershipOffered(_newOwner);
}
/**
* @notice Allows the `_pendingOwner` address to finalize the transfer.
* @dev This function is only callable by the `_pendingOwner`.
*/
function claimOwnership() external onlyPendingOwner {
_setOwner(_pendingOwner);
_pendingOwner = address(0);
}
/* ============ Internal Functions ============ */
/**
* @notice Internal function to set the `_owner` of the contract.
* @param _newOwner New `_owner` address.
*/
function _setOwner(address _newOwner) private {
address _oldOwner = _owner;
_owner = _newOwner;
emit OwnershipTransferred(_oldOwner, _newOwner);
}
/* ============ Modifier Functions ============ */
/**
* @dev Throws if called by any account other than the owner.
*/
modifier onlyOwner() {
require(owner() == msg.sender, "Ownable/caller-not-owner");
_;
}
/**
* @dev Throws if called by any account other than the `pendingOwner`.
*/
modifier onlyPendingOwner() {
require(msg.sender == _pendingOwner, "Ownable/caller-not-pendingOwner");
_;
}
}
/**
* @title Abstract manageable contract that can be inherited by other contracts
* @notice Contract module based on Ownable which provides a basic access control mechanism, where
* there is an owner and a manager that can be granted exclusive access to specific functions.
*
* By default, the owner is the deployer of the contract.
*
* The owner account is set through a two steps process.
* 1. The current `owner` calls {transferOwnership} to set a `pendingOwner`
* 2. The `pendingOwner` calls {acceptOwnership} to accept the ownership transfer
*
* The manager account needs to be set using {setManager}.
*
* This module is used through inheritance. It will make available the modifier
* `onlyManager`, which can be applied to your functions to restrict their use to
* the manager.
*/
abstract contract Manageable is Ownable {
address private _manager;
/**
* @dev Emitted when `_manager` has been changed.
* @param previousManager previous `_manager` address.
* @param newManager new `_manager` address.
*/
event ManagerTransferred(address indexed previousManager, address indexed newManager);
/* ============ External Functions ============ */
/**
* @notice Gets current `_manager`.
* @return Current `_manager` address.
*/
function manager() public view virtual returns (address) {
return _manager;
}
/**
* @notice Set or change of manager.
* @dev Throws if called by any account other than the owner.
* @param _newManager New _manager address.
* @return Boolean to indicate if the operation was successful or not.
*/
function setManager(address _newManager) external onlyOwner returns (bool) {
return _setManager(_newManager);
}
/* ============ Internal Functions ============ */
/**
* @notice Set or change of manager.
* @param _newManager New _manager address.
* @return Boolean to indicate if the operation was successful or not.
*/
function _setManager(address _newManager) private returns (bool) {
address _previousManager = _manager;
require(_newManager != _previousManager, "Manageable/existing-manager-address");
_manager = _newManager;
emit ManagerTransferred(_previousManager, _newManager);
return true;
}
/* ============ Modifier Functions ============ */
/**
* @dev Throws if called by any account other than the manager.
*/
modifier onlyManager() {
require(manager() == msg.sender, "Manageable/caller-not-manager");
_;
}
/**
* @dev Throws if called by any account other than the manager or the owner.
*/
modifier onlyManagerOrOwner() {
require(manager() == msg.sender || owner() == msg.sender, "Manageable/caller-not-manager-or-owner");
_;
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
/** ****************************************************************************
* @notice Interface for contracts using VRF randomness
* *****************************************************************************
* @dev PURPOSE
*
* @dev Reggie the Random Oracle (not his real job) wants to provide randomness
* @dev to Vera the verifier in such a way that Vera can be sure he's not
* @dev making his output up to suit himself. Reggie provides Vera a public key
* @dev to which he knows the secret key. Each time Vera provides a seed to
* @dev Reggie, he gives back a value which is computed completely
* @dev deterministically from the seed and the secret key.
*
* @dev Reggie provides a proof by which Vera can verify that the output was
* @dev correctly computed once Reggie tells it to her, but without that proof,
* @dev the output is indistinguishable to her from a uniform random sample
* @dev from the output space.
*
* @dev The purpose of this contract is to make it easy for unrelated contracts
* @dev to talk to Vera the verifier about the work Reggie is doing, to provide
* @dev simple access to a verifiable source of randomness. It ensures 2 things:
* @dev 1. The fulfillment came from the VRFCoordinator
* @dev 2. The consumer contract implements fulfillRandomWords.
* *****************************************************************************
* @dev USAGE
*
* @dev Calling contracts must inherit from VRFConsumerBase, and can
* @dev initialize VRFConsumerBase's attributes in their constructor as
* @dev shown:
*
* @dev contract VRFConsumer {
* @dev constructor(<other arguments>, address _vrfCoordinator, address _link)
* @dev VRFConsumerBase(_vrfCoordinator) public {
* @dev <initialization with other arguments goes here>
* @dev }
* @dev }
*
* @dev The oracle will have given you an ID for the VRF keypair they have
* @dev committed to (let's call it keyHash). Create subscription, fund it
* @dev and your consumer contract as a consumer of it (see VRFCoordinatorInterface
* @dev subscription management functions).
* @dev Call requestRandomWords(keyHash, subId, minimumRequestConfirmations,
* @dev callbackGasLimit, numWords),
* @dev see (VRFCoordinatorInterface for a description of the arguments).
*
* @dev Once the VRFCoordinator has received and validated the oracle's response
* @dev to your request, it will call your contract's fulfillRandomWords method.
*
* @dev The randomness argument to fulfillRandomWords is a set of random words
* @dev generated from your requestId and the blockHash of the request.
*
* @dev If your contract could have concurrent requests open, you can use the
* @dev requestId returned from requestRandomWords to track which response is associated
* @dev with which randomness request.
* @dev See "SECURITY CONSIDERATIONS" for principles to keep in mind,
* @dev if your contract could have multiple requests in flight simultaneously.
*
* @dev Colliding `requestId`s are cryptographically impossible as long as seeds
* @dev differ.
*
* *****************************************************************************
* @dev SECURITY CONSIDERATIONS
*
* @dev A method with the ability to call your fulfillRandomness method directly
* @dev could spoof a VRF response with any random value, so it's critical that
* @dev it cannot be directly called by anything other than this base contract
* @dev (specifically, by the VRFConsumerBase.rawFulfillRandomness method).
*
* @dev For your users to trust that your contract's random behavior is free
* @dev from malicious interference, it's best if you can write it so that all
* @dev behaviors implied by a VRF response are executed *during* your
* @dev fulfillRandomness method. If your contract must store the response (or
* @dev anything derived from it) and use it later, you must ensure that any
* @dev user-significant behavior which depends on that stored value cannot be
* @dev manipulated by a subsequent VRF request.
*
* @dev Similarly, both miners and the VRF oracle itself have some influence
* @dev over the order in which VRF responses appear on the blockchain, so if
* @dev your contract could have multiple VRF requests in flight simultaneously,
* @dev you must ensure that the order in which the VRF responses arrive cannot
* @dev be used to manipulate your contract's user-significant behavior.
*
* @dev Since the block hash of the block which contains the requestRandomness
* @dev call is mixed into the input to the VRF *last*, a sufficiently powerful
* @dev miner could, in principle, fork the blockchain to evict the block
* @dev containing the request, forcing the request to be included in a
* @dev different block with a different hash, and therefore a different input
* @dev to the VRF. However, such an attack would incur a substantial economic
* @dev cost. This cost scales with the number of blocks the VRF oracle waits
* @dev until it calls responds to a request. It is for this reason that
* @dev that you can signal to an oracle you'd like them to wait longer before
* @dev responding to the request (however this is not enforced in the contract
* @dev and so remains effective only in the case of unmodified oracle software).
*/
abstract contract VRFConsumerBaseV2 {
error OnlyCoordinatorCanFulfill(address have, address want);
address private immutable vrfCoordinator;
/**
* @param _vrfCoordinator address of VRFCoordinator contract
*/
constructor(address _vrfCoordinator) {
vrfCoordinator = _vrfCoordinator;
}
/**
* @notice fulfillRandomness handles the VRF response. Your contract must
* @notice implement it. See "SECURITY CONSIDERATIONS" above for important
* @notice principles to keep in mind when implementing your fulfillRandomness
* @notice method.
*
* @dev VRFConsumerBaseV2 expects its subcontracts to have a method with this
* @dev signature, and will call it once it has verified the proof
* @dev associated with the randomness. (It is triggered via a call to
* @dev rawFulfillRandomness, below.)
*
* @param requestId The Id initially returned by requestRandomness
* @param randomWords the VRF output expanded to the requested number of words
*/
function fulfillRandomWords(uint256 requestId, uint256[] memory randomWords) internal virtual;
// rawFulfillRandomness is called by VRFCoordinator when it receives a valid VRF
// proof. rawFulfillRandomness then calls fulfillRandomness, after validating
// the origin of the call
function rawFulfillRandomWords(uint256 requestId, uint256[] memory randomWords) external {
if (msg.sender != vrfCoordinator) {
revert OnlyCoordinatorCanFulfill(msg.sender, vrfCoordinator);
}
fulfillRandomWords(requestId, randomWords);
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {ERC20} from "solmate/src/tokens/ERC20.sol";
import {IERC721} from "@openzeppelin/contracts/token/ERC721/IERC721.sol";
import {IERC1155} from "@openzeppelin/contracts/token/ERC1155/IERC1155.sol";
import {OwnableWithTransferCallback} from "./lib/OwnableWithTransferCallback.sol";
import {ReentrancyGuard} from "./lib/ReentrancyGuard.sol";
import {ICurve} from "./bonding-curves/ICurve.sol";
import {LSSVMRouter} from "./LSSVMRouter.sol";
import {ILSSVMPairFactoryLike} from "./ILSSVMPairFactoryLike.sol";
import {CurveErrorCodes} from "./bonding-curves/CurveErrorCodes.sol";
import {ERC1155Holder} from "@openzeppelin/contracts/token/ERC1155/utils/ERC1155Holder.sol";
/// @title The base contract for an NFT/TOKEN AMM pair
/// @author boredGenius and 0xmons
/// @notice This implements the core swap logic from NFT to TOKEN
abstract contract LSSVMPair is
OwnableWithTransferCallback,
ReentrancyGuard,
ERC1155Holder
{
enum PoolType {
TOKEN,
NFT,
TRADE
}
// 90%, must <= 1 - MAX_PROTOCOL_FEE (set in LSSVMPairFactory)
uint256 internal constant MAX_FEE = 0.90e18;
// The current price of the NFT
// @dev This is generally used to mean the immediate sell price for the next marginal NFT.
// However, this should NOT be assumed, as future bonding curves may use spotPrice in different ways.
// Use getBuyNFTQuote and getSellNFTQuote for accurate pricing info.
uint128 public spotPrice;
// The parameter for the pair's bonding curve.
// Units and meaning are bonding curve dependent.
uint128 public delta;
// The spread between buy and sell prices, set to be a multiplier we apply to the buy price
// Fee is only relevant for TRADE pools
// Units are in base 1e18
uint96 public fee;
// If set to 0, NFTs/tokens sent by traders during trades will be sent to the pair.
// Otherwise, assets will be sent to the set address. Not available for TRADE pools.
address payable public assetRecipient;
// Events
event SwapNFTInPair();
event SwapNFTOutPair();
event SpotPriceUpdate(uint128 newSpotPrice);
event TokenDeposit(uint256 amount);
event TokenWithdrawal(uint256 amount);
event NFTWithdrawal();
event DeltaUpdate(uint128 newDelta);
event FeeUpdate(uint96 newFee);
event AssetRecipientChange(address a);
// Parameterized Errors
error BondingCurveError(CurveErrorCodes.Error error);
/**
@notice Called during pair creation to set initial parameters
@dev Only called once by factory to initialize.
We verify this by making sure that the current owner is address(0).
The Ownable library we use disallows setting the owner to be address(0), so this condition
should only be valid before the first initialize call.
@param _owner The owner of the pair
@param _assetRecipient The address that will receive the TOKEN or NFT sent to this pair during swaps. NOTE: If set to address(0), they will go to the pair itself.
@param _delta The initial delta of the bonding curve
@param _fee The initial % fee taken, if this is a trade pair
@param _spotPrice The initial price to sell an asset into the pair
*/
function initialize(
address _owner,
address payable _assetRecipient,
uint128 _delta,
uint96 _fee,
uint128 _spotPrice
) external payable {
require(owner() == address(0), "Initialized");
__Ownable_init(_owner);
__ReentrancyGuard_init();
ICurve _bondingCurve = bondingCurve();
PoolType _poolType = poolType();
if ((_poolType == PoolType.TOKEN) || (_poolType == PoolType.NFT)) {
require(_fee == 0, "Only Trade Pools can have nonzero fee");
assetRecipient = _assetRecipient;
} else if (_poolType == PoolType.TRADE) {
require(_fee < MAX_FEE, "Trade fee must be less than 90%");
require(
_assetRecipient == address(0),
"Trade pools can't set asset recipient"
);
fee = _fee;
}
require(_bondingCurve.validateDelta(_delta), "Invalid delta for curve");
require(
_bondingCurve.validateSpotPrice(_spotPrice),
"Invalid new spot price for curve"
);
delta = _delta;
spotPrice = _spotPrice;
}
/**
* External state-changing functions
*/
/**
@notice Sends token to the pair in exchange for any `numNFTs` NFTs
@dev To compute the amount of token to send, call bondingCurve.getBuyInfo.
This swap function is meant for users who are ID agnostic
@param numNFTs The number of NFTs to purchase
@param maxExpectedTokenInput The maximum acceptable cost from the sender. If the actual
amount is greater than this value, the transaction will be reverted.
@param nftRecipient The recipient of the NFTs
@param isRouter True if calling from LSSVMRouter, false otherwise. Not used for
ETH pairs.
@param routerCaller If isRouter is true, ERC20 tokens will be transferred from this address. Not used for
ETH pairs.
@return inputAmount The amount of token used for purchase
*/
function swapTokenForAnyNFTs(
uint256 numNFTs,
uint256 maxExpectedTokenInput,
address nftRecipient,
bool isRouter,
address routerCaller
) external payable virtual nonReentrant returns (uint256 inputAmount) {
// Store locally to remove extra calls
ILSSVMPairFactoryLike _factory = factory();
ICurve _bondingCurve = bondingCurve();
IERC721 _nft = nft();
// Input validation
{
PoolType _poolType = poolType();
require(
_poolType == PoolType.NFT || _poolType == PoolType.TRADE,
"Wrong Pool type"
);
require(
(numNFTs > 0) && (numNFTs <= _nft.balanceOf(address(this))),
"Ask for > 0 and <= balanceOf NFTs"
);
}
// Call bonding curve for pricing information
uint256 protocolFee;
(protocolFee, inputAmount) = _calculateBuyInfoAndUpdatePoolParams(
numNFTs,
maxExpectedTokenInput,
_bondingCurve,
_factory
);
_pullTokenInputAndPayProtocolFee(
inputAmount,
isRouter,
routerCaller,
_factory,
protocolFee
);
_sendAnyNFTsToRecipient(_nft, nftRecipient, numNFTs);
_refundTokenToSender(inputAmount);
emit SwapNFTOutPair();
}
/**
@notice Sends token to the pair in exchange for a specific set of NFTs
@dev To compute the amount of token to send, call bondingCurve.getBuyInfo
This swap is meant for users who want specific IDs. Also higher chance of
reverting if some of the specified IDs leave the pool before the swap goes through.
@param nftIds The list of IDs of the NFTs to purchase
@param maxExpectedTokenInput The maximum acceptable cost from the sender. If the actual
amount is greater than this value, the transaction will be reverted.
@param nftRecipient The recipient of the NFTs
@param isRouter True if calling from LSSVMRouter, false otherwise. Not used for
ETH pairs.
@param routerCaller If isRouter is true, ERC20 tokens will be transferred from this address. Not used for
ETH pairs.
@return inputAmount The amount of token used for purchase
*/
function swapTokenForSpecificNFTs(
uint256[] calldata nftIds,
uint256 maxExpectedTokenInput,
address nftRecipient,
bool isRouter,
address routerCaller
) external payable virtual nonReentrant returns (uint256 inputAmount) {
// Store locally to remove extra calls
ILSSVMPairFactoryLike _factory = factory();
ICurve _bondingCurve = bondingCurve();
// Input validation
{
PoolType _poolType = poolType();
require(
_poolType == PoolType.NFT || _poolType == PoolType.TRADE,
"Wrong Pool type"
);
require((nftIds.length > 0), "Must ask for > 0 NFTs");
}
// Call bonding curve for pricing information
uint256 protocolFee;
(protocolFee, inputAmount) = _calculateBuyInfoAndUpdatePoolParams(
nftIds.length,
maxExpectedTokenInput,
_bondingCurve,
_factory
);
_pullTokenInputAndPayProtocolFee(
inputAmount,
isRouter,
routerCaller,
_factory,
protocolFee
);
_sendSpecificNFTsToRecipient(nft(), nftRecipient, nftIds);
_refundTokenToSender(inputAmount);
emit SwapNFTOutPair();
}
/**
@notice Sends a set of NFTs to the pair in exchange for token
@dev To compute the amount of token to that will be received, call bondingCurve.getSellInfo.
@param nftIds The list of IDs of the NFTs to sell to the pair
@param minExpectedTokenOutput The minimum acceptable token received by the sender. If the actual
amount is less than this value, the transaction will be reverted.
@param tokenRecipient The recipient of the token output
@param isRouter True if calling from LSSVMRouter, false otherwise. Not used for
ETH pairs.
@param routerCaller If isRouter is true, ERC20 tokens will be transferred from this address. Not used for
ETH pairs.
@return outputAmount The amount of token received
*/
function swapNFTsForToken(
uint256[] calldata nftIds,
uint256 minExpectedTokenOutput,
address payable tokenRecipient,
bool isRouter,
address routerCaller
) external virtual nonReentrant returns (uint256 outputAmount) {
// Store locally to remove extra calls
ILSSVMPairFactoryLike _factory = factory();
ICurve _bondingCurve = bondingCurve();
// Input validation
{
PoolType _poolType = poolType();
require(
_poolType == PoolType.TOKEN || _poolType == PoolType.TRADE,
"Wrong Pool type"
);
require(nftIds.length > 0, "Must ask for > 0 NFTs");
}
// Call bonding curve for pricing information
uint256 protocolFee;
(protocolFee, outputAmount) = _calculateSellInfoAndUpdatePoolParams(
nftIds.length,
minExpectedTokenOutput,
_bondingCurve,
_factory
);
_sendTokenOutput(tokenRecipient, outputAmount);
_payProtocolFeeFromPair(_factory, protocolFee);
_takeNFTsFromSender(nft(), nftIds, _factory, isRouter, routerCaller);
emit SwapNFTInPair();
}
/**
* View functions
*/
/**
@dev Used as read function to query the bonding curve for buy pricing info
@param numNFTs The number of NFTs to buy from the pair
*/
function getBuyNFTQuote(uint256 numNFTs)
external
view
returns (
CurveErrorCodes.Error error,
uint256 newSpotPrice,
uint256 newDelta,
uint256 inputAmount,
uint256 protocolFee
)
{
(
error,
newSpotPrice,
newDelta,
inputAmount,
protocolFee
) = bondingCurve().getBuyInfo(
spotPrice,
delta,
numNFTs,
fee,
factory().protocolFeeMultiplier()
);
}
/**
@dev Used as read function to query the bonding curve for sell pricing info
@param numNFTs The number of NFTs to sell to the pair
*/
function getSellNFTQuote(uint256 numNFTs)
external
view
returns (
CurveErrorCodes.Error error,
uint256 newSpotPrice,
uint256 newDelta,
uint256 outputAmount,
uint256 protocolFee
)
{
(
error,
newSpotPrice,
newDelta,
outputAmount,
protocolFee
) = bondingCurve().getSellInfo(
spotPrice,
delta,
numNFTs,
fee,
factory().protocolFeeMultiplier()
);
}
/**
@notice Returns all NFT IDs held by the pool
*/
function getAllHeldIds() external view virtual returns (uint256[] memory);
/**
@notice Returns the pair's variant (NFT is enumerable or not, pair uses ETH or ERC20)
*/
function pairVariant()
public
pure
virtual
returns (ILSSVMPairFactoryLike.PairVariant);
function factory() public pure returns (ILSSVMPairFactoryLike _factory) {
uint256 paramsLength = _immutableParamsLength();
assembly {
_factory := shr(
0x60,
calldataload(sub(calldatasize(), paramsLength))
)
}
}
/**
@notice Returns the type of bonding curve that parameterizes the pair
*/
function bondingCurve() public pure returns (ICurve _bondingCurve) {
uint256 paramsLength = _immutableParamsLength();
assembly {
_bondingCurve := shr(
0x60,
calldataload(add(sub(calldatasize(), paramsLength), 20))
)
}
}
/**
@notice Returns the NFT collection that parameterizes the pair
*/
function nft() public pure returns (IERC721 _nft) {
uint256 paramsLength = _immutableParamsLength();
assembly {
_nft := shr(
0x60,
calldataload(add(sub(calldatasize(), paramsLength), 40))
)
}
}
/**
@notice Returns the pair's type (TOKEN/NFT/TRADE)
*/
function poolType() public pure returns (PoolType _poolType) {
// uint256 paramsLength = _immutableParamsLength();
// assembly {
// _poolType := shr(
// 0xf8,
// calldataload(add(sub(calldatasize(), paramsLength), 60))
// )
// }
// return default value
return PoolType.TRADE;
}
/**
@notice Returns the address that assets that receives assets when a swap is done with this pair
Can be set to another address by the owner, if set to address(0), defaults to the pair's own address
*/
function getAssetRecipient()
public
view
returns (address payable _assetRecipient)
{
// If it's a TRADE pool, we know the recipient is 0 (TRADE pools can't set asset recipients)
// so just return address(this)
if (poolType() == PoolType.TRADE) {
return payable(address(this));
}
// Otherwise, we return the recipient if it's been set
// or replace it with address(this) if it's 0
_assetRecipient = assetRecipient;
if (_assetRecipient == address(0)) {
// Tokens will be transferred to address(this)
_assetRecipient = payable(address(this));
}
}
/**
* Internal functions
*/
/**
@notice Calculates the amount needed to be sent into the pair for a buy and adjusts spot price or delta if necessary
@param numNFTs The amount of NFTs to purchase from the pair
@param maxExpectedTokenInput The maximum acceptable cost from the sender. If the actual
amount is greater than this value, the transaction will be reverted.
@param protocolFee The percentage of protocol fee to be taken, as a percentage
@return protocolFee The amount of tokens to send as protocol fee
@return inputAmount The amount of tokens total tokens receive
*/
function _calculateBuyInfoAndUpdatePoolParams(
uint256 numNFTs,
uint256 maxExpectedTokenInput,
ICurve _bondingCurve,
ILSSVMPairFactoryLike _factory
) internal returns (uint256 protocolFee, uint256 inputAmount) {
CurveErrorCodes.Error error;
// Save on 2 SLOADs by caching
uint128 currentSpotPrice = spotPrice;
uint128 newSpotPrice;
uint128 currentDelta = delta;
uint128 newDelta;
(
error,
newSpotPrice,
newDelta,
inputAmount,
protocolFee
) = _bondingCurve.getBuyInfo(
currentSpotPrice,
currentDelta,
numNFTs,
fee,
_factory.protocolFeeMultiplier()
);
// Revert if bonding curve had an error
if (error != CurveErrorCodes.Error.OK) {
revert BondingCurveError(error);
}
// Revert if input is more than expected
require(inputAmount <= maxExpectedTokenInput, "In too many tokens");
// Consolidate writes to save gas
if (currentSpotPrice != newSpotPrice || currentDelta != newDelta) {
spotPrice = newSpotPrice;
delta = newDelta;
}
// Emit spot price update if it has been updated
if (currentSpotPrice != newSpotPrice) {
emit SpotPriceUpdate(newSpotPrice);
}
// Emit delta update if it has been updated
if (currentDelta != newDelta) {
emit DeltaUpdate(newDelta);
}
}
/**
@notice Calculates the amount needed to be sent by the pair for a sell and adjusts spot price or delta if necessary
@param numNFTs The amount of NFTs to send to the the pair
@param minExpectedTokenOutput The minimum acceptable token received by the sender. If the actual
amount is less than this value, the transaction will be reverted.
@param protocolFee The percentage of protocol fee to be taken, as a percentage
@return protocolFee The amount of tokens to send as protocol fee
@return outputAmount The amount of tokens total tokens receive
*/
function _calculateSellInfoAndUpdatePoolParams(
uint256 numNFTs,
uint256 minExpectedTokenOutput,
ICurve _bondingCurve,
ILSSVMPairFactoryLike _factory
) internal returns (uint256 protocolFee, uint256 outputAmount) {
CurveErrorCodes.Error error;
// Save on 2 SLOADs by caching
uint128 currentSpotPrice = spotPrice;
uint128 newSpotPrice;
uint128 currentDelta = delta;
uint128 newDelta;
(
error,
newSpotPrice,
newDelta,
outputAmount,
protocolFee
) = _bondingCurve.getSellInfo(
currentSpotPrice,
currentDelta,
numNFTs,
fee,
_factory.protocolFeeMultiplier()
);
// Revert if bonding curve had an error
if (error != CurveErrorCodes.Error.OK) {
revert BondingCurveError(error);
}
// Revert if output is too little
require(
outputAmount >= minExpectedTokenOutput,
"Out too little tokens"
);
// Consolidate writes to save gas
if (currentSpotPrice != newSpotPrice || currentDelta != newDelta) {
spotPrice = newSpotPrice;
delta = newDelta;
}
// Emit spot price update if it has been updated
if (currentSpotPrice != newSpotPrice) {
emit SpotPriceUpdate(newSpotPrice);
}
// Emit delta update if it has been updated
if (currentDelta != newDelta) {
emit DeltaUpdate(newDelta);
}
}
/**
@notice Pulls the token input of a trade from the trader and pays the protocol fee.
@param inputAmount The amount of tokens to be sent
@param isRouter Whether or not the caller is LSSVMRouter
@param routerCaller If called from LSSVMRouter, store the original caller
@param _factory The LSSVMPairFactory which stores LSSVMRouter allowlist info
@param protocolFee The protocol fee to be paid
*/
function _pullTokenInputAndPayProtocolFee(
uint256 inputAmount,
bool isRouter,
address routerCaller,
ILSSVMPairFactoryLike _factory,
uint256 protocolFee
) internal virtual;
/**
@notice Sends excess tokens back to the caller (if applicable)
@dev We send ETH back to the caller even when called from LSSVMRouter because we do an aggregate slippage check for certain bulk swaps. (Instead of sending directly back to the router caller)
Excess ETH sent for one swap can then be used to help pay for the next swap.
*/
function _refundTokenToSender(uint256 inputAmount) internal virtual;
/**
@notice Sends protocol fee (if it exists) back to the LSSVMPairFactory from the pair
*/
function _payProtocolFeeFromPair(
ILSSVMPairFactoryLike _factory,
uint256 protocolFee
) internal virtual;
/**
@notice Sends tokens to a recipient
@param tokenRecipient The address receiving the tokens
@param outputAmount The amount of tokens to send
*/
function _sendTokenOutput(
address payable tokenRecipient,
uint256 outputAmount
) internal virtual;
/**
@notice Sends some number of NFTs to a recipient address, ID agnostic
@dev Even though we specify the NFT address here, this internal function is only
used to send NFTs associated with this specific pool.
@param _nft The address of the NFT to send
@param nftRecipient The receiving address for the NFTs
@param numNFTs The number of NFTs to send
*/
function _sendAnyNFTsToRecipient(
IERC721 _nft,
address nftRecipient,
uint256 numNFTs
) internal virtual;
/**
@notice Sends specific NFTs to a recipient address
@dev Even though we specify the NFT address here, this internal function is only
used to send NFTs associated with this specific pool.
@param _nft The address of the NFT to send
@param nftRecipient The receiving address for the NFTs
@param nftIds The specific IDs of NFTs to send
*/
function _sendSpecificNFTsToRecipient(
IERC721 _nft,
address nftRecipient,
uint256[] calldata nftIds
) internal virtual;
/**
@notice Takes NFTs from the caller and sends them into the pair's asset recipient
@dev This is used by the LSSVMPair's swapNFTForToken function.
@param _nft The NFT collection to take from
@param nftIds The specific NFT IDs to take
@param isRouter True if calling from LSSVMRouter, false otherwise. Not used for
ETH pairs.
@param routerCaller If isRouter is true, ERC20 tokens will be transferred from this address. Not used for
ETH pairs.
*/
function _takeNFTsFromSender(
IERC721 _nft,
uint256[] calldata nftIds,
ILSSVMPairFactoryLike _factory,
bool isRouter,
address routerCaller
) internal virtual {
{
address _assetRecipient = getAssetRecipient();
uint256 numNFTs = nftIds.length;
if (isRouter) {
// Verify if router is allowed
LSSVMRouter router = LSSVMRouter(payable(msg.sender));
(bool routerAllowed, ) = _factory.routerStatus(router);
require(routerAllowed, "Not router");
// Call router to pull NFTs
// If more than 1 NFT is being transfered, we can do a balance check instead of an ownership check, as pools are indifferent between NFTs from the same collection
if (numNFTs > 1) {
uint256 beforeBalance = _nft.balanceOf(_assetRecipient);
for (uint256 i = 0; i < numNFTs; ) {
router.pairTransferNFTFrom(
_nft,
routerCaller,
_assetRecipient,
nftIds[i],
pairVariant()
);
unchecked {
++i;
}
}
require(
(_nft.balanceOf(_assetRecipient) - beforeBalance) ==
numNFTs,
"NFTs not transferred"
);
} else {
router.pairTransferNFTFrom(
_nft,
routerCaller,
_assetRecipient,
nftIds[0],
pairVariant()
);
require(
_nft.ownerOf(nftIds[0]) == _assetRecipient,
"NFT not transferred"
);
}
} else {
// Pull NFTs directly from sender
for (uint256 i; i < numNFTs; ) {
_nft.safeTransferFrom(
msg.sender,
_assetRecipient,
nftIds[i]
);
unchecked {
++i;
}
}
}
}
}
/**
@dev Used internally to grab pair parameters from calldata, see LSSVMPairCloner for technical details
*/
function _immutableParamsLength() internal pure virtual returns (uint256);
/**
* Owner functions
*/
/**
@notice Rescues a specified set of NFTs owned by the pair to the owner address. (onlyOwnable modifier is in the implemented function)
@dev If the NFT is the pair's collection, we also remove it from the id tracking (if the NFT is missing enumerable).
@param a The NFT to transfer
@param nftIds The list of IDs of the NFTs to send to the owner
*/
function withdrawERC721(IERC721 a, uint256[] calldata nftIds)
external
virtual;
/**
@notice Rescues ERC20 tokens from the pair to the owner. Only callable by the owner (onlyOwnable modifier is in the implemented function).
@param a The token to transfer
@param amount The amount of tokens to send to the owner
*/
function withdrawERC20(ERC20 a, uint256 amount) external virtual;
/**
@notice Rescues ERC1155 tokens from the pair to the owner. Only callable by the owner.
@param a The NFT to transfer
@param ids The NFT ids to transfer
@param amounts The amounts of each id to transfer
*/
function withdrawERC1155(
IERC1155 a,
uint256[] calldata ids,
uint256[] calldata amounts
) external onlyOwner {
a.safeBatchTransferFrom(address(this), msg.sender, ids, amounts, "");
}
/**
@notice Updates the selling spot price. Only callable by the owner.
@param newSpotPrice The new selling spot price value, in Token
*/
function changeSpotPrice(uint128 newSpotPrice) external onlyOwner {
ICurve _bondingCurve = bondingCurve();
require(
_bondingCurve.validateSpotPrice(newSpotPrice),
"Invalid new spot price for curve"
);
if (spotPrice != newSpotPrice) {
spotPrice = newSpotPrice;
emit SpotPriceUpdate(newSpotPrice);
}
}
/**
@notice Updates the delta parameter. Only callable by the owner.
@param newDelta The new delta parameter
*/
function changeDelta(uint128 newDelta) external onlyOwner {
ICurve _bondingCurve = bondingCurve();
require(
_bondingCurve.validateDelta(newDelta),
"Invalid delta for curve"
);
if (delta != newDelta) {
delta = newDelta;
emit DeltaUpdate(newDelta);
}
}
/**
@notice Updates the fee taken by the LP. Only callable by the owner.
Only callable if the pool is a Trade pool. Reverts if the fee is >=
MAX_FEE.
@param newFee The new LP fee percentage, 18 decimals
*/
function changeFee(uint96 newFee) external onlyOwner {
PoolType _poolType = poolType();
require(_poolType == PoolType.TRADE, "Only for Trade pools");
require(newFee < MAX_FEE, "Trade fee must be less than 90%");
if (fee != newFee) {
fee = newFee;
emit FeeUpdate(newFee);
}
}
/**
@notice Changes the address that will receive assets received from
trades. Only callable by the owner.
@param newRecipient The new asset recipient
*/
function changeAssetRecipient(address payable newRecipient)
external
onlyOwner
{
PoolType _poolType = poolType();
require(_poolType != PoolType.TRADE, "Not for Trade pools");
if (assetRecipient != newRecipient) {
assetRecipient = newRecipient;
emit AssetRecipientChange(newRecipient);
}
}
/**
@notice Allows the pair to make arbitrary external calls to contracts
whitelisted by the protocol. Only callable by the owner.
@param target The contract to call
@param data The calldata to pass to the contract
*/
function call(address payable target, bytes calldata data)
external
onlyOwner
{
ILSSVMPairFactoryLike _factory = factory();
require(_factory.callAllowed(target), "Target must be whitelisted");
(bool result, ) = target.call{value: 0}(data);
require(result, "Call failed");
}
/**
@notice Allows owner to batch multiple calls, forked from: https://github.com/boringcrypto/BoringSolidity/blob/master/contracts/BoringBatchable.sol
@dev Intended for withdrawing/altering pool pricing in one tx, only callable by owner, cannot change owner
@param calls The calldata for each call to make
@param revertOnFail Whether or not to revert the entire tx if any of the calls fail
*/
function multicall(bytes[] calldata calls, bool revertOnFail)
external
onlyOwner
{
for (uint256 i; i < calls.length; ) {
(bool success, bytes memory result) = address(this).delegatecall(
calls[i]
);
if (!success && revertOnFail) {
revert(_getRevertMsg(result));
}
unchecked {
++i;
}
}
// Prevent multicall from malicious frontend sneaking in ownership change
require(
owner() == msg.sender,
"Ownership cannot be changed in multicall"
);
}
/**
@param _returnData The data returned from a multicall result
@dev Used to grab the revert string from the underlying call
*/
function _getRevertMsg(bytes memory _returnData)
internal
pure
returns (string memory)
{
// If the _res length is less than 68, then the transaction failed silently (without a revert message)
if (_returnData.length < 68) return "Transaction reverted silently";
assembly {
// Slice the sighash.
_returnData := add(_returnData, 0x04)
}
return abi.decode(_returnData, (string)); // All that remains is the revert string
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {IERC721} from "@openzeppelin/contracts/token/ERC721/IERC721.sol";
import {ERC20} from "solmate/src/tokens/ERC20.sol";
import {SafeTransferLib} from "solmate/src/utils/SafeTransferLib.sol";
import {LSSVMPair} from "./LSSVMPair.sol";
import {ILSSVMPairFactoryLike} from "./ILSSVMPairFactoryLike.sol";
import {CurveErrorCodes} from "./bonding-curves/CurveErrorCodes.sol";
contract LSSVMRouter {
using SafeTransferLib for address payable;
using SafeTransferLib for ERC20;
struct PairSwapAny {
LSSVMPair pair;
uint256 numItems;
}
struct PairSwapSpecific {
LSSVMPair pair;
uint256[] nftIds;
}
struct RobustPairSwapAny {
PairSwapAny swapInfo;
uint256 maxCost;
}
struct RobustPairSwapSpecific {
PairSwapSpecific swapInfo;
uint256 maxCost;
}
struct RobustPairSwapSpecificForToken {
PairSwapSpecific swapInfo;
uint256 minOutput;
}
struct NFTsForAnyNFTsTrade {
PairSwapSpecific[] nftToTokenTrades;
PairSwapAny[] tokenToNFTTrades;
}
struct NFTsForSpecificNFTsTrade {
PairSwapSpecific[] nftToTokenTrades;
PairSwapSpecific[] tokenToNFTTrades;
}
struct RobustPairNFTsFoTokenAndTokenforNFTsTrade {
RobustPairSwapSpecific[] tokenToNFTTrades;
RobustPairSwapSpecificForToken[] nftToTokenTrades;
uint256 inputAmount;
address payable tokenRecipient;
address nftRecipient;
}
modifier checkDeadline(uint256 deadline) {
_checkDeadline(deadline);
_;
}
ILSSVMPairFactoryLike public immutable factory;
constructor(ILSSVMPairFactoryLike _factory) {
factory = _factory;
}
/**
ETH swaps
*/
/**
@notice Swaps ETH into NFTs using multiple pairs.
@param swapList The list of pairs to trade with and the number of NFTs to buy from each.
@param ethRecipient The address that will receive the unspent ETH input
@param nftRecipient The address that will receive the NFT output
@param deadline The Unix timestamp (in seconds) at/after which the swap will revert
@return remainingValue The unspent ETH amount
*/
function swapETHForAnyNFTs(
PairSwapAny[] calldata swapList,
address payable ethRecipient,
address nftRecipient,
uint256 deadline
)
external
payable
checkDeadline(deadline)
returns (uint256 remainingValue)
{
return
_swapETHForAnyNFTs(swapList, msg.value, ethRecipient, nftRecipient);
}
/**
@notice Swaps ETH into specific NFTs using multiple pairs.
@param swapList The list of pairs to trade with and the IDs of the NFTs to buy from each.
@param ethRecipient The address that will receive the unspent ETH input
@param nftRecipient The address that will receive the NFT output
@param deadline The Unix timestamp (in seconds) at/after which the swap will revert
@return remainingValue The unspent ETH amount
*/
function swapETHForSpecificNFTs(
PairSwapSpecific[] calldata swapList,
address payable ethRecipient,
address nftRecipient,
uint256 deadline
)
external
payable
checkDeadline(deadline)
returns (uint256 remainingValue)
{
return
_swapETHForSpecificNFTs(
swapList,
msg.value,
ethRecipient,
nftRecipient
);
}
/**
@notice Swaps one set of NFTs into another set of specific NFTs using multiple pairs, using
ETH as the intermediary.
@param trade The struct containing all NFT-to-ETH swaps and ETH-to-NFT swaps.
@param minOutput The minimum acceptable total excess ETH received
@param ethRecipient The address that will receive the ETH output
@param nftRecipient The address that will receive the NFT output
@param deadline The Unix timestamp (in seconds) at/after which the swap will revert
@return outputAmount The total ETH received
*/
function swapNFTsForAnyNFTsThroughETH(
NFTsForAnyNFTsTrade calldata trade,
uint256 minOutput,
address payable ethRecipient,
address nftRecipient,
uint256 deadline
) external payable checkDeadline(deadline) returns (uint256 outputAmount) {
// Swap NFTs for ETH
// minOutput of swap set to 0 since we're doing an aggregate slippage check
outputAmount = _swapNFTsForToken(
trade.nftToTokenTrades,
0,
payable(address(this))
);
// Add extra value to buy NFTs
outputAmount += msg.value;
// Swap ETH for any NFTs
// cost <= inputValue = outputAmount - minOutput, so outputAmount' = (outputAmount - minOutput - cost) + minOutput >= minOutput
outputAmount =
_swapETHForAnyNFTs(
trade.tokenToNFTTrades,
outputAmount - minOutput,
ethRecipient,
nftRecipient
) +
minOutput;
}
/**
@notice Swaps one set of NFTs into another set of specific NFTs using multiple pairs, using
ETH as the intermediary.
@param trade The struct containing all NFT-to-ETH swaps and ETH-to-NFT swaps.
@param minOutput The minimum acceptable total excess ETH received
@param ethRecipient The address that will receive the ETH output
@param nftRecipient The address that will receive the NFT output
@param deadline The Unix timestamp (in seconds) at/after which the swap will revert
@return outputAmount The total ETH received
*/
function swapNFTsForSpecificNFTsThroughETH(
NFTsForSpecificNFTsTrade calldata trade,
uint256 minOutput,
address payable ethRecipient,
address nftRecipient,
uint256 deadline
) external payable checkDeadline(deadline) returns (uint256 outputAmount) {
// Swap NFTs for ETH
// minOutput of swap set to 0 since we're doing an aggregate slippage check
outputAmount = _swapNFTsForToken(
trade.nftToTokenTrades,
0,
payable(address(this))
);
// Add extra value to buy NFTs
outputAmount += msg.value;
// Swap ETH for specific NFTs
// cost <= inputValue = outputAmount - minOutput, so outputAmount' = (outputAmount - minOutput - cost) + minOutput >= minOutput
outputAmount =
_swapETHForSpecificNFTs(
trade.tokenToNFTTrades,
outputAmount - minOutput,
ethRecipient,
nftRecipient
) +
minOutput;
}
/**
ERC20 swaps
Note: All ERC20 swaps assume that a single ERC20 token is used for all the pairs involved.
Swapping using multiple tokens in the same transaction is possible, but the slippage checks
& the return values will be meaningless, and may lead to undefined behavior.
Note: The sender should ideally grant infinite token approval to the router in order for NFT-to-NFT
swaps to work smoothly.
*/
/**
@notice Swaps ERC20 tokens into NFTs using multiple pairs.
@param swapList The list of pairs to trade with and the number of NFTs to buy from each.
@param inputAmount The amount of ERC20 tokens to add to the ERC20-to-NFT swaps
@param nftRecipient The address that will receive the NFT output
@param deadline The Unix timestamp (in seconds) at/after which the swap will revert
@return remainingValue The unspent token amount
*/
function swapERC20ForAnyNFTs(
PairSwapAny[] calldata swapList,
uint256 inputAmount,
address nftRecipient,
uint256 deadline
) external checkDeadline(deadline) returns (uint256 remainingValue) {
return _swapERC20ForAnyNFTs(swapList, inputAmount, nftRecipient);
}
/**
@notice Swaps ERC20 tokens into specific NFTs using multiple pairs.
@param swapList The list of pairs to trade with and the IDs of the NFTs to buy from each.
@param inputAmount The amount of ERC20 tokens to add to the ERC20-to-NFT swaps
@param nftRecipient The address that will receive the NFT output
@param deadline The Unix timestamp (in seconds) at/after which the swap will revert
@return remainingValue The unspent token amount
*/
function swapERC20ForSpecificNFTs(
PairSwapSpecific[] calldata swapList,
uint256 inputAmount,
address nftRecipient,
uint256 deadline
) external checkDeadline(deadline) returns (uint256 remainingValue) {
return _swapERC20ForSpecificNFTs(swapList, inputAmount, nftRecipient);
}
/**
@notice Swaps NFTs into ETH/ERC20 using multiple pairs.
@param swapList The list of pairs to trade with and the IDs of the NFTs to sell to each.
@param minOutput The minimum acceptable total tokens received
@param tokenRecipient The address that will receive the token output
@param deadline The Unix timestamp (in seconds) at/after which the swap will revert
@return outputAmount The total tokens received
*/
function swapNFTsForToken(
PairSwapSpecific[] calldata swapList,
uint256 minOutput,
address tokenRecipient,
uint256 deadline
) external checkDeadline(deadline) returns (uint256 outputAmount) {
return _swapNFTsForToken(swapList, minOutput, payable(tokenRecipient));
}
/**
@notice Swaps one set of NFTs into another set of specific NFTs using multiple pairs, using
an ERC20 token as the intermediary.
@param trade The struct containing all NFT-to-ERC20 swaps and ERC20-to-NFT swaps.
@param inputAmount The amount of ERC20 tokens to add to the ERC20-to-NFT swaps
@param minOutput The minimum acceptable total excess tokens received
@param nftRecipient The address that will receive the NFT output
@param deadline The Unix timestamp (in seconds) at/after which the swap will revert
@return outputAmount The total ERC20 tokens received
*/
function swapNFTsForAnyNFTsThroughERC20(
NFTsForAnyNFTsTrade calldata trade,
uint256 inputAmount,
uint256 minOutput,
address nftRecipient,
uint256 deadline
) external checkDeadline(deadline) returns (uint256 outputAmount) {
// Swap NFTs for ERC20
// minOutput of swap set to 0 since we're doing an aggregate slippage check
// output tokens are sent to msg.sender
outputAmount = _swapNFTsForToken(
trade.nftToTokenTrades,
0,
payable(msg.sender)
);
// Add extra value to buy NFTs
outputAmount += inputAmount;
// Swap ERC20 for any NFTs
// cost <= maxCost = outputAmount - minOutput, so outputAmount' = outputAmount - cost >= minOutput
// input tokens are taken directly from msg.sender
outputAmount =
_swapERC20ForAnyNFTs(
trade.tokenToNFTTrades,
outputAmount - minOutput,
nftRecipient
) +
minOutput;
}
/**
@notice Swaps one set of NFTs into another set of specific NFTs using multiple pairs, using
an ERC20 token as the intermediary.
@param trade The struct containing all NFT-to-ERC20 swaps and ERC20-to-NFT swaps.
@param inputAmount The amount of ERC20 tokens to add to the ERC20-to-NFT swaps
@param minOutput The minimum acceptable total excess tokens received
@param nftRecipient The address that will receive the NFT output
@param deadline The Unix timestamp (in seconds) at/after which the swap will revert
@return outputAmount The total ERC20 tokens received
*/
function swapNFTsForSpecificNFTsThroughERC20(
NFTsForSpecificNFTsTrade calldata trade,
uint256 inputAmount,
uint256 minOutput,
address nftRecipient,
uint256 deadline
) external checkDeadline(deadline) returns (uint256 outputAmount) {
// Swap NFTs for ERC20
// minOutput of swap set to 0 since we're doing an aggregate slippage check
// output tokens are sent to msg.sender
outputAmount = _swapNFTsForToken(
trade.nftToTokenTrades,
0,
payable(msg.sender)
);
// Add extra value to buy NFTs
outputAmount += inputAmount;
// Swap ERC20 for specific NFTs
// cost <= maxCost = outputAmount - minOutput, so outputAmount' = outputAmount - cost >= minOutput
// input tokens are taken directly from msg.sender
outputAmount =
_swapERC20ForSpecificNFTs(
trade.tokenToNFTTrades,
outputAmount - minOutput,
nftRecipient
) +
minOutput;
}
/**
Robust Swaps
These are "robust" versions of the NFT<>Token swap functions which will never revert due to slippage
Instead, users specify a per-swap max cost. If the price changes more than the user specifies, no swap is attempted. This allows users to specify a batch of swaps, and execute as many of them as possible.
*/
/**
@dev We assume msg.value >= sum of values in maxCostPerPair
@notice Swaps as much ETH for any NFTs as possible, respecting the per-swap max cost.
@param swapList The list of pairs to trade with and the number of NFTs to buy from each.
@param ethRecipient The address that will receive the unspent ETH input
@param nftRecipient The address that will receive the NFT output
@param deadline The Unix timestamp (in seconds) at/after which the swap will revert
@return remainingValue The unspent token amount
*/
function robustSwapETHForAnyNFTs(
RobustPairSwapAny[] calldata swapList,
address payable ethRecipient,
address nftRecipient,
uint256 deadline
)
external
payable
checkDeadline(deadline)
returns (uint256 remainingValue)
{
remainingValue = msg.value;
// Try doing each swap
uint256 pairCost;
CurveErrorCodes.Error error;
uint256 numSwaps = swapList.length;
for (uint256 i; i < numSwaps; ) {
// Calculate actual cost per swap
(error, , , pairCost, ) = swapList[i].swapInfo.pair.getBuyNFTQuote(
swapList[i].swapInfo.numItems
);
// If within our maxCost and no error, proceed
if (
pairCost <= swapList[i].maxCost &&
error == CurveErrorCodes.Error.OK
) {
// We know how much ETH to send because we already did the math above
// So we just send that much
remainingValue -= swapList[i].swapInfo.pair.swapTokenForAnyNFTs{
value: pairCost
}(
swapList[i].swapInfo.numItems,
pairCost,
nftRecipient,
true,
msg.sender
);
}
unchecked {
++i;
}
}
// Return remaining value to sender
if (remainingValue > 0) {
ethRecipient.safeTransferETH(remainingValue);
}
}
/**
@dev We assume msg.value >= sum of values in maxCostPerPair
@param swapList The list of pairs to trade with and the IDs of the NFTs to buy from each.
@param ethRecipient The address that will receive the unspent ETH input
@param nftRecipient The address that will receive the NFT output
@param deadline The Unix timestamp (in seconds) at/after which the swap will revert
@return remainingValue The unspent token amount
*/
function robustSwapETHForSpecificNFTs(
RobustPairSwapSpecific[] calldata swapList,
address payable ethRecipient,
address nftRecipient,
uint256 deadline
) public payable checkDeadline(deadline) returns (uint256 remainingValue) {
remainingValue = msg.value;
uint256 pairCost;
CurveErrorCodes.Error error;
// Try doing each swap
uint256 numSwaps = swapList.length;
for (uint256 i; i < numSwaps; ) {
// Calculate actual cost per swap
(error, , , pairCost, ) = swapList[i].swapInfo.pair.getBuyNFTQuote(
swapList[i].swapInfo.nftIds.length
);
// If within our maxCost and no error, proceed
if (
pairCost <= swapList[i].maxCost &&
error == CurveErrorCodes.Error.OK
) {
// We know how much ETH to send because we already did the math above
// So we just send that much
remainingValue -= swapList[i]
.swapInfo
.pair
.swapTokenForSpecificNFTs{value: pairCost}(
swapList[i].swapInfo.nftIds,
pairCost,
nftRecipient,
true,
msg.sender
);
}
unchecked {
++i;
}
}
// Return remaining value to sender
if (remainingValue > 0) {
ethRecipient.safeTransferETH(remainingValue);
}
}
/**
@notice Swaps as many ERC20 tokens for any NFTs as possible, respecting the per-swap max cost.
@param swapList The list of pairs to trade with and the number of NFTs to buy from each.
@param inputAmount The amount of ERC20 tokens to add to the ERC20-to-NFT swaps
@param nftRecipient The address that will receive the NFT output
@param deadline The Unix timestamp (in seconds) at/after which the swap will revert
@return remainingValue The unspent token amount
*/
function robustSwapERC20ForAnyNFTs(
RobustPairSwapAny[] calldata swapList,
uint256 inputAmount,
address nftRecipient,
uint256 deadline
) external checkDeadline(deadline) returns (uint256 remainingValue) {
remainingValue = inputAmount;
uint256 pairCost;
CurveErrorCodes.Error error;
// Try doing each swap
uint256 numSwaps = swapList.length;
for (uint256 i; i < numSwaps; ) {
// Calculate actual cost per swap
(error, , , pairCost, ) = swapList[i].swapInfo.pair.getBuyNFTQuote(
swapList[i].swapInfo.numItems
);
// If within our maxCost and no error, proceed
if (
pairCost <= swapList[i].maxCost &&
error == CurveErrorCodes.Error.OK
) {
remainingValue -= swapList[i].swapInfo.pair.swapTokenForAnyNFTs(
swapList[i].swapInfo.numItems,
pairCost,
nftRecipient,
true,
msg.sender
);
}
unchecked {
++i;
}
}
}
/**
@notice Swaps as many ERC20 tokens for specific NFTs as possible, respecting the per-swap max cost.
@param swapList The list of pairs to trade with and the IDs of the NFTs to buy from each.
@param inputAmount The amount of ERC20 tokens to add to the ERC20-to-NFT swaps
@param nftRecipient The address that will receive the NFT output
@param deadline The Unix timestamp (in seconds) at/after which the swap will revert
@return remainingValue The unspent token amount
*/
function robustSwapERC20ForSpecificNFTs(
RobustPairSwapSpecific[] calldata swapList,
uint256 inputAmount,
address nftRecipient,
uint256 deadline
) public checkDeadline(deadline) returns (uint256 remainingValue) {
remainingValue = inputAmount;
uint256 pairCost;
CurveErrorCodes.Error error;
// Try doing each swap
uint256 numSwaps = swapList.length;
for (uint256 i; i < numSwaps; ) {
// Calculate actual cost per swap
(error, , , pairCost, ) = swapList[i].swapInfo.pair.getBuyNFTQuote(
swapList[i].swapInfo.nftIds.length
);
// If within our maxCost and no error, proceed
if (
pairCost <= swapList[i].maxCost &&
error == CurveErrorCodes.Error.OK
) {
remainingValue -= swapList[i]
.swapInfo
.pair
.swapTokenForSpecificNFTs(
swapList[i].swapInfo.nftIds,
pairCost,
nftRecipient,
true,
msg.sender
);
}
unchecked {
++i;
}
}
}
/**
@notice Swaps as many NFTs for tokens as possible, respecting the per-swap min output
@param swapList The list of pairs to trade with and the IDs of the NFTs to sell to each.
@param tokenRecipient The address that will receive the token output
@param deadline The Unix timestamp (in seconds) at/after which the swap will revert
@return outputAmount The total ETH/ERC20 received
*/
function robustSwapNFTsForToken(
RobustPairSwapSpecificForToken[] calldata swapList,
address payable tokenRecipient,
uint256 deadline
) public checkDeadline(deadline) returns (uint256 outputAmount) {
// Try doing each swap
uint256 numSwaps = swapList.length;
for (uint256 i; i < numSwaps; ) {
uint256 pairOutput;
// Locally scoped to avoid stack too deep error
{
CurveErrorCodes.Error error;
(error, , , pairOutput, ) = swapList[i]
.swapInfo
.pair
.getSellNFTQuote(swapList[i].swapInfo.nftIds.length);
if (error != CurveErrorCodes.Error.OK) {
unchecked {
++i;
}
continue;
}
}
// If at least equal to our minOutput, proceed
if (pairOutput >= swapList[i].minOutput) {
// Do the swap and update outputAmount with how many tokens we got
outputAmount += swapList[i].swapInfo.pair.swapNFTsForToken(
swapList[i].swapInfo.nftIds,
0,
tokenRecipient,
true,
msg.sender
);
}
unchecked {
++i;
}
}
}
/**
@notice Buys NFTs with ETH and sells them for tokens in one transaction
@param params All the parameters for the swap (packed in struct to avoid stack too deep), containing:
- ethToNFTSwapList The list of NFTs to buy
- nftToTokenSwapList The list of NFTs to sell
- inputAmount The max amount of tokens to send (if ERC20)
- tokenRecipient The address that receives tokens from the NFTs sold
- nftRecipient The address that receives NFTs
- deadline UNIX timestamp deadline for the swap
*/
function robustSwapETHForSpecificNFTsAndNFTsToToken(
RobustPairNFTsFoTokenAndTokenforNFTsTrade calldata params
) external payable returns (uint256 remainingValue, uint256 outputAmount) {
{
remainingValue = msg.value;
uint256 pairCost;
CurveErrorCodes.Error error;
// Try doing each swap
uint256 numSwaps = params.tokenToNFTTrades.length;
for (uint256 i; i < numSwaps; ) {
// Calculate actual cost per swap
(error, , , pairCost, ) = params
.tokenToNFTTrades[i]
.swapInfo
.pair
.getBuyNFTQuote(
params.tokenToNFTTrades[i].swapInfo.nftIds.length
);
// If within our maxCost and no error, proceed
if (
pairCost <= params.tokenToNFTTrades[i].maxCost &&
error == CurveErrorCodes.Error.OK
) {
// We know how much ETH to send because we already did the math above
// So we just send that much
remainingValue -= params
.tokenToNFTTrades[i]
.swapInfo
.pair
.swapTokenForSpecificNFTs{value: pairCost}(
params.tokenToNFTTrades[i].swapInfo.nftIds,
pairCost,
params.nftRecipient,
true,
msg.sender
);
}
unchecked {
++i;
}
}
// Return remaining value to sender
if (remainingValue > 0) {
params.tokenRecipient.safeTransferETH(remainingValue);
}
}
{
// Try doing each swap
uint256 numSwaps = params.nftToTokenTrades.length;
for (uint256 i; i < numSwaps; ) {
uint256 pairOutput;
// Locally scoped to avoid stack too deep error
{
CurveErrorCodes.Error error;
(error, , , pairOutput, ) = params
.nftToTokenTrades[i]
.swapInfo
.pair
.getSellNFTQuote(
params.nftToTokenTrades[i].swapInfo.nftIds.length
);
if (error != CurveErrorCodes.Error.OK) {
unchecked {
++i;
}
continue;
}
}
// If at least equal to our minOutput, proceed
if (pairOutput >= params.nftToTokenTrades[i].minOutput) {
// Do the swap and update outputAmount with how many tokens we got
outputAmount += params
.nftToTokenTrades[i]
.swapInfo
.pair
.swapNFTsForToken(
params.nftToTokenTrades[i].swapInfo.nftIds,
0,
params.tokenRecipient,
true,
msg.sender
);
}
unchecked {
++i;
}
}
}
}
/**
@notice Buys NFTs with ERC20, and sells them for tokens in one transaction
@param params All the parameters for the swap (packed in struct to avoid stack too deep), containing:
- ethToNFTSwapList The list of NFTs to buy
- nftToTokenSwapList The list of NFTs to sell
- inputAmount The max amount of tokens to send (if ERC20)
- tokenRecipient The address that receives tokens from the NFTs sold
- nftRecipient The address that receives NFTs
- deadline UNIX timestamp deadline for the swap
*/
function robustSwapERC20ForSpecificNFTsAndNFTsToToken(
RobustPairNFTsFoTokenAndTokenforNFTsTrade calldata params
) external payable returns (uint256 remainingValue, uint256 outputAmount) {
{
remainingValue = params.inputAmount;
uint256 pairCost;
CurveErrorCodes.Error error;
// Try doing each swap
uint256 numSwaps = params.tokenToNFTTrades.length;
for (uint256 i; i < numSwaps; ) {
// Calculate actual cost per swap
(error, , , pairCost, ) = params.tokenToNFTTrades[i]
.swapInfo
.pair
.getBuyNFTQuote(params.tokenToNFTTrades[i].swapInfo.nftIds.length);
// If within our maxCost and no error, proceed
if (
pairCost <= params.tokenToNFTTrades[i].maxCost &&
error == CurveErrorCodes.Error.OK
) {
remainingValue -= params.tokenToNFTTrades[i]
.swapInfo
.pair
.swapTokenForSpecificNFTs(
params.tokenToNFTTrades[i].swapInfo.nftIds,
pairCost,
params.nftRecipient,
true,
msg.sender
);
}
unchecked {
++i;
}
}
}
{
// Try doing each swap
uint256 numSwaps = params.nftToTokenTrades.length;
for (uint256 i; i < numSwaps; ) {
uint256 pairOutput;
// Locally scoped to avoid stack too deep error
{
CurveErrorCodes.Error error;
(error, , , pairOutput, ) = params
.nftToTokenTrades[i]
.swapInfo
.pair
.getSellNFTQuote(
params.nftToTokenTrades[i].swapInfo.nftIds.length
);
if (error != CurveErrorCodes.Error.OK) {
unchecked {
++i;
}
continue;
}
}
// If at least equal to our minOutput, proceed
if (pairOutput >= params.nftToTokenTrades[i].minOutput) {
// Do the swap and update outputAmount with how many tokens we got
outputAmount += params
.nftToTokenTrades[i]
.swapInfo
.pair
.swapNFTsForToken(
params.nftToTokenTrades[i].swapInfo.nftIds,
0,
params.tokenRecipient,
true,
msg.sender
);
}
unchecked {
++i;
}
}
}
}
receive() external payable {}
/**
Restricted functions
*/
/**
@dev Allows an ERC20 pair contract to transfer ERC20 tokens directly from
the sender, in order to minimize the number of token transfers. Only callable by an ERC20 pair.
@param token The ERC20 token to transfer
@param from The address to transfer tokens from
@param to The address to transfer tokens to
@param amount The amount of tokens to transfer
@param variant The pair variant of the pair contract
*/
function pairTransferERC20From(
ERC20 token,
address from,
address to,
uint256 amount,
ILSSVMPairFactoryLike.PairVariant variant
) external {
// verify caller is a trusted pair contract
require(factory.isPair(msg.sender, variant), "Not pair");
// verify caller is an ERC20 pair
require(
variant == ILSSVMPairFactoryLike.PairVariant.ENUMERABLE_ERC20 ||
variant ==
ILSSVMPairFactoryLike.PairVariant.MISSING_ENUMERABLE_ERC20,
"Not ERC20 pair"
);
// transfer tokens to pair
token.safeTransferFrom(from, to, amount);
}
/**
@dev Allows a pair contract to transfer ERC721 NFTs directly from
the sender, in order to minimize the number of token transfers. Only callable by a pair.
@param nft The ERC721 NFT to transfer
@param from The address to transfer tokens from
@param to The address to transfer tokens to
@param id The ID of the NFT to transfer
@param variant The pair variant of the pair contract
*/
function pairTransferNFTFrom(
IERC721 nft,
address from,
address to,
uint256 id,
ILSSVMPairFactoryLike.PairVariant variant
) external {
// verify caller is a trusted pair contract
require(factory.isPair(msg.sender, variant), "Not pair");
// transfer NFTs to pair
nft.safeTransferFrom(from, to, id);
}
/**
Internal functions
*/
/**
@param deadline The last valid time for a swap
*/
function _checkDeadline(uint256 deadline) internal view {
require(block.timestamp <= deadline, "Deadline passed");
}
/**
@notice Internal function used to swap ETH for any NFTs
@param swapList The list of pairs and swap calldata
@param inputAmount The total amount of ETH to send
@param ethRecipient The address receiving excess ETH
@param nftRecipient The address receiving the NFTs from the pairs
@return remainingValue The unspent token amount
*/
function _swapETHForAnyNFTs(
PairSwapAny[] calldata swapList,
uint256 inputAmount,
address payable ethRecipient,
address nftRecipient
) internal returns (uint256 remainingValue) {
remainingValue = inputAmount;
uint256 pairCost;
CurveErrorCodes.Error error;
// Do swaps
uint256 numSwaps = swapList.length;
for (uint256 i; i < numSwaps; ) {
// Calculate the cost per swap first to send exact amount of ETH over, saves gas by avoiding the need to send back excess ETH
(error, , , pairCost, ) = swapList[i].pair.getBuyNFTQuote(
swapList[i].numItems
);
// Require no error
require(error == CurveErrorCodes.Error.OK, "Bonding curve error");
// Total ETH taken from sender cannot exceed inputAmount
// because otherwise the deduction from remainingValue will fail
remainingValue -= swapList[i].pair.swapTokenForAnyNFTs{
value: pairCost
}(
swapList[i].numItems,
remainingValue,
nftRecipient,
true,
msg.sender
);
unchecked {
++i;
}
}
// Return remaining value to sender
if (remainingValue > 0) {
ethRecipient.safeTransferETH(remainingValue);
}
}
/**
@notice Internal function used to swap ETH for a specific set of NFTs
@param swapList The list of pairs and swap calldata
@param inputAmount The total amount of ETH to send
@param ethRecipient The address receiving excess ETH
@param nftRecipient The address receiving the NFTs from the pairs
@return remainingValue The unspent token amount
*/
function _swapETHForSpecificNFTs(
PairSwapSpecific[] calldata swapList,
uint256 inputAmount,
address payable ethRecipient,
address nftRecipient
) internal returns (uint256 remainingValue) {
remainingValue = inputAmount;
uint256 pairCost;
CurveErrorCodes.Error error;
// Do swaps
uint256 numSwaps = swapList.length;
for (uint256 i; i < numSwaps; ) {
// Calculate the cost per swap first to send exact amount of ETH over, saves gas by avoiding the need to send back excess ETH
(error, , , pairCost, ) = swapList[i].pair.getBuyNFTQuote(
swapList[i].nftIds.length
);
// Require no errors
require(error == CurveErrorCodes.Error.OK, "Bonding curve error");
// Total ETH taken from sender cannot exceed inputAmount
// because otherwise the deduction from remainingValue will fail
remainingValue -= swapList[i].pair.swapTokenForSpecificNFTs{
value: pairCost
}(
swapList[i].nftIds,
remainingValue,
nftRecipient,
true,
msg.sender
);
unchecked {
++i;
}
}
// Return remaining value to sender
if (remainingValue > 0) {
ethRecipient.safeTransferETH(remainingValue);
}
}
/**
@notice Internal function used to swap an ERC20 token for any NFTs
@dev Note that we don't need to query the pair's bonding curve first for pricing data because
we just calculate and take the required amount from the caller during swap time.
However, we can't "pull" ETH, which is why for the ETH->NFT swaps, we need to calculate the pricing info
to figure out how much the router should send to the pool.
@param swapList The list of pairs and swap calldata
@param inputAmount The total amount of ERC20 tokens to send
@param nftRecipient The address receiving the NFTs from the pairs
@return remainingValue The unspent token amount
*/
function _swapERC20ForAnyNFTs(
PairSwapAny[] calldata swapList,
uint256 inputAmount,
address nftRecipient
) internal returns (uint256 remainingValue) {
remainingValue = inputAmount;
// Do swaps
uint256 numSwaps = swapList.length;
for (uint256 i; i < numSwaps; ) {
// Tokens are transferred in by the pair calling router.pairTransferERC20From
// Total tokens taken from sender cannot exceed inputAmount
// because otherwise the deduction from remainingValue will fail
remainingValue -= swapList[i].pair.swapTokenForAnyNFTs(
swapList[i].numItems,
remainingValue,
nftRecipient,
true,
msg.sender
);
unchecked {
++i;
}
}
}
/**
@notice Internal function used to swap an ERC20 token for specific NFTs
@dev Note that we don't need to query the pair's bonding curve first for pricing data because
we just calculate and take the required amount from the caller during swap time.
However, we can't "pull" ETH, which is why for the ETH->NFT swaps, we need to calculate the pricing info
to figure out how much the router should send to the pool.
@param swapList The list of pairs and swap calldata
@param inputAmount The total amount of ERC20 tokens to send
@param nftRecipient The address receiving the NFTs from the pairs
@return remainingValue The unspent token amount
*/
function _swapERC20ForSpecificNFTs(
PairSwapSpecific[] calldata swapList,
uint256 inputAmount,
address nftRecipient
) internal returns (uint256 remainingValue) {
remainingValue = inputAmount;
// Do swaps
uint256 numSwaps = swapList.length;
for (uint256 i; i < numSwaps; ) {
// Tokens are transferred in by the pair calling router.pairTransferERC20From
// Total tokens taken from sender cannot exceed inputAmount
// because otherwise the deduction from remainingValue will fail
remainingValue -= swapList[i].pair.swapTokenForSpecificNFTs(
swapList[i].nftIds,
remainingValue,
nftRecipient,
true,
msg.sender
);
unchecked {
++i;
}
}
}
/**
@notice Swaps NFTs for tokens, designed to be used for 1 token at a time
@dev Calling with multiple tokens is permitted, BUT minOutput will be
far from enough of a safety check because different tokens almost certainly have different unit prices.
@param swapList The list of pairs and swap calldata
@param minOutput The minimum number of tokens to be receieved frm the swaps
@param tokenRecipient The address that receives the tokens
@return outputAmount The number of tokens to be received
*/
function _swapNFTsForToken(
PairSwapSpecific[] calldata swapList,
uint256 minOutput,
address payable tokenRecipient
) internal returns (uint256 outputAmount) {
// Do swaps
uint256 numSwaps = swapList.length;
for (uint256 i; i < numSwaps; ) {
// Do the swap for token and then update outputAmount
// Note: minExpectedTokenOutput is set to 0 since we're doing an aggregate slippage check below
outputAmount += swapList[i].pair.swapNFTsForToken(
swapList[i].nftIds,
0,
tokenRecipient,
true,
msg.sender
);
unchecked {
++i;
}
}
// Aggregate slippage check
require(outputAmount >= minOutput, "outputAmount too low");
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {LSSVMRouter} from "./LSSVMRouter.sol";
interface ILSSVMPairFactoryLike {
enum PairVariant {
ENUMERABLE_ETH,
MISSING_ENUMERABLE_ETH,
ENUMERABLE_ERC20,
MISSING_ENUMERABLE_ERC20
}
function protocolFeeMultiplier() external view returns (uint256);
function protocolFeeRecipient() external view returns (address payable);
function callAllowed(address target) external view returns (bool);
function routerStatus(LSSVMRouter router)
external
view
returns (bool allowed, bool wasEverAllowed);
function isPair(address potentialPair, PairVariant variant)
external
view
returns (bool);
}// SPDX-License-Identifier: AGPL-3.0-only
pragma solidity >=0.8.0;
/// @notice Modern and gas efficient ERC20 + EIP-2612 implementation.
/// @author Solmate (https://github.com/transmissions11/solmate/blob/main/src/tokens/ERC20.sol)
/// @author Modified from Uniswap (https://github.com/Uniswap/uniswap-v2-core/blob/master/contracts/UniswapV2ERC20.sol)
/// @dev Do not manually set balances without updating totalSupply, as the sum of all user balances must not exceed it.
abstract contract ERC20 {
/*//////////////////////////////////////////////////////////////
EVENTS
//////////////////////////////////////////////////////////////*/
event Transfer(address indexed from, address indexed to, uint256 amount);
event Approval(address indexed owner, address indexed spender, uint256 amount);
/*//////////////////////////////////////////////////////////////
METADATA STORAGE
//////////////////////////////////////////////////////////////*/
string public name;
string public symbol;
uint8 public immutable decimals;
/*//////////////////////////////////////////////////////////////
ERC20 STORAGE
//////////////////////////////////////////////////////////////*/
uint256 public totalSupply;
mapping(address => uint256) public balanceOf;
mapping(address => mapping(address => uint256)) public allowance;
/*//////////////////////////////////////////////////////////////
EIP-2612 STORAGE
//////////////////////////////////////////////////////////////*/
uint256 internal immutable INITIAL_CHAIN_ID;
bytes32 internal immutable INITIAL_DOMAIN_SEPARATOR;
mapping(address => uint256) public nonces;
/*//////////////////////////////////////////////////////////////
CONSTRUCTOR
//////////////////////////////////////////////////////////////*/
constructor(
string memory _name,
string memory _symbol,
uint8 _decimals
) {
name = _name;
symbol = _symbol;
decimals = _decimals;
INITIAL_CHAIN_ID = block.chainid;
INITIAL_DOMAIN_SEPARATOR = computeDomainSeparator();
}
/*//////////////////////////////////////////////////////////////
ERC20 LOGIC
//////////////////////////////////////////////////////////////*/
function approve(address spender, uint256 amount) public virtual returns (bool) {
allowance[msg.sender][spender] = amount;
emit Approval(msg.sender, spender, amount);
return true;
}
function transfer(address to, uint256 amount) public virtual returns (bool) {
balanceOf[msg.sender] -= amount;
// Cannot overflow because the sum of all user
// balances can't exceed the max uint256 value.
unchecked {
balanceOf[to] += amount;
}
emit Transfer(msg.sender, to, amount);
return true;
}
function transferFrom(
address from,
address to,
uint256 amount
) public virtual returns (bool) {
uint256 allowed = allowance[from][msg.sender]; // Saves gas for limited approvals.
if (allowed != type(uint256).max) allowance[from][msg.sender] = allowed - amount;
balanceOf[from] -= amount;
// Cannot overflow because the sum of all user
// balances can't exceed the max uint256 value.
unchecked {
balanceOf[to] += amount;
}
emit Transfer(from, to, amount);
return true;
}
/*//////////////////////////////////////////////////////////////
EIP-2612 LOGIC
//////////////////////////////////////////////////////////////*/
function permit(
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) public virtual {
require(deadline >= block.timestamp, "PERMIT_DEADLINE_EXPIRED");
// Unchecked because the only math done is incrementing
// the owner's nonce which cannot realistically overflow.
unchecked {
address recoveredAddress = ecrecover(
keccak256(
abi.encodePacked(
"\x19\x01",
DOMAIN_SEPARATOR(),
keccak256(
abi.encode(
keccak256(
"Permit(address owner,address spender,uint256 value,uint256 nonce,uint256 deadline)"
),
owner,
spender,
value,
nonces[owner]++,
deadline
)
)
)
),
v,
r,
s
);
require(recoveredAddress != address(0) && recoveredAddress == owner, "INVALID_SIGNER");
allowance[recoveredAddress][spender] = value;
}
emit Approval(owner, spender, value);
}
function DOMAIN_SEPARATOR() public view virtual returns (bytes32) {
return block.chainid == INITIAL_CHAIN_ID ? INITIAL_DOMAIN_SEPARATOR : computeDomainSeparator();
}
function computeDomainSeparator() internal view virtual returns (bytes32) {
return
keccak256(
abi.encode(
keccak256("EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)"),
keccak256(bytes(name)),
keccak256("1"),
block.chainid,
address(this)
)
);
}
/*//////////////////////////////////////////////////////////////
INTERNAL MINT/BURN LOGIC
//////////////////////////////////////////////////////////////*/
function _mint(address to, uint256 amount) internal virtual {
totalSupply += amount;
// Cannot overflow because the sum of all user
// balances can't exceed the max uint256 value.
unchecked {
balanceOf[to] += amount;
}
emit Transfer(address(0), to, amount);
}
function _burn(address from, uint256 amount) internal virtual {
balanceOf[from] -= amount;
// Cannot underflow because a user's balance
// will never be larger than the total supply.
unchecked {
totalSupply -= amount;
}
emit Transfer(from, address(0), amount);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.5.0) (token/ERC1155/utils/ERC1155Holder.sol)
pragma solidity ^0.8.0;
import "./ERC1155Receiver.sol";
/**
* Simple implementation of `ERC1155Receiver` that will allow a contract to hold ERC1155 tokens.
*
* IMPORTANT: When inheriting this contract, you must include a way to use the received tokens, otherwise they will be
* stuck.
*
* @dev _Available since v3.1._
*/
contract ERC1155Holder is ERC1155Receiver {
function onERC1155Received(
address,
address,
uint256,
uint256,
bytes memory
) public virtual override returns (bytes4) {
return this.onERC1155Received.selector;
}
function onERC1155BatchReceived(
address,
address,
uint256[] memory,
uint256[] memory,
bytes memory
) public virtual override returns (bytes4) {
return this.onERC1155BatchReceived.selector;
}
}// SPDX-License-Identifier: AGPL-3.0-only
pragma solidity >=0.8.0;
import {ERC20} from "../tokens/ERC20.sol";
/// @notice Safe ETH and ERC20 transfer library that gracefully handles missing return values.
/// @author Solmate (https://github.com/transmissions11/solmate/blob/main/src/utils/SafeTransferLib.sol)
/// @dev Use with caution! Some functions in this library knowingly create dirty bits at the destination of the free memory pointer.
/// @dev Note that none of the functions in this library check that a token has code at all! That responsibility is delegated to the caller.
library SafeTransferLib {
/*//////////////////////////////////////////////////////////////
ETH OPERATIONS
//////////////////////////////////////////////////////////////*/
function safeTransferETH(address to, uint256 amount) internal {
bool success;
assembly {
// Transfer the ETH and store if it succeeded or not.
success := call(gas(), to, amount, 0, 0, 0, 0)
}
require(success, "ETH_TRANSFER_FAILED");
}
/*//////////////////////////////////////////////////////////////
ERC20 OPERATIONS
//////////////////////////////////////////////////////////////*/
function safeTransferFrom(
ERC20 token,
address from,
address to,
uint256 amount
) internal {
bool success;
assembly {
// Get a pointer to some free memory.
let freeMemoryPointer := mload(0x40)
// Write the abi-encoded calldata into memory, beginning with the function selector.
mstore(freeMemoryPointer, 0x23b872dd00000000000000000000000000000000000000000000000000000000)
mstore(add(freeMemoryPointer, 4), from) // Append the "from" argument.
mstore(add(freeMemoryPointer, 36), to) // Append the "to" argument.
mstore(add(freeMemoryPointer, 68), amount) // Append the "amount" argument.
success := and(
// Set success to whether the call reverted, if not we check it either
// returned exactly 1 (can't just be non-zero data), or had no return data.
or(and(eq(mload(0), 1), gt(returndatasize(), 31)), iszero(returndatasize())),
// We use 100 because the length of our calldata totals up like so: 4 + 32 * 3.
// We use 0 and 32 to copy up to 32 bytes of return data into the scratch space.
// Counterintuitively, this call must be positioned second to the or() call in the
// surrounding and() call or else returndatasize() will be zero during the computation.
call(gas(), token, 0, freeMemoryPointer, 100, 0, 32)
)
}
require(success, "TRANSFER_FROM_FAILED");
}
function safeTransfer(
ERC20 token,
address to,
uint256 amount
) internal {
bool success;
assembly {
// Get a pointer to some free memory.
let freeMemoryPointer := mload(0x40)
// Write the abi-encoded calldata into memory, beginning with the function selector.
mstore(freeMemoryPointer, 0xa9059cbb00000000000000000000000000000000000000000000000000000000)
mstore(add(freeMemoryPointer, 4), to) // Append the "to" argument.
mstore(add(freeMemoryPointer, 36), amount) // Append the "amount" argument.
success := and(
// Set success to whether the call reverted, if not we check it either
// returned exactly 1 (can't just be non-zero data), or had no return data.
or(and(eq(mload(0), 1), gt(returndatasize(), 31)), iszero(returndatasize())),
// We use 68 because the length of our calldata totals up like so: 4 + 32 * 2.
// We use 0 and 32 to copy up to 32 bytes of return data into the scratch space.
// Counterintuitively, this call must be positioned second to the or() call in the
// surrounding and() call or else returndatasize() will be zero during the computation.
call(gas(), token, 0, freeMemoryPointer, 68, 0, 32)
)
}
require(success, "TRANSFER_FAILED");
}
function safeApprove(
ERC20 token,
address to,
uint256 amount
) internal {
bool success;
assembly {
// Get a pointer to some free memory.
let freeMemoryPointer := mload(0x40)
// Write the abi-encoded calldata into memory, beginning with the function selector.
mstore(freeMemoryPointer, 0x095ea7b300000000000000000000000000000000000000000000000000000000)
mstore(add(freeMemoryPointer, 4), to) // Append the "to" argument.
mstore(add(freeMemoryPointer, 36), amount) // Append the "amount" argument.
success := and(
// Set success to whether the call reverted, if not we check it either
// returned exactly 1 (can't just be non-zero data), or had no return data.
or(and(eq(mload(0), 1), gt(returndatasize(), 31)), iszero(returndatasize())),
// We use 68 because the length of our calldata totals up like so: 4 + 32 * 2.
// We use 0 and 32 to copy up to 32 bytes of return data into the scratch space.
// Counterintuitively, this call must be positioned second to the or() call in the
// surrounding and() call or else returndatasize() will be zero during the computation.
call(gas(), token, 0, freeMemoryPointer, 68, 0, 32)
)
}
require(success, "APPROVE_FAILED");
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {IERC721} from "@openzeppelin/contracts/token/ERC721/IERC721.sol";
import {ERC20} from "solmate/src/tokens/ERC20.sol";
import {SafeTransferLib} from "solmate/src/utils/SafeTransferLib.sol";
import {LSSVMPair} from "./LSSVMPair.sol";
import {ILSSVMPairFactoryLike} from "./ILSSVMPairFactoryLike.sol";
import {CurveErrorCodes} from "./bonding-curves/CurveErrorCodes.sol";
contract LSSVMRouter2 {
using SafeTransferLib for address payable;
using SafeTransferLib for ERC20;
struct PairSwapSpecific {
LSSVMPair pair;
uint256[] nftIds;
}
struct RobustPairSwapSpecific {
PairSwapSpecific swapInfo;
uint256 maxCost;
}
struct RobustPairSwapSpecificForToken {
PairSwapSpecific swapInfo;
uint256 minOutput;
}
struct PairSwapSpecificPartialFill {
PairSwapSpecific swapInfo;
uint256 expectedSpotPrice;
uint256[] maxCostPerNumNFTs;
}
struct PairSwapSpecificPartialFillForToken {
PairSwapSpecific swapInfo;
uint256 expectedSpotPrice;
uint256[] minOutputPerNumNFTs;
}
struct RobustPairNFTsFoTokenAndTokenforNFTsTrade {
RobustPairSwapSpecific[] tokenToNFTTrades;
RobustPairSwapSpecificForToken[] nftToTokenTrades;
uint256 inputAmount;
address payable tokenRecipient;
address nftRecipient;
}
ILSSVMPairFactoryLike public immutable factory;
constructor(ILSSVMPairFactoryLike _factory) {
factory = _factory;
}
/**
@dev Allows a pair contract to transfer ERC721 NFTs directly from
the sender, in order to minimize the number of token transfers. Only callable by a pair.
@param nft The ERC721 NFT to transfer
@param from The address to transfer tokens from
@param to The address to transfer tokens to
@param id The ID of the NFT to transfer
@param variant The pair variant of the pair contract
*/
function pairTransferNFTFrom(
IERC721 nft,
address from,
address to,
uint256 id,
ILSSVMPairFactoryLike.PairVariant variant
) external {
// verify caller is a trusted pair contract
require(factory.isPair(msg.sender, variant), "Not pair");
// transfer NFTs to pair
nft.safeTransferFrom(from, to, id);
}
// Given a pair and a number of items to buy, calculate the max price paid for 1 up to numNFTs to buy
function getNFTQuoteForPartialFill(
LSSVMPair pair,
uint256 numNFTs,
bool isBuy
) external view returns (uint256[] memory) {
uint256[] memory prices = new uint256[](numNFTs + 1);
uint256 fullPrice;
if (isBuy) {
(, , , fullPrice, ) = pair.getBuyNFTQuote(numNFTs);
} else {
(, , , fullPrice, ) = pair.getSellNFTQuote(numNFTs);
}
prices[numNFTs] = fullPrice;
for (uint256 i = 1; i < numNFTs; i++) {
uint256 currentPrice;
if (isBuy) {
(, , , currentPrice, ) = pair.getBuyNFTQuote(numNFTs - i);
} else {
(, , , currentPrice, ) = pair.getSellNFTQuote(numNFTs - i);
}
prices[i] = fullPrice - currentPrice;
}
return prices;
}
/**
@dev Performs a batch of buys and sells, avoids performing swaps where the price is beyond
*/
function robustBuySellWithETHAndPartialFill(
PairSwapSpecificPartialFill[] calldata buyList,
PairSwapSpecificPartialFillForToken[] calldata sellList
) external payable {
// Go through each buy item
// Check to see if the quote is as expected
// If it is, then send that amt over to buy
// If the quote is more, then check the number of NFTs (presumably less than expected)
// Take the difference and figure out which ones are still buyable
// Look up the max cost we're willing to pay
// Look up the getBuyNFTQuote for the new amount
// If it is within our bounds, still go ahead and buy
// Send excess funds back to caller
// Go through each sell item
// Check to see if the quote is as expected
// If it is, then do the NFT->ETH swap
// (if selling multiple items? --> do the same thing as above for buys?)
// Otherwise, move on to the next sell attempt
// Locally scope the buys
{
// Start with all of the ETH sent
uint256 remainingValue = msg.value;
uint256 numBuys = buyList.length;
// Try each buy swaps
for (uint256 i; i < numBuys; ) {
uint256 spotPrice = buyList[i].swapInfo.pair.spotPrice();
// If spot price is at most the expected amount, then it's likely nothing happened since the tx was submitted
// We go and optimistically attempt to fill each one
if (spotPrice <= buyList[i].expectedSpotPrice) {
// Total ETH taken from sender cannot msg.value
// because otherwise the deduction from remainingValue will fail
remainingValue -= buyList[i]
.swapInfo
.pair
.swapTokenForSpecificNFTs{value: buyList[i].maxCostPerNumNFTs[buyList[i].swapInfo.nftIds.length]}(
buyList[i].swapInfo.nftIds,
remainingValue,
msg.sender,
true,
msg.sender
);
}
// If spot price is greater, then potentially 1 or more items have already been bought
else {
// Do binary search on getBuyNFTQuote() from 1 to numItems
// the goal is to find the largest number where the quote is still within the user specified max cost
// then go through and figure out which items are still fillable
// proveed to go and fill them
}
unchecked {
++i;
}
}
// Return remaining value to sender
if (remainingValue > 0) {
payable(msg.sender).safeTransferETH(remainingValue);
}
}
}
function _buyWithPartialFill() internal {}
/**
@dev Buys the NFTs first, then sells them. Intended to be used for arbitrage.
*/
function buyNFTsThenSellWithETH(
RobustPairSwapSpecific[] calldata buyList,
RobustPairSwapSpecificForToken[] calldata sellList
) external payable {
// Locally scope the buys
{
// Start with all of the ETH sent
uint256 remainingValue = msg.value;
uint256 numBuys = buyList.length;
// Do all buy swaps
for (uint256 i; i < numBuys; ) {
// Total ETH taken from sender cannot msg.value
// because otherwise the deduction from remainingValue will fail
remainingValue -= buyList[i]
.swapInfo
.pair
.swapTokenForSpecificNFTs{value: buyList[i].maxCost}(
buyList[i].swapInfo.nftIds,
remainingValue,
msg.sender,
true,
msg.sender
);
unchecked {
++i;
}
}
// Return remaining value to sender
if (remainingValue > 0) {
payable(msg.sender).safeTransferETH(remainingValue);
}
}
// Locally scope the sells
{
// Do all sell swaps
uint256 numSwaps = sellList.length;
for (uint256 i; i < numSwaps; ) {
// Do the swap for token and then update outputAmount
sellList[i].swapInfo.pair.swapNFTsForToken(
sellList[i].swapInfo.nftIds,
sellList[i].minOutput,
payable(msg.sender),
true,
msg.sender
);
unchecked {
++i;
}
}
}
}
/**
@dev Intended for reducing upfront capital costs, e.g. swapping NFTs and then using proceeds to buy other NFTs
*/
function sellNFTsThenBuyWithETH(
RobustPairSwapSpecific[] calldata buyList,
RobustPairSwapSpecificForToken[] calldata sellList
) external payable {
uint256 outputAmount = 0;
// Locally scope the sells
{
// Do all sell swaps
uint256 numSwaps = sellList.length;
for (uint256 i; i < numSwaps; ) {
// Do the swap for token and then update outputAmount
outputAmount += sellList[i].swapInfo.pair.swapNFTsForToken(
sellList[i].swapInfo.nftIds,
sellList[i].minOutput,
payable(address(this)), // Send funds here first
true,
msg.sender
);
unchecked {
++i;
}
}
}
// Start with all of the ETH sent plus the ETH gained from the sells
uint256 remainingValue = msg.value + outputAmount;
// Locally scope the buys
{
uint256 numBuys = buyList.length;
// Do all buy swaps
for (uint256 i; i < numBuys; ) {
// @dev Total ETH taken from sender cannot the starting remainingValue
// because otherwise the deduction from remainingValue will fail
remainingValue -= buyList[i]
.swapInfo
.pair
.swapTokenForSpecificNFTs{value: buyList[i].maxCost}(
buyList[i].swapInfo.nftIds,
remainingValue,
msg.sender,
true,
msg.sender
);
unchecked {
++i;
}
}
}
// Return remaining value to sender
if (remainingValue > 0) {
payable(msg.sender).safeTransferETH(remainingValue);
}
}
/**
@dev Does no price checking, this is assumed to be done off-chain
@param swapList The list of pairs and swap calldata
@return remainingValue The unspent token amount
*/
function swapETHForSpecificNFTs(RobustPairSwapSpecific[] calldata swapList)
external
payable
returns (uint256 remainingValue)
{
// Start with all of the ETH sent
remainingValue = msg.value;
// Do swaps
uint256 numSwaps = swapList.length;
for (uint256 i; i < numSwaps; ) {
// Total ETH taken from sender cannot exceed inputAmount
// because otherwise the deduction from remainingValue will fail
remainingValue -= swapList[i]
.swapInfo
.pair
.swapTokenForSpecificNFTs{value: swapList[i].maxCost}(
swapList[i].swapInfo.nftIds,
remainingValue,
msg.sender,
true,
msg.sender
);
unchecked {
++i;
}
}
// Return remaining value to sender
if (remainingValue > 0) {
payable(msg.sender).safeTransferETH(remainingValue);
}
}
/**
@notice Swaps NFTs for tokens, designed to be used for 1 token at a time
@dev Calling with multiple tokens is permitted, BUT minOutput will be
far from enough of a safety check because different tokens almost certainly have different unit prices.
@param swapList The list of pairs and swap calldata
@return outputAmount The number of tokens to be received
*/
function swapNFTsForToken(
RobustPairSwapSpecificForToken[] calldata swapList
) external returns (uint256 outputAmount) {
// Do swaps
uint256 numSwaps = swapList.length;
for (uint256 i; i < numSwaps; ) {
// Do the swap for token and then update outputAmount
outputAmount += swapList[i].swapInfo.pair.swapNFTsForToken(
swapList[i].swapInfo.nftIds,
swapList[i].minOutput,
payable(msg.sender),
true,
msg.sender
);
unchecked {
++i;
}
}
}
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.0;
import "@openzeppelin/contracts/token/ERC721/extensions/ERC721Enumerable.sol";
contract Test721Enumerable is ERC721Enumerable {
constructor() ERC721("Test721", "T721") {}
function mint(address to, uint256 id) public {
_mint(to, id);
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {ICollectionswap} from "./ICollectionswap.sol";
import {ILSSVMPair, ILSSVMPairETH} from "./ILSSVMPair.sol";
import {ILSSVMPairFactory} from "./ILSSVMPairFactory.sol";
import {ICurve} from "./bonding-curves/ICurve.sol";
import {OwnableWithTransferCallback} from "./lib/OwnableWithTransferCallback.sol";
import {IERC165} from "@openzeppelin/contracts/interfaces/IERC165.sol";
import {ERC721} from "@openzeppelin/contracts/token/ERC721/ERC721.sol";
import {ERC721Enumerable} from "@openzeppelin/contracts/token/ERC721/extensions/ERC721Enumerable.sol";
import {ERC721URIStorage} from "@openzeppelin/contracts/token/ERC721/extensions/ERC721URIStorage.sol";
import {SafeERC20} from "@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
import {IERC20} from "@openzeppelin/contracts/token/ERC20/IERC20.sol";
import {IERC721} from "@openzeppelin/contracts/token/ERC721/IERC721.sol";
import {IERC1155} from "@openzeppelin/contracts/token/ERC1155/IERC1155.sol";
import {IERC721Receiver} from "@openzeppelin/contracts/token/ERC721/IERC721Receiver.sol";
import {FixedPointMathLib} from "./lib/FixedPointMathLib.sol";
import {ReentrancyGuard} from './lib/ReentrancyGuard.sol';
import {ERC1155Receiver, ERC1155Holder} from "@openzeppelin/contracts/token/ERC1155/utils/ERC1155Holder.sol";
contract Collectionswap is OwnableWithTransferCallback, ERC1155Holder, ERC721, ERC721Enumerable, ERC721URIStorage, ICollectionswap, ReentrancyGuard {
using SafeERC20 for IERC20;
using FixedPointMathLib for uint256;
ILSSVMPairFactory public immutable _factory;
ILSSVMPair.PoolType immutable _poolType;
mapping(address => bool) public isPoolAlive;
mapping(address => bool) public isSenderSpecifierOperator;
mapping(address => bool) public canSpecifySender;
/// @dev mapping of token IDs to pools
mapping(uint256 => LPTokenParams721ETH) private _mapNFTIDToPool;
/// @dev The ID of the next token that will be minted. Skips 0
uint256 private _nextTokenId;
event NewPair(address poolAddress); // @dev: Used for tests
event NewTokenId(uint256 tokenId);
event ERC20Rescued();
event ERC721Rescued();
event ERC1155Rescued();
constructor (
address payable lssvmPairFactoryAddress
) ERC721('Collectionswap','CollectSudo LP') {
__Ownable_init(msg.sender);
__ReentrancyGuard_init();
_factory = ILSSVMPairFactory(lssvmPairFactoryAddress);
_poolType = ILSSVMPair.PoolType.TRADE;
}
function transferOwnershipNFTList(
address oldOwner,
address newOwner,
IERC721 _nft,
uint256[] memory nftList
) private {
for (uint256 i; i<nftList.length; ) {
_nft.safeTransferFrom(
oldOwner,
newOwner,
nftList[i]
);
unchecked {
++i;
}
}
}
function getMeasurableContribution(
uint256 tokenId
) external view
returns (uint256 contribution) {
LPTokenParams721ETH memory lpTokenParams = _mapNFTIDToPool[tokenId];
uint256 initialPoolBalance = lpTokenParams.initialPoolBalance;
uint256 initialNFTIDsLength = lpTokenParams.initialNFTIDsLength;
contribution = uint256(initialPoolBalance * initialNFTIDsLength).sqrt();
}
function setSenderSpecifierOperator(address _operator, bool _canSet) onlyOwner external {
isSenderSpecifierOperator[_operator] = _canSet;
}
// only owner or canUpdateSenderSpecifiers are allowed to call this function
function setCanSpecifySender(address _user, bool _canSpecify) external {
require(msg.sender == owner() || isSenderSpecifierOperator[msg.sender], "not authorized");
canSpecifySender[_user] = _canSpecify;
}
function refreshPoolParameters(
uint256 tokenId
) external {
LPTokenParams721ETH memory lpTokenParams = _mapNFTIDToPool[tokenId];
address payable poolAddress = lpTokenParams.poolAddress;
require(isApprovedToOperateOnPool(msg.sender, tokenId),"unapproved caller");
ILSSVMPairETH mypair = ILSSVMPairETH(poolAddress);
uint256[] memory currentIds = mypair.getAllHeldIds();
LPTokenParams721ETH memory lpTokenParams2 = LPTokenParams721ETH(
lpTokenParams.nftAddress,
lpTokenParams.bondingCurveAddress,
lpTokenParams.poolAddress,
mypair.fee(),
mypair.delta(),
mypair.spotPrice(),
address(mypair).balance,
currentIds.length
);
_mapNFTIDToPool[tokenId] = lpTokenParams2;
}
function getAllHeldIds(
uint256 tokenId
) external view returns (uint256[] memory currentIds) {
address payable poolAddress = _mapNFTIDToPool[tokenId].poolAddress;
ILSSVMPairETH mypair = ILSSVMPairETH(poolAddress);
currentIds = mypair.getAllHeldIds();
}
function onERC721Received(
address,
address,
uint256,
bytes memory
) external pure returns (bytes4) {
return IERC721Receiver.onERC721Received.selector;
}
/**
* @dev Increment tokenId counter, save the parameters of the new token and
* mark as live in contract storage
* @param receiver The address to receive the issued LP token
* @param lpTokenParams The parameters defining the LP token to be issued
* @return tokenId The tokenId of the newly issued LP token
*/
function issueLPToken(
address receiver,
LPTokenParams721ETH memory lpTokenParams
) private returns (uint256 tokenId) {
// prefix increment returns value after increment
tokenId = ++_nextTokenId;
_mapNFTIDToPool[tokenId] = lpTokenParams;
// string memory uri = string(abi.encodePacked('{"pool":"', Strings.toHexString(lpTokenParams.poolAddress), '"}'));
isPoolAlive[lpTokenParams.poolAddress] = true;
emit NewTokenId(tokenId);
safeMint(receiver, tokenId);
}
function useLPTokenToDestroyDirectPairETH(
address user,
uint256 tokenId
) external nonReentrant {
if (user != msg.sender)
require(canSpecifySender[msg.sender], "can't specify sender");
LPTokenParams721ETH memory lpTokenParams = _mapNFTIDToPool[tokenId];
ERC721 _nft = ERC721(lpTokenParams.nftAddress);
destroyDirectPairETH(
user,
tokenId,
_nft
);
// breaks CEI pattern, but has to be done after destruction to return correct msg
isPoolAlive[lpTokenParams.poolAddress] = false;
burn(tokenId);
}
/// @inheritdoc ICollectionswap
function validatePoolParamsLte(
uint256 tokenId,
address nftAddress,
address bondingCurveAddress,
uint96 fee,
uint128 delta
) public view returns (bool) {
LPTokenParams721ETH memory poolParams = viewPoolParams(tokenId);
return (
poolParams.nftAddress == nftAddress &&
poolParams.bondingCurveAddress == bondingCurveAddress &&
poolParams.fee <= fee &&
poolParams.delta <= delta
);
}
/// @inheritdoc ICollectionswap
function validatePoolParamsEq(
uint256 tokenId,
address nftAddress,
address bondingCurveAddress,
uint96 fee,
uint128 delta
) public view returns (bool) {
LPTokenParams721ETH memory poolParams = viewPoolParams(tokenId);
return (
poolParams.nftAddress == nftAddress &&
poolParams.bondingCurveAddress == bondingCurveAddress &&
poolParams.fee == fee &&
poolParams.delta == delta
);
}
/// @inheritdoc ICollectionswap
function viewPoolParams(
uint256 tokenId
) public view returns (LPTokenParams721ETH memory poolParams) {
poolParams = _mapNFTIDToPool[tokenId];
require(isPoolAlive[poolParams.poolAddress], 'pool must be alive');
return poolParams;
}
// @inheritdoc ICollectionswap
function createDirectPairETH(
address _user,
IERC721 _nft,
ICurve _bondingCurve,
uint128 _delta,
uint96 _fee,
uint128 _spotPrice,
uint256[] calldata _initialNFTIDs
) external payable nonReentrant returns (ILSSVMPairETH newPair, uint256 newTokenId) {
if (_user != msg.sender)
require(canSpecifySender[msg.sender], "can't specify sender");
// Create sudoswap pool
ILSSVMPairFactory factory = _factory;
uint256[] memory _emptyInitialNFTIDs;
newPair = factory.createPairETH{value:msg.value}(
_nft,
_bondingCurve,
payable(0), // assetRecipient
_poolType,
_delta,
_fee,
_spotPrice,
_emptyInitialNFTIDs
);
// Transfer all nfts specified to the pool
transferOwnershipNFTList(
_user,
address(newPair),
_nft,
_initialNFTIDs
);
LPTokenParams721ETH memory poolParamsStruct = LPTokenParams721ETH(
address(_nft),
address(_bondingCurve),
payable(address(newPair)),
_fee,
_delta,
_spotPrice,
msg.value,
_initialNFTIDs.length
);
newTokenId = issueLPToken(
_user,
poolParamsStruct
);
}
function isApprovedToOperateOnPool(address _owner, uint256 tokenId) public view virtual returns (bool) {
if (_exists(tokenId)) {
return ownerOf(tokenId) == _owner;
} else {
return false;
}
}
function destroyDirectPairETH(
address user,
uint256 tokenId,
IERC721 _nft
) private {
string memory errmsg = "only token owner can destroy pool";
address payable _pool = _mapNFTIDToPool[tokenId].poolAddress;
if (!isPoolAlive[_pool]) {
errmsg = "pool already destroyed";
}
require(isApprovedToOperateOnPool(user, tokenId), errmsg);
uint256[] memory currentIds = this.getAllHeldIds(tokenId);
ILSSVMPairETH mypair = ILSSVMPairETH(_pool);
mypair.withdrawERC721(_nft,currentIds);
uint256 prevBalance = address(this).balance;
mypair.withdrawAllETH();
uint256 currBalance = address(this).balance; // check there's no global state here for getting address balance
uint256 diffBalance = currBalance - prevBalance;
transferOwnershipNFTList(
address(this),
user,
_nft,
currentIds
);
(bool sent,) = payable(user).call{value: diffBalance}("");
require(sent, "Failed to send Ether");
}
receive() external payable {}
/////////////////////////////////////////////////
// Rescue Functions
/////////////////////////////////////////////////
/**
@notice Rescues ERC20 tokens. Only callable by the owner if rescuing from this contract, else can be called by tokenId owner.
@notice Since pools created cannot be paired with ERC20 tokens, there is no validation on the ERC20 token
@param a The token to transfer
@param amount The amount of tokens to send to the owner
@param tokenId 0 = rescue from this contract, non-zero = rescue from specified pool
*/
function rescueERC20(IERC20 a, uint256 amount, uint256 tokenId) external {
if (tokenId == 0) {
require(msg.sender == owner(), "not owner");
} else {
ILSSVMPairETH _pool = ILSSVMPairETH(_mapNFTIDToPool[tokenId].poolAddress);
require(isApprovedToOperateOnPool(msg.sender, tokenId), "unapproved caller");
_pool.withdrawERC20(a, amount); // withdrawn to this contract
}
a.safeTransfer(msg.sender, amount);
emit ERC20Rescued();
}
/**
@notice Rescues ERC721 tokens. Only callable by the owner if rescuing from this contract, else can be called by tokenId owner.
@param a The NFT to rescue
@param nftIds NFT IDs to rescue
@param tokenId 0 = rescue from this contract, non-zero = rescue from specified pool (cannot touch users' NFTs)
*/
function rescueERC721(
IERC721 a,
uint256[] calldata nftIds,
uint256 tokenId
) external {
// 0 tokenId = pull from this contract directly
if (tokenId == 0) {
require(msg.sender == owner(), "not owner");
} else {
LPTokenParams721ETH memory lpTokenParams = _mapNFTIDToPool[tokenId];
ILSSVMPairETH _pool = ILSSVMPairETH(lpTokenParams.poolAddress);
require(isApprovedToOperateOnPool(msg.sender, tokenId), "unapproved caller");
require(address(a) != lpTokenParams.nftAddress, "call useLPTokenToDestroyDirectPairETH()");
_pool.withdrawERC721(a, nftIds); // withdrawn to this contract
}
uint256 numNFTs = nftIds.length;
for (uint256 i; i < numNFTs; ) {
a.safeTransferFrom(address(this), msg.sender, nftIds[i]);
unchecked {
++i;
}
}
emit ERC721Rescued();
}
/**
@notice Rescues ERC1155 tokens. Only callable by the owner if rescuing from this contract, else can be called by tokenId owner.
@notice There are some cases where an NFT is both ERC721 and ERC1155, so we have to ensure that the users' NFTs arent touched
@param a The NFT to transfer
@param ids The NFT ids to transfer
@param amounts The amounts of each id to transfer
@param tokenId 0 = rescue from this contract, non-zero = rescue from specified pool (cannot touch users' NFTs)
*/
function rescueERC1155(
IERC1155 a,
uint256[] calldata ids,
uint256[] calldata amounts,
uint256 tokenId
) external {
if (tokenId == 0) {
require(msg.sender == owner(), "not owner");
} else {
LPTokenParams721ETH memory lpTokenParams = _mapNFTIDToPool[tokenId];
ILSSVMPairETH _pool = ILSSVMPairETH(lpTokenParams.poolAddress);
require(isApprovedToOperateOnPool(msg.sender, tokenId), "unapproved caller");
require(address(a) != lpTokenParams.nftAddress, "call useLPTokenToDestroyDirectPairETH()");
_pool.withdrawERC1155(a, ids, amounts); // withdrawn to this contract
}
a.safeBatchTransferFrom(address(this), msg.sender, ids, amounts, "");
emit ERC1155Rescued();
}
/////////////////////////////////////////////////
// ERC 721
/////////////////////////////////////////////////
function safeMint(address to, uint256 tokenId)
private
{
_safeMint(to, tokenId);
// _setTokenURI(tokenId, '');
}
function burn(uint256 tokenId)
private
// onlyOwner
{
_burn(tokenId);
}
// overrides required by Solidiity for ERC721 contract
// The following functions are overrides required by Solidity.
function _beforeTokenTransfer(address from, address to, uint256 tokenId)
internal
override(ERC721, ERC721Enumerable)
{
super._beforeTokenTransfer(from, to, tokenId);
}
function _burn(uint256 tokenId) internal override(ERC721, ERC721URIStorage) {
super._burn(tokenId);
}
function tokenURI(uint256 tokenId)
public
view
override(ERC721, ERC721URIStorage)
returns (string memory)
{
return super.tokenURI(tokenId);
}
function supportsInterface(bytes4 interfaceId)
public
view
override(IERC165, ERC721, ERC721Enumerable, ERC1155Receiver)
returns (bool)
{
return super.supportsInterface(interfaceId);
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {IERC721} from "@openzeppelin/contracts/token/ERC721/IERC721.sol";
import {ICurve} from "./bonding-curves/ICurve.sol";
import {ILSSVMPair, ILSSVMPairETH} from "./ILSSVMPair.sol";
interface ILSSVMPairFactory {
function createPairETH(
IERC721 _nft,
ICurve _bondingCurve,
address payable _assetRecipient,
ILSSVMPair.PoolType _poolType,
uint128 _delta,
uint96 _fee,
uint128 _spotPrice,
uint256[] calldata _initialNFTIDs
) external payable returns (ILSSVMPairETH pair);
}// SPDX-License-Identifier: AGPL-3.0-only
pragma solidity >=0.8.0;
/// @notice Arithmetic library with operations for fixed-point numbers.
/// @author Solmate (https://github.com/transmissions11/solmate/blob/main/src/utils/FixedPointMathLib.sol)
/// @author Inspired by USM (https://github.com/usmfum/USM/blob/master/contracts/WadMath.sol)
library FixedPointMathLib {
/*//////////////////////////////////////////////////////////////
SIMPLIFIED FIXED POINT OPERATIONS
//////////////////////////////////////////////////////////////*/
uint256 internal constant WAD = 1e18; // The scalar of ETH and most ERC20s.
function mulWadDown(uint256 x, uint256 y) internal pure returns (uint256) {
return mulDivDown(x, y, WAD); // Equivalent to (x * y) / WAD rounded down.
}
function mulWadUp(uint256 x, uint256 y) internal pure returns (uint256) {
return mulDivUp(x, y, WAD); // Equivalent to (x * y) / WAD rounded up.
}
function divWadDown(uint256 x, uint256 y) internal pure returns (uint256) {
return mulDivDown(x, WAD, y); // Equivalent to (x * WAD) / y rounded down.
}
function divWadUp(uint256 x, uint256 y) internal pure returns (uint256) {
return mulDivUp(x, WAD, y); // Equivalent to (x * WAD) / y rounded up.
}
/*//////////////////////////////////////////////////////////////
LOW LEVEL FIXED POINT OPERATIONS
//////////////////////////////////////////////////////////////*/
function mulDivDown(
uint256 x,
uint256 y,
uint256 denominator
) internal pure returns (uint256 z) {
assembly {
// Store x * y in z for now.
z := mul(x, y)
// Equivalent to require(denominator != 0 && (x == 0 || (x * y) / x == y))
if iszero(and(iszero(iszero(denominator)), or(iszero(x), eq(div(z, x), y)))) {
revert(0, 0)
}
// Divide z by the denominator.
z := div(z, denominator)
}
}
function mulDivUp(
uint256 x,
uint256 y,
uint256 denominator
) internal pure returns (uint256 z) {
assembly {
// Store x * y in z for now.
z := mul(x, y)
// Equivalent to require(denominator != 0 && (x == 0 || (x * y) / x == y))
if iszero(and(iszero(iszero(denominator)), or(iszero(x), eq(div(z, x), y)))) {
revert(0, 0)
}
// First, divide z - 1 by the denominator and add 1.
// We allow z - 1 to underflow if z is 0, because we multiply the
// end result by 0 if z is zero, ensuring we return 0 if z is zero.
z := mul(iszero(iszero(z)), add(div(sub(z, 1), denominator), 1))
}
}
function rpow(
uint256 x,
uint256 n,
uint256 scalar
) internal pure returns (uint256 z) {
assembly {
switch x
case 0 {
switch n
case 0 {
// 0 ** 0 = 1
z := scalar
}
default {
// 0 ** n = 0
z := 0
}
}
default {
switch mod(n, 2)
case 0 {
// If n is even, store scalar in z for now.
z := scalar
}
default {
// If n is odd, store x in z for now.
z := x
}
// Shifting right by 1 is like dividing by 2.
let half := shr(1, scalar)
for {
// Shift n right by 1 before looping to halve it.
n := shr(1, n)
} n {
// Shift n right by 1 each iteration to halve it.
n := shr(1, n)
} {
// Revert immediately if x ** 2 would overflow.
// Equivalent to iszero(eq(div(xx, x), x)) here.
if shr(128, x) {
revert(0, 0)
}
// Store x squared.
let xx := mul(x, x)
// Round to the nearest number.
let xxRound := add(xx, half)
// Revert if xx + half overflowed.
if lt(xxRound, xx) {
revert(0, 0)
}
// Set x to scaled xxRound.
x := div(xxRound, scalar)
// If n is even:
if mod(n, 2) {
// Compute z * x.
let zx := mul(z, x)
// If z * x overflowed:
if iszero(eq(div(zx, x), z)) {
// Revert if x is non-zero.
if iszero(iszero(x)) {
revert(0, 0)
}
}
// Round to the nearest number.
let zxRound := add(zx, half)
// Revert if zx + half overflowed.
if lt(zxRound, zx) {
revert(0, 0)
}
// Return properly scaled zxRound.
z := div(zxRound, scalar)
}
}
}
}
}
/*///////////////////////////////////////////////////////////////
FIXED POINT OPERATIONS
//////////////////////////////////////////////////////////////*/
function fmul(
uint256 x,
uint256 y,
uint256 baseUnit
) internal pure returns (uint256 z) {
assembly {
// Store x * y in z for now.
z := mul(x, y)
// Equivalent to require(x == 0 || (x * y) / x == y)
if iszero(or(iszero(x), eq(div(z, x), y))) {
revert(0, 0)
}
// If baseUnit is zero this will return zero instead of reverting.
z := div(z, baseUnit)
}
}
function fdiv(
uint256 x,
uint256 y,
uint256 baseUnit
) internal pure returns (uint256 z) {
assembly {
// Store x * baseUnit in z for now.
z := mul(x, baseUnit)
if or(
// Revert if y is zero to ensure we don't divide by zero below.
iszero(y),
// Equivalent to require(x == 0 || (x * baseUnit) / x == baseUnit)
iszero(or(iszero(x), eq(div(z, x), baseUnit)))
) {
revert(0, 0)
}
// We ensure y is not zero above, so there is never division by zero here.
z := div(z, y)
}
}
function fpow(
uint256 x,
uint256 n,
uint256 baseUnit
) internal pure returns (uint256 z) {
assembly {
switch x
case 0 {
switch n
case 0 {
z := baseUnit
}
default {
z := 0
}
}
default {
switch mod(n, 2)
case 0 {
z := baseUnit
}
default {
z := x
}
let half := div(baseUnit, 2)
for {
n := div(n, 2)
} n {
n := div(n, 2)
} {
let xx := mul(x, x)
if iszero(eq(div(xx, x), x)) {
revert(0, 0)
}
let xxRound := add(xx, half)
if lt(xxRound, xx) {
revert(0, 0)
}
x := div(xxRound, baseUnit)
if mod(n, 2) {
let zx := mul(z, x)
if and(iszero(iszero(x)), iszero(eq(div(zx, x), z))) {
revert(0, 0)
}
let zxRound := add(zx, half)
if lt(zxRound, zx) {
revert(0, 0)
}
z := div(zxRound, baseUnit)
}
}
}
}
}
/*//////////////////////////////////////////////////////////////
GENERAL NUMBER UTILITIES
//////////////////////////////////////////////////////////////*/
function sqrt(uint256 x) internal pure returns (uint256 z) {
assembly {
// Start off with z at 1.
z := 1
// Used below to help find a nearby power of 2.
let y := x
// Find the lowest power of 2 that is at least sqrt(x).
if iszero(lt(y, 0x100000000000000000000000000000000)) {
y := shr(128, y) // Like dividing by 2 ** 128.
z := shl(64, z) // Like multiplying by 2 ** 64.
}
if iszero(lt(y, 0x10000000000000000)) {
y := shr(64, y) // Like dividing by 2 ** 64.
z := shl(32, z) // Like multiplying by 2 ** 32.
}
if iszero(lt(y, 0x100000000)) {
y := shr(32, y) // Like dividing by 2 ** 32.
z := shl(16, z) // Like multiplying by 2 ** 16.
}
if iszero(lt(y, 0x10000)) {
y := shr(16, y) // Like dividing by 2 ** 16.
z := shl(8, z) // Like multiplying by 2 ** 8.
}
if iszero(lt(y, 0x100)) {
y := shr(8, y) // Like dividing by 2 ** 8.
z := shl(4, z) // Like multiplying by 2 ** 4.
}
if iszero(lt(y, 0x10)) {
y := shr(4, y) // Like dividing by 2 ** 4.
z := shl(2, z) // Like multiplying by 2 ** 2.
}
if iszero(lt(y, 0x8)) {
// Equivalent to 2 ** z.
z := shl(1, z)
}
// Shifting right by 1 is like dividing by 2.
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
z := shr(1, add(z, div(x, z)))
// Compute a rounded down version of z.
let zRoundDown := div(x, z)
// If zRoundDown is smaller, use it.
if lt(zRoundDown, z) {
z := zRoundDown
}
}
}
}// SPDX-License-Identifier: MIT // OpenZeppelin Contracts v4.4.1 (interfaces/IERC165.sol) pragma solidity ^0.8.0; import "../utils/introspection/IERC165.sol";
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (token/ERC721/extensions/ERC721URIStorage.sol)
pragma solidity ^0.8.0;
import "../ERC721.sol";
/**
* @dev ERC721 token with storage based token URI management.
*/
abstract contract ERC721URIStorage is ERC721 {
using Strings for uint256;
// Optional mapping for token URIs
mapping(uint256 => string) private _tokenURIs;
/**
* @dev See {IERC721Metadata-tokenURI}.
*/
function tokenURI(uint256 tokenId) public view virtual override returns (string memory) {
_requireMinted(tokenId);
string memory _tokenURI = _tokenURIs[tokenId];
string memory base = _baseURI();
// If there is no base URI, return the token URI.
if (bytes(base).length == 0) {
return _tokenURI;
}
// If both are set, concatenate the baseURI and tokenURI (via abi.encodePacked).
if (bytes(_tokenURI).length > 0) {
return string(abi.encodePacked(base, _tokenURI));
}
return super.tokenURI(tokenId);
}
/**
* @dev Sets `_tokenURI` as the tokenURI of `tokenId`.
*
* Requirements:
*
* - `tokenId` must exist.
*/
function _setTokenURI(uint256 tokenId, string memory _tokenURI) internal virtual {
require(_exists(tokenId), "ERC721URIStorage: URI set of nonexistent token");
_tokenURIs[tokenId] = _tokenURI;
}
/**
* @dev See {ERC721-_burn}. This override additionally checks to see if a
* token-specific URI was set for the token, and if so, it deletes the token URI from
* the storage mapping.
*/
function _burn(uint256 tokenId) internal virtual override {
super._burn(tokenId);
if (bytes(_tokenURIs[tokenId]).length != 0) {
delete _tokenURIs[tokenId];
}
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {ICurve} from "./bonding-curves/ICurve.sol";
import {Collectionswap} from "./Collectionswap.sol";
import {RewardPool} from "./RewardPool.sol";
contract RewardPoolFactory {
Collectionswap public collectionswap;
constructor(address payable _collectionSwapAddress) {
collectionswap = Collectionswap(_collectionSwapAddress);
}
event NewRewardPool(
address indexed rewardPoolAddress,
address indexed nftAddress,
address indexed moneyAddress
);
function createRewardPool(
address _nftAddress,
address _moneyAddress,
address _bondingCurveAddress,
uint96 _fee,
uint128 _delta,
uint128 _initialSpotPrice
) public returns (address rewardPoolAddress) {
// TBD
RewardPool rewardPool = new RewardPool(
_nftAddress,
_moneyAddress,
_bondingCurveAddress,
payable(collectionswap),
_fee,
_delta,
_initialSpotPrice
);
rewardPool.transferOwnership(msg.sender);
address rewardPoolAddress = address(rewardPool);
emit NewRewardPool(rewardPoolAddress, _nftAddress, _moneyAddress);
return rewardPoolAddress;
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {ICurve} from "./bonding-curves/ICurve.sol";
import {Collectionswap} from "./Collectionswap.sol";
import {ICollectionswap} from "./ICollectionswap.sol";
import {IERC721} from "@openzeppelin/contracts/token/ERC721/IERC721.sol";
import {EnumerableSet} from "@openzeppelin/contracts/utils/structs/EnumerableSet.sol";
import {Ownable} from "@openzeppelin/contracts/access/Ownable.sol";
contract RewardPool is Ownable {
address nftAddress;
address moneyAddress;
address bondingCurveAddress;
Collectionswap public collectionswap;
uint96 fee;
uint128 delta;
uint128 initialSpotPrice;
uint256 public totalContribution;
using EnumerableSet for EnumerableSet.AddressSet;
EnumerableSet.AddressSet private contributorsSet; // enumerable contributors
mapping(address => uint256[]) public mapAddressToLPTokenIdList;
mapping(uint256 => uint256) public mapLPTokenIdToReward;
mapping(uint256 => bool) public mapLPTokenIdToIsLive;
constructor(address _nftAddress, address _moneyAddress, address _bondingCurveAddress, address payable _collectionSwapAddress, uint96 _fee, uint128 _delta, uint128 _initialSpotPrice) {
nftAddress = _nftAddress;
moneyAddress = _moneyAddress;
bondingCurveAddress = _bondingCurveAddress;
collectionswap = Collectionswap(_collectionSwapAddress);
fee = _fee;
delta = _delta;
initialSpotPrice = _initialSpotPrice;
totalContribution = 0;
}
function getMyContribution(address thisAddress) public view returns (uint256) {
uint256 contribution = 0;
uint256[] memory lpTokenIdList = mapAddressToLPTokenIdList[thisAddress];
for (uint256 i = 0; i < lpTokenIdList.length; i++) {
uint256 lpTokenId = lpTokenIdList[i];
contribution += mapLPTokenIdToReward[lpTokenId];
}
return contribution;
}
function getMyAndTotalContribution(address thisAddress) public view returns (uint256, uint256) {
return (getMyContribution(thisAddress), totalContribution);
}
function recalcAllContributions() public {
uint256 totalContributionNew = 0;
for (uint256 i = 0; i < contributorsSet.length(); i++) {
address contributor = contributorsSet.at(i);
// recalcContributionByAddress(contributor);
uint256[] memory lpTokenIdList = mapAddressToLPTokenIdList[contributor];
for (uint256 j = 0; j < lpTokenIdList.length; j++) {
uint256 lpTokenId = lpTokenIdList[j];
collectionswap.refreshPoolParameters(lpTokenId);
uint256 indivContribution = collectionswap.getMeasurableContribution(lpTokenId);
mapLPTokenIdToReward[lpTokenId] = indivContribution;
totalContributionNew += indivContribution;
}
}
totalContribution = totalContributionNew;
}
// back up function - only callable by owner as there are potential fairness issues from not having a global state
function recalcContributionByAddressByIndex(
address contributor,
uint lpStartIndex,
uint lpEndIndex // max is mapAddressToLPTokenIdList[contributor].length
) public onlyOwner {
uint256[] memory lpTokenIdList = mapAddressToLPTokenIdList[contributor];
uint256 decrement;
uint256 increment;
require(lpEndIndex <= lpTokenIdList.length, "lpEndIndex out of range");
for (uint256 j = lpStartIndex; j < lpEndIndex; j++) {
uint256 lpTokenId = lpTokenIdList[j];
uint256 prevContribution = mapLPTokenIdToReward[lpTokenId];
collectionswap.refreshPoolParameters(lpTokenId);
uint256 newContribution = collectionswap.getMeasurableContribution(lpTokenId);
mapLPTokenIdToReward[lpTokenId] = newContribution;
if (newContribution > prevContribution) {
increment += (newContribution - prevContribution);
} else {
decrement += (prevContribution - newContribution);
}
}
totalContribution = totalContribution + increment - decrement;
}
// back up function - only callable by owner as there are potential fairness issues from not having a global state
function recalcContributionByAddress(
address contributor
) public onlyOwner {
recalcContributionByAddressByIndex(contributor, 0, mapAddressToLPTokenIdList[contributor].length);
}
function updateContributorExists(address contributorAddress) private {
if (!contributorsSet.contains(contributorAddress)) {
contributorsSet.add(contributorAddress);
}
}
function removeContributor(address contributorAddress) private {
if (contributorsSet.contains(contributorAddress)) {
contributorsSet.remove(contributorAddress);
}
}
function deposit(
uint256 lpTokenId
) public {
require(collectionswap.ownerOf(lpTokenId) == msg.sender);
require((collectionswap.validatePoolParamsLte(lpTokenId, nftAddress, bondingCurveAddress, fee, delta)), 'LPToken params do not match RewardPool params');
// transfer token to reward pool
bool isLive = mapLPTokenIdToIsLive[lpTokenId];
require(!isLive, 'LPToken already deposited');
collectionswap.transferFrom(msg.sender,address(this),lpTokenId);
uint256 contribution = collectionswap.getMeasurableContribution(lpTokenId);
mapLPTokenIdToIsLive[lpTokenId] = true;
mapLPTokenIdToReward[lpTokenId] = contribution;
updateContributorExists(msg.sender);
totalContribution += contribution;
mapAddressToLPTokenIdList[msg.sender].push(lpTokenId);
}
function withdrawAll(
uint256[] calldata lpTokenIdList
) public {
uint256 decrement = 0;
for (uint256 i = 0; i < lpTokenIdList.length; i++) {
uint256 lpTokenId = lpTokenIdList[i];
require(mapLPTokenIdToIsLive[lpTokenId], 'LPToken not deposited');
mapLPTokenIdToIsLive[lpTokenId] = false;
decrement += mapLPTokenIdToReward[lpTokenId];
mapLPTokenIdToReward[lpTokenId] = 0;
collectionswap.transferFrom(address(this),msg.sender,lpTokenId);
}
require(decrement <= totalContribution, 'decrement > totalContribution');
totalContribution -= decrement;
uint256[] memory emptyList;
mapAddressToLPTokenIdList[msg.sender] = emptyList;
removeContributor(msg.sender);
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {IERC721} from "@openzeppelin/contracts/token/ERC721/IERC721.sol";
import {EnumerableSet} from "@openzeppelin/contracts/utils/structs/EnumerableSet.sol";
import {LSSVMPair} from "./LSSVMPair.sol";
import {LSSVMRouter} from "./LSSVMRouter.sol";
import {ILSSVMPairFactoryLike} from "./ILSSVMPairFactoryLike.sol";
/**
@title An NFT/Token pair for an NFT that does not implement ERC721Enumerable
@author boredGenius and 0xmons
*/
abstract contract LSSVMPairMissingEnumerable is LSSVMPair {
using EnumerableSet for EnumerableSet.UintSet;
// Used for internal ID tracking
EnumerableSet.UintSet private idSet;
/// @inheritdoc LSSVMPair
function _sendAnyNFTsToRecipient(
IERC721 _nft,
address nftRecipient,
uint256 numNFTs
) internal override {
// Send NFTs to recipient
// We're missing enumerable, so we also update the pair's own ID set
// NOTE: We start from last index to first index to save on gas
uint256 lastIndex = idSet.length() - 1;
for (uint256 i; i < numNFTs; ) {
uint256 nftId = idSet.at(lastIndex);
_nft.safeTransferFrom(address(this), nftRecipient, nftId);
idSet.remove(nftId);
unchecked {
--lastIndex;
++i;
}
}
}
/// @inheritdoc LSSVMPair
function _sendSpecificNFTsToRecipient(
IERC721 _nft,
address nftRecipient,
uint256[] calldata nftIds
) internal override {
// Send NFTs to caller
// If missing enumerable, update pool's own ID set
uint256 numNFTs = nftIds.length;
for (uint256 i; i < numNFTs; ) {
_nft.safeTransferFrom(address(this), nftRecipient, nftIds[i]);
// Remove from id set
idSet.remove(nftIds[i]);
unchecked {
++i;
}
}
}
/// @inheritdoc LSSVMPair
function getAllHeldIds() external view override returns (uint256[] memory) {
uint256 numNFTs = idSet.length();
uint256[] memory ids = new uint256[](numNFTs);
for (uint256 i; i < numNFTs; ) {
ids[i] = idSet.at(i);
unchecked {
++i;
}
}
return ids;
}
/**
@dev When safeTransfering an ERC721 in, we add ID to the idSet
if it's the same collection used by pool. (As it doesn't auto-track because no ERC721Enumerable)
*/
function onERC721Received(
address,
address,
uint256 id,
bytes memory
) public virtual returns (bytes4) {
IERC721 _nft = nft();
// If it's from the pair's NFT, add the ID to ID set
if (msg.sender == address(_nft)) {
idSet.add(id);
}
return this.onERC721Received.selector;
}
/// @inheritdoc LSSVMPair
function withdrawERC721(IERC721 a, uint256[] calldata nftIds)
external
override
onlyOwner
{
IERC721 _nft = nft();
uint256 numNFTs = nftIds.length;
// If it's not the pair's NFT, just withdraw normally
if (a != _nft) {
for (uint256 i; i < numNFTs; ) {
a.safeTransferFrom(address(this), msg.sender, nftIds[i]);
unchecked {
++i;
}
}
}
// Otherwise, withdraw and also remove the ID from the ID set
else {
for (uint256 i; i < numNFTs; ) {
_nft.safeTransferFrom(address(this), msg.sender, nftIds[i]);
idSet.remove(nftIds[i]);
unchecked {
++i;
}
}
emit NFTWithdrawal();
}
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {LSSVMPairETH} from "./LSSVMPairETH.sol";
import {LSSVMPairMissingEnumerable} from "./LSSVMPairMissingEnumerable.sol";
import {ILSSVMPairFactoryLike} from "./ILSSVMPairFactoryLike.sol";
contract LSSVMPairMissingEnumerableETH is
LSSVMPairMissingEnumerable,
LSSVMPairETH
{
function pairVariant()
public
pure
override
returns (ILSSVMPairFactoryLike.PairVariant)
{
return ILSSVMPairFactoryLike.PairVariant.MISSING_ENUMERABLE_ETH;
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {ERC20} from "solmate/src/tokens/ERC20.sol";
import {IERC721} from "@openzeppelin/contracts/token/ERC721/IERC721.sol";
import {SafeTransferLib} from "solmate/src/utils/SafeTransferLib.sol";
import {LSSVMPair} from "./LSSVMPair.sol";
import {ILSSVMPairFactoryLike} from "./ILSSVMPairFactoryLike.sol";
import {ICurve} from "./bonding-curves/ICurve.sol";
/**
@title An NFT/Token pair where the token is ETH
@author boredGenius and 0xmons
*/
abstract contract LSSVMPairETH is LSSVMPair {
using SafeTransferLib for address payable;
using SafeTransferLib for ERC20;
uint256 internal constant IMMUTABLE_PARAMS_LENGTH = 61;
/// @inheritdoc LSSVMPair
function _pullTokenInputAndPayProtocolFee(
uint256 inputAmount,
bool, /*isRouter*/
address, /*routerCaller*/
ILSSVMPairFactoryLike _factory,
uint256 protocolFee
) internal override {
require(msg.value >= inputAmount, "Sent too little ETH");
// Transfer inputAmount ETH to assetRecipient if it's been set
address payable _assetRecipient = getAssetRecipient();
if (_assetRecipient != address(this)) {
_assetRecipient.safeTransferETH(inputAmount - protocolFee);
}
// Take protocol fee
if (protocolFee > 0) {
// Round down to the actual ETH balance if there are numerical stability issues with the bonding curve calculations
if (protocolFee > address(this).balance) {
protocolFee = address(this).balance;
}
if (protocolFee > 0) {
payable(address(_factory)).safeTransferETH(protocolFee);
}
}
}
/// @inheritdoc LSSVMPair
function _refundTokenToSender(uint256 inputAmount) internal override {
// Give excess ETH back to caller
if (msg.value > inputAmount) {
payable(msg.sender).safeTransferETH(msg.value - inputAmount);
}
}
/// @inheritdoc LSSVMPair
function _payProtocolFeeFromPair(
ILSSVMPairFactoryLike _factory,
uint256 protocolFee
) internal override {
// Take protocol fee
if (protocolFee > 0) {
// Round down to the actual ETH balance if there are numerical stability issues with the bonding curve calculations
if (protocolFee > address(this).balance) {
protocolFee = address(this).balance;
}
if (protocolFee > 0) {
payable(address(_factory)).safeTransferETH(protocolFee);
}
}
}
/// @inheritdoc LSSVMPair
function _sendTokenOutput(
address payable tokenRecipient,
uint256 outputAmount
) internal override {
// Send ETH to caller
if (outputAmount > 0) {
tokenRecipient.safeTransferETH(outputAmount);
}
}
/// @inheritdoc LSSVMPair
// @dev see LSSVMPairCloner for params length calculation
function _immutableParamsLength() internal pure override returns (uint256) {
return IMMUTABLE_PARAMS_LENGTH;
}
/**
@notice Withdraws all token owned by the pair to the owner address.
@dev Only callable by the owner.
*/
function withdrawAllETH() external onlyOwner {
withdrawETH(address(this).balance);
}
/**
@notice Withdraws a specified amount of token owned by the pair to the owner address.
@dev Only callable by the owner.
@param amount The amount of token to send to the owner. If the pair's balance is less than
this value, the transaction will be reverted.
*/
function withdrawETH(uint256 amount) public onlyOwner {
payable(owner()).safeTransferETH(amount);
// emit event since ETH is the pair token
emit TokenWithdrawal(amount);
}
/// @inheritdoc LSSVMPair
function withdrawERC20(ERC20 a, uint256 amount)
external
override
onlyOwner
{
a.safeTransfer(msg.sender, amount);
}
/**
@dev All ETH transfers into the pair are accepted. This is the main method
for the owner to top up the pair's token reserves.
*/
receive() external payable {
emit TokenDeposit(msg.value);
}
/**
@dev All ETH transfers into the pair are accepted. This is the main method
for the owner to top up the pair's token reserves.
*/
fallback() external payable {
// Only allow calls without function selector
require (msg.data.length == _immutableParamsLength());
emit TokenDeposit(msg.value);
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import {IERC721} from "@openzeppelin/contracts/token/ERC721/IERC721.sol";
import {ERC20} from "solmate/src/tokens/ERC20.sol";
import {ICurve} from "../bonding-curves/ICurve.sol";
import {ILSSVMPairFactoryLike} from "../ILSSVMPairFactoryLike.sol";
library LSSVMPairCloner {
/**
* @dev Deploys and returns the address of a clone that mimics the behaviour of `implementation`.
*
* This function uses the create opcode, which should never revert.
*
* During the delegate call, extra data is copied into the calldata which can then be
* accessed by the implementation contract.
*/
function cloneETHPair(
address implementation,
ILSSVMPairFactoryLike factory,
ICurve bondingCurve,
IERC721 nft,
uint8 poolType
) internal returns (address instance) {
assembly {
let ptr := mload(0x40)
// -------------------------------------------------------------------------------------------------------------
// CREATION (9 bytes)
// -------------------------------------------------------------------------------------------------------------
// creation size = 09
// runtime size = 72
// 60 runtime | PUSH1 runtime (r) | r | –
// 3d | RETURNDATASIZE | 0 r | –
// 81 | DUP2 | r 0 r | –
// 60 creation | PUSH1 creation (c) | c r 0 r | –
// 3d | RETURNDATASIZE | 0 c r 0 r | –
// 39 | CODECOPY | 0 r | [0-runSize): runtime code
// f3 | RETURN | | [0-runSize): runtime code
// -------------------------------------------------------------------------------------------------------------
// RUNTIME (53 bytes of code + 61 bytes of extra data = 114 bytes)
// -------------------------------------------------------------------------------------------------------------
// extra data size = 3d
// 3d | RETURNDATASIZE | 0 | –
// 3d | RETURNDATASIZE | 0 0 | –
// 3d | RETURNDATASIZE | 0 0 0 | –
// 3d | RETURNDATASIZE | 0 0 0 0 | –
// 36 | CALLDATASIZE | cds 0 0 0 0 | –
// 3d | RETURNDATASIZE | 0 cds 0 0 0 0 | –
// 3d | RETURNDATASIZE | 0 0 cds 0 0 0 0 | –
// 37 | CALLDATACOPY | 0 0 0 0 | [0, cds) = calldata
// 60 extra | PUSH1 extra | extra 0 0 0 0 | [0, cds) = calldata
// 60 0x35 | PUSH1 0x35 | 0x35 extra 0 0 0 0 | [0, cds) = calldata // 0x35 (53) is runtime size - data
// 36 | CALLDATASIZE | cds 0x35 extra 0 0 0 0 | [0, cds) = calldata
// 39 | CODECOPY | 0 0 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 36 | CALLDATASIZE | cds 0 0 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 60 extra | PUSH1 extra | extra cds 0 0 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 01 | ADD | cds+extra 0 0 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 3d | RETURNDATASIZE | 0 cds 0 0 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 73 addr | PUSH20 0x123… | addr 0 cds 0 0 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
mstore(
ptr,
hex"60_72_3d_81_60_09_3d_39_f3_3d_3d_3d_3d_36_3d_3d_37_60_3d_60_35_36_39_36_60_3d_01_3d_73_00_00_00"
)
mstore(add(ptr, 0x1d), shl(0x60, implementation))
// 5a | GAS | gas addr 0 cds 0 0 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// f4 | DELEGATECALL | success 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 3d | RETURNDATASIZE | rds success 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 3d | RETURNDATASIZE | rds rds success 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 93 | SWAP4 | 0 rds success 0 rds | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 80 | DUP1 | 0 0 rds success 0 rds | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 3e | RETURNDATACOPY | success 0 rds | [0, rds) = return data (there might be some irrelevant leftovers in memory [rds, cds+0x37) when rds < cds+0x37)
// 60 0x33 | PUSH1 0x33 | 0x33 sucess 0 rds | [0, rds) = return data
// 57 | JUMPI | 0 rds | [0, rds) = return data
// fd | REVERT | – | [0, rds) = return data
// 5b | JUMPDEST | 0 rds | [0, rds) = return data
// f3 | RETURN | – | [0, rds) = return data
mstore(
add(ptr, 0x31),
hex"5a_f4_3d_3d_93_80_3e_60_33_57_fd_5b_f3_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00"
)
// -------------------------------------------------------------------------------------------------------------
// EXTRA DATA (61 bytes)
// -------------------------------------------------------------------------------------------------------------
mstore(add(ptr, 0x3e), shl(0x60, factory))
mstore(add(ptr, 0x52), shl(0x60, bondingCurve))
mstore(add(ptr, 0x66), shl(0x60, nft))
mstore8(add(ptr, 0x7a), poolType)
instance := create(0, ptr, 0x7b)
}
}
/**
* @dev Deploys and returns the address of a clone that mimics the behaviour of `implementation`.
*
* This function uses the create opcode, which should never revert.
*
* During the delegate call, extra data is copied into the calldata which can then be
* accessed by the implementation contract.
*/
function cloneERC20Pair(
address implementation,
ILSSVMPairFactoryLike factory,
ICurve bondingCurve,
IERC721 nft,
uint8 poolType,
ERC20 token
) internal returns (address instance) {
assembly {
let ptr := mload(0x40)
// -------------------------------------------------------------------------------------------------------------
// CREATION (9 bytes)
// -------------------------------------------------------------------------------------------------------------
// creation size = 09
// runtime size = 86
// 60 runtime | PUSH1 runtime (r) | r | –
// 3d | RETURNDATASIZE | 0 r | –
// 81 | DUP2 | r 0 r | –
// 60 creation | PUSH1 creation (c) | c r 0 r | –
// 3d | RETURNDATASIZE | 0 c r 0 r | –
// 39 | CODECOPY | 0 r | [0-runSize): runtime code
// f3 | RETURN | | [0-runSize): runtime code
// -------------------------------------------------------------------------------------------------------------
// RUNTIME (53 bytes of code + 81 bytes of extra data = 134 bytes)
// -------------------------------------------------------------------------------------------------------------
// extra data size = 51
// 3d | RETURNDATASIZE | 0 | –
// 3d | RETURNDATASIZE | 0 0 | –
// 3d | RETURNDATASIZE | 0 0 0 | –
// 3d | RETURNDATASIZE | 0 0 0 0 | –
// 36 | CALLDATASIZE | cds 0 0 0 0 | –
// 3d | RETURNDATASIZE | 0 cds 0 0 0 0 | –
// 3d | RETURNDATASIZE | 0 0 cds 0 0 0 0 | –
// 37 | CALLDATACOPY | 0 0 0 0 | [0, cds) = calldata
// 60 extra | PUSH1 extra | extra 0 0 0 0 | [0, cds) = calldata
// 60 0x35 | PUSH1 0x35 | 0x35 extra 0 0 0 0 | [0, cds) = calldata // 0x35 (53) is runtime size - data
// 36 | CALLDATASIZE | cds 0x35 extra 0 0 0 0 | [0, cds) = calldata
// 39 | CODECOPY | 0 0 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 36 | CALLDATASIZE | cds 0 0 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 60 extra | PUSH1 extra | extra cds 0 0 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 01 | ADD | cds+extra 0 0 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 3d | RETURNDATASIZE | 0 cds 0 0 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 73 addr | PUSH20 0x123… | addr 0 cds 0 0 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
mstore(
ptr,
hex"60_86_3d_81_60_09_3d_39_f3_3d_3d_3d_3d_36_3d_3d_37_60_51_60_35_36_39_36_60_51_01_3d_73_00_00_00"
)
mstore(add(ptr, 0x1d), shl(0x60, implementation))
// 5a | GAS | gas addr 0 cds 0 0 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// f4 | DELEGATECALL | success 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 3d | RETURNDATASIZE | rds success 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 3d | RETURNDATASIZE | rds rds success 0 0 | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 93 | SWAP4 | 0 rds success 0 rds | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 80 | DUP1 | 0 0 rds success 0 rds | [0, cds) = calldata, [cds, cds+0x35) = extraData
// 3e | RETURNDATACOPY | success 0 rds | [0, rds) = return data (there might be some irrelevant leftovers in memory [rds, cds+0x37) when rds < cds+0x37)
// 60 0x33 | PUSH1 0x33 | 0x33 sucess 0 rds | [0, rds) = return data
// 57 | JUMPI | 0 rds | [0, rds) = return data
// fd | REVERT | – | [0, rds) = return data
// 5b | JUMPDEST | 0 rds | [0, rds) = return data
// f3 | RETURN | – | [0, rds) = return data
mstore(
add(ptr, 0x31),
hex"5a_f4_3d_3d_93_80_3e_60_33_57_fd_5b_f3_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00"
)
// -------------------------------------------------------------------------------------------------------------
// EXTRA DATA (81 bytes)
// -------------------------------------------------------------------------------------------------------------
mstore(add(ptr, 0x3e), shl(0x60, factory))
mstore(add(ptr, 0x52), shl(0x60, bondingCurve))
mstore(add(ptr, 0x66), shl(0x60, nft))
mstore8(add(ptr, 0x7a), poolType)
mstore(add(ptr, 0x7b), shl(0x60, token))
instance := create(0, ptr, 0x8f)
}
}
/**
* @notice Checks if a contract is a clone of a LSSVMPairETH.
* @dev Only checks the runtime bytecode, does not check the extra data.
* @param factory the factory that deployed the clone
* @param implementation the LSSVMPairETH implementation contract
* @param query the contract to check
* @return result True if the contract is a clone, false otherwise
*/
function isETHPairClone(
address factory,
address implementation,
address query
) internal view returns (bool result) {
// solhint-disable-next-line no-inline-assembly
assembly {
let ptr := mload(0x40)
mstore(
ptr,
hex"3d_3d_3d_3d_36_3d_3d_37_60_3d_60_35_36_39_36_60_3d_01_3d_73_00_00_00_00_00_00_00_00_00_00_00_00"
)
mstore(add(ptr, 0x14), shl(0x60, implementation))
mstore(
add(ptr, 0x28),
hex"5a_f4_3d_3d_93_80_3e_60_33_57_fd_5b_f3_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00"
)
mstore(add(ptr, 0x35), shl(0x60, factory))
// compare expected bytecode with that of the queried contract
let other := add(ptr, 0x49)
extcodecopy(query, other, 0, 0x49)
result := and(
eq(mload(ptr), mload(other)),
and(
eq(mload(add(ptr, 0x20)), mload(add(other, 0x20))),
eq(mload(add(ptr, 0x29)), mload(add(other, 0x29)))
)
)
}
}
/**
* @notice Checks if a contract is a clone of a LSSVMPairERC20.
* @dev Only checks the runtime bytecode, does not check the extra data.
* @param implementation the LSSVMPairERC20 implementation contract
* @param query the contract to check
* @return result True if the contract is a clone, false otherwise
*/
function isERC20PairClone(
address factory,
address implementation,
address query
) internal view returns (bool result) {
// solhint-disable-next-line no-inline-assembly
assembly {
let ptr := mload(0x40)
mstore(
ptr,
hex"3d_3d_3d_3d_36_3d_3d_37_60_51_60_35_36_39_36_60_51_01_3d_73_00_00_00_00_00_00_00_00_00_00_00_00"
)
mstore(add(ptr, 0x14), shl(0x60, implementation))
mstore(
add(ptr, 0x28),
hex"5a_f4_3d_3d_93_80_3e_60_33_57_fd_5b_f3_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00_00"
)
mstore(add(ptr, 0x35), shl(0x60, factory))
// compare expected bytecode with that of the queried contract
let other := add(ptr, 0x49)
extcodecopy(query, other, 0, 0x49)
result := and(
eq(mload(ptr), mload(other)),
and(
eq(mload(add(ptr, 0x20)), mload(add(other, 0x20))),
eq(mload(add(ptr, 0x29)), mload(add(other, 0x29)))
)
)
}
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {ICurve} from "./ICurve.sol";
import {CurveErrorCodes} from "./CurveErrorCodes.sol";
// import {FixedPointMathLib} from "solmate/src/utils/FixedPointMathLib.sol";
// original sudoswap code points to an old version of solmate in raricapital library (deprecated),
// later versions omit fpow and fmul, we use the new version with the functions added back in
import {FixedPointMathLib} from "../lib/FixedPointMathLib.sol";
/*
@author 0xmons and boredGenius
@notice Bonding curve logic for a linear curve, where each buy/sell changes spot price by adding/substracting delta
*/
contract LinearCurve is ICurve, CurveErrorCodes {
using FixedPointMathLib for uint256;
/**
@dev See {ICurve-validateDelta}
*/
function validateDelta(
uint128 /*delta*/
) external pure override returns (bool valid) {
// For a linear curve, all values of delta are valid
return true;
}
/**
@dev See {ICurve-validateSpotPrice}
*/
function validateSpotPrice(
uint128 /* newSpotPrice */
) external pure override returns (bool) {
// For a linear curve, all values of spot price are valid
return true;
}
/**
@dev See {ICurve-getBuyInfo}
*/
function getBuyInfo(
uint128 spotPrice,
uint128 delta,
uint256 numItems,
uint256 feeMultiplier,
uint256 protocolFeeMultiplier
)
external
pure
override
returns (
Error error,
uint128 newSpotPrice,
uint128 newDelta,
uint256 inputValue,
uint256 protocolFee
)
{
// We only calculate changes for buying 1 or more NFTs
if (numItems == 0) {
return (Error.INVALID_NUMITEMS, 0, 0, 0, 0);
}
// For a linear curve, the spot price increases by delta for each item bought
uint256 newSpotPrice_ = spotPrice + delta * numItems;
if (newSpotPrice_ > type(uint128).max) {
return (Error.SPOT_PRICE_OVERFLOW, 0, 0, 0, 0);
}
newSpotPrice = uint128(newSpotPrice_);
// Spot price is assumed to be the instant sell price. To avoid arbitraging LPs, we adjust the buy price upwards.
// If spot price for buy and sell were the same, then someone could buy 1 NFT and then sell for immediate profit.
// EX: Let S be spot price. Then buying 1 NFT costs S ETH, now new spot price is (S+delta).
// The same person could then sell for (S+delta) ETH, netting them delta ETH profit.
// If spot price for buy and sell differ by delta, then buying costs (S+delta) ETH.
// The new spot price would become (S+delta), so selling would also yield (S+delta) ETH.
uint256 buySpotPrice = spotPrice + delta;
// If we buy n items, then the total cost is equal to:
// (buy spot price) + (buy spot price + 1*delta) + (buy spot price + 2*delta) + ... + (buy spot price + (n-1)*delta)
// This is equal to n*(buy spot price) + (delta)*(n*(n-1))/2
// because we have n instances of buy spot price, and then we sum up from delta to (n-1)*delta
inputValue =
numItems *
buySpotPrice +
(numItems * (numItems - 1) * delta) /
2;
// Account for the protocol fee, a flat percentage of the buy amount
protocolFee = inputValue.fmul(
protocolFeeMultiplier,
FixedPointMathLib.WAD
);
// Account for the trade fee, only for Trade pools
inputValue += inputValue.fmul(feeMultiplier, FixedPointMathLib.WAD);
// Add the protocol fee to the required input amount
inputValue += protocolFee;
// Keep delta the same
newDelta = delta;
// If we got all the way here, no math error happened
error = Error.OK;
}
/**
@dev See {ICurve-getSellInfo}
*/
function getSellInfo(
uint128 spotPrice,
uint128 delta,
uint256 numItems,
uint256 feeMultiplier,
uint256 protocolFeeMultiplier
)
external
pure
override
returns (
Error error,
uint128 newSpotPrice,
uint128 newDelta,
uint256 outputValue,
uint256 protocolFee
)
{
// We only calculate changes for selling 1 or more NFTs
if (numItems == 0) {
return (Error.INVALID_NUMITEMS, 0, 0, 0, 0);
}
// We first calculate the change in spot price after selling all of the items
uint256 totalPriceDecrease = delta * numItems;
// If the current spot price is less than the total amount that the spot price should change by...
if (spotPrice < totalPriceDecrease) {
// Then we set the new spot price to be 0. (Spot price is never negative)
newSpotPrice = 0;
// We calculate how many items we can sell into the linear curve until the spot price reaches 0, rounding up
uint256 numItemsTillZeroPrice = spotPrice / delta + 1;
numItems = numItemsTillZeroPrice;
}
// Otherwise, the current spot price is greater than or equal to the total amount that the spot price changes
// Thus we don't need to calculate the maximum number of items until we reach zero spot price, so we don't modify numItems
else {
// The new spot price is just the change between spot price and the total price change
newSpotPrice = spotPrice - uint128(totalPriceDecrease);
}
// If we sell n items, then the total sale amount is:
// (spot price) + (spot price - 1*delta) + (spot price - 2*delta) + ... + (spot price - (n-1)*delta)
// This is equal to n*(spot price) - (delta)*(n*(n-1))/2
outputValue =
numItems *
spotPrice -
(numItems * (numItems - 1) * delta) /
2;
// Account for the protocol fee, a flat percentage of the sell amount
protocolFee = outputValue.fmul(
protocolFeeMultiplier,
FixedPointMathLib.WAD
);
// Account for the trade fee, only for Trade pools
outputValue -= outputValue.fmul(feeMultiplier, FixedPointMathLib.WAD);
// Subtract the protocol fee from the output amount to the seller
outputValue -= protocolFee;
// Keep delta the same
newDelta = delta;
// If we reached here, no math errors
error = Error.OK;
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {ICurve} from "./ICurve.sol";
import {CurveErrorCodes} from "./CurveErrorCodes.sol";
// import {FixedPointMathLib} from "solmate/src/utils/FixedPointMathLib.sol";
// original sudoswap code points to an old version of solmate in raricapital library (deprecated),
// later versions omit fpow and fmul, we use the new version with the functions added back in
import {FixedPointMathLib} from "../lib/FixedPointMathLib.sol";
/*
@author 0xmons and boredGenius
@notice Bonding curve logic for an exponential curve, where each buy/sell changes spot price by multiplying/dividing delta
*/
contract ExponentialCurve is ICurve, CurveErrorCodes {
using FixedPointMathLib for uint256;
// minimum price to prevent numerical issues
uint256 public constant MIN_PRICE = 1 gwei;
/**
@dev See {ICurve-validateDelta}
*/
function validateDelta(uint128 delta)
external
pure
override
returns (bool)
{
return delta > FixedPointMathLib.WAD;
}
/**
@dev See {ICurve-validateSpotPrice}
*/
function validateSpotPrice(uint128 newSpotPrice)
external
pure
override
returns (bool)
{
return newSpotPrice >= MIN_PRICE;
}
/**
@dev See {ICurve-getBuyInfo}
*/
function getBuyInfo(
uint128 spotPrice,
uint128 delta,
uint256 numItems,
uint256 feeMultiplier,
uint256 protocolFeeMultiplier
)
external
pure
override
returns (
Error error,
uint128 newSpotPrice,
uint128 newDelta,
uint256 inputValue,
uint256 protocolFee
)
{
// NOTE: we assume delta is > 1, as checked by validateDelta()
// We only calculate changes for buying 1 or more NFTs
if (numItems == 0) {
return (Error.INVALID_NUMITEMS, 0, 0, 0, 0);
}
uint256 deltaPowN = uint256(delta).fpow(
numItems,
FixedPointMathLib.WAD
);
// For an exponential curve, the spot price is multiplied by delta for each item bought
uint256 newSpotPrice_ = uint256(spotPrice).fmul(
deltaPowN,
FixedPointMathLib.WAD
);
if (newSpotPrice_ > type(uint128).max) {
return (Error.SPOT_PRICE_OVERFLOW, 0, 0, 0, 0);
}
newSpotPrice = uint128(newSpotPrice_);
// Spot price is assumed to be the instant sell price. To avoid arbitraging LPs, we adjust the buy price upwards.
// If spot price for buy and sell were the same, then someone could buy 1 NFT and then sell for immediate profit.
// EX: Let S be spot price. Then buying 1 NFT costs S ETH, now new spot price is (S * delta).
// The same person could then sell for (S * delta) ETH, netting them delta ETH profit.
// If spot price for buy and sell differ by delta, then buying costs (S * delta) ETH.
// The new spot price would become (S * delta), so selling would also yield (S * delta) ETH.
uint256 buySpotPrice = uint256(spotPrice).fmul(
delta,
FixedPointMathLib.WAD
);
// If the user buys n items, then the total cost is equal to:
// buySpotPrice + (delta * buySpotPrice) + (delta^2 * buySpotPrice) + ... (delta^(numItems - 1) * buySpotPrice)
// This is equal to buySpotPrice * (delta^n - 1) / (delta - 1)
inputValue = buySpotPrice.fmul(
(deltaPowN - FixedPointMathLib.WAD).fdiv(
delta - FixedPointMathLib.WAD,
FixedPointMathLib.WAD
),
FixedPointMathLib.WAD
);
// Account for the protocol fee, a flat percentage of the buy amount
protocolFee = inputValue.fmul(
protocolFeeMultiplier,
FixedPointMathLib.WAD
);
// Account for the trade fee, only for Trade pools
inputValue += inputValue.fmul(feeMultiplier, FixedPointMathLib.WAD);
// Add the protocol fee to the required input amount
inputValue += protocolFee;
// Keep delta the same
newDelta = delta;
// If we got all the way here, no math error happened
error = Error.OK;
}
/**
@dev See {ICurve-getSellInfo}
If newSpotPrice is less than MIN_PRICE, newSpotPrice is set to MIN_PRICE instead.
This is to prevent the spot price from ever becoming 0, which would decouple the price
from the bonding curve (since 0 * delta is still 0)
*/
function getSellInfo(
uint128 spotPrice,
uint128 delta,
uint256 numItems,
uint256 feeMultiplier,
uint256 protocolFeeMultiplier
)
external
pure
override
returns (
Error error,
uint128 newSpotPrice,
uint128 newDelta,
uint256 outputValue,
uint256 protocolFee
)
{
// NOTE: we assume delta is > 1, as checked by validateDelta()
// We only calculate changes for buying 1 or more NFTs
if (numItems == 0) {
return (Error.INVALID_NUMITEMS, 0, 0, 0, 0);
}
uint256 invDelta = FixedPointMathLib.WAD.fdiv(
delta,
FixedPointMathLib.WAD
);
uint256 invDeltaPowN = invDelta.fpow(numItems, FixedPointMathLib.WAD);
// For an exponential curve, the spot price is divided by delta for each item sold
// safe to convert newSpotPrice directly into uint128 since we know newSpotPrice <= spotPrice
// and spotPrice <= type(uint128).max
newSpotPrice = uint128(
uint256(spotPrice).fmul(invDeltaPowN, FixedPointMathLib.WAD)
);
if (newSpotPrice < MIN_PRICE) {
newSpotPrice = uint128(MIN_PRICE);
}
// If the user sells n items, then the total revenue is equal to:
// spotPrice + ((1 / delta) * spotPrice) + ((1 / delta)^2 * spotPrice) + ... ((1 / delta)^(numItems - 1) * spotPrice)
// This is equal to spotPrice * (1 - (1 / delta^n)) / (1 - (1 / delta))
outputValue = uint256(spotPrice).fmul(
(FixedPointMathLib.WAD - invDeltaPowN).fdiv(
FixedPointMathLib.WAD - invDelta,
FixedPointMathLib.WAD
),
FixedPointMathLib.WAD
);
// Account for the protocol fee, a flat percentage of the sell amount
protocolFee = outputValue.fmul(
protocolFeeMultiplier,
FixedPointMathLib.WAD
);
// Account for the trade fee, only for Trade pools
outputValue -= outputValue.fmul(feeMultiplier, FixedPointMathLib.WAD);
// Remove the protocol fee from the output amount
outputValue -= protocolFee;
// Keep delta the same
newDelta = delta;
// If we got all the way here, no math error happened
error = Error.OK;
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {Ownable} from "@openzeppelin/contracts/access/Ownable.sol";
import {IERC721} from "@openzeppelin/contracts/token/ERC721/IERC721.sol";
import {ERC165Checker} from "@openzeppelin/contracts/utils/introspection/ERC165Checker.sol";
import {IERC165} from "@openzeppelin/contracts/utils/introspection/IERC165.sol";
import {IERC721Enumerable} from "@openzeppelin/contracts/token/ERC721/extensions/IERC721Enumerable.sol";
// @dev Solmate's ERC20 is used instead of OZ's ERC20 so we can use safeTransferLib for cheaper safeTransfers for
// ETH and ERC20 tokens
import {ERC20} from "solmate/src/tokens/ERC20.sol";
import {SafeTransferLib} from "solmate/src/utils/SafeTransferLib.sol";
import {LSSVMPair} from "./LSSVMPair.sol";
import {LSSVMRouter} from "./LSSVMRouter.sol";
import {LSSVMPairETH} from "./LSSVMPairETH.sol";
import {ICurve} from "./bonding-curves/ICurve.sol";
import {LSSVMPairERC20} from "./LSSVMPairERC20.sol";
import {LSSVMPairCloner} from "./lib/LSSVMPairCloner.sol";
import {ILSSVMPairFactoryLike} from "./ILSSVMPairFactoryLike.sol";
import {LSSVMPairEnumerableETH} from "./LSSVMPairEnumerableETH.sol";
import {LSSVMPairEnumerableERC20} from "./LSSVMPairEnumerableERC20.sol";
import {LSSVMPairMissingEnumerableETH} from "./LSSVMPairMissingEnumerableETH.sol";
import {LSSVMPairMissingEnumerableERC20} from "./LSSVMPairMissingEnumerableERC20.sol";
contract LSSVMPairFactory is Ownable, ILSSVMPairFactoryLike {
using LSSVMPairCloner for address;
using SafeTransferLib for address payable;
using SafeTransferLib for ERC20;
bytes4 private constant INTERFACE_ID_ERC721_ENUMERABLE =
type(IERC721Enumerable).interfaceId;
uint256 internal constant MAX_PROTOCOL_FEE = 0.10e18; // 10%, must <= 1 - MAX_FEE
LSSVMPairEnumerableETH public immutable enumerableETHTemplate;
LSSVMPairMissingEnumerableETH public immutable missingEnumerableETHTemplate;
LSSVMPairEnumerableERC20 public immutable enumerableERC20Template;
LSSVMPairMissingEnumerableERC20
public immutable missingEnumerableERC20Template;
address payable public override protocolFeeRecipient;
// Units are in base 1e18
uint256 public override protocolFeeMultiplier;
mapping(ICurve => bool) public bondingCurveAllowed;
mapping(address => bool) public override callAllowed;
struct RouterStatus {
bool allowed;
bool wasEverAllowed;
}
mapping(LSSVMRouter => RouterStatus) public override routerStatus;
event NewPair(address poolAddress);
event TokenDeposit(address poolAddress);
event NFTDeposit(address poolAddress);
event ProtocolFeeRecipientUpdate(address recipientAddress);
event ProtocolFeeMultiplierUpdate(uint256 newMultiplier);
event BondingCurveStatusUpdate(ICurve bondingCurve, bool isAllowed);
event CallTargetStatusUpdate(address target, bool isAllowed);
event RouterStatusUpdate(LSSVMRouter router, bool isAllowed);
constructor(
LSSVMPairEnumerableETH _enumerableETHTemplate,
LSSVMPairMissingEnumerableETH _missingEnumerableETHTemplate,
LSSVMPairEnumerableERC20 _enumerableERC20Template,
LSSVMPairMissingEnumerableERC20 _missingEnumerableERC20Template,
address payable _protocolFeeRecipient,
uint256 _protocolFeeMultiplier
) {
enumerableETHTemplate = _enumerableETHTemplate;
missingEnumerableETHTemplate = _missingEnumerableETHTemplate;
enumerableERC20Template = _enumerableERC20Template;
missingEnumerableERC20Template = _missingEnumerableERC20Template;
protocolFeeRecipient = _protocolFeeRecipient;
require(_protocolFeeMultiplier <= MAX_PROTOCOL_FEE, "Fee too large");
protocolFeeMultiplier = _protocolFeeMultiplier;
}
/**
* External functions
*/
/**
@notice Creates a pair contract using EIP-1167.
@param _nft The NFT contract of the collection the pair trades
@param _bondingCurve The bonding curve for the pair to price NFTs, must be whitelisted
@param _assetRecipient The address that will receive the assets traders give during trades.
If set to address(0), assets will be sent to the pool address.
Not available to TRADE pools.
@param _poolType TOKEN, NFT, or TRADE
@param _delta The delta value used by the bonding curve. The meaning of delta depends
on the specific curve.
@param _fee The fee taken by the LP in each trade. Can only be non-zero if _poolType is Trade.
@param _spotPrice The initial selling spot price
@param _initialNFTIDs The list of IDs of NFTs to transfer from the sender to the pair
@return pair The new pair
*/
function createPairETH(
IERC721 _nft,
ICurve _bondingCurve,
address payable _assetRecipient,
LSSVMPair.PoolType _poolType,
uint128 _delta,
uint96 _fee,
uint128 _spotPrice,
uint256[] calldata _initialNFTIDs
) external payable returns (LSSVMPairETH pair) {
require(
bondingCurveAllowed[_bondingCurve],
"Bonding curve not whitelisted"
);
// Check to see if the NFT supports Enumerable to determine which template to use
address template;
try IERC165(address(_nft)).supportsInterface(INTERFACE_ID_ERC721_ENUMERABLE) returns (bool isEnumerable) {
template = isEnumerable ? address(enumerableETHTemplate)
: address(missingEnumerableETHTemplate);
} catch {
template = address(missingEnumerableETHTemplate);
}
pair = LSSVMPairETH(
payable(
template.cloneETHPair(
this,
_bondingCurve,
_nft,
uint8(_poolType)
)
)
);
_initializePairETH(
pair,
_nft,
_assetRecipient,
_delta,
_fee,
_spotPrice,
_initialNFTIDs
);
emit NewPair(address(pair));
}
/**
@notice Creates a pair contract using EIP-1167.
@param _nft The NFT contract of the collection the pair trades
@param _bondingCurve The bonding curve for the pair to price NFTs, must be whitelisted
@param _assetRecipient The address that will receive the assets traders give during trades.
If set to address(0), assets will be sent to the pool address.
Not available to TRADE pools.
@param _poolType TOKEN, NFT, or TRADE
@param _delta The delta value used by the bonding curve. The meaning of delta depends
on the specific curve.
@param _fee The fee taken by the LP in each trade. Can only be non-zero if _poolType is Trade.
@param _spotPrice The initial selling spot price, in ETH
@param _initialNFTIDs The list of IDs of NFTs to transfer from the sender to the pair
@param _initialTokenBalance The initial token balance sent from the sender to the new pair
@return pair The new pair
*/
struct CreateERC20PairParams {
ERC20 token;
IERC721 nft;
ICurve bondingCurve;
address payable assetRecipient;
LSSVMPair.PoolType poolType;
uint128 delta;
uint96 fee;
uint128 spotPrice;
uint256[] initialNFTIDs;
uint256 initialTokenBalance;
}
function createPairERC20(CreateERC20PairParams calldata params)
external
returns (LSSVMPairERC20 pair)
{
require(
bondingCurveAllowed[params.bondingCurve],
"Bonding curve not whitelisted"
);
// Check to see if the NFT supports Enumerable to determine which template to use
address template;
try IERC165(address(params.nft)).supportsInterface(INTERFACE_ID_ERC721_ENUMERABLE) returns (bool isEnumerable) {
template = isEnumerable ? address(enumerableERC20Template)
: address(missingEnumerableERC20Template);
} catch {
template = address(missingEnumerableERC20Template);
}
pair = LSSVMPairERC20(
payable(
template.cloneERC20Pair(
this,
params.bondingCurve,
params.nft,
uint8(params.poolType),
params.token
)
)
);
_initializePairERC20(
pair,
params.token,
params.nft,
params.assetRecipient,
params.delta,
params.fee,
params.spotPrice,
params.initialNFTIDs,
params.initialTokenBalance
);
emit NewPair(address(pair));
}
/**
@notice Checks if an address is a LSSVMPair. Uses the fact that the pairs are EIP-1167 minimal proxies.
@param potentialPair The address to check
@param variant The pair variant (NFT is enumerable or not, pair uses ETH or ERC20)
@return True if the address is the specified pair variant, false otherwise
*/
function isPair(address potentialPair, PairVariant variant)
public
view
override
returns (bool)
{
if (variant == PairVariant.ENUMERABLE_ERC20) {
return
LSSVMPairCloner.isERC20PairClone(
address(this),
address(enumerableERC20Template),
potentialPair
);
} else if (variant == PairVariant.MISSING_ENUMERABLE_ERC20) {
return
LSSVMPairCloner.isERC20PairClone(
address(this),
address(missingEnumerableERC20Template),
potentialPair
);
} else if (variant == PairVariant.ENUMERABLE_ETH) {
return
LSSVMPairCloner.isETHPairClone(
address(this),
address(enumerableETHTemplate),
potentialPair
);
} else if (variant == PairVariant.MISSING_ENUMERABLE_ETH) {
return
LSSVMPairCloner.isETHPairClone(
address(this),
address(missingEnumerableETHTemplate),
potentialPair
);
} else {
// invalid input
return false;
}
}
/**
@notice Allows receiving ETH in order to receive protocol fees
*/
receive() external payable {}
/**
* Admin functions
*/
/**
@notice Withdraws the ETH balance to the protocol fee recipient.
Only callable by the owner.
*/
function withdrawETHProtocolFees() external onlyOwner {
protocolFeeRecipient.safeTransferETH(address(this).balance);
}
/**
@notice Withdraws ERC20 tokens to the protocol fee recipient. Only callable by the owner.
@param token The token to transfer
@param amount The amount of tokens to transfer
*/
function withdrawERC20ProtocolFees(ERC20 token, uint256 amount)
external
onlyOwner
{
token.safeTransfer(protocolFeeRecipient, amount);
}
/**
@notice Changes the protocol fee recipient address. Only callable by the owner.
@param _protocolFeeRecipient The new fee recipient
*/
function changeProtocolFeeRecipient(address payable _protocolFeeRecipient)
external
onlyOwner
{
require(_protocolFeeRecipient != address(0), "0 address");
protocolFeeRecipient = _protocolFeeRecipient;
emit ProtocolFeeRecipientUpdate(_protocolFeeRecipient);
}
/**
@notice Changes the protocol fee multiplier. Only callable by the owner.
@param _protocolFeeMultiplier The new fee multiplier, 18 decimals
*/
function changeProtocolFeeMultiplier(uint256 _protocolFeeMultiplier)
external
onlyOwner
{
require(_protocolFeeMultiplier <= MAX_PROTOCOL_FEE, "Fee too large");
protocolFeeMultiplier = _protocolFeeMultiplier;
emit ProtocolFeeMultiplierUpdate(_protocolFeeMultiplier);
}
/**
@notice Sets the whitelist status of a bonding curve contract. Only callable by the owner.
@param bondingCurve The bonding curve contract
@param isAllowed True to whitelist, false to remove from whitelist
*/
function setBondingCurveAllowed(ICurve bondingCurve, bool isAllowed)
external
onlyOwner
{
bondingCurveAllowed[bondingCurve] = isAllowed;
emit BondingCurveStatusUpdate(bondingCurve, isAllowed);
}
/**
@notice Sets the whitelist status of a contract to be called arbitrarily by a pair.
Only callable by the owner.
@param target The target contract
@param isAllowed True to whitelist, false to remove from whitelist
*/
function setCallAllowed(address payable target, bool isAllowed)
external
onlyOwner
{
// ensure target is not / was not ever a router
if (isAllowed) {
require(
!routerStatus[LSSVMRouter(target)].wasEverAllowed,
"Can't call router"
);
}
callAllowed[target] = isAllowed;
emit CallTargetStatusUpdate(target, isAllowed);
}
/**
@notice Updates the router whitelist. Only callable by the owner.
@param _router The router
@param isAllowed True to whitelist, false to remove from whitelist
*/
function setRouterAllowed(LSSVMRouter _router, bool isAllowed)
external
onlyOwner
{
// ensure target is not arbitrarily callable by pairs
if (isAllowed) {
require(!callAllowed[address(_router)], "Can't call router");
}
routerStatus[_router] = RouterStatus({
allowed: isAllowed,
wasEverAllowed: true
});
emit RouterStatusUpdate(_router, isAllowed);
}
/**
* Internal functions
*/
function _initializePairETH(
LSSVMPairETH _pair,
IERC721 _nft,
address payable _assetRecipient,
uint128 _delta,
uint96 _fee,
uint128 _spotPrice,
uint256[] calldata _initialNFTIDs
) internal {
// initialize pair
_pair.initialize(msg.sender, _assetRecipient, _delta, _fee, _spotPrice);
// transfer initial ETH to pair
payable(address(_pair)).safeTransferETH(msg.value);
// transfer initial NFTs from sender to pair
uint256 numNFTs = _initialNFTIDs.length;
for (uint256 i; i < numNFTs; ) {
_nft.safeTransferFrom(
msg.sender,
address(_pair),
_initialNFTIDs[i]
);
unchecked {
++i;
}
}
}
function _initializePairERC20(
LSSVMPairERC20 _pair,
ERC20 _token,
IERC721 _nft,
address payable _assetRecipient,
uint128 _delta,
uint96 _fee,
uint128 _spotPrice,
uint256[] calldata _initialNFTIDs,
uint256 _initialTokenBalance
) internal {
// initialize pair
_pair.initialize(msg.sender, _assetRecipient, _delta, _fee, _spotPrice);
// transfer initial tokens to pair
_token.safeTransferFrom(
msg.sender,
address(_pair),
_initialTokenBalance
);
// transfer initial NFTs from sender to pair
uint256 numNFTs = _initialNFTIDs.length;
for (uint256 i; i < numNFTs; ) {
_nft.safeTransferFrom(
msg.sender,
address(_pair),
_initialNFTIDs[i]
);
unchecked {
++i;
}
}
}
/**
@dev Used to deposit NFTs into a pair after creation and emit an event for indexing (if recipient is indeed a pair)
*/
function depositNFTs(
IERC721 _nft,
uint256[] calldata ids,
address recipient
) external {
// transfer NFTs from caller to recipient
uint256 numNFTs = ids.length;
for (uint256 i; i < numNFTs; ) {
_nft.safeTransferFrom(msg.sender, recipient, ids[i]);
unchecked {
++i;
}
}
if (
isPair(recipient, PairVariant.ENUMERABLE_ERC20) ||
isPair(recipient, PairVariant.ENUMERABLE_ETH) ||
isPair(recipient, PairVariant.MISSING_ENUMERABLE_ERC20) ||
isPair(recipient, PairVariant.MISSING_ENUMERABLE_ETH)
) {
emit NFTDeposit(recipient);
}
}
/**
@dev Used to deposit ERC20s into a pair after creation and emit an event for indexing (if recipient is indeed an ERC20 pair and the token matches)
*/
function depositERC20(
ERC20 token,
address recipient,
uint256 amount
) external {
token.safeTransferFrom(msg.sender, recipient, amount);
if (
isPair(recipient, PairVariant.ENUMERABLE_ERC20) ||
isPair(recipient, PairVariant.MISSING_ENUMERABLE_ERC20)
) {
if (token == LSSVMPairERC20(recipient).token()) {
emit TokenDeposit(recipient);
}
}
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {SafeTransferLib} from "solmate/src/utils/SafeTransferLib.sol";
import {ERC20} from "solmate/src/tokens/ERC20.sol";
import {IERC721} from "@openzeppelin/contracts/token/ERC721/IERC721.sol";
import {LSSVMPair} from "./LSSVMPair.sol";
import {ILSSVMPairFactoryLike} from "./ILSSVMPairFactoryLike.sol";
import {LSSVMRouter} from "./LSSVMRouter.sol";
import {ICurve} from "./bonding-curves/ICurve.sol";
import {CurveErrorCodes} from "./bonding-curves/CurveErrorCodes.sol";
/**
@title An NFT/Token pair where the token is an ERC20
@author boredGenius and 0xmons
*/
abstract contract LSSVMPairERC20 is LSSVMPair {
using SafeTransferLib for ERC20;
uint256 internal constant IMMUTABLE_PARAMS_LENGTH = 81;
/**
@notice Returns the ERC20 token associated with the pair
@dev See LSSVMPairCloner for an explanation on how this works
*/
function token() public pure returns (ERC20 _token) {
uint256 paramsLength = _immutableParamsLength();
assembly {
_token := shr(
0x60,
calldataload(add(sub(calldatasize(), paramsLength), 61))
)
}
}
/// @inheritdoc LSSVMPair
function _pullTokenInputAndPayProtocolFee(
uint256 inputAmount,
bool isRouter,
address routerCaller,
ILSSVMPairFactoryLike _factory,
uint256 protocolFee
) internal override {
require(msg.value == 0, "ERC20 pair");
ERC20 _token = token();
address _assetRecipient = getAssetRecipient();
if (isRouter) {
// Verify if router is allowed
LSSVMRouter router = LSSVMRouter(payable(msg.sender));
// Locally scoped to avoid stack too deep
{
(bool routerAllowed, ) = _factory.routerStatus(router);
require(routerAllowed, "Not router");
}
// Cache state and then call router to transfer tokens from user
uint256 beforeBalance = _token.balanceOf(_assetRecipient);
router.pairTransferERC20From(
_token,
routerCaller,
_assetRecipient,
inputAmount - protocolFee,
pairVariant()
);
// Verify token transfer (protect pair against malicious router)
require(
_token.balanceOf(_assetRecipient) - beforeBalance ==
inputAmount - protocolFee,
"ERC20 not transferred in"
);
router.pairTransferERC20From(
_token,
routerCaller,
address(_factory),
protocolFee,
pairVariant()
);
// Note: no check for factory balance's because router is assumed to be set by factory owner
// so there is no incentive to *not* pay protocol fee
} else {
// Transfer tokens directly
_token.safeTransferFrom(
msg.sender,
_assetRecipient,
inputAmount - protocolFee
);
// Take protocol fee (if it exists)
if (protocolFee > 0) {
_token.safeTransferFrom(
msg.sender,
address(_factory),
protocolFee
);
}
}
}
/// @inheritdoc LSSVMPair
function _refundTokenToSender(uint256 inputAmount) internal override {
// Do nothing since we transferred the exact input amount
}
/// @inheritdoc LSSVMPair
function _payProtocolFeeFromPair(
ILSSVMPairFactoryLike _factory,
uint256 protocolFee
) internal override {
// Take protocol fee (if it exists)
if (protocolFee > 0) {
ERC20 _token = token();
// Round down to the actual token balance if there are numerical stability issues with the bonding curve calculations
uint256 pairTokenBalance = _token.balanceOf(address(this));
if (protocolFee > pairTokenBalance) {
protocolFee = pairTokenBalance;
}
if (protocolFee > 0) {
_token.safeTransfer(address(_factory), protocolFee);
}
}
}
/// @inheritdoc LSSVMPair
function _sendTokenOutput(
address payable tokenRecipient,
uint256 outputAmount
) internal override {
// Send tokens to caller
if (outputAmount > 0) {
token().safeTransfer(tokenRecipient, outputAmount);
}
}
/// @inheritdoc LSSVMPair
// @dev see LSSVMPairCloner for params length calculation
function _immutableParamsLength() internal pure override returns (uint256) {
return IMMUTABLE_PARAMS_LENGTH;
}
/// @inheritdoc LSSVMPair
function withdrawERC20(ERC20 a, uint256 amount)
external
override
onlyOwner
{
a.safeTransfer(msg.sender, amount);
if (a == token()) {
// emit event since it is the pair token
emit TokenWithdrawal(amount);
}
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {LSSVMPairETH} from "./LSSVMPairETH.sol";
import {LSSVMPairEnumerable} from "./LSSVMPairEnumerable.sol";
import {ILSSVMPairFactoryLike} from "./ILSSVMPairFactoryLike.sol";
/**
@title An NFT/Token pair where the NFT implements ERC721Enumerable, and the token is ETH
@author boredGenius and 0xmons
*/
contract LSSVMPairEnumerableETH is LSSVMPairEnumerable, LSSVMPairETH {
/**
@notice Returns the LSSVMPair type
*/
function pairVariant()
public
pure
override
returns (ILSSVMPairFactoryLike.PairVariant)
{
return ILSSVMPairFactoryLike.PairVariant.ENUMERABLE_ETH;
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {LSSVMPairERC20} from "./LSSVMPairERC20.sol";
import {LSSVMPairEnumerable} from "./LSSVMPairEnumerable.sol";
import {ILSSVMPairFactoryLike} from "./ILSSVMPairFactoryLike.sol";
/**
@title An NFT/Token pair where the NFT implements ERC721Enumerable, and the token is an ERC20
@author boredGenius and 0xmons
*/
contract LSSVMPairEnumerableERC20 is LSSVMPairEnumerable, LSSVMPairERC20 {
/**
@notice Returns the LSSVMPair type
*/
function pairVariant()
public
pure
override
returns (ILSSVMPairFactoryLike.PairVariant)
{
return ILSSVMPairFactoryLike.PairVariant.ENUMERABLE_ERC20;
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {LSSVMPairERC20} from "./LSSVMPairERC20.sol";
import {LSSVMPairMissingEnumerable} from "./LSSVMPairMissingEnumerable.sol";
import {ILSSVMPairFactoryLike} from "./ILSSVMPairFactoryLike.sol";
contract LSSVMPairMissingEnumerableERC20 is
LSSVMPairMissingEnumerable,
LSSVMPairERC20
{
function pairVariant()
public
pure
override
returns (ILSSVMPairFactoryLike.PairVariant)
{
return ILSSVMPairFactoryLike.PairVariant.MISSING_ENUMERABLE_ERC20;
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {IERC721Enumerable} from "@openzeppelin/contracts/token/ERC721/extensions/IERC721Enumerable.sol";
import {IERC721} from "@openzeppelin/contracts/token/ERC721/IERC721.sol";
import {LSSVMRouter} from "./LSSVMRouter.sol";
import {LSSVMPair} from "./LSSVMPair.sol";
import {ILSSVMPairFactoryLike} from "./ILSSVMPairFactoryLike.sol";
/**
@title An NFT/Token pair for an NFT that implements ERC721Enumerable
@author boredGenius and 0xmons
*/
abstract contract LSSVMPairEnumerable is LSSVMPair {
/// @inheritdoc LSSVMPair
function _sendAnyNFTsToRecipient(
IERC721 _nft,
address nftRecipient,
uint256 numNFTs
) internal override {
// Send NFTs to recipient
// (we know NFT implements IERC721Enumerable so we just iterate)
uint256 lastIndex = _nft.balanceOf(address(this)) - 1;
for (uint256 i = 0; i < numNFTs; ) {
uint256 nftId = IERC721Enumerable(address(_nft))
.tokenOfOwnerByIndex(address(this), lastIndex);
_nft.safeTransferFrom(address(this), nftRecipient, nftId);
unchecked {
--lastIndex;
++i;
}
}
}
/// @inheritdoc LSSVMPair
function _sendSpecificNFTsToRecipient(
IERC721 _nft,
address nftRecipient,
uint256[] calldata nftIds
) internal override {
// Send NFTs to recipient
uint256 numNFTs = nftIds.length;
for (uint256 i; i < numNFTs; ) {
_nft.safeTransferFrom(address(this), nftRecipient, nftIds[i]);
unchecked {
++i;
}
}
}
/// @inheritdoc LSSVMPair
function getAllHeldIds() external view override returns (uint256[] memory) {
IERC721 _nft = nft();
uint256 numNFTs = _nft.balanceOf(address(this));
uint256[] memory ids = new uint256[](numNFTs);
for (uint256 i; i < numNFTs; ) {
ids[i] = IERC721Enumerable(address(_nft)).tokenOfOwnerByIndex(
address(this),
i
);
unchecked {
++i;
}
}
return ids;
}
function onERC721Received(
address,
address,
uint256,
bytes memory
) public virtual returns (bytes4) {
return this.onERC721Received.selector;
}
/// @inheritdoc LSSVMPair
function withdrawERC721(IERC721 a, uint256[] calldata nftIds)
external
override
onlyOwner
{
uint256 numNFTs = nftIds.length;
for (uint256 i; i < numNFTs; ) {
a.safeTransferFrom(address(this), msg.sender, nftIds[i]);
unchecked {
++i;
}
}
emit NFTWithdrawal();
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (token/ERC1155/extensions/IERC1155MetadataURI.sol)
pragma solidity ^0.8.0;
import "../IERC1155.sol";
/**
* @dev Interface of the optional ERC1155MetadataExtension interface, as defined
* in the https://eips.ethereum.org/EIPS/eip-1155#metadata-extensions[EIP].
*
* _Available since v3.1._
*/
interface IERC1155MetadataURI is IERC1155 {
/**
* @dev Returns the URI for token type `id`.
*
* If the `\{id\}` substring is present in the URI, it must be replaced by
* clients with the actual token type ID.
*/
function uri(uint256 id) external view returns (string memory);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (token/ERC1155/ERC1155.sol)
pragma solidity ^0.8.0;
import "./IERC1155.sol";
import "./IERC1155Receiver.sol";
import "./extensions/IERC1155MetadataURI.sol";
import "../../utils/Address.sol";
import "../../utils/Context.sol";
import "../../utils/introspection/ERC165.sol";
/**
* @dev Implementation of the basic standard multi-token.
* See https://eips.ethereum.org/EIPS/eip-1155
* Originally based on code by Enjin: https://github.com/enjin/erc-1155
*
* _Available since v3.1._
*/
contract ERC1155 is Context, ERC165, IERC1155, IERC1155MetadataURI {
using Address for address;
// Mapping from token ID to account balances
mapping(uint256 => mapping(address => uint256)) private _balances;
// Mapping from account to operator approvals
mapping(address => mapping(address => bool)) private _operatorApprovals;
// Used as the URI for all token types by relying on ID substitution, e.g. https://token-cdn-domain/{id}.json
string private _uri;
/**
* @dev See {_setURI}.
*/
constructor(string memory uri_) {
_setURI(uri_);
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override(ERC165, IERC165) returns (bool) {
return
interfaceId == type(IERC1155).interfaceId ||
interfaceId == type(IERC1155MetadataURI).interfaceId ||
super.supportsInterface(interfaceId);
}
/**
* @dev See {IERC1155MetadataURI-uri}.
*
* This implementation returns the same URI for *all* token types. It relies
* on the token type ID substitution mechanism
* https://eips.ethereum.org/EIPS/eip-1155#metadata[defined in the EIP].
*
* Clients calling this function must replace the `\{id\}` substring with the
* actual token type ID.
*/
function uri(uint256) public view virtual override returns (string memory) {
return _uri;
}
/**
* @dev See {IERC1155-balanceOf}.
*
* Requirements:
*
* - `account` cannot be the zero address.
*/
function balanceOf(address account, uint256 id) public view virtual override returns (uint256) {
require(account != address(0), "ERC1155: address zero is not a valid owner");
return _balances[id][account];
}
/**
* @dev See {IERC1155-balanceOfBatch}.
*
* Requirements:
*
* - `accounts` and `ids` must have the same length.
*/
function balanceOfBatch(address[] memory accounts, uint256[] memory ids)
public
view
virtual
override
returns (uint256[] memory)
{
require(accounts.length == ids.length, "ERC1155: accounts and ids length mismatch");
uint256[] memory batchBalances = new uint256[](accounts.length);
for (uint256 i = 0; i < accounts.length; ++i) {
batchBalances[i] = balanceOf(accounts[i], ids[i]);
}
return batchBalances;
}
/**
* @dev See {IERC1155-setApprovalForAll}.
*/
function setApprovalForAll(address operator, bool approved) public virtual override {
_setApprovalForAll(_msgSender(), operator, approved);
}
/**
* @dev See {IERC1155-isApprovedForAll}.
*/
function isApprovedForAll(address account, address operator) public view virtual override returns (bool) {
return _operatorApprovals[account][operator];
}
/**
* @dev See {IERC1155-safeTransferFrom}.
*/
function safeTransferFrom(
address from,
address to,
uint256 id,
uint256 amount,
bytes memory data
) public virtual override {
require(
from == _msgSender() || isApprovedForAll(from, _msgSender()),
"ERC1155: caller is not token owner nor approved"
);
_safeTransferFrom(from, to, id, amount, data);
}
/**
* @dev See {IERC1155-safeBatchTransferFrom}.
*/
function safeBatchTransferFrom(
address from,
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) public virtual override {
require(
from == _msgSender() || isApprovedForAll(from, _msgSender()),
"ERC1155: caller is not token owner nor approved"
);
_safeBatchTransferFrom(from, to, ids, amounts, data);
}
/**
* @dev Transfers `amount` tokens of token type `id` from `from` to `to`.
*
* Emits a {TransferSingle} event.
*
* Requirements:
*
* - `to` cannot be the zero address.
* - `from` must have a balance of tokens of type `id` of at least `amount`.
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155Received} and return the
* acceptance magic value.
*/
function _safeTransferFrom(
address from,
address to,
uint256 id,
uint256 amount,
bytes memory data
) internal virtual {
require(to != address(0), "ERC1155: transfer to the zero address");
address operator = _msgSender();
uint256[] memory ids = _asSingletonArray(id);
uint256[] memory amounts = _asSingletonArray(amount);
_beforeTokenTransfer(operator, from, to, ids, amounts, data);
uint256 fromBalance = _balances[id][from];
require(fromBalance >= amount, "ERC1155: insufficient balance for transfer");
unchecked {
_balances[id][from] = fromBalance - amount;
}
_balances[id][to] += amount;
emit TransferSingle(operator, from, to, id, amount);
_afterTokenTransfer(operator, from, to, ids, amounts, data);
_doSafeTransferAcceptanceCheck(operator, from, to, id, amount, data);
}
/**
* @dev xref:ROOT:erc1155.adoc#batch-operations[Batched] version of {_safeTransferFrom}.
*
* Emits a {TransferBatch} event.
*
* Requirements:
*
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155BatchReceived} and return the
* acceptance magic value.
*/
function _safeBatchTransferFrom(
address from,
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) internal virtual {
require(ids.length == amounts.length, "ERC1155: ids and amounts length mismatch");
require(to != address(0), "ERC1155: transfer to the zero address");
address operator = _msgSender();
_beforeTokenTransfer(operator, from, to, ids, amounts, data);
for (uint256 i = 0; i < ids.length; ++i) {
uint256 id = ids[i];
uint256 amount = amounts[i];
uint256 fromBalance = _balances[id][from];
require(fromBalance >= amount, "ERC1155: insufficient balance for transfer");
unchecked {
_balances[id][from] = fromBalance - amount;
}
_balances[id][to] += amount;
}
emit TransferBatch(operator, from, to, ids, amounts);
_afterTokenTransfer(operator, from, to, ids, amounts, data);
_doSafeBatchTransferAcceptanceCheck(operator, from, to, ids, amounts, data);
}
/**
* @dev Sets a new URI for all token types, by relying on the token type ID
* substitution mechanism
* https://eips.ethereum.org/EIPS/eip-1155#metadata[defined in the EIP].
*
* By this mechanism, any occurrence of the `\{id\}` substring in either the
* URI or any of the amounts in the JSON file at said URI will be replaced by
* clients with the token type ID.
*
* For example, the `https://token-cdn-domain/\{id\}.json` URI would be
* interpreted by clients as
* `https://token-cdn-domain/000000000000000000000000000000000000000000000000000000000004cce0.json`
* for token type ID 0x4cce0.
*
* See {uri}.
*
* Because these URIs cannot be meaningfully represented by the {URI} event,
* this function emits no events.
*/
function _setURI(string memory newuri) internal virtual {
_uri = newuri;
}
/**
* @dev Creates `amount` tokens of token type `id`, and assigns them to `to`.
*
* Emits a {TransferSingle} event.
*
* Requirements:
*
* - `to` cannot be the zero address.
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155Received} and return the
* acceptance magic value.
*/
function _mint(
address to,
uint256 id,
uint256 amount,
bytes memory data
) internal virtual {
require(to != address(0), "ERC1155: mint to the zero address");
address operator = _msgSender();
uint256[] memory ids = _asSingletonArray(id);
uint256[] memory amounts = _asSingletonArray(amount);
_beforeTokenTransfer(operator, address(0), to, ids, amounts, data);
_balances[id][to] += amount;
emit TransferSingle(operator, address(0), to, id, amount);
_afterTokenTransfer(operator, address(0), to, ids, amounts, data);
_doSafeTransferAcceptanceCheck(operator, address(0), to, id, amount, data);
}
/**
* @dev xref:ROOT:erc1155.adoc#batch-operations[Batched] version of {_mint}.
*
* Emits a {TransferBatch} event.
*
* Requirements:
*
* - `ids` and `amounts` must have the same length.
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155BatchReceived} and return the
* acceptance magic value.
*/
function _mintBatch(
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) internal virtual {
require(to != address(0), "ERC1155: mint to the zero address");
require(ids.length == amounts.length, "ERC1155: ids and amounts length mismatch");
address operator = _msgSender();
_beforeTokenTransfer(operator, address(0), to, ids, amounts, data);
for (uint256 i = 0; i < ids.length; i++) {
_balances[ids[i]][to] += amounts[i];
}
emit TransferBatch(operator, address(0), to, ids, amounts);
_afterTokenTransfer(operator, address(0), to, ids, amounts, data);
_doSafeBatchTransferAcceptanceCheck(operator, address(0), to, ids, amounts, data);
}
/**
* @dev Destroys `amount` tokens of token type `id` from `from`
*
* Emits a {TransferSingle} event.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `from` must have at least `amount` tokens of token type `id`.
*/
function _burn(
address from,
uint256 id,
uint256 amount
) internal virtual {
require(from != address(0), "ERC1155: burn from the zero address");
address operator = _msgSender();
uint256[] memory ids = _asSingletonArray(id);
uint256[] memory amounts = _asSingletonArray(amount);
_beforeTokenTransfer(operator, from, address(0), ids, amounts, "");
uint256 fromBalance = _balances[id][from];
require(fromBalance >= amount, "ERC1155: burn amount exceeds balance");
unchecked {
_balances[id][from] = fromBalance - amount;
}
emit TransferSingle(operator, from, address(0), id, amount);
_afterTokenTransfer(operator, from, address(0), ids, amounts, "");
}
/**
* @dev xref:ROOT:erc1155.adoc#batch-operations[Batched] version of {_burn}.
*
* Emits a {TransferBatch} event.
*
* Requirements:
*
* - `ids` and `amounts` must have the same length.
*/
function _burnBatch(
address from,
uint256[] memory ids,
uint256[] memory amounts
) internal virtual {
require(from != address(0), "ERC1155: burn from the zero address");
require(ids.length == amounts.length, "ERC1155: ids and amounts length mismatch");
address operator = _msgSender();
_beforeTokenTransfer(operator, from, address(0), ids, amounts, "");
for (uint256 i = 0; i < ids.length; i++) {
uint256 id = ids[i];
uint256 amount = amounts[i];
uint256 fromBalance = _balances[id][from];
require(fromBalance >= amount, "ERC1155: burn amount exceeds balance");
unchecked {
_balances[id][from] = fromBalance - amount;
}
}
emit TransferBatch(operator, from, address(0), ids, amounts);
_afterTokenTransfer(operator, from, address(0), ids, amounts, "");
}
/**
* @dev Approve `operator` to operate on all of `owner` tokens
*
* Emits an {ApprovalForAll} event.
*/
function _setApprovalForAll(
address owner,
address operator,
bool approved
) internal virtual {
require(owner != operator, "ERC1155: setting approval status for self");
_operatorApprovals[owner][operator] = approved;
emit ApprovalForAll(owner, operator, approved);
}
/**
* @dev Hook that is called before any token transfer. This includes minting
* and burning, as well as batched variants.
*
* The same hook is called on both single and batched variants. For single
* transfers, the length of the `ids` and `amounts` arrays will be 1.
*
* Calling conditions (for each `id` and `amount` pair):
*
* - When `from` and `to` are both non-zero, `amount` of ``from``'s tokens
* of token type `id` will be transferred to `to`.
* - When `from` is zero, `amount` tokens of token type `id` will be minted
* for `to`.
* - when `to` is zero, `amount` of ``from``'s tokens of token type `id`
* will be burned.
* - `from` and `to` are never both zero.
* - `ids` and `amounts` have the same, non-zero length.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/
function _beforeTokenTransfer(
address operator,
address from,
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) internal virtual {}
/**
* @dev Hook that is called after any token transfer. This includes minting
* and burning, as well as batched variants.
*
* The same hook is called on both single and batched variants. For single
* transfers, the length of the `id` and `amount` arrays will be 1.
*
* Calling conditions (for each `id` and `amount` pair):
*
* - When `from` and `to` are both non-zero, `amount` of ``from``'s tokens
* of token type `id` will be transferred to `to`.
* - When `from` is zero, `amount` tokens of token type `id` will be minted
* for `to`.
* - when `to` is zero, `amount` of ``from``'s tokens of token type `id`
* will be burned.
* - `from` and `to` are never both zero.
* - `ids` and `amounts` have the same, non-zero length.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/
function _afterTokenTransfer(
address operator,
address from,
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) internal virtual {}
function _doSafeTransferAcceptanceCheck(
address operator,
address from,
address to,
uint256 id,
uint256 amount,
bytes memory data
) private {
if (to.isContract()) {
try IERC1155Receiver(to).onERC1155Received(operator, from, id, amount, data) returns (bytes4 response) {
if (response != IERC1155Receiver.onERC1155Received.selector) {
revert("ERC1155: ERC1155Receiver rejected tokens");
}
} catch Error(string memory reason) {
revert(reason);
} catch {
revert("ERC1155: transfer to non ERC1155Receiver implementer");
}
}
}
function _doSafeBatchTransferAcceptanceCheck(
address operator,
address from,
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) private {
if (to.isContract()) {
try IERC1155Receiver(to).onERC1155BatchReceived(operator, from, ids, amounts, data) returns (
bytes4 response
) {
if (response != IERC1155Receiver.onERC1155BatchReceived.selector) {
revert("ERC1155: ERC1155Receiver rejected tokens");
}
} catch Error(string memory reason) {
revert(reason);
} catch {
revert("ERC1155: transfer to non ERC1155Receiver implementer");
}
}
}
function _asSingletonArray(uint256 element) private pure returns (uint256[] memory) {
uint256[] memory array = new uint256[](1);
array[0] = element;
return array;
}
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.0;
import "@openzeppelin/contracts/token/ERC1155/ERC1155.sol";
contract Test1155 is ERC1155 {
constructor() ERC1155("Test1155") {}
function mint(address to, uint256 id, uint256 amount) public {
_mint(to, id, amount, "");
}
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.0;
import {ERC20} from "solmate/src/tokens/ERC20.sol";
contract Test20 is ERC20 {
constructor() ERC20("Test20", "T20", 18) {}
function mint(address to, uint256 amount) public {
_mint(to, amount);
}
}pragma solidity ^0.8.0;
import { SortitionSumTreeFactory } from "./SortitionSumTreeFactory.sol";
contract TestSortitionTree {
using SortitionSumTreeFactory for SortitionSumTreeFactory.SortitionSumTrees; // Use library functions for sortition sum trees.
SortitionSumTreeFactory.SortitionSumTrees internal sortitionSumTrees; // The sortition sum trees.
bytes32 treeKey;
uint256 treeLeaves;
uint256 public currentRandomNumber;
constructor() {
treeKey = keccak256(abi.encodePacked("treeKey"));
treeLeaves = 4;
currentRandomNumber = 4;
sortitionSumTrees.createTree(treeKey, treeLeaves); // Create a tree with 4 children per node.
}
function setStake(uint256 _value, address user) public {
bytes32 _ID = bytes32(uint256(uint160(user)));
sortitionSumTrees.set(treeKey, _value, _ID);
}
function getStake(address user) public view returns (uint256) {
bytes32 _ID = bytes32(uint256(uint160(user)));
return sortitionSumTrees.stakeOf(treeKey, _ID);
}
function draw(uint256 _drawnNumber) public view returns (bytes32) {
return sortitionSumTrees.draw(treeKey, uint(keccak256(abi.encodePacked(currentRandomNumber, _drawnNumber, block.timestamp))));
}
}// SPDX-License-Identifier: AGPL-3.0
pragma solidity ^0.8.0;
import {IOwnershipTransferCallback} from "../lib/IOwnershipTransferCallback.sol";
contract TestPairManager is IOwnershipTransferCallback {
address public prevOwner;
constructor() {}
function onOwnershipTransfer(address a) public {
prevOwner = a;
}
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.0;
import "@openzeppelin/contracts/token/ERC721/ERC721.sol";
contract Test721 is ERC721 {
constructor() ERC721("Test721", "T721") {}
function mint(address to, uint256 id) public {
_mint(to, id);
}
}{
"optimizer": {
"enabled": true,
"runs": 150
},
"viaIR": true,
"outputSelection": {
"*": {
"*": [
"evm.bytecode",
"evm.deployedBytecode",
"devdoc",
"userdoc",
"metadata",
"abi"
]
}
},
"libraries": {}
}Contract Security Audit
- No Contract Security Audit Submitted- Submit Audit Here
[{"inputs":[{"internalType":"contract ICollectionswap","name":"_lpToken","type":"address"}],"stateMutability":"nonpayable","type":"constructor"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"address","name":"poolAddress","type":"address"},{"indexed":false,"internalType":"contract IERC20[]","name":"rewardTokens","type":"address[]"},{"indexed":false,"internalType":"uint256[]","name":"rewards","type":"uint256[]"},{"indexed":false,"internalType":"uint256","name":"startTime","type":"uint256"},{"indexed":false,"internalType":"uint256","name":"endTime","type":"uint256"}],"name":"IncentiveETHCreated","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"address","name":"poolAddress","type":"address"},{"indexed":false,"internalType":"contract IERC20[]","name":"rewardTokens","type":"address[]"},{"indexed":false,"internalType":"uint256[]","name":"rewards","type":"uint256[]"},{"indexed":false,"internalType":"uint256","name":"startTime","type":"uint256"},{"indexed":false,"internalType":"uint256","name":"endTime","type":"uint256"}],"name":"IncentiveETHDrawCreated","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"previousOwner","type":"address"},{"indexed":true,"internalType":"address","name":"newOwner","type":"address"}],"name":"OwnershipTransferred","type":"event"},{"inputs":[],"name":"MAX_REWARD_TOKENS","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"contract IERC721","name":"nft","type":"address"},{"internalType":"address","name":"bondingCurve","type":"address"},{"internalType":"uint128","name":"delta","type":"uint128"},{"internalType":"uint96","name":"fee","type":"uint96"},{"internalType":"contract IERC20[]","name":"rewardTokens","type":"address[]"},{"internalType":"uint256[]","name":"rewards","type":"uint256[]"},{"internalType":"uint256","name":"startTime","type":"uint256"},{"internalType":"uint256","name":"endTime","type":"uint256"}],"name":"createIncentiveETH","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"contract IERC721","name":"nft","type":"address"},{"internalType":"address","name":"bondingCurve","type":"address"},{"internalType":"uint128","name":"delta","type":"uint128"},{"internalType":"uint96","name":"fee","type":"uint96"},{"internalType":"contract IERC20[]","name":"rewardTokens","type":"address[]"},{"internalType":"uint256[]","name":"rewards","type":"uint256[]"},{"internalType":"uint256","name":"rewardStartTime","type":"uint256"},{"internalType":"uint256","name":"rewardEndTime","type":"uint256"},{"internalType":"contract IERC20[]","name":"_additionalERC20DrawPrize","type":"address[]"},{"internalType":"uint256[]","name":"_additionalERC20DrawAmounts","type":"uint256[]"},{"internalType":"contract IERC721[]","name":"_nftCollectionsPrize","type":"address[]"},{"internalType":"uint256[]","name":"_nftIdsPrize","type":"uint256[]"},{"internalType":"uint256","name":"_prizesPerWinner","type":"uint256"},{"internalType":"uint256","name":"drawStartTime","type":"uint256"},{"internalType":"uint256","name":"drawPeriodFinish","type":"uint256"}],"name":"createIncentiveETHDraw","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"owner","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"renounceOwnership","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"rngChainlink","outputs":[{"internalType":"contract RNGChainlinkV2Interface","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"contract RNGChainlinkV2Interface","name":"_rngChainlink","type":"address"}],"name":"setRNG","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"newOwner","type":"address"}],"name":"transferOwnership","outputs":[],"stateMutability":"nonpayable","type":"function"}]Contract Creation Code
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
Deployed Bytecode
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
Constructor Arguments (ABI-Encoded and is the last bytes of the Contract Creation Code above)
000000000000000000000000226620c03c2f2dbbbd90e2eca4754d8a41fd3deb
-----Decoded View---------------
Arg [0] : _lpToken (address): 0x226620C03C2f2dBBBd90E2Eca4754D8a41Fd3DEB
-----Encoded View---------------
1 Constructor Arguments found :
Arg [0] : 000000000000000000000000226620c03c2f2dbbbd90e2eca4754d8a41fd3deb
Loading...
Loading
Loading...
Loading
Multichain Portfolio | 27 Chains
| Chain | Token | Portfolio % | Price | Amount | Value |
|---|
Loading...
Loading
[ Download: CSV Export ]
[ Download: CSV Export ]
A contract address hosts a smart contract, which is a set of code stored on the blockchain that runs when predetermined conditions are met. Learn more about addresses in our Knowledge Base.