Sponsored
MoonPay
Buy crypto with our non-custodial and fully decentralised platform. Buy Now!
15M+ users trust MoonPay. Checkout with your preferred payment method.
MetaMask
Manage your web3 everything with MetaMask Portfolio. Try Now!
Ready to onboard to Ethereum? With MetaMask Portfolio, you're in control.
Nexo
Join the hunt for $12,000,000+ in NEXO Tokens. Get Nexo
Collect points for eligible actions and use multipliers to win big.
Sponsored
MetaMask
Meet MetaMask Portfolio - your key to getting more out of web3. Try Now
Ready to simplify your web3 experience? Try the all-in-one web3 app trusted by millions worldwide.
CEX.IO
Claim Your Mystery Box For A Guaranteed Crypto Prize CLAIM NOW
Opt-in, make your first trade on Exchange Plus & receive random crypto rewards from 10,000 SHIB, to 0.01 BTC.
Sponsored
Сoins.game
100 free spins for registration. Spin now!
Everyday giveaways up to 100 ETH, Lucky Spins. Deposit BONUS 300% and Cashbacks!
Celsius Casino
- $400 Freespins - Instant Withdraw - No KYC - 200% Bonus. Spin Now!
9 years old Licensed Crypto Casino, Instant Withdraw 24/7, 6000+ Slots available, Paypal Deposit, Instant Live Support 24/7, 30% Rakeback.
BC.GAME
- The Best ETH Casino Claim Now!
5000+ Slots & Live Casino Games, 50+cryptos. Register with Etherscan and get 760% deposit bonus. Win Big$, withdraw it fast.
Sponsored
BC.GAME
- The Best ETH Casino Claim Now!
5000+ Slots & Live Casino Games, 50+cryptos. Register with Etherscan and get 760% deposit bonus. Win Big$, withdraw it fast.
CryptoWins
200% Welcome Bonus – Supercharge Your Crypto Up to 4 BTC! Claim Now!
Play 100s of games anonymously with all major cryptos. Join CryptoWins & start winning!
CryptoSlots
Play & Get 25 Free Spins at CryptoSlots Play Now
Anonymous play on awesome games - sign up now for 25 free jackpot spins - worth $100s!
Overview
ETH Balance
0 ETH
Eth Value
$0.00Token Holdings
- ERC-20 Tokens (1)View All Holdings68.868638 USDT
Tether USD (USDT)$68.71@0.9978
More Info
Private Name Tags
ContractCreator
TokenTracker
Latest 12 from a total of 12 transactions
| Transaction Hash |
Method
|
Block
|
From
|
To
|
Value | ||||
|---|---|---|---|---|---|---|---|---|---|
| Withdraw To | 18362777 | 262 days ago | IN | 0 ETH | 0.00033818 | ||||
| Approve | 18362697 | 262 days ago | IN | 0 ETH | 0.00034154 | ||||
| Deposit For | 18362695 | 262 days ago | IN | 0 ETH | 0.00055781 | ||||
| Withdraw To | 18332210 | 267 days ago | IN | 0 ETH | 0.00047328 | ||||
| Withdraw To | 18331573 | 267 days ago | IN | 0 ETH | 0.00040888 | ||||
| Deposit For | 18331563 | 267 days ago | IN | 0 ETH | 0.00047433 | ||||
| Withdraw To | 18331533 | 267 days ago | IN | 0 ETH | 0.00044648 | ||||
| Withdraw To | 18331518 | 267 days ago | IN | 0 ETH | 0.00039819 | ||||
| Withdraw To | 18330800 | 267 days ago | IN | 0 ETH | 0.00032633 | ||||
| Approve | 18330667 | 267 days ago | IN | 0 ETH | 0.00031507 | ||||
| Deposit For | 18330665 | 267 days ago | IN | 0 ETH | 0.00072818 | ||||
| 0x6102a060 | 18323410 | 268 days ago | IN | Contract Creation | 0 ETH | 0.02023495 |
View more zero value Internal Transactions in Advanced View mode
Advanced mode:
Loading...
Loading
Similar Match Source Code This contract matches the deployed Bytecode of the Source Code for Contract 0xA0d45B2B...488245586 The constructor portion of the code might be different and could alter the actual behaviour of the contract
Contract Name:
KycERC20
Compiler Version
v0.8.14+commit.80d49f37
Contract Source Code (Solidity Standard Json-Input format)
// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
import "../keyring/interfaces/IKycERC20.sol";
import "../keyring/integration/KeyringGuard.sol";
import "@openzeppelin/contracts/token/ERC20/extensions/ERC20Permit.sol";
import "@openzeppelin/contracts/token/ERC20/extensions/ERC20Wrapper.sol";
import "@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
/**
@notice This contract illustrates how an immutable KeyringGuard can be wrapped around collateral tokens
(e.g. DAI Token). Specify the token to wrap and the new name/symbol of the wrapped token - then good to go!
Tokens can only be transferred to an address that maintains compliance with the configured policy.
*/
contract KycERC20 is IKycERC20, ERC20Permit, ERC20Wrapper, KeyringGuard {
using SafeERC20 for IERC20;
string private constant MODULE = "KycERC20";
/**
* @param config Keyring contract addresses. See IKycERC20.
* @param policyId_ The unique identifier of a Policy.
* @param maximumConsentPeriod_ The upper limit for user consent deadlines.
* @param name_ The name of the new wrapped token. Passed to ERC20.constructor to set the ERC20.name
* @param symbol_ The symbol for the new wrapped token. Passed to ERC20.constructor to set the ERC20.symbol
*/
constructor(
KeyringConfig memory config,
uint32 policyId_,
uint32 maximumConsentPeriod_,
string memory name_,
string memory symbol_
)
ERC20(name_, symbol_)
ERC20Permit(name_)
ERC20Wrapper(IERC20(config.collateralToken))
KeyringGuard(config, policyId_, maximumConsentPeriod_)
{
if (config.collateralToken == NULL_ADDRESS) revert Unacceptable({ reason: "collateral token cannot be empty" });
if (bytes(name_).length == 0) revert Unacceptable({ reason: "name_ cannot be empty" });
if (bytes(symbol_).length == 0) revert Unacceptable({ reason: "symbol_ cannot be empty" });
}
/**
* @notice Returns decimals based on the underlying token decimals
* @return uint8 decimals integer
*/
function decimals() public view override(ERC20, ERC20Wrapper) returns (uint8) {
return ERC20Wrapper.decimals();
}
/**
* @notice Deposit underlying tokens and mint the same number of wrapped tokens.
* @param trader Recipient of the wrapped tokens
* @param amount Quantity of underlying tokens from _msgSender() to exchange for wrapped tokens (to account) at 1:1
*/
function depositFor(address trader, uint256 amount) public override(IKycERC20, ERC20Wrapper) returns (bool) {
if (trader != _msgSender()) {
if (!isAuthorized(_msgSender(), trader)) revert Unacceptable({ reason: "trader not authorized" });
}
return ERC20Wrapper.depositFor(trader, amount);
}
/**
* @notice Burn a number of wrapped tokens and withdraw the same number of underlying tokens.
* @param trader Recipient of the underlying tokens
* @param amount Quantity of wrapped tokens from _msgSender() to exchange for underlying tokens (to account) at 1:1
*/
function withdrawTo(address trader, uint256 amount) public override(IKycERC20, ERC20Wrapper) returns (bool) {
if (trader != _msgSender()) {
if (!isAuthorized(_msgSender(), trader)) revert Unacceptable({ reason: "trader not authorized" });
}
return ERC20Wrapper.withdrawTo(trader, amount);
}
/**
* @notice Wraps the inherited ERC20.transfer function with the keyringCompliance guard.
* @param to The recipient of amount
* @param amount The amount to transfer.
* @return bool True if successfully executed.
*/
function transfer(address to, uint256 amount) public override(IERC20, ERC20) checkKeyring(_msgSender(), to) returns (bool) {
return ERC20.transfer(to, amount);
}
/**
* @notice Wraps the inherited ERC20.transferFrom function with the keyringCompliance guard.
* @param from The sender of amount
* @param to The recipient of amount
* @param amount The amount to be deducted from the to's allowance.
* @return bool True if successfully executed.
*/
function transferFrom(
address from,
address to,
uint256 amount
) public override(IERC20, ERC20) checkKeyring(from, to) returns (bool) {
return ERC20.transferFrom(from, to, amount);
}
/**
* @notice Returns ERC2771 signer if msg.sender is a trusted forwarder, otherwise returns msg.sender.
* @return sender User deemed to have signed the transaction.
*/
function _msgSender() internal view virtual override(KeyringAccessControl, Context) returns (address sender) {
return ERC2771Context._msgSender();
}
/**
* @notice Returns msg.data if not from a trusted forwarder, or truncated msg.data if the signer was
* appended to msg.data
* @dev Although not currently used, this function forms part of ERC2771 so is included for completeness.
* @return data Data deemed to be the msg.data
*/
function _msgData() internal view virtual override(KeyringAccessControl, Context) returns (bytes calldata) {
return ERC2771Context._msgData();
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (access/AccessControl.sol)
pragma solidity ^0.8.0;
import "./IAccessControl.sol";
import "../utils/Context.sol";
import "../utils/Strings.sol";
import "../utils/introspection/ERC165.sol";
/**
* @dev Contract module that allows children to implement role-based access
* control mechanisms. This is a lightweight version that doesn't allow enumerating role
* members except through off-chain means by accessing the contract event logs. Some
* applications may benefit from on-chain enumerability, for those cases see
* {AccessControlEnumerable}.
*
* Roles are referred to by their `bytes32` identifier. These should be exposed
* in the external API and be unique. The best way to achieve this is by
* using `public constant` hash digests:
*
* ```solidity
* bytes32 public constant MY_ROLE = keccak256("MY_ROLE");
* ```
*
* Roles can be used to represent a set of permissions. To restrict access to a
* function call, use {hasRole}:
*
* ```solidity
* function foo() public {
* require(hasRole(MY_ROLE, msg.sender));
* ...
* }
* ```
*
* Roles can be granted and revoked dynamically via the {grantRole} and
* {revokeRole} functions. Each role has an associated admin role, and only
* accounts that have a role's admin role can call {grantRole} and {revokeRole}.
*
* By default, the admin role for all roles is `DEFAULT_ADMIN_ROLE`, which means
* that only accounts with this role will be able to grant or revoke other
* roles. More complex role relationships can be created by using
* {_setRoleAdmin}.
*
* WARNING: The `DEFAULT_ADMIN_ROLE` is also its own admin: it has permission to
* grant and revoke this role. Extra precautions should be taken to secure
* accounts that have been granted it. We recommend using {AccessControlDefaultAdminRules}
* to enforce additional security measures for this role.
*/
abstract contract AccessControl is Context, IAccessControl, ERC165 {
struct RoleData {
mapping(address => bool) members;
bytes32 adminRole;
}
mapping(bytes32 => RoleData) private _roles;
bytes32 public constant DEFAULT_ADMIN_ROLE = 0x00;
/**
* @dev Modifier that checks that an account has a specific role. Reverts
* with a standardized message including the required role.
*
* The format of the revert reason is given by the following regular expression:
*
* /^AccessControl: account (0x[0-9a-f]{40}) is missing role (0x[0-9a-f]{64})$/
*
* _Available since v4.1._
*/
modifier onlyRole(bytes32 role) {
_checkRole(role);
_;
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return interfaceId == type(IAccessControl).interfaceId || super.supportsInterface(interfaceId);
}
/**
* @dev Returns `true` if `account` has been granted `role`.
*/
function hasRole(bytes32 role, address account) public view virtual override returns (bool) {
return _roles[role].members[account];
}
/**
* @dev Revert with a standard message if `_msgSender()` is missing `role`.
* Overriding this function changes the behavior of the {onlyRole} modifier.
*
* Format of the revert message is described in {_checkRole}.
*
* _Available since v4.6._
*/
function _checkRole(bytes32 role) internal view virtual {
_checkRole(role, _msgSender());
}
/**
* @dev Revert with a standard message if `account` is missing `role`.
*
* The format of the revert reason is given by the following regular expression:
*
* /^AccessControl: account (0x[0-9a-f]{40}) is missing role (0x[0-9a-f]{64})$/
*/
function _checkRole(bytes32 role, address account) internal view virtual {
if (!hasRole(role, account)) {
revert(
string(
abi.encodePacked(
"AccessControl: account ",
Strings.toHexString(account),
" is missing role ",
Strings.toHexString(uint256(role), 32)
)
)
);
}
}
/**
* @dev Returns the admin role that controls `role`. See {grantRole} and
* {revokeRole}.
*
* To change a role's admin, use {_setRoleAdmin}.
*/
function getRoleAdmin(bytes32 role) public view virtual override returns (bytes32) {
return _roles[role].adminRole;
}
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*
* May emit a {RoleGranted} event.
*/
function grantRole(bytes32 role, address account) public virtual override onlyRole(getRoleAdmin(role)) {
_grantRole(role, account);
}
/**
* @dev Revokes `role` from `account`.
*
* If `account` had been granted `role`, emits a {RoleRevoked} event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*
* May emit a {RoleRevoked} event.
*/
function revokeRole(bytes32 role, address account) public virtual override onlyRole(getRoleAdmin(role)) {
_revokeRole(role, account);
}
/**
* @dev Revokes `role` from the calling account.
*
* Roles are often managed via {grantRole} and {revokeRole}: this function's
* purpose is to provide a mechanism for accounts to lose their privileges
* if they are compromised (such as when a trusted device is misplaced).
*
* If the calling account had been revoked `role`, emits a {RoleRevoked}
* event.
*
* Requirements:
*
* - the caller must be `account`.
*
* May emit a {RoleRevoked} event.
*/
function renounceRole(bytes32 role, address account) public virtual override {
require(account == _msgSender(), "AccessControl: can only renounce roles for self");
_revokeRole(role, account);
}
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event. Note that unlike {grantRole}, this function doesn't perform any
* checks on the calling account.
*
* May emit a {RoleGranted} event.
*
* [WARNING]
* ====
* This function should only be called from the constructor when setting
* up the initial roles for the system.
*
* Using this function in any other way is effectively circumventing the admin
* system imposed by {AccessControl}.
* ====
*
* NOTE: This function is deprecated in favor of {_grantRole}.
*/
function _setupRole(bytes32 role, address account) internal virtual {
_grantRole(role, account);
}
/**
* @dev Sets `adminRole` as ``role``'s admin role.
*
* Emits a {RoleAdminChanged} event.
*/
function _setRoleAdmin(bytes32 role, bytes32 adminRole) internal virtual {
bytes32 previousAdminRole = getRoleAdmin(role);
_roles[role].adminRole = adminRole;
emit RoleAdminChanged(role, previousAdminRole, adminRole);
}
/**
* @dev Grants `role` to `account`.
*
* Internal function without access restriction.
*
* May emit a {RoleGranted} event.
*/
function _grantRole(bytes32 role, address account) internal virtual {
if (!hasRole(role, account)) {
_roles[role].members[account] = true;
emit RoleGranted(role, account, _msgSender());
}
}
/**
* @dev Revokes `role` from `account`.
*
* Internal function without access restriction.
*
* May emit a {RoleRevoked} event.
*/
function _revokeRole(bytes32 role, address account) internal virtual {
if (hasRole(role, account)) {
_roles[role].members[account] = false;
emit RoleRevoked(role, account, _msgSender());
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (access/IAccessControl.sol)
pragma solidity ^0.8.0;
/**
* @dev External interface of AccessControl declared to support ERC165 detection.
*/
interface IAccessControl {
/**
* @dev Emitted when `newAdminRole` is set as ``role``'s admin role, replacing `previousAdminRole`
*
* `DEFAULT_ADMIN_ROLE` is the starting admin for all roles, despite
* {RoleAdminChanged} not being emitted signaling this.
*
* _Available since v3.1._
*/
event RoleAdminChanged(bytes32 indexed role, bytes32 indexed previousAdminRole, bytes32 indexed newAdminRole);
/**
* @dev Emitted when `account` is granted `role`.
*
* `sender` is the account that originated the contract call, an admin role
* bearer except when using {AccessControl-_setupRole}.
*/
event RoleGranted(bytes32 indexed role, address indexed account, address indexed sender);
/**
* @dev Emitted when `account` is revoked `role`.
*
* `sender` is the account that originated the contract call:
* - if using `revokeRole`, it is the admin role bearer
* - if using `renounceRole`, it is the role bearer (i.e. `account`)
*/
event RoleRevoked(bytes32 indexed role, address indexed account, address indexed sender);
/**
* @dev Returns `true` if `account` has been granted `role`.
*/
function hasRole(bytes32 role, address account) external view returns (bool);
/**
* @dev Returns the admin role that controls `role`. See {grantRole} and
* {revokeRole}.
*
* To change a role's admin, use {AccessControl-_setRoleAdmin}.
*/
function getRoleAdmin(bytes32 role) external view returns (bytes32);
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function grantRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from `account`.
*
* If `account` had been granted `role`, emits a {RoleRevoked} event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function revokeRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from the calling account.
*
* Roles are often managed via {grantRole} and {revokeRole}: this function's
* purpose is to provide a mechanism for accounts to lose their privileges
* if they are compromised (such as when a trusted device is misplaced).
*
* If the calling account had been granted `role`, emits a {RoleRevoked}
* event.
*
* Requirements:
*
* - the caller must be `account`.
*/
function renounceRole(bytes32 role, address account) external;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (interfaces/IERC5267.sol)
pragma solidity ^0.8.0;
interface IERC5267 {
/**
* @dev MAY be emitted to signal that the domain could have changed.
*/
event EIP712DomainChanged();
/**
* @dev returns the fields and values that describe the domain separator used by this contract for EIP-712
* signature.
*/
function eip712Domain()
external
view
returns (
bytes1 fields,
string memory name,
string memory version,
uint256 chainId,
address verifyingContract,
bytes32 salt,
uint256[] memory extensions
);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (metatx/ERC2771Context.sol)
pragma solidity ^0.8.9;
import "../utils/Context.sol";
/**
* @dev Context variant with ERC2771 support.
*/
abstract contract ERC2771Context is Context {
/// @custom:oz-upgrades-unsafe-allow state-variable-immutable
address private immutable _trustedForwarder;
/// @custom:oz-upgrades-unsafe-allow constructor
constructor(address trustedForwarder) {
_trustedForwarder = trustedForwarder;
}
function isTrustedForwarder(address forwarder) public view virtual returns (bool) {
return forwarder == _trustedForwarder;
}
function _msgSender() internal view virtual override returns (address sender) {
if (isTrustedForwarder(msg.sender)) {
// The assembly code is more direct than the Solidity version using `abi.decode`.
/// @solidity memory-safe-assembly
assembly {
sender := shr(96, calldataload(sub(calldatasize(), 20)))
}
} else {
return super._msgSender();
}
}
function _msgData() internal view virtual override returns (bytes calldata) {
if (isTrustedForwarder(msg.sender)) {
return msg.data[:msg.data.length - 20];
} else {
return super._msgData();
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC20/ERC20.sol)
pragma solidity ^0.8.0;
import "./IERC20.sol";
import "./extensions/IERC20Metadata.sol";
import "../../utils/Context.sol";
/**
* @dev Implementation of the {IERC20} interface.
*
* This implementation is agnostic to the way tokens are created. This means
* that a supply mechanism has to be added in a derived contract using {_mint}.
* For a generic mechanism see {ERC20PresetMinterPauser}.
*
* TIP: For a detailed writeup see our guide
* https://forum.openzeppelin.com/t/how-to-implement-erc20-supply-mechanisms/226[How
* to implement supply mechanisms].
*
* The default value of {decimals} is 18. To change this, you should override
* this function so it returns a different value.
*
* We have followed general OpenZeppelin Contracts guidelines: functions revert
* instead returning `false` on failure. This behavior is nonetheless
* conventional and does not conflict with the expectations of ERC20
* applications.
*
* Additionally, an {Approval} event is emitted on calls to {transferFrom}.
* This allows applications to reconstruct the allowance for all accounts just
* by listening to said events. Other implementations of the EIP may not emit
* these events, as it isn't required by the specification.
*
* Finally, the non-standard {decreaseAllowance} and {increaseAllowance}
* functions have been added to mitigate the well-known issues around setting
* allowances. See {IERC20-approve}.
*/
contract ERC20 is Context, IERC20, IERC20Metadata {
mapping(address => uint256) private _balances;
mapping(address => mapping(address => uint256)) private _allowances;
uint256 private _totalSupply;
string private _name;
string private _symbol;
/**
* @dev Sets the values for {name} and {symbol}.
*
* All two of these values are immutable: they can only be set once during
* construction.
*/
constructor(string memory name_, string memory symbol_) {
_name = name_;
_symbol = symbol_;
}
/**
* @dev Returns the name of the token.
*/
function name() public view virtual override returns (string memory) {
return _name;
}
/**
* @dev Returns the symbol of the token, usually a shorter version of the
* name.
*/
function symbol() public view virtual override returns (string memory) {
return _symbol;
}
/**
* @dev Returns the number of decimals used to get its user representation.
* For example, if `decimals` equals `2`, a balance of `505` tokens should
* be displayed to a user as `5.05` (`505 / 10 ** 2`).
*
* Tokens usually opt for a value of 18, imitating the relationship between
* Ether and Wei. This is the default value returned by this function, unless
* it's overridden.
*
* NOTE: This information is only used for _display_ purposes: it in
* no way affects any of the arithmetic of the contract, including
* {IERC20-balanceOf} and {IERC20-transfer}.
*/
function decimals() public view virtual override returns (uint8) {
return 18;
}
/**
* @dev See {IERC20-totalSupply}.
*/
function totalSupply() public view virtual override returns (uint256) {
return _totalSupply;
}
/**
* @dev See {IERC20-balanceOf}.
*/
function balanceOf(address account) public view virtual override returns (uint256) {
return _balances[account];
}
/**
* @dev See {IERC20-transfer}.
*
* Requirements:
*
* - `to` cannot be the zero address.
* - the caller must have a balance of at least `amount`.
*/
function transfer(address to, uint256 amount) public virtual override returns (bool) {
address owner = _msgSender();
_transfer(owner, to, amount);
return true;
}
/**
* @dev See {IERC20-allowance}.
*/
function allowance(address owner, address spender) public view virtual override returns (uint256) {
return _allowances[owner][spender];
}
/**
* @dev See {IERC20-approve}.
*
* NOTE: If `amount` is the maximum `uint256`, the allowance is not updated on
* `transferFrom`. This is semantically equivalent to an infinite approval.
*
* Requirements:
*
* - `spender` cannot be the zero address.
*/
function approve(address spender, uint256 amount) public virtual override returns (bool) {
address owner = _msgSender();
_approve(owner, spender, amount);
return true;
}
/**
* @dev See {IERC20-transferFrom}.
*
* Emits an {Approval} event indicating the updated allowance. This is not
* required by the EIP. See the note at the beginning of {ERC20}.
*
* NOTE: Does not update the allowance if the current allowance
* is the maximum `uint256`.
*
* Requirements:
*
* - `from` and `to` cannot be the zero address.
* - `from` must have a balance of at least `amount`.
* - the caller must have allowance for ``from``'s tokens of at least
* `amount`.
*/
function transferFrom(address from, address to, uint256 amount) public virtual override returns (bool) {
address spender = _msgSender();
_spendAllowance(from, spender, amount);
_transfer(from, to, amount);
return true;
}
/**
* @dev Atomically increases the allowance granted to `spender` by the caller.
*
* This is an alternative to {approve} that can be used as a mitigation for
* problems described in {IERC20-approve}.
*
* Emits an {Approval} event indicating the updated allowance.
*
* Requirements:
*
* - `spender` cannot be the zero address.
*/
function increaseAllowance(address spender, uint256 addedValue) public virtual returns (bool) {
address owner = _msgSender();
_approve(owner, spender, allowance(owner, spender) + addedValue);
return true;
}
/**
* @dev Atomically decreases the allowance granted to `spender` by the caller.
*
* This is an alternative to {approve} that can be used as a mitigation for
* problems described in {IERC20-approve}.
*
* Emits an {Approval} event indicating the updated allowance.
*
* Requirements:
*
* - `spender` cannot be the zero address.
* - `spender` must have allowance for the caller of at least
* `subtractedValue`.
*/
function decreaseAllowance(address spender, uint256 subtractedValue) public virtual returns (bool) {
address owner = _msgSender();
uint256 currentAllowance = allowance(owner, spender);
require(currentAllowance >= subtractedValue, "ERC20: decreased allowance below zero");
unchecked {
_approve(owner, spender, currentAllowance - subtractedValue);
}
return true;
}
/**
* @dev Moves `amount` of tokens from `from` to `to`.
*
* This internal function is equivalent to {transfer}, and can be used to
* e.g. implement automatic token fees, slashing mechanisms, etc.
*
* Emits a {Transfer} event.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `from` must have a balance of at least `amount`.
*/
function _transfer(address from, address to, uint256 amount) internal virtual {
require(from != address(0), "ERC20: transfer from the zero address");
require(to != address(0), "ERC20: transfer to the zero address");
_beforeTokenTransfer(from, to, amount);
uint256 fromBalance = _balances[from];
require(fromBalance >= amount, "ERC20: transfer amount exceeds balance");
unchecked {
_balances[from] = fromBalance - amount;
// Overflow not possible: the sum of all balances is capped by totalSupply, and the sum is preserved by
// decrementing then incrementing.
_balances[to] += amount;
}
emit Transfer(from, to, amount);
_afterTokenTransfer(from, to, amount);
}
/** @dev Creates `amount` tokens and assigns them to `account`, increasing
* the total supply.
*
* Emits a {Transfer} event with `from` set to the zero address.
*
* Requirements:
*
* - `account` cannot be the zero address.
*/
function _mint(address account, uint256 amount) internal virtual {
require(account != address(0), "ERC20: mint to the zero address");
_beforeTokenTransfer(address(0), account, amount);
_totalSupply += amount;
unchecked {
// Overflow not possible: balance + amount is at most totalSupply + amount, which is checked above.
_balances[account] += amount;
}
emit Transfer(address(0), account, amount);
_afterTokenTransfer(address(0), account, amount);
}
/**
* @dev Destroys `amount` tokens from `account`, reducing the
* total supply.
*
* Emits a {Transfer} event with `to` set to the zero address.
*
* Requirements:
*
* - `account` cannot be the zero address.
* - `account` must have at least `amount` tokens.
*/
function _burn(address account, uint256 amount) internal virtual {
require(account != address(0), "ERC20: burn from the zero address");
_beforeTokenTransfer(account, address(0), amount);
uint256 accountBalance = _balances[account];
require(accountBalance >= amount, "ERC20: burn amount exceeds balance");
unchecked {
_balances[account] = accountBalance - amount;
// Overflow not possible: amount <= accountBalance <= totalSupply.
_totalSupply -= amount;
}
emit Transfer(account, address(0), amount);
_afterTokenTransfer(account, address(0), amount);
}
/**
* @dev Sets `amount` as the allowance of `spender` over the `owner` s tokens.
*
* This internal function is equivalent to `approve`, and can be used to
* e.g. set automatic allowances for certain subsystems, etc.
*
* Emits an {Approval} event.
*
* Requirements:
*
* - `owner` cannot be the zero address.
* - `spender` cannot be the zero address.
*/
function _approve(address owner, address spender, uint256 amount) internal virtual {
require(owner != address(0), "ERC20: approve from the zero address");
require(spender != address(0), "ERC20: approve to the zero address");
_allowances[owner][spender] = amount;
emit Approval(owner, spender, amount);
}
/**
* @dev Updates `owner` s allowance for `spender` based on spent `amount`.
*
* Does not update the allowance amount in case of infinite allowance.
* Revert if not enough allowance is available.
*
* Might emit an {Approval} event.
*/
function _spendAllowance(address owner, address spender, uint256 amount) internal virtual {
uint256 currentAllowance = allowance(owner, spender);
if (currentAllowance != type(uint256).max) {
require(currentAllowance >= amount, "ERC20: insufficient allowance");
unchecked {
_approve(owner, spender, currentAllowance - amount);
}
}
}
/**
* @dev Hook that is called before any transfer of tokens. This includes
* minting and burning.
*
* Calling conditions:
*
* - when `from` and `to` are both non-zero, `amount` of ``from``'s tokens
* will be transferred to `to`.
* - when `from` is zero, `amount` tokens will be minted for `to`.
* - when `to` is zero, `amount` of ``from``'s tokens will be burned.
* - `from` and `to` are never both zero.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/
function _beforeTokenTransfer(address from, address to, uint256 amount) internal virtual {}
/**
* @dev Hook that is called after any transfer of tokens. This includes
* minting and burning.
*
* Calling conditions:
*
* - when `from` and `to` are both non-zero, `amount` of ``from``'s tokens
* has been transferred to `to`.
* - when `from` is zero, `amount` tokens have been minted for `to`.
* - when `to` is zero, `amount` of ``from``'s tokens have been burned.
* - `from` and `to` are never both zero.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/
function _afterTokenTransfer(address from, address to, uint256 amount) internal virtual {}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC20/IERC20.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC20 standard as defined in the EIP.
*/
interface IERC20 {
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/
event Transfer(address indexed from, address indexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/
event Approval(address indexed owner, address indexed spender, uint256 value);
/**
* @dev Returns the amount of tokens in existence.
*/
function totalSupply() external view returns (uint256);
/**
* @dev Returns the amount of tokens owned by `account`.
*/
function balanceOf(address account) external view returns (uint256);
/**
* @dev Moves `amount` tokens from the caller's account to `to`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transfer(address to, uint256 amount) external returns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/
function allowance(address owner, address spender) external view returns (uint256);
/**
* @dev Sets `amount` as the allowance of `spender` over the caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/
function approve(address spender, uint256 amount) external returns (bool);
/**
* @dev Moves `amount` tokens from `from` to `to` using the
* allowance mechanism. `amount` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transferFrom(address from, address to, uint256 amount) external returns (bool);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC20/extensions/ERC20Permit.sol)
pragma solidity ^0.8.0;
import "./IERC20Permit.sol";
import "../ERC20.sol";
import "../../../utils/cryptography/ECDSA.sol";
import "../../../utils/cryptography/EIP712.sol";
import "../../../utils/Counters.sol";
/**
* @dev Implementation of the ERC20 Permit extension allowing approvals to be made via signatures, as defined in
* https://eips.ethereum.org/EIPS/eip-2612[EIP-2612].
*
* Adds the {permit} method, which can be used to change an account's ERC20 allowance (see {IERC20-allowance}) by
* presenting a message signed by the account. By not relying on `{IERC20-approve}`, the token holder account doesn't
* need to send a transaction, and thus is not required to hold Ether at all.
*
* _Available since v3.4._
*/
abstract contract ERC20Permit is ERC20, IERC20Permit, EIP712 {
using Counters for Counters.Counter;
mapping(address => Counters.Counter) private _nonces;
// solhint-disable-next-line var-name-mixedcase
bytes32 private constant _PERMIT_TYPEHASH =
keccak256("Permit(address owner,address spender,uint256 value,uint256 nonce,uint256 deadline)");
/**
* @dev In previous versions `_PERMIT_TYPEHASH` was declared as `immutable`.
* However, to ensure consistency with the upgradeable transpiler, we will continue
* to reserve a slot.
* @custom:oz-renamed-from _PERMIT_TYPEHASH
*/
// solhint-disable-next-line var-name-mixedcase
bytes32 private _PERMIT_TYPEHASH_DEPRECATED_SLOT;
/**
* @dev Initializes the {EIP712} domain separator using the `name` parameter, and setting `version` to `"1"`.
*
* It's a good idea to use the same `name` that is defined as the ERC20 token name.
*/
constructor(string memory name) EIP712(name, "1") {}
/**
* @dev See {IERC20Permit-permit}.
*/
function permit(
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) public virtual override {
require(block.timestamp <= deadline, "ERC20Permit: expired deadline");
bytes32 structHash = keccak256(abi.encode(_PERMIT_TYPEHASH, owner, spender, value, _useNonce(owner), deadline));
bytes32 hash = _hashTypedDataV4(structHash);
address signer = ECDSA.recover(hash, v, r, s);
require(signer == owner, "ERC20Permit: invalid signature");
_approve(owner, spender, value);
}
/**
* @dev See {IERC20Permit-nonces}.
*/
function nonces(address owner) public view virtual override returns (uint256) {
return _nonces[owner].current();
}
/**
* @dev See {IERC20Permit-DOMAIN_SEPARATOR}.
*/
// solhint-disable-next-line func-name-mixedcase
function DOMAIN_SEPARATOR() external view override returns (bytes32) {
return _domainSeparatorV4();
}
/**
* @dev "Consume a nonce": return the current value and increment.
*
* _Available since v4.1._
*/
function _useNonce(address owner) internal virtual returns (uint256 current) {
Counters.Counter storage nonce = _nonces[owner];
current = nonce.current();
nonce.increment();
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC20/extensions/ERC20Wrapper.sol)
pragma solidity ^0.8.0;
import "../ERC20.sol";
import "../utils/SafeERC20.sol";
/**
* @dev Extension of the ERC20 token contract to support token wrapping.
*
* Users can deposit and withdraw "underlying tokens" and receive a matching number of "wrapped tokens". This is useful
* in conjunction with other modules. For example, combining this wrapping mechanism with {ERC20Votes} will allow the
* wrapping of an existing "basic" ERC20 into a governance token.
*
* _Available since v4.2._
*/
abstract contract ERC20Wrapper is ERC20 {
IERC20 private immutable _underlying;
constructor(IERC20 underlyingToken) {
require(underlyingToken != this, "ERC20Wrapper: cannot self wrap");
_underlying = underlyingToken;
}
/**
* @dev See {ERC20-decimals}.
*/
function decimals() public view virtual override returns (uint8) {
try IERC20Metadata(address(_underlying)).decimals() returns (uint8 value) {
return value;
} catch {
return super.decimals();
}
}
/**
* @dev Returns the address of the underlying ERC-20 token that is being wrapped.
*/
function underlying() public view returns (IERC20) {
return _underlying;
}
/**
* @dev Allow a user to deposit underlying tokens and mint the corresponding number of wrapped tokens.
*/
function depositFor(address account, uint256 amount) public virtual returns (bool) {
address sender = _msgSender();
require(sender != address(this), "ERC20Wrapper: wrapper can't deposit");
SafeERC20.safeTransferFrom(_underlying, sender, address(this), amount);
_mint(account, amount);
return true;
}
/**
* @dev Allow a user to burn a number of wrapped tokens and withdraw the corresponding number of underlying tokens.
*/
function withdrawTo(address account, uint256 amount) public virtual returns (bool) {
_burn(_msgSender(), amount);
SafeERC20.safeTransfer(_underlying, account, amount);
return true;
}
/**
* @dev Mint wrapped token to cover any underlyingTokens that would have been transferred by mistake. Internal
* function that can be exposed with access control if desired.
*/
function _recover(address account) internal virtual returns (uint256) {
uint256 value = _underlying.balanceOf(address(this)) - totalSupply();
_mint(account, value);
return value;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (token/ERC20/extensions/IERC20Metadata.sol)
pragma solidity ^0.8.0;
import "../IERC20.sol";
/**
* @dev Interface for the optional metadata functions from the ERC20 standard.
*
* _Available since v4.1._
*/
interface IERC20Metadata is IERC20 {
/**
* @dev Returns the name of the token.
*/
function name() external view returns (string memory);
/**
* @dev Returns the symbol of the token.
*/
function symbol() external view returns (string memory);
/**
* @dev Returns the decimals places of the token.
*/
function decimals() external view returns (uint8);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC20/extensions/IERC20Permit.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC20 Permit extension allowing approvals to be made via signatures, as defined in
* https://eips.ethereum.org/EIPS/eip-2612[EIP-2612].
*
* Adds the {permit} method, which can be used to change an account's ERC20 allowance (see {IERC20-allowance}) by
* presenting a message signed by the account. By not relying on {IERC20-approve}, the token holder account doesn't
* need to send a transaction, and thus is not required to hold Ether at all.
*/
interface IERC20Permit {
/**
* @dev Sets `value` as the allowance of `spender` over ``owner``'s tokens,
* given ``owner``'s signed approval.
*
* IMPORTANT: The same issues {IERC20-approve} has related to transaction
* ordering also apply here.
*
* Emits an {Approval} event.
*
* Requirements:
*
* - `spender` cannot be the zero address.
* - `deadline` must be a timestamp in the future.
* - `v`, `r` and `s` must be a valid `secp256k1` signature from `owner`
* over the EIP712-formatted function arguments.
* - the signature must use ``owner``'s current nonce (see {nonces}).
*
* For more information on the signature format, see the
* https://eips.ethereum.org/EIPS/eip-2612#specification[relevant EIP
* section].
*/
function permit(
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) external;
/**
* @dev Returns the current nonce for `owner`. This value must be
* included whenever a signature is generated for {permit}.
*
* Every successful call to {permit} increases ``owner``'s nonce by one. This
* prevents a signature from being used multiple times.
*/
function nonces(address owner) external view returns (uint256);
/**
* @dev Returns the domain separator used in the encoding of the signature for {permit}, as defined by {EIP712}.
*/
// solhint-disable-next-line func-name-mixedcase
function DOMAIN_SEPARATOR() external view returns (bytes32);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC20/utils/SafeERC20.sol)
pragma solidity ^0.8.0;
import "../IERC20.sol";
import "../extensions/IERC20Permit.sol";
import "../../../utils/Address.sol";
/**
* @title SafeERC20
* @dev Wrappers around ERC20 operations that throw on failure (when the token
* contract returns false). Tokens that return no value (and instead revert or
* throw on failure) are also supported, non-reverting calls are assumed to be
* successful.
* To use this library you can add a `using SafeERC20 for IERC20;` statement to your contract,
* which allows you to call the safe operations as `token.safeTransfer(...)`, etc.
*/
library SafeERC20 {
using Address for address;
/**
* @dev Transfer `value` amount of `token` from the calling contract to `to`. If `token` returns no value,
* non-reverting calls are assumed to be successful.
*/
function safeTransfer(IERC20 token, address to, uint256 value) internal {
_callOptionalReturn(token, abi.encodeWithSelector(token.transfer.selector, to, value));
}
/**
* @dev Transfer `value` amount of `token` from `from` to `to`, spending the approval given by `from` to the
* calling contract. If `token` returns no value, non-reverting calls are assumed to be successful.
*/
function safeTransferFrom(IERC20 token, address from, address to, uint256 value) internal {
_callOptionalReturn(token, abi.encodeWithSelector(token.transferFrom.selector, from, to, value));
}
/**
* @dev Deprecated. This function has issues similar to the ones found in
* {IERC20-approve}, and its usage is discouraged.
*
* Whenever possible, use {safeIncreaseAllowance} and
* {safeDecreaseAllowance} instead.
*/
function safeApprove(IERC20 token, address spender, uint256 value) internal {
// safeApprove should only be called when setting an initial allowance,
// or when resetting it to zero. To increase and decrease it, use
// 'safeIncreaseAllowance' and 'safeDecreaseAllowance'
require(
(value == 0) || (token.allowance(address(this), spender) == 0),
"SafeERC20: approve from non-zero to non-zero allowance"
);
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, value));
}
/**
* @dev Increase the calling contract's allowance toward `spender` by `value`. If `token` returns no value,
* non-reverting calls are assumed to be successful.
*/
function safeIncreaseAllowance(IERC20 token, address spender, uint256 value) internal {
uint256 oldAllowance = token.allowance(address(this), spender);
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, oldAllowance + value));
}
/**
* @dev Decrease the calling contract's allowance toward `spender` by `value`. If `token` returns no value,
* non-reverting calls are assumed to be successful.
*/
function safeDecreaseAllowance(IERC20 token, address spender, uint256 value) internal {
unchecked {
uint256 oldAllowance = token.allowance(address(this), spender);
require(oldAllowance >= value, "SafeERC20: decreased allowance below zero");
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, oldAllowance - value));
}
}
/**
* @dev Set the calling contract's allowance toward `spender` to `value`. If `token` returns no value,
* non-reverting calls are assumed to be successful. Compatible with tokens that require the approval to be set to
* 0 before setting it to a non-zero value.
*/
function forceApprove(IERC20 token, address spender, uint256 value) internal {
bytes memory approvalCall = abi.encodeWithSelector(token.approve.selector, spender, value);
if (!_callOptionalReturnBool(token, approvalCall)) {
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, 0));
_callOptionalReturn(token, approvalCall);
}
}
/**
* @dev Use a ERC-2612 signature to set the `owner` approval toward `spender` on `token`.
* Revert on invalid signature.
*/
function safePermit(
IERC20Permit token,
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) internal {
uint256 nonceBefore = token.nonces(owner);
token.permit(owner, spender, value, deadline, v, r, s);
uint256 nonceAfter = token.nonces(owner);
require(nonceAfter == nonceBefore + 1, "SafeERC20: permit did not succeed");
}
/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*/
function _callOptionalReturn(IERC20 token, bytes memory data) private {
// We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since
// we're implementing it ourselves. We use {Address-functionCall} to perform this call, which verifies that
// the target address contains contract code and also asserts for success in the low-level call.
bytes memory returndata = address(token).functionCall(data, "SafeERC20: low-level call failed");
require(returndata.length == 0 || abi.decode(returndata, (bool)), "SafeERC20: ERC20 operation did not succeed");
}
/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*
* This is a variant of {_callOptionalReturn} that silents catches all reverts and returns a bool instead.
*/
function _callOptionalReturnBool(IERC20 token, bytes memory data) private returns (bool) {
// We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since
// we're implementing it ourselves. We cannot use {Address-functionCall} here since this should return false
// and not revert is the subcall reverts.
(bool success, bytes memory returndata) = address(token).call(data);
return
success && (returndata.length == 0 || abi.decode(returndata, (bool))) && Address.isContract(address(token));
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (utils/Address.sol)
pragma solidity ^0.8.1;
/**
* @dev Collection of functions related to the address type
*/
library Address {
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]
* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* - an externally-owned account
* - a contract in construction
* - an address where a contract will be created
* - an address where a contract lived, but was destroyed
*
* Furthermore, `isContract` will also return true if the target contract within
* the same transaction is already scheduled for destruction by `SELFDESTRUCT`,
* which only has an effect at the end of a transaction.
* ====
*
* [IMPORTANT]
* ====
* You shouldn't rely on `isContract` to protect against flash loan attacks!
*
* Preventing calls from contracts is highly discouraged. It breaks composability, breaks support for smart wallets
* like Gnosis Safe, and does not provide security since it can be circumvented by calling from a contract
* constructor.
* ====
*/
function isContract(address account) internal view returns (bool) {
// This method relies on extcodesize/address.code.length, which returns 0
// for contracts in construction, since the code is only stored at the end
// of the constructor execution.
return account.code.length > 0;
}
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://consensys.net/diligence/blog/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.8.0/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/
function sendValue(address payable recipient, uint256 amount) internal {
require(address(this).balance >= amount, "Address: insufficient balance");
(bool success, ) = recipient.call{value: amount}("");
require(success, "Address: unable to send value, recipient may have reverted");
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain `call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, "Address: low-level call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCall(
address target,
bytes memory data,
string memory errorMessage
) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/
function functionCallWithValue(address target, bytes memory data, uint256 value) internal returns (bytes memory) {
return functionCallWithValue(target, data, value, "Address: low-level call with value failed");
}
/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCallWithValue(
address target,
bytes memory data,
uint256 value,
string memory errorMessage
) internal returns (bytes memory) {
require(address(this).balance >= value, "Address: insufficient balance for call");
(bool success, bytes memory returndata) = target.call{value: value}(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
return functionStaticCall(target, data, "Address: low-level static call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(
address target,
bytes memory data,
string memory errorMessage
) internal view returns (bytes memory) {
(bool success, bytes memory returndata) = target.staticcall(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(address target, bytes memory data) internal returns (bytes memory) {
return functionDelegateCall(target, data, "Address: low-level delegate call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(
address target,
bytes memory data,
string memory errorMessage
) internal returns (bytes memory) {
(bool success, bytes memory returndata) = target.delegatecall(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Tool to verify that a low level call to smart-contract was successful, and revert (either by bubbling
* the revert reason or using the provided one) in case of unsuccessful call or if target was not a contract.
*
* _Available since v4.8._
*/
function verifyCallResultFromTarget(
address target,
bool success,
bytes memory returndata,
string memory errorMessage
) internal view returns (bytes memory) {
if (success) {
if (returndata.length == 0) {
// only check isContract if the call was successful and the return data is empty
// otherwise we already know that it was a contract
require(isContract(target), "Address: call to non-contract");
}
return returndata;
} else {
_revert(returndata, errorMessage);
}
}
/**
* @dev Tool to verify that a low level call was successful, and revert if it wasn't, either by bubbling the
* revert reason or using the provided one.
*
* _Available since v4.3._
*/
function verifyCallResult(
bool success,
bytes memory returndata,
string memory errorMessage
) internal pure returns (bytes memory) {
if (success) {
return returndata;
} else {
_revert(returndata, errorMessage);
}
}
function _revert(bytes memory returndata, string memory errorMessage) private pure {
// Look for revert reason and bubble it up if present
if (returndata.length > 0) {
// The easiest way to bubble the revert reason is using memory via assembly
/// @solidity memory-safe-assembly
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/Context.sol)
pragma solidity ^0.8.0;
/**
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/
abstract contract Context {
function _msgSender() internal view virtual returns (address) {
return msg.sender;
}
function _msgData() internal view virtual returns (bytes calldata) {
return msg.data;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/Counters.sol)
pragma solidity ^0.8.0;
/**
* @title Counters
* @author Matt Condon (@shrugs)
* @dev Provides counters that can only be incremented, decremented or reset. This can be used e.g. to track the number
* of elements in a mapping, issuing ERC721 ids, or counting request ids.
*
* Include with `using Counters for Counters.Counter;`
*/
library Counters {
struct Counter {
// This variable should never be directly accessed by users of the library: interactions must be restricted to
// the library's function. As of Solidity v0.5.2, this cannot be enforced, though there is a proposal to add
// this feature: see https://github.com/ethereum/solidity/issues/4637
uint256 _value; // default: 0
}
function current(Counter storage counter) internal view returns (uint256) {
return counter._value;
}
function increment(Counter storage counter) internal {
unchecked {
counter._value += 1;
}
}
function decrement(Counter storage counter) internal {
uint256 value = counter._value;
require(value > 0, "Counter: decrement overflow");
unchecked {
counter._value = value - 1;
}
}
function reset(Counter storage counter) internal {
counter._value = 0;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (utils/ShortStrings.sol)
pragma solidity ^0.8.8;
import "./StorageSlot.sol";
// | string | 0xAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA |
// | length | 0x BB |
type ShortString is bytes32;
/**
* @dev This library provides functions to convert short memory strings
* into a `ShortString` type that can be used as an immutable variable.
*
* Strings of arbitrary length can be optimized using this library if
* they are short enough (up to 31 bytes) by packing them with their
* length (1 byte) in a single EVM word (32 bytes). Additionally, a
* fallback mechanism can be used for every other case.
*
* Usage example:
*
* ```solidity
* contract Named {
* using ShortStrings for *;
*
* ShortString private immutable _name;
* string private _nameFallback;
*
* constructor(string memory contractName) {
* _name = contractName.toShortStringWithFallback(_nameFallback);
* }
*
* function name() external view returns (string memory) {
* return _name.toStringWithFallback(_nameFallback);
* }
* }
* ```
*/
library ShortStrings {
// Used as an identifier for strings longer than 31 bytes.
bytes32 private constant _FALLBACK_SENTINEL = 0x00000000000000000000000000000000000000000000000000000000000000FF;
error StringTooLong(string str);
error InvalidShortString();
/**
* @dev Encode a string of at most 31 chars into a `ShortString`.
*
* This will trigger a `StringTooLong` error is the input string is too long.
*/
function toShortString(string memory str) internal pure returns (ShortString) {
bytes memory bstr = bytes(str);
if (bstr.length > 31) {
revert StringTooLong(str);
}
return ShortString.wrap(bytes32(uint256(bytes32(bstr)) | bstr.length));
}
/**
* @dev Decode a `ShortString` back to a "normal" string.
*/
function toString(ShortString sstr) internal pure returns (string memory) {
uint256 len = byteLength(sstr);
// using `new string(len)` would work locally but is not memory safe.
string memory str = new string(32);
/// @solidity memory-safe-assembly
assembly {
mstore(str, len)
mstore(add(str, 0x20), sstr)
}
return str;
}
/**
* @dev Return the length of a `ShortString`.
*/
function byteLength(ShortString sstr) internal pure returns (uint256) {
uint256 result = uint256(ShortString.unwrap(sstr)) & 0xFF;
if (result > 31) {
revert InvalidShortString();
}
return result;
}
/**
* @dev Encode a string into a `ShortString`, or write it to storage if it is too long.
*/
function toShortStringWithFallback(string memory value, string storage store) internal returns (ShortString) {
if (bytes(value).length < 32) {
return toShortString(value);
} else {
StorageSlot.getStringSlot(store).value = value;
return ShortString.wrap(_FALLBACK_SENTINEL);
}
}
/**
* @dev Decode a string that was encoded to `ShortString` or written to storage using {setWithFallback}.
*/
function toStringWithFallback(ShortString value, string storage store) internal pure returns (string memory) {
if (ShortString.unwrap(value) != _FALLBACK_SENTINEL) {
return toString(value);
} else {
return store;
}
}
/**
* @dev Return the length of a string that was encoded to `ShortString` or written to storage using {setWithFallback}.
*
* WARNING: This will return the "byte length" of the string. This may not reflect the actual length in terms of
* actual characters as the UTF-8 encoding of a single character can span over multiple bytes.
*/
function byteLengthWithFallback(ShortString value, string storage store) internal view returns (uint256) {
if (ShortString.unwrap(value) != _FALLBACK_SENTINEL) {
return byteLength(value);
} else {
return bytes(store).length;
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (utils/StorageSlot.sol)
// This file was procedurally generated from scripts/generate/templates/StorageSlot.js.
pragma solidity ^0.8.0;
/**
* @dev Library for reading and writing primitive types to specific storage slots.
*
* Storage slots are often used to avoid storage conflict when dealing with upgradeable contracts.
* This library helps with reading and writing to such slots without the need for inline assembly.
*
* The functions in this library return Slot structs that contain a `value` member that can be used to read or write.
*
* Example usage to set ERC1967 implementation slot:
* ```solidity
* contract ERC1967 {
* bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
*
* function _getImplementation() internal view returns (address) {
* return StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value;
* }
*
* function _setImplementation(address newImplementation) internal {
* require(Address.isContract(newImplementation), "ERC1967: new implementation is not a contract");
* StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
* }
* }
* ```
*
* _Available since v4.1 for `address`, `bool`, `bytes32`, `uint256`._
* _Available since v4.9 for `string`, `bytes`._
*/
library StorageSlot {
struct AddressSlot {
address value;
}
struct BooleanSlot {
bool value;
}
struct Bytes32Slot {
bytes32 value;
}
struct Uint256Slot {
uint256 value;
}
struct StringSlot {
string value;
}
struct BytesSlot {
bytes value;
}
/**
* @dev Returns an `AddressSlot` with member `value` located at `slot`.
*/
function getAddressSlot(bytes32 slot) internal pure returns (AddressSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `BooleanSlot` with member `value` located at `slot`.
*/
function getBooleanSlot(bytes32 slot) internal pure returns (BooleanSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Bytes32Slot` with member `value` located at `slot`.
*/
function getBytes32Slot(bytes32 slot) internal pure returns (Bytes32Slot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Uint256Slot` with member `value` located at `slot`.
*/
function getUint256Slot(bytes32 slot) internal pure returns (Uint256Slot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `StringSlot` with member `value` located at `slot`.
*/
function getStringSlot(bytes32 slot) internal pure returns (StringSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `StringSlot` representation of the string storage pointer `store`.
*/
function getStringSlot(string storage store) internal pure returns (StringSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := store.slot
}
}
/**
* @dev Returns an `BytesSlot` with member `value` located at `slot`.
*/
function getBytesSlot(bytes32 slot) internal pure returns (BytesSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `BytesSlot` representation of the bytes storage pointer `store`.
*/
function getBytesSlot(bytes storage store) internal pure returns (BytesSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := store.slot
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (utils/Strings.sol)
pragma solidity ^0.8.0;
import "./math/Math.sol";
import "./math/SignedMath.sol";
/**
* @dev String operations.
*/
library Strings {
bytes16 private constant _SYMBOLS = "0123456789abcdef";
uint8 private constant _ADDRESS_LENGTH = 20;
/**
* @dev Converts a `uint256` to its ASCII `string` decimal representation.
*/
function toString(uint256 value) internal pure returns (string memory) {
unchecked {
uint256 length = Math.log10(value) + 1;
string memory buffer = new string(length);
uint256 ptr;
/// @solidity memory-safe-assembly
assembly {
ptr := add(buffer, add(32, length))
}
while (true) {
ptr--;
/// @solidity memory-safe-assembly
assembly {
mstore8(ptr, byte(mod(value, 10), _SYMBOLS))
}
value /= 10;
if (value == 0) break;
}
return buffer;
}
}
/**
* @dev Converts a `int256` to its ASCII `string` decimal representation.
*/
function toString(int256 value) internal pure returns (string memory) {
return string(abi.encodePacked(value < 0 ? "-" : "", toString(SignedMath.abs(value))));
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation.
*/
function toHexString(uint256 value) internal pure returns (string memory) {
unchecked {
return toHexString(value, Math.log256(value) + 1);
}
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation with fixed length.
*/
function toHexString(uint256 value, uint256 length) internal pure returns (string memory) {
bytes memory buffer = new bytes(2 * length + 2);
buffer[0] = "0";
buffer[1] = "x";
for (uint256 i = 2 * length + 1; i > 1; --i) {
buffer[i] = _SYMBOLS[value & 0xf];
value >>= 4;
}
require(value == 0, "Strings: hex length insufficient");
return string(buffer);
}
/**
* @dev Converts an `address` with fixed length of 20 bytes to its not checksummed ASCII `string` hexadecimal representation.
*/
function toHexString(address addr) internal pure returns (string memory) {
return toHexString(uint256(uint160(addr)), _ADDRESS_LENGTH);
}
/**
* @dev Returns true if the two strings are equal.
*/
function equal(string memory a, string memory b) internal pure returns (bool) {
return keccak256(bytes(a)) == keccak256(bytes(b));
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (utils/cryptography/ECDSA.sol)
pragma solidity ^0.8.0;
import "../Strings.sol";
/**
* @dev Elliptic Curve Digital Signature Algorithm (ECDSA) operations.
*
* These functions can be used to verify that a message was signed by the holder
* of the private keys of a given address.
*/
library ECDSA {
enum RecoverError {
NoError,
InvalidSignature,
InvalidSignatureLength,
InvalidSignatureS,
InvalidSignatureV // Deprecated in v4.8
}
function _throwError(RecoverError error) private pure {
if (error == RecoverError.NoError) {
return; // no error: do nothing
} else if (error == RecoverError.InvalidSignature) {
revert("ECDSA: invalid signature");
} else if (error == RecoverError.InvalidSignatureLength) {
revert("ECDSA: invalid signature length");
} else if (error == RecoverError.InvalidSignatureS) {
revert("ECDSA: invalid signature 's' value");
}
}
/**
* @dev Returns the address that signed a hashed message (`hash`) with
* `signature` or error string. This address can then be used for verification purposes.
*
* The `ecrecover` EVM opcode allows for malleable (non-unique) signatures:
* this function rejects them by requiring the `s` value to be in the lower
* half order, and the `v` value to be either 27 or 28.
*
* IMPORTANT: `hash` _must_ be the result of a hash operation for the
* verification to be secure: it is possible to craft signatures that
* recover to arbitrary addresses for non-hashed data. A safe way to ensure
* this is by receiving a hash of the original message (which may otherwise
* be too long), and then calling {toEthSignedMessageHash} on it.
*
* Documentation for signature generation:
* - with https://web3js.readthedocs.io/en/v1.3.4/web3-eth-accounts.html#sign[Web3.js]
* - with https://docs.ethers.io/v5/api/signer/#Signer-signMessage[ethers]
*
* _Available since v4.3._
*/
function tryRecover(bytes32 hash, bytes memory signature) internal pure returns (address, RecoverError) {
if (signature.length == 65) {
bytes32 r;
bytes32 s;
uint8 v;
// ecrecover takes the signature parameters, and the only way to get them
// currently is to use assembly.
/// @solidity memory-safe-assembly
assembly {
r := mload(add(signature, 0x20))
s := mload(add(signature, 0x40))
v := byte(0, mload(add(signature, 0x60)))
}
return tryRecover(hash, v, r, s);
} else {
return (address(0), RecoverError.InvalidSignatureLength);
}
}
/**
* @dev Returns the address that signed a hashed message (`hash`) with
* `signature`. This address can then be used for verification purposes.
*
* The `ecrecover` EVM opcode allows for malleable (non-unique) signatures:
* this function rejects them by requiring the `s` value to be in the lower
* half order, and the `v` value to be either 27 or 28.
*
* IMPORTANT: `hash` _must_ be the result of a hash operation for the
* verification to be secure: it is possible to craft signatures that
* recover to arbitrary addresses for non-hashed data. A safe way to ensure
* this is by receiving a hash of the original message (which may otherwise
* be too long), and then calling {toEthSignedMessageHash} on it.
*/
function recover(bytes32 hash, bytes memory signature) internal pure returns (address) {
(address recovered, RecoverError error) = tryRecover(hash, signature);
_throwError(error);
return recovered;
}
/**
* @dev Overload of {ECDSA-tryRecover} that receives the `r` and `vs` short-signature fields separately.
*
* See https://eips.ethereum.org/EIPS/eip-2098[EIP-2098 short signatures]
*
* _Available since v4.3._
*/
function tryRecover(bytes32 hash, bytes32 r, bytes32 vs) internal pure returns (address, RecoverError) {
bytes32 s = vs & bytes32(0x7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff);
uint8 v = uint8((uint256(vs) >> 255) + 27);
return tryRecover(hash, v, r, s);
}
/**
* @dev Overload of {ECDSA-recover} that receives the `r and `vs` short-signature fields separately.
*
* _Available since v4.2._
*/
function recover(bytes32 hash, bytes32 r, bytes32 vs) internal pure returns (address) {
(address recovered, RecoverError error) = tryRecover(hash, r, vs);
_throwError(error);
return recovered;
}
/**
* @dev Overload of {ECDSA-tryRecover} that receives the `v`,
* `r` and `s` signature fields separately.
*
* _Available since v4.3._
*/
function tryRecover(bytes32 hash, uint8 v, bytes32 r, bytes32 s) internal pure returns (address, RecoverError) {
// EIP-2 still allows signature malleability for ecrecover(). Remove this possibility and make the signature
// unique. Appendix F in the Ethereum Yellow paper (https://ethereum.github.io/yellowpaper/paper.pdf), defines
// the valid range for s in (301): 0 < s < secp256k1n ÷ 2 + 1, and for v in (302): v ∈ {27, 28}. Most
// signatures from current libraries generate a unique signature with an s-value in the lower half order.
//
// If your library generates malleable signatures, such as s-values in the upper range, calculate a new s-value
// with 0xFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEBAAEDCE6AF48A03BBFD25E8CD0364141 - s1 and flip v from 27 to 28 or
// vice versa. If your library also generates signatures with 0/1 for v instead 27/28, add 27 to v to accept
// these malleable signatures as well.
if (uint256(s) > 0x7FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF5D576E7357A4501DDFE92F46681B20A0) {
return (address(0), RecoverError.InvalidSignatureS);
}
// If the signature is valid (and not malleable), return the signer address
address signer = ecrecover(hash, v, r, s);
if (signer == address(0)) {
return (address(0), RecoverError.InvalidSignature);
}
return (signer, RecoverError.NoError);
}
/**
* @dev Overload of {ECDSA-recover} that receives the `v`,
* `r` and `s` signature fields separately.
*/
function recover(bytes32 hash, uint8 v, bytes32 r, bytes32 s) internal pure returns (address) {
(address recovered, RecoverError error) = tryRecover(hash, v, r, s);
_throwError(error);
return recovered;
}
/**
* @dev Returns an Ethereum Signed Message, created from a `hash`. This
* produces hash corresponding to the one signed with the
* https://eth.wiki/json-rpc/API#eth_sign[`eth_sign`]
* JSON-RPC method as part of EIP-191.
*
* See {recover}.
*/
function toEthSignedMessageHash(bytes32 hash) internal pure returns (bytes32 message) {
// 32 is the length in bytes of hash,
// enforced by the type signature above
/// @solidity memory-safe-assembly
assembly {
mstore(0x00, "\x19Ethereum Signed Message:\n32")
mstore(0x1c, hash)
message := keccak256(0x00, 0x3c)
}
}
/**
* @dev Returns an Ethereum Signed Message, created from `s`. This
* produces hash corresponding to the one signed with the
* https://eth.wiki/json-rpc/API#eth_sign[`eth_sign`]
* JSON-RPC method as part of EIP-191.
*
* See {recover}.
*/
function toEthSignedMessageHash(bytes memory s) internal pure returns (bytes32) {
return keccak256(abi.encodePacked("\x19Ethereum Signed Message:\n", Strings.toString(s.length), s));
}
/**
* @dev Returns an Ethereum Signed Typed Data, created from a
* `domainSeparator` and a `structHash`. This produces hash corresponding
* to the one signed with the
* https://eips.ethereum.org/EIPS/eip-712[`eth_signTypedData`]
* JSON-RPC method as part of EIP-712.
*
* See {recover}.
*/
function toTypedDataHash(bytes32 domainSeparator, bytes32 structHash) internal pure returns (bytes32 data) {
/// @solidity memory-safe-assembly
assembly {
let ptr := mload(0x40)
mstore(ptr, "\x19\x01")
mstore(add(ptr, 0x02), domainSeparator)
mstore(add(ptr, 0x22), structHash)
data := keccak256(ptr, 0x42)
}
}
/**
* @dev Returns an Ethereum Signed Data with intended validator, created from a
* `validator` and `data` according to the version 0 of EIP-191.
*
* See {recover}.
*/
function toDataWithIntendedValidatorHash(address validator, bytes memory data) internal pure returns (bytes32) {
return keccak256(abi.encodePacked("\x19\x00", validator, data));
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (utils/cryptography/EIP712.sol)
pragma solidity ^0.8.8;
import "./ECDSA.sol";
import "../ShortStrings.sol";
import "../../interfaces/IERC5267.sol";
/**
* @dev https://eips.ethereum.org/EIPS/eip-712[EIP 712] is a standard for hashing and signing of typed structured data.
*
* The encoding specified in the EIP is very generic, and such a generic implementation in Solidity is not feasible,
* thus this contract does not implement the encoding itself. Protocols need to implement the type-specific encoding
* they need in their contracts using a combination of `abi.encode` and `keccak256`.
*
* This contract implements the EIP 712 domain separator ({_domainSeparatorV4}) that is used as part of the encoding
* scheme, and the final step of the encoding to obtain the message digest that is then signed via ECDSA
* ({_hashTypedDataV4}).
*
* The implementation of the domain separator was designed to be as efficient as possible while still properly updating
* the chain id to protect against replay attacks on an eventual fork of the chain.
*
* NOTE: This contract implements the version of the encoding known as "v4", as implemented by the JSON RPC method
* https://docs.metamask.io/guide/signing-data.html[`eth_signTypedDataV4` in MetaMask].
*
* NOTE: In the upgradeable version of this contract, the cached values will correspond to the address, and the domain
* separator of the implementation contract. This will cause the `_domainSeparatorV4` function to always rebuild the
* separator from the immutable values, which is cheaper than accessing a cached version in cold storage.
*
* _Available since v3.4._
*
* @custom:oz-upgrades-unsafe-allow state-variable-immutable state-variable-assignment
*/
abstract contract EIP712 is IERC5267 {
using ShortStrings for *;
bytes32 private constant _TYPE_HASH =
keccak256("EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)");
// Cache the domain separator as an immutable value, but also store the chain id that it corresponds to, in order to
// invalidate the cached domain separator if the chain id changes.
bytes32 private immutable _cachedDomainSeparator;
uint256 private immutable _cachedChainId;
address private immutable _cachedThis;
bytes32 private immutable _hashedName;
bytes32 private immutable _hashedVersion;
ShortString private immutable _name;
ShortString private immutable _version;
string private _nameFallback;
string private _versionFallback;
/**
* @dev Initializes the domain separator and parameter caches.
*
* The meaning of `name` and `version` is specified in
* https://eips.ethereum.org/EIPS/eip-712#definition-of-domainseparator[EIP 712]:
*
* - `name`: the user readable name of the signing domain, i.e. the name of the DApp or the protocol.
* - `version`: the current major version of the signing domain.
*
* NOTE: These parameters cannot be changed except through a xref:learn::upgrading-smart-contracts.adoc[smart
* contract upgrade].
*/
constructor(string memory name, string memory version) {
_name = name.toShortStringWithFallback(_nameFallback);
_version = version.toShortStringWithFallback(_versionFallback);
_hashedName = keccak256(bytes(name));
_hashedVersion = keccak256(bytes(version));
_cachedChainId = block.chainid;
_cachedDomainSeparator = _buildDomainSeparator();
_cachedThis = address(this);
}
/**
* @dev Returns the domain separator for the current chain.
*/
function _domainSeparatorV4() internal view returns (bytes32) {
if (address(this) == _cachedThis && block.chainid == _cachedChainId) {
return _cachedDomainSeparator;
} else {
return _buildDomainSeparator();
}
}
function _buildDomainSeparator() private view returns (bytes32) {
return keccak256(abi.encode(_TYPE_HASH, _hashedName, _hashedVersion, block.chainid, address(this)));
}
/**
* @dev Given an already https://eips.ethereum.org/EIPS/eip-712#definition-of-hashstruct[hashed struct], this
* function returns the hash of the fully encoded EIP712 message for this domain.
*
* This hash can be used together with {ECDSA-recover} to obtain the signer of a message. For example:
*
* ```solidity
* bytes32 digest = _hashTypedDataV4(keccak256(abi.encode(
* keccak256("Mail(address to,string contents)"),
* mailTo,
* keccak256(bytes(mailContents))
* )));
* address signer = ECDSA.recover(digest, signature);
* ```
*/
function _hashTypedDataV4(bytes32 structHash) internal view virtual returns (bytes32) {
return ECDSA.toTypedDataHash(_domainSeparatorV4(), structHash);
}
/**
* @dev See {EIP-5267}.
*
* _Available since v4.9._
*/
function eip712Domain()
public
view
virtual
override
returns (
bytes1 fields,
string memory name,
string memory version,
uint256 chainId,
address verifyingContract,
bytes32 salt,
uint256[] memory extensions
)
{
return (
hex"0f", // 01111
_name.toStringWithFallback(_nameFallback),
_version.toStringWithFallback(_versionFallback),
block.chainid,
address(this),
bytes32(0),
new uint256[](0)
);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/introspection/ERC165.sol)
pragma solidity ^0.8.0;
import "./IERC165.sol";
/**
* @dev Implementation of the {IERC165} interface.
*
* Contracts that want to implement ERC165 should inherit from this contract and override {supportsInterface} to check
* for the additional interface id that will be supported. For example:
*
* ```solidity
* function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
* return interfaceId == type(MyInterface).interfaceId || super.supportsInterface(interfaceId);
* }
* ```
*
* Alternatively, {ERC165Storage} provides an easier to use but more expensive implementation.
*/
abstract contract ERC165 is IERC165 {
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return interfaceId == type(IERC165).interfaceId;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/introspection/IERC165.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC165 standard, as defined in the
* https://eips.ethereum.org/EIPS/eip-165[EIP].
*
* Implementers can declare support of contract interfaces, which can then be
* queried by others ({ERC165Checker}).
*
* For an implementation, see {ERC165}.
*/
interface IERC165 {
/**
* @dev Returns true if this contract implements the interface defined by
* `interfaceId`. See the corresponding
* https://eips.ethereum.org/EIPS/eip-165#how-interfaces-are-identified[EIP section]
* to learn more about how these ids are created.
*
* This function call must use less than 30 000 gas.
*/
function supportsInterface(bytes4 interfaceId) external view returns (bool);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (utils/math/Math.sol)
pragma solidity ^0.8.0;
/**
* @dev Standard math utilities missing in the Solidity language.
*/
library Math {
enum Rounding {
Down, // Toward negative infinity
Up, // Toward infinity
Zero // Toward zero
}
/**
* @dev Returns the largest of two numbers.
*/
function max(uint256 a, uint256 b) internal pure returns (uint256) {
return a > b ? a : b;
}
/**
* @dev Returns the smallest of two numbers.
*/
function min(uint256 a, uint256 b) internal pure returns (uint256) {
return a < b ? a : b;
}
/**
* @dev Returns the average of two numbers. The result is rounded towards
* zero.
*/
function average(uint256 a, uint256 b) internal pure returns (uint256) {
// (a + b) / 2 can overflow.
return (a & b) + (a ^ b) / 2;
}
/**
* @dev Returns the ceiling of the division of two numbers.
*
* This differs from standard division with `/` in that it rounds up instead
* of rounding down.
*/
function ceilDiv(uint256 a, uint256 b) internal pure returns (uint256) {
// (a + b - 1) / b can overflow on addition, so we distribute.
return a == 0 ? 0 : (a - 1) / b + 1;
}
/**
* @notice Calculates floor(x * y / denominator) with full precision. Throws if result overflows a uint256 or denominator == 0
* @dev Original credit to Remco Bloemen under MIT license (https://xn--2-umb.com/21/muldiv)
* with further edits by Uniswap Labs also under MIT license.
*/
function mulDiv(uint256 x, uint256 y, uint256 denominator) internal pure returns (uint256 result) {
unchecked {
// 512-bit multiply [prod1 prod0] = x * y. Compute the product mod 2^256 and mod 2^256 - 1, then use
// use the Chinese Remainder Theorem to reconstruct the 512 bit result. The result is stored in two 256
// variables such that product = prod1 * 2^256 + prod0.
uint256 prod0; // Least significant 256 bits of the product
uint256 prod1; // Most significant 256 bits of the product
assembly {
let mm := mulmod(x, y, not(0))
prod0 := mul(x, y)
prod1 := sub(sub(mm, prod0), lt(mm, prod0))
}
// Handle non-overflow cases, 256 by 256 division.
if (prod1 == 0) {
// Solidity will revert if denominator == 0, unlike the div opcode on its own.
// The surrounding unchecked block does not change this fact.
// See https://docs.soliditylang.org/en/latest/control-structures.html#checked-or-unchecked-arithmetic.
return prod0 / denominator;
}
// Make sure the result is less than 2^256. Also prevents denominator == 0.
require(denominator > prod1, "Math: mulDiv overflow");
///////////////////////////////////////////////
// 512 by 256 division.
///////////////////////////////////////////////
// Make division exact by subtracting the remainder from [prod1 prod0].
uint256 remainder;
assembly {
// Compute remainder using mulmod.
remainder := mulmod(x, y, denominator)
// Subtract 256 bit number from 512 bit number.
prod1 := sub(prod1, gt(remainder, prod0))
prod0 := sub(prod0, remainder)
}
// Factor powers of two out of denominator and compute largest power of two divisor of denominator. Always >= 1.
// See https://cs.stackexchange.com/q/138556/92363.
// Does not overflow because the denominator cannot be zero at this stage in the function.
uint256 twos = denominator & (~denominator + 1);
assembly {
// Divide denominator by twos.
denominator := div(denominator, twos)
// Divide [prod1 prod0] by twos.
prod0 := div(prod0, twos)
// Flip twos such that it is 2^256 / twos. If twos is zero, then it becomes one.
twos := add(div(sub(0, twos), twos), 1)
}
// Shift in bits from prod1 into prod0.
prod0 |= prod1 * twos;
// Invert denominator mod 2^256. Now that denominator is an odd number, it has an inverse modulo 2^256 such
// that denominator * inv = 1 mod 2^256. Compute the inverse by starting with a seed that is correct for
// four bits. That is, denominator * inv = 1 mod 2^4.
uint256 inverse = (3 * denominator) ^ 2;
// Use the Newton-Raphson iteration to improve the precision. Thanks to Hensel's lifting lemma, this also works
// in modular arithmetic, doubling the correct bits in each step.
inverse *= 2 - denominator * inverse; // inverse mod 2^8
inverse *= 2 - denominator * inverse; // inverse mod 2^16
inverse *= 2 - denominator * inverse; // inverse mod 2^32
inverse *= 2 - denominator * inverse; // inverse mod 2^64
inverse *= 2 - denominator * inverse; // inverse mod 2^128
inverse *= 2 - denominator * inverse; // inverse mod 2^256
// Because the division is now exact we can divide by multiplying with the modular inverse of denominator.
// This will give us the correct result modulo 2^256. Since the preconditions guarantee that the outcome is
// less than 2^256, this is the final result. We don't need to compute the high bits of the result and prod1
// is no longer required.
result = prod0 * inverse;
return result;
}
}
/**
* @notice Calculates x * y / denominator with full precision, following the selected rounding direction.
*/
function mulDiv(uint256 x, uint256 y, uint256 denominator, Rounding rounding) internal pure returns (uint256) {
uint256 result = mulDiv(x, y, denominator);
if (rounding == Rounding.Up && mulmod(x, y, denominator) > 0) {
result += 1;
}
return result;
}
/**
* @dev Returns the square root of a number. If the number is not a perfect square, the value is rounded down.
*
* Inspired by Henry S. Warren, Jr.'s "Hacker's Delight" (Chapter 11).
*/
function sqrt(uint256 a) internal pure returns (uint256) {
if (a == 0) {
return 0;
}
// For our first guess, we get the biggest power of 2 which is smaller than the square root of the target.
//
// We know that the "msb" (most significant bit) of our target number `a` is a power of 2 such that we have
// `msb(a) <= a < 2*msb(a)`. This value can be written `msb(a)=2**k` with `k=log2(a)`.
//
// This can be rewritten `2**log2(a) <= a < 2**(log2(a) + 1)`
// → `sqrt(2**k) <= sqrt(a) < sqrt(2**(k+1))`
// → `2**(k/2) <= sqrt(a) < 2**((k+1)/2) <= 2**(k/2 + 1)`
//
// Consequently, `2**(log2(a) / 2)` is a good first approximation of `sqrt(a)` with at least 1 correct bit.
uint256 result = 1 << (log2(a) >> 1);
// At this point `result` is an estimation with one bit of precision. We know the true value is a uint128,
// since it is the square root of a uint256. Newton's method converges quadratically (precision doubles at
// every iteration). We thus need at most 7 iteration to turn our partial result with one bit of precision
// into the expected uint128 result.
unchecked {
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
return min(result, a / result);
}
}
/**
* @notice Calculates sqrt(a), following the selected rounding direction.
*/
function sqrt(uint256 a, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = sqrt(a);
return result + (rounding == Rounding.Up && result * result < a ? 1 : 0);
}
}
/**
* @dev Return the log in base 2, rounded down, of a positive value.
* Returns 0 if given 0.
*/
function log2(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >> 128 > 0) {
value >>= 128;
result += 128;
}
if (value >> 64 > 0) {
value >>= 64;
result += 64;
}
if (value >> 32 > 0) {
value >>= 32;
result += 32;
}
if (value >> 16 > 0) {
value >>= 16;
result += 16;
}
if (value >> 8 > 0) {
value >>= 8;
result += 8;
}
if (value >> 4 > 0) {
value >>= 4;
result += 4;
}
if (value >> 2 > 0) {
value >>= 2;
result += 2;
}
if (value >> 1 > 0) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 2, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log2(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log2(value);
return result + (rounding == Rounding.Up && 1 << result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 10, rounded down, of a positive value.
* Returns 0 if given 0.
*/
function log10(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >= 10 ** 64) {
value /= 10 ** 64;
result += 64;
}
if (value >= 10 ** 32) {
value /= 10 ** 32;
result += 32;
}
if (value >= 10 ** 16) {
value /= 10 ** 16;
result += 16;
}
if (value >= 10 ** 8) {
value /= 10 ** 8;
result += 8;
}
if (value >= 10 ** 4) {
value /= 10 ** 4;
result += 4;
}
if (value >= 10 ** 2) {
value /= 10 ** 2;
result += 2;
}
if (value >= 10 ** 1) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 10, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log10(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log10(value);
return result + (rounding == Rounding.Up && 10 ** result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 256, rounded down, of a positive value.
* Returns 0 if given 0.
*
* Adding one to the result gives the number of pairs of hex symbols needed to represent `value` as a hex string.
*/
function log256(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >> 128 > 0) {
value >>= 128;
result += 16;
}
if (value >> 64 > 0) {
value >>= 64;
result += 8;
}
if (value >> 32 > 0) {
value >>= 32;
result += 4;
}
if (value >> 16 > 0) {
value >>= 16;
result += 2;
}
if (value >> 8 > 0) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 256, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log256(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log256(value);
return result + (rounding == Rounding.Up && 1 << (result << 3) < value ? 1 : 0);
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.8.0) (utils/math/SignedMath.sol)
pragma solidity ^0.8.0;
/**
* @dev Standard signed math utilities missing in the Solidity language.
*/
library SignedMath {
/**
* @dev Returns the largest of two signed numbers.
*/
function max(int256 a, int256 b) internal pure returns (int256) {
return a > b ? a : b;
}
/**
* @dev Returns the smallest of two signed numbers.
*/
function min(int256 a, int256 b) internal pure returns (int256) {
return a < b ? a : b;
}
/**
* @dev Returns the average of two signed numbers without overflow.
* The result is rounded towards zero.
*/
function average(int256 a, int256 b) internal pure returns (int256) {
// Formula from the book "Hacker's Delight"
int256 x = (a & b) + ((a ^ b) >> 1);
return x + (int256(uint256(x) >> 255) & (a ^ b));
}
/**
* @dev Returns the absolute unsigned value of a signed value.
*/
function abs(int256 n) internal pure returns (uint256) {
unchecked {
// must be unchecked in order to support `n = type(int256).min`
return uint256(n >= 0 ? n : -n);
}
}
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
import "@openzeppelin/contracts/access/AccessControl.sol";
import "@openzeppelin/contracts/metatx/ERC2771Context.sol";
/**
@notice This contract manages the role-based access control via _checkRole() with meaningful
error messages if the user does not have the requested role. This contract is inherited by
PolicyManager, RuleRegistry, KeyringCredentials, IdentityTree, WalletCheck and
KeyringZkCredentialUpdater.
*/
abstract contract KeyringAccessControl is ERC2771Context, AccessControl {
address private constant NULL_ADDRESS = address(0);
// Reservations hold space in upgradeable contracts for future versions of this module.
bytes32[50] private _reservedSlots;
error Unacceptable(string reason);
error Unauthorized(
address sender,
string module,
string method,
bytes32 role,
string reason,
string context
);
/**
* @param trustedForwarder Contract address that is allowed to relay message signers.
*/
constructor(address trustedForwarder) ERC2771Context(trustedForwarder) {
if (trustedForwarder == NULL_ADDRESS)
revert Unacceptable({
reason: "trustedForwarder cannot be empty"
});
}
/**
* @notice Disables incomplete ERC165 support inherited from oz/AccessControl.sol
* @return bool Never returned.
* @dev Always reverts. Do not rely on ERC165 support to interact with this contract.
*/
function supportsInterface(bytes4 /*interfaceId */) public view virtual override returns (bool) {
revert Unacceptable ({ reason: "ERC2165 is unsupported" });
}
/**
* @notice Role-based access control.
* @dev Reverts if the account is missing the role.
* @param role The role to check.
* @param account An address to check for the role.
* @param context For reporting purposes. Usually the function that requested the permission check.
*/
function _checkRole(
bytes32 role,
address account,
string memory context
) internal view {
if (!hasRole(role, account))
revert Unauthorized({
sender: account,
module: "KeyringAccessControl",
method: "_checkRole",
role: role,
reason: "sender does not have the required role",
context: context
});
}
/**
* @notice Returns ERC2771 signer if msg.sender is a trusted forwarder, otherwise returns msg.sender.
* @return sender User deemed to have signed the transaction.
*/
function _msgSender()
internal
view
virtual
override(Context, ERC2771Context)
returns (address sender)
{
return ERC2771Context._msgSender();
}
/**
* @notice Returns msg.data if not from a trusted forwarder, or truncated msg.data if the signer was
appended to msg.data
* @dev Although not currently used, this function forms part of ERC2771 so is included for completeness.
* @return data Data deemed to be the msg.data
*/
function _msgData()
internal
view
virtual
override(Context, ERC2771Context)
returns (bytes calldata)
{
return ERC2771Context._msgData();
}
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
import "../interfaces/IConsent.sol";
import "../access/KeyringAccessControl.sol";
contract Consent is IConsent, KeyringAccessControl {
uint256 private constant MINIMUM_MAX_CONSENT_PERIOD = 1 hours;
uint256 public immutable override maximumConsentPeriod;
/**
* @dev Mapping of Traders to their associated consent deadlines.
*/
mapping(address => uint256) public override userConsentDeadlines;
/**
* @param trustedForwarder The address of a trustedForwarder contract.
* @param maximumConsentPeriod_ The upper limit for user consent deadlines.
*/
constructor(
address trustedForwarder,
uint256 maximumConsentPeriod_
)
KeyringAccessControl(trustedForwarder)
{
if (maximumConsentPeriod_ < MINIMUM_MAX_CONSENT_PERIOD)
revert Unacceptable({
reason: "The maximum consent period must be at least 1 hour"
});
maximumConsentPeriod = maximumConsentPeriod_;
}
/**
* @notice A user may grant consent to service mitigation measures.
* @dev The deadline must be no further in the future than the maximumConsentDeadline.
* @param revocationDeadline The consent will automatically expire at the deadline.
*/
function grantDegradedServiceConsent(uint256 revocationDeadline) external override {
if(revocationDeadline < block.timestamp)
revert Unacceptable({
reason: "revocation deadline cannot be in the past"
});
if(revocationDeadline > block.timestamp + maximumConsentPeriod)
revert Unacceptable({
reason: "revocation deadline is too far in the future"
});
userConsentDeadlines[_msgSender()] = revocationDeadline;
emit GrantDegradedServiceConsent(_msgSender(), revocationDeadline);
}
/**
* @notice A user may revoke their consent to mitigation measures.
*/
function revokeMitigationConsent() external override {
userConsentDeadlines[_msgSender()] = 0;
emit RevokeDegradedServiceConsent(_msgSender());
}
/**
* @param user The user to inspect.
* @return doesIndeed True if the user's consent deadline is in the future.
*/
function userConsentsToMitigation(address user) public view override returns (bool doesIndeed) {
doesIndeed = userConsentDeadlines[user] >= block.timestamp;
}
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
import "../interfaces/IKeyringGuard.sol";
import "../interfaces/IRuleRegistry.sol";
import "../interfaces/IPolicyManager.sol";
import "../interfaces/IUserPolicies.sol";
import "../interfaces/IWalletCheck.sol";
import "../interfaces/IKeyringCredentials.sol";
import "../interfaces/IExemptionsManager.sol";
import "../consent/Consent.sol";
/**
* @notice KeyringGuard implementation that uses immutable configuration parameters and presents
* a simplified modifier for use in derived contracts.
*/
contract KeyringGuard is IKeyringGuard, Consent {
using AddressSet for AddressSet.Set;
uint8 private constant VERSION = 1;
bytes32 private constant NULL_BYTES32 = bytes32(0);
address internal constant NULL_ADDRESS = address(0);
address public immutable keyringCredentials;
address public immutable policyManager;
address public immutable userPolicies;
address public immutable exemptionsManager;
uint32 public immutable admissionPolicyId;
bytes32 public immutable universeRule;
bytes32 public immutable emptyRule;
/**
* @dev Modifier checks ZK credentials and trader wallets for sender and receiver.
*/
modifier checkKeyring(address from, address to) {
if (!isAuthorized(from, to))
revert Unacceptable({
reason: "trader not authorized"
});
_;
}
/**
* @param config Keyring contract addresses.
* @param admissionPolicyId_ The unique identifier of a Policy against which user accounts will be compared.
* @param maximumConsentPeriod_ The upper limit for user consent deadlines.
*/
constructor(
KeyringConfig memory config,
uint32 admissionPolicyId_,
uint32 maximumConsentPeriod_
) Consent(config.trustedForwarder, maximumConsentPeriod_) {
if (config.keyringCredentials == NULL_ADDRESS) revert Unacceptable({ reason: "credentials_ cannot be empty" });
if (config.policyManager == NULL_ADDRESS) revert Unacceptable({ reason: "policyManager_ cannot be empty" });
if (config.userPolicies == NULL_ADDRESS) revert Unacceptable({ reason: "userPolicies_ cannot be empty" });
if (config.exemptionsManager == NULL_ADDRESS)
revert Unacceptable({ reason: "exemptionsManager_ cannot be empty"});
if (!IPolicyManager(config.policyManager).isPolicy(admissionPolicyId_))
revert Unacceptable({ reason: "admissionPolicyId not found" });
if (IPolicyManager(config.policyManager).policyDisabled(admissionPolicyId_))
revert Unacceptable({ reason: "admissionPolicy is disabled" });
keyringCredentials = config.keyringCredentials;
policyManager = config.policyManager;
userPolicies = config.userPolicies;
exemptionsManager = config.exemptionsManager;
admissionPolicyId = admissionPolicyId_;
(universeRule, emptyRule) = IRuleRegistry(IPolicyManager(config.policyManager).ruleRegistry()).genesis();
if (universeRule == NULL_BYTES32)
revert Unacceptable({ reason: "the universe rule is not defined in the PolicyManager's RuleRegistry" });
if (emptyRule == NULL_BYTES32)
revert Unacceptable({ reason: "the empty rule is not defined in the PolicyManager's RuleRegistry" });
emit KeyringGuardConfigured(
config.keyringCredentials,
config.policyManager,
config.userPolicies,
admissionPolicyId_,
universeRule,
emptyRule
);
}
/**
* @notice Checks keyringCache for cached PII credential.
* @param observer The user who must consent to reliance on degraded services.
* @param subject The subject to inspect.
* @return passed True if cached credential is new enough, or if degraded service mitigation is possible
* and the user has provided consent.
*/
function checkZKPIICache(address observer, address subject) public override returns (bool passed) {
passed = IKeyringCredentials(keyringCredentials).checkCredential(
observer,
subject,
admissionPolicyId
);
}
/**
* @notice Check the trader wallet against all wallet checks in the policy configuration.
* @param observer The user who must consent to reliance on degraded services.
* @param subject The subject to inspect.
* @return passed True if the wallet check is new enough, or if the degraded service mitigation is possible
* and the user has provided consent.
*/
function checkTraderWallet(address observer, address subject) public override returns (bool passed) {
address[] memory walletChecks = IPolicyManager(policyManager).policyWalletChecks(admissionPolicyId);
for (uint256 i = 0; i < walletChecks.length; i++) {
if (!IWalletCheck(walletChecks[i]).checkWallet(
observer,
subject,
admissionPolicyId
)) return false;
}
return true;
}
/**
* @notice Check from and to addresses for compliance.
* @param from First trader wallet to inspect.
* @param to Second trader wallet to inspect.
* @return passed True, if both parties are compliant.
* @dev Both parties are compliant, where compliant means:
* - they have a cached credential and if required, a wallet check
* - they are an approved counterparty of the other party
* - they can rely on degraded service mitigation, and their counterparty consents
* - the policy exempts them from compliance checks, usually reserved for contracts
*/
function isAuthorized(address from, address to) public override returns (bool passed) {
bool fromIsApprovedByTo;
bool toIsApprovedByFrom;
bool fromExempt;
bool toExempt;
// A party is compliant if it is exempt.
fromExempt = IExemptionsManager(exemptionsManager).isPolicyExemption(
admissionPolicyId,
from
);
toExempt = IExemptionsManager(exemptionsManager).isPolicyExemption(
admissionPolicyId,
to
);
// If both parties are exempt, allow the trade.
if(fromExempt && toExempt) return true;
// If the policy is disabled and both parties consent, allow all trades.
// If the policy is disabled and one or more parties does not consent, block trade.
if(IPolicyManager(policyManager).policyDisabled(admissionPolicyId)) {
if (
(userConsentDeadlines[from] > block.timestamp || fromExempt) &&
(userConsentDeadlines[to] > block.timestamp || toExempt)
)
{
return true;
} else {
return false;
}
}
// A party is compliant if the counterparty approves interactions with them.
bool policyAllowApprovedCounterparties =
IPolicyManager(policyManager).policyAllowApprovedCounterparties(admissionPolicyId);
if (policyAllowApprovedCounterparties) {
fromIsApprovedByTo = IUserPolicies(userPolicies).isApproved(to, from);
toIsApprovedByFrom = IUserPolicies(userPolicies).isApproved(from, to);
}
// Is not authorized if wallet check or cached credential does not pass.
// Cache may rely on degraded service mitigation and user consent.
if (!fromExempt && !fromIsApprovedByTo) {
if (!checkTraderWallet(to, from)) return false;
if (!checkZKPIICache(to, from)) return false;
}
if (!toExempt && !toIsApprovedByFrom) {
if (!checkTraderWallet(from, to)) return false;
if (!checkZKPIICache(from, to)) return false;
}
// Trade is acceptable
return true;
}
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
interface IConsent {
event GrantDegradedServiceConsent(address indexed user, uint256 revocationDeadline);
event RevokeDegradedServiceConsent(address indexed user);
function maximumConsentPeriod() external view returns (uint256);
function userConsentDeadlines(address user) external view returns (uint256);
function grantDegradedServiceConsent(uint256 revocationDeadline) external;
function revokeMitigationConsent() external;
function userConsentsToMitigation(address user) external view returns (bool doesIndeed);
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
interface IDegradable {
event SetPolicyParameters(
address indexed admin,
uint32 indexed policyId,
uint256 degradationPeriod,
uint256 degradationFreshness);
struct MitigationParameters {
uint256 degradationPeriod;
uint256 degradationFreshness;
}
function ROLE_SERVICE_SUPERVISOR() external view returns (bytes32);
function defaultDegradationPeriod() external view returns (uint256);
function defaultFreshnessPeriod() external view returns (uint256);
function policyManager() external view returns (address);
function lastUpdate() external view returns (uint256);
function subjectUpdates(bytes32 subject) external view returns (uint256 timestamp);
function setPolicyParameters(
uint32 policyId,
uint256 degradationPeriod,
uint256 degradationFreshness
) external;
function canMitigate(
address observer,
bytes32 subject,
uint32 policyId
) external view returns (bool canIndeed) ;
function isDegraded(uint32 policyId) external view returns (bool isIndeed);
function isMitigationQualified(
bytes32 subject,
uint32 policyId
) external view returns (bool qualifies);
function degradationPeriod(uint32 policyId) external view returns (uint256 inSeconds);
function degradationFreshness(uint32 policyId) external view returns (uint256 inSeconds);
function mitigationCutoff(uint32 policyId) external view returns (uint256 cutoffTime);
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
interface IExemptionsManager {
event ExemptionsManagerInitialized(address indexed admin, address indexed policyManager);
event AdmitGlobalExemption(address indexed admin, address indexed exemption, string description);
event UpdateGlobalExemption(address indexed admin, address indexed exemption, string description);
event ApprovePolicyExemptions(address indexed admin, uint32 policyId, address indexed exemption);
function ROLE_GLOBAL_EXEMPTIONS_ADMIN() external view returns (bytes32);
function policyManager() external view returns (address);
function exemptionDescriptions(address) external view returns (string memory);
function init(address policyManager_) external;
function admitGlobalExemption(address[] calldata exemptAddresses, string memory description) external;
function updateGlobalExemption(address exemptAddress, string memory description) external;
function approvePolicyExemptions(uint32 policyId, address[] memory exemptions) external;
function globalExemptionsCount() external view returns (uint256 count);
function globalExemptionAtIndex(uint256 index) external view returns (address exemption);
function isGlobalExemption(address exemption) external view returns (bool isIndeed);
function policyExemptionsCount(uint32 policyId) external view returns (uint256 count);
function policyExemptionAtIndex(uint32 policyId, uint256 index) external view returns (address exemption);
function isPolicyExemption(uint32 policyId, address exemption) external view returns (bool isIndeed);
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
interface IIdentityTree {
event Deployed(
address admin,
address trustedForwarder_,
address policyManager_,
uint256 maximumConsentPeriod);
event SetMerkleRootBirthday(bytes32 merkleRoot, uint256 birthday);
struct PolicyMitigation {
uint256 mitigationFreshness;
uint256 degradationPeriod;
}
function ROLE_AGGREGATOR() external view returns (bytes32);
function setMerkleRootBirthday(bytes32 root, uint256 birthday) external;
function checkRoot(
address observer,
bytes32 merkleRoot,
uint32 admissionPolicyId
) external returns (bool passed);
function merkleRootCount() external view returns (uint256 count);
function merkleRootAtIndex(uint256 index) external view returns (bytes32 merkleRoot);
function isMerkleRoot(bytes32 merkleRoot) external view returns (bool isIndeed);
function latestRoot() external view returns (bytes32 root);
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
interface IKeyringCredentials {
event CredentialsDeployed(
address deployer,
address trustedForwarder,
address policyManager,
uint256 maximumConsentPeriod);
event CredentialsInitialized(address admin);
event UpdateCredential(
uint8 version,
address updater,
address indexed trader,
uint32 indexed admissionPolicyId);
function ROLE_CREDENTIAL_UPDATER() external view returns (bytes32);
function init() external;
function setCredential(
address trader,
uint32 admissionPolicyId,
uint256 timestamp
) external;
function checkCredential(
address observer,
address subject,
uint32 admissionPolicyId
) external returns (bool passed);
function keyGen(
address trader,
uint32 admissionPolicyId
) external pure returns (bytes32 key);
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
/**
* @notice KeyringGuard implementation that uses immutables and presents a simplified modifier.
*/
interface IKeyringGuard {
struct KeyringConfig {
address trustedForwarder;
address collateralToken;
address keyringCredentials;
address policyManager;
address userPolicies;
address exemptionsManager;
}
event KeyringGuardConfigured(
address keyringCredentials,
address policyManager,
address userPolicies,
uint32 admissionPolicyId,
bytes32 universeRule,
bytes32 emptyRule
);
function checkZKPIICache(address observer, address subject) external returns (bool passed);
function checkTraderWallet(address observer, address subject) external returns (bool passed);
function isAuthorized(address from, address to) external returns (bool passed);
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
import "@openzeppelin/contracts/token/ERC20/IERC20.sol";
/**
@notice Issues wrapped DAI tokens that can only be transferred to holders that maintain
compliance with the configured policy.
*/
interface IKycERC20 is IERC20 {
function depositFor(address account, uint256 amount) external returns (bool);
function withdrawTo(address account, uint256 amount) external returns (bool);
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
import "../lib/PolicyStorage.sol";
interface IPolicyManager {
event PolicyManagerDeployed(
address deployer,
address trustedForwarder,
address ruleRegistry);
event PolicyManagerInitialized(address admin);
event CreatePolicy(
address indexed owner,
uint32 indexed policyId,
PolicyStorage.PolicyScalar policyScalar,
address[] attestors,
address[] walletChecks,
bytes32 policyOwnerRole,
bytes32 policyUserAdminRole
);
event DisablePolicy(address user, uint32 policyId);
event UpdatePolicyScalar(
address indexed owner,
uint32 indexed policyId,
PolicyStorage.PolicyScalar policyScalar,
uint256 deadline);
event UpdatePolicyDescription(address indexed owner, uint32 indexed policyId, string description, uint256 deadline);
event UpdatePolicyRuleId(address indexed owner, uint32 indexed policyId, bytes32 indexed ruleId, uint256 deadline);
event UpdatePolicyTtl(address indexed owner, uint32 indexed policyId, uint128 ttl, uint256 deadline);
event UpdatePolicyGracePeriod(
address indexed owner,
uint32 indexed policyId,
uint128 gracePeriod,
uint256 deadline);
event UpdatePolicyLock(address indexed owner, uint32 indexed policyId, bool locked, uint256 deadline);
event UpdatePolicyAllowApprovedCounterparties(
address indexed owner,
uint32 indexed policyId,
bool allowApprovedCounterparties,
uint256 deadline);
event UpdatePolicyDisablementPeriod(
address indexed admin,
uint32 indexed policyId,
uint256 disablementPeriod,
uint256 deadline
);
event PolicyDisabled(address indexed sender, uint32 indexed policyId);
event UpdatePolicyDeadline(address indexed owner, uint32 indexed policyId, uint256 deadline);
event AddPolicyAttestors(
address indexed owner,
uint32 indexed policyId,
address[] attestors,
uint256 deadline
);
event RemovePolicyAttestors(
address indexed owner,
uint32 indexed policyId,
address[] attestor,
uint256 deadline
);
event AddPolicyWalletChecks(
address indexed owner,
uint32 indexed policyId,
address[] walletChecks,
uint256 deadline
);
event RemovePolicyWalletChecks(
address indexed owner,
uint32 indexed policyId,
address[] walletChecks,
uint256 deadline
);
event AddPolicyBackdoor(
address indexed owner,
uint32 indexed policyId,
bytes32 backdoorId,
uint256 deadline
);
event RemovePolicyBackdoor(
address indexed owner,
uint32 indexed policyId,
bytes32 backdoorId,
uint256 deadline
);
event AdmitAttestor(address indexed admin, address indexed attestor, string uri);
event UpdateAttestorUri(address indexed admin, address indexed attestor, string uri);
event RemoveAttestor(address indexed admin, address indexed attestor);
event AdmitWalletCheck(address indexed admin, address indexed walletCheck);
event RemoveWalletCheck(address indexed admin, address indexed walletCheck);
event AdmitBackdoor(address indexed admin, bytes32 id, uint256[2] pubKey);
event MinimumPolicyDisablementPeriodUpdated(uint256 newPeriod);
function ROLE_POLICY_CREATOR() external view returns (bytes32);
function ROLE_GLOBAL_ATTESTOR_ADMIN() external view returns (bytes32);
function ROLE_GLOBAL_WALLETCHECK_ADMIN() external view returns (bytes32);
function ROLE_GLOBAL_VALIDATION_ADMIN() external view returns (bytes32);
function ROLE_GLOBAL_BACKDOOR_ADMIN() external view returns (bytes32);
function ruleRegistry() external view returns (address);
function init() external;
function createPolicy(
PolicyStorage.PolicyScalar calldata policyScalar,
address[] calldata attestors,
address[] calldata walletChecks
) external returns (uint32 policyId, bytes32 policyOwnerRoleId, bytes32 policyUserAdminRoleId);
function disablePolicy(uint32 policyId) external;
function updatePolicyScalar(
uint32 policyId,
PolicyStorage.PolicyScalar calldata policyScalar,
uint256 deadline
) external;
function updatePolicyDescription(uint32 policyId, string memory descriptionUtf8, uint256 deadline) external;
function updatePolicyRuleId(uint32 policyId, bytes32 ruleId, uint256 deadline) external;
function updatePolicyTtl(uint32 policyId, uint32 ttl, uint256 deadline) external;
function updatePolicyGracePeriod(uint32 policyId, uint32 gracePeriod, uint256 deadline) external;
function updatePolicyAllowApprovedCounterparties(
uint32 policyId,
bool allowApprovedCounterparties,uint256 deadline
) external;
function updatePolicyLock(uint32 policyId, bool locked, uint256 deadline) external;
function updatePolicyDisablementPeriod(uint32 policyId, uint256 disablementPeriod, uint256 deadline) external;
function setDeadline(uint32 policyId, uint256 deadline) external;
function addPolicyAttestors(uint32 policyId, address[] calldata attestors, uint256 deadline) external;
function removePolicyAttestors(uint32 policyId, address[] calldata attestors, uint256 deadline) external;
function addPolicyWalletChecks(uint32 policyId, address[] calldata walletChecks, uint256 deadline) external;
function removePolicyWalletChecks(uint32 policyId, address[] calldata walletChecks, uint256 deadline) external;
function addPolicyBackdoor(uint32 policyId, bytes32 backdoorId, uint256 deadline) external;
function removePolicyBackdoor(uint32 policyId, bytes32 backdoorId, uint256 deadline) external;
function admitAttestor(address attestor, string calldata uri) external;
function updateAttestorUri(address attestor, string calldata uri) external;
function removeAttestor(address attestor) external;
function admitWalletCheck(address walletCheck) external;
function removeWalletCheck(address walletCheck) external;
function admitBackdoor(uint256[2] memory pubKey) external;
function updateMinimumPolicyDisablementPeriod(uint256 minimumDisablementPeriod) external;
function policyOwnerRole(uint32 policyId) external pure returns (bytes32 ownerRole);
function policy(uint32 policyId)
external
returns (
PolicyStorage.PolicyScalar memory scalar,
address[] memory attestors,
address[] memory walletChecks,
bytes32[] memory backdoorRegimes,
uint256 deadline
);
function policyRawData(uint32 policyId)
external
view
returns(
uint256 deadline,
PolicyStorage.PolicyScalar memory scalarActive,
PolicyStorage.PolicyScalar memory scalarPending,
address[] memory attestorsActive,
address[] memory attestorsPendingAdditions,
address[] memory attestorsPendingRemovals,
address[] memory walletChecksActive,
address[] memory walletChecksPendingAdditions,
address[] memory walletChecksPendingRemovals,
bytes32[] memory backdoorsActive,
bytes32[] memory backdoorsPendingAdditions,
bytes32[] memory backdoorsPendingRemovals);
function policyScalarActive(uint32 policyId)
external
returns (PolicyStorage.PolicyScalar memory scalarActive);
function policyRuleId(uint32 policyId)
external
returns (bytes32 ruleId);
function policyTtl(uint32 policyId)
external
returns (uint32 ttl);
function policyAllowApprovedCounterparties(uint32 policyId)
external
returns (bool isAllowed);
function policyDisabled(uint32 policyId) external view returns (bool isDisabled);
function policyCanBeDisabled(uint32 policyId)
external
returns (bool canIndeed);
function policyAttestorCount(uint32 policyId) external returns (uint256 count);
function policyAttestorAtIndex(uint32 policyId, uint256 index)
external
returns (address attestor);
function policyAttestors(uint32 policyId) external returns (address[] memory attestors);
function isPolicyAttestor(uint32 policyId, address attestor)
external
returns (bool isIndeed);
function policyWalletCheckCount(uint32 policyId) external returns (uint256 count);
function policyWalletCheckAtIndex(uint32 policyId, uint256 index)
external
returns (address walletCheck);
function policyWalletChecks(uint32 policyId) external returns (address[] memory walletChecks);
function isPolicyWalletCheck(uint32 policyId, address walletCheck)
external
returns (bool isIndeed);
function policyBackdoorCount(uint32 policyId) external returns (uint256 count);
function policyBackdoorAtIndex(uint32 policyId, uint256 index) external returns (bytes32 backdoorId);
function policyBackdoors(uint32 policyId) external returns (bytes32[] memory backdoors);
function isPolicyBackdoor(uint32 policyId, bytes32 backdoorId) external returns (bool isIndeed);
function policyCount() external view returns (uint256 count);
function isPolicy(uint32 policyId) external view returns (bool isIndeed);
function globalAttestorCount() external view returns (uint256 count);
function globalAttestorAtIndex(uint256 index) external view returns (address attestor);
function isGlobalAttestor(address attestor) external view returns (bool isIndeed);
function globalWalletCheckCount() external view returns (uint256 count);
function globalWalletCheckAtIndex(uint256 index) external view returns(address walletCheck);
function isGlobalWalletCheck(address walletCheck) external view returns (bool isIndeed);
function globalBackdoorCount() external view returns (uint256 count);
function globalBackdoorAtIndex(uint256 index) external view returns (bytes32 backdoorId);
function isGlobalBackdoor(bytes32 backdoorId) external view returns (bool isIndeed);
function backdoorPubKey(bytes32 backdoorId) external view returns (uint256[2] memory pubKey);
function attestorUri(address attestor) external view returns (string memory);
function hasRole(bytes32 role, address user) external view returns (bool);
function minimumPolicyDisablementPeriod() external view returns (uint256 period);
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
import "../lib/Bytes32Set.sol";
interface IRuleRegistry {
enum Operator {
Base,
Union,
Intersection,
Complement
}
struct Rule {
string description;
string uri;
Bytes32Set.Set operandSet;
Operator operator;
bool toxic;
}
event RuleRegistryDeployed(address deployer, address trustedForwarder);
event RuleRegistryInitialized(
address admin,
string universeDescription,
string universeUri,
string emptyDescription,
string emptyUri,
bytes32 universeRule,
bytes32 emptyRule
);
event CreateRule(
address indexed user,
bytes32 indexed ruleId,
string description,
string uri,
bool toxic,
Operator operator,
bytes32[] operands
);
event SetToxic(address admin, bytes32 ruleId, bool isToxic);
function ROLE_RULE_ADMIN() external view returns (bytes32);
function init(
string calldata universeDescription,
string calldata universeUri,
string calldata emptyDescription,
string calldata emptyUri
) external;
function createRule(
string calldata description,
string calldata uri,
Operator operator,
bytes32[] calldata operands
) external returns (bytes32 ruleId);
function setToxic(bytes32 ruleId, bool toxic) external;
function genesis() external view returns (bytes32 universeRule, bytes32 emptyRule);
function ruleCount() external view returns (uint256 count);
function ruleAtIndex(uint256 index) external view returns (bytes32 ruleId);
function isRule(bytes32 ruleId) external view returns (bool isIndeed);
function rule(bytes32 ruleId)
external
view
returns (
string memory description,
string memory uri,
Operator operator,
uint256 operandCount
);
function ruleDescription(bytes32 ruleId) external view returns (string memory description);
function ruleUri(bytes32 ruleId) external view returns (string memory uri);
function ruleIsToxic(bytes32 ruleId) external view returns (bool isIndeed);
function ruleOperator(bytes32 ruleId) external view returns (Operator operator);
function ruleOperandCount(bytes32 ruleId) external view returns (uint256 count);
function ruleOperandAtIndex(bytes32 ruleId, uint256 index)
external
view
returns (bytes32 operandId);
function generateRuleId(
string calldata description,
Operator operator,
bytes32[] calldata operands
) external pure returns (bytes32 ruleId);
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
interface IUserPolicies {
event Deployed(address trustedForwarder, address policyManager);
event SetUserPolicy(address indexed trader, uint32 indexed policyId);
event AddApprovedCounterparty(address indexed, address indexed approved);
event RemoveApprovedCounterparty(address indexed, address indexed approved);
function userPolicies(address trader) external view returns (uint32);
function setUserPolicy(uint32 policyId) external;
function addApprovedCounterparty(address approved) external;
function addApprovedCounterparties(address[] calldata approved) external;
function removeApprovedCounterparty(address approved) external;
function removeApprovedCounterparties(address[] calldata approved) external;
function approvedCounterpartyCount(address trader) external view returns (uint256 count);
function approvedCounterpartyAtIndex(address trader, uint256 index) external view returns (address approved);
function isApproved(address trader, address counterparty) external view returns (bool isIndeed);
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
interface IWalletCheck {
event Deployed(
address indexed admin,
address trustedForwarder,
address policyManager,
uint256 maximumConsentPeriod,
string uri);
event UpdateUri(address indexed admin, string uri);
event SetWalletCheck(address indexed admin, address indexed wallet, bool isWhitelisted);
function ROLE_WALLETCHECK_LIST_ADMIN() external view returns (bytes32);
function ROLE_WALLETCHECK_META_ADMIN() external view returns (bytes32);
function updateUri(string calldata uri_) external;
function setWalletCheck(address wallet, bool whitelisted, uint256 timestamp) external;
function checkWallet(
address observer,
address wallet,
uint32 admissionPolicyId
) external returns (bool passed);
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
/**
* @notice Key sets with enumeration and delete. Uses mappings for random access and existence checks,
* and dynamic arrays for enumeration. Key uniqueness is enforced.
* @dev Sets are unordered. Delete operations reorder keys.
*/
library AddressSet {
struct Set {
mapping(address => uint256) keyPointers;
address[] keyList;
}
string private constant MODULE = "AddressSet";
error AddressSetConsistency(string module, string method, string reason, string context);
/**
* @notice Insert a key to store.
* @dev Duplicate keys are not permitted.
* @param self A Set struct
* @param key A key to insert cast as an address.
* @param context A message string about interpretation of the issue. Normally the calling function.
*/
function insert(
Set storage self,
address key,
string memory context
) internal {
if (exists(self, key))
revert AddressSetConsistency({
module: MODULE,
method: "insert",
reason: "exists",
context: context
});
self.keyList.push(key);
self.keyPointers[key] = self.keyList.length - 1;
}
/**
* @notice Remove a key from the store.
* @dev The key to remove must exist.
* @param self A Set struct
* @param key An address to remove from the Set.
* @param context A message string about interpretation of the issue. Normally the calling function.
*/
function remove(
Set storage self,
address key,
string memory context
) internal {
if (!exists(self, key))
revert AddressSetConsistency({
module: MODULE,
method: "remove",
reason: "does not exist",
context: context
});
address keyToMove = self.keyList[count(self) - 1];
uint256 rowToReplace = self.keyPointers[key];
self.keyPointers[keyToMove] = rowToReplace;
self.keyList[rowToReplace] = keyToMove;
delete self.keyPointers[key];
self.keyList.pop();
}
/**
* @notice Count the keys.
* @param self A Set struct
* @return uint256 Length of the `keyList`, which correspond to the number of elements
* stored in the `keyPointers` mapping.
*/
function count(Set storage self) internal view returns (uint256) {
return (self.keyList.length);
}
/**
* @notice Check if a key exists in the Set.
* @param self A Set struct
* @param key An address to look for in the Set.
* @return bool True if the key exists in the Set, otherwise false.
*/
function exists(Set storage self, address key) internal view returns (bool) {
if (self.keyList.length == 0) return false;
return self.keyList[self.keyPointers[key]] == key;
}
/**
* @notice Retrieve an address by its position in the set. Use for enumeration.
* @param self A Set struct
* @param index The internal index to inspect.
* @return address Address value stored at the index position in the Set.
*/
function keyAtIndex(Set storage self, uint256 index) internal view returns (address) {
return self.keyList[index];
}
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
/**
* @notice Key sets with enumeration. Uses mappings for random and existence checks
* and dynamic arrays for enumeration. Key uniqueness is enforced.
* @dev This implementation has deletion disabled (removed) because doesn't require it. Therefore, keys
are organized in order of insertion.
*/
library Bytes32Set {
struct Set {
mapping(bytes32 => uint256) keyPointers;
bytes32[] keyList;
}
string private constant MODULE = "Bytes32Set";
error Bytes32SetConsistency(string module, string method, string reason, string context);
/**
* @notice Insert a key to store.
* @dev Duplicate keys are not permitted.
* @param self A Set struct
* @param key A value in the Set.
* @param context A message string about interpretation of the issue. Normally the calling function.
*/
function insert(
Set storage self,
bytes32 key,
string memory context
) internal {
if (exists(self, key))
revert Bytes32SetConsistency({
module: MODULE,
method: "insert",
reason: "exists",
context: context
});
self.keyPointers[key] = self.keyList.length;
self.keyList.push(key);
}
/**
* @notice Remove a key from the store.
* @dev The key to remove must exist.
* @param self A Set struct
* @param key An address to remove from the Set.
* @param context A message string about interpretation of the issue. Normally the calling function.
*/
function remove(
Set storage self,
bytes32 key,
string memory context
) internal {
if (!exists(self, key))
revert Bytes32SetConsistency({
module: MODULE,
method: "remove",
reason: "does not exist",
context: context
});
bytes32 keyToMove = self.keyList[count(self) - 1];
uint256 rowToReplace = self.keyPointers[key];
self.keyPointers[keyToMove] = rowToReplace;
self.keyList[rowToReplace] = keyToMove;
delete self.keyPointers[key];
self.keyList.pop();
}
/**
* @notice Count the keys.
* @param self A Set struct
* @return uint256 Length of the `keyList` which is the count of keys contained in the Set.
*/
function count(Set storage self) internal view returns (uint256) {
return (self.keyList.length);
}
/**
* @notice Check if a key exists in the Set.
* @param self A Set struct
* @param key A key to look for.
* @return bool True if the key exists in the Set, otherwise false.
*/
function exists(Set storage self, bytes32 key) internal view returns (bool) {
if (self.keyList.length == 0) return false;
return self.keyList[self.keyPointers[key]] == key;
}
/**
* @notice Retrieve an bytes32 by its position in the Set. Use for enumeration.
* @param self A Set struct
* @param index The position in the Set to inspect.
* @return bytes32 The key stored in the Set at the index position.
*/
function keyAtIndex(Set storage self, uint256 index) internal view returns (bytes32) {
return self.keyList[index];
}
}// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.14;
import "./AddressSet.sol";
import "../interfaces/IRuleRegistry.sol";
import "../interfaces/IIdentityTree.sol";
import "../interfaces/IDegradable.sol";
import "../interfaces/IKeyringCredentials.sol";
/**
@notice PolicyStorage attends to state management concerns for the PolicyManager. It establishes the
storage layout and is responsible for internal state integrity and managing state transitions. The
PolicyManager is responsible for orchestration of the functions implemented here as well as access
control.
*/
library PolicyStorage {
using AddressSet for AddressSet.Set;
using Bytes32Set for Bytes32Set.Set;
uint32 private constant MAX_POLICIES = 2 ** 20;
uint32 private constant MAX_TTL = 2 * 365 days;
uint256 public constant MAX_DISABLEMENT_PERIOD = 120 days;
uint256 private constant MAX_BACKDOORS = 1;
uint256 private constant UNIVERSAL_RULE = 0;
address private constant NULL_ADDRESS = address(0);
error Unacceptable(string reason);
/// @dev The App struct contains the essential PolicyManager state including an array of Policies.
struct App {
uint256 minimumPolicyDisablementPeriod;
Policy[] policies;
AddressSet.Set globalWalletCheckSet;
AddressSet.Set globalAttestorSet;
mapping(address => string) attestorUris;
Bytes32Set.Set backdoorSet;
mapping(bytes32 => uint256[2]) backdoorPubKey;
}
/// @dev PolicyScalar contains the non-indexed values in a policy configuration.
struct PolicyScalar {
bytes32 ruleId;
string descriptionUtf8;
uint32 ttl;
uint32 gracePeriod;
bool allowApprovedCounterparties;
uint256 disablementPeriod;
bool locked;
}
/// @dev PolicyAttestors contains the active policy attestors as well as scheduled changes.
struct PolicyAttestors {
AddressSet.Set activeSet;
AddressSet.Set pendingAdditionSet;
AddressSet.Set pendingRemovalSet;
}
/// @dev PolicyWalletChecks contains the active policy wallet checks as well as scheduled changes.
struct PolicyWalletChecks {
AddressSet.Set activeSet;
AddressSet.Set pendingAdditionSet;
AddressSet.Set pendingRemovalSet;
}
/// @dev PolicyBackdoors contain and active policy backdoors (identifiers) as well as scheduled changes.
struct PolicyBackdoors {
Bytes32Set.Set activeSet;
Bytes32Set.Set pendingAdditionSet;
Bytes32Set.Set pendingRemovalSet;
}
/// @dev Policy contains the active and scheduled changes and the deadline when the changes will
/// take effect.
struct Policy {
bool disabled;
uint256 deadline;
PolicyScalar scalarActive;
PolicyScalar scalarPending;
PolicyAttestors attestors;
PolicyWalletChecks walletChecks;
PolicyBackdoors backdoors;
}
/**
* @notice A policy can be disabled if the policy is deemed failed.
* @param policyObj The policy to disable.
*/
function disablePolicy(
Policy storage policyObj
) public
{
if (!policyHasFailed(policyObj))
revert Unacceptable({
reason: "only failed policies can be disabled"
});
policyObj.disabled = true;
policyObj.deadline = ~uint(0);
}
/**
* @notice A policy is deemed failed if all attestors or any wallet check is inactive
* over the policyDisablement period.
* @param policyObj The policy to inspect.
* @return hasIndeed True if all attestors have failed or any wallet check has failed,
where "failure" is no updates over the policyDisablement period.
*/
function policyHasFailed(
Policy storage policyObj
) public view returns (bool hasIndeed)
{
if (policyObj.disabled == true)
revert Unacceptable({
reason: "policy is already disabled"
});
uint256 i;
uint256 disablementPeriod = policyObj.scalarActive.disablementPeriod;
// If all attestors have failed
bool allAttestorsHaveFailed = true;
uint256 policyAttestorsCount = policyObj.attestors.activeSet.count();
for (i=0; i<policyAttestorsCount; i++) {
uint256 lastUpdate = IDegradable(policyObj.attestors.activeSet.keyAtIndex(i)).lastUpdate();
// We ignore unitialized services to prevent interference with new policies.
if (lastUpdate > 0) {
if(block.timestamp < lastUpdate + disablementPeriod) {
allAttestorsHaveFailed = false;
}
} else {
// No evidence of interrupted activity yet
allAttestorsHaveFailed = false;
}
}
if(!allAttestorsHaveFailed) {
// If any wallet check has failed
uint256 policyWalletChecksCount = policyObj.walletChecks.activeSet.count();
for (i=0; i<policyWalletChecksCount; i++) {
uint256 lastUpdate = IDegradable(policyObj.walletChecks.activeSet.keyAtIndex(i)).lastUpdate();
if (lastUpdate > 0) {
if(block.timestamp > lastUpdate + disablementPeriod) return true;
}
}
}
hasIndeed = allAttestorsHaveFailed;
}
/**
* @notice Updates the minimumPolicyDisablementPeriod property of the Policy struct.
* @param self A storage reference to the App storage
* @param minimumDisablementPeriod The new value for the minimumPolicyDisablementPeriod property.
*/
function updateMinimumPolicyDisablementPeriod(
App storage self,
uint256 minimumDisablementPeriod
) public
{
if (minimumDisablementPeriod >= MAX_DISABLEMENT_PERIOD)
revert Unacceptable({
reason: "minimum disablement period is too long"
});
self.minimumPolicyDisablementPeriod = minimumDisablementPeriod;
}
/**
* @notice The attestor admin can admit attestors into the global attestor whitelist.
* @param self PolicyManager App state.
* @param attestor Address of the attestor's identity tree contract.
* @param uri The URI refers to detailed information about the attestor.
*/
function insertGlobalAttestor(
App storage self,
address attestor,
string memory uri
) public
{
if (attestor == NULL_ADDRESS)
revert Unacceptable({
reason: "attestor cannot be empty"
});
if (bytes(uri).length == 0)
revert Unacceptable({
reason: "uri cannot be empty"
});
self.globalAttestorSet.insert(attestor, "PolicyStorage:insertGlobalAttestor");
self.attestorUris[attestor] = uri;
}
/**
* @notice The attestor admin can update the informational URIs for attestors on the whitelist.
* @dev No onchain logic relies on the URI.
* @param self PolicyManager App state.
* @param attestor Address of an attestor's identity tree contract on the whitelist.
* @param uri The URI refers to detailed information about the attestor.
*/
function updateGlobalAttestorUri(
App storage self,
address attestor,
string memory uri
) public
{
if (!self.globalAttestorSet.exists(attestor))
revert Unacceptable({
reason: "attestor not found"
});
if (bytes(uri).length == 0)
revert Unacceptable({
reason: "uri cannot be empty"
});
self.attestorUris[attestor] = uri;
}
/**
* @notice The attestor admin can remove attestors from the whitelist.
* @dev Does not remove attestors from policies that recognise the attestor to remove.
* @param self PolicyManager App state.
* @param attestor Address of an attestor identity tree to remove from the whitelist.
*/
function removeGlobalAttestor(
App storage self,
address attestor
) public
{
self.globalAttestorSet.remove(attestor, "PolicyStorage:removeGlobalAttestor");
}
/**
* @notice The wallet check admin can admit wallet check contracts into the system.
* @dev Wallet checks implement the IWalletCheck interface.
* @param self PolicyManager App state.
* @param walletCheck The address of a Wallet Check to admit into the global whitelist.
*/
function insertGlobalWalletCheck(
App storage self,
address walletCheck
) public
{
if (walletCheck == NULL_ADDRESS)
revert Unacceptable({
reason: "walletCheck cannot be empty"
});
self.globalWalletCheckSet.insert(walletCheck, "PolicyStorage:insertGlobalWalletCheck");
}
/**
* @notice The wallet check admin can remove a wallet check from the system.
* @dev Does not affect policies that utilize the wallet check.
* @param self PolicyManager App state.
* @param walletCheck The address of a Wallet Check to admit into the global whitelist.
*/
function removeGlobalWalletCheck(
App storage self,
address walletCheck
) public
{
self.globalWalletCheckSet.remove(walletCheck, "PolicyStorage:removeGlobalWalletCheck");
}
/**
* @notice The backdoor admin can add a backdoor.
* @dev pubKey must be unique.
* @param self PolicyManager App state.
* @param pubKey The public key for backdoor encryption.
*/
function insertGlobalBackdoor(
App storage self,
uint256[2] calldata pubKey
) public returns (bytes32 id)
{
id = keccak256(abi.encodePacked(pubKey));
self.backdoorPubKey[id] = pubKey;
self.backdoorSet.insert(
id,
"PolicyStorage:insertGlobalBackdoor"
);
}
/**
* @notice Creates a new policy that is owned by the creator.
* @dev Maximum unique policies is 2 ^ 20. Must be at least 1 attestor.
* @param self PolicyManager App state.
* @param policyScalar The new policy's non-indexed values.
* @param attestors A list of attestor identity tree contracts.
* @param walletChecks The address of one or more Wallet Checks to add to the Policy.
* @param ruleRegistry The address of the deployed RuleRegistry contract.
* @return policyId A PolicyStorage struct.Id The unique identifier of a Policy.
*/
function newPolicy(
App storage self,
PolicyScalar calldata policyScalar,
address[] memory attestors,
address[] memory walletChecks,
address ruleRegistry
) public returns (uint32 policyId)
{
(bytes32 universeRule, bytes32 emptyRule) = IRuleRegistry(ruleRegistry).genesis();
// Check that there is at least one attestor for the policy
if (
attestors.length < 1 &&
policyScalar.ruleId != universeRule &&
policyScalar.ruleId != emptyRule)
{
revert Unacceptable({
reason: "every policy needs at least one attestor"
});
}
uint256 i;
self.policies.push();
policyId = uint32(self.policies.length - 1);
if (policyId >= MAX_POLICIES)
revert Unacceptable({
reason: "max policies exceeded"
});
Policy storage policyObj = policyRawData(self, policyId);
uint256 deadline = block.timestamp;
writePolicyScalar(
self,
policyId,
policyScalar,
ruleRegistry,
deadline
);
processStaged(policyObj);
for (i=0; i<attestors.length; i++) {
address attestor = attestors[i];
if (!self.globalAttestorSet.exists(attestor))
revert Unacceptable({
reason: "attestor not found"
});
policyObj.attestors.activeSet.insert(attestor, "PolicyStorage:newPolicy");
}
for (i=0; i<walletChecks.length; i++) {
address walletCheck = walletChecks[i];
if (!self.globalWalletCheckSet.exists(walletCheck))
revert Unacceptable({
reason: "walletCheck not found"
});
policyObj.walletChecks.activeSet.insert(walletCheck, "PolicyStorage:newPolicy");
}
}
/**
* @notice Returns the internal policy state without processing staged changes.
* @dev Staged changes with deadlines in the past are presented as pending.
* @param self PolicyManager App state.
* @param policyId A PolicyStorage struct.Id The unique identifier of a Policy.
* @return policyInfo Policy info in the internal storage format without processing.
*/
function policyRawData(
App storage self,
uint32 policyId
) public view returns (Policy storage policyInfo)
{
policyInfo = self.policies[policyId];
}
/**
* @param activeSet The active set of addresses.
* @param additionSet The set of pending addresses to add to the active set.
*/
function _processAdditions(
AddressSet.Set storage activeSet,
AddressSet.Set storage additionSet
) private {
uint256 count = additionSet.count();
while (count > 0) {
address entity = additionSet.keyAtIndex(additionSet.count() - 1);
activeSet.insert(entity, "policyStorage:_processAdditions");
additionSet.remove(entity, "policyStorage:_processAdditions");
count--;
}
}
/**
* @param activeSet The active set of bytes32.
* @param additionSet The set of pending bytes32 to add to the active set.
*/
function _processAdditions(
Bytes32Set.Set storage activeSet,
Bytes32Set.Set storage additionSet
) private {
uint256 count = additionSet.count();
while (count > 0) {
bytes32 entity = additionSet.keyAtIndex(additionSet.count() - 1);
activeSet.insert(entity, "policyStorage:_processAdditions");
additionSet.remove(entity, "policyStorage:_processAdditions");
count--;
}
}
/**
* @param activeSet The active set of addresses.
* @param removalSet The set of pending addresses to remove from the active set.
*/
function _processRemovals(
AddressSet.Set storage activeSet,
AddressSet.Set storage removalSet
) private {
uint256 count = removalSet.count();
while (count > 0) {
address entity = removalSet.keyAtIndex(removalSet.count() - 1);
activeSet.remove(entity, "policyStorage:_processRemovals");
removalSet.remove(entity, "policyStorage:_processRemovals");
count--;
}
}
/**
* @param activeSet The active set of bytes32.
* @param removalSet The set of pending bytes32 to remove from the active set.
*/
function _processRemovals(
Bytes32Set.Set storage activeSet,
Bytes32Set.Set storage removalSet
) private {
uint256 count = removalSet.count();
while (count > 0) {
bytes32 entity = removalSet.keyAtIndex(removalSet.count() - 1);
activeSet.remove(entity, "policyStorage:_processRemovals");
removalSet.remove(entity, "policyStorage:_processRemovals");
count--;
}
}
/**
* @notice Processes staged changes to the policy state if the deadline is in the past.
* @dev Always call this before inspecting the the active policy state. .
* @param policyObj A Policy object.
*/
function processStaged(Policy storage policyObj) public {
uint256 deadline = policyObj.deadline;
if (deadline > 0 && deadline <= block.timestamp) {
policyObj.scalarActive = policyObj.scalarPending;
_processAdditions(policyObj.attestors.activeSet, policyObj.attestors.pendingAdditionSet);
_processRemovals(policyObj.attestors.activeSet, policyObj.attestors.pendingRemovalSet);
_processAdditions(policyObj.walletChecks.activeSet, policyObj.walletChecks.pendingAdditionSet);
_processRemovals(policyObj.walletChecks.activeSet, policyObj.walletChecks.pendingRemovalSet);
_processAdditions(policyObj.backdoors.activeSet, policyObj.backdoors.pendingAdditionSet);
_processRemovals(policyObj.backdoors.activeSet, policyObj.backdoors.pendingRemovalSet);
policyObj.deadline = 0;
}
}
/**
* @notice Prevents changes to locked and disabled Policies.
* @dev Reverts if the active policy lock is set to true or the Policy is disabled.
* @param policyObj A Policy object.
*/
function checkLock(
Policy storage policyObj
) public view
{
if (isLocked(policyObj) || policyObj.disabled)
revert Unacceptable({
reason: "policy is locked"
});
}
/**
* @notice Inspect the active policy lock.
* @param policyObj A Policy object.
* @return isIndeed True if the active policy locked parameter is set to true. True value if PolicyStorage
is locked, otherwise False.
*/
function isLocked(Policy storage policyObj) public view returns(bool isIndeed) {
isIndeed = policyObj.scalarActive.locked;
}
/**
* @notice Processes staged changes if the current deadline has passed and updates the deadline.
* @dev The deadline must be at least as far in the future as the active policy gracePeriod.
* @param policyObj A Policy object.
* @param deadline The timestamp when the staged changes will take effect. Overrides previous deadline.
*/
function setDeadline(
Policy storage policyObj,
uint256 deadline
) public
{
checkLock(policyObj);
// Deadline of 0 allows staging of changes with no implementation schedule.
// Positive deadlines must be at least graceTime seconds in the future.
if (deadline != 0 &&
(deadline < block.timestamp + policyObj.scalarActive.gracePeriod)
)
revert Unacceptable({
reason: "deadline in the past or too soon"
});
policyObj.deadline = deadline;
}
/**
* @notice Non-indexed Policy values can be updated in one step.
* @param self PolicyManager App state.
* @param policyId A PolicyStorage struct.Id The unique identifier of a Policy.
* @param policyScalar The new non-indexed properties.
* @param ruleRegistry The address of the deployed RuleRegistry contract.
* @param deadline The timestamp when the staged changes will take effect. Overrides previous deadline.
*/
function writePolicyScalar(
App storage self,
uint32 policyId,
PolicyStorage.PolicyScalar calldata policyScalar,
address ruleRegistry,
uint256 deadline
) public {
PolicyStorage.Policy storage policyObj = policyRawData(self, policyId);
processStaged(policyObj);
writeRuleId(policyObj, policyScalar.ruleId, ruleRegistry);
writeDescription(policyObj, policyScalar.descriptionUtf8);
writeTtl(policyObj, policyScalar.ttl);
writeGracePeriod(policyObj, policyScalar.gracePeriod);
writeAllowApprovedCounterparties(policyObj, policyScalar.allowApprovedCounterparties);
writePolicyLock(policyObj, policyScalar.locked);
writeDisablementPeriod(self, policyId, policyScalar.disablementPeriod);
setDeadline(policyObj, deadline);
}
/**
* @notice Writes a new RuleId to the pending Policy changes in a Policy.
* @param self A Policy object.
* @param ruleId The unique identifier of a Rule.
* @param ruleRegistry The address of the deployed RuleRegistry contract.
*/
function writeRuleId(
Policy storage self,
bytes32 ruleId,
address ruleRegistry
) public
{
if (!IRuleRegistry(ruleRegistry).isRule(ruleId))
revert Unacceptable({
reason: "rule not found"
});
self.scalarPending.ruleId = ruleId;
}
/**
* @notice Writes a new descriptionUtf8 to the pending Policy changes in a Policy.
* @param self A Policy object.
* @param descriptionUtf8 Policy description in UTF-8 format.
*/
function writeDescription(
Policy storage self,
string memory descriptionUtf8
) public
{
if (bytes(descriptionUtf8).length == 0)
revert Unacceptable({
reason: "descriptionUtf8 cannot be empty"
});
self.scalarPending.descriptionUtf8 = descriptionUtf8;
}
/**
* @notice Writes a new ttl to the pending Policy changes in a Policy.
* @param self A Policy object.
* @param ttl The maximum acceptable credential age in seconds.
*/
function writeTtl(
Policy storage self,
uint32 ttl
) public
{
if (ttl > MAX_TTL)
revert Unacceptable({ reason: "ttl exceeds maximum duration" });
self.scalarPending.ttl = ttl;
}
/**
* @notice Writes a new gracePeriod to the pending Policy changes in a Policy.
* @dev Deadlines must always be >= the active policy grace period.
* @param self A Policy object.
* @param gracePeriod The minimum acceptable deadline.
*/
function writeGracePeriod(
Policy storage self,
uint32 gracePeriod
) public
{
// 0 is acceptable
self.scalarPending.gracePeriod = gracePeriod;
}
/**
* @notice Writes a new allowApprovedCounterparties state in the pending Policy changes in a Policy.
* @param self A Policy object.
* @param allowApprovedCounterparties True if whitelists are allowed, otherwise false.
*/
function writeAllowApprovedCounterparties(
Policy storage self,
bool allowApprovedCounterparties
) public
{
self.scalarPending.allowApprovedCounterparties = allowApprovedCounterparties;
}
/**
* @notice Writes a new locked state in the pending Policy changes in a Policy.
* @param self A Policy object.
* @param setPolicyLocked True if the policy is to be locked, otherwise false.
*/
function writePolicyLock(
Policy storage self,
bool setPolicyLocked
) public
{
self.scalarPending.locked = setPolicyLocked;
}
/**
* @notice Writes a new disablement deadline to the pending Policy changes of a Policy.
* @dev If the provided disablement deadline is in the past, this function will revert.
* @param self A PolicyStorage object.
* @param disablementPeriod The new disablement deadline to set, in seconds since the Unix epoch.
* If set to 0, the policy can be disabled at any time.
* If set to a non-zero value, the policy can only be disabled after that time.
*/
function writeDisablementPeriod(
App storage self,
uint32 policyId,
uint256 disablementPeriod
) public {
// Check that the new disablement period is greater than or equal to the minimum
if (disablementPeriod < self.minimumPolicyDisablementPeriod) {
revert Unacceptable({
reason: "disablement period is too short"
});
}
if (disablementPeriod >= MAX_DISABLEMENT_PERIOD) {
revert Unacceptable({
reason: "disablement period is too long"
});
}
Policy storage policyObj = self.policies[policyId];
policyObj.scalarPending.disablementPeriod = disablementPeriod;
}
/**
* @notice Writes attestors to pending Policy attestor additions.
* @param self PolicyManager App state.
* @param policyObj A Policy object.
* @param attestors The address of one or more Attestors to add to the Policy.
*/
function writeAttestorAdditions(
App storage self,
Policy storage policyObj,
address[] calldata attestors
) public
{
for (uint i = 0; i < attestors.length; i++) {
_writeAttestorAddition(self, policyObj, attestors[i]);
}
}
/**
* @notice Writes an attestor to pending Policy attestor additions.
* @dev If the attestor is scheduled to be remove, unschedules the removal.
* @param self PolicyManager App state.
* @param policyObj A Policy object.
* @param attestor The address of an Attestor to add to the Policy.
*/
function _writeAttestorAddition(
App storage self,
Policy storage policyObj,
address attestor
) private
{
if (!self.globalAttestorSet.exists(attestor))
revert Unacceptable({
reason: "attestor not found"
});
if (policyObj.attestors.pendingRemovalSet.exists(attestor)) {
policyObj.attestors.pendingRemovalSet.remove(attestor, "PolicyStorage:_writeAttestorAddition");
} else {
if (policyObj.attestors.activeSet.exists(attestor)) {
revert Unacceptable({
reason: "attestor already in policy"
});
}
policyObj.attestors.pendingAdditionSet.insert(attestor, "PolicyStorage:_writeAttestorAddition");
}
}
/**
* @notice Writes attestors to pending Policy attestor removals.
* @param self A Policy object.
* @param attestors The address of one or more Attestors to remove from the Policy.
*/
function writeAttestorRemovals(
Policy storage self,
address[] calldata attestors
) public
{
for (uint i = 0; i < attestors.length; i++) {
_writeAttestorRemoval(self, attestors[i]);
}
}
/**
* @notice Writes an attestor to a Policy's pending attestor removals.
* @dev Cancels the addition if the attestor is scheduled to be added.
* @param self PolicyManager App state.
* @param attestor The address of a Attestor to remove from the Policy.
*/
function _writeAttestorRemoval(
Policy storage self,
address attestor
) private
{
uint currentAttestorCount = self.attestors.activeSet.count();
uint pendingAdditionsCount = self.attestors.pendingAdditionSet.count();
uint pendingRemovalsCount = self.attestors.pendingRemovalSet.count();
if (currentAttestorCount + pendingAdditionsCount - pendingRemovalsCount < 2) {
revert Unacceptable({
reason: "Cannot remove the last attestor. Add a replacement first"
});
}
if (self.attestors.pendingAdditionSet.exists(attestor)) {
self.attestors.pendingAdditionSet.remove(attestor, "PolicyStorage:_writeAttestorRemoval");
} else {
if (!self.attestors.activeSet.exists(attestor)) {
revert Unacceptable({
reason: "attestor not found"
});
}
self.attestors.pendingRemovalSet.insert(attestor, "PolicyStorage:_writeAttestorRemoval");
}
}
/**
* @notice Writes wallet checks to a Policy's pending wallet check additions.
* @param self PolicyManager App state.
* @param policyObj A PolicyStorage object.
* @param walletChecks The address of one or more Wallet Checks to add to the Policy.
*/
function writeWalletCheckAdditions(
App storage self,
Policy storage policyObj,
address[] memory walletChecks
) public
{
for (uint i = 0; i < walletChecks.length; i++) {
_writeWalletCheckAddition(self, policyObj, walletChecks[i]);
}
}
/**
* @notice Writes a wallet check to a Policy's pending wallet check additions.
* @dev Cancels removal if the wallet check is scheduled for removal.
* @param self PolicyManager App state.
* @param policyObj A Policy object.
* @param walletCheck The address of a Wallet Check to admit into the global whitelist.
*/
function _writeWalletCheckAddition(
App storage self,
Policy storage policyObj,
address walletCheck
) private
{
if (!self.globalWalletCheckSet.exists(walletCheck))
revert Unacceptable({
reason: "walletCheck not found"
});
if (policyObj.walletChecks.pendingRemovalSet.exists(walletCheck)) {
policyObj.walletChecks.pendingRemovalSet.remove(walletCheck, "PolicyStorage:_writeWalletCheckAddition");
} else {
if (policyObj.walletChecks.activeSet.exists(walletCheck)) {
revert Unacceptable({
reason: "walletCheck already in policy"
});
}
if (policyObj.walletChecks.pendingAdditionSet.exists(walletCheck)) {
revert Unacceptable({
reason: "walletCheck addition already scheduled"
});
}
policyObj.walletChecks.pendingAdditionSet.insert(walletCheck, "PolicyStorage:_writeWalletCheckAddition");
}
}
/**
* @notice Writes wallet checks to a Policy's pending wallet check removals.
* @param self A Policy object.
* @param walletChecks The address of one or more Wallet Checks to add to the Policy.
*/
function writeWalletCheckRemovals(
Policy storage self,
address[] memory walletChecks
) public
{
for (uint i = 0; i < walletChecks.length; i++) {
_writeWalletCheckRemoval(self, walletChecks[i]);
}
}
/**
* @notice Writes a wallet check to a Policy's pending wallet check removals.
* @dev Unschedules addition if the wallet check is present in the Policy's pending wallet check additions.
* @param self A Policy object.
* @param walletCheck The address of a Wallet Check to remove from the Policy.
*/
function _writeWalletCheckRemoval(
Policy storage self,
address walletCheck
) private
{
if (self.walletChecks.pendingAdditionSet.exists(walletCheck)) {
self.walletChecks.pendingAdditionSet.remove(walletCheck, "PolicyStorage:_writeWalletCheckRemoval");
} else {
if (!self.walletChecks.activeSet.exists(walletCheck)) {
revert Unacceptable({
reason: "walletCheck is not in policy"
});
}
if (self.walletChecks.pendingRemovalSet.exists(walletCheck)) {
revert Unacceptable({
reason: "walletCheck removal already scheduled"
});
}
self.walletChecks.pendingRemovalSet.insert(walletCheck, "PolicyStorage:_writeWalletCheckRemoval");
}
}
/**
* @notice Add a backdoor to a policy.
* @param self The application state.
* @param policyObj A Policy object.
* @param backdoorId The ID of a backdoor.
*/
function writeBackdoorAddition(
App storage self,
Policy storage policyObj,
bytes32 backdoorId
) public {
if (!self.backdoorSet.exists(backdoorId)) {
revert Unacceptable({
reason: "unknown backdoor"
});
}
if (policyObj.backdoors.pendingRemovalSet.exists(backdoorId)) {
policyObj.backdoors.pendingRemovalSet.remove(backdoorId,
"PolicyStorage:writeBackdoorAddition");
} else {
if (policyObj.backdoors.activeSet.exists(backdoorId)) {
revert Unacceptable({
reason: "backdoor exists in policy"
});
}
if (policyObj.backdoors.pendingAdditionSet.exists(backdoorId)) {
revert Unacceptable({
reason: "backdoor addition already scheduled"
});
}
policyObj.backdoors.pendingAdditionSet.insert(backdoorId,
"PolicyStorage:_writeWalletCheckAddition");
_checkBackdoorConfiguration(policyObj);
}
}
/**
* @notice Writes a wallet check to a Policy's pending wallet check removals.
* @dev Unschedules addition if the wallet check is present in the Policy's pending wallet check additions.
* @param self A Policy object.
* @param backdoorId The address of a Wallet Check to remove from the Policy.
*/
function writeBackdoorRemoval(
Policy storage self,
bytes32 backdoorId
) public
{
if (self.backdoors.pendingAdditionSet.exists(backdoorId)) {
self.backdoors.pendingAdditionSet.remove(backdoorId,
"PolicyStorage:writeBackdoorRemoval");
} else {
if (!self.backdoors.activeSet.exists(backdoorId)) {
revert Unacceptable({
reason: "backdoor is not in policy"
});
}
if (self.backdoors.pendingRemovalSet.exists(backdoorId)) {
revert Unacceptable({
reason: "backdoor removal already scheduled"
});
}
self.backdoors.pendingRemovalSet.insert(backdoorId,
"PolicyStorage:writeBackdoorRemoval");
}
}
/**
* @notice Checks the net count of backdoors.
* @dev Current zkVerifier supports only one backdoor per policy.
* @param self A policy object.
*/
function _checkBackdoorConfiguration(
Policy storage self
) internal view {
uint256 activeCount = self.backdoors.activeSet.count();
uint256 pendingAdditionsCount = self.backdoors.pendingAdditionSet.count();
uint256 pendingRemovalsCount = self.backdoors.pendingRemovalSet.count();
if(activeCount + pendingAdditionsCount - pendingRemovalsCount > MAX_BACKDOORS) {
revert Unacceptable({ reason: "too many backdoors requested" });
}
}
/**********************************************************
Inspection
**********************************************************/
/**
* @param self Application state.
* @param policyId The unique identifier of a Policy.
* @return policyObj Policy object with staged updates processed.
*/
function policy(App storage self, uint32 policyId)
public
returns (Policy storage policyObj)
{
policyObj = self.policies[policyId];
processStaged(policyObj);
}
}{
"evmVersion": "london",
"libraries": {},
"metadata": {
"bytecodeHash": "ipfs",
"useLiteralContent": true
},
"optimizer": {
"enabled": true,
"runs": 200
},
"remappings": [],
"outputSelection": {
"*": {
"*": [
"evm.bytecode",
"evm.deployedBytecode",
"devdoc",
"userdoc",
"metadata",
"abi"
]
}
}
}Contract Security Audit
- No Contract Security Audit Submitted- Submit Audit Here
[{"inputs":[{"components":[{"internalType":"address","name":"trustedForwarder","type":"address"},{"internalType":"address","name":"collateralToken","type":"address"},{"internalType":"address","name":"keyringCredentials","type":"address"},{"internalType":"address","name":"policyManager","type":"address"},{"internalType":"address","name":"userPolicies","type":"address"},{"internalType":"address","name":"exemptionsManager","type":"address"}],"internalType":"struct IKeyringGuard.KeyringConfig","name":"config","type":"tuple"},{"internalType":"uint32","name":"policyId_","type":"uint32"},{"internalType":"uint32","name":"maximumConsentPeriod_","type":"uint32"},{"internalType":"string","name":"name_","type":"string"},{"internalType":"string","name":"symbol_","type":"string"}],"stateMutability":"nonpayable","type":"constructor"},{"inputs":[],"name":"InvalidShortString","type":"error"},{"inputs":[{"internalType":"string","name":"str","type":"string"}],"name":"StringTooLong","type":"error"},{"inputs":[{"internalType":"string","name":"reason","type":"string"}],"name":"Unacceptable","type":"error"},{"inputs":[{"internalType":"address","name":"sender","type":"address"},{"internalType":"string","name":"module","type":"string"},{"internalType":"string","name":"method","type":"string"},{"internalType":"bytes32","name":"role","type":"bytes32"},{"internalType":"string","name":"reason","type":"string"},{"internalType":"string","name":"context","type":"string"}],"name":"Unauthorized","type":"error"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"owner","type":"address"},{"indexed":true,"internalType":"address","name":"spender","type":"address"},{"indexed":false,"internalType":"uint256","name":"value","type":"uint256"}],"name":"Approval","type":"event"},{"anonymous":false,"inputs":[],"name":"EIP712DomainChanged","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"user","type":"address"},{"indexed":false,"internalType":"uint256","name":"revocationDeadline","type":"uint256"}],"name":"GrantDegradedServiceConsent","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"address","name":"keyringCredentials","type":"address"},{"indexed":false,"internalType":"address","name":"policyManager","type":"address"},{"indexed":false,"internalType":"address","name":"userPolicies","type":"address"},{"indexed":false,"internalType":"uint32","name":"admissionPolicyId","type":"uint32"},{"indexed":false,"internalType":"bytes32","name":"universeRule","type":"bytes32"},{"indexed":false,"internalType":"bytes32","name":"emptyRule","type":"bytes32"}],"name":"KeyringGuardConfigured","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"user","type":"address"}],"name":"RevokeDegradedServiceConsent","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"bytes32","name":"role","type":"bytes32"},{"indexed":true,"internalType":"bytes32","name":"previousAdminRole","type":"bytes32"},{"indexed":true,"internalType":"bytes32","name":"newAdminRole","type":"bytes32"}],"name":"RoleAdminChanged","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"bytes32","name":"role","type":"bytes32"},{"indexed":true,"internalType":"address","name":"account","type":"address"},{"indexed":true,"internalType":"address","name":"sender","type":"address"}],"name":"RoleGranted","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"bytes32","name":"role","type":"bytes32"},{"indexed":true,"internalType":"address","name":"account","type":"address"},{"indexed":true,"internalType":"address","name":"sender","type":"address"}],"name":"RoleRevoked","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"from","type":"address"},{"indexed":true,"internalType":"address","name":"to","type":"address"},{"indexed":false,"internalType":"uint256","name":"value","type":"uint256"}],"name":"Transfer","type":"event"},{"inputs":[],"name":"DEFAULT_ADMIN_ROLE","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"DOMAIN_SEPARATOR","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"admissionPolicyId","outputs":[{"internalType":"uint32","name":"","type":"uint32"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"owner","type":"address"},{"internalType":"address","name":"spender","type":"address"}],"name":"allowance","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"spender","type":"address"},{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"approve","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"account","type":"address"}],"name":"balanceOf","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"observer","type":"address"},{"internalType":"address","name":"subject","type":"address"}],"name":"checkTraderWallet","outputs":[{"internalType":"bool","name":"passed","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"observer","type":"address"},{"internalType":"address","name":"subject","type":"address"}],"name":"checkZKPIICache","outputs":[{"internalType":"bool","name":"passed","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"decimals","outputs":[{"internalType":"uint8","name":"","type":"uint8"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"spender","type":"address"},{"internalType":"uint256","name":"subtractedValue","type":"uint256"}],"name":"decreaseAllowance","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"trader","type":"address"},{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"depositFor","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"eip712Domain","outputs":[{"internalType":"bytes1","name":"fields","type":"bytes1"},{"internalType":"string","name":"name","type":"string"},{"internalType":"string","name":"version","type":"string"},{"internalType":"uint256","name":"chainId","type":"uint256"},{"internalType":"address","name":"verifyingContract","type":"address"},{"internalType":"bytes32","name":"salt","type":"bytes32"},{"internalType":"uint256[]","name":"extensions","type":"uint256[]"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"emptyRule","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"exemptionsManager","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"}],"name":"getRoleAdmin","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"uint256","name":"revocationDeadline","type":"uint256"}],"name":"grantDegradedServiceConsent","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"},{"internalType":"address","name":"account","type":"address"}],"name":"grantRole","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"},{"internalType":"address","name":"account","type":"address"}],"name":"hasRole","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"spender","type":"address"},{"internalType":"uint256","name":"addedValue","type":"uint256"}],"name":"increaseAllowance","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"from","type":"address"},{"internalType":"address","name":"to","type":"address"}],"name":"isAuthorized","outputs":[{"internalType":"bool","name":"passed","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"forwarder","type":"address"}],"name":"isTrustedForwarder","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"keyringCredentials","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"maximumConsentPeriod","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"name","outputs":[{"internalType":"string","name":"","type":"string"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"owner","type":"address"}],"name":"nonces","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"owner","type":"address"},{"internalType":"address","name":"spender","type":"address"},{"internalType":"uint256","name":"value","type":"uint256"},{"internalType":"uint256","name":"deadline","type":"uint256"},{"internalType":"uint8","name":"v","type":"uint8"},{"internalType":"bytes32","name":"r","type":"bytes32"},{"internalType":"bytes32","name":"s","type":"bytes32"}],"name":"permit","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"policyManager","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"},{"internalType":"address","name":"account","type":"address"}],"name":"renounceRole","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"revokeMitigationConsent","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"},{"internalType":"address","name":"account","type":"address"}],"name":"revokeRole","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes4","name":"","type":"bytes4"}],"name":"supportsInterface","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"symbol","outputs":[{"internalType":"string","name":"","type":"string"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"totalSupply","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"to","type":"address"},{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"transfer","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"from","type":"address"},{"internalType":"address","name":"to","type":"address"},{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"transferFrom","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"underlying","outputs":[{"internalType":"contract IERC20","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"universeRule","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"","type":"address"}],"name":"userConsentDeadlines","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"user","type":"address"}],"name":"userConsentsToMitigation","outputs":[{"internalType":"bool","name":"doesIndeed","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"userPolicies","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"trader","type":"address"},{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"withdrawTo","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"nonpayable","type":"function"}]Deployed Bytecode
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
Loading...
Loading
Loading...
Loading
Multichain Portfolio | 26 Chains
| Chain | Token | Portfolio % | Price | Amount | Value |
|---|---|---|---|---|---|
| ETH | 100.00% | $0.997758 | 68.8686 | $68.71 |
Loading...
Loading
[ Download: CSV Export ]
A contract address hosts a smart contract, which is a set of code stored on the blockchain that runs when predetermined conditions are met. Learn more about addresses in our Knowledge Base.