Transaction Hash:
Block:
18688443 at Dec-01-2023 01:59:35 AM +UTC
Transaction Fee:
0.00435308595759482 ETH
$10.96
Gas Used:
124,910 Gas / 34.849779502 Gwei
Emitted Events:
| 214 |
TransparentUpgradeableProxy.0x52266201bc2fd6b76ef485c613769527c5ea4face1c63f7f9e806735b31d48fc( 0x52266201bc2fd6b76ef485c613769527c5ea4face1c63f7f9e806735b31d48fc, 0x7641f496ba4346db02f2b22bd16e018492f6ace90a44ba1990c58f2989aaa42b, 0x000000000000000000000000bd7851d902fba36ee1ff05af2d5e750276f9afaa, 0x0000000000000000000000000000000000000000000000000000000000000042, 000000000000000000000000000000000000000000000000016345785d8a0000 )
|
Account State Difference:
| Address | Before | After | State Difference | ||
|---|---|---|---|---|---|
|
0x1f9090aa...8e676c326
Miner
| 3.525222719377151115 Eth | 3.525235210377151115 Eth | 0.000012491 | ||
| 0x5a999FEd...390514A61 | |||||
| 0xBd7851d9...276F9Afaa |
0.049529562879484495 Eth
Nonce: 249
|
0.045176476921889675 Eth
Nonce: 250
| 0.00435308595759482 |
Execution Trace
TransparentUpgradeableProxy.11e8416c( )
MasterChefVault.withdrawToken0( _amount=100000000000000000 )TransparentUpgradeableProxy.STATICCALL( )-
Core.DELEGATECALL( )
-
withdrawToken0[Vault (ln:1574)]
_withdrawAccounting[Vault (ln:1575)]__updateDepositRequests[Vault (ln:1595)]WithdrawScheduled[Vault (ln:1618)]
File 1 of 4: TransparentUpgradeableProxy
File 2 of 4: MasterChefVault
File 3 of 4: TransparentUpgradeableProxy
File 4 of 4: Core
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "@openzeppelin/contracts/proxy/ERC1967/ERC1967Proxy.sol";
import "@openzeppelin/contracts/proxy/transparent/TransparentUpgradeableProxy.sol";
import "@openzeppelin/contracts/proxy/transparent/ProxyAdmin.sol";
// Kept for backwards compatibility with older versions of Hardhat and Truffle plugins.
contract AdminUpgradeabilityProxy is TransparentUpgradeableProxy {
constructor(address logic, address admin, bytes memory data) payable TransparentUpgradeableProxy(logic, admin, data) {}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "../Proxy.sol";
import "./ERC1967Upgrade.sol";
/**
* @dev This contract implements an upgradeable proxy. It is upgradeable because calls are delegated to an
* implementation address that can be changed. This address is stored in storage in the location specified by
* https://eips.ethereum.org/EIPS/eip-1967[EIP1967], so that it doesn't conflict with the storage layout of the
* implementation behind the proxy.
*/
contract ERC1967Proxy is Proxy, ERC1967Upgrade {
/**
* @dev Initializes the upgradeable proxy with an initial implementation specified by `_logic`.
*
* If `_data` is nonempty, it's used as data in a delegate call to `_logic`. This will typically be an encoded
* function call, and allows initializating the storage of the proxy like a Solidity constructor.
*/
constructor(address _logic, bytes memory _data) payable {
assert(_IMPLEMENTATION_SLOT == bytes32(uint256(keccak256("eip1967.proxy.implementation")) - 1));
_upgradeToAndCall(_logic, _data, false);
}
/**
* @dev Returns the current implementation address.
*/
function _implementation() internal view virtual override returns (address impl) {
return ERC1967Upgrade._getImplementation();
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "../ERC1967/ERC1967Proxy.sol";
/**
* @dev This contract implements a proxy that is upgradeable by an admin.
*
* To avoid https://medium.com/nomic-labs-blog/malicious-backdoors-in-ethereum-proxies-62629adf3357[proxy selector
* clashing], which can potentially be used in an attack, this contract uses the
* https://blog.openzeppelin.com/the-transparent-proxy-pattern/[transparent proxy pattern]. This pattern implies two
* things that go hand in hand:
*
* 1. If any account other than the admin calls the proxy, the call will be forwarded to the implementation, even if
* that call matches one of the admin functions exposed by the proxy itself.
* 2. If the admin calls the proxy, it can access the admin functions, but its calls will never be forwarded to the
* implementation. If the admin tries to call a function on the implementation it will fail with an error that says
* "admin cannot fallback to proxy target".
*
* These properties mean that the admin account can only be used for admin actions like upgrading the proxy or changing
* the admin, so it's best if it's a dedicated account that is not used for anything else. This will avoid headaches due
* to sudden errors when trying to call a function from the proxy implementation.
*
* Our recommendation is for the dedicated account to be an instance of the {ProxyAdmin} contract. If set up this way,
* you should think of the `ProxyAdmin` instance as the real administrative interface of your proxy.
*/
contract TransparentUpgradeableProxy is ERC1967Proxy {
/**
* @dev Initializes an upgradeable proxy managed by `_admin`, backed by the implementation at `_logic`, and
* optionally initialized with `_data` as explained in {ERC1967Proxy-constructor}.
*/
constructor(address _logic, address admin_, bytes memory _data) payable ERC1967Proxy(_logic, _data) {
assert(_ADMIN_SLOT == bytes32(uint256(keccak256("eip1967.proxy.admin")) - 1));
_changeAdmin(admin_);
}
/**
* @dev Modifier used internally that will delegate the call to the implementation unless the sender is the admin.
*/
modifier ifAdmin() {
if (msg.sender == _getAdmin()) {
_;
} else {
_fallback();
}
}
/**
* @dev Returns the current admin.
*
* NOTE: Only the admin can call this function. See {ProxyAdmin-getProxyAdmin}.
*
* TIP: To get this value clients can read directly from the storage slot shown below (specified by EIP1967) using the
* https://eth.wiki/json-rpc/API#eth_getstorageat[`eth_getStorageAt`] RPC call.
* `0xb53127684a568b3173ae13b9f8a6016e243e63b6e8ee1178d6a717850b5d6103`
*/
function admin() external ifAdmin returns (address admin_) {
admin_ = _getAdmin();
}
/**
* @dev Returns the current implementation.
*
* NOTE: Only the admin can call this function. See {ProxyAdmin-getProxyImplementation}.
*
* TIP: To get this value clients can read directly from the storage slot shown below (specified by EIP1967) using the
* https://eth.wiki/json-rpc/API#eth_getstorageat[`eth_getStorageAt`] RPC call.
* `0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc`
*/
function implementation() external ifAdmin returns (address implementation_) {
implementation_ = _implementation();
}
/**
* @dev Changes the admin of the proxy.
*
* Emits an {AdminChanged} event.
*
* NOTE: Only the admin can call this function. See {ProxyAdmin-changeProxyAdmin}.
*/
function changeAdmin(address newAdmin) external virtual ifAdmin {
_changeAdmin(newAdmin);
}
/**
* @dev Upgrade the implementation of the proxy.
*
* NOTE: Only the admin can call this function. See {ProxyAdmin-upgrade}.
*/
function upgradeTo(address newImplementation) external ifAdmin {
_upgradeToAndCall(newImplementation, bytes(""), false);
}
/**
* @dev Upgrade the implementation of the proxy, and then call a function from the new implementation as specified
* by `data`, which should be an encoded function call. This is useful to initialize new storage variables in the
* proxied contract.
*
* NOTE: Only the admin can call this function. See {ProxyAdmin-upgradeAndCall}.
*/
function upgradeToAndCall(address newImplementation, bytes calldata data) external payable ifAdmin {
_upgradeToAndCall(newImplementation, data, true);
}
/**
* @dev Returns the current admin.
*/
function _admin() internal view virtual returns (address) {
return _getAdmin();
}
/**
* @dev Makes sure the admin cannot access the fallback function. See {Proxy-_beforeFallback}.
*/
function _beforeFallback() internal virtual override {
require(msg.sender != _getAdmin(), "TransparentUpgradeableProxy: admin cannot fallback to proxy target");
super._beforeFallback();
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "./TransparentUpgradeableProxy.sol";
import "../../access/Ownable.sol";
/**
* @dev This is an auxiliary contract meant to be assigned as the admin of a {TransparentUpgradeableProxy}. For an
* explanation of why you would want to use this see the documentation for {TransparentUpgradeableProxy}.
*/
contract ProxyAdmin is Ownable {
/**
* @dev Returns the current implementation of `proxy`.
*
* Requirements:
*
* - This contract must be the admin of `proxy`.
*/
function getProxyImplementation(TransparentUpgradeableProxy proxy) public view virtual returns (address) {
// We need to manually run the static call since the getter cannot be flagged as view
// bytes4(keccak256("implementation()")) == 0x5c60da1b
(bool success, bytes memory returndata) = address(proxy).staticcall(hex"5c60da1b");
require(success);
return abi.decode(returndata, (address));
}
/**
* @dev Returns the current admin of `proxy`.
*
* Requirements:
*
* - This contract must be the admin of `proxy`.
*/
function getProxyAdmin(TransparentUpgradeableProxy proxy) public view virtual returns (address) {
// We need to manually run the static call since the getter cannot be flagged as view
// bytes4(keccak256("admin()")) == 0xf851a440
(bool success, bytes memory returndata) = address(proxy).staticcall(hex"f851a440");
require(success);
return abi.decode(returndata, (address));
}
/**
* @dev Changes the admin of `proxy` to `newAdmin`.
*
* Requirements:
*
* - This contract must be the current admin of `proxy`.
*/
function changeProxyAdmin(TransparentUpgradeableProxy proxy, address newAdmin) public virtual onlyOwner {
proxy.changeAdmin(newAdmin);
}
/**
* @dev Upgrades `proxy` to `implementation`. See {TransparentUpgradeableProxy-upgradeTo}.
*
* Requirements:
*
* - This contract must be the admin of `proxy`.
*/
function upgrade(TransparentUpgradeableProxy proxy, address implementation) public virtual onlyOwner {
proxy.upgradeTo(implementation);
}
/**
* @dev Upgrades `proxy` to `implementation` and calls a function on the new implementation. See
* {TransparentUpgradeableProxy-upgradeToAndCall}.
*
* Requirements:
*
* - This contract must be the admin of `proxy`.
*/
function upgradeAndCall(TransparentUpgradeableProxy proxy, address implementation, bytes memory data) public payable virtual onlyOwner {
proxy.upgradeToAndCall{value: msg.value}(implementation, data);
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @dev This abstract contract provides a fallback function that delegates all calls to another contract using the EVM
* instruction `delegatecall`. We refer to the second contract as the _implementation_ behind the proxy, and it has to
* be specified by overriding the virtual {_implementation} function.
*
* Additionally, delegation to the implementation can be triggered manually through the {_fallback} function, or to a
* different contract through the {_delegate} function.
*
* The success and return data of the delegated call will be returned back to the caller of the proxy.
*/
abstract contract Proxy {
/**
* @dev Delegates the current call to `implementation`.
*
* This function does not return to its internall call site, it will return directly to the external caller.
*/
function _delegate(address implementation) internal virtual {
// solhint-disable-next-line no-inline-assembly
assembly {
// Copy msg.data. We take full control of memory in this inline assembly
// block because it will not return to Solidity code. We overwrite the
// Solidity scratch pad at memory position 0.
calldatacopy(0, 0, calldatasize())
// Call the implementation.
// out and outsize are 0 because we don't know the size yet.
let result := delegatecall(gas(), implementation, 0, calldatasize(), 0, 0)
// Copy the returned data.
returndatacopy(0, 0, returndatasize())
switch result
// delegatecall returns 0 on error.
case 0 { revert(0, returndatasize()) }
default { return(0, returndatasize()) }
}
}
/**
* @dev This is a virtual function that should be overriden so it returns the address to which the fallback function
* and {_fallback} should delegate.
*/
function _implementation() internal view virtual returns (address);
/**
* @dev Delegates the current call to the address returned by `_implementation()`.
*
* This function does not return to its internall call site, it will return directly to the external caller.
*/
function _fallback() internal virtual {
_beforeFallback();
_delegate(_implementation());
}
/**
* @dev Fallback function that delegates calls to the address returned by `_implementation()`. Will run if no other
* function in the contract matches the call data.
*/
fallback () external payable virtual {
_fallback();
}
/**
* @dev Fallback function that delegates calls to the address returned by `_implementation()`. Will run if call data
* is empty.
*/
receive () external payable virtual {
_fallback();
}
/**
* @dev Hook that is called before falling back to the implementation. Can happen as part of a manual `_fallback`
* call, or as part of the Solidity `fallback` or `receive` functions.
*
* If overriden should call `super._beforeFallback()`.
*/
function _beforeFallback() internal virtual {
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.2;
import "../beacon/IBeacon.sol";
import "../../utils/Address.sol";
import "../../utils/StorageSlot.sol";
/**
* @dev This abstract contract provides getters and event emitting update functions for
* https://eips.ethereum.org/EIPS/eip-1967[EIP1967] slots.
*
* _Available since v4.1._
*
* @custom:oz-upgrades-unsafe-allow delegatecall
*/
abstract contract ERC1967Upgrade {
// This is the keccak-256 hash of "eip1967.proxy.rollback" subtracted by 1
bytes32 private constant _ROLLBACK_SLOT = 0x4910fdfa16fed3260ed0e7147f7cc6da11a60208b5b9406d12a635614ffd9143;
/**
* @dev Storage slot with the address of the current implementation.
* This is the keccak-256 hash of "eip1967.proxy.implementation" subtracted by 1, and is
* validated in the constructor.
*/
bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
/**
* @dev Emitted when the implementation is upgraded.
*/
event Upgraded(address indexed implementation);
/**
* @dev Returns the current implementation address.
*/
function _getImplementation() internal view returns (address) {
return StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value;
}
/**
* @dev Stores a new address in the EIP1967 implementation slot.
*/
function _setImplementation(address newImplementation) private {
require(Address.isContract(newImplementation), "ERC1967: new implementation is not a contract");
StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
}
/**
* @dev Perform implementation upgrade
*
* Emits an {Upgraded} event.
*/
function _upgradeTo(address newImplementation) internal {
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
}
/**
* @dev Perform implementation upgrade with additional setup call.
*
* Emits an {Upgraded} event.
*/
function _upgradeToAndCall(address newImplementation, bytes memory data, bool forceCall) internal {
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
if (data.length > 0 || forceCall) {
Address.functionDelegateCall(newImplementation, data);
}
}
/**
* @dev Perform implementation upgrade with security checks for UUPS proxies, and additional setup call.
*
* Emits an {Upgraded} event.
*/
function _upgradeToAndCallSecure(address newImplementation, bytes memory data, bool forceCall) internal {
address oldImplementation = _getImplementation();
// Initial upgrade and setup call
_setImplementation(newImplementation);
if (data.length > 0 || forceCall) {
Address.functionDelegateCall(newImplementation, data);
}
// Perform rollback test if not already in progress
StorageSlot.BooleanSlot storage rollbackTesting = StorageSlot.getBooleanSlot(_ROLLBACK_SLOT);
if (!rollbackTesting.value) {
// Trigger rollback using upgradeTo from the new implementation
rollbackTesting.value = true;
Address.functionDelegateCall(
newImplementation,
abi.encodeWithSignature(
"upgradeTo(address)",
oldImplementation
)
);
rollbackTesting.value = false;
// Check rollback was effective
require(oldImplementation == _getImplementation(), "ERC1967Upgrade: upgrade breaks further upgrades");
// Finally reset to the new implementation and log the upgrade
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
}
}
/**
* @dev Perform beacon upgrade with additional setup call. Note: This upgrades the address of the beacon, it does
* not upgrade the implementation contained in the beacon (see {UpgradeableBeacon-_setImplementation} for that).
*
* Emits a {BeaconUpgraded} event.
*/
function _upgradeBeaconToAndCall(address newBeacon, bytes memory data, bool forceCall) internal {
_setBeacon(newBeacon);
emit BeaconUpgraded(newBeacon);
if (data.length > 0 || forceCall) {
Address.functionDelegateCall(IBeacon(newBeacon).implementation(), data);
}
}
/**
* @dev Storage slot with the admin of the contract.
* This is the keccak-256 hash of "eip1967.proxy.admin" subtracted by 1, and is
* validated in the constructor.
*/
bytes32 internal constant _ADMIN_SLOT = 0xb53127684a568b3173ae13b9f8a6016e243e63b6e8ee1178d6a717850b5d6103;
/**
* @dev Emitted when the admin account has changed.
*/
event AdminChanged(address previousAdmin, address newAdmin);
/**
* @dev Returns the current admin.
*/
function _getAdmin() internal view returns (address) {
return StorageSlot.getAddressSlot(_ADMIN_SLOT).value;
}
/**
* @dev Stores a new address in the EIP1967 admin slot.
*/
function _setAdmin(address newAdmin) private {
require(newAdmin != address(0), "ERC1967: new admin is the zero address");
StorageSlot.getAddressSlot(_ADMIN_SLOT).value = newAdmin;
}
/**
* @dev Changes the admin of the proxy.
*
* Emits an {AdminChanged} event.
*/
function _changeAdmin(address newAdmin) internal {
emit AdminChanged(_getAdmin(), newAdmin);
_setAdmin(newAdmin);
}
/**
* @dev The storage slot of the UpgradeableBeacon contract which defines the implementation for this proxy.
* This is bytes32(uint256(keccak256('eip1967.proxy.beacon')) - 1)) and is validated in the constructor.
*/
bytes32 internal constant _BEACON_SLOT = 0xa3f0ad74e5423aebfd80d3ef4346578335a9a72aeaee59ff6cb3582b35133d50;
/**
* @dev Emitted when the beacon is upgraded.
*/
event BeaconUpgraded(address indexed beacon);
/**
* @dev Returns the current beacon.
*/
function _getBeacon() internal view returns (address) {
return StorageSlot.getAddressSlot(_BEACON_SLOT).value;
}
/**
* @dev Stores a new beacon in the EIP1967 beacon slot.
*/
function _setBeacon(address newBeacon) private {
require(
Address.isContract(newBeacon),
"ERC1967: new beacon is not a contract"
);
require(
Address.isContract(IBeacon(newBeacon).implementation()),
"ERC1967: beacon implementation is not a contract"
);
StorageSlot.getAddressSlot(_BEACON_SLOT).value = newBeacon;
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @dev This is the interface that {BeaconProxy} expects of its beacon.
*/
interface IBeacon {
/**
* @dev Must return an address that can be used as a delegate call target.
*
* {BeaconProxy} will check that this address is a contract.
*/
function implementation() external view returns (address);
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @dev Collection of functions related to the address type
*/
library Address {
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]
* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* - an externally-owned account
* - a contract in construction
* - an address where a contract will be created
* - an address where a contract lived, but was destroyed
* ====
*/
function isContract(address account) internal view returns (bool) {
// This method relies on extcodesize, which returns 0 for contracts in
// construction, since the code is only stored at the end of the
// constructor execution.
uint256 size;
// solhint-disable-next-line no-inline-assembly
assembly { size := extcodesize(account) }
return size > 0;
}
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://diligence.consensys.net/posts/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.5.11/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/
function sendValue(address payable recipient, uint256 amount) internal {
require(address(this).balance >= amount, "Address: insufficient balance");
// solhint-disable-next-line avoid-low-level-calls, avoid-call-value
(bool success, ) = recipient.call{ value: amount }("");
require(success, "Address: unable to send value, recipient may have reverted");
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain`call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCall(target, data, "Address: low-level call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data, string memory errorMessage) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/
function functionCallWithValue(address target, bytes memory data, uint256 value) internal returns (bytes memory) {
return functionCallWithValue(target, data, value, "Address: low-level call with value failed");
}
/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCallWithValue(address target, bytes memory data, uint256 value, string memory errorMessage) internal returns (bytes memory) {
require(address(this).balance >= value, "Address: insufficient balance for call");
require(isContract(target), "Address: call to non-contract");
// solhint-disable-next-line avoid-low-level-calls
(bool success, bytes memory returndata) = target.call{ value: value }(data);
return _verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
return functionStaticCall(target, data, "Address: low-level static call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data, string memory errorMessage) internal view returns (bytes memory) {
require(isContract(target), "Address: static call to non-contract");
// solhint-disable-next-line avoid-low-level-calls
(bool success, bytes memory returndata) = target.staticcall(data);
return _verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(address target, bytes memory data) internal returns (bytes memory) {
return functionDelegateCall(target, data, "Address: low-level delegate call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(address target, bytes memory data, string memory errorMessage) internal returns (bytes memory) {
require(isContract(target), "Address: delegate call to non-contract");
// solhint-disable-next-line avoid-low-level-calls
(bool success, bytes memory returndata) = target.delegatecall(data);
return _verifyCallResult(success, returndata, errorMessage);
}
function _verifyCallResult(bool success, bytes memory returndata, string memory errorMessage) private pure returns(bytes memory) {
if (success) {
return returndata;
} else {
// Look for revert reason and bubble it up if present
if (returndata.length > 0) {
// The easiest way to bubble the revert reason is using memory via assembly
// solhint-disable-next-line no-inline-assembly
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @dev Library for reading and writing primitive types to specific storage slots.
*
* Storage slots are often used to avoid storage conflict when dealing with upgradeable contracts.
* This library helps with reading and writing to such slots without the need for inline assembly.
*
* The functions in this library return Slot structs that contain a `value` member that can be used to read or write.
*
* Example usage to set ERC1967 implementation slot:
* ```
* contract ERC1967 {
* bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
*
* function _getImplementation() internal view returns (address) {
* return StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value;
* }
*
* function _setImplementation(address newImplementation) internal {
* require(Address.isContract(newImplementation), "ERC1967: new implementation is not a contract");
* StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
* }
* }
* ```
*
* _Available since v4.1 for `address`, `bool`, `bytes32`, and `uint256`._
*/
library StorageSlot {
struct AddressSlot {
address value;
}
struct BooleanSlot {
bool value;
}
struct Bytes32Slot {
bytes32 value;
}
struct Uint256Slot {
uint256 value;
}
/**
* @dev Returns an `AddressSlot` with member `value` located at `slot`.
*/
function getAddressSlot(bytes32 slot) internal pure returns (AddressSlot storage r) {
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `BooleanSlot` with member `value` located at `slot`.
*/
function getBooleanSlot(bytes32 slot) internal pure returns (BooleanSlot storage r) {
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Bytes32Slot` with member `value` located at `slot`.
*/
function getBytes32Slot(bytes32 slot) internal pure returns (Bytes32Slot storage r) {
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Uint256Slot` with member `value` located at `slot`.
*/
function getUint256Slot(bytes32 slot) internal pure returns (Uint256Slot storage r) {
assembly {
r.slot := slot
}
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "../utils/Context.sol";
/**
* @dev Contract module which provides a basic access control mechanism, where
* there is an account (an owner) that can be granted exclusive access to
* specific functions.
*
* By default, the owner account will be the one that deploys the contract. This
* can later be changed with {transferOwnership}.
*
* This module is used through inheritance. It will make available the modifier
* `onlyOwner`, which can be applied to your functions to restrict their use to
* the owner.
*/
abstract contract Ownable is Context {
address private _owner;
event OwnershipTransferred(address indexed previousOwner, address indexed newOwner);
/**
* @dev Initializes the contract setting the deployer as the initial owner.
*/
constructor () {
address msgSender = _msgSender();
_owner = msgSender;
emit OwnershipTransferred(address(0), msgSender);
}
/**
* @dev Returns the address of the current owner.
*/
function owner() public view virtual returns (address) {
return _owner;
}
/**
* @dev Throws if called by any account other than the owner.
*/
modifier onlyOwner() {
require(owner() == _msgSender(), "Ownable: caller is not the owner");
_;
}
/**
* @dev Leaves the contract without owner. It will not be possible to call
* `onlyOwner` functions anymore. Can only be called by the current owner.
*
* NOTE: Renouncing ownership will leave the contract without an owner,
* thereby removing any functionality that is only available to the owner.
*/
function renounceOwnership() public virtual onlyOwner {
emit OwnershipTransferred(_owner, address(0));
_owner = address(0);
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Can only be called by the current owner.
*/
function transferOwnership(address newOwner) public virtual onlyOwner {
require(newOwner != address(0), "Ownable: new owner is the zero address");
emit OwnershipTransferred(_owner, newOwner);
_owner = newOwner;
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/*
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/
abstract contract Context {
function _msgSender() internal view virtual returns (address) {
return msg.sender;
}
function _msgData() internal view virtual returns (bytes calldata) {
this; // silence state mutability warning without generating bytecode - see https://github.com/ethereum/solidity/issues/2691
return msg.data;
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "../ERC1967/ERC1967Upgrade.sol";
/**
* @dev Base contract for building openzeppelin-upgrades compatible implementations for the {ERC1967Proxy}. It includes
* publicly available upgrade functions that are called by the plugin and by the secure upgrade mechanism to verify
* continuation of the upgradability.
*
* The {_authorizeUpgrade} function MUST be overridden to include access restriction to the upgrade mechanism.
*
* _Available since v4.1._
*/
abstract contract UUPSUpgradeable is ERC1967Upgrade {
function upgradeTo(address newImplementation) external virtual {
_authorizeUpgrade(newImplementation);
_upgradeToAndCallSecure(newImplementation, bytes(""), false);
}
function upgradeToAndCall(address newImplementation, bytes memory data) external payable virtual {
_authorizeUpgrade(newImplementation);
_upgradeToAndCallSecure(newImplementation, data, true);
}
function _authorizeUpgrade(address newImplementation) internal virtual;
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.2;
import "@openzeppelin/contracts/proxy/utils/UUPSUpgradeable.sol";
abstract contract Proxiable is UUPSUpgradeable {
function _authorizeUpgrade(address newImplementation) internal override {
_beforeUpgrade(newImplementation);
}
function _beforeUpgrade(address newImplementation) internal virtual;
}
contract ChildOfProxiable is Proxiable {
function _beforeUpgrade(address newImplementation) internal virtual override {}
}
File 2 of 4: MasterChefVault
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (access/IAccessControl.sol)
pragma solidity ^0.8.0;
/**
* @dev External interface of AccessControl declared to support ERC165 detection.
*/
interface IAccessControlUpgradeable {
/**
* @dev Emitted when `newAdminRole` is set as ``role``'s admin role, replacing `previousAdminRole`
*
* `DEFAULT_ADMIN_ROLE` is the starting admin for all roles, despite
* {RoleAdminChanged} not being emitted signaling this.
*
* _Available since v3.1._
*/
event RoleAdminChanged(bytes32 indexed role, bytes32 indexed previousAdminRole, bytes32 indexed newAdminRole);
/**
* @dev Emitted when `account` is granted `role`.
*
* `sender` is the account that originated the contract call, an admin role
* bearer except when using {AccessControl-_setupRole}.
*/
event RoleGranted(bytes32 indexed role, address indexed account, address indexed sender);
/**
* @dev Emitted when `account` is revoked `role`.
*
* `sender` is the account that originated the contract call:
* - if using `revokeRole`, it is the admin role bearer
* - if using `renounceRole`, it is the role bearer (i.e. `account`)
*/
event RoleRevoked(bytes32 indexed role, address indexed account, address indexed sender);
/**
* @dev Returns `true` if `account` has been granted `role`.
*/
function hasRole(bytes32 role, address account) external view returns (bool);
/**
* @dev Returns the admin role that controls `role`. See {grantRole} and
* {revokeRole}.
*
* To change a role's admin, use {AccessControl-_setRoleAdmin}.
*/
function getRoleAdmin(bytes32 role) external view returns (bytes32);
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function grantRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from `account`.
*
* If `account` had been granted `role`, emits a {RoleRevoked} event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function revokeRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from the calling account.
*
* Roles are often managed via {grantRole} and {revokeRole}: this function's
* purpose is to provide a mechanism for accounts to lose their privileges
* if they are compromised (such as when a trusted device is misplaced).
*
* If the calling account had been granted `role`, emits a {RoleRevoked}
* event.
*
* Requirements:
*
* - the caller must be `account`.
*/
function renounceRole(bytes32 role, address account) external;
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.6.0) (proxy/utils/Initializable.sol)
pragma solidity ^0.8.2;
import "../../utils/AddressUpgradeable.sol";
/**
* @dev This is a base contract to aid in writing upgradeable contracts, or any kind of contract that will be deployed
* behind a proxy. Since proxied contracts do not make use of a constructor, it's common to move constructor logic to an
* external initializer function, usually called `initialize`. It then becomes necessary to protect this initializer
* function so it can only be called once. The {initializer} modifier provided by this contract will have this effect.
*
* The initialization functions use a version number. Once a version number is used, it is consumed and cannot be
* reused. This mechanism prevents re-execution of each "step" but allows the creation of new initialization steps in
* case an upgrade adds a module that needs to be initialized.
*
* For example:
*
* [.hljs-theme-light.nopadding]
* ```
* contract MyToken is ERC20Upgradeable {
* function initialize() initializer public {
* __ERC20_init("MyToken", "MTK");
* }
* }
* contract MyTokenV2 is MyToken, ERC20PermitUpgradeable {
* function initializeV2() reinitializer(2) public {
* __ERC20Permit_init("MyToken");
* }
* }
* ```
*
* TIP: To avoid leaving the proxy in an uninitialized state, the initializer function should be called as early as
* possible by providing the encoded function call as the `_data` argument to {ERC1967Proxy-constructor}.
*
* CAUTION: When used with inheritance, manual care must be taken to not invoke a parent initializer twice, or to ensure
* that all initializers are idempotent. This is not verified automatically as constructors are by Solidity.
*
* [CAUTION]
* ====
* Avoid leaving a contract uninitialized.
*
* An uninitialized contract can be taken over by an attacker. This applies to both a proxy and its implementation
* contract, which may impact the proxy. To prevent the implementation contract from being used, you should invoke
* the {_disableInitializers} function in the constructor to automatically lock it when it is deployed:
*
* [.hljs-theme-light.nopadding]
* ```
* /// @custom:oz-upgrades-unsafe-allow constructor
* constructor() {
* _disableInitializers();
* }
* ```
* ====
*/
abstract contract Initializable {
/**
* @dev Indicates that the contract has been initialized.
* @custom:oz-retyped-from bool
*/
uint8 private _initialized;
/**
* @dev Indicates that the contract is in the process of being initialized.
*/
bool private _initializing;
/**
* @dev Triggered when the contract has been initialized or reinitialized.
*/
event Initialized(uint8 version);
/**
* @dev A modifier that defines a protected initializer function that can be invoked at most once. In its scope,
* `onlyInitializing` functions can be used to initialize parent contracts. Equivalent to `reinitializer(1)`.
*/
modifier initializer() {
bool isTopLevelCall = _setInitializedVersion(1);
if (isTopLevelCall) {
_initializing = true;
}
_;
if (isTopLevelCall) {
_initializing = false;
emit Initialized(1);
}
}
/**
* @dev A modifier that defines a protected reinitializer function that can be invoked at most once, and only if the
* contract hasn't been initialized to a greater version before. In its scope, `onlyInitializing` functions can be
* used to initialize parent contracts.
*
* `initializer` is equivalent to `reinitializer(1)`, so a reinitializer may be used after the original
* initialization step. This is essential to configure modules that are added through upgrades and that require
* initialization.
*
* Note that versions can jump in increments greater than 1; this implies that if multiple reinitializers coexist in
* a contract, executing them in the right order is up to the developer or operator.
*/
modifier reinitializer(uint8 version) {
bool isTopLevelCall = _setInitializedVersion(version);
if (isTopLevelCall) {
_initializing = true;
}
_;
if (isTopLevelCall) {
_initializing = false;
emit Initialized(version);
}
}
/**
* @dev Modifier to protect an initialization function so that it can only be invoked by functions with the
* {initializer} and {reinitializer} modifiers, directly or indirectly.
*/
modifier onlyInitializing() {
require(_initializing, "Initializable: contract is not initializing");
_;
}
/**
* @dev Locks the contract, preventing any future reinitialization. This cannot be part of an initializer call.
* Calling this in the constructor of a contract will prevent that contract from being initialized or reinitialized
* to any version. It is recommended to use this to lock implementation contracts that are designed to be called
* through proxies.
*/
function _disableInitializers() internal virtual {
_setInitializedVersion(type(uint8).max);
}
function _setInitializedVersion(uint8 version) private returns (bool) {
// If the contract is initializing we ignore whether _initialized is set in order to support multiple
// inheritance patterns, but we only do this in the context of a constructor, and for the lowest level
// of initializers, because in other contexts the contract may have been reentered.
if (_initializing) {
require(
version == 1 && !AddressUpgradeable.isContract(address(this)),
"Initializable: contract is already initialized"
);
return false;
} else {
require(_initialized < version, "Initializable: contract is already initialized");
_initialized = version;
return true;
}
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (security/ReentrancyGuard.sol)
pragma solidity ^0.8.0;
import "../proxy/utils/Initializable.sol";
/**
* @dev Contract module that helps prevent reentrant calls to a function.
*
* Inheriting from `ReentrancyGuard` will make the {nonReentrant} modifier
* available, which can be applied to functions to make sure there are no nested
* (reentrant) calls to them.
*
* Note that because there is a single `nonReentrant` guard, functions marked as
* `nonReentrant` may not call one another. This can be worked around by making
* those functions `private`, and then adding `external` `nonReentrant` entry
* points to them.
*
* TIP: If you would like to learn more about reentrancy and alternative ways
* to protect against it, check out our blog post
* https://blog.openzeppelin.com/reentrancy-after-istanbul/[Reentrancy After Istanbul].
*/
abstract contract ReentrancyGuardUpgradeable is Initializable {
// Booleans are more expensive than uint256 or any type that takes up a full
// word because each write operation emits an extra SLOAD to first read the
// slot's contents, replace the bits taken up by the boolean, and then write
// back. This is the compiler's defense against contract upgrades and
// pointer aliasing, and it cannot be disabled.
// The values being non-zero value makes deployment a bit more expensive,
// but in exchange the refund on every call to nonReentrant will be lower in
// amount. Since refunds are capped to a percentage of the total
// transaction's gas, it is best to keep them low in cases like this one, to
// increase the likelihood of the full refund coming into effect.
uint256 private constant _NOT_ENTERED = 1;
uint256 private constant _ENTERED = 2;
uint256 private _status;
function __ReentrancyGuard_init() internal onlyInitializing {
__ReentrancyGuard_init_unchained();
}
function __ReentrancyGuard_init_unchained() internal onlyInitializing {
_status = _NOT_ENTERED;
}
/**
* @dev Prevents a contract from calling itself, directly or indirectly.
* Calling a `nonReentrant` function from another `nonReentrant`
* function is not supported. It is possible to prevent this from happening
* by making the `nonReentrant` function external, and making it call a
* `private` function that does the actual work.
*/
modifier nonReentrant() {
// On the first call to nonReentrant, _notEntered will be true
require(_status != _ENTERED, "ReentrancyGuard: reentrant call");
// Any calls to nonReentrant after this point will fail
_status = _ENTERED;
_;
// By storing the original value once again, a refund is triggered (see
// https://eips.ethereum.org/EIPS/eip-2200)
_status = _NOT_ENTERED;
}
/**
* @dev This empty reserved space is put in place to allow future versions to add new
* variables without shifting down storage in the inheritance chain.
* See https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps
*/
uint256[49] private __gap;
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.6.0) (token/ERC20/IERC20.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC20 standard as defined in the EIP.
*/
interface IERC20Upgradeable {
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/
event Transfer(address indexed from, address indexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/
event Approval(address indexed owner, address indexed spender, uint256 value);
/**
* @dev Returns the amount of tokens in existence.
*/
function totalSupply() external view returns (uint256);
/**
* @dev Returns the amount of tokens owned by `account`.
*/
function balanceOf(address account) external view returns (uint256);
/**
* @dev Moves `amount` tokens from the caller's account to `to`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transfer(address to, uint256 amount) external returns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/
function allowance(address owner, address spender) external view returns (uint256);
/**
* @dev Sets `amount` as the allowance of `spender` over the caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/
function approve(address spender, uint256 amount) external returns (bool);
/**
* @dev Moves `amount` tokens from `from` to `to` using the
* allowance mechanism. `amount` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transferFrom(
address from,
address to,
uint256 amount
) external returns (bool);
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (token/ERC20/utils/SafeERC20.sol)
pragma solidity ^0.8.0;
import "../IERC20Upgradeable.sol";
import "../../../utils/AddressUpgradeable.sol";
/**
* @title SafeERC20
* @dev Wrappers around ERC20 operations that throw on failure (when the token
* contract returns false). Tokens that return no value (and instead revert or
* throw on failure) are also supported, non-reverting calls are assumed to be
* successful.
* To use this library you can add a `using SafeERC20 for IERC20;` statement to your contract,
* which allows you to call the safe operations as `token.safeTransfer(...)`, etc.
*/
library SafeERC20Upgradeable {
using AddressUpgradeable for address;
function safeTransfer(
IERC20Upgradeable token,
address to,
uint256 value
) internal {
_callOptionalReturn(token, abi.encodeWithSelector(token.transfer.selector, to, value));
}
function safeTransferFrom(
IERC20Upgradeable token,
address from,
address to,
uint256 value
) internal {
_callOptionalReturn(token, abi.encodeWithSelector(token.transferFrom.selector, from, to, value));
}
/**
* @dev Deprecated. This function has issues similar to the ones found in
* {IERC20-approve}, and its usage is discouraged.
*
* Whenever possible, use {safeIncreaseAllowance} and
* {safeDecreaseAllowance} instead.
*/
function safeApprove(
IERC20Upgradeable token,
address spender,
uint256 value
) internal {
// safeApprove should only be called when setting an initial allowance,
// or when resetting it to zero. To increase and decrease it, use
// 'safeIncreaseAllowance' and 'safeDecreaseAllowance'
require(
(value == 0) || (token.allowance(address(this), spender) == 0),
"SafeERC20: approve from non-zero to non-zero allowance"
);
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, value));
}
function safeIncreaseAllowance(
IERC20Upgradeable token,
address spender,
uint256 value
) internal {
uint256 newAllowance = token.allowance(address(this), spender) + value;
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, newAllowance));
}
function safeDecreaseAllowance(
IERC20Upgradeable token,
address spender,
uint256 value
) internal {
unchecked {
uint256 oldAllowance = token.allowance(address(this), spender);
require(oldAllowance >= value, "SafeERC20: decreased allowance below zero");
uint256 newAllowance = oldAllowance - value;
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, newAllowance));
}
}
/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*/
function _callOptionalReturn(IERC20Upgradeable token, bytes memory data) private {
// We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since
// we're implementing it ourselves. We use {Address.functionCall} to perform this call, which verifies that
// the target address contains contract code and also asserts for success in the low-level call.
bytes memory returndata = address(token).functionCall(data, "SafeERC20: low-level call failed");
if (returndata.length > 0) {
// Return data is optional
require(abi.decode(returndata, (bool)), "SafeERC20: ERC20 operation did not succeed");
}
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.5.0) (utils/Address.sol)
pragma solidity ^0.8.1;
/**
* @dev Collection of functions related to the address type
*/
library AddressUpgradeable {
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]
* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* - an externally-owned account
* - a contract in construction
* - an address where a contract will be created
* - an address where a contract lived, but was destroyed
* ====
*
* [IMPORTANT]
* ====
* You shouldn't rely on `isContract` to protect against flash loan attacks!
*
* Preventing calls from contracts is highly discouraged. It breaks composability, breaks support for smart wallets
* like Gnosis Safe, and does not provide security since it can be circumvented by calling from a contract
* constructor.
* ====
*/
function isContract(address account) internal view returns (bool) {
// This method relies on extcodesize/address.code.length, which returns 0
// for contracts in construction, since the code is only stored at the end
// of the constructor execution.
return account.code.length > 0;
}
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://diligence.consensys.net/posts/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.5.11/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/
function sendValue(address payable recipient, uint256 amount) internal {
require(address(this).balance >= amount, "Address: insufficient balance");
(bool success, ) = recipient.call{value: amount}("");
require(success, "Address: unable to send value, recipient may have reverted");
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain `call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCall(target, data, "Address: low-level call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCall(
address target,
bytes memory data,
string memory errorMessage
) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/
function functionCallWithValue(
address target,
bytes memory data,
uint256 value
) internal returns (bytes memory) {
return functionCallWithValue(target, data, value, "Address: low-level call with value failed");
}
/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCallWithValue(
address target,
bytes memory data,
uint256 value,
string memory errorMessage
) internal returns (bytes memory) {
require(address(this).balance >= value, "Address: insufficient balance for call");
require(isContract(target), "Address: call to non-contract");
(bool success, bytes memory returndata) = target.call{value: value}(data);
return verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
return functionStaticCall(target, data, "Address: low-level static call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(
address target,
bytes memory data,
string memory errorMessage
) internal view returns (bytes memory) {
require(isContract(target), "Address: static call to non-contract");
(bool success, bytes memory returndata) = target.staticcall(data);
return verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Tool to verifies that a low level call was successful, and revert if it wasn't, either by bubbling the
* revert reason using the provided one.
*
* _Available since v4.3._
*/
function verifyCallResult(
bool success,
bytes memory returndata,
string memory errorMessage
) internal pure returns (bytes memory) {
if (success) {
return returndata;
} else {
// Look for revert reason and bubble it up if present
if (returndata.length > 0) {
// The easiest way to bubble the revert reason is using memory via assembly
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.6.0) (token/ERC20/IERC20.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC20 standard as defined in the EIP.
*/
interface IERC20 {
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/
event Transfer(address indexed from, address indexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/
event Approval(address indexed owner, address indexed spender, uint256 value);
/**
* @dev Returns the amount of tokens in existence.
*/
function totalSupply() external view returns (uint256);
/**
* @dev Returns the amount of tokens owned by `account`.
*/
function balanceOf(address account) external view returns (uint256);
/**
* @dev Moves `amount` tokens from the caller's account to `to`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transfer(address to, uint256 amount) external returns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/
function allowance(address owner, address spender) external view returns (uint256);
/**
* @dev Sets `amount` as the allowance of `spender` over the caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/
function approve(address spender, uint256 amount) external returns (bool);
/**
* @dev Moves `amount` tokens from `from` to `to` using the
* allowance mechanism. `amount` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transferFrom(
address from,
address to,
uint256 amount
) external returns (bool);
}
pragma solidity >=0.5.0;
interface IUniswapV2Factory {
event PairCreated(address indexed token0, address indexed token1, address pair, uint);
function feeTo() external view returns (address);
function feeToSetter() external view returns (address);
function getPair(address tokenA, address tokenB) external view returns (address pair);
function allPairs(uint) external view returns (address pair);
function allPairsLength() external view returns (uint);
function createPair(address tokenA, address tokenB) external returns (address pair);
function setFeeTo(address) external;
function setFeeToSetter(address) external;
}
pragma solidity >=0.5.0;
interface IUniswapV2Pair {
event Approval(address indexed owner, address indexed spender, uint value);
event Transfer(address indexed from, address indexed to, uint value);
function name() external pure returns (string memory);
function symbol() external pure returns (string memory);
function decimals() external pure returns (uint8);
function totalSupply() external view returns (uint);
function balanceOf(address owner) external view returns (uint);
function allowance(address owner, address spender) external view returns (uint);
function approve(address spender, uint value) external returns (bool);
function transfer(address to, uint value) external returns (bool);
function transferFrom(address from, address to, uint value) external returns (bool);
function DOMAIN_SEPARATOR() external view returns (bytes32);
function PERMIT_TYPEHASH() external pure returns (bytes32);
function nonces(address owner) external view returns (uint);
function permit(address owner, address spender, uint value, uint deadline, uint8 v, bytes32 r, bytes32 s) external;
event Mint(address indexed sender, uint amount0, uint amount1);
event Burn(address indexed sender, uint amount0, uint amount1, address indexed to);
event Swap(
address indexed sender,
uint amount0In,
uint amount1In,
uint amount0Out,
uint amount1Out,
address indexed to
);
event Sync(uint112 reserve0, uint112 reserve1);
function MINIMUM_LIQUIDITY() external pure returns (uint);
function factory() external view returns (address);
function token0() external view returns (address);
function token1() external view returns (address);
function getReserves() external view returns (uint112 reserve0, uint112 reserve1, uint32 blockTimestampLast);
function price0CumulativeLast() external view returns (uint);
function price1CumulativeLast() external view returns (uint);
function kLast() external view returns (uint);
function mint(address to) external returns (uint liquidity);
function burn(address to) external returns (uint amount0, uint amount1);
function swap(uint amount0Out, uint amount1Out, address to, bytes calldata data) external;
function skim(address to) external;
function sync() external;
function initialize(address, address) external;
}
pragma solidity >=0.6.2;
interface IUniswapV2Router01 {
function factory() external pure returns (address);
function WETH() external pure returns (address);
function addLiquidity(
address tokenA,
address tokenB,
uint amountADesired,
uint amountBDesired,
uint amountAMin,
uint amountBMin,
address to,
uint deadline
) external returns (uint amountA, uint amountB, uint liquidity);
function addLiquidityETH(
address token,
uint amountTokenDesired,
uint amountTokenMin,
uint amountETHMin,
address to,
uint deadline
) external payable returns (uint amountToken, uint amountETH, uint liquidity);
function removeLiquidity(
address tokenA,
address tokenB,
uint liquidity,
uint amountAMin,
uint amountBMin,
address to,
uint deadline
) external returns (uint amountA, uint amountB);
function removeLiquidityETH(
address token,
uint liquidity,
uint amountTokenMin,
uint amountETHMin,
address to,
uint deadline
) external returns (uint amountToken, uint amountETH);
function removeLiquidityWithPermit(
address tokenA,
address tokenB,
uint liquidity,
uint amountAMin,
uint amountBMin,
address to,
uint deadline,
bool approveMax, uint8 v, bytes32 r, bytes32 s
) external returns (uint amountA, uint amountB);
function removeLiquidityETHWithPermit(
address token,
uint liquidity,
uint amountTokenMin,
uint amountETHMin,
address to,
uint deadline,
bool approveMax, uint8 v, bytes32 r, bytes32 s
) external returns (uint amountToken, uint amountETH);
function swapExactTokensForTokens(
uint amountIn,
uint amountOutMin,
address[] calldata path,
address to,
uint deadline
) external returns (uint[] memory amounts);
function swapTokensForExactTokens(
uint amountOut,
uint amountInMax,
address[] calldata path,
address to,
uint deadline
) external returns (uint[] memory amounts);
function swapExactETHForTokens(uint amountOutMin, address[] calldata path, address to, uint deadline)
external
payable
returns (uint[] memory amounts);
function swapTokensForExactETH(uint amountOut, uint amountInMax, address[] calldata path, address to, uint deadline)
external
returns (uint[] memory amounts);
function swapExactTokensForETH(uint amountIn, uint amountOutMin, address[] calldata path, address to, uint deadline)
external
returns (uint[] memory amounts);
function swapETHForExactTokens(uint amountOut, address[] calldata path, address to, uint deadline)
external
payable
returns (uint[] memory amounts);
function quote(uint amountA, uint reserveA, uint reserveB) external pure returns (uint amountB);
function getAmountOut(uint amountIn, uint reserveIn, uint reserveOut) external pure returns (uint amountOut);
function getAmountIn(uint amountOut, uint reserveIn, uint reserveOut) external pure returns (uint amountIn);
function getAmountsOut(uint amountIn, address[] calldata path) external view returns (uint[] memory amounts);
function getAmountsIn(uint amountOut, address[] calldata path) external view returns (uint[] memory amounts);
}
pragma solidity >=0.6.2;
import './IUniswapV2Router01.sol';
interface IUniswapV2Router02 is IUniswapV2Router01 {
function removeLiquidityETHSupportingFeeOnTransferTokens(
address token,
uint liquidity,
uint amountTokenMin,
uint amountETHMin,
address to,
uint deadline
) external returns (uint amountETH);
function removeLiquidityETHWithPermitSupportingFeeOnTransferTokens(
address token,
uint liquidity,
uint amountTokenMin,
uint amountETHMin,
address to,
uint deadline,
bool approveMax, uint8 v, bytes32 r, bytes32 s
) external returns (uint amountETH);
function swapExactTokensForTokensSupportingFeeOnTransferTokens(
uint amountIn,
uint amountOutMin,
address[] calldata path,
address to,
uint deadline
) external;
function swapExactETHForTokensSupportingFeeOnTransferTokens(
uint amountOutMin,
address[] calldata path,
address to,
uint deadline
) external payable;
function swapExactTokensForETHSupportingFeeOnTransferTokens(
uint amountIn,
uint amountOutMin,
address[] calldata path,
address to,
uint deadline
) external;
}
// SPDX-License-Identifier: GPL-3.0-or-later
pragma solidity 0.8.11;
import { ICorePermissions } from "./ICorePermissions.sol";
/// @notice Interface for Core
/// @author Recursive Research Inc
interface ICore is ICorePermissions {
// ----------- Events ---------------------
/// @dev Emitted when the protocol fee (`protocolFee`) is changed
/// out of core.MAX_FEE()
event ProtocolFeeUpdated(uint256 protocolFee);
/// @dev Emitted when the protocol fee destination (`feeTo`) is changed
event FeeToUpdated(address indexed feeTo);
/// @dev Emitted when the pause is triggered
event Paused();
/// @dev Emitted when the pause is lifted
event Unpaused();
// @dev Emitted when a vault with address `vault`
event VaultRegistered(address indexed vault);
// @dev Emitted when a vault with address `vault`
event VaultRemoved(address indexed vault);
// ----------- Default Getters --------------
/// @dev constant set to 10_000
function MAX_FEE() external view returns (uint256);
function feeTo() external view returns (address);
/// @dev protocol fee out of core.MAX_FEE()
function protocolFee() external view returns (uint256);
function wrappedNative() external view returns (address);
// ----------- Main Core Utility --------------
function registerVaults(address[] memory vaults) external;
function removeVaults(address[] memory vaults) external;
/// @dev set core.protocolFee, out of core.MAX_FEE()
function setProtocolFee(uint256 _protocolFee) external;
function setFeeTo(address _feeTo) external;
// ----------- Protocol Pausing -----------
function pause() external;
function unpause() external;
function paused() external view returns (bool);
}
// SPDX-License-Identifier: GPL-3.0-or-later
pragma solidity 0.8.11;
import { IAccessControlUpgradeable } from "../../lib/openzeppelin-contracts-upgradeable/contracts/access/IAccessControlUpgradeable.sol";
/// @title Interface for CorePermissions
/// @author Recursive Research Inc
interface ICorePermissions is IAccessControlUpgradeable {
// ----------- Events ---------------------
/// @dev Emitted when the whitelist is disabled by `admin`.
event WhitelistDisabled();
/// @dev Emitted when the whitelist is disabled by `admin`.
event WhitelistEnabled();
// ----------- Governor only state changing api -----------
function createRole(bytes32 role, bytes32 adminRole) external;
function whitelistAll(address[] memory addresses) external;
// ----------- GRANTING ROLES -----------
function disableWhitelist() external;
function enableWhitelist() external;
// ----------- Getters -----------
function GUARDIAN_ROLE() external view returns (bytes32);
function GOVERN_ROLE() external view returns (bytes32);
function PAUSE_ROLE() external view returns (bytes32);
function STRATEGIST_ROLE() external view returns (bytes32);
function WHITELISTED_ROLE() external view returns (bytes32);
function whitelistDisabled() external view returns (bool);
// ----------- Read Interface -----------
function isWhitelisted(address _address) external view returns (bool);
}
// SPDX-License-Identifier: GPL-3.0-or-later
pragma solidity 0.8.11;
interface IWrappy {
function deposit() external payable;
function transfer(address to, uint256 value) external returns (bool);
function withdraw(uint256) external;
}
// SPDX-License-Identifier: MIT
pragma solidity 0.8.11;
// pragma experimental ABIEncoderV2;
import { IERC20 } from "../../../lib/openzeppelin-contracts/contracts/token/ERC20/IERC20.sol";
interface IMasterChefWithdraw {
struct UserInfo {
uint256 amount; // How many LP tokens the user has provided.
uint256 rewardDebt; // Reward debt. See explanation below.
}
struct PoolInfo {
IERC20 lpToken; // Address of LP token contract.
uint256 allocPoint; // How many allocation points assigned to this pool. SUSHI to distribute per block.
uint256 lastRewardBlock; // Last block number that SUSHI distribution occurs.
uint256 accSushiPerShare; // Accumulated SUSHI per share, times 1e12. See below.
}
function userInfo(uint256 pid, address user) external view returns (UserInfo memory);
function poolInfo(uint256 pid) external view returns (PoolInfo memory);
function withdraw(uint256 _pid, uint256 _amount) external;
}
interface IMasterChef is IMasterChefWithdraw {
function deposit(uint256 _pid, uint256 _amount) external;
}
interface IMasterChefWithRef is IMasterChefWithdraw {
function deposit(
uint256 _pid,
uint256 _amount,
address _ref
) external;
}
// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.11;
import { Initializable } from "../../lib/openzeppelin-contracts-upgradeable/contracts/proxy/utils/Initializable.sol";
import { ICore } from "../core/ICore.sol";
/// @notice Stores a reference to the core contract
/// @author Recursive Research Inc
abstract contract CoreReference is Initializable {
ICore public core;
bool private _paused;
/// initialize logic contract
/// This tag here tells OZ to not throw an error on this constructor
/// Recommended here:
/// https://docs.openzeppelin.com/upgrades-plugins/1.x/writing-upgradeable#initializing_the_implementation_contract
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() initializer {}
/// @dev Emitted when the pause is triggered
event Paused();
/// @dev Emitted when the pause is lifted
event Unpaused();
function __CoreReference_init(address coreAddress) internal onlyInitializing {
__CoreReference_init_unchained(coreAddress);
}
function __CoreReference_init_unchained(address coreAddress) internal onlyInitializing {
core = ICore(coreAddress);
}
modifier whenNotPaused() {
require(!paused(), "PAUSED");
_;
}
modifier whenPaused() {
require(paused(), "NOT_PAUSED");
_;
}
modifier onlyPauser() {
require(core.hasRole(core.PAUSE_ROLE(), msg.sender), "NOT_PAUSER");
_;
}
modifier onlyGovernor() {
require(core.hasRole(core.GOVERN_ROLE(), msg.sender), "NOT_GOVERNOR");
_;
}
modifier onlyGuardian() {
require(core.hasRole(core.GUARDIAN_ROLE(), msg.sender), "NOT_GUARDIAN");
_;
}
modifier onlyStrategist() {
require(_isStrategist(msg.sender), "NOT_STRATEGIST");
_;
}
/// @notice view function to see whether or not the contract is paused
/// @return true if the contract is paused either by the core or independently
function paused() public view returns (bool) {
return (core.paused() || _paused);
}
function pause() external onlyPauser whenNotPaused {
_paused = true;
emit Paused();
}
function unpause() external onlyPauser whenPaused {
_paused = false;
emit Unpaused();
}
function _isStrategist(address _user) internal view returns (bool) {
return core.hasRole(core.STRATEGIST_ROLE(), _user);
}
}
// SPDX-License-Identifier: GPL-3.0-or-later
pragma solidity 0.8.11;
interface IVault {
/// @dev Emitted when a new epoch is started
/// @param newEpoch number of the new epoch
/// @param initiator address of the user who initiated the new epoch
/// @param startTime timestamp of the start of this new epoch
event NextEpochStarted(uint256 indexed newEpoch, address indexed initiator, uint256 startTime);
/// @dev Emitted upon a new deposit request
/// @param assetCode code for the type of asset (either `TOKEN0` or `TOKEN1`)
/// @param user address of the user who made the deposit request
/// @param amount amount of the asset in deposit request
/// @param epoch epoch of the deposit request
event DepositScheduled(bytes32 indexed assetCode, address indexed user, uint256 amount, uint256 indexed epoch);
/// @dev Emitted upon a new withdraw request
/// @param assetCode code for the type of asset (either `TOKEN0` or `TOKEN1`)
/// @param user address of the user who made the withdraw request
/// @param amountDay0 amount of the asset (day 0) in withdraw request
/// @param epoch epoch of the withdraw request
event WithdrawScheduled(bytes32 indexed assetCode, address indexed user, uint256 amountDay0, uint256 indexed epoch);
/// @dev Emitted upon a user claiming their tokens after a withdraw request is processed
/// @param assetCode code for the type of asset (either `TOKEN0` or `TOKEN1`)
/// @param user address of the user who is claiming their assets
/// @param amount amount of the assets (day 0) claimed
event AssetsClaimed(bytes32 indexed assetCode, address indexed user, uint256 amount);
/// @dev Emitted upon a guardian rescuing funds
/// @param guardian address of the guardian who rescued the funds
event FundsRescued(address indexed guardian);
/// @dev Emitted upon a strategist updating the token0 floor
/// @param newFloor the new floor returns on TOKEN0 (out of `RAY`)
event Token0FloorUpdated(uint256 newFloor);
/// @dev Emitted upon a strategist updating the token1 floor
/// @param newFloor the new floor returns on TOKEN1 (out of `RAY`)
event Token1FloorUpdated(uint256 newFloor);
event EpochDurationUpdated(uint256 newEpochDuration);
/// ------------------- Vault Interface -------------------
function depositToken0(uint256 _amount) external payable;
function depositToken1(uint256 _amount) external;
function withdrawToken0(uint256 _amount) external;
function withdrawToken1(uint256 _amount) external;
function claimToken0() external;
function claimToken1() external;
function token0Balance(address user)
external
view
returns (
uint256 deposited,
uint256 pendingDeposit,
uint256 claimable
);
function token1Balance(address user)
external
view
returns (
uint256 deposited,
uint256 pendingDeposit,
uint256 claimable
);
function nextEpoch(uint256 expectedPoolToken0, uint256 expectedPoolToken1) external;
function rescueTokens(address[] calldata tokens, uint256[] calldata amounts) external;
function collectFees() external;
function unstakeLiquidity() external;
/// ------------------- Getters -------------------
function token0ValueLocked() external view returns (uint256);
function token1ValueLocked() external view returns (uint256);
function token0BalanceDay0(address user) external view returns (uint256);
function epochToToken0Rate(uint256 _epoch) external view returns (uint256);
function token0WithdrawRequests(address user) external view returns (uint256);
function token1BalanceDay0(address user) external view returns (uint256);
function epochToToken1Rate(uint256 _epoch) external view returns (uint256);
function token1WithdrawRequests(address user) external view returns (uint256);
function feesAccrued() external view returns (uint256, uint256);
/// ------------------- Setters -------------------
function setToken0Floor(uint256 _token0FloorNum) external;
function setToken1Floor(uint256 _token1FloorNum) external;
function setEpochDuration(uint256 _epochDuration) external;
function setDepositsEnabled() external;
function setDepositsDisabled() external;
}
// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.11;
import { SafeERC20Upgradeable, IERC20Upgradeable } from "../../../lib/openzeppelin-contracts-upgradeable/contracts/token/ERC20/utils/SafeERC20Upgradeable.sol";
import { IMasterChef } from "../../external/sushiswap/IMasterChef.sol";
import { UniswapVault, IUniswapV2Router02 } from "../uniswap/UniswapVault.sol";
import { SushiswapVaultStorage } from "./SushiswapVaultStorage.sol";
/// @notice Contains the staking logic for MasterChef Vaults
/// @author Recursive Research Inc
contract MasterChefVault is UniswapVault, SushiswapVaultStorage {
using SafeERC20Upgradeable for IERC20Upgradeable;
function initialize(
address coreAddress,
uint256 _epochDuration,
address _token0,
address _token1,
uint256 _token0FloorNum,
uint256 _token1FloorNum,
address _sushiswapFactory,
address _sushiswapRouter,
address _sushi,
address _masterChef,
uint256 _pid
) public virtual initializer {
__MasterChefVault_init(
coreAddress,
_epochDuration,
_token0,
_token1,
_token0FloorNum,
_token1FloorNum,
_sushiswapFactory,
_sushiswapRouter,
_sushi,
_masterChef,
_pid
);
}
function __MasterChefVault_init(
address coreAddress,
uint256 _epochDuration,
address _token0,
address _token1,
uint256 _token0FloorNum,
uint256 _token1FloorNum,
address _sushiswapFactory,
address _sushiswapRouter,
address _sushi,
address _masterChef,
uint256 _pid
) internal onlyInitializing {
__UniswapVault_init(
coreAddress,
_epochDuration,
_token0,
_token1,
_token0FloorNum,
_token1FloorNum,
_sushiswapFactory,
_sushiswapRouter
);
__MasterChefVault_init_unchained(_sushi, _masterChef, _pid);
}
function __MasterChefVault_init_unchained(
address _sushi,
address _masterChef,
uint256 _pid
) internal onlyInitializing {
require(address(IMasterChef(_masterChef).poolInfo(_pid).lpToken) == address(pair), "INVALID_PID");
sushi = IERC20Upgradeable(_sushi);
rewarder = _masterChef;
pid = _pid;
}
function _unstakeLiquidity() internal virtual override {
// check our SLP balance in the MasterChef and withdraw
uint256 depositBalance = IMasterChef(rewarder).userInfo(pid, address(this)).amount;
if (depositBalance > 0) {
IMasterChef(rewarder).withdraw(pid, depositBalance);
}
if (sushi != token0 && sushi != token1) {
uint256 sushiBalance = sushi.balanceOf(address(this));
if (sushiBalance > 0) {
sushi.safeIncreaseAllowance(router, sushiBalance);
IUniswapV2Router02(router).swapExactTokensForTokens(
sushiBalance,
0,
getPath(address(sushi), address(token0)),
address(this),
block.timestamp
);
}
}
}
function _stakeLiquidity() internal virtual override {
// take our SLP tokens and deposit them into the MasterChef for SUSHI rewards
uint256 lpTokenBalance = IERC20Upgradeable(pair).balanceOf(address(this));
if (lpTokenBalance > 0) {
IERC20Upgradeable(pair).safeIncreaseAllowance(rewarder, lpTokenBalance);
IMasterChef(rewarder).deposit(pid, lpTokenBalance);
}
}
}
// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.11;
// Need to use IERC20Upgradeable because that is what SafeERC20Upgradeable requires
// but the interface is exactly the same as ERC20s so this still works with ERC20s
import { IERC20Upgradeable } from "../../../lib/openzeppelin-contracts-upgradeable/contracts/token/ERC20/IERC20Upgradeable.sol";
import { UniswapVaultStorage } from "../uniswap/UniswapVaultStorage.sol";
/// @notice Storage for all Sushi Vaults
/// For simplicity, we use the same storage for the MasterChefVault and the
/// MasterChefV2Vault, so that we minimize complexity in inheritance.
/// @author Recursive Research Inc
abstract contract SushiswapVaultStorageUnpadded is UniswapVaultStorage {
/// @notice masterChef or masterChef V2
address public rewarder;
/// @notice pool ID for this token pair
uint256 public pid;
/// @notice SUSHI token for liquidity mining rewards
IERC20Upgradeable public sushi;
}
abstract contract SushiswapVaultStorage is SushiswapVaultStorageUnpadded {
// @dev Padding 100 words of storage for upgradeability. Follows OZ's guidance.
uint256[100] private __gap;
}
// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.11;
import { SafeERC20Upgradeable, IERC20Upgradeable } from "../../../lib/openzeppelin-contracts-upgradeable/contracts/token/ERC20/utils/SafeERC20Upgradeable.sol";
import { IUniswapV2Router02 } from "../../../lib/v2-periphery/contracts/interfaces/IUniswapV2Router02.sol";
import { IUniswapV2Factory } from "../../../lib/v2-core/contracts/interfaces/IUniswapV2Factory.sol";
import { IUniswapV2Pair } from "../../../lib/v2-core/contracts/interfaces/IUniswapV2Pair.sol";
import { Vault } from "../Vault.sol";
import { UniswapVaultStorage } from "./UniswapVaultStorage.sol";
/// @notice Contains the primary logic for Uniswap Vaults
/// @author Recursive Research Inc
contract UniswapVault is Vault, UniswapVaultStorage {
using SafeERC20Upgradeable for IERC20Upgradeable;
function initialize(
address coreAddress,
uint256 _epochDuration,
address _token0,
address _token1,
uint256 _token0FloorNum,
uint256 _token1FloorNum,
address _uniswapFactory,
address _uniswapRouter
) public virtual initializer {
__UniswapVault_init(
coreAddress,
_epochDuration,
_token0,
_token1,
_token0FloorNum,
_token1FloorNum,
_uniswapFactory,
_uniswapRouter
);
}
function __UniswapVault_init(
address coreAddress,
uint256 _epochDuration,
address _token0,
address _token1,
uint256 _token0FloorNum,
uint256 _token1FloorNum,
address _uniswapFactory,
address _uniswapRouter
) internal onlyInitializing {
__Vault_init(coreAddress, _epochDuration, _token0, _token1, _token0FloorNum, _token1FloorNum);
__UniswapVault_init_unchained(_uniswapFactory, _uniswapRouter);
}
function __UniswapVault_init_unchained(address _uniswapFactory, address _uniswapRouter) internal onlyInitializing {
pair = IUniswapV2Factory(_uniswapFactory).getPair(address(token0), address(token1));
// require that the pair has been created
require(pair != address(0), "ZERO_ADDRESS");
factory = _uniswapFactory;
router = _uniswapRouter;
}
// @dev queries the pool reserves and ensure the token ordering is correct
function getPoolBalances() internal view virtual override returns (uint256, uint256) {
(uint256 reservesA, uint256 reservesB, ) = IUniswapV2Pair(pair).getReserves();
return IUniswapV2Pair(pair).token0() == address(token0) ? (reservesA, reservesB) : (reservesB, reservesA);
}
// This is provided automatically by the Uniswap router
function calcAmountIn(
uint256 amountOut,
uint256 reserveIn,
uint256 reserveOut
) internal view virtual override returns (uint256) {
return IUniswapV2Router02(router).getAmountIn(amountOut, reserveIn, reserveOut);
}
// Withdraws all liquidity
// @dev We can ignore the need for frontrunning checks because the `_nextEpoch` function checks
// that the pool reserves are as expected beforehand
function _withdrawLiquidity() internal virtual override {
uint256 lpTokenBalance = IERC20Upgradeable(pair).balanceOf(address(this));
if (lpTokenBalance == 0) return;
// use the router to remove liquidity from the uni pool
// don't need to decrease allowance afterwards because router guarantees the full amount is burned
// safe to ignore return values because we check balances before and after this call
IERC20Upgradeable(pair).safeIncreaseAllowance(router, lpTokenBalance);
IUniswapV2Router02(router).removeLiquidity(
address(token0),
address(token1),
lpTokenBalance,
0,
0,
address(this),
block.timestamp
);
}
// Deposits available liquidity
// @dev We can ignore the need for frontrunning checks because the `_nextEpoch` function checks
// that the pool reserves are as expected beforehand
// `availableToken0` and `availableToken1` are also known to be greater than 0 since they are checked
// by `depositLiquidity` in `Vault.sol`
function _depositLiquidity(uint256 availableToken0, uint256 availableToken1)
internal
virtual
override
returns (uint256 token0Deposited, uint256 token1Deposited)
{
// use the router to deposit `token0` and `token1`
token0.safeIncreaseAllowance(router, availableToken0);
token1.safeIncreaseAllowance(router, availableToken1);
// can safely ignore `liquidity` return value because when withdrawing we check our full balance
(token0Deposited, token1Deposited, ) = IUniswapV2Router02(router).addLiquidity(
address(token0),
address(token1),
availableToken0,
availableToken1,
0,
0,
address(this),
block.timestamp
);
// if we didn't deposit the full `availableToken{x}`, reduce allowance for safety
if (availableToken0 > token0Deposited) {
token0.safeApprove(router, 0);
}
if (availableToken1 > token1Deposited) {
token1.safeApprove(router, 0);
}
}
// For the default Uniswap vault this does nothing
function _unstakeLiquidity() internal virtual override {}
// For the default Uniswap vault this does nothing
function _stakeLiquidity() internal virtual override {}
// Swaps tokens
// @dev We can ignore the need for frontrunning checks because the `_nextEpoch` function checks
// that the pool reserves are as expected beforehand
function swap(
IERC20Upgradeable tokenIn,
IERC20Upgradeable tokenOut,
uint256 amountIn
) internal virtual override returns (uint256 amountOut, uint256 amountConsumed) {
if (amountIn == 0) return (0, 0);
tokenIn.safeIncreaseAllowance(router, amountIn);
amountOut = IUniswapV2Router02(router).swapExactTokensForTokens(
amountIn,
0,
getPath(address(tokenIn), address(tokenOut)),
address(this),
block.timestamp
)[1];
amountConsumed = amountIn;
}
/// @notice converts two addresses into an address[] type
function getPath(address _from, address _to) internal pure returns (address[] memory path) {
path = new address[](2);
path[0] = _from;
path[1] = _to;
}
}
// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.11;
/// @notice Storage for uniswap vaults
/// @author Recursive Research Inc
abstract contract UniswapVaultStorageUnpadded {
/// @notice UniswapV2Factory address
address public factory;
/// @notice UniswapV2Router02 address
address public router;
// @notice UniswapV2Pair address for token0 and token1
address public pair;
}
abstract contract UniswapVaultStorage is UniswapVaultStorageUnpadded {
// @dev Padding 100 words of storage for upgradeability. Follows OZ's guidance.
uint256[100] private __gap;
}
// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.11;
// Have to use SafeERC20Upgradeable instead of SafeERC20 because SafeERC20 inherits Address.sol,
// which uses delegeatecall functions, which are not allowed by OZ's upgrade process
// See more:
// https://forum.openzeppelin.com/t/error-contract-is-not-upgrade-safe-use-of-delegatecall-is-not-allowed/16859
import { SafeERC20Upgradeable, IERC20Upgradeable } from "../../lib/openzeppelin-contracts-upgradeable/contracts/token/ERC20/utils/SafeERC20Upgradeable.sol";
import { ReentrancyGuardUpgradeable } from "../../lib/openzeppelin-contracts-upgradeable/contracts/security/ReentrancyGuardUpgradeable.sol";
import { IWrappy } from "../external/IWrappy.sol";
import { CoreReference } from "../refs/CoreReference.sol";
import { VaultStorage } from "./VaultStorage.sol";
import { IVault } from "./IVault.sol";
/// @notice Contains the primary logic for vaults
/// @author Recursive Research Inc
abstract contract Vault is IVault, CoreReference, ReentrancyGuardUpgradeable, VaultStorage {
using SafeERC20Upgradeable for IERC20Upgradeable;
bytes32 public constant TOKEN0 = keccak256("TOKEN0");
bytes32 public constant TOKEN1 = keccak256("TOKEN1");
uint256 public constant RAY = 1e27;
uint256 public constant POOL_ERR = 50; // 0.5% error margin allowed
uint256 public constant DENOM = 10_000;
uint256 public constant MIN_LP = 1000; // minimum amount of tokens to be deposited as LP
// ----------- Upgradeable Constructor Pattern -----------
/// Initializes the vault to point to the Core contract and configures it to have
/// a given epoch duration, pair of tokens, and floor returns on each Token
/// @param coreAddress address of the Core contract
/// @param _epochDuration duration of the epoch in seconds
/// @param _token0 address of TOKEN0
/// @param _token1 address of TOKEN1
/// @param _token0FloorNum the floor returns of the TOKEN0 side (out of `DENOM`). In practice,
/// 10000 to guarantee lossless returns for the TOKEN0 side.
/// @param _token1FloorNum the floor returns of the TOKEN1 side (out of `DENOM`). In practice,
/// 500 to prevent accounting errors.
function __Vault_init(
address coreAddress,
uint256 _epochDuration,
address _token0,
address _token1,
uint256 _token0FloorNum,
uint256 _token1FloorNum
) internal onlyInitializing {
__CoreReference_init(coreAddress);
__ReentrancyGuard_init();
__Vault_init_unchained(_epochDuration, _token0, _token1, _token0FloorNum, _token1FloorNum);
}
function __Vault_init_unchained(
uint256 _epochDuration,
address _token0,
address _token1,
uint256 _token0FloorNum,
uint256 _token1FloorNum
) internal onlyInitializing {
require(_token0FloorNum > 0, "INVALID_TOKEN0_FLOOR");
require(_token1FloorNum > 0, "INVALID_TOKEN1_FLOOR");
isNativeVault = _token0 == core.wrappedNative();
token0 = IERC20Upgradeable(_token0);
token1 = IERC20Upgradeable(_token1);
token0Data.epochToRate[0] = RAY;
token1Data.epochToRate[0] = RAY;
epoch = 1;
epochDuration = _epochDuration;
token0FloorNum = _token0FloorNum;
token1FloorNum = _token1FloorNum;
}
modifier onlyParticipantOrStrategist(address _user) {
(uint256 depositedToken0, uint256 pendingToken0, ) = this.token0Balance(_user);
(uint256 depositedToken1, uint256 pendingToken1, ) = this.token1Balance(_user);
require(
depositedToken0 + pendingToken0 + depositedToken1 + pendingToken1 > 0 || _isStrategist(_user),
"NOT_PARTICIPANT_OR_STRATEGIST"
);
_;
}
modifier whenDepositsEnabled() {
require(depositsEnabled, "DEPOSITS_DISABLED");
_;
}
// ----------- Deposit Requests -----------
/// @notice schedules a deposit of TOKEN0 into the floor tranche
/// @dev currently does not support fee on transfer / deflationary tokens.
/// @param _amount the amount of the TOKEN0 to schedule-deposit if a non native vault,
/// and unused if it's a native vault. msg.value must be zero if not a native vault
/// typechain does not allow payable function overloading so we can either have 2 different
/// names or consolidate them into the same function as we do here
function depositToken0(uint256 _amount) external payable override whenDepositsEnabled whenNotPaused nonReentrant {
if (isNativeVault) {
IWrappy(address(token0)).deposit{ value: msg.value }();
_depositAccounting(token0Data, msg.value, TOKEN0);
} else {
require(msg.value == 0, "NOT_NATIVE_VAULT");
token0.safeTransferFrom(msg.sender, address(this), _amount);
_depositAccounting(token0Data, _amount, TOKEN0);
}
}
/// @notice schedules a deposit of the TOKEN1 into the ceiling tranche
/// @dev currently does not support fee on transfer / deflationary tokens.
/// @param _amount the amount of the TOKEN1 to schedule-deposit
function depositToken1(uint256 _amount) external override whenDepositsEnabled whenNotPaused nonReentrant {
token1.safeTransferFrom(msg.sender, address(this), _amount);
_depositAccounting(token1Data, _amount, TOKEN1);
}
/// @dev handles the accounting for scheduling deposits in a way that abstracts the logic
/// @param assetData storage reference to the data for the desired asset
/// @param _depositAmount the amount of the asset to deposit
/// @param assetCode code for the type of asset (either `TOKEN0` or `TOKEN1`)
function _depositAccounting(
AssetData storage assetData,
uint256 _depositAmount,
bytes32 assetCode
) private {
require(_depositAmount > 0, "ZERO_AMOUNT");
uint256 currEpoch = epoch;
// Check their prior deposit requests and flush to balanceDay0 if needed
assetData.balanceDay0[msg.sender] = __updateDepositRequests(assetData, currEpoch, _depositAmount);
// track total deposit requests
assetData.depositRequestsTotal += _depositAmount;
emit DepositScheduled(assetCode, msg.sender, _depositAmount, currEpoch);
}
/// @dev for updating the deposit requests with any new deposit amount
/// or flushing the deposits to balanceDay0 if the epoch of the request has passed
/// @param assetData storage reference to the data for the desired asset
/// @param currEpoch current epoch (passed to save a storage read)
/// @param _depositAmount amount of deposits
/// @return newBalanceDay0 new balance day 0 of the user (returned to save a storage read)
function __updateDepositRequests(
AssetData storage assetData,
uint256 currEpoch,
uint256 _depositAmount
) private returns (uint256 newBalanceDay0) {
Request storage req = assetData.depositRequests[msg.sender];
uint256 balance = assetData.balanceDay0[msg.sender];
uint256 reqAmount = req.amount;
// If they have a prior request
if (reqAmount > 0 && req.epoch < currEpoch) {
// and if it was from a prior epoch
// we now know the exchange rate at that epoch,
// so we can add to their balance
uint256 conversionRate = assetData.epochToRate[req.epoch];
// will not overflow even if value = total mc of crypto
balance += (reqAmount * RAY) / conversionRate;
reqAmount = 0;
}
if (_depositAmount > 0) {
// if they don't have a prior request, store this one (if this is a non-zero deposit)
reqAmount += _depositAmount;
req.epoch = currEpoch;
}
req.amount = reqAmount;
return balance;
}
// ----------- Withdraw Requests -----------
/// @notice schedules a withdrawal of TOKEN0 from the floor tranche
/// @param _amount amount of Day 0 TOKEN0 to withdraw
function withdrawToken0(uint256 _amount) external override whenNotPaused nonReentrant {
_withdrawAccounting(token0Data, _amount, TOKEN0);
}
/// @notice schedules a withdrawal of the TOKEN1 from the ceiling tranche
/// @param _amount amount of Day 0 TOKEN1 to withdraw
function withdrawToken1(uint256 _amount) external override whenNotPaused nonReentrant {
_withdrawAccounting(token1Data, _amount, TOKEN1);
}
/// @dev handles the accounting for schedules withdrawals in a way that abstracts the logic
/// @param assetData storage reference to the data for the desired asset
/// @param _withdrawAmountDay0 the amount of the asset to withdraw
/// @param assetCode code for the type of asset (either `TOKEN0` or `TOKEN1`)
function _withdrawAccounting(
AssetData storage assetData,
uint256 _withdrawAmountDay0,
bytes32 assetCode
) private {
require(_withdrawAmountDay0 > 0, "ZERO_AMOUNT");
uint256 currEpoch = epoch;
// Check if they have any deposit request that
// might not have been flushed to the deposit mapping yet
uint256 userBalanceDay0 = __updateDepositRequests(assetData, currEpoch, 0);
// See if there were any existing withdraw requests
Request storage req = assetData.withdrawRequests[msg.sender];
if (req.amount > 0 && req.epoch < currEpoch) {
// If there was a request from a previous epoch, we now know the corresponding amount
// that was withdrawn and we can add it to the accumulated amount of claimable assets
// tokenAmount * epochToRate will not overflow even if value = total mc of crypto & rate = 3.8e10 * RAY
assetData.claimable[msg.sender] += (req.amount * assetData.epochToRate[req.epoch]) / RAY;
req.amount = 0;
}
// Subtract the amount they way to withdraw from their deposit amount
// Want to explicitly send out own reversion message
require(userBalanceDay0 >= _withdrawAmountDay0, "INSUFFICIENT_BALANCE");
unchecked {
assetData.balanceDay0[msg.sender] = userBalanceDay0 - _withdrawAmountDay0;
}
// Add it to their withdraw request and log the epoch
req.amount = _withdrawAmountDay0 + req.amount;
if (req.epoch < currEpoch) {
req.epoch = currEpoch;
}
// track total withdraw requests
assetData.withdrawRequestsTotal += _withdrawAmountDay0;
emit WithdrawScheduled(assetCode, msg.sender, _withdrawAmountDay0, currEpoch);
}
// ----------- Claim Functions -----------
/// @notice allows the user (`msg.sender`) to claim the TOKEN0 they have a right to once
/// withdrawal requests are processed
function claimToken0() external override whenNotPaused nonReentrant {
uint256 claim = _claimAccounting(token0Data, TOKEN0);
if (isNativeVault) {
IWrappy(address(token0)).withdraw(claim);
(bool success, ) = msg.sender.call{ value: claim }("");
require(success, "TRANSFER_FAILED");
} else {
token0.safeTransfer(msg.sender, claim);
}
}
/// @notice allows the user (`msg.sender`) to claim the TOKEN1 they have a right to once
/// withdrawal requests are processed
function claimToken1() external override whenNotPaused nonReentrant {
uint256 claim = _claimAccounting(token1Data, TOKEN1);
token1.safeTransfer(msg.sender, claim);
}
/// @notice calculates the current amount of an asset the user (`msg.sender`) has claim to
/// after withdrawal requests are processed and abstracts away the accounting logic
/// @param assetData storage reference to the data for the desired asset
/// @return _claim amount of the asset the user has a claim to
/// @param assetCode code for the type of asset (either `TOKEN0` or `TOKEN1`)
function _claimAccounting(AssetData storage assetData, bytes32 assetCode) private returns (uint256 _claim) {
Request storage withdrawReq = assetData.withdrawRequests[msg.sender];
uint256 currEpoch = epoch;
uint256 withdrawEpoch = withdrawReq.epoch;
uint256 claimable = assetData.claimable[msg.sender];
if (withdrawEpoch < currEpoch) {
// If epoch ended, calculate the amount they can withdraw
uint256 withdrawAmountDay0 = withdrawReq.amount;
if (withdrawAmountDay0 > 0) {
delete assetData.withdrawRequests[msg.sender];
// tokenAmount * epochToRate will not overflow even if value = total mc of crypto & rate = 3.8e10 * RAY
claimable += (withdrawAmountDay0 * assetData.epochToRate[withdrawEpoch]) / RAY;
}
}
require(claimable > 0, "NO_CLAIM");
assetData.claimable[msg.sender] = 0;
assetData.claimableTotal -= claimable;
emit AssetsClaimed(assetCode, msg.sender, claimable);
return claimable;
}
// ----------- Balance Functions -----------
/// @notice gets a user's current TOKEN0 balance
/// @param user address of the user in which whose balance we are interested
/// @return deposited amount of deposited TOKEN0 in the protocol
/// @return pendingDeposit amount of TOKEN0 pending deposit
/// @return claimable amount of TOKEN0 ready to be withdrawn
function token0Balance(address user)
external
view
override
returns (
uint256 deposited,
uint256 pendingDeposit,
uint256 claimable
)
{
return _balance(token0Data, user);
}
/// @notice gets a user's current TOKEN1 balance
/// @param user address of the user in which whose balance we are interested
/// @return deposited amount of deposited TOKEN1 in the protocol
/// @return pendingDeposit amount of TOKEN1 pending deposit
/// @return claimable amount of TOKEN1 ready to be withdrawn
function token1Balance(address user)
external
view
override
returns (
uint256 deposited,
uint256 pendingDeposit,
uint256 claimable
)
{
return _balance(token1Data, user);
}
/// @dev handles the balance calculations in a way that abstracts the logic
/// @param assetData storage reference to the data for the desired asset
/// @param user address of the user in which whose balance we are interested
/// @return _deposited amount of their asset that is deposited in the protocol
/// @return _pendingDeposit amount of their asset pending deposit
/// @return _claimable amount of their asset ready to be withdrawn
function _balance(AssetData storage assetData, address user)
private
view
returns (
uint256 _deposited,
uint256 _pendingDeposit,
uint256 _claimable
)
{
uint256 currEpoch = epoch;
uint256 balanceDay0 = assetData.balanceDay0[user];
// then check if they have any open deposit requests
Request memory depositReq = assetData.depositRequests[user];
uint256 depositAmt = depositReq.amount;
uint256 depositEpoch = depositReq.epoch;
if (depositAmt > 0) {
// if they have one from a previous epoch, add the Day 0 amount that
// deposit is worth
if (depositEpoch < currEpoch) {
balanceDay0 += (depositAmt * RAY) / assetData.epochToRate[depositEpoch];
} else {
// if they have one from this epoch, set the flat amount
_pendingDeposit = depositAmt;
}
}
// Check their withdraw requests, because if they made one
// their deposit balances would have been flushed to here
Request memory withdrawReq = assetData.withdrawRequests[user];
_claimable = assetData.claimable[user];
if (withdrawReq.amount > 0) {
// if they have one from a previous epoch, calculate that
// requests day 0 Value
if (withdrawReq.epoch < currEpoch) {
_claimable += (withdrawReq.amount * assetData.epochToRate[withdrawReq.epoch]) / RAY;
} else {
// if they have one from this epoch, that means the tokens are still active
balanceDay0 += withdrawReq.amount;
}
}
/* TODO: this would be better calculated if we simulated ending the epoch here
because this doesn't consider the IL / profits from this current epoch
but this is fine for now */
// Note that currEpoch >= 1 since it is initialized to 1 in the constructor
uint256 currentConversionRate = assetData.epochToRate[currEpoch - 1];
// tokenAmount * epochToRate will not overflow even if value = total mc of crypto & rate = 3.8e10 * RAY
return ((balanceDay0 * currentConversionRate) / RAY, _pendingDeposit, _claimable);
}
// ----------- Next Epoch Functions -----------
/// @notice Struct just for wrapper around local variables to avoid the stack limit in `nextEpoch()`
struct NextEpochVariables {
uint256 poolBalance;
uint256 withdrawn;
uint256 available;
uint256 original;
uint256 newRate;
uint256 newClaimable;
}
/// @notice Initiates the next epoch
/// @param expectedPoolToken0 the approximate amount of TOKEN0 expected to be in the pool (preventing frontrunning)
/// @param expectedPoolToken1 the approximate amount of TOKEN1 expected to be in the pool (preventing frontrunning)
function nextEpoch(uint256 expectedPoolToken0, uint256 expectedPoolToken1)
external
override
onlyParticipantOrStrategist(msg.sender)
whenNotPaused
{
require(block.timestamp - lastEpochStart >= epochDuration, "EPOCH_DURATION_UNMET");
AssetDataStatics memory _token0Data = _assetDataStatics(token0Data);
AssetDataStatics memory _token1Data = _assetDataStatics(token1Data);
// These are used to avoid hitting the local variable stack limit
NextEpochVariables memory _token0;
NextEpochVariables memory _token1;
uint256 currEpoch = epoch;
// Total tokens in the liquidity pool and our ownership of those tokens
(_token0.poolBalance, _token1.poolBalance) = getPoolBalances();
// will not overflow with reasonable expectedPoolToken amount (DENOM = 10,000)
require(_token0.poolBalance >= (expectedPoolToken0 * (DENOM - POOL_ERR)) / DENOM, "UNEXPECTED_POOL_BALANCES");
require(_token0.poolBalance <= (expectedPoolToken0 * (DENOM + POOL_ERR)) / DENOM, "UNEXPECTED_POOL_BALANCES");
require(_token1.poolBalance >= (expectedPoolToken1 * (DENOM - POOL_ERR)) / DENOM, "UNEXPECTED_POOL_BALANCES");
require(_token1.poolBalance <= (expectedPoolToken1 * (DENOM + POOL_ERR)) / DENOM, "UNEXPECTED_POOL_BALANCES");
// !!NOTE: After this point we don't need to worry about front-running anymore because the pool's state has been
// verified (as long as there is no calls to untrusted external parties)
// (1) Withdraw liquidity
(_token0.withdrawn, _token1.withdrawn) = withdrawLiquidity();
(_token0.poolBalance, _token1.poolBalance) = getPoolBalances();
_token0.available = _token0.withdrawn + _token0Data.reserves;
_token1.available = _token1.withdrawn + _token1Data.reserves;
// (2) Perform the swap
// Calculate the floor and ceiling returns for each side
// will not overflow with reasonable amounts (token0/1FloorNum ~ 10,000)
uint256 token0Floor = _token0Data.reserves + (_token0Data.active * token0FloorNum) / DENOM;
uint256 token1Floor = _token1Data.reserves + (_token1Data.active * token1FloorNum) / DENOM;
uint256 token1Ceiling = _token1Data.reserves + _token1Data.active;
// Add interest to the token1 ceiling (but we don't for this version)
// token1Ceiling += (_token1Data.active * timePassed * tokenInterest) / (RAY * 365 days);
if (token0Floor > _token0.available) {
// The min amount needed to reach the TOKEN0 floor
uint256 token1NeededToSwap;
uint256 token0Deficit = token0Floor - _token0.available;
if (token0Deficit > _token0.poolBalance) {
token1NeededToSwap = _token1.available;
} else {
token1NeededToSwap = calcAmountIn(token0Deficit, _token1.poolBalance, _token0.poolBalance);
}
// swap as much token1 as is necessary to get back to the token0 floor, without going
// under the token1 floor
uint256 swapAmount = (token1Ceiling + token1NeededToSwap < _token1.available)
? _token1.available - token1Ceiling
: token1NeededToSwap + token1Floor > _token1.available
? _token1.available - token1Floor
: token1NeededToSwap;
(uint256 amountOut, uint256 amountConsumed) = swap(token1, token0, swapAmount);
_token0.available += amountOut;
_token1.available -= amountConsumed;
} else if (_token1.available >= token1Ceiling) {
// If we have more token0 than the floor and more token1 than the ceiling so we swap the excess amount
// all to TOKEN0
(uint256 amountOut, uint256 amountConsumed) = swap(token1, token0, _token1.available - token1Ceiling);
_token0.available += amountOut;
_token1.available -= amountConsumed;
} else {
// We have more token0 than the floor but are below the token1 ceiling
// Min amount of TOKEN0 needed to swap to hit the token1 ceiling
uint256 token0NeededToSwap;
uint256 token1Deficit = token1Ceiling - _token1.available;
if (token1Deficit > _token1.poolBalance) {
token0NeededToSwap = _token0.poolBalance;
} else {
token0NeededToSwap = calcAmountIn(token1Deficit, _token0.poolBalance, _token1.poolBalance);
}
if (token0Floor + token0NeededToSwap < _token0.available) {
// If we can reach the token1 ceiling without going through the TOKEN0 floor
(uint256 amountOut, uint256 amountConsumed) = swap(token0, token1, token0NeededToSwap);
_token0.available -= amountConsumed;
_token1.available += amountOut;
} else {
// We swap as much TOKEN0 as we can without going through the TOKEN0 floor
(uint256 amountOut, uint256 amountConsumed) = swap(token0, token1, _token0.available - token0Floor);
_token0.available -= amountConsumed;
_token1.available += amountOut;
}
}
// (3) Add in new deposits and subtract withdrawals
_token0.original = _token0Data.reserves + _token0Data.active;
_token1.original = _token1Data.reserves + _token1Data.active;
// collect protocol fee if profitable
if (_token0.available > _token0.original) {
// will not overflow core.protocolFee() < 10,000
_token0.available -= ((_token0.available - _token0.original) * core.protocolFee()) / core.MAX_FEE();
}
if (_token1.available > _token1.original) {
// will not overflow core.protocolFee() < 10,000
_token1.available -= ((_token1.available - _token1.original) * core.protocolFee()) / core.MAX_FEE();
}
// calculate new rate (before withdraws and deposits) as available tokens divided by
// tokens that were available at the beginning of the epoch
// and tally claimable amount (withdraws that are now accounted for) for this token
// tokenAmount * epochToRate will not overflow even if value = total mc of crypto & rate = 3.8e10 * RAY
_token0.newRate = _token0.original > 0
? (token0Data.epochToRate[currEpoch - 1] * _token0.available) / _token0.original // no overflow
: token0Data.epochToRate[currEpoch - 1];
token0Data.epochToRate[currEpoch] = _token0.newRate;
_token0.newClaimable = (_token0Data.withdrawRequestsTotal * _token0.newRate) / RAY; // no overflow
token0Data.claimableTotal += _token0.newClaimable;
_token1.newRate = _token1.original > 0
? (token1Data.epochToRate[currEpoch - 1] * _token1.available) / _token1.original // no overflow
: token1Data.epochToRate[currEpoch - 1];
token1Data.epochToRate[currEpoch] = _token1.newRate;
_token1.newClaimable = (_token1Data.withdrawRequestsTotal * _token1.newRate) / RAY; // no overflow
token1Data.claimableTotal += _token1.newClaimable;
// calculate available token after deposits and withdraws
_token0.available = _token0.available + _token0Data.depositRequestsTotal - _token0.newClaimable;
_token1.available = _token1.available + _token1Data.depositRequestsTotal - _token1.newClaimable;
token0Data.depositRequestsTotal = 0;
token0Data.withdrawRequestsTotal = 0;
token1Data.depositRequestsTotal = 0;
token1Data.withdrawRequestsTotal = 0;
// (4) Deposit liquidity back in
(token0Data.active, token1Data.active) = depositLiquidity(_token0.available, _token1.available);
token0Data.reserves = _token0.available - token0Data.active;
token1Data.reserves = _token1.available - token1Data.active;
epoch += 1;
lastEpochStart = block.timestamp;
emit NextEpochStarted(epoch, msg.sender, block.timestamp);
}
function _assetDataStatics(AssetData storage assetData) internal view returns (AssetDataStatics memory) {
return
AssetDataStatics({
reserves: assetData.reserves,
active: assetData.active,
depositRequestsTotal: assetData.depositRequestsTotal,
withdrawRequestsTotal: assetData.withdrawRequestsTotal
});
}
// ----------- Abstract Functions Implemented For Each DEX -----------
function getPoolBalances() internal view virtual returns (uint256 poolToken0, uint256 poolToken1);
/// @dev This is provided automatically by the Uniswap router
function calcAmountIn(
uint256 amountOut,
uint256 reserveIn,
uint256 reserveOut
) internal view virtual returns (uint256 amountIn);
/// @dev Withdraws all liquidity
function withdrawLiquidity() internal returns (uint256 token0Withdrawn, uint256 token1Withdrawn) {
// the combination of `unstakeLiquidity` and `_withdrawLiquidity` should never result in a decreased
// balance of either token. If they do, this transaction will revert.
uint256 token0BalanceBefore = token0.balanceOf(address(this));
uint256 token1BalanceBefore = token1.balanceOf(address(this));
_unstakeLiquidity();
_withdrawLiquidity();
token0Withdrawn = token0.balanceOf(address(this)) - token0BalanceBefore;
token1Withdrawn = token1.balanceOf(address(this)) - token1BalanceBefore;
}
function _withdrawLiquidity() internal virtual;
/// @dev Deposits liquidity into the pool
function depositLiquidity(uint256 availableToken0, uint256 availableToken1)
internal
returns (uint256 token0Deposited, uint256 token1Deposited)
{
// ensure sufficient liquidity is minted, if < MIN_LP don't activate those funds
if ((availableToken0 < MIN_LP) || (availableToken1 < MIN_LP)) return (0, 0);
(token0Deposited, token1Deposited) = _depositLiquidity(availableToken0, availableToken1);
_stakeLiquidity();
}
function _depositLiquidity(uint256 availableToken0, uint256 availableToken1)
internal
virtual
returns (uint256 token0Deposited, uint256 token1Deposited);
/// @dev Swaps tokens and handles the case where amountIn == 0
function swap(
IERC20Upgradeable tokenIn,
IERC20Upgradeable tokenOut,
uint256 amountIn
) internal virtual returns (uint256 amountOut, uint256 amountConsumed);
// ----------- Rescue Funds -----------
/// @notice rescues funds from this contract in dire situations, only when contract is paused
/// @param tokens array of tokens to rescue
/// @param amounts list of amounts for each token to rescue. If 0, the full balance
function rescueTokens(address[] calldata tokens, uint256[] calldata amounts)
external
override
nonReentrant
onlyGuardian
whenPaused
{
require(tokens.length == amounts.length, "INVALID_INPUTS");
for (uint256 i = 0; i < tokens.length; i++) {
uint256 amount = amounts[i];
if (tokens[i] == address(0)) {
amount = (amount == 0) ? address(this).balance : amount;
(bool success, ) = msg.sender.call{ value: amount }("");
require(success, "TRANSFER_FAILED");
} else {
amount = (amount == 0) ? IERC20Upgradeable(tokens[i]).balanceOf(address(this)) : amount;
IERC20Upgradeable(tokens[i]).safeTransfer(msg.sender, amount);
}
}
emit FundsRescued(msg.sender);
}
/// @notice A function that should be called by the guardian to unstake any liquidity before rescuing LP tokens
function unstakeLiquidity() external override nonReentrant onlyGuardian whenPaused {
_unstakeLiquidity();
}
/// @notice stakes all LP tokens
function _unstakeLiquidity() internal virtual;
/// @notice unstakes all LP tokens
function _stakeLiquidity() internal virtual;
// ----------- Getter Functions -----------
function token0ValueLocked() external view override returns (uint256) {
return token0.balanceOf(address(this)) + token0Data.active;
}
function token1ValueLocked() external view override returns (uint256) {
return token1.balanceOf(address(this)) + token1Data.active;
}
function token0BalanceDay0(address user) external view override returns (uint256) {
return __user_balanceDay0(token0Data, user);
}
function epochToToken0Rate(uint256 _epoch) external view override returns (uint256) {
return token0Data.epochToRate[_epoch];
}
function token0WithdrawRequests(address user) external view override returns (uint256) {
return __user_requestView(token0Data.withdrawRequests[user]);
}
function token1BalanceDay0(address user) external view override returns (uint256) {
return __user_balanceDay0(token1Data, user);
}
function epochToToken1Rate(uint256 _epoch) external view override returns (uint256) {
return token1Data.epochToRate[_epoch];
}
function token1WithdrawRequests(address user) external view override returns (uint256) {
return __user_requestView(token1Data.withdrawRequests[user]);
}
/// @dev This function is used to convert the way balances are internally stored to
/// what makes sense for the user
function __user_balanceDay0(AssetData storage assetData, address user) internal view returns (uint256) {
uint256 res = assetData.balanceDay0[user];
Request memory depositReq = assetData.depositRequests[user];
if (depositReq.epoch < epoch) {
// will not overflow even if value = total mc of crypto
res += (depositReq.amount * RAY) / assetData.epochToRate[depositReq.epoch];
}
Request memory withdrawReq = assetData.withdrawRequests[user];
if (withdrawReq.epoch == epoch) {
// This amount has not been withdrawn yet so this is still part of
// their Day 0 Balance
res += withdrawReq.amount;
}
return res;
}
/// @dev This function is used to convert the way requests are internally stored to
/// what makes sense for the user
function __user_requestView(Request memory req) internal view returns (uint256) {
if (req.epoch < epoch) {
return 0;
}
return req.amount;
}
/// @notice calculates current amount of fees accrued, as the current balance of each token
/// less the amounts each tokens that are active user funds. token0Data.active is not
/// included because they are currently in the DEX pool
function feesAccrued() public view override returns (uint256 token0Fees, uint256 token1Fees) {
token0Fees =
token0.balanceOf(address(this)) -
token0Data.claimableTotal -
token0Data.reserves -
token0Data.depositRequestsTotal;
token1Fees =
token1.balanceOf(address(this)) -
token1Data.claimableTotal -
token1Data.reserves -
token1Data.depositRequestsTotal;
}
/// ------------------- Setters -------------------
/// @notice sets a new value for the token0 floor
/// @param _token0FloorNum the new floor token0 returns (out of `DENOM`)
function setToken0Floor(uint256 _token0FloorNum) external override onlyStrategist {
require(_token0FloorNum > 0, "INVALID_TOKEN0_FLOOR");
token0FloorNum = _token0FloorNum;
emit Token0FloorUpdated(_token0FloorNum);
}
/// @notice sets a new value for the token1 floor
/// @param _token1FloorNum the new floor token1 returns (out of `DENOM`)
function setToken1Floor(uint256 _token1FloorNum) external override onlyStrategist {
require(_token1FloorNum > 0, "INVALID_TOKEN1_FLOOR");
token1FloorNum = _token1FloorNum;
emit Token1FloorUpdated(_token1FloorNum);
}
function setEpochDuration(uint256 _epochDuration) external override onlyStrategist whenPaused {
epochDuration = _epochDuration;
emit EpochDurationUpdated(_epochDuration);
}
/// @notice sends accrued fees to the core.feeTo() address, the treasury
function collectFees() external override {
(uint256 token0Fees, uint256 token1Fees) = feesAccrued();
if (token0Fees > 0) {
token0.safeTransfer(core.feeTo(), token0Fees);
}
if (token1Fees > 0) {
token1.safeTransfer(core.feeTo(), token1Fees);
}
}
function setDepositsEnabled() external onlyStrategist whenPaused {
depositsEnabled = true;
}
function setDepositsDisabled() external onlyStrategist whenPaused {
depositsEnabled = false;
}
// To receive any native token sent here (ex. from wrapped native withdraw)
receive() external payable {
// no logic upon reciept of native token required
}
}
// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.11;
// Need to use IERC20Upgradeable because that is what SafeERC20Upgradeable requires
// but the interface is exactly the same as ERC20s so this still works with ERC20s
import { IERC20Upgradeable } from "../../lib/openzeppelin-contracts-upgradeable/contracts/token/ERC20/IERC20Upgradeable.sol";
/// @notice Storage for Vault
/// @author Recursive Research Inc
abstract contract VaultStorageUnpadded {
/// @notice struct for withdraw and deposit requests
/// @param epoch the epoch when the request was submitted
/// @param amount size of request, if deposit it's an absolute amount of the underlying.
/// If withdraw, specified in "Day 0" amount
struct Request {
uint256 epoch;
uint256 amount;
}
/// @notice struct to keep a copy of AssetData in memory during `nextEpoch` call
struct AssetDataStatics {
uint256 reserves;
uint256 active;
uint256 depositRequestsTotal;
uint256 withdrawRequestsTotal;
}
/// @notice global struct to keep track of all info for an asset
/// @param reserves total amount not active
/// @param active total amount paired up in the Dex pool
/// @param depositRequestsTotal total amount of queued up deposit requests
/// @param withdrawRequestsTotal total amount of queued up withdraw requests
/// @param balanceDay0 each user's deposited balance denominated in "day 0 tokens"
/// @param claimable each user's amount that has been withdrawn from the LP pool and they can claim
/// @param epochToRate exchange rate of token to day0 tokens by epoch
/// @param depositRequests each users deposit requests
/// @param withdrawRequests each users withdraw requests
struct AssetData {
uint256 reserves;
uint256 active;
uint256 depositRequestsTotal;
uint256 withdrawRequestsTotal;
uint256 claimableTotal;
mapping(address => uint256) balanceDay0;
mapping(address => uint256) claimable;
mapping(uint256 => uint256) epochToRate;
mapping(address => Request) depositRequests;
mapping(address => Request) withdrawRequests;
}
/// @notice true if token0 is wrapped native
bool public isNativeVault;
/// @notice token that receives a "floor" return
IERC20Upgradeable public token0;
/// @notice token that receives a "ceiling" return
IERC20Upgradeable public token1;
/// @notice current epoch, set to 1 on initialization
uint256 public epoch;
/// @notice duration of each epoch
uint256 public epochDuration;
/// @notice start of last epoch, 0 on initialization
uint256 public lastEpochStart;
/// @notice keeps track of relevant data for TOKEN0
AssetData public token0Data;
/// @notice keeps track of relevant data for TOKEN1
AssetData public token1Data;
/// @notice minimum return for TOKEN0 (out of `vault.DENOM`) as long as TOKEN1 is above its minimum return
uint256 public token0FloorNum;
/// @notice minimum return for TOKEN1 (out of `vault.DENOM`)
uint256 public token1FloorNum;
/// @notice flag for enabling/disabling deposits
bool public depositsEnabled;
}
abstract contract VaultStorage is VaultStorageUnpadded {
// @dev Padding 100 words of storage for upgradeability. Follows OZ's guidance.
// @dev storage var depositsEnabled has been added, and __gap reduced by 1 word to maintain overall storage size.
uint256[99] private __gap;
}
File 3 of 4: TransparentUpgradeableProxy
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "@openzeppelin/contracts/proxy/ERC1967/ERC1967Proxy.sol";
import "@openzeppelin/contracts/proxy/transparent/TransparentUpgradeableProxy.sol";
import "@openzeppelin/contracts/proxy/transparent/ProxyAdmin.sol";
// Kept for backwards compatibility with older versions of Hardhat and Truffle plugins.
contract AdminUpgradeabilityProxy is TransparentUpgradeableProxy {
constructor(address logic, address admin, bytes memory data) payable TransparentUpgradeableProxy(logic, admin, data) {}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "../Proxy.sol";
import "./ERC1967Upgrade.sol";
/**
* @dev This contract implements an upgradeable proxy. It is upgradeable because calls are delegated to an
* implementation address that can be changed. This address is stored in storage in the location specified by
* https://eips.ethereum.org/EIPS/eip-1967[EIP1967], so that it doesn't conflict with the storage layout of the
* implementation behind the proxy.
*/
contract ERC1967Proxy is Proxy, ERC1967Upgrade {
/**
* @dev Initializes the upgradeable proxy with an initial implementation specified by `_logic`.
*
* If `_data` is nonempty, it's used as data in a delegate call to `_logic`. This will typically be an encoded
* function call, and allows initializating the storage of the proxy like a Solidity constructor.
*/
constructor(address _logic, bytes memory _data) payable {
assert(_IMPLEMENTATION_SLOT == bytes32(uint256(keccak256("eip1967.proxy.implementation")) - 1));
_upgradeToAndCall(_logic, _data, false);
}
/**
* @dev Returns the current implementation address.
*/
function _implementation() internal view virtual override returns (address impl) {
return ERC1967Upgrade._getImplementation();
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "../ERC1967/ERC1967Proxy.sol";
/**
* @dev This contract implements a proxy that is upgradeable by an admin.
*
* To avoid https://medium.com/nomic-labs-blog/malicious-backdoors-in-ethereum-proxies-62629adf3357[proxy selector
* clashing], which can potentially be used in an attack, this contract uses the
* https://blog.openzeppelin.com/the-transparent-proxy-pattern/[transparent proxy pattern]. This pattern implies two
* things that go hand in hand:
*
* 1. If any account other than the admin calls the proxy, the call will be forwarded to the implementation, even if
* that call matches one of the admin functions exposed by the proxy itself.
* 2. If the admin calls the proxy, it can access the admin functions, but its calls will never be forwarded to the
* implementation. If the admin tries to call a function on the implementation it will fail with an error that says
* "admin cannot fallback to proxy target".
*
* These properties mean that the admin account can only be used for admin actions like upgrading the proxy or changing
* the admin, so it's best if it's a dedicated account that is not used for anything else. This will avoid headaches due
* to sudden errors when trying to call a function from the proxy implementation.
*
* Our recommendation is for the dedicated account to be an instance of the {ProxyAdmin} contract. If set up this way,
* you should think of the `ProxyAdmin` instance as the real administrative interface of your proxy.
*/
contract TransparentUpgradeableProxy is ERC1967Proxy {
/**
* @dev Initializes an upgradeable proxy managed by `_admin`, backed by the implementation at `_logic`, and
* optionally initialized with `_data` as explained in {ERC1967Proxy-constructor}.
*/
constructor(address _logic, address admin_, bytes memory _data) payable ERC1967Proxy(_logic, _data) {
assert(_ADMIN_SLOT == bytes32(uint256(keccak256("eip1967.proxy.admin")) - 1));
_changeAdmin(admin_);
}
/**
* @dev Modifier used internally that will delegate the call to the implementation unless the sender is the admin.
*/
modifier ifAdmin() {
if (msg.sender == _getAdmin()) {
_;
} else {
_fallback();
}
}
/**
* @dev Returns the current admin.
*
* NOTE: Only the admin can call this function. See {ProxyAdmin-getProxyAdmin}.
*
* TIP: To get this value clients can read directly from the storage slot shown below (specified by EIP1967) using the
* https://eth.wiki/json-rpc/API#eth_getstorageat[`eth_getStorageAt`] RPC call.
* `0xb53127684a568b3173ae13b9f8a6016e243e63b6e8ee1178d6a717850b5d6103`
*/
function admin() external ifAdmin returns (address admin_) {
admin_ = _getAdmin();
}
/**
* @dev Returns the current implementation.
*
* NOTE: Only the admin can call this function. See {ProxyAdmin-getProxyImplementation}.
*
* TIP: To get this value clients can read directly from the storage slot shown below (specified by EIP1967) using the
* https://eth.wiki/json-rpc/API#eth_getstorageat[`eth_getStorageAt`] RPC call.
* `0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc`
*/
function implementation() external ifAdmin returns (address implementation_) {
implementation_ = _implementation();
}
/**
* @dev Changes the admin of the proxy.
*
* Emits an {AdminChanged} event.
*
* NOTE: Only the admin can call this function. See {ProxyAdmin-changeProxyAdmin}.
*/
function changeAdmin(address newAdmin) external virtual ifAdmin {
_changeAdmin(newAdmin);
}
/**
* @dev Upgrade the implementation of the proxy.
*
* NOTE: Only the admin can call this function. See {ProxyAdmin-upgrade}.
*/
function upgradeTo(address newImplementation) external ifAdmin {
_upgradeToAndCall(newImplementation, bytes(""), false);
}
/**
* @dev Upgrade the implementation of the proxy, and then call a function from the new implementation as specified
* by `data`, which should be an encoded function call. This is useful to initialize new storage variables in the
* proxied contract.
*
* NOTE: Only the admin can call this function. See {ProxyAdmin-upgradeAndCall}.
*/
function upgradeToAndCall(address newImplementation, bytes calldata data) external payable ifAdmin {
_upgradeToAndCall(newImplementation, data, true);
}
/**
* @dev Returns the current admin.
*/
function _admin() internal view virtual returns (address) {
return _getAdmin();
}
/**
* @dev Makes sure the admin cannot access the fallback function. See {Proxy-_beforeFallback}.
*/
function _beforeFallback() internal virtual override {
require(msg.sender != _getAdmin(), "TransparentUpgradeableProxy: admin cannot fallback to proxy target");
super._beforeFallback();
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "./TransparentUpgradeableProxy.sol";
import "../../access/Ownable.sol";
/**
* @dev This is an auxiliary contract meant to be assigned as the admin of a {TransparentUpgradeableProxy}. For an
* explanation of why you would want to use this see the documentation for {TransparentUpgradeableProxy}.
*/
contract ProxyAdmin is Ownable {
/**
* @dev Returns the current implementation of `proxy`.
*
* Requirements:
*
* - This contract must be the admin of `proxy`.
*/
function getProxyImplementation(TransparentUpgradeableProxy proxy) public view virtual returns (address) {
// We need to manually run the static call since the getter cannot be flagged as view
// bytes4(keccak256("implementation()")) == 0x5c60da1b
(bool success, bytes memory returndata) = address(proxy).staticcall(hex"5c60da1b");
require(success);
return abi.decode(returndata, (address));
}
/**
* @dev Returns the current admin of `proxy`.
*
* Requirements:
*
* - This contract must be the admin of `proxy`.
*/
function getProxyAdmin(TransparentUpgradeableProxy proxy) public view virtual returns (address) {
// We need to manually run the static call since the getter cannot be flagged as view
// bytes4(keccak256("admin()")) == 0xf851a440
(bool success, bytes memory returndata) = address(proxy).staticcall(hex"f851a440");
require(success);
return abi.decode(returndata, (address));
}
/**
* @dev Changes the admin of `proxy` to `newAdmin`.
*
* Requirements:
*
* - This contract must be the current admin of `proxy`.
*/
function changeProxyAdmin(TransparentUpgradeableProxy proxy, address newAdmin) public virtual onlyOwner {
proxy.changeAdmin(newAdmin);
}
/**
* @dev Upgrades `proxy` to `implementation`. See {TransparentUpgradeableProxy-upgradeTo}.
*
* Requirements:
*
* - This contract must be the admin of `proxy`.
*/
function upgrade(TransparentUpgradeableProxy proxy, address implementation) public virtual onlyOwner {
proxy.upgradeTo(implementation);
}
/**
* @dev Upgrades `proxy` to `implementation` and calls a function on the new implementation. See
* {TransparentUpgradeableProxy-upgradeToAndCall}.
*
* Requirements:
*
* - This contract must be the admin of `proxy`.
*/
function upgradeAndCall(TransparentUpgradeableProxy proxy, address implementation, bytes memory data) public payable virtual onlyOwner {
proxy.upgradeToAndCall{value: msg.value}(implementation, data);
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @dev This abstract contract provides a fallback function that delegates all calls to another contract using the EVM
* instruction `delegatecall`. We refer to the second contract as the _implementation_ behind the proxy, and it has to
* be specified by overriding the virtual {_implementation} function.
*
* Additionally, delegation to the implementation can be triggered manually through the {_fallback} function, or to a
* different contract through the {_delegate} function.
*
* The success and return data of the delegated call will be returned back to the caller of the proxy.
*/
abstract contract Proxy {
/**
* @dev Delegates the current call to `implementation`.
*
* This function does not return to its internall call site, it will return directly to the external caller.
*/
function _delegate(address implementation) internal virtual {
// solhint-disable-next-line no-inline-assembly
assembly {
// Copy msg.data. We take full control of memory in this inline assembly
// block because it will not return to Solidity code. We overwrite the
// Solidity scratch pad at memory position 0.
calldatacopy(0, 0, calldatasize())
// Call the implementation.
// out and outsize are 0 because we don't know the size yet.
let result := delegatecall(gas(), implementation, 0, calldatasize(), 0, 0)
// Copy the returned data.
returndatacopy(0, 0, returndatasize())
switch result
// delegatecall returns 0 on error.
case 0 { revert(0, returndatasize()) }
default { return(0, returndatasize()) }
}
}
/**
* @dev This is a virtual function that should be overriden so it returns the address to which the fallback function
* and {_fallback} should delegate.
*/
function _implementation() internal view virtual returns (address);
/**
* @dev Delegates the current call to the address returned by `_implementation()`.
*
* This function does not return to its internall call site, it will return directly to the external caller.
*/
function _fallback() internal virtual {
_beforeFallback();
_delegate(_implementation());
}
/**
* @dev Fallback function that delegates calls to the address returned by `_implementation()`. Will run if no other
* function in the contract matches the call data.
*/
fallback () external payable virtual {
_fallback();
}
/**
* @dev Fallback function that delegates calls to the address returned by `_implementation()`. Will run if call data
* is empty.
*/
receive () external payable virtual {
_fallback();
}
/**
* @dev Hook that is called before falling back to the implementation. Can happen as part of a manual `_fallback`
* call, or as part of the Solidity `fallback` or `receive` functions.
*
* If overriden should call `super._beforeFallback()`.
*/
function _beforeFallback() internal virtual {
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.2;
import "../beacon/IBeacon.sol";
import "../../utils/Address.sol";
import "../../utils/StorageSlot.sol";
/**
* @dev This abstract contract provides getters and event emitting update functions for
* https://eips.ethereum.org/EIPS/eip-1967[EIP1967] slots.
*
* _Available since v4.1._
*
* @custom:oz-upgrades-unsafe-allow delegatecall
*/
abstract contract ERC1967Upgrade {
// This is the keccak-256 hash of "eip1967.proxy.rollback" subtracted by 1
bytes32 private constant _ROLLBACK_SLOT = 0x4910fdfa16fed3260ed0e7147f7cc6da11a60208b5b9406d12a635614ffd9143;
/**
* @dev Storage slot with the address of the current implementation.
* This is the keccak-256 hash of "eip1967.proxy.implementation" subtracted by 1, and is
* validated in the constructor.
*/
bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
/**
* @dev Emitted when the implementation is upgraded.
*/
event Upgraded(address indexed implementation);
/**
* @dev Returns the current implementation address.
*/
function _getImplementation() internal view returns (address) {
return StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value;
}
/**
* @dev Stores a new address in the EIP1967 implementation slot.
*/
function _setImplementation(address newImplementation) private {
require(Address.isContract(newImplementation), "ERC1967: new implementation is not a contract");
StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
}
/**
* @dev Perform implementation upgrade
*
* Emits an {Upgraded} event.
*/
function _upgradeTo(address newImplementation) internal {
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
}
/**
* @dev Perform implementation upgrade with additional setup call.
*
* Emits an {Upgraded} event.
*/
function _upgradeToAndCall(address newImplementation, bytes memory data, bool forceCall) internal {
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
if (data.length > 0 || forceCall) {
Address.functionDelegateCall(newImplementation, data);
}
}
/**
* @dev Perform implementation upgrade with security checks for UUPS proxies, and additional setup call.
*
* Emits an {Upgraded} event.
*/
function _upgradeToAndCallSecure(address newImplementation, bytes memory data, bool forceCall) internal {
address oldImplementation = _getImplementation();
// Initial upgrade and setup call
_setImplementation(newImplementation);
if (data.length > 0 || forceCall) {
Address.functionDelegateCall(newImplementation, data);
}
// Perform rollback test if not already in progress
StorageSlot.BooleanSlot storage rollbackTesting = StorageSlot.getBooleanSlot(_ROLLBACK_SLOT);
if (!rollbackTesting.value) {
// Trigger rollback using upgradeTo from the new implementation
rollbackTesting.value = true;
Address.functionDelegateCall(
newImplementation,
abi.encodeWithSignature(
"upgradeTo(address)",
oldImplementation
)
);
rollbackTesting.value = false;
// Check rollback was effective
require(oldImplementation == _getImplementation(), "ERC1967Upgrade: upgrade breaks further upgrades");
// Finally reset to the new implementation and log the upgrade
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
}
}
/**
* @dev Perform beacon upgrade with additional setup call. Note: This upgrades the address of the beacon, it does
* not upgrade the implementation contained in the beacon (see {UpgradeableBeacon-_setImplementation} for that).
*
* Emits a {BeaconUpgraded} event.
*/
function _upgradeBeaconToAndCall(address newBeacon, bytes memory data, bool forceCall) internal {
_setBeacon(newBeacon);
emit BeaconUpgraded(newBeacon);
if (data.length > 0 || forceCall) {
Address.functionDelegateCall(IBeacon(newBeacon).implementation(), data);
}
}
/**
* @dev Storage slot with the admin of the contract.
* This is the keccak-256 hash of "eip1967.proxy.admin" subtracted by 1, and is
* validated in the constructor.
*/
bytes32 internal constant _ADMIN_SLOT = 0xb53127684a568b3173ae13b9f8a6016e243e63b6e8ee1178d6a717850b5d6103;
/**
* @dev Emitted when the admin account has changed.
*/
event AdminChanged(address previousAdmin, address newAdmin);
/**
* @dev Returns the current admin.
*/
function _getAdmin() internal view returns (address) {
return StorageSlot.getAddressSlot(_ADMIN_SLOT).value;
}
/**
* @dev Stores a new address in the EIP1967 admin slot.
*/
function _setAdmin(address newAdmin) private {
require(newAdmin != address(0), "ERC1967: new admin is the zero address");
StorageSlot.getAddressSlot(_ADMIN_SLOT).value = newAdmin;
}
/**
* @dev Changes the admin of the proxy.
*
* Emits an {AdminChanged} event.
*/
function _changeAdmin(address newAdmin) internal {
emit AdminChanged(_getAdmin(), newAdmin);
_setAdmin(newAdmin);
}
/**
* @dev The storage slot of the UpgradeableBeacon contract which defines the implementation for this proxy.
* This is bytes32(uint256(keccak256('eip1967.proxy.beacon')) - 1)) and is validated in the constructor.
*/
bytes32 internal constant _BEACON_SLOT = 0xa3f0ad74e5423aebfd80d3ef4346578335a9a72aeaee59ff6cb3582b35133d50;
/**
* @dev Emitted when the beacon is upgraded.
*/
event BeaconUpgraded(address indexed beacon);
/**
* @dev Returns the current beacon.
*/
function _getBeacon() internal view returns (address) {
return StorageSlot.getAddressSlot(_BEACON_SLOT).value;
}
/**
* @dev Stores a new beacon in the EIP1967 beacon slot.
*/
function _setBeacon(address newBeacon) private {
require(
Address.isContract(newBeacon),
"ERC1967: new beacon is not a contract"
);
require(
Address.isContract(IBeacon(newBeacon).implementation()),
"ERC1967: beacon implementation is not a contract"
);
StorageSlot.getAddressSlot(_BEACON_SLOT).value = newBeacon;
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @dev This is the interface that {BeaconProxy} expects of its beacon.
*/
interface IBeacon {
/**
* @dev Must return an address that can be used as a delegate call target.
*
* {BeaconProxy} will check that this address is a contract.
*/
function implementation() external view returns (address);
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @dev Collection of functions related to the address type
*/
library Address {
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]
* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* - an externally-owned account
* - a contract in construction
* - an address where a contract will be created
* - an address where a contract lived, but was destroyed
* ====
*/
function isContract(address account) internal view returns (bool) {
// This method relies on extcodesize, which returns 0 for contracts in
// construction, since the code is only stored at the end of the
// constructor execution.
uint256 size;
// solhint-disable-next-line no-inline-assembly
assembly { size := extcodesize(account) }
return size > 0;
}
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://diligence.consensys.net/posts/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.5.11/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/
function sendValue(address payable recipient, uint256 amount) internal {
require(address(this).balance >= amount, "Address: insufficient balance");
// solhint-disable-next-line avoid-low-level-calls, avoid-call-value
(bool success, ) = recipient.call{ value: amount }("");
require(success, "Address: unable to send value, recipient may have reverted");
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain`call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCall(target, data, "Address: low-level call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data, string memory errorMessage) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/
function functionCallWithValue(address target, bytes memory data, uint256 value) internal returns (bytes memory) {
return functionCallWithValue(target, data, value, "Address: low-level call with value failed");
}
/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCallWithValue(address target, bytes memory data, uint256 value, string memory errorMessage) internal returns (bytes memory) {
require(address(this).balance >= value, "Address: insufficient balance for call");
require(isContract(target), "Address: call to non-contract");
// solhint-disable-next-line avoid-low-level-calls
(bool success, bytes memory returndata) = target.call{ value: value }(data);
return _verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
return functionStaticCall(target, data, "Address: low-level static call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data, string memory errorMessage) internal view returns (bytes memory) {
require(isContract(target), "Address: static call to non-contract");
// solhint-disable-next-line avoid-low-level-calls
(bool success, bytes memory returndata) = target.staticcall(data);
return _verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(address target, bytes memory data) internal returns (bytes memory) {
return functionDelegateCall(target, data, "Address: low-level delegate call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(address target, bytes memory data, string memory errorMessage) internal returns (bytes memory) {
require(isContract(target), "Address: delegate call to non-contract");
// solhint-disable-next-line avoid-low-level-calls
(bool success, bytes memory returndata) = target.delegatecall(data);
return _verifyCallResult(success, returndata, errorMessage);
}
function _verifyCallResult(bool success, bytes memory returndata, string memory errorMessage) private pure returns(bytes memory) {
if (success) {
return returndata;
} else {
// Look for revert reason and bubble it up if present
if (returndata.length > 0) {
// The easiest way to bubble the revert reason is using memory via assembly
// solhint-disable-next-line no-inline-assembly
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @dev Library for reading and writing primitive types to specific storage slots.
*
* Storage slots are often used to avoid storage conflict when dealing with upgradeable contracts.
* This library helps with reading and writing to such slots without the need for inline assembly.
*
* The functions in this library return Slot structs that contain a `value` member that can be used to read or write.
*
* Example usage to set ERC1967 implementation slot:
* ```
* contract ERC1967 {
* bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
*
* function _getImplementation() internal view returns (address) {
* return StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value;
* }
*
* function _setImplementation(address newImplementation) internal {
* require(Address.isContract(newImplementation), "ERC1967: new implementation is not a contract");
* StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
* }
* }
* ```
*
* _Available since v4.1 for `address`, `bool`, `bytes32`, and `uint256`._
*/
library StorageSlot {
struct AddressSlot {
address value;
}
struct BooleanSlot {
bool value;
}
struct Bytes32Slot {
bytes32 value;
}
struct Uint256Slot {
uint256 value;
}
/**
* @dev Returns an `AddressSlot` with member `value` located at `slot`.
*/
function getAddressSlot(bytes32 slot) internal pure returns (AddressSlot storage r) {
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `BooleanSlot` with member `value` located at `slot`.
*/
function getBooleanSlot(bytes32 slot) internal pure returns (BooleanSlot storage r) {
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Bytes32Slot` with member `value` located at `slot`.
*/
function getBytes32Slot(bytes32 slot) internal pure returns (Bytes32Slot storage r) {
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Uint256Slot` with member `value` located at `slot`.
*/
function getUint256Slot(bytes32 slot) internal pure returns (Uint256Slot storage r) {
assembly {
r.slot := slot
}
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "../utils/Context.sol";
/**
* @dev Contract module which provides a basic access control mechanism, where
* there is an account (an owner) that can be granted exclusive access to
* specific functions.
*
* By default, the owner account will be the one that deploys the contract. This
* can later be changed with {transferOwnership}.
*
* This module is used through inheritance. It will make available the modifier
* `onlyOwner`, which can be applied to your functions to restrict their use to
* the owner.
*/
abstract contract Ownable is Context {
address private _owner;
event OwnershipTransferred(address indexed previousOwner, address indexed newOwner);
/**
* @dev Initializes the contract setting the deployer as the initial owner.
*/
constructor () {
address msgSender = _msgSender();
_owner = msgSender;
emit OwnershipTransferred(address(0), msgSender);
}
/**
* @dev Returns the address of the current owner.
*/
function owner() public view virtual returns (address) {
return _owner;
}
/**
* @dev Throws if called by any account other than the owner.
*/
modifier onlyOwner() {
require(owner() == _msgSender(), "Ownable: caller is not the owner");
_;
}
/**
* @dev Leaves the contract without owner. It will not be possible to call
* `onlyOwner` functions anymore. Can only be called by the current owner.
*
* NOTE: Renouncing ownership will leave the contract without an owner,
* thereby removing any functionality that is only available to the owner.
*/
function renounceOwnership() public virtual onlyOwner {
emit OwnershipTransferred(_owner, address(0));
_owner = address(0);
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Can only be called by the current owner.
*/
function transferOwnership(address newOwner) public virtual onlyOwner {
require(newOwner != address(0), "Ownable: new owner is the zero address");
emit OwnershipTransferred(_owner, newOwner);
_owner = newOwner;
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/*
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/
abstract contract Context {
function _msgSender() internal view virtual returns (address) {
return msg.sender;
}
function _msgData() internal view virtual returns (bytes calldata) {
this; // silence state mutability warning without generating bytecode - see https://github.com/ethereum/solidity/issues/2691
return msg.data;
}
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "../ERC1967/ERC1967Upgrade.sol";
/**
* @dev Base contract for building openzeppelin-upgrades compatible implementations for the {ERC1967Proxy}. It includes
* publicly available upgrade functions that are called by the plugin and by the secure upgrade mechanism to verify
* continuation of the upgradability.
*
* The {_authorizeUpgrade} function MUST be overridden to include access restriction to the upgrade mechanism.
*
* _Available since v4.1._
*/
abstract contract UUPSUpgradeable is ERC1967Upgrade {
function upgradeTo(address newImplementation) external virtual {
_authorizeUpgrade(newImplementation);
_upgradeToAndCallSecure(newImplementation, bytes(""), false);
}
function upgradeToAndCall(address newImplementation, bytes memory data) external payable virtual {
_authorizeUpgrade(newImplementation);
_upgradeToAndCallSecure(newImplementation, data, true);
}
function _authorizeUpgrade(address newImplementation) internal virtual;
}
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.2;
import "@openzeppelin/contracts/proxy/utils/UUPSUpgradeable.sol";
abstract contract Proxiable is UUPSUpgradeable {
function _authorizeUpgrade(address newImplementation) internal override {
_beforeUpgrade(newImplementation);
}
function _beforeUpgrade(address newImplementation) internal virtual;
}
contract ChildOfProxiable is Proxiable {
function _beforeUpgrade(address newImplementation) internal virtual override {}
}
File 4 of 4: Core
// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.11;
import "../../lib/openzeppelin-contracts/contracts/utils/structs/EnumerableSet.sol";
import "./CorePermissions.sol";
import "./CoreStorage.sol";
import "./ICore.sol";
/// @notice Core maintains global parameters, instances of protocol
/// contracts, and access control across the Rift protocol
/// @author Recursive Research Inc
contract Core is ICore, CorePermissions, CoreStorage {
using EnumerableSet for EnumerableSet.AddressSet;
/// @dev gives us precision to basis point on fees
uint256 public constant override MAX_FEE = 10_000;
// ----------- Upgradeable Constructor Pattern -----------
/// initialize logic contract
/// This tag here tells OZ to not throw an error on this constructor
/// Recommended here:
/// https://docs.openzeppelin.com/upgrades-plugins/1.x/writing-upgradeable#initializing_the_implementation_contract
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() initializer {}
/// @notice Sets up the core with the initial access roles, and sets
/// the initial protocol fee and feeTo
/// @param _protocolFee initial protocol fee (out of `MAX_FEE`)
/// @param _feeTo the fee destination address
/// @param _wrappedNative the address of the wrapped native token of the chain
/// @param governor intitial governor
/// @param guardian initial guardian
/// @param pauser initial pauser
/// @param strategist initial strategist
function initialize(
uint256 _protocolFee,
address _feeTo,
address _wrappedNative,
address governor,
address guardian,
address pauser,
address strategist
) public virtual initializer {
__Core_init(_protocolFee, _feeTo, _wrappedNative, governor, guardian, pauser, strategist);
}
function __Core_init(
uint256 _protocolFee,
address _feeTo,
address _wrappedNative,
address governor,
address guardian,
address pauser,
address strategist
) internal onlyInitializing {
__CorePermissions_init(governor, guardian, pauser, strategist);
__Core_init_unchained(_protocolFee, _feeTo, _wrappedNative);
}
function __Core_init_unchained(
uint256 _protocolFee,
address _feeTo,
address _wrappedNative
) internal onlyInitializing {
require(_protocolFee <= MAX_FEE, "INVALID_PROTOCOL_FEE");
protocolFee = _protocolFee;
feeTo = _feeTo;
wrappedNative = _wrappedNative;
}
// ----------- Main Core Utility --------------
/// @notice Emits VaultRegistered event so list of live vaults is queryable off-chain
/// @param vaults list of addresses of the new vault contracts
/// @dev trust that the governor is benevolent and doesn't spam events
function registerVaults(address[] memory vaults) external override onlyRole(GOVERN_ROLE) whenNotPaused {
for (uint256 i = 0; i < vaults.length; i++) {
emit VaultRegistered(vaults[i]);
}
}
/// @notice Emits VaultRemoved so list of deprecated vaults is queryable off-chain
/// @param vaults list of addresses of the vaults to be removed
function removeVaults(address[] memory vaults) external override onlyRole(GOVERN_ROLE) whenNotPaused {
for (uint256 i = 0; i < vaults.length; i++) {
emit VaultRemoved(vaults[i]);
}
}
/// @notice Sets the new protocol fee
/// @param _protocolFee new protocol fee (out of `MAX_FEE`)
function setProtocolFee(uint256 _protocolFee) external override onlyRole(GOVERN_ROLE) whenNotPaused {
require(_protocolFee <= MAX_FEE, "INVALID_PROTOCOL_FEE");
protocolFee = _protocolFee;
emit ProtocolFeeUpdated(_protocolFee);
}
/// @notice Sets the new fee destination
/// @param _feeTo new fee destination
function setFeeTo(address _feeTo) external override onlyRole(GOVERN_ROLE) whenNotPaused {
require(_feeTo != address(0), "ZERO_ADDRESS");
feeTo = _feeTo;
emit FeeToUpdated(_feeTo);
}
// ----------- Protocol Pausing -----------
modifier whenNotPaused() {
require(!paused, "PAUSED");
_;
}
modifier whenPaused() {
require(paused, "NOT_PAUSED");
_;
}
/// @notice Pauses the Rift protocol, including all RiftInstance contracts
/// that point to this instance of the Core
function pause() external override onlyRole(PAUSE_ROLE) whenNotPaused {
paused = true;
emit Paused();
}
/// @notice Unpauses the Rift protocol, including all RiftInstance contracts
/// that point to this instance of the Core
function unpause() external override onlyRole(PAUSE_ROLE) whenPaused {
paused = false;
emit Unpaused();
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.6.0) (utils/structs/EnumerableSet.sol)
pragma solidity ^0.8.0;
/**
* @dev Library for managing
* https://en.wikipedia.org/wiki/Set_(abstract_data_type)[sets] of primitive
* types.
*
* Sets have the following properties:
*
* - Elements are added, removed, and checked for existence in constant time
* (O(1)).
* - Elements are enumerated in O(n). No guarantees are made on the ordering.
*
* ```
* contract Example {
* // Add the library methods
* using EnumerableSet for EnumerableSet.AddressSet;
*
* // Declare a set state variable
* EnumerableSet.AddressSet private mySet;
* }
* ```
*
* As of v3.3.0, sets of type `bytes32` (`Bytes32Set`), `address` (`AddressSet`)
* and `uint256` (`UintSet`) are supported.
*/
library EnumerableSet {
// To implement this library for multiple types with as little code
// repetition as possible, we write it in terms of a generic Set type with
// bytes32 values.
// The Set implementation uses private functions, and user-facing
// implementations (such as AddressSet) are just wrappers around the
// underlying Set.
// This means that we can only create new EnumerableSets for types that fit
// in bytes32.
struct Set {
// Storage of set values
bytes32[] _values;
// Position of the value in the `values` array, plus 1 because index 0
// means a value is not in the set.
mapping(bytes32 => uint256) _indexes;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/
function _add(Set storage set, bytes32 value) private returns (bool) {
if (!_contains(set, value)) {
set._values.push(value);
// The value is stored at length-1, but we add 1 to all indexes
// and use 0 as a sentinel value
set._indexes[value] = set._values.length;
return true;
} else {
return false;
}
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/
function _remove(Set storage set, bytes32 value) private returns (bool) {
// We read and store the value's index to prevent multiple reads from the same storage slot
uint256 valueIndex = set._indexes[value];
if (valueIndex != 0) {
// Equivalent to contains(set, value)
// To delete an element from the _values array in O(1), we swap the element to delete with the last one in
// the array, and then remove the last element (sometimes called as 'swap and pop').
// This modifies the order of the array, as noted in {at}.
uint256 toDeleteIndex = valueIndex - 1;
uint256 lastIndex = set._values.length - 1;
if (lastIndex != toDeleteIndex) {
bytes32 lastValue = set._values[lastIndex];
// Move the last value to the index where the value to delete is
set._values[toDeleteIndex] = lastValue;
// Update the index for the moved value
set._indexes[lastValue] = valueIndex; // Replace lastValue's index to valueIndex
}
// Delete the slot where the moved value was stored
set._values.pop();
// Delete the index for the deleted slot
delete set._indexes[value];
return true;
} else {
return false;
}
}
/**
* @dev Returns true if the value is in the set. O(1).
*/
function _contains(Set storage set, bytes32 value) private view returns (bool) {
return set._indexes[value] != 0;
}
/**
* @dev Returns the number of values on the set. O(1).
*/
function _length(Set storage set) private view returns (uint256) {
return set._values.length;
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/
function _at(Set storage set, uint256 index) private view returns (bytes32) {
return set._values[index];
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/
function _values(Set storage set) private view returns (bytes32[] memory) {
return set._values;
}
// Bytes32Set
struct Bytes32Set {
Set _inner;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/
function add(Bytes32Set storage set, bytes32 value) internal returns (bool) {
return _add(set._inner, value);
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/
function remove(Bytes32Set storage set, bytes32 value) internal returns (bool) {
return _remove(set._inner, value);
}
/**
* @dev Returns true if the value is in the set. O(1).
*/
function contains(Bytes32Set storage set, bytes32 value) internal view returns (bool) {
return _contains(set._inner, value);
}
/**
* @dev Returns the number of values in the set. O(1).
*/
function length(Bytes32Set storage set) internal view returns (uint256) {
return _length(set._inner);
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/
function at(Bytes32Set storage set, uint256 index) internal view returns (bytes32) {
return _at(set._inner, index);
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/
function values(Bytes32Set storage set) internal view returns (bytes32[] memory) {
return _values(set._inner);
}
// AddressSet
struct AddressSet {
Set _inner;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/
function add(AddressSet storage set, address value) internal returns (bool) {
return _add(set._inner, bytes32(uint256(uint160(value))));
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/
function remove(AddressSet storage set, address value) internal returns (bool) {
return _remove(set._inner, bytes32(uint256(uint160(value))));
}
/**
* @dev Returns true if the value is in the set. O(1).
*/
function contains(AddressSet storage set, address value) internal view returns (bool) {
return _contains(set._inner, bytes32(uint256(uint160(value))));
}
/**
* @dev Returns the number of values in the set. O(1).
*/
function length(AddressSet storage set) internal view returns (uint256) {
return _length(set._inner);
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/
function at(AddressSet storage set, uint256 index) internal view returns (address) {
return address(uint160(uint256(_at(set._inner, index))));
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/
function values(AddressSet storage set) internal view returns (address[] memory) {
bytes32[] memory store = _values(set._inner);
address[] memory result;
assembly {
result := store
}
return result;
}
// UintSet
struct UintSet {
Set _inner;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/
function add(UintSet storage set, uint256 value) internal returns (bool) {
return _add(set._inner, bytes32(value));
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/
function remove(UintSet storage set, uint256 value) internal returns (bool) {
return _remove(set._inner, bytes32(value));
}
/**
* @dev Returns true if the value is in the set. O(1).
*/
function contains(UintSet storage set, uint256 value) internal view returns (bool) {
return _contains(set._inner, bytes32(value));
}
/**
* @dev Returns the number of values on the set. O(1).
*/
function length(UintSet storage set) internal view returns (uint256) {
return _length(set._inner);
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/
function at(UintSet storage set, uint256 index) internal view returns (uint256) {
return uint256(_at(set._inner, index));
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/
function values(UintSet storage set) internal view returns (uint256[] memory) {
bytes32[] memory store = _values(set._inner);
uint256[] memory result;
assembly {
result := store
}
return result;
}
}
// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.11;
import "../../lib/openzeppelin-contracts-upgradeable/contracts/access/AccessControlUpgradeable.sol";
import "./ICorePermissions.sol";
/// @title Access control module for Core
/// @author Recursive Research Inc
abstract contract CorePermissions is ICorePermissions, AccessControlUpgradeable {
bytes32 public constant override GOVERN_ROLE = keccak256("GOVERN_ROLE");
bytes32 public constant override GUARDIAN_ROLE = keccak256("GUARDIAN_ROLE");
bytes32 public constant override PAUSE_ROLE = keccak256("PAUSE_ROLE");
bytes32 public constant override STRATEGIST_ROLE = keccak256("STRATEGIST_ROLE");
bytes32 public constant override WHITELISTED_ROLE = keccak256("WHITELISTED_ROLE");
bool public override whitelistDisabled;
/// @dev Initializer. Grants the initial access roles and
/// @param governor intitial governor
/// @param guardian initial guardian
/// @param pauser initial pauser
/// @param strategist initial strategist
function __CorePermissions_init(
address governor,
address guardian,
address pauser,
address strategist
) internal onlyInitializing {
__AccessControl_init();
__CorePermissions_init_unchained(governor, guardian, pauser, strategist);
}
function __CorePermissions_init_unchained(
address governor,
address guardian,
address pauser,
address strategist
) internal onlyInitializing {
_setRoleAdmin(GOVERN_ROLE, GOVERN_ROLE);
_setRoleAdmin(GUARDIAN_ROLE, GOVERN_ROLE);
_setRoleAdmin(PAUSE_ROLE, GOVERN_ROLE);
_setRoleAdmin(STRATEGIST_ROLE, GOVERN_ROLE);
_setRoleAdmin(WHITELISTED_ROLE, GOVERN_ROLE);
_grantRole(GOVERN_ROLE, governor);
_grantRole(GUARDIAN_ROLE, guardian);
_grantRole(PAUSE_ROLE, pauser);
_grantRole(STRATEGIST_ROLE, strategist);
}
/// @notice creates a new role to be maintained
/// @param role the new role id
/// @param adminRole the admin role id for `role`
/// @dev can also be used to update admin of existing role
function createRole(bytes32 role, bytes32 adminRole) external override onlyRole(GOVERN_ROLE) {
_setRoleAdmin(role, adminRole);
}
/// @notice Batch updates the whitelist
/// @param addresses list of addresses to whitelist
function whitelistAll(address[] memory addresses) external override onlyRole(GOVERN_ROLE) {
for (uint256 i = 0; i < addresses.length; i++) {
_grantRole(WHITELISTED_ROLE, addresses[i]);
}
}
function revokeRole(bytes32 role, address account)
public
override(IAccessControlUpgradeable, AccessControlUpgradeable)
onlyRole(getRoleAdmin(role))
{
// this ensures that there is at least one GOVERN_ROLE role (last governor cannot self-revoke)
require(msg.sender != account, "NO_SELFREVOKE");
_revokeRole(role, account);
}
function isWhitelisted(address _address) public view override returns (bool) {
return whitelistDisabled || hasRole(WHITELISTED_ROLE, _address);
}
function disableWhitelist() external override onlyRole(GOVERN_ROLE) {
if (!whitelistDisabled) {
whitelistDisabled = true;
emit WhitelistDisabled();
}
}
function enableWhitelist() external override onlyRole(GOVERN_ROLE) {
if (whitelistDisabled) {
whitelistDisabled = false;
emit WhitelistEnabled();
}
}
}
// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.11;
import "../../lib/openzeppelin-contracts/contracts/utils/structs/EnumerableSet.sol";
import "./ICore.sol";
/// @notice Storage for Core
/// @author Recursive Research Inc
abstract contract CoreStorage is ICore {
bool public override paused;
/// @notice The initial fee to be taken from the use of the Rift protocol out of core.MAX_FEE()
uint256 public override protocolFee;
/// @notice The destination address for that fee
address public override feeTo;
/// @notice The address of the globally accepted wrapped native contract for the chain
address public override wrappedNative;
}
// SPDX-License-Identifier: GPL-3.0-or-later
pragma solidity 0.8.11;
import "./ICorePermissions.sol";
/// @notice Interface for Core
/// @author Recursive Research Inc
interface ICore is ICorePermissions {
// ----------- Events ---------------------
/// @dev Emitted when the protocol fee (`protocolFee`) is changed
/// out of core.MAX_FEE()
event ProtocolFeeUpdated(uint256 protocolFee);
/// @dev Emitted when the protocol fee destination (`feeTo`) is changed
event FeeToUpdated(address indexed feeTo);
/// @dev Emitted when the pause is triggered
event Paused();
/// @dev Emitted when the pause is lifted
event Unpaused();
// @dev Emitted when a vault with address `vault`
event VaultRegistered(address indexed vault);
// @dev Emitted when a vault with address `vault`
event VaultRemoved(address indexed vault);
// ----------- Default Getters --------------
/// @dev constant set to 10_000
function MAX_FEE() external view returns (uint256);
function feeTo() external view returns (address);
/// @dev protocol fee out of core.MAX_FEE()
function protocolFee() external view returns (uint256);
function wrappedNative() external view returns (address);
// ----------- Main Core Utility --------------
function registerVaults(address[] memory vaults) external;
function removeVaults(address[] memory vaults) external;
/// @dev set core.protocolFee, out of core.MAX_FEE()
function setProtocolFee(uint256 _protocolFee) external;
function setFeeTo(address _feeTo) external;
// ----------- Protocol Pausing -----------
function pause() external;
function unpause() external;
function paused() external view returns (bool);
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.6.0) (access/AccessControl.sol)
pragma solidity ^0.8.0;
import "./IAccessControlUpgradeable.sol";
import "../utils/ContextUpgradeable.sol";
import "../utils/StringsUpgradeable.sol";
import "../utils/introspection/ERC165Upgradeable.sol";
import "../proxy/utils/Initializable.sol";
/**
* @dev Contract module that allows children to implement role-based access
* control mechanisms. This is a lightweight version that doesn't allow enumerating role
* members except through off-chain means by accessing the contract event logs. Some
* applications may benefit from on-chain enumerability, for those cases see
* {AccessControlEnumerable}.
*
* Roles are referred to by their `bytes32` identifier. These should be exposed
* in the external API and be unique. The best way to achieve this is by
* using `public constant` hash digests:
*
* ```
* bytes32 public constant MY_ROLE = keccak256("MY_ROLE");
* ```
*
* Roles can be used to represent a set of permissions. To restrict access to a
* function call, use {hasRole}:
*
* ```
* function foo() public {
* require(hasRole(MY_ROLE, msg.sender));
* ...
* }
* ```
*
* Roles can be granted and revoked dynamically via the {grantRole} and
* {revokeRole} functions. Each role has an associated admin role, and only
* accounts that have a role's admin role can call {grantRole} and {revokeRole}.
*
* By default, the admin role for all roles is `DEFAULT_ADMIN_ROLE`, which means
* that only accounts with this role will be able to grant or revoke other
* roles. More complex role relationships can be created by using
* {_setRoleAdmin}.
*
* WARNING: The `DEFAULT_ADMIN_ROLE` is also its own admin: it has permission to
* grant and revoke this role. Extra precautions should be taken to secure
* accounts that have been granted it.
*/
abstract contract AccessControlUpgradeable is Initializable, ContextUpgradeable, IAccessControlUpgradeable, ERC165Upgradeable {
function __AccessControl_init() internal onlyInitializing {
}
function __AccessControl_init_unchained() internal onlyInitializing {
}
struct RoleData {
mapping(address => bool) members;
bytes32 adminRole;
}
mapping(bytes32 => RoleData) private _roles;
bytes32 public constant DEFAULT_ADMIN_ROLE = 0x00;
/**
* @dev Modifier that checks that an account has a specific role. Reverts
* with a standardized message including the required role.
*
* The format of the revert reason is given by the following regular expression:
*
* /^AccessControl: account (0x[0-9a-f]{40}) is missing role (0x[0-9a-f]{64})$/
*
* _Available since v4.1._
*/
modifier onlyRole(bytes32 role) {
_checkRole(role);
_;
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return interfaceId == type(IAccessControlUpgradeable).interfaceId || super.supportsInterface(interfaceId);
}
/**
* @dev Returns `true` if `account` has been granted `role`.
*/
function hasRole(bytes32 role, address account) public view virtual override returns (bool) {
return _roles[role].members[account];
}
/**
* @dev Revert with a standard message if `_msgSender()` is missing `role`.
* Overriding this function changes the behavior of the {onlyRole} modifier.
*
* Format of the revert message is described in {_checkRole}.
*
* _Available since v4.6._
*/
function _checkRole(bytes32 role) internal view virtual {
_checkRole(role, _msgSender());
}
/**
* @dev Revert with a standard message if `account` is missing `role`.
*
* The format of the revert reason is given by the following regular expression:
*
* /^AccessControl: account (0x[0-9a-f]{40}) is missing role (0x[0-9a-f]{64})$/
*/
function _checkRole(bytes32 role, address account) internal view virtual {
if (!hasRole(role, account)) {
revert(
string(
abi.encodePacked(
"AccessControl: account ",
StringsUpgradeable.toHexString(uint160(account), 20),
" is missing role ",
StringsUpgradeable.toHexString(uint256(role), 32)
)
)
);
}
}
/**
* @dev Returns the admin role that controls `role`. See {grantRole} and
* {revokeRole}.
*
* To change a role's admin, use {_setRoleAdmin}.
*/
function getRoleAdmin(bytes32 role) public view virtual override returns (bytes32) {
return _roles[role].adminRole;
}
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function grantRole(bytes32 role, address account) public virtual override onlyRole(getRoleAdmin(role)) {
_grantRole(role, account);
}
/**
* @dev Revokes `role` from `account`.
*
* If `account` had been granted `role`, emits a {RoleRevoked} event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function revokeRole(bytes32 role, address account) public virtual override onlyRole(getRoleAdmin(role)) {
_revokeRole(role, account);
}
/**
* @dev Revokes `role` from the calling account.
*
* Roles are often managed via {grantRole} and {revokeRole}: this function's
* purpose is to provide a mechanism for accounts to lose their privileges
* if they are compromised (such as when a trusted device is misplaced).
*
* If the calling account had been revoked `role`, emits a {RoleRevoked}
* event.
*
* Requirements:
*
* - the caller must be `account`.
*/
function renounceRole(bytes32 role, address account) public virtual override {
require(account == _msgSender(), "AccessControl: can only renounce roles for self");
_revokeRole(role, account);
}
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event. Note that unlike {grantRole}, this function doesn't perform any
* checks on the calling account.
*
* [WARNING]
* ====
* This function should only be called from the constructor when setting
* up the initial roles for the system.
*
* Using this function in any other way is effectively circumventing the admin
* system imposed by {AccessControl}.
* ====
*
* NOTE: This function is deprecated in favor of {_grantRole}.
*/
function _setupRole(bytes32 role, address account) internal virtual {
_grantRole(role, account);
}
/**
* @dev Sets `adminRole` as ``role``'s admin role.
*
* Emits a {RoleAdminChanged} event.
*/
function _setRoleAdmin(bytes32 role, bytes32 adminRole) internal virtual {
bytes32 previousAdminRole = getRoleAdmin(role);
_roles[role].adminRole = adminRole;
emit RoleAdminChanged(role, previousAdminRole, adminRole);
}
/**
* @dev Grants `role` to `account`.
*
* Internal function without access restriction.
*/
function _grantRole(bytes32 role, address account) internal virtual {
if (!hasRole(role, account)) {
_roles[role].members[account] = true;
emit RoleGranted(role, account, _msgSender());
}
}
/**
* @dev Revokes `role` from `account`.
*
* Internal function without access restriction.
*/
function _revokeRole(bytes32 role, address account) internal virtual {
if (hasRole(role, account)) {
_roles[role].members[account] = false;
emit RoleRevoked(role, account, _msgSender());
}
}
/**
* @dev This empty reserved space is put in place to allow future versions to add new
* variables without shifting down storage in the inheritance chain.
* See https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps
*/
uint256[49] private __gap;
}
// SPDX-License-Identifier: GPL-3.0-or-later
pragma solidity 0.8.11;
import "../../lib/openzeppelin-contracts-upgradeable/contracts/access/IAccessControlUpgradeable.sol";
/// @title Interface for CorePermissions
/// @author Recursive Research Inc
interface ICorePermissions is IAccessControlUpgradeable {
// ----------- Events ---------------------
/// @dev Emitted when the whitelist is disabled by `admin`.
event WhitelistDisabled();
/// @dev Emitted when the whitelist is disabled by `admin`.
event WhitelistEnabled();
// ----------- Governor only state changing api -----------
function createRole(bytes32 role, bytes32 adminRole) external;
function whitelistAll(address[] memory addresses) external;
// ----------- GRANTING ROLES -----------
function disableWhitelist() external;
function enableWhitelist() external;
// ----------- Getters -----------
function GUARDIAN_ROLE() external view returns (bytes32);
function GOVERN_ROLE() external view returns (bytes32);
function PAUSE_ROLE() external view returns (bytes32);
function STRATEGIST_ROLE() external view returns (bytes32);
function WHITELISTED_ROLE() external view returns (bytes32);
function whitelistDisabled() external view returns (bool);
// ----------- Read Interface -----------
function isWhitelisted(address _address) external view returns (bool);
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (access/IAccessControl.sol)
pragma solidity ^0.8.0;
/**
* @dev External interface of AccessControl declared to support ERC165 detection.
*/
interface IAccessControlUpgradeable {
/**
* @dev Emitted when `newAdminRole` is set as ``role``'s admin role, replacing `previousAdminRole`
*
* `DEFAULT_ADMIN_ROLE` is the starting admin for all roles, despite
* {RoleAdminChanged} not being emitted signaling this.
*
* _Available since v3.1._
*/
event RoleAdminChanged(bytes32 indexed role, bytes32 indexed previousAdminRole, bytes32 indexed newAdminRole);
/**
* @dev Emitted when `account` is granted `role`.
*
* `sender` is the account that originated the contract call, an admin role
* bearer except when using {AccessControl-_setupRole}.
*/
event RoleGranted(bytes32 indexed role, address indexed account, address indexed sender);
/**
* @dev Emitted when `account` is revoked `role`.
*
* `sender` is the account that originated the contract call:
* - if using `revokeRole`, it is the admin role bearer
* - if using `renounceRole`, it is the role bearer (i.e. `account`)
*/
event RoleRevoked(bytes32 indexed role, address indexed account, address indexed sender);
/**
* @dev Returns `true` if `account` has been granted `role`.
*/
function hasRole(bytes32 role, address account) external view returns (bool);
/**
* @dev Returns the admin role that controls `role`. See {grantRole} and
* {revokeRole}.
*
* To change a role's admin, use {AccessControl-_setRoleAdmin}.
*/
function getRoleAdmin(bytes32 role) external view returns (bytes32);
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function grantRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from `account`.
*
* If `account` had been granted `role`, emits a {RoleRevoked} event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function revokeRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from the calling account.
*
* Roles are often managed via {grantRole} and {revokeRole}: this function's
* purpose is to provide a mechanism for accounts to lose their privileges
* if they are compromised (such as when a trusted device is misplaced).
*
* If the calling account had been granted `role`, emits a {RoleRevoked}
* event.
*
* Requirements:
*
* - the caller must be `account`.
*/
function renounceRole(bytes32 role, address account) external;
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/Context.sol)
pragma solidity ^0.8.0;
import "../proxy/utils/Initializable.sol";
/**
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/
abstract contract ContextUpgradeable is Initializable {
function __Context_init() internal onlyInitializing {
}
function __Context_init_unchained() internal onlyInitializing {
}
function _msgSender() internal view virtual returns (address) {
return msg.sender;
}
function _msgData() internal view virtual returns (bytes calldata) {
return msg.data;
}
/**
* @dev This empty reserved space is put in place to allow future versions to add new
* variables without shifting down storage in the inheritance chain.
* See https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps
*/
uint256[50] private __gap;
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/Strings.sol)
pragma solidity ^0.8.0;
/**
* @dev String operations.
*/
library StringsUpgradeable {
bytes16 private constant _HEX_SYMBOLS = "0123456789abcdef";
/**
* @dev Converts a `uint256` to its ASCII `string` decimal representation.
*/
function toString(uint256 value) internal pure returns (string memory) {
// Inspired by OraclizeAPI's implementation - MIT licence
// https://github.com/oraclize/ethereum-api/blob/b42146b063c7d6ee1358846c198246239e9360e8/oraclizeAPI_0.4.25.sol
if (value == 0) {
return "0";
}
uint256 temp = value;
uint256 digits;
while (temp != 0) {
digits++;
temp /= 10;
}
bytes memory buffer = new bytes(digits);
while (value != 0) {
digits -= 1;
buffer[digits] = bytes1(uint8(48 + uint256(value % 10)));
value /= 10;
}
return string(buffer);
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation.
*/
function toHexString(uint256 value) internal pure returns (string memory) {
if (value == 0) {
return "0x00";
}
uint256 temp = value;
uint256 length = 0;
while (temp != 0) {
length++;
temp >>= 8;
}
return toHexString(value, length);
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation with fixed length.
*/
function toHexString(uint256 value, uint256 length) internal pure returns (string memory) {
bytes memory buffer = new bytes(2 * length + 2);
buffer[0] = "0";
buffer[1] = "x";
for (uint256 i = 2 * length + 1; i > 1; --i) {
buffer[i] = _HEX_SYMBOLS[value & 0xf];
value >>= 4;
}
require(value == 0, "Strings: hex length insufficient");
return string(buffer);
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/introspection/ERC165.sol)
pragma solidity ^0.8.0;
import "./IERC165Upgradeable.sol";
import "../../proxy/utils/Initializable.sol";
/**
* @dev Implementation of the {IERC165} interface.
*
* Contracts that want to implement ERC165 should inherit from this contract and override {supportsInterface} to check
* for the additional interface id that will be supported. For example:
*
* ```solidity
* function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
* return interfaceId == type(MyInterface).interfaceId || super.supportsInterface(interfaceId);
* }
* ```
*
* Alternatively, {ERC165Storage} provides an easier to use but more expensive implementation.
*/
abstract contract ERC165Upgradeable is Initializable, IERC165Upgradeable {
function __ERC165_init() internal onlyInitializing {
}
function __ERC165_init_unchained() internal onlyInitializing {
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return interfaceId == type(IERC165Upgradeable).interfaceId;
}
/**
* @dev This empty reserved space is put in place to allow future versions to add new
* variables without shifting down storage in the inheritance chain.
* See https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps
*/
uint256[50] private __gap;
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.6.0) (proxy/utils/Initializable.sol)
pragma solidity ^0.8.2;
import "../../utils/AddressUpgradeable.sol";
/**
* @dev This is a base contract to aid in writing upgradeable contracts, or any kind of contract that will be deployed
* behind a proxy. Since proxied contracts do not make use of a constructor, it's common to move constructor logic to an
* external initializer function, usually called `initialize`. It then becomes necessary to protect this initializer
* function so it can only be called once. The {initializer} modifier provided by this contract will have this effect.
*
* The initialization functions use a version number. Once a version number is used, it is consumed and cannot be
* reused. This mechanism prevents re-execution of each "step" but allows the creation of new initialization steps in
* case an upgrade adds a module that needs to be initialized.
*
* For example:
*
* [.hljs-theme-light.nopadding]
* ```
* contract MyToken is ERC20Upgradeable {
* function initialize() initializer public {
* __ERC20_init("MyToken", "MTK");
* }
* }
* contract MyTokenV2 is MyToken, ERC20PermitUpgradeable {
* function initializeV2() reinitializer(2) public {
* __ERC20Permit_init("MyToken");
* }
* }
* ```
*
* TIP: To avoid leaving the proxy in an uninitialized state, the initializer function should be called as early as
* possible by providing the encoded function call as the `_data` argument to {ERC1967Proxy-constructor}.
*
* CAUTION: When used with inheritance, manual care must be taken to not invoke a parent initializer twice, or to ensure
* that all initializers are idempotent. This is not verified automatically as constructors are by Solidity.
*
* [CAUTION]
* ====
* Avoid leaving a contract uninitialized.
*
* An uninitialized contract can be taken over by an attacker. This applies to both a proxy and its implementation
* contract, which may impact the proxy. To prevent the implementation contract from being used, you should invoke
* the {_disableInitializers} function in the constructor to automatically lock it when it is deployed:
*
* [.hljs-theme-light.nopadding]
* ```
* /// @custom:oz-upgrades-unsafe-allow constructor
* constructor() {
* _disableInitializers();
* }
* ```
* ====
*/
abstract contract Initializable {
/**
* @dev Indicates that the contract has been initialized.
* @custom:oz-retyped-from bool
*/
uint8 private _initialized;
/**
* @dev Indicates that the contract is in the process of being initialized.
*/
bool private _initializing;
/**
* @dev Triggered when the contract has been initialized or reinitialized.
*/
event Initialized(uint8 version);
/**
* @dev A modifier that defines a protected initializer function that can be invoked at most once. In its scope,
* `onlyInitializing` functions can be used to initialize parent contracts. Equivalent to `reinitializer(1)`.
*/
modifier initializer() {
bool isTopLevelCall = _setInitializedVersion(1);
if (isTopLevelCall) {
_initializing = true;
}
_;
if (isTopLevelCall) {
_initializing = false;
emit Initialized(1);
}
}
/**
* @dev A modifier that defines a protected reinitializer function that can be invoked at most once, and only if the
* contract hasn't been initialized to a greater version before. In its scope, `onlyInitializing` functions can be
* used to initialize parent contracts.
*
* `initializer` is equivalent to `reinitializer(1)`, so a reinitializer may be used after the original
* initialization step. This is essential to configure modules that are added through upgrades and that require
* initialization.
*
* Note that versions can jump in increments greater than 1; this implies that if multiple reinitializers coexist in
* a contract, executing them in the right order is up to the developer or operator.
*/
modifier reinitializer(uint8 version) {
bool isTopLevelCall = _setInitializedVersion(version);
if (isTopLevelCall) {
_initializing = true;
}
_;
if (isTopLevelCall) {
_initializing = false;
emit Initialized(version);
}
}
/**
* @dev Modifier to protect an initialization function so that it can only be invoked by functions with the
* {initializer} and {reinitializer} modifiers, directly or indirectly.
*/
modifier onlyInitializing() {
require(_initializing, "Initializable: contract is not initializing");
_;
}
/**
* @dev Locks the contract, preventing any future reinitialization. This cannot be part of an initializer call.
* Calling this in the constructor of a contract will prevent that contract from being initialized or reinitialized
* to any version. It is recommended to use this to lock implementation contracts that are designed to be called
* through proxies.
*/
function _disableInitializers() internal virtual {
_setInitializedVersion(type(uint8).max);
}
function _setInitializedVersion(uint8 version) private returns (bool) {
// If the contract is initializing we ignore whether _initialized is set in order to support multiple
// inheritance patterns, but we only do this in the context of a constructor, and for the lowest level
// of initializers, because in other contexts the contract may have been reentered.
if (_initializing) {
require(
version == 1 && !AddressUpgradeable.isContract(address(this)),
"Initializable: contract is already initialized"
);
return false;
} else {
require(_initialized < version, "Initializable: contract is already initialized");
_initialized = version;
return true;
}
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.5.0) (utils/Address.sol)
pragma solidity ^0.8.1;
/**
* @dev Collection of functions related to the address type
*/
library AddressUpgradeable {
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]
* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* - an externally-owned account
* - a contract in construction
* - an address where a contract will be created
* - an address where a contract lived, but was destroyed
* ====
*
* [IMPORTANT]
* ====
* You shouldn't rely on `isContract` to protect against flash loan attacks!
*
* Preventing calls from contracts is highly discouraged. It breaks composability, breaks support for smart wallets
* like Gnosis Safe, and does not provide security since it can be circumvented by calling from a contract
* constructor.
* ====
*/
function isContract(address account) internal view returns (bool) {
// This method relies on extcodesize/address.code.length, which returns 0
// for contracts in construction, since the code is only stored at the end
// of the constructor execution.
return account.code.length > 0;
}
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://diligence.consensys.net/posts/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.5.11/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/
function sendValue(address payable recipient, uint256 amount) internal {
require(address(this).balance >= amount, "Address: insufficient balance");
(bool success, ) = recipient.call{value: amount}("");
require(success, "Address: unable to send value, recipient may have reverted");
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain `call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCall(target, data, "Address: low-level call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCall(
address target,
bytes memory data,
string memory errorMessage
) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/
function functionCallWithValue(
address target,
bytes memory data,
uint256 value
) internal returns (bytes memory) {
return functionCallWithValue(target, data, value, "Address: low-level call with value failed");
}
/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCallWithValue(
address target,
bytes memory data,
uint256 value,
string memory errorMessage
) internal returns (bytes memory) {
require(address(this).balance >= value, "Address: insufficient balance for call");
require(isContract(target), "Address: call to non-contract");
(bool success, bytes memory returndata) = target.call{value: value}(data);
return verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
return functionStaticCall(target, data, "Address: low-level static call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(
address target,
bytes memory data,
string memory errorMessage
) internal view returns (bytes memory) {
require(isContract(target), "Address: static call to non-contract");
(bool success, bytes memory returndata) = target.staticcall(data);
return verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Tool to verifies that a low level call was successful, and revert if it wasn't, either by bubbling the
* revert reason using the provided one.
*
* _Available since v4.3._
*/
function verifyCallResult(
bool success,
bytes memory returndata,
string memory errorMessage
) internal pure returns (bytes memory) {
if (success) {
return returndata;
} else {
// Look for revert reason and bubble it up if present
if (returndata.length > 0) {
// The easiest way to bubble the revert reason is using memory via assembly
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/introspection/IERC165.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC165 standard, as defined in the
* https://eips.ethereum.org/EIPS/eip-165[EIP].
*
* Implementers can declare support of contract interfaces, which can then be
* queried by others ({ERC165Checker}).
*
* For an implementation, see {ERC165}.
*/
interface IERC165Upgradeable {
/**
* @dev Returns true if this contract implements the interface defined by
* `interfaceId`. See the corresponding
* https://eips.ethereum.org/EIPS/eip-165#how-interfaces-are-identified[EIP section]
* to learn more about how these ids are created.
*
* This function call must use less than 30 000 gas.
*/
function supportsInterface(bytes4 interfaceId) external view returns (bool);
}