// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/Address.sol)pragmasolidity ^0.8.20;/**
* @dev Collection of functions related to the address type
*/libraryAddress{
/**
* @dev The ETH balance of the account is not enough to perform the operation.
*/errorAddressInsufficientBalance(address account);
/**
* @dev There's no code at `target` (it is not a contract).
*/errorAddressEmptyCode(address target);
/**
* @dev A call to an address target failed. The target may have reverted.
*/errorFailedInnerCall();
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://consensys.net/diligence/blog/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.8.20/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/functionsendValue(addresspayable recipient, uint256 amount) internal{
if (address(this).balance< amount) {
revert AddressInsufficientBalance(address(this));
}
(bool success, ) = recipient.call{value: amount}("");
if (!success) {
revert FailedInnerCall();
}
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain `call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason or custom error, it is bubbled
* up by this function (like regular Solidity function calls). However, if
* the call reverted with no returned reason, this function reverts with a
* {FailedInnerCall} error.
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*/functionfunctionCall(address target, bytesmemory data) internalreturns (bytesmemory) {
return functionCallWithValue(target, data, 0);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*/functionfunctionCallWithValue(address target, bytesmemory data, uint256 value) internalreturns (bytesmemory) {
if (address(this).balance< value) {
revert AddressInsufficientBalance(address(this));
}
(bool success, bytesmemory returndata) = target.call{value: value}(data);
return verifyCallResultFromTarget(target, success, returndata);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*/functionfunctionStaticCall(address target, bytesmemory data) internalviewreturns (bytesmemory) {
(bool success, bytesmemory returndata) = target.staticcall(data);
return verifyCallResultFromTarget(target, success, returndata);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*/functionfunctionDelegateCall(address target, bytesmemory data) internalreturns (bytesmemory) {
(bool success, bytesmemory returndata) = target.delegatecall(data);
return verifyCallResultFromTarget(target, success, returndata);
}
/**
* @dev Tool to verify that a low level call to smart-contract was successful, and reverts if the target
* was not a contract or bubbling up the revert reason (falling back to {FailedInnerCall}) in case of an
* unsuccessful call.
*/functionverifyCallResultFromTarget(address target,
bool success,
bytesmemory returndata
) internalviewreturns (bytesmemory) {
if (!success) {
_revert(returndata);
} else {
// only check if target is a contract if the call was successful and the return data is empty// otherwise we already know that it was a contractif (returndata.length==0&& target.code.length==0) {
revert AddressEmptyCode(target);
}
return returndata;
}
}
/**
* @dev Tool to verify that a low level call was successful, and reverts if it wasn't, either by bubbling the
* revert reason or with a default {FailedInnerCall} error.
*/functionverifyCallResult(bool success, bytesmemory returndata) internalpurereturns (bytesmemory) {
if (!success) {
_revert(returndata);
} else {
return returndata;
}
}
/**
* @dev Reverts with returndata if present. Otherwise reverts with {FailedInnerCall}.
*/function_revert(bytesmemory returndata) privatepure{
// Look for revert reason and bubble it up if presentif (returndata.length>0) {
// The easiest way to bubble the revert reason is using memory via assembly/// @solidity memory-safe-assemblyassembly {
let returndata_size :=mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert FailedInnerCall();
}
}
}
Contract Source Code
File 2 of 29: BucketSubmission.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.19;import {_BUCKET_DURATION} from"@/Constants/Constants.sol";
contractBucketSubmission{
/* -------------------------------------------------------------------------- *//* constants *//* -------------------------------------------------------------------------- *//**
* @notice the start offset to the current bucket for the grc deposit
* @dev when depositing grc, the grc is evenly distributed across 192 weeks
* - The first bucket to receive grc is the current bucket + 16 weeks
* - The last bucket to receive grc is the current bucket + 208 weeks
*/uint256publicconstant OFFSET_LEFT =16;
/**
* @notice the end offset to the current bucket for the grc deposit
* @dev the amount to offset b(x) by to get the final bucket number where the grc will have finished vesting
* - where b(x) is the current bucket
*/uint256publicconstant OFFSET_RIGHT =208;
/// @notice a constant holding the total vesting periods for a grc donation (192)uint256publicconstant TOTAL_VESTING_PERIODS = OFFSET_RIGHT - OFFSET_LEFT;
/* -------------------------------------------------------------------------- *//* state vars *//* -------------------------------------------------------------------------- *//**
* @dev a helper to cache the last updated bucket
* - and the first bucket that USDC was deposited to
* - and the last bucket that USDC was deposited to
*/
BucketTracker internal bucketTracker;
/* -------------------------------------------------------------------------- *//* mappings *//* -------------------------------------------------------------------------- *//// @notice mappings bucketId -> WeeklyRewardmapping(uint256=> WeeklyReward) internal rewards;
/* -------------------------------------------------------------------------- *//* structs *//* -------------------------------------------------------------------------- *//**
* @dev a helper to keep track of last updated bucket ids for buckets
* @param lastUpdatedBucket - the last bucket + 16 that grc was deposited to this bucket
* @param maxBucketId - the lastUpdatedBucket + 191 since the range of buckets is (lastUpdatedBucket, lastUpdatedBucket + 192]
* ^ inclusive, exclusive ^
* @param firstAddedBucketId - the first bucket + 16 that grc was deposited to this bucket
* @dev none of the params should overflow, since they represent weeks
* - it's safe to assume by 2^48 weeks climate should should have better solutions
*/structBucketTracker {
uint48 lastUpdatedBucket;
uint48 maxBucketId;
uint48 firstAddedBucketId;
}
/**
* @dev a struct to help track the amount in weekly rewards
* @param inheritedFromLastWeek - a flag to see if the bucket has inherited
* - its vesting amount from past buckets
* @param amountInBucket - the current amount in the bucket available as rewards
* @param amountToDeduct - the amount to deduct from the {amountInBucket} when it initializes itself
*/structWeeklyReward {
bool inheritedFromLastWeek;
uint256 amountInBucket;
uint256 amountToDeduct;
}
/* -------------------------------------------------------------------------- *//* events *//* -------------------------------------------------------------------------- *//**
* @notice Emitted when a user donates usdc to the contract
* @param bucketId - the bucket id in which the donation happened.
* - the result of this donation vests from bucketId + 16 to bucketId + 208
* @param totalAmountDonated - the total amount donated at `bucketId`
* - the total amount donated at `bucketId` is evenly distributed over 192 buckets
*/eventAmountDonatedToBucket(uint256indexed bucketId, uint256 totalAmountDonated);
/* -------------------------------------------------------------------------- *//* view functions *//* -------------------------------------------------------------------------- *//**
* @notice returns the current bucket
* @return currentBucket - the current bucket
*/functioncurrentBucket() publicviewreturns (uint256) {
return (block.timestamp- _genesisTimestamp()) / bucketDuration();
}
/**
* @notice returns the bucket tracker for a given grc token
* @return bucketTracker - the bucket tracker struct
*/functiongetBucketTracker() externalviewreturns (BucketTracker memory) {
return bucketTracker;
}
/**
* @notice returns the weekly reward for a given bucket and grc token
* @param id - the bucketId (week) to query for
* @return bucket - the weekly reward struct for the bucket
*/functionreward(uint256 id) publicviewreturns (WeeklyReward memory) {
(WeeklyReward memory bucket,) = _rewardWithNeedsInitializing(id);
return bucket;
}
/* -------------------------------------------------------------------------- *//* internal add to bucket *//* -------------------------------------------------------------------------- *//**
* @notice adds the usdc to the current bucket
* @dev this function is called when a user donates usdc to the contract
* @param amount - the amount of usdc to add
* - the `amount` gets distributed over 192 buckets with the first bucket being the current bucket + OFFSET_LEFT
*/function_addToCurrentBucket(uint256 amount) internal{
//Calculate the current bucketuint256 currentBucketId = currentBucket();
//The bucket to add to is always the current bucket + OFFSET_LEFTuint256 bucketToAddTo = currentBucketId + OFFSET_LEFT;
//The bucket to deduct from is always the bucketToAddTo + TOTAL_VESTING_PERIODSuint256 bucketToDeductFrom = bucketToAddTo + TOTAL_VESTING_PERIODS;
//The amount to add to the bucketToAddTo OR subtract from the bucketToDeductFromuint256 amountToAddOrSubtract = amount / TOTAL_VESTING_PERIODS;
//Load bucketTracker into memory//Bucket trackers are used to keep track of the last updated bucket//and are used for caching to reduce gas costs
BucketTracker memory _bucketTracker = bucketTracker;
//Load the current bucket into memory
WeeklyReward memory currentWeeklyReward = rewards[bucketToAddTo];
//If the bucket has already reconciled with its past weeks,//then we can just add the amount to the bucket//We also deduct the amount from the bucketToDeductFrom bucketif (currentWeeklyReward.inheritedFromLastWeek) {
rewards[bucketToAddTo].amountInBucket += amountToAddOrSubtract;
rewards[bucketToDeductFrom].amountToDeduct += amountToAddOrSubtract;
emit AmountDonatedToBucket(currentBucketId, amount);
return;
}
//Cache the last updated bucket//The last updated bucket is the last bucket thats {amountInBucket} was updated//If the last updated bucket has never been set (aka == 0),//then that means the first bucket to be updated is the bucketToAddTo//If the last updated bucket was already set, then we use thatuint256 lastUpdatedBucket =
_bucketTracker.lastUpdatedBucket ==0 ? bucketToAddTo : _bucketTracker.lastUpdatedBucket;
WeeklyReward memory lastBucket = rewards[lastUpdatedBucket];
//We already know we are going to add {amountToAddOrSubtract} to the {bucketToDeductFrom}
rewards[bucketToDeductFrom].amountToDeduct += amountToAddOrSubtract;
//This means that we don't need to look backwards//Since all the vested amount from that bucket would have been emptied by now if the bucket hadnt been refreshed in 192 weeks// If the lastUpdatedBucket is the current bucket, we also don't need to look backwards//If the {bucketToAddTo} is greater than the {maxBucketId} then we don't need to look backwards//This is so because if {bucketToAddTo} is > {maxBucketId} then that means that all the tokens have already vested//because tokens vest in between {bucketToAddTo} and {maxBucketId}//This would only be the case if there has been a long period of time where no one has called {claimRewards}//Or, no one has donated the grc to the contract//Also, if the last bucket is the same as the bucket to add to, then we don't need to look backwards neitherbool pastDataIrrelevant = bucketToAddTo > _bucketTracker.maxBucketId || lastUpdatedBucket == bucketToAddTo;
//If past data is irrelevant, we can assume that we start fresh from the current bucketuint256 totalToDeductFromBucket = pastDataIrrelevant ? 0 : currentWeeklyReward.amountToDeduct;
//As such, we don't need to look backwards if the past data is irrelevantif (!pastDataIrrelevant) {
//However, if the past data is relavant,//We start at the last bucket that was updated,//And we look forwards until we reach the bucketToAddTofor (uint256 i = lastUpdatedBucket; i < bucketToAddTo; ++i) {
totalToDeductFromBucket += rewards[i].amountToDeduct;
}
} else {
//If the past data is irrelevant, then we set the amount in the bucket to 0//Such that the write below does not incorrectly add to the bucket
lastBucket.amountInBucket =0;
}
/**
* We then set
* {
* amountInBucket: (lastBucket.amountInBucket + amountToAddOrSubtract) - totalToDeductFromBucket,
* amountToDeduct: 0,
* inheritedFromLastWeek: true
* }
* We know that lastBucket.amountInBucket will always have a value > 0 (if the bucket has been donated to),
* and we also know that every time a bucket is donated to, it becomes the last updated bucket,
* therefore, {lastBucket.amountInBucket} is intended to be a cumulative sum of all the donations
* with {totalToDeductFromBucket} being the amount that is needed to be deducted from the bucket
* Once we adjust the amount in the bucket, we set the {inheritedFromLastWeek} to true
* We also set the {amountToDeduct} to 0 since we don't need to deduct anything from the bucket anymore
*/
rewards[bucketToAddTo] = WeeklyReward({
inheritedFromLastWeek: true,
amountInBucket: (lastBucket.amountInBucket + amountToAddOrSubtract) - totalToDeductFromBucket,
amountToDeduct: 0
});
//If the lastUpdatedBucket has changed, then we update the lastUpdatedBucketif (_bucketTracker.lastUpdatedBucket != bucketToAddTo) {
bucketTracker = BucketTracker(
uint48(bucketToAddTo),
uint48(bucketToAddTo + TOTAL_VESTING_PERIODS -1),
_bucketTracker.firstAddedBucketId
);
}
emit AmountDonatedToBucket(currentBucketId, amount);
}
/* -------------------------------------------------------------------------- *//* internal helpers *//* -------------------------------------------------------------------------- *//**
* @dev gets the total amount of grc in a bucket that is available to withdraw and initializes it
* - this is a helper function only meant to be used inside the claimRewards function
* @param id - the id of the bucket
*/function_getAmountForTokenAndInitIfNot(uint256 id) internalreturns (uint256) {
(WeeklyReward memory weeklyReward, bool needsInitializing) = _rewardWithNeedsInitializing(id);
if (needsInitializing) {
weeklyReward.inheritedFromLastWeek =true;
weeklyReward.amountToDeduct =0;
rewards[id] = weeklyReward;
}
return weeklyReward.amountInBucket;
}
/* -------------------------------------------------------------------------- *//* internal view *//* -------------------------------------------------------------------------- *//**
* @notice returns the weekly reward for a given bucket
* @dev if the bucket has not yet been initialized,
* - the function will look backwards to calculate the correct amount
* - if the bucket has been initialized, it will return the bucket
* @param id - the bucketId (week) to query for
* @return bucket - the weekly reward struct for the bucket
* @return needsInitializing -- flag to see if the bucket needs to be initialized
* @dev `needsInitializing` should be used in the withdraw reward function to see if the bucket needs to be initialized
*/function_rewardWithNeedsInitializing(uint256 id) privateviewreturns (WeeklyReward memory, bool) {
WeeklyReward memory bucket = rewards[id];
// If the bucket has already been initialized// Then we can just return the bucket.if (bucket.inheritedFromLastWeek || id < OFFSET_LEFT) {
return (bucket, false);
}
// If the index to search for is greater than the maxBucketId// than that means all the tokens would have vested,// So we return the empty bucket
BucketTracker memory _bucketTracker = bucketTracker;
if (id > _bucketTracker.maxBucketId) {
return (bucket, false);
}
uint256 amountToSubtract = bucket.amountToDeduct;
//Can't underflow since we start at id 16uint256 lastBucketId = id -1;
//We get the first added bucket id from the bucket tracker.//The tracker helps us prevent uneccessary backward lookupsuint256 firstUpdatedBucket = _bucketTracker.firstAddedBucketId;
while (true) {
// if the firstUpdatedbucket is greater than the last bucket id//then we break out of the loop//This happens in the case where the bucket has not been initialized yet//And also in the case where we re-add a grc token to the contract// after all its vesting periods have endedif (firstUpdatedBucket > lastBucketId) {
break;
}
//Load the last bucket into memory
WeeklyReward memory lastBucket = rewards[lastBucketId--];
// add the amount to deduct from the last bucket to the amount to subtract
amountToSubtract += lastBucket.amountToDeduct;
//If the last bucket has inherited from the last weekif (lastBucket.inheritedFromLastWeek) {
//We set the amount in the bucket to the last bucket amount - the amount to subtract//This marks the point at which we can stop looking backwards//It's also important to keep in mind that this algorithm only works//because we know that the last bucket will always have a value//If it does not have a value -- that means that the bucket has not been initialized// and therefore there are no rewards that need to be accounted for in those buckets
bucket.amountInBucket = lastBucket.amountInBucket - amountToSubtract;
break;
}
}
return (bucket, true);
}
functionbucketDuration() internalpurevirtualreturns (uint256) {
return _BUCKET_DURATION;
}
/* -------------------------------------------------------------------------- *//* functions to override *//* -------------------------------------------------------------------------- *//// @dev this must be overriden inside the parent contract.function_genesisTimestamp() internalviewvirtualreturns (uint256) {
return0;
}
}
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/cryptography/ECDSA.sol)pragmasolidity ^0.8.20;/**
* @dev Elliptic Curve Digital Signature Algorithm (ECDSA) operations.
*
* These functions can be used to verify that a message was signed by the holder
* of the private keys of a given address.
*/libraryECDSA{
enumRecoverError {
NoError,
InvalidSignature,
InvalidSignatureLength,
InvalidSignatureS
}
/**
* @dev The signature derives the `address(0)`.
*/errorECDSAInvalidSignature();
/**
* @dev The signature has an invalid length.
*/errorECDSAInvalidSignatureLength(uint256 length);
/**
* @dev The signature has an S value that is in the upper half order.
*/errorECDSAInvalidSignatureS(bytes32 s);
/**
* @dev Returns the address that signed a hashed message (`hash`) with
* `signature` or error string. This address can then be used for verification purposes.
*
* The `ecrecover` EVM precompile allows for malleable (non-unique) signatures:
* this function rejects them by requiring the `s` value to be in the lower
* half order, and the `v` value to be either 27 or 28.
*
* IMPORTANT: `hash` _must_ be the result of a hash operation for the
* verification to be secure: it is possible to craft signatures that
* recover to arbitrary addresses for non-hashed data. A safe way to ensure
* this is by receiving a hash of the original message (which may otherwise
* be too long), and then calling {MessageHashUtils-toEthSignedMessageHash} on it.
*
* Documentation for signature generation:
* - with https://web3js.readthedocs.io/en/v1.3.4/web3-eth-accounts.html#sign[Web3.js]
* - with https://docs.ethers.io/v5/api/signer/#Signer-signMessage[ethers]
*/functiontryRecover(bytes32 hash, bytesmemory signature) internalpurereturns (address, RecoverError, bytes32) {
if (signature.length==65) {
bytes32 r;
bytes32 s;
uint8 v;
// ecrecover takes the signature parameters, and the only way to get them// currently is to use assembly./// @solidity memory-safe-assemblyassembly {
r :=mload(add(signature, 0x20))
s :=mload(add(signature, 0x40))
v :=byte(0, mload(add(signature, 0x60)))
}
return tryRecover(hash, v, r, s);
} else {
return (address(0), RecoverError.InvalidSignatureLength, bytes32(signature.length));
}
}
/**
* @dev Returns the address that signed a hashed message (`hash`) with
* `signature`. This address can then be used for verification purposes.
*
* The `ecrecover` EVM precompile allows for malleable (non-unique) signatures:
* this function rejects them by requiring the `s` value to be in the lower
* half order, and the `v` value to be either 27 or 28.
*
* IMPORTANT: `hash` _must_ be the result of a hash operation for the
* verification to be secure: it is possible to craft signatures that
* recover to arbitrary addresses for non-hashed data. A safe way to ensure
* this is by receiving a hash of the original message (which may otherwise
* be too long), and then calling {MessageHashUtils-toEthSignedMessageHash} on it.
*/functionrecover(bytes32 hash, bytesmemory signature) internalpurereturns (address) {
(address recovered, RecoverError error, bytes32errorArg) = tryRecover(hash, signature);
_throwError(error, errorArg);
return recovered;
}
/**
* @dev Overload of {ECDSA-tryRecover} that receives the `r` and `vs` short-signature fields separately.
*
* See https://eips.ethereum.org/EIPS/eip-2098[EIP-2098 short signatures]
*/functiontryRecover(bytes32 hash, bytes32 r, bytes32 vs) internalpurereturns (address, RecoverError, bytes32) {
unchecked {
bytes32 s = vs &bytes32(0x7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff);
// We do not check for an overflow here since the shift operation results in 0 or 1.uint8 v =uint8((uint256(vs) >>255) +27);
return tryRecover(hash, v, r, s);
}
}
/**
* @dev Overload of {ECDSA-recover} that receives the `r and `vs` short-signature fields separately.
*/functionrecover(bytes32 hash, bytes32 r, bytes32 vs) internalpurereturns (address) {
(address recovered, RecoverError error, bytes32errorArg) = tryRecover(hash, r, vs);
_throwError(error, errorArg);
return recovered;
}
/**
* @dev Overload of {ECDSA-tryRecover} that receives the `v`,
* `r` and `s` signature fields separately.
*/functiontryRecover(bytes32 hash,
uint8 v,
bytes32 r,
bytes32 s
) internalpurereturns (address, RecoverError, bytes32) {
// EIP-2 still allows signature malleability for ecrecover(). Remove this possibility and make the signature// unique. Appendix F in the Ethereum Yellow paper (https://ethereum.github.io/yellowpaper/paper.pdf), defines// the valid range for s in (301): 0 < s < secp256k1n ÷ 2 + 1, and for v in (302): v ∈ {27, 28}. Most// signatures from current libraries generate a unique signature with an s-value in the lower half order.//// If your library generates malleable signatures, such as s-values in the upper range, calculate a new s-value// with 0xFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEBAAEDCE6AF48A03BBFD25E8CD0364141 - s1 and flip v from 27 to 28 or// vice versa. If your library also generates signatures with 0/1 for v instead 27/28, add 27 to v to accept// these malleable signatures as well.if (uint256(s) >0x7FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF5D576E7357A4501DDFE92F46681B20A0) {
return (address(0), RecoverError.InvalidSignatureS, s);
}
// If the signature is valid (and not malleable), return the signer addressaddress signer =ecrecover(hash, v, r, s);
if (signer ==address(0)) {
return (address(0), RecoverError.InvalidSignature, bytes32(0));
}
return (signer, RecoverError.NoError, bytes32(0));
}
/**
* @dev Overload of {ECDSA-recover} that receives the `v`,
* `r` and `s` signature fields separately.
*/functionrecover(bytes32 hash, uint8 v, bytes32 r, bytes32 s) internalpurereturns (address) {
(address recovered, RecoverError error, bytes32errorArg) = tryRecover(hash, v, r, s);
_throwError(error, errorArg);
return recovered;
}
/**
* @dev Optionally reverts with the corresponding custom error according to the `error` argument provided.
*/function_throwError(RecoverError error, bytes32 errorArg) privatepure{
if (error == RecoverError.NoError) {
return; // no error: do nothing
} elseif (error == RecoverError.InvalidSignature) {
revert ECDSAInvalidSignature();
} elseif (error == RecoverError.InvalidSignatureLength) {
revert ECDSAInvalidSignatureLength(uint256(errorArg));
} elseif (error == RecoverError.InvalidSignatureS) {
revert ECDSAInvalidSignatureS(errorArg);
}
}
}
Contract Source Code
File 5 of 29: EIP712.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/cryptography/EIP712.sol)pragmasolidity ^0.8.20;import {MessageHashUtils} from"./MessageHashUtils.sol";
import {ShortStrings, ShortString} from"../ShortStrings.sol";
import {IERC5267} from"../../interfaces/IERC5267.sol";
/**
* @dev https://eips.ethereum.org/EIPS/eip-712[EIP 712] is a standard for hashing and signing of typed structured data.
*
* The encoding scheme specified in the EIP requires a domain separator and a hash of the typed structured data, whose
* encoding is very generic and therefore its implementation in Solidity is not feasible, thus this contract
* does not implement the encoding itself. Protocols need to implement the type-specific encoding they need in order to
* produce the hash of their typed data using a combination of `abi.encode` and `keccak256`.
*
* This contract implements the EIP 712 domain separator ({_domainSeparatorV4}) that is used as part of the encoding
* scheme, and the final step of the encoding to obtain the message digest that is then signed via ECDSA
* ({_hashTypedDataV4}).
*
* The implementation of the domain separator was designed to be as efficient as possible while still properly updating
* the chain id to protect against replay attacks on an eventual fork of the chain.
*
* NOTE: This contract implements the version of the encoding known as "v4", as implemented by the JSON RPC method
* https://docs.metamask.io/guide/signing-data.html[`eth_signTypedDataV4` in MetaMask].
*
* NOTE: In the upgradeable version of this contract, the cached values will correspond to the address, and the domain
* separator of the implementation contract. This will cause the {_domainSeparatorV4} function to always rebuild the
* separator from the immutable values, which is cheaper than accessing a cached version in cold storage.
*
* @custom:oz-upgrades-unsafe-allow state-variable-immutable
*/abstractcontractEIP712isIERC5267{
usingShortStringsfor*;
bytes32privateconstant _TYPE_HASH =keccak256("EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)");
// Cache the domain separator as an immutable value, but also store the chain id that it corresponds to, in order to// invalidate the cached domain separator if the chain id changes.bytes32privateimmutable _cachedDomainSeparator;
uint256privateimmutable _cachedChainId;
addressprivateimmutable _cachedThis;
bytes32privateimmutable _hashedName;
bytes32privateimmutable _hashedVersion;
ShortString privateimmutable _name;
ShortString privateimmutable _version;
stringprivate _nameFallback;
stringprivate _versionFallback;
/**
* @dev Initializes the domain separator and parameter caches.
*
* The meaning of `name` and `version` is specified in
* https://eips.ethereum.org/EIPS/eip-712#definition-of-domainseparator[EIP 712]:
*
* - `name`: the user readable name of the signing domain, i.e. the name of the DApp or the protocol.
* - `version`: the current major version of the signing domain.
*
* NOTE: These parameters cannot be changed except through a xref:learn::upgrading-smart-contracts.adoc[smart
* contract upgrade].
*/constructor(stringmemory name, stringmemory version) {
_name = name.toShortStringWithFallback(_nameFallback);
_version = version.toShortStringWithFallback(_versionFallback);
_hashedName =keccak256(bytes(name));
_hashedVersion =keccak256(bytes(version));
_cachedChainId =block.chainid;
_cachedDomainSeparator = _buildDomainSeparator();
_cachedThis =address(this);
}
/**
* @dev Returns the domain separator for the current chain.
*/function_domainSeparatorV4() internalviewreturns (bytes32) {
if (address(this) == _cachedThis &&block.chainid== _cachedChainId) {
return _cachedDomainSeparator;
} else {
return _buildDomainSeparator();
}
}
function_buildDomainSeparator() privateviewreturns (bytes32) {
returnkeccak256(abi.encode(_TYPE_HASH, _hashedName, _hashedVersion, block.chainid, address(this)));
}
/**
* @dev Given an already https://eips.ethereum.org/EIPS/eip-712#definition-of-hashstruct[hashed struct], this
* function returns the hash of the fully encoded EIP712 message for this domain.
*
* This hash can be used together with {ECDSA-recover} to obtain the signer of a message. For example:
*
* ```solidity
* bytes32 digest = _hashTypedDataV4(keccak256(abi.encode(
* keccak256("Mail(address to,string contents)"),
* mailTo,
* keccak256(bytes(mailContents))
* )));
* address signer = ECDSA.recover(digest, signature);
* ```
*/function_hashTypedDataV4(bytes32 structHash) internalviewvirtualreturns (bytes32) {
return MessageHashUtils.toTypedDataHash(_domainSeparatorV4(), structHash);
}
/**
* @dev See {IERC-5267}.
*/functioneip712Domain()
publicviewvirtualreturns (bytes1 fields,
stringmemory name,
stringmemory version,
uint256 chainId,
address verifyingContract,
bytes32 salt,
uint256[] memory extensions
)
{
return (
hex"0f", // 01111
_EIP712Name(),
_EIP712Version(),
block.chainid,
address(this),
bytes32(0),
newuint256[](0)
);
}
/**
* @dev The name parameter for the EIP712 domain.
*
* NOTE: By default this function reads _name which is an immutable value.
* It only reads from storage if necessary (in case the value is too large to fit in a ShortString).
*/// solhint-disable-next-line func-name-mixedcasefunction_EIP712Name() internalviewreturns (stringmemory) {
return _name.toStringWithFallback(_nameFallback);
}
/**
* @dev The version parameter for the EIP712 domain.
*
* NOTE: By default this function reads _version which is an immutable value.
* It only reads from storage if necessary (in case the value is too large to fit in a ShortString).
*/// solhint-disable-next-line func-name-mixedcasefunction_EIP712Version() internalviewreturns (stringmemory) {
return _version.toStringWithFallback(_versionFallback);
}
}
Contract Source Code
File 6 of 29: GCA.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.19;import {IGCA} from"@/interfaces/IGCA.sol";
import {IGlow} from"@/interfaces/IGlow.sol";
import {GCASalaryHelper} from"./GCASalaryHelper.sol";
import {SafeCast} from"@openzeppelin/contracts/utils/math/SafeCast.sol";
import {_BUCKET_DURATION} from"@/Constants/Constants.sol";
/**
* @title GCA (Glow Certification Agent)
* @author @DavidVorick
* @author @0xSimon(twitter) - 0xSimon(github)
* @notice this contract is the entry point for GCAs to submit reports and claim payouts
* @notice GCA's submit weekly reports that contain how many carbon credits have been created
* - and which farms should get rewarded for the creation of those credits
* @notice The weekly reports that GCA's submit into are called `buckets`
* @notice Each `bucket` has a 1 week period for report submission
* - followed by a 1 week period before its finalized
* - during this finalization period, the veto council can decide to delay the bucket by 90 days
* - should they find anything suspicious in the bucket.
* - A delayed bucket should always finalize 90 days after the delay event
* - This should give governance enough time to slash the GCA that submitted the faulty report
* - This slash event causes all buckets that were not finalized at the time of the slash, to be permanently slashed
* - The exception is that the current GCA's have 1-2 weeks after the slash to reinstate the bucket
* - Reinstating the buckets deletes all the past reports and allows the GCAs to submit fresh reports
* - after the bucket has passed this finalization period, the bucket's rewards become available for distribution to solar farms,
* and the GCC created is minted and sent to the Carbon Credit Auction
* - These actions above take place in the `MinerPoolAndGCA` contract
* @notice Governance has the ability to change and slash the GCA's.
*
*/contractGCAisIGCA, GCASalaryHelper{
/* -------------------------------------------------------------------------- *//* constants *//* -------------------------------------------------------------------------- *//// @dev the return value if an index position is not found in an arrayuint256privateconstant _INDEX_NOT_FOUND =type(uint256).max;
/// @notice the shift to apply to the bitpacked compensation plansuint256privateconstant _UINT24_SHIFT =24;
/// @notice the mask to apply to the bitpacked compensation plansuint256privateconstant _UINT24_MASK =0xFFFFFF;
/// @dev 200 Billion in 18 decimalsuint256privateconstant _200_BILLION =200_000_000_000ether;
/// @dev the max uint64 divided by 5/// @dev this is used to check if the total weight of a report is less than the max uint64 / 5/// @dev the max sum of all weights is type(uint64).max, so we can not allow an overflow by a baduint256privateconstant _UINT64_MAX_DIV5 =type(uint64).max/5;
/// @dev mask to apply a uint128 mask to a uint256/// @dev this is used to get the `finalizationTimestamp` from the `Bucket` struct/// - which is a uint128 stored in the last 128 bits of the uint256uint256internalconstant _UINT128_MASK = (1<<128) -1;
/// @dev mask to apply a uint64 mask to a uint256/// @dev this is used to get the `originalNonce` and `lastUpdatedNonce` from the `Bucket` struct/// - `originalNonce` is a uint64 stored in the first 64 bits of the uint256/// - `lastUpdatedNonce` is a uint64 stored in the second 64 bits of the uint256uint256internalconstant _UINT64_MASK = (1<<64) -1;
/* -------------------------------------------------------------------------- *//* immutables *//* -------------------------------------------------------------------------- *//// @notice the address of the glow token
IGlow publicimmutable GLOW_TOKEN;
/// @notice the address of the governance contractaddresspublicimmutable GOVERNANCE;
/// @notice the timestamp of the genesis blockuint256publicimmutable GENESIS_TIMESTAMP;
/* -------------------------------------------------------------------------- *//* state vars *//* -------------------------------------------------------------------------- *//// @notice the index of the last proposal that was updated + 1uint256public nextProposalIndexToUpdate;
/// @notice the hashes of the proposals that have been submitted from {GOVERNANCE}bytes32[] public proposalHashes;
/// @notice the addresses of the gca agentsaddress[] public gcaAgents;
/**
* @notice the requirements hash of GCA Agents
*/bytes32public requirementsHash;
/**
* @notice the current slash nonce
*/uint256public slashNonce;
/* -------------------------------------------------------------------------- *//* mappings *//* -------------------------------------------------------------------------- *//**
* @notice the timestamp of the slash event as [nonce]
* @dev nonce -> slash timestamp
*/mapping(uint256=>uint256) public slashNonceToSlashTimestamp;
/// @notice the gca payoutsmapping(address=> IGCA.GCAPayout) private _gcaPayouts;
/// @notice bucket -> Bucket Structmapping(uint256=> IGCA.Bucket) internal _buckets;
/// @notice bucket -> Global Statemapping(uint256=> IGCA.BucketGlobalState) internal _bucketGlobalState;
/* -------------------------------------------------------------------------- *//* constructor *//* -------------------------------------------------------------------------- *//**
* @notice constructs a new GCA contract
* @param _gcaAgents the addresses of the gca agents the contract starts with
* @param _glowToken the address of the glow token
* @param _governance the address of the governance contract
* @param _requirementsHash the requirements hash of GCA Agents
*/constructor(address[] memory _gcaAgents, address _glowToken, address _governance, bytes32 _requirementsHash)
payableGCASalaryHelper(_gcaAgents)
{
//Set the glow token
GLOW_TOKEN = IGlow(_glowToken);
//Set governance
GOVERNANCE = _governance;
//Set the GCA's
_setGCAs(_gcaAgents);
//Set the genesis timestamp
GENESIS_TIMESTAMP = GLOW_TOKEN.GENESIS_TIMESTAMP();
//Initialize the payouts for the gcasfor (uint256 i; i < _gcaAgents.length; ++i) {
_gcaPayouts[_gcaAgents[i]].lastClaimedTimestamp =uint64(GENESIS_TIMESTAMP);
}
//Set the GCA requirements hash
requirementsHash = _requirementsHash;
GCASalaryHelper.setZeroPaymentStartTimestamp();
}
/* -------------------------------------------------------------------------- *//* submit comp plans *//* -------------------------------------------------------------------------- *//// @inheritdoc IGCAfunctionsubmitCompensationPlan(uint32[5] calldata plan, uint256 indexOfGCA) external{
_revertIfFrozen();
uint256 gcaLength = gcaAgents.length;
if (msg.sender!= gcaAgents[indexOfGCA]) _revert(IGCA.CallerNotGCAAtIndex.selector);
GCASalaryHelper.handleCompensationPlanSubmission(plan, indexOfGCA, gcaLength);
emit IGCA.CompensationPlanSubmitted(msg.sender, plan);
}
/* -------------------------------------------------------------------------- *//* submitting reports *//* -------------------------------------------------------------------------- *//**
* @notice allows GCAs to submit a weekly report and emit {data}
* - {data} is a bytes array that can be used to emit any data
* - it could contain the merkle tree, or any other data
* - it is not strictly enforced and GCA's should communicate what they are emitting
* @param bucketId - the id of the bucket
* @param totalNewGCC - the total amount of GCC to be created from the report
* @param totalGlwRewardsWeight - the total amount of glw rewards weight in the report
* @param totalGRCRewardsWeight - the total amount of grc rewards weight in the report
* @param root - the merkle root containing all the reports (leaves) for the period
*/functionsubmitWeeklyReport(uint256 bucketId,
uint256 totalNewGCC,
uint256 totalGlwRewardsWeight,
uint256 totalGRCRewardsWeight,
bytes32 root
) external{
_submitWeeklyReport(bucketId, totalNewGCC, totalGlwRewardsWeight, totalGRCRewardsWeight, root);
emit IGCA.BucketSubmissionEvent(
bucketId, msg.sender, slashNonce, totalNewGCC, totalGlwRewardsWeight, totalGRCRewardsWeight, root, ""
);
}
/**
* @notice allows GCAs to submit a weekly report and emit {data}
* - {data} is a bytes array that can be used to emit any data
* - it could contain the merkle tree, or any other data
* - it is not strictly enforced and GCA's should communicate what they are emitting
* @param bucketId - the id of the bucket
* @param totalNewGCC - the total amount of GCC to be created from the report
* @param totalGlwRewardsWeight - the total amount of glw rewards weight in the report
* @param totalGRCRewardsWeight - the total amount of grc rewards weight in the report
* @param root - the merkle root containing all the reports (leaves) for the period
* @param data - the data to emit
*/functionsubmitWeeklyReportWithBytes(uint256 bucketId,
uint256 totalNewGCC,
uint256 totalGlwRewardsWeight,
uint256 totalGRCRewardsWeight,
bytes32 root,
bytescalldata data
) external{
_submitWeeklyReport(bucketId, totalNewGCC, totalGlwRewardsWeight, totalGRCRewardsWeight, root);
emit IGCA.BucketSubmissionEvent(
bucketId, msg.sender, slashNonce, totalNewGCC, totalGlwRewardsWeight, totalGRCRewardsWeight, root, data
);
}
/* -------------------------------------------------------------------------- *//* governance interaction *//* -------------------------------------------------------------------------- *//**
* @inheritdoc IGCA
*/functionsetRequirementsHash(bytes32 _requirementsHash) external{
if (msg.sender!= GOVERNANCE) _revert(IGCA.CallerNotGovernance.selector);
requirementsHash = _requirementsHash;
emit IGCA.RequirementsHashUpdated(_requirementsHash);
}
/**
* @inheritdoc IGCA
*/functionpushHash(bytes32 hash, bool incrementSlashNonce) external{
if (msg.sender!= GOVERNANCE) _revert(IGCA.CallerNotGovernance.selector);
if (incrementSlashNonce) {
++slashNonce;
}
proposalHashes.push(hash);
emit IGCA.ProposalHashPushed(hash);
}
/**
* @notice allows anyone to call this function to ensure that governance proposals are being taken into effect
* @param gcasToSlash - the gca agents to slash
* @param newGCAs - the new gca agents
* @dev - this is a standalone function that anyone can call to ensure that
* - users dont pay too much gas when syncing proposals.
* @dev if there is a hash to execute against, the contract will be frozen
* - if there is no hash to execute against, the contract will be available
* - to execute actions
*/functionexecuteAgainstHash(address[] calldata gcasToSlash,
address[] calldata newGCAs,
uint256 proposalCreationTimestamp
) external{
uint256 _nextProposalIndexToUpdate = nextProposalIndexToUpdate;
uint256 len = proposalHashes.length;
if (len ==0) _revert(IGCA.ProposalHashesEmpty.selector);
bytes32 derivedHash =keccak256(abi.encode(gcasToSlash, newGCAs, proposalCreationTimestamp));
//Slash nonce already get's incremented so we need to subtract 1if (gcasToSlash.length>0) {
slashNonceToSlashTimestamp[slashNonce -1] = proposalCreationTimestamp;
}
if (proposalHashes[_nextProposalIndexToUpdate] != derivedHash) {
_revert(IGCA.ProposalHashDoesNotMatch.selector);
}
GCASalaryHelper.callbackInElectionEvent(newGCAs);
_setGCAs(newGCAs);
_slashGCAs(gcasToSlash);
nextProposalIndexToUpdate = _nextProposalIndexToUpdate +1;
emit IGCA.ProposalHashUpdate(_nextProposalIndexToUpdate, derivedHash);
}
/* -------------------------------------------------------------------------- *//* glow inflation *//* -------------------------------------------------------------------------- *//**
* @notice - an open function to claim the glow from inflation
*/functionclaimGlowFromInflation() publicvirtual{
_claimGlowFromInflation();
}
/* -------------------------------------------------------------------------- *//* view functions *//* -------------------------------------------------------------------------- *//// @inheritdoc IGCAfunctionisGCA(address account, uint256 index) publicviewreturns (bool) {
if (_isFrozen()) returnfalse;
return gcaAgents[index] == account;
}
/// @inheritdoc IGCAfunctionisGCA(address account) publicviewreturns (bool) {
if (_isFrozen()) returnfalse;
uint256 len = gcaAgents.length;
unchecked {
for (uint256 i; i < len; ++i) {
if (gcaAgents[i] == account) returntrue;
}
}
returnfalse;
}
/// @inheritdoc IGCAfunctionallGcas() publicviewreturns (address[] memory) {
return gcaAgents;
}
/// @inheritdoc IGCAfunctiongcaPayoutData(address gca) publicviewreturns (IGCA.GCAPayout memory) {
return _gcaPayouts[gca];
}
/**
* @inheritdoc IGCA
*/functiongetProposalHashes() externalviewreturns (bytes32[] memory) {
return proposalHashes;
}
/**
* @inheritdoc IGCA
*/functiongetProposalHashes(uint256 start, uint256 end) externalviewreturns (bytes32[] memory) {
if (end > proposalHashes.length) end = proposalHashes.length;
if (start > end) returnnewbytes32[](0);
bytes32[] memory result =newbytes32[](end - start);
unchecked {
for (uint256 i = start; i < end; ++i) {
result[i - start] = proposalHashes[i];
}
}
return result;
}
/**
* @inheritdoc IGCA
*/functionbucketGlobalState(uint256 bucketId) externalviewreturns (IGCA.BucketGlobalState memory) {
return _bucketGlobalState[bucketId];
}
/**
* @notice returns the start submission timestamp of a bucket
* @param bucketId - the id of the bucket
* @return the start submission timestamp of a bucket
* @dev should not be used for reinstated buckets or buckets that need to be reinstated
*/functionbucketStartSubmissionTimestampNotReinstated(uint256 bucketId) publicviewreturns (uint128) {
return SafeCast.toUint128(bucketId * bucketDuration() + GENESIS_TIMESTAMP);
}
/**
* @notice returns the end submission timestamp of a bucket
* - GCA's wont be able to submit if block.timestamp >= endSubmissionTimestamp
* @param bucketId - the id of the bucket
* @return the end submission timestamp of a bucket
* @dev should not be used for reinstated buckets or buckets that need to be reinstated
*/functionbucketEndSubmissionTimestampNotReinstated(uint256 bucketId) publicviewreturns (uint128) {
return SafeCast.toUint128(bucketStartSubmissionTimestampNotReinstated(bucketId) + bucketDuration());
}
/**
* @notice returns the finalization timestamp of a bucket
* @param bucketId - the id of the bucket
* @return the finalization timestamp of a bucket
* @dev should not be used for reinstated buckets or buckets that need to be reinstated
*/functionbucketFinalizationTimestampNotReinstated(uint256 bucketId) publicviewreturns (uint128) {
return SafeCast.toUint128(bucketEndSubmissionTimestampNotReinstated(bucketId) + bucketDuration());
}
/**
* @inheritdoc IGCA
*/functionbucket(uint256 bucketId) publicviewreturns (IGCA.Bucket memory bucket) {
return _buckets[bucketId];
}
/**
* @inheritdoc IGCA
*/functionisBucketFinalized(uint256 bucketId) publicviewreturns (bool) {
uint256 packedData;
// solhint-disable-next-line no-inline-assemblyassembly {
mstore(0x0, bucketId)
mstore(0x20, _buckets.slot)
let slot :=keccak256(0x0, 0x40)
// nonce, reinstated and finalizationTimestamp are all in the first slot
packedData :=sload(slot)
}
uint256 bucketLastUpdatedNonce = (packedData >>64) & _UINT64_MASK;
//First bit.//first 64 bits are originalNonce, next 64 bits are lastUpdatedNonce, last 128 bits are finalizationTimestamp//no need to us to use a mask since finalizationTimestamp takes up the last 128 bitsuint256 finalizationTimestamp = packedData >>128;
uint256 _slashNonce = slashNonce;
return _isBucketFinalized(bucketLastUpdatedNonce, finalizationTimestamp, _slashNonce);
}
/* -------------------------------------------------------------------------- *//* internal *//* -------------------------------------------------------------------------- *//**
* @notice allows GCAs to submit a weekly report and emit {data}
* - {data} is a bytes array that can be used to emit any data
* - it could contain the merkle tree, or any other data
* - it is not strictly enforced and GCA's should communicate what they are emitting
* @param bucketId - the id of the bucket
* @param totalNewGCC - the total amount of GCC to be created from the report
* @param totalGlwRewardsWeight - the total amount of glw rewards weight in the report
* @param totalGRCRewardsWeight - the total amount of grc rewards weight in the report
* @param root - the merkle root containing all the reports (leaves) for the period
*/function_submitWeeklyReport(uint256 bucketId,
uint256 totalNewGCC,
uint256 totalGlwRewardsWeight,
uint256 totalGRCRewardsWeight,
bytes32 root
) internal{
//GCAs can't submit if the contract is frozen (pending a proposal hash update)
_revertIfFrozen();
if (!isGCA(msg.sender)) _revert(NotGCA.selector);
checkBucketSubmissionArithmeticInputs(totalGlwRewardsWeight, totalGRCRewardsWeight, totalNewGCC);
//Need to check if bucket is slashed
Bucket storage bucket = _buckets[bucketId];
//Cache valuesuint256 len = bucket.reports.length;
{
uint256 bucketFinalizationTimestamp = bucket.finalizationTimestamp;
uint256 lastUpdatedNonce = bucket.lastUpdatedNonce;
//Get the submission start itimestampuint256 bucketSubmissionStartTimestamp = bucketStartSubmissionTimestampNotReinstated(bucketId);
if (block.timestamp< bucketSubmissionStartTimestamp) _revert(IGCA.BucketSubmissionNotOpen.selector);
//Keep in mind, all bucketNonces start with 0//So on the first init, we need to set the bucketNonce to the slashNonce in storage
{
uint256 _slashNonce = slashNonce;
//If not inititialized, intitialize the bucketif (bucketFinalizationTimestamp ==0) {
bucket.originalNonce = SafeCast.toUint64(_slashNonce);
bucket.lastUpdatedNonce = SafeCast.toUint64(_slashNonce);
bucket.finalizationTimestamp =
SafeCast.toUint128(bucketFinalizationTimestampNotReinstated(bucketId));
lastUpdatedNonce = _slashNonce;
}
{
/**
* If the bucket needs to be reinstated
* we need to update the bucket accordingly
* and we need to change the finalization timestamp
* lastly, we need to delete all reports in storage if there are any
*/uint256 bucketSubmissionEndTimestamp = _calculateBucketSubmissionEndTimestamp(
bucketId, bucket.originalNonce, lastUpdatedNonce, _slashNonce, bucketFinalizationTimestamp
);
if (block.timestamp>= bucketSubmissionEndTimestamp) _revert(IGCA.BucketSubmissionEnded.selector);
if (lastUpdatedNonce != _slashNonce) {
bucket.lastUpdatedNonce = SafeCast.toUint64(_slashNonce);
//Need to check before storing the finalization timestamp in case//the bucket was delayed.if (bucketSubmissionEndTimestamp + bucketDuration() > bucketFinalizationTimestamp) {
bucket.finalizationTimestamp =
SafeCast.toUint128(bucketSubmissionEndTimestamp + bucketDuration());
}
//conditionally delete all reports in storageif (len >0) {
len =0;
//delete all reports in storage//by setting the length to 0// solhint-disable-next-line no-inline-assemblyassembly {
//1 slot offset for buckets lengthsstore(add(1, bucket.slot), 0)
}
delete _bucketGlobalState[bucketId];
}
}
}
}
}
uint256 reportArrayStartSlot;
// solhint-disable-next-line no-inline-assemblyassembly {
//add 1 for reports offsetmstore(0x0, add(bucket.slot, 1))
// hash the reports start slot to get the start of the data
reportArrayStartSlot :=keccak256(0x0, 0x20)
}
(uint256 foundIndex, uint256 gcaReportStartSlot) = findReportIndexOrUintMax(reportArrayStartSlot, len);
handleGlobalBucketStateStore(
totalNewGCC, totalGlwRewardsWeight, totalGRCRewardsWeight, bucketId, foundIndex, gcaReportStartSlot
);
handleBucketStore(bucket, foundIndex, totalNewGCC, totalGlwRewardsWeight, totalGRCRewardsWeight, root);
}
/**
* @dev handles the store for a new report in a bucket
* @param gcaTotalNewGCC - the total amount of new gcc that the gca is reporting
* @param gcaTotalGlwRewardsWeight - the total amount of glw rewards weight that the gca is reporting
* @param gcaTotalGRCRewardsWeight - the total amount of grc rewards weight that the gca is reporting
* @param bucketId - the id of the bucket
* @param foundIndex - the index of the report in the bucket
* @param gcaReportStartSlot - the start slot of the gca report
*/functionhandleGlobalBucketStateStore(uint256 gcaTotalNewGCC,
uint256 gcaTotalGlwRewardsWeight,
uint256 gcaTotalGRCRewardsWeight,
uint256 bucketId,
uint256 foundIndex,
uint256 gcaReportStartSlot
) internal{
uint256 packedGlobalState;
uint256 slot;
// solhint-disable-next-line no-inline-assemblyassembly {
mstore(0x0, bucketId)
mstore(0x20, _bucketGlobalState.slot)
slot :=keccak256(0x0, 0x40)
packedGlobalState :=sload(slot)
}
uint256 gccInBucketPlusGcaGcc = (packedGlobalState & _UINT128_MASK) + gcaTotalNewGCC;
uint256 glwWeightInBucketPlusGcaGlwWeight = (packedGlobalState >>128& _UINT64_MASK) + gcaTotalGlwRewardsWeight;
//No need to shift on `grcWeightInBucketPlusGcaGrcWeight` since the grcWeight is the last 64 bitsuint256 grcWeightInBucketPlusGcaGrcWeight = (packedGlobalState >>192) + gcaTotalGRCRewardsWeight;
if (foundIndex ==0) {
//gcc is uint128, glwWeight is uint64, grcWeight is uint64
packedGlobalState = gccInBucketPlusGcaGcc | (glwWeightInBucketPlusGcaGlwWeight <<128)
| (grcWeightInBucketPlusGcaGrcWeight <<192);
// solhint-disable-next-line no-inline-assemblyassembly {
sstore(slot, packedGlobalState)
}
return;
}
uint256 packedDataInReport;
// solhint-disable-next-line no-inline-assemblyassembly {
packedDataInReport :=sload(gcaReportStartSlot)
}
gccInBucketPlusGcaGcc -= packedDataInReport & _UINT128_MASK;
glwWeightInBucketPlusGcaGlwWeight -= (packedDataInReport >>128) & _UINT64_MASK;
//no need to mask since the grcWeight is the last 64 bits
grcWeightInBucketPlusGcaGrcWeight -= (packedDataInReport >>192);
packedGlobalState = gccInBucketPlusGcaGcc | (glwWeightInBucketPlusGcaGlwWeight <<128)
| (grcWeightInBucketPlusGcaGrcWeight <<192);
// solhint-disable-next-line no-inline-assemblyassembly {
sstore(slot, packedGlobalState)
}
}
function_transferGlow(address to, uint256 amount) internaloverride(GCASalaryHelper) {
GLOW_TOKEN.transfer(to, amount);
}
/// @dev claims the glow from inflationfunction_claimGlowFromInflation() internalvirtualoverride(GCASalaryHelper) {
GLOW_TOKEN.claimGLWFromGCAAndMinerPool();
}
/**
* @dev handles the store for a new report in a bucket
* @param bucket - the bucket to store the report in
* @param foundIndex - the index of the report in the bucket
* @param totalNewGCC - the total amount of new gcc that the gca is reporting
* @param totalGlwRewardsWeight - the total amount of glw rewards weight that the gca is reporting
* @param totalGRCRewardsWeight - the total amount of grc rewards weight that the gca is reporting
* @param root - the merkle root containing all the reports (leaves) for the period
*/functionhandleBucketStore(
IGCA.Bucket storage bucket,
uint256 foundIndex,
uint256 totalNewGCC,
uint256 totalGlwRewardsWeight,
uint256 totalGRCRewardsWeight,
bytes32 root
) internal{
//If the array was empty// we need to pushif (foundIndex ==0) {
bucket.reports.push(
IGCA.Report({
proposingAgent: msg.sender,
totalNewGCC: SafeCast.toUint128(totalNewGCC),
totalGLWRewardsWeight: SafeCast.toUint64(totalGlwRewardsWeight),
totalGRCRewardsWeight: SafeCast.toUint64(totalGRCRewardsWeight),
merkleRoot: root
})
);
//else we write the the index we found
} else {
bucket.reports[foundIndex == _INDEX_NOT_FOUND ? 0 : foundIndex] = IGCA.Report({
//Redundant sstore on {proposingAgent}
proposingAgent: msg.sender,
totalNewGCC: SafeCast.toUint128(totalNewGCC),
totalGLWRewardsWeight: SafeCast.toUint64(totalGlwRewardsWeight),
totalGRCRewardsWeight: SafeCast.toUint64(totalGRCRewardsWeight),
merkleRoot: root
});
}
}
/**
* @dev sets the gca agents
* - removes all previous gca agents
* - sets the new gca agents
*/function_setGCAs(address[] memory gcaAddresses) internal{
gcaAgents = gcaAddresses;
emit IGCA.NewGCAsAppointed(gcaAddresses);
}
/**
* @dev slashes the gca agents
* @param gcasToSlash - the gca agents to slash
*/function_slashGCAs(address[] memory gcasToSlash) internal{
unchecked {
for (uint256 i; i < gcasToSlash.length; ++i) {
GCASalaryHelper._slash(gcasToSlash[i]);
}
}
emit IGCA.GCAsSlashed(gcasToSlash);
}
/* -------------------------------------------------------------------------- *//* internal / private view functions *//* -------------------------------------------------------------------------- *//**
* @dev checks if the weights are valid
* - this check is necessary to ensure that GCA's cant cause the weights to overflow in their reports
* - and also ensures that the total new gcc minted isnt greated than 200 billion * number of gcas
* @param totalGlwRewardsWeight - the total amount of glw rewards weight
* @param totalGRCRewardsWeight - the total amount of grc rewards weight
* @param totalNewGCC - the total amount of new gcc
*/functioncheckBucketSubmissionArithmeticInputs(uint256 totalGlwRewardsWeight,
uint256 totalGRCRewardsWeight,
uint256 totalNewGCC
) internalpure{
//Arithmetic Checks//To make sure that the weight's dont result in an overflow,// we need to make sure that the total weight is less than 1/5 of the max uint64if (totalGlwRewardsWeight > _UINT64_MAX_DIV5) _revert(IGCA.ReportWeightMustBeLTUint64MaxDiv5.selector);
if (totalGRCRewardsWeight > _UINT64_MAX_DIV5) _revert(IGCA.ReportWeightMustBeLTUint64MaxDiv5.selector);
//Max of 1 trillion GCC per week//Since there are a max of 5 GCA's at any point in time,// this means that the max amount of GCC that can be minted per GCA is 200 Billionif (totalNewGCC > _200_BILLION) _revert(IGCA.ReportGCCMustBeLT200Billion.selector);
}
/**
* @dev finds the index of the report in the bucket
* - if the report is not found, it returns _INDEX_NOT_FOUND
* @param reportArrayStartSlot - the storage start slot of the reports
* @param len - the length of the reports array
* @return foundIndex - the index of the report in the bucket
* @return gcaReportStartSlot - the start slot of the report in storage
*/functionfindReportIndexOrUintMax(uint256 reportArrayStartSlot, uint256 len)
internalviewreturns (uint256 foundIndex, uint256)
{
unchecked {
{
for (uint256 i; i < len; ++i) {
address proposingAgent;
// solhint-disable-next-line no-inline-assemblyassembly {
//the address is stored in the [0,1,2] - 3rd slot// ^//that means the slot to read from is i*3 + startSlot + 2
proposingAgent :=sload(add(reportArrayStartSlot, 2))
reportArrayStartSlot :=add(reportArrayStartSlot, 3)
}
if (proposingAgent ==msg.sender) {
foundIndex = i ==0 ? _INDEX_NOT_FOUND : i;
// solhint-disable-next-line no-inline-assemblyassembly {
//since we incremented the slot by 3, we need to decrement it by 3 to get the start of the packed data
reportArrayStartSlot :=sub(reportArrayStartSlot, 3)
}
break;
}
}
}
}
//Increased readabilityuint256 gcaReportStartSlot = reportArrayStartSlot;
return (foundIndex, gcaReportStartSlot);
}
/**
* @notice returns the length (in seconds) of a bucket duration
* @return the length (in seconds) of a bucket duration
*/functionbucketDuration() internalpurevirtualoverridereturns (uint256) {
return _BUCKET_DURATION;
}
/**
* @dev an efficient function to get the merkle root of a bucket at a given index
* @param bucketId - the bucket id to find the root for
* @param index - the index of the report in the reports[] array for the bucket
* @return root - the merkle root for the report for the given bucket at the specific index
*/functiongetBucketRootAtIndexEfficient(uint256 bucketId, uint256 index) internalviewreturns (bytes32 root) {
// solhint-disable-next-line no-inline-assemblyassembly {
//Store the keymstore(0x0, bucketId)
//Store the slotmstore(0x20, _buckets.slot)
//Find storage slot where bucket startslet slot :=keccak256(0x0, 0x40)
//Reports start at the second slot so we add 1
slot :=add(slot, 1)
//Check lengthlet len :=sload(slot)
ifgt(add(index, 1), len) {
//cast sig "BucketIndexOutOfBounds()"mstore(0x0, 0xfdbe8876)
revert(0x1c, 0x04)
}
mstore(0x0, slot)
//calculate slot for the reports
slot :=keccak256(0x0, 0x20)
//slot is now the start of the reports//each report is 3 slots long//So, our index needs to be multiplied by 3
index :=mul(index, 3)
//the root is the second slot so we need to add 1
index :=add(index, 1)
//Calculate the slot to sload from
slot :=add(slot, index)
//sload the root
root :=sload(slot)
}
if (uint256(root) ==0) _revert(IGCA.EmptyRoot.selector);
}
/**
* @dev a function that reverts if proposal hashes are not up to date
*/function_revertIfFrozen() internalview{
if (_isFrozen()) _revert(IGCA.ProposalHashesNotUpdated.selector);
}
/// @dev returns true if the contract is frozen, false otherwisefunction_isFrozen() internalviewreturns (bool) {
uint256 len = proposalHashes.length;
//If no proposals have been submitted, we don't need to checkif (len ==0) returnfalse;
if (len != nextProposalIndexToUpdate) {
returntrue;
}
returnfalse;
}
/**
* @dev checks if a bucket is finalized
* @param bucketLastUpdatedNonce the last updated nonce of the bucket
* @param bucketFinalizationTimestamp the finalization timestamp of the bucket
* @param _slashNonce the current slash nonce
* @return true if the bucket is finalized, false otherwise
*/function_isBucketFinalized(uint256 bucketLastUpdatedNonce,
uint256 bucketFinalizationTimestamp,
uint256 _slashNonce
) internalviewreturns (bool) {
//If the bft(bucket finalization timestamp) = 0,// that means that bucket hasn't been initialized yet// so that also means it's not finalized.// this also means that we return false if// the bucket was indeed finalized. but it was never pushed to// in that case, we return a false negative,// but it has no side effects since the bucket is empty// and no one can claim rewards from it.if (bucketFinalizationTimestamp ==0) returnfalse;
//This checks if the bucket has finalized in regards to the timestamp storedbool finalized =block.timestamp>= bucketFinalizationTimestamp;
//If there hasn't been a slash event and the bucket is finalized// then we return true;if (bucketLastUpdatedNonce == _slashNonce) {
if (finalized) returntrue;
}
//If there has been a slash eventif (bucketLastUpdatedNonce != _slashNonce) {
//If the slash event happened after the bucket's finalization timestamp//That means the bucket had already been finalized and we can return true;if (slashNonceToSlashTimestamp[bucketLastUpdatedNonce] >= bucketFinalizationTimestamp) {
if (finalized) {
returntrue;
}
}
}
returnfalse;
}
/**
* @dev will underflow and revert if slashNonceToSlashTimestamp[_slashNonce] has not yet been written to
* @dev returns the WCEIL for the given slash nonce.
* @dev WCEIL is equal to the end bucket submission time for the bucket that the slash nonce was slashed in + 2 weeks
* @dev it's two weeks instead of one to make sure there is adequate time for GCA's to submit reports
* @dev the finalization timestamp is the end of the submission period + 1 week
*/function_WCEIL(uint256 _slashNonce) internalviewreturns (uint256) {
//This will underflow if slashNonceToSlashTimestamp[_slashNonce] has not yet been written touint256 bucketNonceWasSlashedAt =
(slashNonceToSlashTimestamp[_slashNonce] - GENESIS_TIMESTAMP) / bucketDuration();
//the end submission period is the bucket + 2return (bucketNonceWasSlashedAt +2) * bucketDuration() + GENESIS_TIMESTAMP;
}
functiongetPackedBucketGlobalState(uint256 bucketId) internalviewreturns (uint256 packedGlobalState) {
// solhint-disable-next-line no-inline-assemblyassembly {
mstore(0x0, bucketId)
mstore(0x20, _bucketGlobalState.slot)
let slot :=keccak256(0x0, 0x40)
packedGlobalState :=sload(slot)
}
}
/**
* @notice calculates the bucket submission end timestamp
* @param bucketId - the id of the bucket
* @param bucketOriginNonce - the original nonce of the bucket
* @param bucketLastUpdatedNonce - the last updated nonce of the bucket
* @param _slashNonce - the current slash nonce
* @param bucketFinalizationTimestamp - the finalization timestamp of the bucket
* @dev this function is used to calculate the bucket submission start timestamp
* - under normal conditions, a bucket should be finalized 2 weeks after its submission period has open
* - however, if a slash event occurs, the bucket submission start timestamp will be shifted to the WCEIL() of the slash nonce
* - if the slash event occurs after the bucket has been finalized, the bucket submission start timestamp will be shifted to the WCEIL() of the slash nonce
* - this is to ensure the gcas have enough time to reinstante proper reports
*/function_calculateBucketSubmissionEndTimestamp(uint256 bucketId,
uint256 bucketOriginNonce,
uint256 bucketLastUpdatedNonce,
uint256 _slashNonce,
uint256 bucketFinalizationTimestamp
) internalviewreturns (uint256) {
// if the bucket has never been initializedif (bucketFinalizationTimestamp ==0) return bucketEndSubmissionTimestampNotReinstated(bucketId);
if (bucketOriginNonce == _slashNonce) return bucketEndSubmissionTimestampNotReinstated(bucketId);
if (bucketLastUpdatedNonce == _slashNonce) return bucketFinalizationTimestamp;
uint256 bucketSubmissionStartTimestamp = bucketStartSubmissionTimestampNotReinstated(bucketId);
//If the slash occurred between the start of the submission period and the bucket finalization timestampfor (uint256 i = bucketLastUpdatedNonce; i < _slashNonce;) {
if (_between(slashNonceToSlashTimestamp[i], bucketSubmissionStartTimestamp, bucketFinalizationTimestamp)) {
bucketSubmissionStartTimestamp = _WCEIL(i);
} else {
break;
}
unchecked {
++i;
}
}
return bucketSubmissionStartTimestamp;
}
/**
* @dev checks if `a` is between `b` and `c`
* @param a the number to check
* @param b the lower bound
* @param c the upper bound
* @return true if `a` is between `b` and `c`, false otherwise
*/function_between(uint256 a, uint256 b, uint256 c) internalpurereturns (bool) {
return a >= b && a <= c;
}
function_genesisTimestamp() internalviewvirtualoverride(GCASalaryHelper) returns (uint256) {
return GENESIS_TIMESTAMP;
}
/**
* @dev calculates the shift to apply to the bitpacked compensation plans
* @param index - the index of the gca agent
* @return the shift to apply to the bitpacked compensation plans
*/function_calculateShift(uint256 index) privatepurereturns (uint256) {
return index * _UINT24_SHIFT;
}
/* -------------------------------------------------------------------------- *//* functions to override *//* -------------------------------------------------------------------------- *//// @dev this must be overriden to return the current week in the parent contractfunction_currentWeek() internalviewvirtualoverride(GCASalaryHelper) returns (uint256) {
// solhint-disable-next-line reason-string, custom-errorsrevert();
}
/// @dev returns the domain seperator for the current contract, must be overridenfunction_domainSeperatorV4Main() internalviewvirtualoverride(GCASalaryHelper) returns (bytes32) {
// solhint-disable-next-line reason-string, custom-errorsrevert();
}
}
Contract Source Code
File 7 of 29: GCASalaryHelper.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.19;import {VestingMathLib} from"@/libraries/VestingMathLib.sol";
import {SignatureChecker} from"@openzeppelin/contracts/utils/cryptography/SignatureChecker.sol";
import {_BUCKET_DURATION} from"@/Constants/Constants.sol";
abstractcontractGCASalaryHelper{
/* -------------------------------------------------------------------------- *//* errors *//* -------------------------------------------------------------------------- */errorHashesNotUpdated();
errorCannotSetNonceToZero();
errorInvalidRelaySignature();
errorInvalidGCAHash();
errorInvalidUserIndex();
errorInvalidShares();
errorSlashedAgentCannotClaimReward();
/* -------------------------------------------------------------------------- *//* constants *//* -------------------------------------------------------------------------- *//// @dev 10_000 GLW Per Week available as rewards to all GCAsuint256publicconstant REWARDS_PER_SECOND_FOR_ALL =10_000ether/uint256(7days);
/**
* @notice the amount of shares required per agent when submitting a compensation plan
* @dev this is not strictly enforced, but rather the
* the total shares in a comp plan must equal the SHARES_REQUIRED_PER_COMP_PLAN
*/uint256publicconstant SHARES_REQUIRED_PER_COMP_PLAN =100_000;
/// @dev the type hash for a claim payout relay permitbytes32publicconstant CLAIM_PAYOUT_RELAY_PERMIT_TYPEHASH =keccak256("ClaimPayoutRelay(address relayer,uint256 paymentNonce,uint256 relayNonce)");
/* -------------------------------------------------------------------------- *//* state vars *//* -------------------------------------------------------------------------- *//// Private payment nonce./// Private payment nonce only needs to be incremented when a gca submits a new overriding comp plan./// The public paymentNonce() function is also incremented whenever there's a slash event/// The public paymentNonce() function should be the _privatePaymentNonce + proposalHashes.length;uint256private _privatePaymentNonce;
/* -------------------------------------------------------------------------- *//* mappings *//* -------------------------------------------------------------------------- *///payment nonce -> gca index -> comp planmapping(uint256=>mapping(uint256=>uint32[5])) private _paymentNonceToCompensationPlan;
//payment nonce -> shift start timestampmapping(uint256=>uint256) private _paymentNonceToShiftStartTimestamp;
// agent -> payment nonce -> amount already withdrawnmapping(address=>mapping(uint256=>uint256)) public amountWithdrawnAtPaymentNonce;
/// @dev slashed agents cannot claim rewardsmapping(address=>bool) public isSlashed;
// paymentNonce -> keccak256(abi.encodePacked(address[]));mapping(uint256=>bytes32) private _paymentNonceToGCAs;
/// @notice the next nonce to use in the relay signaturemapping(address=>uint256) public nextRelayNonce;
/* -------------------------------------------------------------------------- *//* constructor *//* -------------------------------------------------------------------------- *//**
* @param startingAgents the starting gca agents
*/constructor(address[] memory startingAgents) payable{
if (startingAgents.length==0) return;
_paymentNonceToGCAs[0] =keccak256(abi.encodePacked(startingAgents));
unchecked {
for (uint256 i; i < startingAgents.length; ++i) {
//starting payment nonce is 0//so we set the comp plan for all the agents to the identity matrix//for the first payment nonce
_paymentNonceToCompensationPlan[0][i] = defaultCompPlan(i);
}
}
}
/* -------------------------------------------------------------------------- *//* claiming payout *//* -------------------------------------------------------------------------- *//**
* @dev we don't need a deadline on the sig since the relayer cant make the funds go anywhere else,
* except for the user's address.
* AND - the relayer is restricted to a certian nonce.
* @param user the user to claim the payout for
* @param paymentNonce the payment nonce to claim the payout for
* @param activeGCAsAtPaymentNonce the active gca agents at the payment nonce
* @param userIndex the index of the user in the active gca agents array
* @param claimFromInflation whether or not to claim glow from inflation
* @param sig the relay signature
*/functionclaimPayout(address user,
uint256 paymentNonce,
address[] calldata activeGCAsAtPaymentNonce,
uint256 userIndex,
bool claimFromInflation,
bytesmemory sig
) external{
if (isSlashed[user]) {
_revert(SlashedAgentCannotClaimReward.selector);
}
if (msg.sender!= user) {
bytes32 digest = createRelayDigest(msg.sender, paymentNonce, nextRelayNonce[user]++);
if (!SignatureChecker.isValidSignatureNow(user, digest, sig)) {
_revert(InvalidRelaySignature.selector);
}
}
if (claimFromInflation) {
_claimGlowFromInflation();
}
(uint256 withdrawableAmount,, uint256 amountAlreadyWithdrawn) =
getPayoutData(user, paymentNonce, activeGCAsAtPaymentNonce, userIndex);
amountWithdrawnAtPaymentNonce[user][paymentNonce] = amountAlreadyWithdrawn + withdrawableAmount;
_transferGlow(user, withdrawableAmount);
}
/* -------------------------------------------------------------------------- *//* view functions *//* -------------------------------------------------------------------------- *//**
* @notice returns the bytes32 digest used for the relay signature
* @param relayer the relayer that is being granted permission
* @param paymentNonce the payment nonce that the relayer is being granted permission for
* @param relayNonce the relay nonce that the relayer is being granted permission for
* @return digest - the bytes32 digest
*/functioncreateRelayDigest(address relayer, uint256 paymentNonce, uint256 relayNonce)
publicviewreturns (bytes32)
{
bytes32 digest =keccak256(
abi.encodePacked(
"\x19\x01",
_domainSeperatorV4Main(),
keccak256(abi.encode(CLAIM_PAYOUT_RELAY_PERMIT_TYPEHASH, relayer, paymentNonce, relayNonce))
)
);
return digest;
}
/**
* @notice gets the payout data for an agent
* @param user the user to get the payout data for
* @param paymentNonce the payment nonce to get the payout data for
* @param activeGCAsAtPaymentNonce the active gca agents at the payment nonce
* @param userIndex the index of the user in the active gca agents array
* @dev the function must take in the activeGCAsAtPaymentNonce array to prevent
* - a user from submitting a different array of gca agents
* - and receiving false payout data
*/functiongetPayoutData(address user,
uint256 paymentNonce,
address[] calldata activeGCAsAtPaymentNonce,
uint256 userIndex
) publicviewreturns (uint256 withdrawableAmount, uint256 slashableAmount, uint256 amountAlreadyWithdrawn) {
if (keccak256(abi.encodePacked(activeGCAsAtPaymentNonce)) != _paymentNonceToGCAs[paymentNonce]) {
_revert(InvalidGCAHash.selector);
}
if (user != activeGCAsAtPaymentNonce[userIndex]) {
_revert(InvalidUserIndex.selector);
}
uint256 userShares;
uint256 len = activeGCAsAtPaymentNonce.length;
unchecked {
for (uint256 i; i < len; ++i) {
userShares += _paymentNonceToCompensationPlan[paymentNonce][i][userIndex];
}
}
amountAlreadyWithdrawn = amountWithdrawnAtPaymentNonce[user][paymentNonce];
uint256 shiftStartTimestamp = _paymentNonceToShiftStartTimestamp[paymentNonce];
uint256 shiftEndTimestamp = _paymentNonceToShiftStartTimestamp[paymentNonce +1];
if (shiftEndTimestamp ==0) {
shiftEndTimestamp =block.timestamp;
} else {
shiftEndTimestamp = _min(shiftEndTimestamp, block.timestamp);
}
uint256 secondsWorked = shiftEndTimestamp - shiftStartTimestamp;
uint256 secondsStopped;
if (block.timestamp> shiftEndTimestamp) {
secondsStopped =block.timestamp- shiftEndTimestamp;
}
uint256 totalShares = len * SHARES_REQUIRED_PER_COMP_PLAN;
uint256 rewardPerSecond = userShares * REWARDS_PER_SECOND_FOR_ALL / totalShares;
(withdrawableAmount, slashableAmount) = VestingMathLib.calculateWithdrawableAmountAndSlashableAmount(
rewardPerSecond, secondsWorked, secondsStopped, amountAlreadyWithdrawn
);
return (withdrawableAmount, slashableAmount, amountAlreadyWithdrawn);
}
/**
* @notice returns the shift start timestamp for a payment nonce
* @param nonce the payment nonce to get the shift start timestamp for
* @return shiftStartTimestamp - the shift start timestamp for the payment nonce or 0 if it does not exist
*/functionpaymentNonceToShiftStartTimestamp(uint256 nonce) externalviewreturns (uint256) {
return _paymentNonceToShiftStartTimestamp[nonce];
}
/**
* @notice returns the gca agents hash for a payment nonce
* @param nonce the payment nonce to get the gca agents hash for
* @return gcaHash - the gca agents hash for the payment nonce
*/functionpayoutNonceToGCAHash(uint256 nonce) externalviewreturns (bytes32) {
return _paymentNonceToGCAs[nonce];
}
/**
* @notice returns the comp plan for a payment nonce and gca index
* @param nonce the payment nonce to get the comp plan for
* @param index the gca index to get the comp plan for
* @return shares - the comp plan for the payment nonce and gca index
*/functionpaymentNonceToCompensationPlan(uint256 nonce, uint256 index) externalviewreturns (uint32[5] memory) {
return _paymentNonceToCompensationPlan[nonce][index];
}
/**
* @notice returns the current payment nonce in storage
* @return paymentNonce - the current payment nonce
*/functionpaymentNonce() publicviewreturns (uint256) {
return _privatePaymentNonce;
}
/// @dev should only be used once in the constructor of GCAfunctionsetZeroPaymentStartTimestamp() internal{
_paymentNonceToShiftStartTimestamp[0] = _genesisTimestamp();
}
/* -------------------------------------------------------------------------- *//* internal *//* -------------------------------------------------------------------------- *//**
* @notice slashes an agent
* @param user the user to slash
*/function_slash(address user) internal{
isSlashed[user] =true;
}
/**
* @param compPlan the comp plans to submit
* @param indexOfGCA the index of the gca submitting the comp plan
* @param totalGCAs the total number of gca agents
*/functionhandleCompensationPlanSubmission(uint32[5] calldata compPlan, uint256 indexOfGCA, uint256 totalGCAs)
internal{
uint256 totalShares;
for (uint256 i; i < totalGCAs; ++i) {
totalShares += compPlan[i];
}
if (totalShares != SHARES_REQUIRED_PER_COMP_PLAN) {
_revert(InvalidShares.selector);
}
//Get the current payment nonce.uint256 _paymentNonce = paymentNonce();
uint256 nextPaymentNonce = _paymentNonce +1;
uint256 currentShiftStartTimestamp = _paymentNonceToShiftStartTimestamp[_paymentNonce];
/**
* When we create a new comp plan, we increment the payment nonce by 1.
* We only increment the nonce when the comp. period has actually begun.
*
* For example, if we're in comp period 1, and we submit a new comp plan for comp period 2,
* we initialize comp period 2 to start at block.timestamp + `bucketDuration()`,
* Therefore, there is a 1 week period where the comp plan is not active and comp plan 1
* is still being acted upon, BUT, the nonce has already been incremented.
*
* Therefore, that means that {currentShiftStartTimestamp} is the start of period 2,
* and if block.timestamp is LESS than that, that means that comp period 2 has not started
* and all comp. plans that are submitted will have an effect on comp period 2.
*
* Once block.timestamp is greater than {currentShiftStartTimestamp}, that means that
* comp period 2 has started, and all comp plans submitted will have an effect on comp period 3.
*
* This keeps going on and on and on.
*//**
* This evaluates as the initializer for the comp plan being proposed.
*/if (block.timestamp> currentShiftStartTimestamp) {
//We need to increment the nonce
_paymentNonceToShiftStartTimestamp[nextPaymentNonce] =block.timestamp+ bucketDuration();
//Make sure that all the hashes are updatedbytes32 gcaHash = _paymentNonceToGCAs[_paymentNonce];
_paymentNonceToGCAs[nextPaymentNonce] = gcaHash;
for (uint256 i; i < totalGCAs; ++i) {
if (i == indexOfGCA) {
_paymentNonceToCompensationPlan[nextPaymentNonce][i] = compPlan;
} else {
_paymentNonceToCompensationPlan[nextPaymentNonce][i] =
_paymentNonceToCompensationPlan[_paymentNonce][i];
}
}
_privatePaymentNonce = nextPaymentNonce;
return;
}
//If we are still in the current week, we need to put the comp plan//in the current payment nonce (which is the next upcoming plan).
_paymentNonceToCompensationPlan[_paymentNonce][indexOfGCA] = compPlan;
}
/**
* @param gcaAgents the gca agents
* @dev handles incrementing payment nonce,
* - setting the gca agents hash
* - setting the shift start timestamp
* - setting the comp plans to the identity matrix
* - (i.e. each gca agent gets 100_000 shares)
*/functioncallbackInElectionEvent(address[] memory gcaAgents) internal{
uint256 _paymentNonce = paymentNonce();
uint256 currentShiftStartTimestamp = _paymentNonceToShiftStartTimestamp[_paymentNonce];
//If the current bucket has started, we move to the next bucketif (block.timestamp> currentShiftStartTimestamp) {
++_paymentNonce;
_privatePaymentNonce = _paymentNonce;
}
//Set the gca agents hash
_paymentNonceToGCAs[_paymentNonce] =keccak256(abi.encodePacked(gcaAgents));
_paymentNonceToShiftStartTimestamp[_paymentNonce] =block.timestamp;
//All the reports in here need to be set to a identity matrixunchecked {
for (uint256 i; i < gcaAgents.length; ++i) {
_paymentNonceToCompensationPlan[_paymentNonce][i] = defaultCompPlan(i);
}
}
}
/* -------------------------------------------------------------------------- *//* internal view/pure functions *//* -------------------------------------------------------------------------- *//**
* @notice returns the default comp plan for a gca agent
* @param gcaIndex the index of the gca agent
* @dev the default comp plan is the identity matrix
* @return shares - the default comp plan for a gca agent at index {gcaIndex}
*/functiondefaultCompPlan(uint256 gcaIndex) internalpurereturns (uint32[5] memory shares) {
shares[gcaIndex] =uint32(SHARES_REQUIRED_PER_COMP_PLAN);
return shares;
}
/**
* @notice returns the bucket duration
* @return bucketDuration - the bucket duration
*/functionbucketDuration() internalpurevirtualreturns (uint256) {
return _BUCKET_DURATION;
}
/* -------------------------------------------------------------------------- *//* functions to override *//* -------------------------------------------------------------------------- *//**
* @notice claims glow from inflation
* @dev the function must be overriden by the parent contract
*/function_claimGlowFromInflation() internalvirtual;
/**
* @notice returns the domain seperator for the relay signature
* @dev the function must be overriden by the parent contract
* @return domainSeperator - the domain seperator for the relay signature
*/function_domainSeperatorV4Main() internalviewvirtualreturns (bytes32);
/**
* @notice returns the genesis timestamp of the glow protocol
* @return genesisTimestamp - the genesis timestamp of the glow protocol
* @dev the function must be overriden by the parent contract
*/function_genesisTimestamp() internalviewvirtualreturns (uint256);
/**
* @notice returns the current week
* @return week - the current week
* @dev the function must be overriden by the parent contract
*/function_currentWeek() internalviewvirtualreturns (uint256);
/**
* @notice transfers glow to an address
* @param to the address to transfer glow to
* @param amount the amount of glow to transfer
* @dev the function must be overriden by the parent contract
*/function_transferGlow(address to, uint256 amount) internalvirtual;
/* -------------------------------------------------------------------------- *//* utils *//* -------------------------------------------------------------------------- *//**
* @dev returns the min of (a,b)
* @param a the first number
* @param b the second number
* @return min - the min of (a,b)
*/function_min(uint256 a, uint256 b) internalpurereturns (uint256) {
return a < b ? a : b;
}
/**
* @notice More efficiently reverts with a bytes4 selector
* @param selector The selector to revert with
*/function_revert(bytes4 selector) internalpure{
// solhint-disable-next-line no-inline-assemblyassembly {
mstore(0x0, selector)
revert(0x0, 0x04)
}
}
}
Contract Source Code
File 8 of 29: IERC1271.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts v4.4.1 (interfaces/IERC1271.sol)pragmasolidity ^0.8.20;/**
* @dev Interface of the ERC1271 standard signature validation method for
* contracts as defined in https://eips.ethereum.org/EIPS/eip-1271[ERC-1271].
*/interfaceIERC1271{
/**
* @dev Should return whether the signature provided is valid for the provided data
* @param hash Hash of the data to be signed
* @param signature Signature byte array associated with _data
*/functionisValidSignature(bytes32 hash, bytesmemory signature) externalviewreturns (bytes4 magicValue);
}
Contract Source Code
File 9 of 29: IERC20.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC20/IERC20.sol)pragmasolidity ^0.8.20;/**
* @dev Interface of the ERC20 standard as defined in the EIP.
*/interfaceIERC20{
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/eventTransfer(addressindexedfrom, addressindexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/eventApproval(addressindexed owner, addressindexed spender, uint256 value);
/**
* @dev Returns the value of tokens in existence.
*/functiontotalSupply() externalviewreturns (uint256);
/**
* @dev Returns the value of tokens owned by `account`.
*/functionbalanceOf(address account) externalviewreturns (uint256);
/**
* @dev Moves a `value` amount of tokens from the caller's account to `to`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/functiontransfer(address to, uint256 value) externalreturns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/functionallowance(address owner, address spender) externalviewreturns (uint256);
/**
* @dev Sets a `value` amount of tokens as the allowance of `spender` over the
* caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/functionapprove(address spender, uint256 value) externalreturns (bool);
/**
* @dev Moves a `value` amount of tokens from `from` to `to` using the
* allowance mechanism. `value` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/functiontransferFrom(addressfrom, address to, uint256 value) externalreturns (bool);
}
Contract Source Code
File 10 of 29: IERC20Permit.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC20/extensions/IERC20Permit.sol)pragmasolidity ^0.8.20;/**
* @dev Interface of the ERC20 Permit extension allowing approvals to be made via signatures, as defined in
* https://eips.ethereum.org/EIPS/eip-2612[EIP-2612].
*
* Adds the {permit} method, which can be used to change an account's ERC20 allowance (see {IERC20-allowance}) by
* presenting a message signed by the account. By not relying on {IERC20-approve}, the token holder account doesn't
* need to send a transaction, and thus is not required to hold Ether at all.
*/interfaceIERC20Permit{
/**
* @dev Sets `value` as the allowance of `spender` over ``owner``'s tokens,
* given ``owner``'s signed approval.
*
* IMPORTANT: The same issues {IERC20-approve} has related to transaction
* ordering also apply here.
*
* Emits an {Approval} event.
*
* Requirements:
*
* - `spender` cannot be the zero address.
* - `deadline` must be a timestamp in the future.
* - `v`, `r` and `s` must be a valid `secp256k1` signature from `owner`
* over the EIP712-formatted function arguments.
* - the signature must use ``owner``'s current nonce (see {nonces}).
*
* For more information on the signature format, see the
* https://eips.ethereum.org/EIPS/eip-2612#specification[relevant EIP
* section].
*/functionpermit(address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) external;
/**
* @dev Returns the current nonce for `owner`. This value must be
* included whenever a signature is generated for {permit}.
*
* Every successful call to {permit} increases ``owner``'s nonce by one. This
* prevents a signature from being used multiple times.
*/functionnonces(address owner) externalviewreturns (uint256);
/**
* @dev Returns the domain separator used in the encoding of the signature for {permit}, as defined by {EIP712}.
*/// solhint-disable-next-line func-name-mixedcasefunctionDOMAIN_SEPARATOR() externalviewreturns (bytes32);
}
Contract Source Code
File 11 of 29: IERC5267.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (interfaces/IERC5267.sol)pragmasolidity ^0.8.20;interfaceIERC5267{
/**
* @dev MAY be emitted to signal that the domain could have changed.
*/eventEIP712DomainChanged();
/**
* @dev returns the fields and values that describe the domain separator used by this contract for EIP-712
* signature.
*/functioneip712Domain()
externalviewreturns (bytes1 fields,
stringmemory name,
stringmemory version,
uint256 chainId,
address verifyingContract,
bytes32 salt,
uint256[] memory extensions
);
}
Contract Source Code
File 12 of 29: IGCA.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.19;interfaceIGCA{
/* -------------------------------------------------------------------------- *//* errors *//* -------------------------------------------------------------------------- */errorNotGCA();
errorCallerNotGCA();
errorCompensationPlanLengthMustBeGreaterThanZero();
errorInsufficientShares();
errorNoBalanceToPayout();
errorCallerNotGovernance();
errorProposalHashesNotUpdated();
errorProposalHashDoesNotMatch();
errorIndexDoesNotMatchNextProposalIndex();
errorProposalHashesEmpty();
errorProposalAlreadyUpdated();
errorBucketAlreadyFinalized();
errorReportGCCMustBeLT200Billion();
errorReportWeightMustBeLTUint64MaxDiv5();
errorBucketSubmissionNotOpen();
errorBucketSubmissionEnded();
errorEmptyRoot();
errorCallerNotGCAAtIndex();
errorGCCAlreadySet();
errorBucketIndexOutOfBounds();
/* -------------------------------------------------------------------------- *//* structs *//* -------------------------------------------------------------------------- *//**
* @dev a struct to represent a compensation plan
* @dev packed into a single uint256
* @param shares - the amount of shares to be distributed
* @param agent - the address of the gca agent to receive the shares
*/structICompensation {
uint80 shares;
address agent;
}
/**
* @dev a struct to represent a gca payout
* @param lastClaimedTimestamp - the last time the gca claimed their payout
* @param totalSlashableBalance - the total slashable balance of the gca
*/structGCAPayout {
uint64 lastClaimedTimestamp;
uint64 maxClaimTimestamp;
uint128 totalSlashableBalance;
}
/**
* @dev a struct to represent a report
* @param totalNewGCC - the total amount of new gcc
* @param totalGLWRewardsWeight - the total amount of glw rewards weight
* @param totalGRCRewardsWeight - the total amount of grc rewards weight
* @param merkleRoot - the root containing all the reports (leaves) for the period
* - The leaf structure is as follows:
* - (address payoutWallet,uint256 glwRewardsWeight,uint256 grcRewardsWeight)
* @param proposingAgent - the address of the gca agent proposing the report
*/structReport {
uint128 totalNewGCC;
uint64 totalGLWRewardsWeight;
uint64 totalGRCRewardsWeight;
bytes32 merkleRoot;
address proposingAgent;
}
//3 slots/**
* @param originalNonce - the slash nonce in storage at the time of report submission
* @param lastUpdatedNonce - the slash nonce in storage at the time of the last report submission
* @param finalizationTimestamp - the finalization timestamp for the bucket according to the weekly bucket schedule
* @param reports - the reports for the bucket
*/structBucket {
uint64 originalNonce;
uint64 lastUpdatedNonce;
uint128 finalizationTimestamp;
Report[] reports;
}
/**
* @dev a struct to represent a bucket global state
* @dev its used as a caching mechanism to avoid iterating over all buckets
* @param totalNewGCC - the total amount of new gcc
* @param totalGLWRewardsWeight - the total amount of glw rewards weight
* @param totalGRCRewardsWeight - the total amount of grc rewards weight
*/structBucketGlobalState {
uint128 totalNewGCC;
uint64 totalGLWRewardsWeight;
uint64 totalGRCRewardsWeight;
}
/* -------------------------------------------------------------------------- *//* events *//* -------------------------------------------------------------------------- *//**
* @dev Emitted when a gca submits a new compensation plan.
* @param agent - the address of the gca agent proposing
* @param plan - the compensation plan of the agent
*/eventCompensationPlanSubmitted(addressindexed agent, uint32[5] plan);
/**
* @dev Emitted when a gca claims their payout
* @param agent - the address of the gca agent claiming
* @param amount - the amount of tokens claimed
* @param totalSlashableBalance - the total slashable balance of the gca
*/eventGCAPayoutClaimed(addressindexed agent, uint256 amount, uint256 totalSlashableBalance);
/**
* @dev Emitted when a proposal hash is acted upon
* @param index - the index of the proposal hash inside the {proposalHashes} array
* @param proposalHash - the proposal hash
*/eventProposalHashUpdate(uint256indexed index, bytes32 proposalHash);
/**
* @dev emitted when a proposal hash is pushed
* @param proposalHash - the proposal hash
*/eventProposalHashPushed(bytes32 proposalHash);
/**
* @dev Emitted when governacne updates the {requirementsHash}
* @param requirementsHash - the new requirements hash gcas must abide by
*/eventRequirementsHashUpdated(bytes32 requirementsHash);
/**
* @dev emitted when new GCAs are appointed
* @dev the new GCAs completely replace the old ones
* @param newGcas - the new GCAs
*/eventNewGCAsAppointed(address[] newGcas);
/**
* @dev emitted when GCAs are slashed
* @param slashedGcas - the slashed GCAs
*/eventGCAsSlashed(address[] slashedGcas);
/**
* @notice emitted when a GCA submits a report for a bucket
* @param bucketId - the id of the bucket
* @param gca - the address of the gca agent submitting the report
* @param slashNonce - the slash nonce at the time of report submission
* @param totalNewGCC - the total amount of new gcc from the farms the GCA is reporting on
* @param totalGlwRewardsWeight - the total amount of glw rewards weight from the farms the GCA is reporting on
* @param totalGRCRewardsWeight - the total amount of grc rewards weight from the farms the GCA is reporting on
* @param root - the merkle root of the reports
* @param extraData - extra data to be emitted.
* - This extra data can be anything as long as the GCA communicates it to the community
* - and should ideally, if possible, be the leaves of the merkle tree
*/eventBucketSubmissionEvent(uint256indexed bucketId,
address gca,
uint256 slashNonce,
uint256 totalNewGCC,
uint256 totalGlwRewardsWeight,
uint256 totalGRCRewardsWeight,
bytes32 root,
bytes extraData
);
/* -------------------------------------------------------------------------- *//* state changing funcs *//* -------------------------------------------------------------------------- *//**
* @notice allows governance to push a hash to execute against
* @param hash - the hash to execute against
* @param incrementSlashNonce - whether or not to increment the slash nonce
* - incrementing the slash nonce means that all non-finalized buckets will be slashed
* - and must be reinstated
* @dev the hash is the abi.encode of the following:
* - the gca agents to slash
* - the new gca agents
* - the proposal creation timestamp
*/functionpushHash(bytes32 hash, bool incrementSlashNonce) external;
/**
* @notice allows governance to change the requirements hash of GCA's
* - the requirements hash represents a hash of the duties and responsibilities of a GCA
* @param _requirementsHash - the new requirements hash
*/functionsetRequirementsHash(bytes32 _requirementsHash) external;
/// @dev allows GCAs to submit a compensation planfunctionsubmitCompensationPlan(uint32[5] calldata plan, uint256 indexOfGCA) external;
/// @dev allows the contract to pull glow from inflationfunctionclaimGlowFromInflation() external;
/* -------------------------------------------------------------------------- *//* view functions *//* -------------------------------------------------------------------------- *//**
* @notice returns true if the caller is a gca
* @param account - the address of the account to check
* @return status - true if the account is a gca , false otherwise
*/functionisGCA(address account) externalviewreturns (bool);
/**
* @notice returns true if the caller is a gca
* @param account - the address of the account to check
* @param index - the index of the gca in the gca array
* @return status - true if the account is a gca , false otherwise
*/functionisGCA(address account, uint256 index) externalviewreturns (bool);
/// @return - returns all the gcasfunctionallGcas() externalviewreturns (address[] memory);
/**
* @param gca - the address of the gca to check
* @return - returns the {GCAPayout} struct data for a gca
*/functiongcaPayoutData(address gca) externalviewreturns (GCAPayout memory);
/**
* @notice - returns all proposal hashes
* @return proposalHashes - the proposal hashes
*/functiongetProposalHashes() externalviewreturns (bytes32[] memory);
/**
* @notice - returns a range of proposal hashes
* @param start - the start index
* @param end - the end index
* @return proposalHashes - the proposal hashes
*/functiongetProposalHashes(uint256 start, uint256 end) externalviewreturns (bytes32[] memory);
/**
* @notice returns the global state of a bucket
* @param bucketId - the id of the bucket
* @return the global state of a bucket
*/functionbucketGlobalState(uint256 bucketId) externalviewreturns (BucketGlobalState memory);
/**
* @notice returns the {Bucket} struct for a given week / bucketId
* @param bucketId - the id of the bucket
* @return bucket - the {Bucket} struct for a given bucketId
*/functionbucket(uint256 bucketId) externalviewreturns (Bucket memory);
/**
* @notice returns if the bucket is finalized or not
* @param bucketId - the id of the bucket
*/functionisBucketFinalized(uint256 bucketId) externalviewreturns (bool);
}
Contract Source Code
File 13 of 29: IGCC.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.19;import {IERC20} from"@openzeppelin/contracts/token/ERC20/IERC20.sol";
interfaceIGCCisIERC20{
/* -------------------------------------------------------------------------- *//* errors *//* -------------------------------------------------------------------------- */errorCallerNotGCAContract();
errorBucketAlreadyMinted();
errorCommitPermitSignatureExpired();
errorCommitSignatureInvalid();
errorCommitAllowanceUnderflow();
errorMustIncreaseCommitAllowanceByAtLeastOne();
errorCannotReferSelf();
/* -------------------------------------------------------------------------- *//* structs *//* -------------------------------------------------------------------------- *//**
* @param lastUpdatedTimestamp - the last timestamp a user earned or used nominations
* @ param amount - the amount of nominations a user has
*/structNominations {
uint64 lastUpdatedTimestamp;
uint192 amount;
}
/* -------------------------------------------------------------------------- *//* events *//* -------------------------------------------------------------------------- *//**
* @notice is emitted when a user commits credits
* @param account the account that committed credits
* @param rewardAddress the address that earned the credits and nominations
* @param gccAmount the amount of credits committed
* @param usdcEffect the amount of USDC effect
* @param impactPower - sqrt(amount gcc used in lp * amountc usdc used in lp) aka nominations granted
* @param referralAddress the address that referred the account
* - zero address if no referral
*/eventGCCCommitted(addressindexed account,
addressindexed rewardAddress,
uint256 gccAmount,
uint256 usdcEffect,
uint256 impactPower,
address referralAddress
);
/**
* @notice is emitted when a user commits USDC
* @param account the account that commit the USDC
* @param rewardAddress the address that earns nominations
* @param amount the amount of USDC commit
* @param impactPower - sqrt(amount gcc used in lp * amountc usdc used in lp) aka nominations granted
* @param referralAddress the address that referred the account
* - zero address if no referral
*/eventUSDCCommitted(addressindexed account,
addressindexed rewardAddress,
uint256 amount,
uint256 impactPower,
address referralAddress
);
/**
* @notice is emitted when a user approves a spender to commit credits on their behalf
* @param account the account that approved a spender
* @param spender the address of the spender
* @param value - new total allowance
*/eventCommitGCCAllowance(addressindexed account, addressindexed spender, uint256 value);
/* -------------------------------------------------------------------------- *//* commits *//* -------------------------------------------------------------------------- *//**
* @notice allows a user to commit credits
* @param amount the amount of credits to commit
* @param rewardAddress the address to commit the credits to
* - Rewards Address earns:
* - 1. Carbon Neutrality
* - 2. Nominations
* @param minImpactPower - the minimum amount of impact power to receive from the commitment
* @return usdcEffect the amount of USDC used in the LP position
* @return impactPower - sqrt(amount gcc used in lp * amountc usdc used in lp) aka nominations granted
*/functioncommitGCC(uint256 amount, address rewardAddress, uint256 minImpactPower)
externalreturns (uint256 usdcEffect, uint256 impactPower);
/**
* @notice allows a user to commit credits
* @param amount the amount of credits to commit
* @param rewardAddress the address to commit the credits to
* - Rewards Address earns:
* - 1. Carbon Neutrality
* - 2. Nominations
* @param referralAddress the address that referred the account
* @param minImpactPower - the minimum amount of impact power to receive from the commitment
*
* @return usdcEffect the amount of USDC used in the LP position
* @return impactPower - sqrt(amount gcc used in lp * amountc usdc used in lp) aka nominations granted
*/functioncommitGCC(uint256 amount, address rewardAddress, address referralAddress, uint256 minImpactPower)
externalreturns (uint256 usdcEffect, uint256 impactPower);
/**
* @notice the entry point for an approved entity to commit credits on behalf of a user
* @param from the address of the user to commit credits from
* @param rewardAddress the address of the reward address to commit credits to
* - Carbon Neutrality
* - Nominations
* @param amount the amount of credits to commit
* @param minImpactPower - the minimum amount of impact power to receive from the commitment
*
* @return usdcEffect the amount of USDC used in the LP position
* @return impactPower - sqrt(amount gcc used in lp * amountc usdc used in lp) aka nominations granted
*/functioncommitGCCFor(addressfrom, address rewardAddress, uint256 amount, uint256 minImpactPower)
externalreturns (uint256, uint256);
/**
* @notice the entry point for an approved entity to commit credits on behalf of a user
* @param from the address of the user to commit credits from
* @param rewardAddress the address of the reward address to commit credits to
* - Carbon Neutrality
* - Nominations
* @param amount the amount of credits to commit
* @param referralAddress - the address that referred the account
* @param usdcEffect the amount of USDC used in the LP position
* @param minImpactPower - the minimum amount of impact power to receive from the commitment
*
* @param impactPower - sqrt(amount gcc used in lp * amountc usdc used in lp) aka nominations granted
*/functioncommitGCCFor(addressfrom,
address rewardAddress,
uint256 amount,
address referralAddress,
uint256 minImpactPower
) externalreturns (uint256 usdcEffect, uint256 impactPower);
/**
* @notice the entry point for an approved entity to commit credits on behalf of a user using EIP712 signatures
* @param from the address of the user to commit credits from
* @param rewardAddress the address of the reward address to commit credits to
* - Carbon Neutrality
* - Nominations
* @param amount the amount of credits to commit
* @param deadline the deadline for the signature
* @param signature - the signature
* @param minImpactPower - the minimum amount of impact power to receive from the commitment
*
* @return usdcEffect the amount of USDC used in the LP position
* @return impactPower - sqrt(amount gcc used in lp * amountc usdc used in lp) aka nominations granted
*/functioncommitGCCForAuthorized(addressfrom,
address rewardAddress,
uint256 amount,
uint256 deadline,
bytescalldata signature,
uint256 minImpactPower
) externalreturns (uint256 usdcEffect, uint256 impactPower);
/**
* @notice the entry point for an approved entity to commit credits on behalf of a user using EIP712 signatures
* @param from the address of the user to commit credits from
* @param rewardAddress the address of the reward address to commit credits to
* - Carbon Neutrality
* - Nominations
* @param amount the amount of credits to commit
* @param deadline the deadline for the signature
* @param signature - the signature
* @param referralAddress - the address that referred the account
* @param minImpactPower - the minimum amount of impact power to receive from the commitment
*
* @return usdcEffect the amount of USDC used in the LP position
* @return impactPower - sqrt(amount gcc used in lp * amountc usdc used in lp) aka nominations granted
*/functioncommitGCCForAuthorized(addressfrom,
address rewardAddress,
uint256 amount,
uint256 deadline,
bytescalldata signature,
address referralAddress,
uint256 minImpactPower
) externalreturns (uint256 usdcEffect, uint256 impactPower);
/**
* @notice Allows a user to commit USDC
* @param amount the amount of USDC to commit
* @param rewardAddress the address to commit the USDC to
* @param referralAddress the address that referred the account
* @param minImpactPower - the minimum amount of impact power to receive from the commitment
*
* @return impactPower - sqrt(amount gcc used in lp * amountc usdc used in lp) aka nominations granted
*/functioncommitUSDC(uint256 amount, address rewardAddress, address referralAddress, uint256 minImpactPower)
externalreturns (uint256 impactPower);
/**
* @notice Allows a user to commit USDC
* @param amount the amount of USDC to commit
* @param rewardAddress the address to commit the USDC to
* @param minImpactPower - the minimum amount of impact power to receive from the commitment
*
* @return impactPower - sqrt(amount gcc used in lp * amountc usdc used in lp) aka nominations granted
*/functioncommitUSDC(uint256 amount, address rewardAddress, uint256 minImpactPower)
externalreturns (uint256 impactPower);
/**
* @notice Allows a user to commit USDC using permit
* @param amount the amount of USDC to commit
* @param rewardAddress the address to commit the USDC to
* @param referralAddress the address that referred the account
* @param deadline the deadline for the signature
* @param v the v value of the signature for permit
* @param r the r value of the signature for permit
* @param s the s value of the signature for permit
* @param minImpactPower - the minimum amount of impact power to receive from the commitment
*
* @return impactPower - sqrt(amount gcc used in lp * amountc usdc used in lp) aka nominations granted
*/functioncommitUSDCSignature(uint256 amount,
address rewardAddress,
address referralAddress,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s,
uint256 minImpactPower
) externalreturns (uint256 impactPower);
/* -------------------------------------------------------------------------- *//* minting *//* -------------------------------------------------------------------------- *//**
* @notice allows gca contract to mint GCC to the carbon credit auction
* @dev must callback to the carbon credit auction contract so it can organize itself
* @dev a bucket can only be minted from once
* @param bucketId the id of the bucket to mint from
* @param amount the amount of GCC to mint
*/functionmintToCarbonCreditAuction(uint256 bucketId, uint256 amount) external;
/* -------------------------------------------------------------------------- *//* view functions *//* -------------------------------------------------------------------------- *//**
* @notice returns a boolean indicating if the bucket has been minted
* @return if the bucket has been minted
*/functionisBucketMinted(uint256 bucketId) externalviewreturns (bool);
/**
* @notice direct setter to set transfer allowance and committing allowance in one transaction for a {spender}
* @param spender the address of the spender to set the allowances for
* @param transferAllowance the amount of transfer allowance to set
* @param committingAllowance the amount of committing allowance to set
*/functionsetAllowances(address spender, uint256 transferAllowance, uint256 committingAllowance) external;
/**
* @notice approves a spender to commit credits on behalf of the caller
* @param spender the address of the spender
* @param amount the amount of credits to approve
*/functionincreaseCommitAllowance(address spender, uint256 amount) external;
/**
* @notice decreases a spender's allowance to commit credits on behalf of the caller
* @param spender the address of the spender
* @param amount the amount of credits to decrease the allowance by
*/functiondecreaseCommitAllowance(address spender, uint256 amount) external;
/**
* @notice allows a user to increase the erc20 and committing allowance of a spender in one transaction
* @param spender the address of the spender
* @param addedValue the amount of credits to increase the allowance by
*/functionincreaseAllowances(address spender, uint256 addedValue) external;
/**
* @notice allows a user to decrease the erc20 and committing allowance of a spender in one transaction
* @param spender the address of the spender
* @param requestedDecrease the amount of credits to decrease the allowance by
*/functiondecreaseAllowances(address spender, uint256 requestedDecrease) external;
/**
* @notice returns the committing allowance for a user
* @param account the address of the account to check
* @param spender the address of the spender to check
* @return the committing allowance
*/functioncommitAllowance(address account, address spender) externalviewreturns (uint256);
/**
* @notice returns the next nonce to be used when committing credits
* - only applies when the user is using EIP712 signatures similar to Permit
* @param account the address of the account to check
*/functionnextCommitNonce(address account) externalviewreturns (uint256);
}
Contract Source Code
File 14 of 29: IGlow.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.19;import {IERC20} from"@openzeppelin/contracts/token/ERC20/IERC20.sol";
interfaceIGlowisIERC20{
/* -------------------------------------------------------------------------- *//* errors *//* -------------------------------------------------------------------------- */errorUnstakeAmountExceedsStakedBalance();
errorInsufficientClaimableBalance();
errorCannotStakeZeroTokens();
errorCannotUnstakeZeroTokens();
errorAddressAlreadySet();
errorAddressNotSet();
errorCallerNotGCA();
errorCallerNotVetoCouncil();
errorCallerNotGrantsTreasury();
errorUnstakingOnEmergencyCooldown();
errorZeroAddressNotAllowed();
errorDuplicateAddressNotAllowed();
errorCannotClaimZeroTokens();
/* -------------------------------------------------------------------------- *//* events *//* -------------------------------------------------------------------------- *//**
* @notice Emitted when a user stakes GLOW
* @param user The address of the user that is staking
* @param amount The amount staked
*/eventStake(addressindexed user, uint256 amount);
/**
* @notice Emitted when a user unstakes GLOW
* @param user The address of the user that is unstaking
* @param amount The amount unstaked
*/eventUnstake(addressindexed user, uint256 amount);
/**
* @notice Emitted when a user claims GLOW from there unstaked positions
* @param user The address of the user that is claiming
* @param amount The amount claimed
*/eventClaimUnstakedGLW(addressindexed user, uint256 amount);
/* -------------------------------------------------------------------------- *//* structs *//* -------------------------------------------------------------------------- *//**
* @notice represents an unstaked position
* @param amount The amount of GLOW unstaked
* @param cooldownEnd The timestamp when the user can reclaim the tokens
*/structUnstakedPosition {
uint192 amount;
uint64 cooldownEnd;
}
/**
* @dev helper for managing tail and head in a mapping
* @param tail the tail of the mapping
* @param head the head of the mapping
* @dev the head is the last index with data. If we need to push, we push at head + 1
* @dev there are edge cases where head == tail and there is data,
* - and conversely, head == tail and there is no data
* - These special cases are handled in the code
*/structPointers {
uint128 tail;
uint128 head;
}
/* -------------------------------------------------------------------------- *//* staking *//* -------------------------------------------------------------------------- *//**
* @notice The entry point for a user to stake glow.
* @notice A user earns 1 ratify/reject vote per glw staked
* @param amount The amount of GLOW to stake
*/functionstake(uint256 amount) external;
/**
* @notice The entry point for a user to unstake glow.
* @param amount The amount of GLOW to unstake
*/functionunstake(uint256 amount) external;
/* -------------------------------------------------------------------------- *//* inflation *//* -------------------------------------------------------------------------- *//**
* @notice Entry point for users to claim unstaked tokens that are no longer on cooldown
* @param amount The amount of tokens to claim
* @dev emits a ```ClaimUnstakedGLW``` event
*/functionclaimUnstakedTokens(uint256 amount) external;
/**
* @notice Allows the GCA and Miner Pool Contract to claim GLW from inflation
* @notice The GCA and Miner Pool Contract receives 185,00 * 1e18 tokens per week
*/functionclaimGLWFromGCAAndMinerPool() externalreturns (uint256);
/**
* @notice Allows the Veto Council to claim GLW from inflation
* @notice The veto council receives 5,000 * 1e18 tokens per week
*/functionclaimGLWFromVetoCouncil() externalreturns (uint256);
/**
* @notice Allows the Grants Treasury to claim GLW from inflation
* @notice The grants treasury receives 40,000 * 1e18 tokens per week
*/functionclaimGLWFromGrantsTreasury() externalreturns (uint256);
/* -------------------------------------------------------------------------- *//* view unstaked positions *//* -------------------------------------------------------------------------- *//**
* @notice Returns the unstaked positions of a user
* @param account The address of the user
*/functionunstakedPositionsOf(address account) externalviewreturns (UnstakedPosition[] memory);
/**
* @notice Returns the unstaked positions of a user
* @param account The address of the user
* @param start The start index of the positions to return
* @param end The end index of the positions to return
*/functionunstakedPositionsOf(address account, uint256 start, uint256 end)
externalviewreturns (UnstakedPosition[] memory);
/* -------------------------------------------------------------------------- *//* view inflation data *//* -------------------------------------------------------------------------- *//**
* @return lastClaimTimestamp The last time the GCA and Miner Pool Contract claimed GLW
* @return totalAlreadyClaimed The total amount of GLW already claimed by the GCA and Miner Pool Contract
* @return totalToClaim The total amount of GLW available to claim by the GCA and Miner Pool Contract
*/functiongcaInflationData()
externalviewreturns (uint256 lastClaimTimestamp, uint256 totalAlreadyClaimed, uint256 totalToClaim);
/**
* @return lastClaimTimestamp The last time the Veto Council claimed GLW
* @return totalAlreadyClaimed The total amount of GLW already claimed by the Veto Council
* @return totalToClaim The total amount of GLW available to claim by the Veto Council
*/functionvetoCouncilInflationData()
externalviewreturns (uint256 lastClaimTimestamp, uint256 totalAlreadyClaimed, uint256 totalToClaim);
/**
* @return lastClaimTimestamp The last time the Grants Treasury claimed GLW
* @return totalAlreadyClaimed The total amount of GLW already claimed by the Grants Treasury
* @return totalToClaim The total amount of GLW available to claim by the Grants Treasury
*/functiongrantsTreasuryInflationData()
externalviewreturns (uint256 lastClaimTimestamp, uint256 totalAlreadyClaimed, uint256 totalToClaim);
/* -------------------------------------------------------------------------- *//* view *//* -------------------------------------------------------------------------- *//**
* @return the genesis timestamp
*/functionGENESIS_TIMESTAMP() externalviewreturns (uint256);
/**
* @notice the total amount of GLW currently staked by {account}
* @return numStaked total amount of GLW currently staked by {account}
* @param account the address of the account to get the staked balance of
*/functionnumStaked(address account) externalviewreturns (uint256);
}
Contract Source Code
File 15 of 29: IMinerPool.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.19;interfaceIMinerPool{
/* -------------------------------------------------------------------------- *//* errors *//* -------------------------------------------------------------------------- */errorElectricityFuturesSignatureExpired();
errorElectricityFuturesAuctionEnded();
errorElectricityFuturesAuctionBidTooLow();
errorElectricityFuturesAuctionAuthorizationTooLong();
errorElectricityFuturesAuctionInvalidSignature();
errorElectricityFutureAuctionBidMustBeGreaterThanMinimumBid();
errorCallerNotEarlyLiquidity();
errorNotUSDCToken();
errorInvalidProof();
errorUserAlreadyClaimed();
errorAlreadyMintedToCarbonCreditAuction();
errorBucketNotFinalized();
errorCallerNotVetoCouncilMember();
errorCannotDelayEmptyBucket();
errorCannotDelayBucketThatNeedsToUpdateSlashNonce();
errorBucketAlreadyDelayed();
errorSignerNotGCA();
errorSignatureDoesNotMatchUser();
errorGlowWeightOverflow();
errorUSDCWeightOverflow();
errorGlowWeightGreaterThanTotalWeight();
errorUSDCWeightGreaterThanTotalWeight();
/* -------------------------------------------------------------------------- *//* state-changing *//* -------------------------------------------------------------------------- *//**
* @notice Allows anyone to donate USDC into the miner USDC rewards pool
* @notice the amount is split across 192 weeks starting at the current week + 16
* @param amount - amount to deposit
*/functiondonateToUSDCMinerRewardsPool(uint256 amount) external;
/**
* @notice Allows the early liquidity to donate USDC into the miner USDC rewards pool
* @notice the amount is split across 192 weeks starting at the current week + 16
* @dev the USDC token must be a valid USDC token
* @dev early liquidity will safeTransfer from the user to the miner pool
* - and then call this function directly.
* - we do this to prevent extra transfers.
* @param amount - amount to deposit
*/functiondonateToUSDCMinerRewardsPoolEarlyLiquidity(uint256 amount) external;
/**
* @notice allows a user to claim their rewards for a bucket
* @dev It's highly recommended to use a CLI or UI to call this function.
* - the proof can only be generated off-chain with access to the entire tree
* - furthermore, USDC tokens must be correctly input in order to receive rewards
* - the USDC tokens should be kept on record off-chain.
* - failure to input all correct USDC Tokens will result in lost rewards
* @param bucketId - the id of the bucket
* @param glwWeight - the weight of the user's glw rewards
* @param USDCWeight - the weight of the user's USDC rewards
* @param proof - the merkle proof of the user's rewards
* - the leaves are {payoutWallet, glwWeight, USDCWeight}
* @param index - the index of the report in the bucket
* - that contains the merkle root where the user's rewards are stored
* @param user - the address of the user
* @param claimFromInflation - whether or not to claim glow from inflation
* @param signature - the eip712 signature that allows a relayer to execute the action
* - to claim for a user.
* - the relayer is not able to access rewards under any means
* - rewards are always sent to the {user}
*/functionclaimRewardFromBucket(uint256 bucketId,
uint256 glwWeight,
uint256 USDCWeight,
bytes32[] calldata proof,
uint256 index,
address user,
bool claimFromInflation,
bytesmemory signature
) external;
/**
* @notice allows a veto council member to delay the finalization of a bucket
* @dev the bucket must already be initialized in order to be delayed
* @dev the bucket cannot be finalized in order to be delayed
* @dev the bucket can be delayed multiple times
* @param bucketId - the id of the bucket to delay
*/functiondelayBucketFinalization(uint256 bucketId) external;
/* -------------------------------------------------------------------------- *//* view *//* -------------------------------------------------------------------------- *//**
* @notice returns true if a bucket has been delayed
* @param bucketId - the id of the bucket
* @return true if the bucket has been delayed
*/functionhasBucketBeenDelayed(uint256 bucketId) externalviewreturns (bool);
/**
* @notice returns the bytes32 digest of the claim reward from bucket message
* @param bucketId - the id of the bucket
* @param glwWeight - the weight of the user's glw rewards in the leaf of the report root
* @param USDCWeight - the weight of the user's USDC rewards in the leaf of the report root
* @param index - the index of the report in the bucket
* - that contains the merkle root where the user's rewards are stored
* @param claimFromInflation - whether or not to claim glow from inflation
* @return the bytes32 digest of the claim reward from bucket message
*/functioncreateClaimRewardFromBucketDigest(uint256 bucketId,
uint256 glwWeight,
uint256 USDCWeight,
uint256 index,
bool claimFromInflation
) externalviewreturns (bytes32);
}
Contract Source Code
File 16 of 29: IVetoCouncil.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.19;interfaceIVetoCouncil{
/* -------------------------------------------------------------------------- *//* errors *//* -------------------------------------------------------------------------- */errorCallerNotGovernance();
errorNoRewards();
errorZeroAddressInConstructor();
errorMaxCouncilMembersExceeded();
/* -------------------------------------------------------------------------- *//* events *//* -------------------------------------------------------------------------- *//**
* @param oldMember The address of the member to be slashed or removed
* @param newMember The address of the new member (0 = no new member)
* @param slashOldMember Whether to slash the member or not
*/eventVetoCouncilSeatsEdited(addressindexed oldMember, addressindexed newMember, bool slashOldMember);
/**
* @dev emitted when a council member is paid out
* @param account The address of the council member
* @param amountNow The amount paid out now
* @param amountToBeVested The amount to be vested
*/eventCouncilMemberPayout(addressindexed account, uint256 amountNow, uint256 amountToBeVested);
/* -------------------------------------------------------------------------- *//* state-changing *//* -------------------------------------------------------------------------- *//**
* @notice Add or remove a council member
* @param oldMember The address of the member to be slashed or removed
* @param newMember The address of the new member (0 = no new member)
* @param slashOldMember Whether to slash the member or not
* @return - true if the council member was added or removed, false if nothing was done
* - the function should return false if the new member is already a council member
* - if the old member is not a council member, the function should return false
* - if the old member is a council member and the new member is the same as the old member, the function should return false
* - by adding a new member there would be more than 7 council members, the function should return false
*/functionaddAndRemoveCouncilMember(address oldMember, address newMember, bool slashOldMember)
externalreturns (bool);
/**
* @notice Payout the council member
* @param member The address of the council member
* @param nonce The payout nonce to claim from
* @param sync Whether to sync the vesting schedule or not
* @param members The addresses of the council members that were active at `nonce`
*/functionclaimPayout(address member, uint256 nonce, bool sync, address[] memory members) external;
/* -------------------------------------------------------------------------- *//* view *//* -------------------------------------------------------------------------- *//**
* @notice returns true if the member is a council member
* @param member The address of the member to be checked
* @return - true if the member is a council member
*/functionisCouncilMember(address member) externalviewreturns (bool);
}
Contract Source Code
File 17 of 29: Math.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/math/Math.sol)pragmasolidity ^0.8.20;/**
* @dev Standard math utilities missing in the Solidity language.
*/libraryMath{
/**
* @dev Muldiv operation overflow.
*/errorMathOverflowedMulDiv();
enumRounding {
Floor, // Toward negative infinity
Ceil, // Toward positive infinity
Trunc, // Toward zero
Expand // Away from zero
}
/**
* @dev Returns the addition of two unsigned integers, with an overflow flag.
*/functiontryAdd(uint256 a, uint256 b) internalpurereturns (bool, uint256) {
unchecked {
uint256 c = a + b;
if (c < a) return (false, 0);
return (true, c);
}
}
/**
* @dev Returns the subtraction of two unsigned integers, with an overflow flag.
*/functiontrySub(uint256 a, uint256 b) internalpurereturns (bool, uint256) {
unchecked {
if (b > a) return (false, 0);
return (true, a - b);
}
}
/**
* @dev Returns the multiplication of two unsigned integers, with an overflow flag.
*/functiontryMul(uint256 a, uint256 b) internalpurereturns (bool, uint256) {
unchecked {
// Gas optimization: this is cheaper than requiring 'a' not being zero, but the// benefit is lost if 'b' is also tested.// See: https://github.com/OpenZeppelin/openzeppelin-contracts/pull/522if (a ==0) return (true, 0);
uint256 c = a * b;
if (c / a != b) return (false, 0);
return (true, c);
}
}
/**
* @dev Returns the division of two unsigned integers, with a division by zero flag.
*/functiontryDiv(uint256 a, uint256 b) internalpurereturns (bool, uint256) {
unchecked {
if (b ==0) return (false, 0);
return (true, a / b);
}
}
/**
* @dev Returns the remainder of dividing two unsigned integers, with a division by zero flag.
*/functiontryMod(uint256 a, uint256 b) internalpurereturns (bool, uint256) {
unchecked {
if (b ==0) return (false, 0);
return (true, a % b);
}
}
/**
* @dev Returns the largest of two numbers.
*/functionmax(uint256 a, uint256 b) internalpurereturns (uint256) {
return a > b ? a : b;
}
/**
* @dev Returns the smallest of two numbers.
*/functionmin(uint256 a, uint256 b) internalpurereturns (uint256) {
return a < b ? a : b;
}
/**
* @dev Returns the average of two numbers. The result is rounded towards
* zero.
*/functionaverage(uint256 a, uint256 b) internalpurereturns (uint256) {
// (a + b) / 2 can overflow.return (a & b) + (a ^ b) /2;
}
/**
* @dev Returns the ceiling of the division of two numbers.
*
* This differs from standard division with `/` in that it rounds towards infinity instead
* of rounding towards zero.
*/functionceilDiv(uint256 a, uint256 b) internalpurereturns (uint256) {
if (b ==0) {
// Guarantee the same behavior as in a regular Solidity division.return a / b;
}
// (a + b - 1) / b can overflow on addition, so we distribute.return a ==0 ? 0 : (a -1) / b +1;
}
/**
* @notice Calculates floor(x * y / denominator) with full precision. Throws if result overflows a uint256 or denominator == 0
* @dev Original credit to Remco Bloemen under MIT license (https://xn--2-umb.com/21/muldiv)
* with further edits by Uniswap Labs also under MIT license.
*/functionmulDiv(uint256 x, uint256 y, uint256 denominator) internalpurereturns (uint256 result) {
unchecked {
// 512-bit multiply [prod1 prod0] = x * y. Compute the product mod 2^256 and mod 2^256 - 1, then use// use the Chinese Remainder Theorem to reconstruct the 512 bit result. The result is stored in two 256// variables such that product = prod1 * 2^256 + prod0.uint256 prod0 = x * y; // Least significant 256 bits of the productuint256 prod1; // Most significant 256 bits of the productassembly {
let mm :=mulmod(x, y, not(0))
prod1 :=sub(sub(mm, prod0), lt(mm, prod0))
}
// Handle non-overflow cases, 256 by 256 division.if (prod1 ==0) {
// Solidity will revert if denominator == 0, unlike the div opcode on its own.// The surrounding unchecked block does not change this fact.// See https://docs.soliditylang.org/en/latest/control-structures.html#checked-or-unchecked-arithmetic.return prod0 / denominator;
}
// Make sure the result is less than 2^256. Also prevents denominator == 0.if (denominator <= prod1) {
revert MathOverflowedMulDiv();
}
///////////////////////////////////////////////// 512 by 256 division.///////////////////////////////////////////////// Make division exact by subtracting the remainder from [prod1 prod0].uint256 remainder;
assembly {
// Compute remainder using mulmod.
remainder :=mulmod(x, y, denominator)
// Subtract 256 bit number from 512 bit number.
prod1 :=sub(prod1, gt(remainder, prod0))
prod0 :=sub(prod0, remainder)
}
// Factor powers of two out of denominator and compute largest power of two divisor of denominator. Always >= 1.// See https://cs.stackexchange.com/q/138556/92363.uint256 twos = denominator & (0- denominator);
assembly {
// Divide denominator by twos.
denominator :=div(denominator, twos)
// Divide [prod1 prod0] by twos.
prod0 :=div(prod0, twos)
// Flip twos such that it is 2^256 / twos. If twos is zero, then it becomes one.
twos :=add(div(sub(0, twos), twos), 1)
}
// Shift in bits from prod1 into prod0.
prod0 |= prod1 * twos;
// Invert denominator mod 2^256. Now that denominator is an odd number, it has an inverse modulo 2^256 such// that denominator * inv = 1 mod 2^256. Compute the inverse by starting with a seed that is correct for// four bits. That is, denominator * inv = 1 mod 2^4.uint256 inverse = (3* denominator) ^2;
// Use the Newton-Raphson iteration to improve the precision. Thanks to Hensel's lifting lemma, this also works// in modular arithmetic, doubling the correct bits in each step.
inverse *=2- denominator * inverse; // inverse mod 2^8
inverse *=2- denominator * inverse; // inverse mod 2^16
inverse *=2- denominator * inverse; // inverse mod 2^32
inverse *=2- denominator * inverse; // inverse mod 2^64
inverse *=2- denominator * inverse; // inverse mod 2^128
inverse *=2- denominator * inverse; // inverse mod 2^256// Because the division is now exact we can divide by multiplying with the modular inverse of denominator.// This will give us the correct result modulo 2^256. Since the preconditions guarantee that the outcome is// less than 2^256, this is the final result. We don't need to compute the high bits of the result and prod1// is no longer required.
result = prod0 * inverse;
return result;
}
}
/**
* @notice Calculates x * y / denominator with full precision, following the selected rounding direction.
*/functionmulDiv(uint256 x, uint256 y, uint256 denominator, Rounding rounding) internalpurereturns (uint256) {
uint256 result = mulDiv(x, y, denominator);
if (unsignedRoundsUp(rounding) &&mulmod(x, y, denominator) >0) {
result +=1;
}
return result;
}
/**
* @dev Returns the square root of a number. If the number is not a perfect square, the value is rounded
* towards zero.
*
* Inspired by Henry S. Warren, Jr.'s "Hacker's Delight" (Chapter 11).
*/functionsqrt(uint256 a) internalpurereturns (uint256) {
if (a ==0) {
return0;
}
// For our first guess, we get the biggest power of 2 which is smaller than the square root of the target.//// We know that the "msb" (most significant bit) of our target number `a` is a power of 2 such that we have// `msb(a) <= a < 2*msb(a)`. This value can be written `msb(a)=2**k` with `k=log2(a)`.//// This can be rewritten `2**log2(a) <= a < 2**(log2(a) + 1)`// → `sqrt(2**k) <= sqrt(a) < sqrt(2**(k+1))`// → `2**(k/2) <= sqrt(a) < 2**((k+1)/2) <= 2**(k/2 + 1)`//// Consequently, `2**(log2(a) / 2)` is a good first approximation of `sqrt(a)` with at least 1 correct bit.uint256 result =1<< (log2(a) >>1);
// At this point `result` is an estimation with one bit of precision. We know the true value is a uint128,// since it is the square root of a uint256. Newton's method converges quadratically (precision doubles at// every iteration). We thus need at most 7 iteration to turn our partial result with one bit of precision// into the expected uint128 result.unchecked {
result = (result + a / result) >>1;
result = (result + a / result) >>1;
result = (result + a / result) >>1;
result = (result + a / result) >>1;
result = (result + a / result) >>1;
result = (result + a / result) >>1;
result = (result + a / result) >>1;
return min(result, a / result);
}
}
/**
* @notice Calculates sqrt(a), following the selected rounding direction.
*/functionsqrt(uint256 a, Rounding rounding) internalpurereturns (uint256) {
unchecked {
uint256 result = sqrt(a);
return result + (unsignedRoundsUp(rounding) && result * result < a ? 1 : 0);
}
}
/**
* @dev Return the log in base 2 of a positive value rounded towards zero.
* Returns 0 if given 0.
*/functionlog2(uint256 value) internalpurereturns (uint256) {
uint256 result =0;
unchecked {
if (value >>128>0) {
value >>=128;
result +=128;
}
if (value >>64>0) {
value >>=64;
result +=64;
}
if (value >>32>0) {
value >>=32;
result +=32;
}
if (value >>16>0) {
value >>=16;
result +=16;
}
if (value >>8>0) {
value >>=8;
result +=8;
}
if (value >>4>0) {
value >>=4;
result +=4;
}
if (value >>2>0) {
value >>=2;
result +=2;
}
if (value >>1>0) {
result +=1;
}
}
return result;
}
/**
* @dev Return the log in base 2, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/functionlog2(uint256 value, Rounding rounding) internalpurereturns (uint256) {
unchecked {
uint256 result =log2(value);
return result + (unsignedRoundsUp(rounding) &&1<< result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 10 of a positive value rounded towards zero.
* Returns 0 if given 0.
*/functionlog10(uint256 value) internalpurereturns (uint256) {
uint256 result =0;
unchecked {
if (value >=10**64) {
value /=10**64;
result +=64;
}
if (value >=10**32) {
value /=10**32;
result +=32;
}
if (value >=10**16) {
value /=10**16;
result +=16;
}
if (value >=10**8) {
value /=10**8;
result +=8;
}
if (value >=10**4) {
value /=10**4;
result +=4;
}
if (value >=10**2) {
value /=10**2;
result +=2;
}
if (value >=10**1) {
result +=1;
}
}
return result;
}
/**
* @dev Return the log in base 10, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/functionlog10(uint256 value, Rounding rounding) internalpurereturns (uint256) {
unchecked {
uint256 result = log10(value);
return result + (unsignedRoundsUp(rounding) &&10** result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 256 of a positive value rounded towards zero.
* Returns 0 if given 0.
*
* Adding one to the result gives the number of pairs of hex symbols needed to represent `value` as a hex string.
*/functionlog256(uint256 value) internalpurereturns (uint256) {
uint256 result =0;
unchecked {
if (value >>128>0) {
value >>=128;
result +=16;
}
if (value >>64>0) {
value >>=64;
result +=8;
}
if (value >>32>0) {
value >>=32;
result +=4;
}
if (value >>16>0) {
value >>=16;
result +=2;
}
if (value >>8>0) {
result +=1;
}
}
return result;
}
/**
* @dev Return the log in base 256, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/functionlog256(uint256 value, Rounding rounding) internalpurereturns (uint256) {
unchecked {
uint256 result = log256(value);
return result + (unsignedRoundsUp(rounding) &&1<< (result <<3) < value ? 1 : 0);
}
}
/**
* @dev Returns whether a provided rounding mode is considered rounding up for unsigned integers.
*/functionunsignedRoundsUp(Rounding rounding) internalpurereturns (bool) {
returnuint8(rounding) %2==1;
}
}
Contract Source Code
File 18 of 29: MerkleProofLib.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.4;/// @notice Gas optimized verification of proof of inclusion for a leaf in a Merkle tree./// @author Solady (https://github.com/vectorized/solady/blob/main/src/utils/MerkleProofLib.sol)/// @author Modified from Solmate (https://github.com/transmissions11/solmate/blob/main/src/utils/MerkleProofLib.sol)/// @author Modified from OpenZeppelin (https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/utils/cryptography/MerkleProof.sol)libraryMerkleProofLib{
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*//* MERKLE PROOF VERIFICATION OPERATIONS *//*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*//// @dev Returns whether `leaf` exists in the Merkle tree with `root`, given `proof`.functionverify(bytes32[] memory proof, bytes32 root, bytes32 leaf)
internalpurereturns (bool isValid)
{
/// @solidity memory-safe-assemblyassembly {
ifmload(proof) {
// Initialize `offset` to the offset of `proof` elements in memory.let offset :=add(proof, 0x20)
// Left shift by 5 is equivalent to multiplying by 0x20.let end :=add(offset, shl(5, mload(proof)))
// Iterate over proof elements to compute root hash.for {} 1 {} {
// Slot of `leaf` in scratch space.// If the condition is true: 0x20, otherwise: 0x00.let scratch :=shl(5, gt(leaf, mload(offset)))
// Store elements to hash contiguously in scratch space.// Scratch space is 64 bytes (0x00 - 0x3f) and both elements are 32 bytes.mstore(scratch, leaf)
mstore(xor(scratch, 0x20), mload(offset))
// Reuse `leaf` to store the hash to reduce stack operations.
leaf :=keccak256(0x00, 0x40)
offset :=add(offset, 0x20)
ifiszero(lt(offset, end)) { break }
}
}
isValid :=eq(leaf, root)
}
}
/// @dev Returns whether `leaf` exists in the Merkle tree with `root`, given `proof`.functionverifyCalldata(bytes32[] calldata proof, bytes32 root, bytes32 leaf)
internalpurereturns (bool isValid)
{
/// @solidity memory-safe-assemblyassembly {
if proof.length {
// Left shift by 5 is equivalent to multiplying by 0x20.let end :=add(proof.offset, shl(5, proof.length))
// Initialize `offset` to the offset of `proof` in the calldata.let offset := proof.offset// Iterate over proof elements to compute root hash.for {} 1 {} {
// Slot of `leaf` in scratch space.// If the condition is true: 0x20, otherwise: 0x00.let scratch :=shl(5, gt(leaf, calldataload(offset)))
// Store elements to hash contiguously in scratch space.// Scratch space is 64 bytes (0x00 - 0x3f) and both elements are 32 bytes.mstore(scratch, leaf)
mstore(xor(scratch, 0x20), calldataload(offset))
// Reuse `leaf` to store the hash to reduce stack operations.
leaf :=keccak256(0x00, 0x40)
offset :=add(offset, 0x20)
ifiszero(lt(offset, end)) { break }
}
}
isValid :=eq(leaf, root)
}
}
/// @dev Returns whether all `leaves` exist in the Merkle tree with `root`,/// given `proof` and `flags`.functionverifyMultiProof(bytes32[] memory proof,
bytes32 root,
bytes32[] memory leaves,
bool[] memory flags
) internalpurereturns (bool isValid) {
// Rebuilds the root by consuming and producing values on a queue.// The queue starts with the `leaves` array, and goes into a `hashes` array.// After the process, the last element on the queue is verified// to be equal to the `root`.//// The `flags` array denotes whether the sibling// should be popped from the queue (`flag == true`), or// should be popped from the `proof` (`flag == false`)./// @solidity memory-safe-assemblyassembly {
// Cache the lengths of the arrays.let leavesLength :=mload(leaves)
let proofLength :=mload(proof)
let flagsLength :=mload(flags)
// Advance the pointers of the arrays to point to the data.
leaves :=add(0x20, leaves)
proof :=add(0x20, proof)
flags :=add(0x20, flags)
// If the number of flags is correct.for {} eq(add(leavesLength, proofLength), add(flagsLength, 1)) {} {
// For the case where `proof.length + leaves.length == 1`.ifiszero(flagsLength) {
// `isValid = (proof.length == 1 ? proof[0] : leaves[0]) == root`.
isValid :=eq(mload(xor(leaves, mul(xor(proof, leaves), proofLength))), root)
break
}
// The required final proof offset if `flagsLength` is not zero, otherwise zero.let proofEnd :=mul(iszero(iszero(flagsLength)), add(proof, shl(5, proofLength)))
// We can use the free memory space for the queue.// We don't need to allocate, since the queue is temporary.let hashesFront :=mload(0x40)
// Copy the leaves into the hashes.// Sometimes, a little memory expansion costs less than branching.// Should cost less, even with a high free memory offset of 0x7d00.
leavesLength :=shl(5, leavesLength)
for { let i :=0 } iszero(eq(i, leavesLength)) { i :=add(i, 0x20) } {
mstore(add(hashesFront, i), mload(add(leaves, i)))
}
// Compute the back of the hashes.let hashesBack :=add(hashesFront, leavesLength)
// This is the end of the memory for the queue.// We recycle `flagsLength` to save on stack variables (sometimes save gas).
flagsLength :=add(hashesBack, shl(5, flagsLength))
for {} 1 {} {
// Pop from `hashes`.let a :=mload(hashesFront)
// Pop from `hashes`.let b :=mload(add(hashesFront, 0x20))
hashesFront :=add(hashesFront, 0x40)
// If the flag is false, load the next proof,// else, pops from the queue.ifiszero(mload(flags)) {
// Loads the next proof.
b :=mload(proof)
proof :=add(proof, 0x20)
// Unpop from `hashes`.
hashesFront :=sub(hashesFront, 0x20)
}
// Advance to the next flag.
flags :=add(flags, 0x20)
// Slot of `a` in scratch space.// If the condition is true: 0x20, otherwise: 0x00.let scratch :=shl(5, gt(a, b))
// Hash the scratch space and push the result onto the queue.mstore(scratch, a)
mstore(xor(scratch, 0x20), b)
mstore(hashesBack, keccak256(0x00, 0x40))
hashesBack :=add(hashesBack, 0x20)
ifiszero(lt(hashesBack, flagsLength)) { break }
}
isValid :=and(
// Checks if the last value in the queue is same as the root.eq(mload(sub(hashesBack, 0x20)), root),
// And whether all the proofs are used, if required (i.e. `proofEnd != 0`).or(iszero(proofEnd), eq(proofEnd, proof))
)
break
}
}
}
/// @dev Returns whether all `leaves` exist in the Merkle tree with `root`,/// given `proof` and `flags`.functionverifyMultiProofCalldata(bytes32[] calldata proof,
bytes32 root,
bytes32[] calldata leaves,
bool[] calldata flags
) internalpurereturns (bool isValid) {
// Rebuilds the root by consuming and producing values on a queue.// The queue starts with the `leaves` array, and goes into a `hashes` array.// After the process, the last element on the queue is verified// to be equal to the `root`.//// The `flags` array denotes whether the sibling// should be popped from the queue (`flag == true`), or// should be popped from the `proof` (`flag == false`)./// @solidity memory-safe-assemblyassembly {
// If the number of flags is correct.for {} eq(add(leaves.length, proof.length), add(flags.length, 1)) {} {
// For the case where `proof.length + leaves.length == 1`.ifiszero(flags.length) {
// `isValid = (proof.length == 1 ? proof[0] : leaves[0]) == root`.// forgefmt: disable-next-item
isValid :=eq(
calldataload(
xor(leaves.offset, mul(xor(proof.offset, leaves.offset), proof.length))
),
root
)
break
}
// The required final proof offset if `flagsLength` is not zero, otherwise zero.let proofEnd :=mul(iszero(iszero(flags.length)), add(proof.offset, shl(5, proof.length)))
// We can use the free memory space for the queue.// We don't need to allocate, since the queue is temporary.let hashesFront :=mload(0x40)
// Copy the leaves into the hashes.// Sometimes, a little memory expansion costs less than branching.// Should cost less, even with a high free memory offset of 0x7d00.calldatacopy(hashesFront, leaves.offset, shl(5, leaves.length))
// Compute the back of the hashes.let hashesBack :=add(hashesFront, shl(5, leaves.length))
// This is the end of the memory for the queue.// We recycle `flagsLength` to save on stack variables (sometimes save gas).
flags.length:=add(hashesBack, shl(5, flags.length))
// We don't need to make a copy of `proof.offset` or `flags.offset`,// as they are pass-by-value (this trick may not always save gas).for {} 1 {} {
// Pop from `hashes`.let a :=mload(hashesFront)
// Pop from `hashes`.let b :=mload(add(hashesFront, 0x20))
hashesFront :=add(hashesFront, 0x40)
// If the flag is false, load the next proof,// else, pops from the queue.ifiszero(calldataload(flags.offset)) {
// Loads the next proof.
b :=calldataload(proof.offset)
proof.offset:=add(proof.offset, 0x20)
// Unpop from `hashes`.
hashesFront :=sub(hashesFront, 0x20)
}
// Advance to the next flag offset.
flags.offset:=add(flags.offset, 0x20)
// Slot of `a` in scratch space.// If the condition is true: 0x20, otherwise: 0x00.let scratch :=shl(5, gt(a, b))
// Hash the scratch space and push the result onto the queue.mstore(scratch, a)
mstore(xor(scratch, 0x20), b)
mstore(hashesBack, keccak256(0x00, 0x40))
hashesBack :=add(hashesBack, 0x20)
ifiszero(lt(hashesBack, flags.length)) { break }
}
isValid :=and(
// Checks if the last value in the queue is same as the root.eq(mload(sub(hashesBack, 0x20)), root),
// And whether all the proofs are used, if required (i.e. `proofEnd != 0`).or(iszero(proofEnd), eq(proofEnd, proof.offset))
)
break
}
}
}
/*´:°•.°+.*•´.*:˚.°*.˚•´.°:°•.°•.*•´.*:˚.°*.˚•´.°:°•.°+.*•´.*:*//* EMPTY CALLDATA HELPERS *//*.•°:°.´+˚.*°.˚:*.´•*.+°.•°:´*.´•*.•°.•°:°.´:•˚°.*°.˚:*.´+°.•*//// @dev Returns an empty calldata bytes32 array.functionemptyProof() internalpurereturns (bytes32[] calldata proof) {
/// @solidity memory-safe-assemblyassembly {
proof.length:=0
}
}
/// @dev Returns an empty calldata bytes32 array.functionemptyLeaves() internalpurereturns (bytes32[] calldata leaves) {
/// @solidity memory-safe-assemblyassembly {
leaves.length:=0
}
}
/// @dev Returns an empty calldata bool array.functionemptyFlags() internalpurereturns (bool[] calldata flags) {
/// @solidity memory-safe-assemblyassembly {
flags.length:=0
}
}
}
Contract Source Code
File 19 of 29: MessageHashUtils.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.20;import {Strings} from"../Strings.sol";
/**
* @dev Signature message hash utilities for producing digests to be consumed by {ECDSA} recovery or signing.
*
* The library provides methods for generating a hash of a message that conforms to the
* https://eips.ethereum.org/EIPS/eip-191[EIP 191] and https://eips.ethereum.org/EIPS/eip-712[EIP 712]
* specifications.
*/libraryMessageHashUtils{
/**
* @dev Returns the keccak256 digest of an EIP-191 signed data with version
* `0x45` (`personal_sign` messages).
*
* The digest is calculated by prefixing a bytes32 `messageHash` with
* `"\x19Ethereum Signed Message:\n32"` and hashing the result. It corresponds with the
* hash signed when using the https://eth.wiki/json-rpc/API#eth_sign[`eth_sign`] JSON-RPC method.
*
* NOTE: The `hash` parameter is intended to be the result of hashing a raw message with
* keccak256, although any bytes32 value can be safely used because the final digest will
* be re-hashed.
*
* See {ECDSA-recover}.
*/functiontoEthSignedMessageHash(bytes32 messageHash) internalpurereturns (bytes32 digest) {
/// @solidity memory-safe-assemblyassembly {
mstore(0x00, "\x19Ethereum Signed Message:\n32") // 32 is the bytes-length of messageHashmstore(0x1c, messageHash) // 0x1c (28) is the length of the prefix
digest :=keccak256(0x00, 0x3c) // 0x3c is the length of the prefix (0x1c) + messageHash (0x20)
}
}
/**
* @dev Returns the keccak256 digest of an EIP-191 signed data with version
* `0x45` (`personal_sign` messages).
*
* The digest is calculated by prefixing an arbitrary `message` with
* `"\x19Ethereum Signed Message:\n" + len(message)` and hashing the result. It corresponds with the
* hash signed when using the https://eth.wiki/json-rpc/API#eth_sign[`eth_sign`] JSON-RPC method.
*
* See {ECDSA-recover}.
*/functiontoEthSignedMessageHash(bytesmemory message) internalpurereturns (bytes32 digest) {
returnkeccak256(bytes.concat("\x19Ethereum Signed Message:\n", bytes(Strings.toString(message.length)), message));
}
/**
* @dev Returns the keccak256 digest of an EIP-191 signed data with version
* `0x00` (data with intended validator).
*
* The digest is calculated by prefixing an arbitrary `data` with `"\x19\x00"` and the intended
* `validator` address. Then hashing the result.
*
* See {ECDSA-recover}.
*/functiontoDataWithIntendedValidatorHash(address validator,
bytesmemory data
) internalpurereturns (bytes32 digest) {
returnkeccak256(abi.encodePacked(hex"19_00", validator, data));
}
/**
* @dev Returns the keccak256 digest of an EIP-712 typed data (EIP-191 version `0x01`).
*
* The digest is calculated from a `domainSeparator` and a `structHash`, by prefixing them with
* `\x19\x01` and hashing the result. It corresponds to the hash signed by the
* https://eips.ethereum.org/EIPS/eip-712[`eth_signTypedData`] JSON-RPC method as part of EIP-712.
*
* See {ECDSA-recover}.
*/functiontoTypedDataHash(bytes32 domainSeparator, bytes32 structHash) internalpurereturns (bytes32 digest) {
/// @solidity memory-safe-assemblyassembly {
let ptr :=mload(0x40)
mstore(ptr, hex"19_01")
mstore(add(ptr, 0x02), domainSeparator)
mstore(add(ptr, 0x22), structHash)
digest :=keccak256(ptr, 0x42)
}
}
}
Contract Source Code
File 20 of 29: MinerPoolAndGCA.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.19;import {GCA} from"./GCA.sol";
import {IGCA} from"@/interfaces/IGCA.sol";
import {IVetoCouncil} from"@/interfaces/IVetoCouncil.sol";
import {SignatureChecker} from"@openzeppelin/contracts/utils/cryptography/SignatureChecker.sol";
import {EIP712} from"@openzeppelin/contracts/utils/cryptography/EIP712.sol";
import {IMinerPool} from"@/interfaces/IMinerPool.sol";
import {SafeERC20} from"@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
import {IERC20} from"@openzeppelin/contracts/token/ERC20/IERC20.sol";
import {BucketSubmission} from"./BucketSubmission.sol";
import {MerkleProofLib} from"@solady/utils/MerkleProofLib.sol";
import {ISafetyDelay} from"@/SafetyDelay.sol";
import {IGCC} from"@/interfaces/IGCC.sol";
import {SafeCast} from"@openzeppelin/contracts/utils/math/SafeCast.sol";
import {_BUCKET_DURATION} from"@/Constants/Constants.sol";
/**
* @title Miner Pool And GCA
* @author @DavidVorick
* @author @0xSimon(twitter) - 0xSimon(github)
* @notice this contract allows veto council members to delay buckets as defined in the `GCA` contract
* @notice It is the entry point for farms participating in GLOW to claim their rewards for their contributions
*/contractMinerPoolAndGCAisGCA, EIP712, IMinerPool, BucketSubmission{
/* -------------------------------------------------------------------------- *//* constants *//* -------------------------------------------------------------------------- *//**
* @dev the amount to increase the finalization timestamp of a bucket by
* - only veto council agents can delay a bucket.
* - the delay is 13 weeks
*/uint256privateconstant _BUCKET_DELAY_DURATION =uint256(7days) *13;
/// @dev a helper used in a bitmapuint256privateconstant _BITS_IN_UINT =256;
/// @dev the typehash for the claim reward from bucket eip712 messagebytes32privateconstant _CLAIM_REWARD_FROM_BUCKET_TYPEHASH =keccak256(
"ClaimRewardFromBucket(uint256 bucketId,uint256 glwWeight,uint256 usdcWeight,uint256 index,bool claimFromInflation)"
);
/**
* @notice the total amount of glow rewards available for farms per bucket
*/uint256publicconstant GLOW_REWARDS_PER_BUCKET =175_000ether;
/* -------------------------------------------------------------------------- *//* immutables *//* -------------------------------------------------------------------------- *//**
* @notice the address of the early liquidity contract
* @dev used for authorization in {donateToUSDCMinerRewardsPoolEarlyLiquidity}
*/addressprivateimmutable _EARLY_LIQUIDITY;
/**
* @dev the address of the veto council contract.
*/addressprivateimmutable _VETO_COUNCIL;
/// @notice USDC token addressaddresspublicimmutable USDC;
/// @notice the holding contract where intermediary rewards are stored/// @dev when a farm earns a USDC reward, it is sent to the holding contract/// - where it will wait a minimum of 1 week before being sent to the farm/// - this is in place to prevent a large amount of USDC from being sent to a farm/// - mistakenly or on purpose/// - If such a case happens, the Veto Council can delay the holding contract by 13 weeks/// - This should give enough time to rectify the situation
ISafetyDelay publicimmutable HOLDING_CONTRACT;
/// @notice the GCC contract
IGCC publicimmutable GCC;
/* -------------------------------------------------------------------------- *//* mappings *//* -------------------------------------------------------------------------- *//**
* @dev a mapping of (bucketId / 256) -> user -> bitmap
*/mapping(uint256=>mapping(address=>uint256)) private _bucketClaimBitmap;
/**
* @dev a mapping of (bucketId / 256) -> bitmap
*/mapping(uint256=>uint256) private _mintedToCarbonCreditAuctionBitmap;
/**
* @dev a mapping of (bucketId / 256) -> bitmap
* @dev a bucket can only be delayed once
*/mapping(uint256=>uint256) private _bucketDelayedBitmap;
/**
* @dev a mapping of bucketId -> pushed weights
* - we could split this up into a packed map of pushedGlwWeight and pushedUSDCWeight
* and use one slot to fit 4 (uint32 pushedGlwWeight, uint32 pushedUSDCWeight) tuples,
* but since this slot will only be cold for the first write of each bucket claim,
* it's not worth the additional complexity and gas costs on each subsequent write
* to handle the packing and unpacking.
*/mapping(uint256=> PushedWeights) internal _weightsPushed;
/* -------------------------------------------------------------------------- *//* structs *//* -------------------------------------------------------------------------- *//**
* @param pushedGlwWeight - the aggregate amount of glw weight pushed
* @param pushedUSDCWeight - the aggregate amount of USDC weight pushed
* @dev meant to be used in conjunction with the _weightsPushed mapping
* - when a user claims from a bucket, the pushed weights are added to the total weights
* - these are tracked to ensure that the pushed weights don't overflow the total weights
* - that were put in place for that specific bucket
*/structPushedWeights {
uint64 pushedGlwWeight;
uint64 pushedUSDCWeight;
}
/* -------------------------------------------------------------------------- *//* constructor *//* -------------------------------------------------------------------------- *//**
* @notice constructs a new MinerPoolAndGCA contract
* @param _gcaAgents the addresses of the gca agents the contract starts with
* @param _glowToken the address of the glow token
* @param _governance the address of the governance contract
* @param _requirementsHash the requirements hash of GCA Agents
* @param _usdcToken - the USDC token address
* @param _vetoCouncil - the address of the veto council contract.
* @param _holdingContract - the address of the holding contract
* @param _gcc - the address of the gcc contract
*/constructor(address[] memory _gcaAgents,
address _glowToken,
address _governance,
bytes32 _requirementsHash,
address _earlyLiquidity,
address _usdcToken,
address _vetoCouncil,
address _holdingContract,
address _gcc
) payableGCA(_gcaAgents, _glowToken, _governance, _requirementsHash) EIP712("GCA and MinerPool", "1") {
_EARLY_LIQUIDITY = _earlyLiquidity;
_VETO_COUNCIL = _vetoCouncil;
HOLDING_CONTRACT = ISafetyDelay(_holdingContract);
USDC = _usdcToken;
GCC = IGCC(_gcc);
}
/* -------------------------------------------------------------------------- *//* donations *//* -------------------------------------------------------------------------- *//**
* @inheritdoc IMinerPool
*/functiondonateToUSDCMinerRewardsPool(uint256 amount) externalvirtual{
uint256 balBefore = IERC20(USDC).balanceOf(address(HOLDING_CONTRACT));
SafeERC20.safeTransferFrom(IERC20(USDC), msg.sender, address(HOLDING_CONTRACT), amount);
uint256 transferredBalance = IERC20(USDC).balanceOf(address(HOLDING_CONTRACT)) - balBefore;
_addToCurrentBucket(transferredBalance);
}
/**
* @inheritdoc IMinerPool
*/functiondonateToUSDCMinerRewardsPoolEarlyLiquidity(uint256 amount) externalvirtual{
if (msg.sender!= _EARLY_LIQUIDITY) _revert(IMinerPool.CallerNotEarlyLiquidity.selector);
_addToCurrentBucket(amount);
}
/* -------------------------------------------------------------------------- *//* minting to carbon credit auction *//* -------------------------------------------------------------------------- *//**
* @notice Handles minting to the carbon credit auction in case the bucket is finalized and no one has claimed from it
* @param bucketId - the id of the bucket
*/functionhandleMintToCarbonCreditAuction(uint256 bucketId) external{
if (!isBucketFinalized(bucketId)) {
_revert(IMinerPool.BucketNotFinalized.selector);
}
uint256 globalPackedState = getPackedBucketGlobalState(bucketId);
uint256 amountToMint = globalPackedState & _UINT128_MASK;
_handleMintToCarbonCreditAuction(bucketId, amountToMint);
}
/* -------------------------------------------------------------------------- *//* claiming rewards *//* -------------------------------------------------------------------------- *//**
* @inheritdoc IMinerPool
*/functionclaimRewardFromBucket(uint256 bucketId,
uint256 glwWeight,
uint256 usdcWeight,
bytes32[] calldata proof,
uint256 index,
address user,
bool claimFromInflation,
bytesmemory signature
) external{
if (msg.sender!= user) {
bytes32 hash = createClaimRewardFromBucketDigest(bucketId, glwWeight, usdcWeight, index, claimFromInflation);
if (!SignatureChecker.isValidSignatureNow(user, hash, signature)) {
_revert(IMinerPool.SignatureDoesNotMatchUser.selector);
}
}
if (!isBucketFinalized(bucketId)) {
_revert(IMinerPool.BucketNotFinalized.selector);
}
if (claimFromInflation) {
claimGlowFromInflation();
}
{
bytes32 root = getBucketRootAtIndexEfficient(bucketId, index);
_checkProof(user, glwWeight, usdcWeight, proof, root);
}
uint256 globalStatePackedData = getPackedBucketGlobalState(bucketId);
/**
* Bit Layout of packed global state
* [0-127] - totalNewGCC
* [128-191] - totalGLWRewardsWeight
* [192-255] - totalUSDCRewardsWeight
*/uint256 totalUSDCWeight = globalStatePackedData >>192;
uint256 totalGlwWeight = globalStatePackedData >>128& _UINT64_MASK;
_checkWeightsForOverflow({
bucketId: bucketId,
totalGlwWeight: totalGlwWeight,
totalUSDCWeight: totalUSDCWeight,
glwWeight: glwWeight,
usdcWeight: usdcWeight
});
_handleMintToCarbonCreditAuction(bucketId, globalStatePackedData & _UINT128_MASK);
//no need to use a mask since totalUSDCWeight uses the last 64 bits, so we can just shift
{
uint256 userBitmap = _getUserBitmapForBucket(bucketId, user);
userBitmap = _checkClaimAvailableAndReturnNewBitmap(bucketId, userBitmap);
_setUserBitmapForBucket(bucketId, user, userBitmap);
}
//Just in case a faulty report is submitted, we need to choose the min of _glwWeight and totalGlwWeight// so that we don't overflow the available USDC rewards// and grab rewards from other bucketsuint256 amountInBucket = _getAmountForTokenAndInitIfNot(bucketId);
_revertIfGreater(usdcWeight, totalUSDCWeight, IMinerPool.USDCWeightGreaterThanTotalWeight.selector);
amountInBucket = amountInBucket * usdcWeight / totalUSDCWeight;
if (amountInBucket >0) {
//Cant overflow since the amountInBucket is less than or equal to the total amount in the bucket
HOLDING_CONTRACT.addHolding(user, USDC, SafeCast.toUint192(amountInBucket));
}
{
_revertIfGreater(glwWeight, totalGlwWeight, IMinerPool.GlowWeightGreaterThanTotalWeight.selector);
uint256 amountGlowToSend = GLOW_REWARDS_PER_BUCKET * glwWeight / totalGlwWeight;
if (amountGlowToSend >0) {
SafeERC20.safeTransfer(IERC20(address(GLOW_TOKEN)), user, amountGlowToSend);
}
}
}
/* -------------------------------------------------------------------------- *//* bucket delays *//* -------------------------------------------------------------------------- *//**
* @inheritdoc IMinerPool
*/functiondelayBucketFinalization(uint256 bucketId) external{
if (isBucketFinalized(bucketId)) {
_revert(IGCA.BucketAlreadyFinalized.selector);
}
if (!IVetoCouncil(_VETO_COUNCIL).isCouncilMember(msg.sender)) {
_revert(IMinerPool.CallerNotVetoCouncilMember.selector);
}
if (_buckets[bucketId].lastUpdatedNonce != slashNonce) {
_revert(IMinerPool.CannotDelayBucketThatNeedsToUpdateSlashNonce.selector);
}
uint256 key = bucketId /256;
uint256 shift = bucketId %256;
uint256 existingBitmap = _bucketDelayedBitmap[key];
uint256 bitmask =1<< shift;
if (existingBitmap & bitmask !=0) {
_revert(IMinerPool.BucketAlreadyDelayed.selector);
}
_bucketDelayedBitmap[key] = existingBitmap | bitmask;
//If the length is zero that means// the bucket has never been initialized// therefore, the veto council should not be able// to delay a bucket that has never been initializedif (_buckets[bucketId].reports.length==0) {
_revert(IMinerPool.CannotDelayEmptyBucket.selector);
}
_buckets[bucketId].finalizationTimestamp += SafeCast.toUint128(bucketDelayDuration());
}
/* -------------------------------------------------------------------------- *//* view functions *//* -------------------------------------------------------------------------- *//**
* @notice returns the bucket claim bitmap for a user
* @param bucketId - the bucket id to check
* @dev Each bit in the 256 bit word is a flag for whether the user has claimed from that bucket.
* @dev for example, for bitmap with b'....0011' with an input of any bucketId between `0-255` means that the user has claimed from buckets 0 and 1
* @dev If `bucketId` is 256, the bitmap returned will start at bucketId 256 in the 0 binary slot.
* @dev a few examples:
* `bucketId` = 12 returns the bitmap at position 0 which contains the flags for buckets 0-255
* `bucketId` = 256 returns the bitmap at position 1 which contains the flags for buckets 256- 511
* `bucketId` = 515 returns the bitmap at position 2 which contains the flags for buckets 512-767
* @return bitmap - the bitmap in which the bucket claim flag is located for the `user`
*/functionbucketClaimBitmap(uint256 bucketId, address user) publicviewreturns (uint256) {
return _getUserBitmapForBucket(bucketId, user);
}
/**
* @inheritdoc IMinerPool
*/functionhasBucketBeenDelayed(uint256 bucketId) externalviewreturns (bool) {
return _bucketDelayedBitmap[bucketId /256] & (1<< (bucketId %256)) !=0;
}
/**
* @notice the early liquidity contract address
* @return the early liquidity contract address
*/functionearlyLiquidity() publicviewreturns (address) {
return _EARLY_LIQUIDITY;
}
/**
* @inheritdoc IMinerPool
*/functioncreateClaimRewardFromBucketDigest(uint256 bucketId,
uint256 glwWeight,
uint256 usdcWeight,
uint256 index,
bool claimFromInflation
) publicviewreturns (bytes32) {
returnkeccak256(
abi.encodePacked(
"\x19\x01",
_domainSeparatorV4(),
keccak256(
abi.encode(
_CLAIM_REWARD_FROM_BUCKET_TYPEHASH, bucketId, glwWeight, usdcWeight, index, claimFromInflation
)
)
)
);
}
/**
* @notice The amount of time a delay action will delay a bucket by
* @return the amount of time a delay action will delay a bucket by
*/functionbucketDelayDuration() publicpurevirtualreturns (uint256) {
return _BUCKET_DELAY_DURATION;
}
/* -------------------------------------------------------------------------- *//* internal state changing funcs *//* -------------------------------------------------------------------------- *//**
* @notice used internally to mint `amount` of GCC to the carbon credit auction contract
* @dev each bucketId can only be used once to mint to the carbon credit auction
* @dev the `_mintedToCarbonCreditAuctionBitmap` is used to track which buckets have already been used to mint to the carbon credit auction
* - the key for the mapping is `bucketId / 256`
* - where each slot stores a bitmap of the buckets that have been used to mint to the carbon credit auction
* @dev if the bucket has already been used to mint to the carbon credit auction, the function continues
* - this behaviour is necessary since the function is called on each claim
* - this function's `trigger` is the `claimRewardMultipleRootsOneBucket` function
* - it should also be able to be called publically
*/function_handleMintToCarbonCreditAuction(uint256 bucketId, uint256 amountToMint) internal{
uint256 key = bucketId / _BITS_IN_UINT;
uint256 existingBitmap = _mintedToCarbonCreditAuctionBitmap[key];
uint256 shift = bucketId % _BITS_IN_UINT;
uint256 mask =1<< shift;
if (mask & existingBitmap ==0) {
existingBitmap |= mask;
_mintedToCarbonCreditAuctionBitmap[key] = existingBitmap;
GCC.mintToCarbonCreditAuction(bucketId, amountToMint);
}
}
/**
* @dev used internally to set the user bitmap for a bucket
* @param bucketId - the id of the bucket
* - this is divided by 256 to find the key in the mapping
* @param user - the address of the user
* @param userBitmap - the new bitmap to set for the user
*/function_setUserBitmapForBucket(uint256 bucketId, address user, uint256 userBitmap) internal{
_bucketClaimBitmap[bucketId / _BITS_IN_UINT][user] = userBitmap;
}
/* -------------------------------------------------------------------------- *//* internal view *//* -------------------------------------------------------------------------- *//**
* @dev user internally to check if a user has already claimed for a bucket
* - if the have already claimed, the function reverts
* - if they have not claimed from the bucket, the function returns the new bitmap that should be stored
* @param bucketId - the id of the bucket
* @param userBitmap - the existing bitmap of the user
* @return userBitmap - the new bitmap of the user
*/function_checkClaimAvailableAndReturnNewBitmap(uint256 bucketId, uint256 userBitmap)
internalpurereturns (uint256)
{
uint256 shift = (bucketId % _BITS_IN_UINT);
uint256 mask =1<< shift;
if (mask & userBitmap !=0) _revert(IMinerPool.UserAlreadyClaimed.selector);
userBitmap |= mask;
return userBitmap;
}
/**
* @dev used internally check if a proof is valid
* @param payoutWallet - the address of the user
* @param glwWeight - the weight of the user's glw rewards
* @param usdcWeight - the weight of the user's USDC rewards
* @param proof - the merkle proof of the user's rewards
* - the leaves are {payoutWallet, glwWeight, usdcWeight}
*/function_checkProof(address payoutWallet,
uint256 glwWeight,
uint256 usdcWeight,
bytes32[] calldata proof,
bytes32 root
) internalpure{
bytes32 leaf =keccak256(abi.encodePacked(payoutWallet, glwWeight, usdcWeight));
if (!MerkleProofLib.verifyCalldata(proof, root, leaf)) {
_revert(IMinerPool.InvalidProof.selector);
}
}
/**
* @dev checks to make sure the weights in the report
* - don't overflow the total weights that have been set for the bucket
* - Without this check, a malicious weight could be used to overflow the total weights
* - and grab rewards from other buckets
* @param bucketId - the id of the bucket
* @param totalGlwWeight - the total amount of glw weight for the bucket
* @param totalUSDCWeight - the total amount of USDC weight for the bucket
* @param glwWeight - the glw weight of the leaf in the report being claimed
* @param usdcWeight - the USDC weight of the leaf in the report being claimed
*/function_checkWeightsForOverflow(uint256 bucketId,
uint256 totalGlwWeight,
uint256 totalUSDCWeight,
uint256 glwWeight,
uint256 usdcWeight
) internal{
PushedWeights memory pushedWeights = _weightsPushed[bucketId];
pushedWeights.pushedGlwWeight += SafeCast.toUint64(glwWeight);
pushedWeights.pushedUSDCWeight += SafeCast.toUint64(usdcWeight);
if (pushedWeights.pushedGlwWeight > totalGlwWeight) {
_revert(IMinerPool.GlowWeightOverflow.selector);
}
if (pushedWeights.pushedUSDCWeight > totalUSDCWeight) {
_revert(IMinerPool.USDCWeightOverflow.selector);
}
_weightsPushed[bucketId] = pushedWeights;
}
/**
* @dev used internally to get the user bitmap for a bucket
* @param bucketId - the id of the bucket
* - this is divided by 256 to find the key in the mapping
* @param user - the address of the user
* @return userBitmap - the bitmap of the user
*/function_getUserBitmapForBucket(uint256 bucketId, address user) internalviewreturns (uint256) {
return _bucketClaimBitmap[bucketId / _BITS_IN_UINT][user];
}
/**
* @dev used internally to get the genesis timestamp
* - it must override the function in BucketSubmission
* @return the genesis timestamp
*/function_genesisTimestamp() internalviewoverride(BucketSubmission, GCA) returns (uint256) {
return GENESIS_TIMESTAMP;
}
/**
* @dev used to pass down the current week to the {GCASalaryHelper} contract
*/function_currentWeek() internalviewoverride(GCA) returns (uint256) {
return currentBucket();
}
/**
* @dev used to pass down the domain separator to the {GCASalaryHelper} contract
*/function_domainSeperatorV4Main() internalviewvirtualoverride(GCA) returns (bytes32) {
return _domainSeparatorV4();
}
/**
* @notice returns the bucket duration
* @return bucketDuration - the bucket duration
*/functionbucketDuration() internalpurevirtualoverride(GCA, BucketSubmission) returns (uint256) {
return _BUCKET_DURATION;
}
/**
* @notice reverts with {selector} if {a} > {b}
* @param a - the first number
* @param b - the second number
* @param selector - the selector to revert with
*/function_revertIfGreater(uint256 a, uint256 b, bytes4 selector) internalpure{
if (a > b) _revert(selector);
}
/**
* @dev efficient checker for whether an address is the zero address
* @param addr the address to check
* @return res - whether or not the address is the zero address
*/function_isZeroAddress(address addr) internalpurereturns (bool res) {
// solhint-disable-next-line no-inline-assemblyassembly {
res :=iszero(addr)
}
}
}
Contract Source Code
File 21 of 29: SafeCast.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.8.0) (utils/math/SafeCast.sol)// This file was procedurally generated from scripts/generate/templates/SafeCast.js.pragmasolidity ^0.8.20;/**
* @dev Wrappers over Solidity's uintXX/intXX casting operators with added overflow
* checks.
*
* Downcasting from uint256/int256 in Solidity does not revert on overflow. This can
* easily result in undesired exploitation or bugs, since developers usually
* assume that overflows raise errors. `SafeCast` restores this intuition by
* reverting the transaction when such an operation overflows.
*
* Using this library instead of the unchecked operations eliminates an entire
* class of bugs, so it's recommended to use it always.
*/librarySafeCast{
/**
* @dev Value doesn't fit in an uint of `bits` size.
*/errorSafeCastOverflowedUintDowncast(uint8 bits, uint256 value);
/**
* @dev An int value doesn't fit in an uint of `bits` size.
*/errorSafeCastOverflowedIntToUint(int256 value);
/**
* @dev Value doesn't fit in an int of `bits` size.
*/errorSafeCastOverflowedIntDowncast(uint8 bits, int256 value);
/**
* @dev An uint value doesn't fit in an int of `bits` size.
*/errorSafeCastOverflowedUintToInt(uint256 value);
/**
* @dev Returns the downcasted uint248 from uint256, reverting on
* overflow (when the input is greater than largest uint248).
*
* Counterpart to Solidity's `uint248` operator.
*
* Requirements:
*
* - input must fit into 248 bits
*/functiontoUint248(uint256 value) internalpurereturns (uint248) {
if (value >type(uint248).max) {
revert SafeCastOverflowedUintDowncast(248, value);
}
returnuint248(value);
}
/**
* @dev Returns the downcasted uint240 from uint256, reverting on
* overflow (when the input is greater than largest uint240).
*
* Counterpart to Solidity's `uint240` operator.
*
* Requirements:
*
* - input must fit into 240 bits
*/functiontoUint240(uint256 value) internalpurereturns (uint240) {
if (value >type(uint240).max) {
revert SafeCastOverflowedUintDowncast(240, value);
}
returnuint240(value);
}
/**
* @dev Returns the downcasted uint232 from uint256, reverting on
* overflow (when the input is greater than largest uint232).
*
* Counterpart to Solidity's `uint232` operator.
*
* Requirements:
*
* - input must fit into 232 bits
*/functiontoUint232(uint256 value) internalpurereturns (uint232) {
if (value >type(uint232).max) {
revert SafeCastOverflowedUintDowncast(232, value);
}
returnuint232(value);
}
/**
* @dev Returns the downcasted uint224 from uint256, reverting on
* overflow (when the input is greater than largest uint224).
*
* Counterpart to Solidity's `uint224` operator.
*
* Requirements:
*
* - input must fit into 224 bits
*/functiontoUint224(uint256 value) internalpurereturns (uint224) {
if (value >type(uint224).max) {
revert SafeCastOverflowedUintDowncast(224, value);
}
returnuint224(value);
}
/**
* @dev Returns the downcasted uint216 from uint256, reverting on
* overflow (when the input is greater than largest uint216).
*
* Counterpart to Solidity's `uint216` operator.
*
* Requirements:
*
* - input must fit into 216 bits
*/functiontoUint216(uint256 value) internalpurereturns (uint216) {
if (value >type(uint216).max) {
revert SafeCastOverflowedUintDowncast(216, value);
}
returnuint216(value);
}
/**
* @dev Returns the downcasted uint208 from uint256, reverting on
* overflow (when the input is greater than largest uint208).
*
* Counterpart to Solidity's `uint208` operator.
*
* Requirements:
*
* - input must fit into 208 bits
*/functiontoUint208(uint256 value) internalpurereturns (uint208) {
if (value >type(uint208).max) {
revert SafeCastOverflowedUintDowncast(208, value);
}
returnuint208(value);
}
/**
* @dev Returns the downcasted uint200 from uint256, reverting on
* overflow (when the input is greater than largest uint200).
*
* Counterpart to Solidity's `uint200` operator.
*
* Requirements:
*
* - input must fit into 200 bits
*/functiontoUint200(uint256 value) internalpurereturns (uint200) {
if (value >type(uint200).max) {
revert SafeCastOverflowedUintDowncast(200, value);
}
returnuint200(value);
}
/**
* @dev Returns the downcasted uint192 from uint256, reverting on
* overflow (when the input is greater than largest uint192).
*
* Counterpart to Solidity's `uint192` operator.
*
* Requirements:
*
* - input must fit into 192 bits
*/functiontoUint192(uint256 value) internalpurereturns (uint192) {
if (value >type(uint192).max) {
revert SafeCastOverflowedUintDowncast(192, value);
}
returnuint192(value);
}
/**
* @dev Returns the downcasted uint184 from uint256, reverting on
* overflow (when the input is greater than largest uint184).
*
* Counterpart to Solidity's `uint184` operator.
*
* Requirements:
*
* - input must fit into 184 bits
*/functiontoUint184(uint256 value) internalpurereturns (uint184) {
if (value >type(uint184).max) {
revert SafeCastOverflowedUintDowncast(184, value);
}
returnuint184(value);
}
/**
* @dev Returns the downcasted uint176 from uint256, reverting on
* overflow (when the input is greater than largest uint176).
*
* Counterpart to Solidity's `uint176` operator.
*
* Requirements:
*
* - input must fit into 176 bits
*/functiontoUint176(uint256 value) internalpurereturns (uint176) {
if (value >type(uint176).max) {
revert SafeCastOverflowedUintDowncast(176, value);
}
returnuint176(value);
}
/**
* @dev Returns the downcasted uint168 from uint256, reverting on
* overflow (when the input is greater than largest uint168).
*
* Counterpart to Solidity's `uint168` operator.
*
* Requirements:
*
* - input must fit into 168 bits
*/functiontoUint168(uint256 value) internalpurereturns (uint168) {
if (value >type(uint168).max) {
revert SafeCastOverflowedUintDowncast(168, value);
}
returnuint168(value);
}
/**
* @dev Returns the downcasted uint160 from uint256, reverting on
* overflow (when the input is greater than largest uint160).
*
* Counterpart to Solidity's `uint160` operator.
*
* Requirements:
*
* - input must fit into 160 bits
*/functiontoUint160(uint256 value) internalpurereturns (uint160) {
if (value >type(uint160).max) {
revert SafeCastOverflowedUintDowncast(160, value);
}
returnuint160(value);
}
/**
* @dev Returns the downcasted uint152 from uint256, reverting on
* overflow (when the input is greater than largest uint152).
*
* Counterpart to Solidity's `uint152` operator.
*
* Requirements:
*
* - input must fit into 152 bits
*/functiontoUint152(uint256 value) internalpurereturns (uint152) {
if (value >type(uint152).max) {
revert SafeCastOverflowedUintDowncast(152, value);
}
returnuint152(value);
}
/**
* @dev Returns the downcasted uint144 from uint256, reverting on
* overflow (when the input is greater than largest uint144).
*
* Counterpart to Solidity's `uint144` operator.
*
* Requirements:
*
* - input must fit into 144 bits
*/functiontoUint144(uint256 value) internalpurereturns (uint144) {
if (value >type(uint144).max) {
revert SafeCastOverflowedUintDowncast(144, value);
}
returnuint144(value);
}
/**
* @dev Returns the downcasted uint136 from uint256, reverting on
* overflow (when the input is greater than largest uint136).
*
* Counterpart to Solidity's `uint136` operator.
*
* Requirements:
*
* - input must fit into 136 bits
*/functiontoUint136(uint256 value) internalpurereturns (uint136) {
if (value >type(uint136).max) {
revert SafeCastOverflowedUintDowncast(136, value);
}
returnuint136(value);
}
/**
* @dev Returns the downcasted uint128 from uint256, reverting on
* overflow (when the input is greater than largest uint128).
*
* Counterpart to Solidity's `uint128` operator.
*
* Requirements:
*
* - input must fit into 128 bits
*/functiontoUint128(uint256 value) internalpurereturns (uint128) {
if (value >type(uint128).max) {
revert SafeCastOverflowedUintDowncast(128, value);
}
returnuint128(value);
}
/**
* @dev Returns the downcasted uint120 from uint256, reverting on
* overflow (when the input is greater than largest uint120).
*
* Counterpart to Solidity's `uint120` operator.
*
* Requirements:
*
* - input must fit into 120 bits
*/functiontoUint120(uint256 value) internalpurereturns (uint120) {
if (value >type(uint120).max) {
revert SafeCastOverflowedUintDowncast(120, value);
}
returnuint120(value);
}
/**
* @dev Returns the downcasted uint112 from uint256, reverting on
* overflow (when the input is greater than largest uint112).
*
* Counterpart to Solidity's `uint112` operator.
*
* Requirements:
*
* - input must fit into 112 bits
*/functiontoUint112(uint256 value) internalpurereturns (uint112) {
if (value >type(uint112).max) {
revert SafeCastOverflowedUintDowncast(112, value);
}
returnuint112(value);
}
/**
* @dev Returns the downcasted uint104 from uint256, reverting on
* overflow (when the input is greater than largest uint104).
*
* Counterpart to Solidity's `uint104` operator.
*
* Requirements:
*
* - input must fit into 104 bits
*/functiontoUint104(uint256 value) internalpurereturns (uint104) {
if (value >type(uint104).max) {
revert SafeCastOverflowedUintDowncast(104, value);
}
returnuint104(value);
}
/**
* @dev Returns the downcasted uint96 from uint256, reverting on
* overflow (when the input is greater than largest uint96).
*
* Counterpart to Solidity's `uint96` operator.
*
* Requirements:
*
* - input must fit into 96 bits
*/functiontoUint96(uint256 value) internalpurereturns (uint96) {
if (value >type(uint96).max) {
revert SafeCastOverflowedUintDowncast(96, value);
}
returnuint96(value);
}
/**
* @dev Returns the downcasted uint88 from uint256, reverting on
* overflow (when the input is greater than largest uint88).
*
* Counterpart to Solidity's `uint88` operator.
*
* Requirements:
*
* - input must fit into 88 bits
*/functiontoUint88(uint256 value) internalpurereturns (uint88) {
if (value >type(uint88).max) {
revert SafeCastOverflowedUintDowncast(88, value);
}
returnuint88(value);
}
/**
* @dev Returns the downcasted uint80 from uint256, reverting on
* overflow (when the input is greater than largest uint80).
*
* Counterpart to Solidity's `uint80` operator.
*
* Requirements:
*
* - input must fit into 80 bits
*/functiontoUint80(uint256 value) internalpurereturns (uint80) {
if (value >type(uint80).max) {
revert SafeCastOverflowedUintDowncast(80, value);
}
returnuint80(value);
}
/**
* @dev Returns the downcasted uint72 from uint256, reverting on
* overflow (when the input is greater than largest uint72).
*
* Counterpart to Solidity's `uint72` operator.
*
* Requirements:
*
* - input must fit into 72 bits
*/functiontoUint72(uint256 value) internalpurereturns (uint72) {
if (value >type(uint72).max) {
revert SafeCastOverflowedUintDowncast(72, value);
}
returnuint72(value);
}
/**
* @dev Returns the downcasted uint64 from uint256, reverting on
* overflow (when the input is greater than largest uint64).
*
* Counterpart to Solidity's `uint64` operator.
*
* Requirements:
*
* - input must fit into 64 bits
*/functiontoUint64(uint256 value) internalpurereturns (uint64) {
if (value >type(uint64).max) {
revert SafeCastOverflowedUintDowncast(64, value);
}
returnuint64(value);
}
/**
* @dev Returns the downcasted uint56 from uint256, reverting on
* overflow (when the input is greater than largest uint56).
*
* Counterpart to Solidity's `uint56` operator.
*
* Requirements:
*
* - input must fit into 56 bits
*/functiontoUint56(uint256 value) internalpurereturns (uint56) {
if (value >type(uint56).max) {
revert SafeCastOverflowedUintDowncast(56, value);
}
returnuint56(value);
}
/**
* @dev Returns the downcasted uint48 from uint256, reverting on
* overflow (when the input is greater than largest uint48).
*
* Counterpart to Solidity's `uint48` operator.
*
* Requirements:
*
* - input must fit into 48 bits
*/functiontoUint48(uint256 value) internalpurereturns (uint48) {
if (value >type(uint48).max) {
revert SafeCastOverflowedUintDowncast(48, value);
}
returnuint48(value);
}
/**
* @dev Returns the downcasted uint40 from uint256, reverting on
* overflow (when the input is greater than largest uint40).
*
* Counterpart to Solidity's `uint40` operator.
*
* Requirements:
*
* - input must fit into 40 bits
*/functiontoUint40(uint256 value) internalpurereturns (uint40) {
if (value >type(uint40).max) {
revert SafeCastOverflowedUintDowncast(40, value);
}
returnuint40(value);
}
/**
* @dev Returns the downcasted uint32 from uint256, reverting on
* overflow (when the input is greater than largest uint32).
*
* Counterpart to Solidity's `uint32` operator.
*
* Requirements:
*
* - input must fit into 32 bits
*/functiontoUint32(uint256 value) internalpurereturns (uint32) {
if (value >type(uint32).max) {
revert SafeCastOverflowedUintDowncast(32, value);
}
returnuint32(value);
}
/**
* @dev Returns the downcasted uint24 from uint256, reverting on
* overflow (when the input is greater than largest uint24).
*
* Counterpart to Solidity's `uint24` operator.
*
* Requirements:
*
* - input must fit into 24 bits
*/functiontoUint24(uint256 value) internalpurereturns (uint24) {
if (value >type(uint24).max) {
revert SafeCastOverflowedUintDowncast(24, value);
}
returnuint24(value);
}
/**
* @dev Returns the downcasted uint16 from uint256, reverting on
* overflow (when the input is greater than largest uint16).
*
* Counterpart to Solidity's `uint16` operator.
*
* Requirements:
*
* - input must fit into 16 bits
*/functiontoUint16(uint256 value) internalpurereturns (uint16) {
if (value >type(uint16).max) {
revert SafeCastOverflowedUintDowncast(16, value);
}
returnuint16(value);
}
/**
* @dev Returns the downcasted uint8 from uint256, reverting on
* overflow (when the input is greater than largest uint8).
*
* Counterpart to Solidity's `uint8` operator.
*
* Requirements:
*
* - input must fit into 8 bits
*/functiontoUint8(uint256 value) internalpurereturns (uint8) {
if (value >type(uint8).max) {
revert SafeCastOverflowedUintDowncast(8, value);
}
returnuint8(value);
}
/**
* @dev Converts a signed int256 into an unsigned uint256.
*
* Requirements:
*
* - input must be greater than or equal to 0.
*/functiontoUint256(int256 value) internalpurereturns (uint256) {
if (value <0) {
revert SafeCastOverflowedIntToUint(value);
}
returnuint256(value);
}
/**
* @dev Returns the downcasted int248 from int256, reverting on
* overflow (when the input is less than smallest int248 or
* greater than largest int248).
*
* Counterpart to Solidity's `int248` operator.
*
* Requirements:
*
* - input must fit into 248 bits
*/functiontoInt248(int256 value) internalpurereturns (int248 downcasted) {
downcasted =int248(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(248, value);
}
}
/**
* @dev Returns the downcasted int240 from int256, reverting on
* overflow (when the input is less than smallest int240 or
* greater than largest int240).
*
* Counterpart to Solidity's `int240` operator.
*
* Requirements:
*
* - input must fit into 240 bits
*/functiontoInt240(int256 value) internalpurereturns (int240 downcasted) {
downcasted =int240(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(240, value);
}
}
/**
* @dev Returns the downcasted int232 from int256, reverting on
* overflow (when the input is less than smallest int232 or
* greater than largest int232).
*
* Counterpart to Solidity's `int232` operator.
*
* Requirements:
*
* - input must fit into 232 bits
*/functiontoInt232(int256 value) internalpurereturns (int232 downcasted) {
downcasted =int232(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(232, value);
}
}
/**
* @dev Returns the downcasted int224 from int256, reverting on
* overflow (when the input is less than smallest int224 or
* greater than largest int224).
*
* Counterpart to Solidity's `int224` operator.
*
* Requirements:
*
* - input must fit into 224 bits
*/functiontoInt224(int256 value) internalpurereturns (int224 downcasted) {
downcasted =int224(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(224, value);
}
}
/**
* @dev Returns the downcasted int216 from int256, reverting on
* overflow (when the input is less than smallest int216 or
* greater than largest int216).
*
* Counterpart to Solidity's `int216` operator.
*
* Requirements:
*
* - input must fit into 216 bits
*/functiontoInt216(int256 value) internalpurereturns (int216 downcasted) {
downcasted =int216(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(216, value);
}
}
/**
* @dev Returns the downcasted int208 from int256, reverting on
* overflow (when the input is less than smallest int208 or
* greater than largest int208).
*
* Counterpart to Solidity's `int208` operator.
*
* Requirements:
*
* - input must fit into 208 bits
*/functiontoInt208(int256 value) internalpurereturns (int208 downcasted) {
downcasted =int208(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(208, value);
}
}
/**
* @dev Returns the downcasted int200 from int256, reverting on
* overflow (when the input is less than smallest int200 or
* greater than largest int200).
*
* Counterpart to Solidity's `int200` operator.
*
* Requirements:
*
* - input must fit into 200 bits
*/functiontoInt200(int256 value) internalpurereturns (int200 downcasted) {
downcasted =int200(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(200, value);
}
}
/**
* @dev Returns the downcasted int192 from int256, reverting on
* overflow (when the input is less than smallest int192 or
* greater than largest int192).
*
* Counterpart to Solidity's `int192` operator.
*
* Requirements:
*
* - input must fit into 192 bits
*/functiontoInt192(int256 value) internalpurereturns (int192 downcasted) {
downcasted =int192(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(192, value);
}
}
/**
* @dev Returns the downcasted int184 from int256, reverting on
* overflow (when the input is less than smallest int184 or
* greater than largest int184).
*
* Counterpart to Solidity's `int184` operator.
*
* Requirements:
*
* - input must fit into 184 bits
*/functiontoInt184(int256 value) internalpurereturns (int184 downcasted) {
downcasted =int184(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(184, value);
}
}
/**
* @dev Returns the downcasted int176 from int256, reverting on
* overflow (when the input is less than smallest int176 or
* greater than largest int176).
*
* Counterpart to Solidity's `int176` operator.
*
* Requirements:
*
* - input must fit into 176 bits
*/functiontoInt176(int256 value) internalpurereturns (int176 downcasted) {
downcasted =int176(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(176, value);
}
}
/**
* @dev Returns the downcasted int168 from int256, reverting on
* overflow (when the input is less than smallest int168 or
* greater than largest int168).
*
* Counterpart to Solidity's `int168` operator.
*
* Requirements:
*
* - input must fit into 168 bits
*/functiontoInt168(int256 value) internalpurereturns (int168 downcasted) {
downcasted =int168(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(168, value);
}
}
/**
* @dev Returns the downcasted int160 from int256, reverting on
* overflow (when the input is less than smallest int160 or
* greater than largest int160).
*
* Counterpart to Solidity's `int160` operator.
*
* Requirements:
*
* - input must fit into 160 bits
*/functiontoInt160(int256 value) internalpurereturns (int160 downcasted) {
downcasted =int160(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(160, value);
}
}
/**
* @dev Returns the downcasted int152 from int256, reverting on
* overflow (when the input is less than smallest int152 or
* greater than largest int152).
*
* Counterpart to Solidity's `int152` operator.
*
* Requirements:
*
* - input must fit into 152 bits
*/functiontoInt152(int256 value) internalpurereturns (int152 downcasted) {
downcasted =int152(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(152, value);
}
}
/**
* @dev Returns the downcasted int144 from int256, reverting on
* overflow (when the input is less than smallest int144 or
* greater than largest int144).
*
* Counterpart to Solidity's `int144` operator.
*
* Requirements:
*
* - input must fit into 144 bits
*/functiontoInt144(int256 value) internalpurereturns (int144 downcasted) {
downcasted =int144(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(144, value);
}
}
/**
* @dev Returns the downcasted int136 from int256, reverting on
* overflow (when the input is less than smallest int136 or
* greater than largest int136).
*
* Counterpart to Solidity's `int136` operator.
*
* Requirements:
*
* - input must fit into 136 bits
*/functiontoInt136(int256 value) internalpurereturns (int136 downcasted) {
downcasted =int136(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(136, value);
}
}
/**
* @dev Returns the downcasted int128 from int256, reverting on
* overflow (when the input is less than smallest int128 or
* greater than largest int128).
*
* Counterpart to Solidity's `int128` operator.
*
* Requirements:
*
* - input must fit into 128 bits
*/functiontoInt128(int256 value) internalpurereturns (int128 downcasted) {
downcasted =int128(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(128, value);
}
}
/**
* @dev Returns the downcasted int120 from int256, reverting on
* overflow (when the input is less than smallest int120 or
* greater than largest int120).
*
* Counterpart to Solidity's `int120` operator.
*
* Requirements:
*
* - input must fit into 120 bits
*/functiontoInt120(int256 value) internalpurereturns (int120 downcasted) {
downcasted =int120(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(120, value);
}
}
/**
* @dev Returns the downcasted int112 from int256, reverting on
* overflow (when the input is less than smallest int112 or
* greater than largest int112).
*
* Counterpart to Solidity's `int112` operator.
*
* Requirements:
*
* - input must fit into 112 bits
*/functiontoInt112(int256 value) internalpurereturns (int112 downcasted) {
downcasted =int112(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(112, value);
}
}
/**
* @dev Returns the downcasted int104 from int256, reverting on
* overflow (when the input is less than smallest int104 or
* greater than largest int104).
*
* Counterpart to Solidity's `int104` operator.
*
* Requirements:
*
* - input must fit into 104 bits
*/functiontoInt104(int256 value) internalpurereturns (int104 downcasted) {
downcasted =int104(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(104, value);
}
}
/**
* @dev Returns the downcasted int96 from int256, reverting on
* overflow (when the input is less than smallest int96 or
* greater than largest int96).
*
* Counterpart to Solidity's `int96` operator.
*
* Requirements:
*
* - input must fit into 96 bits
*/functiontoInt96(int256 value) internalpurereturns (int96 downcasted) {
downcasted =int96(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(96, value);
}
}
/**
* @dev Returns the downcasted int88 from int256, reverting on
* overflow (when the input is less than smallest int88 or
* greater than largest int88).
*
* Counterpart to Solidity's `int88` operator.
*
* Requirements:
*
* - input must fit into 88 bits
*/functiontoInt88(int256 value) internalpurereturns (int88 downcasted) {
downcasted =int88(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(88, value);
}
}
/**
* @dev Returns the downcasted int80 from int256, reverting on
* overflow (when the input is less than smallest int80 or
* greater than largest int80).
*
* Counterpart to Solidity's `int80` operator.
*
* Requirements:
*
* - input must fit into 80 bits
*/functiontoInt80(int256 value) internalpurereturns (int80 downcasted) {
downcasted =int80(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(80, value);
}
}
/**
* @dev Returns the downcasted int72 from int256, reverting on
* overflow (when the input is less than smallest int72 or
* greater than largest int72).
*
* Counterpart to Solidity's `int72` operator.
*
* Requirements:
*
* - input must fit into 72 bits
*/functiontoInt72(int256 value) internalpurereturns (int72 downcasted) {
downcasted =int72(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(72, value);
}
}
/**
* @dev Returns the downcasted int64 from int256, reverting on
* overflow (when the input is less than smallest int64 or
* greater than largest int64).
*
* Counterpart to Solidity's `int64` operator.
*
* Requirements:
*
* - input must fit into 64 bits
*/functiontoInt64(int256 value) internalpurereturns (int64 downcasted) {
downcasted =int64(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(64, value);
}
}
/**
* @dev Returns the downcasted int56 from int256, reverting on
* overflow (when the input is less than smallest int56 or
* greater than largest int56).
*
* Counterpart to Solidity's `int56` operator.
*
* Requirements:
*
* - input must fit into 56 bits
*/functiontoInt56(int256 value) internalpurereturns (int56 downcasted) {
downcasted =int56(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(56, value);
}
}
/**
* @dev Returns the downcasted int48 from int256, reverting on
* overflow (when the input is less than smallest int48 or
* greater than largest int48).
*
* Counterpart to Solidity's `int48` operator.
*
* Requirements:
*
* - input must fit into 48 bits
*/functiontoInt48(int256 value) internalpurereturns (int48 downcasted) {
downcasted =int48(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(48, value);
}
}
/**
* @dev Returns the downcasted int40 from int256, reverting on
* overflow (when the input is less than smallest int40 or
* greater than largest int40).
*
* Counterpart to Solidity's `int40` operator.
*
* Requirements:
*
* - input must fit into 40 bits
*/functiontoInt40(int256 value) internalpurereturns (int40 downcasted) {
downcasted =int40(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(40, value);
}
}
/**
* @dev Returns the downcasted int32 from int256, reverting on
* overflow (when the input is less than smallest int32 or
* greater than largest int32).
*
* Counterpart to Solidity's `int32` operator.
*
* Requirements:
*
* - input must fit into 32 bits
*/functiontoInt32(int256 value) internalpurereturns (int32 downcasted) {
downcasted =int32(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(32, value);
}
}
/**
* @dev Returns the downcasted int24 from int256, reverting on
* overflow (when the input is less than smallest int24 or
* greater than largest int24).
*
* Counterpart to Solidity's `int24` operator.
*
* Requirements:
*
* - input must fit into 24 bits
*/functiontoInt24(int256 value) internalpurereturns (int24 downcasted) {
downcasted =int24(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(24, value);
}
}
/**
* @dev Returns the downcasted int16 from int256, reverting on
* overflow (when the input is less than smallest int16 or
* greater than largest int16).
*
* Counterpart to Solidity's `int16` operator.
*
* Requirements:
*
* - input must fit into 16 bits
*/functiontoInt16(int256 value) internalpurereturns (int16 downcasted) {
downcasted =int16(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(16, value);
}
}
/**
* @dev Returns the downcasted int8 from int256, reverting on
* overflow (when the input is less than smallest int8 or
* greater than largest int8).
*
* Counterpart to Solidity's `int8` operator.
*
* Requirements:
*
* - input must fit into 8 bits
*/functiontoInt8(int256 value) internalpurereturns (int8 downcasted) {
downcasted =int8(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(8, value);
}
}
/**
* @dev Converts an unsigned uint256 into a signed int256.
*
* Requirements:
*
* - input must be less than or equal to maxInt256.
*/functiontoInt256(uint256 value) internalpurereturns (int256) {
// Note: Unsafe cast below is okay because `type(int256).max` is guaranteed to be positiveif (value >uint256(type(int256).max)) {
revert SafeCastOverflowedUintToInt(value);
}
returnint256(value);
}
}
Contract Source Code
File 22 of 29: SafeERC20.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC20/utils/SafeERC20.sol)pragmasolidity ^0.8.20;import {IERC20} from"../IERC20.sol";
import {IERC20Permit} from"../extensions/IERC20Permit.sol";
import {Address} from"../../../utils/Address.sol";
/**
* @title SafeERC20
* @dev Wrappers around ERC20 operations that throw on failure (when the token
* contract returns false). Tokens that return no value (and instead revert or
* throw on failure) are also supported, non-reverting calls are assumed to be
* successful.
* To use this library you can add a `using SafeERC20 for IERC20;` statement to your contract,
* which allows you to call the safe operations as `token.safeTransfer(...)`, etc.
*/librarySafeERC20{
usingAddressforaddress;
/**
* @dev An operation with an ERC20 token failed.
*/errorSafeERC20FailedOperation(address token);
/**
* @dev Indicates a failed `decreaseAllowance` request.
*/errorSafeERC20FailedDecreaseAllowance(address spender, uint256 currentAllowance, uint256 requestedDecrease);
/**
* @dev Transfer `value` amount of `token` from the calling contract to `to`. If `token` returns no value,
* non-reverting calls are assumed to be successful.
*/functionsafeTransfer(IERC20 token, address to, uint256 value) internal{
_callOptionalReturn(token, abi.encodeCall(token.transfer, (to, value)));
}
/**
* @dev Transfer `value` amount of `token` from `from` to `to`, spending the approval given by `from` to the
* calling contract. If `token` returns no value, non-reverting calls are assumed to be successful.
*/functionsafeTransferFrom(IERC20 token, addressfrom, address to, uint256 value) internal{
_callOptionalReturn(token, abi.encodeCall(token.transferFrom, (from, to, value)));
}
/**
* @dev Increase the calling contract's allowance toward `spender` by `value`. If `token` returns no value,
* non-reverting calls are assumed to be successful.
*/functionsafeIncreaseAllowance(IERC20 token, address spender, uint256 value) internal{
uint256 oldAllowance = token.allowance(address(this), spender);
forceApprove(token, spender, oldAllowance + value);
}
/**
* @dev Decrease the calling contract's allowance toward `spender` by `requestedDecrease`. If `token` returns no value,
* non-reverting calls are assumed to be successful.
*/functionsafeDecreaseAllowance(IERC20 token, address spender, uint256 requestedDecrease) internal{
unchecked {
uint256 currentAllowance = token.allowance(address(this), spender);
if (currentAllowance < requestedDecrease) {
revert SafeERC20FailedDecreaseAllowance(spender, currentAllowance, requestedDecrease);
}
forceApprove(token, spender, currentAllowance - requestedDecrease);
}
}
/**
* @dev Set the calling contract's allowance toward `spender` to `value`. If `token` returns no value,
* non-reverting calls are assumed to be successful. Meant to be used with tokens that require the approval
* to be set to zero before setting it to a non-zero value, such as USDT.
*/functionforceApprove(IERC20 token, address spender, uint256 value) internal{
bytesmemory approvalCall =abi.encodeCall(token.approve, (spender, value));
if (!_callOptionalReturnBool(token, approvalCall)) {
_callOptionalReturn(token, abi.encodeCall(token.approve, (spender, 0)));
_callOptionalReturn(token, approvalCall);
}
}
/**
* @dev Use a ERC-2612 signature to set the `owner` approval toward `spender` on `token`.
* Revert on invalid signature.
*/functionsafePermit(
IERC20Permit token,
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) internal{
uint256 nonceBefore = token.nonces(owner);
token.permit(owner, spender, value, deadline, v, r, s);
uint256 nonceAfter = token.nonces(owner);
if (nonceAfter != nonceBefore +1) {
revert SafeERC20FailedOperation(address(token));
}
}
/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*/function_callOptionalReturn(IERC20 token, bytesmemory data) private{
// We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since// we're implementing it ourselves. We use {Address-functionCall} to perform this call, which verifies that// the target address contains contract code and also asserts for success in the low-level call.bytesmemory returndata =address(token).functionCall(data);
if (returndata.length!=0&&!abi.decode(returndata, (bool))) {
revert SafeERC20FailedOperation(address(token));
}
}
/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*
* This is a variant of {_callOptionalReturn} that silents catches all reverts and returns a bool instead.
*/function_callOptionalReturnBool(IERC20 token, bytesmemory data) privatereturns (bool) {
// We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since// we're implementing it ourselves. We cannot use {Address-functionCall} here since this should return false// and not revert is the subcall reverts.
(bool success, bytesmemory returndata) =address(token).call(data);
return success && (returndata.length==0||abi.decode(returndata, (bool))) &&address(token).code.length>0;
}
}
Contract Source Code
File 23 of 29: SafetyDelay.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.19;import {IVetoCouncil} from"@/interfaces/IVetoCouncil.sol";
import {SafeERC20} from"@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
import {IERC20} from"@openzeppelin/contracts/token/ERC20/IERC20.sol";
/**
* @dev Struct representing a holding of tokens in the HoldingContract.
* @param amount The amount of tokens being held.
* @param expirationTimestamp The timestamp at which the holding expires and can be withdrawn.
*/structHolding {
uint192 amount;
uint64 expirationTimestamp;
}
/**
* @dev a helper type to organize claim holdings arguments
* @param user the address of the user
* @param token the address of the USDC token to withdraw
*/structClaimHoldingArgs {
address user;
address token;
}
interfaceISafetyDelay{
functionaddHolding(address user, address token, uint192 amount) external;
functionholdings(address user, address token) externalviewreturns (Holding memory);
functionclaimHoldings(ClaimHoldingArgs[] memory args) external;
}
/**
* @title SafetyDelay
* @notice This contract is used to hold tokens for users
* - This contract holds all USDC tokens that are part of the protocol
* - Once farms withdraw, there is a 1 week delay before they can claim their tokens
* - The Miner Pool Contract assigns these holdings as part of the withdraw process
* - Veto Agents can delay all withdrawals by 13 weeks
* - A holding can be max delayed for 97 days
*/contractSafetyDelayisISafetyDelay{
/* -------------------------------------------------------------------------- *//* errors *//* -------------------------------------------------------------------------- */errorOnlyMinerPoolCanAddHoldings();
errorWithdrawalNotReady();
errorCallerMustBeVetoCouncilMember();
errorDelayStillOnCooldown();
errorNetworkIsFrozen();
errorAlreadyWithdrawnFromHolding();
errorMinerPoolAlreadySet();
/* -------------------------------------------------------------------------- *//* constants *//* -------------------------------------------------------------------------- *//**
* @notice the default delay for withdrawals
* @dev the default delay is 7 days
* Whenever a user withdraws from the miner pool,
* their funds are locked for 7 days
*/uint256publicconstant DEFAULT_DELAY =uint256(7days);
/**
* @dev 90 days in seconds
*/uint256publicconstant NINETY_DAYS =uint256(90days);
/**
* @notice the delay for withdrawals after the network is delayed
* @dev the delay is 13 weeks
* all withdrawals will be delayed for 13 weeks
*/uint256publicconstant VETO_HOLDING_DELAY =uint256(13weeks);
/**
* @dev a cached version of five weeks in seconds
* @dev used in delayNetwork to ensure that the network can only be delayed every 5 weeks
* @dev This helps prevent bad veto agents from spamming the delay network function
* - by giving governance enough time to kick out the veto agent
*/uint256publicconstant FIVE_WEEKS =uint256(5weeks);
/* -------------------------------------------------------------e------------- *//* immutables *//* -------------------------------------------------------------------------- *//**
* @notice the address of the veto council
* @dev veto council members can delay the network
*/
IVetoCouncil publicimmutable VETO_COUNCIL;
/**
* @notice the address of the miner pool
* @dev this is the address that can add holdings to the contract
*/addresspublicimmutable MINER_POOL;
/* -------------------------------------------------------------------------- *//* state vars *//* -------------------------------------------------------------------------- *//**
* @notice the minimum timestamp for withdrawals
* @dev any claims below this timestamp will revert
*/uint256public minimumWithdrawTimestamp;
/* -------------------------------------------------------------------------- *//* mappings *//* -------------------------------------------------------------------------- *//**
* @notice the holdings for each user
* Note: We could have chosen an array of holdings
* such that each withdraw truly is a FIFO queue with 1 week delay
* However, we chose to store all holdings in a single slot
* to avoid cold sstores and sloads
* The downside of this approach is that we can't have a FIFO queue
* and that any time a withdraw is made from the miner pool contract
* the user's holdings are locked for 7 days
*/mapping(address=>mapping(address=> Holding)) private _holdings;
/* -------------------------------------------------------------------------- *//* events *//* -------------------------------------------------------------------------- *//**
* @dev emitted when there is a network delay
* @param vetoAgent the address of the veto agent that delayed the network
* @param timestamp the timestamp at which the network was delayed
*/eventNetworkDelay(address vetoAgent, uint256 timestamp);
/**
* @dev emitted whenever a holding is added to a user
* @param user the address of the user
* @param token the address of the USDC token
* @param amount the amount of tokens added to the holding
* @dev we dont emit a {HoldingClaimed} event since there may be a tax
* - on the token that will mess up the data.
* - we rely on catching transfer events
*/eventHoldingAdded(addressindexed user, addressindexed token, uint192 amount);
/*
* @notice emitted when a user claims their holding
* @param user the address of the user
* @param token the address of the USDC token
* @param amount the amount of tokens claimed
*/eventHoldingClaimed(addressindexed user, addressindexed token, uint192 amount);
/* -------------------------------------------------------------------------- *//* constructor *//* -------------------------------------------------------------------------- *//**
* @param _vetoCouncil the address of the veto council
* @param _minerPool the address of the miner pool
*/constructor(address _vetoCouncil, address _minerPool) payable{
VETO_COUNCIL = IVetoCouncil(_vetoCouncil);
MINER_POOL = _minerPool;
}
/* -------------------------------------------------------------------------- *//* delay *//* -------------------------------------------------------------------------- *//**
* @notice allows veto council members to delay the network by 13 weeks
*/functiondelayNetwork() external{
if (!VETO_COUNCIL.isCouncilMember(msg.sender)) {
_revert(CallerMustBeVetoCouncilMember.selector);
}
uint256 _minimumWithdrawTimestamp = minimumWithdrawTimestamp;
if (_minimumWithdrawTimestamp ==0) {
minimumWithdrawTimestamp =block.timestamp+ VETO_HOLDING_DELAY;
emit NetworkDelay(msg.sender, block.timestamp);
return;
}
if (block.timestamp< _minimumWithdrawTimestamp) {
//The block.timestamp needs to be within 5 weeks of//minimumWithdrawTimestampuint256 timeLeftInDelay = _minimumWithdrawTimestamp -block.timestamp;
if (timeLeftInDelay > FIVE_WEEKS) {
_revert(DelayStillOnCooldown.selector);
}
}
minimumWithdrawTimestamp =block.timestamp+ VETO_HOLDING_DELAY;
emit NetworkDelay(msg.sender, block.timestamp);
}
/* -------------------------------------------------------------------------- *//* claim *//* -------------------------------------------------------------------------- *//**
* @notice entrypoint to claim holdings
* @param args - an array of {ClaimHoldingArgs}
* @dev this is a batch method to claim holdings
* - this is more gas efficient than calling claimHolding for each holding
* - the protocol may use a relayer to bundle claims
*/functionclaimHoldings(ClaimHoldingArgs[] memory args) external{
//If the network is frozen, don't allow withdrawalsbool networkIsFrozen = isNetworkFrozen();
//Loop over all the argumentsuint256 len = args.length;
for (uint256 i; i < len;) {
ClaimHoldingArgs memory arg = args[i];
_claimHolding(arg.user, arg.token, networkIsFrozen);
unchecked {
++i;
}
}
}
/**
* @notice entrypoint to claim a single holding
* @param user the address of the user
* @param token the address of the USDC token to withdraw
* @dev should be used if the user only wants to claim their holding
*/functionclaimHoldingSingleton(address user, address token) external{
// If the network is frozen and timestamp since expiration is not more than 90 days, don't allow withdrawalsbool networkIsFrozen = isNetworkFrozen();
_claimHolding(user, token, networkIsFrozen);
}
/* -------------------------------------------------------------------------- *//* add holdings *//* -------------------------------------------------------------------------- *//**
* @notice an internal method to increment the amount in a holding
* @param user the address of the user
* @param token the address of the USDC token to withdraw
* @param amount the amount of tokens to add to the holding
*/functionaddHolding(address user, address token, uint192 amount) external{
if (msg.sender!= MINER_POOL) {
_revert(OnlyMinerPoolCanAddHoldings.selector);
}
_holdings[user][token].amount += amount;
_holdings[user][token].expirationTimestamp =uint64(block.timestamp+ DEFAULT_DELAY);
emit HoldingAdded(user, token, amount);
}
/* -------------------------------------------------------------------------- *//* view functions *//* -------------------------------------------------------------------------- *//**
* @notice returns the Holding struct for a user and token pair
* @param user the address of the user
* @param token the address of the USDC token to withdraw
* @return holding - the Holding struct
*/functionholdings(address user, address token) externalviewreturns (Holding memory) {
return _holdings[user][token];
}
/**
* @notice returns true if the network is frozen
* @dev the network is frozen if the minimumWithdrawTimestamp is greater than the current block timestamp
* @return isNetworkFrozen - true if the network is frozen
*/functionisNetworkFrozen() publicviewreturns (bool) {
returnblock.timestamp< minimumWithdrawTimestamp;
}
/**
* @dev checks if the holding is available to be withdrawn
* @param holdingExpirationTimestamp the timestamp at which the holding expires
* @param isNetworkFrozen whether or not the network is currently frozen
* @dev - if the network is frozen, the holding can be withdrawn only if it's been more than 90 days past the expiration of the holding
* - if the network is not frozen, the holding can be withdrawn only if it's past the expiration date of the holding
*/functioncheckHoldingAvailable(uint64 holdingExpirationTimestamp, bool isNetworkFrozen) internalview{
if (block.timestamp< holdingExpirationTimestamp) {
_revert(WithdrawalNotReady.selector);
}
//Can't underflow because of the check above//No claim should be able to be held for more than 97 days//If it's been less than than 97 days since the proposal has expired,//(expiration timestamp is always claim timestamp + 1 week, so )//in order for proposal to be held maximum 97 days,//We need to check if the diff is 90 daysif (block.timestamp- holdingExpirationTimestamp < NINETY_DAYS) {
if (isNetworkFrozen) {
_revert(NetworkIsFrozen.selector);
}
}
}
/* -------------------------------------------------------------------------- *//* utils *//* -------------------------------------------------------------------------- *//**
* @dev an internal method to claim a holding
* @param user the address of the user
* @param token the address of the USDC token to withdraw
* @param networkIsFrozen whether or not the network is currently frozen
*/function_claimHolding(address user, address token, bool networkIsFrozen) internal{
Holding memory holding = _holdings[user][token];
checkHoldingAvailable(holding.expirationTimestamp, networkIsFrozen);
//Delete the holding args.//Should set all the data to zero.delete _holdings[user][token];
//Add the amount to the amount to transfer
SafeERC20.safeTransfer(IERC20(token), user, holding.amount);
emit HoldingClaimed(user, token, holding.amount);
}
/**
* @dev more efficient reverts
* @param selector the selector of the error
*/function_revert(bytes4 selector) internalpure{
// solhint-disable-next-line no-inline-assemblyassembly {
mstore(0, selector)
revert(0, 4)
}
}
}
Contract Source Code
File 24 of 29: ShortStrings.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/ShortStrings.sol)pragmasolidity ^0.8.20;import {StorageSlot} from"./StorageSlot.sol";
// | string | 0xAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA |// | length | 0x BB |type ShortString isbytes32;
/**
* @dev This library provides functions to convert short memory strings
* into a `ShortString` type that can be used as an immutable variable.
*
* Strings of arbitrary length can be optimized using this library if
* they are short enough (up to 31 bytes) by packing them with their
* length (1 byte) in a single EVM word (32 bytes). Additionally, a
* fallback mechanism can be used for every other case.
*
* Usage example:
*
* ```solidity
* contract Named {
* using ShortStrings for *;
*
* ShortString private immutable _name;
* string private _nameFallback;
*
* constructor(string memory contractName) {
* _name = contractName.toShortStringWithFallback(_nameFallback);
* }
*
* function name() external view returns (string memory) {
* return _name.toStringWithFallback(_nameFallback);
* }
* }
* ```
*/libraryShortStrings{
// Used as an identifier for strings longer than 31 bytes.bytes32privateconstant _FALLBACK_SENTINEL =0x00000000000000000000000000000000000000000000000000000000000000FF;
errorStringTooLong(string str);
errorInvalidShortString();
/**
* @dev Encode a string of at most 31 chars into a `ShortString`.
*
* This will trigger a `StringTooLong` error is the input string is too long.
*/functiontoShortString(stringmemory str) internalpurereturns (ShortString) {
bytesmemory bstr =bytes(str);
if (bstr.length>31) {
revert StringTooLong(str);
}
return ShortString.wrap(bytes32(uint256(bytes32(bstr)) | bstr.length));
}
/**
* @dev Decode a `ShortString` back to a "normal" string.
*/functiontoString(ShortString sstr) internalpurereturns (stringmemory) {
uint256 len = byteLength(sstr);
// using `new string(len)` would work locally but is not memory safe.stringmemory str =newstring(32);
/// @solidity memory-safe-assemblyassembly {
mstore(str, len)
mstore(add(str, 0x20), sstr)
}
return str;
}
/**
* @dev Return the length of a `ShortString`.
*/functionbyteLength(ShortString sstr) internalpurereturns (uint256) {
uint256 result =uint256(ShortString.unwrap(sstr)) &0xFF;
if (result >31) {
revert InvalidShortString();
}
return result;
}
/**
* @dev Encode a string into a `ShortString`, or write it to storage if it is too long.
*/functiontoShortStringWithFallback(stringmemory value, stringstorage store) internalreturns (ShortString) {
if (bytes(value).length<32) {
return toShortString(value);
} else {
StorageSlot.getStringSlot(store).value= value;
return ShortString.wrap(_FALLBACK_SENTINEL);
}
}
/**
* @dev Decode a string that was encoded to `ShortString` or written to storage using {setWithFallback}.
*/functiontoStringWithFallback(ShortString value, stringstorage store) internalpurereturns (stringmemory) {
if (ShortString.unwrap(value) != _FALLBACK_SENTINEL) {
return toString(value);
} else {
return store;
}
}
/**
* @dev Return the length of a string that was encoded to `ShortString` or written to storage using {setWithFallback}.
*
* WARNING: This will return the "byte length" of the string. This may not reflect the actual length in terms of
* actual characters as the UTF-8 encoding of a single character can span over multiple bytes.
*/functionbyteLengthWithFallback(ShortString value, stringstorage store) internalviewreturns (uint256) {
if (ShortString.unwrap(value) != _FALLBACK_SENTINEL) {
return byteLength(value);
} else {
returnbytes(store).length;
}
}
}
Contract Source Code
File 25 of 29: SignatureChecker.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/cryptography/SignatureChecker.sol)pragmasolidity ^0.8.20;import {ECDSA} from"./ECDSA.sol";
import {IERC1271} from"../../interfaces/IERC1271.sol";
/**
* @dev Signature verification helper that can be used instead of `ECDSA.recover` to seamlessly support both ECDSA
* signatures from externally owned accounts (EOAs) as well as ERC1271 signatures from smart contract wallets like
* Argent and Safe Wallet (previously Gnosis Safe).
*/librarySignatureChecker{
/**
* @dev Checks if a signature is valid for a given signer and data hash. If the signer is a smart contract, the
* signature is validated against that smart contract using ERC1271, otherwise it's validated using `ECDSA.recover`.
*
* NOTE: Unlike ECDSA signatures, contract signatures are revocable, and the outcome of this function can thus
* change through time. It could return true at block N and false at block N+1 (or the opposite).
*/functionisValidSignatureNow(address signer, bytes32 hash, bytesmemory signature) internalviewreturns (bool) {
(address recovered, ECDSA.RecoverError error, ) = ECDSA.tryRecover(hash, signature);
return
(error == ECDSA.RecoverError.NoError && recovered == signer) ||
isValidERC1271SignatureNow(signer, hash, signature);
}
/**
* @dev Checks if a signature is valid for a given signer and data hash. The signature is validated
* against the signer smart contract using ERC1271.
*
* NOTE: Unlike ECDSA signatures, contract signatures are revocable, and the outcome of this function can thus
* change through time. It could return true at block N and false at block N+1 (or the opposite).
*/functionisValidERC1271SignatureNow(address signer,
bytes32 hash,
bytesmemory signature
) internalviewreturns (bool) {
(bool success, bytesmemory result) = signer.staticcall(
abi.encodeCall(IERC1271.isValidSignature, (hash, signature))
);
return (success &&
result.length>=32&&abi.decode(result, (bytes32)) ==bytes32(IERC1271.isValidSignature.selector));
}
}
Contract Source Code
File 26 of 29: SignedMath.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.8.0) (utils/math/SignedMath.sol)pragmasolidity ^0.8.20;/**
* @dev Standard signed math utilities missing in the Solidity language.
*/librarySignedMath{
/**
* @dev Returns the largest of two signed numbers.
*/functionmax(int256 a, int256 b) internalpurereturns (int256) {
return a > b ? a : b;
}
/**
* @dev Returns the smallest of two signed numbers.
*/functionmin(int256 a, int256 b) internalpurereturns (int256) {
return a < b ? a : b;
}
/**
* @dev Returns the average of two signed numbers without overflow.
* The result is rounded towards zero.
*/functionaverage(int256 a, int256 b) internalpurereturns (int256) {
// Formula from the book "Hacker's Delight"int256 x = (a & b) + ((a ^ b) >>1);
return x + (int256(uint256(x) >>255) & (a ^ b));
}
/**
* @dev Returns the absolute unsigned value of a signed value.
*/functionabs(int256 n) internalpurereturns (uint256) {
unchecked {
// must be unchecked in order to support `n = type(int256).min`returnuint256(n >=0 ? n : -n);
}
}
}
Contract Source Code
File 27 of 29: StorageSlot.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/StorageSlot.sol)// This file was procedurally generated from scripts/generate/templates/StorageSlot.js.pragmasolidity ^0.8.20;/**
* @dev Library for reading and writing primitive types to specific storage slots.
*
* Storage slots are often used to avoid storage conflict when dealing with upgradeable contracts.
* This library helps with reading and writing to such slots without the need for inline assembly.
*
* The functions in this library return Slot structs that contain a `value` member that can be used to read or write.
*
* Example usage to set ERC1967 implementation slot:
* ```solidity
* contract ERC1967 {
* bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
*
* function _getImplementation() internal view returns (address) {
* return StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value;
* }
*
* function _setImplementation(address newImplementation) internal {
* require(newImplementation.code.length > 0);
* StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
* }
* }
* ```
*/libraryStorageSlot{
structAddressSlot {
address value;
}
structBooleanSlot {
bool value;
}
structBytes32Slot {
bytes32 value;
}
structUint256Slot {
uint256 value;
}
structStringSlot {
string value;
}
structBytesSlot {
bytes value;
}
/**
* @dev Returns an `AddressSlot` with member `value` located at `slot`.
*/functiongetAddressSlot(bytes32 slot) internalpurereturns (AddressSlot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= slot
}
}
/**
* @dev Returns an `BooleanSlot` with member `value` located at `slot`.
*/functiongetBooleanSlot(bytes32 slot) internalpurereturns (BooleanSlot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= slot
}
}
/**
* @dev Returns an `Bytes32Slot` with member `value` located at `slot`.
*/functiongetBytes32Slot(bytes32 slot) internalpurereturns (Bytes32Slot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= slot
}
}
/**
* @dev Returns an `Uint256Slot` with member `value` located at `slot`.
*/functiongetUint256Slot(bytes32 slot) internalpurereturns (Uint256Slot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= slot
}
}
/**
* @dev Returns an `StringSlot` with member `value` located at `slot`.
*/functiongetStringSlot(bytes32 slot) internalpurereturns (StringSlot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= slot
}
}
/**
* @dev Returns an `StringSlot` representation of the string storage pointer `store`.
*/functiongetStringSlot(stringstorage store) internalpurereturns (StringSlot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= store.slot
}
}
/**
* @dev Returns an `BytesSlot` with member `value` located at `slot`.
*/functiongetBytesSlot(bytes32 slot) internalpurereturns (BytesSlot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= slot
}
}
/**
* @dev Returns an `BytesSlot` representation of the bytes storage pointer `store`.
*/functiongetBytesSlot(bytesstorage store) internalpurereturns (BytesSlot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= store.slot
}
}
}
Contract Source Code
File 28 of 29: Strings.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/Strings.sol)pragmasolidity ^0.8.20;import {Math} from"./math/Math.sol";
import {SignedMath} from"./math/SignedMath.sol";
/**
* @dev String operations.
*/libraryStrings{
bytes16privateconstant _HEX_DIGITS ="0123456789abcdef";
uint8privateconstant _ADDRESS_LENGTH =20;
/**
* @dev The `value` string doesn't fit in the specified `length`.
*/errorStringsInsufficientHexLength(uint256 value, uint256 length);
/**
* @dev Converts a `uint256` to its ASCII `string` decimal representation.
*/functiontoString(uint256 value) internalpurereturns (stringmemory) {
unchecked {
uint256 length = Math.log10(value) +1;
stringmemory buffer =newstring(length);
uint256 ptr;
/// @solidity memory-safe-assemblyassembly {
ptr :=add(buffer, add(32, length))
}
while (true) {
ptr--;
/// @solidity memory-safe-assemblyassembly {
mstore8(ptr, byte(mod(value, 10), _HEX_DIGITS))
}
value /=10;
if (value ==0) break;
}
return buffer;
}
}
/**
* @dev Converts a `int256` to its ASCII `string` decimal representation.
*/functiontoStringSigned(int256 value) internalpurereturns (stringmemory) {
returnstring.concat(value <0 ? "-" : "", toString(SignedMath.abs(value)));
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation.
*/functiontoHexString(uint256 value) internalpurereturns (stringmemory) {
unchecked {
return toHexString(value, Math.log256(value) +1);
}
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation with fixed length.
*/functiontoHexString(uint256 value, uint256 length) internalpurereturns (stringmemory) {
uint256 localValue = value;
bytesmemory buffer =newbytes(2* length +2);
buffer[0] ="0";
buffer[1] ="x";
for (uint256 i =2* length +1; i >1; --i) {
buffer[i] = _HEX_DIGITS[localValue &0xf];
localValue >>=4;
}
if (localValue !=0) {
revert StringsInsufficientHexLength(value, length);
}
returnstring(buffer);
}
/**
* @dev Converts an `address` with fixed length of 20 bytes to its not checksummed ASCII `string` hexadecimal representation.
*/functiontoHexString(address addr) internalpurereturns (stringmemory) {
return toHexString(uint256(uint160(addr)), _ADDRESS_LENGTH);
}
/**
* @dev Returns true if the two strings are equal.
*/functionequal(stringmemory a, stringmemory b) internalpurereturns (bool) {
returnbytes(a).length==bytes(b).length&&keccak256(bytes(a)) ==keccak256(bytes(b));
}
}
Contract Source Code
File 29 of 29: VestingMathLib.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.19;uint256constant VESTING_PERIODS =100;
/// @dev the maximum amount of seconds a second can vest for/// @dev this is to prevent a second from over-vesting in payout/// @dev since rewards vest at 1% per week, this is 100 weeksuint256constant MAX_VESTING_SECONDS =uint256(7days) *100;
libraryVestingMathLib{
/**
* @dev Find total owed now and slashable balance using the summation of an arithmetic series
* @dev formula = n/2 * (2a + (n-1)d) or n/2 * (a + l)
* @dev read more about this https://github.com/glowlabs-org/glow-docs/issues/4
* @param rewardsPerSecond - the amount of glow per second the agent earns
* @param secondsActive - the amount of seconds the agent has worked on a given shift
* @param secondsStopped - the amount of seconds since the agent has stopped working on their shift
* @param amountAlreadyWithdrawn - the amount of glow already withdrawn by the agent
* @return withdrawableAmount - the amount of glow owed now
* @return slashableAmount - the total slashable amount of glow (total owed - withdrawableAmount)
*/functioncalculateWithdrawableAmountAndSlashableAmount(uint256 rewardsPerSecond,
uint256 secondsActive,
uint256 secondsStopped,
uint256 amountAlreadyWithdrawn
) internalpurereturns (uint256 withdrawableAmount, uint256 slashableAmount) {
//Placeholder for fully vested seconds.uint256 fullyVestedSeconds;
//If (secondsActive + secondsStopped) > MAX_VESTING_SECONDS,//That means that there are some seconds that are fully vested.if (secondsActive + secondsStopped > MAX_VESTING_SECONDS) {
//The fully vested seconds are as follows:
fullyVestedSeconds = secondsActive + secondsStopped - MAX_VESTING_SECONDS;
}
//We make sure that the fully vested seconds are not greater than the seconds active.//This can happen as secondsStopped grows once the agent stops workingif (fullyVestedSeconds > secondsActive) {
fullyVestedSeconds = secondsActive;
}
//The fully vested rewards are a result of the fully vested seconds * the rewards per second.uint256 fullyVestedRewards = rewardsPerSecond * fullyVestedSeconds;
//The partially vested seconds are the seconds active minus the fully vested seconds.uint256 partiallyVestedSeconds = secondsActive - fullyVestedSeconds;
uint256 lowestValueSecond = (1+ secondsStopped) * rewardsPerSecond / MAX_VESTING_SECONDS;
uint256 highestValueSecond = (secondsActive + secondsStopped) * rewardsPerSecond / MAX_VESTING_SECONDS;
if (highestValueSecond > rewardsPerSecond) {
highestValueSecond = rewardsPerSecond;
}
//Arithmetic seriesuint256 partiallyVestedSecondsValue = partiallyVestedSeconds * (lowestValueSecond + highestValueSecond) /2;
uint256 totalRewards = secondsActive * rewardsPerSecond;
withdrawableAmount = fullyVestedRewards + partiallyVestedSecondsValue;
slashableAmount = totalRewards - withdrawableAmount;
withdrawableAmount -= amountAlreadyWithdrawn;
return (withdrawableAmount, slashableAmount);
}
}
