// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.8.0) (utils/Address.sol)pragmasolidity ^0.8.1;/**
* @dev Collection of functions related to the address type
*/libraryAddress{
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]
* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* - an externally-owned account
* - a contract in construction
* - an address where a contract will be created
* - an address where a contract lived, but was destroyed
* ====
*
* [IMPORTANT]
* ====
* You shouldn't rely on `isContract` to protect against flash loan attacks!
*
* Preventing calls from contracts is highly discouraged. It breaks composability, breaks support for smart wallets
* like Gnosis Safe, and does not provide security since it can be circumvented by calling from a contract
* constructor.
* ====
*/functionisContract(address account) internalviewreturns (bool) {
// This method relies on extcodesize/address.code.length, which returns 0// for contracts in construction, since the code is only stored at the end// of the constructor execution.return account.code.length>0;
}
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://diligence.consensys.net/posts/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.5.11/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/functionsendValue(addresspayable recipient, uint256 amount) internal{
require(address(this).balance>= amount, "Address: insufficient balance");
(bool success, ) = recipient.call{value: amount}("");
require(success, "Address: unable to send value, recipient may have reverted");
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain `call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/functionfunctionCall(address target, bytesmemory data) internalreturns (bytesmemory) {
return functionCallWithValue(target, data, 0, "Address: low-level call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/functionfunctionCall(address target,
bytesmemory data,
stringmemory errorMessage
) internalreturns (bytesmemory) {
return functionCallWithValue(target, data, 0, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/functionfunctionCallWithValue(address target,
bytesmemory data,
uint256 value
) internalreturns (bytesmemory) {
return functionCallWithValue(target, data, value, "Address: low-level call with value failed");
}
/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/functionfunctionCallWithValue(address target,
bytesmemory data,
uint256 value,
stringmemory errorMessage
) internalreturns (bytesmemory) {
require(address(this).balance>= value, "Address: insufficient balance for call");
(bool success, bytesmemory returndata) = target.call{value: value}(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/functionfunctionStaticCall(address target, bytesmemory data) internalviewreturns (bytesmemory) {
return functionStaticCall(target, data, "Address: low-level static call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/functionfunctionStaticCall(address target,
bytesmemory data,
stringmemory errorMessage
) internalviewreturns (bytesmemory) {
(bool success, bytesmemory returndata) = target.staticcall(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/functionfunctionDelegateCall(address target, bytesmemory data) internalreturns (bytesmemory) {
return functionDelegateCall(target, data, "Address: low-level delegate call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/functionfunctionDelegateCall(address target,
bytesmemory data,
stringmemory errorMessage
) internalreturns (bytesmemory) {
(bool success, bytesmemory returndata) = target.delegatecall(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Tool to verify that a low level call to smart-contract was successful, and revert (either by bubbling
* the revert reason or using the provided one) in case of unsuccessful call or if target was not a contract.
*
* _Available since v4.8._
*/functionverifyCallResultFromTarget(address target,
bool success,
bytesmemory returndata,
stringmemory errorMessage
) internalviewreturns (bytesmemory) {
if (success) {
if (returndata.length==0) {
// only check isContract if the call was successful and the return data is empty// otherwise we already know that it was a contractrequire(isContract(target), "Address: call to non-contract");
}
return returndata;
} else {
_revert(returndata, errorMessage);
}
}
/**
* @dev Tool to verify that a low level call was successful, and revert if it wasn't, either by bubbling the
* revert reason or using the provided one.
*
* _Available since v4.3._
*/functionverifyCallResult(bool success,
bytesmemory returndata,
stringmemory errorMessage
) internalpurereturns (bytesmemory) {
if (success) {
return returndata;
} else {
_revert(returndata, errorMessage);
}
}
function_revert(bytesmemory returndata, stringmemory errorMessage) privatepure{
// Look for revert reason and bubble it up if presentif (returndata.length>0) {
// The easiest way to bubble the revert reason is using memory via assembly/// @solidity memory-safe-assemblyassembly {
let returndata_size :=mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}
Contract Source Code
File 2 of 14: CommandBuilder.sol
// SPDX-License-Identifier: MITpragmasolidity 0.8.17;libraryCommandBuilder{
uint256constant IDX_VARIABLE_LENGTH =0x80;
uint256constant IDX_VALUE_MASK =0x7f;
uint256constant IDX_END_OF_ARGS =0xff;
uint256constant IDX_USE_STATE =0xfe;
functionbuildInputs(bytes[] memory state,
bytes4 selector,
bytes32 indices
) internalviewreturns (bytesmemory ret) {
uint256 count; // Number of bytes in whole ABI encoded messageuint256 free; // Pointer to first free byte in tail part of messagebytesmemory stateData; // Optionally encode the current state if the call requires ituint256 idx;
// Determine the length of the encoded datafor (uint256 i; i <32;) {
idx =uint8(indices[i]);
if (idx == IDX_END_OF_ARGS) break;
if (idx & IDX_VARIABLE_LENGTH !=0) {
if (idx == IDX_USE_STATE) {
if (stateData.length==0) {
stateData =abi.encode(state);
}
count += stateData.length;
} else {
// Add the size of the value, rounded up to the next word boundary, plus space for pointer and lengthuint256 arglen = state[idx & IDX_VALUE_MASK].length;
require(
arglen %32==0,
"Dynamic state variables must be a multiple of 32 bytes"
);
count += arglen +32;
}
} else {
require(
state[idx & IDX_VALUE_MASK].length==32,
"Static state variables must be 32 bytes"
);
count +=32;
}
unchecked{free +=32;}
unchecked{++i;}
}
// Encode it
ret =newbytes(count +4);
assembly {
mstore(add(ret, 32), selector)
}
count =0;
for (uint256 i; i <32;) {
idx =uint8(indices[i]);
if (idx == IDX_END_OF_ARGS) break;
if (idx & IDX_VARIABLE_LENGTH !=0) {
if (idx == IDX_USE_STATE) {
assembly {
mstore(add(add(ret, 36), count), free)
}
memcpy(stateData, 32, ret, free +4, stateData.length-32);
free += stateData.length-32;
} else {
uint256 arglen = state[idx & IDX_VALUE_MASK].length;
// Variable length data; put a pointer in the slot and write the data at the endassembly {
mstore(add(add(ret, 36), count), free)
}
memcpy(
state[idx & IDX_VALUE_MASK],
0,
ret,
free +4,
arglen
);
free += arglen;
}
} else {
// Fixed length data; write it directlybytesmemory statevar = state[idx & IDX_VALUE_MASK];
assembly {
mstore(add(add(ret, 36), count), mload(add(statevar, 32)))
}
}
unchecked{count +=32;}
unchecked{++i;}
}
}
functionwriteOutputs(bytes[] memory state,
bytes1 index,
bytesmemory output
) internalviewreturns (bytes[] memory) {
uint256 idx =uint8(index);
if (idx == IDX_END_OF_ARGS) return state;
if (idx & IDX_VARIABLE_LENGTH !=0) {
if (idx == IDX_USE_STATE) {
state =abi.decode(output, (bytes[]));
} else {
// Check the first field is 0x20 (because we have only a single return value)uint256 argptr;
assembly {
argptr :=mload(add(output, 32))
}
require(
argptr ==32,
"Only one return value permitted (variable)"
);
assembly {
// Overwrite the first word of the return data with the length - 32mstore(add(output, 32), sub(mload(output), 32))
// Insert a pointer to the return data, starting at the second word, into statemstore(
add(add(state, 32), mul(and(idx, IDX_VALUE_MASK), 32)),
add(output, 32)
)
}
}
} else {
require(output.length>=32, "Return at least 32 bytes");
// Single word// require(// output.length == 32,// "Only one return value permitted (static)"// );// There are rare instances of contracts whoes ABI indicate a single word return returning more than 1 word// returndata buffers containing a single word of data.if (output.length>32) {
// Truncate returndata to proper sizebytesmemory newOutput =newbytes(32);
memcpy(output, 0, newOutput, 0, output.length);
output = newOutput;
}
state[idx & IDX_VALUE_MASK] = output;
}
return state;
}
functionwriteTuple(bytes[] memory state,
bytes1 index,
bytesmemory output
) internalview{
uint256 idx =uint256(uint8(index));
if (idx == IDX_END_OF_ARGS) return;
bytesmemory entry = state[idx] =newbytes(output.length+32);
memcpy(output, 0, entry, 32, output.length);
assembly {
let l :=mload(output)
mstore(add(entry, 32), l)
}
}
functionmemcpy(bytesmemory src,
uint256 srcidx,
bytesmemory dest,
uint256 destidx,
uint256 len
) internalview{
assembly {
pop(
staticcall(
gas(),
4,
add(add(src, 32), srcidx),
len,
add(add(dest, 32), destidx),
len
)
)
}
}
}
Contract Source Code
File 3 of 14: Context.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts v4.4.1 (utils/Context.sol)pragmasolidity ^0.8.0;/**
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/abstractcontractContext{
function_msgSender() internalviewvirtualreturns (address) {
returnmsg.sender;
}
function_msgData() internalviewvirtualreturns (bytescalldata) {
returnmsg.data;
}
}
Contract Source Code
File 4 of 14: ERC2771Context.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.7.0) (metatx/ERC2771Context.sol)pragmasolidity ^0.8.9;import"../utils/Context.sol";
/**
* @dev Context variant with ERC2771 support.
*/abstractcontractERC2771ContextisContext{
/// @custom:oz-upgrades-unsafe-allow state-variable-immutableaddressprivateimmutable _trustedForwarder;
/// @custom:oz-upgrades-unsafe-allow constructorconstructor(address trustedForwarder) {
_trustedForwarder = trustedForwarder;
}
functionisTrustedForwarder(address forwarder) publicviewvirtualreturns (bool) {
return forwarder == _trustedForwarder;
}
function_msgSender() internalviewvirtualoverridereturns (address sender) {
if (isTrustedForwarder(msg.sender)) {
// The assembly code is more direct than the Solidity version using `abi.decode`./// @solidity memory-safe-assemblyassembly {
sender :=shr(96, calldataload(sub(calldatasize(), 20)))
}
} else {
returnsuper._msgSender();
}
}
function_msgData() internalviewvirtualoverridereturns (bytescalldata) {
if (isTrustedForwarder(msg.sender)) {
returnmsg.data[:msg.data.length - 20];
} else {
returnsuper._msgData();
}
}
}
Contract Source Code
File 5 of 14: IERC20.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.6.0) (token/ERC20/IERC20.sol)pragmasolidity ^0.8.0;/**
* @dev Interface of the ERC20 standard as defined in the EIP.
*/interfaceIERC20{
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/eventTransfer(addressindexedfrom, addressindexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/eventApproval(addressindexed owner, addressindexed spender, uint256 value);
/**
* @dev Returns the amount of tokens in existence.
*/functiontotalSupply() externalviewreturns (uint256);
/**
* @dev Returns the amount of tokens owned by `account`.
*/functionbalanceOf(address account) externalviewreturns (uint256);
/**
* @dev Moves `amount` tokens from the caller's account to `to`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/functiontransfer(address to, uint256 amount) externalreturns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/functionallowance(address owner, address spender) externalviewreturns (uint256);
/**
* @dev Sets `amount` as the allowance of `spender` over the caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/functionapprove(address spender, uint256 amount) externalreturns (bool);
/**
* @dev Moves `amount` tokens from `from` to `to` using the
* allowance mechanism. `amount` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/functiontransferFrom(addressfrom,
address to,
uint256 amount
) externalreturns (bool);
}
Contract Source Code
File 6 of 14: IPermit2.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.17;/// @notice The token and amount details for a transfer signed in the permit transfer signaturestructTokenPermissions {
// ERC20 token addressaddress token;
// the maximum amount that can be spentuint256 amount;
}
/// @notice The signed permit message for a single token transferstructPermitTransferFrom {
TokenPermissions permitted;
// a unique value for every token owner's signature to prevent signature replaysuint256 nonce;
// deadline on the permit signatureuint256 deadline;
}
/// @notice Specifies the recipient address and amount for batched transfers./// @dev Recipients and amounts correspond to the index of the signed token permissions array./// @dev Reverts if the requested amount is greater than the permitted signed amount.structSignatureTransferDetails {
// recipient addressaddress to;
// spender requested amountuint256 requestedAmount;
}
interfaceIPermit2{
/// @notice Transfers a token using a signed permit message/// @dev Reverts if the requested amount is greater than the permitted signed amount/// @param permit The permit data signed over by the owner/// @param owner The owner of the tokens to transfer/// @param transferDetails The spender's requested transfer details for the permitted token/// @param signature The signature to verifyfunctionpermitTransferFrom(
PermitTransferFrom memory permit,
SignatureTransferDetails calldata transferDetails,
address owner,
bytescalldata signature
) external;
/// @notice A mapping from owner address to token address to spender address to PackedAllowance struct, which contains details and conditions of the approval./// @notice The mapping is indexed in the above order see: allowance[ownerAddress][tokenAddress][spenderAddress]/// @dev The packed slot holds the allowed amount, expiration at which the allowed amount is no longer valid, and current nonce thats updated on any signature based approvals.functionallowance(address,
address,
address) externalviewreturns (uint160, uint48, uint48);
}
/// @notice Thrown when validating an inputted signature that is stale/// @param signatureDeadline The timestamp at which a signature is no longer validerrorSignatureExpired(uint256 signatureDeadline);
/// @notice Thrown when validating that the inputted nonce has not been usederrorInvalidNonce();
Contract Source Code
File 7 of 14: IRTokenZapper.sol
// SPDX-License-Identifier: BlueOak-1.0.0pragmasolidity 0.8.17;import { IERC20 } from"@openzeppelin/contracts/token/ERC20/IERC20.sol";
structCall {
address to;
bytes data;
uint256 value;
}
structZapERC20Params {
// Token to zap
IERC20 tokenIn;
// Total amount to zap / pull from useruint256 amountIn;
// Weiroll code to execute to produce 'amountOut' of 'tokenOut'bytes32[] commands;
bytes[] state;
IERC20[] tokens;
// RTokens the user requesteduint256 amountOut;
// RToken to issue
IERC20 tokenOut;
}
interfaceFacadeRead{
functionmaxIssuable(RToken rToken, address account) externalreturns (uint256);
}
interfaceRToken{
functionissueTo(address recipient, uint256 amount) external;
}
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.8.0) (security/ReentrancyGuard.sol)pragmasolidity ^0.8.0;/**
* @dev Contract module that helps prevent reentrant calls to a function.
*
* Inheriting from `ReentrancyGuard` will make the {nonReentrant} modifier
* available, which can be applied to functions to make sure there are no nested
* (reentrant) calls to them.
*
* Note that because there is a single `nonReentrant` guard, functions marked as
* `nonReentrant` may not call one another. This can be worked around by making
* those functions `private`, and then adding `external` `nonReentrant` entry
* points to them.
*
* TIP: If you would like to learn more about reentrancy and alternative ways
* to protect against it, check out our blog post
* https://blog.openzeppelin.com/reentrancy-after-istanbul/[Reentrancy After Istanbul].
*/abstractcontractReentrancyGuard{
// Booleans are more expensive than uint256 or any type that takes up a full// word because each write operation emits an extra SLOAD to first read the// slot's contents, replace the bits taken up by the boolean, and then write// back. This is the compiler's defense against contract upgrades and// pointer aliasing, and it cannot be disabled.// The values being non-zero value makes deployment a bit more expensive,// but in exchange the refund on every call to nonReentrant will be lower in// amount. Since refunds are capped to a percentage of the total// transaction's gas, it is best to keep them low in cases like this one, to// increase the likelihood of the full refund coming into effect.uint256privateconstant _NOT_ENTERED =1;
uint256privateconstant _ENTERED =2;
uint256private _status;
constructor() {
_status = _NOT_ENTERED;
}
/**
* @dev Prevents a contract from calling itself, directly or indirectly.
* Calling a `nonReentrant` function from another `nonReentrant`
* function is not supported. It is possible to prevent this from happening
* by making the `nonReentrant` function external, and making it call a
* `private` function that does the actual work.
*/modifiernonReentrant() {
_nonReentrantBefore();
_;
_nonReentrantAfter();
}
function_nonReentrantBefore() private{
// On the first call to nonReentrant, _status will be _NOT_ENTEREDrequire(_status != _ENTERED, "ReentrancyGuard: reentrant call");
// Any calls to nonReentrant after this point will fail
_status = _ENTERED;
}
function_nonReentrantAfter() private{
// By storing the original value once again, a refund is triggered (see// https://eips.ethereum.org/EIPS/eip-2200)
_status = _NOT_ENTERED;
}
}
Contract Source Code
File 11 of 14: SafeERC20.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.8.0) (token/ERC20/utils/SafeERC20.sol)pragmasolidity ^0.8.0;import"../IERC20.sol";
import"../extensions/draft-IERC20Permit.sol";
import"../../../utils/Address.sol";
/**
* @title SafeERC20
* @dev Wrappers around ERC20 operations that throw on failure (when the token
* contract returns false). Tokens that return no value (and instead revert or
* throw on failure) are also supported, non-reverting calls are assumed to be
* successful.
* To use this library you can add a `using SafeERC20 for IERC20;` statement to your contract,
* which allows you to call the safe operations as `token.safeTransfer(...)`, etc.
*/librarySafeERC20{
usingAddressforaddress;
functionsafeTransfer(
IERC20 token,
address to,
uint256 value
) internal{
_callOptionalReturn(token, abi.encodeWithSelector(token.transfer.selector, to, value));
}
functionsafeTransferFrom(
IERC20 token,
addressfrom,
address to,
uint256 value
) internal{
_callOptionalReturn(token, abi.encodeWithSelector(token.transferFrom.selector, from, to, value));
}
/**
* @dev Deprecated. This function has issues similar to the ones found in
* {IERC20-approve}, and its usage is discouraged.
*
* Whenever possible, use {safeIncreaseAllowance} and
* {safeDecreaseAllowance} instead.
*/functionsafeApprove(
IERC20 token,
address spender,
uint256 value
) internal{
// safeApprove should only be called when setting an initial allowance,// or when resetting it to zero. To increase and decrease it, use// 'safeIncreaseAllowance' and 'safeDecreaseAllowance'require(
(value ==0) || (token.allowance(address(this), spender) ==0),
"SafeERC20: approve from non-zero to non-zero allowance"
);
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, value));
}
functionsafeIncreaseAllowance(
IERC20 token,
address spender,
uint256 value
) internal{
uint256 newAllowance = token.allowance(address(this), spender) + value;
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, newAllowance));
}
functionsafeDecreaseAllowance(
IERC20 token,
address spender,
uint256 value
) internal{
unchecked {
uint256 oldAllowance = token.allowance(address(this), spender);
require(oldAllowance >= value, "SafeERC20: decreased allowance below zero");
uint256 newAllowance = oldAllowance - value;
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, newAllowance));
}
}
functionsafePermit(
IERC20Permit token,
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) internal{
uint256 nonceBefore = token.nonces(owner);
token.permit(owner, spender, value, deadline, v, r, s);
uint256 nonceAfter = token.nonces(owner);
require(nonceAfter == nonceBefore +1, "SafeERC20: permit did not succeed");
}
/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*/function_callOptionalReturn(IERC20 token, bytesmemory data) private{
// We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since// we're implementing it ourselves. We use {Address-functionCall} to perform this call, which verifies that// the target address contains contract code and also asserts for success in the low-level call.bytesmemory returndata =address(token).functionCall(data, "SafeERC20: low-level call failed");
if (returndata.length>0) {
// Return data is optionalrequire(abi.decode(returndata, (bool)), "SafeERC20: ERC20 operation did not succeed");
}
}
}
// SPDX-License-Identifier: BlueOak-1.0.0pragmasolidity 0.8.17;import { Address } from"@openzeppelin/contracts/utils/Address.sol";
import { SafeERC20 } from"@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
import { ReentrancyGuard } from"@openzeppelin/contracts/security/ReentrancyGuard.sol";
import { IERC20 } from"@openzeppelin/contracts/token/ERC20/IERC20.sol";
import { ERC2771Context } from"@openzeppelin/contracts/metatx/ERC2771Context.sol";
import { IWrappedNative } from"./IWrappedNative.sol";
import { FacadeRead, RToken, Call, ZapERC20Params } from"./IRTokenZapper.sol";
import { IPermit2, SignatureTransferDetails, PermitTransferFrom } from"./IPermit2.sol";
import { VM } from"./weiroll/VM.sol";
import { PreventTampering } from"./PreventTampering.sol";
structExecuteOutput {
uint256[] dust;
}
contractZapperExecutorisVM, PreventTampering{
receive() externalpayable{}
functionadd(uint256 a,
uint256 b
) externalpurereturns (uint256) {
return a + b;
}
functionsub(uint256 a,
uint256 b
) externalpurereturns (uint256) {
return a - b;
}
functionfpMul(uint256 a,
uint256 b,
uint256 scale
) externalpurereturns (uint256) {
return (a * b) / scale;
}
functionassertLarger(uint256 a,
uint256 b
) externalpurereturns (bool) {
require(a > b, "!ASSERT_GT");
returntrue;
}
functionassertEqual(uint256 a,
uint256 b
) externalpurereturns (bool) {
require(a == b, "!ASSERT_EQ");
returntrue;
}
/** @dev Main endpoint to call
* @param commands - Weiroll code to execute
* @param state - Intiaial Weiroll state to use
* @param tokens - All tokens used by the Zap in order to calculate dust
*/functionexecute(bytes32[] calldata commands,
bytes[] memory state,
IERC20[] memory tokens
)
revertOnCodeHashChangepublicpayablereturns (ExecuteOutput memory out)
{
_execute(commands, state);
out.dust =newuint256[](tokens.length);
for(uint256 i; i < tokens.length; i++) {
out.dust[i] = tokens[i].balanceOf(address(this));
}
}
/** @dev Workaround for weiroll not supporting a way to make untyped calls.
* @param to - Address to call
* @param value - Amount of ETH to send
* @param data - Data to send
*/functionrawCall(address to,
uint256 value,
bytescalldata data
) externalreturns (bool success, bytesmemory out) {
require(msg.sender==address(this), "ZapperExecutor: Only callable by Zapper");
(success, out) = to.call{value: value}(data);
}
/** @dev Utility for minting max amount of rToken.
Should only be used off-chain to calculate the exact
amount of an rToken that can be minted
* @param token - rToken to mint
* @param recipient - Recipient of the rToken
*/functionmintMaxRToken(
FacadeRead facade,
RToken token,
address recipient
) external{
uint256 maxIssueableAmount = facade.maxIssuable(token, address(this));
token.issueTo(recipient, maxIssueableAmount);
}
}
structZapperOutput {
uint256[] dust;
uint256 amountOut;
uint256 gasUsed;
}
contractZapperisReentrancyGuard{
IWrappedNative internalimmutable wrappedNative;
IPermit2 internalimmutable permit2;
ZapperExecutor internalimmutable zapperExecutor;
constructor(
IWrappedNative wrappedNative_,
IPermit2 permit2_,
ZapperExecutor executor_
) {
wrappedNative = wrappedNative_;
permit2 = permit2_;
zapperExecutor = executor_;
}
functionzapInner(ZapERC20Params calldata params) internalreturns (ZapperOutput memory out) {
uint256 initialBalance = params.tokenOut.balanceOf(msg.sender);
// STEP 1: Execute
out.dust = zapperExecutor.execute(
params.commands,
params.state,
params.tokens
).dust;
// STEP 2: Verify that the user has gotten the tokens they requesteduint256 newBalance = params.tokenOut.balanceOf(msg.sender);
require(newBalance > initialBalance, "INVALID_NEW_BALANCE");
uint256 difference = newBalance - initialBalance;
require(difference >= params.amountOut, "INSUFFICIENT_OUT");
out.amountOut = difference;
}
receive() externalpayable{}
functionzapERC20(
ZapERC20Params calldata params
) externalnonReentrantreturns (ZapperOutput memory out) {
uint256 startGas =gasleft();
require(params.amountIn !=0, "INVALID_INPUT_AMOUNT");
require(params.amountOut !=0, "INVALID_OUTPUT_AMOUNT");
SafeERC20.safeTransferFrom(
params.tokenIn,
msg.sender,
address(zapperExecutor),
params.amountIn
);
out = zapInner(params);
out.gasUsed = startGas -gasleft();
}
functionzapERC20WithPermit2(
ZapERC20Params calldata params,
PermitTransferFrom calldata permit,
bytescalldata signature
) externalnonReentrantreturns (ZapperOutput memory out) {
uint256 startGas =gasleft();
require(params.amountIn !=0, "INVALID_INPUT_AMOUNT");
require(params.amountOut !=0, "INVALID_OUTPUT_AMOUNT");
permit2.permitTransferFrom(
permit,
SignatureTransferDetails({
to: address(zapperExecutor),
requestedAmount: params.amountIn
}),
msg.sender,
signature
);
out = zapInner(params);
out.gasUsed = startGas -gasleft();
}
functionzapETH(
ZapERC20Params calldata params
) externalpayablenonReentrantreturns (ZapperOutput memory out) {
uint256 startGas =gasleft();
require(address(params.tokenIn) ==address(wrappedNative), "INVALID_INPUT_TOKEN");
require(params.amountIn ==msg.value, "INVALID_INPUT_AMOUNT");
require(msg.value!=0, "INVALID_INPUT_AMOUNT");
require(params.amountOut !=0, "INVALID_OUTPUT_AMOUNT");
wrappedNative.deposit{ value: msg.value }();
SafeERC20.safeTransfer(
IERC20(address(wrappedNative)),
address(zapperExecutor),
wrappedNative.balanceOf(address(this))
);
out = zapInner(params);
out.gasUsed = startGas -gasleft();
}
functionzapToETH(
ZapERC20Params calldata params
) externalpayablenonReentrantreturns (ZapperOutput memory out) {
uint256 startGas =gasleft();
require(params.amountIn !=0, "INVALID_INPUT_AMOUNT");
require(params.amountOut !=0, "INVALID_OUTPUT_AMOUNT");
SafeERC20.safeTransferFrom(
params.tokenIn,
msg.sender,
address(zapperExecutor),
params.amountIn
);
out = zapInner(params);
out.gasUsed = startGas -gasleft();
}
}
Contract Source Code
File 14 of 14: draft-IERC20Permit.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts v4.4.1 (token/ERC20/extensions/draft-IERC20Permit.sol)pragmasolidity ^0.8.0;/**
* @dev Interface of the ERC20 Permit extension allowing approvals to be made via signatures, as defined in
* https://eips.ethereum.org/EIPS/eip-2612[EIP-2612].
*
* Adds the {permit} method, which can be used to change an account's ERC20 allowance (see {IERC20-allowance}) by
* presenting a message signed by the account. By not relying on {IERC20-approve}, the token holder account doesn't
* need to send a transaction, and thus is not required to hold Ether at all.
*/interfaceIERC20Permit{
/**
* @dev Sets `value` as the allowance of `spender` over ``owner``'s tokens,
* given ``owner``'s signed approval.
*
* IMPORTANT: The same issues {IERC20-approve} has related to transaction
* ordering also apply here.
*
* Emits an {Approval} event.
*
* Requirements:
*
* - `spender` cannot be the zero address.
* - `deadline` must be a timestamp in the future.
* - `v`, `r` and `s` must be a valid `secp256k1` signature from `owner`
* over the EIP712-formatted function arguments.
* - the signature must use ``owner``'s current nonce (see {nonces}).
*
* For more information on the signature format, see the
* https://eips.ethereum.org/EIPS/eip-2612#specification[relevant EIP
* section].
*/functionpermit(address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) external;
/**
* @dev Returns the current nonce for `owner`. This value must be
* included whenever a signature is generated for {permit}.
*
* Every successful call to {permit} increases ``owner``'s nonce by one. This
* prevents a signature from being used multiple times.
*/functionnonces(address owner) externalviewreturns (uint256);
/**
* @dev Returns the domain separator used in the encoding of the signature for {permit}, as defined by {EIP712}.
*/// solhint-disable-next-line func-name-mixedcasefunctionDOMAIN_SEPARATOR() externalviewreturns (bytes32);
}