// SPDX-License-Identifier: MITpragmasolidity >=0.8.19;import"./Errors.sol"asCastingErrors;
import { MAX_UINT128, MAX_UINT40 } from"../Common.sol";
import { uMAX_SD1x18, uMIN_SD1x18 } from"../sd1x18/Constants.sol";
import { SD1x18 } from"../sd1x18/ValueType.sol";
import { uMAX_UD2x18 } from"../ud2x18/Constants.sol";
import { UD2x18 } from"../ud2x18/ValueType.sol";
import { UD60x18 } from"../ud60x18/ValueType.sol";
import { SD59x18 } from"./ValueType.sol";
/// @notice Casts an SD59x18 number into int256./// @dev This is basically a functional alias for {unwrap}.functionintoInt256(SD59x18 x) purereturns (int256 result) {
result = SD59x18.unwrap(x);
}
/// @notice Casts an SD59x18 number into SD1x18./// @dev Requirements:/// - x must be greater than or equal to `uMIN_SD1x18`./// - x must be less than or equal to `uMAX_SD1x18`.functionintoSD1x18(SD59x18 x) purereturns (SD1x18 result) {
int256 xInt = SD59x18.unwrap(x);
if (xInt < uMIN_SD1x18) {
revert CastingErrors.PRBMath_SD59x18_IntoSD1x18_Underflow(x);
}
if (xInt > uMAX_SD1x18) {
revert CastingErrors.PRBMath_SD59x18_IntoSD1x18_Overflow(x);
}
result = SD1x18.wrap(int64(xInt));
}
/// @notice Casts an SD59x18 number into UD2x18./// @dev Requirements:/// - x must be positive./// - x must be less than or equal to `uMAX_UD2x18`.functionintoUD2x18(SD59x18 x) purereturns (UD2x18 result) {
int256 xInt = SD59x18.unwrap(x);
if (xInt <0) {
revert CastingErrors.PRBMath_SD59x18_IntoUD2x18_Underflow(x);
}
if (xInt >int256(uint256(uMAX_UD2x18))) {
revert CastingErrors.PRBMath_SD59x18_IntoUD2x18_Overflow(x);
}
result = UD2x18.wrap(uint64(uint256(xInt)));
}
/// @notice Casts an SD59x18 number into UD60x18./// @dev Requirements:/// - x must be positive.functionintoUD60x18(SD59x18 x) purereturns (UD60x18 result) {
int256 xInt = SD59x18.unwrap(x);
if (xInt <0) {
revert CastingErrors.PRBMath_SD59x18_IntoUD60x18_Underflow(x);
}
result = UD60x18.wrap(uint256(xInt));
}
/// @notice Casts an SD59x18 number into uint256./// @dev Requirements:/// - x must be positive.functionintoUint256(SD59x18 x) purereturns (uint256 result) {
int256 xInt = SD59x18.unwrap(x);
if (xInt <0) {
revert CastingErrors.PRBMath_SD59x18_IntoUint256_Underflow(x);
}
result =uint256(xInt);
}
/// @notice Casts an SD59x18 number into uint128./// @dev Requirements:/// - x must be positive./// - x must be less than or equal to `uMAX_UINT128`.functionintoUint128(SD59x18 x) purereturns (uint128 result) {
int256 xInt = SD59x18.unwrap(x);
if (xInt <0) {
revert CastingErrors.PRBMath_SD59x18_IntoUint128_Underflow(x);
}
if (xInt >int256(uint256(MAX_UINT128))) {
revert CastingErrors.PRBMath_SD59x18_IntoUint128_Overflow(x);
}
result =uint128(uint256(xInt));
}
/// @notice Casts an SD59x18 number into uint40./// @dev Requirements:/// - x must be positive./// - x must be less than or equal to `MAX_UINT40`.functionintoUint40(SD59x18 x) purereturns (uint40 result) {
int256 xInt = SD59x18.unwrap(x);
if (xInt <0) {
revert CastingErrors.PRBMath_SD59x18_IntoUint40_Underflow(x);
}
if (xInt >int256(uint256(MAX_UINT40))) {
revert CastingErrors.PRBMath_SD59x18_IntoUint40_Overflow(x);
}
result =uint40(uint256(xInt));
}
/// @notice Alias for {wrap}.functionsd(int256 x) purereturns (SD59x18 result) {
result = SD59x18.wrap(x);
}
/// @notice Alias for {wrap}.functionsd59x18(int256 x) purereturns (SD59x18 result) {
result = SD59x18.wrap(x);
}
/// @notice Unwraps an SD59x18 number into int256.functionunwrap(SD59x18 x) purereturns (int256 result) {
result = SD59x18.unwrap(x);
}
/// @notice Wraps an int256 number into SD59x18.functionwrap(int256 x) purereturns (SD59x18 result) {
result = SD59x18.wrap(x);
}
Contract Source Code
File 2 of 27: Common.sol
// SPDX-License-Identifier: MITpragmasolidity >=0.8.19;// Common.sol//// Common mathematical functions used in both SD59x18 and UD60x18. Note that these global functions do not// always operate with SD59x18 and UD60x18 numbers./*//////////////////////////////////////////////////////////////////////////
CUSTOM ERRORS
//////////////////////////////////////////////////////////////////////////*//// @notice Thrown when the resultant value in {mulDiv} overflows uint256.errorPRBMath_MulDiv_Overflow(uint256 x, uint256 y, uint256 denominator);
/// @notice Thrown when the resultant value in {mulDiv18} overflows uint256.errorPRBMath_MulDiv18_Overflow(uint256 x, uint256 y);
/// @notice Thrown when one of the inputs passed to {mulDivSigned} is `type(int256).min`.errorPRBMath_MulDivSigned_InputTooSmall();
/// @notice Thrown when the resultant value in {mulDivSigned} overflows int256.errorPRBMath_MulDivSigned_Overflow(int256 x, int256 y);
/*//////////////////////////////////////////////////////////////////////////
CONSTANTS
//////////////////////////////////////////////////////////////////////////*//// @dev The maximum value a uint128 number can have.uint128constant MAX_UINT128 =type(uint128).max;
/// @dev The maximum value a uint40 number can have.uint40constant MAX_UINT40 =type(uint40).max;
/// @dev The unit number, which the decimal precision of the fixed-point types.uint256constant UNIT =1e18;
/// @dev The unit number inverted mod 2^256.uint256constant UNIT_INVERSE =78156646155174841979727994598816262306175212592076161876661_508869554232690281;
/// @dev The the largest power of two that divides the decimal value of `UNIT`. The logarithm of this value is the least significant/// bit in the binary representation of `UNIT`.uint256constant UNIT_LPOTD =262144;
/*//////////////////////////////////////////////////////////////////////////
FUNCTIONS
//////////////////////////////////////////////////////////////////////////*//// @notice Calculates the binary exponent of x using the binary fraction method./// @dev Has to use 192.64-bit fixed-point numbers. See https://ethereum.stackexchange.com/a/96594/24693./// @param x The exponent as an unsigned 192.64-bit fixed-point number./// @return result The result as an unsigned 60.18-decimal fixed-point number./// @custom:smtchecker abstract-function-nondetfunctionexp2(uint256 x) purereturns (uint256 result) {
unchecked {
// Start from 0.5 in the 192.64-bit fixed-point format.
result =0x800000000000000000000000000000000000000000000000;
// The following logic multiplies the result by $\sqrt{2^{-i}}$ when the bit at position i is 1. Key points://// 1. Intermediate results will not overflow, as the starting point is 2^191 and all magic factors are under 2^65.// 2. The rationale for organizing the if statements into groups of 8 is gas savings. If the result of performing// a bitwise AND operation between x and any value in the array [0x80; 0x40; 0x20; 0x10; 0x08; 0x04; 0x02; 0x01] is 1,// we know that `x & 0xFF` is also 1.if (x &0xFF00000000000000>0) {
if (x &0x8000000000000000>0) {
result = (result *0x16A09E667F3BCC909) >>64;
}
if (x &0x4000000000000000>0) {
result = (result *0x1306FE0A31B7152DF) >>64;
}
if (x &0x2000000000000000>0) {
result = (result *0x1172B83C7D517ADCE) >>64;
}
if (x &0x1000000000000000>0) {
result = (result *0x10B5586CF9890F62A) >>64;
}
if (x &0x800000000000000>0) {
result = (result *0x1059B0D31585743AE) >>64;
}
if (x &0x400000000000000>0) {
result = (result *0x102C9A3E778060EE7) >>64;
}
if (x &0x200000000000000>0) {
result = (result *0x10163DA9FB33356D8) >>64;
}
if (x &0x100000000000000>0) {
result = (result *0x100B1AFA5ABCBED61) >>64;
}
}
if (x &0xFF000000000000>0) {
if (x &0x80000000000000>0) {
result = (result *0x10058C86DA1C09EA2) >>64;
}
if (x &0x40000000000000>0) {
result = (result *0x1002C605E2E8CEC50) >>64;
}
if (x &0x20000000000000>0) {
result = (result *0x100162F3904051FA1) >>64;
}
if (x &0x10000000000000>0) {
result = (result *0x1000B175EFFDC76BA) >>64;
}
if (x &0x8000000000000>0) {
result = (result *0x100058BA01FB9F96D) >>64;
}
if (x &0x4000000000000>0) {
result = (result *0x10002C5CC37DA9492) >>64;
}
if (x &0x2000000000000>0) {
result = (result *0x1000162E525EE0547) >>64;
}
if (x &0x1000000000000>0) {
result = (result *0x10000B17255775C04) >>64;
}
}
if (x &0xFF0000000000>0) {
if (x &0x800000000000>0) {
result = (result *0x1000058B91B5BC9AE) >>64;
}
if (x &0x400000000000>0) {
result = (result *0x100002C5C89D5EC6D) >>64;
}
if (x &0x200000000000>0) {
result = (result *0x10000162E43F4F831) >>64;
}
if (x &0x100000000000>0) {
result = (result *0x100000B1721BCFC9A) >>64;
}
if (x &0x80000000000>0) {
result = (result *0x10000058B90CF1E6E) >>64;
}
if (x &0x40000000000>0) {
result = (result *0x1000002C5C863B73F) >>64;
}
if (x &0x20000000000>0) {
result = (result *0x100000162E430E5A2) >>64;
}
if (x &0x10000000000>0) {
result = (result *0x1000000B172183551) >>64;
}
}
if (x &0xFF00000000>0) {
if (x &0x8000000000>0) {
result = (result *0x100000058B90C0B49) >>64;
}
if (x &0x4000000000>0) {
result = (result *0x10000002C5C8601CC) >>64;
}
if (x &0x2000000000>0) {
result = (result *0x1000000162E42FFF0) >>64;
}
if (x &0x1000000000>0) {
result = (result *0x10000000B17217FBB) >>64;
}
if (x &0x800000000>0) {
result = (result *0x1000000058B90BFCE) >>64;
}
if (x &0x400000000>0) {
result = (result *0x100000002C5C85FE3) >>64;
}
if (x &0x200000000>0) {
result = (result *0x10000000162E42FF1) >>64;
}
if (x &0x100000000>0) {
result = (result *0x100000000B17217F8) >>64;
}
}
if (x &0xFF000000>0) {
if (x &0x80000000>0) {
result = (result *0x10000000058B90BFC) >>64;
}
if (x &0x40000000>0) {
result = (result *0x1000000002C5C85FE) >>64;
}
if (x &0x20000000>0) {
result = (result *0x100000000162E42FF) >>64;
}
if (x &0x10000000>0) {
result = (result *0x1000000000B17217F) >>64;
}
if (x &0x8000000>0) {
result = (result *0x100000000058B90C0) >>64;
}
if (x &0x4000000>0) {
result = (result *0x10000000002C5C860) >>64;
}
if (x &0x2000000>0) {
result = (result *0x1000000000162E430) >>64;
}
if (x &0x1000000>0) {
result = (result *0x10000000000B17218) >>64;
}
}
if (x &0xFF0000>0) {
if (x &0x800000>0) {
result = (result *0x1000000000058B90C) >>64;
}
if (x &0x400000>0) {
result = (result *0x100000000002C5C86) >>64;
}
if (x &0x200000>0) {
result = (result *0x10000000000162E43) >>64;
}
if (x &0x100000>0) {
result = (result *0x100000000000B1721) >>64;
}
if (x &0x80000>0) {
result = (result *0x10000000000058B91) >>64;
}
if (x &0x40000>0) {
result = (result *0x1000000000002C5C8) >>64;
}
if (x &0x20000>0) {
result = (result *0x100000000000162E4) >>64;
}
if (x &0x10000>0) {
result = (result *0x1000000000000B172) >>64;
}
}
if (x &0xFF00>0) {
if (x &0x8000>0) {
result = (result *0x100000000000058B9) >>64;
}
if (x &0x4000>0) {
result = (result *0x10000000000002C5D) >>64;
}
if (x &0x2000>0) {
result = (result *0x1000000000000162E) >>64;
}
if (x &0x1000>0) {
result = (result *0x10000000000000B17) >>64;
}
if (x &0x800>0) {
result = (result *0x1000000000000058C) >>64;
}
if (x &0x400>0) {
result = (result *0x100000000000002C6) >>64;
}
if (x &0x200>0) {
result = (result *0x10000000000000163) >>64;
}
if (x &0x100>0) {
result = (result *0x100000000000000B1) >>64;
}
}
if (x &0xFF>0) {
if (x &0x80>0) {
result = (result *0x10000000000000059) >>64;
}
if (x &0x40>0) {
result = (result *0x1000000000000002C) >>64;
}
if (x &0x20>0) {
result = (result *0x10000000000000016) >>64;
}
if (x &0x10>0) {
result = (result *0x1000000000000000B) >>64;
}
if (x &0x8>0) {
result = (result *0x10000000000000006) >>64;
}
if (x &0x4>0) {
result = (result *0x10000000000000003) >>64;
}
if (x &0x2>0) {
result = (result *0x10000000000000001) >>64;
}
if (x &0x1>0) {
result = (result *0x10000000000000001) >>64;
}
}
// In the code snippet below, two operations are executed simultaneously://// 1. The result is multiplied by $(2^n + 1)$, where $2^n$ represents the integer part, and the additional 1// accounts for the initial guess of 0.5. This is achieved by subtracting from 191 instead of 192.// 2. The result is then converted to an unsigned 60.18-decimal fixed-point format.//// The underlying logic is based on the relationship $2^{191-ip} = 2^{ip} / 2^{191}$, where $ip$ denotes the,// integer part, $2^n$.
result *= UNIT;
result >>= (191- (x >>64));
}
}
/// @notice Finds the zero-based index of the first 1 in the binary representation of x.////// @dev See the note on "msb" in this Wikipedia article: https://en.wikipedia.org/wiki/Find_first_set////// Each step in this implementation is equivalent to this high-level code:////// ```solidity/// if (x >= 2 ** 128) {/// x >>= 128;/// result += 128;/// }/// ```////// Where 128 is replaced with each respective power of two factor. See the full high-level implementation here:/// https://gist.github.com/PaulRBerg/f932f8693f2733e30c4d479e8e980948////// The Yul instructions used below are:////// - "gt" is "greater than"/// - "or" is the OR bitwise operator/// - "shl" is "shift left"/// - "shr" is "shift right"////// @param x The uint256 number for which to find the index of the most significant bit./// @return result The index of the most significant bit as a uint256./// @custom:smtchecker abstract-function-nondetfunctionmsb(uint256 x) purereturns (uint256 result) {
// 2^128assembly ("memory-safe") {
let factor :=shl(7, gt(x, 0xFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF))
x :=shr(factor, x)
result :=or(result, factor)
}
// 2^64assembly ("memory-safe") {
let factor :=shl(6, gt(x, 0xFFFFFFFFFFFFFFFF))
x :=shr(factor, x)
result :=or(result, factor)
}
// 2^32assembly ("memory-safe") {
let factor :=shl(5, gt(x, 0xFFFFFFFF))
x :=shr(factor, x)
result :=or(result, factor)
}
// 2^16assembly ("memory-safe") {
let factor :=shl(4, gt(x, 0xFFFF))
x :=shr(factor, x)
result :=or(result, factor)
}
// 2^8assembly ("memory-safe") {
let factor :=shl(3, gt(x, 0xFF))
x :=shr(factor, x)
result :=or(result, factor)
}
// 2^4assembly ("memory-safe") {
let factor :=shl(2, gt(x, 0xF))
x :=shr(factor, x)
result :=or(result, factor)
}
// 2^2assembly ("memory-safe") {
let factor :=shl(1, gt(x, 0x3))
x :=shr(factor, x)
result :=or(result, factor)
}
// 2^1// No need to shift x any more.assembly ("memory-safe") {
let factor :=gt(x, 0x1)
result :=or(result, factor)
}
}
/// @notice Calculates x*y÷denominator with 512-bit precision.////// @dev Credits to Remco Bloemen under MIT license https://xn--2-umb.com/21/muldiv.////// Notes:/// - The result is rounded toward zero.////// Requirements:/// - The denominator must not be zero./// - The result must fit in uint256.////// @param x The multiplicand as a uint256./// @param y The multiplier as a uint256./// @param denominator The divisor as a uint256./// @return result The result as a uint256./// @custom:smtchecker abstract-function-nondetfunctionmulDiv(uint256 x, uint256 y, uint256 denominator) purereturns (uint256 result) {
// 512-bit multiply [prod1 prod0] = x * y. Compute the product mod 2^256 and mod 2^256 - 1, then use// use the Chinese Remainder Theorem to reconstruct the 512-bit result. The result is stored in two 256// variables such that product = prod1 * 2^256 + prod0.uint256 prod0; // Least significant 256 bits of the productuint256 prod1; // Most significant 256 bits of the productassembly ("memory-safe") {
let mm :=mulmod(x, y, not(0))
prod0 :=mul(x, y)
prod1 :=sub(sub(mm, prod0), lt(mm, prod0))
}
// Handle non-overflow cases, 256 by 256 division.if (prod1 ==0) {
unchecked {
return prod0 / denominator;
}
}
// Make sure the result is less than 2^256. Also prevents denominator == 0.if (prod1 >= denominator) {
revert PRBMath_MulDiv_Overflow(x, y, denominator);
}
////////////////////////////////////////////////////////////////////////////// 512 by 256 division////////////////////////////////////////////////////////////////////////////// Make division exact by subtracting the remainder from [prod1 prod0].uint256 remainder;
assembly ("memory-safe") {
// Compute remainder using the mulmod Yul instruction.
remainder :=mulmod(x, y, denominator)
// Subtract 256 bit number from 512-bit number.
prod1 :=sub(prod1, gt(remainder, prod0))
prod0 :=sub(prod0, remainder)
}
unchecked {
// Calculate the largest power of two divisor of the denominator using the unary operator ~. This operation cannot overflow// because the denominator cannot be zero at this point in the function execution. The result is always >= 1.// For more detail, see https://cs.stackexchange.com/q/138556/92363.uint256 lpotdod = denominator & (~denominator +1);
uint256 flippedLpotdod;
assembly ("memory-safe") {
// Factor powers of two out of denominator.
denominator :=div(denominator, lpotdod)
// Divide [prod1 prod0] by lpotdod.
prod0 :=div(prod0, lpotdod)
// Get the flipped value `2^256 / lpotdod`. If the `lpotdod` is zero, the flipped value is one.// `sub(0, lpotdod)` produces the two's complement version of `lpotdod`, which is equivalent to flipping all the bits.// However, `div` interprets this value as an unsigned value: https://ethereum.stackexchange.com/q/147168/24693
flippedLpotdod :=add(div(sub(0, lpotdod), lpotdod), 1)
}
// Shift in bits from prod1 into prod0.
prod0 |= prod1 * flippedLpotdod;
// Invert denominator mod 2^256. Now that denominator is an odd number, it has an inverse modulo 2^256 such// that denominator * inv = 1 mod 2^256. Compute the inverse by starting with a seed that is correct for// four bits. That is, denominator * inv = 1 mod 2^4.uint256 inverse = (3* denominator) ^2;
// Use the Newton-Raphson iteration to improve the precision. Thanks to Hensel's lifting lemma, this also works// in modular arithmetic, doubling the correct bits in each step.
inverse *=2- denominator * inverse; // inverse mod 2^8
inverse *=2- denominator * inverse; // inverse mod 2^16
inverse *=2- denominator * inverse; // inverse mod 2^32
inverse *=2- denominator * inverse; // inverse mod 2^64
inverse *=2- denominator * inverse; // inverse mod 2^128
inverse *=2- denominator * inverse; // inverse mod 2^256// Because the division is now exact we can divide by multiplying with the modular inverse of denominator.// This will give us the correct result modulo 2^256. Since the preconditions guarantee that the outcome is// less than 2^256, this is the final result. We don't need to compute the high bits of the result and prod1// is no longer required.
result = prod0 * inverse;
}
}
/// @notice Calculates x*y÷1e18 with 512-bit precision.////// @dev A variant of {mulDiv} with constant folding, i.e. in which the denominator is hard coded to 1e18.////// Notes:/// - The body is purposely left uncommented; to understand how this works, see the documentation in {mulDiv}./// - The result is rounded toward zero./// - We take as an axiom that the result cannot be `MAX_UINT256` when x and y solve the following system of equations:////// $$/// \begin{cases}/// x * y = MAX\_UINT256 * UNIT \\/// (x * y) \% UNIT \geq \frac{UNIT}{2}/// \end{cases}/// $$////// Requirements:/// - Refer to the requirements in {mulDiv}./// - The result must fit in uint256.////// @param x The multiplicand as an unsigned 60.18-decimal fixed-point number./// @param y The multiplier as an unsigned 60.18-decimal fixed-point number./// @return result The result as an unsigned 60.18-decimal fixed-point number./// @custom:smtchecker abstract-function-nondetfunctionmulDiv18(uint256 x, uint256 y) purereturns (uint256 result) {
uint256 prod0;
uint256 prod1;
assembly ("memory-safe") {
let mm :=mulmod(x, y, not(0))
prod0 :=mul(x, y)
prod1 :=sub(sub(mm, prod0), lt(mm, prod0))
}
if (prod1 ==0) {
unchecked {
return prod0 / UNIT;
}
}
if (prod1 >= UNIT) {
revert PRBMath_MulDiv18_Overflow(x, y);
}
uint256 remainder;
assembly ("memory-safe") {
remainder :=mulmod(x, y, UNIT)
result :=mul(
or(
div(sub(prod0, remainder), UNIT_LPOTD),
mul(sub(prod1, gt(remainder, prod0)), add(div(sub(0, UNIT_LPOTD), UNIT_LPOTD), 1))
),
UNIT_INVERSE
)
}
}
/// @notice Calculates x*y÷denominator with 512-bit precision.////// @dev This is an extension of {mulDiv} for signed numbers, which works by computing the signs and the absolute values separately.////// Notes:/// - The result is rounded toward zero.////// Requirements:/// - Refer to the requirements in {mulDiv}./// - None of the inputs can be `type(int256).min`./// - The result must fit in int256.////// @param x The multiplicand as an int256./// @param y The multiplier as an int256./// @param denominator The divisor as an int256./// @return result The result as an int256./// @custom:smtchecker abstract-function-nondetfunctionmulDivSigned(int256 x, int256 y, int256 denominator) purereturns (int256 result) {
if (x ==type(int256).min|| y ==type(int256).min|| denominator ==type(int256).min) {
revert PRBMath_MulDivSigned_InputTooSmall();
}
// Get hold of the absolute values of x, y and the denominator.uint256 xAbs;
uint256 yAbs;
uint256 dAbs;
unchecked {
xAbs = x <0 ? uint256(-x) : uint256(x);
yAbs = y <0 ? uint256(-y) : uint256(y);
dAbs = denominator <0 ? uint256(-denominator) : uint256(denominator);
}
// Compute the absolute value of x*y÷denominator. The result must fit in int256.uint256 resultAbs = mulDiv(xAbs, yAbs, dAbs);
if (resultAbs >uint256(type(int256).max)) {
revert PRBMath_MulDivSigned_Overflow(x, y);
}
// Get the signs of x, y and the denominator.uint256 sx;
uint256 sy;
uint256 sd;
assembly ("memory-safe") {
// "sgt" is the "signed greater than" assembly instruction and "sub(0,1)" is -1 in two's complement.
sx :=sgt(x, sub(0, 1))
sy :=sgt(y, sub(0, 1))
sd :=sgt(denominator, sub(0, 1))
}
// XOR over sx, sy and sd. What this does is to check whether there are 1 or 3 negative signs in the inputs.// If there are, the result should be negative. Otherwise, it should be positive.unchecked {
result = sx ^ sy ^ sd ==0 ? -int256(resultAbs) : int256(resultAbs);
}
}
/// @notice Calculates the square root of x using the Babylonian method.////// @dev See https://en.wikipedia.org/wiki/Methods_of_computing_square_roots#Babylonian_method.////// Notes:/// - If x is not a perfect square, the result is rounded down./// - Credits to OpenZeppelin for the explanations in comments below.////// @param x The uint256 number for which to calculate the square root./// @return result The result as a uint256./// @custom:smtchecker abstract-function-nondetfunctionsqrt(uint256 x) purereturns (uint256 result) {
if (x ==0) {
return0;
}
// For our first guess, we calculate the biggest power of 2 which is smaller than the square root of x.//// We know that the "msb" (most significant bit) of x is a power of 2 such that we have://// $$// msb(x) <= x <= 2*msb(x)$// $$//// We write $msb(x)$ as $2^k$, and we get://// $$// k = log_2(x)// $$//// Thus, we can write the initial inequality as://// $$// 2^{log_2(x)} <= x <= 2*2^{log_2(x)+1} \\// sqrt(2^k) <= sqrt(x) < sqrt(2^{k+1}) \\// 2^{k/2} <= sqrt(x) < 2^{(k+1)/2} <= 2^{(k/2)+1}// $$//// Consequently, $2^{log_2(x) /2} is a good first approximation of sqrt(x) with at least one correct bit.uint256 xAux =uint256(x);
result =1;
if (xAux >=2**128) {
xAux >>=128;
result <<=64;
}
if (xAux >=2**64) {
xAux >>=64;
result <<=32;
}
if (xAux >=2**32) {
xAux >>=32;
result <<=16;
}
if (xAux >=2**16) {
xAux >>=16;
result <<=8;
}
if (xAux >=2**8) {
xAux >>=8;
result <<=4;
}
if (xAux >=2**4) {
xAux >>=4;
result <<=2;
}
if (xAux >=2**2) {
result <<=1;
}
// At this point, `result` is an estimation with at least one bit of precision. We know the true value has at// most 128 bits, since it is the square root of a uint256. Newton's method converges quadratically (precision// doubles at every iteration). We thus need at most 7 iteration to turn our partial result with one bit of// precision into the expected uint128 result.unchecked {
result = (result + x / result) >>1;
result = (result + x / result) >>1;
result = (result + x / result) >>1;
result = (result + x / result) >>1;
result = (result + x / result) >>1;
result = (result + x / result) >>1;
result = (result + x / result) >>1;
// If x is not a perfect square, round the result toward zero.uint256 roundedResult = x / result;
if (result >= roundedResult) {
result = roundedResult;
}
}
}
Contract Source Code
File 3 of 27: Constants.sol
// SPDX-License-Identifier: MITpragmasolidity >=0.8.19;import { UD2x18 } from"./ValueType.sol";
/// @dev Euler's number as a UD2x18 number.
UD2x18 constant E = UD2x18.wrap(2_718281828459045235);
/// @dev The maximum value a UD2x18 number can have.uint64constant uMAX_UD2x18 =18_446744073709551615;
UD2x18 constant MAX_UD2x18 = UD2x18.wrap(uMAX_UD2x18);
/// @dev PI as a UD2x18 number.
UD2x18 constant PI = UD2x18.wrap(3_141592653589793238);
/// @dev The unit number, which gives the decimal precision of UD2x18.uint256constant uUNIT =1e18;
UD2x18 constant UNIT = UD2x18.wrap(1e18);
Contract Source Code
File 4 of 27: Conversions.sol
// SPDX-License-Identifier: MITpragmasolidity >=0.8.19;import { uMAX_UD60x18, uUNIT } from"./Constants.sol";
import { PRBMath_UD60x18_Convert_Overflow } from"./Errors.sol";
import { UD60x18 } from"./ValueType.sol";
/// @notice Converts a UD60x18 number to a simple integer by dividing it by `UNIT`./// @dev The result is rounded toward zero./// @param x The UD60x18 number to convert./// @return result The same number in basic integer form.functionconvert(UD60x18 x) purereturns (uint256 result) {
result = UD60x18.unwrap(x) / uUNIT;
}
/// @notice Converts a simple integer to UD60x18 by multiplying it by `UNIT`.////// @dev Requirements:/// - x must be less than or equal to `MAX_UD60x18 / UNIT`.////// @param x The basic integer to convert./// @param result The same number converted to UD60x18.functionconvert(uint256 x) purereturns (UD60x18 result) {
if (x > uMAX_UD60x18 / uUNIT) {
revert PRBMath_UD60x18_Convert_Overflow(x);
}
unchecked {
result = UD60x18.wrap(x * uUNIT);
}
}
Contract Source Code
File 5 of 27: DataTypes.sol
// SPDX-License-Identifier: GPL-3.0-or-laterpragmasolidity >=0.8.19;import { IERC20 } from"@openzeppelin/contracts/token/ERC20/IERC20.sol";
import { UD2x18 } from"@prb/math/src/UD2x18.sol";
import { UD60x18 } from"@prb/math/src/UD60x18.sol";
// DataTypes.sol//// This file defines all structs used in V2 Core, most of which are organized under three namespaces://// - Lockup// - LockupDynamic// - LockupLinear//// You will notice that some structs contain "slot" annotations - they are used to indicate the// storage layout of the struct. It is more gas efficient to group small data types together so// that they fit in a single 32-byte slot./// @notice Struct encapsulating the broker parameters passed to the create functions. Both can be set to zero./// @param account The address receiving the broker's fee./// @param fee The broker's percentage fee from the total amount, denoted as a fixed-point number where 1e18 is 100%.structBroker {
address account;
UD60x18 fee;
}
/// @notice Namespace for the structs used in both {SablierV2LockupLinear} and {SablierV2LockupDynamic}.libraryLockup{
/// @notice Struct encapsulating the deposit, withdrawn, and refunded amounts, all denoted in units/// of the asset's decimals./// @dev Because the deposited and the withdrawn amount are often read together, declaring them in/// the same slot saves gas./// @param deposited The initial amount deposited in the stream, net of fees./// @param withdrawn The cumulative amount withdrawn from the stream./// @param refunded The amount refunded to the sender. Unless the stream was canceled, this is always zero.structAmounts {
// slot 0uint128 deposited;
uint128 withdrawn;
// slot 1uint128 refunded;
}
/// @notice Struct encapsulating the deposit amount, the protocol fee amount, and the broker fee amount,/// all denoted in units of the asset's decimals./// @param deposit The amount to deposit in the stream./// @param protocolFee The protocol fee amount./// @param brokerFee The broker fee amount.structCreateAmounts {
uint128 deposit;
uint128 protocolFee;
uint128 brokerFee;
}
/// @notice Enum representing the different statuses of a stream./// @custom:value PENDING Stream created but not started; assets are in a pending state./// @custom:value STREAMING Active stream where assets are currently being streamed./// @custom:value SETTLED All assets have been streamed; recipient is due to withdraw them./// @custom:value CANCELED Canceled stream; remaining assets await recipient's withdrawal./// @custom:value DEPLETED Depleted stream; all assets have been withdrawn and/or refunded.enumStatus {
PENDING, // value 0
STREAMING, // value 1
SETTLED, // value 2
CANCELED, // value 3
DEPLETED // value 4
}
}
/// @notice Namespace for the structs used in {SablierV2LockupDynamic}.libraryLockupDynamic{
/// @notice Struct encapsulating the parameters for the {SablierV2LockupDynamic.createWithDeltas} function./// @param sender The address streaming the assets, with the ability to cancel the stream. It doesn't have to be the/// same as `msg.sender`./// @param recipient The address receiving the assets./// @param totalAmount The total amount of ERC-20 assets to be paid, including the stream deposit and any potential/// fees, all denoted in units of the asset's decimals./// @param asset The contract address of the ERC-20 asset used for streaming./// @param cancelable Indicates if the stream is cancelable./// @param broker Struct containing (i) the address of the broker assisting in creating the stream, and (ii) the/// percentage fee paid to the broker from `totalAmount`, denoted as a fixed-point number. Both can be set to zero./// @param segments Segments with deltas used to compose the custom streaming curve. Milestones are calculated by/// starting from `block.timestamp` and adding each delta to the previous milestone.structCreateWithDeltas {
address sender;
bool cancelable;
address recipient;
uint128 totalAmount;
IERC20 asset;
Broker broker;
SegmentWithDelta[] segments;
}
/// @notice Struct encapsulating the parameters for the {SablierV2LockupDynamic.createWithMilestones}/// function./// @param sender The address streaming the assets, with the ability to cancel the stream. It doesn't have to be the/// same as `msg.sender`./// @param startTime The Unix timestamp indicating the stream's start./// @param cancelable Indicates if the stream is cancelable./// @param recipient The address receiving the assets./// @param totalAmount The total amount of ERC-20 assets to be paid, including the stream deposit and any potential/// fees, all denoted in units of the asset's decimals./// @param asset The contract address of the ERC-20 asset used for streaming./// @param broker Struct containing (i) the address of the broker assisting in creating the stream, and (ii) the/// percentage fee paid to the broker from `totalAmount`, denoted as a fixed-point number. Both can be set to zero./// @param segments Segments used to compose the custom streaming curve.structCreateWithMilestones {
address sender;
uint40 startTime;
bool cancelable;
address recipient;
uint128 totalAmount;
IERC20 asset;
Broker broker;
Segment[] segments;
}
/// @notice Struct encapsulating the time range./// @param start The Unix timestamp indicating the stream's start./// @param end The Unix timestamp indicating the stream's end.structRange {
uint40 start;
uint40 end;
}
/// @notice Segment struct used in the Lockup Dynamic stream./// @param amount The amount of assets to be streamed in this segment, denoted in units of the asset's decimals./// @param exponent The exponent of this segment, denoted as a fixed-point number./// @param milestone The Unix timestamp indicating this segment's end.structSegment {
// slot 0uint128 amount;
UD2x18 exponent;
uint40 milestone;
}
/// @notice Segment struct used at runtime in {SablierV2LockupDynamic.createWithDeltas}./// @param amount The amount of assets to be streamed in this segment, denoted in units of the asset's decimals./// @param exponent The exponent of this segment, denoted as a fixed-point number./// @param delta The time difference in seconds between this segment and the previous one.structSegmentWithDelta {
uint128 amount;
UD2x18 exponent;
uint40 delta;
}
/// @notice Lockup Dynamic stream./// @dev The fields are arranged like this to save gas via tight variable packing./// @param sender The address streaming the assets, with the ability to cancel the stream./// @param startTime The Unix timestamp indicating the stream's start./// @param endTime The Unix timestamp indicating the stream's end./// @param isCancelable Boolean indicating if the stream is cancelable./// @param wasCanceled Boolean indicating if the stream was canceled./// @param asset The contract address of the ERC-20 asset used for streaming./// @param isDepleted Boolean indicating if the stream is depleted./// @param isStream Boolean indicating if the struct entity exists./// @param amounts Struct containing the deposit, withdrawn, and refunded amounts, all denoted in units of the/// asset's decimals./// @param segments Segments used to compose the custom streaming curve.structStream {
// slot 0address sender;
uint40 startTime;
uint40 endTime;
bool isCancelable;
bool wasCanceled;
// slot 1
IERC20 asset;
bool isDepleted;
bool isStream;
// slot 2 and 3
Lockup.Amounts amounts;
// slots [4..n]
Segment[] segments;
}
}
/// @notice Namespace for the structs used in {SablierV2LockupLinear}.libraryLockupLinear{
/// @notice Struct encapsulating the parameters for the {SablierV2LockupLinear.createWithDurations} function./// @param sender The address streaming the assets, with the ability to cancel the stream. It doesn't have to be the/// same as `msg.sender`./// @param recipient The address receiving the assets./// @param totalAmount The total amount of ERC-20 assets to be paid, including the stream deposit and any potential/// fees, all denoted in units of the asset's decimals./// @param asset The contract address of the ERC-20 asset used for streaming./// @param cancelable Indicates if the stream is cancelable./// @param durations Struct containing (i) cliff period duration and (ii) total stream duration, both in seconds./// @param broker Struct containing (i) the address of the broker assisting in creating the stream, and (ii) the/// percentage fee paid to the broker from `totalAmount`, denoted as a fixed-point number. Both can be set to zero.structCreateWithDurations {
address sender;
address recipient;
uint128 totalAmount;
IERC20 asset;
bool cancelable;
Durations durations;
Broker broker;
}
/// @notice Struct encapsulating the parameters for the {SablierV2LockupLinear.createWithRange} function./// @param sender The address streaming the assets, with the ability to cancel the stream. It doesn't have to be the/// same as `msg.sender`./// @param recipient The address receiving the assets./// @param totalAmount The total amount of ERC-20 assets to be paid, including the stream deposit and any potential/// fees, all denoted in units of the asset's decimals./// @param asset The contract address of the ERC-20 asset used for streaming./// @param cancelable Indicates if the stream is cancelable./// @param range Struct containing (i) the stream's start time, (ii) cliff time, and (iii) end time, all as Unix/// timestamps./// @param broker Struct containing (i) the address of the broker assisting in creating the stream, and (ii) the/// percentage fee paid to the broker from `totalAmount`, denoted as a fixed-point number. Both can be set to zero.structCreateWithRange {
address sender;
address recipient;
uint128 totalAmount;
IERC20 asset;
bool cancelable;
Range range;
Broker broker;
}
/// @notice Struct encapsulating the cliff duration and the total duration./// @param cliff The cliff duration in seconds./// @param total The total duration in seconds.structDurations {
uint40 cliff;
uint40 total;
}
/// @notice Struct encapsulating the time range./// @param start The Unix timestamp for the stream's start./// @param cliff The Unix timestamp for the cliff period's end./// @param end The Unix timestamp for the stream's end.structRange {
uint40 start;
uint40 cliff;
uint40 end;
}
/// @notice Lockup Linear stream./// @dev The fields are arranged like this to save gas via tight variable packing./// @param sender The address streaming the assets, with the ability to cancel the stream./// @param startTime The Unix timestamp indicating the stream's start./// @param cliffTime The Unix timestamp indicating the cliff period's end./// @param isCancelable Boolean indicating if the stream is cancelable./// @param wasCanceled Boolean indicating if the stream was canceled./// @param asset The contract address of the ERC-20 asset used for streaming./// @param endTime The Unix timestamp indicating the stream's end./// @param isDepleted Boolean indicating if the stream is depleted./// @param isStream Boolean indicating if the struct entity exists./// @param amounts Struct containing the deposit, withdrawn, and refunded amounts, all denoted in units of the/// asset's decimals.structStream {
// slot 0address sender;
uint40 startTime;
uint40 cliffTime;
bool isCancelable;
bool wasCanceled;
// slot 1
IERC20 asset;
uint40 endTime;
bool isDepleted;
bool isStream;
// slot 2 and 3
Lockup.Amounts amounts;
}
}
Contract Source Code
File 6 of 27: ERC20.sol
// SPDX-License-Identifier: AGPL-3.0-onlypragmasolidity >=0.8.0;/// @notice Modern and gas efficient ERC20 + EIP-2612 implementation./// @author Solmate (https://github.com/transmissions11/solmate/blob/main/src/tokens/ERC20.sol)/// @author Modified from Uniswap (https://github.com/Uniswap/uniswap-v2-core/blob/master/contracts/UniswapV2ERC20.sol)/// @dev Do not manually set balances without updating totalSupply, as the sum of all user balances must not exceed it.abstractcontractERC20{
/*//////////////////////////////////////////////////////////////
EVENTS
//////////////////////////////////////////////////////////////*/eventTransfer(addressindexedfrom, addressindexed to, uint256 amount);
eventApproval(addressindexed owner, addressindexed spender, uint256 amount);
/*//////////////////////////////////////////////////////////////
METADATA STORAGE
//////////////////////////////////////////////////////////////*/stringpublic name;
stringpublic symbol;
uint8publicimmutable decimals;
/*//////////////////////////////////////////////////////////////
ERC20 STORAGE
//////////////////////////////////////////////////////////////*/uint256public totalSupply;
mapping(address=>uint256) public balanceOf;
mapping(address=>mapping(address=>uint256)) public allowance;
/*//////////////////////////////////////////////////////////////
EIP-2612 STORAGE
//////////////////////////////////////////////////////////////*/uint256internalimmutable INITIAL_CHAIN_ID;
bytes32internalimmutable INITIAL_DOMAIN_SEPARATOR;
mapping(address=>uint256) public nonces;
/*//////////////////////////////////////////////////////////////
CONSTRUCTOR
//////////////////////////////////////////////////////////////*/constructor(stringmemory _name,
stringmemory _symbol,
uint8 _decimals
) {
name = _name;
symbol = _symbol;
decimals = _decimals;
INITIAL_CHAIN_ID =block.chainid;
INITIAL_DOMAIN_SEPARATOR = computeDomainSeparator();
}
/*//////////////////////////////////////////////////////////////
ERC20 LOGIC
//////////////////////////////////////////////////////////////*/functionapprove(address spender, uint256 amount) publicvirtualreturns (bool) {
allowance[msg.sender][spender] = amount;
emit Approval(msg.sender, spender, amount);
returntrue;
}
functiontransfer(address to, uint256 amount) publicvirtualreturns (bool) {
balanceOf[msg.sender] -= amount;
// Cannot overflow because the sum of all user// balances can't exceed the max uint256 value.unchecked {
balanceOf[to] += amount;
}
emit Transfer(msg.sender, to, amount);
returntrue;
}
functiontransferFrom(addressfrom,
address to,
uint256 amount
) publicvirtualreturns (bool) {
uint256 allowed = allowance[from][msg.sender]; // Saves gas for limited approvals.if (allowed !=type(uint256).max) allowance[from][msg.sender] = allowed - amount;
balanceOf[from] -= amount;
// Cannot overflow because the sum of all user// balances can't exceed the max uint256 value.unchecked {
balanceOf[to] += amount;
}
emit Transfer(from, to, amount);
returntrue;
}
/*//////////////////////////////////////////////////////////////
EIP-2612 LOGIC
//////////////////////////////////////////////////////////////*/functionpermit(address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) publicvirtual{
require(deadline >=block.timestamp, "PERMIT_DEADLINE_EXPIRED");
// Unchecked because the only math done is incrementing// the owner's nonce which cannot realistically overflow.unchecked {
address recoveredAddress =ecrecover(
keccak256(
abi.encodePacked(
"\x19\x01",
DOMAIN_SEPARATOR(),
keccak256(
abi.encode(
keccak256(
"Permit(address owner,address spender,uint256 value,uint256 nonce,uint256 deadline)"
),
owner,
spender,
value,
nonces[owner]++,
deadline
)
)
)
),
v,
r,
s
);
require(recoveredAddress !=address(0) && recoveredAddress == owner, "INVALID_SIGNER");
allowance[recoveredAddress][spender] = value;
}
emit Approval(owner, spender, value);
}
functionDOMAIN_SEPARATOR() publicviewvirtualreturns (bytes32) {
returnblock.chainid== INITIAL_CHAIN_ID ? INITIAL_DOMAIN_SEPARATOR : computeDomainSeparator();
}
functioncomputeDomainSeparator() internalviewvirtualreturns (bytes32) {
returnkeccak256(
abi.encode(
keccak256("EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)"),
keccak256(bytes(name)),
keccak256("1"),
block.chainid,
address(this)
)
);
}
/*//////////////////////////////////////////////////////////////
INTERNAL MINT/BURN LOGIC
//////////////////////////////////////////////////////////////*/function_mint(address to, uint256 amount) internalvirtual{
totalSupply += amount;
// Cannot overflow because the sum of all user// balances can't exceed the max uint256 value.unchecked {
balanceOf[to] += amount;
}
emit Transfer(address(0), to, amount);
}
function_burn(addressfrom, uint256 amount) internalvirtual{
balanceOf[from] -= amount;
// Cannot underflow because a user's balance// will never be larger than the total supply.unchecked {
totalSupply -= amount;
}
emit Transfer(from, address(0), amount);
}
}
Contract Source Code
File 7 of 27: EnumerableSet.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/structs/EnumerableSet.sol)// This file was procedurally generated from scripts/generate/templates/EnumerableSet.js.pragmasolidity ^0.8.0;/**
* @dev Library for managing
* https://en.wikipedia.org/wiki/Set_(abstract_data_type)[sets] of primitive
* types.
*
* Sets have the following properties:
*
* - Elements are added, removed, and checked for existence in constant time
* (O(1)).
* - Elements are enumerated in O(n). No guarantees are made on the ordering.
*
* ```solidity
* contract Example {
* // Add the library methods
* using EnumerableSet for EnumerableSet.AddressSet;
*
* // Declare a set state variable
* EnumerableSet.AddressSet private mySet;
* }
* ```
*
* As of v3.3.0, sets of type `bytes32` (`Bytes32Set`), `address` (`AddressSet`)
* and `uint256` (`UintSet`) are supported.
*
* [WARNING]
* ====
* Trying to delete such a structure from storage will likely result in data corruption, rendering the structure
* unusable.
* See https://github.com/ethereum/solidity/pull/11843[ethereum/solidity#11843] for more info.
*
* In order to clean an EnumerableSet, you can either remove all elements one by one or create a fresh instance using an
* array of EnumerableSet.
* ====
*/libraryEnumerableSet{
// To implement this library for multiple types with as little code// repetition as possible, we write it in terms of a generic Set type with// bytes32 values.// The Set implementation uses private functions, and user-facing// implementations (such as AddressSet) are just wrappers around the// underlying Set.// This means that we can only create new EnumerableSets for types that fit// in bytes32.structSet {
// Storage of set valuesbytes32[] _values;
// Position of the value in the `values` array, plus 1 because index 0// means a value is not in the set.mapping(bytes32=>uint256) _indexes;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/function_add(Set storage set, bytes32 value) privatereturns (bool) {
if (!_contains(set, value)) {
set._values.push(value);
// The value is stored at length-1, but we add 1 to all indexes// and use 0 as a sentinel value
set._indexes[value] = set._values.length;
returntrue;
} else {
returnfalse;
}
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/function_remove(Set storage set, bytes32 value) privatereturns (bool) {
// We read and store the value's index to prevent multiple reads from the same storage slotuint256 valueIndex = set._indexes[value];
if (valueIndex !=0) {
// Equivalent to contains(set, value)// To delete an element from the _values array in O(1), we swap the element to delete with the last one in// the array, and then remove the last element (sometimes called as 'swap and pop').// This modifies the order of the array, as noted in {at}.uint256 toDeleteIndex = valueIndex -1;
uint256 lastIndex = set._values.length-1;
if (lastIndex != toDeleteIndex) {
bytes32 lastValue = set._values[lastIndex];
// Move the last value to the index where the value to delete is
set._values[toDeleteIndex] = lastValue;
// Update the index for the moved value
set._indexes[lastValue] = valueIndex; // Replace lastValue's index to valueIndex
}
// Delete the slot where the moved value was stored
set._values.pop();
// Delete the index for the deleted slotdelete set._indexes[value];
returntrue;
} else {
returnfalse;
}
}
/**
* @dev Returns true if the value is in the set. O(1).
*/function_contains(Set storage set, bytes32 value) privateviewreturns (bool) {
return set._indexes[value] !=0;
}
/**
* @dev Returns the number of values on the set. O(1).
*/function_length(Set storage set) privateviewreturns (uint256) {
return set._values.length;
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/function_at(Set storage set, uint256 index) privateviewreturns (bytes32) {
return set._values[index];
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/function_values(Set storage set) privateviewreturns (bytes32[] memory) {
return set._values;
}
// Bytes32SetstructBytes32Set {
Set _inner;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/functionadd(Bytes32Set storage set, bytes32 value) internalreturns (bool) {
return _add(set._inner, value);
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/functionremove(Bytes32Set storage set, bytes32 value) internalreturns (bool) {
return _remove(set._inner, value);
}
/**
* @dev Returns true if the value is in the set. O(1).
*/functioncontains(Bytes32Set storage set, bytes32 value) internalviewreturns (bool) {
return _contains(set._inner, value);
}
/**
* @dev Returns the number of values in the set. O(1).
*/functionlength(Bytes32Set storage set) internalviewreturns (uint256) {
return _length(set._inner);
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/functionat(Bytes32Set storage set, uint256 index) internalviewreturns (bytes32) {
return _at(set._inner, index);
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/functionvalues(Bytes32Set storage set) internalviewreturns (bytes32[] memory) {
bytes32[] memory store = _values(set._inner);
bytes32[] memory result;
/// @solidity memory-safe-assemblyassembly {
result := store
}
return result;
}
// AddressSetstructAddressSet {
Set _inner;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/functionadd(AddressSet storage set, address value) internalreturns (bool) {
return _add(set._inner, bytes32(uint256(uint160(value))));
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/functionremove(AddressSet storage set, address value) internalreturns (bool) {
return _remove(set._inner, bytes32(uint256(uint160(value))));
}
/**
* @dev Returns true if the value is in the set. O(1).
*/functioncontains(AddressSet storage set, address value) internalviewreturns (bool) {
return _contains(set._inner, bytes32(uint256(uint160(value))));
}
/**
* @dev Returns the number of values in the set. O(1).
*/functionlength(AddressSet storage set) internalviewreturns (uint256) {
return _length(set._inner);
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/functionat(AddressSet storage set, uint256 index) internalviewreturns (address) {
returnaddress(uint160(uint256(_at(set._inner, index))));
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/functionvalues(AddressSet storage set) internalviewreturns (address[] memory) {
bytes32[] memory store = _values(set._inner);
address[] memory result;
/// @solidity memory-safe-assemblyassembly {
result := store
}
return result;
}
// UintSetstructUintSet {
Set _inner;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/functionadd(UintSet storage set, uint256 value) internalreturns (bool) {
return _add(set._inner, bytes32(value));
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/functionremove(UintSet storage set, uint256 value) internalreturns (bool) {
return _remove(set._inner, bytes32(value));
}
/**
* @dev Returns true if the value is in the set. O(1).
*/functioncontains(UintSet storage set, uint256 value) internalviewreturns (bool) {
return _contains(set._inner, bytes32(value));
}
/**
* @dev Returns the number of values in the set. O(1).
*/functionlength(UintSet storage set) internalviewreturns (uint256) {
return _length(set._inner);
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/functionat(UintSet storage set, uint256 index) internalviewreturns (uint256) {
returnuint256(_at(set._inner, index));
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/functionvalues(UintSet storage set) internalviewreturns (uint256[] memory) {
bytes32[] memory store = _values(set._inner);
uint256[] memory result;
/// @solidity memory-safe-assemblyassembly {
result := store
}
return result;
}
}
Contract Source Code
File 8 of 27: Errors.sol
// SPDX-License-Identifier: MITpragmasolidity >=0.8.19;import { SD59x18 } from"./ValueType.sol";
/// @notice Thrown when taking the absolute value of `MIN_SD59x18`.errorPRBMath_SD59x18_Abs_MinSD59x18();
/// @notice Thrown when ceiling a number overflows SD59x18.errorPRBMath_SD59x18_Ceil_Overflow(SD59x18 x);
/// @notice Thrown when converting a basic integer to the fixed-point format overflows SD59x18.errorPRBMath_SD59x18_Convert_Overflow(int256 x);
/// @notice Thrown when converting a basic integer to the fixed-point format underflows SD59x18.errorPRBMath_SD59x18_Convert_Underflow(int256 x);
/// @notice Thrown when dividing two numbers and one of them is `MIN_SD59x18`.errorPRBMath_SD59x18_Div_InputTooSmall();
/// @notice Thrown when dividing two numbers and one of the intermediary unsigned results overflows SD59x18.errorPRBMath_SD59x18_Div_Overflow(SD59x18 x, SD59x18 y);
/// @notice Thrown when taking the natural exponent of a base greater than 133_084258667509499441.errorPRBMath_SD59x18_Exp_InputTooBig(SD59x18 x);
/// @notice Thrown when taking the binary exponent of a base greater than 192e18.errorPRBMath_SD59x18_Exp2_InputTooBig(SD59x18 x);
/// @notice Thrown when flooring a number underflows SD59x18.errorPRBMath_SD59x18_Floor_Underflow(SD59x18 x);
/// @notice Thrown when taking the geometric mean of two numbers and their product is negative.errorPRBMath_SD59x18_Gm_NegativeProduct(SD59x18 x, SD59x18 y);
/// @notice Thrown when taking the geometric mean of two numbers and multiplying them overflows SD59x18.errorPRBMath_SD59x18_Gm_Overflow(SD59x18 x, SD59x18 y);
/// @notice Thrown when trying to cast a UD60x18 number that doesn't fit in SD1x18.errorPRBMath_SD59x18_IntoSD1x18_Overflow(SD59x18 x);
/// @notice Thrown when trying to cast a UD60x18 number that doesn't fit in SD1x18.errorPRBMath_SD59x18_IntoSD1x18_Underflow(SD59x18 x);
/// @notice Thrown when trying to cast a UD60x18 number that doesn't fit in UD2x18.errorPRBMath_SD59x18_IntoUD2x18_Overflow(SD59x18 x);
/// @notice Thrown when trying to cast a UD60x18 number that doesn't fit in UD2x18.errorPRBMath_SD59x18_IntoUD2x18_Underflow(SD59x18 x);
/// @notice Thrown when trying to cast a UD60x18 number that doesn't fit in UD60x18.errorPRBMath_SD59x18_IntoUD60x18_Underflow(SD59x18 x);
/// @notice Thrown when trying to cast a UD60x18 number that doesn't fit in uint128.errorPRBMath_SD59x18_IntoUint128_Overflow(SD59x18 x);
/// @notice Thrown when trying to cast a UD60x18 number that doesn't fit in uint128.errorPRBMath_SD59x18_IntoUint128_Underflow(SD59x18 x);
/// @notice Thrown when trying to cast a UD60x18 number that doesn't fit in uint256.errorPRBMath_SD59x18_IntoUint256_Underflow(SD59x18 x);
/// @notice Thrown when trying to cast a UD60x18 number that doesn't fit in uint40.errorPRBMath_SD59x18_IntoUint40_Overflow(SD59x18 x);
/// @notice Thrown when trying to cast a UD60x18 number that doesn't fit in uint40.errorPRBMath_SD59x18_IntoUint40_Underflow(SD59x18 x);
/// @notice Thrown when taking the logarithm of a number less than or equal to zero.errorPRBMath_SD59x18_Log_InputTooSmall(SD59x18 x);
/// @notice Thrown when multiplying two numbers and one of the inputs is `MIN_SD59x18`.errorPRBMath_SD59x18_Mul_InputTooSmall();
/// @notice Thrown when multiplying two numbers and the intermediary absolute result overflows SD59x18.errorPRBMath_SD59x18_Mul_Overflow(SD59x18 x, SD59x18 y);
/// @notice Thrown when raising a number to a power and the intermediary absolute result overflows SD59x18.errorPRBMath_SD59x18_Powu_Overflow(SD59x18 x, uint256 y);
/// @notice Thrown when taking the square root of a negative number.errorPRBMath_SD59x18_Sqrt_NegativeInput(SD59x18 x);
/// @notice Thrown when the calculating the square root overflows SD59x18.errorPRBMath_SD59x18_Sqrt_Overflow(SD59x18 x);
Contract Source Code
File 9 of 27: FjordStaking.sol
// SPDX-License-Identifier: AGPL-3.0-onlypragmasolidity =0.8.21;import { ERC20 } from"lib/solmate/src/tokens/ERC20.sol";
import { SafeTransferLib } from"lib/solmate/src/utils/SafeTransferLib.sol";
import"lib/openzeppelin-contracts/contracts/utils/structs/EnumerableSet.sol";
import { ISablierV2Lockup } from"lib/v2-core/src/interfaces/ISablierV2LockupLinear.sol";
import { ISablierV2LockupRecipient } from"lib/v2-core/src/interfaces/hooks/ISablierV2LockupRecipient.sol";
import { IFjordPoints } from"./interfaces/IFjordPoints.sol";
structDepositReceipt {
uint16 epoch;
uint256 staked;
uint256 vestedStaked;
}
structClaimReceipt {
uint16 requestEpoch;
uint256 amount;
}
structNFTData {
uint16 epoch;
uint256 amount;
}
structUserData {
uint256 totalStaked;
uint256 unclaimedRewards;
uint16 unredeemedEpoch;
uint16 lastClaimedEpoch;
}
contractFjordStakingisISablierV2LockupRecipient{
/// -----------------------------------------------------------------------/// Dependencies/// -----------------------------------------------------------------------usingEnumerableSetforEnumerableSet.UintSet;
usingSafeTransferLibforERC20;
/// -----------------------------------------------------------------------/// Events/// -----------------------------------------------------------------------/// @dev Emitted when tokens are staked in the contract./// @param user The address of the caller initiating the stake./// @param epoch The current epoch cycle./// @param amount The amount of tokens received in the stake.eventStaked(addressindexed user, uint16indexed epoch, uint256 amount);
/// @dev Emitted when vested FJORD tokens are staked in the contract./// @param user The address of the caller initiating the stake./// @param epoch The current epoch cycle./// @param amount The amount of tokens received in the stake./// @param streamID The stream id of the NFT.eventVestedStaked(addressindexed user, uint16indexed epoch, uint256indexed streamID, uint256 amount
);
/// @dev Emitted when rewards are added in the contract./// @param epoch The current epoch cycle./// @param amount The amount of tokens added as rewards.eventRewardAdded(uint16indexed epoch, address rewardAdmin, uint256 amount);
/// @dev Emitted when rewards are claimed by the user./// @param user The address of the caller initiating the claim./// @param amount The amount of rewards given.eventRewardClaimed(addressindexed user, uint256 amount);
/// @dev Emitted when rewards are claimed by the user before cooldown./// @param user The address of the caller initiating the claim./// @param rewardAmount The amount of rewards given./// @param penaltyAmount The amount of tokens deducted as penalty.eventEarlyRewardClaimed(addressindexed user, uint256 rewardAmount, uint256 penaltyAmount);
/// @dev Emitted when user claims rewards from all epoch cycles./// @param user The address of the caller initiating the claim./// @param totalRewardAmount The total reward amount given./// @param totalPenaltyAmount The total amount penalised for early claim.eventClaimedAll(addressindexed user, uint256 totalRewardAmount, uint256 totalPenaltyAmount);
/// @dev Emitted when user unstakes the deposit./// @param user The address of the caller initiating the unstake./// @param epoch The epoch cycle for which unstake is initiated./// @param stakedAmount The staked amount for the user.eventUnstaked(addressindexed user, uint16indexed epoch, uint256 stakedAmount);
/// @dev Emitted when user unstakes the vested FJO./// @param user The address of the caller initiating the unstake./// @param epoch The epoch cycle for which unstake is initiated./// @param stakedAmount The staked amount for the user./// @param streamID The stream id of the NFT.eventVestedUnstaked(addressindexed user, uint16indexed epoch, uint256 stakedAmount, uint256 streamID
);
/// @dev Emitted when user unstakes the deposit from all epoch cycles./// @param user The address of the caller initiating the unstake./// @param totalStakedAmount The total staked amount for the user./// @param activeDepositsBefore The epochs with active deposit in which user staked before unstake./// @param activeDepositsAfter The epochs with active deposit in which user staked after unstake.eventUnstakedAll(addressindexed user,
uint256 totalStakedAmount,
uint256[] activeDepositsBefore,
uint256[] activeDepositsAfter
);
/// @dev Emitted when user create a claim receipt./// @param user The address of the caller initiating the claim receipt./// @param requestEpoch The epoch of claim receipt.eventClaimReceiptCreated(addressindexed user, uint16 requestEpoch);
/// @dev Emitted when user claims reward from the claim receipt./// @param epoch The epoch cycle for which reward is changed./// @param rewardPerToken The amount of reward for given epoch.eventRewardPerTokenChanged(uint16 epoch, uint256 rewardPerToken);
/// @dev Emitted when sablier withdrawn hook is invoked./// @param user The owner that stake stream id./// @param streamID The stream id of the NFT./// @param caller The stream sender that withdrawn the stream./// @param amount The amount of tokens withdrawn.eventSablierWithdrawn(addressindexed user, uint256 streamID, address caller, uint256 amount);
/// @dev Emitted when sablier withdrawn hook is invoked./// @param user The owner that stake stream id./// @param streamID The stream id of the NFT./// @param caller The stream sender that withdrawn the stream./// @param amount The amount of tokens unstake.eventSablierCanceled(addressindexed user, uint256 streamID, address caller, uint256 amount);
/// -----------------------------------------------------------------------/// Errors/// -----------------------------------------------------------------------/// @dev Error thrown when an address is not allowed to call a function.errorCallerDisallowed();
/// @dev Error thrown when a given amount is not in valid range.errorInvalidAmount();
/// @dev Error thrown when unstake a deposit too early.errorUnstakeEarly();
/// @dev Error thrown when claim reward too early.errorClaimTooEarly();
/// @dev Error thrown when a deposit is not found.errorDepositNotFound();
/// @dev Error thrown when a claim receipt is not found.errorClaimReceiptNotFound();
/// @dev Error thrown when a user have no active deposit.errorNoActiveDeposit();
/// @dev Error thrown when try to unstake more amount than the given deposit available.errorUnstakeMoreThanDeposit();
/// @dev Error thrown when user tries to stake an NFT that doesn't exists.errorNotAStream();
/// @dev Error thrown when user tries to stake an NFT that is not supported.errorStreamNotSupported();
/// @dev Error thrown when user tries to stake an NFT a cold stream.errorNotAWarmStream();
/// @dev Error thrown sablier vesting NFT is not of FJO token.errorInvalidAsset();
/// @dev Error thrown when there is nothing to claim.errorNothingToClaim();
/// @dev Error thrown when stream owner not found.errorStreamOwnerNotFound();
/// @dev Error thrown when address is zero.errorInvalidZeroAddress();
/// @dev Error thrown when complete claim request too early.errorCompleteRequestTooEarly();
/// -----------------------------------------------------------------------/// Mutable Storage/// -----------------------------------------------------------------------/// @notice The owner of the staking contract.addresspublic owner;
/// @notice The address of the sablier vesting contrat.
ISablierV2Lockup public sablier;
/// @notice The address of the fjord points contract.
IFjordPoints public points;
/// @notice Deposit receipts for staking, user => epoch => deposit receiptmapping(address user =>mapping(uint16 epoch => DepositReceipt)) public deposits;
/// @notice Claim receipt receipts for reawrds, user => epoch => claim receiptmapping(address user => ClaimReceipt) public claimReceipts;
/// @notice Active deposits by the user, user => set of epochmapping(address user => EnumerableSet.UintSet epochIds) private _activeDeposits;
/// @notice StreamIDs of the vested FJO staked, user => streamID => NFTDatamapping(address user =>mapping(uint256 streamID => NFTData)) private _streamIDs;
/// @notice Owners of staked streamsmapping(uint256 streamID =>address user) private _streamIDOwners;
/// @notice User stakes and rewards datamapping(address user => UserData) public userData;
/// @notice Rewards distributed accumulated up to the epoch/// rewardPerToken in each epoch will be updated one and only one, epoch => rewardPerTokenmapping(uint16 epoch =>uint256) public rewardPerToken;
/// @notice Total stakeduint256public totalStaked;
/// @notice Total vested stakeduint256public totalVestedStaked;
/// @notice New stakeduint256public newStaked;
/// @notice New vested stakeduint256public newVestedStaked;
/// @notice Total rerwardsuint256public totalRewards;
/// @notice Current epoch cycle number.uint16public currentEpoch;
/// @notice Last epoch when rewards were distributed.uint16public lastEpochRewarded;
/// @notice Mapping of authorized Sablier stream senders.mapping(address authorizedSablierSender =>bool) public authorizedSablierSenders;
/// -----------------------------------------------------------------------/// Immutable Storage/// -----------------------------------------------------------------------/// @notice One epoch time in seconds.uint256publicconstant EPOCH_DURATION =86_400*7; // 7 days;/// @notice Lock duration in epoch cycles.uint8publicconstant LOCK_CYCLE =6;
/// @notice Constantuint256publicconstant PRECISION_18 =1e18;
/// @notice Claim cooldown duration in epoch cycles.uint8publicconstant CLAIM_CYCLE =3;
/// @notice Address of FJORD token.
ERC20 publicimmutable fjordToken;
/// @notice Start time of the staking contract.uint256publicimmutable startTime;
/// @notice Reward admin.addresspublic rewardAdmin;
/**
*
* CONSTRUCTOR & INITIALIZATION
*
*//**
* @notice Initializes the contract with starting variables
* @param _fjordToken is the FJORD token contract
* @param _rewardAdmin is the Fee distributor contract
*/constructor(address _fjordToken,
address _rewardAdmin,
address _sablier,
address _authorizedSablierSender,
address _fjordPoints
) {
if (
_rewardAdmin ==address(0) || _sablier ==address(0) || _fjordToken ==address(0)
|| _fjordPoints ==address(0)
) revert InvalidZeroAddress();
startTime =block.timestamp;
owner =msg.sender;
fjordToken = ERC20(_fjordToken);
currentEpoch =1;
rewardAdmin = _rewardAdmin;
sablier = ISablierV2Lockup(_sablier);
points = IFjordPoints(_fjordPoints);
if (_authorizedSablierSender !=address(0)) {
authorizedSablierSenders[_authorizedSablierSender] =true;
}
}
modifieronlyOwner() {
if (msg.sender!= owner) revert CallerDisallowed();
_;
}
modifieronlyRewardAdmin() {
if (msg.sender!= rewardAdmin) revert CallerDisallowed();
_;
}
modifiercheckEpochRollover() {
_checkEpochRollover();
_;
}
modifierredeemPendingRewards() {
_redeem(msg.sender);
_;
}
modifieronlySablier() {
if (msg.sender!=address(sablier)) revert CallerDisallowed();
_;
}
functiongetEpoch(uint256 _timestamp) publicviewreturns (uint16) {
if (_timestamp < startTime) return0;
returnuint16((_timestamp - startTime) / EPOCH_DURATION) +1;
}
functiongetActiveDeposits(address _user) publicviewreturns (uint256[] memory) {
return _activeDeposits[_user].values();
}
functiongetStreamData(address _user, uint256 _streamID) publicviewreturns (NFTData memory) {
return _streamIDs[_user][_streamID];
}
functiongetStreamOwner(uint256 _streamID) publicviewreturns (address) {
return _streamIDOwners[_streamID];
}
functionsetOwner(address _newOwner) externalonlyOwner{
if (_newOwner ==address(0)) revert InvalidZeroAddress();
owner = _newOwner;
}
functionsetRewardAdmin(address _rewardAdmin) externalonlyOwner{
if (_rewardAdmin ==address(0)) revert InvalidZeroAddress();
rewardAdmin = _rewardAdmin;
}
functionaddAuthorizedSablierSender(address _address) externalonlyOwner{
authorizedSablierSenders[_address] =true;
}
functionremoveAuthorizedSablierSender(address _address) externalonlyOwner{
if (authorizedSablierSenders[_address]) authorizedSablierSenders[_address] =false;
}
/// @notice Stake FJORD tokens into the contract./// @dev This function allows users to stake a certain number of FJORD tokens./// @param _amount The amount of tokens user wants to stake.functionstake(uint256 _amount) externalcheckEpochRolloverredeemPendingRewards{
//CHECKif (_amount ==0) revert InvalidAmount();
//EFFECT
userData[msg.sender].unredeemedEpoch = currentEpoch;
DepositReceipt storage dr = deposits[msg.sender][currentEpoch];
if (dr.epoch ==0) {
dr.staked = _amount;
dr.epoch = currentEpoch;
_activeDeposits[msg.sender].add(currentEpoch);
} else {
dr.staked += _amount;
}
newStaked += _amount;
//INTERACT
fjordToken.safeTransferFrom(msg.sender, address(this), _amount);
points.onStaked(msg.sender, _amount);
emit Staked(msg.sender, currentEpoch, _amount);
}
/// @notice Stake vested FJORD tokens into the contract./// @dev This function allows users to stake a certain their NFT from/// sablier that contains FJORD tokens./// @param _streamID The streamID of the vested NFT.functionstakeVested(uint256 _streamID) externalcheckEpochRolloverredeemPendingRewards{
//CHECKif (!sablier.isStream(_streamID)) revert NotAStream();
if (sablier.isCold(_streamID)) revert NotAWarmStream();
// only allow authorized stream sender to stake cancelable streamif (!authorizedSablierSenders[sablier.getSender(_streamID)]) {
revert StreamNotSupported();
}
if (address(sablier.getAsset(_streamID)) !=address(fjordToken)) revert InvalidAsset();
uint128 depositedAmount = sablier.getDepositedAmount(_streamID);
uint128 withdrawnAmount = sablier.getWithdrawnAmount(_streamID);
uint128 refundedAmount = sablier.getRefundedAmount(_streamID);
if (depositedAmount - (withdrawnAmount + refundedAmount) <=0) revert InvalidAmount();
uint256 _amount = depositedAmount - (withdrawnAmount + refundedAmount);
//EFFECT
userData[msg.sender].unredeemedEpoch = currentEpoch;
DepositReceipt storage dr = deposits[msg.sender][currentEpoch];
if (dr.epoch ==0) {
dr.vestedStaked = _amount;
dr.epoch = currentEpoch;
_activeDeposits[msg.sender].add(currentEpoch);
} else {
dr.vestedStaked += _amount;
}
_streamIDs[msg.sender][_streamID] = NFTData({ epoch: currentEpoch, amount: _amount });
_streamIDOwners[_streamID] =msg.sender;
newStaked += _amount;
newVestedStaked += _amount;
//INTERACT
sablier.transferFrom({ from: msg.sender, to: address(this), tokenId: _streamID });
points.onStaked(msg.sender, _amount);
emit VestedStaked(msg.sender, currentEpoch, _streamID, _amount);
}
/// @notice Unstake FJORD tokens from the contract./// @dev This function allows users to unstake a certain number of FJORD tokens,/// while also claiming all the pending rewards. If _isEarly is true then the/// user will be able to bypass rewards cooldown of 3 epochs and claim early,/// but will incur early claim penalty./// @param _epoch The epoch cycle from which user wants to unstake./// @param _amount The amount of tokens user wants to unstake./// @return total The total amount sent to the user.functionunstake(uint16 _epoch, uint256 _amount)
externalcheckEpochRolloverredeemPendingRewardsreturns (uint256 total)
{
if (_amount ==0) revert InvalidAmount();
DepositReceipt storage dr = deposits[msg.sender][_epoch];
if (dr.epoch ==0) revert DepositNotFound();
if (dr.staked < _amount) revert UnstakeMoreThanDeposit();
// _epoch is same as current epoch then user can unstake immediatelyif (currentEpoch != _epoch) {
// _epoch less than current epoch then user can unstake after at complete LOCK_CYCLEif (currentEpoch - _epoch <= LOCK_CYCLE) revert UnstakeEarly();
}
//EFFECT
dr.staked -= _amount;
if (currentEpoch != _epoch) {
totalStaked -= _amount;
userData[msg.sender].totalStaked -= _amount;
} else {
// unstake immediately
newStaked -= _amount;
}
if (dr.staked ==0&& dr.vestedStaked ==0) {
delete deposits[msg.sender][_epoch];
_activeDeposits[msg.sender].remove(_epoch);
}
total = _amount;
//INTERACT
fjordToken.safeTransfer(msg.sender, total);
points.onUnstaked(msg.sender, _amount);
emit Unstaked(msg.sender, _epoch, _amount);
}
/// @notice Unstake vested FJORD tokens from the contract./// @dev This function allows users to unstake vested FJORD tokens,/// while also claiming all the pending rewards. If _isClaimEarly is true then the/// user will be able to bypass rewards cooldown of 3 epochs and claim early,/// but will incur early claim penalty./// @param _streamID The sablier streamID that the user staked.functionunstakeVested(uint256 _streamID) externalcheckEpochRolloverredeemPendingRewards{
//CHECK
NFTData memory data = _streamIDs[msg.sender][_streamID];
DepositReceipt memory dr = deposits[msg.sender][data.epoch];
if (data.epoch ==0|| data.amount ==0|| dr.vestedStaked ==0|| dr.epoch ==0) {
revert DepositNotFound();
}
// If epoch is same as current epoch then user can unstake immediatelyif (currentEpoch != data.epoch) {
// If epoch less than current epoch then user can unstake after at complete LOCK_CYCLEif (currentEpoch - data.epoch <= LOCK_CYCLE) revert UnstakeEarly();
}
_unstakeVested(msg.sender, _streamID, data.amount);
}
/// @notice Partial or fully unstake vested .function_unstakeVested(address streamOwner, uint256 _streamID, uint256 amount) internal{
NFTData storage data = _streamIDs[streamOwner][_streamID];
DepositReceipt storage dr = deposits[streamOwner][data.epoch];
if (amount > data.amount) revert InvalidAmount();
bool isFullUnstaked = data.amount == amount;
uint16 epoch = data.epoch;
dr.vestedStaked -= amount;
if (currentEpoch != data.epoch) {
totalStaked -= amount;
totalVestedStaked -= amount;
userData[streamOwner].totalStaked -= amount;
} else {
// unstake immediately
newStaked -= amount;
newVestedStaked -= amount;
}
if (dr.vestedStaked ==0&& dr.staked ==0) {
// instant unstakedelete deposits[streamOwner][data.epoch];
_activeDeposits[streamOwner].remove(data.epoch);
}
// fully unstakeif (isFullUnstaked) {
delete _streamIDs[streamOwner][_streamID];
delete _streamIDOwners[_streamID];
} else {
data.amount -= amount;
}
//INTERACTif (isFullUnstaked) {
sablier.transferFrom({ from: address(this), to: streamOwner, tokenId: _streamID });
}
points.onUnstaked(streamOwner, amount);
emit VestedUnstaked(streamOwner, epoch, amount, _streamID);
}
/// @notice Unstake from all epochs./// @dev This function allows users to unstake from all the epochs at once,/// while also claiming all the pending rewards./// @return totalStakedAmount The total amount that has been unstaked.functionunstakeAll()
externalcheckEpochRolloverredeemPendingRewardsreturns (uint256 totalStakedAmount)
{
uint256[] memory activeDeposits = getActiveDeposits(msg.sender);
if (activeDeposits.length==0) revert NoActiveDeposit();
for (uint16 i =0; i < activeDeposits.length; i++) {
uint16 epoch =uint16(activeDeposits[i]);
DepositReceipt storage dr = deposits[msg.sender][epoch];
if (dr.epoch ==0|| currentEpoch - epoch <= LOCK_CYCLE) continue;
totalStakedAmount += dr.staked;
// no vested staked and stake is 0 then delete the depositif (dr.vestedStaked ==0) {
delete deposits[msg.sender][epoch];
_activeDeposits[msg.sender].remove(epoch);
} else {
// still have vested staked, then only delete the staked
dr.staked =0;
}
}
totalStaked -= totalStakedAmount;
userData[msg.sender].totalStaked -= totalStakedAmount;
fjordToken.transfer(msg.sender, totalStakedAmount);
points.onUnstaked(msg.sender, totalStakedAmount);
// emit eventemit UnstakedAll(
msg.sender, totalStakedAmount, activeDeposits, getActiveDeposits(msg.sender)
);
}
/// @notice Claim reward from specific epoch./// @dev This function allows users to claim rewards from an epochs,/// if the user chooses to bypass the reward cooldown of 3 epochs,/// then reward penalty will be levied./// @param _isClaimEarly Whether user wants to claim early and incur penalty./// @return rewardAmount The reward amount that has been distributed./// @return penaltyAmount The penalty incurred by the user for early claim.functionclaimReward(bool _isClaimEarly)
externalcheckEpochRolloverredeemPendingRewardsreturns (uint256 rewardAmount, uint256 penaltyAmount)
{
//CHECK
UserData storage ud = userData[msg.sender];
// do not allow to claimReward while user have pending claimReceipt// or user have claimed from the last epochif (claimReceipts[msg.sender].requestEpoch >0) revert ClaimTooEarly();
if (ud.unclaimedRewards ==0) revert NothingToClaim();
//EFFECTif (!_isClaimEarly) {
claimReceipts[msg.sender] =
ClaimReceipt({ requestEpoch: currentEpoch, amount: ud.unclaimedRewards });
emit ClaimReceiptCreated(msg.sender, currentEpoch);
return (0, 0);
}
rewardAmount = ud.unclaimedRewards;
penaltyAmount = rewardAmount /2;
rewardAmount -= penaltyAmount;
if (rewardAmount ==0) return (0, 0);
totalRewards -= (rewardAmount + penaltyAmount);
userData[msg.sender].unclaimedRewards -= (rewardAmount + penaltyAmount);
//INTERACT
fjordToken.safeTransfer(msg.sender, rewardAmount);
emit EarlyRewardClaimed(msg.sender, rewardAmount, penaltyAmount);
}
/// @notice Comaplete claim receipt from specific epoch./// @dev This function allows users to complete claim receipt from an epoch/// @return rewardAmount The reward amount that has been distributed.functioncompleteClaimRequest()
externalcheckEpochRolloverredeemPendingRewardsreturns (uint256 rewardAmount)
{
ClaimReceipt memory cr = claimReceipts[msg.sender];
//CHECKif (cr.requestEpoch <1) revert ClaimReceiptNotFound();
// to complete claim receipt, user must wait for at least 3 epochsif (currentEpoch - cr.requestEpoch <= CLAIM_CYCLE) revert CompleteRequestTooEarly();
//EFFECT
rewardAmount = cr.amount;
userData[msg.sender].unclaimedRewards -= rewardAmount;
totalRewards -= rewardAmount;
delete claimReceipts[msg.sender];
//INTERACT
fjordToken.safeTransfer(msg.sender, rewardAmount);
emit RewardClaimed(msg.sender, rewardAmount);
}
/// @notice Check and update epoch rollover./// @dev rollover to latest epoch, gap epoches will be filled with previous epoch reward per tokenfunction_checkEpochRollover() internal{
uint16 latestEpoch = getEpoch(block.timestamp);
if (latestEpoch > currentEpoch) {
//Time to rollover
currentEpoch = latestEpoch;
if (totalStaked >0) {
uint256 currentBalance = fjordToken.balanceOf(address(this));
// no distribute the rewards to the users coming in the current epochuint256 pendingRewards = (currentBalance + totalVestedStaked + newVestedStaked)
- totalStaked - newStaked - totalRewards;
uint256 pendingRewardsPerToken = (pendingRewards * PRECISION_18) / totalStaked;
totalRewards += pendingRewards;
for (uint16 i = lastEpochRewarded +1; i < currentEpoch; i++) {
rewardPerToken[i] = rewardPerToken[lastEpochRewarded] + pendingRewardsPerToken;
emit RewardPerTokenChanged(i, rewardPerToken[i]);
}
} else {
for (uint16 i = lastEpochRewarded +1; i < currentEpoch; i++) {
rewardPerToken[i] = rewardPerToken[lastEpochRewarded];
emit RewardPerTokenChanged(i, rewardPerToken[i]);
}
}
totalStaked += newStaked;
totalVestedStaked += newVestedStaked;
newStaked =0;
newVestedStaked =0;
lastEpochRewarded = currentEpoch -1;
}
}
/// @notice accumulate unclaimed rewards for the user from last non-zero unredeemed epoch/// This function should run before every tx user does, so state is correctly maintained everytime/// Last unredeemed epoch will be the last epoch user stakedfunction_redeem(address sender) internal{
//1. Get user data
UserData storage ud = userData[sender];
ud.unclaimedRewards +=
_calculateReward(ud.totalStaked, ud.lastClaimedEpoch, currentEpoch -1);
ud.lastClaimedEpoch = currentEpoch -1;
if (ud.unredeemedEpoch >0&& ud.unredeemedEpoch < currentEpoch) {
// 2. Calculate rewards for all deposits since last redeemed, there will be only 1 pending unredeemed epoch
DepositReceipt memory deposit = deposits[sender][ud.unredeemedEpoch];
// 3. Update last redeemed and pending rewards
ud.unclaimedRewards += _calculateReward(
deposit.staked + deposit.vestedStaked, ud.unredeemedEpoch, currentEpoch -1
);
ud.unredeemedEpoch =0;
ud.totalStaked += (deposit.staked + deposit.vestedStaked);
}
}
/// @notice addReward should be called by master chef/// must be only call if it's can trigger update next epoch so the total staked won't increase anymore/// must be the action to trigger update epoch and the last action of the epoch/// @param _amount The amount of tokens to be added as rewards.functionaddReward(uint256 _amount) externalonlyRewardAdmin{
//CHECKif (_amount ==0) revert InvalidAmount();
//EFFECTuint16 previousEpoch = currentEpoch;
//INTERACT
fjordToken.safeTransferFrom(msg.sender, address(this), _amount);
_checkEpochRollover();
emit RewardAdded(previousEpoch, msg.sender, _amount);
}
/// @notice Calculate reward for a given amount from _fromEpoch to _toEpoch/// @param _amount The amount of tokens staked./// @param _fromEpoch The epoch from which reward calculation starts./// @param _toEpoch The epoch till which reward calculation is done./// @return rewardAmount The reward amount that has been distributed.function_calculateReward(uint256 _amount, uint16 _fromEpoch, uint16 _toEpoch)
internalviewreturns (uint256 rewardAmount)
{
rewardAmount =
(_amount * (rewardPerToken[_toEpoch] - rewardPerToken[_fromEpoch])) / PRECISION_18;
}
/// @notice Responds to withdrawals triggered by either the stream's sender or an approved third party./// @notice if onStreamWithdrawn is implemented inproperly, the execution flow still continues./// @dev Notes:/// - This function may revert, but the Sablier contract will ignore the revert./// @param /*streamId*/ The id of the stream being withdrawn from./// @param /*caller*/ The original `msg.sender` address that triggered the withdrawal./// @param /*to*/ The staking contract address receiving the withdrawn assets./// @param /*amount*/ The amount of assets withdrawn, denoted in units of the asset's decimals.functiononStreamWithdrawn(uint256, /*streamId*/address, /*caller*/address, /*to*/uint128/*amount*/) externaloverrideonlySablier{
// Left blank intentionally
}
/// @notice Responds to renouncements./// @notice Renouncing a stream means that the sender of the stream will no longer be able to cancel it./// This is useful if the sender wants to give up control of the stream./// @notice onStreamRenounced never be called with non-cancelable stream/// and does nothing effect on the staking contract/// @dev Notes:/// - This function may revert, but the Sablier contract will ignore the revert./// @param /*streamId*/ The id of the renounced stream.functiononStreamRenounced(uint256/*streamId*/) externaloverrideonlySablier{
// Left blank intentionally
}
/// @notice onStreamCanceled never be called with non-cancelable stream/// @notice Responds to sender-triggered cancellations./// @dev Notes:/// - This function may revert, but the Sablier contract will ignore the revert./// @param streamId The id of the canceled stream./// @param sender The stream's sender, who canceled the stream./// @param senderAmount The amount of assets refunded to the stream's sender, denoted in units of the asset's/// decimals./// @param /*recipientAmount*/ The amount of assets left for the stream's recipient to withdraw, denoted in units of/// the asset's decimals. This is the expected amount left in staking contract.functiononStreamCanceled(uint256 streamId,
address sender,
uint128 senderAmount,
uint128/*recipientAmount*/) externaloverrideonlySabliercheckEpochRollover{
address streamOwner = _streamIDOwners[streamId];
if (streamOwner ==address(0)) revert StreamOwnerNotFound();
_redeem(streamOwner);
NFTData memory nftData = _streamIDs[streamOwner][streamId];
uint256 amount =uint256(senderAmount) > nftData.amount ? nftData.amount : uint256(senderAmount);
_unstakeVested(streamOwner, streamId, amount);
emit SablierCanceled(streamOwner, streamId, sender, amount);
}
}
Contract Source Code
File 10 of 27: Helpers.sol
// SPDX-License-Identifier: MITpragmasolidity >=0.8.19;import { wrap } from"./Casting.sol";
import { SD59x18 } from"./ValueType.sol";
/// @notice Implements the checked addition operation (+) in the SD59x18 type.functionadd(SD59x18 x, SD59x18 y) purereturns (SD59x18 result) {
return wrap(x.unwrap() + y.unwrap());
}
/// @notice Implements the AND (&) bitwise operation in the SD59x18 type.functionand(SD59x18 x, int256 bits) purereturns (SD59x18 result) {
return wrap(x.unwrap() & bits);
}
/// @notice Implements the AND (&) bitwise operation in the SD59x18 type.functionand2(SD59x18 x, SD59x18 y) purereturns (SD59x18 result) {
return wrap(x.unwrap() & y.unwrap());
}
/// @notice Implements the equal (=) operation in the SD59x18 type.functioneq(SD59x18 x, SD59x18 y) purereturns (bool result) {
result = x.unwrap() == y.unwrap();
}
/// @notice Implements the greater than operation (>) in the SD59x18 type.functiongt(SD59x18 x, SD59x18 y) purereturns (bool result) {
result = x.unwrap() > y.unwrap();
}
/// @notice Implements the greater than or equal to operation (>=) in the SD59x18 type.functiongte(SD59x18 x, SD59x18 y) purereturns (bool result) {
result = x.unwrap() >= y.unwrap();
}
/// @notice Implements a zero comparison check function in the SD59x18 type.functionisZero(SD59x18 x) purereturns (bool result) {
result = x.unwrap() ==0;
}
/// @notice Implements the left shift operation (<<) in the SD59x18 type.functionlshift(SD59x18 x, uint256 bits) purereturns (SD59x18 result) {
result = wrap(x.unwrap() << bits);
}
/// @notice Implements the lower than operation (<) in the SD59x18 type.functionlt(SD59x18 x, SD59x18 y) purereturns (bool result) {
result = x.unwrap() < y.unwrap();
}
/// @notice Implements the lower than or equal to operation (<=) in the SD59x18 type.functionlte(SD59x18 x, SD59x18 y) purereturns (bool result) {
result = x.unwrap() <= y.unwrap();
}
/// @notice Implements the unchecked modulo operation (%) in the SD59x18 type.functionmod(SD59x18 x, SD59x18 y) purereturns (SD59x18 result) {
result = wrap(x.unwrap() % y.unwrap());
}
/// @notice Implements the not equal operation (!=) in the SD59x18 type.functionneq(SD59x18 x, SD59x18 y) purereturns (bool result) {
result = x.unwrap() != y.unwrap();
}
/// @notice Implements the NOT (~) bitwise operation in the SD59x18 type.functionnot(SD59x18 x) purereturns (SD59x18 result) {
result = wrap(~x.unwrap());
}
/// @notice Implements the OR (|) bitwise operation in the SD59x18 type.functionor(SD59x18 x, SD59x18 y) purereturns (SD59x18 result) {
result = wrap(x.unwrap() | y.unwrap());
}
/// @notice Implements the right shift operation (>>) in the SD59x18 type.functionrshift(SD59x18 x, uint256 bits) purereturns (SD59x18 result) {
result = wrap(x.unwrap() >> bits);
}
/// @notice Implements the checked subtraction operation (-) in the SD59x18 type.functionsub(SD59x18 x, SD59x18 y) purereturns (SD59x18 result) {
result = wrap(x.unwrap() - y.unwrap());
}
/// @notice Implements the checked unary minus operation (-) in the SD59x18 type.functionunary(SD59x18 x) purereturns (SD59x18 result) {
result = wrap(-x.unwrap());
}
/// @notice Implements the unchecked addition operation (+) in the SD59x18 type.functionuncheckedAdd(SD59x18 x, SD59x18 y) purereturns (SD59x18 result) {
unchecked {
result = wrap(x.unwrap() + y.unwrap());
}
}
/// @notice Implements the unchecked subtraction operation (-) in the SD59x18 type.functionuncheckedSub(SD59x18 x, SD59x18 y) purereturns (SD59x18 result) {
unchecked {
result = wrap(x.unwrap() - y.unwrap());
}
}
/// @notice Implements the unchecked unary minus operation (-) in the SD59x18 type.functionuncheckedUnary(SD59x18 x) purereturns (SD59x18 result) {
unchecked {
result = wrap(-x.unwrap());
}
}
/// @notice Implements the XOR (^) bitwise operation in the SD59x18 type.functionxor(SD59x18 x, SD59x18 y) purereturns (SD59x18 result) {
result = wrap(x.unwrap() ^ y.unwrap());
}
Contract Source Code
File 11 of 27: IAdminable.sol
// SPDX-License-Identifier: GPL-3.0-or-laterpragmasolidity >=0.8.19;/// @title IAdminable/// @notice Contract module that provides a basic access control mechanism, with an admin that can be/// granted exclusive access to specific functions. The inheriting contract must set the initial admin/// in the constructor.interfaceIAdminable{
/*//////////////////////////////////////////////////////////////////////////
EVENTS
//////////////////////////////////////////////////////////////////////////*//// @notice Emitted when the admin is transferred./// @param oldAdmin The address of the old admin./// @param newAdmin The address of the new admin.eventTransferAdmin(addressindexed oldAdmin, addressindexed newAdmin);
/*//////////////////////////////////////////////////////////////////////////
CONSTANT FUNCTIONS
//////////////////////////////////////////////////////////////////////////*//// @notice The address of the admin account or contract.functionadmin() externalviewreturns (address);
/*//////////////////////////////////////////////////////////////////////////
NON-CONSTANT FUNCTIONS
//////////////////////////////////////////////////////////////////////////*//// @notice Transfers the contract admin to a new address.////// @dev Notes:/// - Does not revert if the admin is the same./// - This function can potentially leave the contract without an admin, thereby removing any/// functionality that is only available to the admin.////// Requirements:/// - `msg.sender` must be the contract admin.////// @param newAdmin The address of the new admin.functiontransferAdmin(address newAdmin) external;
}
Contract Source Code
File 12 of 27: IERC165.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts v4.4.1 (utils/introspection/IERC165.sol)pragmasolidity ^0.8.0;/**
* @dev Interface of the ERC165 standard, as defined in the
* https://eips.ethereum.org/EIPS/eip-165[EIP].
*
* Implementers can declare support of contract interfaces, which can then be
* queried by others ({ERC165Checker}).
*
* For an implementation, see {ERC165}.
*/interfaceIERC165{
/**
* @dev Returns true if this contract implements the interface defined by
* `interfaceId`. See the corresponding
* https://eips.ethereum.org/EIPS/eip-165#how-interfaces-are-identified[EIP section]
* to learn more about how these ids are created.
*
* This function call must use less than 30 000 gas.
*/functionsupportsInterface(bytes4 interfaceId) externalviewreturns (bool);
}
Contract Source Code
File 13 of 27: IERC20.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC20/IERC20.sol)pragmasolidity ^0.8.0;/**
* @dev Interface of the ERC20 standard as defined in the EIP.
*/interfaceIERC20{
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/eventTransfer(addressindexedfrom, addressindexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/eventApproval(addressindexed owner, addressindexed spender, uint256 value);
/**
* @dev Returns the amount of tokens in existence.
*/functiontotalSupply() externalviewreturns (uint256);
/**
* @dev Returns the amount of tokens owned by `account`.
*/functionbalanceOf(address account) externalviewreturns (uint256);
/**
* @dev Moves `amount` tokens from the caller's account to `to`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/functiontransfer(address to, uint256 amount) externalreturns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/functionallowance(address owner, address spender) externalviewreturns (uint256);
/**
* @dev Sets `amount` as the allowance of `spender` over the caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/functionapprove(address spender, uint256 amount) externalreturns (bool);
/**
* @dev Moves `amount` tokens from `from` to `to` using the
* allowance mechanism. `amount` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/functiontransferFrom(addressfrom, address to, uint256 amount) externalreturns (bool);
}
Contract Source Code
File 14 of 27: IERC721.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC721/IERC721.sol)pragmasolidity ^0.8.0;import"../../utils/introspection/IERC165.sol";
/**
* @dev Required interface of an ERC721 compliant contract.
*/interfaceIERC721isIERC165{
/**
* @dev Emitted when `tokenId` token is transferred from `from` to `to`.
*/eventTransfer(addressindexedfrom, addressindexed to, uint256indexed tokenId);
/**
* @dev Emitted when `owner` enables `approved` to manage the `tokenId` token.
*/eventApproval(addressindexed owner, addressindexed approved, uint256indexed tokenId);
/**
* @dev Emitted when `owner` enables or disables (`approved`) `operator` to manage all of its assets.
*/eventApprovalForAll(addressindexed owner, addressindexed operator, bool approved);
/**
* @dev Returns the number of tokens in ``owner``'s account.
*/functionbalanceOf(address owner) externalviewreturns (uint256 balance);
/**
* @dev Returns the owner of the `tokenId` token.
*
* Requirements:
*
* - `tokenId` must exist.
*/functionownerOf(uint256 tokenId) externalviewreturns (address owner);
/**
* @dev Safely transfers `tokenId` token from `from` to `to`.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `tokenId` token must exist and be owned by `from`.
* - If the caller is not `from`, it must be approved to move this token by either {approve} or {setApprovalForAll}.
* - If `to` refers to a smart contract, it must implement {IERC721Receiver-onERC721Received}, which is called upon a safe transfer.
*
* Emits a {Transfer} event.
*/functionsafeTransferFrom(addressfrom, address to, uint256 tokenId, bytescalldata data) external;
/**
* @dev Safely transfers `tokenId` token from `from` to `to`, checking first that contract recipients
* are aware of the ERC721 protocol to prevent tokens from being forever locked.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `tokenId` token must exist and be owned by `from`.
* - If the caller is not `from`, it must have been allowed to move this token by either {approve} or {setApprovalForAll}.
* - If `to` refers to a smart contract, it must implement {IERC721Receiver-onERC721Received}, which is called upon a safe transfer.
*
* Emits a {Transfer} event.
*/functionsafeTransferFrom(addressfrom, address to, uint256 tokenId) external;
/**
* @dev Transfers `tokenId` token from `from` to `to`.
*
* WARNING: Note that the caller is responsible to confirm that the recipient is capable of receiving ERC721
* or else they may be permanently lost. Usage of {safeTransferFrom} prevents loss, though the caller must
* understand this adds an external call which potentially creates a reentrancy vulnerability.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `tokenId` token must be owned by `from`.
* - If the caller is not `from`, it must be approved to move this token by either {approve} or {setApprovalForAll}.
*
* Emits a {Transfer} event.
*/functiontransferFrom(addressfrom, address to, uint256 tokenId) external;
/**
* @dev Gives permission to `to` to transfer `tokenId` token to another account.
* The approval is cleared when the token is transferred.
*
* Only a single account can be approved at a time, so approving the zero address clears previous approvals.
*
* Requirements:
*
* - The caller must own the token or be an approved operator.
* - `tokenId` must exist.
*
* Emits an {Approval} event.
*/functionapprove(address to, uint256 tokenId) external;
/**
* @dev Approve or remove `operator` as an operator for the caller.
* Operators can call {transferFrom} or {safeTransferFrom} for any token owned by the caller.
*
* Requirements:
*
* - The `operator` cannot be the caller.
*
* Emits an {ApprovalForAll} event.
*/functionsetApprovalForAll(address operator, bool approved) external;
/**
* @dev Returns the account approved for `tokenId` token.
*
* Requirements:
*
* - `tokenId` must exist.
*/functiongetApproved(uint256 tokenId) externalviewreturns (address operator);
/**
* @dev Returns if the `operator` is allowed to manage all of the assets of `owner`.
*
* See {setApprovalForAll}
*/functionisApprovedForAll(address owner, address operator) externalviewreturns (bool);
}
// SPDX-License-Identifier: GPL-3.0-or-laterpragmasolidity >=0.8.19;import { IERC20 } from"@openzeppelin/contracts/token/ERC20/IERC20.sol";
import { UD60x18 } from"@prb/math/src/UD60x18.sol";
import { IAdminable } from"./IAdminable.sol";
import { ISablierV2Comptroller } from"./ISablierV2Comptroller.sol";
/// @title ISablierV2Base/// @notice Base logic for all Sablier V2 streaming contracts.interfaceISablierV2BaseisIAdminable{
/*//////////////////////////////////////////////////////////////////////////
EVENTS
//////////////////////////////////////////////////////////////////////////*//// @notice Emitted when the admin claims all protocol revenues accrued for a particular ERC-20 asset./// @param admin The address of the contract admin./// @param asset The contract address of the ERC-20 asset the protocol revenues have been claimed for./// @param protocolRevenues The amount of protocol revenues claimed, denoted in units of the asset's decimals.eventClaimProtocolRevenues(addressindexed admin, IERC20 indexed asset, uint128 protocolRevenues);
/// @notice Emitted when the admin sets a new comptroller contract./// @param admin The address of the contract admin./// @param oldComptroller The address of the old comptroller contract./// @param newComptroller The address of the new comptroller contract.eventSetComptroller(addressindexed admin, ISablierV2Comptroller oldComptroller, ISablierV2Comptroller newComptroller
);
/*//////////////////////////////////////////////////////////////////////////
CONSTANT FUNCTIONS
//////////////////////////////////////////////////////////////////////////*//// @notice Retrieves the maximum fee that can be charged by the protocol or a broker, denoted as a fixed-point/// number where 1e18 is 100%./// @dev This value is hard coded as a constant.functionMAX_FEE() externalviewreturns (UD60x18);
/// @notice Retrieves the address of the comptroller contract, responsible for the Sablier V2 protocol/// configuration.functioncomptroller() externalviewreturns (ISablierV2Comptroller);
/// @notice Retrieves the protocol revenues accrued for the provided ERC-20 asset, in units of the asset's/// decimals./// @param asset The contract address of the ERC-20 asset to query.functionprotocolRevenues(IERC20 asset) externalviewreturns (uint128 revenues);
/*//////////////////////////////////////////////////////////////////////////
NON-CONSTANT FUNCTIONS
//////////////////////////////////////////////////////////////////////////*//// @notice Claims all accumulated protocol revenues for the provided ERC-20 asset.////// @dev Emits a {ClaimProtocolRevenues} event.////// Requirements:/// - `msg.sender` must be the contract admin.////// @param asset The contract address of the ERC-20 asset for which to claim protocol revenues.functionclaimProtocolRevenues(IERC20 asset) external;
/// @notice Assigns a new comptroller contract responsible for the protocol configuration.////// @dev Emits a {SetComptroller} event.////// Notes:/// - Does not revert if the comptroller is the same.////// Requirements:/// - `msg.sender` must be the contract admin.////// @param newComptroller The address of the new comptroller contract.functionsetComptroller(ISablierV2Comptroller newComptroller) external;
}
Contract Source Code
File 18 of 27: ISablierV2Comptroller.sol
// SPDX-License-Identifier: GPL-3.0-or-laterpragmasolidity >=0.8.19;import { IERC20 } from"@openzeppelin/contracts/token/ERC20/IERC20.sol";
import { UD60x18 } from"@prb/math/src/UD60x18.sol";
import { IAdminable } from"./IAdminable.sol";
/// @title ISablierV2Controller/// @notice This contract is in charge of the Sablier V2 protocol configuration, handling such values as the/// protocol fees.interfaceISablierV2ComptrollerisIAdminable{
/*//////////////////////////////////////////////////////////////////////////
EVENTS
//////////////////////////////////////////////////////////////////////////*//// @notice Emitted when the admin sets a new flash fee./// @param admin The address of the contract admin./// @param oldFlashFee The old flash fee, denoted as a fixed-point number./// @param newFlashFee The new flash fee, denoted as a fixed-point number.eventSetFlashFee(addressindexed admin, UD60x18 oldFlashFee, UD60x18 newFlashFee);
/// @notice Emitted when the admin sets a new protocol fee for the provided ERC-20 asset./// @param admin The address of the contract admin./// @param asset The contract address of the ERC-20 asset the new protocol fee has been set for./// @param oldProtocolFee The old protocol fee, denoted as a fixed-point number./// @param newProtocolFee The new protocol fee, denoted as a fixed-point number.eventSetProtocolFee(addressindexed admin, IERC20 indexed asset, UD60x18 oldProtocolFee, UD60x18 newProtocolFee);
/// @notice Emitted when the admin enables or disables an ERC-20 asset for flash loaning./// @param admin The address of the contract admin./// @param asset The contract address of the ERC-20 asset to toggle./// @param newFlag Whether the ERC-20 asset can be flash loaned.eventToggleFlashAsset(addressindexed admin, IERC20 indexed asset, bool newFlag);
/*//////////////////////////////////////////////////////////////////////////
CONSTANT FUNCTIONS
//////////////////////////////////////////////////////////////////////////*//// @notice Retrieves the global flash fee, denoted as a fixed-point number where 1e18 is 100%.////// @dev Notes:/// - This fee represents a percentage, not an amount. Do not confuse it with {IERC3156FlashLender.flashFee},/// which calculates the fee amount for a specified flash loan amount./// - Unlike the protocol fee, this is a global fee applied to all flash loans, not a per-asset fee.functionflashFee() externalviewreturns (UD60x18 fee);
/// @notice Retrieves a flag indicating whether the provided ERC-20 asset can be flash loaned./// @param token The contract address of the ERC-20 asset to check.functionisFlashAsset(IERC20 token) externalviewreturns (bool result);
/// @notice Retrieves the protocol fee for all streams created with the provided ERC-20 asset./// @param asset The contract address of the ERC-20 asset to query./// @return fee The protocol fee denoted as a fixed-point number where 1e18 is 100%.functionprotocolFees(IERC20 asset) externalviewreturns (UD60x18 fee);
/*//////////////////////////////////////////////////////////////////////////
NON-CONSTANT FUNCTIONS
//////////////////////////////////////////////////////////////////////////*//// @notice Updates the flash fee charged on all flash loans made with any ERC-20 asset.////// @dev Emits a {SetFlashFee} event.////// Notes:/// - Does not revert if the fee is the same.////// Requirements:/// - `msg.sender` must be the contract admin.////// @param newFlashFee The new flash fee to set, denoted as a fixed-point number where 1e18 is 100%.functionsetFlashFee(UD60x18 newFlashFee) external;
/// @notice Sets a new protocol fee that will be charged on all streams created with the provided ERC-20 asset.////// @dev Emits a {SetProtocolFee} event.////// Notes:/// - The fee is not denoted in units of the asset's decimals; it is a fixed-point number. Refer to the/// PRBMath documentation for more detail on the logic of UD60x18./// - Does not revert if the fee is the same.////// Requirements:/// - `msg.sender` must be the contract admin.////// @param asset The contract address of the ERC-20 asset to update the fee for./// @param newProtocolFee The new protocol fee, denoted as a fixed-point number where 1e18 is 100%.functionsetProtocolFee(IERC20 asset, UD60x18 newProtocolFee) external;
/// @notice Toggles the flash loanability of an ERC-20 asset.////// @dev Emits a {ToggleFlashAsset} event.////// Requirements:/// - `msg.sender` must be the admin.////// @param asset The address of the ERC-20 asset to toggle.functiontoggleFlashAsset(IERC20 asset) external;
}
Contract Source Code
File 19 of 27: ISablierV2Lockup.sol
// SPDX-License-Identifier: GPL-3.0-or-laterpragmasolidity >=0.8.19;import { IERC20 } from"@openzeppelin/contracts/token/ERC20/IERC20.sol";
import { IERC721Metadata } from"@openzeppelin/contracts/token/ERC721/extensions/IERC721Metadata.sol";
import { Lockup } from"../types/DataTypes.sol";
import { ISablierV2Base } from"./ISablierV2Base.sol";
import { ISablierV2NFTDescriptor } from"./ISablierV2NFTDescriptor.sol";
/// @title ISablierV2Lockup/// @notice Common logic between all Sablier V2 lockup streaming contracts.interfaceISablierV2LockupisISablierV2Base, // 1 inherited componentIERC721Metadata// 2 inherited components{
/*//////////////////////////////////////////////////////////////////////////
EVENTS
//////////////////////////////////////////////////////////////////////////*//// @notice Emitted when a stream is canceled./// @param streamId The id of the stream./// @param sender The address of the stream's sender./// @param recipient The address of the stream's recipient./// @param senderAmount The amount of assets refunded to the stream's sender, denoted in units of the asset's/// decimals./// @param recipientAmount The amount of assets left for the stream's recipient to withdraw, denoted in units of the/// asset's decimals.eventCancelLockupStream(uint256indexed streamId,
addressindexed sender,
addressindexed recipient,
uint128 senderAmount,
uint128 recipientAmount
);
/// @notice Emitted when a sender gives up the right to cancel a stream./// @param streamId The id of the stream.eventRenounceLockupStream(uint256indexed streamId);
/// @notice Emitted when the admin sets a new NFT descriptor contract./// @param admin The address of the current contract admin./// @param oldNFTDescriptor The address of the old NFT descriptor contract./// @param newNFTDescriptor The address of the new NFT descriptor contract.eventSetNFTDescriptor(addressindexed admin, ISablierV2NFTDescriptor oldNFTDescriptor, ISablierV2NFTDescriptor newNFTDescriptor
);
/// @notice Emitted when assets are withdrawn from a stream./// @param streamId The id of the stream./// @param to The address that has received the withdrawn assets./// @param amount The amount of assets withdrawn, denoted in units of the asset's decimals.eventWithdrawFromLockupStream(uint256indexed streamId, addressindexed to, uint128 amount);
/*//////////////////////////////////////////////////////////////////////////
CONSTANT FUNCTIONS
//////////////////////////////////////////////////////////////////////////*//// @notice Retrieves the address of the ERC-20 asset used for streaming./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functiongetAsset(uint256 streamId) externalviewreturns (IERC20 asset);
/// @notice Retrieves the amount deposited in the stream, denoted in units of the asset's decimals./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functiongetDepositedAmount(uint256 streamId) externalviewreturns (uint128 depositedAmount);
/// @notice Retrieves the stream's end time, which is a Unix timestamp./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functiongetEndTime(uint256 streamId) externalviewreturns (uint40 endTime);
/// @notice Retrieves the stream's recipient./// @dev Reverts if the NFT has been burned./// @param streamId The stream id for the query.functiongetRecipient(uint256 streamId) externalviewreturns (address recipient);
/// @notice Retrieves the amount refunded to the sender after a cancellation, denoted in units of the asset's/// decimals. This amount is always zero unless the stream was canceled./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functiongetRefundedAmount(uint256 streamId) externalviewreturns (uint128 refundedAmount);
/// @notice Retrieves the stream's sender./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functiongetSender(uint256 streamId) externalviewreturns (address sender);
/// @notice Retrieves the stream's start time, which is a Unix timestamp./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functiongetStartTime(uint256 streamId) externalviewreturns (uint40 startTime);
/// @notice Retrieves the amount withdrawn from the stream, denoted in units of the asset's decimals./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functiongetWithdrawnAmount(uint256 streamId) externalviewreturns (uint128 withdrawnAmount);
/// @notice Retrieves a flag indicating whether the stream can be canceled. When the stream is cold, this/// flag is always `false`./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functionisCancelable(uint256 streamId) externalviewreturns (bool result);
/// @notice Retrieves a flag indicating whether the stream is cold, i.e. settled, canceled, or depleted./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functionisCold(uint256 streamId) externalviewreturns (bool result);
/// @notice Retrieves a flag indicating whether the stream is depleted./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functionisDepleted(uint256 streamId) externalviewreturns (bool result);
/// @notice Retrieves a flag indicating whether the stream exists./// @dev Does not revert if `streamId` references a null stream./// @param streamId The stream id for the query.functionisStream(uint256 streamId) externalviewreturns (bool result);
/// @notice Retrieves a flag indicating whether the stream is warm, i.e. either pending or streaming./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functionisWarm(uint256 streamId) externalviewreturns (bool result);
/// @notice Counter for stream ids, used in the create functions.functionnextStreamId() externalviewreturns (uint256);
/// @notice Calculates the amount that the sender would be refunded if the stream were canceled, denoted in units/// of the asset's decimals./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functionrefundableAmountOf(uint256 streamId) externalviewreturns (uint128 refundableAmount);
/// @notice Retrieves the stream's status./// @param streamId The stream id for the query.functionstatusOf(uint256 streamId) externalviewreturns (Lockup.Status status);
/// @notice Calculates the amount streamed to the recipient, denoted in units of the asset's decimals./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functionstreamedAmountOf(uint256 streamId) externalviewreturns (uint128 streamedAmount);
/// @notice Retrieves a flag indicating whether the stream was canceled./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functionwasCanceled(uint256 streamId) externalviewreturns (bool result);
/// @notice Calculates the amount that the recipient can withdraw from the stream, denoted in units of the asset's/// decimals./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functionwithdrawableAmountOf(uint256 streamId) externalviewreturns (uint128 withdrawableAmount);
/*//////////////////////////////////////////////////////////////////////////
NON-CONSTANT FUNCTIONS
//////////////////////////////////////////////////////////////////////////*//// @notice Burns the NFT associated with the stream.////// @dev Emits a {Transfer} event.////// Requirements:/// - Must not be delegate called./// - `streamId` must reference a depleted stream./// - The NFT must exist./// - `msg.sender` must be either the NFT owner or an approved third party.////// @param streamId The id of the stream NFT to burn.functionburn(uint256 streamId) external;
/// @notice Cancels the stream and refunds any remaining assets to the sender.////// @dev Emits a {Transfer}, {CancelLockupStream}, and {MetadataUpdate} event.////// Notes:/// - If there any assets left for the recipient to withdraw, the stream is marked as canceled. Otherwise, the/// stream is marked as depleted./// - This function attempts to invoke a hook on either the sender or the recipient, depending on who `msg.sender`/// is, and if the resolved address is a contract.////// Requirements:/// - Must not be delegate called./// - The stream must be warm and cancelable./// - `msg.sender` must be either the stream's sender or the stream's recipient (i.e. the NFT owner).////// @param streamId The id of the stream to cancel.functioncancel(uint256 streamId) external;
/// @notice Cancels multiple streams and refunds any remaining assets to the sender.////// @dev Emits multiple {Transfer}, {CancelLockupStream}, and {MetadataUpdate} events.////// Notes:/// - Refer to the notes in {cancel}.////// Requirements:/// - All requirements from {cancel} must be met for each stream.////// @param streamIds The ids of the streams to cancel.functioncancelMultiple(uint256[] calldata streamIds) external;
/// @notice Removes the right of the stream's sender to cancel the stream.////// @dev Emits a {RenounceLockupStream} and {MetadataUpdate} event.////// Notes:/// - This is an irreversible operation./// - This function attempts to invoke a hook on the stream's recipient, provided that the recipient is a contract.////// Requirements:/// - Must not be delegate called./// - `streamId` must reference a warm stream./// - `msg.sender` must be the stream's sender./// - The stream must be cancelable.////// @param streamId The id of the stream to renounce.functionrenounce(uint256 streamId) external;
/// @notice Sets a new NFT descriptor contract, which produces the URI describing the Sablier stream NFTs.////// @dev Emits a {SetNFTDescriptor} and {BatchMetadataUpdate} event.////// Notes:/// - Does not revert if the NFT descriptor is the same.////// Requirements:/// - `msg.sender` must be the contract admin.////// @param newNFTDescriptor The address of the new NFT descriptor contract.functionsetNFTDescriptor(ISablierV2NFTDescriptor newNFTDescriptor) external;
/// @notice Withdraws the provided amount of assets from the stream to the `to` address.////// @dev Emits a {Transfer}, {WithdrawFromLockupStream}, and {MetadataUpdate} event.////// Notes:/// - This function attempts to invoke a hook on the stream's recipient, provided that the recipient is a contract/// and `msg.sender` is either the sender or an approved operator.////// Requirements:/// - Must not be delegate called./// - `streamId` must not reference a null or depleted stream./// - `msg.sender` must be the stream's sender, the stream's recipient or an approved third party./// - `to` must be the recipient if `msg.sender` is the stream's sender./// - `to` must not be the zero address./// - `amount` must be greater than zero and must not exceed the withdrawable amount.////// @param streamId The id of the stream to withdraw from./// @param to The address receiving the withdrawn assets./// @param amount The amount to withdraw, denoted in units of the asset's decimals.functionwithdraw(uint256 streamId, address to, uint128 amount) external;
/// @notice Withdraws the maximum withdrawable amount from the stream to the provided address `to`.////// @dev Emits a {Transfer}, {WithdrawFromLockupStream}, and {MetadataUpdate} event.////// Notes:/// - Refer to the notes in {withdraw}.////// Requirements:/// - Refer to the requirements in {withdraw}.////// @param streamId The id of the stream to withdraw from./// @param to The address receiving the withdrawn assets.functionwithdrawMax(uint256 streamId, address to) external;
/// @notice Withdraws the maximum withdrawable amount from the stream to the current recipient, and transfers the/// NFT to `newRecipient`.////// @dev Emits a {WithdrawFromLockupStream} and a {Transfer} event.////// Notes:/// - If the withdrawable amount is zero, the withdrawal is skipped./// - Refer to the notes in {withdraw}.////// Requirements:/// - `msg.sender` must be the stream's recipient./// - Refer to the requirements in {withdraw}./// - Refer to the requirements in {IERC721.transferFrom}.////// @param streamId The id of the stream NFT to transfer./// @param newRecipient The address of the new owner of the stream NFT.functionwithdrawMaxAndTransfer(uint256 streamId, address newRecipient) external;
/// @notice Withdraws assets from streams to the provided address `to`.////// @dev Emits multiple {Transfer}, {WithdrawFromLockupStream}, and {MetadataUpdate} events.////// Notes:/// - This function attempts to call a hook on the recipient of each stream, unless `msg.sender` is the recipient.////// Requirements:/// - All requirements from {withdraw} must be met for each stream./// - There must be an equal number of `streamIds` and `amounts`.////// @param streamIds The ids of the streams to withdraw from./// @param to The address receiving the withdrawn assets./// @param amounts The amounts to withdraw, denoted in units of the asset's decimals.functionwithdrawMultiple(uint256[] calldata streamIds, address to, uint128[] calldata amounts) external;
}
Contract Source Code
File 20 of 27: ISablierV2LockupLinear.sol
// SPDX-License-Identifier: GPL-3.0-or-laterpragmasolidity >=0.8.19;import { IERC20 } from"@openzeppelin/contracts/token/ERC20/IERC20.sol";
import { Lockup, LockupLinear } from"../types/DataTypes.sol";
import { ISablierV2Lockup } from"./ISablierV2Lockup.sol";
/// @title ISablierV2LockupLinear/// @notice Creates and manages lockup streams with a linear streaming function.interfaceISablierV2LockupLinearisISablierV2Lockup{
/*//////////////////////////////////////////////////////////////////////////
EVENTS
//////////////////////////////////////////////////////////////////////////*//// @notice Emitted when a stream is created./// @param streamId The id of the newly created stream./// @param funder The address which funded the stream./// @param sender The address streaming the assets, with the ability to cancel the stream./// @param recipient The address receiving the assets./// @param amounts Struct containing (i) the deposit amount, (ii) the protocol fee amount, and (iii) the/// broker fee amount, all denoted in units of the asset's decimals./// @param asset The contract address of the ERC-20 asset used for streaming./// @param cancelable Boolean indicating whether the stream will be cancelable or not./// @param range Struct containing (i) the stream's start time, (ii) cliff time, and (iii) end time, all as Unix/// timestamps./// @param broker The address of the broker who has helped create the stream, e.g. a front-end website.eventCreateLockupLinearStream(uint256 streamId,
address funder,
addressindexed sender,
addressindexed recipient,
Lockup.CreateAmounts amounts,
IERC20 indexed asset,
bool cancelable,
LockupLinear.Range range,
address broker
);
/*//////////////////////////////////////////////////////////////////////////
CONSTANT FUNCTIONS
//////////////////////////////////////////////////////////////////////////*//// @notice Retrieves the stream's cliff time, which is a Unix timestamp./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functiongetCliffTime(uint256 streamId) externalviewreturns (uint40 cliffTime);
/// @notice Retrieves the stream's range, which is a struct containing (i) the stream's start time, (ii) cliff/// time, and (iii) end time, all as Unix timestamps./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functiongetRange(uint256 streamId) externalviewreturns (LockupLinear.Range memory range);
/// @notice Retrieves the stream entity./// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functiongetStream(uint256 streamId) externalviewreturns (LockupLinear.Stream memory stream);
/// @notice Calculates the amount streamed to the recipient, denoted in units of the asset's decimals.////// When the stream is warm, the streaming function is:////// $$/// f(x) = x * d + c/// $$////// Where:////// - $x$ is the elapsed time divided by the stream's total duration./// - $d$ is the deposited amount./// - $c$ is the cliff amount.////// Upon cancellation of the stream, the amount streamed is calculated as the difference between the deposited/// amount and the refunded amount. Ultimately, when the stream becomes depleted, the streamed amount is equivalent/// to the total amount withdrawn.////// @dev Reverts if `streamId` references a null stream./// @param streamId The stream id for the query.functionstreamedAmountOf(uint256 streamId) externalviewreturns (uint128 streamedAmount);
/*//////////////////////////////////////////////////////////////////////////
NON-CONSTANT FUNCTIONS
//////////////////////////////////////////////////////////////////////////*//// @notice Creates a stream by setting the start time to `block.timestamp`, and the end time to/// the sum of `block.timestamp` and `params.durations.total. The stream is funded by `msg.sender` and is wrapped/// in an ERC-721 NFT.////// @dev Emits a {Transfer} and {CreateLockupLinearStream} event.////// Requirements:/// - All requirements in {createWithRange} must be met for the calculated parameters.////// @param params Struct encapsulating the function parameters, which are documented in {DataTypes}./// @return streamId The id of the newly created stream.functioncreateWithDurations(LockupLinear.CreateWithDurations calldata params)
externalreturns (uint256 streamId);
/// @notice Creates a stream with the provided start time and end time as the range. The stream is/// funded by `msg.sender` and is wrapped in an ERC-721 NFT.////// @dev Emits a {Transfer} and {CreateLockupLinearStream} event.////// Notes:/// - As long as the times are ordered, it is not an error for the start or the cliff time to be in the past.////// Requirements:/// - Must not be delegate called./// - `params.totalAmount` must be greater than zero./// - If set, `params.broker.fee` must not be greater than `MAX_FEE`./// - `params.range.start` must be less than or equal to `params.range.cliff`./// - `params.range.cliff` must be less than `params.range.end`./// - `params.range.end` must be in the future./// - `params.recipient` must not be the zero address./// - `msg.sender` must have allowed this contract to spend at least `params.totalAmount` assets.////// @param params Struct encapsulating the function parameters, which are documented in {DataTypes}./// @return streamId The id of the newly created stream.functioncreateWithRange(LockupLinear.CreateWithRange calldata params) externalreturns (uint256 streamId);
}
Contract Source Code
File 21 of 27: ISablierV2LockupRecipient.sol
// SPDX-License-Identifier: GPL-3.0-or-laterpragmasolidity >=0.8.19;/// @title ISablierV2LockupRecipient/// @notice Interface for recipient contracts capable of reacting to cancellations, renouncements, and withdrawals./// @dev Implementation of this interface is optional. If a recipient contract doesn't implement this/// interface or implements it partially, function execution will not revert.interfaceISablierV2LockupRecipient{
/// @notice Responds to sender-triggered cancellations.////// @dev Notes:/// - This function may revert, but the Sablier contract will ignore the revert.////// @param streamId The id of the canceled stream./// @param sender The stream's sender, who canceled the stream./// @param senderAmount The amount of assets refunded to the stream's sender, denoted in units of the asset's/// decimals./// @param recipientAmount The amount of assets left for the stream's recipient to withdraw, denoted in units of/// the asset's decimals.functiononStreamCanceled(uint256 streamId,
address sender,
uint128 senderAmount,
uint128 recipientAmount
)
external;
/// @notice Responds to renouncements.////// @dev Notes:/// - This function may revert, but the Sablier contract will ignore the revert.////// @param streamId The id of the renounced stream.functiononStreamRenounced(uint256 streamId) external;
/// @notice Responds to withdrawals triggered by either the stream's sender or an approved third party.////// @dev Notes:/// - This function may revert, but the Sablier contract will ignore the revert.////// @param streamId The id of the stream being withdrawn from./// @param caller The original `msg.sender` address that triggered the withdrawal./// @param to The address receiving the withdrawn assets./// @param amount The amount of assets withdrawn, denoted in units of the asset's decimals.functiononStreamWithdrawn(uint256 streamId, address caller, address to, uint128 amount) external;
}
Contract Source Code
File 22 of 27: ISablierV2NFTDescriptor.sol
// SPDX-License-Identifier: GPL-3.0-or-laterpragmasolidity >=0.8.19;import { IERC721Metadata } from"@openzeppelin/contracts/token/ERC721/extensions/IERC721Metadata.sol";
/// @title ISablierV2NFTDescriptor/// @notice This contract generates the URI describing the Sablier V2 stream NFTs./// @dev Inspired by Uniswap V3 Positions NFTs.interfaceISablierV2NFTDescriptor{
/// @notice Produces the URI describing a particular stream NFT./// @dev This is a data URI with the JSON contents directly inlined./// @param sablier The address of the Sablier contract the stream was created in./// @param streamId The id of the stream for which to produce a description./// @return uri The URI of the ERC721-compliant metadata.functiontokenURI(IERC721Metadata sablier, uint256 streamId) externalviewreturns (stringmemory uri);
}
Contract Source Code
File 23 of 27: Math.sol
// SPDX-License-Identifier: MITpragmasolidity >=0.8.19;import"../Common.sol"asCommon;
import"./Errors.sol"asErrors;
import {
uEXP_MAX_INPUT,
uEXP2_MAX_INPUT,
uHALF_UNIT,
uLOG2_10,
uLOG2_E,
uMAX_SD59x18,
uMAX_WHOLE_SD59x18,
uMIN_SD59x18,
uMIN_WHOLE_SD59x18,
UNIT,
uUNIT,
uUNIT_SQUARED,
ZERO
} from"./Constants.sol";
import { wrap } from"./Helpers.sol";
import { SD59x18 } from"./ValueType.sol";
/// @notice Calculates the absolute value of x.////// @dev Requirements:/// - x must be greater than `MIN_SD59x18`.////// @param x The SD59x18 number for which to calculate the absolute value./// @param result The absolute value of x as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctionabs(SD59x18 x) purereturns (SD59x18 result) {
int256 xInt = x.unwrap();
if (xInt == uMIN_SD59x18) {
revert Errors.PRBMath_SD59x18_Abs_MinSD59x18();
}
result = xInt <0 ? wrap(-xInt) : x;
}
/// @notice Calculates the arithmetic average of x and y.////// @dev Notes:/// - The result is rounded toward zero.////// @param x The first operand as an SD59x18 number./// @param y The second operand as an SD59x18 number./// @return result The arithmetic average as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctionavg(SD59x18 x, SD59x18 y) purereturns (SD59x18 result) {
int256 xInt = x.unwrap();
int256 yInt = y.unwrap();
unchecked {
// This operation is equivalent to `x / 2 + y / 2`, and it can never overflow.int256 sum = (xInt >>1) + (yInt >>1);
if (sum <0) {
// If at least one of x and y is odd, add 1 to the result, because shifting negative numbers to the right// rounds toward negative infinity. The right part is equivalent to `sum + (x % 2 == 1 || y % 2 == 1)`.assembly ("memory-safe") {
result :=add(sum, and(or(xInt, yInt), 1))
}
} else {
// Add 1 if both x and y are odd to account for the double 0.5 remainder truncated after shifting.
result = wrap(sum + (xInt & yInt &1));
}
}
}
/// @notice Yields the smallest whole number greater than or equal to x.////// @dev Optimized for fractional value inputs, because every whole value has (1e18 - 1) fractional counterparts./// See https://en.wikipedia.org/wiki/Floor_and_ceiling_functions.////// Requirements:/// - x must be less than or equal to `MAX_WHOLE_SD59x18`.////// @param x The SD59x18 number to ceil./// @param result The smallest whole number greater than or equal to x, as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctionceil(SD59x18 x) purereturns (SD59x18 result) {
int256 xInt = x.unwrap();
if (xInt > uMAX_WHOLE_SD59x18) {
revert Errors.PRBMath_SD59x18_Ceil_Overflow(x);
}
int256 remainder = xInt % uUNIT;
if (remainder ==0) {
result = x;
} else {
unchecked {
// Solidity uses C fmod style, which returns a modulus with the same sign as x.int256 resultInt = xInt - remainder;
if (xInt >0) {
resultInt += uUNIT;
}
result = wrap(resultInt);
}
}
}
/// @notice Divides two SD59x18 numbers, returning a new SD59x18 number.////// @dev This is an extension of {Common.mulDiv} for signed numbers, which works by computing the signs and the absolute/// values separately.////// Notes:/// - Refer to the notes in {Common.mulDiv}./// - The result is rounded toward zero.////// Requirements:/// - Refer to the requirements in {Common.mulDiv}./// - None of the inputs can be `MIN_SD59x18`./// - The denominator must not be zero./// - The result must fit in SD59x18.////// @param x The numerator as an SD59x18 number./// @param y The denominator as an SD59x18 number./// @param result The quotient as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctiondiv(SD59x18 x, SD59x18 y) purereturns (SD59x18 result) {
int256 xInt = x.unwrap();
int256 yInt = y.unwrap();
if (xInt == uMIN_SD59x18 || yInt == uMIN_SD59x18) {
revert Errors.PRBMath_SD59x18_Div_InputTooSmall();
}
// Get hold of the absolute values of x and y.uint256 xAbs;
uint256 yAbs;
unchecked {
xAbs = xInt <0 ? uint256(-xInt) : uint256(xInt);
yAbs = yInt <0 ? uint256(-yInt) : uint256(yInt);
}
// Compute the absolute value (x*UNIT÷y). The resulting value must fit in SD59x18.uint256 resultAbs = Common.mulDiv(xAbs, uint256(uUNIT), yAbs);
if (resultAbs >uint256(uMAX_SD59x18)) {
revert Errors.PRBMath_SD59x18_Div_Overflow(x, y);
}
// Check if x and y have the same sign using two's complement representation. The left-most bit represents the sign (1 for// negative, 0 for positive or zero).bool sameSign = (xInt ^ yInt) >-1;
// If the inputs have the same sign, the result should be positive. Otherwise, it should be negative.unchecked {
result = wrap(sameSign ? int256(resultAbs) : -int256(resultAbs));
}
}
/// @notice Calculates the natural exponent of x using the following formula:////// $$/// e^x = 2^{x * log_2{e}}/// $$////// @dev Notes:/// - Refer to the notes in {exp2}.////// Requirements:/// - Refer to the requirements in {exp2}./// - x must be less than 133_084258667509499441.////// @param x The exponent as an SD59x18 number./// @return result The result as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctionexp(SD59x18 x) purereturns (SD59x18 result) {
int256 xInt = x.unwrap();
// This check prevents values greater than 192e18 from being passed to {exp2}.if (xInt > uEXP_MAX_INPUT) {
revert Errors.PRBMath_SD59x18_Exp_InputTooBig(x);
}
unchecked {
// Inline the fixed-point multiplication to save gas.int256 doubleUnitProduct = xInt * uLOG2_E;
result = exp2(wrap(doubleUnitProduct / uUNIT));
}
}
/// @notice Calculates the binary exponent of x using the binary fraction method using the following formula:////// $$/// 2^{-x} = \frac{1}{2^x}/// $$////// @dev See https://ethereum.stackexchange.com/q/79903/24693.////// Notes:/// - If x is less than -59_794705707972522261, the result is zero.////// Requirements:/// - x must be less than 192e18./// - The result must fit in SD59x18.////// @param x The exponent as an SD59x18 number./// @return result The result as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctionexp2(SD59x18 x) purereturns (SD59x18 result) {
int256 xInt = x.unwrap();
if (xInt <0) {
// The inverse of any number less than this is truncated to zero.if (xInt <-59_794705707972522261) {
return ZERO;
}
unchecked {
// Inline the fixed-point inversion to save gas.
result = wrap(uUNIT_SQUARED / exp2(wrap(-xInt)).unwrap());
}
} else {
// Numbers greater than or equal to 192e18 don't fit in the 192.64-bit format.if (xInt > uEXP2_MAX_INPUT) {
revert Errors.PRBMath_SD59x18_Exp2_InputTooBig(x);
}
unchecked {
// Convert x to the 192.64-bit fixed-point format.uint256 x_192x64 =uint256((xInt <<64) / uUNIT);
// It is safe to cast the result to int256 due to the checks above.
result = wrap(int256(Common.exp2(x_192x64)));
}
}
}
/// @notice Yields the greatest whole number less than or equal to x.////// @dev Optimized for fractional value inputs, because for every whole value there are (1e18 - 1) fractional/// counterparts. See https://en.wikipedia.org/wiki/Floor_and_ceiling_functions.////// Requirements:/// - x must be greater than or equal to `MIN_WHOLE_SD59x18`.////// @param x The SD59x18 number to floor./// @param result The greatest whole number less than or equal to x, as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctionfloor(SD59x18 x) purereturns (SD59x18 result) {
int256 xInt = x.unwrap();
if (xInt < uMIN_WHOLE_SD59x18) {
revert Errors.PRBMath_SD59x18_Floor_Underflow(x);
}
int256 remainder = xInt % uUNIT;
if (remainder ==0) {
result = x;
} else {
unchecked {
// Solidity uses C fmod style, which returns a modulus with the same sign as x.int256 resultInt = xInt - remainder;
if (xInt <0) {
resultInt -= uUNIT;
}
result = wrap(resultInt);
}
}
}
/// @notice Yields the excess beyond the floor of x for positive numbers and the part of the number to the right./// of the radix point for negative numbers./// @dev Based on the odd function definition. https://en.wikipedia.org/wiki/Fractional_part/// @param x The SD59x18 number to get the fractional part of./// @param result The fractional part of x as an SD59x18 number.functionfrac(SD59x18 x) purereturns (SD59x18 result) {
result = wrap(x.unwrap() % uUNIT);
}
/// @notice Calculates the geometric mean of x and y, i.e. $\sqrt{x * y}$.////// @dev Notes:/// - The result is rounded toward zero.////// Requirements:/// - x * y must fit in SD59x18./// - x * y must not be negative, since complex numbers are not supported.////// @param x The first operand as an SD59x18 number./// @param y The second operand as an SD59x18 number./// @return result The result as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctiongm(SD59x18 x, SD59x18 y) purereturns (SD59x18 result) {
int256 xInt = x.unwrap();
int256 yInt = y.unwrap();
if (xInt ==0|| yInt ==0) {
return ZERO;
}
unchecked {
// Equivalent to `xy / x != y`. Checking for overflow this way is faster than letting Solidity do it.int256 xyInt = xInt * yInt;
if (xyInt / xInt != yInt) {
revert Errors.PRBMath_SD59x18_Gm_Overflow(x, y);
}
// The product must not be negative, since complex numbers are not supported.if (xyInt <0) {
revert Errors.PRBMath_SD59x18_Gm_NegativeProduct(x, y);
}
// We don't need to multiply the result by `UNIT` here because the x*y product picked up a factor of `UNIT`// during multiplication. See the comments in {Common.sqrt}.uint256 resultUint = Common.sqrt(uint256(xyInt));
result = wrap(int256(resultUint));
}
}
/// @notice Calculates the inverse of x.////// @dev Notes:/// - The result is rounded toward zero.////// Requirements:/// - x must not be zero.////// @param x The SD59x18 number for which to calculate the inverse./// @return result The inverse as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctioninv(SD59x18 x) purereturns (SD59x18 result) {
result = wrap(uUNIT_SQUARED / x.unwrap());
}
/// @notice Calculates the natural logarithm of x using the following formula:////// $$/// ln{x} = log_2{x} / log_2{e}/// $$////// @dev Notes:/// - Refer to the notes in {log2}./// - The precision isn't sufficiently fine-grained to return exactly `UNIT` when the input is `E`.////// Requirements:/// - Refer to the requirements in {log2}.////// @param x The SD59x18 number for which to calculate the natural logarithm./// @return result The natural logarithm as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctionln(SD59x18 x) purereturns (SD59x18 result) {
// Inline the fixed-point multiplication to save gas. This is overflow-safe because the maximum value that// {log2} can return is ~195_205294292027477728.
result = wrap(log2(x).unwrap() * uUNIT / uLOG2_E);
}
/// @notice Calculates the common logarithm of x using the following formula:////// $$/// log_{10}{x} = log_2{x} / log_2{10}/// $$////// However, if x is an exact power of ten, a hard coded value is returned.////// @dev Notes:/// - Refer to the notes in {log2}.////// Requirements:/// - Refer to the requirements in {log2}.////// @param x The SD59x18 number for which to calculate the common logarithm./// @return result The common logarithm as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctionlog10(SD59x18 x) purereturns (SD59x18 result) {
int256 xInt = x.unwrap();
if (xInt <0) {
revert Errors.PRBMath_SD59x18_Log_InputTooSmall(x);
}
// Note that the `mul` in this block is the standard multiplication operation, not {SD59x18.mul}.// prettier-ignoreassembly ("memory-safe") {
switch x
case1 { result :=mul(uUNIT, sub(0, 18)) }
case10 { result :=mul(uUNIT, sub(1, 18)) }
case100 { result :=mul(uUNIT, sub(2, 18)) }
case1000 { result :=mul(uUNIT, sub(3, 18)) }
case10000 { result :=mul(uUNIT, sub(4, 18)) }
case100000 { result :=mul(uUNIT, sub(5, 18)) }
case1000000 { result :=mul(uUNIT, sub(6, 18)) }
case10000000 { result :=mul(uUNIT, sub(7, 18)) }
case100000000 { result :=mul(uUNIT, sub(8, 18)) }
case1000000000 { result :=mul(uUNIT, sub(9, 18)) }
case10000000000 { result :=mul(uUNIT, sub(10, 18)) }
case100000000000 { result :=mul(uUNIT, sub(11, 18)) }
case1000000000000 { result :=mul(uUNIT, sub(12, 18)) }
case10000000000000 { result :=mul(uUNIT, sub(13, 18)) }
case100000000000000 { result :=mul(uUNIT, sub(14, 18)) }
case1000000000000000 { result :=mul(uUNIT, sub(15, 18)) }
case10000000000000000 { result :=mul(uUNIT, sub(16, 18)) }
case100000000000000000 { result :=mul(uUNIT, sub(17, 18)) }
case1000000000000000000 { result :=0 }
case10000000000000000000 { result := uUNIT }
case100000000000000000000 { result :=mul(uUNIT, 2) }
case1000000000000000000000 { result :=mul(uUNIT, 3) }
case10000000000000000000000 { result :=mul(uUNIT, 4) }
case100000000000000000000000 { result :=mul(uUNIT, 5) }
case1000000000000000000000000 { result :=mul(uUNIT, 6) }
case10000000000000000000000000 { result :=mul(uUNIT, 7) }
case100000000000000000000000000 { result :=mul(uUNIT, 8) }
case1000000000000000000000000000 { result :=mul(uUNIT, 9) }
case10000000000000000000000000000 { result :=mul(uUNIT, 10) }
case100000000000000000000000000000 { result :=mul(uUNIT, 11) }
case1000000000000000000000000000000 { result :=mul(uUNIT, 12) }
case10000000000000000000000000000000 { result :=mul(uUNIT, 13) }
case100000000000000000000000000000000 { result :=mul(uUNIT, 14) }
case1000000000000000000000000000000000 { result :=mul(uUNIT, 15) }
case10000000000000000000000000000000000 { result :=mul(uUNIT, 16) }
case100000000000000000000000000000000000 { result :=mul(uUNIT, 17) }
case1000000000000000000000000000000000000 { result :=mul(uUNIT, 18) }
case10000000000000000000000000000000000000 { result :=mul(uUNIT, 19) }
case100000000000000000000000000000000000000 { result :=mul(uUNIT, 20) }
case1000000000000000000000000000000000000000 { result :=mul(uUNIT, 21) }
case10000000000000000000000000000000000000000 { result :=mul(uUNIT, 22) }
case100000000000000000000000000000000000000000 { result :=mul(uUNIT, 23) }
case1000000000000000000000000000000000000000000 { result :=mul(uUNIT, 24) }
case10000000000000000000000000000000000000000000 { result :=mul(uUNIT, 25) }
case100000000000000000000000000000000000000000000 { result :=mul(uUNIT, 26) }
case1000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 27) }
case10000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 28) }
case100000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 29) }
case1000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 30) }
case10000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 31) }
case100000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 32) }
case1000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 33) }
case10000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 34) }
case100000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 35) }
case1000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 36) }
case10000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 37) }
case100000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 38) }
case1000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 39) }
case10000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 40) }
case100000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 41) }
case1000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 42) }
case10000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 43) }
case100000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 44) }
case1000000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 45) }
case10000000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 46) }
case100000000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 47) }
case1000000000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 48) }
case10000000000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 49) }
case100000000000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 50) }
case1000000000000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 51) }
case10000000000000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 52) }
case100000000000000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 53) }
case1000000000000000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 54) }
case10000000000000000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 55) }
case100000000000000000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 56) }
case1000000000000000000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 57) }
case10000000000000000000000000000000000000000000000000000000000000000000000000000 { result :=mul(uUNIT, 58) }
default { result := uMAX_SD59x18 }
}
if (result.unwrap() == uMAX_SD59x18) {
unchecked {
// Inline the fixed-point division to save gas.
result = wrap(log2(x).unwrap() * uUNIT / uLOG2_10);
}
}
}
/// @notice Calculates the binary logarithm of x using the iterative approximation algorithm:////// $$/// log_2{x} = n + log_2{y}, \text{ where } y = x*2^{-n}, \ y \in [1, 2)/// $$////// For $0 \leq x \lt 1$, the input is inverted:////// $$/// log_2{x} = -log_2{\frac{1}{x}}/// $$////// @dev See https://en.wikipedia.org/wiki/Binary_logarithm#Iterative_approximation.////// Notes:/// - Due to the lossy precision of the iterative approximation, the results are not perfectly accurate to the last decimal.////// Requirements:/// - x must be greater than zero.////// @param x The SD59x18 number for which to calculate the binary logarithm./// @return result The binary logarithm as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctionlog2(SD59x18 x) purereturns (SD59x18 result) {
int256 xInt = x.unwrap();
if (xInt <=0) {
revert Errors.PRBMath_SD59x18_Log_InputTooSmall(x);
}
unchecked {
int256 sign;
if (xInt >= uUNIT) {
sign =1;
} else {
sign =-1;
// Inline the fixed-point inversion to save gas.
xInt = uUNIT_SQUARED / xInt;
}
// Calculate the integer part of the logarithm.uint256 n = Common.msb(uint256(xInt / uUNIT));
// This is the integer part of the logarithm as an SD59x18 number. The operation can't overflow// because n is at most 255, `UNIT` is 1e18, and the sign is either 1 or -1.int256 resultInt =int256(n) * uUNIT;
// Calculate $y = x * 2^{-n}$.int256 y = xInt >> n;
// If y is the unit number, the fractional part is zero.if (y == uUNIT) {
return wrap(resultInt * sign);
}
// Calculate the fractional part via the iterative approximation.// The `delta >>= 1` part is equivalent to `delta /= 2`, but shifting bits is more gas efficient.int256 DOUBLE_UNIT =2e18;
for (int256 delta = uHALF_UNIT; delta >0; delta >>=1) {
y = (y * y) / uUNIT;
// Is y^2 >= 2e18 and so in the range [2e18, 4e18)?if (y >= DOUBLE_UNIT) {
// Add the 2^{-m} factor to the logarithm.
resultInt = resultInt + delta;
// Halve y, which corresponds to z/2 in the Wikipedia article.
y >>=1;
}
}
resultInt *= sign;
result = wrap(resultInt);
}
}
/// @notice Multiplies two SD59x18 numbers together, returning a new SD59x18 number.////// @dev Notes:/// - Refer to the notes in {Common.mulDiv18}.////// Requirements:/// - Refer to the requirements in {Common.mulDiv18}./// - None of the inputs can be `MIN_SD59x18`./// - The result must fit in SD59x18.////// @param x The multiplicand as an SD59x18 number./// @param y The multiplier as an SD59x18 number./// @return result The product as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctionmul(SD59x18 x, SD59x18 y) purereturns (SD59x18 result) {
int256 xInt = x.unwrap();
int256 yInt = y.unwrap();
if (xInt == uMIN_SD59x18 || yInt == uMIN_SD59x18) {
revert Errors.PRBMath_SD59x18_Mul_InputTooSmall();
}
// Get hold of the absolute values of x and y.uint256 xAbs;
uint256 yAbs;
unchecked {
xAbs = xInt <0 ? uint256(-xInt) : uint256(xInt);
yAbs = yInt <0 ? uint256(-yInt) : uint256(yInt);
}
// Compute the absolute value (x*y÷UNIT). The resulting value must fit in SD59x18.uint256 resultAbs = Common.mulDiv18(xAbs, yAbs);
if (resultAbs >uint256(uMAX_SD59x18)) {
revert Errors.PRBMath_SD59x18_Mul_Overflow(x, y);
}
// Check if x and y have the same sign using two's complement representation. The left-most bit represents the sign (1 for// negative, 0 for positive or zero).bool sameSign = (xInt ^ yInt) >-1;
// If the inputs have the same sign, the result should be positive. Otherwise, it should be negative.unchecked {
result = wrap(sameSign ? int256(resultAbs) : -int256(resultAbs));
}
}
/// @notice Raises x to the power of y using the following formula:////// $$/// x^y = 2^{log_2{x} * y}/// $$////// @dev Notes:/// - Refer to the notes in {exp2}, {log2}, and {mul}./// - Returns `UNIT` for 0^0.////// Requirements:/// - Refer to the requirements in {exp2}, {log2}, and {mul}.////// @param x The base as an SD59x18 number./// @param y Exponent to raise x to, as an SD59x18 number/// @return result x raised to power y, as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctionpow(SD59x18 x, SD59x18 y) purereturns (SD59x18 result) {
int256 xInt = x.unwrap();
int256 yInt = y.unwrap();
// If both x and y are zero, the result is `UNIT`. If just x is zero, the result is always zero.if (xInt ==0) {
return yInt ==0 ? UNIT : ZERO;
}
// If x is `UNIT`, the result is always `UNIT`.elseif (xInt == uUNIT) {
return UNIT;
}
// If y is zero, the result is always `UNIT`.if (yInt ==0) {
return UNIT;
}
// If y is `UNIT`, the result is always x.elseif (yInt == uUNIT) {
return x;
}
// Calculate the result using the formula.
result = exp2(mul(log2(x), y));
}
/// @notice Raises x (an SD59x18 number) to the power y (an unsigned basic integer) using the well-known/// algorithm "exponentiation by squaring".////// @dev See https://en.wikipedia.org/wiki/Exponentiation_by_squaring.////// Notes:/// - Refer to the notes in {Common.mulDiv18}./// - Returns `UNIT` for 0^0.////// Requirements:/// - Refer to the requirements in {abs} and {Common.mulDiv18}./// - The result must fit in SD59x18.////// @param x The base as an SD59x18 number./// @param y The exponent as a uint256./// @return result The result as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctionpowu(SD59x18 x, uint256 y) purereturns (SD59x18 result) {
uint256 xAbs =uint256(abs(x).unwrap());
// Calculate the first iteration of the loop in advance.uint256 resultAbs = y &1>0 ? xAbs : uint256(uUNIT);
// Equivalent to `for(y /= 2; y > 0; y /= 2)`.uint256 yAux = y;
for (yAux >>=1; yAux >0; yAux >>=1) {
xAbs = Common.mulDiv18(xAbs, xAbs);
// Equivalent to `y % 2 == 1`.if (yAux &1>0) {
resultAbs = Common.mulDiv18(resultAbs, xAbs);
}
}
// The result must fit in SD59x18.if (resultAbs >uint256(uMAX_SD59x18)) {
revert Errors.PRBMath_SD59x18_Powu_Overflow(x, y);
}
unchecked {
// Is the base negative and the exponent odd? If yes, the result should be negative.int256 resultInt =int256(resultAbs);
bool isNegative = x.unwrap() <0&& y &1==1;
if (isNegative) {
resultInt =-resultInt;
}
result = wrap(resultInt);
}
}
/// @notice Calculates the square root of x using the Babylonian method.////// @dev See https://en.wikipedia.org/wiki/Methods_of_computing_square_roots#Babylonian_method.////// Notes:/// - Only the positive root is returned./// - The result is rounded toward zero.////// Requirements:/// - x cannot be negative, since complex numbers are not supported./// - x must be less than `MAX_SD59x18 / UNIT`.////// @param x The SD59x18 number for which to calculate the square root./// @return result The result as an SD59x18 number./// @custom:smtchecker abstract-function-nondetfunctionsqrt(SD59x18 x) purereturns (SD59x18 result) {
int256 xInt = x.unwrap();
if (xInt <0) {
revert Errors.PRBMath_SD59x18_Sqrt_NegativeInput(x);
}
if (xInt > uMAX_SD59x18 / uUNIT) {
revert Errors.PRBMath_SD59x18_Sqrt_Overflow(x);
}
unchecked {
// Multiply x by `UNIT` to account for the factor of `UNIT` picked up when multiplying two SD59x18 numbers.// In this case, the two numbers are both the square root.uint256 resultUint = Common.sqrt(uint256(xInt * uUNIT));
result = wrap(int256(resultUint));
}
}
Contract Source Code
File 24 of 27: SafeTransferLib.sol
// SPDX-License-Identifier: AGPL-3.0-onlypragmasolidity >=0.8.0;import {ERC20} from"../tokens/ERC20.sol";
/// @notice Safe ETH and ERC20 transfer library that gracefully handles missing return values./// @author Solmate (https://github.com/transmissions11/solmate/blob/main/src/utils/SafeTransferLib.sol)/// @dev Use with caution! Some functions in this library knowingly create dirty bits at the destination of the free memory pointer./// @dev Note that none of the functions in this library check that a token has code at all! That responsibility is delegated to the caller.librarySafeTransferLib{
/*//////////////////////////////////////////////////////////////
ETH OPERATIONS
//////////////////////////////////////////////////////////////*/functionsafeTransferETH(address to, uint256 amount) internal{
bool success;
/// @solidity memory-safe-assemblyassembly {
// Transfer the ETH and store if it succeeded or not.
success :=call(gas(), to, amount, 0, 0, 0, 0)
}
require(success, "ETH_TRANSFER_FAILED");
}
/*//////////////////////////////////////////////////////////////
ERC20 OPERATIONS
//////////////////////////////////////////////////////////////*/functionsafeTransferFrom(
ERC20 token,
addressfrom,
address to,
uint256 amount
) internal{
bool success;
/// @solidity memory-safe-assemblyassembly {
// Get a pointer to some free memory.let freeMemoryPointer :=mload(0x40)
// Write the abi-encoded calldata into memory, beginning with the function selector.mstore(freeMemoryPointer, 0x23b872dd00000000000000000000000000000000000000000000000000000000)
mstore(add(freeMemoryPointer, 4), and(from, 0xffffffffffffffffffffffffffffffffffffffff)) // Append and mask the "from" argument.mstore(add(freeMemoryPointer, 36), and(to, 0xffffffffffffffffffffffffffffffffffffffff)) // Append and mask the "to" argument.mstore(add(freeMemoryPointer, 68), amount) // Append the "amount" argument. Masking not required as it's a full 32 byte type.
success :=and(
// Set success to whether the call reverted, if not we check it either// returned exactly 1 (can't just be non-zero data), or had no return data.or(and(eq(mload(0), 1), gt(returndatasize(), 31)), iszero(returndatasize())),
// We use 100 because the length of our calldata totals up like so: 4 + 32 * 3.// We use 0 and 32 to copy up to 32 bytes of return data into the scratch space.// Counterintuitively, this call must be positioned second to the or() call in the// surrounding and() call or else returndatasize() will be zero during the computation.call(gas(), token, 0, freeMemoryPointer, 100, 0, 32)
)
}
require(success, "TRANSFER_FROM_FAILED");
}
functionsafeTransfer(
ERC20 token,
address to,
uint256 amount
) internal{
bool success;
/// @solidity memory-safe-assemblyassembly {
// Get a pointer to some free memory.let freeMemoryPointer :=mload(0x40)
// Write the abi-encoded calldata into memory, beginning with the function selector.mstore(freeMemoryPointer, 0xa9059cbb00000000000000000000000000000000000000000000000000000000)
mstore(add(freeMemoryPointer, 4), and(to, 0xffffffffffffffffffffffffffffffffffffffff)) // Append and mask the "to" argument.mstore(add(freeMemoryPointer, 36), amount) // Append the "amount" argument. Masking not required as it's a full 32 byte type.
success :=and(
// Set success to whether the call reverted, if not we check it either// returned exactly 1 (can't just be non-zero data), or had no return data.or(and(eq(mload(0), 1), gt(returndatasize(), 31)), iszero(returndatasize())),
// We use 68 because the length of our calldata totals up like so: 4 + 32 * 2.// We use 0 and 32 to copy up to 32 bytes of return data into the scratch space.// Counterintuitively, this call must be positioned second to the or() call in the// surrounding and() call or else returndatasize() will be zero during the computation.call(gas(), token, 0, freeMemoryPointer, 68, 0, 32)
)
}
require(success, "TRANSFER_FAILED");
}
functionsafeApprove(
ERC20 token,
address to,
uint256 amount
) internal{
bool success;
/// @solidity memory-safe-assemblyassembly {
// Get a pointer to some free memory.let freeMemoryPointer :=mload(0x40)
// Write the abi-encoded calldata into memory, beginning with the function selector.mstore(freeMemoryPointer, 0x095ea7b300000000000000000000000000000000000000000000000000000000)
mstore(add(freeMemoryPointer, 4), and(to, 0xffffffffffffffffffffffffffffffffffffffff)) // Append and mask the "to" argument.mstore(add(freeMemoryPointer, 36), amount) // Append the "amount" argument. Masking not required as it's a full 32 byte type.
success :=and(
// Set success to whether the call reverted, if not we check it either// returned exactly 1 (can't just be non-zero data), or had no return data.or(and(eq(mload(0), 1), gt(returndatasize(), 31)), iszero(returndatasize())),
// We use 68 because the length of our calldata totals up like so: 4 + 32 * 2.// We use 0 and 32 to copy up to 32 bytes of return data into the scratch space.// Counterintuitively, this call must be positioned second to the or() call in the// surrounding and() call or else returndatasize() will be zero during the computation.call(gas(), token, 0, freeMemoryPointer, 68, 0, 32)
)
}
require(success, "APPROVE_FAILED");
}
}
// SPDX-License-Identifier: MITpragmasolidity >=0.8.19;import"./Casting.sol"asCasting;
/// @notice The signed 1.18-decimal fixed-point number representation, which can have up to 1 digit and up to 18/// decimals. The values of this are bound by the minimum and the maximum values permitted by the underlying Solidity/// type int64. This is useful when end users want to use int64 to save gas, e.g. with tight variable packing in contract/// storage.type SD1x18 isint64;
/*//////////////////////////////////////////////////////////////////////////
CASTING
//////////////////////////////////////////////////////////////////////////*/using {
Casting.intoSD59x18,
Casting.intoUD2x18,
Casting.intoUD60x18,
Casting.intoUint256,
Casting.intoUint128,
Casting.intoUint40,
Casting.unwrap
} forSD1x18global;
