// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/Address.sol)pragmasolidity ^0.8.1;/**
* @dev Collection of functions related to the address type
*/libraryAddress{
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]
* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* - an externally-owned account
* - a contract in construction
* - an address where a contract will be created
* - an address where a contract lived, but was destroyed
*
* Furthermore, `isContract` will also return true if the target contract within
* the same transaction is already scheduled for destruction by `SELFDESTRUCT`,
* which only has an effect at the end of a transaction.
* ====
*
* [IMPORTANT]
* ====
* You shouldn't rely on `isContract` to protect against flash loan attacks!
*
* Preventing calls from contracts is highly discouraged. It breaks composability, breaks support for smart wallets
* like Gnosis Safe, and does not provide security since it can be circumvented by calling from a contract
* constructor.
* ====
*/functionisContract(address account) internalviewreturns (bool) {
// This method relies on extcodesize/address.code.length, which returns 0// for contracts in construction, since the code is only stored at the end// of the constructor execution.return account.code.length>0;
}
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://consensys.net/diligence/blog/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.8.0/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/functionsendValue(addresspayable recipient, uint256 amount) internal{
require(address(this).balance>= amount, "Address: insufficient balance");
(bool success, ) = recipient.call{value: amount}("");
require(success, "Address: unable to send value, recipient may have reverted");
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain `call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/functionfunctionCall(address target, bytesmemory data) internalreturns (bytesmemory) {
return functionCallWithValue(target, data, 0, "Address: low-level call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/functionfunctionCall(address target,
bytesmemory data,
stringmemory errorMessage
) internalreturns (bytesmemory) {
return functionCallWithValue(target, data, 0, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/functionfunctionCallWithValue(address target, bytesmemory data, uint256 value) internalreturns (bytesmemory) {
return functionCallWithValue(target, data, value, "Address: low-level call with value failed");
}
/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/functionfunctionCallWithValue(address target,
bytesmemory data,
uint256 value,
stringmemory errorMessage
) internalreturns (bytesmemory) {
require(address(this).balance>= value, "Address: insufficient balance for call");
(bool success, bytesmemory returndata) = target.call{value: value}(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/functionfunctionStaticCall(address target, bytesmemory data) internalviewreturns (bytesmemory) {
return functionStaticCall(target, data, "Address: low-level static call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/functionfunctionStaticCall(address target,
bytesmemory data,
stringmemory errorMessage
) internalviewreturns (bytesmemory) {
(bool success, bytesmemory returndata) = target.staticcall(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/functionfunctionDelegateCall(address target, bytesmemory data) internalreturns (bytesmemory) {
return functionDelegateCall(target, data, "Address: low-level delegate call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/functionfunctionDelegateCall(address target,
bytesmemory data,
stringmemory errorMessage
) internalreturns (bytesmemory) {
(bool success, bytesmemory returndata) = target.delegatecall(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Tool to verify that a low level call to smart-contract was successful, and revert (either by bubbling
* the revert reason or using the provided one) in case of unsuccessful call or if target was not a contract.
*
* _Available since v4.8._
*/functionverifyCallResultFromTarget(address target,
bool success,
bytesmemory returndata,
stringmemory errorMessage
) internalviewreturns (bytesmemory) {
if (success) {
if (returndata.length==0) {
// only check isContract if the call was successful and the return data is empty// otherwise we already know that it was a contractrequire(isContract(target), "Address: call to non-contract");
}
return returndata;
} else {
_revert(returndata, errorMessage);
}
}
/**
* @dev Tool to verify that a low level call was successful, and revert if it wasn't, either by bubbling the
* revert reason or using the provided one.
*
* _Available since v4.3._
*/functionverifyCallResult(bool success,
bytesmemory returndata,
stringmemory errorMessage
) internalpurereturns (bytesmemory) {
if (success) {
return returndata;
} else {
_revert(returndata, errorMessage);
}
}
function_revert(bytesmemory returndata, stringmemory errorMessage) privatepure{
// Look for revert reason and bubble it up if presentif (returndata.length>0) {
// The easiest way to bubble the revert reason is using memory via assembly/// @solidity memory-safe-assemblyassembly {
let returndata_size :=mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}
Contract Source Code
File 2 of 25: Context.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts v4.4.1 (utils/Context.sol)pragmasolidity ^0.8.0;/**
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/abstractcontractContext{
function_msgSender() internalviewvirtualreturns (address) {
returnmsg.sender;
}
function_msgData() internalviewvirtualreturns (bytescalldata) {
returnmsg.data;
}
}
Contract Source Code
File 3 of 25: ECDSA.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/cryptography/ECDSA.sol)pragmasolidity ^0.8.0;import"../Strings.sol";
/**
* @dev Elliptic Curve Digital Signature Algorithm (ECDSA) operations.
*
* These functions can be used to verify that a message was signed by the holder
* of the private keys of a given address.
*/libraryECDSA{
enumRecoverError {
NoError,
InvalidSignature,
InvalidSignatureLength,
InvalidSignatureS,
InvalidSignatureV // Deprecated in v4.8
}
function_throwError(RecoverError error) privatepure{
if (error == RecoverError.NoError) {
return; // no error: do nothing
} elseif (error == RecoverError.InvalidSignature) {
revert("ECDSA: invalid signature");
} elseif (error == RecoverError.InvalidSignatureLength) {
revert("ECDSA: invalid signature length");
} elseif (error == RecoverError.InvalidSignatureS) {
revert("ECDSA: invalid signature 's' value");
}
}
/**
* @dev Returns the address that signed a hashed message (`hash`) with
* `signature` or error string. This address can then be used for verification purposes.
*
* The `ecrecover` EVM opcode allows for malleable (non-unique) signatures:
* this function rejects them by requiring the `s` value to be in the lower
* half order, and the `v` value to be either 27 or 28.
*
* IMPORTANT: `hash` _must_ be the result of a hash operation for the
* verification to be secure: it is possible to craft signatures that
* recover to arbitrary addresses for non-hashed data. A safe way to ensure
* this is by receiving a hash of the original message (which may otherwise
* be too long), and then calling {toEthSignedMessageHash} on it.
*
* Documentation for signature generation:
* - with https://web3js.readthedocs.io/en/v1.3.4/web3-eth-accounts.html#sign[Web3.js]
* - with https://docs.ethers.io/v5/api/signer/#Signer-signMessage[ethers]
*
* _Available since v4.3._
*/functiontryRecover(bytes32 hash, bytesmemory signature) internalpurereturns (address, RecoverError) {
if (signature.length==65) {
bytes32 r;
bytes32 s;
uint8 v;
// ecrecover takes the signature parameters, and the only way to get them// currently is to use assembly./// @solidity memory-safe-assemblyassembly {
r :=mload(add(signature, 0x20))
s :=mload(add(signature, 0x40))
v :=byte(0, mload(add(signature, 0x60)))
}
return tryRecover(hash, v, r, s);
} else {
return (address(0), RecoverError.InvalidSignatureLength);
}
}
/**
* @dev Returns the address that signed a hashed message (`hash`) with
* `signature`. This address can then be used for verification purposes.
*
* The `ecrecover` EVM opcode allows for malleable (non-unique) signatures:
* this function rejects them by requiring the `s` value to be in the lower
* half order, and the `v` value to be either 27 or 28.
*
* IMPORTANT: `hash` _must_ be the result of a hash operation for the
* verification to be secure: it is possible to craft signatures that
* recover to arbitrary addresses for non-hashed data. A safe way to ensure
* this is by receiving a hash of the original message (which may otherwise
* be too long), and then calling {toEthSignedMessageHash} on it.
*/functionrecover(bytes32 hash, bytesmemory signature) internalpurereturns (address) {
(address recovered, RecoverError error) = tryRecover(hash, signature);
_throwError(error);
return recovered;
}
/**
* @dev Overload of {ECDSA-tryRecover} that receives the `r` and `vs` short-signature fields separately.
*
* See https://eips.ethereum.org/EIPS/eip-2098[EIP-2098 short signatures]
*
* _Available since v4.3._
*/functiontryRecover(bytes32 hash, bytes32 r, bytes32 vs) internalpurereturns (address, RecoverError) {
bytes32 s = vs &bytes32(0x7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff);
uint8 v =uint8((uint256(vs) >>255) +27);
return tryRecover(hash, v, r, s);
}
/**
* @dev Overload of {ECDSA-recover} that receives the `r and `vs` short-signature fields separately.
*
* _Available since v4.2._
*/functionrecover(bytes32 hash, bytes32 r, bytes32 vs) internalpurereturns (address) {
(address recovered, RecoverError error) = tryRecover(hash, r, vs);
_throwError(error);
return recovered;
}
/**
* @dev Overload of {ECDSA-tryRecover} that receives the `v`,
* `r` and `s` signature fields separately.
*
* _Available since v4.3._
*/functiontryRecover(bytes32 hash, uint8 v, bytes32 r, bytes32 s) internalpurereturns (address, RecoverError) {
// EIP-2 still allows signature malleability for ecrecover(). Remove this possibility and make the signature// unique. Appendix F in the Ethereum Yellow paper (https://ethereum.github.io/yellowpaper/paper.pdf), defines// the valid range for s in (301): 0 < s < secp256k1n ÷ 2 + 1, and for v in (302): v ∈ {27, 28}. Most// signatures from current libraries generate a unique signature with an s-value in the lower half order.//// If your library generates malleable signatures, such as s-values in the upper range, calculate a new s-value// with 0xFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEBAAEDCE6AF48A03BBFD25E8CD0364141 - s1 and flip v from 27 to 28 or// vice versa. If your library also generates signatures with 0/1 for v instead 27/28, add 27 to v to accept// these malleable signatures as well.if (uint256(s) >0x7FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF5D576E7357A4501DDFE92F46681B20A0) {
return (address(0), RecoverError.InvalidSignatureS);
}
// If the signature is valid (and not malleable), return the signer addressaddress signer =ecrecover(hash, v, r, s);
if (signer ==address(0)) {
return (address(0), RecoverError.InvalidSignature);
}
return (signer, RecoverError.NoError);
}
/**
* @dev Overload of {ECDSA-recover} that receives the `v`,
* `r` and `s` signature fields separately.
*/functionrecover(bytes32 hash, uint8 v, bytes32 r, bytes32 s) internalpurereturns (address) {
(address recovered, RecoverError error) = tryRecover(hash, v, r, s);
_throwError(error);
return recovered;
}
/**
* @dev Returns an Ethereum Signed Message, created from a `hash`. This
* produces hash corresponding to the one signed with the
* https://eth.wiki/json-rpc/API#eth_sign[`eth_sign`]
* JSON-RPC method as part of EIP-191.
*
* See {recover}.
*/functiontoEthSignedMessageHash(bytes32 hash) internalpurereturns (bytes32 message) {
// 32 is the length in bytes of hash,// enforced by the type signature above/// @solidity memory-safe-assemblyassembly {
mstore(0x00, "\x19Ethereum Signed Message:\n32")
mstore(0x1c, hash)
message :=keccak256(0x00, 0x3c)
}
}
/**
* @dev Returns an Ethereum Signed Message, created from `s`. This
* produces hash corresponding to the one signed with the
* https://eth.wiki/json-rpc/API#eth_sign[`eth_sign`]
* JSON-RPC method as part of EIP-191.
*
* See {recover}.
*/functiontoEthSignedMessageHash(bytesmemory s) internalpurereturns (bytes32) {
returnkeccak256(abi.encodePacked("\x19Ethereum Signed Message:\n", Strings.toString(s.length), s));
}
/**
* @dev Returns an Ethereum Signed Typed Data, created from a
* `domainSeparator` and a `structHash`. This produces hash corresponding
* to the one signed with the
* https://eips.ethereum.org/EIPS/eip-712[`eth_signTypedData`]
* JSON-RPC method as part of EIP-712.
*
* See {recover}.
*/functiontoTypedDataHash(bytes32 domainSeparator, bytes32 structHash) internalpurereturns (bytes32 data) {
/// @solidity memory-safe-assemblyassembly {
let ptr :=mload(0x40)
mstore(ptr, "\x19\x01")
mstore(add(ptr, 0x02), domainSeparator)
mstore(add(ptr, 0x22), structHash)
data :=keccak256(ptr, 0x42)
}
}
/**
* @dev Returns an Ethereum Signed Data with intended validator, created from a
* `validator` and `data` according to the version 0 of EIP-191.
*
* See {recover}.
*/functiontoDataWithIntendedValidatorHash(address validator, bytesmemory data) internalpurereturns (bytes32) {
returnkeccak256(abi.encodePacked("\x19\x00", validator, data));
}
}
Contract Source Code
File 4 of 25: EIP712.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/cryptography/EIP712.sol)pragmasolidity ^0.8.8;import"./ECDSA.sol";
import"../ShortStrings.sol";
import"../../interfaces/IERC5267.sol";
/**
* @dev https://eips.ethereum.org/EIPS/eip-712[EIP 712] is a standard for hashing and signing of typed structured data.
*
* The encoding specified in the EIP is very generic, and such a generic implementation in Solidity is not feasible,
* thus this contract does not implement the encoding itself. Protocols need to implement the type-specific encoding
* they need in their contracts using a combination of `abi.encode` and `keccak256`.
*
* This contract implements the EIP 712 domain separator ({_domainSeparatorV4}) that is used as part of the encoding
* scheme, and the final step of the encoding to obtain the message digest that is then signed via ECDSA
* ({_hashTypedDataV4}).
*
* The implementation of the domain separator was designed to be as efficient as possible while still properly updating
* the chain id to protect against replay attacks on an eventual fork of the chain.
*
* NOTE: This contract implements the version of the encoding known as "v4", as implemented by the JSON RPC method
* https://docs.metamask.io/guide/signing-data.html[`eth_signTypedDataV4` in MetaMask].
*
* NOTE: In the upgradeable version of this contract, the cached values will correspond to the address, and the domain
* separator of the implementation contract. This will cause the `_domainSeparatorV4` function to always rebuild the
* separator from the immutable values, which is cheaper than accessing a cached version in cold storage.
*
* _Available since v3.4._
*
* @custom:oz-upgrades-unsafe-allow state-variable-immutable state-variable-assignment
*/abstractcontractEIP712isIERC5267{
usingShortStringsfor*;
bytes32privateconstant _TYPE_HASH =keccak256("EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)");
// Cache the domain separator as an immutable value, but also store the chain id that it corresponds to, in order to// invalidate the cached domain separator if the chain id changes.bytes32privateimmutable _cachedDomainSeparator;
uint256privateimmutable _cachedChainId;
addressprivateimmutable _cachedThis;
bytes32privateimmutable _hashedName;
bytes32privateimmutable _hashedVersion;
ShortString privateimmutable _name;
ShortString privateimmutable _version;
stringprivate _nameFallback;
stringprivate _versionFallback;
/**
* @dev Initializes the domain separator and parameter caches.
*
* The meaning of `name` and `version` is specified in
* https://eips.ethereum.org/EIPS/eip-712#definition-of-domainseparator[EIP 712]:
*
* - `name`: the user readable name of the signing domain, i.e. the name of the DApp or the protocol.
* - `version`: the current major version of the signing domain.
*
* NOTE: These parameters cannot be changed except through a xref:learn::upgrading-smart-contracts.adoc[smart
* contract upgrade].
*/constructor(stringmemory name, stringmemory version) {
_name = name.toShortStringWithFallback(_nameFallback);
_version = version.toShortStringWithFallback(_versionFallback);
_hashedName =keccak256(bytes(name));
_hashedVersion =keccak256(bytes(version));
_cachedChainId =block.chainid;
_cachedDomainSeparator = _buildDomainSeparator();
_cachedThis =address(this);
}
/**
* @dev Returns the domain separator for the current chain.
*/function_domainSeparatorV4() internalviewreturns (bytes32) {
if (address(this) == _cachedThis &&block.chainid== _cachedChainId) {
return _cachedDomainSeparator;
} else {
return _buildDomainSeparator();
}
}
function_buildDomainSeparator() privateviewreturns (bytes32) {
returnkeccak256(abi.encode(_TYPE_HASH, _hashedName, _hashedVersion, block.chainid, address(this)));
}
/**
* @dev Given an already https://eips.ethereum.org/EIPS/eip-712#definition-of-hashstruct[hashed struct], this
* function returns the hash of the fully encoded EIP712 message for this domain.
*
* This hash can be used together with {ECDSA-recover} to obtain the signer of a message. For example:
*
* ```solidity
* bytes32 digest = _hashTypedDataV4(keccak256(abi.encode(
* keccak256("Mail(address to,string contents)"),
* mailTo,
* keccak256(bytes(mailContents))
* )));
* address signer = ECDSA.recover(digest, signature);
* ```
*/function_hashTypedDataV4(bytes32 structHash) internalviewvirtualreturns (bytes32) {
return ECDSA.toTypedDataHash(_domainSeparatorV4(), structHash);
}
/**
* @dev See {EIP-5267}.
*
* _Available since v4.9._
*/functioneip712Domain()
publicviewvirtualoverridereturns (bytes1 fields,
stringmemory name,
stringmemory version,
uint256 chainId,
address verifyingContract,
bytes32 salt,
uint256[] memory extensions
)
{
return (
hex"0f", // 01111
_name.toStringWithFallback(_nameFallback),
_version.toStringWithFallback(_versionFallback),
block.chainid,
address(this),
bytes32(0),
newuint256[](0)
);
}
}
Contract Source Code
File 5 of 25: ERC165.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts v4.4.1 (utils/introspection/ERC165.sol)pragmasolidity ^0.8.0;import"./IERC165.sol";
/**
* @dev Implementation of the {IERC165} interface.
*
* Contracts that want to implement ERC165 should inherit from this contract and override {supportsInterface} to check
* for the additional interface id that will be supported. For example:
*
* ```solidity
* function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
* return interfaceId == type(MyInterface).interfaceId || super.supportsInterface(interfaceId);
* }
* ```
*
* Alternatively, {ERC165Storage} provides an easier to use but more expensive implementation.
*/abstractcontractERC165isIERC165{
/**
* @dev See {IERC165-supportsInterface}.
*/functionsupportsInterface(bytes4 interfaceId) publicviewvirtualoverridereturns (bool) {
return interfaceId ==type(IERC165).interfaceId;
}
}
Contract Source Code
File 6 of 25: ERC721.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC721/ERC721.sol)pragmasolidity ^0.8.0;import"./IERC721.sol";
import"./IERC721Receiver.sol";
import"./extensions/IERC721Metadata.sol";
import"../../utils/Address.sol";
import"../../utils/Context.sol";
import"../../utils/Strings.sol";
import"../../utils/introspection/ERC165.sol";
/**
* @dev Implementation of https://eips.ethereum.org/EIPS/eip-721[ERC721] Non-Fungible Token Standard, including
* the Metadata extension, but not including the Enumerable extension, which is available separately as
* {ERC721Enumerable}.
*/contractERC721isContext, ERC165, IERC721, IERC721Metadata{
usingAddressforaddress;
usingStringsforuint256;
// Token namestringprivate _name;
// Token symbolstringprivate _symbol;
// Mapping from token ID to owner addressmapping(uint256=>address) private _owners;
// Mapping owner address to token countmapping(address=>uint256) private _balances;
// Mapping from token ID to approved addressmapping(uint256=>address) private _tokenApprovals;
// Mapping from owner to operator approvalsmapping(address=>mapping(address=>bool)) private _operatorApprovals;
/**
* @dev Initializes the contract by setting a `name` and a `symbol` to the token collection.
*/constructor(stringmemory name_, stringmemory symbol_) {
_name = name_;
_symbol = symbol_;
}
/**
* @dev See {IERC165-supportsInterface}.
*/functionsupportsInterface(bytes4 interfaceId) publicviewvirtualoverride(ERC165, IERC165) returns (bool) {
return
interfaceId ==type(IERC721).interfaceId||
interfaceId ==type(IERC721Metadata).interfaceId||super.supportsInterface(interfaceId);
}
/**
* @dev See {IERC721-balanceOf}.
*/functionbalanceOf(address owner) publicviewvirtualoverridereturns (uint256) {
require(owner !=address(0), "ERC721: address zero is not a valid owner");
return _balances[owner];
}
/**
* @dev See {IERC721-ownerOf}.
*/functionownerOf(uint256 tokenId) publicviewvirtualoverridereturns (address) {
address owner = _ownerOf(tokenId);
require(owner !=address(0), "ERC721: invalid token ID");
return owner;
}
/**
* @dev See {IERC721Metadata-name}.
*/functionname() publicviewvirtualoverridereturns (stringmemory) {
return _name;
}
/**
* @dev See {IERC721Metadata-symbol}.
*/functionsymbol() publicviewvirtualoverridereturns (stringmemory) {
return _symbol;
}
/**
* @dev See {IERC721Metadata-tokenURI}.
*/functiontokenURI(uint256 tokenId) publicviewvirtualoverridereturns (stringmemory) {
_requireMinted(tokenId);
stringmemory baseURI = _baseURI();
returnbytes(baseURI).length>0 ? string(abi.encodePacked(baseURI, tokenId.toString())) : "";
}
/**
* @dev Base URI for computing {tokenURI}. If set, the resulting URI for each
* token will be the concatenation of the `baseURI` and the `tokenId`. Empty
* by default, can be overridden in child contracts.
*/function_baseURI() internalviewvirtualreturns (stringmemory) {
return"";
}
/**
* @dev See {IERC721-approve}.
*/functionapprove(address to, uint256 tokenId) publicvirtualoverride{
address owner = ERC721.ownerOf(tokenId);
require(to != owner, "ERC721: approval to current owner");
require(
_msgSender() == owner || isApprovedForAll(owner, _msgSender()),
"ERC721: approve caller is not token owner or approved for all"
);
_approve(to, tokenId);
}
/**
* @dev See {IERC721-getApproved}.
*/functiongetApproved(uint256 tokenId) publicviewvirtualoverridereturns (address) {
_requireMinted(tokenId);
return _tokenApprovals[tokenId];
}
/**
* @dev See {IERC721-setApprovalForAll}.
*/functionsetApprovalForAll(address operator, bool approved) publicvirtualoverride{
_setApprovalForAll(_msgSender(), operator, approved);
}
/**
* @dev See {IERC721-isApprovedForAll}.
*/functionisApprovedForAll(address owner, address operator) publicviewvirtualoverridereturns (bool) {
return _operatorApprovals[owner][operator];
}
/**
* @dev See {IERC721-transferFrom}.
*/functiontransferFrom(addressfrom, address to, uint256 tokenId) publicvirtualoverride{
//solhint-disable-next-line max-line-lengthrequire(_isApprovedOrOwner(_msgSender(), tokenId), "ERC721: caller is not token owner or approved");
_transfer(from, to, tokenId);
}
/**
* @dev See {IERC721-safeTransferFrom}.
*/functionsafeTransferFrom(addressfrom, address to, uint256 tokenId) publicvirtualoverride{
safeTransferFrom(from, to, tokenId, "");
}
/**
* @dev See {IERC721-safeTransferFrom}.
*/functionsafeTransferFrom(addressfrom, address to, uint256 tokenId, bytesmemory data) publicvirtualoverride{
require(_isApprovedOrOwner(_msgSender(), tokenId), "ERC721: caller is not token owner or approved");
_safeTransfer(from, to, tokenId, data);
}
/**
* @dev Safely transfers `tokenId` token from `from` to `to`, checking first that contract recipients
* are aware of the ERC721 protocol to prevent tokens from being forever locked.
*
* `data` is additional data, it has no specified format and it is sent in call to `to`.
*
* This internal function is equivalent to {safeTransferFrom}, and can be used to e.g.
* implement alternative mechanisms to perform token transfer, such as signature-based.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `tokenId` token must exist and be owned by `from`.
* - If `to` refers to a smart contract, it must implement {IERC721Receiver-onERC721Received}, which is called upon a safe transfer.
*
* Emits a {Transfer} event.
*/function_safeTransfer(addressfrom, address to, uint256 tokenId, bytesmemory data) internalvirtual{
_transfer(from, to, tokenId);
require(_checkOnERC721Received(from, to, tokenId, data), "ERC721: transfer to non ERC721Receiver implementer");
}
/**
* @dev Returns the owner of the `tokenId`. Does NOT revert if token doesn't exist
*/function_ownerOf(uint256 tokenId) internalviewvirtualreturns (address) {
return _owners[tokenId];
}
/**
* @dev Returns whether `tokenId` exists.
*
* Tokens can be managed by their owner or approved accounts via {approve} or {setApprovalForAll}.
*
* Tokens start existing when they are minted (`_mint`),
* and stop existing when they are burned (`_burn`).
*/function_exists(uint256 tokenId) internalviewvirtualreturns (bool) {
return _ownerOf(tokenId) !=address(0);
}
/**
* @dev Returns whether `spender` is allowed to manage `tokenId`.
*
* Requirements:
*
* - `tokenId` must exist.
*/function_isApprovedOrOwner(address spender, uint256 tokenId) internalviewvirtualreturns (bool) {
address owner = ERC721.ownerOf(tokenId);
return (spender == owner || isApprovedForAll(owner, spender) || getApproved(tokenId) == spender);
}
/**
* @dev Safely mints `tokenId` and transfers it to `to`.
*
* Requirements:
*
* - `tokenId` must not exist.
* - If `to` refers to a smart contract, it must implement {IERC721Receiver-onERC721Received}, which is called upon a safe transfer.
*
* Emits a {Transfer} event.
*/function_safeMint(address to, uint256 tokenId) internalvirtual{
_safeMint(to, tokenId, "");
}
/**
* @dev Same as {xref-ERC721-_safeMint-address-uint256-}[`_safeMint`], with an additional `data` parameter which is
* forwarded in {IERC721Receiver-onERC721Received} to contract recipients.
*/function_safeMint(address to, uint256 tokenId, bytesmemory data) internalvirtual{
_mint(to, tokenId);
require(
_checkOnERC721Received(address(0), to, tokenId, data),
"ERC721: transfer to non ERC721Receiver implementer"
);
}
/**
* @dev Mints `tokenId` and transfers it to `to`.
*
* WARNING: Usage of this method is discouraged, use {_safeMint} whenever possible
*
* Requirements:
*
* - `tokenId` must not exist.
* - `to` cannot be the zero address.
*
* Emits a {Transfer} event.
*/function_mint(address to, uint256 tokenId) internalvirtual{
require(to !=address(0), "ERC721: mint to the zero address");
require(!_exists(tokenId), "ERC721: token already minted");
_beforeTokenTransfer(address(0), to, tokenId, 1);
// Check that tokenId was not minted by `_beforeTokenTransfer` hookrequire(!_exists(tokenId), "ERC721: token already minted");
unchecked {
// Will not overflow unless all 2**256 token ids are minted to the same owner.// Given that tokens are minted one by one, it is impossible in practice that// this ever happens. Might change if we allow batch minting.// The ERC fails to describe this case.
_balances[to] +=1;
}
_owners[tokenId] = to;
emit Transfer(address(0), to, tokenId);
_afterTokenTransfer(address(0), to, tokenId, 1);
}
/**
* @dev Destroys `tokenId`.
* The approval is cleared when the token is burned.
* This is an internal function that does not check if the sender is authorized to operate on the token.
*
* Requirements:
*
* - `tokenId` must exist.
*
* Emits a {Transfer} event.
*/function_burn(uint256 tokenId) internalvirtual{
address owner = ERC721.ownerOf(tokenId);
_beforeTokenTransfer(owner, address(0), tokenId, 1);
// Update ownership in case tokenId was transferred by `_beforeTokenTransfer` hook
owner = ERC721.ownerOf(tokenId);
// Clear approvalsdelete _tokenApprovals[tokenId];
unchecked {
// Cannot overflow, as that would require more tokens to be burned/transferred// out than the owner initially received through minting and transferring in.
_balances[owner] -=1;
}
delete _owners[tokenId];
emit Transfer(owner, address(0), tokenId);
_afterTokenTransfer(owner, address(0), tokenId, 1);
}
/**
* @dev Transfers `tokenId` from `from` to `to`.
* As opposed to {transferFrom}, this imposes no restrictions on msg.sender.
*
* Requirements:
*
* - `to` cannot be the zero address.
* - `tokenId` token must be owned by `from`.
*
* Emits a {Transfer} event.
*/function_transfer(addressfrom, address to, uint256 tokenId) internalvirtual{
require(ERC721.ownerOf(tokenId) ==from, "ERC721: transfer from incorrect owner");
require(to !=address(0), "ERC721: transfer to the zero address");
_beforeTokenTransfer(from, to, tokenId, 1);
// Check that tokenId was not transferred by `_beforeTokenTransfer` hookrequire(ERC721.ownerOf(tokenId) ==from, "ERC721: transfer from incorrect owner");
// Clear approvals from the previous ownerdelete _tokenApprovals[tokenId];
unchecked {
// `_balances[from]` cannot overflow for the same reason as described in `_burn`:// `from`'s balance is the number of token held, which is at least one before the current// transfer.// `_balances[to]` could overflow in the conditions described in `_mint`. That would require// all 2**256 token ids to be minted, which in practice is impossible.
_balances[from] -=1;
_balances[to] +=1;
}
_owners[tokenId] = to;
emit Transfer(from, to, tokenId);
_afterTokenTransfer(from, to, tokenId, 1);
}
/**
* @dev Approve `to` to operate on `tokenId`
*
* Emits an {Approval} event.
*/function_approve(address to, uint256 tokenId) internalvirtual{
_tokenApprovals[tokenId] = to;
emit Approval(ERC721.ownerOf(tokenId), to, tokenId);
}
/**
* @dev Approve `operator` to operate on all of `owner` tokens
*
* Emits an {ApprovalForAll} event.
*/function_setApprovalForAll(address owner, address operator, bool approved) internalvirtual{
require(owner != operator, "ERC721: approve to caller");
_operatorApprovals[owner][operator] = approved;
emit ApprovalForAll(owner, operator, approved);
}
/**
* @dev Reverts if the `tokenId` has not been minted yet.
*/function_requireMinted(uint256 tokenId) internalviewvirtual{
require(_exists(tokenId), "ERC721: invalid token ID");
}
/**
* @dev Internal function to invoke {IERC721Receiver-onERC721Received} on a target address.
* The call is not executed if the target address is not a contract.
*
* @param from address representing the previous owner of the given token ID
* @param to target address that will receive the tokens
* @param tokenId uint256 ID of the token to be transferred
* @param data bytes optional data to send along with the call
* @return bool whether the call correctly returned the expected magic value
*/function_checkOnERC721Received(addressfrom,
address to,
uint256 tokenId,
bytesmemory data
) privatereturns (bool) {
if (to.isContract()) {
try IERC721Receiver(to).onERC721Received(_msgSender(), from, tokenId, data) returns (bytes4 retval) {
return retval == IERC721Receiver.onERC721Received.selector;
} catch (bytesmemory reason) {
if (reason.length==0) {
revert("ERC721: transfer to non ERC721Receiver implementer");
} else {
/// @solidity memory-safe-assemblyassembly {
revert(add(32, reason), mload(reason))
}
}
}
} else {
returntrue;
}
}
/**
* @dev Hook that is called before any token transfer. This includes minting and burning. If {ERC721Consecutive} is
* used, the hook may be called as part of a consecutive (batch) mint, as indicated by `batchSize` greater than 1.
*
* Calling conditions:
*
* - When `from` and `to` are both non-zero, ``from``'s tokens will be transferred to `to`.
* - When `from` is zero, the tokens will be minted for `to`.
* - When `to` is zero, ``from``'s tokens will be burned.
* - `from` and `to` are never both zero.
* - `batchSize` is non-zero.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/function_beforeTokenTransfer(addressfrom, address to, uint256 firstTokenId, uint256 batchSize) internalvirtual{}
/**
* @dev Hook that is called after any token transfer. This includes minting and burning. If {ERC721Consecutive} is
* used, the hook may be called as part of a consecutive (batch) mint, as indicated by `batchSize` greater than 1.
*
* Calling conditions:
*
* - When `from` and `to` are both non-zero, ``from``'s tokens were transferred to `to`.
* - When `from` is zero, the tokens were minted for `to`.
* - When `to` is zero, ``from``'s tokens were burned.
* - `from` and `to` are never both zero.
* - `batchSize` is non-zero.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/function_afterTokenTransfer(addressfrom, address to, uint256 firstTokenId, uint256 batchSize) internalvirtual{}
/**
* @dev Unsafe write access to the balances, used by extensions that "mint" tokens using an {ownerOf} override.
*
* WARNING: Anyone calling this MUST ensure that the balances remain consistent with the ownership. The invariant
* being that for any address `a` the value returned by `balanceOf(a)` must be equal to the number of tokens such
* that `ownerOf(tokenId)` is `a`.
*/// solhint-disable-next-line func-name-mixedcasefunction__unsafe_increaseBalance(address account, uint256 amount) internal{
_balances[account] += amount;
}
}
Contract Source Code
File 7 of 25: GenesisNft.sol
// SPDX-License-Identifier: MITpragmasolidity 0.8.22;import"@openzeppelin/contracts/token/ERC721/ERC721.sol";
import"@openzeppelin/contracts/access/Ownable.sol";
import"@openzeppelin/contracts/utils/cryptography/EIP712.sol";
import"@openzeppelin/contracts/utils/cryptography/ECDSA.sol";
import"@openzeppelin/contracts/interfaces/IERC4906.sol";
import"@openzeppelin/contracts/interfaces/IERC20.sol";
import"./GenesisNftData.sol";
import"./../interface/ITokenDistribution.sol";
import"./../interface/IWorkToken.sol";
errorStartTimeInvalid();
errorInitHasCompleted();
errorRewarderRoleNotPresent();
errorAccountMintedPreviously();
errorSignatureInvalid();
errorNftMintUnavailable();
errorMintTypeInvalid();
errorNftNotOwned();
errorNftLocked(uint256 lockedTill);
errorNftNotExists();
errorUnstakeAmountNotAllowed();
errorAllowanceExceeded(uint256 allowance);
errorTransferFailed();
errorArrayLengthMismatch();
errorLockPeriodInvalid();
errorStakeAtMintMaxExceeded();
contractGenesisNftisERC721, Ownable, EIP712, IERC4906{
GenesisNftData privateimmutable nftData;
ITokenDistribution privateimmutable tokenDistribution;
IWorkToken privateimmutable token;
uint256privateconstant NFT_MAX_LOCK_PERIOD =550days;
uint256privateconstant NFT_MAX_AMOUNT =999;
uint256privateconstant MAX_LEVEL =80;
uint256publicconstant BASE_STAKE =50;
uint256privateconstant TYPE_GUAR =0;
uint256privateconstant TYPE_FCFS =1;
uint256privateconstant TYPE_INV =2;
uint256publicconstant DAILY_STAKING_ALLOWANCE =294;
uint256privateconstant COUNT_GUAR =400;
uint256privateconstant COUNT_FCFS =150;
uint256privateconstant COUNT_INV =449;
uint256privateconstant ONE_E18 =10**18;
uint256privateconstant TOTAL_STAKE_AT_MINT_MAX =24000000* ONE_E18;
uint128public startTime;
uint16public nftIdCounter;
uint8public initCompleted;
stringprivate imageFolder ="ipfs://QmdXcctk5G1rkqFuqsEAVhoKxJ6tMoV1fjqYRXri3VY47b/";
addresspublic voucherSigner;
mapping(address=>bool) public accountMinted;
mapping(address=>bool) public isRewarder;
mapping(uint256=> NftTotalMonth) public monthlyTotal;
structNftTotalMonth {
uint32 totalShares;
uint128 totalStaked;
uint128 minimumStaked;
}
mapping(uint256=> NftInfo) public nft;
structNftInfo {
uint16 tier;
uint16 voucherId;
uint64 lockPeriod;
uint128 stakedAtMint;
bytes32 encodedAttributes;
mapping(uint256=> NftInfoMonth) monthly;
}
structNftInfoMonth {
uint16 shares;
uint8 hasWithdrawn;
uint128 staked;
uint128 minimumStaked;
}
eventStake(uint256indexed tokenId, uint256 amount);
eventUnstake(uint256indexed tokenId, uint256 amount);
eventEvolve(uint256indexed tokenId, uint256 tier);
eventDestroy(uint256indexed tokenId);
eventInitCompleted();
eventIpfsFolderChanged(stringindexed ipfsFolder);
eventVoucherSignerSet(addressindexed voucherSigner);
eventRewarderSet(addressindexed rewarder, bool isRewarder);
eventStartTimeSet(uint256indexed startTime);
eventRemainingToTreasuryMinted(uint256indexed amount);
/**
* @notice Deploying the NFT contract and sets the Admin role and references Erc20 Token, TokenDistribution and NftData contracts.
* @dev Requires the Erc20Token, TokenDistribution and NftData contracts to be deployed first and they addresses set to the constants.
* @param _nftName The name of the nft, which will be Work X Genesis NFT in this case.
* @param _nftSymbol The symbol of the nft, which will be Work X Genesis NFT in this case.
* @param _workTokenAddress The address of the $WORK token contract (ERC20).
* @param _tokenDistributionAddress The TokenDistribution address that will be used to mint tokens and update the claimed amount.
* @param _nftDataAddress The address of the NftData contract that will be used to get the data for the nft, like how many tokens are needed for each level.
* @param _voucherSigner The address of account that is authorized to sign NFT minting vouchers.
**/constructor(stringmemory _nftName,
stringmemory _nftSymbol,
address _workTokenAddress,
address _tokenDistributionAddress,
address _nftDataAddress,
address _voucherSigner
) ERC721(_nftName, _nftSymbol) EIP712(_nftName, "1.0.0") {
if (
_workTokenAddress ==address(0) ||
_tokenDistributionAddress ==address(0) ||
_nftDataAddress ==address(0) ||
_voucherSigner ==address(0)
) {
revert AddressInvalid();
}
token = IWorkToken(_workTokenAddress);
tokenDistribution = ITokenDistribution(_tokenDistributionAddress);
nftData = GenesisNftData(_nftDataAddress);
voucherSigner = _voucherSigner;
startTime =uint128(block.timestamp+22days);
}
/**
* @notice Combine ERC721 with ERC4906
**/functionsupportsInterface(bytes4 interfaceId) publicviewvirtualoverride(IERC165, ERC721) returns (bool) {
return interfaceId ==bytes4(0x49064906) ||super.supportsInterface(interfaceId);
}
/****
**** ONLY OWNER
****//**
* @notice Sets the IPFS folder where the NFT images are stored.
* @param _folder The folder that will be set.
**/functionsetIpfsFolder(stringcalldata _folder) externalonlyOwner{
imageFolder = _folder;
emit IpfsFolderChanged(_folder);
emit BatchMetadataUpdate(0, NFT_MAX_AMOUNT);
}
/**
* @notice Sets initCompleted to 1
* @dev This is used to make sure that the attributes can not be changed after the init is completed.
**/functionsetInitCompleted() externalonlyOwner{
initCompleted =1;
emit InitCompleted();
emit BatchMetadataUpdate(0, NFT_MAX_AMOUNT);
}
/**
* @notice Sets the attributes for a batch of NFTs.
* @dev This function can only be called before the init is completed.
* The array of tokenIds and the array of encodedAttributes should be the same length.
* The array of tokenIds should be ordered and contain no gaps
* @param _tokenId The tokenId of the NFT.
* @param _encodedAttributes The 11 NFT attributes encoded in a bytes32.
**/functionsetNftAttributes(uint256[] calldata _tokenId, bytes32[] calldata _encodedAttributes) externalonlyOwner{
if (_tokenId.length!= _encodedAttributes.length|| _tokenId.length==0) {
revert ArrayLengthMismatch();
}
if (initCompleted !=0) {
revert InitHasCompleted();
}
for (uint256 id =0; id < _tokenId.length; id++) {
nft[_tokenId[id]].encodedAttributes = _encodedAttributes[id];
}
}
/**
* @notice Sets the address of the Voucher Signer.
* @param _voucherSigner Address of the vouchersigner that will be set.
**/functionsetVoucherSigner(address _voucherSigner) externalonlyOwner{
voucherSigner = _voucherSigner;
emit VoucherSignerSet(_voucherSigner);
}
/**
* @notice Sets or unsets a specific address to be a rewarder, they can add tokens to any NFT bypassing the stakingAllowance.
* @param _rewarder Address of the vouchersigner that will be set.
**/functionsetRewarder(address _rewarder, bool _isRewarder) externalonlyOwner{
isRewarder[_rewarder] = _isRewarder;
emit RewarderSet(_rewarder, _isRewarder);
}
/**
* @notice Sets the start time of the NFT reward mechanism.
* @param _startTime The new start time.
**/functionsetStartTime(uint256 _startTime) externalonlyOwner{
_startTime =uint256(uint128(_startTime));
if (startTime <=block.timestamp|| _startTime <=block.timestamp) {
revert StartTimeInvalid();
}
startTime =uint128(_startTime);
emit StartTimeSet(_startTime);
}
/**
* @notice After the minting period has ended, the remaining NFT will be minted to the treasury account.
**/functionmintRemainingToTreasury() externalonlyOwner{
if (initCompleted !=0) {
revert InitHasCompleted();
}
if (startTime <=block.timestamp) {
revert StartTimeInvalid();
}
for (uint256 i = nftIdCounter; i < NFT_MAX_AMOUNT; i++) {
_mint(msg.sender, i);
}
emit RemainingToTreasuryMinted(NFT_MAX_AMOUNT - nftIdCounter);
nftIdCounter =uint16(NFT_MAX_AMOUNT);
}
/**
* @notice Rescue function to withdraw any ERC20 token mistakenly sent to the contract, except the $WORK token after init has completed.
* @param _tokenAddress Address of the ERC20 token contract.
* @param _amount Amount of the ERC20 token to withdraw.
**/functionwithdrawTokens(address _tokenAddress, uint256 _amount) externalpayableonlyOwner{
if (initCompleted ==0) {
IERC20(_tokenAddress).transfer(msg.sender, _amount);
} else {
if (_tokenAddress !=address(token)) {
IERC20(_tokenAddress).transfer(msg.sender, _amount);
} else {
revert InitHasCompleted();
}
}
}
/****
**** EXTERNAL WRITE
****//**
* @notice The function mintNft mints the Work X GenesisNft and mints an amount of tokens into the NFT these tokens are locked for a certain amount of time but the NFT is freely tradable.
* A voucher is constructed by Work X backend and only callers with a valid voucher can mint the NFT.
* @dev Before giving out vouchers the tokenDistribution startTime has to be set, otherwise the tokens will not be locked correctly.
* @param _voucherId The id of the voucher that will be used to mint the NFT.
* @param _type The id of the minting type.
* @param _lockPeriod The amount of time that the tokens will be locked in the NFT from the startTime of the distribution contract.
* @param _amountToStake The amount of tokens that will be staked into the minted NFT.
* @param _signature A signature signed by the minter role, to check if a voucher is valid.
**/functionmintNft(uint256 _voucherId,
uint256 _type,
uint256 _lockPeriod,
uint256 _amountToStake,
bytescalldata _signature
) external{
if (accountMinted[msg.sender]) {
revert AccountMintedPreviously();
}
bytes32 digest = _hashMint(_voucherId, _type, _lockPeriod, msg.sender, _amountToStake);
if (!_verify(digest, _signature, voucherSigner)) {
revert SignatureInvalid();
}
if (_lockPeriod > NFT_MAX_LOCK_PERIOD) {
revert LockPeriodInvalid();
}
uint256 oldCounter = nftIdCounter;
if (_type == TYPE_GUAR) {
if (oldCounter >= COUNT_GUAR) {
revert NftMintUnavailable();
}
} elseif (_type == TYPE_FCFS) {
if (oldCounter >= COUNT_GUAR + COUNT_FCFS) {
revert NftMintUnavailable();
}
} elseif (_type == TYPE_INV) {
if (oldCounter >= COUNT_GUAR + COUNT_FCFS + COUNT_INV) {
revert NftMintUnavailable();
}
} else {
revert MintTypeInvalid();
}
accountMinted[msg.sender] =true;
if (_amountToStake >0) {
if (tokenDistribution.claimedTokens(msg.sender) ==0) {
tokenDistribution.setTotalClaimed(msg.sender, _amountToStake);
} else {
_amountToStake =0;
}
}
uint128 amountToStake =uint128(_amountToStake);
NftInfo storage _nft = nft[oldCounter];
_nft.voucherId =uint16(_voucherId);
_nft.lockPeriod =uint64(_lockPeriod);
_nft.stakedAtMint = amountToStake;
uint256 level = nftData.getLevel(amountToStake);
_nft.tier =uint16(level /10);
uint256 shares = nftData.shares(level) + BASE_STAKE;
NftInfoMonth memory _info = NftInfoMonth(uint16(shares), 0, amountToStake, amountToStake);
_nft.monthly[0] = _info;
NftTotalMonth memory totalMonthly = monthlyTotal[0];
if (totalMonthly.totalStaked + amountToStake > TOTAL_STAKE_AT_MINT_MAX) {
revert StakeAtMintMaxExceeded();
}
NftTotalMonth memory _monthTotal = NftTotalMonth(
totalMonthly.totalShares +uint32(shares),
uint128(totalMonthly.totalStaked + amountToStake),
uint128(totalMonthly.minimumStaked + amountToStake)
);
monthlyTotal[0] = _monthTotal;
nftIdCounter =uint16(oldCounter +1);
if (_amountToStake >0) {
token.mint(address(this), uint256(amountToStake));
}
_safeMint(msg.sender, oldCounter);
}
/**
* @notice The function destroyNft destroys your NFT and gives you back the tokens in that NFT. Your "Piggy bank will be destroyed forever."
* @dev In order to destroy an NFT you need to be the owner, the lockPeriod should have passed.
* Its fine to use the block.timestamp for the comparison because the miner can not manipulate the block.timestamp by a practically significant amount.
* @param _tokenId The id of the NFT that will destroyed.
**/functiondestroyNft(uint256 _tokenId) external{
if (msg.sender!= ownerOf(_tokenId)) {
revert NftNotOwned();
}
uint64 lockPeriod = nft[_tokenId].lockPeriod;
if (block.timestamp<= lockPeriod + startTime) {
revert NftLocked(lockPeriod + startTime);
}
uint256 currentMonth = getCurrentMonth();
(uint256 stakedAmount, ) = getStaked(_tokenId, currentMonth);
_updateMonthly(_tokenId, false, stakedAmount, currentMonth);
_updateShares(_tokenId, false);
nft[_tokenId].monthly[currentMonth].hasWithdrawn =1;
_burn(_tokenId);
if (!token.transfer(msg.sender, stakedAmount)) {
revert TransferFailed();
}
emit Destroy(_tokenId);
}
/**
* @notice The stake function stakes an amount of tokens into an NFT.
* @dev The amount that can be staked for a specific tokenId builds up over time. You can only stake up to this allowance and you need to own enough tokens.
* @param _tokenId The id of the nft that will receive the tokens.
* @param _amount The amount of tokens that should be staked.
**/functionstake(uint256 _tokenId, uint256 _amount) external{
_checkAllowance(_tokenId, _amount);
_stake(_tokenId, _amount);
}
/**
* @notice The stakeAndEvolve function stakes tokens and afterwards evolves the NFT to the a higher tier if applicable.
* @param _tokenId The id of the nft that will receive the tokens.
* @param _amount The amount of tokens that should be staked.
**/functionstakeAndEvolve(uint256 _tokenId, uint256 _amount) external{
_checkAllowance(_tokenId, _amount);
_stake(_tokenId, _amount);
_evolveTier(_tokenId);
}
/**
* @notice The reward function stakes an amount of tokens into any NFT, bypassing the stakingAllowance.
* @dev Rewarders can stake tokens into any NFT, which potentially increases its level but does not evolve it to the next tier.
* @param _tokenId The id of the nft that will receive the tokens.
* @param _amount The amount of tokens that will be staked.
**/functionreward(uint256 _tokenId, uint256 _amount) external{
if (!isRewarder[msg.sender]) {
revert RewarderRoleNotPresent();
}
if (!_exists(_tokenId)) {
revert NftNotExists();
}
_stake(_tokenId, _amount);
}
/**
* @notice The unstake function unstakes an amount of tokens from the NFT with a specific tokenId
* @dev You can only unstake tokens after the lockPeriod has passed, and even then you can not unstake more than the minimum amount of tokens that is required to make the NFT level 10 in the current tier.
* If an NFT evolves to the next tier it has to reach level 10 first and only the tokens that are above the minimum amount of tokens required to reach level 10 in the current tier can be unstaked. We call this unstakable amount "Surplus"
* @param _tokenId The id of the NFT that will receive the tokens.
* @param _amount The amount of tokens that will be staked.
**/functionunstake(uint256 _tokenId, uint256 _amount) external{
if (msg.sender!= ownerOf(_tokenId)) {
revert NftNotOwned();
}
NftInfo storage _nft = nft[_tokenId];
if (block.timestamp<= _nft.lockPeriod + startTime) {
revert NftLocked(_nft.lockPeriod + startTime);
}
uint256 currentMonth = getCurrentMonth();
(uint256 stakedAmount, ) = getStaked(_tokenId, currentMonth);
uint256 tokensRequiredForMaxLevelInTier = nftData.getTokensRequiredForTier(_nft.tier +1);
if (tokensRequiredForMaxLevelInTier + _amount > stakedAmount) {
revert UnstakeAmountNotAllowed();
}
_updateMonthly(_tokenId, false, _amount, currentMonth);
nft[_tokenId].monthly[currentMonth].hasWithdrawn =1;
if (!token.transfer(msg.sender, _amount)) {
revert TransferFailed();
}
emit Unstake(_tokenId, _amount);
}
/**
* @notice Tries to evolve the tier if you are the owner of the NFT.
**/functionevolveTier(uint256 _tokenId) external{
if (msg.sender!= ownerOf(_tokenId)) {
revert NftNotOwned();
}
_evolveTier(_tokenId);
}
/****
**** private WRITE
****//**
* @notice The _updateShares function updates the shares of an NFT, it needs to calculate the shares amount when an NFT changes level, or tier, or when it is destroyed.
* @dev It calculates the new amount of shares of an nft, and then updates both the total, and NFT specific shares amounts.
* Note that unstaking does never change shares because the level can not decrease, only destroying an NFT does.
* @param _tokenId The id of the NFT of which the shares will be updated.
* @param _isIncreasingShares True if we have to add shares, false if we need to subtract shares.
**/function_updateShares(uint256 _tokenId, bool _isIncreasingShares) private{
uint256 currentMonth = getCurrentMonth();
uint256 nftSharesOld = getShares(_tokenId, currentMonth);
uint256 totalSharesCurrentMonth = _getTotalShares(currentMonth);
NftTotalMonth storage _nftMonthTotal = monthlyTotal[currentMonth];
NftInfo storage _nft = nft[_tokenId];
NftInfoMonth storage _nftMonthToSet = _nft.monthly[currentMonth];
for (uint256 i = currentMonth +1; i >=1; --i) {
NftInfoMonth memory _nftMonth = _nft.monthly[i -1];
if (_nftMonth.staked >0|| _nftMonth.hasWithdrawn ==1|| i ==1) {
if (_isIncreasingShares) {
uint256 nftSharesNew = nftData.shares(nftData.getLevelCapped(_nftMonth.staked, _nft.tier)) +
BASE_STAKE;
_nftMonthToSet.shares =uint16(nftSharesNew);
_nftMonthTotal.totalShares =uint32(totalSharesCurrentMonth + nftSharesNew - nftSharesOld);
} else {
_nftMonthToSet.shares =0;
_nftMonthTotal.totalShares =uint32(totalSharesCurrentMonth - nftSharesOld);
}
break;
}
}
}
/**
* @notice Increases the tier of an NFT.
* @dev It recalculates the tier of an NFT and set it, als the amount of shares is updated as we might jump several tiers/levels at once.
* @param _tokenId The id of the NFT.
**/function_evolveTier(uint256 _tokenId) private{
(uint256 staked, ) = getStaked(_tokenId, getCurrentMonth());
uint256 tier = nftData.getLevel(staked) /10;
NftInfo storage _nft = nft[_tokenId];
_nft.tier =uint16(tier);
_updateShares(_tokenId, true);
emit Evolve(_tokenId, tier);
}
/**
* @notice The _stake function stakes an amount of tokens into an NFT of the owner.
* @dev The amount that can be staked for a specific tokenId builds up over time. You can only stake up to this allowance and you need own enough tokens.
* The _updateMonthly function is called to update the monthly totals and the monthly totals of the NFT.
* The _updateShares function is called to update the shares totals and the shares of the NFT.
* The token.transferFrom function is called to transfer the tokens from the sender to the contract.
* @param _tokenId The id of the NFT.
* @param _amount The amount that will be staked.
**/function_stake(uint256 _tokenId, uint256 _amount) private{
_updateMonthly(_tokenId, true, _amount, getCurrentMonth());
_updateShares(_tokenId, true);
if (!token.transferFrom(msg.sender, address(this), _amount)) {
revert TransferFailed();
}
emit Stake(_tokenId, _amount);
}
/**
* @notice _updateMonthly updates the monthly balance of an NFT, as well as the global totals.
* @dev Important: For - Loop through the previous months and to find the last non-zero value for "nft.monthly" Because you might have tokens in a month, but if you did not stake/unstake in that month, the value for that month will be never set (0).
* @param _tokenId The id of the NFT.
* @param _isIncreasingStake Whether the amount of tokens staked is increasing or decreasing.
* @param _amount The amount of tokens staked.
* @param _amount The month at which we are looking.
**/function_updateMonthly(uint256 _tokenId, bool _isIncreasingStake, uint256 _amount, uint256 _month) private{
NftInfo storage _nft = nft[_tokenId];
NftInfoMonth storage _nftMonthToSet = _nft.monthly[_month];
NftTotalMonth storage _totalToSet = monthlyTotal[_month];
uint256 _minimumToCheck;
for (uint256 i = _month +1; i >=1; --i) {
NftInfoMonth memory _nftMonth = _nft.monthly[i -1];
if (_nftMonth.staked >0|| _nftMonth.hasWithdrawn ==1|| i ==1) {
uint256 _minimumDecreased;
if (_isIncreasingStake) {
_nftMonthToSet.staked = _nftMonth.staked +uint128(_amount);
if (i < _month +1) {
_nftMonthToSet.minimumStaked = _nftMonth.staked;
} else {
_nftMonthToSet.minimumStaked = _nftMonth.minimumStaked;
}
} else {
if (_nftMonth.staked >= _amount) {
uint128 stakedToSet = _nftMonth.staked -uint128(_amount);
_nftMonthToSet.staked = stakedToSet;
_minimumToCheck = i < _month +1 ? _nftMonth.staked : _nftMonth.minimumStaked;
if (stakedToSet < _minimumToCheck) {
_nftMonthToSet.minimumStaked = stakedToSet;
_minimumDecreased = _minimumToCheck - stakedToSet;
} else {
_nftMonthToSet.minimumStaked =uint128(_minimumToCheck);
}
} else {
revert UnstakeAmountNotAllowed();
}
}
for (uint256 ii = _month +1; ii >=1; --ii) {
NftTotalMonth memory _monthlyTotal = monthlyTotal[ii -1];
if (_monthlyTotal.totalStaked >0|| ii ==1) {
if (_isIncreasingStake) {
_totalToSet.totalStaked = _monthlyTotal.totalStaked +uint128(_amount);
if (ii < _month +1) {
_totalToSet.minimumStaked = _monthlyTotal.totalStaked;
}
} else {
if (_monthlyTotal.totalStaked >= _amount) {
_totalToSet.totalStaked = _monthlyTotal.totalStaked -uint128(_amount);
_minimumToCheck = ii < _month +1
? _monthlyTotal.totalStaked
: _monthlyTotal.minimumStaked;
_totalToSet.minimumStaked =uint128(_minimumToCheck - _minimumDecreased);
} else {
revert UnstakeAmountNotAllowed();
}
}
break;
}
}
break;
}
}
}
/****
**** PUBLIC VIEW
****//**
* @notice Get the current month number since the reward period has started.
* @return The current month.
**/functiongetCurrentMonth() publicviewreturns (uint256) {
if (block.timestamp< startTime) {
return0;
} else {
return (block.timestamp- startTime) /30days;
}
}
/**
* @notice Get the currently staked and minimumStaked tokens for a specific NFT at a specific month (looping back).
* @param _tokenId The id of the NFT.
* @return stakedAmount The amount of tokens staked in an NFT.
* @return stakedAmountMinimum The amountMinimum of tokens staked in an NFT.s
**/functiongetStaked(uint256 _tokenId,
uint256 _month
) publicviewreturns (uint256 stakedAmount, uint256 stakedAmountMinimum) {
if (!_exists(_tokenId)) {
revert NftNotExists();
}
NftInfo storage _nft = nft[_tokenId];
for (uint256 i = _month +1; i >=1; --i) {
NftInfoMonth storage _nftMonth = _nft.monthly[i -1];
if (_nftMonth.staked >0|| _nftMonth.hasWithdrawn ==1) {
if (i == _month +1) {
return (_nftMonth.staked, _nftMonth.minimumStaked);
} else {
return (_nftMonth.staked, _nftMonth.staked);
}
}
}
return (0, 0);
}
/**
* @notice Get the current shares for a specific NFT at a specific month (looping back).
* @dev Loops from the current month back over the previous months to find the last time this NFT has been staked or unstaked
* @param _tokenId The id of the NFT.
* @return The shares of the NFT.
**/functiongetShares(uint256 _tokenId, uint256 _month) publicviewreturns (uint256) {
if (!_exists(_tokenId)) {
revert NftNotExists();
}
NftInfo storage _nft = nft[_tokenId];
for (uint256 i = _month +1; i >=1; --i) {
NftInfoMonth storage _nftMonth = _nft.monthly[i -1];
if (_nftMonth.shares >0|| (_nftMonth.hasWithdrawn ==1&& _nftMonth.staked ==0)) {
return _nftMonth.shares;
}
}
return0;
}
/**
* @notice This function gets the tokenURI for this NFT.
* @dev The tokenURI is dynamically generated, it will be based on the type and level and many other variables and is then formatted.
* @param _tokenId The id of the NFT.
* @return _tokenUri a string which is the tokenURI of an NFT.
**/functiontokenURI(uint256 _tokenId) publicviewoverridereturns (stringmemory _tokenUri) {
if (!_exists(_tokenId)) {
revert NftNotExists();
}
(uint256 staked, , uint256 shares, , , ) = getNftInfo(_tokenId);
uint256 level = nftData.getLevelCapped(staked, nft[_tokenId].tier);
NftInfo storage _nft = nft[_tokenId];
return
nftData.tokenUriTraits(
_tokenId,
level,
_nft.tier,
staked,
shares,
_nft.encodedAttributes,
_nft.lockPeriod + startTime,
initCompleted,
imageFolder
);
}
/****
**** EXTERNAL VIEW
****//**
* @notice Aggregates the information of a given NFT.
* @dev This function can be used to get all relevant data at once so that you do not have to do many blockchain calls in sequence.
* @param _tokenId The id of the NFT.
* @return _staked The amount of tokens staked in an NFT.
* @return _stakingAllowance The total amount of tokens you are still allowed to stake.
* @return _shares The shares of the NFT.
* @return _level The level of the NFT.
* @return _tier The tier of the NFT.
* @return _lockPeriod The period the NFT is locked for.
**/functiongetNftInfo(uint256 _tokenId
)
publicviewreturns (uint256 _staked,
uint256 _stakingAllowance,
uint256 _shares,
uint256 _level,
uint256 _tier,
uint256 _lockPeriod
)
{
if (!_exists(_tokenId)) {
revert NftNotExists();
}
NftInfo storage _nft = nft[_tokenId];
uint256 currentMonth = getCurrentMonth();
for (uint256 i = currentMonth +1; i >=1; --i) {
NftInfoMonth storage _nftMonth = _nft.monthly[i -1];
if (_nftMonth.staked >0|| _nftMonth.hasWithdrawn ==1) {
_staked = _nftMonth.staked;
break;
}
}
for (uint256 i = currentMonth +1; i >=1; --i) {
NftInfoMonth storage _nftMonth = _nft.monthly[i -1];
if (_nftMonth.shares >0|| (_nftMonth.hasWithdrawn ==1&& _nftMonth.staked ==0)) {
_shares = _nftMonth.shares;
break;
}
}
_stakingAllowance = _getStakingAllowance(_tokenId, _staked);
_tier = _nft.tier;
_level = nftData.getLevelCapped(_staked, _tier);
_lockPeriod = _nft.lockPeriod;
return (_staked, _stakingAllowance, _shares, _level, _tier, _lockPeriod);
}
/**
* @notice Gets the token ids that a wallet owns.
* @dev It loops over the tokenIds array and finds the owners of each id and then returns the array of ids.
* @param _nftOwner The address of the owner.
* @return tokenIds The array of token ids that the owner has.
**/functiongetIdsFromWallet(address _nftOwner) externalviewreturns (uint256[] memory tokenIds) {
tokenIds =newuint256[](balanceOf(_nftOwner));
uint256 counter =0;
for (uint256 i =1; i <= nftIdCounter; ++i) {
if (_exists(i) && ownerOf(i) == _nftOwner) {
tokenIds[counter] = i;
counter++;
}
}
return tokenIds;
}
/**
* @notice Aggregate function that returns the total shares, total balance and total minimum balance for a specific month.
* @dev The function loops back to prior months if the current month has no data.
* @param _month The specific month.
* @return _totalShares The total shares for that month.
* @return _totalBalance The total staked tokens that month.
* @return _minimumBalance The minimum total staked tokens that month.
**/functiongetTotals(uint256 _month
) externalviewreturns (uint256 _totalShares, uint256 _totalBalance, uint256 _minimumBalance) {
_totalShares = monthlyTotal[_month].totalShares;
_totalBalance = monthlyTotal[_month].totalStaked;
_minimumBalance = monthlyTotal[_month].minimumStaked;
if (_month >0&& _totalBalance ==0) {
for (uint256 i = _month +1; i >=1; --i) {
NftTotalMonth storage _monthlyTotal = monthlyTotal[i -1];
if (_monthlyTotal.totalStaked >0|| i <=1) {
_totalBalance = _monthlyTotal.totalStaked;
_minimumBalance = _monthlyTotal.minimumStaked;
break;
}
}
}
if (_month >0&& _totalShares ==0) {
for (uint256 i = _month +1; i >=1; --i) {
NftTotalMonth storage _monthlyTotal = monthlyTotal[i -1];
if (_monthlyTotal.totalShares >0|| i <=1) {
_totalShares = _monthlyTotal.totalShares;
break;
}
}
}
}
/****
**** private VIEW
****//**
* @notice The _checkAllowance function checks if an amount does not go over the staking allowance for a specific NFT.
* @param _tokenId The id of the NFT.
* @param _amount The amount of tokens that should be staked.
**/function_checkAllowance(uint256 _tokenId, uint256 _amount) privateview{
if (msg.sender!= ownerOf(_tokenId)) {
revert NftNotOwned();
}
(uint256 stakedAmount, ) = getStaked(_tokenId, getCurrentMonth());
if (nftData.getLevel(stakedAmount) < MAX_LEVEL) {
uint256 allowance = _getStakingAllowance(_tokenId, stakedAmount);
if (_amount > allowance) {
revert AllowanceExceeded(allowance);
}
}
}
/**
* @notice How much tokens you are allowed to stake into a specific tokenId.
* @dev It finds the allowance for the passed time since the startTime and calculates how much tokens you are allowed to stake for each.
* After it checks how much you have staked already this month and subtracts that.
* @param _tokenId The id of the nft for which you want to know the total allowance.
* @return stakingAllowance The total amount of tokens you are currently allowed to stake.
**/function_getStakingAllowance(uint256 _tokenId, uint256 _staked) privateviewreturns (uint256 stakingAllowance) {
if (startTime >block.timestamp) return0;
NftInfo storage _nft = nft[_tokenId];
uint256 allowance = (((((block.timestamp- startTime) /1days) * DAILY_STAKING_ALLOWANCE) +
DAILY_STAKING_ALLOWANCE) * ONE_E18) + _nft.stakedAtMint;
if (allowance > _staked) {
stakingAllowance = allowance - _staked;
} else {
return0;
}
}
/**
* @notice Returns the total shares from all NFTs.
* @dev The function loops back to the last month the total shares where updated.
* @param _month The month to look at, and from which to loop back.
* @return sharesTotal The total amount of shares.
**/function_getTotalShares(uint256 _month) privateviewreturns (uint256 sharesTotal) {
for (uint256 i = _month +1; i >0&& sharesTotal ==0; --i) {
sharesTotal = monthlyTotal[i -1].totalShares;
}
}
/**
* @notice Hashes the data from a voucher that includes the information to mint an NFT.
* @dev This is done according to the EIP-712 standard. So that it is secure and takes into account context information such as chainId and contract address.
* @param _voucherId Id of the Voucher
* @param _type time mint type of the NFT
* @param _lockPeriod time the NFT will remain locked
* @param _account address of the minter
* @param _amountToStake amount of tokens staked directly into the NFT
**/function_hashMint(uint256 _voucherId,
uint256 _type,
uint256 _lockPeriod,
address _account,
uint256 _amountToStake
) privateviewreturns (bytes32) {
return
_hashTypedDataV4(
keccak256(
abi.encode(
keccak256(
"NFT(uint256 voucherId,uint256 type,uint256 lockPeriod,address account,uint256 amountToStake)"
),
_voucherId,
_type,
_lockPeriod,
_account,
_amountToStake
)
)
);
}
/**
* @notice Checks with a digest and a signature if the account that signed the digest matches the voucherSigner.
* @param _digest The digest that is checked, this is the hash of messages that included the the typed data.
* @param _signature The signature that is checked, this is the signature of the person that signed the digest.
* @return a bool that is true if the account that signed the digest matches the voucherSigner.
**/function_verify(bytes32 _digest, bytesmemory _signature, address _voucherSigner) privatepurereturns (bool) {
return ECDSA.recover(_digest, _signature) == _voucherSigner;
}
}
// SPDX-License-Identifier: MITpragmasolidity 0.8.22;import"@openzeppelin/contracts/utils/Strings.sol";
import"base64-sol/base64.sol";
import"./GenesisNftAttributes.sol";
errorAddressInvalid();
errorLevelInvalid();
contractGenesisNftData{
GenesisNftAttributes publicimmutable attributes;
uint256privateconstant ONE_E18 =10**18;
uint256privateconstant FOUR_E18 =4*10**18;
uint256privateconstant MAX_LEVEL =80;
/**
* @notice The formula is: (175 + level * 2.5) * ( 3 + floor(level / 10))
* This formula should be run and accumulated for each level up to the current level and then divided by 4 to fit into a uint16
*/uint16[MAX_LEVEL] private levels = [
131,
264,
399,
535,
674,
814,
957,
1101,
1247,
1395,
1595,
1797,
2002,
2209,
2419,
2631,
2846,
3063,
3283,
3505,
3786,
4070,
4357,
4647,
4941,
5237,
5537,
5840,
6146,
6455,
6830,
7208,
7590,
7976,
8366,
8759,
9156,
9557,
9962,
10370,
10851,
11336,
11826,
12319,
12818,
13320,
13828,
14339,
14855,
15375,
15975,
16579,
17189,
17803,
18423,
19047,
19677,
20311,
20951,
21595,
22326,
23062,
23804,
24551,
25305,
26063,
26828,
27598,
28374,
29155,
30030,
30910,
31797,
32690,
33590,
34495,
35407,
36325,
37250,
38180
];
/**
* @notice The formula is: (level * 12 + levelCost) / 500
*/uint16[81] public shares = [
1,
2,
3,
4,
5,
7,
8,
9,
10,
11,
13,
15,
16,
18,
20,
21,
23,
25,
27,
28,
31,
33,
35,
38,
40,
43,
45,
47,
50,
52,
55,
58,
61,
65,
68,
71,
74,
77,
81,
84,
88,
92,
96,
100,
104,
108,
112,
116,
120,
124,
129,
134,
139,
144,
149,
154,
159,
164,
169,
174,
180,
186,
192,
198,
204,
210,
216,
222,
229,
235,
242,
249,
256,
263,
270,
278,
285,
292,
300,
307,
320
];
constructor(address _attributesAddress) {
if (_attributesAddress ==address(0)) {
revert AddressInvalid();
}
attributes = GenesisNftAttributes(_attributesAddress);
}
/**
* @notice Returns the level of the NFT based on the amount of tokens staked.
* @dev Splits 80 into 4 seconds of 20, then splits 20 into 4 sections of 5, then loops over the remaining 5 to find the correct level from the XP array.
* @param _staked The amount of tokens staked.
* @return The level of the NFT.
**/functiongetLevel(uint256 _staked) publicviewreturns (uint256) {
for (uint256 s1 =1; s1 <=4; ++s1) {
if (_staked <uint256(levels[s1 *20-1]) * FOUR_E18) {
for (uint256 s2 =1; s2 <=4; ++s2) {
if (_staked <=uint256(levels[(s1 -1) *20+ (s2) *5-1]) * FOUR_E18) {
uint256 ls = (s1 -1) *20+ (s2 -1) *5;
for (uint256 level = ls; level <= ls +4; ++level) {
if (_staked <uint256(levels[level]) * FOUR_E18) {
return level;
}
}
}
}
}
}
return MAX_LEVEL;
}
/**
* @notice Returns the level of the NFT based on the amount of tokens staked capped by the tier.
* @dev Gets the level using getLevel, but then caps it based on the tier as the level does not increase if the tier is not evolved.
* @param _staked The amount of tokens staked.
* @param _tier The tier of the NFT.
* @return The level of the NFT.
**/functiongetLevelCapped(uint256 _staked, uint256 _tier) externalviewreturns (uint256) {
uint256 level = getLevel(_staked);
if ((_tier +1) *10< level) {
return (_tier +1) *10;
}
return level;
}
/**
* @notice Returns the amount of tokens required to reach a specific level.
* @dev Gets the tokens from the level array and multiplies it by 4e18.
* @param _level The level to get the tokens required for.
* @return The amount of tokens required to reach the level.
**/functiongetTokensRequiredForLevel(uint256 _level) externalviewreturns (uint256) {
if (_level <1) {
return0;
} elseif (_level > MAX_LEVEL) {
revert LevelInvalid();
}
return levels[_level -1] * FOUR_E18;
}
/**
* @notice Returns the amount of tokens required to reach a specific tier.
* @dev Gets the tokens required for the specified tier from the level array and multiplies it by 4e18.
* @param _tier The tier to get the tokens required to reach it for.
* @return The amount of tokens required to reach the tier.
**/functiongetTokensRequiredForTier(uint256 _tier) externalviewreturns (uint256) {
if (_tier ==0) {
return0;
}
if (_tier *10<= levels.length) {
return levels[(_tier *10) -1] * FOUR_E18;
} else {
return levels[levels.length-1] * FOUR_E18;
}
}
/**
* @notice splits a bytes into an array of uint8's.
* @param _b The bytes to split.
* @return _res The array of uint8s's.
**/functionsplitBytes(bytesmemory _b) publicpurereturns (uint8[11] memory _res) {
for (uint256 i =0; i <11; i++) {
_res[i] =uint8(bytes1(_b[i]));
}
}
/**
* @notice Converts bytes32 to a string.
* @param _bytes32 The bytes to convert.
* @return The string representation of the bytes32.
**/functionbytes32ToString(bytes32 _bytes32) publicpurereturns (stringmemory) {
uint8 i =0;
while (i <32&& _bytes32[i] !=0) {
i++;
}
bytesmemory bytesArray =newbytes(i);
for (i =0; i <32&& _bytes32[i] !=0; i++) {
bytesArray[i] = _bytes32[i];
}
returnstring(bytesArray);
}
/**
* @notice Decodes the attributes from the encoded attributes bytes32.
* @param _encodedAttributes The encoded attributes bytes.
* @return _attributes The array of attributes.
**/functiondecodeAttributes(bytes32 _encodedAttributes,
uint256 _initCompleted
) publicviewreturns (string[11] memory _attributes) {
if (_initCompleted >0) {
uint8[11] memory i = splitBytes(abi.encode(_encodedAttributes));
_attributes[0] = bytes32ToString(attributes.gender(i[0]));
_attributes[1] = bytes32ToString(attributes.body(i[1]));
_attributes[2] = bytes32ToString(attributes.profession(i[2]));
_attributes[3] = bytes32ToString(attributes.accessories(i[3]));
_attributes[4] = bytes32ToString(attributes.background(i[4]));
_attributes[5] = bytes32ToString(attributes.eyes(i[5]));
_attributes[6] = bytes32ToString(attributes.hair(i[6]));
_attributes[7] = bytes32ToString(attributes.mouth(i[7]));
_attributes[8] = bytes32ToString(attributes.complexion(i[8]));
_attributes[9] = bytes32ToString(attributes.item(i[9]));
_attributes[10] = bytes32ToString(attributes.clothes(i[10]));
} else {
_attributes = ["?", "?", "?", "?", "?", "?", "?", "?", "?", "?", "?"];
}
}
/**
* @notice Returns the token URI for the Genesis NFT.
* @dev Returns the token URI for the Genesis NFT.
* @param _level The level of the NFT.
* @param _tier The tier of the NFT.
* @param _staked The amount of tokens staked.
* @param _shares The amount of shares.
* @param _encodedAttributes The encoded attributes string.
* @param _unlockTime The unlock time of the NFT.
* @param _initCompleted Weather the initialization of the NFT has completed.
* @param _imageUri The image URI of the NFT.
* @return The token URI for the Genesis NFT.
**/functiontokenUriTraits(uint256 _tokenId,
uint256 _level,
uint256 _tier,
uint256 _staked,
uint256 _shares,
bytes32 _encodedAttributes,
uint256 _unlockTime,
uint256 _initCompleted,
stringcalldata _imageUri
) externalviewreturns (stringmemory) {
returnstring(
abi.encodePacked(
"data:application/json;base64,",
Base64.encode(
bytes(
abi.encodePacked(
part1(_tokenId, _level, _tier, _staked, _imageUri, _initCompleted),
part2(_encodedAttributes, _initCompleted, _shares, _unlockTime)
)
)
)
)
);
}
functionpart1(uint256 _tokenId,
uint256 _level,
uint256 _tier,
uint256 _staked,
stringcalldata _imageUri,
uint256 _initCompleted
) privatepurereturns (stringmemory) {
stringmemory img = _getImageUri(_tokenId, _imageUri, _initCompleted);
returnstring(
abi.encodePacked(
'{"name":"Work X Genesis #',
Strings.toString(_tokenId),
'", "description":"This Work X Genesis NFT was obtained by being an early Work X adopter."',
img,
',"attributes": [{"trait_type":"Level","value":',
Strings.toString(_level),
'},{"trait_type":"Tier","value":',
Strings.toString(_tier),
'},{"trait_type":"$WORK Staked","value":',
Strings.toString(_staked / ONE_E18)
)
);
}
functionpart2(bytes32 _encodedAttributes,
uint256 _initCompleted,
uint256 _shares,
uint256 _unlockTime
) privateviewreturns (stringmemory) {
string[11] memory attr = decodeAttributes(_encodedAttributes, _initCompleted);
stringmemory p1 =string(
abi.encodePacked(
'},{"trait_type":"Gender","value":"',
attr[0],
'"},{"trait_type":"Body","value":"',
attr[1],
'"},{"trait_type":"Profession","value":"',
attr[2],
'"},{"trait_type":"Accessories","value":"',
attr[3],
'"},{"trait_type":"Background","value":"',
attr[4],
'"},{"trait_type":"Eyes","value":"',
attr[5]
)
);
stringmemory p2 =string(
abi.encodePacked(
'"},{"trait_type":"Hair","value":"',
attr[6],
'"},{"trait_type":"Mouth","value":"',
attr[7],
'"},{"trait_type":"Complexion","value":"',
attr[8],
'"},{"trait_type":"Item","value":"',
attr[9],
'"},{"trait_type":"Clothes","value":"',
attr[10]
)
);
stringmemory p3 =string(
abi.encodePacked(
'"},{"display_type": "boost_number", "trait_type": "Shares","value":',
Strings.toString(_shares),
'},{"display_type": "date", "trait_type": "Tokens Unlock","value":',
Strings.toString(_unlockTime),
"}]}"
)
);
returnstring(abi.encodePacked(p1, p2, p3));
}
function_getImageUri(uint256 _tokenId,
stringcalldata _image,
uint256 _initCompleted
) privatepurereturns (stringmemory img) {
if (_initCompleted >0) {
img =string.concat(',"image":"', _image, Strings.toString(_tokenId), '.png"');
} else {
img =',"image": "https://content.workx.io/video/Work-X-Lockup.mp4"';
}
}
}
Contract Source Code
File 10 of 25: IERC165.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts v4.4.1 (utils/introspection/IERC165.sol)pragmasolidity ^0.8.0;/**
* @dev Interface of the ERC165 standard, as defined in the
* https://eips.ethereum.org/EIPS/eip-165[EIP].
*
* Implementers can declare support of contract interfaces, which can then be
* queried by others ({ERC165Checker}).
*
* For an implementation, see {ERC165}.
*/interfaceIERC165{
/**
* @dev Returns true if this contract implements the interface defined by
* `interfaceId`. See the corresponding
* https://eips.ethereum.org/EIPS/eip-165#how-interfaces-are-identified[EIP section]
* to learn more about how these ids are created.
*
* This function call must use less than 30 000 gas.
*/functionsupportsInterface(bytes4 interfaceId) externalviewreturns (bool);
}
Contract Source Code
File 11 of 25: IERC20.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC20/IERC20.sol)pragmasolidity ^0.8.0;/**
* @dev Interface of the ERC20 standard as defined in the EIP.
*/interfaceIERC20{
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/eventTransfer(addressindexedfrom, addressindexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/eventApproval(addressindexed owner, addressindexed spender, uint256 value);
/**
* @dev Returns the amount of tokens in existence.
*/functiontotalSupply() externalviewreturns (uint256);
/**
* @dev Returns the amount of tokens owned by `account`.
*/functionbalanceOf(address account) externalviewreturns (uint256);
/**
* @dev Moves `amount` tokens from the caller's account to `to`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/functiontransfer(address to, uint256 amount) externalreturns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/functionallowance(address owner, address spender) externalviewreturns (uint256);
/**
* @dev Sets `amount` as the allowance of `spender` over the caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/functionapprove(address spender, uint256 amount) externalreturns (bool);
/**
* @dev Moves `amount` tokens from `from` to `to` using the
* allowance mechanism. `amount` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/functiontransferFrom(addressfrom, address to, uint256 amount) externalreturns (bool);
}
Contract Source Code
File 12 of 25: IERC4906.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (interfaces/IERC4906.sol)pragmasolidity ^0.8.0;import"./IERC165.sol";
import"./IERC721.sol";
/// @title EIP-721 Metadata Update ExtensioninterfaceIERC4906isIERC165, IERC721{
/// @dev This event emits when the metadata of a token is changed./// So that the third-party platforms such as NFT market could/// timely update the images and related attributes of the NFT.eventMetadataUpdate(uint256 _tokenId);
/// @dev This event emits when the metadata of a range of tokens is changed./// So that the third-party platforms such as NFT market could/// timely update the images and related attributes of the NFTs.eventBatchMetadataUpdate(uint256 _fromTokenId, uint256 _toTokenId);
}
Contract Source Code
File 13 of 25: IERC5267.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (interfaces/IERC5267.sol)pragmasolidity ^0.8.0;interfaceIERC5267{
/**
* @dev MAY be emitted to signal that the domain could have changed.
*/eventEIP712DomainChanged();
/**
* @dev returns the fields and values that describe the domain separator used by this contract for EIP-712
* signature.
*/functioneip712Domain()
externalviewreturns (bytes1 fields,
stringmemory name,
stringmemory version,
uint256 chainId,
address verifyingContract,
bytes32 salt,
uint256[] memory extensions
);
}
Contract Source Code
File 14 of 25: IERC721.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC721/IERC721.sol)pragmasolidity ^0.8.0;import"../../utils/introspection/IERC165.sol";
/**
* @dev Required interface of an ERC721 compliant contract.
*/interfaceIERC721isIERC165{
/**
* @dev Emitted when `tokenId` token is transferred from `from` to `to`.
*/eventTransfer(addressindexedfrom, addressindexed to, uint256indexed tokenId);
/**
* @dev Emitted when `owner` enables `approved` to manage the `tokenId` token.
*/eventApproval(addressindexed owner, addressindexed approved, uint256indexed tokenId);
/**
* @dev Emitted when `owner` enables or disables (`approved`) `operator` to manage all of its assets.
*/eventApprovalForAll(addressindexed owner, addressindexed operator, bool approved);
/**
* @dev Returns the number of tokens in ``owner``'s account.
*/functionbalanceOf(address owner) externalviewreturns (uint256 balance);
/**
* @dev Returns the owner of the `tokenId` token.
*
* Requirements:
*
* - `tokenId` must exist.
*/functionownerOf(uint256 tokenId) externalviewreturns (address owner);
/**
* @dev Safely transfers `tokenId` token from `from` to `to`.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `tokenId` token must exist and be owned by `from`.
* - If the caller is not `from`, it must be approved to move this token by either {approve} or {setApprovalForAll}.
* - If `to` refers to a smart contract, it must implement {IERC721Receiver-onERC721Received}, which is called upon a safe transfer.
*
* Emits a {Transfer} event.
*/functionsafeTransferFrom(addressfrom, address to, uint256 tokenId, bytescalldata data) external;
/**
* @dev Safely transfers `tokenId` token from `from` to `to`, checking first that contract recipients
* are aware of the ERC721 protocol to prevent tokens from being forever locked.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `tokenId` token must exist and be owned by `from`.
* - If the caller is not `from`, it must have been allowed to move this token by either {approve} or {setApprovalForAll}.
* - If `to` refers to a smart contract, it must implement {IERC721Receiver-onERC721Received}, which is called upon a safe transfer.
*
* Emits a {Transfer} event.
*/functionsafeTransferFrom(addressfrom, address to, uint256 tokenId) external;
/**
* @dev Transfers `tokenId` token from `from` to `to`.
*
* WARNING: Note that the caller is responsible to confirm that the recipient is capable of receiving ERC721
* or else they may be permanently lost. Usage of {safeTransferFrom} prevents loss, though the caller must
* understand this adds an external call which potentially creates a reentrancy vulnerability.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `tokenId` token must be owned by `from`.
* - If the caller is not `from`, it must be approved to move this token by either {approve} or {setApprovalForAll}.
*
* Emits a {Transfer} event.
*/functiontransferFrom(addressfrom, address to, uint256 tokenId) external;
/**
* @dev Gives permission to `to` to transfer `tokenId` token to another account.
* The approval is cleared when the token is transferred.
*
* Only a single account can be approved at a time, so approving the zero address clears previous approvals.
*
* Requirements:
*
* - The caller must own the token or be an approved operator.
* - `tokenId` must exist.
*
* Emits an {Approval} event.
*/functionapprove(address to, uint256 tokenId) external;
/**
* @dev Approve or remove `operator` as an operator for the caller.
* Operators can call {transferFrom} or {safeTransferFrom} for any token owned by the caller.
*
* Requirements:
*
* - The `operator` cannot be the caller.
*
* Emits an {ApprovalForAll} event.
*/functionsetApprovalForAll(address operator, bool approved) external;
/**
* @dev Returns the account approved for `tokenId` token.
*
* Requirements:
*
* - `tokenId` must exist.
*/functiongetApproved(uint256 tokenId) externalviewreturns (address operator);
/**
* @dev Returns if the `operator` is allowed to manage all of the assets of `owner`.
*
* See {setApprovalForAll}
*/functionisApprovedForAll(address owner, address operator) externalviewreturns (bool);
}
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.6.0) (token/ERC721/IERC721Receiver.sol)pragmasolidity ^0.8.0;/**
* @title ERC721 token receiver interface
* @dev Interface for any contract that wants to support safeTransfers
* from ERC721 asset contracts.
*/interfaceIERC721Receiver{
/**
* @dev Whenever an {IERC721} `tokenId` token is transferred to this contract via {IERC721-safeTransferFrom}
* by `operator` from `from`, this function is called.
*
* It must return its Solidity selector to confirm the token transfer.
* If any other value is returned or the interface is not implemented by the recipient, the transfer will be reverted.
*
* The selector can be obtained in Solidity with `IERC721Receiver.onERC721Received.selector`.
*/functiononERC721Received(address operator,
addressfrom,
uint256 tokenId,
bytescalldata data
) externalreturns (bytes4);
}
// SPDX-License-Identifier: MITpragmasolidity 0.8.22;interfaceIWorkToken{
functionmint(address to, uint256 amount) external;
functiontransfer(address to, uint256 amount) externalreturns (bool);
functiontransferFrom(addressfrom, address to, uint256 amount) externalreturns (bool);
functionbalanceOf(address account) externalreturns (uint256);
}
Contract Source Code
File 19 of 25: Math.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/math/Math.sol)pragmasolidity ^0.8.0;/**
* @dev Standard math utilities missing in the Solidity language.
*/libraryMath{
enumRounding {
Down, // Toward negative infinity
Up, // Toward infinity
Zero // Toward zero
}
/**
* @dev Returns the largest of two numbers.
*/functionmax(uint256 a, uint256 b) internalpurereturns (uint256) {
return a > b ? a : b;
}
/**
* @dev Returns the smallest of two numbers.
*/functionmin(uint256 a, uint256 b) internalpurereturns (uint256) {
return a < b ? a : b;
}
/**
* @dev Returns the average of two numbers. The result is rounded towards
* zero.
*/functionaverage(uint256 a, uint256 b) internalpurereturns (uint256) {
// (a + b) / 2 can overflow.return (a & b) + (a ^ b) /2;
}
/**
* @dev Returns the ceiling of the division of two numbers.
*
* This differs from standard division with `/` in that it rounds up instead
* of rounding down.
*/functionceilDiv(uint256 a, uint256 b) internalpurereturns (uint256) {
// (a + b - 1) / b can overflow on addition, so we distribute.return a ==0 ? 0 : (a -1) / b +1;
}
/**
* @notice Calculates floor(x * y / denominator) with full precision. Throws if result overflows a uint256 or denominator == 0
* @dev Original credit to Remco Bloemen under MIT license (https://xn--2-umb.com/21/muldiv)
* with further edits by Uniswap Labs also under MIT license.
*/functionmulDiv(uint256 x, uint256 y, uint256 denominator) internalpurereturns (uint256 result) {
unchecked {
// 512-bit multiply [prod1 prod0] = x * y. Compute the product mod 2^256 and mod 2^256 - 1, then use// use the Chinese Remainder Theorem to reconstruct the 512 bit result. The result is stored in two 256// variables such that product = prod1 * 2^256 + prod0.uint256 prod0; // Least significant 256 bits of the productuint256 prod1; // Most significant 256 bits of the productassembly {
let mm :=mulmod(x, y, not(0))
prod0 :=mul(x, y)
prod1 :=sub(sub(mm, prod0), lt(mm, prod0))
}
// Handle non-overflow cases, 256 by 256 division.if (prod1 ==0) {
// Solidity will revert if denominator == 0, unlike the div opcode on its own.// The surrounding unchecked block does not change this fact.// See https://docs.soliditylang.org/en/latest/control-structures.html#checked-or-unchecked-arithmetic.return prod0 / denominator;
}
// Make sure the result is less than 2^256. Also prevents denominator == 0.require(denominator > prod1, "Math: mulDiv overflow");
///////////////////////////////////////////////// 512 by 256 division.///////////////////////////////////////////////// Make division exact by subtracting the remainder from [prod1 prod0].uint256 remainder;
assembly {
// Compute remainder using mulmod.
remainder :=mulmod(x, y, denominator)
// Subtract 256 bit number from 512 bit number.
prod1 :=sub(prod1, gt(remainder, prod0))
prod0 :=sub(prod0, remainder)
}
// Factor powers of two out of denominator and compute largest power of two divisor of denominator. Always >= 1.// See https://cs.stackexchange.com/q/138556/92363.// Does not overflow because the denominator cannot be zero at this stage in the function.uint256 twos = denominator & (~denominator +1);
assembly {
// Divide denominator by twos.
denominator :=div(denominator, twos)
// Divide [prod1 prod0] by twos.
prod0 :=div(prod0, twos)
// Flip twos such that it is 2^256 / twos. If twos is zero, then it becomes one.
twos :=add(div(sub(0, twos), twos), 1)
}
// Shift in bits from prod1 into prod0.
prod0 |= prod1 * twos;
// Invert denominator mod 2^256. Now that denominator is an odd number, it has an inverse modulo 2^256 such// that denominator * inv = 1 mod 2^256. Compute the inverse by starting with a seed that is correct for// four bits. That is, denominator * inv = 1 mod 2^4.uint256 inverse = (3* denominator) ^2;
// Use the Newton-Raphson iteration to improve the precision. Thanks to Hensel's lifting lemma, this also works// in modular arithmetic, doubling the correct bits in each step.
inverse *=2- denominator * inverse; // inverse mod 2^8
inverse *=2- denominator * inverse; // inverse mod 2^16
inverse *=2- denominator * inverse; // inverse mod 2^32
inverse *=2- denominator * inverse; // inverse mod 2^64
inverse *=2- denominator * inverse; // inverse mod 2^128
inverse *=2- denominator * inverse; // inverse mod 2^256// Because the division is now exact we can divide by multiplying with the modular inverse of denominator.// This will give us the correct result modulo 2^256. Since the preconditions guarantee that the outcome is// less than 2^256, this is the final result. We don't need to compute the high bits of the result and prod1// is no longer required.
result = prod0 * inverse;
return result;
}
}
/**
* @notice Calculates x * y / denominator with full precision, following the selected rounding direction.
*/functionmulDiv(uint256 x, uint256 y, uint256 denominator, Rounding rounding) internalpurereturns (uint256) {
uint256 result = mulDiv(x, y, denominator);
if (rounding == Rounding.Up &&mulmod(x, y, denominator) >0) {
result +=1;
}
return result;
}
/**
* @dev Returns the square root of a number. If the number is not a perfect square, the value is rounded down.
*
* Inspired by Henry S. Warren, Jr.'s "Hacker's Delight" (Chapter 11).
*/functionsqrt(uint256 a) internalpurereturns (uint256) {
if (a ==0) {
return0;
}
// For our first guess, we get the biggest power of 2 which is smaller than the square root of the target.//// We know that the "msb" (most significant bit) of our target number `a` is a power of 2 such that we have// `msb(a) <= a < 2*msb(a)`. This value can be written `msb(a)=2**k` with `k=log2(a)`.//// This can be rewritten `2**log2(a) <= a < 2**(log2(a) + 1)`// → `sqrt(2**k) <= sqrt(a) < sqrt(2**(k+1))`// → `2**(k/2) <= sqrt(a) < 2**((k+1)/2) <= 2**(k/2 + 1)`//// Consequently, `2**(log2(a) / 2)` is a good first approximation of `sqrt(a)` with at least 1 correct bit.uint256 result =1<< (log2(a) >>1);
// At this point `result` is an estimation with one bit of precision. We know the true value is a uint128,// since it is the square root of a uint256. Newton's method converges quadratically (precision doubles at// every iteration). We thus need at most 7 iteration to turn our partial result with one bit of precision// into the expected uint128 result.unchecked {
result = (result + a / result) >>1;
result = (result + a / result) >>1;
result = (result + a / result) >>1;
result = (result + a / result) >>1;
result = (result + a / result) >>1;
result = (result + a / result) >>1;
result = (result + a / result) >>1;
return min(result, a / result);
}
}
/**
* @notice Calculates sqrt(a), following the selected rounding direction.
*/functionsqrt(uint256 a, Rounding rounding) internalpurereturns (uint256) {
unchecked {
uint256 result = sqrt(a);
return result + (rounding == Rounding.Up && result * result < a ? 1 : 0);
}
}
/**
* @dev Return the log in base 2, rounded down, of a positive value.
* Returns 0 if given 0.
*/functionlog2(uint256 value) internalpurereturns (uint256) {
uint256 result =0;
unchecked {
if (value >>128>0) {
value >>=128;
result +=128;
}
if (value >>64>0) {
value >>=64;
result +=64;
}
if (value >>32>0) {
value >>=32;
result +=32;
}
if (value >>16>0) {
value >>=16;
result +=16;
}
if (value >>8>0) {
value >>=8;
result +=8;
}
if (value >>4>0) {
value >>=4;
result +=4;
}
if (value >>2>0) {
value >>=2;
result +=2;
}
if (value >>1>0) {
result +=1;
}
}
return result;
}
/**
* @dev Return the log in base 2, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/functionlog2(uint256 value, Rounding rounding) internalpurereturns (uint256) {
unchecked {
uint256 result =log2(value);
return result + (rounding == Rounding.Up &&1<< result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 10, rounded down, of a positive value.
* Returns 0 if given 0.
*/functionlog10(uint256 value) internalpurereturns (uint256) {
uint256 result =0;
unchecked {
if (value >=10**64) {
value /=10**64;
result +=64;
}
if (value >=10**32) {
value /=10**32;
result +=32;
}
if (value >=10**16) {
value /=10**16;
result +=16;
}
if (value >=10**8) {
value /=10**8;
result +=8;
}
if (value >=10**4) {
value /=10**4;
result +=4;
}
if (value >=10**2) {
value /=10**2;
result +=2;
}
if (value >=10**1) {
result +=1;
}
}
return result;
}
/**
* @dev Return the log in base 10, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/functionlog10(uint256 value, Rounding rounding) internalpurereturns (uint256) {
unchecked {
uint256 result = log10(value);
return result + (rounding == Rounding.Up &&10** result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 256, rounded down, of a positive value.
* Returns 0 if given 0.
*
* Adding one to the result gives the number of pairs of hex symbols needed to represent `value` as a hex string.
*/functionlog256(uint256 value) internalpurereturns (uint256) {
uint256 result =0;
unchecked {
if (value >>128>0) {
value >>=128;
result +=16;
}
if (value >>64>0) {
value >>=64;
result +=8;
}
if (value >>32>0) {
value >>=32;
result +=4;
}
if (value >>16>0) {
value >>=16;
result +=2;
}
if (value >>8>0) {
result +=1;
}
}
return result;
}
/**
* @dev Return the log in base 256, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/functionlog256(uint256 value, Rounding rounding) internalpurereturns (uint256) {
unchecked {
uint256 result = log256(value);
return result + (rounding == Rounding.Up &&1<< (result <<3) < value ? 1 : 0);
}
}
}
Contract Source Code
File 20 of 25: Ownable.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (access/Ownable.sol)pragmasolidity ^0.8.0;import"../utils/Context.sol";
/**
* @dev Contract module which provides a basic access control mechanism, where
* there is an account (an owner) that can be granted exclusive access to
* specific functions.
*
* By default, the owner account will be the one that deploys the contract. This
* can later be changed with {transferOwnership}.
*
* This module is used through inheritance. It will make available the modifier
* `onlyOwner`, which can be applied to your functions to restrict their use to
* the owner.
*/abstractcontractOwnableisContext{
addressprivate _owner;
eventOwnershipTransferred(addressindexed previousOwner, addressindexed newOwner);
/**
* @dev Initializes the contract setting the deployer as the initial owner.
*/constructor() {
_transferOwnership(_msgSender());
}
/**
* @dev Throws if called by any account other than the owner.
*/modifieronlyOwner() {
_checkOwner();
_;
}
/**
* @dev Returns the address of the current owner.
*/functionowner() publicviewvirtualreturns (address) {
return _owner;
}
/**
* @dev Throws if the sender is not the owner.
*/function_checkOwner() internalviewvirtual{
require(owner() == _msgSender(), "Ownable: caller is not the owner");
}
/**
* @dev Leaves the contract without owner. It will not be possible to call
* `onlyOwner` functions. Can only be called by the current owner.
*
* NOTE: Renouncing ownership will leave the contract without an owner,
* thereby disabling any functionality that is only available to the owner.
*/functionrenounceOwnership() publicvirtualonlyOwner{
_transferOwnership(address(0));
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Can only be called by the current owner.
*/functiontransferOwnership(address newOwner) publicvirtualonlyOwner{
require(newOwner !=address(0), "Ownable: new owner is the zero address");
_transferOwnership(newOwner);
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Internal function without access restriction.
*/function_transferOwnership(address newOwner) internalvirtual{
address oldOwner = _owner;
_owner = newOwner;
emit OwnershipTransferred(oldOwner, newOwner);
}
}
Contract Source Code
File 21 of 25: ShortStrings.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/ShortStrings.sol)pragmasolidity ^0.8.8;import"./StorageSlot.sol";
// | string | 0xAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA |// | length | 0x BB |type ShortString isbytes32;
/**
* @dev This library provides functions to convert short memory strings
* into a `ShortString` type that can be used as an immutable variable.
*
* Strings of arbitrary length can be optimized using this library if
* they are short enough (up to 31 bytes) by packing them with their
* length (1 byte) in a single EVM word (32 bytes). Additionally, a
* fallback mechanism can be used for every other case.
*
* Usage example:
*
* ```solidity
* contract Named {
* using ShortStrings for *;
*
* ShortString private immutable _name;
* string private _nameFallback;
*
* constructor(string memory contractName) {
* _name = contractName.toShortStringWithFallback(_nameFallback);
* }
*
* function name() external view returns (string memory) {
* return _name.toStringWithFallback(_nameFallback);
* }
* }
* ```
*/libraryShortStrings{
// Used as an identifier for strings longer than 31 bytes.bytes32privateconstant _FALLBACK_SENTINEL =0x00000000000000000000000000000000000000000000000000000000000000FF;
errorStringTooLong(string str);
errorInvalidShortString();
/**
* @dev Encode a string of at most 31 chars into a `ShortString`.
*
* This will trigger a `StringTooLong` error is the input string is too long.
*/functiontoShortString(stringmemory str) internalpurereturns (ShortString) {
bytesmemory bstr =bytes(str);
if (bstr.length>31) {
revert StringTooLong(str);
}
return ShortString.wrap(bytes32(uint256(bytes32(bstr)) | bstr.length));
}
/**
* @dev Decode a `ShortString` back to a "normal" string.
*/functiontoString(ShortString sstr) internalpurereturns (stringmemory) {
uint256 len = byteLength(sstr);
// using `new string(len)` would work locally but is not memory safe.stringmemory str =newstring(32);
/// @solidity memory-safe-assemblyassembly {
mstore(str, len)
mstore(add(str, 0x20), sstr)
}
return str;
}
/**
* @dev Return the length of a `ShortString`.
*/functionbyteLength(ShortString sstr) internalpurereturns (uint256) {
uint256 result =uint256(ShortString.unwrap(sstr)) &0xFF;
if (result >31) {
revert InvalidShortString();
}
return result;
}
/**
* @dev Encode a string into a `ShortString`, or write it to storage if it is too long.
*/functiontoShortStringWithFallback(stringmemory value, stringstorage store) internalreturns (ShortString) {
if (bytes(value).length<32) {
return toShortString(value);
} else {
StorageSlot.getStringSlot(store).value= value;
return ShortString.wrap(_FALLBACK_SENTINEL);
}
}
/**
* @dev Decode a string that was encoded to `ShortString` or written to storage using {setWithFallback}.
*/functiontoStringWithFallback(ShortString value, stringstorage store) internalpurereturns (stringmemory) {
if (ShortString.unwrap(value) != _FALLBACK_SENTINEL) {
return toString(value);
} else {
return store;
}
}
/**
* @dev Return the length of a string that was encoded to `ShortString` or written to storage using {setWithFallback}.
*
* WARNING: This will return the "byte length" of the string. This may not reflect the actual length in terms of
* actual characters as the UTF-8 encoding of a single character can span over multiple bytes.
*/functionbyteLengthWithFallback(ShortString value, stringstorage store) internalviewreturns (uint256) {
if (ShortString.unwrap(value) != _FALLBACK_SENTINEL) {
return byteLength(value);
} else {
returnbytes(store).length;
}
}
}
Contract Source Code
File 22 of 25: SignedMath.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.8.0) (utils/math/SignedMath.sol)pragmasolidity ^0.8.0;/**
* @dev Standard signed math utilities missing in the Solidity language.
*/librarySignedMath{
/**
* @dev Returns the largest of two signed numbers.
*/functionmax(int256 a, int256 b) internalpurereturns (int256) {
return a > b ? a : b;
}
/**
* @dev Returns the smallest of two signed numbers.
*/functionmin(int256 a, int256 b) internalpurereturns (int256) {
return a < b ? a : b;
}
/**
* @dev Returns the average of two signed numbers without overflow.
* The result is rounded towards zero.
*/functionaverage(int256 a, int256 b) internalpurereturns (int256) {
// Formula from the book "Hacker's Delight"int256 x = (a & b) + ((a ^ b) >>1);
return x + (int256(uint256(x) >>255) & (a ^ b));
}
/**
* @dev Returns the absolute unsigned value of a signed value.
*/functionabs(int256 n) internalpurereturns (uint256) {
unchecked {
// must be unchecked in order to support `n = type(int256).min`returnuint256(n >=0 ? n : -n);
}
}
}
Contract Source Code
File 23 of 25: StorageSlot.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/StorageSlot.sol)// This file was procedurally generated from scripts/generate/templates/StorageSlot.js.pragmasolidity ^0.8.0;/**
* @dev Library for reading and writing primitive types to specific storage slots.
*
* Storage slots are often used to avoid storage conflict when dealing with upgradeable contracts.
* This library helps with reading and writing to such slots without the need for inline assembly.
*
* The functions in this library return Slot structs that contain a `value` member that can be used to read or write.
*
* Example usage to set ERC1967 implementation slot:
* ```solidity
* contract ERC1967 {
* bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
*
* function _getImplementation() internal view returns (address) {
* return StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value;
* }
*
* function _setImplementation(address newImplementation) internal {
* require(Address.isContract(newImplementation), "ERC1967: new implementation is not a contract");
* StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
* }
* }
* ```
*
* _Available since v4.1 for `address`, `bool`, `bytes32`, `uint256`._
* _Available since v4.9 for `string`, `bytes`._
*/libraryStorageSlot{
structAddressSlot {
address value;
}
structBooleanSlot {
bool value;
}
structBytes32Slot {
bytes32 value;
}
structUint256Slot {
uint256 value;
}
structStringSlot {
string value;
}
structBytesSlot {
bytes value;
}
/**
* @dev Returns an `AddressSlot` with member `value` located at `slot`.
*/functiongetAddressSlot(bytes32 slot) internalpurereturns (AddressSlot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= slot
}
}
/**
* @dev Returns an `BooleanSlot` with member `value` located at `slot`.
*/functiongetBooleanSlot(bytes32 slot) internalpurereturns (BooleanSlot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= slot
}
}
/**
* @dev Returns an `Bytes32Slot` with member `value` located at `slot`.
*/functiongetBytes32Slot(bytes32 slot) internalpurereturns (Bytes32Slot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= slot
}
}
/**
* @dev Returns an `Uint256Slot` with member `value` located at `slot`.
*/functiongetUint256Slot(bytes32 slot) internalpurereturns (Uint256Slot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= slot
}
}
/**
* @dev Returns an `StringSlot` with member `value` located at `slot`.
*/functiongetStringSlot(bytes32 slot) internalpurereturns (StringSlot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= slot
}
}
/**
* @dev Returns an `StringSlot` representation of the string storage pointer `store`.
*/functiongetStringSlot(stringstorage store) internalpurereturns (StringSlot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= store.slot
}
}
/**
* @dev Returns an `BytesSlot` with member `value` located at `slot`.
*/functiongetBytesSlot(bytes32 slot) internalpurereturns (BytesSlot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= slot
}
}
/**
* @dev Returns an `BytesSlot` representation of the bytes storage pointer `store`.
*/functiongetBytesSlot(bytesstorage store) internalpurereturns (BytesSlot storage r) {
/// @solidity memory-safe-assemblyassembly {
r.slot:= store.slot
}
}
}
Contract Source Code
File 24 of 25: Strings.sol
// SPDX-License-Identifier: MIT// OpenZeppelin Contracts (last updated v4.9.0) (utils/Strings.sol)pragmasolidity ^0.8.0;import"./math/Math.sol";
import"./math/SignedMath.sol";
/**
* @dev String operations.
*/libraryStrings{
bytes16privateconstant _SYMBOLS ="0123456789abcdef";
uint8privateconstant _ADDRESS_LENGTH =20;
/**
* @dev Converts a `uint256` to its ASCII `string` decimal representation.
*/functiontoString(uint256 value) internalpurereturns (stringmemory) {
unchecked {
uint256 length = Math.log10(value) +1;
stringmemory buffer =newstring(length);
uint256 ptr;
/// @solidity memory-safe-assemblyassembly {
ptr :=add(buffer, add(32, length))
}
while (true) {
ptr--;
/// @solidity memory-safe-assemblyassembly {
mstore8(ptr, byte(mod(value, 10), _SYMBOLS))
}
value /=10;
if (value ==0) break;
}
return buffer;
}
}
/**
* @dev Converts a `int256` to its ASCII `string` decimal representation.
*/functiontoString(int256 value) internalpurereturns (stringmemory) {
returnstring(abi.encodePacked(value <0 ? "-" : "", toString(SignedMath.abs(value))));
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation.
*/functiontoHexString(uint256 value) internalpurereturns (stringmemory) {
unchecked {
return toHexString(value, Math.log256(value) +1);
}
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation with fixed length.
*/functiontoHexString(uint256 value, uint256 length) internalpurereturns (stringmemory) {
bytesmemory buffer =newbytes(2* length +2);
buffer[0] ="0";
buffer[1] ="x";
for (uint256 i =2* length +1; i >1; --i) {
buffer[i] = _SYMBOLS[value &0xf];
value >>=4;
}
require(value ==0, "Strings: hex length insufficient");
returnstring(buffer);
}
/**
* @dev Converts an `address` with fixed length of 20 bytes to its not checksummed ASCII `string` hexadecimal representation.
*/functiontoHexString(address addr) internalpurereturns (stringmemory) {
return toHexString(uint256(uint160(addr)), _ADDRESS_LENGTH);
}
/**
* @dev Returns true if the two strings are equal.
*/functionequal(stringmemory a, stringmemory b) internalpurereturns (bool) {
returnkeccak256(bytes(a)) ==keccak256(bytes(b));
}
}
Contract Source Code
File 25 of 25: base64.sol
// SPDX-License-Identifier: MITpragmasolidity >=0.6.0;/// @title Base64/// @author Brecht Devos - <brecht@loopring.org>/// @notice Provides functions for encoding/decoding base64libraryBase64{
stringinternalconstant TABLE_ENCODE ='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/';
bytesinternalconstant TABLE_DECODE =hex"0000000000000000000000000000000000000000000000000000000000000000"hex"00000000000000000000003e0000003f3435363738393a3b3c3d000000000000"hex"00000102030405060708090a0b0c0d0e0f101112131415161718190000000000"hex"001a1b1c1d1e1f202122232425262728292a2b2c2d2e2f303132330000000000";
functionencode(bytesmemory data) internalpurereturns (stringmemory) {
if (data.length==0) return'';
// load the table into memorystringmemory table = TABLE_ENCODE;
// multiply by 4/3 rounded upuint256 encodedLen =4* ((data.length+2) /3);
// add some extra buffer at the end required for the writingstringmemory result =newstring(encodedLen +32);
assembly {
// set the actual output lengthmstore(result, encodedLen)
// prepare the lookup tablelet tablePtr :=add(table, 1)
// input ptrlet dataPtr := data
let endPtr :=add(dataPtr, mload(data))
// result ptr, jump over lengthlet resultPtr :=add(result, 32)
// run over the input, 3 bytes at a timefor {} lt(dataPtr, endPtr) {}
{
// read 3 bytes
dataPtr :=add(dataPtr, 3)
let input :=mload(dataPtr)
// write 4 charactersmstore8(resultPtr, mload(add(tablePtr, and(shr(18, input), 0x3F))))
resultPtr :=add(resultPtr, 1)
mstore8(resultPtr, mload(add(tablePtr, and(shr(12, input), 0x3F))))
resultPtr :=add(resultPtr, 1)
mstore8(resultPtr, mload(add(tablePtr, and(shr( 6, input), 0x3F))))
resultPtr :=add(resultPtr, 1)
mstore8(resultPtr, mload(add(tablePtr, and( input, 0x3F))))
resultPtr :=add(resultPtr, 1)
}
// padding with '='switchmod(mload(data), 3)
case1 { mstore(sub(resultPtr, 2), shl(240, 0x3d3d)) }
case2 { mstore(sub(resultPtr, 1), shl(248, 0x3d)) }
}
return result;
}
functiondecode(stringmemory _data) internalpurereturns (bytesmemory) {
bytesmemory data =bytes(_data);
if (data.length==0) returnnewbytes(0);
require(data.length%4==0, "invalid base64 decoder input");
// load the table into memorybytesmemory table = TABLE_DECODE;
// every 4 characters represent 3 bytesuint256 decodedLen = (data.length/4) *3;
// add some extra buffer at the end required for the writingbytesmemory result =newbytes(decodedLen +32);
assembly {
// padding with '='let lastBytes :=mload(add(data, mload(data)))
ifeq(and(lastBytes, 0xFF), 0x3d) {
decodedLen :=sub(decodedLen, 1)
ifeq(and(lastBytes, 0xFFFF), 0x3d3d) {
decodedLen :=sub(decodedLen, 1)
}
}
// set the actual output lengthmstore(result, decodedLen)
// prepare the lookup tablelet tablePtr :=add(table, 1)
// input ptrlet dataPtr := data
let endPtr :=add(dataPtr, mload(data))
// result ptr, jump over lengthlet resultPtr :=add(result, 32)
// run over the input, 4 characters at a timefor {} lt(dataPtr, endPtr) {}
{
// read 4 characters
dataPtr :=add(dataPtr, 4)
let input :=mload(dataPtr)
// write 3 byteslet output :=add(
add(
shl(18, and(mload(add(tablePtr, and(shr(24, input), 0xFF))), 0xFF)),
shl(12, and(mload(add(tablePtr, and(shr(16, input), 0xFF))), 0xFF))),
add(
shl( 6, and(mload(add(tablePtr, and(shr( 8, input), 0xFF))), 0xFF)),
and(mload(add(tablePtr, and( input , 0xFF))), 0xFF)
)
)
mstore(resultPtr, shl(232, output))
resultPtr :=add(resultPtr, 3)
}
}
return result;
}
}
