// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;/**
* @dev Collection of functions related to the address type
*/libraryAddress{
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]
* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* - an externally-owned account
* - a contract in construction
* - an address where a contract will be created
* - an address where a contract lived, but was destroyed
* ====
*/functionisContract(address account) internalviewreturns (bool) {
// This method relies on extcodesize, which returns 0 for contracts in// construction, since the code is only stored at the end of the// constructor execution.uint256 size;
// solhint-disable-next-line no-inline-assemblyassembly { size :=extcodesize(account) }
return size >0;
}
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://diligence.consensys.net/posts/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.5.11/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/functionsendValue(addresspayable recipient, uint256 amount) internal{
require(address(this).balance>= amount, "Address: insufficient balance");
// solhint-disable-next-line avoid-low-level-calls, avoid-call-value
(bool success, ) = recipient.call{ value: amount }("");
require(success, "Address: unable to send value, recipient may have reverted");
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain`call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/functionfunctionCall(address target, bytesmemory data) internalreturns (bytesmemory) {
return functionCall(target, data, "Address: low-level call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/functionfunctionCall(address target, bytesmemory data, stringmemory errorMessage) internalreturns (bytesmemory) {
return functionCallWithValue(target, data, 0, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/functionfunctionCallWithValue(address target, bytesmemory data, uint256 value) internalreturns (bytesmemory) {
return functionCallWithValue(target, data, value, "Address: low-level call with value failed");
}
/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/functionfunctionCallWithValue(address target, bytesmemory data, uint256 value, stringmemory errorMessage) internalreturns (bytesmemory) {
require(address(this).balance>= value, "Address: insufficient balance for call");
require(isContract(target), "Address: call to non-contract");
// solhint-disable-next-line avoid-low-level-calls
(bool success, bytesmemory returndata) = target.call{ value: value }(data);
return _verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/functionfunctionStaticCall(address target, bytesmemory data) internalviewreturns (bytesmemory) {
return functionStaticCall(target, data, "Address: low-level static call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/functionfunctionStaticCall(address target, bytesmemory data, stringmemory errorMessage) internalviewreturns (bytesmemory) {
require(isContract(target), "Address: static call to non-contract");
// solhint-disable-next-line avoid-low-level-calls
(bool success, bytesmemory returndata) = target.staticcall(data);
return _verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/functionfunctionDelegateCall(address target, bytesmemory data) internalreturns (bytesmemory) {
return functionDelegateCall(target, data, "Address: low-level delegate call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/functionfunctionDelegateCall(address target, bytesmemory data, stringmemory errorMessage) internalreturns (bytesmemory) {
require(isContract(target), "Address: delegate call to non-contract");
// solhint-disable-next-line avoid-low-level-calls
(bool success, bytesmemory returndata) = target.delegatecall(data);
return _verifyCallResult(success, returndata, errorMessage);
}
function_verifyCallResult(bool success, bytesmemory returndata, stringmemory errorMessage) privatepurereturns(bytesmemory) {
if (success) {
return returndata;
} else {
// Look for revert reason and bubble it up if presentif (returndata.length>0) {
// The easiest way to bubble the revert reason is using memory via assembly// solhint-disable-next-line no-inline-assemblyassembly {
let returndata_size :=mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}
}
Contract Source Code
File 2 of 9: GenericDistributor.sol
// SPDX-License-Identifier: MIT// https://etherscan.io/address/0xcbe6b83e77cdc011cc18f6f0df8444e5783ed982#codepragmasolidity 0.8.9;import"SafeERC20.sol";
import"MerkleProof.sol";
import"IGenericVault.sol";
// Allows anyone to claim a token if they exist in a merkle root.contractGenericDistributor{
usingSafeERC20forIERC20;
addresspublic vault;
addresspublic token;
bytes32public merkleRoot;
uint32public week;
boolpublic frozen;
addresspublic admin;
addresspublic depositor;
// This is a packed array of booleans.mapping(uint256=>mapping(uint256=>uint256)) private claimedBitMap;
// This event is triggered whenever a call to #claim succeeds.eventClaimed(uint256 index,
uint256indexed amount,
addressindexed account,
uint256 week
);
// This event is triggered whenever the merkle root gets updated.eventMerkleRootUpdated(bytes32indexed merkleRoot, uint32indexed week);
// This event is triggered whenever the admin is updated.eventAdminUpdated(addressindexed oldAdmin, addressindexed newAdmin);
// This event is triggered whenever the depositor contract is updated.eventDepositorUpdated(addressindexed oldDepositor,
addressindexed newDepositor
);
// This event is triggered whenever the vault contract is updated.eventVaultUpdated(addressindexed oldVault, addressindexed newVault);
// When recovering stuck ERC20seventRecovered(address token, uint256 amount);
constructor(address _vault, address _depositor, address _token) {
require(_vault !=address(0));
vault = _vault;
admin =msg.sender;
depositor = _depositor;
token = _token;
week =0;
frozen =true;
}
/// @notice Set approvals for the tokens used when swappingfunctionsetApprovals() externalvirtualonlyAdmin{
IERC20(token).safeApprove(vault, 0);
IERC20(token).safeApprove(vault, type(uint256).max);
}
/// @notice Check if the index has been marked as claimed./// @param index - the index to check/// @return true if index has been marked as claimed.functionisClaimed(uint256 index) publicviewreturns (bool) {
uint256 claimedWordIndex = index /256;
uint256 claimedBitIndex = index %256;
uint256 claimedWord = claimedBitMap[week][claimedWordIndex];
uint256 mask = (1<< claimedBitIndex);
return claimedWord & mask == mask;
}
function_setClaimed(uint256 index) private{
uint256 claimedWordIndex = index /256;
uint256 claimedBitIndex = index %256;
claimedBitMap[week][claimedWordIndex] =
claimedBitMap[week][claimedWordIndex] |
(1<< claimedBitIndex);
}
/// @notice Transfers ownership of the contract/// @param newAdmin - address of the new admin of the contractfunctionupdateAdmin(address newAdmin
) externalonlyAdminnotToZeroAddress(newAdmin) {
address oldAdmin = admin;
admin = newAdmin;
emit AdminUpdated(oldAdmin, newAdmin);
}
/// @notice Changes the contract allowed to freeze before depositing/// @param newDepositor - address of the new depositor contractfunctionupdateDepositor(address newDepositor
) externalonlyAdminnotToZeroAddress(newDepositor) {
address oldDepositor = depositor;
depositor = newDepositor;
emit DepositorUpdated(oldDepositor, newDepositor);
}
/// @notice Changes the Vault where funds are staked/// @param newVault - address of the new vault contractfunctionupdateVault(address newVault
) externalonlyAdminnotToZeroAddress(newVault) {
address oldVault = vault;
vault = newVault;
emit VaultUpdated(oldVault, newVault);
}
/// @notice Internal function to handle users' claims/// @param index - claimer index/// @param account - claimer account/// @param amount - claim amount/// @param merkleProof - merkle proof for the claimfunction_claim(uint256 index,
address account,
uint256 amount,
bytes32[] calldata merkleProof
) internal{
require(!frozen, "Claiming is frozen.");
require(!isClaimed(index), "Drop already claimed.");
// Verify the merkle proof.bytes32 node =keccak256(abi.encodePacked(index, account, amount));
require(
MerkleProof.verify(merkleProof, merkleRoot, node),
"Invalid proof."
);
// Mark it claimed and send the token.
_setClaimed(index);
}
/// @notice Claim the given amount of uCRV to the given address./// @param index - claimer index/// @param account - claimer account/// @param amount - claim amount/// @param merkleProof - merkle proof for the claimfunctionclaim(uint256 index,
address account,
uint256 amount,
bytes32[] calldata merkleProof
) external{
// Claim
_claim(index, account, amount, merkleProof);
// Send shares to account
IERC20(vault).safeTransfer(account, amount);
emit Claimed(index, amount, account, week);
}
/// @notice Stakes the contract's entire balance in the Vaultfunctionstake() externalvirtualonlyAdminOrDistributor{
IGenericVault(vault).depositAll(address(this));
}
/// @notice Freezes the claim function to allow the merkleRoot to be changed/// @dev Can be called by the owner or the depositor zap contractfunctionfreeze() externalonlyAdminOrDistributor{
frozen =true;
}
/// @notice Unfreezes the claim function.functionunfreeze() publiconlyAdmin{
frozen =false;
}
/// @notice Update the merkle root and increment the week./// @param _merkleRoot - the new root to push/// @param _unfreeze - whether to unfreeze the contract after unlockfunctionupdateMerkleRoot(bytes32 _merkleRoot,
bool _unfreeze
) externalonlyAdmin{
require(frozen, "Contract not frozen.");
// Increment the week (simulates the clearing of the claimedBitMap)
week = week +1;
// Set the new merkle root
merkleRoot = _merkleRoot;
emit MerkleRootUpdated(merkleRoot, week);
if (_unfreeze) {
unfreeze();
}
}
/// @notice Recover ERC20s mistakenly sent to the contract/// @param tokenAddress - address of the token to retrieve/// @param tokenAmount - amount to retrieve/// @dev Will revert if token is same as token being distributedfunctionrecoverERC20(address tokenAddress,
uint256 tokenAmount
) externalonlyAdmin{
require(
tokenAddress !=address(token),
"Cannot withdraw the distributed token"
);
IERC20(tokenAddress).safeTransfer(msg.sender, tokenAmount);
emit Recovered(tokenAddress, tokenAmount);
}
receive() externalpayable{}
modifieronlyAdmin() {
require(msg.sender== admin, "Admin only");
_;
}
modifieronlyAdminOrDistributor() {
require(
(msg.sender== admin) || (msg.sender== depositor),
"Admin or depositor only"
);
_;
}
modifiernotToZeroAddress(address _to) {
require(_to !=address(0), "Invalid address!");
_;
}
}
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;/**
* @dev Interface of the ERC20 standard as defined in the EIP.
*/interfaceIERC20{
/**
* @dev Returns the amount of tokens in existence.
*/functiontotalSupply() externalviewreturns (uint256);
/**
* @dev Returns the amount of tokens owned by `account`.
*/functionbalanceOf(address account) externalviewreturns (uint256);
/**
* @dev Moves `amount` tokens from the caller's account to `recipient`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/functiontransfer(address recipient, uint256 amount) externalreturns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/functionallowance(address owner, address spender) externalviewreturns (uint256);
/**
* @dev Sets `amount` as the allowance of `spender` over the caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/functionapprove(address spender, uint256 amount) externalreturns (bool);
/**
* @dev Moves `amount` tokens from `sender` to `recipient` using the
* allowance mechanism. `amount` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/functiontransferFrom(address sender, address recipient, uint256 amount) externalreturns (bool);
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/eventTransfer(addressindexedfrom, addressindexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/eventApproval(addressindexed owner, addressindexed spender, uint256 value);
}
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;/**
* @dev These functions deal with verification of Merkle Trees proofs.
*
* The proofs can be generated using the JavaScript library
* https://github.com/miguelmota/merkletreejs[merkletreejs].
* Note: the hashing algorithm should be keccak256 and pair sorting should be enabled.
*
* See `test/utils/cryptography/MerkleProof.test.js` for some examples.
*/libraryMerkleProof{
/**
* @dev Returns true if a `leaf` can be proved to be a part of a Merkle tree
* defined by `root`. For this, a `proof` must be provided, containing
* sibling hashes on the branch from the leaf to the root of the tree. Each
* pair of leaves and each pair of pre-images are assumed to be sorted.
*/functionverify(bytes32[] memory proof, bytes32 root, bytes32 leaf) internalpurereturns (bool) {
bytes32 computedHash = leaf;
for (uint256 i =0; i < proof.length; i++) {
bytes32 proofElement = proof[i];
if (computedHash <= proofElement) {
// Hash(current computed hash + current element of the proof)
computedHash =keccak256(abi.encodePacked(computedHash, proofElement));
} else {
// Hash(current element of the proof + current computed hash)
computedHash =keccak256(abi.encodePacked(proofElement, computedHash));
}
}
// Check if the computed hash (root) is equal to the provided rootreturn computedHash == root;
}
}
Contract Source Code
File 8 of 9: SafeERC20.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;import"IERC20.sol";
import"Address.sol";
/**
* @title SafeERC20
* @dev Wrappers around ERC20 operations that throw on failure (when the token
* contract returns false). Tokens that return no value (and instead revert or
* throw on failure) are also supported, non-reverting calls are assumed to be
* successful.
* To use this library you can add a `using SafeERC20 for IERC20;` statement to your contract,
* which allows you to call the safe operations as `token.safeTransfer(...)`, etc.
*/librarySafeERC20{
usingAddressforaddress;
functionsafeTransfer(IERC20 token, address to, uint256 value) internal{
_callOptionalReturn(token, abi.encodeWithSelector(token.transfer.selector, to, value));
}
functionsafeTransferFrom(IERC20 token, addressfrom, address to, uint256 value) internal{
_callOptionalReturn(token, abi.encodeWithSelector(token.transferFrom.selector, from, to, value));
}
/**
* @dev Deprecated. This function has issues similar to the ones found in
* {IERC20-approve}, and its usage is discouraged.
*
* Whenever possible, use {safeIncreaseAllowance} and
* {safeDecreaseAllowance} instead.
*/functionsafeApprove(IERC20 token, address spender, uint256 value) internal{
// safeApprove should only be called when setting an initial allowance,// or when resetting it to zero. To increase and decrease it, use// 'safeIncreaseAllowance' and 'safeDecreaseAllowance'// solhint-disable-next-line max-line-lengthrequire((value ==0) || (token.allowance(address(this), spender) ==0),
"SafeERC20: approve from non-zero to non-zero allowance"
);
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, value));
}
functionsafeIncreaseAllowance(IERC20 token, address spender, uint256 value) internal{
uint256 newAllowance = token.allowance(address(this), spender) + value;
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, newAllowance));
}
functionsafeDecreaseAllowance(IERC20 token, address spender, uint256 value) internal{
unchecked {
uint256 oldAllowance = token.allowance(address(this), spender);
require(oldAllowance >= value, "SafeERC20: decreased allowance below zero");
uint256 newAllowance = oldAllowance - value;
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, newAllowance));
}
}
/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*/function_callOptionalReturn(IERC20 token, bytesmemory data) private{
// We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since// we're implementing it ourselves. We use {Address.functionCall} to perform this call, which verifies that// the target address contains contract code and also asserts for success in the low-level call.bytesmemory returndata =address(token).functionCall(data, "SafeERC20: low-level call failed");
if (returndata.length>0) { // Return data is optional// solhint-disable-next-line max-line-lengthrequire(abi.decode(returndata, (bool)), "SafeERC20: ERC20 operation did not succeed");
}
}
}
Contract Source Code
File 9 of 9: stkCvxPrismaDistributor.sol
// SPDX-License-Identifier: MITpragmasolidity 0.8.9;import"SafeERC20.sol";
import"GenericDistributor.sol";
import"ICurveV2Pool.sol";
import"IStrategyZaps.sol";
interfaceIVaultZaps{
functiondepositFromPrisma(uint256 amount,
uint256 minAmountOut,
address to,
bool lock
) external;
}
contractstkCvxPrismaMerkleDistributorisGenericDistributor{
usingSafeERC20forIERC20;
addresspublic vaultZap;
addressprivateconstant PRISMA_TOKEN =0xdA47862a83dac0c112BA89c6abC2159b95afd71C;
addressprivateconstant CURVE_CVXPRISMA_PRISMA_POOL =0x3b21C2868B6028CfB38Ff86127eF22E68d16d53B;
// 1.5% slippage tolerance by defaultuint256public slippage =9850;
uint256privateconstant DECIMALS =10000;
ICurveV2Pool private cvxPrismaPool =
ICurveV2Pool(CURVE_CVXPRISMA_PRISMA_POOL);
// This event is triggered whenever the zap contract is updated.eventZapUpdated(addressindexed oldZap, addressindexed newZap);
constructor(address _vault,
address _depositor,
address _zap
) GenericDistributor(_vault, _depositor, PRISMA_TOKEN) {
require(_zap !=address(0));
vaultZap = _zap;
}
/// @notice Set the acceptable level of slippage for LP deposits/// @dev As percentage of the ETH value of original amount in BIPS/// @param _slippage - the acceptable slippage thresholdfunctionsetSlippage(uint256 _slippage) externalonlyAdmin{
slippage = _slippage;
}
/// @notice Changes the Zap for deposits/// @param newZap - address of the new zapfunctionupdateZap(address newZap
) externalonlyAdminnotToZeroAddress(newZap) {
address oldZap = vaultZap;
vaultZap = newZap;
emit ZapUpdated(oldZap, vaultZap);
}
/// @notice Set approvals for the tokens used when swappingfunctionsetApprovals() externaloverrideonlyAdmin{
IERC20(token).safeApprove(vaultZap, 0);
IERC20(token).safeApprove(vaultZap, type(uint256).max);
}
/// @notice Stakes the contract's entire Prisma balance in the Vaultfunctionstake() externaloverrideonlyAdminOrDistributor{
uint256 balance = IERC20(token).balanceOf(address(this));
if (balance >0) {
uint256 price = cvxPrismaPool.price_oracle();
uint256 minAmountOut = (balance * price) /1e18;
minAmountOut = ((minAmountOut * slippage) / DECIMALS);
IVaultZaps(vaultZap).depositFromPrisma(
balance,
minAmountOut,
address(this),
(price >1ether)
);
}
}
}