Transaction Hash:
Block:
20501018 at Aug-10-2024 09:51:35 PM +UTC
Transaction Fee:
0.002623085199304722 ETH
$5.96
Gas Used:
2,704,326 Gas / 0.969958947 Gwei
Emitted Events:
| 238 |
UniswapV2Factory.PairCreated( token0=DragonX, token1=[Receiver] TITANX, pair=UniswapV2Pair, 353583 )
|
| 239 |
TITANX.Transfer( from=[Sender] 0x6dcbbf1336fb2358500321a9c1c5ecab73202b35, to=UniswapV2Pair, value=1000000000000000000000000000 )
|
| 240 |
DragonX.Transfer( from=[Sender] 0x6dcbbf1336fb2358500321a9c1c5ecab73202b35, to=UniswapV2Pair, value=207777777000000000000000000 )
|
| 241 |
UniswapV2Pair.Transfer( from=0x0000000000000000000000000000000000000000, to=0x0000000000000000000000000000000000000000, value=1000 )
|
| 242 |
UniswapV2Pair.Transfer( from=0x0000000000000000000000000000000000000000, to=[Sender] 0x6dcbbf1336fb2358500321a9c1c5ecab73202b35, value=455826476852760276339015243 )
|
| 243 |
UniswapV2Pair.Sync( reserve0=207777777000000000000000000, reserve1=1000000000000000000000000000 )
|
| 244 |
UniswapV2Pair.Mint( sender=[Receiver] UniswapV2Router02, amount0=207777777000000000000000000, amount1=1000000000000000000000000000 )
|
Account State Difference:
| Address | Before | After | State Difference | ||
|---|---|---|---|---|---|
| 0x1F1F3E8C...c3dEF473c |
0 Eth
Nonce: 0
|
0 Eth
Nonce: 1
| |||
| 0x5C69bEe7...B9cc5aA6f | (Uniswap V2: Factory Contract) | ||||
| 0x6dCBBF13...b73202B35 |
0.020079615386879137 Eth
Nonce: 11
|
0.017456530187574415 Eth
Nonce: 12
| 0.002623085199304722 | ||
|
0x95222290...5CC4BAfe5
Miner
| (beaverbuild) | 9.743546398223599848 Eth | 9.743862016719835044 Eth | 0.000315618496235196 | |
| 0x96a5399D...8DB951862 | |||||
| 0xF19308F9...BEC6665B1 |
Execution Trace
UniswapV2Router02.addLiquidity( tokenA=0xF19308F923582A6f7c465e5CE7a9Dc1BEC6665B1, tokenB=0x96a5399D07896f757Bd4c6eF56461F58DB951862, amountADesired=1000000000000000000000000000, amountBDesired=207777777000000000000000000, amountAMin=1000000000000000000000000000, amountBMin=207777777000000000000000000, to=0x6dCBBF1336Fb2358500321a9c1c5ECab73202B35, deadline=1723327259 ) => ( amountA=1000000000000000000000000000, amountB=207777777000000000000000000, liquidity=455826476852760276339015243 )
-
UniswapV2Factory.getPair( 0xF19308F923582A6f7c465e5CE7a9Dc1BEC6665B1, 0x96a5399D07896f757Bd4c6eF56461F58DB951862 ) => ( 0x0000000000000000000000000000000000000000 ) UniswapV2Factory.createPair( tokenA=0xF19308F923582A6f7c465e5CE7a9Dc1BEC6665B1, tokenB=0x96a5399D07896f757Bd4c6eF56461F58DB951862 ) => ( pair=0x1F1F3E8C934162F0ebC1c839ff3Ed74c3dEF473c )-
UniswapV2Pair.60806040( )
-
UniswapV2Pair.initialize( _token0=0x96a5399D07896f757Bd4c6eF56461F58DB951862, _token1=0xF19308F923582A6f7c465e5CE7a9Dc1BEC6665B1 )
-
-
UniswapV2Pair.STATICCALL( )
-
TITANX.transferFrom( from=0x6dCBBF1336Fb2358500321a9c1c5ECab73202B35, to=0x1F1F3E8C934162F0ebC1c839ff3Ed74c3dEF473c, amount=1000000000000000000000000000 ) => ( True )
-
DragonX.transferFrom( from=0x6dCBBF1336Fb2358500321a9c1c5ECab73202B35, to=0x1F1F3E8C934162F0ebC1c839ff3Ed74c3dEF473c, value=207777777000000000000000000 ) => ( True )
- UniswapV2Pair.mint( to=0x6dCBBF1336Fb2358500321a9c1c5ECab73202B35 ) => ( liquidity=455826476852760276339015243 )
-
DragonX.balanceOf( account=0x1F1F3E8C934162F0ebC1c839ff3Ed74c3dEF473c ) => ( 207777777000000000000000000 )
-
TITANX.balanceOf( account=0x1F1F3E8C934162F0ebC1c839ff3Ed74c3dEF473c ) => ( 1000000000000000000000000000 )
-
UniswapV2Factory.STATICCALL( )
-
addLiquidity[UniswapV2Router02 (ln:276)]
_addLiquidity[UniswapV2Router02 (ln:286)]getPair[UniswapV2Router02 (ln:257)]createPair[UniswapV2Router02 (ln:258)]getReserves[UniswapV2Router02 (ln:260)]sortTokens[UniswapV2Library (ln:702)]getReserves[UniswapV2Library (ln:703)]pairFor[UniswapV2Library (ln:703)]sortTokens[UniswapV2Library (ln:691)]
pairFor[UniswapV2Router02 (ln:287)]sortTokens[UniswapV2Library (ln:691)]
safeTransferFrom[UniswapV2Router02 (ln:288)]call[TransferHelper (ln:772)]encodeWithSelector[TransferHelper (ln:772)]decode[TransferHelper (ln:773)]
safeTransferFrom[UniswapV2Router02 (ln:289)]call[TransferHelper (ln:772)]encodeWithSelector[TransferHelper (ln:772)]decode[TransferHelper (ln:773)]
mint[UniswapV2Router02 (ln:290)]
File 1 of 5: UniswapV2Router02
File 2 of 5: UniswapV2Factory
File 3 of 5: UniswapV2Pair
File 4 of 5: TITANX
File 5 of 5: DragonX
pragma solidity =0.6.6;
interface IUniswapV2Factory {
event PairCreated(address indexed token0, address indexed token1, address pair, uint);
function feeTo() external view returns (address);
function feeToSetter() external view returns (address);
function getPair(address tokenA, address tokenB) external view returns (address pair);
function allPairs(uint) external view returns (address pair);
function allPairsLength() external view returns (uint);
function createPair(address tokenA, address tokenB) external returns (address pair);
function setFeeTo(address) external;
function setFeeToSetter(address) external;
}
interface IUniswapV2Pair {
event Approval(address indexed owner, address indexed spender, uint value);
event Transfer(address indexed from, address indexed to, uint value);
function name() external pure returns (string memory);
function symbol() external pure returns (string memory);
function decimals() external pure returns (uint8);
function totalSupply() external view returns (uint);
function balanceOf(address owner) external view returns (uint);
function allowance(address owner, address spender) external view returns (uint);
function approve(address spender, uint value) external returns (bool);
function transfer(address to, uint value) external returns (bool);
function transferFrom(address from, address to, uint value) external returns (bool);
function DOMAIN_SEPARATOR() external view returns (bytes32);
function PERMIT_TYPEHASH() external pure returns (bytes32);
function nonces(address owner) external view returns (uint);
function permit(address owner, address spender, uint value, uint deadline, uint8 v, bytes32 r, bytes32 s) external;
event Mint(address indexed sender, uint amount0, uint amount1);
event Burn(address indexed sender, uint amount0, uint amount1, address indexed to);
event Swap(
address indexed sender,
uint amount0In,
uint amount1In,
uint amount0Out,
uint amount1Out,
address indexed to
);
event Sync(uint112 reserve0, uint112 reserve1);
function MINIMUM_LIQUIDITY() external pure returns (uint);
function factory() external view returns (address);
function token0() external view returns (address);
function token1() external view returns (address);
function getReserves() external view returns (uint112 reserve0, uint112 reserve1, uint32 blockTimestampLast);
function price0CumulativeLast() external view returns (uint);
function price1CumulativeLast() external view returns (uint);
function kLast() external view returns (uint);
function mint(address to) external returns (uint liquidity);
function burn(address to) external returns (uint amount0, uint amount1);
function swap(uint amount0Out, uint amount1Out, address to, bytes calldata data) external;
function skim(address to) external;
function sync() external;
function initialize(address, address) external;
}
interface IUniswapV2Router01 {
function factory() external pure returns (address);
function WETH() external pure returns (address);
function addLiquidity(
address tokenA,
address tokenB,
uint amountADesired,
uint amountBDesired,
uint amountAMin,
uint amountBMin,
address to,
uint deadline
) external returns (uint amountA, uint amountB, uint liquidity);
function addLiquidityETH(
address token,
uint amountTokenDesired,
uint amountTokenMin,
uint amountETHMin,
address to,
uint deadline
) external payable returns (uint amountToken, uint amountETH, uint liquidity);
function removeLiquidity(
address tokenA,
address tokenB,
uint liquidity,
uint amountAMin,
uint amountBMin,
address to,
uint deadline
) external returns (uint amountA, uint amountB);
function removeLiquidityETH(
address token,
uint liquidity,
uint amountTokenMin,
uint amountETHMin,
address to,
uint deadline
) external returns (uint amountToken, uint amountETH);
function removeLiquidityWithPermit(
address tokenA,
address tokenB,
uint liquidity,
uint amountAMin,
uint amountBMin,
address to,
uint deadline,
bool approveMax, uint8 v, bytes32 r, bytes32 s
) external returns (uint amountA, uint amountB);
function removeLiquidityETHWithPermit(
address token,
uint liquidity,
uint amountTokenMin,
uint amountETHMin,
address to,
uint deadline,
bool approveMax, uint8 v, bytes32 r, bytes32 s
) external returns (uint amountToken, uint amountETH);
function swapExactTokensForTokens(
uint amountIn,
uint amountOutMin,
address[] calldata path,
address to,
uint deadline
) external returns (uint[] memory amounts);
function swapTokensForExactTokens(
uint amountOut,
uint amountInMax,
address[] calldata path,
address to,
uint deadline
) external returns (uint[] memory amounts);
function swapExactETHForTokens(uint amountOutMin, address[] calldata path, address to, uint deadline)
external
payable
returns (uint[] memory amounts);
function swapTokensForExactETH(uint amountOut, uint amountInMax, address[] calldata path, address to, uint deadline)
external
returns (uint[] memory amounts);
function swapExactTokensForETH(uint amountIn, uint amountOutMin, address[] calldata path, address to, uint deadline)
external
returns (uint[] memory amounts);
function swapETHForExactTokens(uint amountOut, address[] calldata path, address to, uint deadline)
external
payable
returns (uint[] memory amounts);
function quote(uint amountA, uint reserveA, uint reserveB) external pure returns (uint amountB);
function getAmountOut(uint amountIn, uint reserveIn, uint reserveOut) external pure returns (uint amountOut);
function getAmountIn(uint amountOut, uint reserveIn, uint reserveOut) external pure returns (uint amountIn);
function getAmountsOut(uint amountIn, address[] calldata path) external view returns (uint[] memory amounts);
function getAmountsIn(uint amountOut, address[] calldata path) external view returns (uint[] memory amounts);
}
interface IUniswapV2Router02 is IUniswapV2Router01 {
function removeLiquidityETHSupportingFeeOnTransferTokens(
address token,
uint liquidity,
uint amountTokenMin,
uint amountETHMin,
address to,
uint deadline
) external returns (uint amountETH);
function removeLiquidityETHWithPermitSupportingFeeOnTransferTokens(
address token,
uint liquidity,
uint amountTokenMin,
uint amountETHMin,
address to,
uint deadline,
bool approveMax, uint8 v, bytes32 r, bytes32 s
) external returns (uint amountETH);
function swapExactTokensForTokensSupportingFeeOnTransferTokens(
uint amountIn,
uint amountOutMin,
address[] calldata path,
address to,
uint deadline
) external;
function swapExactETHForTokensSupportingFeeOnTransferTokens(
uint amountOutMin,
address[] calldata path,
address to,
uint deadline
) external payable;
function swapExactTokensForETHSupportingFeeOnTransferTokens(
uint amountIn,
uint amountOutMin,
address[] calldata path,
address to,
uint deadline
) external;
}
interface IERC20 {
event Approval(address indexed owner, address indexed spender, uint value);
event Transfer(address indexed from, address indexed to, uint value);
function name() external view returns (string memory);
function symbol() external view returns (string memory);
function decimals() external view returns (uint8);
function totalSupply() external view returns (uint);
function balanceOf(address owner) external view returns (uint);
function allowance(address owner, address spender) external view returns (uint);
function approve(address spender, uint value) external returns (bool);
function transfer(address to, uint value) external returns (bool);
function transferFrom(address from, address to, uint value) external returns (bool);
}
interface IWETH {
function deposit() external payable;
function transfer(address to, uint value) external returns (bool);
function withdraw(uint) external;
}
contract UniswapV2Router02 is IUniswapV2Router02 {
using SafeMath for uint;
address public immutable override factory;
address public immutable override WETH;
modifier ensure(uint deadline) {
require(deadline >= block.timestamp, 'UniswapV2Router: EXPIRED');
_;
}
constructor(address _factory, address _WETH) public {
factory = _factory;
WETH = _WETH;
}
receive() external payable {
assert(msg.sender == WETH); // only accept ETH via fallback from the WETH contract
}
// **** ADD LIQUIDITY ****
function _addLiquidity(
address tokenA,
address tokenB,
uint amountADesired,
uint amountBDesired,
uint amountAMin,
uint amountBMin
) internal virtual returns (uint amountA, uint amountB) {
// create the pair if it doesn't exist yet
if (IUniswapV2Factory(factory).getPair(tokenA, tokenB) == address(0)) {
IUniswapV2Factory(factory).createPair(tokenA, tokenB);
}
(uint reserveA, uint reserveB) = UniswapV2Library.getReserves(factory, tokenA, tokenB);
if (reserveA == 0 && reserveB == 0) {
(amountA, amountB) = (amountADesired, amountBDesired);
} else {
uint amountBOptimal = UniswapV2Library.quote(amountADesired, reserveA, reserveB);
if (amountBOptimal <= amountBDesired) {
require(amountBOptimal >= amountBMin, 'UniswapV2Router: INSUFFICIENT_B_AMOUNT');
(amountA, amountB) = (amountADesired, amountBOptimal);
} else {
uint amountAOptimal = UniswapV2Library.quote(amountBDesired, reserveB, reserveA);
assert(amountAOptimal <= amountADesired);
require(amountAOptimal >= amountAMin, 'UniswapV2Router: INSUFFICIENT_A_AMOUNT');
(amountA, amountB) = (amountAOptimal, amountBDesired);
}
}
}
function addLiquidity(
address tokenA,
address tokenB,
uint amountADesired,
uint amountBDesired,
uint amountAMin,
uint amountBMin,
address to,
uint deadline
) external virtual override ensure(deadline) returns (uint amountA, uint amountB, uint liquidity) {
(amountA, amountB) = _addLiquidity(tokenA, tokenB, amountADesired, amountBDesired, amountAMin, amountBMin);
address pair = UniswapV2Library.pairFor(factory, tokenA, tokenB);
TransferHelper.safeTransferFrom(tokenA, msg.sender, pair, amountA);
TransferHelper.safeTransferFrom(tokenB, msg.sender, pair, amountB);
liquidity = IUniswapV2Pair(pair).mint(to);
}
function addLiquidityETH(
address token,
uint amountTokenDesired,
uint amountTokenMin,
uint amountETHMin,
address to,
uint deadline
) external virtual override payable ensure(deadline) returns (uint amountToken, uint amountETH, uint liquidity) {
(amountToken, amountETH) = _addLiquidity(
token,
WETH,
amountTokenDesired,
msg.value,
amountTokenMin,
amountETHMin
);
address pair = UniswapV2Library.pairFor(factory, token, WETH);
TransferHelper.safeTransferFrom(token, msg.sender, pair, amountToken);
IWETH(WETH).deposit{value: amountETH}();
assert(IWETH(WETH).transfer(pair, amountETH));
liquidity = IUniswapV2Pair(pair).mint(to);
// refund dust eth, if any
if (msg.value > amountETH) TransferHelper.safeTransferETH(msg.sender, msg.value - amountETH);
}
// **** REMOVE LIQUIDITY ****
function removeLiquidity(
address tokenA,
address tokenB,
uint liquidity,
uint amountAMin,
uint amountBMin,
address to,
uint deadline
) public virtual override ensure(deadline) returns (uint amountA, uint amountB) {
address pair = UniswapV2Library.pairFor(factory, tokenA, tokenB);
IUniswapV2Pair(pair).transferFrom(msg.sender, pair, liquidity); // send liquidity to pair
(uint amount0, uint amount1) = IUniswapV2Pair(pair).burn(to);
(address token0,) = UniswapV2Library.sortTokens(tokenA, tokenB);
(amountA, amountB) = tokenA == token0 ? (amount0, amount1) : (amount1, amount0);
require(amountA >= amountAMin, 'UniswapV2Router: INSUFFICIENT_A_AMOUNT');
require(amountB >= amountBMin, 'UniswapV2Router: INSUFFICIENT_B_AMOUNT');
}
function removeLiquidityETH(
address token,
uint liquidity,
uint amountTokenMin,
uint amountETHMin,
address to,
uint deadline
) public virtual override ensure(deadline) returns (uint amountToken, uint amountETH) {
(amountToken, amountETH) = removeLiquidity(
token,
WETH,
liquidity,
amountTokenMin,
amountETHMin,
address(this),
deadline
);
TransferHelper.safeTransfer(token, to, amountToken);
IWETH(WETH).withdraw(amountETH);
TransferHelper.safeTransferETH(to, amountETH);
}
function removeLiquidityWithPermit(
address tokenA,
address tokenB,
uint liquidity,
uint amountAMin,
uint amountBMin,
address to,
uint deadline,
bool approveMax, uint8 v, bytes32 r, bytes32 s
) external virtual override returns (uint amountA, uint amountB) {
address pair = UniswapV2Library.pairFor(factory, tokenA, tokenB);
uint value = approveMax ? uint(-1) : liquidity;
IUniswapV2Pair(pair).permit(msg.sender, address(this), value, deadline, v, r, s);
(amountA, amountB) = removeLiquidity(tokenA, tokenB, liquidity, amountAMin, amountBMin, to, deadline);
}
function removeLiquidityETHWithPermit(
address token,
uint liquidity,
uint amountTokenMin,
uint amountETHMin,
address to,
uint deadline,
bool approveMax, uint8 v, bytes32 r, bytes32 s
) external virtual override returns (uint amountToken, uint amountETH) {
address pair = UniswapV2Library.pairFor(factory, token, WETH);
uint value = approveMax ? uint(-1) : liquidity;
IUniswapV2Pair(pair).permit(msg.sender, address(this), value, deadline, v, r, s);
(amountToken, amountETH) = removeLiquidityETH(token, liquidity, amountTokenMin, amountETHMin, to, deadline);
}
// **** REMOVE LIQUIDITY (supporting fee-on-transfer tokens) ****
function removeLiquidityETHSupportingFeeOnTransferTokens(
address token,
uint liquidity,
uint amountTokenMin,
uint amountETHMin,
address to,
uint deadline
) public virtual override ensure(deadline) returns (uint amountETH) {
(, amountETH) = removeLiquidity(
token,
WETH,
liquidity,
amountTokenMin,
amountETHMin,
address(this),
deadline
);
TransferHelper.safeTransfer(token, to, IERC20(token).balanceOf(address(this)));
IWETH(WETH).withdraw(amountETH);
TransferHelper.safeTransferETH(to, amountETH);
}
function removeLiquidityETHWithPermitSupportingFeeOnTransferTokens(
address token,
uint liquidity,
uint amountTokenMin,
uint amountETHMin,
address to,
uint deadline,
bool approveMax, uint8 v, bytes32 r, bytes32 s
) external virtual override returns (uint amountETH) {
address pair = UniswapV2Library.pairFor(factory, token, WETH);
uint value = approveMax ? uint(-1) : liquidity;
IUniswapV2Pair(pair).permit(msg.sender, address(this), value, deadline, v, r, s);
amountETH = removeLiquidityETHSupportingFeeOnTransferTokens(
token, liquidity, amountTokenMin, amountETHMin, to, deadline
);
}
// **** SWAP ****
// requires the initial amount to have already been sent to the first pair
function _swap(uint[] memory amounts, address[] memory path, address _to) internal virtual {
for (uint i; i < path.length - 1; i++) {
(address input, address output) = (path[i], path[i + 1]);
(address token0,) = UniswapV2Library.sortTokens(input, output);
uint amountOut = amounts[i + 1];
(uint amount0Out, uint amount1Out) = input == token0 ? (uint(0), amountOut) : (amountOut, uint(0));
address to = i < path.length - 2 ? UniswapV2Library.pairFor(factory, output, path[i + 2]) : _to;
IUniswapV2Pair(UniswapV2Library.pairFor(factory, input, output)).swap(
amount0Out, amount1Out, to, new bytes(0)
);
}
}
function swapExactTokensForTokens(
uint amountIn,
uint amountOutMin,
address[] calldata path,
address to,
uint deadline
) external virtual override ensure(deadline) returns (uint[] memory amounts) {
amounts = UniswapV2Library.getAmountsOut(factory, amountIn, path);
require(amounts[amounts.length - 1] >= amountOutMin, 'UniswapV2Router: INSUFFICIENT_OUTPUT_AMOUNT');
TransferHelper.safeTransferFrom(
path[0], msg.sender, UniswapV2Library.pairFor(factory, path[0], path[1]), amounts[0]
);
_swap(amounts, path, to);
}
function swapTokensForExactTokens(
uint amountOut,
uint amountInMax,
address[] calldata path,
address to,
uint deadline
) external virtual override ensure(deadline) returns (uint[] memory amounts) {
amounts = UniswapV2Library.getAmountsIn(factory, amountOut, path);
require(amounts[0] <= amountInMax, 'UniswapV2Router: EXCESSIVE_INPUT_AMOUNT');
TransferHelper.safeTransferFrom(
path[0], msg.sender, UniswapV2Library.pairFor(factory, path[0], path[1]), amounts[0]
);
_swap(amounts, path, to);
}
function swapExactETHForTokens(uint amountOutMin, address[] calldata path, address to, uint deadline)
external
virtual
override
payable
ensure(deadline)
returns (uint[] memory amounts)
{
require(path[0] == WETH, 'UniswapV2Router: INVALID_PATH');
amounts = UniswapV2Library.getAmountsOut(factory, msg.value, path);
require(amounts[amounts.length - 1] >= amountOutMin, 'UniswapV2Router: INSUFFICIENT_OUTPUT_AMOUNT');
IWETH(WETH).deposit{value: amounts[0]}();
assert(IWETH(WETH).transfer(UniswapV2Library.pairFor(factory, path[0], path[1]), amounts[0]));
_swap(amounts, path, to);
}
function swapTokensForExactETH(uint amountOut, uint amountInMax, address[] calldata path, address to, uint deadline)
external
virtual
override
ensure(deadline)
returns (uint[] memory amounts)
{
require(path[path.length - 1] == WETH, 'UniswapV2Router: INVALID_PATH');
amounts = UniswapV2Library.getAmountsIn(factory, amountOut, path);
require(amounts[0] <= amountInMax, 'UniswapV2Router: EXCESSIVE_INPUT_AMOUNT');
TransferHelper.safeTransferFrom(
path[0], msg.sender, UniswapV2Library.pairFor(factory, path[0], path[1]), amounts[0]
);
_swap(amounts, path, address(this));
IWETH(WETH).withdraw(amounts[amounts.length - 1]);
TransferHelper.safeTransferETH(to, amounts[amounts.length - 1]);
}
function swapExactTokensForETH(uint amountIn, uint amountOutMin, address[] calldata path, address to, uint deadline)
external
virtual
override
ensure(deadline)
returns (uint[] memory amounts)
{
require(path[path.length - 1] == WETH, 'UniswapV2Router: INVALID_PATH');
amounts = UniswapV2Library.getAmountsOut(factory, amountIn, path);
require(amounts[amounts.length - 1] >= amountOutMin, 'UniswapV2Router: INSUFFICIENT_OUTPUT_AMOUNT');
TransferHelper.safeTransferFrom(
path[0], msg.sender, UniswapV2Library.pairFor(factory, path[0], path[1]), amounts[0]
);
_swap(amounts, path, address(this));
IWETH(WETH).withdraw(amounts[amounts.length - 1]);
TransferHelper.safeTransferETH(to, amounts[amounts.length - 1]);
}
function swapETHForExactTokens(uint amountOut, address[] calldata path, address to, uint deadline)
external
virtual
override
payable
ensure(deadline)
returns (uint[] memory amounts)
{
require(path[0] == WETH, 'UniswapV2Router: INVALID_PATH');
amounts = UniswapV2Library.getAmountsIn(factory, amountOut, path);
require(amounts[0] <= msg.value, 'UniswapV2Router: EXCESSIVE_INPUT_AMOUNT');
IWETH(WETH).deposit{value: amounts[0]}();
assert(IWETH(WETH).transfer(UniswapV2Library.pairFor(factory, path[0], path[1]), amounts[0]));
_swap(amounts, path, to);
// refund dust eth, if any
if (msg.value > amounts[0]) TransferHelper.safeTransferETH(msg.sender, msg.value - amounts[0]);
}
// **** SWAP (supporting fee-on-transfer tokens) ****
// requires the initial amount to have already been sent to the first pair
function _swapSupportingFeeOnTransferTokens(address[] memory path, address _to) internal virtual {
for (uint i; i < path.length - 1; i++) {
(address input, address output) = (path[i], path[i + 1]);
(address token0,) = UniswapV2Library.sortTokens(input, output);
IUniswapV2Pair pair = IUniswapV2Pair(UniswapV2Library.pairFor(factory, input, output));
uint amountInput;
uint amountOutput;
{ // scope to avoid stack too deep errors
(uint reserve0, uint reserve1,) = pair.getReserves();
(uint reserveInput, uint reserveOutput) = input == token0 ? (reserve0, reserve1) : (reserve1, reserve0);
amountInput = IERC20(input).balanceOf(address(pair)).sub(reserveInput);
amountOutput = UniswapV2Library.getAmountOut(amountInput, reserveInput, reserveOutput);
}
(uint amount0Out, uint amount1Out) = input == token0 ? (uint(0), amountOutput) : (amountOutput, uint(0));
address to = i < path.length - 2 ? UniswapV2Library.pairFor(factory, output, path[i + 2]) : _to;
pair.swap(amount0Out, amount1Out, to, new bytes(0));
}
}
function swapExactTokensForTokensSupportingFeeOnTransferTokens(
uint amountIn,
uint amountOutMin,
address[] calldata path,
address to,
uint deadline
) external virtual override ensure(deadline) {
TransferHelper.safeTransferFrom(
path[0], msg.sender, UniswapV2Library.pairFor(factory, path[0], path[1]), amountIn
);
uint balanceBefore = IERC20(path[path.length - 1]).balanceOf(to);
_swapSupportingFeeOnTransferTokens(path, to);
require(
IERC20(path[path.length - 1]).balanceOf(to).sub(balanceBefore) >= amountOutMin,
'UniswapV2Router: INSUFFICIENT_OUTPUT_AMOUNT'
);
}
function swapExactETHForTokensSupportingFeeOnTransferTokens(
uint amountOutMin,
address[] calldata path,
address to,
uint deadline
)
external
virtual
override
payable
ensure(deadline)
{
require(path[0] == WETH, 'UniswapV2Router: INVALID_PATH');
uint amountIn = msg.value;
IWETH(WETH).deposit{value: amountIn}();
assert(IWETH(WETH).transfer(UniswapV2Library.pairFor(factory, path[0], path[1]), amountIn));
uint balanceBefore = IERC20(path[path.length - 1]).balanceOf(to);
_swapSupportingFeeOnTransferTokens(path, to);
require(
IERC20(path[path.length - 1]).balanceOf(to).sub(balanceBefore) >= amountOutMin,
'UniswapV2Router: INSUFFICIENT_OUTPUT_AMOUNT'
);
}
function swapExactTokensForETHSupportingFeeOnTransferTokens(
uint amountIn,
uint amountOutMin,
address[] calldata path,
address to,
uint deadline
)
external
virtual
override
ensure(deadline)
{
require(path[path.length - 1] == WETH, 'UniswapV2Router: INVALID_PATH');
TransferHelper.safeTransferFrom(
path[0], msg.sender, UniswapV2Library.pairFor(factory, path[0], path[1]), amountIn
);
_swapSupportingFeeOnTransferTokens(path, address(this));
uint amountOut = IERC20(WETH).balanceOf(address(this));
require(amountOut >= amountOutMin, 'UniswapV2Router: INSUFFICIENT_OUTPUT_AMOUNT');
IWETH(WETH).withdraw(amountOut);
TransferHelper.safeTransferETH(to, amountOut);
}
// **** LIBRARY FUNCTIONS ****
function quote(uint amountA, uint reserveA, uint reserveB) public pure virtual override returns (uint amountB) {
return UniswapV2Library.quote(amountA, reserveA, reserveB);
}
function getAmountOut(uint amountIn, uint reserveIn, uint reserveOut)
public
pure
virtual
override
returns (uint amountOut)
{
return UniswapV2Library.getAmountOut(amountIn, reserveIn, reserveOut);
}
function getAmountIn(uint amountOut, uint reserveIn, uint reserveOut)
public
pure
virtual
override
returns (uint amountIn)
{
return UniswapV2Library.getAmountIn(amountOut, reserveIn, reserveOut);
}
function getAmountsOut(uint amountIn, address[] memory path)
public
view
virtual
override
returns (uint[] memory amounts)
{
return UniswapV2Library.getAmountsOut(factory, amountIn, path);
}
function getAmountsIn(uint amountOut, address[] memory path)
public
view
virtual
override
returns (uint[] memory amounts)
{
return UniswapV2Library.getAmountsIn(factory, amountOut, path);
}
}
// a library for performing overflow-safe math, courtesy of DappHub (https://github.com/dapphub/ds-math)
library SafeMath {
function add(uint x, uint y) internal pure returns (uint z) {
require((z = x + y) >= x, 'ds-math-add-overflow');
}
function sub(uint x, uint y) internal pure returns (uint z) {
require((z = x - y) <= x, 'ds-math-sub-underflow');
}
function mul(uint x, uint y) internal pure returns (uint z) {
require(y == 0 || (z = x * y) / y == x, 'ds-math-mul-overflow');
}
}
library UniswapV2Library {
using SafeMath for uint;
// returns sorted token addresses, used to handle return values from pairs sorted in this order
function sortTokens(address tokenA, address tokenB) internal pure returns (address token0, address token1) {
require(tokenA != tokenB, 'UniswapV2Library: IDENTICAL_ADDRESSES');
(token0, token1) = tokenA < tokenB ? (tokenA, tokenB) : (tokenB, tokenA);
require(token0 != address(0), 'UniswapV2Library: ZERO_ADDRESS');
}
// calculates the CREATE2 address for a pair without making any external calls
function pairFor(address factory, address tokenA, address tokenB) internal pure returns (address pair) {
(address token0, address token1) = sortTokens(tokenA, tokenB);
pair = address(uint(keccak256(abi.encodePacked(
hex'ff',
factory,
keccak256(abi.encodePacked(token0, token1)),
hex'96e8ac4277198ff8b6f785478aa9a39f403cb768dd02cbee326c3e7da348845f' // init code hash
))));
}
// fetches and sorts the reserves for a pair
function getReserves(address factory, address tokenA, address tokenB) internal view returns (uint reserveA, uint reserveB) {
(address token0,) = sortTokens(tokenA, tokenB);
(uint reserve0, uint reserve1,) = IUniswapV2Pair(pairFor(factory, tokenA, tokenB)).getReserves();
(reserveA, reserveB) = tokenA == token0 ? (reserve0, reserve1) : (reserve1, reserve0);
}
// given some amount of an asset and pair reserves, returns an equivalent amount of the other asset
function quote(uint amountA, uint reserveA, uint reserveB) internal pure returns (uint amountB) {
require(amountA > 0, 'UniswapV2Library: INSUFFICIENT_AMOUNT');
require(reserveA > 0 && reserveB > 0, 'UniswapV2Library: INSUFFICIENT_LIQUIDITY');
amountB = amountA.mul(reserveB) / reserveA;
}
// given an input amount of an asset and pair reserves, returns the maximum output amount of the other asset
function getAmountOut(uint amountIn, uint reserveIn, uint reserveOut) internal pure returns (uint amountOut) {
require(amountIn > 0, 'UniswapV2Library: INSUFFICIENT_INPUT_AMOUNT');
require(reserveIn > 0 && reserveOut > 0, 'UniswapV2Library: INSUFFICIENT_LIQUIDITY');
uint amountInWithFee = amountIn.mul(997);
uint numerator = amountInWithFee.mul(reserveOut);
uint denominator = reserveIn.mul(1000).add(amountInWithFee);
amountOut = numerator / denominator;
}
// given an output amount of an asset and pair reserves, returns a required input amount of the other asset
function getAmountIn(uint amountOut, uint reserveIn, uint reserveOut) internal pure returns (uint amountIn) {
require(amountOut > 0, 'UniswapV2Library: INSUFFICIENT_OUTPUT_AMOUNT');
require(reserveIn > 0 && reserveOut > 0, 'UniswapV2Library: INSUFFICIENT_LIQUIDITY');
uint numerator = reserveIn.mul(amountOut).mul(1000);
uint denominator = reserveOut.sub(amountOut).mul(997);
amountIn = (numerator / denominator).add(1);
}
// performs chained getAmountOut calculations on any number of pairs
function getAmountsOut(address factory, uint amountIn, address[] memory path) internal view returns (uint[] memory amounts) {
require(path.length >= 2, 'UniswapV2Library: INVALID_PATH');
amounts = new uint[](path.length);
amounts[0] = amountIn;
for (uint i; i < path.length - 1; i++) {
(uint reserveIn, uint reserveOut) = getReserves(factory, path[i], path[i + 1]);
amounts[i + 1] = getAmountOut(amounts[i], reserveIn, reserveOut);
}
}
// performs chained getAmountIn calculations on any number of pairs
function getAmountsIn(address factory, uint amountOut, address[] memory path) internal view returns (uint[] memory amounts) {
require(path.length >= 2, 'UniswapV2Library: INVALID_PATH');
amounts = new uint[](path.length);
amounts[amounts.length - 1] = amountOut;
for (uint i = path.length - 1; i > 0; i--) {
(uint reserveIn, uint reserveOut) = getReserves(factory, path[i - 1], path[i]);
amounts[i - 1] = getAmountIn(amounts[i], reserveIn, reserveOut);
}
}
}
// helper methods for interacting with ERC20 tokens and sending ETH that do not consistently return true/false
library TransferHelper {
function safeApprove(address token, address to, uint value) internal {
// bytes4(keccak256(bytes('approve(address,uint256)')));
(bool success, bytes memory data) = token.call(abi.encodeWithSelector(0x095ea7b3, to, value));
require(success && (data.length == 0 || abi.decode(data, (bool))), 'TransferHelper: APPROVE_FAILED');
}
function safeTransfer(address token, address to, uint value) internal {
// bytes4(keccak256(bytes('transfer(address,uint256)')));
(bool success, bytes memory data) = token.call(abi.encodeWithSelector(0xa9059cbb, to, value));
require(success && (data.length == 0 || abi.decode(data, (bool))), 'TransferHelper: TRANSFER_FAILED');
}
function safeTransferFrom(address token, address from, address to, uint value) internal {
// bytes4(keccak256(bytes('transferFrom(address,address,uint256)')));
(bool success, bytes memory data) = token.call(abi.encodeWithSelector(0x23b872dd, from, to, value));
require(success && (data.length == 0 || abi.decode(data, (bool))), 'TransferHelper: TRANSFER_FROM_FAILED');
}
function safeTransferETH(address to, uint value) internal {
(bool success,) = to.call{value:value}(new bytes(0));
require(success, 'TransferHelper: ETH_TRANSFER_FAILED');
}
}File 2 of 5: UniswapV2Factory
pragma solidity =0.5.16;
interface IUniswapV2Factory {
event PairCreated(address indexed token0, address indexed token1, address pair, uint);
function feeTo() external view returns (address);
function feeToSetter() external view returns (address);
function getPair(address tokenA, address tokenB) external view returns (address pair);
function allPairs(uint) external view returns (address pair);
function allPairsLength() external view returns (uint);
function createPair(address tokenA, address tokenB) external returns (address pair);
function setFeeTo(address) external;
function setFeeToSetter(address) external;
}
interface IUniswapV2Pair {
event Approval(address indexed owner, address indexed spender, uint value);
event Transfer(address indexed from, address indexed to, uint value);
function name() external pure returns (string memory);
function symbol() external pure returns (string memory);
function decimals() external pure returns (uint8);
function totalSupply() external view returns (uint);
function balanceOf(address owner) external view returns (uint);
function allowance(address owner, address spender) external view returns (uint);
function approve(address spender, uint value) external returns (bool);
function transfer(address to, uint value) external returns (bool);
function transferFrom(address from, address to, uint value) external returns (bool);
function DOMAIN_SEPARATOR() external view returns (bytes32);
function PERMIT_TYPEHASH() external pure returns (bytes32);
function nonces(address owner) external view returns (uint);
function permit(address owner, address spender, uint value, uint deadline, uint8 v, bytes32 r, bytes32 s) external;
event Mint(address indexed sender, uint amount0, uint amount1);
event Burn(address indexed sender, uint amount0, uint amount1, address indexed to);
event Swap(
address indexed sender,
uint amount0In,
uint amount1In,
uint amount0Out,
uint amount1Out,
address indexed to
);
event Sync(uint112 reserve0, uint112 reserve1);
function MINIMUM_LIQUIDITY() external pure returns (uint);
function factory() external view returns (address);
function token0() external view returns (address);
function token1() external view returns (address);
function getReserves() external view returns (uint112 reserve0, uint112 reserve1, uint32 blockTimestampLast);
function price0CumulativeLast() external view returns (uint);
function price1CumulativeLast() external view returns (uint);
function kLast() external view returns (uint);
function mint(address to) external returns (uint liquidity);
function burn(address to) external returns (uint amount0, uint amount1);
function swap(uint amount0Out, uint amount1Out, address to, bytes calldata data) external;
function skim(address to) external;
function sync() external;
function initialize(address, address) external;
}
interface IUniswapV2ERC20 {
event Approval(address indexed owner, address indexed spender, uint value);
event Transfer(address indexed from, address indexed to, uint value);
function name() external pure returns (string memory);
function symbol() external pure returns (string memory);
function decimals() external pure returns (uint8);
function totalSupply() external view returns (uint);
function balanceOf(address owner) external view returns (uint);
function allowance(address owner, address spender) external view returns (uint);
function approve(address spender, uint value) external returns (bool);
function transfer(address to, uint value) external returns (bool);
function transferFrom(address from, address to, uint value) external returns (bool);
function DOMAIN_SEPARATOR() external view returns (bytes32);
function PERMIT_TYPEHASH() external pure returns (bytes32);
function nonces(address owner) external view returns (uint);
function permit(address owner, address spender, uint value, uint deadline, uint8 v, bytes32 r, bytes32 s) external;
}
interface IERC20 {
event Approval(address indexed owner, address indexed spender, uint value);
event Transfer(address indexed from, address indexed to, uint value);
function name() external view returns (string memory);
function symbol() external view returns (string memory);
function decimals() external view returns (uint8);
function totalSupply() external view returns (uint);
function balanceOf(address owner) external view returns (uint);
function allowance(address owner, address spender) external view returns (uint);
function approve(address spender, uint value) external returns (bool);
function transfer(address to, uint value) external returns (bool);
function transferFrom(address from, address to, uint value) external returns (bool);
}
interface IUniswapV2Callee {
function uniswapV2Call(address sender, uint amount0, uint amount1, bytes calldata data) external;
}
contract UniswapV2ERC20 is IUniswapV2ERC20 {
using SafeMath for uint;
string public constant name = 'Uniswap V2';
string public constant symbol = 'UNI-V2';
uint8 public constant decimals = 18;
uint public totalSupply;
mapping(address => uint) public balanceOf;
mapping(address => mapping(address => uint)) public allowance;
bytes32 public DOMAIN_SEPARATOR;
// keccak256("Permit(address owner,address spender,uint256 value,uint256 nonce,uint256 deadline)");
bytes32 public constant PERMIT_TYPEHASH = 0x6e71edae12b1b97f4d1f60370fef10105fa2faae0126114a169c64845d6126c9;
mapping(address => uint) public nonces;
event Approval(address indexed owner, address indexed spender, uint value);
event Transfer(address indexed from, address indexed to, uint value);
constructor() public {
uint chainId;
assembly {
chainId := chainid
}
DOMAIN_SEPARATOR = keccak256(
abi.encode(
keccak256('EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)'),
keccak256(bytes(name)),
keccak256(bytes('1')),
chainId,
address(this)
)
);
}
function _mint(address to, uint value) internal {
totalSupply = totalSupply.add(value);
balanceOf[to] = balanceOf[to].add(value);
emit Transfer(address(0), to, value);
}
function _burn(address from, uint value) internal {
balanceOf[from] = balanceOf[from].sub(value);
totalSupply = totalSupply.sub(value);
emit Transfer(from, address(0), value);
}
function _approve(address owner, address spender, uint value) private {
allowance[owner][spender] = value;
emit Approval(owner, spender, value);
}
function _transfer(address from, address to, uint value) private {
balanceOf[from] = balanceOf[from].sub(value);
balanceOf[to] = balanceOf[to].add(value);
emit Transfer(from, to, value);
}
function approve(address spender, uint value) external returns (bool) {
_approve(msg.sender, spender, value);
return true;
}
function transfer(address to, uint value) external returns (bool) {
_transfer(msg.sender, to, value);
return true;
}
function transferFrom(address from, address to, uint value) external returns (bool) {
if (allowance[from][msg.sender] != uint(-1)) {
allowance[from][msg.sender] = allowance[from][msg.sender].sub(value);
}
_transfer(from, to, value);
return true;
}
function permit(address owner, address spender, uint value, uint deadline, uint8 v, bytes32 r, bytes32 s) external {
require(deadline >= block.timestamp, 'UniswapV2: EXPIRED');
bytes32 digest = keccak256(
abi.encodePacked(
'\x19\x01',
DOMAIN_SEPARATOR,
keccak256(abi.encode(PERMIT_TYPEHASH, owner, spender, value, nonces[owner]++, deadline))
)
);
address recoveredAddress = ecrecover(digest, v, r, s);
require(recoveredAddress != address(0) && recoveredAddress == owner, 'UniswapV2: INVALID_SIGNATURE');
_approve(owner, spender, value);
}
}
contract UniswapV2Pair is IUniswapV2Pair, UniswapV2ERC20 {
using SafeMath for uint;
using UQ112x112 for uint224;
uint public constant MINIMUM_LIQUIDITY = 10**3;
bytes4 private constant SELECTOR = bytes4(keccak256(bytes('transfer(address,uint256)')));
address public factory;
address public token0;
address public token1;
uint112 private reserve0; // uses single storage slot, accessible via getReserves
uint112 private reserve1; // uses single storage slot, accessible via getReserves
uint32 private blockTimestampLast; // uses single storage slot, accessible via getReserves
uint public price0CumulativeLast;
uint public price1CumulativeLast;
uint public kLast; // reserve0 * reserve1, as of immediately after the most recent liquidity event
uint private unlocked = 1;
modifier lock() {
require(unlocked == 1, 'UniswapV2: LOCKED');
unlocked = 0;
_;
unlocked = 1;
}
function getReserves() public view returns (uint112 _reserve0, uint112 _reserve1, uint32 _blockTimestampLast) {
_reserve0 = reserve0;
_reserve1 = reserve1;
_blockTimestampLast = blockTimestampLast;
}
function _safeTransfer(address token, address to, uint value) private {
(bool success, bytes memory data) = token.call(abi.encodeWithSelector(SELECTOR, to, value));
require(success && (data.length == 0 || abi.decode(data, (bool))), 'UniswapV2: TRANSFER_FAILED');
}
event Mint(address indexed sender, uint amount0, uint amount1);
event Burn(address indexed sender, uint amount0, uint amount1, address indexed to);
event Swap(
address indexed sender,
uint amount0In,
uint amount1In,
uint amount0Out,
uint amount1Out,
address indexed to
);
event Sync(uint112 reserve0, uint112 reserve1);
constructor() public {
factory = msg.sender;
}
// called once by the factory at time of deployment
function initialize(address _token0, address _token1) external {
require(msg.sender == factory, 'UniswapV2: FORBIDDEN'); // sufficient check
token0 = _token0;
token1 = _token1;
}
// update reserves and, on the first call per block, price accumulators
function _update(uint balance0, uint balance1, uint112 _reserve0, uint112 _reserve1) private {
require(balance0 <= uint112(-1) && balance1 <= uint112(-1), 'UniswapV2: OVERFLOW');
uint32 blockTimestamp = uint32(block.timestamp % 2**32);
uint32 timeElapsed = blockTimestamp - blockTimestampLast; // overflow is desired
if (timeElapsed > 0 && _reserve0 != 0 && _reserve1 != 0) {
// * never overflows, and + overflow is desired
price0CumulativeLast += uint(UQ112x112.encode(_reserve1).uqdiv(_reserve0)) * timeElapsed;
price1CumulativeLast += uint(UQ112x112.encode(_reserve0).uqdiv(_reserve1)) * timeElapsed;
}
reserve0 = uint112(balance0);
reserve1 = uint112(balance1);
blockTimestampLast = blockTimestamp;
emit Sync(reserve0, reserve1);
}
// if fee is on, mint liquidity equivalent to 1/6th of the growth in sqrt(k)
function _mintFee(uint112 _reserve0, uint112 _reserve1) private returns (bool feeOn) {
address feeTo = IUniswapV2Factory(factory).feeTo();
feeOn = feeTo != address(0);
uint _kLast = kLast; // gas savings
if (feeOn) {
if (_kLast != 0) {
uint rootK = Math.sqrt(uint(_reserve0).mul(_reserve1));
uint rootKLast = Math.sqrt(_kLast);
if (rootK > rootKLast) {
uint numerator = totalSupply.mul(rootK.sub(rootKLast));
uint denominator = rootK.mul(5).add(rootKLast);
uint liquidity = numerator / denominator;
if (liquidity > 0) _mint(feeTo, liquidity);
}
}
} else if (_kLast != 0) {
kLast = 0;
}
}
// this low-level function should be called from a contract which performs important safety checks
function mint(address to) external lock returns (uint liquidity) {
(uint112 _reserve0, uint112 _reserve1,) = getReserves(); // gas savings
uint balance0 = IERC20(token0).balanceOf(address(this));
uint balance1 = IERC20(token1).balanceOf(address(this));
uint amount0 = balance0.sub(_reserve0);
uint amount1 = balance1.sub(_reserve1);
bool feeOn = _mintFee(_reserve0, _reserve1);
uint _totalSupply = totalSupply; // gas savings, must be defined here since totalSupply can update in _mintFee
if (_totalSupply == 0) {
liquidity = Math.sqrt(amount0.mul(amount1)).sub(MINIMUM_LIQUIDITY);
_mint(address(0), MINIMUM_LIQUIDITY); // permanently lock the first MINIMUM_LIQUIDITY tokens
} else {
liquidity = Math.min(amount0.mul(_totalSupply) / _reserve0, amount1.mul(_totalSupply) / _reserve1);
}
require(liquidity > 0, 'UniswapV2: INSUFFICIENT_LIQUIDITY_MINTED');
_mint(to, liquidity);
_update(balance0, balance1, _reserve0, _reserve1);
if (feeOn) kLast = uint(reserve0).mul(reserve1); // reserve0 and reserve1 are up-to-date
emit Mint(msg.sender, amount0, amount1);
}
// this low-level function should be called from a contract which performs important safety checks
function burn(address to) external lock returns (uint amount0, uint amount1) {
(uint112 _reserve0, uint112 _reserve1,) = getReserves(); // gas savings
address _token0 = token0; // gas savings
address _token1 = token1; // gas savings
uint balance0 = IERC20(_token0).balanceOf(address(this));
uint balance1 = IERC20(_token1).balanceOf(address(this));
uint liquidity = balanceOf[address(this)];
bool feeOn = _mintFee(_reserve0, _reserve1);
uint _totalSupply = totalSupply; // gas savings, must be defined here since totalSupply can update in _mintFee
amount0 = liquidity.mul(balance0) / _totalSupply; // using balances ensures pro-rata distribution
amount1 = liquidity.mul(balance1) / _totalSupply; // using balances ensures pro-rata distribution
require(amount0 > 0 && amount1 > 0, 'UniswapV2: INSUFFICIENT_LIQUIDITY_BURNED');
_burn(address(this), liquidity);
_safeTransfer(_token0, to, amount0);
_safeTransfer(_token1, to, amount1);
balance0 = IERC20(_token0).balanceOf(address(this));
balance1 = IERC20(_token1).balanceOf(address(this));
_update(balance0, balance1, _reserve0, _reserve1);
if (feeOn) kLast = uint(reserve0).mul(reserve1); // reserve0 and reserve1 are up-to-date
emit Burn(msg.sender, amount0, amount1, to);
}
// this low-level function should be called from a contract which performs important safety checks
function swap(uint amount0Out, uint amount1Out, address to, bytes calldata data) external lock {
require(amount0Out > 0 || amount1Out > 0, 'UniswapV2: INSUFFICIENT_OUTPUT_AMOUNT');
(uint112 _reserve0, uint112 _reserve1,) = getReserves(); // gas savings
require(amount0Out < _reserve0 && amount1Out < _reserve1, 'UniswapV2: INSUFFICIENT_LIQUIDITY');
uint balance0;
uint balance1;
{ // scope for _token{0,1}, avoids stack too deep errors
address _token0 = token0;
address _token1 = token1;
require(to != _token0 && to != _token1, 'UniswapV2: INVALID_TO');
if (amount0Out > 0) _safeTransfer(_token0, to, amount0Out); // optimistically transfer tokens
if (amount1Out > 0) _safeTransfer(_token1, to, amount1Out); // optimistically transfer tokens
if (data.length > 0) IUniswapV2Callee(to).uniswapV2Call(msg.sender, amount0Out, amount1Out, data);
balance0 = IERC20(_token0).balanceOf(address(this));
balance1 = IERC20(_token1).balanceOf(address(this));
}
uint amount0In = balance0 > _reserve0 - amount0Out ? balance0 - (_reserve0 - amount0Out) : 0;
uint amount1In = balance1 > _reserve1 - amount1Out ? balance1 - (_reserve1 - amount1Out) : 0;
require(amount0In > 0 || amount1In > 0, 'UniswapV2: INSUFFICIENT_INPUT_AMOUNT');
{ // scope for reserve{0,1}Adjusted, avoids stack too deep errors
uint balance0Adjusted = balance0.mul(1000).sub(amount0In.mul(3));
uint balance1Adjusted = balance1.mul(1000).sub(amount1In.mul(3));
require(balance0Adjusted.mul(balance1Adjusted) >= uint(_reserve0).mul(_reserve1).mul(1000**2), 'UniswapV2: K');
}
_update(balance0, balance1, _reserve0, _reserve1);
emit Swap(msg.sender, amount0In, amount1In, amount0Out, amount1Out, to);
}
// force balances to match reserves
function skim(address to) external lock {
address _token0 = token0; // gas savings
address _token1 = token1; // gas savings
_safeTransfer(_token0, to, IERC20(_token0).balanceOf(address(this)).sub(reserve0));
_safeTransfer(_token1, to, IERC20(_token1).balanceOf(address(this)).sub(reserve1));
}
// force reserves to match balances
function sync() external lock {
_update(IERC20(token0).balanceOf(address(this)), IERC20(token1).balanceOf(address(this)), reserve0, reserve1);
}
}
contract UniswapV2Factory is IUniswapV2Factory {
address public feeTo;
address public feeToSetter;
mapping(address => mapping(address => address)) public getPair;
address[] public allPairs;
event PairCreated(address indexed token0, address indexed token1, address pair, uint);
constructor(address _feeToSetter) public {
feeToSetter = _feeToSetter;
}
function allPairsLength() external view returns (uint) {
return allPairs.length;
}
function createPair(address tokenA, address tokenB) external returns (address pair) {
require(tokenA != tokenB, 'UniswapV2: IDENTICAL_ADDRESSES');
(address token0, address token1) = tokenA < tokenB ? (tokenA, tokenB) : (tokenB, tokenA);
require(token0 != address(0), 'UniswapV2: ZERO_ADDRESS');
require(getPair[token0][token1] == address(0), 'UniswapV2: PAIR_EXISTS'); // single check is sufficient
bytes memory bytecode = type(UniswapV2Pair).creationCode;
bytes32 salt = keccak256(abi.encodePacked(token0, token1));
assembly {
pair := create2(0, add(bytecode, 32), mload(bytecode), salt)
}
IUniswapV2Pair(pair).initialize(token0, token1);
getPair[token0][token1] = pair;
getPair[token1][token0] = pair; // populate mapping in the reverse direction
allPairs.push(pair);
emit PairCreated(token0, token1, pair, allPairs.length);
}
function setFeeTo(address _feeTo) external {
require(msg.sender == feeToSetter, 'UniswapV2: FORBIDDEN');
feeTo = _feeTo;
}
function setFeeToSetter(address _feeToSetter) external {
require(msg.sender == feeToSetter, 'UniswapV2: FORBIDDEN');
feeToSetter = _feeToSetter;
}
}
// a library for performing overflow-safe math, courtesy of DappHub (https://github.com/dapphub/ds-math)
library SafeMath {
function add(uint x, uint y) internal pure returns (uint z) {
require((z = x + y) >= x, 'ds-math-add-overflow');
}
function sub(uint x, uint y) internal pure returns (uint z) {
require((z = x - y) <= x, 'ds-math-sub-underflow');
}
function mul(uint x, uint y) internal pure returns (uint z) {
require(y == 0 || (z = x * y) / y == x, 'ds-math-mul-overflow');
}
}
// a library for performing various math operations
library Math {
function min(uint x, uint y) internal pure returns (uint z) {
z = x < y ? x : y;
}
// babylonian method (https://en.wikipedia.org/wiki/Methods_of_computing_square_roots#Babylonian_method)
function sqrt(uint y) internal pure returns (uint z) {
if (y > 3) {
z = y;
uint x = y / 2 + 1;
while (x < z) {
z = x;
x = (y / x + x) / 2;
}
} else if (y != 0) {
z = 1;
}
}
}
// a library for handling binary fixed point numbers (https://en.wikipedia.org/wiki/Q_(number_format))
// range: [0, 2**112 - 1]
// resolution: 1 / 2**112
library UQ112x112 {
uint224 constant Q112 = 2**112;
// encode a uint112 as a UQ112x112
function encode(uint112 y) internal pure returns (uint224 z) {
z = uint224(y) * Q112; // never overflows
}
// divide a UQ112x112 by a uint112, returning a UQ112x112
function uqdiv(uint224 x, uint112 y) internal pure returns (uint224 z) {
z = x / uint224(y);
}
}File 3 of 5: UniswapV2Pair
// File: contracts/interfaces/IUniswapV2Pair.sol
pragma solidity >=0.5.0;
interface IUniswapV2Pair {
event Approval(address indexed owner, address indexed spender, uint value);
event Transfer(address indexed from, address indexed to, uint value);
function name() external pure returns (string memory);
function symbol() external pure returns (string memory);
function decimals() external pure returns (uint8);
function totalSupply() external view returns (uint);
function balanceOf(address owner) external view returns (uint);
function allowance(address owner, address spender) external view returns (uint);
function approve(address spender, uint value) external returns (bool);
function transfer(address to, uint value) external returns (bool);
function transferFrom(address from, address to, uint value) external returns (bool);
function DOMAIN_SEPARATOR() external view returns (bytes32);
function PERMIT_TYPEHASH() external pure returns (bytes32);
function nonces(address owner) external view returns (uint);
function permit(address owner, address spender, uint value, uint deadline, uint8 v, bytes32 r, bytes32 s) external;
event Mint(address indexed sender, uint amount0, uint amount1);
event Burn(address indexed sender, uint amount0, uint amount1, address indexed to);
event Swap(
address indexed sender,
uint amount0In,
uint amount1In,
uint amount0Out,
uint amount1Out,
address indexed to
);
event Sync(uint112 reserve0, uint112 reserve1);
function MINIMUM_LIQUIDITY() external pure returns (uint);
function factory() external view returns (address);
function token0() external view returns (address);
function token1() external view returns (address);
function getReserves() external view returns (uint112 reserve0, uint112 reserve1, uint32 blockTimestampLast);
function price0CumulativeLast() external view returns (uint);
function price1CumulativeLast() external view returns (uint);
function kLast() external view returns (uint);
function mint(address to) external returns (uint liquidity);
function burn(address to) external returns (uint amount0, uint amount1);
function swap(uint amount0Out, uint amount1Out, address to, bytes calldata data) external;
function skim(address to) external;
function sync() external;
function initialize(address, address) external;
}
// File: contracts/interfaces/IUniswapV2ERC20.sol
pragma solidity >=0.5.0;
interface IUniswapV2ERC20 {
event Approval(address indexed owner, address indexed spender, uint value);
event Transfer(address indexed from, address indexed to, uint value);
function name() external pure returns (string memory);
function symbol() external pure returns (string memory);
function decimals() external pure returns (uint8);
function totalSupply() external view returns (uint);
function balanceOf(address owner) external view returns (uint);
function allowance(address owner, address spender) external view returns (uint);
function approve(address spender, uint value) external returns (bool);
function transfer(address to, uint value) external returns (bool);
function transferFrom(address from, address to, uint value) external returns (bool);
function DOMAIN_SEPARATOR() external view returns (bytes32);
function PERMIT_TYPEHASH() external pure returns (bytes32);
function nonces(address owner) external view returns (uint);
function permit(address owner, address spender, uint value, uint deadline, uint8 v, bytes32 r, bytes32 s) external;
}
// File: contracts/libraries/SafeMath.sol
pragma solidity =0.5.16;
// a library for performing overflow-safe math, courtesy of DappHub (https://github.com/dapphub/ds-math)
library SafeMath {
function add(uint x, uint y) internal pure returns (uint z) {
require((z = x + y) >= x, 'ds-math-add-overflow');
}
function sub(uint x, uint y) internal pure returns (uint z) {
require((z = x - y) <= x, 'ds-math-sub-underflow');
}
function mul(uint x, uint y) internal pure returns (uint z) {
require(y == 0 || (z = x * y) / y == x, 'ds-math-mul-overflow');
}
}
// File: contracts/UniswapV2ERC20.sol
pragma solidity =0.5.16;
contract UniswapV2ERC20 is IUniswapV2ERC20 {
using SafeMath for uint;
string public constant name = 'Uniswap V2';
string public constant symbol = 'UNI-V2';
uint8 public constant decimals = 18;
uint public totalSupply;
mapping(address => uint) public balanceOf;
mapping(address => mapping(address => uint)) public allowance;
bytes32 public DOMAIN_SEPARATOR;
// keccak256("Permit(address owner,address spender,uint256 value,uint256 nonce,uint256 deadline)");
bytes32 public constant PERMIT_TYPEHASH = 0x6e71edae12b1b97f4d1f60370fef10105fa2faae0126114a169c64845d6126c9;
mapping(address => uint) public nonces;
event Approval(address indexed owner, address indexed spender, uint value);
event Transfer(address indexed from, address indexed to, uint value);
constructor() public {
uint chainId;
assembly {
chainId := chainid
}
DOMAIN_SEPARATOR = keccak256(
abi.encode(
keccak256('EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)'),
keccak256(bytes(name)),
keccak256(bytes('1')),
chainId,
address(this)
)
);
}
function _mint(address to, uint value) internal {
totalSupply = totalSupply.add(value);
balanceOf[to] = balanceOf[to].add(value);
emit Transfer(address(0), to, value);
}
function _burn(address from, uint value) internal {
balanceOf[from] = balanceOf[from].sub(value);
totalSupply = totalSupply.sub(value);
emit Transfer(from, address(0), value);
}
function _approve(address owner, address spender, uint value) private {
allowance[owner][spender] = value;
emit Approval(owner, spender, value);
}
function _transfer(address from, address to, uint value) private {
balanceOf[from] = balanceOf[from].sub(value);
balanceOf[to] = balanceOf[to].add(value);
emit Transfer(from, to, value);
}
function approve(address spender, uint value) external returns (bool) {
_approve(msg.sender, spender, value);
return true;
}
function transfer(address to, uint value) external returns (bool) {
_transfer(msg.sender, to, value);
return true;
}
function transferFrom(address from, address to, uint value) external returns (bool) {
if (allowance[from][msg.sender] != uint(-1)) {
allowance[from][msg.sender] = allowance[from][msg.sender].sub(value);
}
_transfer(from, to, value);
return true;
}
function permit(address owner, address spender, uint value, uint deadline, uint8 v, bytes32 r, bytes32 s) external {
require(deadline >= block.timestamp, 'UniswapV2: EXPIRED');
bytes32 digest = keccak256(
abi.encodePacked(
'\x19\x01',
DOMAIN_SEPARATOR,
keccak256(abi.encode(PERMIT_TYPEHASH, owner, spender, value, nonces[owner]++, deadline))
)
);
address recoveredAddress = ecrecover(digest, v, r, s);
require(recoveredAddress != address(0) && recoveredAddress == owner, 'UniswapV2: INVALID_SIGNATURE');
_approve(owner, spender, value);
}
}
// File: contracts/libraries/Math.sol
pragma solidity =0.5.16;
// a library for performing various math operations
library Math {
function min(uint x, uint y) internal pure returns (uint z) {
z = x < y ? x : y;
}
// babylonian method (https://en.wikipedia.org/wiki/Methods_of_computing_square_roots#Babylonian_method)
function sqrt(uint y) internal pure returns (uint z) {
if (y > 3) {
z = y;
uint x = y / 2 + 1;
while (x < z) {
z = x;
x = (y / x + x) / 2;
}
} else if (y != 0) {
z = 1;
}
}
}
// File: contracts/libraries/UQ112x112.sol
pragma solidity =0.5.16;
// a library for handling binary fixed point numbers (https://en.wikipedia.org/wiki/Q_(number_format))
// range: [0, 2**112 - 1]
// resolution: 1 / 2**112
library UQ112x112 {
uint224 constant Q112 = 2**112;
// encode a uint112 as a UQ112x112
function encode(uint112 y) internal pure returns (uint224 z) {
z = uint224(y) * Q112; // never overflows
}
// divide a UQ112x112 by a uint112, returning a UQ112x112
function uqdiv(uint224 x, uint112 y) internal pure returns (uint224 z) {
z = x / uint224(y);
}
}
// File: contracts/interfaces/IERC20.sol
pragma solidity >=0.5.0;
interface IERC20 {
event Approval(address indexed owner, address indexed spender, uint value);
event Transfer(address indexed from, address indexed to, uint value);
function name() external view returns (string memory);
function symbol() external view returns (string memory);
function decimals() external view returns (uint8);
function totalSupply() external view returns (uint);
function balanceOf(address owner) external view returns (uint);
function allowance(address owner, address spender) external view returns (uint);
function approve(address spender, uint value) external returns (bool);
function transfer(address to, uint value) external returns (bool);
function transferFrom(address from, address to, uint value) external returns (bool);
}
// File: contracts/interfaces/IUniswapV2Factory.sol
pragma solidity >=0.5.0;
interface IUniswapV2Factory {
event PairCreated(address indexed token0, address indexed token1, address pair, uint);
function feeTo() external view returns (address);
function feeToSetter() external view returns (address);
function getPair(address tokenA, address tokenB) external view returns (address pair);
function allPairs(uint) external view returns (address pair);
function allPairsLength() external view returns (uint);
function createPair(address tokenA, address tokenB) external returns (address pair);
function setFeeTo(address) external;
function setFeeToSetter(address) external;
}
// File: contracts/interfaces/IUniswapV2Callee.sol
pragma solidity >=0.5.0;
interface IUniswapV2Callee {
function uniswapV2Call(address sender, uint amount0, uint amount1, bytes calldata data) external;
}
// File: contracts/UniswapV2Pair.sol
pragma solidity =0.5.16;
contract UniswapV2Pair is IUniswapV2Pair, UniswapV2ERC20 {
using SafeMath for uint;
using UQ112x112 for uint224;
uint public constant MINIMUM_LIQUIDITY = 10**3;
bytes4 private constant SELECTOR = bytes4(keccak256(bytes('transfer(address,uint256)')));
address public factory;
address public token0;
address public token1;
uint112 private reserve0; // uses single storage slot, accessible via getReserves
uint112 private reserve1; // uses single storage slot, accessible via getReserves
uint32 private blockTimestampLast; // uses single storage slot, accessible via getReserves
uint public price0CumulativeLast;
uint public price1CumulativeLast;
uint public kLast; // reserve0 * reserve1, as of immediately after the most recent liquidity event
uint private unlocked = 1;
modifier lock() {
require(unlocked == 1, 'UniswapV2: LOCKED');
unlocked = 0;
_;
unlocked = 1;
}
function getReserves() public view returns (uint112 _reserve0, uint112 _reserve1, uint32 _blockTimestampLast) {
_reserve0 = reserve0;
_reserve1 = reserve1;
_blockTimestampLast = blockTimestampLast;
}
function _safeTransfer(address token, address to, uint value) private {
(bool success, bytes memory data) = token.call(abi.encodeWithSelector(SELECTOR, to, value));
require(success && (data.length == 0 || abi.decode(data, (bool))), 'UniswapV2: TRANSFER_FAILED');
}
event Mint(address indexed sender, uint amount0, uint amount1);
event Burn(address indexed sender, uint amount0, uint amount1, address indexed to);
event Swap(
address indexed sender,
uint amount0In,
uint amount1In,
uint amount0Out,
uint amount1Out,
address indexed to
);
event Sync(uint112 reserve0, uint112 reserve1);
constructor() public {
factory = msg.sender;
}
// called once by the factory at time of deployment
function initialize(address _token0, address _token1) external {
require(msg.sender == factory, 'UniswapV2: FORBIDDEN'); // sufficient check
token0 = _token0;
token1 = _token1;
}
// update reserves and, on the first call per block, price accumulators
function _update(uint balance0, uint balance1, uint112 _reserve0, uint112 _reserve1) private {
require(balance0 <= uint112(-1) && balance1 <= uint112(-1), 'UniswapV2: OVERFLOW');
uint32 blockTimestamp = uint32(block.timestamp % 2**32);
uint32 timeElapsed = blockTimestamp - blockTimestampLast; // overflow is desired
if (timeElapsed > 0 && _reserve0 != 0 && _reserve1 != 0) {
// * never overflows, and + overflow is desired
price0CumulativeLast += uint(UQ112x112.encode(_reserve1).uqdiv(_reserve0)) * timeElapsed;
price1CumulativeLast += uint(UQ112x112.encode(_reserve0).uqdiv(_reserve1)) * timeElapsed;
}
reserve0 = uint112(balance0);
reserve1 = uint112(balance1);
blockTimestampLast = blockTimestamp;
emit Sync(reserve0, reserve1);
}
// if fee is on, mint liquidity equivalent to 1/6th of the growth in sqrt(k)
function _mintFee(uint112 _reserve0, uint112 _reserve1) private returns (bool feeOn) {
address feeTo = IUniswapV2Factory(factory).feeTo();
feeOn = feeTo != address(0);
uint _kLast = kLast; // gas savings
if (feeOn) {
if (_kLast != 0) {
uint rootK = Math.sqrt(uint(_reserve0).mul(_reserve1));
uint rootKLast = Math.sqrt(_kLast);
if (rootK > rootKLast) {
uint numerator = totalSupply.mul(rootK.sub(rootKLast));
uint denominator = rootK.mul(5).add(rootKLast);
uint liquidity = numerator / denominator;
if (liquidity > 0) _mint(feeTo, liquidity);
}
}
} else if (_kLast != 0) {
kLast = 0;
}
}
// this low-level function should be called from a contract which performs important safety checks
function mint(address to) external lock returns (uint liquidity) {
(uint112 _reserve0, uint112 _reserve1,) = getReserves(); // gas savings
uint balance0 = IERC20(token0).balanceOf(address(this));
uint balance1 = IERC20(token1).balanceOf(address(this));
uint amount0 = balance0.sub(_reserve0);
uint amount1 = balance1.sub(_reserve1);
bool feeOn = _mintFee(_reserve0, _reserve1);
uint _totalSupply = totalSupply; // gas savings, must be defined here since totalSupply can update in _mintFee
if (_totalSupply == 0) {
liquidity = Math.sqrt(amount0.mul(amount1)).sub(MINIMUM_LIQUIDITY);
_mint(address(0), MINIMUM_LIQUIDITY); // permanently lock the first MINIMUM_LIQUIDITY tokens
} else {
liquidity = Math.min(amount0.mul(_totalSupply) / _reserve0, amount1.mul(_totalSupply) / _reserve1);
}
require(liquidity > 0, 'UniswapV2: INSUFFICIENT_LIQUIDITY_MINTED');
_mint(to, liquidity);
_update(balance0, balance1, _reserve0, _reserve1);
if (feeOn) kLast = uint(reserve0).mul(reserve1); // reserve0 and reserve1 are up-to-date
emit Mint(msg.sender, amount0, amount1);
}
// this low-level function should be called from a contract which performs important safety checks
function burn(address to) external lock returns (uint amount0, uint amount1) {
(uint112 _reserve0, uint112 _reserve1,) = getReserves(); // gas savings
address _token0 = token0; // gas savings
address _token1 = token1; // gas savings
uint balance0 = IERC20(_token0).balanceOf(address(this));
uint balance1 = IERC20(_token1).balanceOf(address(this));
uint liquidity = balanceOf[address(this)];
bool feeOn = _mintFee(_reserve0, _reserve1);
uint _totalSupply = totalSupply; // gas savings, must be defined here since totalSupply can update in _mintFee
amount0 = liquidity.mul(balance0) / _totalSupply; // using balances ensures pro-rata distribution
amount1 = liquidity.mul(balance1) / _totalSupply; // using balances ensures pro-rata distribution
require(amount0 > 0 && amount1 > 0, 'UniswapV2: INSUFFICIENT_LIQUIDITY_BURNED');
_burn(address(this), liquidity);
_safeTransfer(_token0, to, amount0);
_safeTransfer(_token1, to, amount1);
balance0 = IERC20(_token0).balanceOf(address(this));
balance1 = IERC20(_token1).balanceOf(address(this));
_update(balance0, balance1, _reserve0, _reserve1);
if (feeOn) kLast = uint(reserve0).mul(reserve1); // reserve0 and reserve1 are up-to-date
emit Burn(msg.sender, amount0, amount1, to);
}
// this low-level function should be called from a contract which performs important safety checks
function swap(uint amount0Out, uint amount1Out, address to, bytes calldata data) external lock {
require(amount0Out > 0 || amount1Out > 0, 'UniswapV2: INSUFFICIENT_OUTPUT_AMOUNT');
(uint112 _reserve0, uint112 _reserve1,) = getReserves(); // gas savings
require(amount0Out < _reserve0 && amount1Out < _reserve1, 'UniswapV2: INSUFFICIENT_LIQUIDITY');
uint balance0;
uint balance1;
{ // scope for _token{0,1}, avoids stack too deep errors
address _token0 = token0;
address _token1 = token1;
require(to != _token0 && to != _token1, 'UniswapV2: INVALID_TO');
if (amount0Out > 0) _safeTransfer(_token0, to, amount0Out); // optimistically transfer tokens
if (amount1Out > 0) _safeTransfer(_token1, to, amount1Out); // optimistically transfer tokens
if (data.length > 0) IUniswapV2Callee(to).uniswapV2Call(msg.sender, amount0Out, amount1Out, data);
balance0 = IERC20(_token0).balanceOf(address(this));
balance1 = IERC20(_token1).balanceOf(address(this));
}
uint amount0In = balance0 > _reserve0 - amount0Out ? balance0 - (_reserve0 - amount0Out) : 0;
uint amount1In = balance1 > _reserve1 - amount1Out ? balance1 - (_reserve1 - amount1Out) : 0;
require(amount0In > 0 || amount1In > 0, 'UniswapV2: INSUFFICIENT_INPUT_AMOUNT');
{ // scope for reserve{0,1}Adjusted, avoids stack too deep errors
uint balance0Adjusted = balance0.mul(1000).sub(amount0In.mul(3));
uint balance1Adjusted = balance1.mul(1000).sub(amount1In.mul(3));
require(balance0Adjusted.mul(balance1Adjusted) >= uint(_reserve0).mul(_reserve1).mul(1000**2), 'UniswapV2: K');
}
_update(balance0, balance1, _reserve0, _reserve1);
emit Swap(msg.sender, amount0In, amount1In, amount0Out, amount1Out, to);
}
// force balances to match reserves
function skim(address to) external lock {
address _token0 = token0; // gas savings
address _token1 = token1; // gas savings
_safeTransfer(_token0, to, IERC20(_token0).balanceOf(address(this)).sub(reserve0));
_safeTransfer(_token1, to, IERC20(_token1).balanceOf(address(this)).sub(reserve1));
}
// force reserves to match balances
function sync() external lock {
_update(IERC20(token0).balanceOf(address(this)), IERC20(token1).balanceOf(address(this)), reserve0, reserve1);
}
}File 4 of 5: TITANX
// SPDX-License-Identifier: UNLICENSED
pragma solidity ^0.8.10;
import "./openzeppelin/security/ReentrancyGuard.sol";
import "./openzeppelin/token/ERC20/ERC20.sol";
import "./openzeppelin/interfaces/IERC165.sol";
import "../interfaces/ITitanOnBurn.sol";
import "../interfaces/ITITANX.sol";
import "../libs/calcFunctions.sol";
import "./GlobalInfo.sol";
import "./MintInfo.sol";
import "./StakeInfo.sol";
import "./BurnInfo.sol";
import "./OwnerInfo.sol";
//custom errors
error TitanX_InvalidAmount();
error TitanX_InsufficientBalance();
error TitanX_NotSupportedContract();
error TitanX_InsufficientProtocolFees();
error TitanX_FailedToSendAmount();
error TitanX_NotAllowed();
error TitanX_NoCycleRewardToClaim();
error TitanX_NoSharesExist();
error TitanX_EmptyUndistributeFees();
error TitanX_InvalidBurnRewardPercent();
error TitanX_InvalidBatchCount();
error TitanX_InvalidMintLadderInterval();
error TitanX_InvalidMintLadderRange();
error TitanX_MaxedWalletMints();
error TitanX_LPTokensHasMinted();
error TitanX_InvalidAddress();
error TitanX_InsufficientBurnAllowance();
/** @title Titan X */
contract TITANX is ERC20, ReentrancyGuard, GlobalInfo, MintInfo, StakeInfo, BurnInfo, OwnerInfo {
/** Storage Variables*/
/** @dev stores genesis wallet address */
address private s_genesisAddress;
/** @dev stores buy and burn contract address */
address private s_buyAndBurnAddress;
/** @dev tracks collected protocol fees until it is distributed */
uint88 private s_undistributedEth;
/** @dev tracks burn reward from distributeETH() until payout is triggered */
uint88 private s_cycleBurnReward;
/** @dev tracks if initial LP tokens has minted or not */
InitialLPMinted private s_initialLPMinted;
/** @dev trigger to turn on burn pool reward */
BurnPoolEnabled private s_burnPoolEnabled;
/** @dev tracks user + project burn mints allowance */
mapping(address => mapping(address => uint256)) private s_allowanceBurnMints;
/** @dev tracks user + project burn stakes allowance */
mapping(address => mapping(address => uint256)) private s_allowanceBurnStakes;
event ProtocolFeeRecevied(address indexed user, uint256 indexed day, uint256 indexed amount);
event ETHDistributed(address indexed caller, uint256 indexed amount);
event CyclePayoutTriggered(
address indexed caller,
uint256 indexed cycleNo,
uint256 indexed reward,
uint256 burnReward
);
event RewardClaimed(address indexed user, uint256 indexed reward);
event ApproveBurnStakes(address indexed user, address indexed project, uint256 indexed amount);
event ApproveBurnMints(address indexed user, address indexed project, uint256 indexed amount);
constructor(address genesisAddress, address buyAndBurnAddress) ERC20("TITAN X", "TITANX") {
if (genesisAddress == address(0)) revert TitanX_InvalidAddress();
if (buyAndBurnAddress == address(0)) revert TitanX_InvalidAddress();
s_genesisAddress = genesisAddress;
s_buyAndBurnAddress = buyAndBurnAddress;
}
/**** Mint Functions *****/
/** @notice create a new mint
* @param mintPower 1 - 100
* @param numOfDays mint length of 1 - 280
*/
function startMint(
uint256 mintPower,
uint256 numOfDays
) external payable nonReentrant dailyUpdate {
if (getUserLatestMintId(_msgSender()) + 1 > MAX_MINT_PER_WALLET)
revert TitanX_MaxedWalletMints();
uint256 gMintPower = getGlobalMintPower() + mintPower;
uint256 currentTRank = getGlobalTRank() + 1;
uint256 gMinting = getTotalMinting() +
_startMint(
_msgSender(),
mintPower,
numOfDays,
getCurrentMintableTitan(),
getCurrentMintPowerBonus(),
getCurrentEAABonus(),
getUserBurnAmplifierBonus(_msgSender()),
gMintPower,
currentTRank,
getBatchMintCost(mintPower, 1, getCurrentMintCost())
);
_updateMintStats(currentTRank, gMintPower, gMinting);
_protocolFees(mintPower, 1);
}
/** @notice create new mints in batch of up to 100 mints
* @param mintPower 1 - 100
* @param numOfDays mint length of 1 - 280
* @param count 1 - 100
*/
function batchMint(
uint256 mintPower,
uint256 numOfDays,
uint256 count
) external payable nonReentrant dailyUpdate {
if (count == 0 || count > MAX_BATCH_MINT_COUNT) revert TitanX_InvalidBatchCount();
if (getUserLatestMintId(_msgSender()) + count > MAX_MINT_PER_WALLET)
revert TitanX_MaxedWalletMints();
_startBatchMint(
_msgSender(),
mintPower,
numOfDays,
getCurrentMintableTitan(),
getCurrentMintPowerBonus(),
getCurrentEAABonus(),
getUserBurnAmplifierBonus(_msgSender()),
count,
getBatchMintCost(mintPower, 1, getCurrentMintCost()) //only need 1 mint cost for all mints
);
_protocolFees(mintPower, count);
}
/** @notice create new mints in ladder up to 100 mints
* @param mintPower 1 - 100
* @param minDay minimum mint length
* @param maxDay maximum mint lenght
* @param dayInterval day increase from previous mint length
* @param countPerInterval how many mints per mint length
*/
function batchMintLadder(
uint256 mintPower,
uint256 minDay,
uint256 maxDay,
uint256 dayInterval,
uint256 countPerInterval
) external payable nonReentrant dailyUpdate {
if (dayInterval == 0) revert TitanX_InvalidMintLadderInterval();
if (maxDay < minDay || minDay == 0 || maxDay > MAX_MINT_LENGTH)
revert TitanX_InvalidMintLadderRange();
uint256 count = getBatchMintLadderCount(minDay, maxDay, dayInterval, countPerInterval);
if (count == 0 || count > MAX_BATCH_MINT_COUNT) revert TitanX_InvalidBatchCount();
if (getUserLatestMintId(_msgSender()) + count > MAX_MINT_PER_WALLET)
revert TitanX_MaxedWalletMints();
uint256 mintCost = getBatchMintCost(mintPower, 1, getCurrentMintCost()); //only need 1 mint cost for all mints
_startbatchMintLadder(
_msgSender(),
mintPower,
minDay,
maxDay,
dayInterval,
countPerInterval,
getCurrentMintableTitan(),
getCurrentMintPowerBonus(),
getCurrentEAABonus(),
getUserBurnAmplifierBonus(_msgSender()),
mintCost
);
_protocolFees(mintPower, count);
}
/** @notice claim a matured mint
* @param id mint id
*/
function claimMint(uint256 id) external dailyUpdate nonReentrant {
_mintReward(_claimMint(_msgSender(), id, MintAction.CLAIM));
}
/** @notice batch claim matured mint of up to 100 claims per run
*/
function batchClaimMint() external dailyUpdate nonReentrant {
_mintReward(_batchClaimMint(_msgSender()));
}
/**** Stake Functions *****/
/** @notice start a new stake
* @param amount titan amount
* @param numOfDays stake length
*/
function startStake(uint256 amount, uint256 numOfDays) external dailyUpdate nonReentrant {
if (balanceOf(_msgSender()) < amount) revert TitanX_InsufficientBalance();
_burn(_msgSender(), amount);
_initFirstSharesCycleIndex(
_msgSender(),
_startStake(
_msgSender(),
amount,
numOfDays,
getCurrentShareRate(),
getCurrentContractDay(),
getGlobalPayoutTriggered()
)
);
}
/** @notice end a stake
* @param id stake id
*/
function endStake(uint256 id) external dailyUpdate nonReentrant {
_mint(
_msgSender(),
_endStake(
_msgSender(),
id,
getCurrentContractDay(),
StakeAction.END,
StakeAction.END_OWN,
getGlobalPayoutTriggered()
)
);
}
/** @notice end a stake for others
* @param user wallet address
* @param id stake id
*/
function endStakeForOthers(address user, uint256 id) external dailyUpdate nonReentrant {
_mint(
user,
_endStake(
user,
id,
getCurrentContractDay(),
StakeAction.END,
StakeAction.END_OTHER,
getGlobalPayoutTriggered()
)
);
}
/** @notice distribute the collected protocol fees into different pools/payouts
* automatically send the incentive fee to caller, buyAndBurnFunds to BuyAndBurn contract, and genesis wallet
*/
function distributeETH() external dailyUpdate nonReentrant {
(uint256 incentiveFee, uint256 buyAndBurnFunds, uint256 genesisWallet) = _distributeETH();
_sendFunds(incentiveFee, buyAndBurnFunds, genesisWallet);
}
/** @notice trigger cylce payouts for day 8, 28, 90, 369, 888 including the burn reward cycle 28
* As long as the cycle has met its maturiy day (eg. Cycle8 is day 8), payout can be triggered in any day onwards
*/
function triggerPayouts() external dailyUpdate nonReentrant {
uint256 globalActiveShares = getGlobalShares() - getGlobalExpiredShares();
if (globalActiveShares < 1) revert TitanX_NoSharesExist();
uint256 incentiveFee;
uint256 buyAndBurnFunds;
uint256 genesisWallet;
if (s_undistributedEth != 0)
(incentiveFee, buyAndBurnFunds, genesisWallet) = _distributeETH();
uint256 currentContractDay = getCurrentContractDay();
PayoutTriggered isTriggered = PayoutTriggered.NO;
_triggerCyclePayout(DAY8, globalActiveShares, currentContractDay) == PayoutTriggered.YES &&
isTriggered == PayoutTriggered.NO
? isTriggered = PayoutTriggered.YES
: isTriggered;
_triggerCyclePayout(DAY28, globalActiveShares, currentContractDay) == PayoutTriggered.YES &&
isTriggered == PayoutTriggered.NO
? isTriggered = PayoutTriggered.YES
: isTriggered;
_triggerCyclePayout(DAY90, globalActiveShares, currentContractDay) == PayoutTriggered.YES &&
isTriggered == PayoutTriggered.NO
? isTriggered = PayoutTriggered.YES
: isTriggered;
_triggerCyclePayout(DAY369, globalActiveShares, currentContractDay) ==
PayoutTriggered.YES &&
isTriggered == PayoutTriggered.NO
? isTriggered = PayoutTriggered.YES
: isTriggered;
_triggerCyclePayout(DAY888, globalActiveShares, currentContractDay) ==
PayoutTriggered.YES &&
isTriggered == PayoutTriggered.NO
? isTriggered = PayoutTriggered.YES
: isTriggered;
if (isTriggered == PayoutTriggered.YES) {
if (getGlobalPayoutTriggered() == PayoutTriggered.NO) _setGlobalPayoutTriggered();
}
if (incentiveFee != 0) _sendFunds(incentiveFee, buyAndBurnFunds, genesisWallet);
}
/** @notice claim all user available ETH payouts in one call */
function claimUserAvailableETHPayouts() external dailyUpdate nonReentrant {
uint256 reward = _claimCyclePayout(DAY8, PayoutClaim.SHARES);
reward += _claimCyclePayout(DAY28, PayoutClaim.SHARES);
reward += _claimCyclePayout(DAY90, PayoutClaim.SHARES);
reward += _claimCyclePayout(DAY369, PayoutClaim.SHARES);
reward += _claimCyclePayout(DAY888, PayoutClaim.SHARES);
if (reward == 0) revert TitanX_NoCycleRewardToClaim();
_sendViaCall(payable(_msgSender()), reward);
emit RewardClaimed(_msgSender(), reward);
}
/** @notice claim all user available burn rewards in one call */
function claimUserAvailableETHBurnPool() external dailyUpdate nonReentrant {
uint256 reward = _claimCyclePayout(DAY28, PayoutClaim.BURN);
if (reward == 0) revert TitanX_NoCycleRewardToClaim();
_sendViaCall(payable(_msgSender()), reward);
emit RewardClaimed(_msgSender(), reward);
}
/** @notice Set BuyAndBurn Contract Address - able to change to new contract that supports UniswapV4+
* Only owner can call this function
* @param contractAddress BuyAndBurn contract address
*/
function setBuyAndBurnContractAddress(address contractAddress) external onlyOwner {
if (contractAddress == address(0)) revert TitanX_InvalidAddress();
s_buyAndBurnAddress = contractAddress;
}
/** @notice enable burn pool to start accumulate reward. Only owner can call this function. */
function enableBurnPoolReward() external onlyOwner {
s_burnPoolEnabled = BurnPoolEnabled.TRUE;
}
/** @notice Set to new genesis wallet. Only genesis wallet can call this function
* @param newAddress new genesis wallet address
*/
function setNewGenesisAddress(address newAddress) external {
if (_msgSender() != s_genesisAddress) revert TitanX_NotAllowed();
if (newAddress == address(0)) revert TitanX_InvalidAddress();
s_genesisAddress = newAddress;
}
/** @notice mint initial LP tokens. Only BuyAndBurn contract set by genesis wallet can call this function
*/
function mintLPTokens() external {
if (_msgSender() != s_buyAndBurnAddress) revert TitanX_NotAllowed();
if (s_initialLPMinted == InitialLPMinted.YES) revert TitanX_LPTokensHasMinted();
s_initialLPMinted = InitialLPMinted.YES;
_mint(s_buyAndBurnAddress, INITAL_LP_TOKENS);
}
/** @notice burn all BuyAndBurn contract Titan */
function burnLPTokens() external dailyUpdate {
_burn(s_buyAndBurnAddress, balanceOf(s_buyAndBurnAddress));
}
//private functions
/** @dev mint reward to user and 1% to genesis wallet
* @param reward titan amount
*/
function _mintReward(uint256 reward) private {
_mint(_msgSender(), reward);
_mint(s_genesisAddress, (reward * 800) / PERCENT_BPS);
}
/** @dev send ETH to respective parties
* @param incentiveFee fees for caller to run distributeETH()
* @param buyAndBurnFunds funds for buy and burn
* @param genesisWalletFunds funds for genesis wallet
*/
function _sendFunds(
uint256 incentiveFee,
uint256 buyAndBurnFunds,
uint256 genesisWalletFunds
) private {
_sendViaCall(payable(_msgSender()), incentiveFee);
_sendViaCall(payable(s_genesisAddress), genesisWalletFunds);
_sendViaCall(payable(s_buyAndBurnAddress), buyAndBurnFunds);
}
/** @dev calculation to distribute collected protocol fees into different pools/parties */
function _distributeETH()
private
returns (uint256 incentiveFee, uint256 buyAndBurnFunds, uint256 genesisWallet)
{
uint256 accumulatedFees = s_undistributedEth;
if (accumulatedFees == 0) revert TitanX_EmptyUndistributeFees();
s_undistributedEth = 0;
emit ETHDistributed(_msgSender(), accumulatedFees);
incentiveFee = (accumulatedFees * INCENTIVE_FEE_PERCENT) / INCENTIVE_FEE_PERCENT_BASE; //0.01%
accumulatedFees -= incentiveFee;
buyAndBurnFunds = (accumulatedFees * PERCENT_TO_BUY_AND_BURN) / PERCENT_BPS;
uint256 cylceBurnReward = (accumulatedFees * PERCENT_TO_BURN_PAYOUTS) / PERCENT_BPS;
genesisWallet = (accumulatedFees * PERCENT_TO_GENESIS) / PERCENT_BPS;
uint256 cycleRewardPool = accumulatedFees -
buyAndBurnFunds -
cylceBurnReward -
genesisWallet;
if (s_burnPoolEnabled == BurnPoolEnabled.TRUE) s_cycleBurnReward += uint88(cylceBurnReward);
else buyAndBurnFunds += cylceBurnReward;
//cycle payout
if (cycleRewardPool != 0) {
uint256 cycle8Reward = (cycleRewardPool * CYCLE_8_PERCENT) / PERCENT_BPS;
uint256 cycle28Reward = (cycleRewardPool * CYCLE_28_PERCENT) / PERCENT_BPS;
uint256 cycle90Reward = (cycleRewardPool * CYCLE_90_PERCENT) / PERCENT_BPS;
uint256 cycle369Reward = (cycleRewardPool * CYCLE_369_PERCENT) / PERCENT_BPS;
_setCyclePayoutPool(DAY8, cycle8Reward);
_setCyclePayoutPool(DAY28, cycle28Reward);
_setCyclePayoutPool(DAY90, cycle90Reward);
_setCyclePayoutPool(DAY369, cycle369Reward);
_setCyclePayoutPool(
DAY888,
cycleRewardPool - cycle8Reward - cycle28Reward - cycle90Reward - cycle369Reward
);
}
}
/** @dev calcualte required protocol fees, and return the balance (if any)
* @param mintPower mint power 1-100
* @param count how many mints
*/
function _protocolFees(uint256 mintPower, uint256 count) private {
uint256 protocolFee;
protocolFee = getBatchMintCost(mintPower, count, getCurrentMintCost());
if (msg.value < protocolFee) revert TitanX_InsufficientProtocolFees();
uint256 feeBalance;
s_undistributedEth += uint88(protocolFee);
feeBalance = msg.value - protocolFee;
if (feeBalance != 0) {
_sendViaCall(payable(_msgSender()), feeBalance);
}
emit ProtocolFeeRecevied(_msgSender(), getCurrentContractDay(), protocolFee);
}
/** @dev calculate payouts for each cycle day tracked by cycle index
* @param cycleNo cylce day 8, 28, 90, 369, 888
* @param globalActiveShares global active shares
* @param currentContractDay current contract day
* @return triggered is payout triggered succesfully
*/
function _triggerCyclePayout(
uint256 cycleNo,
uint256 globalActiveShares,
uint256 currentContractDay
) private returns (PayoutTriggered triggered) {
//check against cylce payout maturity day
if (currentContractDay < getNextCyclePayoutDay(cycleNo)) return PayoutTriggered.NO;
//update the next cycle payout day regardless of payout triggered succesfully or not
_setNextCyclePayoutDay(cycleNo);
uint256 reward = getCyclePayoutPool(cycleNo);
if (reward == 0) return PayoutTriggered.NO;
//calculate cycle reward per share and get new cycle Index
uint256 cycleIndex = _calculateCycleRewardPerShare(cycleNo, reward, globalActiveShares);
//calculate burn reward if cycle is 28
uint256 totalCycleBurn = getCycleBurnTotal(cycleIndex);
uint256 burnReward;
if (cycleNo == DAY28 && totalCycleBurn != 0) {
burnReward = s_cycleBurnReward;
if (burnReward != 0) {
s_cycleBurnReward = 0;
_calculateCycleBurnRewardPerToken(cycleIndex, burnReward, totalCycleBurn);
}
}
emit CyclePayoutTriggered(_msgSender(), cycleNo, reward, burnReward);
return PayoutTriggered.YES;
}
/** @dev calculate user reward with specified cycle day and claim type (shares/burn) and update user's last claim cycle index
* @param cycleNo cycle day 8, 28, 90, 369, 888
* @param payoutClaim claim type - (Shares=0/Burn=1)
*/
function _claimCyclePayout(uint256 cycleNo, PayoutClaim payoutClaim) private returns (uint256) {
(
uint256 reward,
uint256 userClaimCycleIndex,
uint256 userClaimSharesIndex,
uint256 userClaimBurnCycleIndex
) = _calculateUserCycleReward(_msgSender(), cycleNo, payoutClaim);
if (payoutClaim == PayoutClaim.SHARES)
_updateUserClaimIndexes(
_msgSender(),
cycleNo,
userClaimCycleIndex,
userClaimSharesIndex
);
if (payoutClaim == PayoutClaim.BURN) {
_updateUserBurnCycleClaimIndex(_msgSender(), cycleNo, userClaimBurnCycleIndex);
}
return reward;
}
/** @dev burn liquid Titan through other project.
* called by other contracts for proof of burn 2.0 with up to 8% for both builder fee and user rebate
* @param user user address
* @param amount liquid titan amount
* @param userRebatePercentage percentage for user rebate in liquid titan (0 - 8)
* @param rewardPaybackPercentage percentage for builder fee in liquid titan (0 - 8)
* @param rewardPaybackAddress builder can opt to receive fee in another address
*/
function _burnLiquidTitan(
address user,
uint256 amount,
uint256 userRebatePercentage,
uint256 rewardPaybackPercentage,
address rewardPaybackAddress
) private {
if (amount == 0) revert TitanX_InvalidAmount();
if (balanceOf(user) < amount) revert TitanX_InsufficientBalance();
_spendAllowance(user, _msgSender(), amount);
_burnbefore(userRebatePercentage, rewardPaybackPercentage);
_burn(user, amount);
_burnAfter(
user,
amount,
userRebatePercentage,
rewardPaybackPercentage,
rewardPaybackAddress,
BurnSource.LIQUID
);
}
/** @dev burn stake through other project.
* called by other contracts for proof of burn 2.0 with up to 8% for both builder fee and user rebate
* @param user user address
* @param id stake id
* @param userRebatePercentage percentage for user rebate in liquid titan (0 - 8)
* @param rewardPaybackPercentage percentage for builder fee in liquid titan (0 - 8)
* @param rewardPaybackAddress builder can opt to receive fee in another address
*/
function _burnStake(
address user,
uint256 id,
uint256 userRebatePercentage,
uint256 rewardPaybackPercentage,
address rewardPaybackAddress
) private {
_spendBurnStakeAllowance(user);
_burnbefore(userRebatePercentage, rewardPaybackPercentage);
_burnAfter(
user,
_endStake(
user,
id,
getCurrentContractDay(),
StakeAction.BURN,
StakeAction.END_OWN,
getGlobalPayoutTriggered()
),
userRebatePercentage,
rewardPaybackPercentage,
rewardPaybackAddress,
BurnSource.STAKE
);
}
/** @dev burn mint through other project.
* called by other contracts for proof of burn 2.0
* burn mint has no builder reward and no user rebate
* @param user user address
* @param id mint id
*/
function _burnMint(address user, uint256 id) private {
_spendBurnMintAllowance(user);
_burnbefore(0, 0);
uint256 amount = _claimMint(user, id, MintAction.BURN);
_mint(s_genesisAddress, (amount * 800) / PERCENT_BPS);
_burnAfter(user, amount, 0, 0, _msgSender(), BurnSource.MINT);
}
/** @dev perform checks before burning starts.
* check reward percentage and check if called by supported contract
* @param userRebatePercentage percentage for user rebate
* @param rewardPaybackPercentage percentage for builder fee
*/
function _burnbefore(
uint256 userRebatePercentage,
uint256 rewardPaybackPercentage
) private view {
if (rewardPaybackPercentage + userRebatePercentage > MAX_BURN_REWARD_PERCENT)
revert TitanX_InvalidBurnRewardPercent();
//Only supported contracts is allowed to call this function
if (
!IERC165(_msgSender()).supportsInterface(IERC165.supportsInterface.selector) ||
!IERC165(_msgSender()).supportsInterface(type(ITitanOnBurn).interfaceId)
) revert TitanX_NotSupportedContract();
}
/** @dev update burn stats and mint reward to builder or user if applicable
* @param user user address
* @param amount titan amount burned
* @param userRebatePercentage percentage for user rebate in liquid titan (0 - 8)
* @param rewardPaybackPercentage percentage for builder fee in liquid titan (0 - 8)
* @param rewardPaybackAddress builder can opt to receive fee in another address
* @param source liquid/mint/stake
*/
function _burnAfter(
address user,
uint256 amount,
uint256 userRebatePercentage,
uint256 rewardPaybackPercentage,
address rewardPaybackAddress,
BurnSource source
) private {
uint256 index = getCurrentCycleIndex(DAY28) + 1;
/** set to the latest cylceIndex + 1 for fresh wallet
* same concept as _initFirstSharesCycleIndex, refer to its dev comment */
if (getUserBurnTotal(user) == 0) _updateUserBurnCycleClaimIndex(user, DAY28, index);
_updateBurnAmount(user, _msgSender(), amount, index, source);
uint256 devFee;
uint256 userRebate;
if (rewardPaybackPercentage != 0)
devFee = (amount * rewardPaybackPercentage * PERCENT_BPS) / (100 * PERCENT_BPS);
if (userRebatePercentage != 0)
userRebate = (amount * userRebatePercentage * PERCENT_BPS) / (100 * PERCENT_BPS);
if (devFee != 0) _mint(rewardPaybackAddress, devFee);
if (userRebate != 0) _mint(user, userRebate);
ITitanOnBurn(_msgSender()).onBurn(user, amount);
}
/** @dev Recommended method to use to send native coins.
* @param to receiving address.
* @param amount in wei.
*/
function _sendViaCall(address payable to, uint256 amount) private {
if (to == address(0)) revert TitanX_InvalidAddress();
(bool sent, ) = to.call{value: amount}("");
if (!sent) revert TitanX_FailedToSendAmount();
}
/** @dev reduce user's allowance for caller (spender/project) by 1 (burn 1 stake at a time)
* Does not update the allowance amount in case of infinite allowance.
* Revert if not enough allowance is available.
* @param user user address
*/
function _spendBurnStakeAllowance(address user) private {
uint256 currentAllowance = allowanceBurnStakes(user, _msgSender());
if (currentAllowance != type(uint256).max) {
if (currentAllowance == 0) revert TitanX_InsufficientBurnAllowance();
--s_allowanceBurnStakes[user][_msgSender()];
}
}
/** @dev reduce user's allowance for caller (spender/project) by 1 (burn 1 mint at a time)
* Does not update the allowance amount in case of infinite allowance.
* Revert if not enough allowance is available.
* @param user user address
*/
function _spendBurnMintAllowance(address user) private {
uint256 currentAllowance = allowanceBurnMints(user, _msgSender());
if (currentAllowance != type(uint256).max) {
if (currentAllowance == 0) revert TitanX_InsufficientBurnAllowance();
--s_allowanceBurnMints[user][_msgSender()];
}
}
//Views
/** @dev calculate user payout reward with specified cycle day and claim type (shares/burn).
* it loops through all the unclaimed cylce index until the latest cycle index
* @param user user address
* @param cycleNo cycle day 8, 28, 90, 369, 888
* @param payoutClaim claim type (Shares=0/Burn=1)
* @return rewards calculated reward
* @return userClaimCycleIndex last claim cycle index
* @return userClaimSharesIndex last claim shares index
* @return userClaimBurnCycleIndex last claim burn cycle index
*/
function _calculateUserCycleReward(
address user,
uint256 cycleNo,
PayoutClaim payoutClaim
)
private
view
returns (
uint256 rewards,
uint256 userClaimCycleIndex,
uint256 userClaimSharesIndex,
uint256 userClaimBurnCycleIndex
)
{
uint256 cycleMaxIndex = getCurrentCycleIndex(cycleNo);
if (payoutClaim == PayoutClaim.SHARES) {
(userClaimCycleIndex, userClaimSharesIndex) = getUserLastClaimIndex(user, cycleNo);
uint256 sharesMaxIndex = getUserLatestShareIndex(user);
for (uint256 i = userClaimCycleIndex; i <= cycleMaxIndex; i++) {
(uint256 payoutPerShare, uint256 payoutDay) = getPayoutPerShare(cycleNo, i);
uint256 shares;
//loop shares indexes to find the last updated shares before/same triggered payout day
for (uint256 j = userClaimSharesIndex; j <= sharesMaxIndex; j++) {
if (getUserActiveSharesDay(user, j) <= payoutDay)
shares = getUserActiveShares(user, j);
else break;
userClaimSharesIndex = j;
}
if (payoutPerShare != 0 && shares != 0) {
//reward has 18 decimals scaling, so here divide by 1e18
rewards += (shares * payoutPerShare) / SCALING_FACTOR_1e18;
}
userClaimCycleIndex = i + 1;
}
} else if (cycleNo == DAY28 && payoutClaim == PayoutClaim.BURN) {
userClaimBurnCycleIndex = getUserLastBurnClaimIndex(user, cycleNo);
for (uint256 i = userClaimBurnCycleIndex; i <= cycleMaxIndex; i++) {
uint256 burnPayoutPerToken = getCycleBurnPayoutPerToken(i);
rewards += (burnPayoutPerToken != 0)
? (burnPayoutPerToken * _getUserCycleBurnTotal(user, i)) / SCALING_FACTOR_1e18
: 0;
userClaimBurnCycleIndex = i + 1;
}
}
}
/** @notice get contract ETH balance
* @return balance eth balance
*/
function getBalance() public view returns (uint256) {
return address(this).balance;
}
/** @notice get undistributed ETH balance
* @return amount eth amount
*/
function getUndistributedEth() public view returns (uint256) {
return s_undistributedEth;
}
/** @notice get user ETH payout for all cycles
* @param user user address
* @return reward total reward
*/
function getUserETHClaimableTotal(address user) public view returns (uint256 reward) {
uint256 _reward;
(_reward, , , ) = _calculateUserCycleReward(user, DAY8, PayoutClaim.SHARES);
reward += _reward;
(_reward, , , ) = _calculateUserCycleReward(user, DAY28, PayoutClaim.SHARES);
reward += _reward;
(_reward, , , ) = _calculateUserCycleReward(user, DAY90, PayoutClaim.SHARES);
reward += _reward;
(_reward, , , ) = _calculateUserCycleReward(user, DAY369, PayoutClaim.SHARES);
reward += _reward;
(_reward, , , ) = _calculateUserCycleReward(user, DAY888, PayoutClaim.SHARES);
reward += _reward;
}
/** @notice get user burn reward ETH payout
* @param user user address
* @return reward burn reward
*/
function getUserBurnPoolETHClaimableTotal(address user) public view returns (uint256 reward) {
(reward, , , ) = _calculateUserCycleReward(user, DAY28, PayoutClaim.BURN);
}
/** @notice get total penalties from mint and stake
* @return amount total penalties
*/
function getTotalPenalties() public view returns (uint256) {
return getTotalMintPenalty() + getTotalStakePenalty();
}
/** @notice get burn pool reward
* @return reward burn pool reward
*/
function getCycleBurnPool() public view returns (uint256) {
return s_cycleBurnReward;
}
/** @notice get user current burn cycle percentage
* @return percentage in 18 decimals
*/
function getCurrentUserBurnCyclePercentage() public view returns (uint256) {
uint256 index = getCurrentCycleIndex(DAY28) + 1;
uint256 cycleBurnTotal = getCycleBurnTotal(index);
return
cycleBurnTotal == 0
? 0
: (_getUserCycleBurnTotal(_msgSender(), index) * 100 * SCALING_FACTOR_1e18) /
cycleBurnTotal;
}
/** @notice get user current cycle total titan burned
* @param user user address
* @return burnTotal total titan burned in curreny burn cycle
*/
function getUserCycleBurnTotal(address user) public view returns (uint256) {
return _getUserCycleBurnTotal(user, getCurrentCycleIndex(DAY28) + 1);
}
function isBurnPoolEnabled() public view returns (BurnPoolEnabled) {
return s_burnPoolEnabled;
}
/** @notice returns user's burn stakes allowance of a project
* @param user user address
* @param spender project address
*/
function allowanceBurnStakes(address user, address spender) public view returns (uint256) {
return s_allowanceBurnStakes[user][spender];
}
/** @notice returns user's burn mints allowance of a project
* @param user user address
* @param spender project address
*/
function allowanceBurnMints(address user, address spender) public view returns (uint256) {
return s_allowanceBurnMints[user][spender];
}
//Public functions for devs to intergrate with Titan
/** @notice allow anyone to sync dailyUpdate manually */
function manualDailyUpdate() public dailyUpdate {}
/** @notice Burn Titan tokens and creates Proof-Of-Burn record to be used by connected DeFi and fee is paid to specified address
* @param user user address
* @param amount titan amount
* @param userRebatePercentage percentage for user rebate in liquid titan (0 - 8)
* @param rewardPaybackPercentage percentage for builder fee in liquid titan (0 - 8)
* @param rewardPaybackAddress builder can opt to receive fee in another address
*/
function burnTokensToPayAddress(
address user,
uint256 amount,
uint256 userRebatePercentage,
uint256 rewardPaybackPercentage,
address rewardPaybackAddress
) public dailyUpdate nonReentrant {
_burnLiquidTitan(
user,
amount,
userRebatePercentage,
rewardPaybackPercentage,
rewardPaybackAddress
);
}
/** @notice Burn Titan tokens and creates Proof-Of-Burn record to be used by connected DeFi and fee is paid to specified address
* @param user user address
* @param amount titan amount
* @param userRebatePercentage percentage for user rebate in liquid titan (0 - 8)
* @param rewardPaybackPercentage percentage for builder fee in liquid titan (0 - 8)
*/
function burnTokens(
address user,
uint256 amount,
uint256 userRebatePercentage,
uint256 rewardPaybackPercentage
) public dailyUpdate nonReentrant {
_burnLiquidTitan(user, amount, userRebatePercentage, rewardPaybackPercentage, _msgSender());
}
/** @notice allows user to burn liquid titan directly from contract
* @param amount titan amount
*/
function userBurnTokens(uint256 amount) public dailyUpdate nonReentrant {
if (amount == 0) revert TitanX_InvalidAmount();
if (balanceOf(_msgSender()) < amount) revert TitanX_InsufficientBalance();
_burn(_msgSender(), amount);
_updateBurnAmount(
_msgSender(),
address(0),
amount,
getCurrentCycleIndex(DAY28) + 1,
BurnSource.LIQUID
);
}
/** @notice Burn stake and creates Proof-Of-Burn record to be used by connected DeFi and fee is paid to specified address
* @param user user address
* @param id stake id
* @param userRebatePercentage percentage for user rebate in liquid titan (0 - 8)
* @param rewardPaybackPercentage percentage for builder fee in liquid titan (0 - 8)
* @param rewardPaybackAddress builder can opt to receive fee in another address
*/
function burnStakeToPayAddress(
address user,
uint256 id,
uint256 userRebatePercentage,
uint256 rewardPaybackPercentage,
address rewardPaybackAddress
) public dailyUpdate nonReentrant {
_burnStake(user, id, userRebatePercentage, rewardPaybackPercentage, rewardPaybackAddress);
}
/** @notice Burn stake and creates Proof-Of-Burn record to be used by connected DeFi and fee is paid to project contract address
* @param user user address
* @param id stake id
* @param userRebatePercentage percentage for user rebate in liquid titan (0 - 8)
* @param rewardPaybackPercentage percentage for builder fee in liquid titan (0 - 8)
*/
function burnStake(
address user,
uint256 id,
uint256 userRebatePercentage,
uint256 rewardPaybackPercentage
) public dailyUpdate nonReentrant {
_burnStake(user, id, userRebatePercentage, rewardPaybackPercentage, _msgSender());
}
/** @notice allows user to burn stake directly from contract
* @param id stake id
*/
function userBurnStake(uint256 id) public dailyUpdate nonReentrant {
_updateBurnAmount(
_msgSender(),
address(0),
_endStake(
_msgSender(),
id,
getCurrentContractDay(),
StakeAction.BURN,
StakeAction.END_OWN,
getGlobalPayoutTriggered()
),
getCurrentCycleIndex(DAY28) + 1,
BurnSource.STAKE
);
}
/** @notice Burn mint and creates Proof-Of-Burn record to be used by connected DeFi.
* Burn mint has no project reward or user rebate
* @param user user address
* @param id mint id
*/
function burnMint(address user, uint256 id) public dailyUpdate nonReentrant {
_burnMint(user, id);
}
/** @notice allows user to burn mint directly from contract
* @param id mint id
*/
function userBurnMint(uint256 id) public dailyUpdate nonReentrant {
_updateBurnAmount(
_msgSender(),
address(0),
_claimMint(_msgSender(), id, MintAction.BURN),
getCurrentCycleIndex(DAY28) + 1,
BurnSource.MINT
);
}
/** @notice Sets `amount` as the allowance of `spender` over the caller's (user) mints.
* @param spender contract address
* @param amount allowance amount
*/
function approveBurnMints(address spender, uint256 amount) public returns (bool) {
if (spender == address(0)) revert TitanX_InvalidAddress();
s_allowanceBurnMints[_msgSender()][spender] = amount;
emit ApproveBurnMints(_msgSender(), spender, amount);
return true;
}
/** @notice Sets `amount` as the allowance of `spender` over the caller's (user) stakes.
* @param spender contract address
* @param amount allowance amount
*/
function approveBurnStakes(address spender, uint256 amount) public returns (bool) {
if (spender == address(0)) revert TitanX_InvalidAddress();
s_allowanceBurnStakes[_msgSender()][spender] = amount;
emit ApproveBurnStakes(_msgSender(), spender, amount);
return true;
}
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity ^0.8.10;
import "./openzeppelin/utils/Context.sol";
error TitanX_NotOnwer();
abstract contract OwnerInfo is Context {
address private s_owner;
/**
* @dev Initializes the contract setting the deployer as the initial owner.
*/
constructor() {
s_owner = _msgSender();
}
/**
* @dev Throws if called by any account other than the owner.
*/
modifier onlyOwner() {
_checkOwner();
_;
}
/**
* @dev Throws if the sender is not the owner.
*/
function _checkOwner() internal view virtual {
if (s_owner != _msgSender()) revert TitanX_NotOnwer();
}
/**
* @dev Leaves the contract without owner. It will not be possible to call
* `onlyOwner` functions. Can only be called by the current owner.
*
* NOTE: Renouncing ownership will leave the contract without an owner,
* thereby disabling any functionality that is only available to the owner.
*/
function renounceOwnership() public onlyOwner {
_setOwner(address(0));
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Can only be called by the current owner.
*/
function transferOwnership(address newOwner) public onlyOwner {
_setOwner(newOwner);
}
function _setOwner(address newOwner) private {
s_owner = newOwner;
}
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity ^0.8.10;
import "../libs/constant.sol";
import "../libs/enum.sol";
/**
* @title BurnInfo
* @dev this contract is meant to be inherited into main contract
* @notice It has the variables and functions specifically for tracking burn amount and reward
*/
abstract contract BurnInfo {
//Variables
//track the total titan burn amount
uint256 private s_totalTitanBurned;
//mappings
//track wallet address -> total titan burn amount
mapping(address => uint256) private s_userBurnAmount;
//track contract/project address -> total titan burn amount
mapping(address => uint256) private s_project_BurnAmount;
//track contract/project address, wallet address -> total titan burn amount
mapping(address => mapping(address => uint256)) private s_projectUser_BurnAmount;
/** @dev cycleIndex is increased when triggerPayouts() was called successfully
* so we track data in current cycleIndex + 1 which means tracking for the next cycle payout
* cycleIndex is passed from the TITANX contract during function call
*/
//track cycleIndex + 1 -> total burn amount
mapping(uint256 => uint256) private s_cycle28TotalBurn;
//track address, cycleIndex + 1 -> total burn amount
mapping(address => mapping(uint256 => uint256)) private s_userCycle28TotalBurn;
//track cycleIndex + 1 -> burn payout per token
mapping(uint256 => uint256) private s_cycle28BurnPayoutPerToken;
//events
/** @dev log user burn titan event
* project can be address(0) if user burns Titan directly from Titan contract
* burnPoolCycleIndex is the cycle 28 index, which reuse the same index as Day 28 cycle index
* titanSource 0=Liquid, 1=Mint, 2=Stake
*/
event TitanBurned(
address indexed user,
address indexed project,
uint256 indexed burnPoolCycleIndex,
uint256 amount,
BurnSource titanSource
);
//functions
/** @dev update the burn amount in each 28-cylce for user and project (if any)
* @param user wallet address
* @param project contract address
* @param amount titan amount burned
* @param cycleIndex cycle payout triggered index
*/
function _updateBurnAmount(
address user,
address project,
uint256 amount,
uint256 cycleIndex,
BurnSource source
) internal {
s_userBurnAmount[user] += amount;
s_totalTitanBurned += amount;
s_cycle28TotalBurn[cycleIndex] += amount;
s_userCycle28TotalBurn[user][cycleIndex] += amount;
if (project != address(0)) {
s_project_BurnAmount[project] += amount;
s_projectUser_BurnAmount[project][user] += amount;
}
emit TitanBurned(user, project, cycleIndex, amount, source);
}
/**
* @dev calculate burn reward per titan burned based on total reward / total titan burned in current cycle
* @param cycleIndex wallet address
* @param reward contract address
* @param cycleBurnAmount titan amount burned
*/
function _calculateCycleBurnRewardPerToken(
uint256 cycleIndex,
uint256 reward,
uint256 cycleBurnAmount
) internal {
//add 18 decimals to reward for better precision in calculation
s_cycle28BurnPayoutPerToken[cycleIndex] = (reward * SCALING_FACTOR_1e18) / cycleBurnAmount;
}
/** @dev returned value is in 18 decimals, need to divide it by 1e18 and 100 (percentage) when using this value for reward calculation
* The burn amplifier percentage is applied to all future mints. Capped at MAX_BURN_AMP_PERCENT (8%)
* @param user wallet address
* @return percentage returns percentage value in 18 decimals
*/
function getUserBurnAmplifierBonus(address user) public view returns (uint256) {
uint256 userBurnTotal = getUserBurnTotal(user);
if (userBurnTotal == 0) return 0;
if (userBurnTotal >= MAX_BURN_AMP_BASE) return MAX_BURN_AMP_PERCENT;
return (MAX_BURN_AMP_PERCENT * userBurnTotal) / MAX_BURN_AMP_BASE;
}
//views
/** @notice return total burned titan amount from all users burn or projects burn
* @return totalBurnAmount returns entire burned titan
*/
function getTotalBurnTotal() public view returns (uint256) {
return s_totalTitanBurned;
}
/** @notice return user address total burned titan
* @return userBurnAmount returns user address total burned titan
*/
function getUserBurnTotal(address user) public view returns (uint256) {
return s_userBurnAmount[user];
}
/** @notice return project address total burned titan amount
* @return projectTotalBurnAmount returns project total burned titan
*/
function getProjectBurnTotal(address contractAddress) public view returns (uint256) {
return s_project_BurnAmount[contractAddress];
}
/** @notice return user address total burned titan amount via a project address
* @param contractAddress project address
* @param user user address
* @return projectUserTotalBurnAmount returns user address total burned titan via a project address
*/
function getProjectUserBurnTotal(
address contractAddress,
address user
) public view returns (uint256) {
return s_projectUser_BurnAmount[contractAddress][user];
}
/** @notice return cycle28 total burned titan amount with the specified cycleIndex
* @param cycleIndex cycle index
* @return cycle28TotalBurn returns cycle28 total burned titan amount with the specified cycleIndex
*/
function getCycleBurnTotal(uint256 cycleIndex) public view returns (uint256) {
return s_cycle28TotalBurn[cycleIndex];
}
/** @notice return cycle28 total burned titan amount with the specified cycleIndex
* @param user user address
* @param cycleIndex cycle index
* @return cycle28TotalBurn returns cycle28 user address total burned titan amount with the specified cycleIndex
*/
function _getUserCycleBurnTotal(
address user,
uint256 cycleIndex
) internal view returns (uint256) {
return s_userCycle28TotalBurn[user][cycleIndex];
}
/** @notice return cycle28 burn payout per titan with the specified cycleIndex
* @param cycleIndex cycle index
* @return cycle28TotalBurn returns cycle28 burn payout per titan with the specified cycleIndex
*/
function getCycleBurnPayoutPerToken(uint256 cycleIndex) public view returns (uint256) {
return s_cycle28BurnPayoutPerToken[cycleIndex];
}
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity ^0.8.10;
import "../libs/calcFunctions.sol";
//custom errors
error TitanX_InvalidStakeLength();
error TitanX_RequireOneMinimumShare();
error TitanX_ExceedMaxAmountPerStake();
error TitanX_NoStakeExists();
error TitanX_StakeHasEnded();
error TitanX_StakeNotMatured();
error TitanX_StakeHasBurned();
error TitanX_MaxedWalletStakes();
abstract contract StakeInfo {
//Variables
/** @dev track global stake Id */
uint256 private s_globalStakeId;
/** @dev track global shares */
uint256 private s_globalShares;
/** @dev track global expired shares */
uint256 private s_globalExpiredShares;
/** @dev track global staked titan */
uint256 private s_globalTitanStaked;
/** @dev track global end stake penalty */
uint256 private s_globalStakePenalty;
/** @dev track global ended stake */
uint256 private s_globalStakeEnd;
/** @dev track global burned stake */
uint256 private s_globalStakeBurn;
//mappings
/** @dev track address => stakeId */
mapping(address => uint256) private s_addressSId;
/** @dev track address, stakeId => global stake Id */
mapping(address => mapping(uint256 => uint256)) private s_addressSIdToGlobalStakeId;
/** @dev track global stake Id => stake info */
mapping(uint256 => UserStakeInfo) private s_globalStakeIdToStakeInfo;
/** @dev track address => shares Index */
mapping(address => uint256) private s_userSharesIndex;
/** @dev track user total active shares by user shares index
* s_addressIdToActiveShares[user][index] = UserActiveShares (contract day, total user active shares)
* works like a snapshot or log when user shares has changed (increase/decrease)
*/
mapping(address => mapping(uint256 => UserActiveShares)) private s_addressIdToActiveShares;
//structs
struct UserStakeInfo {
uint152 titanAmount;
uint128 shares;
uint16 numOfDays;
uint48 stakeStartTs;
uint48 maturityTs;
StakeStatus status;
}
struct UserStake {
uint256 sId;
uint256 globalStakeId;
UserStakeInfo stakeInfo;
}
struct UserActiveShares {
uint256 day;
uint256 activeShares;
}
//events
event StakeStarted(
address indexed user,
uint256 indexed globalStakeId,
uint256 numOfDays,
UserStakeInfo indexed userStakeInfo
);
event StakeEnded(
address indexed user,
uint256 indexed globalStakeId,
uint256 titanAmount,
uint256 indexed penalty,
uint256 penaltyAmount
);
//functions
/** @dev create a new stake
* @param user user address
* @param amount titan amount
* @param numOfDays stake lenght
* @param shareRate current share rate
* @param day current contract day
* @param isPayoutTriggered has global payout triggered
* @return isFirstShares first created shares or not
*/
function _startStake(
address user,
uint256 amount,
uint256 numOfDays,
uint256 shareRate,
uint256 day,
PayoutTriggered isPayoutTriggered
) internal returns (uint256 isFirstShares) {
uint256 sId = ++s_addressSId[user];
if (sId > MAX_STAKE_PER_WALLET) revert TitanX_MaxedWalletStakes();
if (numOfDays < MIN_STAKE_LENGTH || numOfDays > MAX_STAKE_LENGTH)
revert TitanX_InvalidStakeLength();
//calculate shares
uint256 shares = calculateShares(amount, numOfDays, shareRate);
if (shares / SCALING_FACTOR_1e18 < 1) revert TitanX_RequireOneMinimumShare();
uint256 currentGStakeId = ++s_globalStakeId;
uint256 maturityTs;
maturityTs = block.timestamp + (numOfDays * SECONDS_IN_DAY);
UserStakeInfo memory userStakeInfo = UserStakeInfo({
titanAmount: uint152(amount),
shares: uint128(shares),
numOfDays: uint16(numOfDays),
stakeStartTs: uint48(block.timestamp),
maturityTs: uint48(maturityTs),
status: StakeStatus.ACTIVE
});
/** s_addressSId[user] tracks stake Id for each address
* s_addressSIdToGlobalStakeId[user][id] tracks stack id to global stake Id
* s_globalStakeIdToStakeInfo[currentGStakeId] stores stake info
*/
s_addressSIdToGlobalStakeId[user][sId] = currentGStakeId;
s_globalStakeIdToStakeInfo[currentGStakeId] = userStakeInfo;
//update shares changes
isFirstShares = _updateSharesStats(
user,
shares,
amount,
day,
isPayoutTriggered,
StakeAction.START
);
emit StakeStarted(user, currentGStakeId, numOfDays, userStakeInfo);
}
/** @dev end stake and calculate pinciple with penalties (if any) or burn stake
* @param user user address
* @param id stake Id
* @param day current contract day
* @param action end stake or burn stake
* @param payOther is end stake for others
* @param isPayoutTriggered has global payout triggered
* @return titan titan principle
*/
function _endStake(
address user,
uint256 id,
uint256 day,
StakeAction action,
StakeAction payOther,
PayoutTriggered isPayoutTriggered
) internal returns (uint256 titan) {
uint256 globalStakeId = s_addressSIdToGlobalStakeId[user][id];
if (globalStakeId == 0) revert TitanX_NoStakeExists();
UserStakeInfo memory userStakeInfo = s_globalStakeIdToStakeInfo[globalStakeId];
if (userStakeInfo.status == StakeStatus.ENDED) revert TitanX_StakeHasEnded();
if (userStakeInfo.status == StakeStatus.BURNED) revert TitanX_StakeHasBurned();
//end stake for others requires matured stake to prevent EES for others
if (payOther == StakeAction.END_OTHER && block.timestamp < userStakeInfo.maturityTs)
revert TitanX_StakeNotMatured();
//update shares changes
uint256 shares = userStakeInfo.shares;
_updateSharesStats(user, shares, userStakeInfo.titanAmount, day, isPayoutTriggered, action);
if (action == StakeAction.END) {
++s_globalStakeEnd;
s_globalStakeIdToStakeInfo[globalStakeId].status = StakeStatus.ENDED;
} else if (action == StakeAction.BURN) {
++s_globalStakeBurn;
s_globalStakeIdToStakeInfo[globalStakeId].status = StakeStatus.BURNED;
}
titan = _calculatePrinciple(user, globalStakeId, userStakeInfo, action);
}
/** @dev update shares changes to track when user shares has changed, this affect the payout calculation
* @param user user address
* @param shares shares
* @param amount titan amount
* @param day current contract day
* @param isPayoutTriggered has global payout triggered
* @param action start stake or end stake
* @return isFirstShares first created shares or not
*/
function _updateSharesStats(
address user,
uint256 shares,
uint256 amount,
uint256 day,
PayoutTriggered isPayoutTriggered,
StakeAction action
) private returns (uint256 isFirstShares) {
//Get previous active shares to calculate new shares change
uint256 index = s_userSharesIndex[user];
uint256 previousShares = s_addressIdToActiveShares[user][index].activeShares;
if (action == StakeAction.START) {
//return 1 if this is a new wallet address
//this is used to initialize last claim index to the latest cycle index
if (index == 0) isFirstShares = 1;
s_addressIdToActiveShares[user][++index].activeShares = previousShares + shares;
s_globalShares += shares;
s_globalTitanStaked += amount;
} else {
s_addressIdToActiveShares[user][++index].activeShares = previousShares - shares;
s_globalExpiredShares += shares;
s_globalTitanStaked -= amount;
}
//If global payout hasn't triggered, use current contract day to eligible for payout
//If global payout has triggered, then start with next contract day as it's no longer eligible to claim latest payout
s_addressIdToActiveShares[user][index].day = uint128(
isPayoutTriggered == PayoutTriggered.NO ? day : day + 1
);
s_userSharesIndex[user] = index;
}
/** @dev calculate stake principle and apply penalty (if any)
* @param user user address
* @param globalStakeId global stake Id
* @param userStakeInfo stake info
* @param action end stake or burn stake
* @return principle calculated principle after penalty (if any)
*/
function _calculatePrinciple(
address user,
uint256 globalStakeId,
UserStakeInfo memory userStakeInfo,
StakeAction action
) internal returns (uint256 principle) {
uint256 titanAmount = userStakeInfo.titanAmount;
//penalty is in percentage
uint256 penalty = calculateEndStakePenalty(
userStakeInfo.stakeStartTs,
userStakeInfo.maturityTs,
block.timestamp,
action
);
uint256 penaltyAmount;
penaltyAmount = (titanAmount * penalty) / 100;
principle = titanAmount - penaltyAmount;
s_globalStakePenalty += penaltyAmount;
emit StakeEnded(user, globalStakeId, principle, penalty, penaltyAmount);
}
//Views
/** @notice get global shares
* @return globalShares global shares
*/
function getGlobalShares() public view returns (uint256) {
return s_globalShares;
}
/** @notice get global expired shares
* @return globalExpiredShares global expired shares
*/
function getGlobalExpiredShares() public view returns (uint256) {
return s_globalExpiredShares;
}
/** @notice get global active shares
* @return globalActiveShares global active shares
*/
function getGlobalActiveShares() public view returns (uint256) {
return s_globalShares - s_globalExpiredShares;
}
/** @notice get total titan staked
* @return totalTitanStaked total titan staked
*/
function getTotalTitanStaked() public view returns (uint256) {
return s_globalTitanStaked;
}
/** @notice get global stake id
* @return globalStakeId global stake id
*/
function getGlobalStakeId() public view returns (uint256) {
return s_globalStakeId;
}
/** @notice get global active stakes
* @return globalActiveStakes global active stakes
*/
function getGlobalActiveStakes() public view returns (uint256) {
return s_globalStakeId - getTotalStakeEnd();
}
/** @notice get total stake ended
* @return totalStakeEnded total stake ended
*/
function getTotalStakeEnd() public view returns (uint256) {
return s_globalStakeEnd;
}
/** @notice get total stake burned
* @return totalStakeBurned total stake burned
*/
function getTotalStakeBurn() public view returns (uint256) {
return s_globalStakeBurn;
}
/** @notice get total end stake penalty
* @return totalEndStakePenalty total end stake penalty
*/
function getTotalStakePenalty() public view returns (uint256) {
return s_globalStakePenalty;
}
/** @notice get user latest shares index
* @return latestSharesIndex latest shares index
*/
function getUserLatestShareIndex(address user) public view returns (uint256) {
return s_userSharesIndex[user];
}
/** @notice get user current active shares
* @return currentActiveShares current active shares
*/
function getUserCurrentActiveShares(address user) public view returns (uint256) {
return s_addressIdToActiveShares[user][getUserLatestShareIndex(user)].activeShares;
}
/** @notice get user active shares at sharesIndex
* @return activeShares active shares at sharesIndex
*/
function getUserActiveShares(
address user,
uint256 sharesIndex
) internal view returns (uint256) {
return s_addressIdToActiveShares[user][sharesIndex].activeShares;
}
/** @notice get user active shares contract day at sharesIndex
* @return activeSharesDay active shares contract day at sharesIndex
*/
function getUserActiveSharesDay(
address user,
uint256 sharesIndex
) internal view returns (uint256) {
return s_addressIdToActiveShares[user][sharesIndex].day;
}
/** @notice get stake info with stake id
* @return stakeInfo stake info
*/
function getUserStakeInfo(address user, uint256 id) public view returns (UserStakeInfo memory) {
return s_globalStakeIdToStakeInfo[s_addressSIdToGlobalStakeId[user][id]];
}
/** @notice get all stake info of an address
* @return stakeInfos all stake info of an address
*/
function getUserStakes(address user) public view returns (UserStake[] memory) {
uint256 count = s_addressSId[user];
UserStake[] memory stakes = new UserStake[](count);
for (uint256 i = 1; i <= count; i++) {
stakes[i - 1] = UserStake({
sId: i,
globalStakeId: uint128(s_addressSIdToGlobalStakeId[user][i]),
stakeInfo: getUserStakeInfo(user, i)
});
}
return stakes;
}
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity ^0.8.10;
import "../libs/calcFunctions.sol";
//custom errors
error TitanX_InvalidMintLength();
error TitanX_InvalidMintPower();
error TitanX_NoMintExists();
error TitanX_MintHasClaimed();
error TitanX_MintNotMature();
error TitanX_MintHasBurned();
abstract contract MintInfo {
//variables
/** @dev track global tRank */
uint256 private s_globalTRank;
/** @dev track total mint claimed */
uint256 private s_globalMintClaim;
/** @dev track total mint burned */
uint256 private s_globalMintBurn;
/** @dev track total titan minting */
uint256 private s_globalTitanMinting;
/** @dev track total titan penalty */
uint256 private s_globalTitanMintPenalty;
/** @dev track global mint power */
uint256 private s_globalMintPower;
//mappings
/** @dev track address => mintId */
mapping(address => uint256) private s_addressMId;
/** @dev track address, mintId => tRank info (gTrank, gMintPower) */
mapping(address => mapping(uint256 => TRankInfo)) private s_addressMIdToTRankInfo;
/** @dev track global tRank => mintInfo*/
mapping(uint256 => UserMintInfo) private s_tRankToMintInfo;
//structs
struct UserMintInfo {
uint8 mintPower;
uint16 numOfDays;
uint96 mintableTitan;
uint48 mintStartTs;
uint48 maturityTs;
uint32 mintPowerBonus;
uint32 EAABonus;
uint128 mintedTitan;
uint64 mintCost;
MintStatus status;
}
struct TRankInfo {
uint256 tRank;
uint256 gMintPower;
}
struct UserMint {
uint256 mId;
uint256 tRank;
uint256 gMintPower;
UserMintInfo mintInfo;
}
//events
event MintStarted(
address indexed user,
uint256 indexed tRank,
uint256 indexed gMintpower,
UserMintInfo userMintInfo
);
event MintClaimed(
address indexed user,
uint256 indexed tRank,
uint256 rewardMinted,
uint256 indexed penalty,
uint256 mintPenalty
);
//functions
/** @dev create a new mint
* @param user user address
* @param mintPower mint power
* @param numOfDays mint lenght
* @param mintableTitan mintable titan
* @param mintPowerBonus mint power bonus
* @param EAABonus EAA bonus
* @param burnAmpBonus burn amplifier bonus
* @param gMintPower global mint power
* @param currentTRank current global tRank
* @param mintCost actual mint cost paid for a mint
*/
function _startMint(
address user,
uint256 mintPower,
uint256 numOfDays,
uint256 mintableTitan,
uint256 mintPowerBonus,
uint256 EAABonus,
uint256 burnAmpBonus,
uint256 gMintPower,
uint256 currentTRank,
uint256 mintCost
) internal returns (uint256 mintable) {
if (numOfDays == 0 || numOfDays > MAX_MINT_LENGTH) revert TitanX_InvalidMintLength();
if (mintPower == 0 || mintPower > MAX_MINT_POWER_CAP) revert TitanX_InvalidMintPower();
//calculate mint reward up front with the provided params
mintable = calculateMintReward(mintPower, numOfDays, mintableTitan, EAABonus, burnAmpBonus);
//store variables into mint info
UserMintInfo memory userMintInfo = UserMintInfo({
mintPower: uint8(mintPower),
numOfDays: uint16(numOfDays),
mintableTitan: uint96(mintable),
mintPowerBonus: uint32(mintPowerBonus),
EAABonus: uint32(EAABonus),
mintStartTs: uint48(block.timestamp),
maturityTs: uint48(block.timestamp + (numOfDays * SECONDS_IN_DAY)),
mintedTitan: 0,
mintCost: uint64(mintCost),
status: MintStatus.ACTIVE
});
/** s_addressMId[user] tracks mintId for each addrress
* s_addressMIdToTRankInfo[user][id] tracks current mint tRank and gPowerMint
* s_tRankToMintInfo[currentTRank] stores mint info
*/
uint256 id = ++s_addressMId[user];
s_addressMIdToTRankInfo[user][id].tRank = currentTRank;
s_addressMIdToTRankInfo[user][id].gMintPower = gMintPower;
s_tRankToMintInfo[currentTRank] = userMintInfo;
emit MintStarted(user, currentTRank, gMintPower, userMintInfo);
}
/** @dev create new mint in a batch of up to max 100 mints with the same mint length
* @param user user address
* @param mintPower mint power
* @param numOfDays mint lenght
* @param mintableTitan mintable titan
* @param mintPowerBonus mint power bonus
* @param EAABonus EAA bonus
* @param burnAmpBonus burn amplifier bonus
* @param mintCost actual mint cost paid for a mint
*/
function _startBatchMint(
address user,
uint256 mintPower,
uint256 numOfDays,
uint256 mintableTitan,
uint256 mintPowerBonus,
uint256 EAABonus,
uint256 burnAmpBonus,
uint256 count,
uint256 mintCost
) internal {
uint256 gMintPower = s_globalMintPower;
uint256 currentTRank = s_globalTRank;
uint256 gMinting = s_globalTitanMinting;
for (uint256 i = 0; i < count; i++) {
gMintPower += mintPower;
gMinting += _startMint(
user,
mintPower,
numOfDays,
mintableTitan,
mintPowerBonus,
EAABonus,
burnAmpBonus,
gMintPower,
++currentTRank,
mintCost
);
}
_updateMintStats(currentTRank, gMintPower, gMinting);
}
/** @dev create new mint in a batch of up to max 100 mints with different mint length
* @param user user address
* @param mintPower mint power
* @param minDay minimum start day
* @param maxDay maximum end day
* @param dayInterval days interval between each new mint length
* @param countPerInterval number of mint(s) to create in each mint length interval
* @param mintableTitan mintable titan
* @param mintPowerBonus mint power bonus
* @param EAABonus EAA bonus
* @param burnAmpBonus burn amplifier bonus
* @param mintCost actual mint cost paid for a mint
*/
function _startbatchMintLadder(
address user,
uint256 mintPower,
uint256 minDay,
uint256 maxDay,
uint256 dayInterval,
uint256 countPerInterval,
uint256 mintableTitan,
uint256 mintPowerBonus,
uint256 EAABonus,
uint256 burnAmpBonus,
uint256 mintCost
) internal {
uint256 gMintPower = s_globalMintPower;
uint256 currentTRank = s_globalTRank;
uint256 gMinting = s_globalTitanMinting;
/**first for loop is used to determine mint length
* minDay is the starting mint length
* maxDay is the max mint length where it stops
* dayInterval increases the minDay for the next mint
*/
for (; minDay <= maxDay; minDay += dayInterval) {
/**first for loop is used to determine mint length
* second for loop is to create number mints per mint length
*/
for (uint256 j = 0; j < countPerInterval; j++) {
gMintPower += mintPower;
gMinting += _startMint(
user,
mintPower,
minDay,
mintableTitan,
mintPowerBonus,
EAABonus,
burnAmpBonus,
gMintPower,
++currentTRank,
mintCost
);
}
}
_updateMintStats(currentTRank, gMintPower, gMinting);
}
/** @dev update variables
* @param currentTRank current tRank
* @param gMintPower current global mint power
* @param gMinting current global minting
*/
function _updateMintStats(uint256 currentTRank, uint256 gMintPower, uint256 gMinting) internal {
s_globalTRank = currentTRank;
s_globalMintPower = gMintPower;
s_globalTitanMinting = gMinting;
}
/** @dev calculate reward for claim mint or burn mint.
* Claim mint has maturity check while burn mint would bypass maturity check.
* @param user user address
* @param id mint id
* @param action claim mint or burn mint
* @return reward calculated final reward after all bonuses and penalty (if any)
*/
function _claimMint(
address user,
uint256 id,
MintAction action
) internal returns (uint256 reward) {
uint256 tRank = s_addressMIdToTRankInfo[user][id].tRank;
uint256 gMintPower = s_addressMIdToTRankInfo[user][id].gMintPower;
if (tRank == 0) revert TitanX_NoMintExists();
UserMintInfo memory mint = s_tRankToMintInfo[tRank];
if (mint.status == MintStatus.CLAIMED) revert TitanX_MintHasClaimed();
if (mint.status == MintStatus.BURNED) revert TitanX_MintHasBurned();
//Only check maturity for claim mint action, burn mint bypass this check
if (mint.maturityTs > block.timestamp && action == MintAction.CLAIM)
revert TitanX_MintNotMature();
s_globalTitanMinting -= mint.mintableTitan;
reward = _calculateClaimReward(user, tRank, gMintPower, mint, action);
}
/** @dev calculate reward up to 100 claims for batch claim function. Only calculate active and matured mints.
* @param user user address
* @return reward total batch claims final calculated reward after all bonuses and penalty (if any)
*/
function _batchClaimMint(address user) internal returns (uint256 reward) {
uint256 maxId = s_addressMId[user];
uint256 claimCount;
uint256 tRank;
uint256 gMinting;
UserMintInfo memory mint;
for (uint256 i = 1; i <= maxId; i++) {
tRank = s_addressMIdToTRankInfo[user][i].tRank;
mint = s_tRankToMintInfo[tRank];
if (mint.status == MintStatus.ACTIVE && block.timestamp >= mint.maturityTs) {
reward += _calculateClaimReward(
user,
tRank,
s_addressMIdToTRankInfo[user][i].gMintPower,
mint,
MintAction.CLAIM
);
gMinting += mint.mintableTitan;
++claimCount;
}
if (claimCount == 100) break;
}
s_globalTitanMinting -= gMinting;
}
/** @dev calculate final reward with bonuses and penalty (if any)
* @param user user address
* @param tRank mint's tRank
* @param gMintPower mint's gMintPower
* @param userMintInfo mint's info
* @param action claim mint or burn mint
* @return reward calculated final reward after all bonuses and penalty (if any)
*/
function _calculateClaimReward(
address user,
uint256 tRank,
uint256 gMintPower,
UserMintInfo memory userMintInfo,
MintAction action
) private returns (uint256 reward) {
if (action == MintAction.CLAIM) s_tRankToMintInfo[tRank].status = MintStatus.CLAIMED;
if (action == MintAction.BURN) s_tRankToMintInfo[tRank].status = MintStatus.BURNED;
uint256 penaltyAmount;
uint256 penalty;
uint256 bonus;
//only calculate penalty when current block timestamp > maturity timestamp
if (block.timestamp > userMintInfo.maturityTs) {
penalty = calculateClaimMintPenalty(block.timestamp - userMintInfo.maturityTs);
}
//Only Claim action has mintPower bonus
if (action == MintAction.CLAIM) {
bonus = calculateMintPowerBonus(
userMintInfo.mintPowerBonus,
userMintInfo.mintPower,
gMintPower,
s_globalMintPower
);
}
//mintPowerBonus has scaling factor of 1e7, so divide by 1e7
reward = uint256(userMintInfo.mintableTitan) + (bonus / SCALING_FACTOR_1e7);
penaltyAmount = (reward * penalty) / 100;
reward -= penaltyAmount;
if (action == MintAction.CLAIM) ++s_globalMintClaim;
if (action == MintAction.BURN) ++s_globalMintBurn;
if (penaltyAmount != 0) s_globalTitanMintPenalty += penaltyAmount;
//only stored minted amount for claim mint
if (action == MintAction.CLAIM) s_tRankToMintInfo[tRank].mintedTitan = uint128(reward);
emit MintClaimed(user, tRank, reward, penalty, penaltyAmount);
}
//views
/** @notice Returns the latest Mint Id of an address
* @param user address
* @return mId latest mint id
*/
function getUserLatestMintId(address user) public view returns (uint256) {
return s_addressMId[user];
}
/** @notice Returns mint info of an address + mint id
* @param user address
* @param id mint id
* @return mintInfo user mint info
*/
function getUserMintInfo(
address user,
uint256 id
) public view returns (UserMintInfo memory mintInfo) {
return s_tRankToMintInfo[s_addressMIdToTRankInfo[user][id].tRank];
}
/** @notice Return all mints info of an address
* @param user address
* @return mintInfos all mints info of an address including mint id, tRank and gMintPower
*/
function getUserMints(address user) public view returns (UserMint[] memory mintInfos) {
uint256 count = s_addressMId[user];
mintInfos = new UserMint[](count);
for (uint256 i = 1; i <= count; i++) {
mintInfos[i - 1] = UserMint({
mId: i,
tRank: s_addressMIdToTRankInfo[user][i].tRank,
gMintPower: s_addressMIdToTRankInfo[user][i].gMintPower,
mintInfo: getUserMintInfo(user, i)
});
}
}
/** @notice Return total mints burned
* @return totalMintBurned total mints burned
*/
function getTotalMintBurn() public view returns (uint256) {
return s_globalMintBurn;
}
/** @notice Return current gobal tRank
* @return globalTRank global tRank
*/
function getGlobalTRank() public view returns (uint256) {
return s_globalTRank;
}
/** @notice Return current gobal mint power
* @return globalMintPower global mint power
*/
function getGlobalMintPower() public view returns (uint256) {
return s_globalMintPower;
}
/** @notice Return total mints claimed
* @return totalMintClaimed total mints claimed
*/
function getTotalMintClaim() public view returns (uint256) {
return s_globalMintClaim;
}
/** @notice Return total active mints (exluded claimed and burned mints)
* @return totalActiveMints total active mints
*/
function getTotalActiveMints() public view returns (uint256) {
return s_globalTRank - s_globalMintClaim - s_globalMintBurn;
}
/** @notice Return total minting titan
* @return totalMinting total minting titan
*/
function getTotalMinting() public view returns (uint256) {
return s_globalTitanMinting;
}
/** @notice Return total titan penalty
* @return totalTitanPenalty total titan penalty
*/
function getTotalMintPenalty() public view returns (uint256) {
return s_globalTitanMintPenalty;
}
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity ^0.8.10;
import "../libs/enum.sol";
import "../libs/constant.sol";
abstract contract GlobalInfo {
//Variables
//deployed timestamp
uint256 private immutable i_genesisTs;
/** @dev track current contract day */
uint256 private s_currentContractDay;
/** @dev shareRate starts 800 ether and increases capped at 2800 ether, uint72 has enough size */
uint72 private s_currentshareRate;
/** @dev mintCost starts 0.2 ether increases and capped at 1 ether, uint64 has enough size */
uint64 private s_currentMintCost;
/** @dev mintableTitan starts 8m ether decreases and capped at 800 ether, uint96 has enough size */
uint96 private s_currentMintableTitan;
/** @dev mintPowerBonus starts 350_000_000 and decreases capped at 35_000, uint32 has enough size */
uint32 private s_currentMintPowerBonus;
/** @dev EAABonus starts 10_000_000 and decreases to 0, uint32 has enough size */
uint32 private s_currentEAABonus;
/** @dev track if any of the cycle day 8, 28, 90, 369, 888 has payout triggered succesfully
* this is used in end stake where either the shares change should be tracked in current/next payout cycle
*/
PayoutTriggered private s_isGlobalPayoutTriggered;
/** @dev track payouts based on every cycle day 8, 28, 90, 369, 888 when distributeETH() is called */
mapping(uint256 => uint256) private s_cyclePayouts;
/** @dev track payout index for each cycle day, increased by 1 when triggerPayouts() is called succesfully
* eg. curent index is 2, s_cyclePayoutIndex[DAY8] = 2 */
mapping(uint256 => uint256) private s_cyclePayoutIndex;
/** @dev track payout info (day and payout per share) for each cycle day
* eg. s_cyclePayoutIndex is 2,
* s_CyclePayoutPerShare[DAY8][2].day = 8
* s_CyclePayoutPerShare[DAY8][2].payoutPerShare = 0.1
*/
mapping(uint256 => mapping(uint256 => CycleRewardPerShare)) private s_cyclePayoutPerShare;
/** @dev track user last payout reward claim index for cycleIndex, burnCycleIndex and sharesIndex
* so calculation would start from next index instead of the first index
* [address][DAY8].cycleIndex = 1
* [address][DAY8].burnCycleIndex = 1
* [address][DAY8].sharesIndex = 2
* cycleIndex is the last stop in s_cyclePayoutPerShare
* sharesIndex is the last stop in s_addressIdToActiveShares
*/
mapping(address => mapping(uint256 => UserCycleClaimIndex))
private s_addressCycleToLastClaimIndex;
/** @dev track when is the next cycle payout day for each cycle day
* eg. s_nextCyclePayoutDay[DAY8] = 8
* s_nextCyclePayoutDay[DAY28] = 28
*/
mapping(uint256 => uint256) s_nextCyclePayoutDay;
//structs
struct CycleRewardPerShare {
uint256 day;
uint256 payoutPerShare;
}
struct UserCycleClaimIndex {
uint96 cycleIndex;
uint96 burnCycleIndex;
uint64 sharesIndex;
}
//event
event GlobalDailyUpdateStats(
uint256 indexed day,
uint256 indexed mintCost,
uint256 indexed shareRate,
uint256 mintableTitan,
uint256 mintPowerBonus,
uint256 EAABonus
);
/** @dev Update variables in terms of day, modifier is used in all external/public functions (exclude view)
* Every interaction to the contract would run this function to update variables
*/
modifier dailyUpdate() {
_dailyUpdate();
_;
}
constructor() {
i_genesisTs = block.timestamp;
s_currentContractDay = 1;
s_currentMintCost = uint64(START_MAX_MINT_COST);
s_currentMintableTitan = uint96(START_MAX_MINTABLE_PER_DAY);
s_currentshareRate = uint72(START_SHARE_RATE);
s_currentMintPowerBonus = uint32(START_MINTPOWER_INCREASE_BONUS);
s_currentEAABonus = uint32(EAA_START);
s_nextCyclePayoutDay[DAY8] = DAY8;
s_nextCyclePayoutDay[DAY28] = DAY28;
s_nextCyclePayoutDay[DAY90] = DAY90;
s_nextCyclePayoutDay[DAY369] = DAY369;
s_nextCyclePayoutDay[DAY888] = DAY888;
}
/** @dev calculate and update variables daily and reset triggers flag */
function _dailyUpdate() private {
uint256 currentContractDay = s_currentContractDay;
uint256 currentBlockDay = ((block.timestamp - i_genesisTs) / 1 days) + 1;
if (currentBlockDay > currentContractDay) {
//get last day info ready for calculation
uint256 newMintCost = s_currentMintCost;
uint256 newShareRate = s_currentshareRate;
uint256 newMintableTitan = s_currentMintableTitan;
uint256 newMintPowerBonus = s_currentMintPowerBonus;
uint256 newEAABonus = s_currentEAABonus;
uint256 dayDifference = currentBlockDay - currentContractDay;
/** Reason for a for loop to update Mint supply
* Ideally, user interaction happens daily, so Mint supply is synced in every day
* (cylceDifference = 1)
* However, if there's no interaction for more than 1 day, then
* Mint supply isn't updated correctly due to cylceDifference > 1 day
* Eg. 2 days of no interaction, then interaction happens in 3rd day.
* It's incorrect to only decrease the Mint supply one time as now it's in 3rd day.
* And if this happens, there will be no tracked data for the skipped days as not needed
*/
for (uint256 i; i < dayDifference; i++) {
newMintCost = (newMintCost * DAILY_MINT_COST_INCREASE_STEP) / PERCENT_BPS;
newShareRate = (newShareRate * DAILY_SHARE_RATE_INCREASE_STEP) / PERCENT_BPS;
newMintableTitan =
(newMintableTitan * DAILY_SUPPLY_MINTABLE_REDUCTION) /
PERCENT_BPS;
newMintPowerBonus =
(newMintPowerBonus * DAILY_MINTPOWER_INCREASE_BONUS_REDUCTION) /
PERCENT_BPS;
if (newMintCost > 1 ether) {
newMintCost = CAPPED_MAX_MINT_COST;
}
if (newShareRate > CAPPED_MAX_RATE) newShareRate = CAPPED_MAX_RATE;
if (newMintableTitan < CAPPED_MIN_DAILY_TITAN_MINTABLE) {
newMintableTitan = CAPPED_MIN_DAILY_TITAN_MINTABLE;
}
if (newMintPowerBonus < CAPPED_MIN_MINTPOWER_BONUS) {
newMintPowerBonus = CAPPED_MIN_MINTPOWER_BONUS;
}
if (currentBlockDay <= MAX_BONUS_DAY) {
newEAABonus -= EAA_BONUSE_FIXED_REDUCTION_PER_DAY;
} else {
newEAABonus = EAA_END;
}
emit GlobalDailyUpdateStats(
++currentContractDay,
newMintCost,
newShareRate,
newMintableTitan,
newMintPowerBonus,
newEAABonus
);
}
s_currentMintCost = uint64(newMintCost);
s_currentshareRate = uint72(newShareRate);
s_currentMintableTitan = uint96(newMintableTitan);
s_currentMintPowerBonus = uint32(newMintPowerBonus);
s_currentEAABonus = uint32(newEAABonus);
s_currentContractDay = currentBlockDay;
s_isGlobalPayoutTriggered = PayoutTriggered.NO;
}
}
/** @dev first created shares will start from the last payout index + 1 (next cycle payout)
* as first shares will always disqualified from past payouts
* reduce gas cost needed to loop from first index
* @param user user address
* @param isFirstShares flag to only initialize when address is fresh wallet
*/
function _initFirstSharesCycleIndex(address user, uint256 isFirstShares) internal {
if (isFirstShares == 1) {
if (s_cyclePayoutIndex[DAY8] != 0) {
s_addressCycleToLastClaimIndex[user][DAY8].cycleIndex = uint96(
s_cyclePayoutIndex[DAY8] + 1
);
s_addressCycleToLastClaimIndex[user][DAY28].cycleIndex = uint96(
s_cyclePayoutIndex[DAY28] + 1
);
s_addressCycleToLastClaimIndex[user][DAY90].cycleIndex = uint96(
s_cyclePayoutIndex[DAY90] + 1
);
s_addressCycleToLastClaimIndex[user][DAY369].cycleIndex = uint96(
s_cyclePayoutIndex[DAY369] + 1
);
s_addressCycleToLastClaimIndex[user][DAY888].cycleIndex = uint96(
s_cyclePayoutIndex[DAY888] + 1
);
}
}
}
/** @dev first created shares will start from the last payout index + 1 (next cycle payout)
* as first shares will always disqualified from past payouts
* reduce gas cost needed to loop from first index
* @param cycleNo cylce day 8, 28, 90, 369, 888
* @param reward total accumulated reward in cycle day 8, 28, 90, 369, 888
* @param globalActiveShares global active shares
* @return index return latest current cycleIndex
*/
function _calculateCycleRewardPerShare(
uint256 cycleNo,
uint256 reward,
uint256 globalActiveShares
) internal returns (uint256 index) {
s_cyclePayouts[cycleNo] = 0;
index = ++s_cyclePayoutIndex[cycleNo];
//add 18 decimals to reward for better precision in calculation
s_cyclePayoutPerShare[cycleNo][index].payoutPerShare =
(reward * SCALING_FACTOR_1e18) /
globalActiveShares;
s_cyclePayoutPerShare[cycleNo][index].day = getCurrentContractDay();
}
/** @dev update with the last index where a user has claimed the payout reward
* @param user user address
* @param cycleNo cylce day 8, 28, 90, 369, 888
* @param userClaimCycleIndex last claimed cycle index
* @param userClaimSharesIndex last claimed shares index
*/
function _updateUserClaimIndexes(
address user,
uint256 cycleNo,
uint256 userClaimCycleIndex,
uint256 userClaimSharesIndex
) internal {
if (userClaimCycleIndex != s_addressCycleToLastClaimIndex[user][cycleNo].cycleIndex)
s_addressCycleToLastClaimIndex[user][cycleNo].cycleIndex = uint96(userClaimCycleIndex);
if (userClaimSharesIndex != s_addressCycleToLastClaimIndex[user][cycleNo].sharesIndex)
s_addressCycleToLastClaimIndex[user][cycleNo].sharesIndex = uint64(
userClaimSharesIndex
);
}
/** @dev update with the last index where a user has claimed the burn payout reward
* @param user user address
* @param cycleNo cylce day 8, 28, 90, 369, 888
* @param userClaimBurnCycleIndex last claimed burn cycle index
*/
function _updateUserBurnCycleClaimIndex(
address user,
uint256 cycleNo,
uint256 userClaimBurnCycleIndex
) internal {
if (userClaimBurnCycleIndex != s_addressCycleToLastClaimIndex[user][cycleNo].burnCycleIndex)
s_addressCycleToLastClaimIndex[user][cycleNo].burnCycleIndex = uint96(
userClaimBurnCycleIndex
);
}
/** @dev set to YES when any of the cycle days payout is triggered
* reset to NO in new contract day
*/
function _setGlobalPayoutTriggered() internal {
s_isGlobalPayoutTriggered = PayoutTriggered.YES;
}
/** @dev add reward into cycle day 8, 28, 90, 369, 888 pool
* @param cycleNo cycle day 8, 28, 90, 369, 888
* @param reward reward from distributeETH()
*/
function _setCyclePayoutPool(uint256 cycleNo, uint256 reward) internal {
s_cyclePayouts[cycleNo] += reward;
}
/** @dev calculate and update the next payout day for specified cycleNo
* the formula will update the payout day based on current contract day
* this is to make sure the value is correct when for some reason has skipped more than one cycle payout
* @param cycleNo cycle day 8, 28, 90, 369, 888
*/
function _setNextCyclePayoutDay(uint256 cycleNo) internal {
uint256 maturityDay = s_nextCyclePayoutDay[cycleNo];
uint256 currentContractDay = s_currentContractDay;
if (currentContractDay >= maturityDay) {
s_nextCyclePayoutDay[cycleNo] +=
cycleNo *
(((currentContractDay - maturityDay) / cycleNo) + 1);
}
}
/** Views */
/** @notice Returns current block timestamp
* @return currentBlockTs current block timestamp
*/
function getCurrentBlockTimeStamp() public view returns (uint256) {
return block.timestamp;
}
/** @notice Returns current contract day
* @return currentContractDay current contract day
*/
function getCurrentContractDay() public view returns (uint256) {
return s_currentContractDay;
}
/** @notice Returns current mint cost
* @return currentMintCost current block timestamp
*/
function getCurrentMintCost() public view returns (uint256) {
return s_currentMintCost;
}
/** @notice Returns current share rate
* @return currentShareRate current share rate
*/
function getCurrentShareRate() public view returns (uint256) {
return s_currentshareRate;
}
/** @notice Returns current mintable titan
* @return currentMintableTitan current mintable titan
*/
function getCurrentMintableTitan() public view returns (uint256) {
return s_currentMintableTitan;
}
/** @notice Returns current mint power bonus
* @return currentMintPowerBonus current mint power bonus
*/
function getCurrentMintPowerBonus() public view returns (uint256) {
return s_currentMintPowerBonus;
}
/** @notice Returns current contract EAA bonus
* @return currentEAABonus current EAA bonus
*/
function getCurrentEAABonus() public view returns (uint256) {
return s_currentEAABonus;
}
/** @notice Returns current cycle index for the specified cycle day
* @param cycleNo cycle day 8, 28, 90, 369, 888
* @return currentCycleIndex current cycle index to track the payouts
*/
function getCurrentCycleIndex(uint256 cycleNo) public view returns (uint256) {
return s_cyclePayoutIndex[cycleNo];
}
/** @notice Returns whether payout is triggered successfully in any cylce day
* @return isTriggered 0 or 1, 0= No, 1=Yes
*/
function getGlobalPayoutTriggered() public view returns (PayoutTriggered) {
return s_isGlobalPayoutTriggered;
}
/** @notice Returns the distributed pool reward for the specified cycle day
* @param cycleNo cycle day 8, 28, 90, 369, 888
* @return currentPayoutPool current accumulated payout pool
*/
function getCyclePayoutPool(uint256 cycleNo) public view returns (uint256) {
return s_cyclePayouts[cycleNo];
}
/** @notice Returns the calculated payout per share and contract day for the specified cycle day and index
* @param cycleNo cycle day 8, 28, 90, 369, 888
* @param index cycle index
* @return payoutPerShare calculated payout per share
* @return triggeredDay the day when payout was triggered to perform calculation
*/
function getPayoutPerShare(
uint256 cycleNo,
uint256 index
) public view returns (uint256, uint256) {
return (
s_cyclePayoutPerShare[cycleNo][index].payoutPerShare,
s_cyclePayoutPerShare[cycleNo][index].day
);
}
/** @notice Returns user's last claimed shares payout indexes for the specified cycle day
* @param user user address
* @param cycleNo cycle day 8, 28, 90, 369, 888
* @return cycleIndex cycle index
* @return sharesIndex shares index
*/
function getUserLastClaimIndex(
address user,
uint256 cycleNo
) public view returns (uint256 cycleIndex, uint256 sharesIndex) {
return (
s_addressCycleToLastClaimIndex[user][cycleNo].cycleIndex,
s_addressCycleToLastClaimIndex[user][cycleNo].sharesIndex
);
}
/** @notice Returns user's last claimed burn payout index for the specified cycle day
* @param user user address
* @param cycleNo cycle day 8, 28, 90, 369, 888
* @return burnCycleIndex burn cycle index
*/
function getUserLastBurnClaimIndex(
address user,
uint256 cycleNo
) public view returns (uint256 burnCycleIndex) {
return s_addressCycleToLastClaimIndex[user][cycleNo].burnCycleIndex;
}
/** @notice Returns contract deployment block timestamp
* @return genesisTs deployed timestamp
*/
function genesisTs() public view returns (uint256) {
return i_genesisTs;
}
/** @notice Returns next payout day for the specified cycle day
* @param cycleNo cycle day 8, 28, 90, 369, 888
* @return nextPayoutDay next payout day
*/
function getNextCyclePayoutDay(uint256 cycleNo) public view returns (uint256) {
return s_nextCyclePayoutDay[cycleNo];
}
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity ^0.8.10;
import "./constant.sol";
import "./enum.sol";
//TitanX
/**@notice get batch mint ladder total count
* @param minDay minimum mint length
* @param maxDay maximum mint length, cap at 280
* @param dayInterval day increase from previous mint length
* @param countPerInterval number of mints per minth length
* @return count total mints
*/
function getBatchMintLadderCount(
uint256 minDay,
uint256 maxDay,
uint256 dayInterval,
uint256 countPerInterval
) pure returns (uint256 count) {
if (maxDay > minDay) {
count = (((maxDay - minDay) / dayInterval) + 1) * countPerInterval;
}
}
/** @notice get incentive fee in 4 decimals scaling
* @return fee fee
*/
function getIncentiveFeePercent() pure returns (uint256) {
return (INCENTIVE_FEE_PERCENT * 1e4) / INCENTIVE_FEE_PERCENT_BASE;
}
/** @notice get batch mint cost
* @param mintPower mint power (1 - 100)
* @param count number of mints
* @return mintCost total mint cost
*/
function getBatchMintCost(
uint256 mintPower,
uint256 count,
uint256 mintCost
) pure returns (uint256) {
return (mintCost * mintPower * count) / MAX_MINT_POWER_CAP;
}
//MintInfo
/** @notice the formula to calculate mint reward at create new mint
* @param mintPower mint power 1 - 100
* @param numOfDays mint length 1 - 280
* @param mintableTitan current contract day mintable titan
* @param EAABonus current contract day EAA Bonus
* @param burnAmpBonus user burn amplifier bonus from getUserBurnAmplifierBonus(user)
* @return reward base titan amount
*/
function calculateMintReward(
uint256 mintPower,
uint256 numOfDays,
uint256 mintableTitan,
uint256 EAABonus,
uint256 burnAmpBonus
) pure returns (uint256 reward) {
uint256 baseReward = (mintableTitan * mintPower * numOfDays);
if (numOfDays != 1)
baseReward -= (baseReward * MINT_DAILY_REDUCTION * (numOfDays - 1)) / PERCENT_BPS;
reward = baseReward;
if (EAABonus != 0) {
//EAA Bonus has 1e6 scaling, so here divide by 1e6
reward += ((baseReward * EAABonus) / 100 / SCALING_FACTOR_1e6);
}
if (burnAmpBonus != 0) {
//burnAmpBonus has 1e18 scaling
reward += (baseReward * burnAmpBonus) / 100 / SCALING_FACTOR_1e18;
}
reward /= MAX_MINT_POWER_CAP;
}
/** @notice the formula to calculate bonus reward
* heavily influenced by the difference between current global mint power and user mint's global mint power
* @param mintPowerBonus mint power bonus from mintinfo
* @param mintPower mint power 1 - 100 from mintinfo
* @param gMintPower global mint power from mintinfo
* @param globalMintPower current global mint power
* @return bonus bonus amount in titan
*/
function calculateMintPowerBonus(
uint256 mintPowerBonus,
uint256 mintPower,
uint256 gMintPower,
uint256 globalMintPower
) pure returns (uint256 bonus) {
if (globalMintPower <= gMintPower) return 0;
bonus = (((mintPowerBonus * mintPower * (globalMintPower - gMintPower)) * SCALING_FACTOR_1e18) /
MAX_MINT_POWER_CAP);
}
/** @notice Return max mint length
* @return maxMintLength max mint length
*/
function getMaxMintDays() pure returns (uint256) {
return MAX_MINT_LENGTH;
}
/** @notice Return max mints per wallet
* @return maxMintPerWallet max mints per wallet
*/
function getMaxMintsPerWallet() pure returns (uint256) {
return MAX_MINT_PER_WALLET;
}
/**
* @dev Return penalty percentage based on number of days late after the grace period of 7 days
* @param secsLate seconds late (block timestamp - maturity timestamp)
* @return penalty penalty in percentage
*/
function calculateClaimMintPenalty(uint256 secsLate) pure returns (uint256 penalty) {
if (secsLate <= CLAIM_MINT_GRACE_PERIOD * SECONDS_IN_DAY) return 0;
if (secsLate <= (CLAIM_MINT_GRACE_PERIOD + 1) * SECONDS_IN_DAY) return 1;
if (secsLate <= (CLAIM_MINT_GRACE_PERIOD + 2) * SECONDS_IN_DAY) return 3;
if (secsLate <= (CLAIM_MINT_GRACE_PERIOD + 3) * SECONDS_IN_DAY) return 8;
if (secsLate <= (CLAIM_MINT_GRACE_PERIOD + 4) * SECONDS_IN_DAY) return 17;
if (secsLate <= (CLAIM_MINT_GRACE_PERIOD + 5) * SECONDS_IN_DAY) return 35;
if (secsLate <= (CLAIM_MINT_GRACE_PERIOD + 6) * SECONDS_IN_DAY) return 72;
return 99;
}
//StakeInfo
error TitanX_AtLeastHalfMaturity();
/** @notice get max stake length
* @return maxStakeLength max stake length
*/
function getMaxStakeLength() pure returns (uint256) {
return MAX_STAKE_LENGTH;
}
/** @notice calculate shares and shares bonus
* @param amount titan amount
* @param noOfDays stake length
* @param shareRate current contract share rate
* @return shares calculated shares in 18 decimals
*/
function calculateShares(
uint256 amount,
uint256 noOfDays,
uint256 shareRate
) pure returns (uint256) {
uint256 shares = amount;
shares += (shares * calculateShareBonus(amount, noOfDays)) / SCALING_FACTOR_1e11;
shares /= (shareRate / SCALING_FACTOR_1e18);
return shares;
}
/** @notice calculate share bonus
* @param amount titan amount
* @param noOfDays stake length
* @return shareBonus calculated shares bonus in 11 decimals
*/
function calculateShareBonus(uint256 amount, uint256 noOfDays) pure returns (uint256 shareBonus) {
uint256 cappedExtraDays = noOfDays <= LPB_MAX_DAYS ? noOfDays : LPB_MAX_DAYS;
uint256 cappedStakedTitan = amount <= BPB_MAX_TITAN ? amount : BPB_MAX_TITAN;
shareBonus =
((cappedExtraDays * SCALING_FACTOR_1e11) / LPB_PER_PERCENT) +
((cappedStakedTitan * SCALING_FACTOR_1e11) / BPB_PER_PERCENT);
return shareBonus;
}
/** @notice calculate end stake penalty
* @param stakeStartTs start stake timestamp
* @param maturityTs maturity timestamp
* @param currentBlockTs current block timestamp
* @param action end stake or burn stake
* @return penalty penalty in percentage
*/
function calculateEndStakePenalty(
uint256 stakeStartTs,
uint256 maturityTs,
uint256 currentBlockTs,
StakeAction action
) view returns (uint256) {
//Matured, then calculate and return penalty
if (currentBlockTs > maturityTs) {
uint256 lateSec = currentBlockTs - maturityTs;
uint256 gracePeriodSec = END_STAKE_GRACE_PERIOD * SECONDS_IN_DAY;
if (lateSec <= gracePeriodSec) return 0;
return max((min((lateSec - gracePeriodSec), 1) / SECONDS_IN_DAY) + 1, 99);
}
//burn stake is excluded from penalty
//if not matured and action is burn stake then return 0
if (action == StakeAction.BURN) return 0;
//Emergency End Stake
//Not allow to EES below 50% maturity
if (block.timestamp < stakeStartTs + (maturityTs - stakeStartTs) / 2)
revert TitanX_AtLeastHalfMaturity();
//50% penalty for EES before maturity timestamp
return 50;
}
//a - input to check against b
//b - minimum number
function min(uint256 a, uint256 b) pure returns (uint256) {
if (a > b) return a;
return b;
}
//a - input to check against b
//b - maximum number
function max(uint256 a, uint256 b) pure returns (uint256) {
if (a > b) return b;
return a;
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity ^0.8.10;
interface ITITANX {
function balanceOf(address account) external returns (uint256);
function getBalance() external;
function mintLPTokens() external;
function burnLPTokens() external;
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity ^0.8.10;
interface ITitanOnBurn {
function onBurn(address user, uint256 amount) external;
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (interfaces/IERC165.sol)
pragma solidity ^0.8.0;
import "../utils/introspection/IERC165.sol";
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.8.0) (token/ERC20/ERC20.sol)
pragma solidity ^0.8.0;
import "./IERC20.sol";
import "./extensions/IERC20Metadata.sol";
import "../../utils/Context.sol";
/**
* @dev Implementation of the {IERC20} interface.
*
* This implementation is agnostic to the way tokens are created. This means
* that a supply mechanism has to be added in a derived contract using {_mint}.
* For a generic mechanism see {ERC20PresetMinterPauser}.
*
* TIP: For a detailed writeup see our guide
* https://forum.openzeppelin.com/t/how-to-implement-erc20-supply-mechanisms/226[How
* to implement supply mechanisms].
*
* We have followed general OpenZeppelin Contracts guidelines: functions revert
* instead returning `false` on failure. This behavior is nonetheless
* conventional and does not conflict with the expectations of ERC20
* applications.
*
* Additionally, an {Approval} event is emitted on calls to {transferFrom}.
* This allows applications to reconstruct the allowance for all accounts just
* by listening to said events. Other implementations of the EIP may not emit
* these events, as it isn't required by the specification.
*
* Finally, the non-standard {decreaseAllowance} and {increaseAllowance}
* functions have been added to mitigate the well-known issues around setting
* allowances. See {IERC20-approve}.
*/
contract ERC20 is Context, IERC20, IERC20Metadata {
mapping(address => uint256) private _balances;
mapping(address => mapping(address => uint256)) private _allowances;
uint256 private _totalSupply;
string private _name;
string private _symbol;
/**
* @dev Sets the values for {name} and {symbol}.
*
* The default value of {decimals} is 18. To select a different value for
* {decimals} you should overload it.
*
* All two of these values are immutable: they can only be set once during
* construction.
*/
constructor(string memory name_, string memory symbol_) {
_name = name_;
_symbol = symbol_;
}
/**
* @dev Returns the name of the token.
*/
function name() public view virtual override returns (string memory) {
return _name;
}
/**
* @dev Returns the symbol of the token, usually a shorter version of the
* name.
*/
function symbol() public view virtual override returns (string memory) {
return _symbol;
}
/**
* @dev Returns the number of decimals used to get its user representation.
* For example, if `decimals` equals `2`, a balance of `505` tokens should
* be displayed to a user as `5.05` (`505 / 10 ** 2`).
*
* Tokens usually opt for a value of 18, imitating the relationship between
* Ether and Wei. This is the value {ERC20} uses, unless this function is
* overridden;
*
* NOTE: This information is only used for _display_ purposes: it in
* no way affects any of the arithmetic of the contract, including
* {IERC20-balanceOf} and {IERC20-transfer}.
*/
function decimals() public view virtual override returns (uint8) {
return 18;
}
/**
* @dev See {IERC20-totalSupply}.
*/
function totalSupply() public view virtual override returns (uint256) {
return _totalSupply;
}
/**
* @dev See {IERC20-balanceOf}.
*/
function balanceOf(address account) public view virtual override returns (uint256) {
return _balances[account];
}
/**
* @dev See {IERC20-transfer}.
*
* Requirements:
*
* - `to` cannot be the zero address.
* - the caller must have a balance of at least `amount`.
*/
function transfer(address to, uint256 amount) public virtual override returns (bool) {
address owner = _msgSender();
_transfer(owner, to, amount);
return true;
}
/**
* @dev See {IERC20-allowance}.
*/
function allowance(
address owner,
address spender
) public view virtual override returns (uint256) {
return _allowances[owner][spender];
}
/**
* @dev See {IERC20-approve}.
*
* NOTE: If `amount` is the maximum `uint256`, the allowance is not updated on
* `transferFrom`. This is semantically equivalent to an infinite approval.
*
* Requirements:
*
* - `spender` cannot be the zero address.
*/
function approve(address spender, uint256 amount) public virtual override returns (bool) {
address owner = _msgSender();
_approve(owner, spender, amount);
return true;
}
/**
* @dev See {IERC20-transferFrom}.
*
* Emits an {Approval} event indicating the updated allowance. This is not
* required by the EIP. See the note at the beginning of {ERC20}.
*
* NOTE: Does not update the allowance if the current allowance
* is the maximum `uint256`.
*
* Requirements:
*
* - `from` and `to` cannot be the zero address.
* - `from` must have a balance of at least `amount`.
* - the caller must have allowance for ``from``'s tokens of at least
* `amount`.
*/
function transferFrom(
address from,
address to,
uint256 amount
) public virtual override returns (bool) {
address spender = _msgSender();
_spendAllowance(from, spender, amount);
_transfer(from, to, amount);
return true;
}
/**
* @dev Moves `amount` of tokens from `from` to `to`.
*
* This internal function is equivalent to {transfer}, and can be used to
* e.g. implement automatic token fees, slashing mechanisms, etc.
*
* Emits a {Transfer} event.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `from` must have a balance of at least `amount`.
*/
function _transfer(address from, address to, uint256 amount) internal virtual {
require(from != address(0), "ERC20: transfer from the zero address");
require(to != address(0), "ERC20: transfer to the zero address");
_beforeTokenTransfer(from, to, amount);
uint256 fromBalance = _balances[from];
require(fromBalance >= amount, "ERC20: transfer amount exceeds balance");
unchecked {
_balances[from] = fromBalance - amount;
// Overflow not possible: the sum of all balances is capped by totalSupply, and the sum is preserved by
// decrementing then incrementing.
_balances[to] += amount;
}
emit Transfer(from, to, amount);
_afterTokenTransfer(from, to, amount);
}
/** @dev Creates `amount` tokens and assigns them to `account`, increasing
* the total supply.
*
* Emits a {Transfer} event with `from` set to the zero address.
*
* Requirements:
*
* - `account` cannot be the zero address.
*/
function _mint(address account, uint256 amount) internal virtual {
require(account != address(0), "ERC20: mint to the zero address");
_beforeTokenTransfer(address(0), account, amount);
_totalSupply += amount;
unchecked {
// Overflow not possible: balance + amount is at most totalSupply + amount, which is checked above.
_balances[account] += amount;
}
emit Transfer(address(0), account, amount);
_afterTokenTransfer(address(0), account, amount);
}
/**
* @dev Destroys `amount` tokens from `account`, reducing the
* total supply.
*
* Emits a {Transfer} event with `to` set to the zero address.
*
* Requirements:
*
* - `account` cannot be the zero address.
* - `account` must have at least `amount` tokens.
*/
function _burn(address account, uint256 amount) internal virtual {
require(account != address(0), "ERC20: burn from the zero address");
_beforeTokenTransfer(account, address(0), amount);
uint256 accountBalance = _balances[account];
require(accountBalance >= amount, "ERC20: burn amount exceeds balance");
unchecked {
_balances[account] = accountBalance - amount;
// Overflow not possible: amount <= accountBalance <= totalSupply.
_totalSupply -= amount;
}
emit Transfer(account, address(0), amount);
_afterTokenTransfer(account, address(0), amount);
}
/**
* @dev Sets `amount` as the allowance of `spender` over the `owner` s tokens.
*
* This internal function is equivalent to `approve`, and can be used to
* e.g. set automatic allowances for certain subsystems, etc.
*
* Emits an {Approval} event.
*
* Requirements:
*
* - `owner` cannot be the zero address.
* - `spender` cannot be the zero address.
*/
function _approve(address owner, address spender, uint256 amount) internal virtual {
require(owner != address(0), "ERC20: approve from the zero address");
require(spender != address(0), "ERC20: approve to the zero address");
_allowances[owner][spender] = amount;
emit Approval(owner, spender, amount);
}
/**
* @dev Updates `owner` s allowance for `spender` based on spent `amount`.
*
* Does not update the allowance amount in case of infinite allowance.
* Revert if not enough allowance is available.
*
* Might emit an {Approval} event.
*/
function _spendAllowance(address owner, address spender, uint256 amount) internal virtual {
uint256 currentAllowance = allowance(owner, spender);
if (currentAllowance != type(uint256).max) {
require(currentAllowance >= amount, "ERC20: insufficient allowance");
unchecked {
_approve(owner, spender, currentAllowance - amount);
}
}
}
/**
* @dev Hook that is called before any transfer of tokens. This includes
* minting and burning.
*
* Calling conditions:
*
* - when `from` and `to` are both non-zero, `amount` of ``from``'s tokens
* will be transferred to `to`.
* - when `from` is zero, `amount` tokens will be minted for `to`.
* - when `to` is zero, `amount` of ``from``'s tokens will be burned.
* - `from` and `to` are never both zero.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/
function _beforeTokenTransfer(address from, address to, uint256 amount) internal virtual {}
/**
* @dev Hook that is called after any transfer of tokens. This includes
* minting and burning.
*
* Calling conditions:
*
* - when `from` and `to` are both non-zero, `amount` of ``from``'s tokens
* has been transferred to `to`.
* - when `from` is zero, `amount` tokens have been minted for `to`.
* - when `to` is zero, `amount` of ``from``'s tokens have been burned.
* - `from` and `to` are never both zero.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/
function _afterTokenTransfer(address from, address to, uint256 amount) internal virtual {}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.8.0) (security/ReentrancyGuard.sol)
pragma solidity ^0.8.0;
/**
* @dev Contract module that helps prevent reentrant calls to a function.
*
* Inheriting from `ReentrancyGuard` will make the {nonReentrant} modifier
* available, which can be applied to functions to make sure there are no nested
* (reentrant) calls to them.
*
* Note that because there is a single `nonReentrant` guard, functions marked as
* `nonReentrant` may not call one another. This can be worked around by making
* those functions `private`, and then adding `external` `nonReentrant` entry
* points to them.
*
* TIP: If you would like to learn more about reentrancy and alternative ways
* to protect against it, check out our blog post
* https://blog.openzeppelin.com/reentrancy-after-istanbul/[Reentrancy After Istanbul].
*/
abstract contract ReentrancyGuard {
// Booleans are more expensive than uint256 or any type that takes up a full
// word because each write operation emits an extra SLOAD to first read the
// slot's contents, replace the bits taken up by the boolean, and then write
// back. This is the compiler's defense against contract upgrades and
// pointer aliasing, and it cannot be disabled.
// The values being non-zero value makes deployment a bit more expensive,
// but in exchange the refund on every call to nonReentrant will be lower in
// amount. Since refunds are capped to a percentage of the total
// transaction's gas, it is best to keep them low in cases like this one, to
// increase the likelihood of the full refund coming into effect.
uint256 private constant _NOT_ENTERED = 1;
uint256 private constant _ENTERED = 2;
uint256 private _status;
constructor() {
_status = _NOT_ENTERED;
}
/**
* @dev Prevents a contract from calling itself, directly or indirectly.
* Calling a `nonReentrant` function from another `nonReentrant`
* function is not supported. It is possible to prevent this from happening
* by making the `nonReentrant` function external, and making it call a
* `private` function that does the actual work.
*/
modifier nonReentrant() {
_nonReentrantBefore();
_;
_nonReentrantAfter();
}
function _nonReentrantBefore() private {
// On the first call to nonReentrant, _status will be _NOT_ENTERED
require(_status != _ENTERED, "ReentrancyGuard: reentrant call");
// Any calls to nonReentrant after this point will fail
_status = _ENTERED;
}
function _nonReentrantAfter() private {
// By storing the original value once again, a refund is triggered (see
// https://eips.ethereum.org/EIPS/eip-2200)
_status = _NOT_ENTERED;
}
/**
* @dev Returns true if the reentrancy guard is currently set to "entered", which indicates there is a
* `nonReentrant` function in the call stack.
*/
function _reentrancyGuardEntered() internal view returns (bool) {
return _status == _ENTERED;
}
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity ^0.8.10;
enum MintAction {
CLAIM,
BURN
}
enum MintStatus {
ACTIVE,
CLAIMED,
BURNED
}
enum StakeAction {
START,
END,
BURN,
END_OWN,
END_OTHER
}
enum StakeStatus {
ACTIVE,
ENDED,
BURNED
}
enum PayoutTriggered {
NO,
YES
}
enum InitialLPMinted {
NO,
YES
}
enum PayoutClaim {
SHARES,
BURN
}
enum BurnSource {
LIQUID,
MINT,
STAKE
}
enum BurnPoolEnabled {
FALSE,
TRUE
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity ^0.8.10;
// ===================== common ==========================================
uint256 constant SECONDS_IN_DAY = 86400;
uint256 constant SCALING_FACTOR_1e3 = 1e3;
uint256 constant SCALING_FACTOR_1e6 = 1e6;
uint256 constant SCALING_FACTOR_1e7 = 1e7;
uint256 constant SCALING_FACTOR_1e11 = 1e11;
uint256 constant SCALING_FACTOR_1e18 = 1e18;
// ===================== TITANX ==========================================
uint256 constant PERCENT_TO_BUY_AND_BURN = 62_00;
uint256 constant PERCENT_TO_CYCLE_PAYOUTS = 28_00;
uint256 constant PERCENT_TO_BURN_PAYOUTS = 7_00;
uint256 constant PERCENT_TO_GENESIS = 3_00;
uint256 constant INCENTIVE_FEE_PERCENT = 3300;
uint256 constant INCENTIVE_FEE_PERCENT_BASE = 1_000_000;
uint256 constant INITAL_LP_TOKENS = 100_000_000_000 ether;
// ===================== globalInfo ==========================================
//Titan Supply Variables
uint256 constant START_MAX_MINTABLE_PER_DAY = 8_000_000 ether;
uint256 constant CAPPED_MIN_DAILY_TITAN_MINTABLE = 800 ether;
uint256 constant DAILY_SUPPLY_MINTABLE_REDUCTION = 99_65;
//EAA Variables
uint256 constant EAA_START = 10 * SCALING_FACTOR_1e6;
uint256 constant EAA_BONUSE_FIXED_REDUCTION_PER_DAY = 28_571;
uint256 constant EAA_END = 0;
uint256 constant MAX_BONUS_DAY = 350;
//Mint Cost Variables
uint256 constant START_MAX_MINT_COST = 0.2 ether;
uint256 constant CAPPED_MAX_MINT_COST = 1 ether;
uint256 constant DAILY_MINT_COST_INCREASE_STEP = 100_08;
//mintPower Bonus Variables
uint256 constant START_MINTPOWER_INCREASE_BONUS = 35 * SCALING_FACTOR_1e7; //starts at 35 with 1e7 scaling factor
uint256 constant CAPPED_MIN_MINTPOWER_BONUS = 35 * SCALING_FACTOR_1e3; //capped min of 0.0035 * 1e7 = 35 * 1e3
uint256 constant DAILY_MINTPOWER_INCREASE_BONUS_REDUCTION = 99_65;
//Share Rate Variables
uint256 constant START_SHARE_RATE = 800 ether;
uint256 constant DAILY_SHARE_RATE_INCREASE_STEP = 100_03;
uint256 constant CAPPED_MAX_RATE = 2_800 ether;
//Cycle Variables
uint256 constant DAY8 = 8;
uint256 constant DAY28 = 28;
uint256 constant DAY90 = 90;
uint256 constant DAY369 = 369;
uint256 constant DAY888 = 888;
uint256 constant CYCLE_8_PERCENT = 28_00;
uint256 constant CYCLE_28_PERCENT = 28_00;
uint256 constant CYCLE_90_PERCENT = 18_00;
uint256 constant CYCLE_369_PERCENT = 18_00;
uint256 constant CYCLE_888_PERCENT = 8_00;
uint256 constant PERCENT_BPS = 100_00;
// ===================== mintInfo ==========================================
uint256 constant MAX_MINT_POWER_CAP = 100;
uint256 constant MAX_MINT_LENGTH = 280;
uint256 constant CLAIM_MINT_GRACE_PERIOD = 7;
uint256 constant MAX_BATCH_MINT_COUNT = 100;
uint256 constant MAX_MINT_PER_WALLET = 1000;
uint256 constant MAX_BURN_AMP_BASE = 80 * 1e9 * 1 ether;
uint256 constant MAX_BURN_AMP_PERCENT = 8 ether;
uint256 constant MINT_DAILY_REDUCTION = 11;
// ===================== stakeInfo ==========================================
uint256 constant MAX_STAKE_PER_WALLET = 1000;
uint256 constant MIN_STAKE_LENGTH = 28;
uint256 constant MAX_STAKE_LENGTH = 3500;
uint256 constant END_STAKE_GRACE_PERIOD = 7;
/* Stake Longer Pays Better bonus */
uint256 constant LPB_MAX_DAYS = 2888;
uint256 constant LPB_PER_PERCENT = 825;
/* Stake Bigger Pays Better bonus */
uint256 constant BPB_MAX_TITAN = 100 * 1e9 * SCALING_FACTOR_1e18; //100 billion
uint256 constant BPB_PER_PERCENT = 1_250_000_000_000 * SCALING_FACTOR_1e18;
// ===================== burnInfo ==========================================
uint256 constant MAX_BURN_REWARD_PERCENT = 8;
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/Context.sol)
pragma solidity ^0.8.0;
/**
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/
abstract contract Context {
function _msgSender() internal view virtual returns (address) {
return msg.sender;
}
function _msgData() internal view virtual returns (bytes calldata) {
return msg.data;
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (token/ERC20/extensions/IERC20Metadata.sol)
pragma solidity ^0.8.0;
import "../IERC20.sol";
/**
* @dev Interface for the optional metadata functions from the ERC20 standard.
*
* _Available since v4.1._
*/
interface IERC20Metadata is IERC20 {
/**
* @dev Returns the name of the token.
*/
function name() external view returns (string memory);
/**
* @dev Returns the symbol of the token.
*/
function symbol() external view returns (string memory);
/**
* @dev Returns the decimals places of the token.
*/
function decimals() external view returns (uint8);
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.6.0) (token/ERC20/IERC20.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC20 standard as defined in the EIP.
*/
interface IERC20 {
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/
event Transfer(address indexed from, address indexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/
event Approval(address indexed owner, address indexed spender, uint256 value);
/**
* @dev Returns the amount of tokens in existence.
*/
function totalSupply() external view returns (uint256);
/**
* @dev Returns the amount of tokens owned by `account`.
*/
function balanceOf(address account) external view returns (uint256);
/**
* @dev Moves `amount` tokens from the caller's account to `to`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transfer(address to, uint256 amount) external returns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/
function allowance(address owner, address spender) external view returns (uint256);
/**
* @dev Sets `amount` as the allowance of `spender` over the caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/
function approve(address spender, uint256 amount) external returns (bool);
/**
* @dev Moves `amount` tokens from `from` to `to` using the
* allowance mechanism. `amount` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transferFrom(
address from,
address to,
uint256 amount
) external returns (bool);
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/introspection/IERC165.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC165 standard, as defined in the
* https://eips.ethereum.org/EIPS/eip-165[EIP].
*
* Implementers can declare support of contract interfaces, which can then be
* queried by others ({ERC165Checker}).
*
* For an implementation, see {ERC165}.
*/
interface IERC165 {
/**
* @dev Returns true if this contract implements the interface defined by
* `interfaceId`. See the corresponding
* https://eips.ethereum.org/EIPS/eip-165#how-interfaces-are-identified[EIP section]
* to learn more about how these ids are created.
*
* This function call must use less than 30 000 gas.
*/
function supportsInterface(bytes4 interfaceId) external view returns (bool);
}
File 5 of 5: DragonX
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (access/Ownable.sol)
pragma solidity ^0.8.20;
import {Context} from "../utils/Context.sol";
/**
* @dev Contract module which provides a basic access control mechanism, where
* there is an account (an owner) that can be granted exclusive access to
* specific functions.
*
* The initial owner is set to the address provided by the deployer. This can
* later be changed with {transferOwnership}.
*
* This module is used through inheritance. It will make available the modifier
* `onlyOwner`, which can be applied to your functions to restrict their use to
* the owner.
*/
abstract contract Ownable is Context {
address private _owner;
/**
* @dev The caller account is not authorized to perform an operation.
*/
error OwnableUnauthorizedAccount(address account);
/**
* @dev The owner is not a valid owner account. (eg. `address(0)`)
*/
error OwnableInvalidOwner(address owner);
event OwnershipTransferred(address indexed previousOwner, address indexed newOwner);
/**
* @dev Initializes the contract setting the address provided by the deployer as the initial owner.
*/
constructor(address initialOwner) {
if (initialOwner == address(0)) {
revert OwnableInvalidOwner(address(0));
}
_transferOwnership(initialOwner);
}
/**
* @dev Throws if called by any account other than the owner.
*/
modifier onlyOwner() {
_checkOwner();
_;
}
/**
* @dev Returns the address of the current owner.
*/
function owner() public view virtual returns (address) {
return _owner;
}
/**
* @dev Throws if the sender is not the owner.
*/
function _checkOwner() internal view virtual {
if (owner() != _msgSender()) {
revert OwnableUnauthorizedAccount(_msgSender());
}
}
/**
* @dev Leaves the contract without owner. It will not be possible to call
* `onlyOwner` functions. Can only be called by the current owner.
*
* NOTE: Renouncing ownership will leave the contract without an owner,
* thereby disabling any functionality that is only available to the owner.
*/
function renounceOwnership() public virtual onlyOwner {
_transferOwnership(address(0));
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Can only be called by the current owner.
*/
function transferOwnership(address newOwner) public virtual onlyOwner {
if (newOwner == address(0)) {
revert OwnableInvalidOwner(address(0));
}
_transferOwnership(newOwner);
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Internal function without access restriction.
*/
function _transferOwnership(address newOwner) internal virtual {
address oldOwner = _owner;
_owner = newOwner;
emit OwnershipTransferred(oldOwner, newOwner);
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (access/Ownable2Step.sol)
pragma solidity ^0.8.20;
import {Ownable} from "./Ownable.sol";
/**
* @dev Contract module which provides access control mechanism, where
* there is an account (an owner) that can be granted exclusive access to
* specific functions.
*
* The initial owner is specified at deployment time in the constructor for `Ownable`. This
* can later be changed with {transferOwnership} and {acceptOwnership}.
*
* This module is used through inheritance. It will make available all functions
* from parent (Ownable).
*/
abstract contract Ownable2Step is Ownable {
address private _pendingOwner;
event OwnershipTransferStarted(address indexed previousOwner, address indexed newOwner);
/**
* @dev Returns the address of the pending owner.
*/
function pendingOwner() public view virtual returns (address) {
return _pendingOwner;
}
/**
* @dev Starts the ownership transfer of the contract to a new account. Replaces the pending transfer if there is one.
* Can only be called by the current owner.
*/
function transferOwnership(address newOwner) public virtual override onlyOwner {
_pendingOwner = newOwner;
emit OwnershipTransferStarted(owner(), newOwner);
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`) and deletes any pending owner.
* Internal function without access restriction.
*/
function _transferOwnership(address newOwner) internal virtual override {
delete _pendingOwner;
super._transferOwnership(newOwner);
}
/**
* @dev The new owner accepts the ownership transfer.
*/
function acceptOwnership() public virtual {
address sender = _msgSender();
if (pendingOwner() != sender) {
revert OwnableUnauthorizedAccount(sender);
}
_transferOwnership(sender);
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (interfaces/draft-IERC6093.sol)
pragma solidity ^0.8.20;
/**
* @dev Standard ERC20 Errors
* Interface of the https://eips.ethereum.org/EIPS/eip-6093[ERC-6093] custom errors for ERC20 tokens.
*/
interface IERC20Errors {
/**
* @dev Indicates an error related to the current `balance` of a `sender`. Used in transfers.
* @param sender Address whose tokens are being transferred.
* @param balance Current balance for the interacting account.
* @param needed Minimum amount required to perform a transfer.
*/
error ERC20InsufficientBalance(address sender, uint256 balance, uint256 needed);
/**
* @dev Indicates a failure with the token `sender`. Used in transfers.
* @param sender Address whose tokens are being transferred.
*/
error ERC20InvalidSender(address sender);
/**
* @dev Indicates a failure with the token `receiver`. Used in transfers.
* @param receiver Address to which tokens are being transferred.
*/
error ERC20InvalidReceiver(address receiver);
/**
* @dev Indicates a failure with the `spender`’s `allowance`. Used in transfers.
* @param spender Address that may be allowed to operate on tokens without being their owner.
* @param allowance Amount of tokens a `spender` is allowed to operate with.
* @param needed Minimum amount required to perform a transfer.
*/
error ERC20InsufficientAllowance(address spender, uint256 allowance, uint256 needed);
/**
* @dev Indicates a failure with the `approver` of a token to be approved. Used in approvals.
* @param approver Address initiating an approval operation.
*/
error ERC20InvalidApprover(address approver);
/**
* @dev Indicates a failure with the `spender` to be approved. Used in approvals.
* @param spender Address that may be allowed to operate on tokens without being their owner.
*/
error ERC20InvalidSpender(address spender);
}
/**
* @dev Standard ERC721 Errors
* Interface of the https://eips.ethereum.org/EIPS/eip-6093[ERC-6093] custom errors for ERC721 tokens.
*/
interface IERC721Errors {
/**
* @dev Indicates that an address can't be an owner. For example, `address(0)` is a forbidden owner in EIP-20.
* Used in balance queries.
* @param owner Address of the current owner of a token.
*/
error ERC721InvalidOwner(address owner);
/**
* @dev Indicates a `tokenId` whose `owner` is the zero address.
* @param tokenId Identifier number of a token.
*/
error ERC721NonexistentToken(uint256 tokenId);
/**
* @dev Indicates an error related to the ownership over a particular token. Used in transfers.
* @param sender Address whose tokens are being transferred.
* @param tokenId Identifier number of a token.
* @param owner Address of the current owner of a token.
*/
error ERC721IncorrectOwner(address sender, uint256 tokenId, address owner);
/**
* @dev Indicates a failure with the token `sender`. Used in transfers.
* @param sender Address whose tokens are being transferred.
*/
error ERC721InvalidSender(address sender);
/**
* @dev Indicates a failure with the token `receiver`. Used in transfers.
* @param receiver Address to which tokens are being transferred.
*/
error ERC721InvalidReceiver(address receiver);
/**
* @dev Indicates a failure with the `operator`’s approval. Used in transfers.
* @param operator Address that may be allowed to operate on tokens without being their owner.
* @param tokenId Identifier number of a token.
*/
error ERC721InsufficientApproval(address operator, uint256 tokenId);
/**
* @dev Indicates a failure with the `approver` of a token to be approved. Used in approvals.
* @param approver Address initiating an approval operation.
*/
error ERC721InvalidApprover(address approver);
/**
* @dev Indicates a failure with the `operator` to be approved. Used in approvals.
* @param operator Address that may be allowed to operate on tokens without being their owner.
*/
error ERC721InvalidOperator(address operator);
}
/**
* @dev Standard ERC1155 Errors
* Interface of the https://eips.ethereum.org/EIPS/eip-6093[ERC-6093] custom errors for ERC1155 tokens.
*/
interface IERC1155Errors {
/**
* @dev Indicates an error related to the current `balance` of a `sender`. Used in transfers.
* @param sender Address whose tokens are being transferred.
* @param balance Current balance for the interacting account.
* @param needed Minimum amount required to perform a transfer.
* @param tokenId Identifier number of a token.
*/
error ERC1155InsufficientBalance(address sender, uint256 balance, uint256 needed, uint256 tokenId);
/**
* @dev Indicates a failure with the token `sender`. Used in transfers.
* @param sender Address whose tokens are being transferred.
*/
error ERC1155InvalidSender(address sender);
/**
* @dev Indicates a failure with the token `receiver`. Used in transfers.
* @param receiver Address to which tokens are being transferred.
*/
error ERC1155InvalidReceiver(address receiver);
/**
* @dev Indicates a failure with the `operator`’s approval. Used in transfers.
* @param operator Address that may be allowed to operate on tokens without being their owner.
* @param owner Address of the current owner of a token.
*/
error ERC1155MissingApprovalForAll(address operator, address owner);
/**
* @dev Indicates a failure with the `approver` of a token to be approved. Used in approvals.
* @param approver Address initiating an approval operation.
*/
error ERC1155InvalidApprover(address approver);
/**
* @dev Indicates a failure with the `operator` to be approved. Used in approvals.
* @param operator Address that may be allowed to operate on tokens without being their owner.
*/
error ERC1155InvalidOperator(address operator);
/**
* @dev Indicates an array length mismatch between ids and values in a safeBatchTransferFrom operation.
* Used in batch transfers.
* @param idsLength Length of the array of token identifiers
* @param valuesLength Length of the array of token amounts
*/
error ERC1155InvalidArrayLength(uint256 idsLength, uint256 valuesLength);
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/ERC20.sol)
pragma solidity ^0.8.20;
import {IERC20} from "./IERC20.sol";
import {IERC20Metadata} from "./extensions/IERC20Metadata.sol";
import {Context} from "../../utils/Context.sol";
import {IERC20Errors} from "../../interfaces/draft-IERC6093.sol";
/**
* @dev Implementation of the {IERC20} interface.
*
* This implementation is agnostic to the way tokens are created. This means
* that a supply mechanism has to be added in a derived contract using {_mint}.
*
* TIP: For a detailed writeup see our guide
* https://forum.openzeppelin.com/t/how-to-implement-erc20-supply-mechanisms/226[How
* to implement supply mechanisms].
*
* The default value of {decimals} is 18. To change this, you should override
* this function so it returns a different value.
*
* We have followed general OpenZeppelin Contracts guidelines: functions revert
* instead returning `false` on failure. This behavior is nonetheless
* conventional and does not conflict with the expectations of ERC20
* applications.
*
* Additionally, an {Approval} event is emitted on calls to {transferFrom}.
* This allows applications to reconstruct the allowance for all accounts just
* by listening to said events. Other implementations of the EIP may not emit
* these events, as it isn't required by the specification.
*/
abstract contract ERC20 is Context, IERC20, IERC20Metadata, IERC20Errors {
mapping(address account => uint256) private _balances;
mapping(address account => mapping(address spender => uint256)) private _allowances;
uint256 private _totalSupply;
string private _name;
string private _symbol;
/**
* @dev Sets the values for {name} and {symbol}.
*
* All two of these values are immutable: they can only be set once during
* construction.
*/
constructor(string memory name_, string memory symbol_) {
_name = name_;
_symbol = symbol_;
}
/**
* @dev Returns the name of the token.
*/
function name() public view virtual returns (string memory) {
return _name;
}
/**
* @dev Returns the symbol of the token, usually a shorter version of the
* name.
*/
function symbol() public view virtual returns (string memory) {
return _symbol;
}
/**
* @dev Returns the number of decimals used to get its user representation.
* For example, if `decimals` equals `2`, a balance of `505` tokens should
* be displayed to a user as `5.05` (`505 / 10 ** 2`).
*
* Tokens usually opt for a value of 18, imitating the relationship between
* Ether and Wei. This is the default value returned by this function, unless
* it's overridden.
*
* NOTE: This information is only used for _display_ purposes: it in
* no way affects any of the arithmetic of the contract, including
* {IERC20-balanceOf} and {IERC20-transfer}.
*/
function decimals() public view virtual returns (uint8) {
return 18;
}
/**
* @dev See {IERC20-totalSupply}.
*/
function totalSupply() public view virtual returns (uint256) {
return _totalSupply;
}
/**
* @dev See {IERC20-balanceOf}.
*/
function balanceOf(address account) public view virtual returns (uint256) {
return _balances[account];
}
/**
* @dev See {IERC20-transfer}.
*
* Requirements:
*
* - `to` cannot be the zero address.
* - the caller must have a balance of at least `value`.
*/
function transfer(address to, uint256 value) public virtual returns (bool) {
address owner = _msgSender();
_transfer(owner, to, value);
return true;
}
/**
* @dev See {IERC20-allowance}.
*/
function allowance(address owner, address spender) public view virtual returns (uint256) {
return _allowances[owner][spender];
}
/**
* @dev See {IERC20-approve}.
*
* NOTE: If `value` is the maximum `uint256`, the allowance is not updated on
* `transferFrom`. This is semantically equivalent to an infinite approval.
*
* Requirements:
*
* - `spender` cannot be the zero address.
*/
function approve(address spender, uint256 value) public virtual returns (bool) {
address owner = _msgSender();
_approve(owner, spender, value);
return true;
}
/**
* @dev See {IERC20-transferFrom}.
*
* Emits an {Approval} event indicating the updated allowance. This is not
* required by the EIP. See the note at the beginning of {ERC20}.
*
* NOTE: Does not update the allowance if the current allowance
* is the maximum `uint256`.
*
* Requirements:
*
* - `from` and `to` cannot be the zero address.
* - `from` must have a balance of at least `value`.
* - the caller must have allowance for ``from``'s tokens of at least
* `value`.
*/
function transferFrom(address from, address to, uint256 value) public virtual returns (bool) {
address spender = _msgSender();
_spendAllowance(from, spender, value);
_transfer(from, to, value);
return true;
}
/**
* @dev Moves a `value` amount of tokens from `from` to `to`.
*
* This internal function is equivalent to {transfer}, and can be used to
* e.g. implement automatic token fees, slashing mechanisms, etc.
*
* Emits a {Transfer} event.
*
* NOTE: This function is not virtual, {_update} should be overridden instead.
*/
function _transfer(address from, address to, uint256 value) internal {
if (from == address(0)) {
revert ERC20InvalidSender(address(0));
}
if (to == address(0)) {
revert ERC20InvalidReceiver(address(0));
}
_update(from, to, value);
}
/**
* @dev Transfers a `value` amount of tokens from `from` to `to`, or alternatively mints (or burns) if `from`
* (or `to`) is the zero address. All customizations to transfers, mints, and burns should be done by overriding
* this function.
*
* Emits a {Transfer} event.
*/
function _update(address from, address to, uint256 value) internal virtual {
if (from == address(0)) {
// Overflow check required: The rest of the code assumes that totalSupply never overflows
_totalSupply += value;
} else {
uint256 fromBalance = _balances[from];
if (fromBalance < value) {
revert ERC20InsufficientBalance(from, fromBalance, value);
}
unchecked {
// Overflow not possible: value <= fromBalance <= totalSupply.
_balances[from] = fromBalance - value;
}
}
if (to == address(0)) {
unchecked {
// Overflow not possible: value <= totalSupply or value <= fromBalance <= totalSupply.
_totalSupply -= value;
}
} else {
unchecked {
// Overflow not possible: balance + value is at most totalSupply, which we know fits into a uint256.
_balances[to] += value;
}
}
emit Transfer(from, to, value);
}
/**
* @dev Creates a `value` amount of tokens and assigns them to `account`, by transferring it from address(0).
* Relies on the `_update` mechanism
*
* Emits a {Transfer} event with `from` set to the zero address.
*
* NOTE: This function is not virtual, {_update} should be overridden instead.
*/
function _mint(address account, uint256 value) internal {
if (account == address(0)) {
revert ERC20InvalidReceiver(address(0));
}
_update(address(0), account, value);
}
/**
* @dev Destroys a `value` amount of tokens from `account`, lowering the total supply.
* Relies on the `_update` mechanism.
*
* Emits a {Transfer} event with `to` set to the zero address.
*
* NOTE: This function is not virtual, {_update} should be overridden instead
*/
function _burn(address account, uint256 value) internal {
if (account == address(0)) {
revert ERC20InvalidSender(address(0));
}
_update(account, address(0), value);
}
/**
* @dev Sets `value` as the allowance of `spender` over the `owner` s tokens.
*
* This internal function is equivalent to `approve`, and can be used to
* e.g. set automatic allowances for certain subsystems, etc.
*
* Emits an {Approval} event.
*
* Requirements:
*
* - `owner` cannot be the zero address.
* - `spender` cannot be the zero address.
*
* Overrides to this logic should be done to the variant with an additional `bool emitEvent` argument.
*/
function _approve(address owner, address spender, uint256 value) internal {
_approve(owner, spender, value, true);
}
/**
* @dev Variant of {_approve} with an optional flag to enable or disable the {Approval} event.
*
* By default (when calling {_approve}) the flag is set to true. On the other hand, approval changes made by
* `_spendAllowance` during the `transferFrom` operation set the flag to false. This saves gas by not emitting any
* `Approval` event during `transferFrom` operations.
*
* Anyone who wishes to continue emitting `Approval` events on the`transferFrom` operation can force the flag to
* true using the following override:
* ```
* function _approve(address owner, address spender, uint256 value, bool) internal virtual override {
* super._approve(owner, spender, value, true);
* }
* ```
*
* Requirements are the same as {_approve}.
*/
function _approve(address owner, address spender, uint256 value, bool emitEvent) internal virtual {
if (owner == address(0)) {
revert ERC20InvalidApprover(address(0));
}
if (spender == address(0)) {
revert ERC20InvalidSpender(address(0));
}
_allowances[owner][spender] = value;
if (emitEvent) {
emit Approval(owner, spender, value);
}
}
/**
* @dev Updates `owner` s allowance for `spender` based on spent `value`.
*
* Does not update the allowance value in case of infinite allowance.
* Revert if not enough allowance is available.
*
* Does not emit an {Approval} event.
*/
function _spendAllowance(address owner, address spender, uint256 value) internal virtual {
uint256 currentAllowance = allowance(owner, spender);
if (currentAllowance != type(uint256).max) {
if (currentAllowance < value) {
revert ERC20InsufficientAllowance(spender, currentAllowance, value);
}
unchecked {
_approve(owner, spender, currentAllowance - value, false);
}
}
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/extensions/IERC20Metadata.sol)
pragma solidity ^0.8.20;
import {IERC20} from "../IERC20.sol";
/**
* @dev Interface for the optional metadata functions from the ERC20 standard.
*/
interface IERC20Metadata is IERC20 {
/**
* @dev Returns the name of the token.
*/
function name() external view returns (string memory);
/**
* @dev Returns the symbol of the token.
*/
function symbol() external view returns (string memory);
/**
* @dev Returns the decimals places of the token.
*/
function decimals() external view returns (uint8);
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/extensions/IERC20Permit.sol)
pragma solidity ^0.8.20;
/**
* @dev Interface of the ERC20 Permit extension allowing approvals to be made via signatures, as defined in
* https://eips.ethereum.org/EIPS/eip-2612[EIP-2612].
*
* Adds the {permit} method, which can be used to change an account's ERC20 allowance (see {IERC20-allowance}) by
* presenting a message signed by the account. By not relying on {IERC20-approve}, the token holder account doesn't
* need to send a transaction, and thus is not required to hold Ether at all.
*
* ==== Security Considerations
*
* There are two important considerations concerning the use of `permit`. The first is that a valid permit signature
* expresses an allowance, and it should not be assumed to convey additional meaning. In particular, it should not be
* considered as an intention to spend the allowance in any specific way. The second is that because permits have
* built-in replay protection and can be submitted by anyone, they can be frontrun. A protocol that uses permits should
* take this into consideration and allow a `permit` call to fail. Combining these two aspects, a pattern that may be
* generally recommended is:
*
* ```solidity
* function doThingWithPermit(..., uint256 value, uint256 deadline, uint8 v, bytes32 r, bytes32 s) public {
* try token.permit(msg.sender, address(this), value, deadline, v, r, s) {} catch {}
* doThing(..., value);
* }
*
* function doThing(..., uint256 value) public {
* token.safeTransferFrom(msg.sender, address(this), value);
* ...
* }
* ```
*
* Observe that: 1) `msg.sender` is used as the owner, leaving no ambiguity as to the signer intent, and 2) the use of
* `try/catch` allows the permit to fail and makes the code tolerant to frontrunning. (See also
* {SafeERC20-safeTransferFrom}).
*
* Additionally, note that smart contract wallets (such as Argent or Safe) are not able to produce permit signatures, so
* contracts should have entry points that don't rely on permit.
*/
interface IERC20Permit {
/**
* @dev Sets `value` as the allowance of `spender` over ``owner``'s tokens,
* given ``owner``'s signed approval.
*
* IMPORTANT: The same issues {IERC20-approve} has related to transaction
* ordering also apply here.
*
* Emits an {Approval} event.
*
* Requirements:
*
* - `spender` cannot be the zero address.
* - `deadline` must be a timestamp in the future.
* - `v`, `r` and `s` must be a valid `secp256k1` signature from `owner`
* over the EIP712-formatted function arguments.
* - the signature must use ``owner``'s current nonce (see {nonces}).
*
* For more information on the signature format, see the
* https://eips.ethereum.org/EIPS/eip-2612#specification[relevant EIP
* section].
*
* CAUTION: See Security Considerations above.
*/
function permit(
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) external;
/**
* @dev Returns the current nonce for `owner`. This value must be
* included whenever a signature is generated for {permit}.
*
* Every successful call to {permit} increases ``owner``'s nonce by one. This
* prevents a signature from being used multiple times.
*/
function nonces(address owner) external view returns (uint256);
/**
* @dev Returns the domain separator used in the encoding of the signature for {permit}, as defined by {EIP712}.
*/
// solhint-disable-next-line func-name-mixedcase
function DOMAIN_SEPARATOR() external view returns (bytes32);
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/IERC20.sol)
pragma solidity ^0.8.20;
/**
* @dev Interface of the ERC20 standard as defined in the EIP.
*/
interface IERC20 {
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/
event Transfer(address indexed from, address indexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/
event Approval(address indexed owner, address indexed spender, uint256 value);
/**
* @dev Returns the value of tokens in existence.
*/
function totalSupply() external view returns (uint256);
/**
* @dev Returns the value of tokens owned by `account`.
*/
function balanceOf(address account) external view returns (uint256);
/**
* @dev Moves a `value` amount of tokens from the caller's account to `to`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transfer(address to, uint256 value) external returns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/
function allowance(address owner, address spender) external view returns (uint256);
/**
* @dev Sets a `value` amount of tokens as the allowance of `spender` over the
* caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/
function approve(address spender, uint256 value) external returns (bool);
/**
* @dev Moves a `value` amount of tokens from `from` to `to` using the
* allowance mechanism. `value` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transferFrom(address from, address to, uint256 value) external returns (bool);
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/utils/SafeERC20.sol)
pragma solidity ^0.8.20;
import {IERC20} from "../IERC20.sol";
import {IERC20Permit} from "../extensions/IERC20Permit.sol";
import {Address} from "../../../utils/Address.sol";
/**
* @title SafeERC20
* @dev Wrappers around ERC20 operations that throw on failure (when the token
* contract returns false). Tokens that return no value (and instead revert or
* throw on failure) are also supported, non-reverting calls are assumed to be
* successful.
* To use this library you can add a `using SafeERC20 for IERC20;` statement to your contract,
* which allows you to call the safe operations as `token.safeTransfer(...)`, etc.
*/
library SafeERC20 {
using Address for address;
/**
* @dev An operation with an ERC20 token failed.
*/
error SafeERC20FailedOperation(address token);
/**
* @dev Indicates a failed `decreaseAllowance` request.
*/
error SafeERC20FailedDecreaseAllowance(address spender, uint256 currentAllowance, uint256 requestedDecrease);
/**
* @dev Transfer `value` amount of `token` from the calling contract to `to`. If `token` returns no value,
* non-reverting calls are assumed to be successful.
*/
function safeTransfer(IERC20 token, address to, uint256 value) internal {
_callOptionalReturn(token, abi.encodeCall(token.transfer, (to, value)));
}
/**
* @dev Transfer `value` amount of `token` from `from` to `to`, spending the approval given by `from` to the
* calling contract. If `token` returns no value, non-reverting calls are assumed to be successful.
*/
function safeTransferFrom(IERC20 token, address from, address to, uint256 value) internal {
_callOptionalReturn(token, abi.encodeCall(token.transferFrom, (from, to, value)));
}
/**
* @dev Increase the calling contract's allowance toward `spender` by `value`. If `token` returns no value,
* non-reverting calls are assumed to be successful.
*/
function safeIncreaseAllowance(IERC20 token, address spender, uint256 value) internal {
uint256 oldAllowance = token.allowance(address(this), spender);
forceApprove(token, spender, oldAllowance + value);
}
/**
* @dev Decrease the calling contract's allowance toward `spender` by `requestedDecrease`. If `token` returns no
* value, non-reverting calls are assumed to be successful.
*/
function safeDecreaseAllowance(IERC20 token, address spender, uint256 requestedDecrease) internal {
unchecked {
uint256 currentAllowance = token.allowance(address(this), spender);
if (currentAllowance < requestedDecrease) {
revert SafeERC20FailedDecreaseAllowance(spender, currentAllowance, requestedDecrease);
}
forceApprove(token, spender, currentAllowance - requestedDecrease);
}
}
/**
* @dev Set the calling contract's allowance toward `spender` to `value`. If `token` returns no value,
* non-reverting calls are assumed to be successful. Meant to be used with tokens that require the approval
* to be set to zero before setting it to a non-zero value, such as USDT.
*/
function forceApprove(IERC20 token, address spender, uint256 value) internal {
bytes memory approvalCall = abi.encodeCall(token.approve, (spender, value));
if (!_callOptionalReturnBool(token, approvalCall)) {
_callOptionalReturn(token, abi.encodeCall(token.approve, (spender, 0)));
_callOptionalReturn(token, approvalCall);
}
}
/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*/
function _callOptionalReturn(IERC20 token, bytes memory data) private {
// We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since
// we're implementing it ourselves. We use {Address-functionCall} to perform this call, which verifies that
// the target address contains contract code and also asserts for success in the low-level call.
bytes memory returndata = address(token).functionCall(data);
if (returndata.length != 0 && !abi.decode(returndata, (bool))) {
revert SafeERC20FailedOperation(address(token));
}
}
/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*
* This is a variant of {_callOptionalReturn} that silents catches all reverts and returns a bool instead.
*/
function _callOptionalReturnBool(IERC20 token, bytes memory data) private returns (bool) {
// We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since
// we're implementing it ourselves. We cannot use {Address-functionCall} here since this should return false
// and not revert is the subcall reverts.
(bool success, bytes memory returndata) = address(token).call(data);
return success && (returndata.length == 0 || abi.decode(returndata, (bool))) && address(token).code.length > 0;
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/Address.sol)
pragma solidity ^0.8.20;
/**
* @dev Collection of functions related to the address type
*/
library Address {
/**
* @dev The ETH balance of the account is not enough to perform the operation.
*/
error AddressInsufficientBalance(address account);
/**
* @dev There's no code at `target` (it is not a contract).
*/
error AddressEmptyCode(address target);
/**
* @dev A call to an address target failed. The target may have reverted.
*/
error FailedInnerCall();
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://consensys.net/diligence/blog/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.8.20/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/
function sendValue(address payable recipient, uint256 amount) internal {
if (address(this).balance < amount) {
revert AddressInsufficientBalance(address(this));
}
(bool success, ) = recipient.call{value: amount}("");
if (!success) {
revert FailedInnerCall();
}
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain `call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason or custom error, it is bubbled
* up by this function (like regular Solidity function calls). However, if
* the call reverted with no returned reason, this function reverts with a
* {FailedInnerCall} error.
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*/
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*/
function functionCallWithValue(address target, bytes memory data, uint256 value) internal returns (bytes memory) {
if (address(this).balance < value) {
revert AddressInsufficientBalance(address(this));
}
(bool success, bytes memory returndata) = target.call{value: value}(data);
return verifyCallResultFromTarget(target, success, returndata);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*/
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
(bool success, bytes memory returndata) = target.staticcall(data);
return verifyCallResultFromTarget(target, success, returndata);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*/
function functionDelegateCall(address target, bytes memory data) internal returns (bytes memory) {
(bool success, bytes memory returndata) = target.delegatecall(data);
return verifyCallResultFromTarget(target, success, returndata);
}
/**
* @dev Tool to verify that a low level call to smart-contract was successful, and reverts if the target
* was not a contract or bubbling up the revert reason (falling back to {FailedInnerCall}) in case of an
* unsuccessful call.
*/
function verifyCallResultFromTarget(
address target,
bool success,
bytes memory returndata
) internal view returns (bytes memory) {
if (!success) {
_revert(returndata);
} else {
// only check if target is a contract if the call was successful and the return data is empty
// otherwise we already know that it was a contract
if (returndata.length == 0 && target.code.length == 0) {
revert AddressEmptyCode(target);
}
return returndata;
}
}
/**
* @dev Tool to verify that a low level call was successful, and reverts if it wasn't, either by bubbling the
* revert reason or with a default {FailedInnerCall} error.
*/
function verifyCallResult(bool success, bytes memory returndata) internal pure returns (bytes memory) {
if (!success) {
_revert(returndata);
} else {
return returndata;
}
}
/**
* @dev Reverts with returndata if present. Otherwise reverts with {FailedInnerCall}.
*/
function _revert(bytes memory returndata) private pure {
// Look for revert reason and bubble it up if present
if (returndata.length > 0) {
// The easiest way to bubble the revert reason is using memory via assembly
/// @solidity memory-safe-assembly
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert FailedInnerCall();
}
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.1) (utils/Context.sol)
pragma solidity ^0.8.20;
/**
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/
abstract contract Context {
function _msgSender() internal view virtual returns (address) {
return msg.sender;
}
function _msgData() internal view virtual returns (bytes calldata) {
return msg.data;
}
function _contextSuffixLength() internal view virtual returns (uint256) {
return 0;
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/Create2.sol)
pragma solidity ^0.8.20;
/**
* @dev Helper to make usage of the `CREATE2` EVM opcode easier and safer.
* `CREATE2` can be used to compute in advance the address where a smart
* contract will be deployed, which allows for interesting new mechanisms known
* as 'counterfactual interactions'.
*
* See the https://eips.ethereum.org/EIPS/eip-1014#motivation[EIP] for more
* information.
*/
library Create2 {
/**
* @dev Not enough balance for performing a CREATE2 deploy.
*/
error Create2InsufficientBalance(uint256 balance, uint256 needed);
/**
* @dev There's no code to deploy.
*/
error Create2EmptyBytecode();
/**
* @dev The deployment failed.
*/
error Create2FailedDeployment();
/**
* @dev Deploys a contract using `CREATE2`. The address where the contract
* will be deployed can be known in advance via {computeAddress}.
*
* The bytecode for a contract can be obtained from Solidity with
* `type(contractName).creationCode`.
*
* Requirements:
*
* - `bytecode` must not be empty.
* - `salt` must have not been used for `bytecode` already.
* - the factory must have a balance of at least `amount`.
* - if `amount` is non-zero, `bytecode` must have a `payable` constructor.
*/
function deploy(uint256 amount, bytes32 salt, bytes memory bytecode) internal returns (address addr) {
if (address(this).balance < amount) {
revert Create2InsufficientBalance(address(this).balance, amount);
}
if (bytecode.length == 0) {
revert Create2EmptyBytecode();
}
/// @solidity memory-safe-assembly
assembly {
addr := create2(amount, add(bytecode, 0x20), mload(bytecode), salt)
}
if (addr == address(0)) {
revert Create2FailedDeployment();
}
}
/**
* @dev Returns the address where a contract will be stored if deployed via {deploy}. Any change in the
* `bytecodeHash` or `salt` will result in a new destination address.
*/
function computeAddress(bytes32 salt, bytes32 bytecodeHash) internal view returns (address) {
return computeAddress(salt, bytecodeHash, address(this));
}
/**
* @dev Returns the address where a contract will be stored if deployed via {deploy} from a contract located at
* `deployer`. If `deployer` is this contract's address, returns the same value as {computeAddress}.
*/
function computeAddress(bytes32 salt, bytes32 bytecodeHash, address deployer) internal pure returns (address addr) {
/// @solidity memory-safe-assembly
assembly {
let ptr := mload(0x40) // Get free memory pointer
// | | ↓ ptr ... ↓ ptr + 0x0B (start) ... ↓ ptr + 0x20 ... ↓ ptr + 0x40 ... |
// |-------------------|---------------------------------------------------------------------------|
// | bytecodeHash | CCCCCCCCCCCCC...CC |
// | salt | BBBBBBBBBBBBB...BB |
// | deployer | 000000...0000AAAAAAAAAAAAAAAAAAA...AA |
// | 0xFF | FF |
// |-------------------|---------------------------------------------------------------------------|
// | memory | 000000...00FFAAAAAAAAAAAAAAAAAAA...AABBBBBBBBBBBBB...BBCCCCCCCCCCCCC...CC |
// | keccak(start, 85) | ↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑↑ |
mstore(add(ptr, 0x40), bytecodeHash)
mstore(add(ptr, 0x20), salt)
mstore(ptr, deployer) // Right-aligned with 12 preceding garbage bytes
let start := add(ptr, 0x0b) // The hashed data starts at the final garbage byte which we will set to 0xff
mstore8(start, 0xff)
addr := keccak256(start, 85)
}
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/math/Math.sol)
pragma solidity ^0.8.20;
/**
* @dev Standard math utilities missing in the Solidity language.
*/
library Math {
/**
* @dev Muldiv operation overflow.
*/
error MathOverflowedMulDiv();
enum Rounding {
Floor, // Toward negative infinity
Ceil, // Toward positive infinity
Trunc, // Toward zero
Expand // Away from zero
}
/**
* @dev Returns the addition of two unsigned integers, with an overflow flag.
*/
function tryAdd(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
uint256 c = a + b;
if (c < a) return (false, 0);
return (true, c);
}
}
/**
* @dev Returns the subtraction of two unsigned integers, with an overflow flag.
*/
function trySub(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
if (b > a) return (false, 0);
return (true, a - b);
}
}
/**
* @dev Returns the multiplication of two unsigned integers, with an overflow flag.
*/
function tryMul(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
// Gas optimization: this is cheaper than requiring 'a' not being zero, but the
// benefit is lost if 'b' is also tested.
// See: https://github.com/OpenZeppelin/openzeppelin-contracts/pull/522
if (a == 0) return (true, 0);
uint256 c = a * b;
if (c / a != b) return (false, 0);
return (true, c);
}
}
/**
* @dev Returns the division of two unsigned integers, with a division by zero flag.
*/
function tryDiv(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
if (b == 0) return (false, 0);
return (true, a / b);
}
}
/**
* @dev Returns the remainder of dividing two unsigned integers, with a division by zero flag.
*/
function tryMod(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
if (b == 0) return (false, 0);
return (true, a % b);
}
}
/**
* @dev Returns the largest of two numbers.
*/
function max(uint256 a, uint256 b) internal pure returns (uint256) {
return a > b ? a : b;
}
/**
* @dev Returns the smallest of two numbers.
*/
function min(uint256 a, uint256 b) internal pure returns (uint256) {
return a < b ? a : b;
}
/**
* @dev Returns the average of two numbers. The result is rounded towards
* zero.
*/
function average(uint256 a, uint256 b) internal pure returns (uint256) {
// (a + b) / 2 can overflow.
return (a & b) + (a ^ b) / 2;
}
/**
* @dev Returns the ceiling of the division of two numbers.
*
* This differs from standard division with `/` in that it rounds towards infinity instead
* of rounding towards zero.
*/
function ceilDiv(uint256 a, uint256 b) internal pure returns (uint256) {
if (b == 0) {
// Guarantee the same behavior as in a regular Solidity division.
return a / b;
}
// (a + b - 1) / b can overflow on addition, so we distribute.
return a == 0 ? 0 : (a - 1) / b + 1;
}
/**
* @notice Calculates floor(x * y / denominator) with full precision. Throws if result overflows a uint256 or
* denominator == 0.
* @dev Original credit to Remco Bloemen under MIT license (https://xn--2-umb.com/21/muldiv) with further edits by
* Uniswap Labs also under MIT license.
*/
function mulDiv(uint256 x, uint256 y, uint256 denominator) internal pure returns (uint256 result) {
unchecked {
// 512-bit multiply [prod1 prod0] = x * y. Compute the product mod 2^256 and mod 2^256 - 1, then use
// use the Chinese Remainder Theorem to reconstruct the 512 bit result. The result is stored in two 256
// variables such that product = prod1 * 2^256 + prod0.
uint256 prod0 = x * y; // Least significant 256 bits of the product
uint256 prod1; // Most significant 256 bits of the product
assembly {
let mm := mulmod(x, y, not(0))
prod1 := sub(sub(mm, prod0), lt(mm, prod0))
}
// Handle non-overflow cases, 256 by 256 division.
if (prod1 == 0) {
// Solidity will revert if denominator == 0, unlike the div opcode on its own.
// The surrounding unchecked block does not change this fact.
// See https://docs.soliditylang.org/en/latest/control-structures.html#checked-or-unchecked-arithmetic.
return prod0 / denominator;
}
// Make sure the result is less than 2^256. Also prevents denominator == 0.
if (denominator <= prod1) {
revert MathOverflowedMulDiv();
}
///////////////////////////////////////////////
// 512 by 256 division.
///////////////////////////////////////////////
// Make division exact by subtracting the remainder from [prod1 prod0].
uint256 remainder;
assembly {
// Compute remainder using mulmod.
remainder := mulmod(x, y, denominator)
// Subtract 256 bit number from 512 bit number.
prod1 := sub(prod1, gt(remainder, prod0))
prod0 := sub(prod0, remainder)
}
// Factor powers of two out of denominator and compute largest power of two divisor of denominator.
// Always >= 1. See https://cs.stackexchange.com/q/138556/92363.
uint256 twos = denominator & (0 - denominator);
assembly {
// Divide denominator by twos.
denominator := div(denominator, twos)
// Divide [prod1 prod0] by twos.
prod0 := div(prod0, twos)
// Flip twos such that it is 2^256 / twos. If twos is zero, then it becomes one.
twos := add(div(sub(0, twos), twos), 1)
}
// Shift in bits from prod1 into prod0.
prod0 |= prod1 * twos;
// Invert denominator mod 2^256. Now that denominator is an odd number, it has an inverse modulo 2^256 such
// that denominator * inv = 1 mod 2^256. Compute the inverse by starting with a seed that is correct for
// four bits. That is, denominator * inv = 1 mod 2^4.
uint256 inverse = (3 * denominator) ^ 2;
// Use the Newton-Raphson iteration to improve the precision. Thanks to Hensel's lifting lemma, this also
// works in modular arithmetic, doubling the correct bits in each step.
inverse *= 2 - denominator * inverse; // inverse mod 2^8
inverse *= 2 - denominator * inverse; // inverse mod 2^16
inverse *= 2 - denominator * inverse; // inverse mod 2^32
inverse *= 2 - denominator * inverse; // inverse mod 2^64
inverse *= 2 - denominator * inverse; // inverse mod 2^128
inverse *= 2 - denominator * inverse; // inverse mod 2^256
// Because the division is now exact we can divide by multiplying with the modular inverse of denominator.
// This will give us the correct result modulo 2^256. Since the preconditions guarantee that the outcome is
// less than 2^256, this is the final result. We don't need to compute the high bits of the result and prod1
// is no longer required.
result = prod0 * inverse;
return result;
}
}
/**
* @notice Calculates x * y / denominator with full precision, following the selected rounding direction.
*/
function mulDiv(uint256 x, uint256 y, uint256 denominator, Rounding rounding) internal pure returns (uint256) {
uint256 result = mulDiv(x, y, denominator);
if (unsignedRoundsUp(rounding) && mulmod(x, y, denominator) > 0) {
result += 1;
}
return result;
}
/**
* @dev Returns the square root of a number. If the number is not a perfect square, the value is rounded
* towards zero.
*
* Inspired by Henry S. Warren, Jr.'s "Hacker's Delight" (Chapter 11).
*/
function sqrt(uint256 a) internal pure returns (uint256) {
if (a == 0) {
return 0;
}
// For our first guess, we get the biggest power of 2 which is smaller than the square root of the target.
//
// We know that the "msb" (most significant bit) of our target number `a` is a power of 2 such that we have
// `msb(a) <= a < 2*msb(a)`. This value can be written `msb(a)=2**k` with `k=log2(a)`.
//
// This can be rewritten `2**log2(a) <= a < 2**(log2(a) + 1)`
// → `sqrt(2**k) <= sqrt(a) < sqrt(2**(k+1))`
// → `2**(k/2) <= sqrt(a) < 2**((k+1)/2) <= 2**(k/2 + 1)`
//
// Consequently, `2**(log2(a) / 2)` is a good first approximation of `sqrt(a)` with at least 1 correct bit.
uint256 result = 1 << (log2(a) >> 1);
// At this point `result` is an estimation with one bit of precision. We know the true value is a uint128,
// since it is the square root of a uint256. Newton's method converges quadratically (precision doubles at
// every iteration). We thus need at most 7 iteration to turn our partial result with one bit of precision
// into the expected uint128 result.
unchecked {
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
return min(result, a / result);
}
}
/**
* @notice Calculates sqrt(a), following the selected rounding direction.
*/
function sqrt(uint256 a, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = sqrt(a);
return result + (unsignedRoundsUp(rounding) && result * result < a ? 1 : 0);
}
}
/**
* @dev Return the log in base 2 of a positive value rounded towards zero.
* Returns 0 if given 0.
*/
function log2(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >> 128 > 0) {
value >>= 128;
result += 128;
}
if (value >> 64 > 0) {
value >>= 64;
result += 64;
}
if (value >> 32 > 0) {
value >>= 32;
result += 32;
}
if (value >> 16 > 0) {
value >>= 16;
result += 16;
}
if (value >> 8 > 0) {
value >>= 8;
result += 8;
}
if (value >> 4 > 0) {
value >>= 4;
result += 4;
}
if (value >> 2 > 0) {
value >>= 2;
result += 2;
}
if (value >> 1 > 0) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 2, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log2(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log2(value);
return result + (unsignedRoundsUp(rounding) && 1 << result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 10 of a positive value rounded towards zero.
* Returns 0 if given 0.
*/
function log10(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >= 10 ** 64) {
value /= 10 ** 64;
result += 64;
}
if (value >= 10 ** 32) {
value /= 10 ** 32;
result += 32;
}
if (value >= 10 ** 16) {
value /= 10 ** 16;
result += 16;
}
if (value >= 10 ** 8) {
value /= 10 ** 8;
result += 8;
}
if (value >= 10 ** 4) {
value /= 10 ** 4;
result += 4;
}
if (value >= 10 ** 2) {
value /= 10 ** 2;
result += 2;
}
if (value >= 10 ** 1) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 10, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log10(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log10(value);
return result + (unsignedRoundsUp(rounding) && 10 ** result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 256 of a positive value rounded towards zero.
* Returns 0 if given 0.
*
* Adding one to the result gives the number of pairs of hex symbols needed to represent `value` as a hex string.
*/
function log256(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >> 128 > 0) {
value >>= 128;
result += 16;
}
if (value >> 64 > 0) {
value >>= 64;
result += 8;
}
if (value >> 32 > 0) {
value >>= 32;
result += 4;
}
if (value >> 16 > 0) {
value >>= 16;
result += 2;
}
if (value >> 8 > 0) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 256, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log256(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log256(value);
return result + (unsignedRoundsUp(rounding) && 1 << (result << 3) < value ? 1 : 0);
}
}
/**
* @dev Returns whether a provided rounding mode is considered rounding up for unsigned integers.
*/
function unsignedRoundsUp(Rounding rounding) internal pure returns (bool) {
return uint8(rounding) % 2 == 1;
}
}
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/ReentrancyGuard.sol)
pragma solidity ^0.8.20;
/**
* @dev Contract module that helps prevent reentrant calls to a function.
*
* Inheriting from `ReentrancyGuard` will make the {nonReentrant} modifier
* available, which can be applied to functions to make sure there are no nested
* (reentrant) calls to them.
*
* Note that because there is a single `nonReentrant` guard, functions marked as
* `nonReentrant` may not call one another. This can be worked around by making
* those functions `private`, and then adding `external` `nonReentrant` entry
* points to them.
*
* TIP: If you would like to learn more about reentrancy and alternative ways
* to protect against it, check out our blog post
* https://blog.openzeppelin.com/reentrancy-after-istanbul/[Reentrancy After Istanbul].
*/
abstract contract ReentrancyGuard {
// Booleans are more expensive than uint256 or any type that takes up a full
// word because each write operation emits an extra SLOAD to first read the
// slot's contents, replace the bits taken up by the boolean, and then write
// back. This is the compiler's defense against contract upgrades and
// pointer aliasing, and it cannot be disabled.
// The values being non-zero value makes deployment a bit more expensive,
// but in exchange the refund on every call to nonReentrant will be lower in
// amount. Since refunds are capped to a percentage of the total
// transaction's gas, it is best to keep them low in cases like this one, to
// increase the likelihood of the full refund coming into effect.
uint256 private constant NOT_ENTERED = 1;
uint256 private constant ENTERED = 2;
uint256 private _status;
/**
* @dev Unauthorized reentrant call.
*/
error ReentrancyGuardReentrantCall();
constructor() {
_status = NOT_ENTERED;
}
/**
* @dev Prevents a contract from calling itself, directly or indirectly.
* Calling a `nonReentrant` function from another `nonReentrant`
* function is not supported. It is possible to prevent this from happening
* by making the `nonReentrant` function external, and making it call a
* `private` function that does the actual work.
*/
modifier nonReentrant() {
_nonReentrantBefore();
_;
_nonReentrantAfter();
}
function _nonReentrantBefore() private {
// On the first call to nonReentrant, _status will be NOT_ENTERED
if (_status == ENTERED) {
revert ReentrancyGuardReentrantCall();
}
// Any calls to nonReentrant after this point will fail
_status = ENTERED;
}
function _nonReentrantAfter() private {
// By storing the original value once again, a refund is triggered (see
// https://eips.ethereum.org/EIPS/eip-2200)
_status = NOT_ENTERED;
}
/**
* @dev Returns true if the reentrancy guard is currently set to "entered", which indicates there is a
* `nonReentrant` function in the call stack.
*/
function _reentrancyGuardEntered() internal view returns (bool) {
return _status == ENTERED;
}
}
// SPDX-License-Identifier: GPL-2.0-or-later
pragma solidity >=0.5.0;
/// @title Callback for IUniswapV3PoolActions#swap
/// @notice Any contract that calls IUniswapV3PoolActions#swap must implement this interface
interface IUniswapV3SwapCallback {
/// @notice Called to `msg.sender` after executing a swap via IUniswapV3Pool#swap.
/// @dev In the implementation you must pay the pool tokens owed for the swap.
/// The caller of this method must be checked to be a UniswapV3Pool deployed by the canonical UniswapV3Factory.
/// amount0Delta and amount1Delta can both be 0 if no tokens were swapped.
/// @param amount0Delta The amount of token0 that was sent (negative) or must be received (positive) by the pool by
/// the end of the swap. If positive, the callback must send that amount of token0 to the pool.
/// @param amount1Delta The amount of token1 that was sent (negative) or must be received (positive) by the pool by
/// the end of the swap. If positive, the callback must send that amount of token1 to the pool.
/// @param data Any data passed through by the caller via the IUniswapV3PoolActions#swap call
function uniswapV3SwapCallback(
int256 amount0Delta,
int256 amount1Delta,
bytes calldata data
) external;
}
// SPDX-License-Identifier: GPL-2.0-or-later
pragma solidity >=0.5.0;
import './pool/IUniswapV3PoolImmutables.sol';
import './pool/IUniswapV3PoolState.sol';
import './pool/IUniswapV3PoolDerivedState.sol';
import './pool/IUniswapV3PoolActions.sol';
import './pool/IUniswapV3PoolOwnerActions.sol';
import './pool/IUniswapV3PoolEvents.sol';
/// @title The interface for a Uniswap V3 Pool
/// @notice A Uniswap pool facilitates swapping and automated market making between any two assets that strictly conform
/// to the ERC20 specification
/// @dev The pool interface is broken up into many smaller pieces
interface IUniswapV3Pool is
IUniswapV3PoolImmutables,
IUniswapV3PoolState,
IUniswapV3PoolDerivedState,
IUniswapV3PoolActions,
IUniswapV3PoolOwnerActions,
IUniswapV3PoolEvents
{
}
// SPDX-License-Identifier: GPL-2.0-or-later
pragma solidity >=0.5.0;
/// @title Permissionless pool actions
/// @notice Contains pool methods that can be called by anyone
interface IUniswapV3PoolActions {
/// @notice Sets the initial price for the pool
/// @dev Price is represented as a sqrt(amountToken1/amountToken0) Q64.96 value
/// @param sqrtPriceX96 the initial sqrt price of the pool as a Q64.96
function initialize(uint160 sqrtPriceX96) external;
/// @notice Adds liquidity for the given recipient/tickLower/tickUpper position
/// @dev The caller of this method receives a callback in the form of IUniswapV3MintCallback#uniswapV3MintCallback
/// in which they must pay any token0 or token1 owed for the liquidity. The amount of token0/token1 due depends
/// on tickLower, tickUpper, the amount of liquidity, and the current price.
/// @param recipient The address for which the liquidity will be created
/// @param tickLower The lower tick of the position in which to add liquidity
/// @param tickUpper The upper tick of the position in which to add liquidity
/// @param amount The amount of liquidity to mint
/// @param data Any data that should be passed through to the callback
/// @return amount0 The amount of token0 that was paid to mint the given amount of liquidity. Matches the value in the callback
/// @return amount1 The amount of token1 that was paid to mint the given amount of liquidity. Matches the value in the callback
function mint(
address recipient,
int24 tickLower,
int24 tickUpper,
uint128 amount,
bytes calldata data
) external returns (uint256 amount0, uint256 amount1);
/// @notice Collects tokens owed to a position
/// @dev Does not recompute fees earned, which must be done either via mint or burn of any amount of liquidity.
/// Collect must be called by the position owner. To withdraw only token0 or only token1, amount0Requested or
/// amount1Requested may be set to zero. To withdraw all tokens owed, caller may pass any value greater than the
/// actual tokens owed, e.g. type(uint128).max. Tokens owed may be from accumulated swap fees or burned liquidity.
/// @param recipient The address which should receive the fees collected
/// @param tickLower The lower tick of the position for which to collect fees
/// @param tickUpper The upper tick of the position for which to collect fees
/// @param amount0Requested How much token0 should be withdrawn from the fees owed
/// @param amount1Requested How much token1 should be withdrawn from the fees owed
/// @return amount0 The amount of fees collected in token0
/// @return amount1 The amount of fees collected in token1
function collect(
address recipient,
int24 tickLower,
int24 tickUpper,
uint128 amount0Requested,
uint128 amount1Requested
) external returns (uint128 amount0, uint128 amount1);
/// @notice Burn liquidity from the sender and account tokens owed for the liquidity to the position
/// @dev Can be used to trigger a recalculation of fees owed to a position by calling with an amount of 0
/// @dev Fees must be collected separately via a call to #collect
/// @param tickLower The lower tick of the position for which to burn liquidity
/// @param tickUpper The upper tick of the position for which to burn liquidity
/// @param amount How much liquidity to burn
/// @return amount0 The amount of token0 sent to the recipient
/// @return amount1 The amount of token1 sent to the recipient
function burn(
int24 tickLower,
int24 tickUpper,
uint128 amount
) external returns (uint256 amount0, uint256 amount1);
/// @notice Swap token0 for token1, or token1 for token0
/// @dev The caller of this method receives a callback in the form of IUniswapV3SwapCallback#uniswapV3SwapCallback
/// @param recipient The address to receive the output of the swap
/// @param zeroForOne The direction of the swap, true for token0 to token1, false for token1 to token0
/// @param amountSpecified The amount of the swap, which implicitly configures the swap as exact input (positive), or exact output (negative)
/// @param sqrtPriceLimitX96 The Q64.96 sqrt price limit. If zero for one, the price cannot be less than this
/// value after the swap. If one for zero, the price cannot be greater than this value after the swap
/// @param data Any data to be passed through to the callback
/// @return amount0 The delta of the balance of token0 of the pool, exact when negative, minimum when positive
/// @return amount1 The delta of the balance of token1 of the pool, exact when negative, minimum when positive
function swap(
address recipient,
bool zeroForOne,
int256 amountSpecified,
uint160 sqrtPriceLimitX96,
bytes calldata data
) external returns (int256 amount0, int256 amount1);
/// @notice Receive token0 and/or token1 and pay it back, plus a fee, in the callback
/// @dev The caller of this method receives a callback in the form of IUniswapV3FlashCallback#uniswapV3FlashCallback
/// @dev Can be used to donate underlying tokens pro-rata to currently in-range liquidity providers by calling
/// with 0 amount{0,1} and sending the donation amount(s) from the callback
/// @param recipient The address which will receive the token0 and token1 amounts
/// @param amount0 The amount of token0 to send
/// @param amount1 The amount of token1 to send
/// @param data Any data to be passed through to the callback
function flash(
address recipient,
uint256 amount0,
uint256 amount1,
bytes calldata data
) external;
/// @notice Increase the maximum number of price and liquidity observations that this pool will store
/// @dev This method is no-op if the pool already has an observationCardinalityNext greater than or equal to
/// the input observationCardinalityNext.
/// @param observationCardinalityNext The desired minimum number of observations for the pool to store
function increaseObservationCardinalityNext(uint16 observationCardinalityNext) external;
}
// SPDX-License-Identifier: GPL-2.0-or-later
pragma solidity >=0.5.0;
/// @title Pool state that is not stored
/// @notice Contains view functions to provide information about the pool that is computed rather than stored on the
/// blockchain. The functions here may have variable gas costs.
interface IUniswapV3PoolDerivedState {
/// @notice Returns the cumulative tick and liquidity as of each timestamp `secondsAgo` from the current block timestamp
/// @dev To get a time weighted average tick or liquidity-in-range, you must call this with two values, one representing
/// the beginning of the period and another for the end of the period. E.g., to get the last hour time-weighted average tick,
/// you must call it with secondsAgos = [3600, 0].
/// @dev The time weighted average tick represents the geometric time weighted average price of the pool, in
/// log base sqrt(1.0001) of token1 / token0. The TickMath library can be used to go from a tick value to a ratio.
/// @param secondsAgos From how long ago each cumulative tick and liquidity value should be returned
/// @return tickCumulatives Cumulative tick values as of each `secondsAgos` from the current block timestamp
/// @return secondsPerLiquidityCumulativeX128s Cumulative seconds per liquidity-in-range value as of each `secondsAgos` from the current block
/// timestamp
function observe(uint32[] calldata secondsAgos)
external
view
returns (int56[] memory tickCumulatives, uint160[] memory secondsPerLiquidityCumulativeX128s);
/// @notice Returns a snapshot of the tick cumulative, seconds per liquidity and seconds inside a tick range
/// @dev Snapshots must only be compared to other snapshots, taken over a period for which a position existed.
/// I.e., snapshots cannot be compared if a position is not held for the entire period between when the first
/// snapshot is taken and the second snapshot is taken.
/// @param tickLower The lower tick of the range
/// @param tickUpper The upper tick of the range
/// @return tickCumulativeInside The snapshot of the tick accumulator for the range
/// @return secondsPerLiquidityInsideX128 The snapshot of seconds per liquidity for the range
/// @return secondsInside The snapshot of seconds per liquidity for the range
function snapshotCumulativesInside(int24 tickLower, int24 tickUpper)
external
view
returns (
int56 tickCumulativeInside,
uint160 secondsPerLiquidityInsideX128,
uint32 secondsInside
);
}
// SPDX-License-Identifier: GPL-2.0-or-later
pragma solidity >=0.5.0;
/// @title Events emitted by a pool
/// @notice Contains all events emitted by the pool
interface IUniswapV3PoolEvents {
/// @notice Emitted exactly once by a pool when #initialize is first called on the pool
/// @dev Mint/Burn/Swap cannot be emitted by the pool before Initialize
/// @param sqrtPriceX96 The initial sqrt price of the pool, as a Q64.96
/// @param tick The initial tick of the pool, i.e. log base 1.0001 of the starting price of the pool
event Initialize(uint160 sqrtPriceX96, int24 tick);
/// @notice Emitted when liquidity is minted for a given position
/// @param sender The address that minted the liquidity
/// @param owner The owner of the position and recipient of any minted liquidity
/// @param tickLower The lower tick of the position
/// @param tickUpper The upper tick of the position
/// @param amount The amount of liquidity minted to the position range
/// @param amount0 How much token0 was required for the minted liquidity
/// @param amount1 How much token1 was required for the minted liquidity
event Mint(
address sender,
address indexed owner,
int24 indexed tickLower,
int24 indexed tickUpper,
uint128 amount,
uint256 amount0,
uint256 amount1
);
/// @notice Emitted when fees are collected by the owner of a position
/// @dev Collect events may be emitted with zero amount0 and amount1 when the caller chooses not to collect fees
/// @param owner The owner of the position for which fees are collected
/// @param tickLower The lower tick of the position
/// @param tickUpper The upper tick of the position
/// @param amount0 The amount of token0 fees collected
/// @param amount1 The amount of token1 fees collected
event Collect(
address indexed owner,
address recipient,
int24 indexed tickLower,
int24 indexed tickUpper,
uint128 amount0,
uint128 amount1
);
/// @notice Emitted when a position's liquidity is removed
/// @dev Does not withdraw any fees earned by the liquidity position, which must be withdrawn via #collect
/// @param owner The owner of the position for which liquidity is removed
/// @param tickLower The lower tick of the position
/// @param tickUpper The upper tick of the position
/// @param amount The amount of liquidity to remove
/// @param amount0 The amount of token0 withdrawn
/// @param amount1 The amount of token1 withdrawn
event Burn(
address indexed owner,
int24 indexed tickLower,
int24 indexed tickUpper,
uint128 amount,
uint256 amount0,
uint256 amount1
);
/// @notice Emitted by the pool for any swaps between token0 and token1
/// @param sender The address that initiated the swap call, and that received the callback
/// @param recipient The address that received the output of the swap
/// @param amount0 The delta of the token0 balance of the pool
/// @param amount1 The delta of the token1 balance of the pool
/// @param sqrtPriceX96 The sqrt(price) of the pool after the swap, as a Q64.96
/// @param liquidity The liquidity of the pool after the swap
/// @param tick The log base 1.0001 of price of the pool after the swap
event Swap(
address indexed sender,
address indexed recipient,
int256 amount0,
int256 amount1,
uint160 sqrtPriceX96,
uint128 liquidity,
int24 tick
);
/// @notice Emitted by the pool for any flashes of token0/token1
/// @param sender The address that initiated the swap call, and that received the callback
/// @param recipient The address that received the tokens from flash
/// @param amount0 The amount of token0 that was flashed
/// @param amount1 The amount of token1 that was flashed
/// @param paid0 The amount of token0 paid for the flash, which can exceed the amount0 plus the fee
/// @param paid1 The amount of token1 paid for the flash, which can exceed the amount1 plus the fee
event Flash(
address indexed sender,
address indexed recipient,
uint256 amount0,
uint256 amount1,
uint256 paid0,
uint256 paid1
);
/// @notice Emitted by the pool for increases to the number of observations that can be stored
/// @dev observationCardinalityNext is not the observation cardinality until an observation is written at the index
/// just before a mint/swap/burn.
/// @param observationCardinalityNextOld The previous value of the next observation cardinality
/// @param observationCardinalityNextNew The updated value of the next observation cardinality
event IncreaseObservationCardinalityNext(
uint16 observationCardinalityNextOld,
uint16 observationCardinalityNextNew
);
/// @notice Emitted when the protocol fee is changed by the pool
/// @param feeProtocol0Old The previous value of the token0 protocol fee
/// @param feeProtocol1Old The previous value of the token1 protocol fee
/// @param feeProtocol0New The updated value of the token0 protocol fee
/// @param feeProtocol1New The updated value of the token1 protocol fee
event SetFeeProtocol(uint8 feeProtocol0Old, uint8 feeProtocol1Old, uint8 feeProtocol0New, uint8 feeProtocol1New);
/// @notice Emitted when the collected protocol fees are withdrawn by the factory owner
/// @param sender The address that collects the protocol fees
/// @param recipient The address that receives the collected protocol fees
/// @param amount0 The amount of token0 protocol fees that is withdrawn
/// @param amount0 The amount of token1 protocol fees that is withdrawn
event CollectProtocol(address indexed sender, address indexed recipient, uint128 amount0, uint128 amount1);
}
// SPDX-License-Identifier: GPL-2.0-or-later
pragma solidity >=0.5.0;
/// @title Pool state that never changes
/// @notice These parameters are fixed for a pool forever, i.e., the methods will always return the same values
interface IUniswapV3PoolImmutables {
/// @notice The contract that deployed the pool, which must adhere to the IUniswapV3Factory interface
/// @return The contract address
function factory() external view returns (address);
/// @notice The first of the two tokens of the pool, sorted by address
/// @return The token contract address
function token0() external view returns (address);
/// @notice The second of the two tokens of the pool, sorted by address
/// @return The token contract address
function token1() external view returns (address);
/// @notice The pool's fee in hundredths of a bip, i.e. 1e-6
/// @return The fee
function fee() external view returns (uint24);
/// @notice The pool tick spacing
/// @dev Ticks can only be used at multiples of this value, minimum of 1 and always positive
/// e.g.: a tickSpacing of 3 means ticks can be initialized every 3rd tick, i.e., ..., -6, -3, 0, 3, 6, ...
/// This value is an int24 to avoid casting even though it is always positive.
/// @return The tick spacing
function tickSpacing() external view returns (int24);
/// @notice The maximum amount of position liquidity that can use any tick in the range
/// @dev This parameter is enforced per tick to prevent liquidity from overflowing a uint128 at any point, and
/// also prevents out-of-range liquidity from being used to prevent adding in-range liquidity to a pool
/// @return The max amount of liquidity per tick
function maxLiquidityPerTick() external view returns (uint128);
}
// SPDX-License-Identifier: GPL-2.0-or-later
pragma solidity >=0.5.0;
/// @title Permissioned pool actions
/// @notice Contains pool methods that may only be called by the factory owner
interface IUniswapV3PoolOwnerActions {
/// @notice Set the denominator of the protocol's % share of the fees
/// @param feeProtocol0 new protocol fee for token0 of the pool
/// @param feeProtocol1 new protocol fee for token1 of the pool
function setFeeProtocol(uint8 feeProtocol0, uint8 feeProtocol1) external;
/// @notice Collect the protocol fee accrued to the pool
/// @param recipient The address to which collected protocol fees should be sent
/// @param amount0Requested The maximum amount of token0 to send, can be 0 to collect fees in only token1
/// @param amount1Requested The maximum amount of token1 to send, can be 0 to collect fees in only token0
/// @return amount0 The protocol fee collected in token0
/// @return amount1 The protocol fee collected in token1
function collectProtocol(
address recipient,
uint128 amount0Requested,
uint128 amount1Requested
) external returns (uint128 amount0, uint128 amount1);
}
// SPDX-License-Identifier: GPL-2.0-or-later
pragma solidity >=0.5.0;
/// @title Pool state that can change
/// @notice These methods compose the pool's state, and can change with any frequency including multiple times
/// per transaction
interface IUniswapV3PoolState {
/// @notice The 0th storage slot in the pool stores many values, and is exposed as a single method to save gas
/// when accessed externally.
/// @return sqrtPriceX96 The current price of the pool as a sqrt(token1/token0) Q64.96 value
/// tick The current tick of the pool, i.e. according to the last tick transition that was run.
/// This value may not always be equal to SqrtTickMath.getTickAtSqrtRatio(sqrtPriceX96) if the price is on a tick
/// boundary.
/// observationIndex The index of the last oracle observation that was written,
/// observationCardinality The current maximum number of observations stored in the pool,
/// observationCardinalityNext The next maximum number of observations, to be updated when the observation.
/// feeProtocol The protocol fee for both tokens of the pool.
/// Encoded as two 4 bit values, where the protocol fee of token1 is shifted 4 bits and the protocol fee of token0
/// is the lower 4 bits. Used as the denominator of a fraction of the swap fee, e.g. 4 means 1/4th of the swap fee.
/// unlocked Whether the pool is currently locked to reentrancy
function slot0()
external
view
returns (
uint160 sqrtPriceX96,
int24 tick,
uint16 observationIndex,
uint16 observationCardinality,
uint16 observationCardinalityNext,
uint8 feeProtocol,
bool unlocked
);
/// @notice The fee growth as a Q128.128 fees of token0 collected per unit of liquidity for the entire life of the pool
/// @dev This value can overflow the uint256
function feeGrowthGlobal0X128() external view returns (uint256);
/// @notice The fee growth as a Q128.128 fees of token1 collected per unit of liquidity for the entire life of the pool
/// @dev This value can overflow the uint256
function feeGrowthGlobal1X128() external view returns (uint256);
/// @notice The amounts of token0 and token1 that are owed to the protocol
/// @dev Protocol fees will never exceed uint128 max in either token
function protocolFees() external view returns (uint128 token0, uint128 token1);
/// @notice The currently in range liquidity available to the pool
/// @dev This value has no relationship to the total liquidity across all ticks
function liquidity() external view returns (uint128);
/// @notice Look up information about a specific tick in the pool
/// @param tick The tick to look up
/// @return liquidityGross the total amount of position liquidity that uses the pool either as tick lower or
/// tick upper,
/// liquidityNet how much liquidity changes when the pool price crosses the tick,
/// feeGrowthOutside0X128 the fee growth on the other side of the tick from the current tick in token0,
/// feeGrowthOutside1X128 the fee growth on the other side of the tick from the current tick in token1,
/// tickCumulativeOutside the cumulative tick value on the other side of the tick from the current tick
/// secondsPerLiquidityOutsideX128 the seconds spent per liquidity on the other side of the tick from the current tick,
/// secondsOutside the seconds spent on the other side of the tick from the current tick,
/// initialized Set to true if the tick is initialized, i.e. liquidityGross is greater than 0, otherwise equal to false.
/// Outside values can only be used if the tick is initialized, i.e. if liquidityGross is greater than 0.
/// In addition, these values are only relative and must be used only in comparison to previous snapshots for
/// a specific position.
function ticks(int24 tick)
external
view
returns (
uint128 liquidityGross,
int128 liquidityNet,
uint256 feeGrowthOutside0X128,
uint256 feeGrowthOutside1X128,
int56 tickCumulativeOutside,
uint160 secondsPerLiquidityOutsideX128,
uint32 secondsOutside,
bool initialized
);
/// @notice Returns 256 packed tick initialized boolean values. See TickBitmap for more information
function tickBitmap(int16 wordPosition) external view returns (uint256);
/// @notice Returns the information about a position by the position's key
/// @param key The position's key is a hash of a preimage composed by the owner, tickLower and tickUpper
/// @return _liquidity The amount of liquidity in the position,
/// Returns feeGrowthInside0LastX128 fee growth of token0 inside the tick range as of the last mint/burn/poke,
/// Returns feeGrowthInside1LastX128 fee growth of token1 inside the tick range as of the last mint/burn/poke,
/// Returns tokensOwed0 the computed amount of token0 owed to the position as of the last mint/burn/poke,
/// Returns tokensOwed1 the computed amount of token1 owed to the position as of the last mint/burn/poke
function positions(bytes32 key)
external
view
returns (
uint128 _liquidity,
uint256 feeGrowthInside0LastX128,
uint256 feeGrowthInside1LastX128,
uint128 tokensOwed0,
uint128 tokensOwed1
);
/// @notice Returns data about a specific observation index
/// @param index The element of the observations array to fetch
/// @dev You most likely want to use #observe() instead of this method to get an observation as of some amount of time
/// ago, rather than at a specific index in the array.
/// @return blockTimestamp The timestamp of the observation,
/// Returns tickCumulative the tick multiplied by seconds elapsed for the life of the pool as of the observation timestamp,
/// Returns secondsPerLiquidityCumulativeX128 the seconds per in range liquidity for the life of the pool as of the observation timestamp,
/// Returns initialized whether the observation has been initialized and the values are safe to use
function observations(uint256 index)
external
view
returns (
uint32 blockTimestamp,
int56 tickCumulative,
uint160 secondsPerLiquidityCumulativeX128,
bool initialized
);
}
// SPDX-License-Identifier: GPL-2.0-or-later
pragma solidity >=0.7.5;
pragma abicoder v2;
/// @title Quoter Interface
/// @notice Supports quoting the calculated amounts from exact input or exact output swaps
/// @dev These functions are not marked view because they rely on calling non-view functions and reverting
/// to compute the result. They are also not gas efficient and should not be called on-chain.
interface IQuoter {
/// @notice Returns the amount out received for a given exact input swap without executing the swap
/// @param path The path of the swap, i.e. each token pair and the pool fee
/// @param amountIn The amount of the first token to swap
/// @return amountOut The amount of the last token that would be received
function quoteExactInput(bytes memory path, uint256 amountIn) external returns (uint256 amountOut);
/// @notice Returns the amount out received for a given exact input but for a swap of a single pool
/// @param tokenIn The token being swapped in
/// @param tokenOut The token being swapped out
/// @param fee The fee of the token pool to consider for the pair
/// @param amountIn The desired input amount
/// @param sqrtPriceLimitX96 The price limit of the pool that cannot be exceeded by the swap
/// @return amountOut The amount of `tokenOut` that would be received
function quoteExactInputSingle(
address tokenIn,
address tokenOut,
uint24 fee,
uint256 amountIn,
uint160 sqrtPriceLimitX96
) external returns (uint256 amountOut);
/// @notice Returns the amount in required for a given exact output swap without executing the swap
/// @param path The path of the swap, i.e. each token pair and the pool fee. Path must be provided in reverse order
/// @param amountOut The amount of the last token to receive
/// @return amountIn The amount of first token required to be paid
function quoteExactOutput(bytes memory path, uint256 amountOut) external returns (uint256 amountIn);
/// @notice Returns the amount in required to receive the given exact output amount but for a swap of a single pool
/// @param tokenIn The token being swapped in
/// @param tokenOut The token being swapped out
/// @param fee The fee of the token pool to consider for the pair
/// @param amountOut The desired output amount
/// @param sqrtPriceLimitX96 The price limit of the pool that cannot be exceeded by the swap
/// @return amountIn The amount required as the input for the swap in order to receive `amountOut`
function quoteExactOutputSingle(
address tokenIn,
address tokenOut,
uint24 fee,
uint256 amountOut,
uint160 sqrtPriceLimitX96
) external returns (uint256 amountIn);
}
// SPDX-License-Identifier: GPL-2.0-or-later
pragma solidity >=0.7.5;
pragma abicoder v2;
/// @title QuoterV2 Interface
/// @notice Supports quoting the calculated amounts from exact input or exact output swaps.
/// @notice For each pool also tells you the number of initialized ticks crossed and the sqrt price of the pool after the swap.
/// @dev These functions are not marked view because they rely on calling non-view functions and reverting
/// to compute the result. They are also not gas efficient and should not be called on-chain.
interface IQuoterV2 {
/// @notice Returns the amount out received for a given exact input swap without executing the swap
/// @param path The path of the swap, i.e. each token pair and the pool fee
/// @param amountIn The amount of the first token to swap
/// @return amountOut The amount of the last token that would be received
/// @return sqrtPriceX96AfterList List of the sqrt price after the swap for each pool in the path
/// @return initializedTicksCrossedList List of the initialized ticks that the swap crossed for each pool in the path
/// @return gasEstimate The estimate of the gas that the swap consumes
function quoteExactInput(bytes memory path, uint256 amountIn)
external
returns (
uint256 amountOut,
uint160[] memory sqrtPriceX96AfterList,
uint32[] memory initializedTicksCrossedList,
uint256 gasEstimate
);
struct QuoteExactInputSingleParams {
address tokenIn;
address tokenOut;
uint256 amountIn;
uint24 fee;
uint160 sqrtPriceLimitX96;
}
/// @notice Returns the amount out received for a given exact input but for a swap of a single pool
/// @param params The params for the quote, encoded as `QuoteExactInputSingleParams`
/// tokenIn The token being swapped in
/// tokenOut The token being swapped out
/// fee The fee of the token pool to consider for the pair
/// amountIn The desired input amount
/// sqrtPriceLimitX96 The price limit of the pool that cannot be exceeded by the swap
/// @return amountOut The amount of `tokenOut` that would be received
/// @return sqrtPriceX96After The sqrt price of the pool after the swap
/// @return initializedTicksCrossed The number of initialized ticks that the swap crossed
/// @return gasEstimate The estimate of the gas that the swap consumes
function quoteExactInputSingle(QuoteExactInputSingleParams memory params)
external
returns (
uint256 amountOut,
uint160 sqrtPriceX96After,
uint32 initializedTicksCrossed,
uint256 gasEstimate
);
/// @notice Returns the amount in required for a given exact output swap without executing the swap
/// @param path The path of the swap, i.e. each token pair and the pool fee. Path must be provided in reverse order
/// @param amountOut The amount of the last token to receive
/// @return amountIn The amount of first token required to be paid
/// @return sqrtPriceX96AfterList List of the sqrt price after the swap for each pool in the path
/// @return initializedTicksCrossedList List of the initialized ticks that the swap crossed for each pool in the path
/// @return gasEstimate The estimate of the gas that the swap consumes
function quoteExactOutput(bytes memory path, uint256 amountOut)
external
returns (
uint256 amountIn,
uint160[] memory sqrtPriceX96AfterList,
uint32[] memory initializedTicksCrossedList,
uint256 gasEstimate
);
struct QuoteExactOutputSingleParams {
address tokenIn;
address tokenOut;
uint256 amount;
uint24 fee;
uint160 sqrtPriceLimitX96;
}
/// @notice Returns the amount in required to receive the given exact output amount but for a swap of a single pool
/// @param params The params for the quote, encoded as `QuoteExactOutputSingleParams`
/// tokenIn The token being swapped in
/// tokenOut The token being swapped out
/// fee The fee of the token pool to consider for the pair
/// amountOut The desired output amount
/// sqrtPriceLimitX96 The price limit of the pool that cannot be exceeded by the swap
/// @return amountIn The amount required as the input for the swap in order to receive `amountOut`
/// @return sqrtPriceX96After The sqrt price of the pool after the swap
/// @return initializedTicksCrossed The number of initialized ticks that the swap crossed
/// @return gasEstimate The estimate of the gas that the swap consumes
function quoteExactOutputSingle(QuoteExactOutputSingleParams memory params)
external
returns (
uint256 amountIn,
uint160 sqrtPriceX96After,
uint32 initializedTicksCrossed,
uint256 gasEstimate
);
}
// SPDX-License-Identifier: GPL-2.0-or-later
pragma solidity >=0.7.5;
pragma abicoder v2;
import '@uniswap/v3-core/contracts/interfaces/callback/IUniswapV3SwapCallback.sol';
/// @title Router token swapping functionality
/// @notice Functions for swapping tokens via Uniswap V3
interface ISwapRouter is IUniswapV3SwapCallback {
struct ExactInputSingleParams {
address tokenIn;
address tokenOut;
uint24 fee;
address recipient;
uint256 deadline;
uint256 amountIn;
uint256 amountOutMinimum;
uint160 sqrtPriceLimitX96;
}
/// @notice Swaps `amountIn` of one token for as much as possible of another token
/// @param params The parameters necessary for the swap, encoded as `ExactInputSingleParams` in calldata
/// @return amountOut The amount of the received token
function exactInputSingle(ExactInputSingleParams calldata params) external payable returns (uint256 amountOut);
struct ExactInputParams {
bytes path;
address recipient;
uint256 deadline;
uint256 amountIn;
uint256 amountOutMinimum;
}
/// @notice Swaps `amountIn` of one token for as much as possible of another along the specified path
/// @param params The parameters necessary for the multi-hop swap, encoded as `ExactInputParams` in calldata
/// @return amountOut The amount of the received token
function exactInput(ExactInputParams calldata params) external payable returns (uint256 amountOut);
struct ExactOutputSingleParams {
address tokenIn;
address tokenOut;
uint24 fee;
address recipient;
uint256 deadline;
uint256 amountOut;
uint256 amountInMaximum;
uint160 sqrtPriceLimitX96;
}
/// @notice Swaps as little as possible of one token for `amountOut` of another token
/// @param params The parameters necessary for the swap, encoded as `ExactOutputSingleParams` in calldata
/// @return amountIn The amount of the input token
function exactOutputSingle(ExactOutputSingleParams calldata params) external payable returns (uint256 amountIn);
struct ExactOutputParams {
bytes path;
address recipient;
uint256 deadline;
uint256 amountOut;
uint256 amountInMaximum;
}
/// @notice Swaps as little as possible of one token for `amountOut` of another along the specified path (reversed)
/// @param params The parameters necessary for the multi-hop swap, encoded as `ExactOutputParams` in calldata
/// @return amountIn The amount of the input token
function exactOutput(ExactOutputParams calldata params) external payable returns (uint256 amountIn);
}
// SPDX-License-Identifier: GPL-2.0-or-later
pragma solidity >=0.6.0;
import '@openzeppelin/contracts/token/ERC20/IERC20.sol';
library TransferHelper {
/// @notice Transfers tokens from the targeted address to the given destination
/// @notice Errors with 'STF' if transfer fails
/// @param token The contract address of the token to be transferred
/// @param from The originating address from which the tokens will be transferred
/// @param to The destination address of the transfer
/// @param value The amount to be transferred
function safeTransferFrom(
address token,
address from,
address to,
uint256 value
) internal {
(bool success, bytes memory data) =
token.call(abi.encodeWithSelector(IERC20.transferFrom.selector, from, to, value));
require(success && (data.length == 0 || abi.decode(data, (bool))), 'STF');
}
/// @notice Transfers tokens from msg.sender to a recipient
/// @dev Errors with ST if transfer fails
/// @param token The contract address of the token which will be transferred
/// @param to The recipient of the transfer
/// @param value The value of the transfer
function safeTransfer(
address token,
address to,
uint256 value
) internal {
(bool success, bytes memory data) = token.call(abi.encodeWithSelector(IERC20.transfer.selector, to, value));
require(success && (data.length == 0 || abi.decode(data, (bool))), 'ST');
}
/// @notice Approves the stipulated contract to spend the given allowance in the given token
/// @dev Errors with 'SA' if transfer fails
/// @param token The contract address of the token to be approved
/// @param to The target of the approval
/// @param value The amount of the given token the target will be allowed to spend
function safeApprove(
address token,
address to,
uint256 value
) internal {
(bool success, bytes memory data) = token.call(abi.encodeWithSelector(IERC20.approve.selector, to, value));
require(success && (data.length == 0 || abi.decode(data, (bool))), 'SA');
}
/// @notice Transfers ETH to the recipient address
/// @dev Fails with `STE`
/// @param to The destination of the transfer
/// @param value The value to be transferred
function safeTransferETH(address to, uint256 value) internal {
(bool success, ) = to.call{value: value}(new bytes(0));
require(success, 'STE');
}
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity 0.8.20;
// UniSwap
import "@uniswap/v3-periphery/contracts/interfaces/ISwapRouter.sol";
import "@uniswap/v3-core/contracts/interfaces/IUniswapV3Pool.sol";
// OpenZeppelins
import "@openzeppelin/contracts/access/Ownable2Step.sol";
import "@openzeppelin/contracts/utils/math/Math.sol";
import "@openzeppelin/contracts/utils/Context.sol";
import "@openzeppelin/contracts/utils/ReentrancyGuard.sol";
// Library
import "./lib/Constants.sol";
import "./lib/interfaces/IWETH.sol";
import "./lib/interfaces/INonfungiblePositionManager.sol";
import "./lib/uniswap/PoolAddress.sol";
import "./lib/uniswap/Oracle.sol";
import "./lib/uniswap/TickMath.sol";
// Other
import "./DragonX.sol";
contract DragonBuyAndBurn is Ownable2Step, ReentrancyGuard {
using SafeERC20 for IERC20;
using SafeERC20 for IWETH9;
using SafeERC20 for DragonX;
// -----------------------------------------
// Type declarations
// -----------------------------------------
/**
* @dev Represents the information about a Uniswap V3 liquidity pool position token.
* This struct is used to store details of the position token, specifically for a single full range position.
*/
struct TokenInfo {
uint80 tokenId; // The ID of the position token in the Uniswap V3 pool.
uint128 liquidity; // The amount of liquidity provided in the position.
int24 tickLower; // The lower end of the price range for the position.
int24 tickUpper; // The upper end of the price range for the position.
}
// -----------------------------------------
// State variables
// -----------------------------------------
/**
* @dev The address of the DragonX Contract.
*/
address public dragonAddress;
/**
* @dev Maximum slippage percentage acceptable when buying TitanX with WETH and DragonX with TitanX.
* Slippage is expressed as a percentage (e.g., 5 for 5% slippage).
*/
uint256 public slippage;
/**
* @dev Tracks the total amount of WETH used for burning DragonX tokens.
* This accumulates the WETH spent over time in buy and burn transactions.
*/
uint256 public totalWethUsedForBuyAndBurns;
/**
* @dev Tracks the total amount of DragonX tokens purchased and burned.
* This accumulates the DragonX bought and subsequently burned over time.
*/
uint256 public totalDragonBurned;
/**
* @dev Tracks the total amount of DragonX tokens collected through fees and burned.
* This accumulates the DragonX collected trough liquidity fees and subsequently burned over time.
*/
uint256 public totalDragonFeesBurned;
/**
* @dev Tracks the total amount of TitanX tokens collected through fees and send to DragonX for staking.
* This accumulates the TitanX collected trough liquidity fees and subsequently send to DragonX over time.
*/
uint256 public totalTitanFeeCollected;
/**
* @dev Tracks the current cap on the amount of WETH that can be used per individual swap.
* This cap can be adjusted to control the maximum size of each swap transaction.
*/
uint256 public capPerSwap;
/**
* @dev Records the timestamp of the last time the buy and burn function was called.
* Used for tracking the interval between successive buy and burn operations.
*/
uint256 public lastCallTs;
/**
* @dev Specifies the interval in seconds between allowed buy and burn operations.
* This sets a minimum time gap that must elapse before the buy and burn function can be called again.
*/
uint256 public interval;
/**
* @dev Address of the DragonX-TitanX Uniswap V3 pool.
* This variable stores the contract address of the Uniswap V3 pool where DragonX and TitanX tokens are traded.
*/
address public dragonTitanPoolAddress;
/**
* @dev Stores the position token information, specifically for a single full range position in the Uniswap V3 pool.
* This variable is kept private to maintain control over its access and modifications.
*/
TokenInfo private _tokenInfo;
/**
* @dev Specifies the value in minutes for the timed-weighted average when calculating the TitanX price (in WETH)
* for slippage protection.
*/
uint32 private _titanPriceTwa;
/**
* @dev Specifies the value in minutes for the timed-weighted average when calculating the DragonX price (in TitanX)
* for slippage protection.
*/
uint32 private _dragonPriceTwa;
// -----------------------------------------
// Events
// -----------------------------------------
/**
* @notice Emitted when DragonX tokens are bought with WETH (swapping through TitanX) and subsequently burned.
* @dev This event indicates both the purchase and burning of DragonX tokens in a single transaction.
* @param weth The amount of WETH used to buy and burn Titan tokens.
* @param dragon The amount of DragonX tokens that were bought and then burned.
* @param caller The address of the user or contract that initiated the transaction.
*/
event BoughtAndBurned(
uint256 indexed weth,
uint256 indexed dragon,
address indexed caller
);
/**
* @notice Emitted when fees are collected in both DragonX and TitanX tokens.
* @dev This event is triggered when a fee collection transaction is completed.
* @param dragon The amount of dragon collected as fees.
* @param titan The amount of Titan tokens collected as fees.
* @param caller The address of the user or contract that initiated the fee collection.
*/
event CollectedFees(
uint256 indexed dragon,
uint256 indexed titan,
address indexed caller
);
// -----------------------------------------
// Errors
// -----------------------------------------
/**
* @dev Thrown when the provided address is address(0)
*/
error InvalidDragonAddress();
/**
* @dev Thrown when the function caller is not authorized or expected.
*/
error InvalidCaller();
/**
* @dev Thrown when trying to buy and burn DragonX but the cooldown period is still active.
*/
error CooldownPeriodActive();
/**
* @dev Thrown when trying to buy and burn DragonX but there is no WETH in the contract.
*/
error NoWethToBuyAndBurnDragon();
// -----------------------------------------
// Modifiers
// -----------------------------------------
// -----------------------------------------
// Constructor
// -----------------------------------------
/**
* @notice Creates a new instance of the contract.
* @dev Initializes the contract with predefined values for `capPerSwap`, `slippage`, and `interval`.
* Inherits from Ownable and sets the contract deployer as the initial owner.
* - Sets `capPerSwap` to 1 ETH, limiting the maximum amount of WETH that can be used in each swap.
* - Sets `slippage` to 5%, defining the maximum allowable price movement in a swap transaction.
* - Sets `interval` to 15 minutes, establishing the minimum time between consecutive buy and burn operations.
* - Sets `_titanPriceTwa` to 15 minutes, establishing a protection against sandwich-attacks.
* - Sets `_dragonPriceTwa` to 15 minutes, establishing a protection against sandwich-attacks.
*/
constructor() Ownable(msg.sender) {
// Set the cap to approx 1 ETH per day (called every hour)
capPerSwap = 0.045 ether;
// Set the maximum slippage to 5%
slippage = 5;
// Set the minimum interval between buy and burn calls to 1 hour
interval = 60 * 60;
// set initial TWA to 15 mins
_titanPriceTwa = 15;
_dragonPriceTwa = 15;
}
// -----------------------------------------
// Receive function
// -----------------------------------------
/**
* @notice Wrap incoming ETH into WETH
* @dev This receive function automatically wraps any incoming ETH into WETH, except when the sender is the WETH9 contract itself.
*/
receive() external payable {
if (msg.sender != WETH9_ADDRESS) {
IWETH9(WETH9_ADDRESS).deposit{value: msg.value}();
}
}
// -----------------------------------------
// Fallback function
// -----------------------------------------
/**
* @notice Fallback function that disallows direct ETH transfers
* @dev This fallback function reverts any transactions that do not contain data or are not from the WETH9 contract.
*/
fallback() external {
revert("Fallback triggered");
}
// -----------------------------------------
// External functions
// -----------------------------------------
/**
* Buy and Burn DragonX Tokens
* @notice Buys DragonX tokens using WETH and then burns them to manage the token's supply and value.
* @dev This function swaps WETH for DragonX tokens using a swap router, then burns the DragonX tokens.
* It includes security checks to prevent abuse (e.g., reentrancy, bot interactions, cooldown periods).
* The function also handles an incentive fee for the caller.
* @return amountOut The amount of DragonX tokens bought and burned.
* @custom:revert InvalidDragonAddress if the DragonX address is not set.
* @custom:revert InvalidCaller if the function is called by a smart contract (to prevent bot interactions).
* @custom:revert CooldownPeriodActive if the function is called again before the cooldown period has elapsed.
* @custom:revert NoWethToBuyAndBurnDragon if there is no WETH available for the transaction after deducting the incentive fee.
*
* Emits a BoughtAndBurned event after successfully buying and burning DragonX tokens.
*/
function buyAndBurnDragonX()
external
nonReentrant
returns (uint256 amountOut)
{
// Cache state variables
address dragonAddress_ = dragonAddress;
// Ensure DragonX address has been set
if (dragonAddress_ == address(0)) {
revert InvalidDragonAddress();
}
//prevent contract accounts (bots) from calling this function
if (msg.sender != tx.origin) {
revert InvalidCaller();
}
//a minium gap of `interval` between each call
if (block.timestamp - lastCallTs <= interval) {
revert CooldownPeriodActive();
}
lastCallTs = block.timestamp;
ISwapRouter swapRouter = ISwapRouter(UNI_SWAP_ROUTER);
IWETH9 weth = IWETH9(WETH9_ADDRESS);
// WETH Balance of this contract
uint256 amountIn = weth.balanceOf(address(this));
uint256 wethCap = capPerSwap;
if (amountIn > wethCap) {
amountIn = wethCap;
}
uint256 incentiveFee = (amountIn * INCENTIVE_FEE) / BASIS;
weth.withdraw(incentiveFee);
amountIn -= incentiveFee;
if (amountIn == 0) {
revert NoWethToBuyAndBurnDragon();
}
// Approve the router to spend WETH
weth.safeIncreaseAllowance(address(swapRouter), amountIn);
// Setup the swap-path, swapp
bytes memory path = abi.encodePacked(
WETH9_ADDRESS,
FEE_TIER,
TITANX_ADDRESS,
FEE_TIER,
dragonAddress_
);
uint256 amountOutMinimum = calculateMinimumDragonAmount(amountIn);
// Swap parameters
ISwapRouter.ExactInputParams memory params = ISwapRouter
.ExactInputParams({
path: path,
recipient: address(this),
deadline: block.timestamp + 1,
amountIn: amountIn,
amountOutMinimum: amountOutMinimum
});
// Execute the swap
amountOut = swapRouter.exactInput(params);
// Burn the DragonX bought
DragonX(payable(dragonAddress_)).burn();
// Update state
totalWethUsedForBuyAndBurns += amountIn;
totalDragonBurned += amountOut;
// Send incentive fee
Address.sendValue(payable(_msgSender()), incentiveFee);
// Emit events
emit BoughtAndBurned(amountIn, amountOut, msg.sender);
}
/**
* Collect Fees from Liquidity Pool
* @notice Collects accumulated fees from the liquidity pool and performs actions on them.
* @dev This function handles the collection of fees from the liquidity pool consisting of DragonX and TitanX tokens.
* It involves the following steps:
* 1. Retrieve the caller's address.
* 2. Call `_collectFees()` and to get the amounts of DragonX (amount0) and TitanX (amount1) collected.
* 3. Assign the correct amounts to `dragon` and `titan` variables based on the token order in the pool.
* 4. Update `totalDragonFeesBurned`, `totalTitanFeeCollected`, and `totalDragonBurned` state variables.
* 5. Burn the collected DragonX tokens by calling the `burn` method on the DragonX contract.
* 6. Transfer the collected TitanX tokens to the DragonX address, for staking.
* 7. Update the DragonX vault.
* 7. Emit a `CollectedFees` event indicating the amounts collected and the caller.
* Uses the `nonReentrant` modifier to prevent reentrancy attacks.
* @custom:modifier nonReentrant Ensures the function cannot be re-entered while it is being executed.
*/
function collectFees() external nonReentrant {
// Cache state variables
address dragonAddress_ = dragonAddress;
address titanAddress_ = TITANX_ADDRESS;
address sender = _msgSender();
(uint256 amount0, uint256 amount1) = _collectFees();
uint256 dragon;
uint256 titan;
if (dragonAddress_ < titanAddress_) {
dragon = amount0;
titan = amount1;
} else {
titan = amount0;
dragon = amount1;
}
totalDragonFeesBurned += dragon;
totalTitanFeeCollected += titan;
totalDragonBurned += dragon;
DragonX dragonX = DragonX(payable(dragonAddress_));
dragonX.burn();
IERC20(titanAddress_).safeTransfer(dragonAddress_, titan);
dragonX.updateVault();
emit CollectedFees(dragon, titan, sender);
}
/**
* @notice A one-time function for creating the initial liquidity to kick off the minting phase in DragonX.
* @dev This function sets up the initial liquidity in the DragonX-TitanX pool with a 1:1 ratio.
* It's only callable by the contract owner and can be executed only once.
* @param initialLiquidityAmount The amount of liquidity to add initially to the pool.
*/
function createInitialLiquidity(
uint256 initialLiquidityAmount
) external onlyOwner {
// Cache state variables
address dragonAddress_ = dragonAddress;
// Verify that the DragonX token address is set
if (dragonAddress_ == address(0)) {
revert InvalidDragonAddress();
}
// Initialize DragonX and TitanX token interfaces
DragonX dragonX = DragonX(payable(dragonAddress_));
IERC20 titanX = IERC20(TITANX_ADDRESS);
// Mint the initial DragonX liquidity.
// This will fail if the initial liquidity has already been minted.
dragonX.mintInitialLiquidity(initialLiquidityAmount);
// Check if the caller has enough TitanX tokens and has allowed this contract to spend them.
require(
titanX.allowance(_msgSender(), address(this)) >=
initialLiquidityAmount,
"allowance too low"
);
require(
titanX.balanceOf(_msgSender()) >= initialLiquidityAmount,
"balance too low"
);
// Transfer the specified amount of TitanX tokens from the caller to this contract.
titanX.safeTransferFrom(
_msgSender(),
address(this),
initialLiquidityAmount
);
// Approve the Uniswap non-fungible position manager to spend the tokens.
dragonX.safeIncreaseAllowance(
UNI_NONFUNGIBLEPOSITIONMANAGER,
initialLiquidityAmount
);
titanX.safeIncreaseAllowance(
UNI_NONFUNGIBLEPOSITIONMANAGER,
initialLiquidityAmount
);
// Create the initial liquidity pool in Uniswap V3.
_createPool(initialLiquidityAmount);
// Mint the initial position in the pool.
_mintInitialPosition(initialLiquidityAmount);
}
/**
* @dev Retrieves the total amount of Wrapped Ethereum (WETH) available to buy DragonX.
* This function queries the balance of WETH held by the contract itself.
*
* @notice Use this function to get the total WETH available for purchasing DragonX.
*
* @return balance The total amount of WETH available, represented as a uint256.
*/
function totalWethForBuyAndBurn() external view returns (uint256 balance) {
return IERC20(WETH9_ADDRESS).balanceOf(address(this));
}
/**
* @dev Calculates the incentive fee for executing the buyAndBurnDragonX function.
* The fee is computed based on the WETH amount designated for the next DragonX purchase,
* using the `wethForNextBuyAndBurn` function, and applying a predefined incentive fee rate.
*
* @notice Used to determine the incentive fee for running the buyAndBurnDragonX function.
*
* @return fee The calculated incentive fee, represented as a uint256.
* This value is calculated by taking the product of `wethForNextBuyAndBurn()` and
* `INCENTIVE_FEE`, then dividing by `BASIS` to normalize the fee calculation.
*/
function incentiveFeeForRunningBuyAndBurnDragonX()
external
view
returns (uint256 fee)
{
uint256 forBuy = wethForNextBuyAndBurn();
fee = (forBuy * INCENTIVE_FEE) / BASIS;
}
/**
* @notice Sets the address of the DragonX contract
* @dev This function allows the contract owner to update the address of the contract contract.
* It includes a check to prevent setting the address to the zero address.
* @param dragonAddress_ The new address to be set for the contract.
* @custom:revert InvalidAddress If the provided address is the zero address.
*/
function setDragonContractAddress(address dragonAddress_) external onlyOwner {
if (dragonAddress_ == address(0)) {
revert InvalidDragonAddress();
}
dragonAddress = dragonAddress_;
}
/**
* @notice set weth cap amount per buynburn call. Only callable by owner address.
* @param amount amount in 18 decimals
*/
function setCapPerSwap(uint256 amount) external onlyOwner {
capPerSwap = amount;
}
/**
* @notice set slippage % for buynburn minimum received amount. Only callable by owner address.
* @param amount amount from 0 - 50
*/
function setSlippage(uint256 amount) external onlyOwner {
require(amount >= 5 && amount <= 15, "5-15% only");
slippage = amount;
}
/**
* @notice set the buy and burn interval in seconds. Only callable by owner address.
* @param secs amount in seconds
*/
function setBuyAndBurnInterval(uint256 secs) external onlyOwner {
require(secs >= 60 && secs <= 43200, "1m-12h only");
interval = secs;
}
/**
* @notice set the TWA value used when calculting the TitanX price. Only callable by owner address.
* @param mins TWA in minutes
*/
function setTitanPriceTwa(uint32 mins) external onlyOwner {
require(mins >= 5 && mins <= 60, "5m-1h only");
_titanPriceTwa = mins;
}
/**
* @notice set the TWA value used when calculting the TitanX price. Only callable by owner address.
* @param mins TWA in minutes
*/
function setDragonPriceTwa(uint32 mins) external onlyOwner {
require(mins >= 5 && mins <= 60, "5m-1h only");
_dragonPriceTwa = mins;
}
// -----------------------------------------
// Public functions
// -----------------------------------------
/**
* Get a quote for TitanX for a given amount of ETH
* @notice Uses Time-Weighted Average Price (TWAP) and falls back to the pool price if TWAP is not available.
* @param baseAmount The amount of ETH for which the TitanX quote is needed.
* @return quote The amount of TitanX.
* @dev This function computes the TWAP of TitanX in ETH using the Uniswap V3 pool for TitanX/WETH and the Oracle Library.
* Steps to compute the TWAP:
* 1. Compute the pool address with the PoolAddress library using the Uniswap factory address,
* the addresses of WETH9 and TitanX, and the fee tier.
* 2. Determine the period for the TWAP calculation, limited by the oldest available observation from the Oracle.
* 3. If `secondsAgo` is zero, use the current price from the pool; otherwise, consult the Oracle Library
* for the arithmetic mean tick for the calculated period.
* 4. Convert the arithmetic mean tick to the square root price (sqrtPriceX96) and calculate the price
* based on the specified baseAmount of ETH.
*/
function getTitanQuoteForEth(
uint256 baseAmount
) public view returns (uint256 quote) {
address poolAddress = PoolAddress.computeAddress(
UNI_FACTORY,
PoolAddress.getPoolKey(WETH9_ADDRESS, TITANX_ADDRESS, FEE_TIER)
);
uint32 secondsAgo = _titanPriceTwa * 60;
uint32 oldestObservation = OracleLibrary.getOldestObservationSecondsAgo(
poolAddress
);
// Limit to oldest observation
if (oldestObservation < secondsAgo) {
secondsAgo = oldestObservation;
}
uint160 sqrtPriceX96;
if (secondsAgo == 0) {
// Default to current price
IUniswapV3Pool pool = IUniswapV3Pool(poolAddress);
(sqrtPriceX96, , , , , , ) = pool.slot0();
} else {
// Consult the Oracle Library for TWAP
(int24 arithmeticMeanTick, ) = OracleLibrary.consult(
poolAddress,
secondsAgo
);
// Convert tick to sqrtPriceX96
sqrtPriceX96 = TickMath.getSqrtRatioAtTick(arithmeticMeanTick);
}
return
OracleLibrary.getQuoteForSqrtRatioX96(
sqrtPriceX96,
baseAmount,
WETH9_ADDRESS,
TITANX_ADDRESS
);
}
/**
* Get a quote for DragonX for a given amount of TitanX
* @notice Uses Time-Weighted Average Price (TWAP) and falls back to the pool price if TWAP is not available.
* @param baseAmount The amount of TitanX for which the DragonX quote is needed.
* @return quote The amount of DragonX
* @dev This function computes the TWAP of TitanX in ETH using the Uniswap V3 pool for TitanX/WETH and the Oracle Library.
* Steps to compute the TWAP:
* 1. Compute the pool address with the PoolAddress library using the Uniswap factory address,
* the addresses of WETH9 and TitanX, and the fee tier.
* 2. Determine the period for the TWAP calculation, limited by the oldest available observation from the Oracle.
* 3. If `secondsAgo` is zero, use the current price from the pool; otherwise, consult the Oracle Library
* for the arithmetic mean tick for the calculated period.
* 4. Convert the arithmetic mean tick to the square root price (sqrtPriceX96) and calculate the price
* based on the specified baseAmount of ETH.
*/
function getDragonQuoteForTitan(
uint256 baseAmount
) public view returns (uint256 quote) {
// Cache state variables
address titanAddress_ = TITANX_ADDRESS;
address dragonAddress_ = dragonAddress;
address poolAddress = PoolAddress.computeAddress(
UNI_FACTORY,
PoolAddress.getPoolKey(dragonAddress_, titanAddress_, FEE_TIER)
);
uint32 secondsAgo = _dragonPriceTwa * 60;
uint32 oldestObservation = OracleLibrary.getOldestObservationSecondsAgo(
poolAddress
);
// Limit to oldest observation
if (oldestObservation < secondsAgo) {
secondsAgo = oldestObservation;
}
uint160 sqrtPriceX96;
if (secondsAgo == 0) {
// Default to current price
IUniswapV3Pool pool = IUniswapV3Pool(poolAddress);
(sqrtPriceX96, , , , , , ) = pool.slot0();
} else {
// Consult the Oracle Library for TWAP
(int24 arithmeticMeanTick, ) = OracleLibrary.consult(
poolAddress,
secondsAgo
);
// Convert tick to sqrtPriceX96
sqrtPriceX96 = TickMath.getSqrtRatioAtTick(arithmeticMeanTick);
}
return
OracleLibrary.getQuoteForSqrtRatioX96(
sqrtPriceX96,
baseAmount,
titanAddress_,
dragonAddress_
);
}
/**
* @dev Determines the WETH amount available for the next call to buyAndBurnDragonX.
* This amount may be capped by a predefined limit `capPerSwap`.
*
* @notice Provides the amount of WETH to be used in the next TitanX purchase.
*
* @return forBuy The amount of WETH available for the next buy, possibly subject to a cap.
* If the balance exceeds `capPerSwap`, `forBuy` is set to `capPerSwap`.
*/
function wethForNextBuyAndBurn() public view returns (uint256 forBuy) {
// Cache state variables
uint256 capPerSwap_ = capPerSwap;
IERC20 weth = IERC20(WETH9_ADDRESS);
forBuy = weth.balanceOf(address(this));
if (forBuy > capPerSwap_) {
forBuy = capPerSwap_;
}
}
/**
* Calculate Minimum Amount Out for Multi-hop Swap
* @notice Calculates the minimum amount of DragonX tokens expected from a multi-hop swap starting with WETH.
* Slippage is simplifed and applied as a constant parameter across both swaps.
* @dev This function calculates the minimum amount of DragonX tokens that should be received when swapping a given
* amount of WETH for TitanX and then swapping TitanX for DragonX, considering a specified slippage.
* It involves the following steps:
* 1. Get a quote for TitanX with the given WETH amount.
* 2. Adjust the TitanX amount for slippage.
* 3. Get a quote for DragonX with the adjusted TitanX amount.
* 4. Adjust the DragonX amount for slippage to get the minimum amount out.
* @param amountIn The amount of WETH to be swapped.
* @return amountOutMinimum The minimum amount of DragonX tokens expected from the swap.
*/
function calculateMinimumDragonAmount(
uint256 amountIn
) public view returns (uint256) {
// Cache state variable
uint256 slippage_ = slippage;
// Calculate the expected amount of TITAN for the given amount of ETH
uint256 expectedTitanAmount = getTitanQuoteForEth(amountIn);
// Adjust for slippage (applied uniformly across both hops)
uint256 adjustedTitanAmount = (expectedTitanAmount *
(100 - slippage_)) / 100;
// Calculate the expected amount of DRAGON for the adjusted amount of TITAN
uint256 expectedDragonAmount = getDragonQuoteForTitan(
adjustedTitanAmount
);
// Adjust for slippage again
uint256 amountOutMinimum = (expectedDragonAmount * (100 - slippage_)) /
100;
return amountOutMinimum;
}
// -----------------------------------------
// Internal functions
// -----------------------------------------
// -----------------------------------------
// Private functions
// -----------------------------------------
/**
* @notice Sorts tokens in ascending order, as required by Uniswap for identifying a pair.
* @dev This function arranges the token addresses in ascending order and assigns equal liquidity to both tokens.
* @param initialLiquidityAmount The amount of liquidity to assign to each token.
* @return token0 The token address that is numerically smaller.
* @return token1 The token address that is numerically larger.
* @return amount0 The liquidity amount for `token0`.
* @return amount1 The liquidity amount for `token1`.
*/
function _getTokenConfig(
uint256 initialLiquidityAmount
)
private
view
returns (
address token0,
address token1,
uint256 amount0,
uint256 amount1
)
{
// Cache state variables
address dragonAddress_ = dragonAddress;
address titanAddress_ = TITANX_ADDRESS;
token0 = titanAddress_;
token1 = dragonAddress_;
amount0 = initialLiquidityAmount;
amount1 = initialLiquidityAmount;
if (dragonAddress_ < titanAddress_) {
token0 = dragonAddress_;
token1 = titanAddress_;
}
}
/**
* @notice Creates a liquidity pool with a preset square root price ratio.
* @dev This function initializes a Uniswap V3 pool with the specified initial liquidity amount.
* @param initialLiquidityAmount The amount of liquidity to use for initializing the pool.
*/
function _createPool(uint256 initialLiquidityAmount) private {
(address token0, address token1, , ) = _getTokenConfig(
initialLiquidityAmount
);
INonfungiblePositionManager manager = INonfungiblePositionManager(
UNI_NONFUNGIBLEPOSITIONMANAGER
);
dragonTitanPoolAddress = manager.createAndInitializePoolIfNecessary(
token0,
token1,
FEE_TIER,
INITIAL_SQRT_PRICE_TITANX_DRAGONX
);
// Increase cardinality for observations enabling TWAP
IUniswapV3Pool(dragonTitanPoolAddress)
.increaseObservationCardinalityNext(100);
}
/**
* @notice Mints a full range liquidity provider (LP) token in the Uniswap V3 pool.
* @dev This function mints an LP token with the full price range in the Uniswap V3 pool.
* @param initialLiquidityAmount The amount of liquidity to be used for minting the position.
*/
function _mintInitialPosition(uint256 initialLiquidityAmount) private {
INonfungiblePositionManager manager = INonfungiblePositionManager(
UNI_NONFUNGIBLEPOSITIONMANAGER
);
(
address token0,
address token1,
uint256 amount0Desired,
uint256 amount1Desired
) = _getTokenConfig(initialLiquidityAmount);
INonfungiblePositionManager.MintParams
memory params = INonfungiblePositionManager.MintParams({
token0: token0,
token1: token1,
fee: FEE_TIER,
tickLower: MIN_TICK,
tickUpper: MAX_TICK,
amount0Desired: amount0Desired,
amount1Desired: amount1Desired,
amount0Min: (amount0Desired * 90) / 100,
amount1Min: (amount1Desired * 90) / 100,
recipient: address(this),
deadline: block.timestamp + 600
});
(uint256 tokenId, uint256 liquidity, , ) = manager.mint(params);
_tokenInfo.tokenId = uint80(tokenId);
_tokenInfo.liquidity = uint128(liquidity);
_tokenInfo.tickLower = MIN_TICK;
_tokenInfo.tickUpper = MAX_TICK;
}
/**
* @notice Collects liquidity pool fees from the Uniswap V3 pool.
* @dev This function calls the Uniswap V3 `collect` function to retrieve LP fees.
* @return amount0 The amount of `token0` collected as fees.
* @return amount1 The amount of `token1` collected as fees.
*/
function _collectFees() private returns (uint256 amount0, uint256 amount1) {
INonfungiblePositionManager manager = INonfungiblePositionManager(
UNI_NONFUNGIBLEPOSITIONMANAGER
);
INonfungiblePositionManager.CollectParams
memory params = INonfungiblePositionManager.CollectParams(
_tokenInfo.tokenId,
address(this),
type(uint128).max,
type(uint128).max
);
(amount0, amount1) = manager.collect(params);
}
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity 0.8.20;
// OpenZeppelin
import "@openzeppelin/contracts/token/ERC20/ERC20.sol";
import "@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
import "@openzeppelin/contracts/utils/Address.sol";
import "@openzeppelin/contracts/utils/Create2.sol";
import "@openzeppelin/contracts/access/Ownable2Step.sol";
import "@openzeppelin/contracts/utils/ReentrancyGuard.sol";
// Library
import "./lib/DragonStake.sol";
import "./lib/Constants.sol";
import "./lib/Types.sol";
import "./lib/interfaces/ITitanX.sol";
/**
* @title The DragonX Contranct
* @author The DragonX devs
*/
contract DragonX is ERC20, Ownable2Step, ReentrancyGuard {
using SafeERC20 for IERC20;
using SafeERC20 for ITitanX;
// -----------------------------------------
// Type declarations
// -----------------------------------------
// -----------------------------------------
// State variables
// -----------------------------------------
/**
* @notice The TitanX buy contract address.
* Set at runtime, this address allows for upgrading the buy contract version.
*/
address public titanBuyAddress;
/**
* @notice The DragonX buy and burn contract address.
* Set at runtime, this allows for upgrading the DragonX buy and burn contract.
*/
address public dragonBuyAndBurnAddress;
/**
* @notice The start time of the mint phase, expressed in UTC seconds.
* Indicates when the minting phase for tokens begins.
*/
uint256 public mintPhaseBegin;
/**
* @notice The end time of the mint phase, expressed in UTC seconds.
* Indicates when the minting phase for tokens ends.
*/
uint256 public mintPhaseEnd;
/**
* @notice mint ratios from launch for 84 days (12 weeks)
*/
uint256 public constant mintRatioWeekOne = BASIS;
uint256 public constant mintRatioWeekTwo = BASIS;
uint256 public constant mintRatioWeekThree = 9500;
uint256 public constant mintRatioWeekFour = 9000;
uint256 public constant mintRatioWeekFive = 8500;
uint256 public constant mintRatioWeekSix = 8000;
uint256 public constant mintRatioWeekSeven = 7500;
uint256 public constant mintRatioWeekEight = 7000;
uint256 public constant mintRatioWeekNine = 6500;
uint256 public constant mintRatioWeekTen = 6000;
uint256 public constant mintRatioWeekEleven = 5500;
uint256 public constant mintRatioWeekTwelve = 5000;
/**
* @notice The time when it's possible to open a new TitanX stake after the cooldown.
* This cooldown period controls the frequency of new stakes being initiated.
*/
uint256 public nextStakeTs;
/**
* @notice The number of DragonStake contracts that have been deployed.
* Tracks how many DragonStake contracts exist within the system.
*/
uint256 public numDragonStakeContracts;
/**
* @notice The address of the currently active DragonStake contract instance.
* This contract is used for initiating new TitanX stakes.
*/
address public activeDragonStakeContract;
/**
* @notice A mapping from an ID to a deployed instance of the DragonStake contract.
* The index starts at zero. Use a loop to iterate through instances, e.g., for(uint256 idx = 0; idx < numDragonStakeContracts; idx++).
*/
mapping(uint256 => address) public dragonStakeContracts;
/**
* @notice The amount of TitanX currently held by this contract and not used in stakes.
* Represents the reserve of TitanX tokens that are available but not currently staked.
*/
uint256 public vault;
/**
* @notice The total amount of Titan staked by DragonX
*/
uint256 public totalTitanStaked;
/**
* @notice The total amount of Titan unstaked by DragonX
*/
uint256 public totalTitanUnstaked;
/**
* @notice The total amount of ETH claimed by DragonX
*/
uint256 public totalEthClaimed;
/**
* Indicates that the initial liquidity has been minted
*/
InitialLiquidityMinted public initalLiquidityMinted;
/**
* @dev Mapping of amounts allocated to the genesis address held by this contract.
* - address(0): Represents the ETH allocated.
* - address(TitanX): Represents the TitanX tokens allocated.
* - address(this): Represents the DragonX tokens allocated.
*/
mapping(address => uint256) private _genesisVault;
/**
* @dev Mapping of address to bool indicating if an address is allowed to send ETH
* to DragonX limiting EOA addresses from accidently sending ETH to DragonX
*/
mapping(address => bool) private _receiveEthAllowlist;
/**
* @dev Mapping of address to bool indicating if an address is a DragonStake instance
*/
mapping(address => bool) private _dragonStakeAllowlist;
// -----------------------------------------
// Events
// -----------------------------------------
/**
* @dev Event emitted when a new Dragon stake instance is created.
* @param stakeContractId Unique identifier of the stake contract.
* @param stakeContractAddress Address of the newly created stake contract.
*/
event DragonStakeInstanceCreated(
uint256 indexed stakeContractId,
address indexed stakeContractAddress
);
/**
* @notice Emitted when staking rewards are claimed.
* @param caller The address of the caller who initiated the transaction.
* @param totalClaimed The total amount of ETH claimed.
* @param titanBuy Amount transfered to TitanBuy.
* @param dragonBuyAndBurn Amount transfered to DragonBuyAndBurn
* @param genesis Amount accounted to genesis
* @param incentiveFee Incentive see send to caller
* (this might include the incentice for calling triggerPayouts on TitanX)
*/
event Claimed(
address indexed caller,
uint256 indexed totalClaimed,
uint256 titanBuy,
uint256 dragonBuyAndBurn,
uint256 genesis,
uint256 incentiveFee
);
/**
* @notice Emitted when a new TitanX stake is opened by Dragonx
* @param dragonStakeAddress The DragonStake instance used for this stake
* @param amount The amount staked
*/
event TitanStakeStarted(address indexed dragonStakeAddress, uint256 amount);
/**
* @notice Emitted when TitanX stakes are ended by Dragonx
* @param dragonStakeAddress The DragonStake instance used for this action
* @param amount The amount unstaked
*/
event TitanStakesEnded(address indexed dragonStakeAddress, uint256 amount);
// -----------------------------------------
// Errors
// -----------------------------------------
/**
* @dev Error emitted when a user tries to mint but the minting phase has not started.
* This prevents actions related to minting before the official commencement of the minting period.
*/
error MintingNotYetActive();
/**
* @dev Error when a user tries to mint but the minting phase has ended.
* This ensures minting operations are restricted to the designated minting timeframe.
*/
error MintingPeriodOver();
/**
* @dev Emitted when a user tries to mint but the TitanX allowance for this contract is too low.
* Indicates that the contract does not have enough TitanX tokens allocated to it for the minting operation.
*/
error InsufficientTitanXAllowance();
/**
* @dev Emitted when a user tries to mint without having enough TitanX tokens.
* This ensures that users have a sufficient balance of TitanX tokens to perform the minting operation.
*/
error InsufficientTitanXBalance();
/**
* @dev Error emitted when the stake function is currently in the cooldown period and cannot be called.
* This enforces a waiting period before the stake function can be executed again.
*/
error CooldownPeriodActive();
/**
* @dev Emitted when no additional stakes can be opened.
* This is triggered when the maximum limit of open stakes is reached.
*/
error NoAdditionalStakesAllowed();
/**
* @dev Error emitted when there is no ETH claimable by the function caller.
* This ensures that the claim operation is only performed when there is ETH available to be claimed.
*/
error NoEthClaimable();
/**
* @dev Error emitted when there are no tokens available to stake.
* This ensures that the staking operation is only executed when there are tokens to be staked.
*/
error NoTokensToStake();
/**
* @dev Error emitted when there is no need for creating a new Dragon stake instance.
* This occurs when attempting to create a redundant Dragon stake instance.
*/
error NoNeedForNewDragonStakeInstance();
/**
* @dev Error emitted when an invalid address is given to a function.
* This occurs when the genesis address manages an address and passes address(0) by accident.
*/
error InvalidAddress();
/**
* @dev Error emitted when a user attempts to mint but the initial liquidity has net yet been mined
*/
error LiquidityNotMintedYet();
/**
* @dev Thrown when the function caller is not authorized or expected.
*/
error InvalidCaller();
// -----------------------------------------
// Modifiers
// -----------------------------------------
/**
* @dev Modifier to restrict function access to allowed DragonStake contracts.
*
* This modifier ensures that the function can only be called by addresses that are
* present in the `_dragonStakeAllowlist`. If the calling address is not on the allowlist,
* the transaction will revert with the message "not allowed".
* @notice Use this modifier to restrict function access to specific addresses only.
*/
modifier onlyDragonStake() {
require(_dragonStakeAllowlist[_msgSender()], "not allowed");
_;
}
// -----------------------------------------
// Constructor
// -----------------------------------------
/**
* @notice Constructor for the DragonX ERC20 Token Contract.
* @dev Initializes the contract, sets up the minting phase, and deploys the first DragonStake instance.
* - Inherits from ERC20 and sets token name to "DragonX" and symbol to "DRAGONX".
* - Calculates and sets the start and end times for the minting phase based on current time.
* - Sets the time for the next restake opportunity.
* - Deploys the first DragonStake contract instance.
* - Transfers ownership to contract deployer.
* - Set the initial TitanBuy and DragonBuyAndBurn contract addresses.
* @param titanBuyAddress_ The address of the TitanBuy contract instance.
* @param dragonBuyAndBurnAdddress_ The address of the DragonBuyAndBurn contract instance.
*/
constructor(
address titanBuyAddress_,
address dragonBuyAndBurnAdddress_
) ERC20("DragonX", "DRAGONX") Ownable(msg.sender) {
if (titanBuyAddress_ == address(0)) {
revert InvalidAddress();
}
if (dragonBuyAndBurnAdddress_ == address(0)) {
revert InvalidAddress();
}
// Deploy stake contract instance setting DragonX as its owner
_deployDragonStakeInstance();
// Set contract addresses
titanBuyAddress = titanBuyAddress_;
dragonBuyAndBurnAddress = dragonBuyAndBurnAdddress_;
// set other states
initalLiquidityMinted = InitialLiquidityMinted.No;
// Allow TitanX to send ETH to DragonX (incentive fee)
_receiveEthAllowlist[TITANX_ADDRESS] = true;
}
// -----------------------------------------
// Receive function
// -----------------------------------------
/**
* @dev Receive function to handle plain Ether transfers.
* Reverts if the sender is not one of the DragonStake contracts.
*/
receive() external payable {
require(_receiveEthAllowlist[msg.sender], "Sender not authorized");
}
// -----------------------------------------
// Fallback function
// -----------------------------------------
/**
* @dev Fallback function to handle non-function calls or Ether transfers if receive() doesn't exist.
* Always revert
*/
fallback() external {
revert("Fallback triggered");
}
// -----------------------------------------
// External functions
// -----------------------------------------
/**
* This function enables the minting of DragonX tokens in exchange for TitanX.
* Users can transfer TitanX to the DragonX contract to mint an equivalent amount of DragonX tokens.
* The minting process is available only during a specified time frame.
* When minting, 8% of the total minted DragonX supply and 8% of the TitanX used for minting
* are allocated to the genesis address. The remaining TitanX is retained within the contract.
* Minting starts once the initial liquidity has been minted (indicating all other contracts)
* have been deployed and initialized successfully by the genesis address.
* @param amount The amount of DragonX tokens to be minted.
*/
function mint(uint256 amount) external {
// Cache state variables
uint256 mintPhaseBegin_ = mintPhaseBegin;
// To avoid being frontrun, minting creating DragonX tokens will only
// be able once the inital liqudiity ahs been created
if (initalLiquidityMinted != InitialLiquidityMinted.Yes) {
revert LiquidityNotMintedYet();
}
// Check if the minting phase is currently active
if (block.timestamp < mintPhaseBegin_) {
revert MintingNotYetActive();
}
if (block.timestamp > mintPhaseEnd) {
revert MintingPeriodOver();
}
ITitanX titanX = ITitanX(TITANX_ADDRESS);
// Ensure the user has sufficient TitanX and has granted enough allowance
if (titanX.allowance(_msgSender(), address(this)) < amount) {
revert InsufficientTitanXAllowance();
}
if (titanX.balanceOf(_msgSender()) < amount) {
revert InsufficientTitanXBalance();
}
// Transfer TitanX from the user to this contract
titanX.safeTransferFrom(_msgSender(), address(this), amount);
uint256 ratio;
if (block.timestamp < mintPhaseBegin_ + 7 days) {
// week 1
ratio = mintRatioWeekOne;
} else if (block.timestamp < mintPhaseBegin_ + 14 days) {
// week 2
ratio = mintRatioWeekTwo;
} else if (block.timestamp < mintPhaseBegin_ + 21 days) {
// week 3
ratio = mintRatioWeekThree;
} else if (block.timestamp < mintPhaseBegin_ + 28 days) {
// week 4
ratio = mintRatioWeekFour;
} else if (block.timestamp < mintPhaseBegin_ + 35 days) {
// week 5
ratio = mintRatioWeekFive;
} else if (block.timestamp < mintPhaseBegin_ + 42 days) {
// week 6
ratio = mintRatioWeekSix;
} else if (block.timestamp < mintPhaseBegin_ + 49 days) {
// week 7
ratio = mintRatioWeekSeven;
} else if (block.timestamp < mintPhaseBegin_ + 56 days) {
// week 8
ratio = mintRatioWeekEight;
} else if (block.timestamp < mintPhaseBegin_ + 63 days) {
// weeek 9
ratio = mintRatioWeekNine;
} else if (block.timestamp < mintPhaseBegin_ + 70 days) {
// week 10
ratio = mintRatioWeekTen;
} else if (block.timestamp < mintPhaseBegin_ + 77 days) {
// week 11
ratio = mintRatioWeekEleven;
} else {
// week 12
ratio = mintRatioWeekTwelve;
}
// calculate the amount to mint
uint256 mintAmount = (amount * ratio) / BASIS;
// Mint an equivalent amount of DragonX tokens
_mint(_msgSender(), mintAmount);
// Calculate and mint the genesis 8% share (of total supply minted)
uint256 dragonGenesisShare = (mintAmount * 800) / BASIS;
_mint(address(this), dragonGenesisShare);
// Allocate 8% of DragonX to the genesis vault
_genesisVault[address(this)] += dragonGenesisShare;
// Allocate 8% of total TitanX send to DragonX to genesis vault
uint256 titanGenesisShare = (amount * 800) / BASIS;
_genesisVault[address(titanX)] += titanGenesisShare;
// Retain the remaining TitanX within the contract's vault
vault += amount - titanGenesisShare;
}
/**
* This function allows users to open a new TitanX stake through the DragonX contract.
* Each stake runs for the maximum duration, and upon completion, the TitanX is burned.
*
* A stake can be opened when either of the following conditions is met:
* 1. The vault has sufficient TitanX tokens to achieve the maximum 'bigger pays better' bonus.
* 2. If the vault doesn't have enough tokens, the function can be invoked after a cooldown
* period of 1 week. This delay allows the accumulation of sufficient TitanX to gain
* the 'bigger pays better' bonus.
*/
function stake() external {
DragonStake dragonStake = DragonStake(
payable(activeDragonStakeContract)
);
if (dragonStake.openedStakes() >= TITANX_MAX_STAKE_PER_WALLET) {
revert NoAdditionalStakesAllowed();
}
updateVault();
// Cache state variables
uint256 vault_ = vault;
if (vault_ == 0) {
revert NoTokensToStake();
}
if (vault_ >= TITANX_BPB_MAX_TITAN) {
// Start a stake using the currently active DragonStake instance
_startStake();
// Schedule the next possible stake after a 7-day cooldown period
nextStakeTs = block.timestamp + 7 days;
} else {
// If the vault lacks sufficient TitanX, a stake can be opened only
// after a cooldown period of 7 days to allow for token accumulation.
if (block.timestamp < nextStakeTs) {
revert CooldownPeriodActive();
}
// Start a new stake using the currently active DragonStake instance
_startStake();
// Schedule the next possible stake after a 7-day cooldown period.
nextStakeTs = block.timestamp + 7 days;
}
}
/**
* Claim Function for ETH Rewards
* This function claims ETH rewards based on TitanX stakes and allocates them according to predefined shares.
* @dev The function performs the following operations:
* 1. Retrieves the claimable ETH amount from TitanX stakes.
* 2. Validates if there is any ETH to claim, and reverts if none is available.
* 3. Claims the available ETH payouts.
* 4. Calculates and distributes the ETH according to predefined shares:
* - 8% is allocated as a genesis share.
* - 3% is sent as a tip to the caller of the function.
* - 44.5% is used for buying and burning DragonX tokens.
* - The remaining 44.5% is used for buying and burning TitanX tokens.
* 5. Updates the respective vaults with their allocated shares.
* 6. Sends the tip to the caller of the function.
*/
function claim() external nonReentrant returns (uint256 claimedAmount) {
//prevent contract accounts (bots) from calling this function
if (msg.sender != tx.origin) {
revert InvalidCaller();
}
// Trigger payouts on TitanX
// This potentially sends an incentive fee to DragonX
// The incentive fee is transparently forwarded to the caller
uint256 ethBalanceBefore = address(this).balance;
ITitanX(TITANX_ADDRESS).triggerPayouts();
uint256 triggerPayoutsIncentiveFee = address(this).balance -
ethBalanceBefore;
// Retrieve the total claimable ETH amount.
for (uint256 idx; idx < numDragonStakeContracts; idx++) {
DragonStake dragonStake = DragonStake(
payable(dragonStakeContracts[idx])
);
claimedAmount += dragonStake.claim();
}
// Check if there is any claimable ETH, revert if none.
if (claimedAmount == 0) {
revert NoEthClaimable();
}
// Calculate the genesis share (8%).
uint256 genesisShare = (claimedAmount * 800) / BASIS;
// Calculate the tip for the caller (3%).
uint256 incentiveFee = (claimedAmount * INCENTIVE_FEE) / BASIS;
// Calculate the Buy and Burn share for DragonX (44.5%).
uint256 buyAndBurnDragonX = (claimedAmount * 4450) / BASIS;
// Calculate the Buy and Burn share for TitanX (remainder, ~44.5%).
uint256 buyTitanX = claimedAmount -
genesisShare -
buyAndBurnDragonX -
incentiveFee;
// Update the genesis vault with the genesis share.
_genesisVault[address(0)] += genesisShare;
// Send to the Buy and Burn contract for DragonX.
Address.sendValue(payable(dragonBuyAndBurnAddress), buyAndBurnDragonX);
// Send to the buy contract for TitanX.
Address.sendValue(payable(titanBuyAddress), buyTitanX);
// Send the tip to the function caller.
address sender = _msgSender();
Address.sendValue(
payable(sender),
incentiveFee + triggerPayoutsIncentiveFee
);
// update state
totalEthClaimed += claimedAmount;
// Emit event
emit Claimed(
sender,
claimedAmount,
buyTitanX,
buyAndBurnDragonX,
genesisShare,
incentiveFee + triggerPayoutsIncentiveFee
);
}
/**
* @notice Factory function to deploy a new DragonStake contract instance.
* @dev This function deploys a new DragonStake instance if the number of open stakes in the current
* active instance exceeds the maximum allowed per wallet.
* It reverts with NoNeedForNewDragonStakeInstance if the condition is not met.
* Only callable externally.
*/
function deployNewDragonStakeInstance() external {
DragonStake dragonStake = DragonStake(
payable(activeDragonStakeContract)
);
// Check if the maximum number of stakes per wallet has been reached
if (dragonStake.openedStakes() < TITANX_MAX_STAKE_PER_WALLET) {
revert NoNeedForNewDragonStakeInstance();
}
// Deploy a new DragonStake instance
_deployDragonStakeInstance();
}
/**
* @notice Mints the initial liquidity for the DragonX token.
* @dev This function mints a specified amount of tokens and sets up the minting phases.
* It can only be called once by the authorized address.
* @param amount The amount of DragonX tokens to be minted for initial liquidity.
*/
function mintInitialLiquidity(uint256 amount) external {
// Cache state variables
address dragonBuyAndBurnAddress_ = dragonBuyAndBurnAddress;
// Verify that the caller is authorized to mint initial liquidity
require(msg.sender == dragonBuyAndBurnAddress_, "not authorized");
// Ensure that initial liquidity hasn't been minted before
require(
initalLiquidityMinted == InitialLiquidityMinted.No,
"already minted"
);
// Mint the specified amount of DragonX tokens to the authorized address
_mint(dragonBuyAndBurnAddress_, amount);
// Update the state to reflect that initial liquidity has been minted
initalLiquidityMinted = InitialLiquidityMinted.Yes;
// Set up the minting phase timings
uint256 currentTimestamp = block.timestamp;
uint256 secondsUntilMidnight = 86400 - (currentTimestamp % 86400);
// The mint phase is open for 84 days (12 weeks) and begins at midnight
// once contracts are fully set up
uint256 mintPhaseBegin_ = currentTimestamp + secondsUntilMidnight;
// Update storage
mintPhaseBegin = mintPhaseBegin_;
// Set mint phase end
mintPhaseEnd = mintPhaseBegin_ + 84 days;
// Allow the first stake after 7 days of mint-phase begin
nextStakeTs = mintPhaseBegin_ + 7 days;
}
/**
* Token Burn Function
* @notice Allows a token holder to burn all of their tokens.
* @dev Burns the entire token balance of the caller. This function calls `_burn`
* with the caller's address and their full token balance.
* This function can be called by any token holder wishing to burn their tokens.
* Tokens burned are permanently removed from the circulation.
* @custom:warning WARNING: This function will irreversibly burn all tokens in the caller's account.
* Ensure you understand the consequences before calling.
*/
function burn() external {
address sender = _msgSender();
_burn(sender, balanceOf(sender));
}
/**
* @notice Calculates the total number of stakes opened across all DragonStake contract instances.
* @dev This function iterates over all the DragonStake contract instances recorded in the contract:
* 1. For each DragonStake contract, it gets a reference to the contract instance.
* 2. It then calls the `openedStakes` function on each instance to get the number of opened stakes.
* 3. These values are summed up to calculate the total number of stakes opened across all instances.
* @return totalStakes The total number of stakes opened across all DragonStake contract instances.
*/
function totalStakesOpened() external view returns (uint256 totalStakes) {
// Iterate over all DragonStake contract instances
for (uint256 idx; idx < numDragonStakeContracts; idx++) {
// Get a reference to each DragonStake contract
DragonStake dragonStake = DragonStake(
payable(dragonStakeContracts[idx])
);
// Add the stakes opened by this DragonStake instance
totalStakes += dragonStake.openedStakes();
}
}
/**
* @dev Calculate the incentive fee a user will receive for calling the claim function.
* This function computes the fee based on the total amount of Ethereum claimable
* and a predefined incentive fee rate.
*
* @notice Used to determine the fee awarded for claiming Ethereum.
*
* @return fee The calculated incentive fee, represented as a uint256.
* This value is calculated by taking the product of `totalEthClaimable()` and
* `INCENTIVE_FEE`, then dividing by `BASIS` to normalize the fee calculation.
*/
function incentiveFeeForClaim() external view returns (uint256 fee) {
fee = (totalEthClaimable() * INCENTIVE_FEE) / BASIS;
}
/**
* @dev Checks all DragonStake contract instances to determine if any stake has reached maturity.
* Iterates through each DragonStake contract instance and checks for stakes that have reached maturity.
* If a stake has reached maturity in a particular instance, it returns true along with the instance's address and the ID.
* If no stakes have reached maturity in any instance, it returns false and a zero address and zero for the ID.
* @return hasStakesToEnd A boolean indicating if there is at least one stake that has reached maturity.
* @return instanceAddress The address of the DragonStake contract instance that has a stake which reached maturity.
* @return sId The ID of the stake which reached maturity
* Returns zero address if no such instance is found.
* @notice This function is used to identify if and where stakes have reached maturity across multiple contract instances.
*/
function stakeReachedMaturity()
external
view
returns (bool hasStakesToEnd, address instanceAddress, uint256 sId)
{
// Iterate over all DragonStake contract instances
for (uint256 idx; idx < numDragonStakeContracts; idx++) {
address instance = dragonStakeContracts[idx];
// Get a reference to each DragonStake contract
DragonStake dragonStake = DragonStake(payable(instance));
(bool reachedMaturity, uint256 id) = dragonStake
.stakeReachedMaturity();
// Exit if this instance contains a stake that reached maturity
if (reachedMaturity) {
return (true, instance, id);
}
}
return (false, address(0), 0);
}
/**
* @dev Sets the address used for buying and burning DRAGONX tokens.
* @notice This function can only be called by the contract owner.
* @param dragonBuyAndBurn The address to be set for the DRAGONX buy and burn operation.
* If this address is the zero address, the transaction is reverted.
* @custom:throws InvalidAddress if the provided address is the zero address.
*/
function setDragonBuyAndBurnAddress(
address dragonBuyAndBurn
) external onlyOwner {
if (dragonBuyAndBurn == address(0)) {
revert InvalidAddress();
}
dragonBuyAndBurnAddress = dragonBuyAndBurn;
}
/**
* @dev Sets the address used for buying TITANX tokens.
* @notice This function can only be called by the contract owner.
* @param titanBuy The address to be set for the TITANX buy operation.
* If this address is the zero address, the transaction is reverted.
* @custom:throws InvalidAddress if the provided address is the zero address.
*/
function setTitanBuyAddress(address titanBuy) external onlyOwner {
if (titanBuy == address(0)) {
revert InvalidAddress();
}
titanBuyAddress = titanBuy;
}
/**
* @notice Transfers the accumulated balance of a specified asset from the Genesis Vault to the owner.
* @dev This function allows the contract owner to claim assets accumulated in the Genesis Vault. It supports both Ether and ERC20 tokens.
* The function performs the following operations:
* 1. Retrieves the balance of the specified asset from the `_genesisVault`.
* 2. Sets the balance of the asset in the vault to zero, effectively resetting it.
* 3. Checks that the retrieved balance is greater than zero, and reverts if it's not.
* 4. If the asset is Ether (denoted by `asset` being the zero address), it transfers the Ether to the owner using `Address.sendValue`.
* 5. If the asset is an ERC20 token, it transfers the token amount to the owner using `safeTransfer` from the ERC20 token's contract.
* @param asset The address of the asset to be claimed. A zero address indicates Ether, and a non-zero address indicates an ERC20 token.
*/
function claimGenesis(address asset) external onlyOwner {
uint256 balance = _genesisVault[asset];
_genesisVault[asset] = 0;
require(balance > 0, "no balance");
if (asset == address(0)) {
Address.sendValue(payable(owner()), balance);
} else {
IERC20 erc20 = IERC20(asset);
erc20.safeTransfer(owner(), balance);
}
}
/**
* @dev Updates the state when a TitanX stake has ended and the tokens are unstaked.
*
* This function should be called after unstaking TitanX tokens. It updates the vault
* and the total amount of TitanX tokens that have been unstaked. This function can only
* be called by an address that is allowed to end stakes (enforced by the `onlyDragonStake` modifier).
*
* @param amountUnstaked The amount of TitanX tokens that have been unstaked.
* @notice This function is callable externally but restricted to allowed addresses (DragonStake contracts).
* @notice It emits the `TitanStakesEnded` event after updating the total unstaked amount.
*/
function stakeEnded(uint256 amountUnstaked) external onlyDragonStake {
// Update vault (TitanX is transfered to DragonX)
updateVault();
// Update state
totalTitanUnstaked += amountUnstaked;
// Emit event
emit TitanStakesEnded(_msgSender(), amountUnstaked);
}
// -----------------------------------------
// Public functions
// -----------------------------------------
/**
* @notice Updates the vault balance based on the current TITANX token balance.
* @dev This function calculates the vault balance by subtracting the initial
* balance of TITANX tokens stored in `_genesisVault` from the current balance of
* TITANX tokens held by this contract.
* Steps involved in the function:
* 1. Create an instance of the IERC20 interface for the TITANX token.
* 2. Fetch the current TITANX token balance of this contract.
* 3. Subtract the initial TITANX token balance (recorded in `_genesisVault`)
* from the current balance.
* 4. Update the `vault` variable with the resulting value.
* The `vault` variable represents the net amount of TITANX tokens that have
* been accumulated in this contract since its inception (excluding the initial amount).
* This function should be called to reflect the latest state of the vault balance.
*/
function updateVault() public {
IERC20 titanX = IERC20(TITANX_ADDRESS);
uint256 balance = titanX.balanceOf(address(this));
vault = balance - _genesisVault[address(titanX)];
}
/**
* @notice Calculates the total amount of ETH claimable from all DragonStake contract instances.
* @dev Iterates through all deployed DragonStake contract instances and sums up the ETH claimable from each.
* This function is read-only and can be called externally.
* @return claimable The total amount of ETH claimable across all DragonStake contract instances.
*/
function totalEthClaimable() public view returns (uint256 claimable) {
// Iterate over all DragonStake contract instances
for (uint256 idx; idx < numDragonStakeContracts; idx++) {
// Get a reference to each DragonStake contract
DragonStake dragonStake = DragonStake(
payable(dragonStakeContracts[idx])
);
// Add the claimable ETH from each DragonStake to the total
claimable += dragonStake.totalEthClaimable();
}
}
// -----------------------------------------
// Internal functions
// -----------------------------------------
// -----------------------------------------
// Private functions
// -----------------------------------------
/**
* @dev Private function to deploy a DragonStake contract instance.
* It deploys a new DragonStake contract using create2 for deterministic addresses,
* and updates the activeDragonStakeContract and dragonStakeContracts mapping.
* An event DragonStakeInstanceCreated is emitted after successful deployment.
* This function is called by the deployNewDragonStakeInstance function.
*/
function _deployDragonStakeInstance() private {
// Deploy an instance of dragon staking contract
bytes memory bytecode = type(DragonStake).creationCode;
uint256 stakeContractId = numDragonStakeContracts;
// Create a unique salt for deployment
bytes32 salt = keccak256(
abi.encodePacked(address(this), stakeContractId)
);
// Deploy a new DragonStake contract instance
address newDragonStakeContract = Create2.deploy(0, salt, bytecode);
// Set new contract as active
activeDragonStakeContract = newDragonStakeContract;
// Update storage
dragonStakeContracts[stakeContractId] = newDragonStakeContract;
// Allow the DragonStake instance to send ETH to DragonX
_receiveEthAllowlist[newDragonStakeContract] = true;
// For functions limited to DragonStake
_dragonStakeAllowlist[newDragonStakeContract] = true;
// Emit an event to track the creation of a new stake contract
emit DragonStakeInstanceCreated(
stakeContractId,
newDragonStakeContract
);
// Increment the counter for DragonStake contracts
numDragonStakeContracts += 1;
}
/**
* @dev Private function to start a new stake using the currently active DragonStake instance.
* It transfers all TitanX tokens held by this contract to the active DragonStake instance
* and then initiates a new stake with the total amount transferred.
* This function is meant to be called internally by other contract functions.
*/
function _startStake() private {
// Cache state variables
address activeDragonStakeContract_ = activeDragonStakeContract;
// Initialize TitanX contract reference
ITitanX titanX = ITitanX(TITANX_ADDRESS);
DragonStake dragonStake = DragonStake(
payable(activeDragonStakeContract_)
);
uint256 amountToStake = vault;
vault = 0;
// Transfer TitanX tokens to the active DragonStake contract
titanX.safeTransfer(activeDragonStakeContract_, amountToStake);
// Open a new stake with the total amount transferred
dragonStake.stake();
// Update states
totalTitanStaked += amountToStake;
// Emit event
emit TitanStakeStarted(activeDragonStakeContract_, amountToStake);
}
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity 0.8.20;
/* Common */
uint256 constant BASIS = 10_000;
uint256 constant SECONDS_IN_DAY = 86400;
uint256 constant SCALING_FACTOR_1e3 = 1e3;
uint256 constant SCALING_FACTOR_1e6 = 1e6;
uint256 constant SCALING_FACTOR_1e7 = 1e7;
uint256 constant SCALING_FACTOR_1e11 = 1e11;
uint256 constant SCALING_FACTOR_1e18 = 1e18;
/* TitanX staking */
uint256 constant TITANX_MAX_STAKE_PER_WALLET = 1000;
uint256 constant TITANX_MIN_STAKE_LENGTH = 28;
uint256 constant TITANX_MAX_STAKE_LENGTH = 3500;
/* TitanX Stake Longer Pays Better bonus */
uint256 constant TITANX_LPB_MAX_DAYS = 2888;
uint256 constant TITANX_LPB_PER_PERCENT = 825;
uint256 constant TITANX_BPB_MAX_TITAN = 100 * 1e9 * SCALING_FACTOR_1e18; //100 billion
uint256 constant TITANX_BPB_PER_PERCENT = 1_250_000_000_000 *
SCALING_FACTOR_1e18;
/* Addresses */
address constant TITANX_ADDRESS = 0xF19308F923582A6f7c465e5CE7a9Dc1BEC6665B1;
address constant WETH9_ADDRESS = 0xC02aaA39b223FE8D0A0e5C4F27eAD9083C756Cc2;
address constant UNI_SWAP_ROUTER = 0xE592427A0AEce92De3Edee1F18E0157C05861564;
address constant UNI_FACTORY = 0x1F98431c8aD98523631AE4a59f267346ea31F984;
address constant UNI_NONFUNGIBLEPOSITIONMANAGER = 0xC36442b4a4522E871399CD717aBDD847Ab11FE88;
/* Uniswap Liquidity Pools (DragonX, TitanX) */
uint24 constant FEE_TIER = 10000;
int24 constant MIN_TICK = -887200;
int24 constant MAX_TICK = 887200;
uint160 constant INITIAL_SQRT_PRICE_TITANX_DRAGONX = 79228162514264337593543950336; // 1:1
/* DragonX Constants */
uint256 constant INCENTIVE_FEE = 300;
// SPDX-License-Identifier: UNLICENSED
pragma solidity 0.8.20;
// OpenZeppelin
import "@openzeppelin/contracts/token/ERC20/IERC20.sol";
import "@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
import "@openzeppelin/contracts/utils/Address.sol";
import "@openzeppelin/contracts/access/Ownable.sol";
// Library
import "./interfaces/ITitanX.sol";
import "../DragonX.sol";
import "./Constants.sol";
/**
* @title A contract managed and deployed by DragonX to initialise the maximum amount of stakes per address
* @author The DragonX devs
* @notice This contract is instantiated by DragonX and will not be deployed as a separate entity
*/
contract DragonStake is Ownable {
using SafeERC20 for IERC20;
using SafeERC20 for ITitanX;
// -----------------------------------------
// Type declarations
// -----------------------------------------
// -----------------------------------------
// State variables
// -----------------------------------------
uint256 public openedStakes;
// -----------------------------------------
// Errors
// -----------------------------------------
/**
* @dev Error emitted when a user tries to end a stake but is not mature yet.
*/
error StakeNotMature();
// -----------------------------------------
// Events
// -----------------------------------------
// -----------------------------------------
// Modifiers
// -----------------------------------------
// -----------------------------------------
// Constructor
// -----------------------------------------
constructor() Ownable(msg.sender) {}
// -----------------------------------------
// Receive function
// -----------------------------------------
/**
* @dev Receive function to handle plain Ether transfers.
* Reverts if the sender is not the allowed address.
*/
receive() external payable {
require(msg.sender == TITANX_ADDRESS, "Sender not authorized");
}
// -----------------------------------------
// Fallback function
// -----------------------------------------
/**
* @dev Fallback function to handle non-function calls or Ether transfers if receive() doesn't exist.
* Reverts if the sender is not the allowed address.
*/
fallback() external payable {
revert("Fallback triggered");
}
// -----------------------------------------
// External functions
// -----------------------------------------
/**
* TitanX Staking Function
* @notice Stakes all available TitanX tokens held by this contract.
* @dev Initializes the TitanX contract, calculates the stakable balance, and opens a new stake.
* This function can only be called by the contract owner.
*/
function stake() external onlyOwner {
// Initialize TitanX contract reference
ITitanX titanX = ITitanX(TITANX_ADDRESS);
// Fetch the current balance of TitanX tokens in this contract
uint256 amountToStake = titanX.balanceOf(address(this));
// Initiate staking of the fetched amount for the maximum defined stake length
titanX.startStake(amountToStake, TITANX_MAX_STAKE_LENGTH);
// Increment the count of active stakes
openedStakes += 1;
}
/**
* Claim ETH Rewards from TitanX Staking
* @notice Allows the contract owner to claim accumulated ETH rewards from TitanX staking.
* @dev Retrieves the total claimable ETH amount and, if any, claims it and sends it to the owner's address.
* This function can only be called by the contract owner.
* @return claimable The total amount of ETH claimed.
*/
function claim() external onlyOwner returns (uint256 claimable) {
// Initialize TitanX contract reference
ITitanX titanX = ITitanX(TITANX_ADDRESS);
// Determine the total amount of ETH that can be claimed by this contract
claimable = titanX.getUserETHClaimableTotal(address(this));
// Proceed with claiming if there is any claimable ETH
if (claimable > 0) {
// Claim the available ETH from TitanX
titanX.claimUserAvailableETHPayouts();
// Transfer the claimed ETH to the contract owner
Address.sendValue(payable(owner()), claimable);
}
}
/**
* @dev Ends a stake after it has reached its maturity.
*
* This function interacts with the ITitanX contract to handle stake operations.
* It requires the stake ID (sId) to be valid and within the range of opened stakes.
* If the current block timestamp is greater than or equal to the stake's maturity timestamp,
* the function ends the stake and transfers the unstaked TitanX tokens to the DragonX contract.
* If the stake has not yet matured, the function will revert.
*
* @param sId The ID of the stake to be ended.
* @notice The function is callable externally and interacts with ITitanX and IERC20 contracts.
* @notice It is required that the stake ID is valid and the stake is matured.
* @notice The function will revert if the stake is not matured.
*/
function endStakeAfterMaturity(uint256 sId) external {
ITitanX titanX = ITitanX(TITANX_ADDRESS);
require(sId > 0 && sId <= openedStakes, "invalid ID");
UserStakeInfo memory stakeInfo = titanX.getUserStakeInfo(
address(this),
sId
);
// End stake if matured
if (block.timestamp >= stakeInfo.maturityTs) {
// track TitanX balance
uint256 before = titanX.balanceOf(address(this));
// End the stake
titanX.endStake(sId);
// Send total amount unstaked back to DragonX
uint256 unstaked = titanX.balanceOf(address(this)) - before;
// Transfer TitanX to DragonX
IERC20(TITANX_ADDRESS).safeTransfer(owner(), unstaked);
// Update DragonX
DragonX(payable(owner())).stakeEnded(unstaked);
} else {
revert StakeNotMature();
}
}
/**
* Send TitanX Balance to DragonX
*
* @dev This function transfers any TitanX tokens held by this contract to the owner,
* representing the DragonX account. This is a safety mechanism to handle
* rare situations where TitanX tokens are accidentally sent to this contract or are
* left over from operations like calling `TitanX#endStakeForOthers`.
*
* It's important to note that this function could lead to slight discrepancies in
* DragonX's accounting, specifically in the `totalTitanUnstaked` value - there is
* no way to distinguish between TitanX send to this contract by accident or
* users calling `TitanX#endStakeForOthers`.
*
* @notice Use this function to transfer TitanX tokens from the contract to the DragonX
* owner address in case of accidental transfers or calling `TitanX#endStakeForOthers`
*/
function sendTitanX() external {
IERC20 titanX = IERC20(TITANX_ADDRESS);
// transfer
titanX.safeTransfer(owner(), titanX.balanceOf(address(this)));
// update the vault
DragonX(payable(owner())).updateVault();
}
/**
* @dev Calculates the total amount of Ethereum claimable by the contract.
* Calls `getUserETHClaimableTotal` from the TitanX contract to retrieve the total claimable amount.
* @return claimable The total amount of Ethereum claimable by the contract.
*/
function totalEthClaimable() external view returns (uint256 claimable) {
// Initialize TitanX contract reference
ITitanX titanX = ITitanX(TITANX_ADDRESS);
claimable = titanX.getUserETHClaimableTotal(address(this));
}
/**
* @dev Determines whether any of the stakes have reached their maturity date.
* Iterates through all user stakes and checks if the current block timestamp
* is at or past the stake's maturity timestamp.
* @return A boolean indicating whether at least one stake has reached maturity.
*/
function stakeReachedMaturity() external view returns (bool, uint256) {
ITitanX titanX = ITitanX(TITANX_ADDRESS);
UserStake[] memory stakes = titanX.getUserStakes(address(this));
for (uint256 idx; idx < stakes.length; idx++) {
if (block.timestamp > stakes[idx].stakeInfo.maturityTs) {
return (true, stakes[idx].sId);
}
}
return (false, 0);
}
// -----------------------------------------
// Public functions
// -----------------------------------------
// -----------------------------------------
// Internal functions
// -----------------------------------------
// -----------------------------------------
// Private functions
// -----------------------------------------
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity 0.8.20;
/**
* @notice A subset of the Uniswap Interface to allow
* using latest openzeppelin contracts
*/
interface INonfungiblePositionManager {
// Structs for mint and collect functions
struct MintParams {
address token0;
address token1;
uint24 fee;
int24 tickLower;
int24 tickUpper;
uint256 amount0Desired;
uint256 amount1Desired;
uint256 amount0Min;
uint256 amount1Min;
address recipient;
uint256 deadline;
}
struct CollectParams {
uint256 tokenId;
address recipient;
uint128 amount0Max;
uint128 amount1Max;
}
// Functions
function createAndInitializePoolIfNecessary(
address token0,
address token1,
uint24 fee,
uint160 sqrtPriceX96
) external payable returns (address pool);
function mint(
MintParams calldata params
)
external
payable
returns (
uint256 tokenId,
uint128 liquidity,
uint256 amount0,
uint256 amount1
);
function collect(
CollectParams calldata params
) external payable returns (uint256 amount0, uint256 amount1);
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity 0.8.20;
// OpenZeppelin
import "@openzeppelin/contracts/token/ERC20/IERC20.sol";
// Enum for stake status
enum StakeStatus {
ACTIVE,
ENDED,
BURNED
}
// Struct for user stake information
struct UserStakeInfo {
uint152 titanAmount;
uint128 shares;
uint16 numOfDays;
uint48 stakeStartTs;
uint48 maturityTs;
StakeStatus status;
}
// Struct for user stake
struct UserStake {
uint256 sId;
uint256 globalStakeId;
UserStakeInfo stakeInfo;
}
// Interface for the contract
interface IStakeInfo {
/**
* @notice Get all stake info of a given user address.
* @param user The address of the user to query stake information for.
* @return An array of UserStake structs containing all stake info for the given address.
*/
function getUserStakes(
address user
) external view returns (UserStake[] memory);
/** @notice get stake info with stake id
* @return stakeInfo stake info
*/
function getUserStakeInfo(
address user,
uint256 id
) external view returns (UserStakeInfo memory);
}
/**
* @title The TitanX interface used by DragonX to manages stakes
* @author The DragonX devs
*/
interface ITitanX is IERC20, IStakeInfo {
/**
* @notice Start a new stake
* @param amount The amount of TitanX tokens to stake
* @param numOfDays The length of the stake in days
*/
function startStake(uint256 amount, uint256 numOfDays) external;
/**
* @notice Claims available ETH payouts for a user based on their shares in various cycles.
* @dev This function calculates the total reward from different cycles and transfers it to the caller.
*/
function claimUserAvailableETHPayouts() external;
/**
* @notice Calculates the total ETH claimable by a user for all cycles.
* @dev This function sums up the rewards from various cycles based on user shares.
* @param user The address of the user for whom to calculate the claimable ETH.
* @return reward The total ETH reward claimable by the user.
*/
function getUserETHClaimableTotal(
address user
) external view returns (uint256 reward);
/**
* @notice Allows anyone to sync dailyUpdate manually.
* @dev Function to be called for manually triggering the daily update process.
* This function is public and can be called by any external entity.
*/
function manualDailyUpdate() external;
/**
* @notice Trigger cycle payouts for days 8, 28, 90, 369, 888, including the burn reward cycle 28.
* Payouts can be triggered on or after the maturity day of each cycle (e.g., Cycle8 on day 8).
*/
function triggerPayouts() external;
/**
* @notice Create a new mint
* @param mintPower The power of the mint, ranging from 1 to 100.
* @param numOfDays The duration of the mint, ranging from 1 to 280 days.
*/
function startMint(uint256 mintPower, uint256 numOfDays) external payable;
/**
* @notice Returns current mint cost
* @return currentMintCost The current cost of minting.
*/
function getCurrentMintCost() external view returns (uint256);
/** @notice end a stake
* @param id stake id
*/
function endStake(uint256 id) external;
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity 0.8.20;
// OpenZeppelin
import "@openzeppelin/contracts/token/ERC20/IERC20.sol";
/// @title Interface for WETH9
interface IWETH9 is IERC20 {
/// @notice Deposit ether to get wrapped ether
function deposit() external payable;
/// @notice Withdraw wrapped ether to get ether
function withdraw(uint256) external;
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity 0.8.20;
/**
* A simple enum to indicate of the initial liquidity for DragonX / TitanX pool has been minted
*/
enum InitialLiquidityMinted {
No,
Yes
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity 0.8.20;
// Uniswap
import "@uniswap/v3-core/contracts/interfaces/IUniswapV3Pool.sol";
// OpenZeppelin
import "@openzeppelin/contracts/utils/math/Math.sol";
/**
* @notice Adapted Uniswap V3 OracleLibrary computation to be compliant with Solidity 0.8.x and later.
*
* Documentation for Auditors:
*
* Solidity Version: Updated the Solidity version pragma to ^0.8.0. This change ensures compatibility
* with Solidity version 0.8.x.
*
* Safe Arithmetic Operations: Solidity 0.8.x automatically checks for arithmetic overflows/underflows.
* Therefore, the code no longer needs to use SafeMath library (or similar) for basic arithmetic operations.
* This change simplifies the code and reduces the potential for errors related to manual overflow/underflow checking.
*
* Overflow/Underflow: With the introduction of automatic overflow/underflow checks in Solidity 0.8.x, the code is inherently
* safer and less prone to certain types of arithmetic errors.
*
* Removal of SafeMath Library: Since Solidity 0.8.x handles arithmetic operations safely, the use of SafeMath library
* is omitted in this update.
*
* Git-style diff for the `consult` function:
*
* ```diff
* function consult(address pool, uint32 secondsAgo)
* internal
* view
* returns (int24 arithmeticMeanTick, uint128 harmonicMeanLiquidity)
* {
* require(secondsAgo != 0, 'BP');
*
* uint32[] memory secondsAgos = new uint32[](2);
* secondsAgos[0] = secondsAgo;
* secondsAgos[1] = 0;
*
* (int56[] memory tickCumulatives, uint160[] memory secondsPerLiquidityCumulativeX128s) =
* IUniswapV3Pool(pool).observe(secondsAgos);
*
* int56 tickCumulativesDelta = tickCumulatives[1] - tickCumulatives[0];
* uint160 secondsPerLiquidityCumulativesDelta =
* secondsPerLiquidityCumulativeX128s[1] - secondsPerLiquidityCumulativeX128s[0];
*
* - arithmeticMeanTick = int24(tickCumulativesDelta / secondsAgo);
* + int56 secondsAgoInt56 = int56(uint56(secondsAgo));
* + arithmeticMeanTick = int24(tickCumulativesDelta / secondsAgoInt56);
* // Always round to negative infinity
* - if (tickCumulativesDelta < 0 && (tickCumulativesDelta % secondsAgo != 0)) arithmeticMeanTick--;
* + if (tickCumulativesDelta < 0 && (tickCumulativesDelta % secondsAgoInt56 != 0)) arithmeticMeanTick--;
*
* - uint192 secondsAgoX160 = uint192(secondsAgo) * type(uint160).max;
* + uint192 secondsAgoUint192 = uint192(secondsAgo);
* + uint192 secondsAgoX160 = secondsAgoUint192 * type(uint160).max;
* harmonicMeanLiquidity = uint128(secondsAgoX160 / (uint192(secondsPerLiquidityCumulativesDelta) << 32));
* }
* ```
*/
/// @title Oracle library
/// @notice Provides functions to integrate with V3 pool oracle
library OracleLibrary {
/// @notice Calculates time-weighted means of tick and liquidity for a given Uniswap V3 pool
/// @param pool Address of the pool that we want to observe
/// @param secondsAgo Number of seconds in the past from which to calculate the time-weighted means
/// @return arithmeticMeanTick The arithmetic mean tick from (block.timestamp - secondsAgo) to block.timestamp
/// @return harmonicMeanLiquidity The harmonic mean liquidity from (block.timestamp - secondsAgo) to block.timestamp
function consult(
address pool,
uint32 secondsAgo
)
internal
view
returns (int24 arithmeticMeanTick, uint128 harmonicMeanLiquidity)
{
require(secondsAgo != 0, "BP");
uint32[] memory secondsAgos = new uint32[](2);
secondsAgos[0] = secondsAgo;
secondsAgos[1] = 0;
(
int56[] memory tickCumulatives,
uint160[] memory secondsPerLiquidityCumulativeX128s
) = IUniswapV3Pool(pool).observe(secondsAgos);
int56 tickCumulativesDelta = tickCumulatives[1] - tickCumulatives[0];
uint160 secondsPerLiquidityCumulativesDelta = secondsPerLiquidityCumulativeX128s[
1
] - secondsPerLiquidityCumulativeX128s[0];
// Safe casting of secondsAgo to int56 for division
int56 secondsAgoInt56 = int56(uint56(secondsAgo));
arithmeticMeanTick = int24(tickCumulativesDelta / secondsAgoInt56);
// Always round to negative infinity
if (
tickCumulativesDelta < 0 &&
(tickCumulativesDelta % secondsAgoInt56 != 0)
) arithmeticMeanTick--;
// Safe casting of secondsAgo to uint192 for multiplication
uint192 secondsAgoUint192 = uint192(secondsAgo);
harmonicMeanLiquidity = uint128(
(secondsAgoUint192 * uint192(type(uint160).max)) /
(uint192(secondsPerLiquidityCumulativesDelta) << 32)
);
}
/// @notice Given a pool, it returns the number of seconds ago of the oldest stored observation
/// @param pool Address of Uniswap V3 pool that we want to observe
/// @return secondsAgo The number of seconds ago of the oldest observation stored for the pool
function getOldestObservationSecondsAgo(
address pool
) internal view returns (uint32 secondsAgo) {
(
,
,
uint16 observationIndex,
uint16 observationCardinality,
,
,
) = IUniswapV3Pool(pool).slot0();
require(observationCardinality > 0, "NI");
(uint32 observationTimestamp, , , bool initialized) = IUniswapV3Pool(
pool
).observations((observationIndex + 1) % observationCardinality);
// The next index might not be initialized if the cardinality is in the process of increasing
// In this case the oldest observation is always in index 0
if (!initialized) {
(observationTimestamp, , , ) = IUniswapV3Pool(pool).observations(0);
}
secondsAgo = uint32(block.timestamp) - observationTimestamp;
}
/// @notice Given a tick and a token amount, calculates the amount of token received in exchange
/// a slightly modified version of the UniSwap library getQuoteAtTick to accept a sqrtRatioX96 as input parameter
/// @param sqrtRatioX96 The sqrt ration
/// @param baseAmount Amount of token to be converted
/// @param baseToken Address of an ERC20 token contract used as the baseAmount denomination
/// @param quoteToken Address of an ERC20 token contract used as the quoteAmount denomination
/// @return quoteAmount Amount of quoteToken received for baseAmount of baseToken
function getQuoteForSqrtRatioX96(
uint160 sqrtRatioX96,
uint256 baseAmount,
address baseToken,
address quoteToken
) internal pure returns (uint256 quoteAmount) {
// Calculate quoteAmount with better precision if it doesn't overflow when multiplied by itself
if (sqrtRatioX96 <= type(uint128).max) {
uint256 ratioX192 = uint256(sqrtRatioX96) * sqrtRatioX96;
quoteAmount = baseToken < quoteToken
? Math.mulDiv(ratioX192, baseAmount, 1 << 192)
: Math.mulDiv(1 << 192, baseAmount, ratioX192);
} else {
uint256 ratioX128 = Math.mulDiv(
sqrtRatioX96,
sqrtRatioX96,
1 << 64
);
quoteAmount = baseToken < quoteToken
? Math.mulDiv(ratioX128, baseAmount, 1 << 128)
: Math.mulDiv(1 << 128, baseAmount, ratioX128);
}
}
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity 0.8.20;
/**
* @notice Adapted Uniswap V3 pool address computation to be compliant with Solidity 0.8.x and later.
* @dev Changes were made to address the stricter type conversion rules in newer Solidity versions.
* Original Uniswap V3 code directly converted a uint256 to an address, which is disallowed in Solidity 0.8.x.
* Adaptation Steps:
* 1. The `pool` address is computed by first hashing pool parameters.
* 2. The resulting `uint256` hash is then explicitly cast to `uint160` before casting to `address`.
* This two-step conversion process is necessary due to the Solidity 0.8.x restriction.
* Direct conversion from `uint256` to `address` is disallowed to prevent mistakes
* that can occur due to the size mismatch between the types.
* 3. Added a require statement to ensure `token0` is less than `token1`, maintaining
* Uniswap's invariant and preventing pool address calculation errors.
* @param factory The Uniswap V3 factory contract address.
* @param key The PoolKey containing token addresses and fee tier.
* @return pool The computed address of the Uniswap V3 pool.
* @custom:modification Explicit type conversion from `uint256` to `uint160` then to `address`.
*
* function computeAddress(address factory, PoolKey memory key) internal pure returns (address pool) {
* require(key.token0 < key.token1);
* pool = address(
* uint160( // Explicit conversion to uint160 added for compatibility with Solidity 0.8.x
* uint256(
* keccak256(
* abi.encodePacked(
* hex'ff',
* factory,
* keccak256(abi.encode(key.token0, key.token1, key.fee)),
* POOL_INIT_CODE_HASH
* )
* )
* )
* )
* );
* }
*/
/// @dev This code is copied from Uniswap V3 which uses an older compiler version.
/// @title Provides functions for deriving a pool address from the factory, tokens, and the fee
library PoolAddress {
bytes32 internal constant POOL_INIT_CODE_HASH =
0xe34f199b19b2b4f47f68442619d555527d244f78a3297ea89325f843f87b8b54;
/// @notice The identifying key of the pool
struct PoolKey {
address token0;
address token1;
uint24 fee;
}
/// @notice Returns PoolKey: the ordered tokens with the matched fee levels
/// @param tokenA The first token of a pool, unsorted
/// @param tokenB The second token of a pool, unsorted
/// @param fee The fee level of the pool
/// @return Poolkey The pool details with ordered token0 and token1 assignments
function getPoolKey(
address tokenA,
address tokenB,
uint24 fee
) internal pure returns (PoolKey memory) {
if (tokenA > tokenB) (tokenA, tokenB) = (tokenB, tokenA);
return PoolKey({token0: tokenA, token1: tokenB, fee: fee});
}
/// @notice Deterministically computes the pool address given the factory and PoolKey
/// @param factory The Uniswap V3 factory contract address
/// @param key The PoolKey
/// @return pool The contract address of the V3 pool
function computeAddress(
address factory,
PoolKey memory key
) internal pure returns (address pool) {
require(key.token0 < key.token1);
pool = address(
uint160( // Convert uint256 to uint160 first
uint256(
keccak256(
abi.encodePacked(
hex"ff",
factory,
keccak256(
abi.encode(key.token0, key.token1, key.fee)
),
POOL_INIT_CODE_HASH
)
)
)
)
);
}
}
// SPDX-License-Identifier: GPL-2.0-or-later
pragma solidity 0.8.20;
/**
* @notice Adapted Uniswap V3 TickMath library computation to be compliant with Solidity 0.8.x and later.
*
* Documentation for Auditors:
*
* Solidity Version: Updated the Solidity version pragma to ^0.8.0. This change ensures compatibility
* with Solidity version 0.8.x.
*
* Safe Arithmetic Operations: Solidity 0.8.x automatically checks for arithmetic overflows/underflows.
* Therefore, the code no longer needs to use the SafeMath library (or similar) for basic arithmetic operations.
* This change simplifies the code and reduces the potential for errors related to manual overflow/underflow checking.
*
* Explicit Type Conversion: The explicit conversion of `MAX_TICK` from `int24` to `uint256` in the `require` statement
* is safe and necessary for comparison with `absTick`, which is a `uint256`. This conversion is compliant with
* Solidity 0.8.x's type system and does not introduce any arithmetic risk.
*
* Overflow/Underflow: With the introduction of automatic overflow/underflow checks in Solidity 0.8.x, the code is inherently
* safer and less prone to certain types of arithmetic errors.
*
* Removal of SafeMath Library: Since Solidity 0.8.x handles arithmetic operations safely, the use of the SafeMath library
* is omitted in this update.
*
* Git-style diff for the TickMath library:
*
* ```diff
* - pragma solidity >=0.5.0 <0.8.0;
* + pragma solidity ^0.8.0;
*
* function getSqrtRatioAtTick(int24 tick) internal pure returns (uint160 sqrtPriceX96) {
* uint256 absTick = tick < 0 ? uint256(-int256(tick)) : uint256(int256(tick));
* - require(absTick <= uint256(MAX_TICK), 'T');
* + require(absTick <= uint256(int256(MAX_TICK)), 'T'); // Explicit type conversion for Solidity 0.8.x compatibility
* // ... (rest of the function)
* }
*
* function getTickAtSqrtRatio(
* uint160 sqrtPriceX96
* ) internal pure returns (int24 tick) {
* // [Code for calculating the tick based on sqrtPriceX96 remains unchanged]
*
* - tick = tickLow == tickHi
* - ? tickLow
* - : getSqrtRatioAtTick(tickHi) <= sqrtPriceX96
* - ? tickHi
* - : tickLow;
* + if (tickLow == tickHi) {
* + tick = tickLow;
* + } else {
* + tick = (getSqrtRatioAtTick(tickHi) <= sqrtPriceX96) ? tickHi : tickLow;
* + }
* }
* ```
*
* Note: Other than the pragma version change and the explicit type conversion in the `require` statement, the original functions
* within the TickMath library are compatible with Solidity 0.8.x without requiring any further modifications. This is due to
* the fact that the logic within these functions already adheres to safe arithmetic practices and does not involve operations
* that would be affected by the 0.8.x compiler's built-in checks.
*/
/// @title Math library for computing sqrt prices from ticks and vice versa
/// @notice Computes sqrt price for ticks of size 1.0001, i.e. sqrt(1.0001^tick) as fixed point Q64.96 numbers. Supports
/// prices between 2**-128 and 2**128
library TickMath {
/// @dev The minimum tick that may be passed to #getSqrtRatioAtTick computed from log base 1.0001 of 2**-128
int24 internal constant MIN_TICK = -887272;
/// @dev The maximum tick that may be passed to #getSqrtRatioAtTick computed from log base 1.0001 of 2**128
int24 internal constant MAX_TICK = -MIN_TICK;
/// @dev The minimum value that can be returned from #getSqrtRatioAtTick. Equivalent to getSqrtRatioAtTick(MIN_TICK)
uint160 internal constant MIN_SQRT_RATIO = 4295128739;
/// @dev The maximum value that can be returned from #getSqrtRatioAtTick. Equivalent to getSqrtRatioAtTick(MAX_TICK)
uint160 internal constant MAX_SQRT_RATIO =
1461446703485210103287273052203988822378723970342;
/// @notice Calculates sqrt(1.0001^tick) * 2^96
/// @dev Throws if |tick| > max tick
/// @param tick The input tick for the above formula
/// @return sqrtPriceX96 A Fixed point Q64.96 number representing the sqrt of the ratio of the two assets (token1/token0)
/// at the given tick
function getSqrtRatioAtTick(
int24 tick
) internal pure returns (uint160 sqrtPriceX96) {
uint256 absTick = tick < 0
? uint256(-int256(tick))
: uint256(int256(tick));
require(absTick <= uint256(int256(MAX_TICK)), "T"); // Explicit type conversion for Solidity 0.8.x compatibility
uint256 ratio = absTick & 0x1 != 0
? 0xfffcb933bd6fad37aa2d162d1a594001
: 0x100000000000000000000000000000000;
if (absTick & 0x2 != 0)
ratio = (ratio * 0xfff97272373d413259a46990580e213a) >> 128;
if (absTick & 0x4 != 0)
ratio = (ratio * 0xfff2e50f5f656932ef12357cf3c7fdcc) >> 128;
if (absTick & 0x8 != 0)
ratio = (ratio * 0xffe5caca7e10e4e61c3624eaa0941cd0) >> 128;
if (absTick & 0x10 != 0)
ratio = (ratio * 0xffcb9843d60f6159c9db58835c926644) >> 128;
if (absTick & 0x20 != 0)
ratio = (ratio * 0xff973b41fa98c081472e6896dfb254c0) >> 128;
if (absTick & 0x40 != 0)
ratio = (ratio * 0xff2ea16466c96a3843ec78b326b52861) >> 128;
if (absTick & 0x80 != 0)
ratio = (ratio * 0xfe5dee046a99a2a811c461f1969c3053) >> 128;
if (absTick & 0x100 != 0)
ratio = (ratio * 0xfcbe86c7900a88aedcffc83b479aa3a4) >> 128;
if (absTick & 0x200 != 0)
ratio = (ratio * 0xf987a7253ac413176f2b074cf7815e54) >> 128;
if (absTick & 0x400 != 0)
ratio = (ratio * 0xf3392b0822b70005940c7a398e4b70f3) >> 128;
if (absTick & 0x800 != 0)
ratio = (ratio * 0xe7159475a2c29b7443b29c7fa6e889d9) >> 128;
if (absTick & 0x1000 != 0)
ratio = (ratio * 0xd097f3bdfd2022b8845ad8f792aa5825) >> 128;
if (absTick & 0x2000 != 0)
ratio = (ratio * 0xa9f746462d870fdf8a65dc1f90e061e5) >> 128;
if (absTick & 0x4000 != 0)
ratio = (ratio * 0x70d869a156d2a1b890bb3df62baf32f7) >> 128;
if (absTick & 0x8000 != 0)
ratio = (ratio * 0x31be135f97d08fd981231505542fcfa6) >> 128;
if (absTick & 0x10000 != 0)
ratio = (ratio * 0x9aa508b5b7a84e1c677de54f3e99bc9) >> 128;
if (absTick & 0x20000 != 0)
ratio = (ratio * 0x5d6af8dedb81196699c329225ee604) >> 128;
if (absTick & 0x40000 != 0)
ratio = (ratio * 0x2216e584f5fa1ea926041bedfe98) >> 128;
if (absTick & 0x80000 != 0)
ratio = (ratio * 0x48a170391f7dc42444e8fa2) >> 128;
if (tick > 0) ratio = type(uint256).max / ratio;
// this divides by 1<<32 rounding up to go from a Q128.128 to a Q128.96.
// we then downcast because we know the result always fits within 160 bits due to our tick input constraint
// we round up in the division so getTickAtSqrtRatio of the output price is always consistent
sqrtPriceX96 = uint160(
(ratio >> 32) + (ratio % (1 << 32) == 0 ? 0 : 1)
);
}
/// @notice Calculates the greatest tick value such that getRatioAtTick(tick) <= ratio
/// @dev Throws in case sqrtPriceX96 < MIN_SQRT_RATIO, as MIN_SQRT_RATIO is the lowest value getRatioAtTick may
/// ever return.
/// @param sqrtPriceX96 The sqrt ratio for which to compute the tick as a Q64.96
/// @return tick The greatest tick for which the ratio is less than or equal to the input ratio
function getTickAtSqrtRatio(
uint160 sqrtPriceX96
) internal pure returns (int24 tick) {
// second inequality must be < because the price can never reach the price at the max tick
require(
sqrtPriceX96 >= MIN_SQRT_RATIO && sqrtPriceX96 < MAX_SQRT_RATIO,
"R"
);
uint256 ratio = uint256(sqrtPriceX96) << 32;
uint256 r = ratio;
uint256 msb = 0;
assembly {
let f := shl(7, gt(r, 0xFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF))
msb := or(msb, f)
r := shr(f, r)
}
assembly {
let f := shl(6, gt(r, 0xFFFFFFFFFFFFFFFF))
msb := or(msb, f)
r := shr(f, r)
}
assembly {
let f := shl(5, gt(r, 0xFFFFFFFF))
msb := or(msb, f)
r := shr(f, r)
}
assembly {
let f := shl(4, gt(r, 0xFFFF))
msb := or(msb, f)
r := shr(f, r)
}
assembly {
let f := shl(3, gt(r, 0xFF))
msb := or(msb, f)
r := shr(f, r)
}
assembly {
let f := shl(2, gt(r, 0xF))
msb := or(msb, f)
r := shr(f, r)
}
assembly {
let f := shl(1, gt(r, 0x3))
msb := or(msb, f)
r := shr(f, r)
}
assembly {
let f := gt(r, 0x1)
msb := or(msb, f)
}
if (msb >= 128) r = ratio >> (msb - 127);
else r = ratio << (127 - msb);
int256 log_2 = (int256(msb) - 128) << 64;
assembly {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(63, f))
r := shr(f, r)
}
assembly {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(62, f))
r := shr(f, r)
}
assembly {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(61, f))
r := shr(f, r)
}
assembly {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(60, f))
r := shr(f, r)
}
assembly {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(59, f))
r := shr(f, r)
}
assembly {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(58, f))
r := shr(f, r)
}
assembly {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(57, f))
r := shr(f, r)
}
assembly {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(56, f))
r := shr(f, r)
}
assembly {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(55, f))
r := shr(f, r)
}
assembly {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(54, f))
r := shr(f, r)
}
assembly {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(53, f))
r := shr(f, r)
}
assembly {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(52, f))
r := shr(f, r)
}
assembly {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(51, f))
r := shr(f, r)
}
assembly {
r := shr(127, mul(r, r))
let f := shr(128, r)
log_2 := or(log_2, shl(50, f))
}
int256 log_sqrt10001 = log_2 * 255738958999603826347141; // 128.128 number
int24 tickLow = int24(
(log_sqrt10001 - 3402992956809132418596140100660247210) >> 128
);
int24 tickHi = int24(
(log_sqrt10001 + 291339464771989622907027621153398088495) >> 128
);
// Adjusted logic for determining the tick
if (tickLow == tickHi) {
tick = tickLow;
} else {
tick = (getSqrtRatioAtTick(tickHi) <= sqrtPriceX96)
? tickHi
: tickLow;
}
}
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity 0.8.20;
// Library
import "../DragonX.sol";
import "../lib/interfaces/ITitanX.sol";
import "../lib/Constants.sol";
// Simulating a protocol which contributes to the TitanX vault
contract BuildOnDragonX {
function sendToDragonVault(address dragonAddress) external {
DragonX dragonX = DragonX(payable(dragonAddress));
ITitanX titanX = ITitanX(TITANX_ADDRESS);
// Transfer TitanX hold by this contract to DragonX
titanX.transfer(dragonAddress, titanX.balanceOf(address(this)));
// Update the DragonX vault
dragonX.updateVault();
}
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity 0.8.20;
// UniSwap
import "@uniswap/v3-periphery/contracts/interfaces/ISwapRouter.sol";
import "@uniswap/v3-periphery/contracts/interfaces/IQuoterV2.sol";
import "@uniswap/v3-periphery/contracts/interfaces/IQuoter.sol";
import "@uniswap/v3-periphery/contracts/libraries/TransferHelper.sol";
// OpenZeppelin
import "@openzeppelin/contracts/token/ERC20/IERC20.sol";
// Library
import "../lib/Constants.sol";
import "../lib/interfaces/IWETH.sol";
// A simple contract to help with swaps in the test environment
contract SwapHelper {
// Function to swap TitanX to DragonX
function swapTitanToDragon(
uint256 amountIn,
address dragonAddress
) external returns (uint256 amountOut) {
ISwapRouter swapRouter = ISwapRouter(UNI_SWAP_ROUTER);
// Transfer TitanX to this contract
IERC20(TITANX_ADDRESS).transferFrom(
msg.sender,
address(this),
amountIn
);
// Approve the router to spend TitanX
TransferHelper.safeApprove(
TITANX_ADDRESS,
address(swapRouter),
amountIn
);
// Swap parameters
ISwapRouter.ExactInputSingleParams memory params = ISwapRouter
.ExactInputSingleParams({
tokenIn: TITANX_ADDRESS,
tokenOut: dragonAddress,
fee: FEE_TIER,
recipient: address(this),
deadline: block.timestamp + 1,
amountIn: amountIn,
amountOutMinimum: 0,
sqrtPriceLimitX96: 0
});
// Execute the swap
amountOut = swapRouter.exactInputSingle(params);
// Transfer TitanX to the function caller
require(
IERC20(dragonAddress).transfer(msg.sender, amountOut),
"Transfer failed"
);
}
// Function to swap ETH for TitanX
function swapETHForTitanX() external payable returns (uint256 amountOut) {
require(msg.value > 0, "Must send ETH");
ISwapRouter swapRouter = ISwapRouter(UNI_SWAP_ROUTER);
// Wrap ETH into WETH
IWETH9(WETH9_ADDRESS).deposit{value: msg.value}();
// Approve the router to spend WETH
TransferHelper.safeApprove(
WETH9_ADDRESS,
address(swapRouter),
msg.value
);
// Swap parameters
ISwapRouter.ExactInputSingleParams memory params = ISwapRouter
.ExactInputSingleParams({
tokenIn: WETH9_ADDRESS,
tokenOut: TITANX_ADDRESS,
fee: FEE_TIER,
recipient: address(this),
deadline: block.timestamp + 1,
amountIn: msg.value,
amountOutMinimum: 0,
sqrtPriceLimitX96: 0
});
// Execute the swap
amountOut = swapRouter.exactInputSingle(params);
// Transfer TitanX to the function caller
require(
IERC20(TITANX_ADDRESS).transfer(msg.sender, amountOut),
"Transfer failed"
);
}
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity 0.8.20;
// Library
import "../TitanBuy.sol";
import "../DragonBuyAndBurn.sol";
import "../DragonX.sol";
// A simple contract to buy TitanX within the test environment
contract TriggerBot {
function triggerBuyTitan(address payable titanBuyAddress) external {
TitanBuy(titanBuyAddress).buyTitanX();
}
function triggerDragonBuyAndBurn(address payable titanBuyAddress) external {
DragonBuyAndBurn(titanBuyAddress).buyAndBurnDragonX();
}
function triggerClaim(address payable dragonAddress) external {
DragonX(dragonAddress).claim();
}
}
// SPDX-License-Identifier: UNLICENSED
pragma solidity 0.8.20;
// UniSwap
import "@uniswap/v3-periphery/contracts/interfaces/ISwapRouter.sol";
import "@uniswap/v3-core/contracts/interfaces/IUniswapV3Pool.sol";
// OpenZeppelins
import "@openzeppelin/contracts/access/Ownable2Step.sol";
import "@openzeppelin/contracts/utils/math/Math.sol";
import "@openzeppelin/contracts/utils/Context.sol";
import "@openzeppelin/contracts/utils/ReentrancyGuard.sol";
// Library
import "./lib/Constants.sol";
import "./lib/interfaces/IWETH.sol";
import "./lib/uniswap/PoolAddress.sol";
import "./lib/uniswap/Oracle.sol";
import "./lib/uniswap/TickMath.sol";
// Other
import "./DragonX.sol";
contract TitanBuy is Ownable2Step, ReentrancyGuard {
using SafeERC20 for IERC20;
using SafeERC20 for IWETH9;
// -----------------------------------------
// Type declarations
// -----------------------------------------
// -----------------------------------------
// State variables
// -----------------------------------------
/**
* @dev The address of the DragonX Contract.
*/
address public dragonAddress;
/**
* @dev Maximum slippage percentage acceptable when buying TitanX with WETH.
* Slippage is expressed as a percentage (e.g., 5 for 5% slippage).
*/
uint256 public slippage;
/**
* @dev Tracks the total amount of WETH used for purchasing TitanX tokens.
* This accumulates the WETH spent over time in buy transactions.
*/
uint256 public totalWethUsedForBuys;
/**
* @dev Tracks the total amount of TitanX tokens purchased and burned.
* This accumulates the TitanX bought and subsequently burned over time.
*/
uint256 public totalTitanBought;
/**
* @dev Tracks the current cap on the amount of WETH that can be used per individual swap.
* This cap can be adjusted to control the maximum size of each swap transaction.
*/
uint256 public capPerSwap;
/**
* @dev Records the timestamp of the last time the buy and burn function was called.
* Used for tracking the interval between successive buy and burn operations.
*/
uint256 public lastCallTs;
/**
* @dev Specifies the interval in seconds between allowed buy and burn operations.
* This sets a minimum time gap that must elapse before the buy and burn function can be called again.
*/
uint256 public interval;
/**
* @dev Specifies the value in minutes for the timed-weighted average when calculating the TitanX price (in WETH)
* for slippage protection.
*/
uint32 private _titanPriceTwa;
// -----------------------------------------
// Events
// -----------------------------------------
/**
* @notice Emitted when Titan tokens are purchased.
* @param weth The amount of WETH used for the purchase.
* @param titan The amount of Titan tokens bought.
* @param caller The address of the caller who initiated the transaction.
*/
event TitanBought(
uint256 indexed weth,
uint256 indexed titan,
address indexed caller
);
// -----------------------------------------
// Errors
// -----------------------------------------
/**
* @dev Thrown when the provided address is address(0)
*/
error InvalidDragonAddress();
/**
* @dev Thrown when the function caller is not authorized or expected.
*/
error InvalidCaller();
/**
* @dev Thrown when trying to buy TitanX but the cooldown period is still active.
*/
error CooldownPeriodActive();
/**
* @dev Thrown when trying to buy TitanX but there is no WETH in the contract.
*/
error NoWethToBuyTitan();
// -----------------------------------------
// Modifiers
// -----------------------------------------
// -----------------------------------------
// Constructor
// -----------------------------------------
/**
* @notice Creates a new instance of the contract.
* @dev Initializes the contract with predefined values for `capPerSwap`, `slippage`, and `interval`.
* Inherits from Ownable and sets the contract deployer as the initial owner.
* - Sets `capPerSwap` to 1 ETH, limiting the maximum amount of WETH that can be used in each swap.
* - Sets `slippage` to 5%, defining the maximum allowable price movement in a swap transaction.
* - Sets `interval` to 15 minutes, establishing the minimum time between consecutive buy and burn operations.
* - Sets `_dragonPriceTwa` to 15 minutes, establishing a protection against sandwich-attacks.
*/
constructor() Ownable(msg.sender) {
// Set the cap to approx 1 ETH per day (called every hour)
capPerSwap = 0.045 ether;
// Set the maximum slippage to 5%
slippage = 5;
// Set the minimum interval between buy and burn calls to 1 hour
interval = 60 * 60;
// Set TWA to 15 mins
_titanPriceTwa = 15;
}
// -----------------------------------------
// Receive function
// -----------------------------------------
/**
* @notice Wrap incoming ETH into WETH
* @dev This receive function automatically wraps any incoming ETH into WETH, except when the sender is the WETH9 contract itself.
*/
receive() external payable {
if (msg.sender != WETH9_ADDRESS) {
IWETH9(WETH9_ADDRESS).deposit{value: msg.value}();
}
}
// -----------------------------------------
// Fallback function
// -----------------------------------------
/**
* @notice Fallback function that disallows direct ETH transfers
* @dev This fallback function reverts any transactions that do not contain data or are not from the WETH9 contract.
*/
fallback() external {
revert("Fallback triggered");
}
// -----------------------------------------
// External functions
// -----------------------------------------
/**
* @notice Executes a swap of WETH for TitanX tokens, applies incentive fees, and updates relevant contracts and state.
* @dev This function:
* 1. Checks for valid DragonX address.
* 2. Ensures the caller is not a contract to prevent bot interactions.
* 3. Enforces a cooldown period between successive calls.
* 4. Calculates the WETH amount to be used for the swap based on the contract's WETH balance and cap per swap.
* 5. Deducts an incentive fee from the WETH amount.
* 6. Approves the swap router to spend WETH.
* 7. Calculates the minimum amount of TitanX to be received in the swap, accounting for slippage.
* 8. Performs the swap via the swap router.
* 9. Transfers the bought TitanX tokens to the DragonX contract.
* 10. Updates the DragonX vault.
* 11. Updates state variables tracking WETH used and TitanX bought.
* 12. Sends the incentive fee to the message sender.
* 13. Emits a `TitanBought` event.
* @return amountOut The amount of TitanX tokens bought in the swap.
* @custom:revert InvalidDragonAddress If the DragonX address is not set.
* @custom:revert InvalidCaller If the function caller is a contract.
* @custom:revert CooldownPeriodActive If the function is called again before the cooldown period has elapsed.
* @custom:revert NoWethToBuyTitan If there is no WETH available to buy TitanX after deducting the incentive fee.
*/
function buyTitanX() external nonReentrant returns (uint256 amountOut) {
// Cache state variables
address dragonAddress_ = dragonAddress;
// Ensure DragonX address has been set
if (dragonAddress_ == address(0)) {
revert InvalidDragonAddress();
}
//prevent contract accounts (bots) from calling this function
if (msg.sender != tx.origin) {
revert InvalidCaller();
}
//a minium gap of `interval` between each call
if (block.timestamp - lastCallTs <= interval) {
revert CooldownPeriodActive();
}
lastCallTs = block.timestamp;
ISwapRouter swapRouter = ISwapRouter(UNI_SWAP_ROUTER);
IWETH9 weth = IWETH9(WETH9_ADDRESS);
// WETH Balance of this contract
uint256 amountIn = weth.balanceOf(address(this));
uint256 wethCap = capPerSwap;
if (amountIn > wethCap) {
amountIn = wethCap;
}
uint256 incentiveFee = (amountIn * INCENTIVE_FEE) / BASIS;
weth.withdraw(incentiveFee);
amountIn -= incentiveFee;
if (amountIn == 0) {
revert NoWethToBuyTitan();
}
// Approve the router to spend WETH
weth.safeIncreaseAllowance(address(swapRouter), amountIn);
// The minimum amount to receive
uint256 amountOutMinimum = calculateMinimumTitanAmount(amountIn);
// Swap parameters
ISwapRouter.ExactInputSingleParams memory params = ISwapRouter
.ExactInputSingleParams({
tokenIn: WETH9_ADDRESS,
tokenOut: TITANX_ADDRESS,
fee: FEE_TIER,
recipient: address(this),
deadline: block.timestamp + 1,
amountIn: amountIn,
amountOutMinimum: amountOutMinimum,
sqrtPriceLimitX96: 0
});
// Execute the swap
amountOut = swapRouter.exactInputSingle(params);
// Transfer the bought TitanX to DragonX
IERC20(TITANX_ADDRESS).safeTransfer(dragonAddress_, amountOut);
// Update DragonX vault
DragonX(payable(dragonAddress_)).updateVault();
// Update state
totalWethUsedForBuys += amountIn;
totalTitanBought += amountOut;
// Send incentive fee
Address.sendValue(payable(_msgSender()), incentiveFee);
// Emit events
emit TitanBought(amountIn, amountOut, msg.sender);
}
/**
* @dev Retrieves the total amount of Wrapped Ethereum (WETH) available to buy TitanX.
* This function queries the balance of WETH held by the contract itself.
*
* @notice Use this function to get the total WETH available for purchasing TitanX.
*
* @return balance The total amount of WETH available, represented as a uint256.
*/
function totalWethForBuy() external view returns (uint256 balance) {
return IERC20(WETH9_ADDRESS).balanceOf(address(this));
}
/**
* @dev Calculates the incentive fee for executing the buyTitanX function.
* The fee is computed based on the WETH amount designated for the next TitanX purchase,
* using the `wethForNextBuy` function, and applying a predefined incentive fee rate.
*
* @notice Used to determine the incentive fee for running the buyTitanX function.
*
* @return fee The calculated incentive fee, represented as a uint256.
* This value is calculated by taking the product of `wethForNextBuy()` and
* `INCENTIVE_FEE`, then dividing by `BASIS` to normalize the fee calculation.
*/
function incentiveFeeForRunningBuyTitanX()
external
view
returns (uint256 fee)
{
uint256 forBuy = wethForNextBuy();
fee = (forBuy * INCENTIVE_FEE) / BASIS;
}
/**
* @notice Sets the address of the DragonX contract
* @dev This function allows the contract owner to update the address of the contract contract.
* It includes a check to prevent setting the address to the zero address.
* @param dragonAddress_ The new address to be set for the contract.
* @custom:revert InvalidAddress If the provided address is the zero address.
*/
function setDragonContractAddress(address dragonAddress_) external onlyOwner {
if (dragonAddress_ == address(0)) {
revert InvalidDragonAddress();
}
dragonAddress = dragonAddress_;
}
/**
* @notice set weth cap amount per buynburn call. Only callable by owner address.
* @param amount amount in 18 decimals
*/
function setCapPerSwap(uint256 amount) external onlyOwner {
capPerSwap = amount;
}
/**
* @notice set slippage % for buynburn minimum received amount. Only callable by owner address.
* @param amount amount from 0 - 50
*/
function setSlippage(uint256 amount) external onlyOwner {
require(amount >= 5 && amount <= 15, "5-15% only");
slippage = amount;
}
/**
* @notice set the buy and burn interval in seconds. Only callable by owner address.
* @param secs amount in seconds
*/
function setBuyAndBurnInterval(uint256 secs) external onlyOwner {
require(secs >= 60 && secs <= 43200, "1m-12h only");
interval = secs;
}
/**
* @notice set the TWA value used when calculting the TitanX price. Only callable by owner address.
* @param mins TWA in minutes
*/
function setTitanPriceTwa(uint32 mins) external onlyOwner {
require(mins >= 5 && mins <= 60, "5m-1h only");
_titanPriceTwa = mins;
}
// -----------------------------------------
// Public functions
// -----------------------------------------
/**
* Get a quote for TitanX for a given amount of ETH
* @notice Uses Time-Weighted Average Price (TWAP) and falls back to the pool price if TWAP is not available.
* @param baseAmount The amount of ETH for which the TitanX quote is needed.
* @return quote The amount of TitanX.
* @dev This function computes the TWAP of TitanX in ETH using the Uniswap V3 pool for TitanX/WETH and the Oracle Library.
* Steps to compute the TWAP:
* 1. Compute the pool address with the PoolAddress library using the Uniswap factory address,
* the addresses of WETH9 and TitanX, and the fee tier.
* 2. Determine the period for the TWAP calculation, limited by the oldest available observation from the Oracle.
* 3. If `secondsAgo` is zero, use the current price from the pool; otherwise, consult the Oracle Library
* for the arithmetic mean tick for the calculated period.
* 4. Convert the arithmetic mean tick to the square root price (sqrtPriceX96) and calculate the price
* based on the specified baseAmount of ETH.
*/
function getTitanQuoteForEth(
uint256 baseAmount
) public view returns (uint256 quote) {
address poolAddress = PoolAddress.computeAddress(
UNI_FACTORY,
PoolAddress.getPoolKey(WETH9_ADDRESS, TITANX_ADDRESS, FEE_TIER)
);
uint32 secondsAgo = _titanPriceTwa * 60;
uint32 oldestObservation = OracleLibrary.getOldestObservationSecondsAgo(
poolAddress
);
// Limit to oldest observation
if (oldestObservation < secondsAgo) {
secondsAgo = oldestObservation;
}
uint160 sqrtPriceX96;
if (secondsAgo == 0) {
// Default to current price
IUniswapV3Pool pool = IUniswapV3Pool(poolAddress);
(sqrtPriceX96, , , , , , ) = pool.slot0();
} else {
// Consult the Oracle Library for TWAP
(int24 arithmeticMeanTick, ) = OracleLibrary.consult(
poolAddress,
secondsAgo
);
// Convert tick to sqrtPriceX96
sqrtPriceX96 = TickMath.getSqrtRatioAtTick(arithmeticMeanTick);
}
return
OracleLibrary.getQuoteForSqrtRatioX96(
sqrtPriceX96,
baseAmount,
WETH9_ADDRESS,
TITANX_ADDRESS
);
}
/**
* Calculate Minimum Amount Out for swapping WETH to TitanX
* @notice Calculates the minimum amount of TitanX tokens expected from a single-hop swap starting with WETH.
* @dev This function calculates the minimum amount of TitanX tokens that should be received when swapping a given
* amount of WETH for TitanX, considering a specified slippage.
* It involves the following steps:
* 1. Get a quote for TitanX with the given WETH amount.
* 2. Adjust the TitanX amount for slippage to get the minimum amount out.
* @param amountIn The amount of WETH to be swapped.
* @return amountOutMinimum The minimum amount of TitanX tokens expected from the swap.
*/
function calculateMinimumTitanAmount(
uint256 amountIn
) public view returns (uint256) {
// Calculate the expected amount of TITAN for the given amount of ETH
uint256 expectedTitanAmount = getTitanQuoteForEth(amountIn);
// Adjust for slippage (applied uniformly across both hops)
uint256 adjustedTitanAmount = (expectedTitanAmount * (100 - slippage)) /
100;
return adjustedTitanAmount;
}
/**
* @dev Determines the WETH amount available for the next call to buyTitanX.
* This amount may be capped by a predefined limit `capPerSwap`.
*
* @notice Provides the amount of WETH to be used in the next TitanX purchase.
*
* @return forBuy The amount of WETH available for the next buy, possibly subject to a cap.
* If the balance exceeds `capPerSwap`, `forBuy` is set to `capPerSwap`.
*/
function wethForNextBuy() public view returns (uint256 forBuy) {
// Cache state variables
uint256 capPerSwap_ = capPerSwap;
IERC20 weth = IERC20(WETH9_ADDRESS);
forBuy = weth.balanceOf(address(this));
if (forBuy > capPerSwap_) {
forBuy = capPerSwap_;
}
}
// -----------------------------------------
// Internal functions
// -----------------------------------------
// -----------------------------------------
// Private functions
// -----------------------------------------
}