编译器
0.8.20+commit.a1b79de6
文件 1 的 16:Address.sol
pragma solidity ^0.8.20;
library Address {
error AddressInsufficientBalance(address account);
error AddressEmptyCode(address target);
error FailedInnerCall();
function sendValue(address payable recipient, uint256 amount) internal {
if (address(this).balance < amount) {
revert AddressInsufficientBalance(address(this));
}
(bool success, ) = recipient.call{value: amount}("");
if (!success) {
revert FailedInnerCall();
}
}
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0);
}
function functionCallWithValue(address target, bytes memory data, uint256 value) internal returns (bytes memory) {
if (address(this).balance < value) {
revert AddressInsufficientBalance(address(this));
}
(bool success, bytes memory returndata) = target.call{value: value}(data);
return verifyCallResultFromTarget(target, success, returndata);
}
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
(bool success, bytes memory returndata) = target.staticcall(data);
return verifyCallResultFromTarget(target, success, returndata);
}
function functionDelegateCall(address target, bytes memory data) internal returns (bytes memory) {
(bool success, bytes memory returndata) = target.delegatecall(data);
return verifyCallResultFromTarget(target, success, returndata);
}
function verifyCallResultFromTarget(
address target,
bool success,
bytes memory returndata
) internal view returns (bytes memory) {
if (!success) {
_revert(returndata);
} else {
if (returndata.length == 0 && target.code.length == 0) {
revert AddressEmptyCode(target);
}
return returndata;
}
}
function verifyCallResult(bool success, bytes memory returndata) internal pure returns (bytes memory) {
if (!success) {
_revert(returndata);
} else {
return returndata;
}
}
function _revert(bytes memory returndata) private pure {
if (returndata.length > 0) {
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert FailedInnerCall();
}
}
}
文件 2 的 16:Context.sol
pragma solidity ^0.8.20;
abstract contract Context {
function _msgSender() internal view virtual returns (address) {
return msg.sender;
}
function _msgData() internal view virtual returns (bytes calldata) {
return msg.data;
}
}
文件 3 的 16:ECDSA.sol
pragma solidity ^0.8.20;
library ECDSA {
enum RecoverError {
NoError,
InvalidSignature,
InvalidSignatureLength,
InvalidSignatureS
}
error ECDSAInvalidSignature();
error ECDSAInvalidSignatureLength(uint256 length);
error ECDSAInvalidSignatureS(bytes32 s);
function tryRecover(bytes32 hash, bytes memory signature) internal pure returns (address, RecoverError, bytes32) {
if (signature.length == 65) {
bytes32 r;
bytes32 s;
uint8 v;
assembly {
r := mload(add(signature, 0x20))
s := mload(add(signature, 0x40))
v := byte(0, mload(add(signature, 0x60)))
}
return tryRecover(hash, v, r, s);
} else {
return (address(0), RecoverError.InvalidSignatureLength, bytes32(signature.length));
}
}
function recover(bytes32 hash, bytes memory signature) internal pure returns (address) {
(address recovered, RecoverError error, bytes32 errorArg) = tryRecover(hash, signature);
_throwError(error, errorArg);
return recovered;
}
function tryRecover(bytes32 hash, bytes32 r, bytes32 vs) internal pure returns (address, RecoverError, bytes32) {
unchecked {
bytes32 s = vs & bytes32(0x7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff);
uint8 v = uint8((uint256(vs) >> 255) + 27);
return tryRecover(hash, v, r, s);
}
}
function recover(bytes32 hash, bytes32 r, bytes32 vs) internal pure returns (address) {
(address recovered, RecoverError error, bytes32 errorArg) = tryRecover(hash, r, vs);
_throwError(error, errorArg);
return recovered;
}
function tryRecover(
bytes32 hash,
uint8 v,
bytes32 r,
bytes32 s
) internal pure returns (address, RecoverError, bytes32) {
if (uint256(s) > 0x7FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF5D576E7357A4501DDFE92F46681B20A0) {
return (address(0), RecoverError.InvalidSignatureS, s);
}
address signer = ecrecover(hash, v, r, s);
if (signer == address(0)) {
return (address(0), RecoverError.InvalidSignature, bytes32(0));
}
return (signer, RecoverError.NoError, bytes32(0));
}
function recover(bytes32 hash, uint8 v, bytes32 r, bytes32 s) internal pure returns (address) {
(address recovered, RecoverError error, bytes32 errorArg) = tryRecover(hash, v, r, s);
_throwError(error, errorArg);
return recovered;
}
function _throwError(RecoverError error, bytes32 errorArg) private pure {
if (error == RecoverError.NoError) {
return;
} else if (error == RecoverError.InvalidSignature) {
revert ECDSAInvalidSignature();
} else if (error == RecoverError.InvalidSignatureLength) {
revert ECDSAInvalidSignatureLength(uint256(errorArg));
} else if (error == RecoverError.InvalidSignatureS) {
revert ECDSAInvalidSignatureS(errorArg);
}
}
}
文件 4 的 16:IERC1271.sol
pragma solidity ^0.8.20;
interface IERC1271 {
function isValidSignature(bytes32 hash, bytes memory signature) external view returns (bytes4 magicValue);
}
文件 5 的 16:IERC20.sol
pragma solidity ^0.8.20;
interface IERC20 {
event Transfer(address indexed from, address indexed to, uint256 value);
event Approval(address indexed owner, address indexed spender, uint256 value);
function totalSupply() external view returns (uint256);
function balanceOf(address account) external view returns (uint256);
function transfer(address to, uint256 value) external returns (bool);
function allowance(address owner, address spender) external view returns (uint256);
function approve(address spender, uint256 value) external returns (bool);
function transferFrom(address from, address to, uint256 value) external returns (bool);
}
文件 6 的 16:IERC20Metadata.sol
pragma solidity ^0.8.20;
import {IERC20} from "../IERC20.sol";
interface IERC20Metadata is IERC20 {
function name() external view returns (string memory);
function symbol() external view returns (string memory);
function decimals() external view returns (uint8);
}
文件 7 的 16:IERC20Permit.sol
pragma solidity ^0.8.20;
interface IERC20Permit {
function permit(
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) external;
function nonces(address owner) external view returns (uint256);
function DOMAIN_SEPARATOR() external view returns (bytes32);
}
文件 8 的 16:Math.sol
pragma solidity ^0.8.20;
library Math {
error MathOverflowedMulDiv();
enum Rounding {
Floor,
Ceil,
Trunc,
Expand
}
function tryAdd(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
uint256 c = a + b;
if (c < a) return (false, 0);
return (true, c);
}
}
function trySub(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
if (b > a) return (false, 0);
return (true, a - b);
}
}
function tryMul(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
if (a == 0) return (true, 0);
uint256 c = a * b;
if (c / a != b) return (false, 0);
return (true, c);
}
}
function tryDiv(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
if (b == 0) return (false, 0);
return (true, a / b);
}
}
function tryMod(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
if (b == 0) return (false, 0);
return (true, a % b);
}
}
function max(uint256 a, uint256 b) internal pure returns (uint256) {
return a > b ? a : b;
}
function min(uint256 a, uint256 b) internal pure returns (uint256) {
return a < b ? a : b;
}
function average(uint256 a, uint256 b) internal pure returns (uint256) {
return (a & b) + (a ^ b) / 2;
}
function ceilDiv(uint256 a, uint256 b) internal pure returns (uint256) {
if (b == 0) {
return a / b;
}
return a == 0 ? 0 : (a - 1) / b + 1;
}
function mulDiv(uint256 x, uint256 y, uint256 denominator) internal pure returns (uint256 result) {
unchecked {
uint256 prod0 = x * y;
uint256 prod1;
assembly {
let mm := mulmod(x, y, not(0))
prod1 := sub(sub(mm, prod0), lt(mm, prod0))
}
if (prod1 == 0) {
return prod0 / denominator;
}
if (denominator <= prod1) {
revert MathOverflowedMulDiv();
}
uint256 remainder;
assembly {
remainder := mulmod(x, y, denominator)
prod1 := sub(prod1, gt(remainder, prod0))
prod0 := sub(prod0, remainder)
}
uint256 twos = denominator & (0 - denominator);
assembly {
denominator := div(denominator, twos)
prod0 := div(prod0, twos)
twos := add(div(sub(0, twos), twos), 1)
}
prod0 |= prod1 * twos;
uint256 inverse = (3 * denominator) ^ 2;
inverse *= 2 - denominator * inverse;
inverse *= 2 - denominator * inverse;
inverse *= 2 - denominator * inverse;
inverse *= 2 - denominator * inverse;
inverse *= 2 - denominator * inverse;
inverse *= 2 - denominator * inverse;
result = prod0 * inverse;
return result;
}
}
function mulDiv(uint256 x, uint256 y, uint256 denominator, Rounding rounding) internal pure returns (uint256) {
uint256 result = mulDiv(x, y, denominator);
if (unsignedRoundsUp(rounding) && mulmod(x, y, denominator) > 0) {
result += 1;
}
return result;
}
function sqrt(uint256 a) internal pure returns (uint256) {
if (a == 0) {
return 0;
}
uint256 result = 1 << (log2(a) >> 1);
unchecked {
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
return min(result, a / result);
}
}
function sqrt(uint256 a, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = sqrt(a);
return result + (unsignedRoundsUp(rounding) && result * result < a ? 1 : 0);
}
}
function log2(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >> 128 > 0) {
value >>= 128;
result += 128;
}
if (value >> 64 > 0) {
value >>= 64;
result += 64;
}
if (value >> 32 > 0) {
value >>= 32;
result += 32;
}
if (value >> 16 > 0) {
value >>= 16;
result += 16;
}
if (value >> 8 > 0) {
value >>= 8;
result += 8;
}
if (value >> 4 > 0) {
value >>= 4;
result += 4;
}
if (value >> 2 > 0) {
value >>= 2;
result += 2;
}
if (value >> 1 > 0) {
result += 1;
}
}
return result;
}
function log2(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log2(value);
return result + (unsignedRoundsUp(rounding) && 1 << result < value ? 1 : 0);
}
}
function log10(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >= 10 ** 64) {
value /= 10 ** 64;
result += 64;
}
if (value >= 10 ** 32) {
value /= 10 ** 32;
result += 32;
}
if (value >= 10 ** 16) {
value /= 10 ** 16;
result += 16;
}
if (value >= 10 ** 8) {
value /= 10 ** 8;
result += 8;
}
if (value >= 10 ** 4) {
value /= 10 ** 4;
result += 4;
}
if (value >= 10 ** 2) {
value /= 10 ** 2;
result += 2;
}
if (value >= 10 ** 1) {
result += 1;
}
}
return result;
}
function log10(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log10(value);
return result + (unsignedRoundsUp(rounding) && 10 ** result < value ? 1 : 0);
}
}
function log256(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >> 128 > 0) {
value >>= 128;
result += 16;
}
if (value >> 64 > 0) {
value >>= 64;
result += 8;
}
if (value >> 32 > 0) {
value >>= 32;
result += 4;
}
if (value >> 16 > 0) {
value >>= 16;
result += 2;
}
if (value >> 8 > 0) {
result += 1;
}
}
return result;
}
function log256(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log256(value);
return result + (unsignedRoundsUp(rounding) && 1 << (result << 3) < value ? 1 : 0);
}
}
function unsignedRoundsUp(Rounding rounding) internal pure returns (bool) {
return uint8(rounding) % 2 == 1;
}
}
文件 9 的 16:MessageHashUtils.sol
pragma solidity ^0.8.20;
import {Strings} from "../Strings.sol";
library MessageHashUtils {
function toEthSignedMessageHash(bytes32 messageHash) internal pure returns (bytes32 digest) {
assembly {
mstore(0x00, "\x19Ethereum Signed Message:\n32")
mstore(0x1c, messageHash)
digest := keccak256(0x00, 0x3c)
}
}
function toEthSignedMessageHash(bytes memory message) internal pure returns (bytes32) {
return
keccak256(bytes.concat("\x19Ethereum Signed Message:\n", bytes(Strings.toString(message.length)), message));
}
function toDataWithIntendedValidatorHash(address validator, bytes memory data) internal pure returns (bytes32) {
return keccak256(abi.encodePacked(hex"19_00", validator, data));
}
function toTypedDataHash(bytes32 domainSeparator, bytes32 structHash) internal pure returns (bytes32 digest) {
assembly {
let ptr := mload(0x40)
mstore(ptr, hex"19_01")
mstore(add(ptr, 0x02), domainSeparator)
mstore(add(ptr, 0x22), structHash)
digest := keccak256(ptr, 0x42)
}
}
}
文件 10 的 16:Ownable.sol
pragma solidity ^0.8.20;
import {Context} from "../utils/Context.sol";
abstract contract Ownable is Context {
address private _owner;
error OwnableUnauthorizedAccount(address account);
error OwnableInvalidOwner(address owner);
event OwnershipTransferred(address indexed previousOwner, address indexed newOwner);
constructor(address initialOwner) {
if (initialOwner == address(0)) {
revert OwnableInvalidOwner(address(0));
}
_transferOwnership(initialOwner);
}
modifier onlyOwner() {
_checkOwner();
_;
}
function owner() public view virtual returns (address) {
return _owner;
}
function _checkOwner() internal view virtual {
if (owner() != _msgSender()) {
revert OwnableUnauthorizedAccount(_msgSender());
}
}
function renounceOwnership() public virtual onlyOwner {
_transferOwnership(address(0));
}
function transferOwnership(address newOwner) public virtual onlyOwner {
if (newOwner == address(0)) {
revert OwnableInvalidOwner(address(0));
}
_transferOwnership(newOwner);
}
function _transferOwnership(address newOwner) internal virtual {
address oldOwner = _owner;
_owner = newOwner;
emit OwnershipTransferred(oldOwner, newOwner);
}
}
文件 11 的 16:ReentrancyGuard.sol
pragma solidity ^0.8.20;
abstract contract ReentrancyGuard {
uint256 private constant NOT_ENTERED = 1;
uint256 private constant ENTERED = 2;
uint256 private _status;
error ReentrancyGuardReentrantCall();
constructor() {
_status = NOT_ENTERED;
}
modifier nonReentrant() {
_nonReentrantBefore();
_;
_nonReentrantAfter();
}
function _nonReentrantBefore() private {
if (_status == ENTERED) {
revert ReentrancyGuardReentrantCall();
}
_status = ENTERED;
}
function _nonReentrantAfter() private {
_status = NOT_ENTERED;
}
function _reentrancyGuardEntered() internal view returns (bool) {
return _status == ENTERED;
}
}
文件 12 的 16:SafeERC20.sol
pragma solidity ^0.8.20;
import {IERC20} from "../IERC20.sol";
import {IERC20Permit} from "../extensions/IERC20Permit.sol";
import {Address} from "../../../utils/Address.sol";
library SafeERC20 {
using Address for address;
error SafeERC20FailedOperation(address token);
error SafeERC20FailedDecreaseAllowance(address spender, uint256 currentAllowance, uint256 requestedDecrease);
function safeTransfer(IERC20 token, address to, uint256 value) internal {
_callOptionalReturn(token, abi.encodeCall(token.transfer, (to, value)));
}
function safeTransferFrom(IERC20 token, address from, address to, uint256 value) internal {
_callOptionalReturn(token, abi.encodeCall(token.transferFrom, (from, to, value)));
}
function safeIncreaseAllowance(IERC20 token, address spender, uint256 value) internal {
uint256 oldAllowance = token.allowance(address(this), spender);
forceApprove(token, spender, oldAllowance + value);
}
function safeDecreaseAllowance(IERC20 token, address spender, uint256 requestedDecrease) internal {
unchecked {
uint256 currentAllowance = token.allowance(address(this), spender);
if (currentAllowance < requestedDecrease) {
revert SafeERC20FailedDecreaseAllowance(spender, currentAllowance, requestedDecrease);
}
forceApprove(token, spender, currentAllowance - requestedDecrease);
}
}
function forceApprove(IERC20 token, address spender, uint256 value) internal {
bytes memory approvalCall = abi.encodeCall(token.approve, (spender, value));
if (!_callOptionalReturnBool(token, approvalCall)) {
_callOptionalReturn(token, abi.encodeCall(token.approve, (spender, 0)));
_callOptionalReturn(token, approvalCall);
}
}
function _callOptionalReturn(IERC20 token, bytes memory data) private {
bytes memory returndata = address(token).functionCall(data);
if (returndata.length != 0 && !abi.decode(returndata, (bool))) {
revert SafeERC20FailedOperation(address(token));
}
}
function _callOptionalReturnBool(IERC20 token, bytes memory data) private returns (bool) {
(bool success, bytes memory returndata) = address(token).call(data);
return success && (returndata.length == 0 || abi.decode(returndata, (bool))) && address(token).code.length > 0;
}
}
文件 13 的 16:Sale.sol
pragma solidity 0.8.20;
import '@openzeppelin/contracts/token/ERC20/extensions/IERC20Metadata.sol';
import '@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol';
import '@openzeppelin/contracts/access/Ownable.sol';
import '@openzeppelin/contracts/utils/cryptography/MessageHashUtils.sol';
import '@openzeppelin/contracts/utils/cryptography/SignatureChecker.sol';
import '@openzeppelin/contracts/utils/ReentrancyGuard.sol';
contract Sale is Ownable, ReentrancyGuard {
using SafeERC20 for IERC20Metadata;
event Deposit(
address indexed account,
uint256 amount,
uint8 tierLevel,
uint256 fees
);
event Refund(
address indexed account,
uint256 winningAmount,
uint256 loosingAmount
);
event Claim(
address indexed account,
uint256 claimedAmountInToken,
uint256 refundedAmountInCurrency
);
error HardCapReached();
error DepositClosed();
error RefundClosed();
error ClaimClosed();
error InvalidSignature();
error TierLimitReached();
error NothingToTransfer();
error AlreadyClaimed();
error AlreadyRefunded();
error InvalidDates();
error InvalidIncrement();
error InvalidAmounts();
error TotalWinningAmountReached();
error WithdrawClosed();
error ConfigAlreadySet();
error ConfigNotSet();
error AlreadyWithdrawnWinningAmountAndFees();
address public authorizer;
IERC20Metadata public immutable currencyToken;
uint256 public immutable hardCap;
uint256[] private tiersLimit;
uint16[] private tiersFeesBasisPoint;
uint32 public immutable depositStartDate;
uint32 public immutable depositEndDate;
uint256 public immutable depositIncrement;
IERC20Metadata public token;
uint256 public tokenPriceNumerator;
uint256 public tokenPriceDenominator;
uint32 public claimStartDate;
uint32 public claimEndDate;
uint32 public claimVestingEndDate;
uint16 public claimVestingCliffBasisPoint;
uint256 public totalWinningAmount;
uint32 public refundStartDate;
uint32 public refundEndDate;
uint256 public totalDepositedAmount;
uint256 public totalClaimedAmount;
uint256 public totalRefundedWinningAmount;
uint256 public totalRefundedLoosingAmount;
uint256 public totalFees;
mapping(address account => uint256 amount) private deposits;
mapping(address account => uint256 amount) private claims;
mapping(address account => uint256 amount) private refunds;
bool public alreadyWithdrawnWinningAmountAndFees;
constructor(
address initialOwner_,
address authorizer_,
IERC20Metadata currencyToken_,
uint256 hardCap_,
uint32 depositStartDate_,
uint32 depositEndDate_,
uint256 depositIncrement_,
uint256[] memory tiersLimit_,
uint16[] memory tiersFeesBasisPoint_
) Ownable(initialOwner_) {
authorizer = authorizer_;
currencyToken = currencyToken_;
hardCap = hardCap_;
depositStartDate = depositStartDate_;
depositEndDate = depositEndDate_;
depositIncrement = depositIncrement_;
tiersLimit = tiersLimit_;
tiersFeesBasisPoint = tiersFeesBasisPoint_;
if (depositStartDate == 0) revert InvalidDates();
if (depositEndDate == 0) revert InvalidDates();
if (depositStartDate >= depositEndDate) revert InvalidDates();
if (authorizer == address(0)) revert InvalidSignature();
if (depositIncrement == 0) revert InvalidIncrement();
if (hardCap % depositIncrement != 0) revert InvalidIncrement();
currencyToken.balanceOf(address(this));
}
function deposit(
uint256 amount_,
uint8 tierLevel_,
bytes memory signature_,
uint32 signatureExpiration_
) external nonReentrant {
if (
block.timestamp < depositStartDate ||
block.timestamp > depositEndDate
) revert DepositClosed();
if (block.timestamp > signatureExpiration_) revert InvalidSignature();
if (
!SignatureChecker.isValidSignatureNow(
authorizer,
MessageHashUtils.toEthSignedMessageHash(
keccak256(
abi.encodePacked(
block.chainid,
address(this),
'deposit',
msg.sender,
tierLevel_,
amount_,
signatureExpiration_
)
)
),
signature_
)
) revert InvalidSignature();
uint256 _fees = (amount_ * tiersFeesBasisPoint[tierLevel_]) / 10_000;
totalFees = totalFees + _fees;
uint256 _contractBalance = currencyToken.balanceOf(address(this));
currencyToken.safeTransferFrom(
msg.sender,
address(this),
amount_ + _fees
);
uint256 _transferredAmount = currencyToken.balanceOf(address(this)) -
_contractBalance -
_fees;
if (_transferredAmount == 0) revert NothingToTransfer();
if (_transferredAmount % depositIncrement != 0)
revert InvalidIncrement();
totalDepositedAmount = totalDepositedAmount + _transferredAmount;
if (hardCap > 0 && totalDepositedAmount > hardCap)
revert HardCapReached();
uint256 _balance = deposits[msg.sender] + _transferredAmount;
if (_balance > tiersLimit[tierLevel_]) revert TierLimitReached();
deposits[msg.sender] = _balance;
emit Deposit(msg.sender, _transferredAmount, tierLevel_, _fees);
}
function claim(
uint256 winningAmount_,
uint256 loosingAmount_,
bytes memory signature_,
uint32 signatureExpiration_
) external {
if (block.timestamp < claimStartDate || block.timestamp > claimEndDate)
revert ClaimClosed();
if (block.timestamp > signatureExpiration_) revert InvalidSignature();
if (
!SignatureChecker.isValidSignatureNow(
authorizer,
MessageHashUtils.toEthSignedMessageHash(
keccak256(
abi.encodePacked(
block.chainid,
address(this),
'claim',
msg.sender,
winningAmount_,
loosingAmount_,
signatureExpiration_
)
)
),
signature_
)
) revert InvalidSignature();
if (winningAmount_ % depositIncrement != 0) revert InvalidIncrement();
if (loosingAmount_ % depositIncrement != 0) revert InvalidIncrement();
uint256 _depositedAmount = deposits[msg.sender];
uint256 _claimedAmount = claims[msg.sender];
uint256 _refundedAmount = refunds[msg.sender];
if (_refundedAmount > loosingAmount_) revert AlreadyRefunded();
if (_depositedAmount == 0) revert NothingToTransfer();
if (winningAmount_ + loosingAmount_ > _depositedAmount)
revert InvalidAmounts();
uint256 _claimableAmount = claimableAmountOf(
msg.sender,
winningAmount_
);
if (_claimableAmount > 0) {
claims[msg.sender] = _claimedAmount + _claimableAmount;
totalClaimedAmount = totalClaimedAmount + _claimableAmount;
if (totalClaimedAmount > totalWinningAmount)
revert TotalWinningAmountReached();
}
uint256 _refundableAmount = loosingAmount_ - _refundedAmount;
if (_refundableAmount > 0) {
refunds[msg.sender] = _refundedAmount + _refundableAmount;
totalRefundedLoosingAmount =
totalRefundedLoosingAmount +
_refundableAmount;
}
if (_claimableAmount == 0 && _refundableAmount == 0)
revert NothingToTransfer();
uint256 _claimableAmountInToken = _claimableAmount > 0
? (_claimableAmount *
10 ** token.decimals() *
tokenPriceDenominator) / tokenPriceNumerator
: 0;
if (_claimableAmountInToken > 0)
token.safeTransfer(msg.sender, _claimableAmountInToken);
if (_refundableAmount > 0)
currencyToken.safeTransfer(msg.sender, _refundableAmount);
emit Claim(msg.sender, _claimableAmountInToken, _refundableAmount);
}
function refund(
uint256 winningAmount_,
uint256 loosingAmount_,
bytes memory signature_,
uint32 signatureExpiration_
) external {
if (
block.timestamp < refundStartDate || block.timestamp > refundEndDate
) revert RefundClosed();
if (block.timestamp > signatureExpiration_) revert InvalidSignature();
if (
!SignatureChecker.isValidSignatureNow(
authorizer,
MessageHashUtils.toEthSignedMessageHash(
keccak256(
abi.encodePacked(
block.chainid,
address(this),
'refund',
msg.sender,
winningAmount_,
loosingAmount_,
signatureExpiration_
)
)
),
signature_
)
) revert InvalidSignature();
if (winningAmount_ % depositIncrement != 0) revert InvalidIncrement();
if (loosingAmount_ % depositIncrement != 0) revert InvalidIncrement();
if (claims[msg.sender] > 0) revert AlreadyClaimed();
if (refunds[msg.sender] > 0) revert AlreadyRefunded();
uint256 _depositedAmount = deposits[msg.sender];
if (_depositedAmount == 0) revert NothingToTransfer();
if (winningAmount_ + loosingAmount_ != _depositedAmount)
revert InvalidAmounts();
refunds[msg.sender] = _depositedAmount;
totalRefundedWinningAmount =
totalRefundedWinningAmount +
winningAmount_;
totalRefundedLoosingAmount =
totalRefundedLoosingAmount +
loosingAmount_;
currencyToken.safeTransfer(msg.sender, _depositedAmount);
emit Refund(msg.sender, winningAmount_, loosingAmount_);
}
function depositedAmountOf(
address account_
) external view returns (uint256) {
return deposits[account_];
}
function claimedAmountOf(address account_) external view returns (uint256) {
return claims[account_];
}
function refundedAmountOf(
address account_
) external view returns (uint256) {
return refunds[account_];
}
function getTiersLimit() external view returns (uint256[] memory) {
return tiersLimit;
}
function getTiersFeesBasisPoint() external view returns (uint16[] memory) {
return tiersFeesBasisPoint;
}
function claimableAmountOf(
address account_,
uint256 winningAmount_
) public view returns (uint256) {
if (block.timestamp < claimStartDate) return 0;
if (block.timestamp >= claimVestingEndDate)
return winningAmount_ - claims[account_];
return
(((winningAmount_ * claimVestingCliffBasisPoint) / 10_000) +
(((winningAmount_ * (10_000 - claimVestingCliffBasisPoint)) /
10_000) * (block.timestamp - claimStartDate)) /
(claimVestingEndDate - claimStartDate)) - claims[account_];
}
function setClaimConfig(
IERC20Metadata token_,
uint256 tokenPriceNumerator_,
uint256 tokenPriceDenominator_,
uint32 claimStartDate_,
uint32 claimEndDate_,
uint32 claimVestingEndDate_,
uint16 claimVestingCliffBasisPoint_,
uint256 totalWinningAmount_
) external onlyOwner {
if (token != IERC20Metadata(address(0))) revert ConfigAlreadySet();
token = token_;
tokenPriceNumerator = tokenPriceNumerator_;
tokenPriceDenominator = tokenPriceDenominator_;
claimStartDate = claimStartDate_;
claimEndDate = claimEndDate_;
claimVestingEndDate = claimVestingEndDate_;
claimVestingCliffBasisPoint = claimVestingCliffBasisPoint_;
totalWinningAmount = totalWinningAmount_;
if (claimStartDate == 0) revert InvalidDates();
if (claimEndDate == 0) revert InvalidDates();
if (claimStartDate >= claimEndDate) revert InvalidDates();
if (depositEndDate >= claimStartDate) revert InvalidDates();
if (claimVestingEndDate < claimStartDate) revert InvalidDates();
if (claimVestingEndDate > claimEndDate) revert InvalidDates();
if (tokenPriceNumerator == 0) revert InvalidAmounts();
if (tokenPriceDenominator == 0) revert InvalidAmounts();
if (totalWinningAmount == 0) revert InvalidAmounts();
if (claimVestingCliffBasisPoint > 10_000) revert InvalidAmounts();
token.decimals();
token.balanceOf(address(this));
}
function setRefundConfig(
uint32 refundStartDate_,
uint32 refundEndDate_
) external onlyOwner {
if (refundStartDate != 0) revert ConfigAlreadySet();
refundStartDate = refundStartDate_;
refundEndDate = refundEndDate_;
if (refundStartDate == 0) revert InvalidDates();
if (refundEndDate == 0) revert InvalidDates();
if (refundStartDate >= refundEndDate) revert InvalidDates();
if (depositEndDate >= refundStartDate) revert InvalidDates();
}
function withdrawWinningAmountWithFees(address to_) external onlyOwner {
if (alreadyWithdrawnWinningAmountAndFees)
revert AlreadyWithdrawnWinningAmountAndFees();
alreadyWithdrawnWinningAmountAndFees = true;
if (block.timestamp <= depositEndDate) revert WithdrawClosed();
if (refundEndDate > 0 && block.timestamp <= refundEndDate)
revert WithdrawClosed();
uint256 _cappedTotalWinningAmount = totalDepositedAmount <
totalWinningAmount
? totalDepositedAmount
: totalWinningAmount;
uint256 _withdrawableWinningAmount = _cappedTotalWinningAmount +
totalFees -
totalRefundedWinningAmount;
if (_withdrawableWinningAmount == 0) revert NothingToTransfer();
currencyToken.safeTransfer(to_, _withdrawableWinningAmount);
}
function withdrawExcessToken(address to_) external onlyOwner {
if (token == IERC20Metadata(address(0))) revert ConfigNotSet();
uint256 _cappedTotalWinningAmount = totalDepositedAmount <
totalWinningAmount
? totalDepositedAmount
: totalWinningAmount;
uint256 _tokenBalance = token.balanceOf(address(this));
if (token == currencyToken) {
uint256 _reservedBalance = totalDepositedAmount -
_cappedTotalWinningAmount -
totalRefundedLoosingAmount;
if (!alreadyWithdrawnWinningAmountAndFees) {
uint256 _withdrawableWinningAmount = _cappedTotalWinningAmount +
totalFees -
totalRefundedWinningAmount;
_reservedBalance =
_reservedBalance +
_withdrawableWinningAmount;
}
_tokenBalance = _tokenBalance - _reservedBalance;
}
uint256 _claimableAmount = _cappedTotalWinningAmount -
totalClaimedAmount -
totalRefundedWinningAmount;
uint256 _claimableAmountInToken = (_claimableAmount *
10 ** token.decimals() *
tokenPriceDenominator) / tokenPriceNumerator;
if (_tokenBalance <= _claimableAmountInToken)
revert NothingToTransfer();
token.safeTransfer(to_, _tokenBalance - _claimableAmountInToken);
}
function withdrawAll(address to_) external onlyOwner {
if (block.timestamp <= depositEndDate) revert WithdrawClosed();
if (claimEndDate > 0 && block.timestamp <= claimEndDate)
revert WithdrawClosed();
if (refundEndDate > 0 && block.timestamp <= refundEndDate)
revert WithdrawClosed();
uint256 _currencyBalance = currencyToken.balanceOf(address(this));
uint256 _tokenBalance = token != IERC20Metadata(address(0)) &&
token != currencyToken
? token.balanceOf(address(this))
: 0;
if (_currencyBalance == 0 && _tokenBalance == 0)
revert NothingToTransfer();
if (_currencyBalance > 0)
currencyToken.safeTransfer(to_, _currencyBalance);
if (_tokenBalance > 0) token.safeTransfer(to_, _tokenBalance);
}
function setAuthorizer(address authorizer_) external onlyOwner {
authorizer = authorizer_;
}
}
文件 14 的 16:SignatureChecker.sol
pragma solidity ^0.8.20;
import {ECDSA} from "./ECDSA.sol";
import {IERC1271} from "../../interfaces/IERC1271.sol";
library SignatureChecker {
function isValidSignatureNow(address signer, bytes32 hash, bytes memory signature) internal view returns (bool) {
(address recovered, ECDSA.RecoverError error, ) = ECDSA.tryRecover(hash, signature);
return
(error == ECDSA.RecoverError.NoError && recovered == signer) ||
isValidERC1271SignatureNow(signer, hash, signature);
}
function isValidERC1271SignatureNow(
address signer,
bytes32 hash,
bytes memory signature
) internal view returns (bool) {
(bool success, bytes memory result) = signer.staticcall(
abi.encodeCall(IERC1271.isValidSignature, (hash, signature))
);
return (success &&
result.length >= 32 &&
abi.decode(result, (bytes32)) == bytes32(IERC1271.isValidSignature.selector));
}
}
文件 15 的 16:SignedMath.sol
pragma solidity ^0.8.20;
library SignedMath {
function max(int256 a, int256 b) internal pure returns (int256) {
return a > b ? a : b;
}
function min(int256 a, int256 b) internal pure returns (int256) {
return a < b ? a : b;
}
function average(int256 a, int256 b) internal pure returns (int256) {
int256 x = (a & b) + ((a ^ b) >> 1);
return x + (int256(uint256(x) >> 255) & (a ^ b));
}
function abs(int256 n) internal pure returns (uint256) {
unchecked {
return uint256(n >= 0 ? n : -n);
}
}
}
文件 16 的 16:Strings.sol
pragma solidity ^0.8.20;
import {Math} from "./math/Math.sol";
import {SignedMath} from "./math/SignedMath.sol";
library Strings {
bytes16 private constant HEX_DIGITS = "0123456789abcdef";
uint8 private constant ADDRESS_LENGTH = 20;
error StringsInsufficientHexLength(uint256 value, uint256 length);
function toString(uint256 value) internal pure returns (string memory) {
unchecked {
uint256 length = Math.log10(value) + 1;
string memory buffer = new string(length);
uint256 ptr;
assembly {
ptr := add(buffer, add(32, length))
}
while (true) {
ptr--;
assembly {
mstore8(ptr, byte(mod(value, 10), HEX_DIGITS))
}
value /= 10;
if (value == 0) break;
}
return buffer;
}
}
function toStringSigned(int256 value) internal pure returns (string memory) {
return string.concat(value < 0 ? "-" : "", toString(SignedMath.abs(value)));
}
function toHexString(uint256 value) internal pure returns (string memory) {
unchecked {
return toHexString(value, Math.log256(value) + 1);
}
}
function toHexString(uint256 value, uint256 length) internal pure returns (string memory) {
uint256 localValue = value;
bytes memory buffer = new bytes(2 * length + 2);
buffer[0] = "0";
buffer[1] = "x";
for (uint256 i = 2 * length + 1; i > 1; --i) {
buffer[i] = HEX_DIGITS[localValue & 0xf];
localValue >>= 4;
}
if (localValue != 0) {
revert StringsInsufficientHexLength(value, length);
}
return string(buffer);
}
function toHexString(address addr) internal pure returns (string memory) {
return toHexString(uint256(uint160(addr)), ADDRESS_LENGTH);
}
function equal(string memory a, string memory b) internal pure returns (bool) {
return bytes(a).length == bytes(b).length && keccak256(bytes(a)) == keccak256(bytes(b));
}
}
{
"compilationTarget": {
"contracts/Sale.sol": "Sale"
},
"evmVersion": "paris",
"libraries": {},
"metadata": {
"bytecodeHash": "ipfs"
},
"optimizer": {
"enabled": true,
"runs": 200
},
"remappings": []
}[{"inputs":[{"internalType":"address","name":"initialOwner_","type":"address"},{"internalType":"address","name":"authorizer_","type":"address"},{"internalType":"contract IERC20Metadata","name":"currencyToken_","type":"address"},{"internalType":"uint256","name":"hardCap_","type":"uint256"},{"internalType":"uint32","name":"depositStartDate_","type":"uint32"},{"internalType":"uint32","name":"depositEndDate_","type":"uint32"},{"internalType":"uint256","name":"depositIncrement_","type":"uint256"},{"internalType":"uint256[]","name":"tiersLimit_","type":"uint256[]"},{"internalType":"uint16[]","name":"tiersFeesBasisPoint_","type":"uint16[]"}],"stateMutability":"nonpayable","type":"constructor"},{"inputs":[{"internalType":"address","name":"target","type":"address"}],"name":"AddressEmptyCode","type":"error"},{"inputs":[{"internalType":"address","name":"account","type":"address"}],"name":"AddressInsufficientBalance","type":"error"},{"inputs":[],"name":"AlreadyClaimed","type":"error"},{"inputs":[],"name":"AlreadyRefunded","type":"error"},{"inputs":[],"name":"AlreadyWithdrawnWinningAmountAndFees","type":"error"},{"inputs":[],"name":"ClaimClosed","type":"error"},{"inputs":[],"name":"ConfigAlreadySet","type":"error"},{"inputs":[],"name":"ConfigNotSet","type":"error"},{"inputs":[],"name":"DepositClosed","type":"error"},{"inputs":[],"name":"FailedInnerCall","type":"error"},{"inputs":[],"name":"HardCapReached","type":"error"},{"inputs":[],"name":"InvalidAmounts","type":"error"},{"inputs":[],"name":"InvalidDates","type":"error"},{"inputs":[],"name":"InvalidIncrement","type":"error"},{"inputs":[],"name":"InvalidSignature","type":"error"},{"inputs":[],"name":"NothingToTransfer","type":"error"},{"inputs":[{"internalType":"address","name":"owner","type":"address"}],"name":"OwnableInvalidOwner","type":"error"},{"inputs":[{"internalType":"address","name":"account","type":"address"}],"name":"OwnableUnauthorizedAccount","type":"error"},{"inputs":[],"name":"ReentrancyGuardReentrantCall","type":"error"},{"inputs":[],"name":"RefundClosed","type":"error"},{"inputs":[{"internalType":"address","name":"token","type":"address"}],"name":"SafeERC20FailedOperation","type":"error"},{"inputs":[],"name":"TierLimitReached","type":"error"},{"inputs":[],"name":"TotalWinningAmountReached","type":"error"},{"inputs":[],"name":"WithdrawClosed","type":"error"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"account","type":"address"},{"indexed":false,"internalType":"uint256","name":"claimedAmountInToken","type":"uint256"},{"indexed":false,"internalType":"uint256","name":"refundedAmountInCurrency","type":"uint256"}],"name":"Claim","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"account","type":"address"},{"indexed":false,"internalType":"uint256","name":"amount","type":"uint256"},{"indexed":false,"internalType":"uint8","name":"tierLevel","type":"uint8"},{"indexed":false,"internalType":"uint256","name":"fees","type":"uint256"}],"name":"Deposit","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"previousOwner","type":"address"},{"indexed":true,"internalType":"address","name":"newOwner","type":"address"}],"name":"OwnershipTransferred","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"account","type":"address"},{"indexed":false,"internalType":"uint256","name":"winningAmount","type":"uint256"},{"indexed":false,"internalType":"uint256","name":"loosingAmount","type":"uint256"}],"name":"Refund","type":"event"},{"inputs":[],"name":"alreadyWithdrawnWinningAmountAndFees","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"authorizer","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"uint256","name":"winningAmount_","type":"uint256"},{"internalType":"uint256","name":"loosingAmount_","type":"uint256"},{"internalType":"bytes","name":"signature_","type":"bytes"},{"internalType":"uint32","name":"signatureExpiration_","type":"uint32"}],"name":"claim","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"claimEndDate","outputs":[{"internalType":"uint32","name":"","type":"uint32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"claimStartDate","outputs":[{"internalType":"uint32","name":"","type":"uint32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"claimVestingCliffBasisPoint","outputs":[{"internalType":"uint16","name":"","type":"uint16"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"claimVestingEndDate","outputs":[{"internalType":"uint32","name":"","type":"uint32"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"account_","type":"address"},{"internalType":"uint256","name":"winningAmount_","type":"uint256"}],"name":"claimableAmountOf","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"account_","type":"address"}],"name":"claimedAmountOf","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"currencyToken","outputs":[{"internalType":"contract IERC20Metadata","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"uint256","name":"amount_","type":"uint256"},{"internalType":"uint8","name":"tierLevel_","type":"uint8"},{"internalType":"bytes","name":"signature_","type":"bytes"},{"internalType":"uint32","name":"signatureExpiration_","type":"uint32"}],"name":"deposit","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"depositEndDate","outputs":[{"internalType":"uint32","name":"","type":"uint32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"depositIncrement","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"depositStartDate","outputs":[{"internalType":"uint32","name":"","type":"uint32"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"account_","type":"address"}],"name":"depositedAmountOf","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"getTiersFeesBasisPoint","outputs":[{"internalType":"uint16[]","name":"","type":"uint16[]"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"getTiersLimit","outputs":[{"internalType":"uint256[]","name":"","type":"uint256[]"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"hardCap","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"owner","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"uint256","name":"winningAmount_","type":"uint256"},{"internalType":"uint256","name":"loosingAmount_","type":"uint256"},{"internalType":"bytes","name":"signature_","type":"bytes"},{"internalType":"uint32","name":"signatureExpiration_","type":"uint32"}],"name":"refund","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"refundEndDate","outputs":[{"internalType":"uint32","name":"","type":"uint32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"refundStartDate","outputs":[{"internalType":"uint32","name":"","type":"uint32"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"account_","type":"address"}],"name":"refundedAmountOf","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"renounceOwnership","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"authorizer_","type":"address"}],"name":"setAuthorizer","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"contract IERC20Metadata","name":"token_","type":"address"},{"internalType":"uint256","name":"tokenPriceNumerator_","type":"uint256"},{"internalType":"uint256","name":"tokenPriceDenominator_","type":"uint256"},{"internalType":"uint32","name":"claimStartDate_","type":"uint32"},{"internalType":"uint32","name":"claimEndDate_","type":"uint32"},{"internalType":"uint32","name":"claimVestingEndDate_","type":"uint32"},{"internalType":"uint16","name":"claimVestingCliffBasisPoint_","type":"uint16"},{"internalType":"uint256","name":"totalWinningAmount_","type":"uint256"}],"name":"setClaimConfig","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"uint32","name":"refundStartDate_","type":"uint32"},{"internalType":"uint32","name":"refundEndDate_","type":"uint32"}],"name":"setRefundConfig","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"token","outputs":[{"internalType":"contract IERC20Metadata","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"tokenPriceDenominator","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"tokenPriceNumerator","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"totalClaimedAmount","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"totalDepositedAmount","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"totalFees","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"totalRefundedLoosingAmount","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"totalRefundedWinningAmount","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"totalWinningAmount","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"newOwner","type":"address"}],"name":"transferOwnership","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"to_","type":"address"}],"name":"withdrawAll","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"to_","type":"address"}],"name":"withdrawExcessToken","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"to_","type":"address"}],"name":"withdrawWinningAmountWithFees","outputs":[],"stateMutability":"nonpayable","type":"function"}]
