文件 1 的 1:Middleware.sol
interface IWallet {
function getWalletInfo()
external
view
returns (
address _deployer,
address _walletFactory,
address _owner,
address _coldWallet,
address _coldWalletAdmin,
uint256 _nonce,
string memory _cif
);
function changeColdWalletAddress(address _newColdWalletAddress) external;
function changeColdWalletAdmin(address _newColdWalletAdmin) external;
function toColdWallet(
address _tokenAddress,
address _depositerAddress,
address _refundAddress,
uint256 _transferAmount,
uint256 _uid
) external;
function approveAddress(
address _tokenAddress,
address _approveAddress,
uint256 _approvalAmount
) external;
function approveFund(
address _tokenAddress,
uint256 _transferAmount
) external returns (bool success);
function changeSettingAddress(address _address) external returns (bool);
function initialize(
address _factory,
address _deployer,
address _owner,
uint256 _nonce,
string memory _cif
) external;
}
interface IERC20 {
event Transfer(address indexed from, address indexed to, uint256 value);
event Approval(address indexed owner, address indexed spender, uint256 value);
function totalSupply() external view returns (uint256);
function balanceOf(address account) external view returns (uint256);
function transfer(address to, uint256 value) external returns (bool);
function allowance(address owner, address spender) external view returns (uint256);
function approve(address spender, uint256 value) external returns (bool);
function transferFrom(address from, address to, uint256 value) external returns (bool);
}
interface IERC20Permit {
function permit(
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) external;
function nonces(address owner) external view returns (uint256);
function DOMAIN_SEPARATOR() external view returns (bytes32);
}
library Address {
error AddressInsufficientBalance(address account);
error AddressEmptyCode(address target);
error FailedInnerCall();
function sendValue(address payable recipient, uint256 amount) internal {
if (address(this).balance < amount) {
revert AddressInsufficientBalance(address(this));
}
(bool success, ) = recipient.call{value: amount}("");
if (!success) {
revert FailedInnerCall();
}
}
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0);
}
function functionCallWithValue(address target, bytes memory data, uint256 value) internal returns (bytes memory) {
if (address(this).balance < value) {
revert AddressInsufficientBalance(address(this));
}
(bool success, bytes memory returndata) = target.call{value: value}(data);
return verifyCallResultFromTarget(target, success, returndata);
}
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
(bool success, bytes memory returndata) = target.staticcall(data);
return verifyCallResultFromTarget(target, success, returndata);
}
function functionDelegateCall(address target, bytes memory data) internal returns (bytes memory) {
(bool success, bytes memory returndata) = target.delegatecall(data);
return verifyCallResultFromTarget(target, success, returndata);
}
function verifyCallResultFromTarget(
address target,
bool success,
bytes memory returndata
) internal view returns (bytes memory) {
if (!success) {
_revert(returndata);
} else {
if (returndata.length == 0 && target.code.length == 0) {
revert AddressEmptyCode(target);
}
return returndata;
}
}
function verifyCallResult(bool success, bytes memory returndata) internal pure returns (bytes memory) {
if (!success) {
_revert(returndata);
} else {
return returndata;
}
}
function _revert(bytes memory returndata) private pure {
if (returndata.length > 0) {
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert FailedInnerCall();
}
}
}
abstract contract Context {
function _msgSender() internal view virtual returns (address) {
return msg.sender;
}
function _msgData() internal view virtual returns (bytes calldata) {
return msg.data;
}
function _contextSuffixLength() internal view virtual returns (uint256) {
return 0;
}
}
abstract contract ReentrancyGuard {
uint256 private constant NOT_ENTERED = 1;
uint256 private constant ENTERED = 2;
uint256 private _status;
error ReentrancyGuardReentrantCall();
constructor() {
_status = NOT_ENTERED;
}
modifier nonReentrant() {
_nonReentrantBefore();
_;
_nonReentrantAfter();
}
function _nonReentrantBefore() private {
if (_status == ENTERED) {
revert ReentrancyGuardReentrantCall();
}
_status = ENTERED;
}
function _nonReentrantAfter() private {
_status = NOT_ENTERED;
}
function _reentrancyGuardEntered() internal view returns (bool) {
return _status == ENTERED;
}
}
contract Sign {
function verify(
bytes32 _ethSignedMessageHash,
bytes memory _signature
) public pure returns (address) {
bytes32 r;
bytes32 s;
uint8 v;
assembly {
r := mload(add(_signature, 0x20))
s := mload(add(_signature, 0x40))
v := byte(0, mload(add(_signature, 0x60)))
}
if (v < 27) {
v += 27;
}
if (v != 27 && v != 28) {
return (address(0));
}
return ecrecover(_ethSignedMessageHash, v, r, s);
}
function getEthSignedHash(
bytes32 _messageHash
) public pure returns (bytes32) {
return
keccak256(
abi.encodePacked(
"\x19Ethereum Signed Message:\n32",
_messageHash
)
);
}
function matchAddress(
address signer,
bytes32 hashOf,
bytes memory _adminSignature
) internal pure returns (bool) {
if (signer == address(0)) return false;
return (signer == verify(getEthSignedHash(hashOf), _adminSignature));
}
}
abstract contract Ownable is Context {
address private _owner;
error OwnableUnauthorizedAccount(address account);
error OwnableInvalidOwner(address owner);
event OwnershipTransferred(address indexed previousOwner, address indexed newOwner);
constructor(address initialOwner) {
if (initialOwner == address(0)) {
revert OwnableInvalidOwner(address(0));
}
_transferOwnership(initialOwner);
}
modifier onlyOwner() {
_checkOwner();
_;
}
function owner() public view virtual returns (address) {
return _owner;
}
function _checkOwner() internal view virtual {
if (owner() != _msgSender()) {
revert OwnableUnauthorizedAccount(_msgSender());
}
}
function renounceOwnership() public virtual onlyOwner {
_transferOwnership(address(0));
}
function transferOwnership(address newOwner) public virtual onlyOwner {
if (newOwner == address(0)) {
revert OwnableInvalidOwner(address(0));
}
_transferOwnership(newOwner);
}
function _transferOwnership(address newOwner) internal virtual {
address oldOwner = _owner;
_owner = newOwner;
emit OwnershipTransferred(oldOwner, newOwner);
}
}
library SafeERC20 {
using Address for address;
error SafeERC20FailedOperation(address token);
error SafeERC20FailedDecreaseAllowance(address spender, uint256 currentAllowance, uint256 requestedDecrease);
function safeTransfer(IERC20 token, address to, uint256 value) internal {
_callOptionalReturn(token, abi.encodeCall(token.transfer, (to, value)));
}
function safeTransferFrom(IERC20 token, address from, address to, uint256 value) internal {
_callOptionalReturn(token, abi.encodeCall(token.transferFrom, (from, to, value)));
}
function safeIncreaseAllowance(IERC20 token, address spender, uint256 value) internal {
uint256 oldAllowance = token.allowance(address(this), spender);
forceApprove(token, spender, oldAllowance + value);
}
function safeDecreaseAllowance(IERC20 token, address spender, uint256 requestedDecrease) internal {
unchecked {
uint256 currentAllowance = token.allowance(address(this), spender);
if (currentAllowance < requestedDecrease) {
revert SafeERC20FailedDecreaseAllowance(spender, currentAllowance, requestedDecrease);
}
forceApprove(token, spender, currentAllowance - requestedDecrease);
}
}
function forceApprove(IERC20 token, address spender, uint256 value) internal {
bytes memory approvalCall = abi.encodeCall(token.approve, (spender, value));
if (!_callOptionalReturnBool(token, approvalCall)) {
_callOptionalReturn(token, abi.encodeCall(token.approve, (spender, 0)));
_callOptionalReturn(token, approvalCall);
}
}
function _callOptionalReturn(IERC20 token, bytes memory data) private {
bytes memory returndata = address(token).functionCall(data);
if (returndata.length != 0 && !abi.decode(returndata, (bool))) {
revert SafeERC20FailedOperation(address(token));
}
}
function _callOptionalReturnBool(IERC20 token, bytes memory data) private returns (bool) {
(bool success, bytes memory returndata) = address(token).call(data);
return success && (returndata.length == 0 || abi.decode(returndata, (bool))) && address(token).code.length > 0;
}
}
contract Middleware is Ownable, ReentrancyGuard, Sign {
using SafeERC20 for IERC20;
address contract_handler;
address g_quarantine;
address g_cold;
address r_signer;
mapping(string _uid => bool isUsed) uids;
constructor(
address _initial_owner,
address _signer,
address _contract_handler,
address _quarantine,
address _coldwallet
) Ownable(_initial_owner) {
r_signer = _signer;
contract_handler = _contract_handler;
g_quarantine = _quarantine;
g_cold = _coldwallet;
}
modifier onlyContractHandler() {
require(
msg.sender == contract_handler,
"Only contract handler can call this function"
);
_;
}
modifier uniqueID(string memory _uid) {
if (uids[_uid]) {
revert DepositUniqueIDAlreadyUsed();
}
uids[_uid] = true;
_;
}
modifier onlyValidAddress(address _newAddress) {
if (_newAddress == address(0)) {
revert ZEROAddress();
}
_;
}
error TokenApprovalFailed(address _walletAddress, uint256 _amount);
error DepositUniqueIDAlreadyUsed();
error ZEROAddress();
error DeadlineExpired();
error AdminSignatureNotMatched(
address _admin,
bytes _adminSignature,
address _recoveredAddress
);
event ContractHandlerChanged(address _from, address _to);
event QuarantineChanged(address _from, address _to);
event ColdWalletChanged(address _from, address _to);
event SignerChanged(address _from, address _to);
event FundApprovedFromWallet(
address _tokenAddress,
address indexed _walletAddress,
uint256 _amount
);
event TokenDepositedToColdWallet(
address _tokenAddress,
address indexed _walletAddress,
uint256 amount
);
event TokenDepositedToQuarantine(
address _tokenAddress,
address indexed _walletAddress,
uint256 amount
);
event TokenRefunded(
address _tokenAddress,
address indexed _walletAddress,
uint256 amount
);
function setContractHandler(
address _contract_handler
) external onlyOwner onlyValidAddress(_contract_handler) {
emit ContractHandlerChanged(contract_handler, _contract_handler);
contract_handler = _contract_handler;
}
function setQuarantine(
address _quarantine
) external onlyOwner onlyValidAddress(_quarantine) {
emit QuarantineChanged(g_quarantine, _quarantine);
g_quarantine = _quarantine;
}
function setColdWallet(
address _coldwallet
) external onlyOwner onlyValidAddress(_coldwallet) {
emit ColdWalletChanged(g_cold, _coldwallet);
g_cold = _coldwallet;
}
function setRefundSigner(
address _signer
) external onlyOwner onlyValidAddress(_signer) {
emit SignerChanged(r_signer, _signer);
r_signer = _signer;
}
function _moveFund(
address _tokenAddress,
address _walletAddress,
uint256 _depositAmount,
address _destination
) private {
IWallet wallet = IWallet(_walletAddress);
wallet.approveFund(_tokenAddress, _depositAmount);
emit FundApprovedFromWallet(
_tokenAddress,
_walletAddress,
_depositAmount
);
IERC20(_tokenAddress).safeTransferFrom(
_walletAddress,
_destination,
_depositAmount
);
if (_destination == g_quarantine) {
emit TokenDepositedToQuarantine(
_tokenAddress,
_walletAddress,
_depositAmount
);
} else if (_destination == g_cold) {
emit TokenDepositedToColdWallet(
_tokenAddress,
_walletAddress,
_depositAmount
);
} else {
emit TokenRefunded(_tokenAddress, _walletAddress, _depositAmount);
}
}
function moveFundToColdWallet(
address _tokenAddress,
address _walletAddress,
uint256 _depositAmount,
string memory _uid
) external onlyContractHandler uniqueID(_uid) {
_moveFund(_tokenAddress, _walletAddress, _depositAmount, g_cold);
}
function moveFundToQuarantine(
address _tokenAddress,
address _walletAddress,
uint256 _depositAmount,
string memory _uid
) external onlyContractHandler uniqueID(_uid) {
_moveFund(_tokenAddress, _walletAddress, _depositAmount, g_quarantine);
}
function refundAmount(
address _tokenAddress,
address _destination,
address _feeAddress,
address _walletAddress,
uint256 _refundAmount,
uint256 _fees,
uint256 _deadline,
string memory _uid,
bytes memory _r_Signatures
) external onlyContractHandler uniqueID(_uid) {
if (_deadline < block.timestamp) {
revert DeadlineExpired();
}
bytes32 hashOfData = getHash(
_tokenAddress,
_destination,
_feeAddress,
_walletAddress,
address(this),
_refundAmount,
_fees,
_deadline,
block.chainid,
_uid
);
if (!matchAddress(r_signer, hashOfData, _r_Signatures)) {
address recoveredAddress = verify(
getEthSignedHash(hashOfData),
_r_Signatures
);
revert AdminSignatureNotMatched(
r_signer,
_r_Signatures,
recoveredAddress
);
}
_moveFund(_tokenAddress, _walletAddress, _refundAmount, _destination);
_moveFund(_tokenAddress, _walletAddress, _fees, _feeAddress);
}
function getContractHandler() external view returns (address) {
return contract_handler;
}
function getQuarantine() external view returns (address) {
return g_quarantine;
}
function getColdWallet() external view returns (address) {
return g_cold;
}
function getRefundSigner() external view returns (address) {
return r_signer;
}
function getHash(
address _tokenAddress,
address _destination,
address _feeAddress,
address _walletAddress,
address _c_address,
uint256 _amount,
uint256 _fees,
uint256 _deadline,
uint256 _chainId,
string memory _uid
) public pure returns (bytes32) {
return
keccak256(
abi.encodePacked(
_tokenAddress,
_destination,
_feeAddress,
_walletAddress,
_c_address,
_amount,
_fees,
_deadline,
_chainId,
_uid
)
);
}
}
