Source Code
Overview
ETH Balance
0 ETH
ETH Value
$0.00Latest 1 from a total of 1 transactions
| Transaction Hash |
Method
|
Block
|
From
|
To
|
|||||
|---|---|---|---|---|---|---|---|---|---|
| Deploy Once | 17417926 | 14 days ago | IN | 0 ETH | 0.00001878 |
Latest 5 internal transactions
Advanced mode:
| Parent Transaction Hash | Block | From | To | |||
|---|---|---|---|---|---|---|
| 17417926 | 14 days ago | Contract Creation | 0 ETH | |||
| 17417926 | 14 days ago | Contract Creation | 0 ETH | |||
| 17417926 | 14 days ago | Contract Creation | 0 ETH | |||
| 17417926 | 14 days ago | Contract Creation | 0 ETH | |||
| 17417926 | 14 days ago | Contract Creation | 0 ETH |
Cross-Chain Transactions
Loading...
Loading
This contract may be a proxy contract. Click on More Options and select Is this a proxy? to confirm and enable the "Read as Proxy" & "Write as Proxy" tabs.
Contract Source Code Verified (Exact Match)
Contract Name:
ProtocolFactory
Compiler Version
v0.8.28+commit.7893614a
Optimization Enabled:
Yes with 200 runs
Other Settings:
cancun EvmVersion
Contract Source Code (Solidity Standard Json-Input format)
// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.17;
import {IDAOHelper, IPluginRepoHelper, IPSPHelper, IENSHelper} from "./helpers/interfaces.sol";
import {DAO, Action} from "@aragon/osx/core/dao/DAO.sol";
import {IDAO} from "@aragon/osx-commons-contracts/src/dao/IDAO.sol";
import {DAOFactory} from "@aragon/osx/framework/dao/DAOFactory.sol";
import {DAORegistry} from "@aragon/osx/framework/dao/DAORegistry.sol";
import {PluginRepo} from "@aragon/osx/framework/plugin/repo/PluginRepo.sol";
import {PluginRepoFactory} from "@aragon/osx/framework/plugin/repo/PluginRepoFactory.sol";
import {PluginRepoRegistry} from "@aragon/osx/framework/plugin/repo/PluginRepoRegistry.sol";
import {
PluginSetupProcessor,
PluginSetupRef,
hashHelpers
} from "@aragon/osx/framework/plugin/setup/PluginSetupProcessor.sol";
import {IPlugin} from "@aragon/osx-commons-contracts/src/plugin/IPlugin.sol";
import {IPluginSetup} from "@aragon/osx-commons-contracts/src/plugin/setup/IPluginSetup.sol";
import {PermissionLib} from "@aragon/osx-commons-contracts/src/permission/PermissionLib.sol";
import {Multisig} from "@aragon/multisig-plugin/Multisig.sol";
import {ERC1967Proxy} from "@openzeppelin/contracts/proxy/ERC1967/ERC1967Proxy.sol";
import {ENS} from "@ensdomains/ens-contracts/contracts/registry/ENS.sol";
import {ENSSubdomainRegistrar} from "@aragon/osx/framework/utils/ens/ENSSubdomainRegistrar.sol";
/// @notice This contract orchestrates the full protocol deployment, including the Managing DAO, OSx and Aragon's core plugins.
/// @dev Given that deploying the factory with all contracts embedded would hit the gas limit, the deployment has two stages:
/// @dev 1) Deploy the raw contracts and store their addresses locally
/// @dev 2) Deploy the factory with the addresses above and tell it to orchestrate the protocol deployment (this file)
contract ProtocolFactory {
/// @notice The struct containing all the parameters to deploy the protocol
struct DeploymentParameters {
// OSx
OSxImplementations osxImplementations;
// Helper factories
HelperFactories helperFactories;
// ENS
EnsParameters ensParameters;
// Plugins
CorePlugins corePlugins;
// Management DAO
ManagementDaoParameters managementDao;
}
/// @notice The struct containing the implementation addresses for OSx
struct OSxImplementations {
address daoBase;
address daoRegistryBase;
address pluginRepoRegistryBase;
address placeholderSetup;
address ensSubdomainRegistrarBase;
address globalExecutor;
}
/// @notice The struct containing the addresses of the auxiliary factories
struct HelperFactories {
IDAOHelper daoHelper;
IPluginRepoHelper pluginRepoHelper;
IPSPHelper pspHelper;
IENSHelper ensHelper;
}
/// @notice The struct containing the ENS related parameters
struct EnsParameters {
/// @notice The root domain to use for DAO's on the DaoRegistry (example: "dao" => dao.eth)
string daoRootDomain;
/// @notice The subdomain to use for the Management DAO (example: "management" => management.dao.eth)
string managementDaoSubdomain;
/// @notice The subdomain name to use for the PluginRepoRegistry (example: "plugin" => plugin.dao.eth)
string pluginSubdomain;
}
/// @notice Encapsulates the parameters for each core plugin
struct CorePlugin {
IPluginSetup pluginSetup;
uint8 release;
uint8 build;
string releaseMetadataUri;
string buildMetadataUri;
string subdomain;
}
/// @notice The struct containing the deployed plugin setup's for the Aragon core plugins
struct CorePlugins {
CorePlugin adminPlugin;
CorePlugin multisigPlugin;
CorePlugin tokenVotingPlugin;
CorePlugin stagedProposalProcessorPlugin;
}
/// @notice A struct with the voting settings and metadata of the Management DAO
struct ManagementDaoParameters {
string metadataUri;
address[] members;
uint8 minApprovals;
}
/// @notice The struct containing the deployed protocol addresses
struct Deployment {
// OSx static contracts
address daoFactory;
address pluginRepoFactory;
address pluginSetupProcessor;
address globalExecutor;
address placeholderSetup;
// OSx proxies
address daoRegistry;
address pluginRepoRegistry;
address managementDao;
address managementDaoMultisig;
// ENS
address ensRegistry;
address daoSubdomainRegistrar;
address pluginSubdomainRegistrar;
address publicResolver;
// Plugin Repo's
address adminPluginRepo;
address multisigPluginRepo;
address tokenVotingPluginRepo;
address stagedProposalProcessorPluginRepo;
}
/// @notice Emitted when deployOnce() has been called and the deployment is complete.
/// @param factory The address of the factory contract where the parameters and addresses can be retrieved.
event ProtocolDeployed(ProtocolFactory factory);
/// @notice Thrown when attempting to call deployOnce() when the protocol is already deployed.
error AlreadyDeployed();
/// @notice Thrown when the Management DAO has less members than minApprovals
error MemberListIsTooSmall();
DeploymentParameters private parameters;
Deployment private deployment;
/// @notice Initializes the factory and performs the full deployment. Values become read-only after that.
/// @param _parameters The parameters of the one-time deployment.
constructor(DeploymentParameters memory _parameters) {
parameters = _parameters;
}
function deployOnce() external {
if (address(deployment.daoFactory) != address(0)) {
revert AlreadyDeployed();
}
// Create the DAO that will own the registries and the core plugin repo's
prepareRawManagementDao();
// Set up the ENS registry and the requested domains
prepareEnsRegistry();
// Deploy the OSx core contracts
prepareOSx();
preparePermissions();
// Prepare the plugin repo's and their versions
prepareCorePluginRepos();
// Drop the factory's permissions on the management DAO
concludeManagementDao();
removePermissions();
emit ProtocolDeployed(this);
}
/// @notice Returns the parameters used by the factory to deploy the protocol
function getParameters() external view returns (DeploymentParameters memory) {
return parameters;
}
/// @notice Returns the addresses of the OSx contracts as well as the the core plugins
function getDeployment() external view returns (Deployment memory) {
return deployment;
}
// Internal helpers
function prepareRawManagementDao() internal {
DAO managementDao = DAO(
payable(
createProxyAndCall(
parameters.osxImplementations.daoBase,
abi.encodeCall(
DAO.initialize,
(
bytes(parameters.managementDao.metadataUri), // Metadata URI
address(this), // initialOwner
address(0), // Trusted forwarder
"" // DAO URI
)
)
)
)
);
deployment.managementDao = address(managementDao);
// Grant the DAO the required permissions on itself
// Available:
// - ROOT_PERMISSION
// - UPGRADE_DAO_PERMISSION
// - REGISTER_STANDARD_CALLBACK_PERMISSION
// - SET_SIGNATURE_VALIDATOR_PERMISSION [skipped]
// - SET_TRUSTED_FORWARDER_PERMISSION [skipped]
// - SET_METADATA_PERMISSION [skipped]
PermissionLib.SingleTargetPermission[] memory items = new PermissionLib.SingleTargetPermission[](3);
items[0] = PermissionLib.SingleTargetPermission(
PermissionLib.Operation.Grant, deployment.managementDao, managementDao.ROOT_PERMISSION_ID()
);
items[1] = PermissionLib.SingleTargetPermission(
PermissionLib.Operation.Grant, deployment.managementDao, managementDao.UPGRADE_DAO_PERMISSION_ID()
);
items[2] = PermissionLib.SingleTargetPermission(
PermissionLib.Operation.Grant,
deployment.managementDao,
managementDao.REGISTER_STANDARD_CALLBACK_PERMISSION_ID()
);
managementDao.applySingleTargetPermissions(deployment.managementDao, items);
// Grant the factory execute permission on the Management DAO
managementDao.grant(deployment.managementDao, address(this), managementDao.EXECUTE_PERMISSION_ID());
}
function prepareEnsRegistry() internal {
bytes32 DAO_ETH_NODE;
bytes32 PLUGIN_DAO_ETH_NODE;
// Set up an ENS environment
(deployment.ensRegistry, deployment.publicResolver, DAO_ETH_NODE, PLUGIN_DAO_ETH_NODE) = parameters
.helperFactories
.ensHelper
.deployStatic(
address(deployment.managementDao), // ENSRegistry owner
bytes(parameters.ensParameters.daoRootDomain),
bytes(parameters.ensParameters.pluginSubdomain)
);
// Deploy the dao.eth ENSSubdomainRegistrar
deployment.daoSubdomainRegistrar = createProxyAndCall(
parameters.osxImplementations.ensSubdomainRegistrarBase,
abi.encodeCall(
ENSSubdomainRegistrar.initialize,
(IDAO(deployment.managementDao), ENS(deployment.ensRegistry), DAO_ETH_NODE)
)
);
// Deploy the plugin.dao.eth ENSSubdomainRegistrar
deployment.pluginSubdomainRegistrar = createProxyAndCall(
parameters.osxImplementations.ensSubdomainRegistrarBase,
abi.encodeCall(
ENSSubdomainRegistrar.initialize,
(IDAO(deployment.managementDao), ENS(deployment.ensRegistry), PLUGIN_DAO_ETH_NODE)
)
);
// Allow the registrars to register subdomains
/// @dev Registrars need to be set as the "operator" by the effective owner (the Management DAO).
/// @dev Doing it from the factory wouldn't work.
Action[] memory actions = new Action[](2);
actions[0].to = deployment.ensRegistry;
actions[0].data = abi.encodeCall(ENS.setApprovalForAll, (deployment.daoSubdomainRegistrar, true));
actions[1].to = deployment.ensRegistry;
actions[1].data = abi.encodeCall(ENS.setApprovalForAll, (deployment.pluginSubdomainRegistrar, true));
DAO(payable(deployment.managementDao)).execute(bytes32(0), actions, 0);
}
function prepareOSx() internal {
// Deploy the DAORegistry proxy
deployment.daoRegistry = createProxyAndCall(
parameters.osxImplementations.daoRegistryBase,
abi.encodeCall(
DAORegistry.initialize,
(IDAO(deployment.managementDao), ENSSubdomainRegistrar(deployment.daoSubdomainRegistrar))
)
);
// Deploy PluginRepoRegistry proxy
deployment.pluginRepoRegistry = createProxyAndCall(
parameters.osxImplementations.pluginRepoRegistryBase,
abi.encodeCall(
PluginRepoRegistry.initialize,
(IDAO(deployment.managementDao), ENSSubdomainRegistrar(deployment.pluginSubdomainRegistrar))
)
);
// Static contract deployments
/// @dev Offloaded to separate factories to avoid hitting code size limits.
deployment.pluginSetupProcessor =
parameters.helperFactories.pspHelper.deployStatic(deployment.pluginRepoRegistry);
deployment.daoFactory =
parameters.helperFactories.daoHelper.deployFactory(deployment.daoRegistry, deployment.pluginSetupProcessor);
deployment.pluginRepoFactory =
parameters.helperFactories.pluginRepoHelper.deployFactory(deployment.pluginRepoRegistry);
// Store the plain implementation addresses
deployment.globalExecutor = parameters.osxImplementations.globalExecutor;
deployment.placeholderSetup = parameters.osxImplementations.placeholderSetup;
}
function preparePermissions() internal {
DAO managementDao = DAO(payable(deployment.managementDao));
// ENS registrar permissions
// Allow to register subdomains
managementDao.grant(
deployment.daoSubdomainRegistrar,
deployment.daoRegistry,
ENSSubdomainRegistrar(deployment.daoSubdomainRegistrar).REGISTER_ENS_SUBDOMAIN_PERMISSION_ID()
);
managementDao.grant(
deployment.pluginSubdomainRegistrar,
deployment.pluginRepoRegistry,
ENSSubdomainRegistrar(deployment.pluginSubdomainRegistrar).REGISTER_ENS_SUBDOMAIN_PERMISSION_ID()
);
// Allow to perform upgrades
managementDao.grant(
deployment.daoSubdomainRegistrar,
deployment.managementDao,
ENSSubdomainRegistrar(deployment.daoSubdomainRegistrar).UPGRADE_REGISTRAR_PERMISSION_ID()
);
managementDao.grant(
deployment.pluginSubdomainRegistrar,
deployment.managementDao,
ENSSubdomainRegistrar(deployment.pluginSubdomainRegistrar).UPGRADE_REGISTRAR_PERMISSION_ID()
);
// DAORegistry permissions
// Register DAO's
managementDao.grant(
deployment.daoRegistry,
deployment.daoFactory,
DAORegistry(deployment.daoRegistry).REGISTER_DAO_PERMISSION_ID()
);
// Upgrade the implementation
managementDao.grant(
deployment.daoRegistry,
deployment.managementDao,
DAORegistry(deployment.daoRegistry).UPGRADE_REGISTRY_PERMISSION_ID()
);
// PluginRepoRegistry permissions
// Register plugins
managementDao.grant(
deployment.pluginRepoRegistry,
deployment.pluginRepoFactory,
PluginRepoRegistry(deployment.pluginRepoRegistry).REGISTER_PLUGIN_REPO_PERMISSION_ID()
);
// Upgrade the implementation
managementDao.grant(
deployment.pluginRepoRegistry,
deployment.managementDao,
PluginRepoRegistry(deployment.pluginRepoRegistry).UPGRADE_REGISTRY_PERMISSION_ID()
);
}
function prepareCorePluginRepos() internal {
deployment.adminPluginRepo = preparePluginRepo(parameters.corePlugins.adminPlugin);
deployment.multisigPluginRepo = preparePluginRepo(parameters.corePlugins.multisigPlugin);
deployment.tokenVotingPluginRepo = preparePluginRepo(parameters.corePlugins.tokenVotingPlugin);
deployment.stagedProposalProcessorPluginRepo =
preparePluginRepo(parameters.corePlugins.stagedProposalProcessorPlugin);
}
function preparePluginRepo(CorePlugin memory corePlugin) internal returns (address pluginRepo) {
// Make it owned by the Management DAO upfront
pluginRepo = address(
PluginRepoFactory(deployment.pluginRepoFactory).createPluginRepo(
corePlugin.subdomain, deployment.managementDao
)
);
// Make the Management DAO publish the initial version(s)
Action[] memory actions = new Action[](1);
actions[0].to = pluginRepo;
// Publish a placeholder on older builds
if (corePlugin.build > 1) {
actions[0].data = abi.encodeCall(
PluginRepo.createVersion,
(
corePlugin.release,
address(parameters.osxImplementations.placeholderSetup),
bytes(""), // no actual build
bytes(corePlugin.releaseMetadataUri)
)
);
for (uint256 i = 1; i < corePlugin.build; i++) {
DAO(payable(deployment.managementDao)).execute(bytes32(0), actions, 0);
}
}
// The actual plugin setup
actions[0].data = abi.encodeCall(
PluginRepo.createVersion,
(
corePlugin.release,
address(corePlugin.pluginSetup),
bytes(corePlugin.buildMetadataUri),
bytes(corePlugin.releaseMetadataUri)
)
);
DAO(payable(deployment.managementDao)).execute(bytes32(0), actions, 0);
}
function concludeManagementDao() internal {
DAO managementDao = DAO(payable(deployment.managementDao));
// Grant temporary permissions for the factory to register the Management DAO
managementDao.grant(
deployment.daoRegistry, address(this), DAORegistry(deployment.daoRegistry).REGISTER_DAO_PERMISSION_ID()
);
// Register the ManagementDAO on the DaoRegistry
DAORegistry(deployment.daoRegistry).register(
managementDao, address(this), parameters.ensParameters.managementDaoSubdomain
);
// Revoke the temporary permission
managementDao.revoke(
deployment.daoRegistry, address(this), DAORegistry(deployment.daoRegistry).REGISTER_DAO_PERMISSION_ID()
);
// Management DAO Multisig Plugin
// Check the members length
if (parameters.managementDao.members.length < parameters.managementDao.minApprovals) {
revert MemberListIsTooSmall();
}
// Prepare the installation
bytes memory setupData = abi.encode(
parameters.managementDao.members,
Multisig.MultisigSettings({onlyListed: true, minApprovals: parameters.managementDao.minApprovals}),
IPlugin.TargetConfig({target: deployment.managementDao, operation: IPlugin.Operation.Call}),
bytes("") // metadata
);
PluginSetupRef memory pluginSetupRef = PluginSetupRef(
PluginRepo.Tag(parameters.corePlugins.multisigPlugin.release, parameters.corePlugins.multisigPlugin.build),
PluginRepo(deployment.multisigPluginRepo)
);
IPluginSetup.PreparedSetupData memory preparedSetupData;
(deployment.managementDaoMultisig, preparedSetupData) = PluginSetupProcessor(deployment.pluginSetupProcessor)
.prepareInstallation(
deployment.managementDao, PluginSetupProcessor.PrepareInstallationParams(pluginSetupRef, setupData)
);
// Grant temporary permissions to apply the installation
managementDao.grant(address(managementDao), deployment.pluginSetupProcessor, managementDao.ROOT_PERMISSION_ID());
managementDao.grant(
deployment.pluginSetupProcessor,
address(this),
PluginSetupProcessor(deployment.pluginSetupProcessor).APPLY_INSTALLATION_PERMISSION_ID()
);
// Install the plugin
PluginSetupProcessor(deployment.pluginSetupProcessor).applyInstallation(
address(managementDao),
PluginSetupProcessor.ApplyInstallationParams(
pluginSetupRef,
deployment.managementDaoMultisig,
preparedSetupData.permissions,
hashHelpers(preparedSetupData.helpers)
)
);
// Remove the temporary permissions
managementDao.revoke(
address(managementDao), deployment.pluginSetupProcessor, managementDao.ROOT_PERMISSION_ID()
);
managementDao.revoke(
deployment.pluginSetupProcessor,
address(this),
PluginSetupProcessor(deployment.pluginSetupProcessor).APPLY_INSTALLATION_PERMISSION_ID()
);
}
function removePermissions() internal {
// Remove the execute permission from the factory
DAO(payable(deployment.managementDao)).revoke(
deployment.managementDao, // where
address(this), // who
DAO(payable(deployment.managementDao)).EXECUTE_PERMISSION_ID() // permission
);
// Remove the ROOT permission from the factory
DAO(payable(deployment.managementDao)).revoke(
deployment.managementDao, // where
address(this), // who
DAO(payable(deployment.managementDao)).ROOT_PERMISSION_ID() // permission
);
}
function createProxyAndCall(address _logic, bytes memory _data) internal returns (address) {
return address(new ERC1967Proxy(_logic, _data));
}
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.17;
interface IDAOHelper {
function deployFactory(address daoRegistry, address pluginSetupProcessor) external returns (address daoFactory);
}
interface IPluginRepoHelper {
function deployFactory(address pluginRepoRegistry) external returns (address pluginRepoFactory);
}
interface IPSPHelper {
function deployStatic(address pluginRepoRegistry) external returns (address pluginSetupProcessor);
}
interface IENSHelper {
function deployStatic(address owner, bytes memory daoRootDomain, bytes memory pluginSubdomain)
external
returns (address ensRegistry, address publicResolver, bytes32 DAO_ETH_NODE, bytes32 PLUGIN_DAO_ETH_NODE);
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {ERC165StorageUpgradeable} from "@openzeppelin/contracts-upgradeable/utils/introspection/ERC165StorageUpgradeable.sol";
import {Initializable} from "@openzeppelin/contracts-upgradeable/proxy/utils/Initializable.sol";
import {UUPSUpgradeable} from "@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol";
import {SafeERC20Upgradeable} from "@openzeppelin/contracts-upgradeable/token/ERC20/utils/SafeERC20Upgradeable.sol";
import {IERC20Upgradeable} from "@openzeppelin/contracts-upgradeable/token/ERC20/IERC20Upgradeable.sol";
import {IERC721ReceiverUpgradeable} from "@openzeppelin/contracts-upgradeable/token/ERC721/IERC721ReceiverUpgradeable.sol";
import {IERC1155Upgradeable} from "@openzeppelin/contracts-upgradeable/token/ERC1155/IERC1155Upgradeable.sol";
import {IERC1155ReceiverUpgradeable} from "@openzeppelin/contracts-upgradeable/token/ERC1155/IERC1155ReceiverUpgradeable.sol";
import {AddressUpgradeable} from "@openzeppelin/contracts-upgradeable/utils/AddressUpgradeable.sol";
import {IERC1271} from "@openzeppelin/contracts/interfaces/IERC1271.sol";
import {IProtocolVersion} from "@aragon/osx-commons-contracts/src/utils/versioning/IProtocolVersion.sol";
import {ProtocolVersion} from "@aragon/osx-commons-contracts/src/utils/versioning/ProtocolVersion.sol";
import {VersionComparisonLib} from "@aragon/osx-commons-contracts/src/utils/versioning/VersionComparisonLib.sol";
import {hasBit, flipBit} from "@aragon/osx-commons-contracts/src/utils/math/BitMap.sol";
import {Action} from "@aragon/osx-commons-contracts/src/executors/Executor.sol";
import {IExecutor} from "@aragon/osx-commons-contracts/src/executors/IExecutor.sol";
import {IDAO} from "@aragon/osx-commons-contracts/src/dao/IDAO.sol";
import {PermissionManager} from "../permission/PermissionManager.sol";
import {CallbackHandler} from "../utils/CallbackHandler.sol";
import {IEIP4824} from "./IEIP4824.sol";
/// @title DAO
/// @author Aragon X - 2021-2024
/// @notice This contract is the entry point to the Aragon DAO framework and provides our users a simple and easy to use public interface.
/// @dev Public API of the Aragon DAO framework.
/// @custom:security-contact [email protected]
contract DAO is
IEIP4824,
Initializable,
IERC1271,
ERC165StorageUpgradeable,
IDAO,
IExecutor,
UUPSUpgradeable,
ProtocolVersion,
PermissionManager,
CallbackHandler
{
using SafeERC20Upgradeable for IERC20Upgradeable;
using AddressUpgradeable for address;
using VersionComparisonLib for uint8[3];
/// @notice The ID of the permission required to call the `execute` function.
bytes32 public constant EXECUTE_PERMISSION_ID = keccak256("EXECUTE_PERMISSION");
/// @notice The ID of the permission required to call the `_authorizeUpgrade` function.
bytes32 public constant UPGRADE_DAO_PERMISSION_ID = keccak256("UPGRADE_DAO_PERMISSION");
/// @notice The ID of the permission required to call the `setMetadata` function.
bytes32 public constant SET_METADATA_PERMISSION_ID = keccak256("SET_METADATA_PERMISSION");
/// @notice The ID of the permission required to call the `setTrustedForwarder` function.
bytes32 public constant SET_TRUSTED_FORWARDER_PERMISSION_ID =
keccak256("SET_TRUSTED_FORWARDER_PERMISSION");
/// @notice The ID of the permission required to call the `registerStandardCallback` function.
bytes32 public constant REGISTER_STANDARD_CALLBACK_PERMISSION_ID =
keccak256("REGISTER_STANDARD_CALLBACK_PERMISSION");
/// @notice The ID of the permission required to validate [ERC-1271](https://eips.ethereum.org/EIPS/eip-1271) signatures.
bytes32 public constant VALIDATE_SIGNATURE_PERMISSION_ID =
keccak256("VALIDATE_SIGNATURE_PERMISSION");
/// @notice The internal constant storing the maximal action array length.
uint256 internal constant MAX_ACTIONS = 256;
/// @notice The first out of two values to which the `_reentrancyStatus` state variable (used by the `nonReentrant` modifier) can be set indicating that a function was not entered.
uint256 private constant _NOT_ENTERED = 1;
/// @notice The second out of two values to which the `_reentrancyStatus` state variable (used by the `nonReentrant` modifier) can be set indicating that a function was entered.
uint256 private constant _ENTERED = 2;
/// @notice Removed variable that is left here to maintain the storage layout.
/// @dev Introduced in v1.0.0. Removed in v1.4.0.
/// @custom:oz-renamed-from signatureValidator
address private __removed0;
/// @notice The address of the trusted forwarder verifying meta transactions.
/// @dev Added in v1.0.0.
address private trustedForwarder;
/// @notice The [EIP-4824](https://eips.ethereum.org/EIPS/eip-4824) DAO URI.
/// @dev Added in v1.0.0.
string private _daoURI;
/// @notice The state variable for the reentrancy guard of the `execute` function.
/// @dev Added in v1.3.0. The variable can be of value `_NOT_ENTERED = 1` or `_ENTERED = 2` in usage and is initialized with `_NOT_ENTERED`.
uint256 private _reentrancyStatus;
/// @notice Thrown if a call is reentrant.
error ReentrantCall();
/// @notice Thrown if the action array length is larger than `MAX_ACTIONS`.
error TooManyActions();
/// @notice Thrown if action execution has failed.
/// @param index The index of the action in the action array that failed.
error ActionFailed(uint256 index);
/// @notice Thrown if an action has insufficient gas left.
error InsufficientGas();
/// @notice Thrown if the deposit amount is zero.
error ZeroAmount();
/// @notice Thrown if there is a mismatch between the expected and actually deposited amount of native tokens.
/// @param expected The expected native token amount.
/// @param actual The actual native token amount deposited.
error NativeTokenDepositAmountMismatch(uint256 expected, uint256 actual);
/// @notice Thrown if an upgrade is not supported from a specific protocol version .
error ProtocolVersionUpgradeNotSupported(uint8[3] protocolVersion);
/// @notice Thrown when a function is removed but left to not corrupt the interface ID.
error FunctionRemoved();
/// @notice Thrown when initialize is called after it has already been executed.
error AlreadyInitialized();
/// @notice Emitted when a new DAO URI is set.
/// @param daoURI The new URI.
event NewURI(string daoURI);
/// @notice A modifier to protect a function from calling itself, directly or indirectly (reentrancy).
/// @dev Currently, this modifier is only applied to the `execute()` function. If this is used multiple times, private `_beforeNonReentrant()` and `_afterNonReentrant()` functions should be created to prevent code duplication.
modifier nonReentrant() {
if (_reentrancyStatus == _ENTERED) {
revert ReentrantCall();
}
_reentrancyStatus = _ENTERED;
_;
_reentrancyStatus = _NOT_ENTERED;
}
/// @notice This ensures that the initialize function cannot be called during the upgrade process.
modifier onlyCallAtInitialization() {
if (_getInitializedVersion() != 0) {
revert AlreadyInitialized();
}
_;
}
/// @notice Disables the initializers on the implementation contract to prevent it from being left uninitialized.
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() {
_disableInitializers();
}
/// @notice Initializes the DAO by
/// - setting the reentrancy status variable to `_NOT_ENTERED`
/// - registering the [ERC-165](https://eips.ethereum.org/EIPS/eip-165) interface ID
/// - setting the trusted forwarder for meta transactions
/// - giving the `ROOT_PERMISSION_ID` permission to the initial owner (that should be revoked and transferred to the DAO after setup).
/// @dev This method is required to support [ERC-1822](https://eips.ethereum.org/EIPS/eip-1822).
/// @param _metadata IPFS hash that points to all the metadata (logo, description, tags, etc.) of a DAO.
/// @param _initialOwner The initial owner of the DAO having the `ROOT_PERMISSION_ID` permission.
/// @param _trustedForwarder The trusted forwarder responsible for verifying meta transactions.
/// @param daoURI_ The DAO URI required to support [ERC-4824](https://eips.ethereum.org/EIPS/eip-4824).
function initialize(
bytes calldata _metadata,
address _initialOwner,
address _trustedForwarder,
string calldata daoURI_
) external onlyCallAtInitialization reinitializer(3) {
_reentrancyStatus = _NOT_ENTERED; // added in v1.3.0
// In addition to the current interfaceId, also support previous version of the interfaceId.
_registerInterface(type(IDAO).interfaceId ^ IExecutor.execute.selector);
_registerInterface(type(IDAO).interfaceId);
_registerInterface(type(IExecutor).interfaceId);
_registerInterface(type(IERC1271).interfaceId);
_registerInterface(type(IEIP4824).interfaceId);
_registerInterface(type(IProtocolVersion).interfaceId); // added in v1.3.0
_registerTokenInterfaces();
_setMetadata(_metadata);
_setTrustedForwarder(_trustedForwarder);
_setDaoURI(daoURI_);
__PermissionManager_init(_initialOwner);
}
/// @notice Initializes the DAO after an upgrade from a previous protocol version.
/// @param _previousProtocolVersion The semantic protocol version number of the previous DAO implementation contract this upgrade is transitioning from.
/// @param _initData The initialization data to be passed to via `upgradeToAndCall` (see [ERC-1967](https://docs.openzeppelin.com/contracts/4.x/api/proxy#ERC1967Upgrade)).
function initializeFrom(
uint8[3] calldata _previousProtocolVersion,
bytes calldata _initData
) external reinitializer(3) {
_initData; // Silences the unused function parameter warning.
// Check that the contract is not upgrading from a different major release.
if (_previousProtocolVersion[0] != 1) {
revert ProtocolVersionUpgradeNotSupported(_previousProtocolVersion);
}
// Initialize `_reentrancyStatus` that was added in v1.3.0.
// Register Interface `ProtocolVersion` that was added in v1.3.0.
if (_previousProtocolVersion.lt([1, 3, 0])) {
_reentrancyStatus = _NOT_ENTERED;
_registerInterface(type(IProtocolVersion).interfaceId);
}
// Revoke the `SET_SIGNATURE_VALIDATOR_PERMISSION` that was deprecated in v1.4.0.
if (_previousProtocolVersion.lt([1, 4, 0])) {
_revoke({
_where: address(this),
_who: address(this),
_permissionId: keccak256("SET_SIGNATURE_VALIDATOR_PERMISSION")
});
_registerInterface(type(IDAO).interfaceId);
_registerInterface(type(IExecutor).interfaceId);
}
}
/// @inheritdoc PermissionManager
function isPermissionRestrictedForAnyAddr(
bytes32 _permissionId
) internal pure override returns (bool) {
return
_permissionId == EXECUTE_PERMISSION_ID ||
_permissionId == UPGRADE_DAO_PERMISSION_ID ||
_permissionId == SET_METADATA_PERMISSION_ID ||
_permissionId == SET_TRUSTED_FORWARDER_PERMISSION_ID ||
_permissionId == REGISTER_STANDARD_CALLBACK_PERMISSION_ID;
}
/// @notice Internal method authorizing the upgrade of the contract via the [upgradeability mechanism for UUPS proxies](https://docs.openzeppelin.com/contracts/4.x/api/proxy#UUPSUpgradeable) (see [ERC-1822](https://eips.ethereum.org/EIPS/eip-1822)).
/// @dev The caller must have the `UPGRADE_DAO_PERMISSION_ID` permission.
function _authorizeUpgrade(address) internal virtual override auth(UPGRADE_DAO_PERMISSION_ID) {}
/// @inheritdoc IDAO
function setTrustedForwarder(
address _newTrustedForwarder
) external override auth(SET_TRUSTED_FORWARDER_PERMISSION_ID) {
_setTrustedForwarder(_newTrustedForwarder);
}
/// @inheritdoc IDAO
function getTrustedForwarder() external view virtual override returns (address) {
return trustedForwarder;
}
/// @inheritdoc IDAO
function hasPermission(
address _where,
address _who,
bytes32 _permissionId,
bytes memory _data
) external view override returns (bool) {
return isGranted({_where: _where, _who: _who, _permissionId: _permissionId, _data: _data});
}
/// @inheritdoc IDAO
function setMetadata(
bytes calldata _metadata
) external override auth(SET_METADATA_PERMISSION_ID) {
_setMetadata(_metadata);
}
/// @inheritdoc IExecutor
function execute(
bytes32 _callId,
Action[] calldata _actions,
uint256 _allowFailureMap
)
external
override
nonReentrant
auth(EXECUTE_PERMISSION_ID)
returns (bytes[] memory execResults, uint256 failureMap)
{
// Check that the action array length is within bounds.
if (_actions.length > MAX_ACTIONS) {
revert TooManyActions();
}
execResults = new bytes[](_actions.length);
uint256 gasBefore;
uint256 gasAfter;
for (uint256 i = 0; i < _actions.length; ) {
gasBefore = gasleft();
(bool success, bytes memory result) = _actions[i].to.call{value: _actions[i].value}(
_actions[i].data
);
gasAfter = gasleft();
// Check if failure is allowed
if (!hasBit(_allowFailureMap, uint8(i))) {
// Check if the call failed.
if (!success) {
revert ActionFailed(i);
}
} else {
// Check if the call failed.
if (!success) {
// Make sure that the action call did not fail because 63/64 of `gasleft()` was insufficient to execute the external call `.to.call` (see [ERC-150](https://eips.ethereum.org/EIPS/eip-150)).
// In specific scenarios, i.e. proposal execution where the last action in the action array is allowed to fail, the account calling `execute` could force-fail this action by setting a gas limit
// where 63/64 is insufficient causing the `.to.call` to fail, but where the remaining 1/64 gas are sufficient to successfully finish the `execute` call.
if (gasAfter < gasBefore / 64) {
revert InsufficientGas();
}
// Store that this action failed.
failureMap = flipBit(failureMap, uint8(i));
}
}
execResults[i] = result;
unchecked {
++i;
}
}
emit Executed({
actor: msg.sender,
callId: _callId,
actions: _actions,
allowFailureMap: _allowFailureMap,
failureMap: failureMap,
execResults: execResults
});
}
/// @inheritdoc IDAO
function deposit(
address _token,
uint256 _amount,
string calldata _reference
) external payable override {
if (_amount == 0) revert ZeroAmount();
if (_token == address(0)) {
if (msg.value != _amount)
revert NativeTokenDepositAmountMismatch({expected: _amount, actual: msg.value});
} else {
if (msg.value != 0)
revert NativeTokenDepositAmountMismatch({expected: 0, actual: msg.value});
IERC20Upgradeable(_token).safeTransferFrom(msg.sender, address(this), _amount);
}
emit Deposited(msg.sender, _token, _amount, _reference);
}
/// @inheritdoc IDAO
function setSignatureValidator(address) external pure override {
revert FunctionRemoved();
}
/// @inheritdoc IDAO
/// @dev Relays the validation logic determining who is allowed to sign on behalf of the DAO to its permission manager.
/// Caller specific bypassing can be set direct granting (i.e., `grant({_where: dao, _who: specificErc1271Caller, _permissionId: VALIDATE_SIGNATURE_PERMISSION_ID})`).
/// Caller specific signature validation logic can be set by granting with a `PermissionCondition` (i.e., `grantWithCondition({_where: dao, _who: specificErc1271Caller, _permissionId: VALIDATE_SIGNATURE_PERMISSION_ID, _condition: yourConditionImplementation})`)
/// Generic signature validation logic can be set for all calling contracts by granting with a `PermissionCondition` to `PermissionManager.ANY_ADDR()` (i.e., `grantWithCondition({_where: dao, _who: PermissionManager.ANY_ADDR(), _permissionId: VALIDATE_SIGNATURE_PERMISSION_ID, _condition: yourConditionImplementation})`).
function isValidSignature(
bytes32 _hash,
bytes memory _signature
) external view override(IDAO, IERC1271) returns (bytes4) {
if (
isGranted({
_where: address(this),
_who: msg.sender,
_permissionId: VALIDATE_SIGNATURE_PERMISSION_ID,
_data: abi.encode(_hash, _signature)
})
) {
return 0x1626ba7e; // `type(IERC1271).interfaceId` = bytes4(keccak256("isValidSignature(bytes32,bytes)")`
}
return 0xffffffff; // `bytes4(uint32(type(uint32).max-1))`
}
/// @notice Emits the `NativeTokenDeposited` event to track native token deposits that weren't made via the deposit method.
/// @dev This call is bound by the gas limitations for `send`/`transfer` calls introduced by [ERC-2929](https://eips.ethereum.org/EIPS/eip-2929).
/// Gas cost increases in future hard forks might break this function. As an alternative, [ERC-2930](https://eips.ethereum.org/EIPS/eip-2930)-type transactions using access lists can be employed.
receive() external payable {
emit NativeTokenDeposited(msg.sender, msg.value);
}
/// @notice Fallback to handle future versions of the [ERC-165](https://eips.ethereum.org/EIPS/eip-165) standard.
/// @param _input An alias being equivalent to `msg.data`. This feature of the fallback function was introduced with the [solidity compiler version 0.7.6](https://github.com/ethereum/solidity/releases/tag/v0.7.6)
/// @return The magic number registered for the function selector triggering the fallback.
fallback(bytes calldata _input) external returns (bytes memory) {
bytes4 magicNumber = _handleCallback(msg.sig, _input);
return abi.encode(magicNumber);
}
/// @notice Emits the MetadataSet event if new metadata is set.
/// @param _metadata Hash of the IPFS metadata object.
function _setMetadata(bytes calldata _metadata) internal {
emit MetadataSet(_metadata);
}
/// @notice Sets the trusted forwarder on the DAO and emits the associated event.
/// @param _trustedForwarder The trusted forwarder address.
function _setTrustedForwarder(address _trustedForwarder) internal {
trustedForwarder = _trustedForwarder;
emit TrustedForwarderSet(_trustedForwarder);
}
/// @notice Registers the [ERC-721](https://eips.ethereum.org/EIPS/eip-721) and [ERC-1155](https://eips.ethereum.org/EIPS/eip-1155) interfaces and callbacks.
function _registerTokenInterfaces() private {
_registerInterface(type(IERC721ReceiverUpgradeable).interfaceId);
_registerInterface(type(IERC1155ReceiverUpgradeable).interfaceId);
_registerCallback(
IERC721ReceiverUpgradeable.onERC721Received.selector,
IERC721ReceiverUpgradeable.onERC721Received.selector
);
_registerCallback(
IERC1155ReceiverUpgradeable.onERC1155Received.selector,
IERC1155ReceiverUpgradeable.onERC1155Received.selector
);
_registerCallback(
IERC1155ReceiverUpgradeable.onERC1155BatchReceived.selector,
IERC1155ReceiverUpgradeable.onERC1155BatchReceived.selector
);
}
/// @inheritdoc IDAO
function registerStandardCallback(
bytes4 _interfaceId,
bytes4 _callbackSelector,
bytes4 _magicNumber
) external override auth(REGISTER_STANDARD_CALLBACK_PERMISSION_ID) {
_registerInterface(_interfaceId);
_registerCallback(_callbackSelector, _magicNumber);
emit StandardCallbackRegistered(_interfaceId, _callbackSelector, _magicNumber);
}
/// @inheritdoc IEIP4824
function daoURI() external view returns (string memory) {
return _daoURI;
}
/// @notice Updates the set DAO URI to a new value.
/// @param newDaoURI The new DAO URI to be set.
function setDaoURI(string calldata newDaoURI) external auth(SET_METADATA_PERMISSION_ID) {
_setDaoURI(newDaoURI);
}
/// @notice Sets the new [ERC-4824](https://eips.ethereum.org/EIPS/eip-4824) DAO URI and emits the associated event.
/// @param daoURI_ The new DAO URI.
function _setDaoURI(string calldata daoURI_) internal {
_daoURI = daoURI_;
emit NewURI(daoURI_);
}
/// @notice This empty reserved space is put in place to allow future versions to add new variables without shifting down storage in the inheritance chain (see [OpenZeppelin's guide about storage gaps](https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps)).
uint256[46] private __gap;
}// SPDX-License-Identifier: AGPL-3.0-or-later pragma solidity ^0.8.8; /// @title IDAO /// @author Aragon X - 2022-2024 /// @notice The interface required for DAOs within the Aragon App DAO framework. /// @custom:security-contact [email protected] interface IDAO { /// @notice Checks if an address has permission on a contract via a permission identifier and considers if `ANY_ADDRESS` was used in the granting process. /// @param _where The address of the contract. /// @param _who The address of a EOA or contract to give the permissions. /// @param _permissionId The permission identifier. /// @param _data The optional data passed to the `PermissionCondition` registered. /// @return Returns true if the address has permission, false if not. function hasPermission( address _where, address _who, bytes32 _permissionId, bytes memory _data ) external view returns (bool); /// @notice Updates the DAO metadata (e.g., an IPFS hash). /// @param _metadata The IPFS hash of the new metadata object. function setMetadata(bytes calldata _metadata) external; /// @notice Emitted when the DAO metadata is updated. /// @param metadata The IPFS hash of the new metadata object. event MetadataSet(bytes metadata); /// @notice Emitted when a standard callback is registered. /// @param interfaceId The ID of the interface. /// @param callbackSelector The selector of the callback function. /// @param magicNumber The magic number to be registered for the callback function selector. event StandardCallbackRegistered( bytes4 interfaceId, bytes4 callbackSelector, bytes4 magicNumber ); /// @notice Deposits (native) tokens to the DAO contract with a reference string. /// @param _token The address of the token or address(0) in case of the native token. /// @param _amount The amount of tokens to deposit. /// @param _reference The reference describing the deposit reason. function deposit(address _token, uint256 _amount, string calldata _reference) external payable; /// @notice Emitted when a token deposit has been made to the DAO. /// @param sender The address of the sender. /// @param token The address of the deposited token. /// @param amount The amount of tokens deposited. /// @param _reference The reference describing the deposit reason. event Deposited( address indexed sender, address indexed token, uint256 amount, string _reference ); /// @notice Emitted when a native token deposit has been made to the DAO. /// @dev This event is intended to be emitted in the `receive` function and is therefore bound by the gas limitations for `send`/`transfer` calls introduced by [ERC-2929](https://eips.ethereum.org/EIPS/eip-2929). /// @param sender The address of the sender. /// @param amount The amount of native tokens deposited. event NativeTokenDeposited(address sender, uint256 amount); /// @notice Setter for the trusted forwarder verifying the meta transaction. /// @param _trustedForwarder The trusted forwarder address. function setTrustedForwarder(address _trustedForwarder) external; /// @notice Getter for the trusted forwarder verifying the meta transaction. /// @return The trusted forwarder address. function getTrustedForwarder() external view returns (address); /// @notice Emitted when a new TrustedForwarder is set on the DAO. /// @param forwarder the new forwarder address. event TrustedForwarderSet(address forwarder); /// @notice Checks whether a signature is valid for a provided hash according to [ERC-1271](https://eips.ethereum.org/EIPS/eip-1271). /// @param _hash The hash of the data to be signed. /// @param _signature The signature byte array associated with `_hash`. /// @return Returns the `bytes4` magic value `0x1626ba7e` if the signature is valid and `0xffffffff` if not. function isValidSignature(bytes32 _hash, bytes memory _signature) external returns (bytes4); /// @notice Registers an ERC standard having a callback by registering its [ERC-165](https://eips.ethereum.org/EIPS/eip-165) interface ID and callback function signature. /// @param _interfaceId The ID of the interface. /// @param _callbackSelector The selector of the callback function. /// @param _magicNumber The magic number to be registered for the function signature. function registerStandardCallback( bytes4 _interfaceId, bytes4 _callbackSelector, bytes4 _magicNumber ) external; /// @notice Removed function being left here to not corrupt the IDAO interface ID. Any call will revert. /// @dev Introduced in v1.0.0. Removed in v1.4.0. function setSignatureValidator(address) external; }
// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {ERC165} from "@openzeppelin/contracts/utils/introspection/ERC165.sol";
import {IDAO} from "@aragon/osx-commons-contracts/src/dao/IDAO.sol";
import {IProtocolVersion} from "@aragon/osx-commons-contracts/src/utils/versioning/IProtocolVersion.sol";
import {ProtocolVersion} from "@aragon/osx-commons-contracts/src/utils/versioning/ProtocolVersion.sol";
import {IPluginSetup} from "@aragon/osx-commons-contracts/src/plugin/setup/IPluginSetup.sol";
import {PermissionLib} from "@aragon/osx-commons-contracts/src/permission/PermissionLib.sol";
import {ProxyLib} from "@aragon/osx-commons-contracts/src/utils/deployment/ProxyLib.sol";
import {DAO} from "../../core/dao/DAO.sol";
import {PluginRepo} from "../plugin/repo/PluginRepo.sol";
import {PluginSetupProcessor} from "../plugin/setup/PluginSetupProcessor.sol";
import {hashHelpers, PluginSetupRef} from "../plugin/setup/PluginSetupProcessorHelpers.sol";
import {DAORegistry} from "./DAORegistry.sol";
/// @title DAOFactory
/// @author Aragon X - 2022-2023
/// @notice This contract is used to create a DAO.
/// @custom:security-contact [email protected]
contract DAOFactory is ERC165, ProtocolVersion {
using ProxyLib for address;
/// @notice The DAO base contract, to be used for creating new `DAO`s via `createERC1967Proxy` function.
address public immutable daoBase;
/// @notice The DAO registry listing the `DAO` contracts created via this contract.
DAORegistry public immutable daoRegistry;
/// @notice The plugin setup processor for installing plugins on the newly created `DAO`s.
PluginSetupProcessor public immutable pluginSetupProcessor;
// Cache permission IDs for optimized access
bytes32 internal immutable ROOT_PERMISSION_ID;
bytes32 internal immutable UPGRADE_DAO_PERMISSION_ID;
bytes32 internal immutable SET_TRUSTED_FORWARDER_PERMISSION_ID;
bytes32 internal immutable SET_METADATA_PERMISSION_ID;
bytes32 internal immutable REGISTER_STANDARD_CALLBACK_PERMISSION_ID;
bytes32 internal immutable EXECUTE_PERMISSION_ID;
bytes32 internal immutable APPLY_INSTALLATION_PERMISSION_ID;
/// @notice The container for the DAO settings to be set during the DAO initialization.
/// @param trustedForwarder The address of the trusted forwarder required for meta transactions.
/// @param daoURI The DAO uri used with [EIP-4824](https://eips.ethereum.org/EIPS/eip-4824).
/// @param subdomain The ENS subdomain to be registered for the DAO contract.
/// @param metadata The metadata of the DAO.
struct DAOSettings {
address trustedForwarder;
string daoURI;
string subdomain;
bytes metadata;
}
/// @notice The container with the information required to install a plugin on the DAO.
/// @param pluginSetupRef The `PluginSetupRepo` address of the plugin and the version tag.
/// @param data The bytes-encoded data containing the input parameters for the installation as specified in the plugin's build metadata JSON file.
struct PluginSettings {
PluginSetupRef pluginSetupRef;
bytes data;
}
/// @notice The container with the information about an installed plugin on a DAO.
/// @param plugin The address of the deployed plugin instance.
/// @param preparedSetupData The applied preparedSetupData which contains arrays of helpers and permissions.
struct InstalledPlugin {
address plugin;
IPluginSetup.PreparedSetupData preparedSetupData;
}
/// @notice Thrown if `PluginSettings` array is empty, and no plugin is provided.
error NoPluginProvided();
/// @notice The constructor setting the registry and plugin setup processor and creating the base contracts for the factory.
/// @param _registry The DAO registry to register the DAO by its name.
/// @param _pluginSetupProcessor The address of PluginSetupProcessor.
constructor(DAORegistry _registry, PluginSetupProcessor _pluginSetupProcessor) {
daoRegistry = _registry;
pluginSetupProcessor = _pluginSetupProcessor;
DAO dao = new DAO();
daoBase = address(dao);
// Cache permission IDs for reduced gas usage in future function calls
ROOT_PERMISSION_ID = dao.ROOT_PERMISSION_ID();
UPGRADE_DAO_PERMISSION_ID = dao.UPGRADE_DAO_PERMISSION_ID();
SET_TRUSTED_FORWARDER_PERMISSION_ID = dao.SET_TRUSTED_FORWARDER_PERMISSION_ID();
SET_METADATA_PERMISSION_ID = dao.SET_METADATA_PERMISSION_ID();
REGISTER_STANDARD_CALLBACK_PERMISSION_ID = dao.REGISTER_STANDARD_CALLBACK_PERMISSION_ID();
EXECUTE_PERMISSION_ID = dao.EXECUTE_PERMISSION_ID();
APPLY_INSTALLATION_PERMISSION_ID = pluginSetupProcessor.APPLY_INSTALLATION_PERMISSION_ID();
}
/// @notice Checks if this or the parent contract supports an interface by its ID.
/// @param _interfaceId The ID of the interface.
/// @return Returns `true` if the interface is supported.
function supportsInterface(bytes4 _interfaceId) public view virtual override returns (bool) {
return
_interfaceId == type(IProtocolVersion).interfaceId ||
super.supportsInterface(_interfaceId);
}
/// @notice Creates a new DAO, registers it in the DAO registry, and optionally installs plugins via the plugin setup processor.
/// @dev If `_pluginSettings` is empty, the caller is granted `EXECUTE_PERMISSION` on the DAO.
/// @param _daoSettings The settings to configure during DAO initialization.
/// @param _pluginSettings An array containing plugin references and settings. If provided, each plugin is installed
/// after the DAO creation.
/// @return createdDao The address of the newly created DAO instance.
/// @return installedPlugins An array of `InstalledPlugin` structs, each containing the plugin address and associated
/// helper contracts and permissions, if plugins were installed; otherwise, an empty array.
function createDao(
DAOSettings calldata _daoSettings,
PluginSettings[] calldata _pluginSettings
) external returns (DAO createdDao, InstalledPlugin[] memory installedPlugins) {
// Create DAO.
createdDao = _createDAO(_daoSettings);
// Register DAO.
daoRegistry.register(createdDao, msg.sender, _daoSettings.subdomain);
// Cache address to save gas
address daoAddress = address(createdDao);
// Install plugins if plugin settings are provided.
if (_pluginSettings.length != 0) {
installedPlugins = new InstalledPlugin[](_pluginSettings.length);
// Cache address to save gas
address pluginSetupProcessorAddress = address(pluginSetupProcessor);
// Grant the temporary permissions.
// Grant Temporarily `ROOT_PERMISSION` to `pluginSetupProcessor`.
createdDao.grant(daoAddress, pluginSetupProcessorAddress, ROOT_PERMISSION_ID);
// Grant Temporarily `APPLY_INSTALLATION_PERMISSION` on `pluginSetupProcessor` to this `DAOFactory`.
createdDao.grant(
pluginSetupProcessorAddress,
address(this),
APPLY_INSTALLATION_PERMISSION_ID
);
// Install plugins on the newly created DAO.
for (uint256 i; i < _pluginSettings.length; ++i) {
// Prepare plugin.
(
address plugin,
IPluginSetup.PreparedSetupData memory preparedSetupData
) = pluginSetupProcessor.prepareInstallation(
daoAddress,
PluginSetupProcessor.PrepareInstallationParams(
_pluginSettings[i].pluginSetupRef,
_pluginSettings[i].data
)
);
// Apply plugin.
pluginSetupProcessor.applyInstallation(
daoAddress,
PluginSetupProcessor.ApplyInstallationParams(
_pluginSettings[i].pluginSetupRef,
plugin,
preparedSetupData.permissions,
hashHelpers(preparedSetupData.helpers)
)
);
installedPlugins[i] = InstalledPlugin(plugin, preparedSetupData);
}
// Revoke the temporarily granted permissions.
// Revoke Temporarily `ROOT_PERMISSION` from `pluginSetupProcessor`.
createdDao.revoke(daoAddress, pluginSetupProcessorAddress, ROOT_PERMISSION_ID);
// Revoke `APPLY_INSTALLATION_PERMISSION` on `pluginSetupProcessor` from this `DAOFactory` .
createdDao.revoke(
pluginSetupProcessorAddress,
address(this),
APPLY_INSTALLATION_PERMISSION_ID
);
} else {
// if no plugin setting is provided, grant EXECUTE_PERMISSION_ID to msg.sender
createdDao.grant(daoAddress, msg.sender, EXECUTE_PERMISSION_ID);
}
// Set the rest of DAO's permissions.
_setDAOPermissions(daoAddress);
// Revoke Temporarily `ROOT_PERMISSION_ID` that implicitly granted to this `DaoFactory`
// at the create dao step `address(this)` being the initial owner of the new created DAO.
createdDao.revoke(daoAddress, address(this), ROOT_PERMISSION_ID);
return (createdDao, installedPlugins);
}
/// @notice Deploys a new DAO `ERC1967` proxy, and initialize it with this contract as the initial owner.
/// @param _daoSettings The trusted forwarder, name and metadata hash of the DAO it creates.
function _createDAO(DAOSettings calldata _daoSettings) internal returns (DAO dao) {
// Create a DAO proxy and initialize it with the DAOFactory (`address(this)`) as the initial owner.
// As a result, the DAOFactory has `ROOT_PERMISSION_`ID` permission on the DAO.
dao = DAO(
payable(
daoBase.deployUUPSProxy(
abi.encodeCall(
DAO.initialize,
(
_daoSettings.metadata,
address(this),
_daoSettings.trustedForwarder,
_daoSettings.daoURI
)
)
)
)
);
}
/// @notice Sets the required permissions for the new DAO.
/// @param _daoAddress The address of the DAO just created.
function _setDAOPermissions(address _daoAddress) internal {
// set permissionIds on the dao itself.
PermissionLib.SingleTargetPermission[]
memory items = new PermissionLib.SingleTargetPermission[](5);
// Grant DAO all the permissions required
items[0] = PermissionLib.SingleTargetPermission(
PermissionLib.Operation.Grant,
_daoAddress,
ROOT_PERMISSION_ID
);
items[1] = PermissionLib.SingleTargetPermission(
PermissionLib.Operation.Grant,
_daoAddress,
UPGRADE_DAO_PERMISSION_ID
);
items[2] = PermissionLib.SingleTargetPermission(
PermissionLib.Operation.Grant,
_daoAddress,
SET_TRUSTED_FORWARDER_PERMISSION_ID
);
items[3] = PermissionLib.SingleTargetPermission(
PermissionLib.Operation.Grant,
_daoAddress,
SET_METADATA_PERMISSION_ID
);
items[4] = PermissionLib.SingleTargetPermission(
PermissionLib.Operation.Grant,
_daoAddress,
REGISTER_STANDARD_CALLBACK_PERMISSION_ID
);
DAO(payable(_daoAddress)).applySingleTargetPermissions(_daoAddress, items);
}
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {ProtocolVersion} from "@aragon/osx-commons-contracts/src/utils/versioning/ProtocolVersion.sol";
import {IDAO} from "@aragon/osx-commons-contracts/src/dao/IDAO.sol";
import {ENSSubdomainRegistrar} from "../utils/ens/ENSSubdomainRegistrar.sol";
import {InterfaceBasedRegistry} from "../utils/InterfaceBasedRegistry.sol";
import {isSubdomainValid} from "../utils/RegistryUtils.sol";
/// @title Register your unique DAO subdomain
/// @author Aragon X - 2022-2023
/// @notice This contract provides the possibility to register a DAO.
/// @custom:security-contact [email protected]
contract DAORegistry is InterfaceBasedRegistry, ProtocolVersion {
/// @notice The ID of the permission required to call the `register` function.
bytes32 public constant REGISTER_DAO_PERMISSION_ID = keccak256("REGISTER_DAO_PERMISSION");
/// @notice The ENS subdomain registrar registering the DAO subdomains.
ENSSubdomainRegistrar public subdomainRegistrar;
/// @notice Thrown if the DAO subdomain doesn't match the regex `[0-9a-z\-]`
error InvalidDaoSubdomain(string subdomain);
/// @notice Thrown if the subdomain is present, but registrar is address(0).
error ENSNotSupported();
/// @notice Emitted when a new DAO is registered.
/// @param dao The address of the DAO contract.
/// @param creator The address of the creator.
/// @param subdomain The DAO subdomain.
event DAORegistered(address indexed dao, address indexed creator, string subdomain);
/// @dev Used to disallow initializing the implementation contract by an attacker for extra safety.
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() {
_disableInitializers();
}
/// @notice Initializes the contract.
/// @param _managingDao the managing DAO address.
/// @param _subdomainRegistrar The `ENSSubdomainRegistrar` where `ENS` subdomain will be registered.
function initialize(
IDAO _managingDao,
ENSSubdomainRegistrar _subdomainRegistrar
) external initializer {
__InterfaceBasedRegistry_init(_managingDao, type(IDAO).interfaceId);
subdomainRegistrar = _subdomainRegistrar;
}
/// @notice Registers a DAO by its address. If a non-empty subdomain name is provided that is not taken already, the DAO becomes the owner of the ENS name.
/// @dev A subdomain is unique within the Aragon DAO framework and can get stored here.
/// @param dao The address of the DAO contract.
/// @param creator The address of the creator.
/// @param subdomain The DAO subdomain.
function register(
IDAO dao,
address creator,
string calldata subdomain
) external auth(REGISTER_DAO_PERMISSION_ID) {
address daoAddr = address(dao);
_register(daoAddr);
if ((bytes(subdomain).length > 0)) {
if (address(subdomainRegistrar) == address(0)) {
revert ENSNotSupported();
}
if (!isSubdomainValid(subdomain)) {
revert InvalidDaoSubdomain({subdomain: subdomain});
}
bytes32 labelhash = keccak256(bytes(subdomain));
subdomainRegistrar.registerSubnode(labelhash, daoAddr);
}
emit DAORegistered(daoAddr, creator, subdomain);
}
/// @notice This empty reserved space is put in place to allow future versions to add new variables without shifting down storage in the inheritance chain (see [OpenZeppelin's guide about storage gaps](https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps)).
uint256[49] private __gap;
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {Initializable} from "@openzeppelin/contracts-upgradeable/proxy/utils/Initializable.sol";
import {ERC165Upgradeable} from "@openzeppelin/contracts-upgradeable/utils/introspection/ERC165Upgradeable.sol";
import {UUPSUpgradeable} from "@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol";
import {AddressUpgradeable} from "@openzeppelin/contracts-upgradeable/utils/AddressUpgradeable.sol";
import {ERC165CheckerUpgradeable} from "@openzeppelin/contracts-upgradeable/utils/introspection/ERC165CheckerUpgradeable.sol";
import {IProtocolVersion} from "@aragon/osx-commons-contracts/src/utils/versioning/IProtocolVersion.sol";
import {ProtocolVersion} from "@aragon/osx-commons-contracts/src/utils/versioning/ProtocolVersion.sol";
import {IPluginSetup} from "@aragon/osx-commons-contracts/src/plugin/setup/IPluginSetup.sol";
import {PluginSetup} from "@aragon/osx-commons-contracts/src/plugin/setup/PluginSetup.sol";
import {PermissionManager} from "../../../core/permission/PermissionManager.sol";
import {IPluginRepo} from "./IPluginRepo.sol";
/// @title PluginRepo
/// @author Aragon X - 2020 - 2023
/// @notice The plugin repository contract required for managing and publishing different plugin versions within the Aragon DAO framework.
/// @custom:security-contact [email protected]
contract PluginRepo is
Initializable,
ERC165Upgradeable,
IPluginRepo,
UUPSUpgradeable,
ProtocolVersion,
PermissionManager
{
using AddressUpgradeable for address;
using ERC165CheckerUpgradeable for address;
/// @notice The struct describing the tag of a version obtained by a release and build number as `RELEASE.BUILD`.
/// @param release The release number.
/// @param build The build number
/// @dev Releases mark incompatible changes (e.g., the plugin interface, storage layout, or incompatible behavior) whereas builds mark compatible changes (e.g., patches and compatible feature additions).
struct Tag {
uint8 release;
uint16 build;
}
/// @notice The struct describing a plugin version (release and build).
/// @param tag The version tag.
/// @param pluginSetup The setup contract associated with this version.
/// @param buildMetadata The build metadata URI.
struct Version {
Tag tag;
address pluginSetup;
bytes buildMetadata;
}
/// @notice The ID of the permission required to call the `createVersion` function.
bytes32 public constant MAINTAINER_PERMISSION_ID = keccak256("MAINTAINER_PERMISSION");
/// @notice The ID of the permission required to call the `createVersion` function.
bytes32 public constant UPGRADE_REPO_PERMISSION_ID = keccak256("UPGRADE_REPO_PERMISSION");
/// @notice The mapping between release and build numbers.
mapping(uint8 => uint16) internal buildsPerRelease;
/// @notice The mapping between the version hash and the corresponding version information.
mapping(bytes32 => Version) internal versions;
/// @notice The mapping between the plugin setup address and its corresponding version hash.
mapping(address => bytes32) internal latestTagHashForPluginSetup;
/// @notice The ID of the latest release.
/// @dev The maximum release number is 255.
uint8 public latestRelease;
/// @notice Thrown if a version does not exist.
/// @param versionHash The tag hash.
error VersionHashDoesNotExist(bytes32 versionHash);
/// @notice Thrown if a plugin setup contract does not inherit from `PluginSetup`.
error InvalidPluginSetupInterface();
/// @notice Thrown if a release number is zero.
error ReleaseZeroNotAllowed();
/// @notice Thrown if a release number is incremented by more than one.
/// @param latestRelease The latest release number.
/// @param newRelease The new release number.
error InvalidReleaseIncrement(uint8 latestRelease, uint8 newRelease);
/// @notice Thrown if the same plugin setup contract exists already in a previous releases.
/// @param release The release number of the already existing plugin setup.
/// @param build The build number of the already existing plugin setup.
/// @param pluginSetup The plugin setup contract address.
error PluginSetupAlreadyInPreviousRelease(uint8 release, uint16 build, address pluginSetup);
/// @notice Thrown if the metadata URI is empty.
error EmptyReleaseMetadata();
/// @notice Thrown if release does not exist.
error ReleaseDoesNotExist();
/// @dev Used to disallow initializing the implementation contract by an attacker for extra safety.
constructor() {
_disableInitializers();
}
/// @notice Initializes the contract by
/// - initializing the permission manager
/// - granting the `MAINTAINER_PERMISSION_ID` permission to the initial owner.
/// @dev This method is required to support [ERC-1822](https://eips.ethereum.org/EIPS/eip-1822).
function initialize(address initialOwner) external initializer {
__PermissionManager_init(initialOwner);
_grant(address(this), initialOwner, MAINTAINER_PERMISSION_ID);
_grant(address(this), initialOwner, UPGRADE_REPO_PERMISSION_ID);
}
/// @notice Initializes the pluginRepo after an upgrade from a previous protocol version.
/// @param _previousProtocolVersion The semantic protocol version number of the previous DAO implementation contract this upgrade is transitioning from.
/// @param _initData The initialization data to be passed to via `upgradeToAndCall` (see [ERC-1967](https://docs.openzeppelin.com/contracts/4.x/api/proxy#ERC1967Upgrade)).
/// @dev This function is a placeholder until we require reinitialization.
function initializeFrom(
uint8[3] calldata _previousProtocolVersion,
bytes calldata _initData
) external reinitializer(2) {
// Silences the unused function parameter warning.
_previousProtocolVersion;
_initData;
// Revert because this is a placeholder until this contract requires reinitialization.
revert();
}
/// @inheritdoc IPluginRepo
function createVersion(
uint8 _release,
address _pluginSetup,
bytes calldata _buildMetadata,
bytes calldata _releaseMetadata
) external auth(MAINTAINER_PERMISSION_ID) {
if (!_pluginSetup.supportsInterface(type(IPluginSetup).interfaceId)) {
revert InvalidPluginSetupInterface();
}
if (_release == 0) {
revert ReleaseZeroNotAllowed();
}
// Check that the release number is not incremented by more than one
if (_release - latestRelease > 1) {
revert InvalidReleaseIncrement({latestRelease: latestRelease, newRelease: _release});
}
if (_release > latestRelease) {
latestRelease = _release;
if (_releaseMetadata.length == 0) {
revert EmptyReleaseMetadata();
}
}
// Make sure the same plugin setup wasn't used in previous releases.
Version storage version = versions[latestTagHashForPluginSetup[_pluginSetup]];
if (version.tag.release != 0 && version.tag.release != _release) {
revert PluginSetupAlreadyInPreviousRelease(
version.tag.release,
version.tag.build,
_pluginSetup
);
}
uint16 build = ++buildsPerRelease[_release];
Tag memory tag = Tag(_release, build);
bytes32 _tagHash = tagHash(tag);
versions[_tagHash] = Version(tag, _pluginSetup, _buildMetadata);
latestTagHashForPluginSetup[_pluginSetup] = _tagHash;
emit VersionCreated({
release: _release,
build: build,
pluginSetup: _pluginSetup,
buildMetadata: _buildMetadata
});
if (_releaseMetadata.length > 0) {
emit ReleaseMetadataUpdated(_release, _releaseMetadata);
}
}
/// @inheritdoc IPluginRepo
function updateReleaseMetadata(
uint8 _release,
bytes calldata _releaseMetadata
) external auth(MAINTAINER_PERMISSION_ID) {
if (_release == 0) {
revert ReleaseZeroNotAllowed();
}
if (_release > latestRelease) {
revert ReleaseDoesNotExist();
}
if (_releaseMetadata.length == 0) {
revert EmptyReleaseMetadata();
}
emit ReleaseMetadataUpdated(_release, _releaseMetadata);
}
/// @notice Returns the latest version for a given release number.
/// @param _release The release number.
/// @return The latest version of this release.
function getLatestVersion(uint8 _release) public view returns (Version memory) {
uint16 latestBuild = uint16(buildsPerRelease[_release]);
return getVersion(tagHash(Tag(_release, latestBuild)));
}
/// @notice Returns the latest version for a given plugin setup.
/// @param _pluginSetup The plugin setup address
/// @return The latest version associated with the plugin Setup.
function getLatestVersion(address _pluginSetup) public view returns (Version memory) {
return getVersion(latestTagHashForPluginSetup[_pluginSetup]);
}
/// @notice Returns the version associated with a tag.
/// @param _tag The version tag.
/// @return The version associated with the tag.
function getVersion(Tag calldata _tag) public view returns (Version memory) {
return getVersion(tagHash(_tag));
}
/// @notice Returns the version for a tag hash.
/// @param _tagHash The tag hash.
/// @return The version associated with a tag hash.
function getVersion(bytes32 _tagHash) public view returns (Version memory) {
Version storage version = versions[_tagHash];
if (version.tag.release == 0) {
revert VersionHashDoesNotExist(_tagHash);
}
return version;
}
/// @notice Gets the total number of builds for a given release number.
/// @param _release The release number.
/// @return The number of builds of this release.
function buildCount(uint8 _release) public view returns (uint256) {
return buildsPerRelease[_release];
}
/// @notice The hash of the version tag obtained from the packed, bytes-encoded release and build number.
/// @param _tag The version tag.
/// @return The version tag hash.
function tagHash(Tag memory _tag) internal pure returns (bytes32) {
return keccak256(abi.encodePacked(_tag.release, _tag.build));
}
/// @notice Internal method authorizing the upgrade of the contract via the [upgradeability mechanism for UUPS proxies](https://docs.openzeppelin.com/contracts/4.x/api/proxy#UUPSUpgradeable) (see [ERC-1822](https://eips.ethereum.org/EIPS/eip-1822)).
/// @dev The caller must have the `UPGRADE_REPO_PERMISSION_ID` permission.
function _authorizeUpgrade(
address
) internal virtual override auth(UPGRADE_REPO_PERMISSION_ID) {}
/// @notice Checks if this or the parent contract supports an interface by its ID.
/// @param _interfaceId The ID of the interface.
/// @return Returns `true` if the interface is supported.
function supportsInterface(bytes4 _interfaceId) public view virtual override returns (bool) {
return
_interfaceId == type(IPluginRepo).interfaceId ||
_interfaceId == type(IProtocolVersion).interfaceId ||
super.supportsInterface(_interfaceId);
}
/// @notice This empty reserved space is put in place to allow future versions to add new variables without shifting down storage in the inheritance chain (see [OpenZeppelin's guide about storage gaps](https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps)).
uint256[46] private __gap;
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {ERC165} from "@openzeppelin/contracts/utils/introspection/ERC165.sol";
import {PermissionLib} from "@aragon/osx-commons-contracts/src/permission/PermissionLib.sol";
import {IProtocolVersion} from "@aragon/osx-commons-contracts/src/utils/versioning/IProtocolVersion.sol";
import {ProtocolVersion} from "@aragon/osx-commons-contracts/src/utils/versioning/ProtocolVersion.sol";
import {ProxyLib} from "@aragon/osx-commons-contracts/src/utils/deployment/ProxyLib.sol";
import {PluginRepoRegistry} from "./PluginRepoRegistry.sol";
import {PluginRepo} from "./PluginRepo.sol";
/// @title PluginRepoFactory
/// @author Aragon X - 2022-2023
/// @notice This contract creates `PluginRepo` proxies and registers them on a `PluginRepoRegistry` contract.
/// @custom:security-contact [email protected]
contract PluginRepoFactory is ERC165, ProtocolVersion {
using ProxyLib for address;
/// @notice The Aragon plugin registry contract.
PluginRepoRegistry public pluginRepoRegistry;
/// @notice The address of the `PluginRepo` base contract to proxy to..
address public pluginRepoBase;
/// @notice Initializes the addresses of the Aragon plugin registry and `PluginRepo` base contract to proxy to.
/// @param _pluginRepoRegistry The aragon plugin registry address.
constructor(PluginRepoRegistry _pluginRepoRegistry) {
pluginRepoRegistry = _pluginRepoRegistry;
pluginRepoBase = address(new PluginRepo());
}
/// @notice Checks if this or the parent contract supports an interface by its ID.
/// @param _interfaceId The ID of the interface.
/// @return Returns `true` if the interface is supported.
function supportsInterface(bytes4 _interfaceId) public view virtual override returns (bool) {
return
_interfaceId == type(IProtocolVersion).interfaceId ||
super.supportsInterface(_interfaceId);
}
/// @notice Creates a plugin repository proxy pointing to the `pluginRepoBase` implementation and registers it in the Aragon plugin registry.
/// @param _subdomain The plugin repository subdomain.
/// @param _initialOwner The plugin maintainer address.
function createPluginRepo(
string calldata _subdomain,
address _initialOwner
) external returns (PluginRepo) {
return _createPluginRepo(_subdomain, _initialOwner);
}
/// @notice Creates and registers a `PluginRepo` with an ENS subdomain and publishes an initial version `1.1`.
/// @param _subdomain The plugin repository subdomain.
/// @param _pluginSetup The plugin factory contract associated with the plugin version.
/// @param _maintainer The maintainer of the plugin repo. This address has permission to update metadata, upgrade the repo logic, and manage the repo permissions.
/// @param _releaseMetadata The release metadata URI.
/// @param _buildMetadata The build metadata URI.
/// @dev After the creation of the `PluginRepo` and release of the first version by the factory, ownership is transferred to the `_maintainer` address.
function createPluginRepoWithFirstVersion(
string calldata _subdomain,
address _pluginSetup,
address _maintainer,
bytes memory _releaseMetadata,
bytes memory _buildMetadata
) external returns (PluginRepo pluginRepo) {
// Sets `address(this)` as initial owner which is later replaced with the maintainer address.
pluginRepo = _createPluginRepo(_subdomain, address(this));
pluginRepo.createVersion(1, _pluginSetup, _buildMetadata, _releaseMetadata);
// Setup permissions and transfer ownership from `address(this)` to `_maintainer`.
_setPluginRepoPermissions(pluginRepo, _maintainer);
}
/// @notice Set the final permissions for the published plugin repository maintainer. All permissions are revoked from the plugin factory and granted to the specified plugin maintainer.
/// @param pluginRepo The plugin repository instance just created.
/// @param maintainer The plugin maintainer address.
/// @dev The plugin maintainer is granted the `MAINTAINER_PERMISSION_ID`, `UPGRADE_REPO_PERMISSION_ID`, and `ROOT_PERMISSION_ID`.
function _setPluginRepoPermissions(PluginRepo pluginRepo, address maintainer) internal {
// Set permissions on the `PluginRepo`s `PermissionManager`
PermissionLib.SingleTargetPermission[]
memory items = new PermissionLib.SingleTargetPermission[](6);
bytes32 rootPermissionID = pluginRepo.ROOT_PERMISSION_ID();
bytes32 maintainerPermissionID = pluginRepo.MAINTAINER_PERMISSION_ID();
bytes32 upgradePermissionID = pluginRepo.UPGRADE_REPO_PERMISSION_ID();
// Grant the plugin maintainer all the permissions required
items[0] = PermissionLib.SingleTargetPermission(
PermissionLib.Operation.Grant,
maintainer,
maintainerPermissionID
);
items[1] = PermissionLib.SingleTargetPermission(
PermissionLib.Operation.Grant,
maintainer,
upgradePermissionID
);
items[2] = PermissionLib.SingleTargetPermission(
PermissionLib.Operation.Grant,
maintainer,
rootPermissionID
);
// Revoke permissions from the plugin repository factory (`address(this)`).
items[3] = PermissionLib.SingleTargetPermission(
PermissionLib.Operation.Revoke,
address(this),
rootPermissionID
);
items[4] = PermissionLib.SingleTargetPermission(
PermissionLib.Operation.Revoke,
address(this),
maintainerPermissionID
);
items[5] = PermissionLib.SingleTargetPermission(
PermissionLib.Operation.Revoke,
address(this),
upgradePermissionID
);
pluginRepo.applySingleTargetPermissions(address(pluginRepo), items);
}
/// @notice Internal method creating a `PluginRepo` via the [ERC-1967](https://eips.ethereum.org/EIPS/eip-1967) proxy pattern from the provided base contract and registering it in the Aragon plugin registry.
/// @dev Passing an empty `_subdomain` will cause the transaction to revert.
/// @param _subdomain The plugin repository subdomain.
/// @param _initialOwner The initial owner address.
function _createPluginRepo(
string calldata _subdomain,
address _initialOwner
) internal returns (PluginRepo pluginRepo) {
pluginRepo = PluginRepo(
pluginRepoBase.deployUUPSProxy(abi.encodeCall(PluginRepo.initialize, (_initialOwner)))
);
pluginRepoRegistry.registerPluginRepo(_subdomain, address(pluginRepo));
}
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {ProtocolVersion} from "@aragon/osx-commons-contracts/src/utils/versioning/ProtocolVersion.sol";
import {IDAO} from "@aragon/osx-commons-contracts/src/dao/IDAO.sol";
import {ENSSubdomainRegistrar} from "../../utils/ens/ENSSubdomainRegistrar.sol";
import {InterfaceBasedRegistry} from "../../utils/InterfaceBasedRegistry.sol";
import {isSubdomainValid} from "../../utils/RegistryUtils.sol";
import {IPluginRepo} from "./IPluginRepo.sol";
/// @title PluginRepoRegistry
/// @author Aragon X - 2022-2023
/// @notice This contract maintains an address-based registry of plugin repositories in the Aragon App DAO framework.
/// @custom:security-contact [email protected]
contract PluginRepoRegistry is InterfaceBasedRegistry, ProtocolVersion {
/// @notice The ID of the permission required to call the `register` function.
bytes32 public constant REGISTER_PLUGIN_REPO_PERMISSION_ID =
keccak256("REGISTER_PLUGIN_REPO_PERMISSION");
/// @notice The ENS subdomain registrar registering the PluginRepo subdomains.
ENSSubdomainRegistrar public subdomainRegistrar;
/// @notice Emitted if a new plugin repository is registered.
/// @param subdomain The subdomain of the plugin repository.
/// @param pluginRepo The address of the plugin repository.
event PluginRepoRegistered(string subdomain, address pluginRepo);
/// @notice Thrown if the plugin subdomain doesn't match the regex `[0-9a-z\-]`
error InvalidPluginSubdomain(string subdomain);
/// @notice Thrown if the subdomain is present, but registrar is address(0).
error ENSNotSupported();
/// @dev Used to disallow initializing the implementation contract by an attacker for extra safety.
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() {
_disableInitializers();
}
/// @notice Initializes the contract by setting calling the `InterfaceBasedRegistry` base class initialize method.
/// @param _dao The address of the managing DAO.
/// @param _subdomainRegistrar The `ENSSubdomainRegistrar` where `ENS` subdomain will be registered.
function initialize(IDAO _dao, ENSSubdomainRegistrar _subdomainRegistrar) external initializer {
bytes4 pluginRepoInterfaceId = type(IPluginRepo).interfaceId;
__InterfaceBasedRegistry_init(_dao, pluginRepoInterfaceId);
subdomainRegistrar = _subdomainRegistrar;
}
/// @notice Registers a plugin repository with a subdomain and address.
/// @dev If subdomain is empty, registration on ENS is skipped.
/// @param subdomain The subdomain of the PluginRepo.
/// @param pluginRepo The address of the PluginRepo contract.
function registerPluginRepo(
string calldata subdomain,
address pluginRepo
) external auth(REGISTER_PLUGIN_REPO_PERMISSION_ID) {
if (bytes(subdomain).length > 0) {
if (address(subdomainRegistrar) == address(0)) {
revert ENSNotSupported();
}
if (!isSubdomainValid(subdomain)) {
revert InvalidPluginSubdomain({subdomain: subdomain});
}
bytes32 labelhash = keccak256(bytes(subdomain));
subdomainRegistrar.registerSubnode(labelhash, pluginRepo);
}
_register(pluginRepo);
emit PluginRepoRegistered(subdomain, pluginRepo);
}
/// @notice This empty reserved space is put in place to allow future versions to add new variables without shifting down storage in the inheritance chain (see [OpenZeppelin's guide about storage gaps](https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps)).
uint256[49] private __gap;
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {ERC165Checker} from "@openzeppelin/contracts/utils/introspection/ERC165Checker.sol";
import {ProtocolVersion} from "@aragon/osx-commons-contracts/src/utils/versioning/ProtocolVersion.sol";
import {IPluginSetup} from "@aragon/osx-commons-contracts/src/plugin/setup/IPluginSetup.sol";
import {PluginSetup} from "@aragon/osx-commons-contracts/src/plugin/setup/PluginSetup.sol";
import {DAO} from "../../../core/dao/DAO.sol";
import {PermissionLib} from "@aragon/osx-commons-contracts/src/permission/PermissionLib.sol";
import {PluginUUPSUpgradeable} from "@aragon/osx-commons-contracts/src/plugin/PluginUUPSUpgradeable.sol";
import {IPlugin} from "@aragon/osx-commons-contracts/src/plugin/IPlugin.sol";
import {PluginRepoRegistry} from "../repo/PluginRepoRegistry.sol";
import {PluginRepo} from "../repo/PluginRepo.sol";
import {PluginSetupRef, hashHelpers, hashPermissions, _getPreparedSetupId, _getAppliedSetupId, _getPluginInstallationId, PreparationType} from "./PluginSetupProcessorHelpers.sol";
/// @title PluginSetupProcessor
/// @author Aragon X - 2022-2023
/// @notice This contract processes the preparation and application of plugin setups (installation, update, uninstallation) on behalf of a requesting DAO.
/// @dev This contract is temporarily granted the `ROOT_PERMISSION_ID` permission on the applying DAO and therefore is highly security critical.
/// @custom:security-contact [email protected]
contract PluginSetupProcessor is ProtocolVersion {
using ERC165Checker for address;
/// @notice The ID of the permission required to call the `applyInstallation` function.
bytes32 public constant APPLY_INSTALLATION_PERMISSION_ID =
keccak256("APPLY_INSTALLATION_PERMISSION");
/// @notice The ID of the permission required to call the `applyUpdate` function.
bytes32 public constant APPLY_UPDATE_PERMISSION_ID = keccak256("APPLY_UPDATE_PERMISSION");
/// @notice The ID of the permission required to call the `applyUninstallation` function.
bytes32 public constant APPLY_UNINSTALLATION_PERMISSION_ID =
keccak256("APPLY_UNINSTALLATION_PERMISSION");
/// @notice The hash obtained from the bytes-encoded empty array to be used for UI updates being required to submit an empty permission array.
/// @dev The hash is computed via `keccak256(abi.encode([]))`.
bytes32 private constant EMPTY_ARRAY_HASH =
0x569e75fc77c1a856f6daaf9e69d8a9566ca34aa47f9133711ce065a571af0cfd;
/// @notice The hash obtained from the bytes-encoded zero value.
/// @dev The hash is computed via `keccak256(abi.encode(0))`.
bytes32 private constant ZERO_BYTES_HASH =
0x290decd9548b62a8d60345a988386fc84ba6bc95484008f6362f93160ef3e563;
/// @notice A struct containing information related to plugin setups that have been applied.
/// @param blockNumber The block number at which the `applyInstallation`, `applyUpdate` or `applyUninstallation` was executed.
/// @param currentAppliedSetupId The current setup id that plugin holds. Needed to confirm that `prepareUpdate` or `prepareUninstallation` happens for the plugin's current/valid dependencies.
/// @param preparedSetupIdToBlockNumber The mapping between prepared setup IDs and block numbers at which `prepareInstallation`, `prepareUpdate` or `prepareUninstallation` was executed.
struct PluginState {
uint256 blockNumber;
bytes32 currentAppliedSetupId;
mapping(bytes32 => uint256) preparedSetupIdToBlockNumber;
}
/// @notice A mapping between the plugin installation ID (obtained from the DAO and plugin address) and the plugin state information.
/// @dev This variable is public on purpose to allow future versions to access and migrate the storage.
mapping(bytes32 => PluginState) public states;
/// @notice The struct containing the parameters for the `prepareInstallation` function.
/// @param pluginSetupRef The reference to the plugin setup to be used for the installation.
/// @param data The bytes-encoded data containing the input parameters for the installation preparation as specified in the corresponding ABI on the version's metadata.
struct PrepareInstallationParams {
PluginSetupRef pluginSetupRef;
bytes data;
}
/// @notice The struct containing the parameters for the `applyInstallation` function.
/// @param pluginSetupRef The reference to the plugin setup used for the installation.
/// @param plugin The address of the plugin contract to be installed.
/// @param permissions The array of multi-targeted permission operations to be applied by the `PluginSetupProcessor` to the DAO.
/// @param helpersHash The hash of helpers that were deployed in `prepareInstallation`. This helps to derive the setup ID.
struct ApplyInstallationParams {
PluginSetupRef pluginSetupRef;
address plugin;
PermissionLib.MultiTargetPermission[] permissions;
bytes32 helpersHash;
}
/// @notice The struct containing the parameters for the `prepareUpdate` function.
/// @param currentVersionTag The tag of the current plugin version to update from.
/// @param newVersionTag The tag of the new plugin version to update to.
/// @param pluginSetupRepo The plugin setup repository address on which the plugin exists.
/// @param setupPayload The payload containing the plugin and helper contract addresses deployed in a preparation step as well as optional data to be consumed by the plugin setup.
/// This includes the bytes-encoded data containing the input parameters for the update preparation as specified in the corresponding ABI on the version's metadata.
struct PrepareUpdateParams {
PluginRepo.Tag currentVersionTag;
PluginRepo.Tag newVersionTag;
PluginRepo pluginSetupRepo;
IPluginSetup.SetupPayload setupPayload;
}
/// @notice The struct containing the parameters for the `applyUpdate` function.
/// @param plugin The address of the plugin contract to be updated.
/// @param pluginSetupRef The reference to the plugin setup used for the update.
/// @param initData The encoded data (function selector and arguments) to be provided to `upgradeToAndCall`.
/// @param permissions The array of multi-targeted permission operations to be applied by the `PluginSetupProcessor` to the DAO.
/// @param helpersHash The hash of helpers that were deployed in `prepareUpdate`. This helps to derive the setup ID.
struct ApplyUpdateParams {
address plugin;
PluginSetupRef pluginSetupRef;
bytes initData;
PermissionLib.MultiTargetPermission[] permissions;
bytes32 helpersHash;
}
/// @notice The struct containing the parameters for the `prepareUninstallation` function.
/// @param pluginSetupRef The reference to the plugin setup to be used for the uninstallation.
/// @param setupPayload The payload containing the plugin and helper contract addresses deployed in a preparation step as well as optional data to be consumed by the plugin setup.
/// This includes the bytes-encoded data containing the input parameters for the uninstallation preparation as specified in the corresponding ABI on the version's metadata.
struct PrepareUninstallationParams {
PluginSetupRef pluginSetupRef;
IPluginSetup.SetupPayload setupPayload;
}
/// @notice The struct containing the parameters for the `applyInstallation` function.
/// @param plugin The address of the plugin contract to be uninstalled.
/// @param pluginSetupRef The reference to the plugin setup used for the uninstallation.
/// @param permissions The array of multi-targeted permission operations to be applied by the `PluginSetupProcess.
struct ApplyUninstallationParams {
address plugin;
PluginSetupRef pluginSetupRef;
PermissionLib.MultiTargetPermission[] permissions;
}
/// @notice The plugin repo registry listing the `PluginRepo` contracts versioning the `PluginSetup` contracts.
PluginRepoRegistry public repoRegistry;
/// @notice Thrown if a setup is unauthorized and cannot be applied because of a missing permission of the associated DAO.
/// @param dao The address of the DAO to which the plugin belongs.
/// @param caller The address (EOA or contract) that requested the application of a setup on the associated DAO.
/// @param permissionId The permission identifier.
/// @dev This is thrown if the `APPLY_INSTALLATION_PERMISSION_ID`, `APPLY_UPDATE_PERMISSION_ID`, or APPLY_UNINSTALLATION_PERMISSION_ID is missing.
error SetupApplicationUnauthorized(address dao, address caller, bytes32 permissionId);
/// @notice Thrown if a plugin is not upgradeable.
/// @param plugin The address of the plugin contract.
error PluginNonupgradeable(address plugin);
/// @notice Thrown if the upgrade of an `UUPSUpgradeable` proxy contract (see [ERC-1822](https://eips.ethereum.org/EIPS/eip-1822)) failed.
/// @param proxy The address of the proxy.
/// @param implementation The address of the implementation contract.
/// @param initData The initialization data to be passed to the upgradeable plugin contract via `upgradeToAndCall`.
error PluginProxyUpgradeFailed(address proxy, address implementation, bytes initData);
/// @notice Thrown if a contract does not support the `IPlugin` interface.
/// @param plugin The address of the contract.
error IPluginNotSupported(address plugin);
/// @notice Thrown if a plugin repository does not exist on the plugin repo registry.
error PluginRepoNonexistent();
/// @notice Thrown if a plugin setup was already prepared indicated by the prepared setup ID.
/// @param preparedSetupId The prepared setup ID.
error SetupAlreadyPrepared(bytes32 preparedSetupId);
/// @notice Thrown if a prepared setup ID is not eligible to be applied. This can happen if another setup has been already applied or if the setup wasn't prepared in the first place.
/// @param preparedSetupId The prepared setup ID.
error SetupNotApplicable(bytes32 preparedSetupId);
/// @notice Thrown if the update version is invalid.
/// @param currentVersionTag The tag of the current version to update from.
/// @param newVersionTag The tag of the new version to update to.
error InvalidUpdateVersion(PluginRepo.Tag currentVersionTag, PluginRepo.Tag newVersionTag);
/// @notice Thrown if plugin is already installed and one tries to prepare or apply install on it.
error PluginAlreadyInstalled();
/// @notice Thrown if the applied setup ID resulting from the supplied setup payload does not match with the current applied setup ID.
/// @param currentAppliedSetupId The current applied setup ID with which the data in the supplied payload must match.
/// @param appliedSetupId The applied setup ID obtained from the data in the supplied setup payload.
error InvalidAppliedSetupId(bytes32 currentAppliedSetupId, bytes32 appliedSetupId);
/// @notice Emitted with a prepared plugin installation to store data relevant for the application step.
/// @param sender The sender that prepared the plugin installation.
/// @param dao The address of the DAO to which the plugin belongs.
/// @param preparedSetupId The prepared setup ID obtained from the supplied data.
/// @param pluginSetupRepo The repository storing the `PluginSetup` contracts of all versions of a plugin.
/// @param versionTag The version tag of the plugin setup of the prepared installation.
/// @param data The bytes-encoded data containing the input parameters for the preparation as specified in the corresponding ABI on the version's metadata.
/// @param plugin The address of the plugin contract.
/// @param preparedSetupData The deployed plugin's relevant data which consists of helpers and permissions.
event InstallationPrepared(
address indexed sender,
address indexed dao,
bytes32 preparedSetupId,
PluginRepo indexed pluginSetupRepo,
PluginRepo.Tag versionTag,
bytes data,
address plugin,
IPluginSetup.PreparedSetupData preparedSetupData
);
/// @notice Emitted after a plugin installation was applied.
/// @param dao The address of the DAO to which the plugin belongs.
/// @param plugin The address of the plugin contract.
/// @param preparedSetupId The prepared setup ID.
/// @param appliedSetupId The applied setup ID.
event InstallationApplied(
address indexed dao,
address indexed plugin,
bytes32 preparedSetupId,
bytes32 appliedSetupId
);
/// @notice Emitted with a prepared plugin update to store data relevant for the application step.
/// @param sender The sender that prepared the plugin update.
/// @param dao The address of the DAO to which the plugin belongs.
/// @param preparedSetupId The prepared setup ID.
/// @param pluginSetupRepo The repository storing the `PluginSetup` contracts of all versions of a plugin.
/// @param versionTag The version tag of the plugin setup of the prepared update.
/// @param setupPayload The payload containing the plugin and helper contract addresses deployed in a preparation step as well as optional data to be consumed by the plugin setup.
/// @param preparedSetupData The deployed plugin's relevant data which consists of helpers and permissions.
/// @param initData The initialization data to be passed to the upgradeable plugin contract.
event UpdatePrepared(
address indexed sender,
address indexed dao,
bytes32 preparedSetupId,
PluginRepo indexed pluginSetupRepo,
PluginRepo.Tag versionTag,
IPluginSetup.SetupPayload setupPayload,
IPluginSetup.PreparedSetupData preparedSetupData,
bytes initData
);
/// @notice Emitted after a plugin update was applied.
/// @param dao The address of the DAO to which the plugin belongs.
/// @param plugin The address of the plugin contract.
/// @param preparedSetupId The prepared setup ID.
/// @param appliedSetupId The applied setup ID.
event UpdateApplied(
address indexed dao,
address indexed plugin,
bytes32 preparedSetupId,
bytes32 appliedSetupId
);
/// @notice Emitted with a prepared plugin uninstallation to store data relevant for the application step.
/// @param sender The sender that prepared the plugin uninstallation.
/// @param dao The address of the DAO to which the plugin belongs.
/// @param preparedSetupId The prepared setup ID.
/// @param pluginSetupRepo The repository storing the `PluginSetup` contracts of all versions of a plugin.
/// @param versionTag The version tag of the plugin to used for install preparation.
/// @param setupPayload The payload containing the plugin and helper contract addresses deployed in a preparation step as well as optional data to be consumed by the plugin setup.
/// @param permissions The list of multi-targeted permission operations to be applied to the installing DAO.
event UninstallationPrepared(
address indexed sender,
address indexed dao,
bytes32 preparedSetupId,
PluginRepo indexed pluginSetupRepo,
PluginRepo.Tag versionTag,
IPluginSetup.SetupPayload setupPayload,
PermissionLib.MultiTargetPermission[] permissions
);
/// @notice Emitted after a plugin installation was applied.
/// @param dao The address of the DAO to which the plugin belongs.
/// @param plugin The address of the plugin contract.
/// @param preparedSetupId The prepared setup ID.
event UninstallationApplied(
address indexed dao,
address indexed plugin,
bytes32 preparedSetupId
);
/// @notice A modifier to check if a caller has the permission to apply a prepared setup.
/// @param _dao The address of the DAO.
/// @param _permissionId The permission identifier.
modifier canApply(address _dao, bytes32 _permissionId) {
_canApply(_dao, _permissionId);
_;
}
/// @notice Constructs the plugin setup processor by setting the associated plugin repo registry.
/// @param _repoRegistry The plugin repo registry contract.
constructor(PluginRepoRegistry _repoRegistry) {
repoRegistry = _repoRegistry;
}
/// @notice Prepares the installation of a plugin.
/// @param _dao The address of the installing DAO.
/// @param _params The struct containing the parameters for the `prepareInstallation` function.
/// @return plugin The prepared plugin contract address.
/// @return preparedSetupData The data struct containing the array of helper contracts and permissions that the setup has prepared.
function prepareInstallation(
address _dao,
PrepareInstallationParams calldata _params
) external returns (address plugin, IPluginSetup.PreparedSetupData memory preparedSetupData) {
PluginRepo pluginSetupRepo = _params.pluginSetupRef.pluginSetupRepo;
// Check that the plugin repository exists on the plugin repo registry.
if (!repoRegistry.entries(address(pluginSetupRepo))) {
revert PluginRepoNonexistent();
}
// reverts if not found
PluginRepo.Version memory version = pluginSetupRepo.getVersion(
_params.pluginSetupRef.versionTag
);
// Prepare the installation
(plugin, preparedSetupData) = PluginSetup(version.pluginSetup).prepareInstallation(
_dao,
_params.data
);
bytes32 pluginInstallationId = _getPluginInstallationId(_dao, plugin);
bytes32 preparedSetupId = _getPreparedSetupId(
_params.pluginSetupRef,
hashPermissions(preparedSetupData.permissions),
hashHelpers(preparedSetupData.helpers),
bytes(""),
PreparationType.Installation
);
PluginState storage pluginState = states[pluginInstallationId];
// Check if this plugin is already installed.
if (pluginState.currentAppliedSetupId != bytes32(0)) {
revert PluginAlreadyInstalled();
}
// Check if this setup has already been prepared before and is pending.
if (pluginState.blockNumber < pluginState.preparedSetupIdToBlockNumber[preparedSetupId]) {
revert SetupAlreadyPrepared({preparedSetupId: preparedSetupId});
}
pluginState.preparedSetupIdToBlockNumber[preparedSetupId] = block.number;
emit InstallationPrepared({
sender: msg.sender,
dao: _dao,
preparedSetupId: preparedSetupId,
pluginSetupRepo: pluginSetupRepo,
versionTag: _params.pluginSetupRef.versionTag,
data: _params.data,
plugin: plugin,
preparedSetupData: preparedSetupData
});
return (plugin, preparedSetupData);
}
/// @notice Applies the permissions of a prepared installation to a DAO.
/// @param _dao The address of the installing DAO.
/// @param _params The struct containing the parameters for the `applyInstallation` function.
function applyInstallation(
address _dao,
ApplyInstallationParams calldata _params
) external canApply(_dao, APPLY_INSTALLATION_PERMISSION_ID) {
bytes32 pluginInstallationId = _getPluginInstallationId(_dao, _params.plugin);
PluginState storage pluginState = states[pluginInstallationId];
bytes32 preparedSetupId = _getPreparedSetupId(
_params.pluginSetupRef,
hashPermissions(_params.permissions),
_params.helpersHash,
bytes(""),
PreparationType.Installation
);
// Check if this plugin is already installed.
if (pluginState.currentAppliedSetupId != bytes32(0)) {
revert PluginAlreadyInstalled();
}
validatePreparedSetupId(pluginInstallationId, preparedSetupId);
bytes32 appliedSetupId = _getAppliedSetupId(_params.pluginSetupRef, _params.helpersHash);
pluginState.currentAppliedSetupId = appliedSetupId;
pluginState.blockNumber = block.number;
// If the list of requested permission changes is not empty, process them.
// Note, that this requires the `PluginSetupProcessor` to have the `ROOT_PERMISSION_ID` permission on the
// installing DAO. Make sure this permission is only granted TEMPORARILY.
if (_params.permissions.length > 0) {
DAO(payable(_dao)).applyMultiTargetPermissions(_params.permissions);
}
emit InstallationApplied({
dao: _dao,
plugin: _params.plugin,
preparedSetupId: preparedSetupId,
appliedSetupId: appliedSetupId
});
}
/// @notice Prepares the update of an UUPS upgradeable plugin.
/// @param _dao The address of the DAO For which preparation of update happens.
/// @param _params The struct containing the parameters for the `prepareUpdate` function.
/// @return initData The initialization data to be passed to upgradeable contracts when the update is applied
/// @return preparedSetupData The data struct containing the array of helper contracts and permissions that the setup has prepared.
/// @dev The list of `_params.setupPayload.currentHelpers` has to be specified in the same order as they were returned from previous setups preparation steps (the latest `prepareInstallation` or `prepareUpdate` step that has happened) on which the update is prepared for.
function prepareUpdate(
address _dao,
PrepareUpdateParams calldata _params
)
external
returns (bytes memory initData, IPluginSetup.PreparedSetupData memory preparedSetupData)
{
if (
_params.currentVersionTag.release != _params.newVersionTag.release ||
_params.currentVersionTag.build >= _params.newVersionTag.build
) {
revert InvalidUpdateVersion({
currentVersionTag: _params.currentVersionTag,
newVersionTag: _params.newVersionTag
});
}
bytes32 pluginInstallationId = _getPluginInstallationId(_dao, _params.setupPayload.plugin);
PluginState storage pluginState = states[pluginInstallationId];
bytes32 currentHelpersHash = hashHelpers(_params.setupPayload.currentHelpers);
bytes32 appliedSetupId = _getAppliedSetupId(
PluginSetupRef(_params.currentVersionTag, _params.pluginSetupRepo),
currentHelpersHash
);
// The following check implicitly confirms that plugin is currently installed.
// Otherwise, `currentAppliedSetupId` would not be set.
if (pluginState.currentAppliedSetupId != appliedSetupId) {
revert InvalidAppliedSetupId({
currentAppliedSetupId: pluginState.currentAppliedSetupId,
appliedSetupId: appliedSetupId
});
}
PluginRepo.Version memory currentVersion = _params.pluginSetupRepo.getVersion(
_params.currentVersionTag
);
PluginRepo.Version memory newVersion = _params.pluginSetupRepo.getVersion(
_params.newVersionTag
);
bytes32 preparedSetupId;
// If the current and new plugin setup are identical, this is an UI update.
// In this case, the permission hash is set to the empty array hash and the `prepareUpdate` call is skipped to avoid side effects.
if (currentVersion.pluginSetup == newVersion.pluginSetup) {
preparedSetupId = _getPreparedSetupId(
PluginSetupRef(_params.newVersionTag, _params.pluginSetupRepo),
EMPTY_ARRAY_HASH,
currentHelpersHash,
bytes(""),
PreparationType.Update
);
// Because UI updates do not change the plugin functionality, the array of helpers
// associated with this plugin version `preparedSetupData.helpers` and being returned must
// equal `_params.setupPayload.currentHelpers` returned by the previous setup step (installation or update )
// that this update is transitioning from.
preparedSetupData.helpers = _params.setupPayload.currentHelpers;
} else {
// Check that plugin is `PluginUUPSUpgradable`.
if (!_params.setupPayload.plugin.supportsInterface(type(IPlugin).interfaceId)) {
revert IPluginNotSupported({plugin: _params.setupPayload.plugin});
}
if (IPlugin(_params.setupPayload.plugin).pluginType() != IPlugin.PluginType.UUPS) {
revert PluginNonupgradeable({plugin: _params.setupPayload.plugin});
}
// Prepare the update.
(initData, preparedSetupData) = PluginSetup(newVersion.pluginSetup).prepareUpdate(
_dao,
_params.currentVersionTag.build,
_params.setupPayload
);
preparedSetupId = _getPreparedSetupId(
PluginSetupRef(_params.newVersionTag, _params.pluginSetupRepo),
hashPermissions(preparedSetupData.permissions),
hashHelpers(preparedSetupData.helpers),
initData,
PreparationType.Update
);
}
// Check if this setup has already been prepared before and is pending.
if (pluginState.blockNumber < pluginState.preparedSetupIdToBlockNumber[preparedSetupId]) {
revert SetupAlreadyPrepared({preparedSetupId: preparedSetupId});
}
pluginState.preparedSetupIdToBlockNumber[preparedSetupId] = block.number;
// Avoid stack too deep.
emitPrepareUpdateEvent(_dao, preparedSetupId, _params, preparedSetupData, initData);
return (initData, preparedSetupData);
}
/// @notice Applies the permissions of a prepared update of an UUPS upgradeable proxy contract to a DAO.
/// @param _dao The address of the updating DAO.
/// @param _params The struct containing the parameters for the `applyUpdate` function.
function applyUpdate(
address _dao,
ApplyUpdateParams calldata _params
) external canApply(_dao, APPLY_UPDATE_PERMISSION_ID) {
bytes32 pluginInstallationId = _getPluginInstallationId(_dao, _params.plugin);
PluginState storage pluginState = states[pluginInstallationId];
bytes32 preparedSetupId = _getPreparedSetupId(
_params.pluginSetupRef,
hashPermissions(_params.permissions),
_params.helpersHash,
_params.initData,
PreparationType.Update
);
validatePreparedSetupId(pluginInstallationId, preparedSetupId);
bytes32 appliedSetupId = _getAppliedSetupId(_params.pluginSetupRef, _params.helpersHash);
pluginState.blockNumber = block.number;
pluginState.currentAppliedSetupId = appliedSetupId;
PluginRepo.Version memory version = _params.pluginSetupRef.pluginSetupRepo.getVersion(
_params.pluginSetupRef.versionTag
);
address currentImplementation = PluginUUPSUpgradeable(_params.plugin).implementation();
address newImplementation = PluginSetup(version.pluginSetup).implementation();
if (currentImplementation != newImplementation) {
_upgradeProxy(_params.plugin, newImplementation, _params.initData);
}
// If the list of requested permission changes is not empty, process them.
// Note, that this requires the `PluginSetupProcessor` to have the `ROOT_PERMISSION_ID` permission on the
// updating DAO. Make sure this permission is only granted TEMPORARILY.
if (_params.permissions.length > 0) {
DAO(payable(_dao)).applyMultiTargetPermissions(_params.permissions);
}
emit UpdateApplied({
dao: _dao,
plugin: _params.plugin,
preparedSetupId: preparedSetupId,
appliedSetupId: appliedSetupId
});
}
/// @notice Prepares the uninstallation of a plugin.
/// @param _dao The address of the uninstalling DAO.
/// @param _params The struct containing the parameters for the `prepareUninstallation` function.
/// @return permissions The list of multi-targeted permission operations to be applied to the uninstalling DAO.
/// @dev The list of `_params.setupPayload.currentHelpers` has to be specified in the same order as they were returned from previous setups preparation steps (the latest `prepareInstallation` or `prepareUpdate` step that has happened) on which the uninstallation was prepared for.
function prepareUninstallation(
address _dao,
PrepareUninstallationParams calldata _params
) external returns (PermissionLib.MultiTargetPermission[] memory permissions) {
bytes32 pluginInstallationId = _getPluginInstallationId(_dao, _params.setupPayload.plugin);
PluginState storage pluginState = states[pluginInstallationId];
bytes32 appliedSetupId = _getAppliedSetupId(
_params.pluginSetupRef,
hashHelpers(_params.setupPayload.currentHelpers)
);
if (pluginState.currentAppliedSetupId != appliedSetupId) {
revert InvalidAppliedSetupId({
currentAppliedSetupId: pluginState.currentAppliedSetupId,
appliedSetupId: appliedSetupId
});
}
PluginRepo.Version memory version = _params.pluginSetupRef.pluginSetupRepo.getVersion(
_params.pluginSetupRef.versionTag
);
permissions = PluginSetup(version.pluginSetup).prepareUninstallation(
_dao,
_params.setupPayload
);
bytes32 preparedSetupId = _getPreparedSetupId(
_params.pluginSetupRef,
hashPermissions(permissions),
ZERO_BYTES_HASH,
bytes(""),
PreparationType.Uninstallation
);
// Check if this setup has already been prepared before and is pending.
if (pluginState.blockNumber < pluginState.preparedSetupIdToBlockNumber[preparedSetupId]) {
revert SetupAlreadyPrepared({preparedSetupId: preparedSetupId});
}
pluginState.preparedSetupIdToBlockNumber[preparedSetupId] = block.number;
emit UninstallationPrepared({
sender: msg.sender,
dao: _dao,
preparedSetupId: preparedSetupId,
pluginSetupRepo: _params.pluginSetupRef.pluginSetupRepo,
versionTag: _params.pluginSetupRef.versionTag,
setupPayload: _params.setupPayload,
permissions: permissions
});
}
/// @notice Applies the permissions of a prepared uninstallation to a DAO.
/// @param _dao The address of the DAO.
/// @param _dao The address of the uninstalling DAO.
/// @param _params The struct containing the parameters for the `applyUninstallation` function.
/// @dev The list of `_params.setupPayload.currentHelpers` has to be specified in the same order as they were returned from previous setups preparation steps (the latest `prepareInstallation` or `prepareUpdate` step that has happened) on which the uninstallation was prepared for.
function applyUninstallation(
address _dao,
ApplyUninstallationParams calldata _params
) external canApply(_dao, APPLY_UNINSTALLATION_PERMISSION_ID) {
bytes32 pluginInstallationId = _getPluginInstallationId(_dao, _params.plugin);
PluginState storage pluginState = states[pluginInstallationId];
bytes32 preparedSetupId = _getPreparedSetupId(
_params.pluginSetupRef,
hashPermissions(_params.permissions),
ZERO_BYTES_HASH,
bytes(""),
PreparationType.Uninstallation
);
validatePreparedSetupId(pluginInstallationId, preparedSetupId);
// Since the plugin is uninstalled, only the current block number must be updated.
pluginState.blockNumber = block.number;
pluginState.currentAppliedSetupId = bytes32(0);
// If the list of requested permission changes is not empty, process them.
// Note, that this requires the `PluginSetupProcessor` to have the `ROOT_PERMISSION_ID` permission on the
// uninstalling DAO. Make sure this permission is only granted TEMPORARILY.
if (_params.permissions.length > 0) {
DAO(payable(_dao)).applyMultiTargetPermissions(_params.permissions);
}
emit UninstallationApplied({
dao: _dao,
plugin: _params.plugin,
preparedSetupId: preparedSetupId
});
}
/// @notice Validates that a setup ID can be applied for `applyInstallation`, `applyUpdate`, or `applyUninstallation`.
/// @param pluginInstallationId The plugin installation ID obtained from the hash of `abi.encode(daoAddress, pluginAddress)`.
/// @param preparedSetupId The prepared setup ID to be validated.
/// @dev If the block number stored in `states[pluginInstallationId].blockNumber` exceeds the one stored in `pluginState.preparedSetupIdToBlockNumber[preparedSetupId]`, the prepared setup with `preparedSetupId` is outdated and not applicable anymore.
function validatePreparedSetupId(
bytes32 pluginInstallationId,
bytes32 preparedSetupId
) public view {
PluginState storage pluginState = states[pluginInstallationId];
if (pluginState.blockNumber >= pluginState.preparedSetupIdToBlockNumber[preparedSetupId]) {
revert SetupNotApplicable({preparedSetupId: preparedSetupId});
}
}
/// @notice Upgrades a UUPS upgradeable proxy contract (see [ERC-1822](https://eips.ethereum.org/EIPS/eip-1822)).
/// @param _proxy The address of the proxy.
/// @param _implementation The address of the implementation contract.
/// @param _initData The initialization data to be passed to the upgradeable plugin contract via `upgradeToAndCall`.
function _upgradeProxy(
address _proxy,
address _implementation,
bytes memory _initData
) private {
if (_initData.length > 0) {
try
PluginUUPSUpgradeable(_proxy).upgradeToAndCall(_implementation, _initData)
{} catch Error(string memory reason) {
revert(reason);
} catch (bytes memory /*lowLevelData*/) {
revert PluginProxyUpgradeFailed({
proxy: _proxy,
implementation: _implementation,
initData: _initData
});
}
} else {
try PluginUUPSUpgradeable(_proxy).upgradeTo(_implementation) {} catch Error(
string memory reason
) {
revert(reason);
} catch (bytes memory /*lowLevelData*/) {
revert PluginProxyUpgradeFailed({
proxy: _proxy,
implementation: _implementation,
initData: _initData
});
}
}
}
/// @notice Checks if a caller can apply a setup. The caller can be either the DAO to which the plugin setup is applied to or another account to which the DAO has granted the respective permission.
/// @param _dao The address of the applying DAO.
/// @param _permissionId The permission ID.
function _canApply(address _dao, bytes32 _permissionId) private view {
if (
msg.sender != _dao &&
!DAO(payable(_dao)).hasPermission(address(this), msg.sender, _permissionId, bytes(""))
) {
revert SetupApplicationUnauthorized({
dao: _dao,
caller: msg.sender,
permissionId: _permissionId
});
}
}
/// @notice A helper to emit the `UpdatePrepared` event from the supplied, structured data.
/// @param _dao The address of the updating DAO.
/// @param _preparedSetupId The prepared setup ID.
/// @param _params The struct containing the parameters for the `prepareUpdate` function.
/// @param _preparedSetupData The deployed plugin's relevant data which consists of helpers and permissions.
/// @param _initData The initialization data to be passed to upgradeable contracts when the update is applied
/// @dev This functions exists to avoid stack-too-deep errors.
function emitPrepareUpdateEvent(
address _dao,
bytes32 _preparedSetupId,
PrepareUpdateParams calldata _params,
IPluginSetup.PreparedSetupData memory _preparedSetupData,
bytes memory _initData
) private {
emit UpdatePrepared({
sender: msg.sender,
dao: _dao,
preparedSetupId: _preparedSetupId,
pluginSetupRepo: _params.pluginSetupRepo,
versionTag: _params.newVersionTag,
setupPayload: _params.setupPayload,
preparedSetupData: _preparedSetupData,
initData: _initData
});
}
}// SPDX-License-Identifier: AGPL-3.0-or-later pragma solidity ^0.8.8; /// @title IPlugin /// @author Aragon X - 2022-2024 /// @notice An interface defining the traits of a plugin. /// @custom:security-contact [email protected] interface IPlugin { /// @notice Types of plugin implementations available within OSx. enum PluginType { UUPS, Cloneable, Constructable } /// @notice Specifies the type of operation to perform. enum Operation { Call, DelegateCall } /// @notice Configuration for the target contract that the plugin will interact with, including the address and operation type. /// @dev By default, the plugin typically targets the associated DAO and performs a `Call` operation. However, this /// configuration allows the plugin to specify a custom executor and select either `Call` or `DelegateCall` based on /// the desired execution context. /// @param target The address of the target contract, typically the associated DAO but configurable to a custom executor. /// @param operation The type of operation (`Call` or `DelegateCall`) to execute on the target, as defined by `Operation`. struct TargetConfig { address target; Operation operation; } /// @notice Returns the plugin's type function pluginType() external view returns (PluginType); }
// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {PermissionLib} from "../../permission/PermissionLib.sol";
// solhint-disable-next-line no-unused-import
import {IDAO} from "../../dao/IDAO.sol";
/// @title IPluginSetup
/// @author Aragon X - 2022-2023
/// @notice The interface required for a plugin setup contract to be consumed by the `PluginSetupProcessor` for plugin installations, updates, and uninstallations.
/// @custom:security-contact [email protected]
interface IPluginSetup {
/// @notice The data associated with a prepared setup.
/// @param helpers The address array of helpers (contracts or EOAs) associated with this plugin version after the installation or update.
/// @param permissions The array of multi-targeted permission operations to be applied by the `PluginSetupProcessor` to the installing or updating DAO.
struct PreparedSetupData {
address[] helpers;
PermissionLib.MultiTargetPermission[] permissions;
}
/// @notice The payload for plugin updates and uninstallations containing the existing contracts as well as optional data to be consumed by the plugin setup.
/// @param plugin The address of the `Plugin`.
/// @param currentHelpers The address array of all current helpers (contracts or EOAs) associated with the plugin to update from.
/// @param data The bytes-encoded data containing the input parameters for the preparation of update/uninstall as specified in the corresponding ABI on the version's metadata.
struct SetupPayload {
address plugin;
address[] currentHelpers;
bytes data;
}
/// @notice Prepares the installation of a plugin.
/// @param _dao The address of the installing DAO.
/// @param _data The bytes-encoded data containing the input parameters for the installation as specified in the plugin's build metadata JSON file.
/// @return plugin The address of the `Plugin` contract being prepared for installation.
/// @return preparedSetupData The deployed plugin's relevant data which consists of helpers and permissions.
function prepareInstallation(
address _dao,
bytes calldata _data
) external returns (address plugin, PreparedSetupData memory preparedSetupData);
/// @notice Prepares the update of a plugin.
/// @param _dao The address of the updating DAO.
/// @param _fromBuild The build number of the plugin to update from.
/// @param _payload The relevant data necessary for the `prepareUpdate`. See above.
/// @return initData The initialization data to be passed to upgradeable contracts when the update is applied in the `PluginSetupProcessor`.
/// @return preparedSetupData The deployed plugin's relevant data which consists of helpers and permissions.
function prepareUpdate(
address _dao,
uint16 _fromBuild,
SetupPayload calldata _payload
) external returns (bytes memory initData, PreparedSetupData memory preparedSetupData);
/// @notice Prepares the uninstallation of a plugin.
/// @param _dao The address of the uninstalling DAO.
/// @param _payload The relevant data necessary for the `prepareUninstallation`. See above.
/// @return permissions The array of multi-targeted permission operations to be applied by the `PluginSetupProcessor` to the uninstalling DAO.
function prepareUninstallation(
address _dao,
SetupPayload calldata _payload
) external returns (PermissionLib.MultiTargetPermission[] memory permissions);
/// @notice Returns the plugin implementation address.
/// @return The address of the plugin implementation contract.
/// @dev The implementation can be instantiated via the `new` keyword, cloned via the minimal proxy pattern (see [ERC-1167](https://eips.ethereum.org/EIPS/eip-1167)), or proxied via the UUPS proxy pattern (see [ERC-1822](https://eips.ethereum.org/EIPS/eip-1822)).
function implementation() external view returns (address);
}// SPDX-License-Identifier: AGPL-3.0-or-later pragma solidity ^0.8.8; /// @title PermissionLib /// @author Aragon X - 2021-2023 /// @notice A library containing objects for permission processing. /// @custom:security-contact [email protected] library PermissionLib { /// @notice A constant expressing that no condition is applied to a permission. address public constant NO_CONDITION = address(0); /// @notice The types of permission operations available in the `PermissionManager`. /// @param Grant The grant operation setting a permission without a condition. /// @param Revoke The revoke operation removing a permission (that was granted with or without a condition). /// @param GrantWithCondition The grant operation setting a permission with a condition. enum Operation { Grant, Revoke, GrantWithCondition } /// @notice A struct containing the information for a permission to be applied on a single target contract without a condition. /// @param operation The permission operation type. /// @param who The address (EOA or contract) receiving the permission. /// @param permissionId The permission identifier. struct SingleTargetPermission { Operation operation; address who; bytes32 permissionId; } /// @notice A struct containing the information for a permission to be applied on multiple target contracts, optionally, with a condition. /// @param operation The permission operation type. /// @param where The address of the target contract for which `who` receives permission. /// @param who The address (EOA or contract) receiving the permission. /// @param condition The `PermissionCondition` that will be asked for authorization on calls connected to the specified permission identifier. /// @param permissionId The permission identifier. struct MultiTargetPermission { Operation operation; address where; address who; address condition; bytes32 permissionId; } }
// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
/* solhint-disable max-line-length */
import {SafeCastUpgradeable} from "@openzeppelin/contracts-upgradeable/utils/math/SafeCastUpgradeable.sol";
import {IMembership} from "@aragon/osx-commons-contracts/src/plugin/extensions/membership/IMembership.sol";
import {Addresslist} from "@aragon/osx-commons-contracts/src/plugin/extensions/governance/Addresslist.sol";
import {ProposalUpgradeable} from "@aragon/osx-commons-contracts/src/plugin/extensions/proposal/ProposalUpgradeable.sol";
import {PluginUUPSUpgradeable} from "@aragon/osx-commons-contracts/src/plugin/PluginUUPSUpgradeable.sol";
import {IProposal} from "@aragon/osx-commons-contracts/src/plugin/extensions/proposal/IProposal.sol";
import {IDAO} from "@aragon/osx-commons-contracts/src/dao/IDAO.sol";
import {Action} from "@aragon/osx-commons-contracts/src/executors/IExecutor.sol";
import {MetadataExtensionUpgradeable} from "@aragon/osx-commons-contracts/src/utils/metadata/MetadataExtensionUpgradeable.sol";
import {IMultisig} from "./IMultisig.sol";
/* solhint-enable max-line-length */
/// @title Multisig
/// @author Aragon X - 2022-2024
/// @notice The on-chain multisig governance plugin in which a proposal passes if X out of Y approvals are met.
/// @dev v1.3 (Release 1, Build 3). For each upgrade, if the reinitialization step is required,
/// increment the version numbers in the modifier for both the initialize and initializeFrom functions.
/// @custom:security-contact [email protected]
contract Multisig is
IMultisig,
IMembership,
MetadataExtensionUpgradeable,
PluginUUPSUpgradeable,
ProposalUpgradeable,
Addresslist
{
using SafeCastUpgradeable for uint256;
/// @notice A container for proposal-related information.
/// @param executed Whether the proposal is executed or not.
/// @param approvals The number of approvals casted.
/// @param parameters The proposal-specific approve settings at the time of the proposal creation.
/// @param approvers The approves casted by the approvers.
/// @param actions The actions to be executed when the proposal passes.
/// @param allowFailureMap A bitmap allowing the proposal to succeed, even if individual actions might revert.
/// If the bit at index `i` is 1, the proposal succeeds even if the `i`th action reverts.
/// A failure map value of 0 requires every action to not revert.
/// @param targetConfig Configuration for the execution target, specifying the target address and operation type
/// (either `Call` or `DelegateCall`). Defined by `TargetConfig` in the `IPlugin` interface,
/// part of the `osx-commons-contracts` package, added in build 3.
struct Proposal {
bool executed;
uint16 approvals;
ProposalParameters parameters;
mapping(address => bool) approvers;
Action[] actions;
uint256 allowFailureMap;
TargetConfig targetConfig; // added in build 3.
}
/// @notice A container for the proposal parameters.
/// @param minApprovals The number of approvals required.
/// @param snapshotBlock The number of the block prior to the proposal creation.
/// @param startDate The timestamp when the proposal starts.
/// @param endDate The timestamp when the proposal expires.
struct ProposalParameters {
uint16 minApprovals;
uint64 snapshotBlock;
uint64 startDate;
uint64 endDate;
}
/// @notice A container for the plugin settings.
/// @param onlyListed Whether only listed addresses can create a proposal or not.
/// @param minApprovals The minimal number of approvals required for a proposal to pass.
struct MultisigSettings {
bool onlyListed;
uint16 minApprovals;
}
/// @notice The [ERC-165](https://eips.ethereum.org/EIPS/eip-165) interface ID of the contract.
bytes4 internal constant MULTISIG_INTERFACE_ID =
this.updateMultisigSettings.selector ^
bytes4(
keccak256(
"createProposal(bytes,(address,uint256,bytes)[],uint256,bool,bool,uint64,uint64)"
)
) ^
this.getProposal.selector;
/// @notice The ID of the permission required to call the
/// `addAddresses`, `removeAddresses` and `updateMultisigSettings` functions.
bytes32 public constant UPDATE_MULTISIG_SETTINGS_PERMISSION_ID =
keccak256("UPDATE_MULTISIG_SETTINGS_PERMISSION");
/// @notice The ID of the permission required to call the `createProposal` function.
bytes32 public constant CREATE_PROPOSAL_PERMISSION_ID = keccak256("CREATE_PROPOSAL_PERMISSION");
/// @notice The ID of the permission required to call the `execute` function.
bytes32 public constant EXECUTE_PROPOSAL_PERMISSION_ID =
keccak256("EXECUTE_PROPOSAL_PERMISSION");
/// @notice A mapping between proposal IDs and proposal information.
// solhint-disable-next-line named-parameters-mapping
mapping(uint256 => Proposal) internal proposals;
/// @notice The current plugin settings.
MultisigSettings public multisigSettings;
/// @notice Keeps track at which block number the multisig settings have been changed the last time.
/// @dev This variable prevents a proposal from being created in the same block in which the multisig
/// settings change.
uint64 public lastMultisigSettingsChange;
/// @notice Thrown when a sender is not allowed to create a proposal.
/// @param sender The sender address.
error ProposalCreationForbidden(address sender);
/// @notice Thrown when a proposal doesn't exist.
/// @param proposalId The ID of the proposal which doesn't exist.
error NonexistentProposal(uint256 proposalId);
/// @notice Thrown if an approver is not allowed to cast an approve. This can be because the proposal
/// - is not open,
/// - was executed, or
/// - the approver is not on the address list
/// @param proposalId The ID of the proposal.
/// @param sender The address of the sender.
error ApprovalCastForbidden(uint256 proposalId, address sender);
/// @notice Thrown if the proposal execution is forbidden.
/// @param proposalId The ID of the proposal.
error ProposalExecutionForbidden(uint256 proposalId);
/// @notice Thrown if the minimal approvals value is out of bounds (less than 1 or greater than the number of
/// members in the address list).
/// @param limit The maximal value.
/// @param actual The actual value.
error MinApprovalsOutOfBounds(uint16 limit, uint16 actual);
/// @notice Thrown if the address list length is out of bounds.
/// @param limit The limit value.
/// @param actual The actual value.
error AddresslistLengthOutOfBounds(uint16 limit, uint256 actual);
/// @notice Thrown if the proposal with the same id already exists.
/// @param proposalId The id of the proposal.
error ProposalAlreadyExists(uint256 proposalId);
/// @notice Thrown if a date is out of bounds.
/// @param limit The limit value.
/// @param actual The actual value.
error DateOutOfBounds(uint64 limit, uint64 actual);
/// @notice Emitted when a proposal is approve by an approver.
/// @param proposalId The ID of the proposal.
/// @param approver The approver casting the approve.
event Approved(uint256 indexed proposalId, address indexed approver);
/// @notice Emitted when the plugin settings are set.
/// @param onlyListed Whether only listed addresses can create a proposal.
/// @param minApprovals The minimum amount of approvals needed to pass a proposal.
event MultisigSettingsUpdated(bool onlyListed, uint16 indexed minApprovals);
/// @notice Initializes Release 1, Build 3.
/// @dev This method is required to support [ERC-1822](https://eips.ethereum.org/EIPS/eip-1822).
/// @param _dao The IDAO interface of the associated DAO.
/// @param _members The addresses of the initial members to be added.
/// @param _multisigSettings The multisig settings.
/// @param _targetConfig Configuration for the execution target, specifying the target address and
/// operation type(either `Call` or `DelegateCall`). Defined by `TargetConfig` in the `IPlugin`
/// interface of `osx-commons-contracts` package, added in build 3.
/// @param _pluginMetadata The plugin specific information encoded in bytes.
/// This can also be an ipfs cid encoded in bytes.
function initialize(
IDAO _dao,
address[] calldata _members,
MultisigSettings calldata _multisigSettings,
TargetConfig calldata _targetConfig,
bytes calldata _pluginMetadata
) external onlyCallAtInitialization reinitializer(2) {
__PluginUUPSUpgradeable_init(_dao);
if (_members.length > type(uint16).max) {
revert AddresslistLengthOutOfBounds({limit: type(uint16).max, actual: _members.length});
}
_addAddresses(_members);
emit MembersAdded({members: _members});
_updateMultisigSettings(_multisigSettings);
_setMetadata(_pluginMetadata);
_setTargetConfig(_targetConfig);
}
/// @notice Reinitializes the Multisig after an upgrade from a previous build version. For each
/// reinitialization step, use the `_fromBuild` version to decide which internal functions to call
/// for reinitialization.
/// @dev WARNING: The contract should only be upgradeable through PSP to ensure that _fromBuild is not
/// incorrectly passed, and that the appropriate permissions for the upgrade are properly configured.
/// @param _fromBuild The build version number of the previous implementation contract
/// this upgrade is transitioning from.
/// @param _initData The initialization data to be passed to via `upgradeToAndCall`
/// (see [ERC-1967](https://docs.openzeppelin.com/contracts/4.x/api/proxy#ERC1967Upgrade)).
function initializeFrom(uint16 _fromBuild, bytes calldata _initData) external reinitializer(2) {
if (_fromBuild < 3) {
(TargetConfig memory targetConfig, bytes memory pluginMetadata) = abi.decode(
_initData,
(TargetConfig, bytes)
);
_setTargetConfig(targetConfig);
_setMetadata(pluginMetadata);
}
}
/// @notice Checks if this or the parent contract supports an interface by its ID.
/// @param _interfaceId The ID of the interface.
/// @return Returns `true` if the interface is supported.
function supportsInterface(
bytes4 _interfaceId
)
public
view
virtual
override(MetadataExtensionUpgradeable, PluginUUPSUpgradeable, ProposalUpgradeable)
returns (bool)
{
return
_interfaceId == MULTISIG_INTERFACE_ID ||
_interfaceId == type(IMultisig).interfaceId ||
_interfaceId == type(Addresslist).interfaceId ||
_interfaceId == type(IMembership).interfaceId ||
super.supportsInterface(_interfaceId);
}
/// @inheritdoc IMultisig
/// @dev Requires the `UPDATE_MULTISIG_SETTINGS_PERMISSION_ID` permission.
function addAddresses(
address[] calldata _members
) external auth(UPDATE_MULTISIG_SETTINGS_PERMISSION_ID) {
uint256 newAddresslistLength = addresslistLength() + _members.length;
// Check if the new address list length would be greater than `type(uint16).max`, the maximal number of
// approvals.
if (newAddresslistLength > type(uint16).max) {
revert AddresslistLengthOutOfBounds({
limit: type(uint16).max,
actual: newAddresslistLength
});
}
_addAddresses(_members);
emit MembersAdded({members: _members});
}
/// @inheritdoc IMultisig
/// @dev Requires the `UPDATE_MULTISIG_SETTINGS_PERMISSION_ID` permission.
function removeAddresses(
address[] calldata _members
) external auth(UPDATE_MULTISIG_SETTINGS_PERMISSION_ID) {
uint16 newAddresslistLength = uint16(addresslistLength() - _members.length);
// Check if the new address list length would become less than the current minimum number of approvals required.
if (newAddresslistLength < multisigSettings.minApprovals) {
revert MinApprovalsOutOfBounds({
limit: newAddresslistLength,
actual: multisigSettings.minApprovals
});
}
_removeAddresses(_members);
emit MembersRemoved({members: _members});
}
/// @notice Updates the plugin settings.
/// @dev Requires the `UPDATE_MULTISIG_SETTINGS_PERMISSION_ID` permission.
/// @param _multisigSettings The new settings.
function updateMultisigSettings(
MultisigSettings calldata _multisigSettings
) external auth(UPDATE_MULTISIG_SETTINGS_PERMISSION_ID) {
_updateMultisigSettings(_multisigSettings);
}
/// @notice Creates a new multisig proposal.
/// @dev Requires the `CREATE_PROPOSAL_PERMISSION_ID` permission.
/// @param _metadata The metadata of the proposal.
/// @param _actions The actions that will be executed after the proposal passes.
/// @param _allowFailureMap A bitmap allowing the proposal to succeed, even if individual actions might revert.
/// If the bit at index `i` is 1, the proposal succeeds even if the `i`th action reverts.
/// A failure map value of 0 requires every action to not revert.
/// @param _approveProposal If `true`, the sender will approve the proposal.
/// @param _tryExecution If `true`, execution is tried after the vote cast. The call does not revert if
/// execution is not possible.
/// @param _startDate The start date of the proposal.
/// @param _endDate The end date of the proposal.
/// @return proposalId The ID of the proposal.
// solhint-disable-next-line code-complexity
function createProposal(
bytes calldata _metadata,
Action[] calldata _actions,
uint256 _allowFailureMap,
bool _approveProposal,
bool _tryExecution,
uint64 _startDate,
uint64 _endDate
) public auth(CREATE_PROPOSAL_PERMISSION_ID) returns (uint256 proposalId) {
uint64 snapshotBlock;
unchecked {
// The snapshot block must be mined already to protect the transaction against backrunning transactions
// causing census changes.
snapshotBlock = block.number.toUint64() - 1;
}
// Revert if the settings have been changed in the same block as this proposal should be created in.
// This prevents a malicious party from voting with previous addresses and the new settings.
if (lastMultisigSettingsChange > snapshotBlock) {
revert ProposalCreationForbidden(_msgSender());
}
if (_startDate == 0) {
_startDate = block.timestamp.toUint64();
} else if (_startDate < block.timestamp.toUint64()) {
revert DateOutOfBounds({limit: block.timestamp.toUint64(), actual: _startDate});
}
if (_endDate < _startDate) {
revert DateOutOfBounds({limit: _startDate, actual: _endDate});
}
proposalId = _createProposalId(keccak256(abi.encode(_actions, _metadata)));
// Create the proposal
Proposal storage proposal_ = proposals[proposalId];
// Revert if a proposal with the given `proposalId` already exists.
if (_proposalExists(proposalId)) {
revert ProposalAlreadyExists(proposalId);
}
proposal_.parameters.snapshotBlock = snapshotBlock;
proposal_.parameters.startDate = _startDate;
proposal_.parameters.endDate = _endDate;
proposal_.parameters.minApprovals = multisigSettings.minApprovals;
proposal_.targetConfig = getTargetConfig();
// Reduce costs
if (_allowFailureMap != 0) {
proposal_.allowFailureMap = _allowFailureMap;
}
for (uint256 i; i < _actions.length; ) {
proposal_.actions.push(_actions[i]);
unchecked {
++i;
}
}
if (_approveProposal) {
approve(proposalId, _tryExecution);
}
_emitProposalCreatedEvent(
_actions,
_metadata,
_allowFailureMap,
_startDate,
_endDate,
proposalId
);
}
/// @inheritdoc IProposal
/// @dev Calls a public function that requires the `CREATE_PROPOSAL_PERMISSION_ID` permission.
function createProposal(
bytes calldata _metadata,
Action[] calldata _actions,
uint64 _startDate,
uint64 _endDate,
bytes memory _data
) external override returns (uint256 proposalId) {
// Custom parameters
uint256 _allowFailureMap;
bool _approveProposal;
bool _tryExecution;
if (_data.length != 0) {
(_allowFailureMap, _approveProposal, _tryExecution) = abi.decode(
_data,
(uint256, bool, bool)
);
}
// Calls a public function for permission check.
proposalId = createProposal(
_metadata,
_actions,
_allowFailureMap,
_approveProposal,
_tryExecution,
_startDate,
_endDate
);
}
/// @inheritdoc IProposal
function customProposalParamsABI() external pure override returns (string memory) {
return "(uint256 allowFailureMap, bool approveProposal, bool tryExecution)";
}
/// @inheritdoc IMultisig
/// @dev If `_tryExecution` is `true`, the function attempts execution after recording the approval.
/// Execution will only proceed if the proposal is no longer open, the minimum approval requirements are met,
/// and the caller has been granted execution permission. If execution conditions are not met,
/// the function does not revert.
function approve(uint256 _proposalId, bool _tryExecution) public {
address approver = _msgSender();
if (!_canApprove(_proposalId, approver)) {
revert ApprovalCastForbidden(_proposalId, approver);
}
Proposal storage proposal_ = proposals[_proposalId];
// As the list can never become more than type(uint16).max (due to `addAddresses` check)
// It's safe to use unchecked as it would never overflow.
unchecked {
proposal_.approvals += 1;
}
proposal_.approvers[approver] = true;
emit Approved({proposalId: _proposalId, approver: approver});
if (!_tryExecution) {
return;
}
if (
_canExecute(_proposalId) &&
dao().hasPermission(address(this), approver, EXECUTE_PROPOSAL_PERMISSION_ID, msg.data)
) {
_execute(_proposalId);
}
}
/// @inheritdoc IMultisig
/// @dev Reverts if the proposal with the given `_proposalId` does not exist.
function canApprove(uint256 _proposalId, address _account) external view returns (bool) {
if (!_proposalExists(_proposalId)) {
revert NonexistentProposal(_proposalId);
}
return _canApprove(_proposalId, _account);
}
/// @inheritdoc IMultisig
/// @dev Reverts if the proposal with the given `_proposalId` does not exist.
function canExecute(
uint256 _proposalId
) external view virtual override(IMultisig, IProposal) returns (bool) {
if (!_proposalExists(_proposalId)) {
revert NonexistentProposal(_proposalId);
}
return _canExecute(_proposalId);
}
/// @inheritdoc IProposal
function hasSucceeded(uint256 _proposalId) external view virtual override returns (bool) {
if (!_proposalExists(_proposalId)) {
revert NonexistentProposal(_proposalId);
}
Proposal storage proposal_ = proposals[_proposalId];
return proposal_.approvals >= proposal_.parameters.minApprovals;
}
/// @notice Returns all information for a proposal by its ID.
/// @param _proposalId The ID of the proposal.
/// @return executed Whether the proposal is executed or not.
/// @return approvals The number of approvals casted.
/// @return parameters The parameters of the proposal.
/// @return actions The actions to be executed to the `target` contract address.
/// @return allowFailureMap A bitmap allowing the proposal to succeed, even if individual actions might revert.
/// If the bit at index `i` is 1, the proposal succeeds even if the `i`th action reverts.
/// A failure map value of 0 requires every action to not revert.
/// @return targetConfig Execution configuration, applied to the proposal when it was created. Added in build 3.
function getProposal(
uint256 _proposalId
)
public
view
returns (
bool executed,
uint16 approvals,
ProposalParameters memory parameters,
Action[] memory actions,
uint256 allowFailureMap,
TargetConfig memory targetConfig
)
{
Proposal storage proposal_ = proposals[_proposalId];
executed = proposal_.executed;
approvals = proposal_.approvals;
parameters = proposal_.parameters;
actions = proposal_.actions;
allowFailureMap = proposal_.allowFailureMap;
targetConfig = proposal_.targetConfig;
}
/// @inheritdoc IMultisig
/// @dev May return false if the `_proposalId` or `_account` do not exist,
/// as the function does not verify their existence.
function hasApproved(uint256 _proposalId, address _account) public view returns (bool) {
return proposals[_proposalId].approvers[_account];
}
/// @inheritdoc IMultisig
/// @dev Requires the `EXECUTE_PROPOSAL_PERMISSION_ID` permission.
/// @dev Reverts if the proposal is still open or if the minimum approval threshold has not been met.
function execute(
uint256 _proposalId
) public override(IMultisig, IProposal) auth(EXECUTE_PROPOSAL_PERMISSION_ID) {
if (!_canExecute(_proposalId)) {
revert ProposalExecutionForbidden(_proposalId);
}
_execute(_proposalId);
}
/// @inheritdoc IMembership
function isMember(address _account) external view returns (bool) {
return isListed(_account);
}
/// @notice Internal function to execute a proposal.
/// @dev It assumes the queried proposal exists.
/// @param _proposalId The ID of the proposal.
function _execute(uint256 _proposalId) internal {
Proposal storage proposal_ = proposals[_proposalId];
proposal_.executed = true;
_execute(
proposal_.targetConfig.target,
bytes32(_proposalId),
proposal_.actions,
proposal_.allowFailureMap,
proposal_.targetConfig.operation
);
emit ProposalExecuted(_proposalId);
}
/// @notice Checks if proposal exists or not.
/// @dev A proposal is considered to exist if its `snapshotBlock` in `parameters` is non-zero.
/// @param _proposalId The ID of the proposal.
/// @return Returns `true` if proposal exists, otherwise false.
function _proposalExists(uint256 _proposalId) private view returns (bool) {
return proposals[_proposalId].parameters.snapshotBlock != 0;
}
/// @notice Internal function to check if an account can approve.
/// @dev It assumes the queried proposal exists.
/// @param _proposalId The ID of the proposal.
/// @param _account The account to check.
/// @return Returns `true` if the given account can approve on a certain proposal and `false` otherwise.
function _canApprove(uint256 _proposalId, address _account) internal view returns (bool) {
Proposal storage proposal_ = proposals[_proposalId];
if (!_isProposalOpen(proposal_)) {
// The proposal was executed already
return false;
}
if (!isListedAtBlock(_account, proposal_.parameters.snapshotBlock)) {
// The approver has no voting power.
return false;
}
if (proposal_.approvers[_account]) {
// The approver has already approved
return false;
}
return true;
}
/// @notice Internal function to check if a proposal can be executed.
/// @dev It assumes the queried proposal exists.
/// @param _proposalId The ID of the proposal.
/// @return Returns `true` if the proposal can be executed and `false` otherwise.
function _canExecute(uint256 _proposalId) internal view returns (bool) {
Proposal storage proposal_ = proposals[_proposalId];
// Verify that the proposal has not been executed or expired.
if (!_isProposalOpen(proposal_)) {
return false;
}
return proposal_.approvals >= proposal_.parameters.minApprovals;
}
/// @notice Internal function to check if a proposal is still open.
/// @param proposal_ The proposal struct.
/// @return True if the proposal is open, false otherwise.
function _isProposalOpen(Proposal storage proposal_) internal view returns (bool) {
uint64 currentTimestamp64 = block.timestamp.toUint64();
return
!proposal_.executed &&
proposal_.parameters.startDate <= currentTimestamp64 &&
proposal_.parameters.endDate >= currentTimestamp64;
}
/// @notice Internal function to update the plugin settings.
/// @param _multisigSettings The new settings.
function _updateMultisigSettings(MultisigSettings calldata _multisigSettings) internal {
uint16 addresslistLength_ = uint16(addresslistLength());
if (_multisigSettings.minApprovals > addresslistLength_) {
revert MinApprovalsOutOfBounds({
limit: addresslistLength_,
actual: _multisigSettings.minApprovals
});
}
if (_multisigSettings.minApprovals < 1) {
revert MinApprovalsOutOfBounds({limit: 1, actual: _multisigSettings.minApprovals});
}
multisigSettings = _multisigSettings;
lastMultisigSettingsChange = block.number.toUint64();
emit MultisigSettingsUpdated({
onlyListed: _multisigSettings.onlyListed,
minApprovals: _multisigSettings.minApprovals
});
}
/// @dev Helper function to avoid stack too deep.
function _emitProposalCreatedEvent(
Action[] memory _actions,
bytes memory _metadata,
uint256 _allowFailureMap,
uint64 _startDate,
uint64 _endDate,
uint256 _proposalId
) private {
emit ProposalCreated(
_proposalId,
_msgSender(),
_startDate,
_endDate,
_metadata,
_actions,
_allowFailureMap
);
}
/// @dev This empty reserved space is put in place to allow future versions to add new
/// variables without shifting down storage in the inheritance chain.
/// https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps
uint256[47] private __gap;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.7.0) (proxy/ERC1967/ERC1967Proxy.sol)
pragma solidity ^0.8.0;
import "../Proxy.sol";
import "./ERC1967Upgrade.sol";
/**
* @dev This contract implements an upgradeable proxy. It is upgradeable because calls are delegated to an
* implementation address that can be changed. This address is stored in storage in the location specified by
* https://eips.ethereum.org/EIPS/eip-1967[EIP1967], so that it doesn't conflict with the storage layout of the
* implementation behind the proxy.
*/
contract ERC1967Proxy is Proxy, ERC1967Upgrade {
/**
* @dev Initializes the upgradeable proxy with an initial implementation specified by `_logic`.
*
* If `_data` is nonempty, it's used as data in a delegate call to `_logic`. This will typically be an encoded
* function call, and allows initializing the storage of the proxy like a Solidity constructor.
*/
constructor(address _logic, bytes memory _data) payable {
_upgradeToAndCall(_logic, _data, false);
}
/**
* @dev Returns the current implementation address.
*/
function _implementation() internal view virtual override returns (address impl) {
return ERC1967Upgrade._getImplementation();
}
}pragma solidity >=0.8.4;
interface ENS {
// Logged when the owner of a node assigns a new owner to a subnode.
event NewOwner(bytes32 indexed node, bytes32 indexed label, address owner);
// Logged when the owner of a node transfers ownership to a new account.
event Transfer(bytes32 indexed node, address owner);
// Logged when the resolver for a node changes.
event NewResolver(bytes32 indexed node, address resolver);
// Logged when the TTL of a node changes
event NewTTL(bytes32 indexed node, uint64 ttl);
// Logged when an operator is added or removed.
event ApprovalForAll(address indexed owner, address indexed operator, bool approved);
function setRecord(bytes32 node, address owner, address resolver, uint64 ttl) external virtual;
function setSubnodeRecord(bytes32 node, bytes32 label, address owner, address resolver, uint64 ttl) external virtual;
function setSubnodeOwner(bytes32 node, bytes32 label, address owner) external virtual returns(bytes32);
function setResolver(bytes32 node, address resolver) external virtual;
function setOwner(bytes32 node, address owner) external virtual;
function setTTL(bytes32 node, uint64 ttl) external virtual;
function setApprovalForAll(address operator, bool approved) external virtual;
function owner(bytes32 node) external virtual view returns (address);
function resolver(bytes32 node) external virtual view returns (address);
function ttl(bytes32 node) external virtual view returns (uint64);
function recordExists(bytes32 node) external virtual view returns (bool);
function isApprovedForAll(address owner, address operator) external virtual view returns (bool);
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import "@ensdomains/ens-contracts/contracts/registry/ENS.sol";
import "@ensdomains/ens-contracts/contracts/resolvers/Resolver.sol";
import {UUPSUpgradeable} from "@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol";
import {ProtocolVersion} from "@aragon/osx-commons-contracts/src/utils/versioning/ProtocolVersion.sol";
import {DaoAuthorizableUpgradeable} from "@aragon/osx-commons-contracts/src/permission/auth/DaoAuthorizableUpgradeable.sol";
import {IDAO} from "@aragon/osx-commons-contracts/src/dao/IDAO.sol";
/// @title ENSSubdomainRegistrar
/// @author Aragon X - 2022-2023
/// @notice This contract registers ENS subdomains under a parent domain specified in the initialization process and maintains ownership of the subdomain since only the resolver address is set. This contract must either be the domain node owner or an approved operator of the node owner. The default resolver being used is the one specified in the parent domain.
/// @custom:security-contact [email protected]
contract ENSSubdomainRegistrar is UUPSUpgradeable, DaoAuthorizableUpgradeable, ProtocolVersion {
/// @notice The ID of the permission required to call the `_authorizeUpgrade` function.
bytes32 public constant UPGRADE_REGISTRAR_PERMISSION_ID =
keccak256("UPGRADE_REGISTRAR_PERMISSION");
/// @notice The ID of the permission required to call the `registerSubnode` and `setDefaultResolver` function.
bytes32 public constant REGISTER_ENS_SUBDOMAIN_PERMISSION_ID =
keccak256("REGISTER_ENS_SUBDOMAIN_PERMISSION");
/// @notice The ENS registry contract
ENS public ens;
/// @notice The namehash of the domain on which subdomains are registered.
bytes32 public node;
/// @notice The address of the ENS resolver resolving the names to an address.
address public resolver;
/// @notice Thrown if the subnode is already registered.
/// @param subnode The subnode namehash.
/// @param nodeOwner The node owner address.
error AlreadyRegistered(bytes32 subnode, address nodeOwner);
/// @notice Thrown if node's resolver is invalid.
/// @param node The node namehash.
/// @param resolver The node resolver address.
error InvalidResolver(bytes32 node, address resolver);
/// @dev Used to disallow initializing the implementation contract by an attacker for extra safety.
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() {
_disableInitializers();
}
/// @notice Initializes the component by
/// - checking that the contract is the domain node owner or an approved operator
/// - initializing the underlying component
/// - registering the [ERC-165](https://eips.ethereum.org/EIPS/eip-165) interface ID
/// - setting the ENS contract, the domain node hash, and resolver.
/// @param _managingDao The interface of the DAO managing the components permissions.
/// @param _ens The interface of the ENS registry to be used.
/// @param _node The ENS parent domain node under which the subdomains are to be registered.
function initialize(IDAO _managingDao, ENS _ens, bytes32 _node) external initializer {
__DaoAuthorizableUpgradeable_init(_managingDao);
ens = _ens;
node = _node;
address nodeResolver = ens.resolver(_node);
if (nodeResolver == address(0)) {
revert InvalidResolver({node: _node, resolver: nodeResolver});
}
resolver = nodeResolver;
}
/// @notice Internal method authorizing the upgrade of the contract via the [upgradeability mechanism for UUPS proxies](https://docs.openzeppelin.com/contracts/4.x/api/proxy#UUPSUpgradeable) (see [ERC-1822](https://eips.ethereum.org/EIPS/eip-1822)).
/// @dev The caller must have the `UPGRADE_REGISTRAR_PERMISSION_ID` permission.
function _authorizeUpgrade(
address
) internal virtual override auth(UPGRADE_REGISTRAR_PERMISSION_ID) {}
/// @notice Registers a new subdomain with this registrar as the owner and set the target address in the resolver.
/// @dev It reverts with no message if this contract isn't the owner nor an approved operator for the given node.
/// @param _label The labelhash of the subdomain name.
/// @param _targetAddress The address to which the subdomain resolves.
function registerSubnode(
bytes32 _label,
address _targetAddress
) external auth(REGISTER_ENS_SUBDOMAIN_PERMISSION_ID) {
bytes32 subnode = keccak256(abi.encodePacked(node, _label));
address currentOwner = ens.owner(subnode);
if (currentOwner != address(0)) {
revert AlreadyRegistered(subnode, currentOwner);
}
ens.setSubnodeOwner(node, _label, address(this));
ens.setResolver(subnode, resolver);
Resolver(resolver).setAddr(subnode, _targetAddress);
}
/// @notice Sets the default resolver contract address that the subdomains being registered will use.
/// @param _resolver The resolver contract to be used.
function setDefaultResolver(
address _resolver
) external auth(REGISTER_ENS_SUBDOMAIN_PERMISSION_ID) {
if (_resolver == address(0)) {
revert InvalidResolver({node: node, resolver: _resolver});
}
resolver = _resolver;
}
/// @notice This empty reserved space is put in place to allow future versions to add new variables without shifting down storage in the inheritance chain (see [OpenZeppelin's guide about storage gaps](https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps)).
uint256[47] private __gap;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/introspection/ERC165Storage.sol)
pragma solidity ^0.8.0;
import "./ERC165Upgradeable.sol";
import {Initializable} from "../../proxy/utils/Initializable.sol";
/**
* @dev Storage based implementation of the {IERC165} interface.
*
* Contracts may inherit from this and call {_registerInterface} to declare
* their support of an interface.
*/
abstract contract ERC165StorageUpgradeable is Initializable, ERC165Upgradeable {
/**
* @dev Mapping of interface ids to whether or not it's supported.
*/
mapping(bytes4 => bool) private _supportedInterfaces;
function __ERC165Storage_init() internal onlyInitializing {
}
function __ERC165Storage_init_unchained() internal onlyInitializing {
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return super.supportsInterface(interfaceId) || _supportedInterfaces[interfaceId];
}
/**
* @dev Registers the contract as an implementer of the interface defined by
* `interfaceId`. Support of the actual ERC165 interface is automatic and
* registering its interface id is not required.
*
* See {IERC165-supportsInterface}.
*
* Requirements:
*
* - `interfaceId` cannot be the ERC165 invalid interface (`0xffffffff`).
*/
function _registerInterface(bytes4 interfaceId) internal virtual {
require(interfaceId != 0xffffffff, "ERC165: invalid interface id");
_supportedInterfaces[interfaceId] = true;
}
/**
* @dev This empty reserved space is put in place to allow future versions to add new
* variables without shifting down storage in the inheritance chain.
* See https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps
*/
uint256[49] private __gap;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (proxy/utils/Initializable.sol)
pragma solidity ^0.8.2;
import "../../utils/AddressUpgradeable.sol";
/**
* @dev This is a base contract to aid in writing upgradeable contracts, or any kind of contract that will be deployed
* behind a proxy. Since proxied contracts do not make use of a constructor, it's common to move constructor logic to an
* external initializer function, usually called `initialize`. It then becomes necessary to protect this initializer
* function so it can only be called once. The {initializer} modifier provided by this contract will have this effect.
*
* The initialization functions use a version number. Once a version number is used, it is consumed and cannot be
* reused. This mechanism prevents re-execution of each "step" but allows the creation of new initialization steps in
* case an upgrade adds a module that needs to be initialized.
*
* For example:
*
* [.hljs-theme-light.nopadding]
* ```solidity
* contract MyToken is ERC20Upgradeable {
* function initialize() initializer public {
* __ERC20_init("MyToken", "MTK");
* }
* }
*
* contract MyTokenV2 is MyToken, ERC20PermitUpgradeable {
* function initializeV2() reinitializer(2) public {
* __ERC20Permit_init("MyToken");
* }
* }
* ```
*
* TIP: To avoid leaving the proxy in an uninitialized state, the initializer function should be called as early as
* possible by providing the encoded function call as the `_data` argument to {ERC1967Proxy-constructor}.
*
* CAUTION: When used with inheritance, manual care must be taken to not invoke a parent initializer twice, or to ensure
* that all initializers are idempotent. This is not verified automatically as constructors are by Solidity.
*
* [CAUTION]
* ====
* Avoid leaving a contract uninitialized.
*
* An uninitialized contract can be taken over by an attacker. This applies to both a proxy and its implementation
* contract, which may impact the proxy. To prevent the implementation contract from being used, you should invoke
* the {_disableInitializers} function in the constructor to automatically lock it when it is deployed:
*
* [.hljs-theme-light.nopadding]
* ```
* /// @custom:oz-upgrades-unsafe-allow constructor
* constructor() {
* _disableInitializers();
* }
* ```
* ====
*/
abstract contract Initializable {
/**
* @dev Indicates that the contract has been initialized.
* @custom:oz-retyped-from bool
*/
uint8 private _initialized;
/**
* @dev Indicates that the contract is in the process of being initialized.
*/
bool private _initializing;
/**
* @dev Triggered when the contract has been initialized or reinitialized.
*/
event Initialized(uint8 version);
/**
* @dev A modifier that defines a protected initializer function that can be invoked at most once. In its scope,
* `onlyInitializing` functions can be used to initialize parent contracts.
*
* Similar to `reinitializer(1)`, except that functions marked with `initializer` can be nested in the context of a
* constructor.
*
* Emits an {Initialized} event.
*/
modifier initializer() {
bool isTopLevelCall = !_initializing;
require(
(isTopLevelCall && _initialized < 1) || (!AddressUpgradeable.isContract(address(this)) && _initialized == 1),
"Initializable: contract is already initialized"
);
_initialized = 1;
if (isTopLevelCall) {
_initializing = true;
}
_;
if (isTopLevelCall) {
_initializing = false;
emit Initialized(1);
}
}
/**
* @dev A modifier that defines a protected reinitializer function that can be invoked at most once, and only if the
* contract hasn't been initialized to a greater version before. In its scope, `onlyInitializing` functions can be
* used to initialize parent contracts.
*
* A reinitializer may be used after the original initialization step. This is essential to configure modules that
* are added through upgrades and that require initialization.
*
* When `version` is 1, this modifier is similar to `initializer`, except that functions marked with `reinitializer`
* cannot be nested. If one is invoked in the context of another, execution will revert.
*
* Note that versions can jump in increments greater than 1; this implies that if multiple reinitializers coexist in
* a contract, executing them in the right order is up to the developer or operator.
*
* WARNING: setting the version to 255 will prevent any future reinitialization.
*
* Emits an {Initialized} event.
*/
modifier reinitializer(uint8 version) {
require(!_initializing && _initialized < version, "Initializable: contract is already initialized");
_initialized = version;
_initializing = true;
_;
_initializing = false;
emit Initialized(version);
}
/**
* @dev Modifier to protect an initialization function so that it can only be invoked by functions with the
* {initializer} and {reinitializer} modifiers, directly or indirectly.
*/
modifier onlyInitializing() {
require(_initializing, "Initializable: contract is not initializing");
_;
}
/**
* @dev Locks the contract, preventing any future reinitialization. This cannot be part of an initializer call.
* Calling this in the constructor of a contract will prevent that contract from being initialized or reinitialized
* to any version. It is recommended to use this to lock implementation contracts that are designed to be called
* through proxies.
*
* Emits an {Initialized} event the first time it is successfully executed.
*/
function _disableInitializers() internal virtual {
require(!_initializing, "Initializable: contract is initializing");
if (_initialized != type(uint8).max) {
_initialized = type(uint8).max;
emit Initialized(type(uint8).max);
}
}
/**
* @dev Returns the highest version that has been initialized. See {reinitializer}.
*/
function _getInitializedVersion() internal view returns (uint8) {
return _initialized;
}
/**
* @dev Returns `true` if the contract is currently initializing. See {onlyInitializing}.
*/
function _isInitializing() internal view returns (bool) {
return _initializing;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (proxy/utils/UUPSUpgradeable.sol)
pragma solidity ^0.8.0;
import "../../interfaces/draft-IERC1822Upgradeable.sol";
import "../ERC1967/ERC1967UpgradeUpgradeable.sol";
import {Initializable} from "./Initializable.sol";
/**
* @dev An upgradeability mechanism designed for UUPS proxies. The functions included here can perform an upgrade of an
* {ERC1967Proxy}, when this contract is set as the implementation behind such a proxy.
*
* A security mechanism ensures that an upgrade does not turn off upgradeability accidentally, although this risk is
* reinstated if the upgrade retains upgradeability but removes the security mechanism, e.g. by replacing
* `UUPSUpgradeable` with a custom implementation of upgrades.
*
* The {_authorizeUpgrade} function must be overridden to include access restriction to the upgrade mechanism.
*
* _Available since v4.1._
*/
abstract contract UUPSUpgradeable is Initializable, IERC1822ProxiableUpgradeable, ERC1967UpgradeUpgradeable {
/// @custom:oz-upgrades-unsafe-allow state-variable-immutable state-variable-assignment
address private immutable __self = address(this);
/**
* @dev Check that the execution is being performed through a delegatecall call and that the execution context is
* a proxy contract with an implementation (as defined in ERC1967) pointing to self. This should only be the case
* for UUPS and transparent proxies that are using the current contract as their implementation. Execution of a
* function through ERC1167 minimal proxies (clones) would not normally pass this test, but is not guaranteed to
* fail.
*/
modifier onlyProxy() {
require(address(this) != __self, "Function must be called through delegatecall");
require(_getImplementation() == __self, "Function must be called through active proxy");
_;
}
/**
* @dev Check that the execution is not being performed through a delegate call. This allows a function to be
* callable on the implementing contract but not through proxies.
*/
modifier notDelegated() {
require(address(this) == __self, "UUPSUpgradeable: must not be called through delegatecall");
_;
}
function __UUPSUpgradeable_init() internal onlyInitializing {
}
function __UUPSUpgradeable_init_unchained() internal onlyInitializing {
}
/**
* @dev Implementation of the ERC1822 {proxiableUUID} function. This returns the storage slot used by the
* implementation. It is used to validate the implementation's compatibility when performing an upgrade.
*
* IMPORTANT: A proxy pointing at a proxiable contract should not be considered proxiable itself, because this risks
* bricking a proxy that upgrades to it, by delegating to itself until out of gas. Thus it is critical that this
* function revert if invoked through a proxy. This is guaranteed by the `notDelegated` modifier.
*/
function proxiableUUID() external view virtual override notDelegated returns (bytes32) {
return _IMPLEMENTATION_SLOT;
}
/**
* @dev Upgrade the implementation of the proxy to `newImplementation`.
*
* Calls {_authorizeUpgrade}.
*
* Emits an {Upgraded} event.
*
* @custom:oz-upgrades-unsafe-allow-reachable delegatecall
*/
function upgradeTo(address newImplementation) public virtual onlyProxy {
_authorizeUpgrade(newImplementation);
_upgradeToAndCallUUPS(newImplementation, new bytes(0), false);
}
/**
* @dev Upgrade the implementation of the proxy to `newImplementation`, and subsequently execute the function call
* encoded in `data`.
*
* Calls {_authorizeUpgrade}.
*
* Emits an {Upgraded} event.
*
* @custom:oz-upgrades-unsafe-allow-reachable delegatecall
*/
function upgradeToAndCall(address newImplementation, bytes memory data) public payable virtual onlyProxy {
_authorizeUpgrade(newImplementation);
_upgradeToAndCallUUPS(newImplementation, data, true);
}
/**
* @dev Function that should revert when `msg.sender` is not authorized to upgrade the contract. Called by
* {upgradeTo} and {upgradeToAndCall}.
*
* Normally, this function will use an xref:access.adoc[access control] modifier such as {Ownable-onlyOwner}.
*
* ```solidity
* function _authorizeUpgrade(address) internal override onlyOwner {}
* ```
*/
function _authorizeUpgrade(address newImplementation) internal virtual;
/**
* @dev This empty reserved space is put in place to allow future versions to add new
* variables without shifting down storage in the inheritance chain.
* See https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps
*/
uint256[50] private __gap;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.3) (token/ERC20/utils/SafeERC20.sol)
pragma solidity ^0.8.0;
import "../IERC20Upgradeable.sol";
import "../extensions/IERC20PermitUpgradeable.sol";
import "../../../utils/AddressUpgradeable.sol";
/**
* @title SafeERC20
* @dev Wrappers around ERC20 operations that throw on failure (when the token
* contract returns false). Tokens that return no value (and instead revert or
* throw on failure) are also supported, non-reverting calls are assumed to be
* successful.
* To use this library you can add a `using SafeERC20 for IERC20;` statement to your contract,
* which allows you to call the safe operations as `token.safeTransfer(...)`, etc.
*/
library SafeERC20Upgradeable {
using AddressUpgradeable for address;
/**
* @dev Transfer `value` amount of `token` from the calling contract to `to`. If `token` returns no value,
* non-reverting calls are assumed to be successful.
*/
function safeTransfer(IERC20Upgradeable token, address to, uint256 value) internal {
_callOptionalReturn(token, abi.encodeWithSelector(token.transfer.selector, to, value));
}
/**
* @dev Transfer `value` amount of `token` from `from` to `to`, spending the approval given by `from` to the
* calling contract. If `token` returns no value, non-reverting calls are assumed to be successful.
*/
function safeTransferFrom(IERC20Upgradeable token, address from, address to, uint256 value) internal {
_callOptionalReturn(token, abi.encodeWithSelector(token.transferFrom.selector, from, to, value));
}
/**
* @dev Deprecated. This function has issues similar to the ones found in
* {IERC20-approve}, and its usage is discouraged.
*
* Whenever possible, use {safeIncreaseAllowance} and
* {safeDecreaseAllowance} instead.
*/
function safeApprove(IERC20Upgradeable token, address spender, uint256 value) internal {
// safeApprove should only be called when setting an initial allowance,
// or when resetting it to zero. To increase and decrease it, use
// 'safeIncreaseAllowance' and 'safeDecreaseAllowance'
require(
(value == 0) || (token.allowance(address(this), spender) == 0),
"SafeERC20: approve from non-zero to non-zero allowance"
);
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, value));
}
/**
* @dev Increase the calling contract's allowance toward `spender` by `value`. If `token` returns no value,
* non-reverting calls are assumed to be successful.
*/
function safeIncreaseAllowance(IERC20Upgradeable token, address spender, uint256 value) internal {
uint256 oldAllowance = token.allowance(address(this), spender);
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, oldAllowance + value));
}
/**
* @dev Decrease the calling contract's allowance toward `spender` by `value`. If `token` returns no value,
* non-reverting calls are assumed to be successful.
*/
function safeDecreaseAllowance(IERC20Upgradeable token, address spender, uint256 value) internal {
unchecked {
uint256 oldAllowance = token.allowance(address(this), spender);
require(oldAllowance >= value, "SafeERC20: decreased allowance below zero");
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, oldAllowance - value));
}
}
/**
* @dev Set the calling contract's allowance toward `spender` to `value`. If `token` returns no value,
* non-reverting calls are assumed to be successful. Meant to be used with tokens that require the approval
* to be set to zero before setting it to a non-zero value, such as USDT.
*/
function forceApprove(IERC20Upgradeable token, address spender, uint256 value) internal {
bytes memory approvalCall = abi.encodeWithSelector(token.approve.selector, spender, value);
if (!_callOptionalReturnBool(token, approvalCall)) {
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, 0));
_callOptionalReturn(token, approvalCall);
}
}
/**
* @dev Use a ERC-2612 signature to set the `owner` approval toward `spender` on `token`.
* Revert on invalid signature.
*/
function safePermit(
IERC20PermitUpgradeable token,
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) internal {
uint256 nonceBefore = token.nonces(owner);
token.permit(owner, spender, value, deadline, v, r, s);
uint256 nonceAfter = token.nonces(owner);
require(nonceAfter == nonceBefore + 1, "SafeERC20: permit did not succeed");
}
/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*/
function _callOptionalReturn(IERC20Upgradeable token, bytes memory data) private {
// We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since
// we're implementing it ourselves. We use {Address-functionCall} to perform this call, which verifies that
// the target address contains contract code and also asserts for success in the low-level call.
bytes memory returndata = address(token).functionCall(data, "SafeERC20: low-level call failed");
require(returndata.length == 0 || abi.decode(returndata, (bool)), "SafeERC20: ERC20 operation did not succeed");
}
/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*
* This is a variant of {_callOptionalReturn} that silents catches all reverts and returns a bool instead.
*/
function _callOptionalReturnBool(IERC20Upgradeable token, bytes memory data) private returns (bool) {
// We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since
// we're implementing it ourselves. We cannot use {Address-functionCall} here since this should return false
// and not revert is the subcall reverts.
(bool success, bytes memory returndata) = address(token).call(data);
return
success && (returndata.length == 0 || abi.decode(returndata, (bool))) && AddressUpgradeable.isContract(address(token));
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC20/IERC20.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC20 standard as defined in the EIP.
*/
interface IERC20Upgradeable {
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/
event Transfer(address indexed from, address indexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/
event Approval(address indexed owner, address indexed spender, uint256 value);
/**
* @dev Returns the amount of tokens in existence.
*/
function totalSupply() external view returns (uint256);
/**
* @dev Returns the amount of tokens owned by `account`.
*/
function balanceOf(address account) external view returns (uint256);
/**
* @dev Moves `amount` tokens from the caller's account to `to`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transfer(address to, uint256 amount) external returns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/
function allowance(address owner, address spender) external view returns (uint256);
/**
* @dev Sets `amount` as the allowance of `spender` over the caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/
function approve(address spender, uint256 amount) external returns (bool);
/**
* @dev Moves `amount` tokens from `from` to `to` using the
* allowance mechanism. `amount` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transferFrom(address from, address to, uint256 amount) external returns (bool);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.6.0) (token/ERC721/IERC721Receiver.sol)
pragma solidity ^0.8.0;
/**
* @title ERC721 token receiver interface
* @dev Interface for any contract that wants to support safeTransfers
* from ERC721 asset contracts.
*/
interface IERC721ReceiverUpgradeable {
/**
* @dev Whenever an {IERC721} `tokenId` token is transferred to this contract via {IERC721-safeTransferFrom}
* by `operator` from `from`, this function is called.
*
* It must return its Solidity selector to confirm the token transfer.
* If any other value is returned or the interface is not implemented by the recipient, the transfer will be reverted.
*
* The selector can be obtained in Solidity with `IERC721Receiver.onERC721Received.selector`.
*/
function onERC721Received(
address operator,
address from,
uint256 tokenId,
bytes calldata data
) external returns (bytes4);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (token/ERC1155/IERC1155.sol)
pragma solidity ^0.8.0;
import "../../utils/introspection/IERC165Upgradeable.sol";
/**
* @dev Required interface of an ERC1155 compliant contract, as defined in the
* https://eips.ethereum.org/EIPS/eip-1155[EIP].
*
* _Available since v3.1._
*/
interface IERC1155Upgradeable is IERC165Upgradeable {
/**
* @dev Emitted when `value` tokens of token type `id` are transferred from `from` to `to` by `operator`.
*/
event TransferSingle(address indexed operator, address indexed from, address indexed to, uint256 id, uint256 value);
/**
* @dev Equivalent to multiple {TransferSingle} events, where `operator`, `from` and `to` are the same for all
* transfers.
*/
event TransferBatch(
address indexed operator,
address indexed from,
address indexed to,
uint256[] ids,
uint256[] values
);
/**
* @dev Emitted when `account` grants or revokes permission to `operator` to transfer their tokens, according to
* `approved`.
*/
event ApprovalForAll(address indexed account, address indexed operator, bool approved);
/**
* @dev Emitted when the URI for token type `id` changes to `value`, if it is a non-programmatic URI.
*
* If an {URI} event was emitted for `id`, the standard
* https://eips.ethereum.org/EIPS/eip-1155#metadata-extensions[guarantees] that `value` will equal the value
* returned by {IERC1155MetadataURI-uri}.
*/
event URI(string value, uint256 indexed id);
/**
* @dev Returns the amount of tokens of token type `id` owned by `account`.
*
* Requirements:
*
* - `account` cannot be the zero address.
*/
function balanceOf(address account, uint256 id) external view returns (uint256);
/**
* @dev xref:ROOT:erc1155.adoc#batch-operations[Batched] version of {balanceOf}.
*
* Requirements:
*
* - `accounts` and `ids` must have the same length.
*/
function balanceOfBatch(
address[] calldata accounts,
uint256[] calldata ids
) external view returns (uint256[] memory);
/**
* @dev Grants or revokes permission to `operator` to transfer the caller's tokens, according to `approved`,
*
* Emits an {ApprovalForAll} event.
*
* Requirements:
*
* - `operator` cannot be the caller.
*/
function setApprovalForAll(address operator, bool approved) external;
/**
* @dev Returns true if `operator` is approved to transfer ``account``'s tokens.
*
* See {setApprovalForAll}.
*/
function isApprovedForAll(address account, address operator) external view returns (bool);
/**
* @dev Transfers `amount` tokens of token type `id` from `from` to `to`.
*
* Emits a {TransferSingle} event.
*
* Requirements:
*
* - `to` cannot be the zero address.
* - If the caller is not `from`, it must have been approved to spend ``from``'s tokens via {setApprovalForAll}.
* - `from` must have a balance of tokens of type `id` of at least `amount`.
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155Received} and return the
* acceptance magic value.
*/
function safeTransferFrom(address from, address to, uint256 id, uint256 amount, bytes calldata data) external;
/**
* @dev xref:ROOT:erc1155.adoc#batch-operations[Batched] version of {safeTransferFrom}.
*
* Emits a {TransferBatch} event.
*
* Requirements:
*
* - `ids` and `amounts` must have the same length.
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155BatchReceived} and return the
* acceptance magic value.
*/
function safeBatchTransferFrom(
address from,
address to,
uint256[] calldata ids,
uint256[] calldata amounts,
bytes calldata data
) external;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.5.0) (token/ERC1155/IERC1155Receiver.sol)
pragma solidity ^0.8.0;
import "../../utils/introspection/IERC165Upgradeable.sol";
/**
* @dev _Available since v3.1._
*/
interface IERC1155ReceiverUpgradeable is IERC165Upgradeable {
/**
* @dev Handles the receipt of a single ERC1155 token type. This function is
* called at the end of a `safeTransferFrom` after the balance has been updated.
*
* NOTE: To accept the transfer, this must return
* `bytes4(keccak256("onERC1155Received(address,address,uint256,uint256,bytes)"))`
* (i.e. 0xf23a6e61, or its own function selector).
*
* @param operator The address which initiated the transfer (i.e. msg.sender)
* @param from The address which previously owned the token
* @param id The ID of the token being transferred
* @param value The amount of tokens being transferred
* @param data Additional data with no specified format
* @return `bytes4(keccak256("onERC1155Received(address,address,uint256,uint256,bytes)"))` if transfer is allowed
*/
function onERC1155Received(
address operator,
address from,
uint256 id,
uint256 value,
bytes calldata data
) external returns (bytes4);
/**
* @dev Handles the receipt of a multiple ERC1155 token types. This function
* is called at the end of a `safeBatchTransferFrom` after the balances have
* been updated.
*
* NOTE: To accept the transfer(s), this must return
* `bytes4(keccak256("onERC1155BatchReceived(address,address,uint256[],uint256[],bytes)"))`
* (i.e. 0xbc197c81, or its own function selector).
*
* @param operator The address which initiated the batch transfer (i.e. msg.sender)
* @param from The address which previously owned the token
* @param ids An array containing ids of each token being transferred (order and length must match values array)
* @param values An array containing amounts of each token being transferred (order and length must match ids array)
* @param data Additional data with no specified format
* @return `bytes4(keccak256("onERC1155BatchReceived(address,address,uint256[],uint256[],bytes)"))` if transfer is allowed
*/
function onERC1155BatchReceived(
address operator,
address from,
uint256[] calldata ids,
uint256[] calldata values,
bytes calldata data
) external returns (bytes4);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (utils/Address.sol)
pragma solidity ^0.8.1;
/**
* @dev Collection of functions related to the address type
*/
library AddressUpgradeable {
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]
* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* - an externally-owned account
* - a contract in construction
* - an address where a contract will be created
* - an address where a contract lived, but was destroyed
*
* Furthermore, `isContract` will also return true if the target contract within
* the same transaction is already scheduled for destruction by `SELFDESTRUCT`,
* which only has an effect at the end of a transaction.
* ====
*
* [IMPORTANT]
* ====
* You shouldn't rely on `isContract` to protect against flash loan attacks!
*
* Preventing calls from contracts is highly discouraged. It breaks composability, breaks support for smart wallets
* like Gnosis Safe, and does not provide security since it can be circumvented by calling from a contract
* constructor.
* ====
*/
function isContract(address account) internal view returns (bool) {
// This method relies on extcodesize/address.code.length, which returns 0
// for contracts in construction, since the code is only stored at the end
// of the constructor execution.
return account.code.length > 0;
}
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://consensys.net/diligence/blog/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.8.0/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/
function sendValue(address payable recipient, uint256 amount) internal {
require(address(this).balance >= amount, "Address: insufficient balance");
(bool success, ) = recipient.call{value: amount}("");
require(success, "Address: unable to send value, recipient may have reverted");
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain `call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, "Address: low-level call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCall(
address target,
bytes memory data,
string memory errorMessage
) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/
function functionCallWithValue(address target, bytes memory data, uint256 value) internal returns (bytes memory) {
return functionCallWithValue(target, data, value, "Address: low-level call with value failed");
}
/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCallWithValue(
address target,
bytes memory data,
uint256 value,
string memory errorMessage
) internal returns (bytes memory) {
require(address(this).balance >= value, "Address: insufficient balance for call");
(bool success, bytes memory returndata) = target.call{value: value}(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
return functionStaticCall(target, data, "Address: low-level static call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(
address target,
bytes memory data,
string memory errorMessage
) internal view returns (bytes memory) {
(bool success, bytes memory returndata) = target.staticcall(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(address target, bytes memory data) internal returns (bytes memory) {
return functionDelegateCall(target, data, "Address: low-level delegate call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(
address target,
bytes memory data,
string memory errorMessage
) internal returns (bytes memory) {
(bool success, bytes memory returndata) = target.delegatecall(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Tool to verify that a low level call to smart-contract was successful, and revert (either by bubbling
* the revert reason or using the provided one) in case of unsuccessful call or if target was not a contract.
*
* _Available since v4.8._
*/
function verifyCallResultFromTarget(
address target,
bool success,
bytes memory returndata,
string memory errorMessage
) internal view returns (bytes memory) {
if (success) {
if (returndata.length == 0) {
// only check isContract if the call was successful and the return data is empty
// otherwise we already know that it was a contract
require(isContract(target), "Address: call to non-contract");
}
return returndata;
} else {
_revert(returndata, errorMessage);
}
}
/**
* @dev Tool to verify that a low level call was successful, and revert if it wasn't, either by bubbling the
* revert reason or using the provided one.
*
* _Available since v4.3._
*/
function verifyCallResult(
bool success,
bytes memory returndata,
string memory errorMessage
) internal pure returns (bytes memory) {
if (success) {
return returndata;
} else {
_revert(returndata, errorMessage);
}
}
function _revert(bytes memory returndata, string memory errorMessage) private pure {
// Look for revert reason and bubble it up if present
if (returndata.length > 0) {
// The easiest way to bubble the revert reason is using memory via assembly
/// @solidity memory-safe-assembly
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (interfaces/IERC1271.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC1271 standard signature validation method for
* contracts as defined in https://eips.ethereum.org/EIPS/eip-1271[ERC-1271].
*
* _Available since v4.1._
*/
interface IERC1271 {
/**
* @dev Should return whether the signature provided is valid for the provided data
* @param hash Hash of the data to be signed
* @param signature Signature byte array associated with _data
*/
function isValidSignature(bytes32 hash, bytes memory signature) external view returns (bytes4 magicValue);
}// SPDX-License-Identifier: AGPL-3.0-or-later pragma solidity ^0.8.8; /// @title IProtocolVersion /// @author Aragon X - 2022-2023 /// @notice An interface defining the semantic Aragon OSx protocol version number. /// @custom:security-contact [email protected] interface IProtocolVersion { /// @notice Returns the semantic Aragon OSx protocol version number that the implementing contract is associated with. /// @return _version Returns the semantic Aragon OSx protocol version number. /// @dev This version number is not to be confused with the `release` and `build` numbers found in the `Version.Tag` struct inside the `PluginRepo` contract being used to version plugin setup and associated plugin implementation contracts. function protocolVersion() external view returns (uint8[3] memory _version); }
// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {IProtocolVersion} from "./IProtocolVersion.sol";
/// @title ProtocolVersion
/// @author Aragon X - 2023
/// @notice An abstract, stateless, non-upgradeable contract providing the current Aragon OSx protocol version number.
/// @dev Do not add any new variables to this contract that would shift down storage in the inheritance chain.
/// @custom:security-contact [email protected]
abstract contract ProtocolVersion is IProtocolVersion {
// IMPORTANT: Do not add any storage variable, see the above notice.
/// @inheritdoc IProtocolVersion
function protocolVersion() public pure returns (uint8[3] memory) {
return [1, 4, 0];
}
}// SPDX-License-Identifier: AGPL-3.0-or-later pragma solidity ^0.8.8; /// @title VersionComparisonLib /// @author Aragon X - 2023 /// @notice A library containing methods for [semantic version number](https://semver.org/spec/v2.0.0.html) comparison. /// @custom:security-contact [email protected] library VersionComparisonLib { /// @notice Equality comparator for two semantic version numbers. /// @param lhs The left-hand side semantic version number. /// @param rhs The right-hand side semantic version number. /// @return Whether the two numbers are equal or not. function eq(uint8[3] memory lhs, uint8[3] memory rhs) internal pure returns (bool) { if (lhs[0] != rhs[0]) return false; if (lhs[1] != rhs[1]) return false; if (lhs[2] != rhs[2]) return false; return true; } /// @notice Inequality comparator for two semantic version numbers. /// @param lhs The left-hand side semantic version number. /// @param rhs The right-hand side semantic version number. /// @return Whether the two numbers are inequal or not. function neq(uint8[3] memory lhs, uint8[3] memory rhs) internal pure returns (bool) { if (lhs[0] != rhs[0]) return true; if (lhs[1] != rhs[1]) return true; if (lhs[2] != rhs[2]) return true; return false; } /// @notice Less than comparator for two semantic version numbers. /// @param lhs The left-hand side semantic version number. /// @param rhs The right-hand side semantic version number. /// @return Whether the first number is less than the second number or not. function lt(uint8[3] memory lhs, uint8[3] memory rhs) internal pure returns (bool) { if (lhs[0] < rhs[0]) return true; if (lhs[0] > rhs[0]) return false; if (lhs[1] < rhs[1]) return true; if (lhs[1] > rhs[1]) return false; if (lhs[2] < rhs[2]) return true; return false; } /// @notice Less than or equal to comparator for two semantic version numbers. /// @param lhs The left-hand side semantic version number. /// @param rhs The right-hand side semantic version number. /// @return Whether the first number is less than or equal to the second number or not. function lte(uint8[3] memory lhs, uint8[3] memory rhs) internal pure returns (bool) { if (lhs[0] < rhs[0]) return true; if (lhs[0] > rhs[0]) return false; if (lhs[1] < rhs[1]) return true; if (lhs[1] > rhs[1]) return false; if (lhs[2] <= rhs[2]) return true; return false; } /// @notice Greater than comparator for two semantic version numbers. /// @param lhs The left-hand side semantic version number. /// @param rhs The right-hand side semantic version number. /// @return Whether the first number is greater than the second number or not. function gt(uint8[3] memory lhs, uint8[3] memory rhs) internal pure returns (bool) { if (lhs[0] > rhs[0]) return true; if (lhs[0] < rhs[0]) return false; if (lhs[1] > rhs[1]) return true; if (lhs[1] < rhs[1]) return false; if (lhs[2] > rhs[2]) return true; return false; } /// @notice Greater than or equal to comparator for two semantic version numbers. /// @param lhs The left-hand side semantic version number. /// @param rhs The right-hand side semantic version number. /// @return Whether the first number is greater than or equal to the second number or not. function gte(uint8[3] memory lhs, uint8[3] memory rhs) internal pure returns (bool) { if (lhs[0] > rhs[0]) return true; if (lhs[0] < rhs[0]) return false; if (lhs[1] > rhs[1]) return true; if (lhs[1] < rhs[1]) return false; if (lhs[2] >= rhs[2]) return true; return false; } }
// SPDX-License-Identifier: AGPL-3.0-or-later pragma solidity ^0.8.8; /// @param bitmap The `uint256` representation of bits. /// @param index The index number to check whether 1 or 0 is set. /// @return Returns `true` if the bit is set at `index` on `bitmap`. /// @custom:security-contact [email protected] function hasBit(uint256 bitmap, uint8 index) pure returns (bool) { uint256 bitValue = bitmap & (1 << index); return bitValue > 0; } /// @param bitmap The `uint256` representation of bits. /// @param index The index number to set the bit. /// @return Returns a new number in which the bit is set at `index`. /// @custom:security-contact [email protected] function flipBit(uint256 bitmap, uint8 index) pure returns (uint256) { return bitmap ^ (1 << index); }
// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {ERC165} from "@openzeppelin/contracts/utils/introspection/ERC165.sol";
import {IExecutor, Action} from "./IExecutor.sol";
import {flipBit, hasBit} from "../utils/math/BitMap.sol";
/// @title IDAO
/// @author Aragon X - 2024
/// @notice Simple Executor that loops through the actions and executes them.
/// @dev This doesn't use any type of permission for execution and can be called by anyone.
/// Most useful use-case is to deploy it as non-upgradeable and call from another contract via delegatecall.
/// If used with delegatecall, DO NOT add state variables in sequential slots, otherwise this will overwrite
/// the storage of the calling contract.
/// @custom:security-contact [email protected]
contract Executor is IExecutor, ERC165 {
/// @notice The internal constant storing the maximal action array length.
uint256 internal constant MAX_ACTIONS = 256;
// keccak256("osx-commons.storage.Executor")
bytes32 private constant REENTRANCY_GUARD_STORAGE_LOCATION =
0x4d6542319dfb3f7c8adbb488d7b4d7cf849381f14faf4b64de3ac05d08c0bdec;
/// @notice The first out of two values to which the `_reentrancyStatus` state variable (used by the `nonReentrant` modifier) can be set indicating that a function was not entered.
uint256 private constant _NOT_ENTERED = 1;
/// @notice The second out of two values to which the `_reentrancyStatus` state variable (used by the `nonReentrant` modifier) can be set indicating that a function was entered.
uint256 private constant _ENTERED = 2;
/// @notice Thrown if the action array length is larger than `MAX_ACTIONS`.
error TooManyActions();
/// @notice Thrown if an action has insufficient gas left.
error InsufficientGas();
/// @notice Thrown if action execution has failed.
/// @param index The index of the action in the action array that failed.
error ActionFailed(uint256 index);
/// @notice Thrown if a call is reentrant.
error ReentrantCall();
/// @notice Initializes the contract with a non-entered reentrancy status.
/// @dev Sets the reentrancy guard status to `_NOT_ENTERED` to prevent reentrant calls from the start.
constructor() {
_storeReentrancyStatus(_NOT_ENTERED);
}
/// @notice Prevents reentrant calls to a function.
/// @dev This modifier checks the reentrancy status before function execution. If already entered, it reverts with
/// `ReentrantCall()`. Sets the status to `_ENTERED` during execution and resets it to `_NOT_ENTERED` afterward.
modifier nonReentrant() {
if (_getReentrancyStatus() == _ENTERED) {
revert ReentrantCall();
}
_storeReentrancyStatus(_ENTERED);
_;
_storeReentrancyStatus(_NOT_ENTERED);
}
/// @notice Checks if this or the parent contract supports an interface by its ID.
/// @param _interfaceId The ID of the interface.
/// @return Returns `true` if the interface is supported.
function supportsInterface(bytes4 _interfaceId) public view virtual override returns (bool) {
return _interfaceId == type(IExecutor).interfaceId || super.supportsInterface(_interfaceId);
}
/// @inheritdoc IExecutor
function execute(
bytes32 _callId,
Action[] memory _actions,
uint256 _allowFailureMap
)
public
virtual
override
nonReentrant
returns (bytes[] memory execResults, uint256 failureMap)
{
// Check that the action array length is within bounds.
if (_actions.length > MAX_ACTIONS) {
revert TooManyActions();
}
execResults = new bytes[](_actions.length);
uint256 gasBefore;
uint256 gasAfter;
for (uint256 i = 0; i < _actions.length; ) {
gasBefore = gasleft();
(bool success, bytes memory data) = _actions[i].to.call{value: _actions[i].value}(
_actions[i].data
);
gasAfter = gasleft();
// Check if failure is allowed
if (!success) {
if (!hasBit(_allowFailureMap, uint8(i))) {
revert ActionFailed(i);
}
// Make sure that the action call did not fail because 63/64 of `gasleft()` was insufficient to execute the external call `.to.call` (see [ERC-150](https://eips.ethereum.org/EIPS/eip-150)).
// In specific scenarios, i.e. proposal execution where the last action in the action array is allowed to fail, the account calling `execute` could force-fail this action by setting a gas limit
// where 63/64 is insufficient causing the `.to.call` to fail, but where the remaining 1/64 gas are sufficient to successfully finish the `execute` call.
if (gasAfter < gasBefore / 64) {
revert InsufficientGas();
}
// Store that this action failed.
failureMap = flipBit(failureMap, uint8(i));
}
execResults[i] = data;
unchecked {
++i;
}
}
emit Executed({
actor: msg.sender,
callId: _callId,
actions: _actions,
allowFailureMap: _allowFailureMap,
failureMap: failureMap,
execResults: execResults
});
}
/// @notice Gets the current reentrancy status.
/// @return status This returns the current reentrancy status.
function _getReentrancyStatus() private view returns (uint256 status) {
// solhint-disable-next-line no-inline-assembly
assembly {
status := sload(REENTRANCY_GUARD_STORAGE_LOCATION)
}
}
/// @notice Stores the reentrancy status at a specific storage slot.
/// @param _status The reentrancy status to be stored, typically `_ENTERED` or `_NOT_ENTERED`.
/// @dev Uses inline assembly to store the `_status` value at `REENTRANCY_GUARD_STORAGE_LOCATION` to manage
/// reentrancy status efficiently.
function _storeReentrancyStatus(uint256 _status) private {
// solhint-disable-next-line no-inline-assembly
assembly {
sstore(REENTRANCY_GUARD_STORAGE_LOCATION, _status)
}
}
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
/// @notice The action struct to be consumed by the DAO's `execute` function resulting in an external call.
/// @param to The address to call.
/// @param value The native token value to be sent with the call.
/// @param data The bytes-encoded function selector and calldata for the call.
struct Action {
address to;
uint256 value;
bytes data;
}
/// @title IExecutor
/// @author Aragon X - 2024
/// @notice The interface required for Executors within the Aragon App DAO framework.
/// @custom:security-contact [email protected]
interface IExecutor {
/// @notice Emitted when a proposal is executed.
/// @dev The value of `callId` is defined by the component/contract calling the execute function.
/// A `Plugin` implementation can use it, for example, as a nonce.
/// @param actor The address of the caller.
/// @param callId The ID of the call.
/// @param actions The array of actions executed.
/// @param allowFailureMap The allow failure map encoding which actions are allowed to fail.
/// @param failureMap The failure map encoding which actions have failed.
/// @param execResults The array with the results of the executed actions.
event Executed(
address indexed actor,
bytes32 callId,
Action[] actions,
uint256 allowFailureMap,
uint256 failureMap,
bytes[] execResults
);
/// @notice Executes a list of actions. If a zero allow-failure map is provided, a failing action reverts the entire execution. If a non-zero allow-failure map is provided, allowed actions can fail without the entire call being reverted.
/// @param _callId The ID of the call. The definition of the value of `callId` is up to the calling contract and can be used, e.g., as a nonce.
/// @param _actions The array of actions.
/// @param _allowFailureMap A bitmap allowing execution to succeed, even if individual actions might revert. If the bit at index `i` is 1, the execution succeeds even if the `i`th action reverts. A failure map value of 0 requires every action to not revert.
/// @return The array of results obtained from the executed actions in `bytes`.
/// @return The resulting failure map containing the actions have actually failed.
function execute(
bytes32 _callId,
Action[] memory _actions,
uint256 _allowFailureMap
) external returns (bytes[] memory, uint256);
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import "@openzeppelin/contracts-upgradeable/proxy/utils/Initializable.sol";
import "@openzeppelin/contracts-upgradeable/utils/AddressUpgradeable.sol";
import {IPermissionCondition} from "@aragon/osx-commons-contracts/src/permission/condition/IPermissionCondition.sol";
import {PermissionCondition} from "@aragon/osx-commons-contracts/src/permission/condition/PermissionCondition.sol";
import {PermissionLib} from "@aragon/osx-commons-contracts/src/permission/PermissionLib.sol";
/// @title PermissionManager
/// @author Aragon X - 2021-2023
/// @notice The abstract permission manager used in a DAO, its associated plugins, and other framework-related components.
/// @custom:security-contact [email protected]
abstract contract PermissionManager is Initializable {
using AddressUpgradeable for address;
/// @notice The ID of the permission required to call the `grant`, `grantWithCondition`, `revoke`, and `bulk` function.
bytes32 public constant ROOT_PERMISSION_ID = keccak256("ROOT_PERMISSION");
/// @notice A special address encoding permissions that are valid for any address `who` or `where`.
address internal constant ANY_ADDR = address(type(uint160).max);
/// @notice A special address encoding if a permissions is not set and therefore not allowed.
address internal constant UNSET_FLAG = address(0);
/// @notice A special address encoding if a permission is allowed.
address internal constant ALLOW_FLAG = address(2);
/// @notice A mapping storing permissions as hashes (i.e., `permissionHash(where, who, permissionId)`) and their status encoded by an address (unset, allowed, or redirecting to a `PermissionCondition`).
mapping(bytes32 => address) internal permissionsHashed;
/// @notice Thrown if a call is unauthorized.
/// @param where The context in which the authorization reverted.
/// @param who The address (EOA or contract) missing the permission.
/// @param permissionId The permission identifier.
error Unauthorized(address where, address who, bytes32 permissionId);
/// @notice Thrown if a permission has been already granted with a different condition.
/// @dev This makes sure that condition on the same permission can not be overwriten by a different condition.
/// @param where The address of the target contract to grant `_who` permission to.
/// @param who The address (EOA or contract) to which the permission has already been granted.
/// @param permissionId The permission identifier.
/// @param currentCondition The current condition set for permissionId.
/// @param newCondition The new condition it tries to set for permissionId.
error PermissionAlreadyGrantedForDifferentCondition(
address where,
address who,
bytes32 permissionId,
address currentCondition,
address newCondition
);
/// @notice Thrown if a condition address is not a contract.
/// @param condition The address that is not a contract.
error ConditionNotAContract(IPermissionCondition condition);
/// @notice Thrown if a condition contract does not support the `IPermissionCondition` interface.
/// @param condition The address that is not a contract.
error ConditionInterfaceNotSupported(IPermissionCondition condition);
/// @notice Thrown for `ROOT_PERMISSION_ID` or `EXECUTE_PERMISSION_ID` permission grants where `who` or `where` is `ANY_ADDR`.
error PermissionsForAnyAddressDisallowed();
/// @notice Thrown for permission grants where `who` and `where` are both `ANY_ADDR`.
error AnyAddressDisallowedForWhoAndWhere();
/// @notice Thrown if `Operation.GrantWithCondition` is requested as an operation but the method does not support it.
error GrantWithConditionNotSupported();
/// @notice Emitted when a permission `permission` is granted in the context `here` to the address `_who` for the contract `_where`.
/// @param permissionId The permission identifier.
/// @param here The address of the context in which the permission is granted.
/// @param where The address of the target contract for which `_who` receives permission.
/// @param who The address (EOA or contract) receiving the permission.
/// @param condition The address `ALLOW_FLAG` for regular permissions or, alternatively, the `IPermissionCondition` contract implementation to be used.
event Granted(
bytes32 indexed permissionId,
address indexed here,
address where,
address indexed who,
address condition
);
/// @notice Emitted when a permission `permission` is revoked in the context `here` from the address `_who` for the contract `_where`.
/// @param permissionId The permission identifier.
/// @param here The address of the context in which the permission is revoked.
/// @param where The address of the target contract for which `_who` loses permission.
/// @param who The address (EOA or contract) losing the permission.
event Revoked(
bytes32 indexed permissionId,
address indexed here,
address where,
address indexed who
);
/// @notice A modifier to make functions on inheriting contracts authorized. Permissions to call the function are checked through this permission manager.
/// @param _permissionId The permission identifier required to call the method this modifier is applied to.
modifier auth(bytes32 _permissionId) {
_auth(_permissionId);
_;
}
/// @notice Initialization method to set the initial owner of the permission manager.
/// @dev The initial owner is granted the `ROOT_PERMISSION_ID` permission.
/// @param _initialOwner The initial owner of the permission manager.
function __PermissionManager_init(address _initialOwner) internal onlyInitializing {
_initializePermissionManager({_initialOwner: _initialOwner});
}
/// @notice Grants permission to an address to call methods in a contract guarded by an auth modifier with the specified permission identifier.
/// @dev Requires the `ROOT_PERMISSION_ID` permission.
/// @param _where The address of the target contract for which `_who` receives permission.
/// @param _who The address (EOA or contract) receiving the permission.
/// @param _permissionId The permission identifier.
/// @dev Note, that granting permissions with `_who` or `_where` equal to `ANY_ADDR` does not replace other permissions with specific `_who` and `_where` addresses that exist in parallel.
function grant(
address _where,
address _who,
bytes32 _permissionId
) external virtual auth(ROOT_PERMISSION_ID) {
_grant({_where: _where, _who: _who, _permissionId: _permissionId});
}
/// @notice Grants permission to an address to call methods in a target contract guarded by an auth modifier with the specified permission identifier if the referenced condition permits it.
/// @dev Requires the `ROOT_PERMISSION_ID` permission
/// @param _where The address of the target contract for which `_who` receives permission.
/// @param _who The address (EOA or contract) receiving the permission.
/// @param _permissionId The permission identifier.
/// @param _condition The `PermissionCondition` that will be asked for authorization on calls connected to the specified permission identifier.
/// @dev Note, that granting permissions with `_who` or `_where` equal to `ANY_ADDR` does not replace other permissions with specific `_who` and `_where` addresses that exist in parallel.
function grantWithCondition(
address _where,
address _who,
bytes32 _permissionId,
IPermissionCondition _condition
) external virtual auth(ROOT_PERMISSION_ID) {
_grantWithCondition({
_where: _where,
_who: _who,
_permissionId: _permissionId,
_condition: _condition
});
}
/// @notice Revokes permission from an address to call methods in a target contract guarded by an auth modifier with the specified permission identifier.
/// @dev Requires the `ROOT_PERMISSION_ID` permission.
/// @param _where The address of the target contract for which `_who` loses permission.
/// @param _who The address (EOA or contract) losing the permission.
/// @param _permissionId The permission identifier.
/// @dev Note, that revoking permissions with `_who` or `_where` equal to `ANY_ADDR` does not revoke other permissions with specific `_who` and `_where` addresses that exist in parallel.
function revoke(
address _where,
address _who,
bytes32 _permissionId
) external virtual auth(ROOT_PERMISSION_ID) {
_revoke({_where: _where, _who: _who, _permissionId: _permissionId});
}
/// @notice Applies an array of permission operations on a single target contracts `_where`.
/// @param _where The address of the single target contract.
/// @param items The array of single-targeted permission operations to apply.
function applySingleTargetPermissions(
address _where,
PermissionLib.SingleTargetPermission[] calldata items
) external virtual auth(ROOT_PERMISSION_ID) {
for (uint256 i; i < items.length; ) {
PermissionLib.SingleTargetPermission memory item = items[i];
if (item.operation == PermissionLib.Operation.Grant) {
_grant({_where: _where, _who: item.who, _permissionId: item.permissionId});
} else if (item.operation == PermissionLib.Operation.Revoke) {
_revoke({_where: _where, _who: item.who, _permissionId: item.permissionId});
} else if (item.operation == PermissionLib.Operation.GrantWithCondition) {
revert GrantWithConditionNotSupported();
}
unchecked {
++i;
}
}
}
/// @notice Applies an array of permission operations on multiple target contracts `items[i].where`.
/// @param _items The array of multi-targeted permission operations to apply.
function applyMultiTargetPermissions(
PermissionLib.MultiTargetPermission[] calldata _items
) external virtual auth(ROOT_PERMISSION_ID) {
for (uint256 i; i < _items.length; ) {
PermissionLib.MultiTargetPermission memory item = _items[i];
if (item.operation == PermissionLib.Operation.Grant) {
// Ensure a non-zero condition isn't passed, as `_grant` can't handle conditions.
// This avoids the false impression that a conditional grant occurred,
// since the transaction would still succeed without conditions.
if (item.condition != address(0)) {
revert GrantWithConditionNotSupported();
}
_grant({_where: item.where, _who: item.who, _permissionId: item.permissionId});
} else if (item.operation == PermissionLib.Operation.Revoke) {
_revoke({_where: item.where, _who: item.who, _permissionId: item.permissionId});
} else if (item.operation == PermissionLib.Operation.GrantWithCondition) {
_grantWithCondition({
_where: item.where,
_who: item.who,
_permissionId: item.permissionId,
_condition: IPermissionCondition(item.condition)
});
}
unchecked {
++i;
}
}
}
/// @notice Checks if the caller address has permission on the target contract via a permission identifier and relays the answer to a condition contract if this was declared during the granting process.
/// @param _where The address of the target contract for which `_who` receives permission.
/// @param _who The address (EOA or contract) for which the permission is checked.
/// @param _permissionId The permission identifier.
/// @param _data Optional data to be passed to the set `PermissionCondition`.
/// @return Returns true if `_who` has the permissions on the target contract via the specified permission identifier.
function isGranted(
address _where,
address _who,
bytes32 _permissionId,
bytes memory _data
) public view virtual returns (bool) {
// Specific caller (`_who`) and target (`_where`) permission check
{
// This permission may have been granted directly via the `grant` function or with a condition via the `grantWithCondition` function.
address specificCallerTargetPermission = permissionsHashed[
permissionHash({_where: _where, _who: _who, _permissionId: _permissionId})
];
// If the permission was granted directly, return `true`.
if (specificCallerTargetPermission == ALLOW_FLAG) return true;
// If the permission was granted with a condition, check the condition and return the result.
if (specificCallerTargetPermission != UNSET_FLAG) {
return
_checkCondition({
_condition: specificCallerTargetPermission,
_where: _where,
_who: _who,
_permissionId: _permissionId,
_data: _data
});
}
// If this permission is not set, continue.
}
// Generic caller (`_who: ANY_ADDR`)
{
address genericCallerPermission = permissionsHashed[
permissionHash({_where: _where, _who: ANY_ADDR, _permissionId: _permissionId})
];
// If the permission was granted directly to (`_who: ANY_ADDR`), return `true`.
if (genericCallerPermission == ALLOW_FLAG) return true;
// If the permission was granted with a condition, check the condition and return the result.
if (genericCallerPermission != UNSET_FLAG) {
return
_checkCondition({
_condition: genericCallerPermission,
_where: _where,
_who: _who,
_permissionId: _permissionId,
_data: _data
});
}
// If this permission is not set, continue.
}
// Generic target (`_where: ANY_ADDR`) condition check
{
// This permission can only be granted in conjunction with a condition via the `grantWithCondition` function.
address genericTargetPermission = permissionsHashed[
permissionHash({_where: ANY_ADDR, _who: _who, _permissionId: _permissionId})
];
// If the permission was granted with a condition, check the condition and return the result.
if (genericTargetPermission != UNSET_FLAG) {
return
_checkCondition({
_condition: genericTargetPermission,
_where: _where,
_who: _who,
_permissionId: _permissionId,
_data: _data
});
}
// If this permission is not set, continue.
}
// No specific or generic permission applies to the `_who`, `_where`, `_permissionId`, so we return `false`.
return false;
}
/// @notice Relays the question if caller address has permission on target contract via a permission identifier to a condition contract.
/// @notice Checks a condition contract by doing an external call via try/catch.
/// @param _condition The condition contract that is called.
/// @param _where The address of the target contract for which `_who` receives permission.
/// @param _who The address (EOA or contract) owning the permission.
/// @param _permissionId The permission identifier.
/// @param _data Optional data to be passed to a referenced `PermissionCondition`.
/// @return Returns `true` if a caller (`_who`) has the permissions on the contract (`_where`) via the specified permission identifier.
/// @dev If the external call fails, we return `false`.
function _checkCondition(
address _condition,
address _where,
address _who,
bytes32 _permissionId,
bytes memory _data
) internal view virtual returns (bool) {
// Try-catch to skip failures
try
IPermissionCondition(_condition).isGranted({
_where: _where,
_who: _who,
_permissionId: _permissionId,
_data: _data
})
returns (bool result) {
if (result) {
return true;
}
} catch {}
return false;
}
/// @notice Grants the `ROOT_PERMISSION_ID` permission to the initial owner during initialization of the permission manager.
/// @param _initialOwner The initial owner of the permission manager.
function _initializePermissionManager(address _initialOwner) internal {
_grant({_where: address(this), _who: _initialOwner, _permissionId: ROOT_PERMISSION_ID});
}
/// @notice This method is used in the external `grant` method of the permission manager.
/// @param _where The address of the target contract for which `_who` receives permission.
/// @param _who The address (EOA or contract) owning the permission.
/// @param _permissionId The permission identifier.
/// @dev Note, that granting permissions with `_who` or `_where` equal to `ANY_ADDR` does not replace other permissions with specific `_who` and `_where` addresses that exist in parallel.
function _grant(address _where, address _who, bytes32 _permissionId) internal virtual {
if (_where == ANY_ADDR) {
revert PermissionsForAnyAddressDisallowed();
}
if (_who == ANY_ADDR) {
if (
_permissionId == ROOT_PERMISSION_ID ||
isPermissionRestrictedForAnyAddr(_permissionId)
) {
revert PermissionsForAnyAddressDisallowed();
}
}
bytes32 permHash = permissionHash({
_where: _where,
_who: _who,
_permissionId: _permissionId
});
address currentFlag = permissionsHashed[permHash];
// Means permHash is not currently set.
if (currentFlag == UNSET_FLAG) {
permissionsHashed[permHash] = ALLOW_FLAG;
emit Granted({
permissionId: _permissionId,
here: msg.sender,
where: _where,
who: _who,
condition: ALLOW_FLAG
});
}
}
/// @notice This method is used in the external `grantWithCondition` method of the permission manager.
/// @param _where The address of the target contract for which `_who` receives permission.
/// @param _who The address (EOA or contract) owning the permission.
/// @param _permissionId The permission identifier.
/// @param _condition An address either resolving to a `PermissionCondition` contract address or being the `ALLOW_FLAG` address (`address(2)`).
/// @dev Note, that granting permissions with `_who` or `_where` equal to `ANY_ADDR` does not replace other permissions with specific `_who` and `_where` addresses that exist in parallel.
function _grantWithCondition(
address _where,
address _who,
bytes32 _permissionId,
IPermissionCondition _condition
) internal virtual {
address conditionAddr = address(_condition);
if (!conditionAddr.isContract()) {
revert ConditionNotAContract(_condition);
}
if (
!PermissionCondition(conditionAddr).supportsInterface(
type(IPermissionCondition).interfaceId
)
) {
revert ConditionInterfaceNotSupported(_condition);
}
if (_where == ANY_ADDR && _who == ANY_ADDR) {
revert AnyAddressDisallowedForWhoAndWhere();
}
if (_where == ANY_ADDR || _who == ANY_ADDR) {
if (
_permissionId == ROOT_PERMISSION_ID ||
isPermissionRestrictedForAnyAddr(_permissionId)
) {
revert PermissionsForAnyAddressDisallowed();
}
}
bytes32 permHash = permissionHash({
_where: _where,
_who: _who,
_permissionId: _permissionId
});
address currentCondition = permissionsHashed[permHash];
// Means permHash is not currently set.
if (currentCondition == UNSET_FLAG) {
permissionsHashed[permHash] = conditionAddr;
emit Granted({
permissionId: _permissionId,
here: msg.sender,
where: _where,
who: _who,
condition: conditionAddr
});
} else if (currentCondition != conditionAddr) {
// Revert if `permHash` is already granted, but uses a different condition.
// If we don't revert, we either should:
// - allow overriding the condition on the same permission
// which could be confusing whoever granted the same permission first
// - or do nothing and succeed silently which could be confusing for the caller.
revert PermissionAlreadyGrantedForDifferentCondition({
where: _where,
who: _who,
permissionId: _permissionId,
currentCondition: currentCondition,
newCondition: conditionAddr
});
}
}
/// @notice This method is used in the public `revoke` method of the permission manager.
/// @param _where The address of the target contract for which `_who` receives permission.
/// @param _who The address (EOA or contract) owning the permission.
/// @param _permissionId The permission identifier.
/// @dev Note, that revoking permissions with `_who` or `_where` equal to `ANY_ADDR` does not revoke other permissions with specific `_who` and `_where` addresses that might have been granted in parallel.
function _revoke(address _where, address _who, bytes32 _permissionId) internal virtual {
bytes32 permHash = permissionHash({
_where: _where,
_who: _who,
_permissionId: _permissionId
});
if (permissionsHashed[permHash] != UNSET_FLAG) {
permissionsHashed[permHash] = UNSET_FLAG;
emit Revoked({permissionId: _permissionId, here: msg.sender, where: _where, who: _who});
}
}
/// @notice A private function to be used to check permissions on the permission manager contract (`address(this)`) itself.
/// @param _permissionId The permission identifier required to call the method this modifier is applied to.
function _auth(bytes32 _permissionId) internal view virtual {
if (!isGranted(address(this), msg.sender, _permissionId, msg.data)) {
revert Unauthorized({
where: address(this),
who: msg.sender,
permissionId: _permissionId
});
}
}
/// @notice Generates the hash for the `permissionsHashed` mapping obtained from the word "PERMISSION", the contract address, the address owning the permission, and the permission identifier.
/// @param _where The address of the target contract for which `_who` receives permission.
/// @param _who The address (EOA or contract) owning the permission.
/// @param _permissionId The permission identifier.
/// @return The permission hash.
function permissionHash(
address _where,
address _who,
bytes32 _permissionId
) internal pure virtual returns (bytes32) {
return keccak256(abi.encodePacked("PERMISSION", _who, _where, _permissionId));
}
/// @notice Decides if the granting permissionId is restricted when `_who == ANY_ADDR` or `_where == ANY_ADDR`.
/// @param _permissionId The permission identifier.
/// @return Whether or not the permission is restricted.
/// @dev By default, every permission is unrestricted and it is the derived contract's responsibility to override it. Note, that the `ROOT_PERMISSION_ID` is included and not required to be set it again.
function isPermissionRestrictedForAnyAddr(
bytes32 _permissionId
) internal view virtual returns (bool) {
(_permissionId); // silence the warning.
return false;
}
/// @notice This empty reserved space is put in place to allow future versions to add new variables without shifting down storage in the inheritance chain (see [OpenZeppelin's guide about storage gaps](https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps)).
uint256[49] private __gap;
}// SPDX-License-Identifier: AGPL-3.0-or-later pragma solidity ^0.8.8; /// @title CallbackHandler /// @author Aragon X - 2022-2023 /// @notice This contract handles callbacks by registering a magic number together with the callback function's selector. It provides the `_handleCallback` function that inheriting contracts have to call inside their `fallback()` function (`_handleCallback(msg.callbackSelector, msg.data)`). This allows to adaptively register ERC standards (e.g., [ERC-721](https://eips.ethereum.org/EIPS/eip-721), [ERC-1115](https://eips.ethereum.org/EIPS/eip-1155), or future versions of [ERC-165](https://eips.ethereum.org/EIPS/eip-165)) and returning the required magic numbers for the associated callback functions for the inheriting contract so that it doesn't need to be upgraded. /// @dev This callback handling functionality is intended to be used by executor contracts (i.e., `DAO.sol`). /// @custom:security-contact [email protected] abstract contract CallbackHandler { /// @notice A mapping between callback function selectors and magic return numbers. mapping(bytes4 => bytes4) internal callbackMagicNumbers; /// @notice The magic number refering to unregistered callbacks. bytes4 internal constant UNREGISTERED_CALLBACK = bytes4(0); /// @notice Thrown if the callback function is not registered. /// @param callbackSelector The selector of the callback function. /// @param magicNumber The magic number to be registered for the callback function selector. error UnknownCallback(bytes4 callbackSelector, bytes4 magicNumber); /// @notice Emitted when `_handleCallback` is called. /// @param sender Who called the callback. /// @param sig The function signature. /// @param data The calldata. event CallbackReceived(address sender, bytes4 indexed sig, bytes data); /// @notice Handles callbacks to adaptively support ERC standards. /// @dev This function is supposed to be called via `_handleCallback(msg.sig, msg.data)` in the `fallback()` function of the inheriting contract. /// @param _callbackSelector The function selector of the callback function. /// @param _data The calldata. /// @return The magic number registered for the function selector triggering the fallback. function _handleCallback( bytes4 _callbackSelector, bytes memory _data ) internal virtual returns (bytes4) { bytes4 magicNumber = callbackMagicNumbers[_callbackSelector]; if (magicNumber == UNREGISTERED_CALLBACK) { revert UnknownCallback({callbackSelector: _callbackSelector, magicNumber: magicNumber}); } emit CallbackReceived({sender: msg.sender, sig: _callbackSelector, data: _data}); return magicNumber; } /// @notice Registers a magic number for a callback function selector. /// @param _callbackSelector The selector of the callback function. /// @param _magicNumber The magic number to be registered for the callback function selector. function _registerCallback(bytes4 _callbackSelector, bytes4 _magicNumber) internal virtual { callbackMagicNumbers[_callbackSelector] = _magicNumber; } /// @notice This empty reserved space is put in place to allow future versions to add new variables without shifting down storage in the inheritance chain (see [OpenZeppelin's guide about storage gaps](https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps)). uint256[49] private __gap; }
// SPDX-License-Identifier: AGPL-3.0-or-later pragma solidity ^0.8.8; /// @title EIP-4824 Common Interfaces for DAOs /// @dev See https://eips.ethereum.org/EIPS/eip-4824 /// @author Aragon X - 2021-2023 /// @custom:security-contact [email protected] interface IEIP4824 { /// @notice A distinct Uniform Resource Identifier (URI) pointing to a JSON object following the "EIP-4824 DAO JSON-LD Schema". This JSON file splits into four URIs: membersURI, proposalsURI, activityLogURI, and governanceURI. The membersURI should point to a JSON file that conforms to the "EIP-4824 Members JSON-LD Schema". The proposalsURI should point to a JSON file that conforms to the "EIP-4824 Proposals JSON-LD Schema". The activityLogURI should point to a JSON file that conforms to the "EIP-4824 Activity Log JSON-LD Schema". The governanceURI should point to a flatfile, normatively a .md file. Each of the JSON files named above can be statically hosted or dynamically-generated. /// @return _daoURI The DAO URI. function daoURI() external view returns (string memory _daoURI); }
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/introspection/ERC165.sol)
pragma solidity ^0.8.0;
import "./IERC165.sol";
/**
* @dev Implementation of the {IERC165} interface.
*
* Contracts that want to implement ERC165 should inherit from this contract and override {supportsInterface} to check
* for the additional interface id that will be supported. For example:
*
* ```solidity
* function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
* return interfaceId == type(MyInterface).interfaceId || super.supportsInterface(interfaceId);
* }
* ```
*
* Alternatively, {ERC165Storage} provides an easier to use but more expensive implementation.
*/
abstract contract ERC165 is IERC165 {
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return interfaceId == type(IERC165).interfaceId;
}
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {ERC1967Proxy} from "@openzeppelin/contracts/proxy/ERC1967/ERC1967Proxy.sol";
import {Clones} from "@openzeppelin/contracts/proxy/Clones.sol";
import {Address} from "@openzeppelin/contracts/utils/Address.sol";
/// @title ProxyLib
/// @author Aragon X - 2024
/// @notice A library containing methods for the deployment of proxies via the UUPS pattern (see [ERC-1822](https://eips.ethereum.org/EIPS/eip-1822)) and minimal proxy pattern (see [ERC-1167](https://eips.ethereum.org/EIPS/eip-1167)).
/// @custom:security-contact [email protected]
library ProxyLib {
using Address for address;
using Clones for address;
/// @notice Creates an [ERC-1967](https://eips.ethereum.org/EIPS/eip-1967) UUPS proxy contract pointing to a logic contract and allows to immediately initialize it.
/// @param _logic The logic contract the proxy is pointing to.
/// @param _initCalldata The initialization data for this contract.
/// @return uupsProxy The address of the UUPS proxy contract created.
/// @dev If `_initCalldata` is non-empty, it is used in a delegate call to the `_logic` contract. This will typically be an encoded function call initializing the storage of the proxy (see [OpenZeppelin ERC1967Proxy-constructor](https://docs.openzeppelin.com/contracts/4.x/api/proxy#ERC1967Proxy-constructor-address-bytes-)).
function deployUUPSProxy(
address _logic,
bytes memory _initCalldata
) internal returns (address uupsProxy) {
uupsProxy = address(new ERC1967Proxy({_logic: _logic, _data: _initCalldata}));
}
/// @notice Creates an [ERC-1167](https://eips.ethereum.org/EIPS/eip-1167) minimal proxy contract, also known as clones, pointing to a logic contract and allows to immediately initialize it.
/// @param _logic The logic contract the proxy is pointing to.
/// @param _initCalldata The initialization data for this contract.
/// @return minimalProxy The address of the minimal proxy contract created.
/// @dev If `_initCalldata` is non-empty, it is used in a call to the clone contract. This will typically be an encoded function call initializing the storage of the contract.
function deployMinimalProxy(
address _logic,
bytes memory _initCalldata
) internal returns (address minimalProxy) {
minimalProxy = _logic.clone();
if (_initCalldata.length > 0) {
minimalProxy.functionCall({data: _initCalldata});
}
}
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {PermissionLib} from "@aragon/osx-commons-contracts/src/permission/PermissionLib.sol";
import {PluginSetup} from "@aragon/osx-commons-contracts/src/plugin/setup/PluginSetup.sol";
import {PluginRepo} from "../repo/PluginRepo.sol";
/// @notice The struct containing a reference to a plugin setup by specifying the containing plugin repository and the associated version tag.
/// @param versionTag The tag associated with the plugin setup version.
/// @param pluginSetupRepo The plugin setup repository.
struct PluginSetupRef {
PluginRepo.Tag versionTag;
PluginRepo pluginSetupRepo;
}
/// @notice The different types describing a prepared setup.
/// @param None The default indicating the lack of a preparation type.
/// @param Installation The prepared setup installs a new plugin.
/// @param Update The prepared setup updates an existing plugin.
/// @param Uninstallation The prepared setup uninstalls an existing plugin.
enum PreparationType {
None,
Installation,
Update,
Uninstallation
}
/// @notice Returns an ID for plugin installation by hashing the DAO and plugin address.
/// @param _dao The address of the DAO conducting the setup.
/// @param _plugin The plugin address.
/// @custom:security-contact [email protected]
function _getPluginInstallationId(address _dao, address _plugin) pure returns (bytes32) {
return keccak256(abi.encode(_dao, _plugin));
}
/// @notice Returns an ID for prepared setup obtained from hashing characterizing elements.
/// @param _pluginSetupRef The reference of the plugin setup containing plugin setup repo and version tag.
/// @param _permissionsHash The hash of the permission operations requested by the setup.
/// @param _helpersHash The hash of the helper contract addresses.
/// @param _data The bytes-encoded initialize data for the upgrade that is returned by `prepareUpdate`.
/// @param _preparationType The type of preparation the plugin is currently undergoing. Without this, it is possible to call `applyUpdate` even after `applyInstallation` is called.
/// @return The prepared setup id.
/// @custom:security-contact [email protected]
function _getPreparedSetupId(
PluginSetupRef memory _pluginSetupRef,
bytes32 _permissionsHash,
bytes32 _helpersHash,
bytes memory _data,
PreparationType _preparationType
) pure returns (bytes32) {
return
keccak256(
abi.encode(
_pluginSetupRef.versionTag,
_pluginSetupRef.pluginSetupRepo,
_permissionsHash,
_helpersHash,
keccak256(_data),
_preparationType
)
);
}
/// @notice Returns an identifier for applied installations.
/// @param _pluginSetupRef The reference of the plugin setup containing plugin setup repo and version tag.
/// @param _helpersHash The hash of the helper contract addresses.
/// @return The applied setup id.
/// @custom:security-contact [email protected]
function _getAppliedSetupId(
PluginSetupRef memory _pluginSetupRef,
bytes32 _helpersHash
) pure returns (bytes32) {
return
keccak256(
abi.encode(_pluginSetupRef.versionTag, _pluginSetupRef.pluginSetupRepo, _helpersHash)
);
}
/// @notice Returns a hash of an array of helper addresses (contracts or EOAs).
/// @param _helpers The array of helper addresses (contracts or EOAs) to be hashed.
/// @custom:security-contact [email protected]
function hashHelpers(address[] memory _helpers) pure returns (bytes32) {
return keccak256(abi.encode(_helpers));
}
/// @notice Returns a hash of an array of multi-targeted permission operations.
/// @param _permissions The array of of multi-targeted permission operations.
/// @return The hash of the array of permission operations.
/// @custom:security-contact [email protected]
function hashPermissions(
PermissionLib.MultiTargetPermission[] memory _permissions
) pure returns (bytes32) {
return keccak256(abi.encode(_permissions));
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {UUPSUpgradeable} from "@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol";
import {ERC165CheckerUpgradeable} from "@openzeppelin/contracts-upgradeable/utils/introspection/ERC165CheckerUpgradeable.sol";
import {DaoAuthorizableUpgradeable} from "@aragon/osx-commons-contracts/src/permission/auth/DaoAuthorizableUpgradeable.sol";
import {IDAO} from "@aragon/osx-commons-contracts/src/dao/IDAO.sol";
/// @title InterfaceBasedRegistry
/// @author Aragon X - 2022-2023
/// @notice An [ERC-165](https://eips.ethereum.org/EIPS/eip-165)-based registry for contracts.
/// @custom:security-contact [email protected]
abstract contract InterfaceBasedRegistry is UUPSUpgradeable, DaoAuthorizableUpgradeable {
using ERC165CheckerUpgradeable for address;
/// @notice The ID of the permission required to call the `_authorizeUpgrade` function.
bytes32 public constant UPGRADE_REGISTRY_PERMISSION_ID =
keccak256("UPGRADE_REGISTRY_PERMISSION");
/// @notice The [ERC-165](https://eips.ethereum.org/EIPS/eip-165) interface ID that the target contracts being registered must support.
bytes4 public targetInterfaceId;
/// @notice The mapping containing the registry entries returning true for registered contract addresses.
mapping(address => bool) public entries;
/// @notice Thrown if the contract is already registered.
/// @param registrant The address of the contract to be registered.
error ContractAlreadyRegistered(address registrant);
/// @notice Thrown if the contract does not support the required interface.
/// @param registrant The address of the contract to be registered.
error ContractInterfaceInvalid(address registrant);
/// @notice Thrown if the contract does not support ERC165.
/// @param registrant The address of the contract.
error ContractERC165SupportInvalid(address registrant);
/// @notice Initializes the component.
/// @dev This is required for the UUPS upgradeability pattern.
/// @param _managingDao The interface of the DAO managing the components permissions.
/// @param _targetInterfaceId The [ERC-165](https://eips.ethereum.org/EIPS/eip-165) interface id of the contracts to be registered.
function __InterfaceBasedRegistry_init(
IDAO _managingDao,
bytes4 _targetInterfaceId
) internal virtual onlyInitializing {
__DaoAuthorizableUpgradeable_init(_managingDao);
targetInterfaceId = _targetInterfaceId;
}
/// @notice Internal method authorizing the upgrade of the contract via the [upgradeability mechanism for UUPS proxies](https://docs.openzeppelin.com/contracts/4.x/api/proxy#UUPSUpgradeable) (see [ERC-1822](https://eips.ethereum.org/EIPS/eip-1822)).
/// @dev The caller must have the `UPGRADE_REGISTRY_PERMISSION_ID` permission.
function _authorizeUpgrade(
address
) internal virtual override auth(UPGRADE_REGISTRY_PERMISSION_ID) {}
/// @notice Register an [ERC-165](https://eips.ethereum.org/EIPS/eip-165) contract address.
/// @dev The managing DAO needs to grant REGISTER_PERMISSION_ID to registrar.
/// @param _registrant The address of an [ERC-165](https://eips.ethereum.org/EIPS/eip-165) contract.
function _register(address _registrant) internal {
if (entries[_registrant]) {
revert ContractAlreadyRegistered({registrant: _registrant});
}
// Will revert if address is not a contract or doesn't fully support targetInterfaceId + ERC165.
if (!_registrant.supportsInterface(targetInterfaceId)) {
revert ContractInterfaceInvalid(_registrant);
}
entries[_registrant] = true;
}
/// @notice This empty reserved space is put in place to allow future versions to add new variables without shifting down storage in the inheritance chain (see [OpenZeppelin's guide about storage gaps](https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps)).
uint256[48] private __gap;
}// SPDX-License-Identifier: AGPL-3.0-or-later pragma solidity ^0.8.8; /// @notice Validates that a subdomain name is composed only from characters in the allowed character set: /// - the lowercase letters `a-z` /// - the digits `0-9` /// - the hyphen `-` /// @dev This function allows empty (zero-length) subdomains. If this should not be allowed, make sure to add a respective check when using this function in your code. /// @param subDomain The name of the DAO. /// @return `true` if the name is valid or `false` if at least one char is invalid. /// @dev Aborts on the first invalid char found. /// @custom:security-contact [email protected] function isSubdomainValid(string calldata subDomain) pure returns (bool) { bytes calldata nameBytes = bytes(subDomain); uint256 nameLength = nameBytes.length; for (uint256 i; i < nameLength; i++) { uint8 char = uint8(nameBytes[i]); // if char is between a-z if (char > 96 && char < 123) { continue; } // if char is between 0-9 if (char > 47 && char < 58) { continue; } // if char is - if (char == 45) { continue; } // invalid if one char doesn't work with the rules above return false; } return true; }
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/introspection/ERC165.sol)
pragma solidity ^0.8.0;
import "./IERC165Upgradeable.sol";
import {Initializable} from "../../proxy/utils/Initializable.sol";
/**
* @dev Implementation of the {IERC165} interface.
*
* Contracts that want to implement ERC165 should inherit from this contract and override {supportsInterface} to check
* for the additional interface id that will be supported. For example:
*
* ```solidity
* function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
* return interfaceId == type(MyInterface).interfaceId || super.supportsInterface(interfaceId);
* }
* ```
*
* Alternatively, {ERC165Storage} provides an easier to use but more expensive implementation.
*/
abstract contract ERC165Upgradeable is Initializable, IERC165Upgradeable {
function __ERC165_init() internal onlyInitializing {
}
function __ERC165_init_unchained() internal onlyInitializing {
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return interfaceId == type(IERC165Upgradeable).interfaceId;
}
/**
* @dev This empty reserved space is put in place to allow future versions to add new
* variables without shifting down storage in the inheritance chain.
* See https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps
*/
uint256[50] private __gap;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (utils/introspection/ERC165Checker.sol)
pragma solidity ^0.8.0;
import "./IERC165Upgradeable.sol";
/**
* @dev Library used to query support of an interface declared via {IERC165}.
*
* Note that these functions return the actual result of the query: they do not
* `revert` if an interface is not supported. It is up to the caller to decide
* what to do in these cases.
*/
library ERC165CheckerUpgradeable {
// As per the EIP-165 spec, no interface should ever match 0xffffffff
bytes4 private constant _INTERFACE_ID_INVALID = 0xffffffff;
/**
* @dev Returns true if `account` supports the {IERC165} interface.
*/
function supportsERC165(address account) internal view returns (bool) {
// Any contract that implements ERC165 must explicitly indicate support of
// InterfaceId_ERC165 and explicitly indicate non-support of InterfaceId_Invalid
return
supportsERC165InterfaceUnchecked(account, type(IERC165Upgradeable).interfaceId) &&
!supportsERC165InterfaceUnchecked(account, _INTERFACE_ID_INVALID);
}
/**
* @dev Returns true if `account` supports the interface defined by
* `interfaceId`. Support for {IERC165} itself is queried automatically.
*
* See {IERC165-supportsInterface}.
*/
function supportsInterface(address account, bytes4 interfaceId) internal view returns (bool) {
// query support of both ERC165 as per the spec and support of _interfaceId
return supportsERC165(account) && supportsERC165InterfaceUnchecked(account, interfaceId);
}
/**
* @dev Returns a boolean array where each value corresponds to the
* interfaces passed in and whether they're supported or not. This allows
* you to batch check interfaces for a contract where your expectation
* is that some interfaces may not be supported.
*
* See {IERC165-supportsInterface}.
*
* _Available since v3.4._
*/
function getSupportedInterfaces(
address account,
bytes4[] memory interfaceIds
) internal view returns (bool[] memory) {
// an array of booleans corresponding to interfaceIds and whether they're supported or not
bool[] memory interfaceIdsSupported = new bool[](interfaceIds.length);
// query support of ERC165 itself
if (supportsERC165(account)) {
// query support of each interface in interfaceIds
for (uint256 i = 0; i < interfaceIds.length; i++) {
interfaceIdsSupported[i] = supportsERC165InterfaceUnchecked(account, interfaceIds[i]);
}
}
return interfaceIdsSupported;
}
/**
* @dev Returns true if `account` supports all the interfaces defined in
* `interfaceIds`. Support for {IERC165} itself is queried automatically.
*
* Batch-querying can lead to gas savings by skipping repeated checks for
* {IERC165} support.
*
* See {IERC165-supportsInterface}.
*/
function supportsAllInterfaces(address account, bytes4[] memory interfaceIds) internal view returns (bool) {
// query support of ERC165 itself
if (!supportsERC165(account)) {
return false;
}
// query support of each interface in interfaceIds
for (uint256 i = 0; i < interfaceIds.length; i++) {
if (!supportsERC165InterfaceUnchecked(account, interfaceIds[i])) {
return false;
}
}
// all interfaces supported
return true;
}
/**
* @notice Query if a contract implements an interface, does not check ERC165 support
* @param account The address of the contract to query for support of an interface
* @param interfaceId The interface identifier, as specified in ERC-165
* @return true if the contract at account indicates support of the interface with
* identifier interfaceId, false otherwise
* @dev Assumes that account contains a contract that supports ERC165, otherwise
* the behavior of this method is undefined. This precondition can be checked
* with {supportsERC165}.
*
* Some precompiled contracts will falsely indicate support for a given interface, so caution
* should be exercised when using this function.
*
* Interface identification is specified in ERC-165.
*/
function supportsERC165InterfaceUnchecked(address account, bytes4 interfaceId) internal view returns (bool) {
// prepare call
bytes memory encodedParams = abi.encodeWithSelector(IERC165Upgradeable.supportsInterface.selector, interfaceId);
// perform static call
bool success;
uint256 returnSize;
uint256 returnValue;
assembly {
success := staticcall(30000, account, add(encodedParams, 0x20), mload(encodedParams), 0x00, 0x20)
returnSize := returndatasize()
returnValue := mload(0x00)
}
return success && returnSize >= 0x20 && returnValue > 0;
}
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {ERC165} from "@openzeppelin/contracts/utils/introspection/ERC165.sol";
import {IProtocolVersion} from "../../utils/versioning/IProtocolVersion.sol";
import {ProtocolVersion} from "../../utils/versioning/ProtocolVersion.sol";
import {IPluginSetup} from "./IPluginSetup.sol";
/// @title PluginSetup
/// @author Aragon X - 2022-2024
/// @notice An abstract contract to inherit from to implement the plugin setup for non-upgradeable plugins, i.e,
/// - `Plugin` being deployed via the `new` keyword
/// - `PluginCloneable` being deployed via the minimal proxy pattern (see [ERC-1167](https://eips.ethereum.org/EIPS/eip-1167)).
/// @custom:security-contact [email protected]
abstract contract PluginSetup is ERC165, IPluginSetup, ProtocolVersion {
/// @notice The address of the plugin implementation contract for initial block explorer verification and, in the case of `PluginClonable` implementations, to create [ERC-1167](https://eips.ethereum.org/EIPS/eip-1167) clones from.
address internal immutable IMPLEMENTATION;
/// @notice Thrown when attempting to prepare an update on a non-upgradeable plugin.
error NonUpgradeablePlugin();
/// @notice The contract constructor, that setting the plugin implementation contract.
/// @param _implementation The address of the plugin implementation contract.
constructor(address _implementation) {
IMPLEMENTATION = _implementation;
}
/// @inheritdoc IPluginSetup
/// @dev Since the underlying plugin is non-upgradeable, this non-virtual function must always revert.
function prepareUpdate(
address _dao,
uint16 _fromBuild,
SetupPayload calldata _payload
) external returns (bytes memory, PreparedSetupData memory) {
(_dao, _fromBuild, _payload);
revert NonUpgradeablePlugin();
}
/// @notice Checks if this or the parent contract supports an interface by its ID.
/// @param _interfaceId The ID of the interface.
/// @return Returns `true` if the interface is supported.
function supportsInterface(bytes4 _interfaceId) public view virtual override returns (bool) {
return
_interfaceId == type(IPluginSetup).interfaceId ||
_interfaceId == type(IProtocolVersion).interfaceId ||
super.supportsInterface(_interfaceId);
}
/// @inheritdoc IPluginSetup
function implementation() public view returns (address) {
return IMPLEMENTATION;
}
}// SPDX-License-Identifier: AGPL-3.0-or-later pragma solidity ^0.8.8; /// @title IPluginRepo /// @author Aragon X - 2022-2023 /// @notice The interface required for a plugin repository. /// @custom:security-contact [email protected] interface IPluginRepo { /// @notice Updates the metadata for release with content `@fromHex(_releaseMetadata)`. /// @param _release The release number. /// @param _releaseMetadata The release metadata URI. function updateReleaseMetadata(uint8 _release, bytes calldata _releaseMetadata) external; /// @notice Creates a new plugin version as the latest build for an existing release number or the first build for a new release number for the provided `PluginSetup` contract address and metadata. /// @param _release The release number. /// @param _pluginSetupAddress The address of the plugin setup contract. /// @param _buildMetadata The build metadata URI. /// @param _releaseMetadata The release metadata URI. function createVersion( uint8 _release, address _pluginSetupAddress, bytes calldata _buildMetadata, bytes calldata _releaseMetadata ) external; /// @notice Emitted if the same plugin setup exists in previous releases. /// @param release The release number. /// @param build The build number. /// @param pluginSetup The address of the plugin setup contract. /// @param buildMetadata The build metadata URI. event VersionCreated( uint8 release, uint16 build, address indexed pluginSetup, bytes buildMetadata ); /// @notice Emitted when a release's metadata was updated. /// @param release The release number. /// @param releaseMetadata The release metadata URI. event ReleaseMetadataUpdated(uint8 release, bytes releaseMetadata); }
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (utils/introspection/ERC165Checker.sol)
pragma solidity ^0.8.0;
import "./IERC165.sol";
/**
* @dev Library used to query support of an interface declared via {IERC165}.
*
* Note that these functions return the actual result of the query: they do not
* `revert` if an interface is not supported. It is up to the caller to decide
* what to do in these cases.
*/
library ERC165Checker {
// As per the EIP-165 spec, no interface should ever match 0xffffffff
bytes4 private constant _INTERFACE_ID_INVALID = 0xffffffff;
/**
* @dev Returns true if `account` supports the {IERC165} interface.
*/
function supportsERC165(address account) internal view returns (bool) {
// Any contract that implements ERC165 must explicitly indicate support of
// InterfaceId_ERC165 and explicitly indicate non-support of InterfaceId_Invalid
return
supportsERC165InterfaceUnchecked(account, type(IERC165).interfaceId) &&
!supportsERC165InterfaceUnchecked(account, _INTERFACE_ID_INVALID);
}
/**
* @dev Returns true if `account` supports the interface defined by
* `interfaceId`. Support for {IERC165} itself is queried automatically.
*
* See {IERC165-supportsInterface}.
*/
function supportsInterface(address account, bytes4 interfaceId) internal view returns (bool) {
// query support of both ERC165 as per the spec and support of _interfaceId
return supportsERC165(account) && supportsERC165InterfaceUnchecked(account, interfaceId);
}
/**
* @dev Returns a boolean array where each value corresponds to the
* interfaces passed in and whether they're supported or not. This allows
* you to batch check interfaces for a contract where your expectation
* is that some interfaces may not be supported.
*
* See {IERC165-supportsInterface}.
*
* _Available since v3.4._
*/
function getSupportedInterfaces(
address account,
bytes4[] memory interfaceIds
) internal view returns (bool[] memory) {
// an array of booleans corresponding to interfaceIds and whether they're supported or not
bool[] memory interfaceIdsSupported = new bool[](interfaceIds.length);
// query support of ERC165 itself
if (supportsERC165(account)) {
// query support of each interface in interfaceIds
for (uint256 i = 0; i < interfaceIds.length; i++) {
interfaceIdsSupported[i] = supportsERC165InterfaceUnchecked(account, interfaceIds[i]);
}
}
return interfaceIdsSupported;
}
/**
* @dev Returns true if `account` supports all the interfaces defined in
* `interfaceIds`. Support for {IERC165} itself is queried automatically.
*
* Batch-querying can lead to gas savings by skipping repeated checks for
* {IERC165} support.
*
* See {IERC165-supportsInterface}.
*/
function supportsAllInterfaces(address account, bytes4[] memory interfaceIds) internal view returns (bool) {
// query support of ERC165 itself
if (!supportsERC165(account)) {
return false;
}
// query support of each interface in interfaceIds
for (uint256 i = 0; i < interfaceIds.length; i++) {
if (!supportsERC165InterfaceUnchecked(account, interfaceIds[i])) {
return false;
}
}
// all interfaces supported
return true;
}
/**
* @notice Query if a contract implements an interface, does not check ERC165 support
* @param account The address of the contract to query for support of an interface
* @param interfaceId The interface identifier, as specified in ERC-165
* @return true if the contract at account indicates support of the interface with
* identifier interfaceId, false otherwise
* @dev Assumes that account contains a contract that supports ERC165, otherwise
* the behavior of this method is undefined. This precondition can be checked
* with {supportsERC165}.
*
* Some precompiled contracts will falsely indicate support for a given interface, so caution
* should be exercised when using this function.
*
* Interface identification is specified in ERC-165.
*/
function supportsERC165InterfaceUnchecked(address account, bytes4 interfaceId) internal view returns (bool) {
// prepare call
bytes memory encodedParams = abi.encodeWithSelector(IERC165.supportsInterface.selector, interfaceId);
// perform static call
bool success;
uint256 returnSize;
uint256 returnValue;
assembly {
success := staticcall(30000, account, add(encodedParams, 0x20), mload(encodedParams), 0x00, 0x20)
returnSize := returndatasize()
returnValue := mload(0x00)
}
return success && returnSize >= 0x20 && returnValue > 0;
}
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {UUPSUpgradeable} from "@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol";
import {IERC1822ProxiableUpgradeable} from "@openzeppelin/contracts-upgradeable/interfaces/draft-IERC1822Upgradeable.sol";
import {ERC165Upgradeable} from "@openzeppelin/contracts-upgradeable/utils/introspection/ERC165Upgradeable.sol";
import {ERC165CheckerUpgradeable} from "@openzeppelin/contracts-upgradeable/utils/introspection/ERC165CheckerUpgradeable.sol";
import {IProtocolVersion} from "../utils/versioning/IProtocolVersion.sol";
import {ProtocolVersion} from "../utils/versioning/ProtocolVersion.sol";
import {DaoAuthorizableUpgradeable} from "../permission/auth/DaoAuthorizableUpgradeable.sol";
import {IPlugin} from "./IPlugin.sol";
import {IDAO} from "../dao/IDAO.sol";
import {IExecutor, Action} from "../executors/IExecutor.sol";
/// @title PluginUUPSUpgradeable
/// @author Aragon X - 2022-2024
/// @notice An abstract, upgradeable contract to inherit from when creating a plugin being deployed via the UUPS pattern (see [ERC-1822](https://eips.ethereum.org/EIPS/eip-1822)).
/// @custom:security-contact [email protected]
abstract contract PluginUUPSUpgradeable is
IPlugin,
ERC165Upgradeable,
UUPSUpgradeable,
DaoAuthorizableUpgradeable,
ProtocolVersion
{
using ERC165CheckerUpgradeable for address;
// NOTE: When adding new state variables to the contract, the size of `_gap` has to be adapted below as well.
/// @notice Stores the current target configuration, defining the target contract and operation type for a plugin.
TargetConfig private currentTargetConfig;
/// @notice Thrown when target is of type 'IDAO', but operation is `delegateCall`.
/// @param targetConfig The target config to update it to.
error InvalidTargetConfig(TargetConfig targetConfig);
/// @notice Thrown when `delegatecall` fails.
error DelegateCallFailed();
/// @notice Thrown when initialize is called after it has already been executed.
error AlreadyInitialized();
/// @notice Emitted each time the TargetConfig is set.
event TargetSet(TargetConfig newTargetConfig);
/// @notice The ID of the permission required to call the `setTargetConfig` function.
bytes32 public constant SET_TARGET_CONFIG_PERMISSION_ID =
keccak256("SET_TARGET_CONFIG_PERMISSION");
/// @notice The ID of the permission required to call the `_authorizeUpgrade` function.
bytes32 public constant UPGRADE_PLUGIN_PERMISSION_ID = keccak256("UPGRADE_PLUGIN_PERMISSION");
/// @notice Disables the initializers on the implementation contract to prevent it from being left uninitialized.
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() {
_disableInitializers();
}
/// @notice This ensures that the initialize function cannot be called during the upgrade process.
modifier onlyCallAtInitialization() {
if (_getInitializedVersion() != 0) {
revert AlreadyInitialized();
}
_;
}
/// @inheritdoc IPlugin
function pluginType() public pure override returns (PluginType) {
return PluginType.UUPS;
}
/// @notice Returns the currently set target contract.
/// @return TargetConfig The currently set target.
function getCurrentTargetConfig() public view virtual returns (TargetConfig memory) {
return currentTargetConfig;
}
/// @notice A convenient function to get current target config only if its target is not address(0), otherwise dao().
/// @return TargetConfig The current target config if its target is not address(0), otherwise returns dao()."
function getTargetConfig() public view virtual returns (TargetConfig memory) {
TargetConfig memory targetConfig = currentTargetConfig;
if (targetConfig.target == address(0)) {
targetConfig = TargetConfig({target: address(dao()), operation: Operation.Call});
}
return targetConfig;
}
/// @notice Initializes the plugin by storing the associated DAO.
/// @param _dao The DAO contract.
// solhint-disable-next-line func-name-mixedcase
function __PluginUUPSUpgradeable_init(IDAO _dao) internal virtual onlyInitializing {
__DaoAuthorizableUpgradeable_init(_dao);
}
/// @dev Sets the target to a new target (`newTarget`).
/// The caller must have the `SET_TARGET_CONFIG_PERMISSION_ID` permission.
/// @param _targetConfig The target Config containing the address and operation type.
function setTargetConfig(
TargetConfig calldata _targetConfig
) public auth(SET_TARGET_CONFIG_PERMISSION_ID) {
_setTargetConfig(_targetConfig);
}
/// @notice Checks if an interface is supported by this or its parent contract.
/// @param _interfaceId The ID of the interface.
/// @return Returns `true` if the interface is supported.
function supportsInterface(bytes4 _interfaceId) public view virtual override returns (bool) {
return
_interfaceId == type(IPlugin).interfaceId ||
_interfaceId == type(IProtocolVersion).interfaceId ||
_interfaceId == type(IERC1822ProxiableUpgradeable).interfaceId ||
_interfaceId ==
this.setTargetConfig.selector ^
this.getTargetConfig.selector ^
this.getCurrentTargetConfig.selector ||
super.supportsInterface(_interfaceId);
}
/// @notice Returns the address of the implementation contract in the [proxy storage slot](https://eips.ethereum.org/EIPS/eip-1967) slot the [UUPS proxy](https://eips.ethereum.org/EIPS/eip-1822) is pointing to.
/// @return The address of the implementation contract.
function implementation() public view returns (address) {
return _getImplementation();
}
/// @notice Sets the target to a new target (`newTarget`).
/// @param _targetConfig The target Config containing the address and operation type.
function _setTargetConfig(TargetConfig memory _targetConfig) internal virtual {
// safety check to avoid setting dao as `target` with `delegatecall` operation
// as this would not work and cause the plugin to be bricked.
if (
_targetConfig.target.supportsInterface(type(IDAO).interfaceId) &&
_targetConfig.operation == Operation.DelegateCall
) {
revert InvalidTargetConfig(_targetConfig);
}
currentTargetConfig = _targetConfig;
emit TargetSet(_targetConfig);
}
/// @notice Forwards the actions to the currently set `target` for the execution.
/// @dev If target is not set, passes actions to the dao.
/// @param _callId Identifier for this execution.
/// @param _actions actions that will be eventually called.
/// @param _allowFailureMap Bitmap-encoded number.
/// @return execResults address of the implementation contract.
/// @return failureMap address of the implementation contract.
function _execute(
bytes32 _callId,
Action[] memory _actions,
uint256 _allowFailureMap
) internal virtual returns (bytes[] memory execResults, uint256 failureMap) {
TargetConfig memory targetConfig = getTargetConfig();
return
_execute(
targetConfig.target,
_callId,
_actions,
_allowFailureMap,
targetConfig.operation
);
}
/// @notice Forwards the actions to the `target` for the execution.
/// @param _target The address of the target contract.
/// @param _callId Identifier for this execution.
/// @param _actions actions that will be eventually called.
/// @param _allowFailureMap A bitmap allowing the execution to succeed, even if individual actions might revert.
/// If the bit at index `i` is 1, the execution succeeds even if the `i`th action reverts.
/// A failure map value of 0 requires every action to not revert.
/// @param _op The type of operation (`Call` or `DelegateCall`) to be used for the execution.
/// @return execResults address of the implementation contract.
/// @return failureMap address of the implementation contract.
function _execute(
address _target,
bytes32 _callId,
Action[] memory _actions,
uint256 _allowFailureMap,
Operation _op
) internal virtual returns (bytes[] memory execResults, uint256 failureMap) {
if (_op == Operation.DelegateCall) {
bool success;
bytes memory data;
// solhint-disable-next-line avoid-low-level-calls
(success, data) = _target.delegatecall(
abi.encodeCall(IExecutor.execute, (_callId, _actions, _allowFailureMap))
);
if (!success) {
if (data.length > 0) {
// solhint-disable-next-line no-inline-assembly
assembly {
let returndata_size := mload(data)
revert(add(32, data), returndata_size)
}
} else {
revert DelegateCallFailed();
}
}
(execResults, failureMap) = abi.decode(data, (bytes[], uint256));
} else {
(execResults, failureMap) = IExecutor(_target).execute(
_callId,
_actions,
_allowFailureMap
);
}
}
/// @notice Internal method authorizing the upgrade of the contract via the [upgradeability mechanism for UUPS proxies](https://docs.openzeppelin.com/contracts/4.x/api/proxy#UUPSUpgradeable) (see [ERC-1822](https://eips.ethereum.org/EIPS/eip-1822)).
/// @dev The caller must have the `UPGRADE_PLUGIN_PERMISSION_ID` permission.
function _authorizeUpgrade(
address
)
internal
virtual
override
auth(UPGRADE_PLUGIN_PERMISSION_ID)
// solhint-disable-next-line no-empty-blocks
{
}
/// @notice This empty reserved space is put in place to allow future versions to add new variables without shifting down storage in the inheritance chain (see [OpenZeppelin's guide about storage gaps](https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps)).
uint256[49] private __gap;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.8.0) (utils/math/SafeCast.sol)
// This file was procedurally generated from scripts/generate/templates/SafeCast.js.
pragma solidity ^0.8.0;
/**
* @dev Wrappers over Solidity's uintXX/intXX casting operators with added overflow
* checks.
*
* Downcasting from uint256/int256 in Solidity does not revert on overflow. This can
* easily result in undesired exploitation or bugs, since developers usually
* assume that overflows raise errors. `SafeCast` restores this intuition by
* reverting the transaction when such an operation overflows.
*
* Using this library instead of the unchecked operations eliminates an entire
* class of bugs, so it's recommended to use it always.
*
* Can be combined with {SafeMath} and {SignedSafeMath} to extend it to smaller types, by performing
* all math on `uint256` and `int256` and then downcasting.
*/
library SafeCastUpgradeable {
/**
* @dev Returns the downcasted uint248 from uint256, reverting on
* overflow (when the input is greater than largest uint248).
*
* Counterpart to Solidity's `uint248` operator.
*
* Requirements:
*
* - input must fit into 248 bits
*
* _Available since v4.7._
*/
function toUint248(uint256 value) internal pure returns (uint248) {
require(value <= type(uint248).max, "SafeCast: value doesn't fit in 248 bits");
return uint248(value);
}
/**
* @dev Returns the downcasted uint240 from uint256, reverting on
* overflow (when the input is greater than largest uint240).
*
* Counterpart to Solidity's `uint240` operator.
*
* Requirements:
*
* - input must fit into 240 bits
*
* _Available since v4.7._
*/
function toUint240(uint256 value) internal pure returns (uint240) {
require(value <= type(uint240).max, "SafeCast: value doesn't fit in 240 bits");
return uint240(value);
}
/**
* @dev Returns the downcasted uint232 from uint256, reverting on
* overflow (when the input is greater than largest uint232).
*
* Counterpart to Solidity's `uint232` operator.
*
* Requirements:
*
* - input must fit into 232 bits
*
* _Available since v4.7._
*/
function toUint232(uint256 value) internal pure returns (uint232) {
require(value <= type(uint232).max, "SafeCast: value doesn't fit in 232 bits");
return uint232(value);
}
/**
* @dev Returns the downcasted uint224 from uint256, reverting on
* overflow (when the input is greater than largest uint224).
*
* Counterpart to Solidity's `uint224` operator.
*
* Requirements:
*
* - input must fit into 224 bits
*
* _Available since v4.2._
*/
function toUint224(uint256 value) internal pure returns (uint224) {
require(value <= type(uint224).max, "SafeCast: value doesn't fit in 224 bits");
return uint224(value);
}
/**
* @dev Returns the downcasted uint216 from uint256, reverting on
* overflow (when the input is greater than largest uint216).
*
* Counterpart to Solidity's `uint216` operator.
*
* Requirements:
*
* - input must fit into 216 bits
*
* _Available since v4.7._
*/
function toUint216(uint256 value) internal pure returns (uint216) {
require(value <= type(uint216).max, "SafeCast: value doesn't fit in 216 bits");
return uint216(value);
}
/**
* @dev Returns the downcasted uint208 from uint256, reverting on
* overflow (when the input is greater than largest uint208).
*
* Counterpart to Solidity's `uint208` operator.
*
* Requirements:
*
* - input must fit into 208 bits
*
* _Available since v4.7._
*/
function toUint208(uint256 value) internal pure returns (uint208) {
require(value <= type(uint208).max, "SafeCast: value doesn't fit in 208 bits");
return uint208(value);
}
/**
* @dev Returns the downcasted uint200 from uint256, reverting on
* overflow (when the input is greater than largest uint200).
*
* Counterpart to Solidity's `uint200` operator.
*
* Requirements:
*
* - input must fit into 200 bits
*
* _Available since v4.7._
*/
function toUint200(uint256 value) internal pure returns (uint200) {
require(value <= type(uint200).max, "SafeCast: value doesn't fit in 200 bits");
return uint200(value);
}
/**
* @dev Returns the downcasted uint192 from uint256, reverting on
* overflow (when the input is greater than largest uint192).
*
* Counterpart to Solidity's `uint192` operator.
*
* Requirements:
*
* - input must fit into 192 bits
*
* _Available since v4.7._
*/
function toUint192(uint256 value) internal pure returns (uint192) {
require(value <= type(uint192).max, "SafeCast: value doesn't fit in 192 bits");
return uint192(value);
}
/**
* @dev Returns the downcasted uint184 from uint256, reverting on
* overflow (when the input is greater than largest uint184).
*
* Counterpart to Solidity's `uint184` operator.
*
* Requirements:
*
* - input must fit into 184 bits
*
* _Available since v4.7._
*/
function toUint184(uint256 value) internal pure returns (uint184) {
require(value <= type(uint184).max, "SafeCast: value doesn't fit in 184 bits");
return uint184(value);
}
/**
* @dev Returns the downcasted uint176 from uint256, reverting on
* overflow (when the input is greater than largest uint176).
*
* Counterpart to Solidity's `uint176` operator.
*
* Requirements:
*
* - input must fit into 176 bits
*
* _Available since v4.7._
*/
function toUint176(uint256 value) internal pure returns (uint176) {
require(value <= type(uint176).max, "SafeCast: value doesn't fit in 176 bits");
return uint176(value);
}
/**
* @dev Returns the downcasted uint168 from uint256, reverting on
* overflow (when the input is greater than largest uint168).
*
* Counterpart to Solidity's `uint168` operator.
*
* Requirements:
*
* - input must fit into 168 bits
*
* _Available since v4.7._
*/
function toUint168(uint256 value) internal pure returns (uint168) {
require(value <= type(uint168).max, "SafeCast: value doesn't fit in 168 bits");
return uint168(value);
}
/**
* @dev Returns the downcasted uint160 from uint256, reverting on
* overflow (when the input is greater than largest uint160).
*
* Counterpart to Solidity's `uint160` operator.
*
* Requirements:
*
* - input must fit into 160 bits
*
* _Available since v4.7._
*/
function toUint160(uint256 value) internal pure returns (uint160) {
require(value <= type(uint160).max, "SafeCast: value doesn't fit in 160 bits");
return uint160(value);
}
/**
* @dev Returns the downcasted uint152 from uint256, reverting on
* overflow (when the input is greater than largest uint152).
*
* Counterpart to Solidity's `uint152` operator.
*
* Requirements:
*
* - input must fit into 152 bits
*
* _Available since v4.7._
*/
function toUint152(uint256 value) internal pure returns (uint152) {
require(value <= type(uint152).max, "SafeCast: value doesn't fit in 152 bits");
return uint152(value);
}
/**
* @dev Returns the downcasted uint144 from uint256, reverting on
* overflow (when the input is greater than largest uint144).
*
* Counterpart to Solidity's `uint144` operator.
*
* Requirements:
*
* - input must fit into 144 bits
*
* _Available since v4.7._
*/
function toUint144(uint256 value) internal pure returns (uint144) {
require(value <= type(uint144).max, "SafeCast: value doesn't fit in 144 bits");
return uint144(value);
}
/**
* @dev Returns the downcasted uint136 from uint256, reverting on
* overflow (when the input is greater than largest uint136).
*
* Counterpart to Solidity's `uint136` operator.
*
* Requirements:
*
* - input must fit into 136 bits
*
* _Available since v4.7._
*/
function toUint136(uint256 value) internal pure returns (uint136) {
require(value <= type(uint136).max, "SafeCast: value doesn't fit in 136 bits");
return uint136(value);
}
/**
* @dev Returns the downcasted uint128 from uint256, reverting on
* overflow (when the input is greater than largest uint128).
*
* Counterpart to Solidity's `uint128` operator.
*
* Requirements:
*
* - input must fit into 128 bits
*
* _Available since v2.5._
*/
function toUint128(uint256 value) internal pure returns (uint128) {
require(value <= type(uint128).max, "SafeCast: value doesn't fit in 128 bits");
return uint128(value);
}
/**
* @dev Returns the downcasted uint120 from uint256, reverting on
* overflow (when the input is greater than largest uint120).
*
* Counterpart to Solidity's `uint120` operator.
*
* Requirements:
*
* - input must fit into 120 bits
*
* _Available since v4.7._
*/
function toUint120(uint256 value) internal pure returns (uint120) {
require(value <= type(uint120).max, "SafeCast: value doesn't fit in 120 bits");
return uint120(value);
}
/**
* @dev Returns the downcasted uint112 from uint256, reverting on
* overflow (when the input is greater than largest uint112).
*
* Counterpart to Solidity's `uint112` operator.
*
* Requirements:
*
* - input must fit into 112 bits
*
* _Available since v4.7._
*/
function toUint112(uint256 value) internal pure returns (uint112) {
require(value <= type(uint112).max, "SafeCast: value doesn't fit in 112 bits");
return uint112(value);
}
/**
* @dev Returns the downcasted uint104 from uint256, reverting on
* overflow (when the input is greater than largest uint104).
*
* Counterpart to Solidity's `uint104` operator.
*
* Requirements:
*
* - input must fit into 104 bits
*
* _Available since v4.7._
*/
function toUint104(uint256 value) internal pure returns (uint104) {
require(value <= type(uint104).max, "SafeCast: value doesn't fit in 104 bits");
return uint104(value);
}
/**
* @dev Returns the downcasted uint96 from uint256, reverting on
* overflow (when the input is greater than largest uint96).
*
* Counterpart to Solidity's `uint96` operator.
*
* Requirements:
*
* - input must fit into 96 bits
*
* _Available since v4.2._
*/
function toUint96(uint256 value) internal pure returns (uint96) {
require(value <= type(uint96).max, "SafeCast: value doesn't fit in 96 bits");
return uint96(value);
}
/**
* @dev Returns the downcasted uint88 from uint256, reverting on
* overflow (when the input is greater than largest uint88).
*
* Counterpart to Solidity's `uint88` operator.
*
* Requirements:
*
* - input must fit into 88 bits
*
* _Available since v4.7._
*/
function toUint88(uint256 value) internal pure returns (uint88) {
require(value <= type(uint88).max, "SafeCast: value doesn't fit in 88 bits");
return uint88(value);
}
/**
* @dev Returns the downcasted uint80 from uint256, reverting on
* overflow (when the input is greater than largest uint80).
*
* Counterpart to Solidity's `uint80` operator.
*
* Requirements:
*
* - input must fit into 80 bits
*
* _Available since v4.7._
*/
function toUint80(uint256 value) internal pure returns (uint80) {
require(value <= type(uint80).max, "SafeCast: value doesn't fit in 80 bits");
return uint80(value);
}
/**
* @dev Returns the downcasted uint72 from uint256, reverting on
* overflow (when the input is greater than largest uint72).
*
* Counterpart to Solidity's `uint72` operator.
*
* Requirements:
*
* - input must fit into 72 bits
*
* _Available since v4.7._
*/
function toUint72(uint256 value) internal pure returns (uint72) {
require(value <= type(uint72).max, "SafeCast: value doesn't fit in 72 bits");
return uint72(value);
}
/**
* @dev Returns the downcasted uint64 from uint256, reverting on
* overflow (when the input is greater than largest uint64).
*
* Counterpart to Solidity's `uint64` operator.
*
* Requirements:
*
* - input must fit into 64 bits
*
* _Available since v2.5._
*/
function toUint64(uint256 value) internal pure returns (uint64) {
require(value <= type(uint64).max, "SafeCast: value doesn't fit in 64 bits");
return uint64(value);
}
/**
* @dev Returns the downcasted uint56 from uint256, reverting on
* overflow (when the input is greater than largest uint56).
*
* Counterpart to Solidity's `uint56` operator.
*
* Requirements:
*
* - input must fit into 56 bits
*
* _Available since v4.7._
*/
function toUint56(uint256 value) internal pure returns (uint56) {
require(value <= type(uint56).max, "SafeCast: value doesn't fit in 56 bits");
return uint56(value);
}
/**
* @dev Returns the downcasted uint48 from uint256, reverting on
* overflow (when the input is greater than largest uint48).
*
* Counterpart to Solidity's `uint48` operator.
*
* Requirements:
*
* - input must fit into 48 bits
*
* _Available since v4.7._
*/
function toUint48(uint256 value) internal pure returns (uint48) {
require(value <= type(uint48).max, "SafeCast: value doesn't fit in 48 bits");
return uint48(value);
}
/**
* @dev Returns the downcasted uint40 from uint256, reverting on
* overflow (when the input is greater than largest uint40).
*
* Counterpart to Solidity's `uint40` operator.
*
* Requirements:
*
* - input must fit into 40 bits
*
* _Available since v4.7._
*/
function toUint40(uint256 value) internal pure returns (uint40) {
require(value <= type(uint40).max, "SafeCast: value doesn't fit in 40 bits");
return uint40(value);
}
/**
* @dev Returns the downcasted uint32 from uint256, reverting on
* overflow (when the input is greater than largest uint32).
*
* Counterpart to Solidity's `uint32` operator.
*
* Requirements:
*
* - input must fit into 32 bits
*
* _Available since v2.5._
*/
function toUint32(uint256 value) internal pure returns (uint32) {
require(value <= type(uint32).max, "SafeCast: value doesn't fit in 32 bits");
return uint32(value);
}
/**
* @dev Returns the downcasted uint24 from uint256, reverting on
* overflow (when the input is greater than largest uint24).
*
* Counterpart to Solidity's `uint24` operator.
*
* Requirements:
*
* - input must fit into 24 bits
*
* _Available since v4.7._
*/
function toUint24(uint256 value) internal pure returns (uint24) {
require(value <= type(uint24).max, "SafeCast: value doesn't fit in 24 bits");
return uint24(value);
}
/**
* @dev Returns the downcasted uint16 from uint256, reverting on
* overflow (when the input is greater than largest uint16).
*
* Counterpart to Solidity's `uint16` operator.
*
* Requirements:
*
* - input must fit into 16 bits
*
* _Available since v2.5._
*/
function toUint16(uint256 value) internal pure returns (uint16) {
require(value <= type(uint16).max, "SafeCast: value doesn't fit in 16 bits");
return uint16(value);
}
/**
* @dev Returns the downcasted uint8 from uint256, reverting on
* overflow (when the input is greater than largest uint8).
*
* Counterpart to Solidity's `uint8` operator.
*
* Requirements:
*
* - input must fit into 8 bits
*
* _Available since v2.5._
*/
function toUint8(uint256 value) internal pure returns (uint8) {
require(value <= type(uint8).max, "SafeCast: value doesn't fit in 8 bits");
return uint8(value);
}
/**
* @dev Converts a signed int256 into an unsigned uint256.
*
* Requirements:
*
* - input must be greater than or equal to 0.
*
* _Available since v3.0._
*/
function toUint256(int256 value) internal pure returns (uint256) {
require(value >= 0, "SafeCast: value must be positive");
return uint256(value);
}
/**
* @dev Returns the downcasted int248 from int256, reverting on
* overflow (when the input is less than smallest int248 or
* greater than largest int248).
*
* Counterpart to Solidity's `int248` operator.
*
* Requirements:
*
* - input must fit into 248 bits
*
* _Available since v4.7._
*/
function toInt248(int256 value) internal pure returns (int248 downcasted) {
downcasted = int248(value);
require(downcasted == value, "SafeCast: value doesn't fit in 248 bits");
}
/**
* @dev Returns the downcasted int240 from int256, reverting on
* overflow (when the input is less than smallest int240 or
* greater than largest int240).
*
* Counterpart to Solidity's `int240` operator.
*
* Requirements:
*
* - input must fit into 240 bits
*
* _Available since v4.7._
*/
function toInt240(int256 value) internal pure returns (int240 downcasted) {
downcasted = int240(value);
require(downcasted == value, "SafeCast: value doesn't fit in 240 bits");
}
/**
* @dev Returns the downcasted int232 from int256, reverting on
* overflow (when the input is less than smallest int232 or
* greater than largest int232).
*
* Counterpart to Solidity's `int232` operator.
*
* Requirements:
*
* - input must fit into 232 bits
*
* _Available since v4.7._
*/
function toInt232(int256 value) internal pure returns (int232 downcasted) {
downcasted = int232(value);
require(downcasted == value, "SafeCast: value doesn't fit in 232 bits");
}
/**
* @dev Returns the downcasted int224 from int256, reverting on
* overflow (when the input is less than smallest int224 or
* greater than largest int224).
*
* Counterpart to Solidity's `int224` operator.
*
* Requirements:
*
* - input must fit into 224 bits
*
* _Available since v4.7._
*/
function toInt224(int256 value) internal pure returns (int224 downcasted) {
downcasted = int224(value);
require(downcasted == value, "SafeCast: value doesn't fit in 224 bits");
}
/**
* @dev Returns the downcasted int216 from int256, reverting on
* overflow (when the input is less than smallest int216 or
* greater than largest int216).
*
* Counterpart to Solidity's `int216` operator.
*
* Requirements:
*
* - input must fit into 216 bits
*
* _Available since v4.7._
*/
function toInt216(int256 value) internal pure returns (int216 downcasted) {
downcasted = int216(value);
require(downcasted == value, "SafeCast: value doesn't fit in 216 bits");
}
/**
* @dev Returns the downcasted int208 from int256, reverting on
* overflow (when the input is less than smallest int208 or
* greater than largest int208).
*
* Counterpart to Solidity's `int208` operator.
*
* Requirements:
*
* - input must fit into 208 bits
*
* _Available since v4.7._
*/
function toInt208(int256 value) internal pure returns (int208 downcasted) {
downcasted = int208(value);
require(downcasted == value, "SafeCast: value doesn't fit in 208 bits");
}
/**
* @dev Returns the downcasted int200 from int256, reverting on
* overflow (when the input is less than smallest int200 or
* greater than largest int200).
*
* Counterpart to Solidity's `int200` operator.
*
* Requirements:
*
* - input must fit into 200 bits
*
* _Available since v4.7._
*/
function toInt200(int256 value) internal pure returns (int200 downcasted) {
downcasted = int200(value);
require(downcasted == value, "SafeCast: value doesn't fit in 200 bits");
}
/**
* @dev Returns the downcasted int192 from int256, reverting on
* overflow (when the input is less than smallest int192 or
* greater than largest int192).
*
* Counterpart to Solidity's `int192` operator.
*
* Requirements:
*
* - input must fit into 192 bits
*
* _Available since v4.7._
*/
function toInt192(int256 value) internal pure returns (int192 downcasted) {
downcasted = int192(value);
require(downcasted == value, "SafeCast: value doesn't fit in 192 bits");
}
/**
* @dev Returns the downcasted int184 from int256, reverting on
* overflow (when the input is less than smallest int184 or
* greater than largest int184).
*
* Counterpart to Solidity's `int184` operator.
*
* Requirements:
*
* - input must fit into 184 bits
*
* _Available since v4.7._
*/
function toInt184(int256 value) internal pure returns (int184 downcasted) {
downcasted = int184(value);
require(downcasted == value, "SafeCast: value doesn't fit in 184 bits");
}
/**
* @dev Returns the downcasted int176 from int256, reverting on
* overflow (when the input is less than smallest int176 or
* greater than largest int176).
*
* Counterpart to Solidity's `int176` operator.
*
* Requirements:
*
* - input must fit into 176 bits
*
* _Available since v4.7._
*/
function toInt176(int256 value) internal pure returns (int176 downcasted) {
downcasted = int176(value);
require(downcasted == value, "SafeCast: value doesn't fit in 176 bits");
}
/**
* @dev Returns the downcasted int168 from int256, reverting on
* overflow (when the input is less than smallest int168 or
* greater than largest int168).
*
* Counterpart to Solidity's `int168` operator.
*
* Requirements:
*
* - input must fit into 168 bits
*
* _Available since v4.7._
*/
function toInt168(int256 value) internal pure returns (int168 downcasted) {
downcasted = int168(value);
require(downcasted == value, "SafeCast: value doesn't fit in 168 bits");
}
/**
* @dev Returns the downcasted int160 from int256, reverting on
* overflow (when the input is less than smallest int160 or
* greater than largest int160).
*
* Counterpart to Solidity's `int160` operator.
*
* Requirements:
*
* - input must fit into 160 bits
*
* _Available since v4.7._
*/
function toInt160(int256 value) internal pure returns (int160 downcasted) {
downcasted = int160(value);
require(downcasted == value, "SafeCast: value doesn't fit in 160 bits");
}
/**
* @dev Returns the downcasted int152 from int256, reverting on
* overflow (when the input is less than smallest int152 or
* greater than largest int152).
*
* Counterpart to Solidity's `int152` operator.
*
* Requirements:
*
* - input must fit into 152 bits
*
* _Available since v4.7._
*/
function toInt152(int256 value) internal pure returns (int152 downcasted) {
downcasted = int152(value);
require(downcasted == value, "SafeCast: value doesn't fit in 152 bits");
}
/**
* @dev Returns the downcasted int144 from int256, reverting on
* overflow (when the input is less than smallest int144 or
* greater than largest int144).
*
* Counterpart to Solidity's `int144` operator.
*
* Requirements:
*
* - input must fit into 144 bits
*
* _Available since v4.7._
*/
function toInt144(int256 value) internal pure returns (int144 downcasted) {
downcasted = int144(value);
require(downcasted == value, "SafeCast: value doesn't fit in 144 bits");
}
/**
* @dev Returns the downcasted int136 from int256, reverting on
* overflow (when the input is less than smallest int136 or
* greater than largest int136).
*
* Counterpart to Solidity's `int136` operator.
*
* Requirements:
*
* - input must fit into 136 bits
*
* _Available since v4.7._
*/
function toInt136(int256 value) internal pure returns (int136 downcasted) {
downcasted = int136(value);
require(downcasted == value, "SafeCast: value doesn't fit in 136 bits");
}
/**
* @dev Returns the downcasted int128 from int256, reverting on
* overflow (when the input is less than smallest int128 or
* greater than largest int128).
*
* Counterpart to Solidity's `int128` operator.
*
* Requirements:
*
* - input must fit into 128 bits
*
* _Available since v3.1._
*/
function toInt128(int256 value) internal pure returns (int128 downcasted) {
downcasted = int128(value);
require(downcasted == value, "SafeCast: value doesn't fit in 128 bits");
}
/**
* @dev Returns the downcasted int120 from int256, reverting on
* overflow (when the input is less than smallest int120 or
* greater than largest int120).
*
* Counterpart to Solidity's `int120` operator.
*
* Requirements:
*
* - input must fit into 120 bits
*
* _Available since v4.7._
*/
function toInt120(int256 value) internal pure returns (int120 downcasted) {
downcasted = int120(value);
require(downcasted == value, "SafeCast: value doesn't fit in 120 bits");
}
/**
* @dev Returns the downcasted int112 from int256, reverting on
* overflow (when the input is less than smallest int112 or
* greater than largest int112).
*
* Counterpart to Solidity's `int112` operator.
*
* Requirements:
*
* - input must fit into 112 bits
*
* _Available since v4.7._
*/
function toInt112(int256 value) internal pure returns (int112 downcasted) {
downcasted = int112(value);
require(downcasted == value, "SafeCast: value doesn't fit in 112 bits");
}
/**
* @dev Returns the downcasted int104 from int256, reverting on
* overflow (when the input is less than smallest int104 or
* greater than largest int104).
*
* Counterpart to Solidity's `int104` operator.
*
* Requirements:
*
* - input must fit into 104 bits
*
* _Available since v4.7._
*/
function toInt104(int256 value) internal pure returns (int104 downcasted) {
downcasted = int104(value);
require(downcasted == value, "SafeCast: value doesn't fit in 104 bits");
}
/**
* @dev Returns the downcasted int96 from int256, reverting on
* overflow (when the input is less than smallest int96 or
* greater than largest int96).
*
* Counterpart to Solidity's `int96` operator.
*
* Requirements:
*
* - input must fit into 96 bits
*
* _Available since v4.7._
*/
function toInt96(int256 value) internal pure returns (int96 downcasted) {
downcasted = int96(value);
require(downcasted == value, "SafeCast: value doesn't fit in 96 bits");
}
/**
* @dev Returns the downcasted int88 from int256, reverting on
* overflow (when the input is less than smallest int88 or
* greater than largest int88).
*
* Counterpart to Solidity's `int88` operator.
*
* Requirements:
*
* - input must fit into 88 bits
*
* _Available since v4.7._
*/
function toInt88(int256 value) internal pure returns (int88 downcasted) {
downcasted = int88(value);
require(downcasted == value, "SafeCast: value doesn't fit in 88 bits");
}
/**
* @dev Returns the downcasted int80 from int256, reverting on
* overflow (when the input is less than smallest int80 or
* greater than largest int80).
*
* Counterpart to Solidity's `int80` operator.
*
* Requirements:
*
* - input must fit into 80 bits
*
* _Available since v4.7._
*/
function toInt80(int256 value) internal pure returns (int80 downcasted) {
downcasted = int80(value);
require(downcasted == value, "SafeCast: value doesn't fit in 80 bits");
}
/**
* @dev Returns the downcasted int72 from int256, reverting on
* overflow (when the input is less than smallest int72 or
* greater than largest int72).
*
* Counterpart to Solidity's `int72` operator.
*
* Requirements:
*
* - input must fit into 72 bits
*
* _Available since v4.7._
*/
function toInt72(int256 value) internal pure returns (int72 downcasted) {
downcasted = int72(value);
require(downcasted == value, "SafeCast: value doesn't fit in 72 bits");
}
/**
* @dev Returns the downcasted int64 from int256, reverting on
* overflow (when the input is less than smallest int64 or
* greater than largest int64).
*
* Counterpart to Solidity's `int64` operator.
*
* Requirements:
*
* - input must fit into 64 bits
*
* _Available since v3.1._
*/
function toInt64(int256 value) internal pure returns (int64 downcasted) {
downcasted = int64(value);
require(downcasted == value, "SafeCast: value doesn't fit in 64 bits");
}
/**
* @dev Returns the downcasted int56 from int256, reverting on
* overflow (when the input is less than smallest int56 or
* greater than largest int56).
*
* Counterpart to Solidity's `int56` operator.
*
* Requirements:
*
* - input must fit into 56 bits
*
* _Available since v4.7._
*/
function toInt56(int256 value) internal pure returns (int56 downcasted) {
downcasted = int56(value);
require(downcasted == value, "SafeCast: value doesn't fit in 56 bits");
}
/**
* @dev Returns the downcasted int48 from int256, reverting on
* overflow (when the input is less than smallest int48 or
* greater than largest int48).
*
* Counterpart to Solidity's `int48` operator.
*
* Requirements:
*
* - input must fit into 48 bits
*
* _Available since v4.7._
*/
function toInt48(int256 value) internal pure returns (int48 downcasted) {
downcasted = int48(value);
require(downcasted == value, "SafeCast: value doesn't fit in 48 bits");
}
/**
* @dev Returns the downcasted int40 from int256, reverting on
* overflow (when the input is less than smallest int40 or
* greater than largest int40).
*
* Counterpart to Solidity's `int40` operator.
*
* Requirements:
*
* - input must fit into 40 bits
*
* _Available since v4.7._
*/
function toInt40(int256 value) internal pure returns (int40 downcasted) {
downcasted = int40(value);
require(downcasted == value, "SafeCast: value doesn't fit in 40 bits");
}
/**
* @dev Returns the downcasted int32 from int256, reverting on
* overflow (when the input is less than smallest int32 or
* greater than largest int32).
*
* Counterpart to Solidity's `int32` operator.
*
* Requirements:
*
* - input must fit into 32 bits
*
* _Available since v3.1._
*/
function toInt32(int256 value) internal pure returns (int32 downcasted) {
downcasted = int32(value);
require(downcasted == value, "SafeCast: value doesn't fit in 32 bits");
}
/**
* @dev Returns the downcasted int24 from int256, reverting on
* overflow (when the input is less than smallest int24 or
* greater than largest int24).
*
* Counterpart to Solidity's `int24` operator.
*
* Requirements:
*
* - input must fit into 24 bits
*
* _Available since v4.7._
*/
function toInt24(int256 value) internal pure returns (int24 downcasted) {
downcasted = int24(value);
require(downcasted == value, "SafeCast: value doesn't fit in 24 bits");
}
/**
* @dev Returns the downcasted int16 from int256, reverting on
* overflow (when the input is less than smallest int16 or
* greater than largest int16).
*
* Counterpart to Solidity's `int16` operator.
*
* Requirements:
*
* - input must fit into 16 bits
*
* _Available since v3.1._
*/
function toInt16(int256 value) internal pure returns (int16 downcasted) {
downcasted = int16(value);
require(downcasted == value, "SafeCast: value doesn't fit in 16 bits");
}
/**
* @dev Returns the downcasted int8 from int256, reverting on
* overflow (when the input is less than smallest int8 or
* greater than largest int8).
*
* Counterpart to Solidity's `int8` operator.
*
* Requirements:
*
* - input must fit into 8 bits
*
* _Available since v3.1._
*/
function toInt8(int256 value) internal pure returns (int8 downcasted) {
downcasted = int8(value);
require(downcasted == value, "SafeCast: value doesn't fit in 8 bits");
}
/**
* @dev Converts an unsigned uint256 into a signed int256.
*
* Requirements:
*
* - input must be less than or equal to maxInt256.
*
* _Available since v3.0._
*/
function toInt256(uint256 value) internal pure returns (int256) {
// Note: Unsafe cast below is okay because `type(int256).max` is guaranteed to be positive
require(value <= uint256(type(int256).max), "SafeCast: value doesn't fit in an int256");
return int256(value);
}
}// SPDX-License-Identifier: AGPL-3.0-or-later pragma solidity ^0.8.8; /// @title IMembership /// @author Aragon X - 2022-2023 /// @notice An interface to be implemented by DAO plugins that define membership. /// @custom:security-contact [email protected] interface IMembership { /// @notice Emitted when members are added to the DAO plugin. /// @param members The list of new members being added. event MembersAdded(address[] members); /// @notice Emitted when members are removed from the DAO plugin. /// @param members The list of existing members being removed. event MembersRemoved(address[] members); /// @notice Emitted to announce the membership being defined by a contract. /// @param definingContract The contract defining the membership. event MembershipContractAnnounced(address indexed definingContract); /// @notice Checks if an account is a member of the DAO. /// @param _account The address of the account to be checked. /// @return Whether the account is a member or not. /// @dev This function must be implemented in the plugin contract that introduces the members to the DAO. function isMember(address _account) external view returns (bool); }
// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {CheckpointsUpgradeable} from "@openzeppelin/contracts-upgradeable/utils/CheckpointsUpgradeable.sol";
import {_uncheckedAdd, _uncheckedSub} from "../../../utils/math/UncheckedMath.sol";
/// @title Addresslist
/// @author Aragon X - 2021-2023
/// @notice The majority voting implementation using a list of member addresses.
/// @dev This contract inherits from `MajorityVotingBase` and implements the `IMajorityVoting` interface.
/// @custom:security-contact [email protected]
abstract contract Addresslist {
using CheckpointsUpgradeable for CheckpointsUpgradeable.History;
/// @notice The mapping containing the checkpointed history of the address list.
// solhint-disable-next-line named-parameters-mapping
mapping(address => CheckpointsUpgradeable.History) private _addresslistCheckpoints;
/// @notice The checkpointed history of the length of the address list.
CheckpointsUpgradeable.History private _addresslistLengthCheckpoints;
/// @notice Thrown when the address list update is invalid, which can be caused by the addition of an existing member or removal of a non-existing member.
/// @param member The array of member addresses to be added or removed.
error InvalidAddresslistUpdate(address member);
/// @notice Checks if an account is on the address list at a specific block number.
/// @param _account The account address being checked.
/// @param _blockNumber The block number.
/// @return Whether the account is listed at the specified block number.
function isListedAtBlock(
address _account,
uint256 _blockNumber
) public view virtual returns (bool) {
return _addresslistCheckpoints[_account].getAtBlock(_blockNumber) == 1;
}
/// @notice Checks if an account is currently on the address list.
/// @param _account The account address being checked.
/// @return Whether the account is currently listed.
function isListed(address _account) public view virtual returns (bool) {
return _addresslistCheckpoints[_account].latest() == 1;
}
/// @notice Returns the length of the address list at a specific block number.
/// @param _blockNumber The specific block to get the count from. If `0`, then the latest checkpoint value is returned.
/// @return The address list length at the specified block number.
function addresslistLengthAtBlock(uint256 _blockNumber) public view virtual returns (uint256) {
return _addresslistLengthCheckpoints.getAtBlock(_blockNumber);
}
/// @notice Returns the current length of the address list.
/// @return The current address list length.
function addresslistLength() public view virtual returns (uint256) {
return _addresslistLengthCheckpoints.latest();
}
/// @notice Internal function to add new addresses to the address list.
/// @param _newAddresses The new addresses to be added.
function _addAddresses(address[] calldata _newAddresses) internal virtual {
for (uint256 i; i < _newAddresses.length; ) {
if (isListed(_newAddresses[i])) {
revert InvalidAddresslistUpdate(_newAddresses[i]);
}
// Mark the address as listed
_addresslistCheckpoints[_newAddresses[i]].push(1);
unchecked {
++i;
}
}
_addresslistLengthCheckpoints.push(_uncheckedAdd, _newAddresses.length);
}
/// @notice Internal function to remove existing addresses from the address list.
/// @param _exitingAddresses The existing addresses to be removed.
function _removeAddresses(address[] calldata _exitingAddresses) internal virtual {
for (uint256 i; i < _exitingAddresses.length; ) {
if (!isListed(_exitingAddresses[i])) {
revert InvalidAddresslistUpdate(_exitingAddresses[i]);
}
// Mark the address as not listed
_addresslistCheckpoints[_exitingAddresses[i]].push(0);
unchecked {
++i;
}
}
_addresslistLengthCheckpoints.push(_uncheckedSub, _exitingAddresses.length);
}
/// @dev This empty reserved space is put in place to allow future versions to add new
/// variables without shifting down storage in the inheritance chain.
/// https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps
uint256[48] private __gap;
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {CountersUpgradeable} from "@openzeppelin/contracts-upgradeable/utils/CountersUpgradeable.sol";
import {ERC165Upgradeable} from "@openzeppelin/contracts-upgradeable/utils/introspection/ERC165Upgradeable.sol";
import {IProposal} from "./IProposal.sol";
/// @title ProposalUpgradeable
/// @author Aragon X - 2022-2024
/// @notice An abstract contract containing the traits and internal functionality to create and execute proposals
/// that can be inherited by upgradeable DAO plugins.
/// @custom:security-contact [email protected]
abstract contract ProposalUpgradeable is IProposal, ERC165Upgradeable {
using CountersUpgradeable for CountersUpgradeable.Counter;
error FunctionDeprecated();
/// @notice The incremental ID for proposals and executions.
CountersUpgradeable.Counter private proposalCounter;
/// @inheritdoc IProposal
function proposalCount() public view virtual override returns (uint256) {
revert FunctionDeprecated();
}
/// @notice Creates a proposal Id.
/// @dev Uses block number and chain id to ensure more probability of uniqueness.
/// @param _salt The extra salt to help with uniqueness.
/// @return The id of the proposal.
function _createProposalId(bytes32 _salt) internal view virtual returns (uint256) {
return uint256(keccak256(abi.encode(block.chainid, block.number, address(this), _salt)));
}
/// @notice Checks if this or the parent contract supports an interface by its ID.
/// @dev In addition to the current interfaceId, also support previous version of the interfaceId
/// that did not include the following functions:
/// `createProposal`, `hasSucceeded`, `execute`, `canExecute`, `customProposalParamsABI`.
/// @param _interfaceId The ID of the interface.
/// @return Returns `true` if the interface is supported.
function supportsInterface(bytes4 _interfaceId) public view virtual override returns (bool) {
return
_interfaceId ==
type(IProposal).interfaceId ^
IProposal.createProposal.selector ^
IProposal.hasSucceeded.selector ^
IProposal.execute.selector ^
IProposal.canExecute.selector ^
IProposal.customProposalParamsABI.selector ||
_interfaceId == type(IProposal).interfaceId ||
super.supportsInterface(_interfaceId);
}
/// @notice This empty reserved space is put in place to allow future versions to add new variables
/// without shifting down storage in the inheritance chain
/// (see [OpenZeppelin's guide about storage gaps](https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps)).
uint256[49] private __gap;
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {Action} from "../../../executors/IExecutor.sol";
/// @title IProposal
/// @author Aragon X - 2022-2024
/// @notice An interface to be implemented by DAO plugins that create and execute proposals.
/// @custom:security-contact [email protected]
interface IProposal {
/// @notice Emitted when a proposal is created.
/// @param proposalId The ID of the proposal.
/// @param creator The creator of the proposal.
/// @param startDate The start date of the proposal in seconds.
/// @param endDate The end date of the proposal in seconds.
/// @param metadata The metadata of the proposal.
/// @param actions The actions that will be executed if the proposal passes.
/// @param allowFailureMap A bitmap allowing the proposal to succeed, even if individual actions might revert.
/// If the bit at index `i` is 1, the proposal succeeds even if the `i`th action reverts.
/// A failure map value of 0 requires every action to not revert.
event ProposalCreated(
uint256 indexed proposalId,
address indexed creator,
uint64 startDate,
uint64 endDate,
bytes metadata,
Action[] actions,
uint256 allowFailureMap
);
/// @notice Emitted when a proposal is executed.
/// @param proposalId The ID of the proposal.
event ProposalExecuted(uint256 indexed proposalId);
/// @notice Creates a new proposal.
/// @param _metadata The metadata of the proposal.
/// @param _actions The actions that will be executed after the proposal passes.
/// @param _startDate The start date of the proposal.
/// @param _endDate The end date of the proposal.
/// @param _data The additional abi-encoded data to include more necessary fields.
/// @return proposalId The id of the proposal.
function createProposal(
bytes memory _metadata,
Action[] memory _actions,
uint64 _startDate,
uint64 _endDate,
bytes memory _data
) external returns (uint256 proposalId);
/// @notice Whether proposal succeeded or not.
/// @dev Note that this must not include time window checks and only make a decision based on the thresholds.
/// @param _proposalId The id of the proposal.
/// @return Returns if proposal has been succeeded or not without including time window checks.
function hasSucceeded(uint256 _proposalId) external view returns (bool);
/// @notice Executes a proposal.
/// @param _proposalId The ID of the proposal to be executed.
function execute(uint256 _proposalId) external;
/// @notice Checks if a proposal can be executed.
/// @param _proposalId The ID of the proposal to be checked.
/// @return True if the proposal can be executed, false otherwise.
function canExecute(uint256 _proposalId) external view returns (bool);
/// @notice The human-readable abi format for extra params included in `data` of `createProposal`.
/// @dev Used for UI to easily detect what extra params the contract expects.
/// @return ABI of params in `data` of `createProposal`.
function customProposalParamsABI() external view returns (string memory);
/// @notice Returns the proposal count which determines the next proposal ID.
/// @dev This function is deprecated but remains in the interface for backward compatibility.
/// It now reverts to prevent ambiguity.
/// @return The proposal count.
function proposalCount() external view returns (uint256);
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {ERC165Upgradeable} from "@openzeppelin/contracts-upgradeable/utils/introspection/ERC165Upgradeable.sol";
import {DaoAuthorizableUpgradeable} from "../../permission/auth/DaoAuthorizableUpgradeable.sol";
/// @title MetadataExtensionUpgradeable
/// @author Aragon X - 2024
/// @notice An abstract, upgradeable contract for managing and retrieving metadata associated with a plugin.
/// @dev Due to the requirements that already existing upgradeable plugins need to start inheritting from this,
/// we're required to use hardcoded/specific slots for storage instead of sequential slots with gaps.
/// @custom:security-contact [email protected]
abstract contract MetadataExtensionUpgradeable is ERC165Upgradeable, DaoAuthorizableUpgradeable {
/// @notice The ID of the permission required to call the `setMetadata` function.
bytes32 public constant SET_METADATA_PERMISSION_ID = keccak256("SET_METADATA_PERMISSION");
// keccak256(abi.encode(uint256(keccak256("osx-commons.storage.MetadataExtension")) - 1)) & ~bytes32(uint256(0xff))
// solhint-disable-next-line const-name-snakecase
bytes32 private constant MetadataExtensionStorageLocation =
0x47ff9796f72d439c6e5c30a24b9fad985a00c85a9f2258074c400a94f8746b00;
/// @notice Emitted when metadata is updated.
event MetadataSet(bytes metadata);
struct MetadataExtensionStorage {
bytes metadata;
}
function _getMetadataExtensionStorage()
private
pure
returns (MetadataExtensionStorage storage $)
{
// solhint-disable-next-line no-inline-assembly
assembly {
$.slot := MetadataExtensionStorageLocation
}
}
/// @notice Checks if this or the parent contract supports an interface by its ID.
/// @param _interfaceId The ID of the interface.
/// @return Returns `true` if the interface is supported.
function supportsInterface(bytes4 _interfaceId) public view virtual override returns (bool) {
return
_interfaceId == this.setMetadata.selector ^ this.getMetadata.selector ||
super.supportsInterface(_interfaceId);
}
/// @notice Allows to update only the metadata.
/// @param _metadata The utf8 bytes of a content addressing cid that stores plugin's information.
function setMetadata(bytes calldata _metadata) public virtual auth(SET_METADATA_PERMISSION_ID) {
_setMetadata(_metadata);
}
/// @notice Returns the metadata currently applied.
/// @return The The utf8 bytes of a content addressing cid.
function getMetadata() public view returns (bytes memory) {
MetadataExtensionStorage storage $ = _getMetadataExtensionStorage();
return $.metadata;
}
/// @notice Internal function to update metadata.
/// @param _metadata The utf8 bytes of a content addressing cid that stores contract's information.
function _setMetadata(bytes memory _metadata) internal virtual {
MetadataExtensionStorage storage $ = _getMetadataExtensionStorage();
$.metadata = _metadata;
emit MetadataSet(_metadata);
}
}// SPDX-License-Identifier: AGPL-3.0-or-later pragma solidity ^0.8.8; /// @title IMultisig /// @author Aragon X - 2022-2024 /// @notice An interface for an on-chain multisig governance plugin in which a proposal passes /// if X out of Y approvals are met. /// @custom:security-contact [email protected] interface IMultisig { /// @notice Adds new members to the address list. Previously, it checks if the new address /// list length would be greater than `type(uint16).max`, the maximal number of approvals. /// @param _members The addresses of the members to be added. function addAddresses(address[] calldata _members) external; /// @notice Removes existing members from the address list. Previously, it checks if the /// new address list length is at least as long as the minimum approvals parameter requires. /// Note that `minApprovals` is must be at least 1 so the address list cannot become empty. /// @param _members The addresses of the members to be removed. function removeAddresses(address[] calldata _members) external; /// @notice Records an approval for a proposal and, if specified, attempts execution if certain conditions are met. /// @param _proposalId The ID of the proposal to approve. /// @param _tryExecution If `true`, attempts execution of the proposal after approval, without reverting on failure. function approve(uint256 _proposalId, bool _tryExecution) external; /// @notice Checks if an account is eligible to participate in a proposal vote. /// Confirms that the proposal is open, the account is listed as a member, /// and the account has not previously voted or approved this proposal. /// @param _proposalId The ID of the proposal. /// @param _account The address of the account to check. /// @return True if the account is eligible to vote. function canApprove(uint256 _proposalId, address _account) external view returns (bool); /// @notice Checks if a proposal can be executed. /// @param _proposalId The ID of the proposal to be checked. /// @return True if the proposal can be executed, false otherwise. function canExecute(uint256 _proposalId) external view returns (bool); /// @notice Returns whether the account has approved the proposal. /// @param _proposalId The ID of the proposal. /// @param _account The account address to be checked. /// @return The vote option cast by a voter for a certain proposal. function hasApproved(uint256 _proposalId, address _account) external view returns (bool); /// @notice Executes a proposal if all execution conditions are met. /// @param _proposalId The ID of the proposal to be executed. function execute(uint256 _proposalId) external; }
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.6.0) (proxy/Proxy.sol)
pragma solidity ^0.8.0;
/**
* @dev This abstract contract provides a fallback function that delegates all calls to another contract using the EVM
* instruction `delegatecall`. We refer to the second contract as the _implementation_ behind the proxy, and it has to
* be specified by overriding the virtual {_implementation} function.
*
* Additionally, delegation to the implementation can be triggered manually through the {_fallback} function, or to a
* different contract through the {_delegate} function.
*
* The success and return data of the delegated call will be returned back to the caller of the proxy.
*/
abstract contract Proxy {
/**
* @dev Delegates the current call to `implementation`.
*
* This function does not return to its internal call site, it will return directly to the external caller.
*/
function _delegate(address implementation) internal virtual {
assembly {
// Copy msg.data. We take full control of memory in this inline assembly
// block because it will not return to Solidity code. We overwrite the
// Solidity scratch pad at memory position 0.
calldatacopy(0, 0, calldatasize())
// Call the implementation.
// out and outsize are 0 because we don't know the size yet.
let result := delegatecall(gas(), implementation, 0, calldatasize(), 0, 0)
// Copy the returned data.
returndatacopy(0, 0, returndatasize())
switch result
// delegatecall returns 0 on error.
case 0 {
revert(0, returndatasize())
}
default {
return(0, returndatasize())
}
}
}
/**
* @dev This is a virtual function that should be overridden so it returns the address to which the fallback function
* and {_fallback} should delegate.
*/
function _implementation() internal view virtual returns (address);
/**
* @dev Delegates the current call to the address returned by `_implementation()`.
*
* This function does not return to its internal call site, it will return directly to the external caller.
*/
function _fallback() internal virtual {
_beforeFallback();
_delegate(_implementation());
}
/**
* @dev Fallback function that delegates calls to the address returned by `_implementation()`. Will run if no other
* function in the contract matches the call data.
*/
fallback() external payable virtual {
_fallback();
}
/**
* @dev Fallback function that delegates calls to the address returned by `_implementation()`. Will run if call data
* is empty.
*/
receive() external payable virtual {
_fallback();
}
/**
* @dev Hook that is called before falling back to the implementation. Can happen as part of a manual `_fallback`
* call, or as part of the Solidity `fallback` or `receive` functions.
*
* If overridden should call `super._beforeFallback()`.
*/
function _beforeFallback() internal virtual {}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (proxy/ERC1967/ERC1967Upgrade.sol)
pragma solidity ^0.8.2;
import "../beacon/IBeacon.sol";
import "../../interfaces/IERC1967.sol";
import "../../interfaces/draft-IERC1822.sol";
import "../../utils/Address.sol";
import "../../utils/StorageSlot.sol";
/**
* @dev This abstract contract provides getters and event emitting update functions for
* https://eips.ethereum.org/EIPS/eip-1967[EIP1967] slots.
*
* _Available since v4.1._
*/
abstract contract ERC1967Upgrade is IERC1967 {
// This is the keccak-256 hash of "eip1967.proxy.rollback" subtracted by 1
bytes32 private constant _ROLLBACK_SLOT = 0x4910fdfa16fed3260ed0e7147f7cc6da11a60208b5b9406d12a635614ffd9143;
/**
* @dev Storage slot with the address of the current implementation.
* This is the keccak-256 hash of "eip1967.proxy.implementation" subtracted by 1, and is
* validated in the constructor.
*/
bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
/**
* @dev Returns the current implementation address.
*/
function _getImplementation() internal view returns (address) {
return StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value;
}
/**
* @dev Stores a new address in the EIP1967 implementation slot.
*/
function _setImplementation(address newImplementation) private {
require(Address.isContract(newImplementation), "ERC1967: new implementation is not a contract");
StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
}
/**
* @dev Perform implementation upgrade
*
* Emits an {Upgraded} event.
*/
function _upgradeTo(address newImplementation) internal {
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
}
/**
* @dev Perform implementation upgrade with additional setup call.
*
* Emits an {Upgraded} event.
*/
function _upgradeToAndCall(address newImplementation, bytes memory data, bool forceCall) internal {
_upgradeTo(newImplementation);
if (data.length > 0 || forceCall) {
Address.functionDelegateCall(newImplementation, data);
}
}
/**
* @dev Perform implementation upgrade with security checks for UUPS proxies, and additional setup call.
*
* Emits an {Upgraded} event.
*/
function _upgradeToAndCallUUPS(address newImplementation, bytes memory data, bool forceCall) internal {
// Upgrades from old implementations will perform a rollback test. This test requires the new
// implementation to upgrade back to the old, non-ERC1822 compliant, implementation. Removing
// this special case will break upgrade paths from old UUPS implementation to new ones.
if (StorageSlot.getBooleanSlot(_ROLLBACK_SLOT).value) {
_setImplementation(newImplementation);
} else {
try IERC1822Proxiable(newImplementation).proxiableUUID() returns (bytes32 slot) {
require(slot == _IMPLEMENTATION_SLOT, "ERC1967Upgrade: unsupported proxiableUUID");
} catch {
revert("ERC1967Upgrade: new implementation is not UUPS");
}
_upgradeToAndCall(newImplementation, data, forceCall);
}
}
/**
* @dev Storage slot with the admin of the contract.
* This is the keccak-256 hash of "eip1967.proxy.admin" subtracted by 1, and is
* validated in the constructor.
*/
bytes32 internal constant _ADMIN_SLOT = 0xb53127684a568b3173ae13b9f8a6016e243e63b6e8ee1178d6a717850b5d6103;
/**
* @dev Returns the current admin.
*/
function _getAdmin() internal view returns (address) {
return StorageSlot.getAddressSlot(_ADMIN_SLOT).value;
}
/**
* @dev Stores a new address in the EIP1967 admin slot.
*/
function _setAdmin(address newAdmin) private {
require(newAdmin != address(0), "ERC1967: new admin is the zero address");
StorageSlot.getAddressSlot(_ADMIN_SLOT).value = newAdmin;
}
/**
* @dev Changes the admin of the proxy.
*
* Emits an {AdminChanged} event.
*/
function _changeAdmin(address newAdmin) internal {
emit AdminChanged(_getAdmin(), newAdmin);
_setAdmin(newAdmin);
}
/**
* @dev The storage slot of the UpgradeableBeacon contract which defines the implementation for this proxy.
* This is bytes32(uint256(keccak256('eip1967.proxy.beacon')) - 1)) and is validated in the constructor.
*/
bytes32 internal constant _BEACON_SLOT = 0xa3f0ad74e5423aebfd80d3ef4346578335a9a72aeaee59ff6cb3582b35133d50;
/**
* @dev Returns the current beacon.
*/
function _getBeacon() internal view returns (address) {
return StorageSlot.getAddressSlot(_BEACON_SLOT).value;
}
/**
* @dev Stores a new beacon in the EIP1967 beacon slot.
*/
function _setBeacon(address newBeacon) private {
require(Address.isContract(newBeacon), "ERC1967: new beacon is not a contract");
require(
Address.isContract(IBeacon(newBeacon).implementation()),
"ERC1967: beacon implementation is not a contract"
);
StorageSlot.getAddressSlot(_BEACON_SLOT).value = newBeacon;
}
/**
* @dev Perform beacon upgrade with additional setup call. Note: This upgrades the address of the beacon, it does
* not upgrade the implementation contained in the beacon (see {UpgradeableBeacon-_setImplementation} for that).
*
* Emits a {BeaconUpgraded} event.
*/
function _upgradeBeaconToAndCall(address newBeacon, bytes memory data, bool forceCall) internal {
_setBeacon(newBeacon);
emit BeaconUpgraded(newBeacon);
if (data.length > 0 || forceCall) {
Address.functionDelegateCall(IBeacon(newBeacon).implementation(), data);
}
}
}//SPDX-License-Identifier: MIT
pragma solidity >=0.8.4;
import "./profiles/IABIResolver.sol";
import "./profiles/IAddressResolver.sol";
import "./profiles/IAddrResolver.sol";
import "./profiles/IContentHashResolver.sol";
import "./profiles/IDNSRecordResolver.sol";
import "./profiles/IDNSZoneResolver.sol";
import "./profiles/IInterfaceResolver.sol";
import "./profiles/INameResolver.sol";
import "./profiles/IPubkeyResolver.sol";
import "./profiles/ITextResolver.sol";
import "./ISupportsInterface.sol";
/**
* A generic resolver interface which includes all the functions including the ones deprecated
*/
interface Resolver is ISupportsInterface, IABIResolver, IAddressResolver, IAddrResolver, IContentHashResolver, IDNSRecordResolver, IDNSZoneResolver, IInterfaceResolver, INameResolver, IPubkeyResolver, ITextResolver {
/* Deprecated events */
event ContentChanged(bytes32 indexed node, bytes32 hash);
function setABI(bytes32 node, uint256 contentType, bytes calldata data) external;
function setAddr(bytes32 node, address addr) external;
function setAddr(bytes32 node, uint coinType, bytes calldata a) external;
function setContenthash(bytes32 node, bytes calldata hash) external;
function setDnsrr(bytes32 node, bytes calldata data) external;
function setName(bytes32 node, string calldata _name) external;
function setPubkey(bytes32 node, bytes32 x, bytes32 y) external;
function setText(bytes32 node, string calldata key, string calldata value) external;
function setInterface(bytes32 node, bytes4 interfaceID, address implementer) external;
function multicall(bytes[] calldata data) external returns(bytes[] memory results);
/* Deprecated functions */
function content(bytes32 node) external view returns (bytes32);
function multihash(bytes32 node) external view returns (bytes memory);
function setContent(bytes32 node, bytes32 hash) external;
function setMultihash(bytes32 node, bytes calldata hash) external;
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {ContextUpgradeable} from "@openzeppelin/contracts-upgradeable/utils/ContextUpgradeable.sol";
import {IDAO} from "../../dao/IDAO.sol";
import {_auth} from "./auth.sol";
/// @title DaoAuthorizableUpgradeable
/// @author Aragon X - 2022-2023
/// @notice An abstract contract providing a meta-transaction compatible modifier for upgradeable or cloneable contracts to authorize function calls through an associated DAO.
/// @dev Make sure to call `__DaoAuthorizableUpgradeable_init` during initialization of the inheriting contract.
/// @custom:security-contact [email protected]
abstract contract DaoAuthorizableUpgradeable is ContextUpgradeable {
/// @notice The associated DAO managing the permissions of inheriting contracts.
IDAO private dao_;
/// @notice Initializes the contract by setting the associated DAO.
/// @param _dao The associated DAO address.
// solhint-disable-next-line func-name-mixedcase
function __DaoAuthorizableUpgradeable_init(IDAO _dao) internal onlyInitializing {
dao_ = _dao;
}
/// @notice Returns the DAO contract.
/// @return The DAO contract.
function dao() public view returns (IDAO) {
return dao_;
}
/// @notice A modifier to make functions on inheriting contracts authorized. Permissions to call the function are checked through the associated DAO's permission manager.
/// @param _permissionId The permission identifier required to call the method this modifier is applied to.
modifier auth(bytes32 _permissionId) {
_auth(dao_, address(this), _msgSender(), _permissionId, _msgData());
_;
}
/// @notice This empty reserved space is put in place to allow future versions to add new variables without shifting down storage in the inheritance chain (see [OpenZeppelin's guide about storage gaps](https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps)).
uint256[49] private __gap;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.5.0) (interfaces/draft-IERC1822.sol)
pragma solidity ^0.8.0;
/**
* @dev ERC1822: Universal Upgradeable Proxy Standard (UUPS) documents a method for upgradeability through a simplified
* proxy whose upgrades are fully controlled by the current implementation.
*/
interface IERC1822ProxiableUpgradeable {
/**
* @dev Returns the storage slot that the proxiable contract assumes is being used to store the implementation
* address.
*
* IMPORTANT: A proxy pointing at a proxiable contract should not be considered proxiable itself, because this risks
* bricking a proxy that upgrades to it, by delegating to itself until out of gas. Thus it is critical that this
* function revert if invoked through a proxy.
*/
function proxiableUUID() external view returns (bytes32);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (proxy/ERC1967/ERC1967Upgrade.sol)
pragma solidity ^0.8.2;
import "../beacon/IBeaconUpgradeable.sol";
import "../../interfaces/IERC1967Upgradeable.sol";
import "../../interfaces/draft-IERC1822Upgradeable.sol";
import "../../utils/AddressUpgradeable.sol";
import "../../utils/StorageSlotUpgradeable.sol";
import {Initializable} from "../utils/Initializable.sol";
/**
* @dev This abstract contract provides getters and event emitting update functions for
* https://eips.ethereum.org/EIPS/eip-1967[EIP1967] slots.
*
* _Available since v4.1._
*/
abstract contract ERC1967UpgradeUpgradeable is Initializable, IERC1967Upgradeable {
// This is the keccak-256 hash of "eip1967.proxy.rollback" subtracted by 1
bytes32 private constant _ROLLBACK_SLOT = 0x4910fdfa16fed3260ed0e7147f7cc6da11a60208b5b9406d12a635614ffd9143;
/**
* @dev Storage slot with the address of the current implementation.
* This is the keccak-256 hash of "eip1967.proxy.implementation" subtracted by 1, and is
* validated in the constructor.
*/
bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
function __ERC1967Upgrade_init() internal onlyInitializing {
}
function __ERC1967Upgrade_init_unchained() internal onlyInitializing {
}
/**
* @dev Returns the current implementation address.
*/
function _getImplementation() internal view returns (address) {
return StorageSlotUpgradeable.getAddressSlot(_IMPLEMENTATION_SLOT).value;
}
/**
* @dev Stores a new address in the EIP1967 implementation slot.
*/
function _setImplementation(address newImplementation) private {
require(AddressUpgradeable.isContract(newImplementation), "ERC1967: new implementation is not a contract");
StorageSlotUpgradeable.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
}
/**
* @dev Perform implementation upgrade
*
* Emits an {Upgraded} event.
*/
function _upgradeTo(address newImplementation) internal {
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
}
/**
* @dev Perform implementation upgrade with additional setup call.
*
* Emits an {Upgraded} event.
*/
function _upgradeToAndCall(address newImplementation, bytes memory data, bool forceCall) internal {
_upgradeTo(newImplementation);
if (data.length > 0 || forceCall) {
AddressUpgradeable.functionDelegateCall(newImplementation, data);
}
}
/**
* @dev Perform implementation upgrade with security checks for UUPS proxies, and additional setup call.
*
* Emits an {Upgraded} event.
*/
function _upgradeToAndCallUUPS(address newImplementation, bytes memory data, bool forceCall) internal {
// Upgrades from old implementations will perform a rollback test. This test requires the new
// implementation to upgrade back to the old, non-ERC1822 compliant, implementation. Removing
// this special case will break upgrade paths from old UUPS implementation to new ones.
if (StorageSlotUpgradeable.getBooleanSlot(_ROLLBACK_SLOT).value) {
_setImplementation(newImplementation);
} else {
try IERC1822ProxiableUpgradeable(newImplementation).proxiableUUID() returns (bytes32 slot) {
require(slot == _IMPLEMENTATION_SLOT, "ERC1967Upgrade: unsupported proxiableUUID");
} catch {
revert("ERC1967Upgrade: new implementation is not UUPS");
}
_upgradeToAndCall(newImplementation, data, forceCall);
}
}
/**
* @dev Storage slot with the admin of the contract.
* This is the keccak-256 hash of "eip1967.proxy.admin" subtracted by 1, and is
* validated in the constructor.
*/
bytes32 internal constant _ADMIN_SLOT = 0xb53127684a568b3173ae13b9f8a6016e243e63b6e8ee1178d6a717850b5d6103;
/**
* @dev Returns the current admin.
*/
function _getAdmin() internal view returns (address) {
return StorageSlotUpgradeable.getAddressSlot(_ADMIN_SLOT).value;
}
/**
* @dev Stores a new address in the EIP1967 admin slot.
*/
function _setAdmin(address newAdmin) private {
require(newAdmin != address(0), "ERC1967: new admin is the zero address");
StorageSlotUpgradeable.getAddressSlot(_ADMIN_SLOT).value = newAdmin;
}
/**
* @dev Changes the admin of the proxy.
*
* Emits an {AdminChanged} event.
*/
function _changeAdmin(address newAdmin) internal {
emit AdminChanged(_getAdmin(), newAdmin);
_setAdmin(newAdmin);
}
/**
* @dev The storage slot of the UpgradeableBeacon contract which defines the implementation for this proxy.
* This is bytes32(uint256(keccak256('eip1967.proxy.beacon')) - 1)) and is validated in the constructor.
*/
bytes32 internal constant _BEACON_SLOT = 0xa3f0ad74e5423aebfd80d3ef4346578335a9a72aeaee59ff6cb3582b35133d50;
/**
* @dev Returns the current beacon.
*/
function _getBeacon() internal view returns (address) {
return StorageSlotUpgradeable.getAddressSlot(_BEACON_SLOT).value;
}
/**
* @dev Stores a new beacon in the EIP1967 beacon slot.
*/
function _setBeacon(address newBeacon) private {
require(AddressUpgradeable.isContract(newBeacon), "ERC1967: new beacon is not a contract");
require(
AddressUpgradeable.isContract(IBeaconUpgradeable(newBeacon).implementation()),
"ERC1967: beacon implementation is not a contract"
);
StorageSlotUpgradeable.getAddressSlot(_BEACON_SLOT).value = newBeacon;
}
/**
* @dev Perform beacon upgrade with additional setup call. Note: This upgrades the address of the beacon, it does
* not upgrade the implementation contained in the beacon (see {UpgradeableBeacon-_setImplementation} for that).
*
* Emits a {BeaconUpgraded} event.
*/
function _upgradeBeaconToAndCall(address newBeacon, bytes memory data, bool forceCall) internal {
_setBeacon(newBeacon);
emit BeaconUpgraded(newBeacon);
if (data.length > 0 || forceCall) {
AddressUpgradeable.functionDelegateCall(IBeaconUpgradeable(newBeacon).implementation(), data);
}
}
/**
* @dev This empty reserved space is put in place to allow future versions to add new
* variables without shifting down storage in the inheritance chain.
* See https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps
*/
uint256[50] private __gap;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.4) (token/ERC20/extensions/IERC20Permit.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC20 Permit extension allowing approvals to be made via signatures, as defined in
* https://eips.ethereum.org/EIPS/eip-2612[EIP-2612].
*
* Adds the {permit} method, which can be used to change an account's ERC20 allowance (see {IERC20-allowance}) by
* presenting a message signed by the account. By not relying on {IERC20-approve}, the token holder account doesn't
* need to send a transaction, and thus is not required to hold Ether at all.
*
* ==== Security Considerations
*
* There are two important considerations concerning the use of `permit`. The first is that a valid permit signature
* expresses an allowance, and it should not be assumed to convey additional meaning. In particular, it should not be
* considered as an intention to spend the allowance in any specific way. The second is that because permits have
* built-in replay protection and can be submitted by anyone, they can be frontrun. A protocol that uses permits should
* take this into consideration and allow a `permit` call to fail. Combining these two aspects, a pattern that may be
* generally recommended is:
*
* ```solidity
* function doThingWithPermit(..., uint256 value, uint256 deadline, uint8 v, bytes32 r, bytes32 s) public {
* try token.permit(msg.sender, address(this), value, deadline, v, r, s) {} catch {}
* doThing(..., value);
* }
*
* function doThing(..., uint256 value) public {
* token.safeTransferFrom(msg.sender, address(this), value);
* ...
* }
* ```
*
* Observe that: 1) `msg.sender` is used as the owner, leaving no ambiguity as to the signer intent, and 2) the use of
* `try/catch` allows the permit to fail and makes the code tolerant to frontrunning. (See also
* {SafeERC20-safeTransferFrom}).
*
* Additionally, note that smart contract wallets (such as Argent or Safe) are not able to produce permit signatures, so
* contracts should have entry points that don't rely on permit.
*/
interface IERC20PermitUpgradeable {
/**
* @dev Sets `value` as the allowance of `spender` over ``owner``'s tokens,
* given ``owner``'s signed approval.
*
* IMPORTANT: The same issues {IERC20-approve} has related to transaction
* ordering also apply here.
*
* Emits an {Approval} event.
*
* Requirements:
*
* - `spender` cannot be the zero address.
* - `deadline` must be a timestamp in the future.
* - `v`, `r` and `s` must be a valid `secp256k1` signature from `owner`
* over the EIP712-formatted function arguments.
* - the signature must use ``owner``'s current nonce (see {nonces}).
*
* For more information on the signature format, see the
* https://eips.ethereum.org/EIPS/eip-2612#specification[relevant EIP
* section].
*
* CAUTION: See Security Considerations above.
*/
function permit(
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) external;
/**
* @dev Returns the current nonce for `owner`. This value must be
* included whenever a signature is generated for {permit}.
*
* Every successful call to {permit} increases ``owner``'s nonce by one. This
* prevents a signature from being used multiple times.
*/
function nonces(address owner) external view returns (uint256);
/**
* @dev Returns the domain separator used in the encoding of the signature for {permit}, as defined by {EIP712}.
*/
// solhint-disable-next-line func-name-mixedcase
function DOMAIN_SEPARATOR() external view returns (bytes32);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/introspection/IERC165.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC165 standard, as defined in the
* https://eips.ethereum.org/EIPS/eip-165[EIP].
*
* Implementers can declare support of contract interfaces, which can then be
* queried by others ({ERC165Checker}).
*
* For an implementation, see {ERC165}.
*/
interface IERC165Upgradeable {
/**
* @dev Returns true if this contract implements the interface defined by
* `interfaceId`. See the corresponding
* https://eips.ethereum.org/EIPS/eip-165#how-interfaces-are-identified[EIP section]
* to learn more about how these ids are created.
*
* This function call must use less than 30 000 gas.
*/
function supportsInterface(bytes4 interfaceId) external view returns (bool);
}// SPDX-License-Identifier: AGPL-3.0-or-later pragma solidity ^0.8.8; /// @title IPermissionCondition /// @author Aragon X - 2021-2023 /// @notice An interface to be implemented to support custom permission logic. /// @dev To attach a condition to a permission, the `grantWithCondition` function must be used and refer to the implementing contract's address with the `condition` argument. /// @custom:security-contact [email protected] interface IPermissionCondition { /// @notice Checks if a call is permitted. /// @param _where The address of the target contract. /// @param _who The address (EOA or contract) for which the permissions are checked. /// @param _permissionId The permission identifier. /// @param _data Optional data passed to the `PermissionCondition` implementation. /// @return isPermitted Returns true if the call is permitted. function isGranted( address _where, address _who, bytes32 _permissionId, bytes calldata _data ) external view returns (bool isPermitted); }
// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {ERC165} from "@openzeppelin/contracts/utils/introspection/ERC165.sol";
import {IProtocolVersion} from "../../utils/versioning/IProtocolVersion.sol";
import {ProtocolVersion} from "../../utils/versioning/ProtocolVersion.sol";
import {IPermissionCondition} from "./IPermissionCondition.sol";
/// @title PermissionCondition
/// @author Aragon X - 2023
/// @notice An abstract contract for non-upgradeable contracts instantiated via the `new` keyword to inherit from to support customary permissions depending on arbitrary on-chain state.
/// @custom:security-contact [email protected]
abstract contract PermissionCondition is ERC165, IPermissionCondition, ProtocolVersion {
/// @notice Checks if an interface is supported by this or its parent contract.
/// @param _interfaceId The ID of the interface.
/// @return Returns `true` if the interface is supported.
function supportsInterface(bytes4 _interfaceId) public view virtual override returns (bool) {
return
_interfaceId == type(IPermissionCondition).interfaceId ||
_interfaceId == type(IProtocolVersion).interfaceId ||
super.supportsInterface(_interfaceId);
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/introspection/IERC165.sol)
pragma solidity ^0.8.0;
/**
* @dev Interface of the ERC165 standard, as defined in the
* https://eips.ethereum.org/EIPS/eip-165[EIP].
*
* Implementers can declare support of contract interfaces, which can then be
* queried by others ({ERC165Checker}).
*
* For an implementation, see {ERC165}.
*/
interface IERC165 {
/**
* @dev Returns true if this contract implements the interface defined by
* `interfaceId`. See the corresponding
* https://eips.ethereum.org/EIPS/eip-165#how-interfaces-are-identified[EIP section]
* to learn more about how these ids are created.
*
* This function call must use less than 30 000 gas.
*/
function supportsInterface(bytes4 interfaceId) external view returns (bool);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (proxy/Clones.sol)
pragma solidity ^0.8.0;
/**
* @dev https://eips.ethereum.org/EIPS/eip-1167[EIP 1167] is a standard for
* deploying minimal proxy contracts, also known as "clones".
*
* > To simply and cheaply clone contract functionality in an immutable way, this standard specifies
* > a minimal bytecode implementation that delegates all calls to a known, fixed address.
*
* The library includes functions to deploy a proxy using either `create` (traditional deployment) or `create2`
* (salted deterministic deployment). It also includes functions to predict the addresses of clones deployed using the
* deterministic method.
*
* _Available since v3.4._
*/
library Clones {
/**
* @dev Deploys and returns the address of a clone that mimics the behaviour of `implementation`.
*
* This function uses the create opcode, which should never revert.
*/
function clone(address implementation) internal returns (address instance) {
/// @solidity memory-safe-assembly
assembly {
// Cleans the upper 96 bits of the `implementation` word, then packs the first 3 bytes
// of the `implementation` address with the bytecode before the address.
mstore(0x00, or(shr(0xe8, shl(0x60, implementation)), 0x3d602d80600a3d3981f3363d3d373d3d3d363d73000000))
// Packs the remaining 17 bytes of `implementation` with the bytecode after the address.
mstore(0x20, or(shl(0x78, implementation), 0x5af43d82803e903d91602b57fd5bf3))
instance := create(0, 0x09, 0x37)
}
require(instance != address(0), "ERC1167: create failed");
}
/**
* @dev Deploys and returns the address of a clone that mimics the behaviour of `implementation`.
*
* This function uses the create2 opcode and a `salt` to deterministically deploy
* the clone. Using the same `implementation` and `salt` multiple time will revert, since
* the clones cannot be deployed twice at the same address.
*/
function cloneDeterministic(address implementation, bytes32 salt) internal returns (address instance) {
/// @solidity memory-safe-assembly
assembly {
// Cleans the upper 96 bits of the `implementation` word, then packs the first 3 bytes
// of the `implementation` address with the bytecode before the address.
mstore(0x00, or(shr(0xe8, shl(0x60, implementation)), 0x3d602d80600a3d3981f3363d3d373d3d3d363d73000000))
// Packs the remaining 17 bytes of `implementation` with the bytecode after the address.
mstore(0x20, or(shl(0x78, implementation), 0x5af43d82803e903d91602b57fd5bf3))
instance := create2(0, 0x09, 0x37, salt)
}
require(instance != address(0), "ERC1167: create2 failed");
}
/**
* @dev Computes the address of a clone deployed using {Clones-cloneDeterministic}.
*/
function predictDeterministicAddress(
address implementation,
bytes32 salt,
address deployer
) internal pure returns (address predicted) {
/// @solidity memory-safe-assembly
assembly {
let ptr := mload(0x40)
mstore(add(ptr, 0x38), deployer)
mstore(add(ptr, 0x24), 0x5af43d82803e903d91602b57fd5bf3ff)
mstore(add(ptr, 0x14), implementation)
mstore(ptr, 0x3d602d80600a3d3981f3363d3d373d3d3d363d73)
mstore(add(ptr, 0x58), salt)
mstore(add(ptr, 0x78), keccak256(add(ptr, 0x0c), 0x37))
predicted := keccak256(add(ptr, 0x43), 0x55)
}
}
/**
* @dev Computes the address of a clone deployed using {Clones-cloneDeterministic}.
*/
function predictDeterministicAddress(
address implementation,
bytes32 salt
) internal view returns (address predicted) {
return predictDeterministicAddress(implementation, salt, address(this));
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (utils/Address.sol)
pragma solidity ^0.8.1;
/**
* @dev Collection of functions related to the address type
*/
library Address {
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]
* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* - an externally-owned account
* - a contract in construction
* - an address where a contract will be created
* - an address where a contract lived, but was destroyed
*
* Furthermore, `isContract` will also return true if the target contract within
* the same transaction is already scheduled for destruction by `SELFDESTRUCT`,
* which only has an effect at the end of a transaction.
* ====
*
* [IMPORTANT]
* ====
* You shouldn't rely on `isContract` to protect against flash loan attacks!
*
* Preventing calls from contracts is highly discouraged. It breaks composability, breaks support for smart wallets
* like Gnosis Safe, and does not provide security since it can be circumvented by calling from a contract
* constructor.
* ====
*/
function isContract(address account) internal view returns (bool) {
// This method relies on extcodesize/address.code.length, which returns 0
// for contracts in construction, since the code is only stored at the end
// of the constructor execution.
return account.code.length > 0;
}
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://consensys.net/diligence/blog/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.8.0/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/
function sendValue(address payable recipient, uint256 amount) internal {
require(address(this).balance >= amount, "Address: insufficient balance");
(bool success, ) = recipient.call{value: amount}("");
require(success, "Address: unable to send value, recipient may have reverted");
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain `call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, "Address: low-level call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCall(
address target,
bytes memory data,
string memory errorMessage
) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/
function functionCallWithValue(address target, bytes memory data, uint256 value) internal returns (bytes memory) {
return functionCallWithValue(target, data, value, "Address: low-level call with value failed");
}
/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCallWithValue(
address target,
bytes memory data,
uint256 value,
string memory errorMessage
) internal returns (bytes memory) {
require(address(this).balance >= value, "Address: insufficient balance for call");
(bool success, bytes memory returndata) = target.call{value: value}(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
return functionStaticCall(target, data, "Address: low-level static call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(
address target,
bytes memory data,
string memory errorMessage
) internal view returns (bytes memory) {
(bool success, bytes memory returndata) = target.staticcall(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(address target, bytes memory data) internal returns (bytes memory) {
return functionDelegateCall(target, data, "Address: low-level delegate call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(
address target,
bytes memory data,
string memory errorMessage
) internal returns (bytes memory) {
(bool success, bytes memory returndata) = target.delegatecall(data);
return verifyCallResultFromTarget(target, success, returndata, errorMessage);
}
/**
* @dev Tool to verify that a low level call to smart-contract was successful, and revert (either by bubbling
* the revert reason or using the provided one) in case of unsuccessful call or if target was not a contract.
*
* _Available since v4.8._
*/
function verifyCallResultFromTarget(
address target,
bool success,
bytes memory returndata,
string memory errorMessage
) internal view returns (bytes memory) {
if (success) {
if (returndata.length == 0) {
// only check isContract if the call was successful and the return data is empty
// otherwise we already know that it was a contract
require(isContract(target), "Address: call to non-contract");
}
return returndata;
} else {
_revert(returndata, errorMessage);
}
}
/**
* @dev Tool to verify that a low level call was successful, and revert if it wasn't, either by bubbling the
* revert reason or using the provided one.
*
* _Available since v4.3._
*/
function verifyCallResult(
bool success,
bytes memory returndata,
string memory errorMessage
) internal pure returns (bytes memory) {
if (success) {
return returndata;
} else {
_revert(returndata, errorMessage);
}
}
function _revert(bytes memory returndata, string memory errorMessage) private pure {
// Look for revert reason and bubble it up if present
if (returndata.length > 0) {
// The easiest way to bubble the revert reason is using memory via assembly
/// @solidity memory-safe-assembly
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (utils/Checkpoints.sol)
// This file was procedurally generated from scripts/generate/templates/Checkpoints.js.
pragma solidity ^0.8.0;
import "./math/MathUpgradeable.sol";
import "./math/SafeCastUpgradeable.sol";
/**
* @dev This library defines the `History` struct, for checkpointing values as they change at different points in
* time, and later looking up past values by block number. See {Votes} as an example.
*
* To create a history of checkpoints define a variable type `Checkpoints.History` in your contract, and store a new
* checkpoint for the current transaction block using the {push} function.
*
* _Available since v4.5._
*/
library CheckpointsUpgradeable {
struct History {
Checkpoint[] _checkpoints;
}
struct Checkpoint {
uint32 _blockNumber;
uint224 _value;
}
/**
* @dev Returns the value at a given block number. If a checkpoint is not available at that block, the closest one
* before it is returned, or zero otherwise. Because the number returned corresponds to that at the end of the
* block, the requested block number must be in the past, excluding the current block.
*/
function getAtBlock(History storage self, uint256 blockNumber) internal view returns (uint256) {
require(blockNumber < block.number, "Checkpoints: block not yet mined");
uint32 key = SafeCastUpgradeable.toUint32(blockNumber);
uint256 len = self._checkpoints.length;
uint256 pos = _upperBinaryLookup(self._checkpoints, key, 0, len);
return pos == 0 ? 0 : _unsafeAccess(self._checkpoints, pos - 1)._value;
}
/**
* @dev Returns the value at a given block number. If a checkpoint is not available at that block, the closest one
* before it is returned, or zero otherwise. Similar to {upperLookup} but optimized for the case when the searched
* checkpoint is probably "recent", defined as being among the last sqrt(N) checkpoints where N is the number of
* checkpoints.
*/
function getAtProbablyRecentBlock(History storage self, uint256 blockNumber) internal view returns (uint256) {
require(blockNumber < block.number, "Checkpoints: block not yet mined");
uint32 key = SafeCastUpgradeable.toUint32(blockNumber);
uint256 len = self._checkpoints.length;
uint256 low = 0;
uint256 high = len;
if (len > 5) {
uint256 mid = len - MathUpgradeable.sqrt(len);
if (key < _unsafeAccess(self._checkpoints, mid)._blockNumber) {
high = mid;
} else {
low = mid + 1;
}
}
uint256 pos = _upperBinaryLookup(self._checkpoints, key, low, high);
return pos == 0 ? 0 : _unsafeAccess(self._checkpoints, pos - 1)._value;
}
/**
* @dev Pushes a value onto a History so that it is stored as the checkpoint for the current block.
*
* Returns previous value and new value.
*/
function push(History storage self, uint256 value) internal returns (uint256, uint256) {
return _insert(self._checkpoints, SafeCastUpgradeable.toUint32(block.number), SafeCastUpgradeable.toUint224(value));
}
/**
* @dev Pushes a value onto a History, by updating the latest value using binary operation `op`. The new value will
* be set to `op(latest, delta)`.
*
* Returns previous value and new value.
*/
function push(
History storage self,
function(uint256, uint256) view returns (uint256) op,
uint256 delta
) internal returns (uint256, uint256) {
return push(self, op(latest(self), delta));
}
/**
* @dev Returns the value in the most recent checkpoint, or zero if there are no checkpoints.
*/
function latest(History storage self) internal view returns (uint224) {
uint256 pos = self._checkpoints.length;
return pos == 0 ? 0 : _unsafeAccess(self._checkpoints, pos - 1)._value;
}
/**
* @dev Returns whether there is a checkpoint in the structure (i.e. it is not empty), and if so the key and value
* in the most recent checkpoint.
*/
function latestCheckpoint(
History storage self
) internal view returns (bool exists, uint32 _blockNumber, uint224 _value) {
uint256 pos = self._checkpoints.length;
if (pos == 0) {
return (false, 0, 0);
} else {
Checkpoint memory ckpt = _unsafeAccess(self._checkpoints, pos - 1);
return (true, ckpt._blockNumber, ckpt._value);
}
}
/**
* @dev Returns the number of checkpoint.
*/
function length(History storage self) internal view returns (uint256) {
return self._checkpoints.length;
}
/**
* @dev Pushes a (`key`, `value`) pair into an ordered list of checkpoints, either by inserting a new checkpoint,
* or by updating the last one.
*/
function _insert(Checkpoint[] storage self, uint32 key, uint224 value) private returns (uint224, uint224) {
uint256 pos = self.length;
if (pos > 0) {
// Copying to memory is important here.
Checkpoint memory last = _unsafeAccess(self, pos - 1);
// Checkpoint keys must be non-decreasing.
require(last._blockNumber <= key, "Checkpoint: decreasing keys");
// Update or push new checkpoint
if (last._blockNumber == key) {
_unsafeAccess(self, pos - 1)._value = value;
} else {
self.push(Checkpoint({_blockNumber: key, _value: value}));
}
return (last._value, value);
} else {
self.push(Checkpoint({_blockNumber: key, _value: value}));
return (0, value);
}
}
/**
* @dev Return the index of the last (most recent) checkpoint with key lower or equal than the search key, or `high` if there is none.
* `low` and `high` define a section where to do the search, with inclusive `low` and exclusive `high`.
*
* WARNING: `high` should not be greater than the array's length.
*/
function _upperBinaryLookup(
Checkpoint[] storage self,
uint32 key,
uint256 low,
uint256 high
) private view returns (uint256) {
while (low < high) {
uint256 mid = MathUpgradeable.average(low, high);
if (_unsafeAccess(self, mid)._blockNumber > key) {
high = mid;
} else {
low = mid + 1;
}
}
return high;
}
/**
* @dev Return the index of the first (oldest) checkpoint with key is greater or equal than the search key, or `high` if there is none.
* `low` and `high` define a section where to do the search, with inclusive `low` and exclusive `high`.
*
* WARNING: `high` should not be greater than the array's length.
*/
function _lowerBinaryLookup(
Checkpoint[] storage self,
uint32 key,
uint256 low,
uint256 high
) private view returns (uint256) {
while (low < high) {
uint256 mid = MathUpgradeable.average(low, high);
if (_unsafeAccess(self, mid)._blockNumber < key) {
low = mid + 1;
} else {
high = mid;
}
}
return high;
}
/**
* @dev Access an element of the array without performing bounds check. The position is assumed to be within bounds.
*/
function _unsafeAccess(Checkpoint[] storage self, uint256 pos) private pure returns (Checkpoint storage result) {
assembly {
mstore(0, self.slot)
result.slot := add(keccak256(0, 0x20), pos)
}
}
struct Trace224 {
Checkpoint224[] _checkpoints;
}
struct Checkpoint224 {
uint32 _key;
uint224 _value;
}
/**
* @dev Pushes a (`key`, `value`) pair into a Trace224 so that it is stored as the checkpoint.
*
* Returns previous value and new value.
*/
function push(Trace224 storage self, uint32 key, uint224 value) internal returns (uint224, uint224) {
return _insert(self._checkpoints, key, value);
}
/**
* @dev Returns the value in the first (oldest) checkpoint with key greater or equal than the search key, or zero if there is none.
*/
function lowerLookup(Trace224 storage self, uint32 key) internal view returns (uint224) {
uint256 len = self._checkpoints.length;
uint256 pos = _lowerBinaryLookup(self._checkpoints, key, 0, len);
return pos == len ? 0 : _unsafeAccess(self._checkpoints, pos)._value;
}
/**
* @dev Returns the value in the last (most recent) checkpoint with key lower or equal than the search key, or zero if there is none.
*/
function upperLookup(Trace224 storage self, uint32 key) internal view returns (uint224) {
uint256 len = self._checkpoints.length;
uint256 pos = _upperBinaryLookup(self._checkpoints, key, 0, len);
return pos == 0 ? 0 : _unsafeAccess(self._checkpoints, pos - 1)._value;
}
/**
* @dev Returns the value in the last (most recent) checkpoint with key lower or equal than the search key, or zero if there is none.
*
* NOTE: This is a variant of {upperLookup} that is optimised to find "recent" checkpoint (checkpoints with high keys).
*/
function upperLookupRecent(Trace224 storage self, uint32 key) internal view returns (uint224) {
uint256 len = self._checkpoints.length;
uint256 low = 0;
uint256 high = len;
if (len > 5) {
uint256 mid = len - MathUpgradeable.sqrt(len);
if (key < _unsafeAccess(self._checkpoints, mid)._key) {
high = mid;
} else {
low = mid + 1;
}
}
uint256 pos = _upperBinaryLookup(self._checkpoints, key, low, high);
return pos == 0 ? 0 : _unsafeAccess(self._checkpoints, pos - 1)._value;
}
/**
* @dev Returns the value in the most recent checkpoint, or zero if there are no checkpoints.
*/
function latest(Trace224 storage self) internal view returns (uint224) {
uint256 pos = self._checkpoints.length;
return pos == 0 ? 0 : _unsafeAccess(self._checkpoints, pos - 1)._value;
}
/**
* @dev Returns whether there is a checkpoint in the structure (i.e. it is not empty), and if so the key and value
* in the most recent checkpoint.
*/
function latestCheckpoint(Trace224 storage self) internal view returns (bool exists, uint32 _key, uint224 _value) {
uint256 pos = self._checkpoints.length;
if (pos == 0) {
return (false, 0, 0);
} else {
Checkpoint224 memory ckpt = _unsafeAccess(self._checkpoints, pos - 1);
return (true, ckpt._key, ckpt._value);
}
}
/**
* @dev Returns the number of checkpoint.
*/
function length(Trace224 storage self) internal view returns (uint256) {
return self._checkpoints.length;
}
/**
* @dev Pushes a (`key`, `value`) pair into an ordered list of checkpoints, either by inserting a new checkpoint,
* or by updating the last one.
*/
function _insert(Checkpoint224[] storage self, uint32 key, uint224 value) private returns (uint224, uint224) {
uint256 pos = self.length;
if (pos > 0) {
// Copying to memory is important here.
Checkpoint224 memory last = _unsafeAccess(self, pos - 1);
// Checkpoint keys must be non-decreasing.
require(last._key <= key, "Checkpoint: decreasing keys");
// Update or push new checkpoint
if (last._key == key) {
_unsafeAccess(self, pos - 1)._value = value;
} else {
self.push(Checkpoint224({_key: key, _value: value}));
}
return (last._value, value);
} else {
self.push(Checkpoint224({_key: key, _value: value}));
return (0, value);
}
}
/**
* @dev Return the index of the last (most recent) checkpoint with key lower or equal than the search key, or `high` if there is none.
* `low` and `high` define a section where to do the search, with inclusive `low` and exclusive `high`.
*
* WARNING: `high` should not be greater than the array's length.
*/
function _upperBinaryLookup(
Checkpoint224[] storage self,
uint32 key,
uint256 low,
uint256 high
) private view returns (uint256) {
while (low < high) {
uint256 mid = MathUpgradeable.average(low, high);
if (_unsafeAccess(self, mid)._key > key) {
high = mid;
} else {
low = mid + 1;
}
}
return high;
}
/**
* @dev Return the index of the first (oldest) checkpoint with key is greater or equal than the search key, or `high` if there is none.
* `low` and `high` define a section where to do the search, with inclusive `low` and exclusive `high`.
*
* WARNING: `high` should not be greater than the array's length.
*/
function _lowerBinaryLookup(
Checkpoint224[] storage self,
uint32 key,
uint256 low,
uint256 high
) private view returns (uint256) {
while (low < high) {
uint256 mid = MathUpgradeable.average(low, high);
if (_unsafeAccess(self, mid)._key < key) {
low = mid + 1;
} else {
high = mid;
}
}
return high;
}
/**
* @dev Access an element of the array without performing bounds check. The position is assumed to be within bounds.
*/
function _unsafeAccess(
Checkpoint224[] storage self,
uint256 pos
) private pure returns (Checkpoint224 storage result) {
assembly {
mstore(0, self.slot)
result.slot := add(keccak256(0, 0x20), pos)
}
}
struct Trace160 {
Checkpoint160[] _checkpoints;
}
struct Checkpoint160 {
uint96 _key;
uint160 _value;
}
/**
* @dev Pushes a (`key`, `value`) pair into a Trace160 so that it is stored as the checkpoint.
*
* Returns previous value and new value.
*/
function push(Trace160 storage self, uint96 key, uint160 value) internal returns (uint160, uint160) {
return _insert(self._checkpoints, key, value);
}
/**
* @dev Returns the value in the first (oldest) checkpoint with key greater or equal than the search key, or zero if there is none.
*/
function lowerLookup(Trace160 storage self, uint96 key) internal view returns (uint160) {
uint256 len = self._checkpoints.length;
uint256 pos = _lowerBinaryLookup(self._checkpoints, key, 0, len);
return pos == len ? 0 : _unsafeAccess(self._checkpoints, pos)._value;
}
/**
* @dev Returns the value in the last (most recent) checkpoint with key lower or equal than the search key, or zero if there is none.
*/
function upperLookup(Trace160 storage self, uint96 key) internal view returns (uint160) {
uint256 len = self._checkpoints.length;
uint256 pos = _upperBinaryLookup(self._checkpoints, key, 0, len);
return pos == 0 ? 0 : _unsafeAccess(self._checkpoints, pos - 1)._value;
}
/**
* @dev Returns the value in the last (most recent) checkpoint with key lower or equal than the search key, or zero if there is none.
*
* NOTE: This is a variant of {upperLookup} that is optimised to find "recent" checkpoint (checkpoints with high keys).
*/
function upperLookupRecent(Trace160 storage self, uint96 key) internal view returns (uint160) {
uint256 len = self._checkpoints.length;
uint256 low = 0;
uint256 high = len;
if (len > 5) {
uint256 mid = len - MathUpgradeable.sqrt(len);
if (key < _unsafeAccess(self._checkpoints, mid)._key) {
high = mid;
} else {
low = mid + 1;
}
}
uint256 pos = _upperBinaryLookup(self._checkpoints, key, low, high);
return pos == 0 ? 0 : _unsafeAccess(self._checkpoints, pos - 1)._value;
}
/**
* @dev Returns the value in the most recent checkpoint, or zero if there are no checkpoints.
*/
function latest(Trace160 storage self) internal view returns (uint160) {
uint256 pos = self._checkpoints.length;
return pos == 0 ? 0 : _unsafeAccess(self._checkpoints, pos - 1)._value;
}
/**
* @dev Returns whether there is a checkpoint in the structure (i.e. it is not empty), and if so the key and value
* in the most recent checkpoint.
*/
function latestCheckpoint(Trace160 storage self) internal view returns (bool exists, uint96 _key, uint160 _value) {
uint256 pos = self._checkpoints.length;
if (pos == 0) {
return (false, 0, 0);
} else {
Checkpoint160 memory ckpt = _unsafeAccess(self._checkpoints, pos - 1);
return (true, ckpt._key, ckpt._value);
}
}
/**
* @dev Returns the number of checkpoint.
*/
function length(Trace160 storage self) internal view returns (uint256) {
return self._checkpoints.length;
}
/**
* @dev Pushes a (`key`, `value`) pair into an ordered list of checkpoints, either by inserting a new checkpoint,
* or by updating the last one.
*/
function _insert(Checkpoint160[] storage self, uint96 key, uint160 value) private returns (uint160, uint160) {
uint256 pos = self.length;
if (pos > 0) {
// Copying to memory is important here.
Checkpoint160 memory last = _unsafeAccess(self, pos - 1);
// Checkpoint keys must be non-decreasing.
require(last._key <= key, "Checkpoint: decreasing keys");
// Update or push new checkpoint
if (last._key == key) {
_unsafeAccess(self, pos - 1)._value = value;
} else {
self.push(Checkpoint160({_key: key, _value: value}));
}
return (last._value, value);
} else {
self.push(Checkpoint160({_key: key, _value: value}));
return (0, value);
}
}
/**
* @dev Return the index of the last (most recent) checkpoint with key lower or equal than the search key, or `high` if there is none.
* `low` and `high` define a section where to do the search, with inclusive `low` and exclusive `high`.
*
* WARNING: `high` should not be greater than the array's length.
*/
function _upperBinaryLookup(
Checkpoint160[] storage self,
uint96 key,
uint256 low,
uint256 high
) private view returns (uint256) {
while (low < high) {
uint256 mid = MathUpgradeable.average(low, high);
if (_unsafeAccess(self, mid)._key > key) {
high = mid;
} else {
low = mid + 1;
}
}
return high;
}
/**
* @dev Return the index of the first (oldest) checkpoint with key is greater or equal than the search key, or `high` if there is none.
* `low` and `high` define a section where to do the search, with inclusive `low` and exclusive `high`.
*
* WARNING: `high` should not be greater than the array's length.
*/
function _lowerBinaryLookup(
Checkpoint160[] storage self,
uint96 key,
uint256 low,
uint256 high
) private view returns (uint256) {
while (low < high) {
uint256 mid = MathUpgradeable.average(low, high);
if (_unsafeAccess(self, mid)._key < key) {
low = mid + 1;
} else {
high = mid;
}
}
return high;
}
/**
* @dev Access an element of the array without performing bounds check. The position is assumed to be within bounds.
*/
function _unsafeAccess(
Checkpoint160[] storage self,
uint256 pos
) private pure returns (Checkpoint160 storage result) {
assembly {
mstore(0, self.slot)
result.slot := add(keccak256(0, 0x20), pos)
}
}
}// SPDX-License-Identifier: AGPL-3.0-or-later pragma solidity ^0.8.8; /// @notice Adds two unsigned integers without checking the result for overflow errors (using safe math). /// @param a The first summand. /// @param b The second summand. /// @return The sum. /// @custom:security-contact [email protected] function _uncheckedAdd(uint256 a, uint256 b) pure returns (uint256) { unchecked { return a + b; } } /// @notice Subtracts two unsigned integers without checking the result for overflow errors (using safe math). /// @param a The minuend. /// @param b The subtrahend. /// @return The difference. /// @custom:security-contact [email protected] function _uncheckedSub(uint256 a, uint256 b) pure returns (uint256) { unchecked { return a - b; } }
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (utils/Counters.sol)
pragma solidity ^0.8.0;
/**
* @title Counters
* @author Matt Condon (@shrugs)
* @dev Provides counters that can only be incremented, decremented or reset. This can be used e.g. to track the number
* of elements in a mapping, issuing ERC721 ids, or counting request ids.
*
* Include with `using Counters for Counters.Counter;`
*/
library CountersUpgradeable {
struct Counter {
// This variable should never be directly accessed by users of the library: interactions must be restricted to
// the library's function. As of Solidity v0.5.2, this cannot be enforced, though there is a proposal to add
// this feature: see https://github.com/ethereum/solidity/issues/4637
uint256 _value; // default: 0
}
function current(Counter storage counter) internal view returns (uint256) {
return counter._value;
}
function increment(Counter storage counter) internal {
unchecked {
counter._value += 1;
}
}
function decrement(Counter storage counter) internal {
uint256 value = counter._value;
require(value > 0, "Counter: decrement overflow");
unchecked {
counter._value = value - 1;
}
}
function reset(Counter storage counter) internal {
counter._value = 0;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (proxy/beacon/IBeacon.sol)
pragma solidity ^0.8.0;
/**
* @dev This is the interface that {BeaconProxy} expects of its beacon.
*/
interface IBeacon {
/**
* @dev Must return an address that can be used as a delegate call target.
*
* {BeaconProxy} will check that this address is a contract.
*/
function implementation() external view returns (address);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (interfaces/IERC1967.sol)
pragma solidity ^0.8.0;
/**
* @dev ERC-1967: Proxy Storage Slots. This interface contains the events defined in the ERC.
*
* _Available since v4.8.3._
*/
interface IERC1967 {
/**
* @dev Emitted when the implementation is upgraded.
*/
event Upgraded(address indexed implementation);
/**
* @dev Emitted when the admin account has changed.
*/
event AdminChanged(address previousAdmin, address newAdmin);
/**
* @dev Emitted when the beacon is changed.
*/
event BeaconUpgraded(address indexed beacon);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.5.0) (interfaces/draft-IERC1822.sol)
pragma solidity ^0.8.0;
/**
* @dev ERC1822: Universal Upgradeable Proxy Standard (UUPS) documents a method for upgradeability through a simplified
* proxy whose upgrades are fully controlled by the current implementation.
*/
interface IERC1822Proxiable {
/**
* @dev Returns the storage slot that the proxiable contract assumes is being used to store the implementation
* address.
*
* IMPORTANT: A proxy pointing at a proxiable contract should not be considered proxiable itself, because this risks
* bricking a proxy that upgrades to it, by delegating to itself until out of gas. Thus it is critical that this
* function revert if invoked through a proxy.
*/
function proxiableUUID() external view returns (bytes32);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (utils/StorageSlot.sol)
// This file was procedurally generated from scripts/generate/templates/StorageSlot.js.
pragma solidity ^0.8.0;
/**
* @dev Library for reading and writing primitive types to specific storage slots.
*
* Storage slots are often used to avoid storage conflict when dealing with upgradeable contracts.
* This library helps with reading and writing to such slots without the need for inline assembly.
*
* The functions in this library return Slot structs that contain a `value` member that can be used to read or write.
*
* Example usage to set ERC1967 implementation slot:
* ```solidity
* contract ERC1967 {
* bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
*
* function _getImplementation() internal view returns (address) {
* return StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value;
* }
*
* function _setImplementation(address newImplementation) internal {
* require(Address.isContract(newImplementation), "ERC1967: new implementation is not a contract");
* StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
* }
* }
* ```
*
* _Available since v4.1 for `address`, `bool`, `bytes32`, `uint256`._
* _Available since v4.9 for `string`, `bytes`._
*/
library StorageSlot {
struct AddressSlot {
address value;
}
struct BooleanSlot {
bool value;
}
struct Bytes32Slot {
bytes32 value;
}
struct Uint256Slot {
uint256 value;
}
struct StringSlot {
string value;
}
struct BytesSlot {
bytes value;
}
/**
* @dev Returns an `AddressSlot` with member `value` located at `slot`.
*/
function getAddressSlot(bytes32 slot) internal pure returns (AddressSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `BooleanSlot` with member `value` located at `slot`.
*/
function getBooleanSlot(bytes32 slot) internal pure returns (BooleanSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Bytes32Slot` with member `value` located at `slot`.
*/
function getBytes32Slot(bytes32 slot) internal pure returns (Bytes32Slot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Uint256Slot` with member `value` located at `slot`.
*/
function getUint256Slot(bytes32 slot) internal pure returns (Uint256Slot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `StringSlot` with member `value` located at `slot`.
*/
function getStringSlot(bytes32 slot) internal pure returns (StringSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `StringSlot` representation of the string storage pointer `store`.
*/
function getStringSlot(string storage store) internal pure returns (StringSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := store.slot
}
}
/**
* @dev Returns an `BytesSlot` with member `value` located at `slot`.
*/
function getBytesSlot(bytes32 slot) internal pure returns (BytesSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `BytesSlot` representation of the bytes storage pointer `store`.
*/
function getBytesSlot(bytes storage store) internal pure returns (BytesSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := store.slot
}
}
}// SPDX-License-Identifier: MIT
pragma solidity >=0.8.4;
import "./IABIResolver.sol";
import "../ResolverBase.sol";
interface IABIResolver {
event ABIChanged(bytes32 indexed node, uint256 indexed contentType);
/**
* Returns the ABI associated with an ENS node.
* Defined in EIP205.
* @param node The ENS node to query
* @param contentTypes A bitwise OR of the ABI formats accepted by the caller.
* @return contentType The content type of the return value
* @return data The ABI data
*/
function ABI(bytes32 node, uint256 contentTypes) external view returns (uint256, bytes memory);
}// SPDX-License-Identifier: MIT
pragma solidity >=0.8.4;
/**
* Interface for the new (multicoin) addr function.
*/
interface IAddressResolver {
event AddressChanged(bytes32 indexed node, uint coinType, bytes newAddress);
function addr(bytes32 node, uint coinType) external view returns(bytes memory);
}// SPDX-License-Identifier: MIT
pragma solidity >=0.8.4;
/**
* Interface for the legacy (ETH-only) addr function.
*/
interface IAddrResolver {
event AddrChanged(bytes32 indexed node, address a);
/**
* Returns the address associated with an ENS node.
* @param node The ENS node to query.
* @return The associated address.
*/
function addr(bytes32 node) external view returns (address payable);
}// SPDX-License-Identifier: MIT
pragma solidity >=0.8.4;
interface IContentHashResolver {
event ContenthashChanged(bytes32 indexed node, bytes hash);
/**
* Returns the contenthash associated with an ENS node.
* @param node The ENS node to query.
* @return The associated contenthash.
*/
function contenthash(bytes32 node) external view returns (bytes memory);
}// SPDX-License-Identifier: MIT
pragma solidity >=0.8.4;
interface IDNSRecordResolver {
// DNSRecordChanged is emitted whenever a given node/name/resource's RRSET is updated.
event DNSRecordChanged(bytes32 indexed node, bytes name, uint16 resource, bytes record);
// DNSRecordDeleted is emitted whenever a given node/name/resource's RRSET is deleted.
event DNSRecordDeleted(bytes32 indexed node, bytes name, uint16 resource);
// DNSZoneCleared is emitted whenever a given node's zone information is cleared.
event DNSZoneCleared(bytes32 indexed node);
/**
* Obtain a DNS record.
* @param node the namehash of the node for which to fetch the record
* @param name the keccak-256 hash of the fully-qualified name for which to fetch the record
* @param resource the ID of the resource as per https://en.wikipedia.org/wiki/List_of_DNS_record_types
* @return the DNS record in wire format if present, otherwise empty
*/
function dnsRecord(bytes32 node, bytes32 name, uint16 resource) external view returns (bytes memory);
}// SPDX-License-Identifier: MIT
pragma solidity >=0.8.4;
interface IDNSZoneResolver {
// DNSZonehashChanged is emitted whenever a given node's zone hash is updated.
event DNSZonehashChanged(bytes32 indexed node, bytes lastzonehash, bytes zonehash);
/**
* zonehash obtains the hash for the zone.
* @param node The ENS node to query.
* @return The associated contenthash.
*/
function zonehash(bytes32 node) external view returns (bytes memory);
}// SPDX-License-Identifier: MIT
pragma solidity >=0.8.4;
interface IInterfaceResolver {
event InterfaceChanged(bytes32 indexed node, bytes4 indexed interfaceID, address implementer);
/**
* Returns the address of a contract that implements the specified interface for this name.
* If an implementer has not been set for this interfaceID and name, the resolver will query
* the contract at `addr()`. If `addr()` is set, a contract exists at that address, and that
* contract implements EIP165 and returns `true` for the specified interfaceID, its address
* will be returned.
* @param node The ENS node to query.
* @param interfaceID The EIP 165 interface ID to check for.
* @return The address that implements this interface, or 0 if the interface is unsupported.
*/
function interfaceImplementer(bytes32 node, bytes4 interfaceID) external view returns (address);
}// SPDX-License-Identifier: MIT
pragma solidity >=0.8.4;
interface INameResolver {
event NameChanged(bytes32 indexed node, string name);
/**
* Returns the name associated with an ENS node, for reverse records.
* Defined in EIP181.
* @param node The ENS node to query.
* @return The associated name.
*/
function name(bytes32 node) external view returns (string memory);
}// SPDX-License-Identifier: MIT
pragma solidity >=0.8.4;
interface IPubkeyResolver {
event PubkeyChanged(bytes32 indexed node, bytes32 x, bytes32 y);
/**
* Returns the SECP256k1 public key associated with an ENS node.
* Defined in EIP 619.
* @param node The ENS node to query
* @return x The X coordinate of the curve point for the public key.
* @return y The Y coordinate of the curve point for the public key.
*/
function pubkey(bytes32 node) external view returns (bytes32 x, bytes32 y);
}// SPDX-License-Identifier: MIT
pragma solidity >=0.8.4;
interface ITextResolver {
event TextChanged(bytes32 indexed node, string indexed indexedKey, string key);
/**
* Returns the text data associated with an ENS node and key.
* @param node The ENS node to query.
* @param key The text data key to query.
* @return The associated text data.
*/
function text(bytes32 node, string calldata key) external view returns (string memory);
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
interface ISupportsInterface {
function supportsInterface(bytes4 interfaceID) external pure returns(bool);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.4) (utils/Context.sol)
pragma solidity ^0.8.0;
import {Initializable} from "../proxy/utils/Initializable.sol";
/**
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/
abstract contract ContextUpgradeable is Initializable {
function __Context_init() internal onlyInitializing {
}
function __Context_init_unchained() internal onlyInitializing {
}
function _msgSender() internal view virtual returns (address) {
return msg.sender;
}
function _msgData() internal view virtual returns (bytes calldata) {
return msg.data;
}
function _contextSuffixLength() internal view virtual returns (uint256) {
return 0;
}
/**
* @dev This empty reserved space is put in place to allow future versions to add new
* variables without shifting down storage in the inheritance chain.
* See https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps
*/
uint256[50] private __gap;
}// SPDX-License-Identifier: AGPL-3.0-or-later
pragma solidity ^0.8.8;
import {IDAO} from "../../dao/IDAO.sol";
/// @title DAO Authorization Utilities
/// @author Aragon X - 2022-2024
/// @notice Provides utility functions for verifying if a caller has specific permissions in an associated DAO.
/// @custom:security-contact [email protected]
/// @notice Thrown if a call is unauthorized in the associated DAO.
/// @param dao The associated DAO.
/// @param where The context in which the authorization reverted.
/// @param who The address (EOA or contract) missing the permission.
/// @param permissionId The permission identifier.
error DaoUnauthorized(address dao, address where, address who, bytes32 permissionId);
/// @notice A free function checking if a caller is granted permissions on a target contract via a permission identifier that redirects the approval to a `PermissionCondition` if this was specified in the setup.
/// @param _where The address of the target contract for which `who` receives permission.
/// @param _who The address (EOA or contract) owning the permission.
/// @param _permissionId The permission identifier.
/// @param _data The optional data passed to the `PermissionCondition` registered.
function _auth(
IDAO _dao,
address _where,
address _who,
bytes32 _permissionId,
bytes calldata _data
) view {
if (!_dao.hasPermission(_where, _who, _permissionId, _data))
revert DaoUnauthorized({
dao: address(_dao),
where: _where,
who: _who,
permissionId: _permissionId
});
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts v4.4.1 (proxy/beacon/IBeacon.sol)
pragma solidity ^0.8.0;
/**
* @dev This is the interface that {BeaconProxy} expects of its beacon.
*/
interface IBeaconUpgradeable {
/**
* @dev Must return an address that can be used as a delegate call target.
*
* {BeaconProxy} will check that this address is a contract.
*/
function implementation() external view returns (address);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (interfaces/IERC1967.sol)
pragma solidity ^0.8.0;
/**
* @dev ERC-1967: Proxy Storage Slots. This interface contains the events defined in the ERC.
*
* _Available since v4.8.3._
*/
interface IERC1967Upgradeable {
/**
* @dev Emitted when the implementation is upgraded.
*/
event Upgraded(address indexed implementation);
/**
* @dev Emitted when the admin account has changed.
*/
event AdminChanged(address previousAdmin, address newAdmin);
/**
* @dev Emitted when the beacon is changed.
*/
event BeaconUpgraded(address indexed beacon);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (utils/StorageSlot.sol)
// This file was procedurally generated from scripts/generate/templates/StorageSlot.js.
pragma solidity ^0.8.0;
/**
* @dev Library for reading and writing primitive types to specific storage slots.
*
* Storage slots are often used to avoid storage conflict when dealing with upgradeable contracts.
* This library helps with reading and writing to such slots without the need for inline assembly.
*
* The functions in this library return Slot structs that contain a `value` member that can be used to read or write.
*
* Example usage to set ERC1967 implementation slot:
* ```solidity
* contract ERC1967 {
* bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
*
* function _getImplementation() internal view returns (address) {
* return StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value;
* }
*
* function _setImplementation(address newImplementation) internal {
* require(Address.isContract(newImplementation), "ERC1967: new implementation is not a contract");
* StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
* }
* }
* ```
*
* _Available since v4.1 for `address`, `bool`, `bytes32`, `uint256`._
* _Available since v4.9 for `string`, `bytes`._
*/
library StorageSlotUpgradeable {
struct AddressSlot {
address value;
}
struct BooleanSlot {
bool value;
}
struct Bytes32Slot {
bytes32 value;
}
struct Uint256Slot {
uint256 value;
}
struct StringSlot {
string value;
}
struct BytesSlot {
bytes value;
}
/**
* @dev Returns an `AddressSlot` with member `value` located at `slot`.
*/
function getAddressSlot(bytes32 slot) internal pure returns (AddressSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `BooleanSlot` with member `value` located at `slot`.
*/
function getBooleanSlot(bytes32 slot) internal pure returns (BooleanSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Bytes32Slot` with member `value` located at `slot`.
*/
function getBytes32Slot(bytes32 slot) internal pure returns (Bytes32Slot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Uint256Slot` with member `value` located at `slot`.
*/
function getUint256Slot(bytes32 slot) internal pure returns (Uint256Slot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `StringSlot` with member `value` located at `slot`.
*/
function getStringSlot(bytes32 slot) internal pure returns (StringSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `StringSlot` representation of the string storage pointer `store`.
*/
function getStringSlot(string storage store) internal pure returns (StringSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := store.slot
}
}
/**
* @dev Returns an `BytesSlot` with member `value` located at `slot`.
*/
function getBytesSlot(bytes32 slot) internal pure returns (BytesSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `BytesSlot` representation of the bytes storage pointer `store`.
*/
function getBytesSlot(bytes storage store) internal pure returns (BytesSlot storage r) {
/// @solidity memory-safe-assembly
assembly {
r.slot := store.slot
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v4.9.0) (utils/math/Math.sol)
pragma solidity ^0.8.0;
/**
* @dev Standard math utilities missing in the Solidity language.
*/
library MathUpgradeable {
enum Rounding {
Down, // Toward negative infinity
Up, // Toward infinity
Zero // Toward zero
}
/**
* @dev Returns the largest of two numbers.
*/
function max(uint256 a, uint256 b) internal pure returns (uint256) {
return a > b ? a : b;
}
/**
* @dev Returns the smallest of two numbers.
*/
function min(uint256 a, uint256 b) internal pure returns (uint256) {
return a < b ? a : b;
}
/**
* @dev Returns the average of two numbers. The result is rounded towards
* zero.
*/
function average(uint256 a, uint256 b) internal pure returns (uint256) {
// (a + b) / 2 can overflow.
return (a & b) + (a ^ b) / 2;
}
/**
* @dev Returns the ceiling of the division of two numbers.
*
* This differs from standard division with `/` in that it rounds up instead
* of rounding down.
*/
function ceilDiv(uint256 a, uint256 b) internal pure returns (uint256) {
// (a + b - 1) / b can overflow on addition, so we distribute.
return a == 0 ? 0 : (a - 1) / b + 1;
}
/**
* @notice Calculates floor(x * y / denominator) with full precision. Throws if result overflows a uint256 or denominator == 0
* @dev Original credit to Remco Bloemen under MIT license (https://xn--2-umb.com/21/muldiv)
* with further edits by Uniswap Labs also under MIT license.
*/
function mulDiv(uint256 x, uint256 y, uint256 denominator) internal pure returns (uint256 result) {
unchecked {
// 512-bit multiply [prod1 prod0] = x * y. Compute the product mod 2^256 and mod 2^256 - 1, then use
// use the Chinese Remainder Theorem to reconstruct the 512 bit result. The result is stored in two 256
// variables such that product = prod1 * 2^256 + prod0.
uint256 prod0; // Least significant 256 bits of the product
uint256 prod1; // Most significant 256 bits of the product
assembly {
let mm := mulmod(x, y, not(0))
prod0 := mul(x, y)
prod1 := sub(sub(mm, prod0), lt(mm, prod0))
}
// Handle non-overflow cases, 256 by 256 division.
if (prod1 == 0) {
// Solidity will revert if denominator == 0, unlike the div opcode on its own.
// The surrounding unchecked block does not change this fact.
// See https://docs.soliditylang.org/en/latest/control-structures.html#checked-or-unchecked-arithmetic.
return prod0 / denominator;
}
// Make sure the result is less than 2^256. Also prevents denominator == 0.
require(denominator > prod1, "Math: mulDiv overflow");
///////////////////////////////////////////////
// 512 by 256 division.
///////////////////////////////////////////////
// Make division exact by subtracting the remainder from [prod1 prod0].
uint256 remainder;
assembly {
// Compute remainder using mulmod.
remainder := mulmod(x, y, denominator)
// Subtract 256 bit number from 512 bit number.
prod1 := sub(prod1, gt(remainder, prod0))
prod0 := sub(prod0, remainder)
}
// Factor powers of two out of denominator and compute largest power of two divisor of denominator. Always >= 1.
// See https://cs.stackexchange.com/q/138556/92363.
// Does not overflow because the denominator cannot be zero at this stage in the function.
uint256 twos = denominator & (~denominator + 1);
assembly {
// Divide denominator by twos.
denominator := div(denominator, twos)
// Divide [prod1 prod0] by twos.
prod0 := div(prod0, twos)
// Flip twos such that it is 2^256 / twos. If twos is zero, then it becomes one.
twos := add(div(sub(0, twos), twos), 1)
}
// Shift in bits from prod1 into prod0.
prod0 |= prod1 * twos;
// Invert denominator mod 2^256. Now that denominator is an odd number, it has an inverse modulo 2^256 such
// that denominator * inv = 1 mod 2^256. Compute the inverse by starting with a seed that is correct for
// four bits. That is, denominator * inv = 1 mod 2^4.
uint256 inverse = (3 * denominator) ^ 2;
// Use the Newton-Raphson iteration to improve the precision. Thanks to Hensel's lifting lemma, this also works
// in modular arithmetic, doubling the correct bits in each step.
inverse *= 2 - denominator * inverse; // inverse mod 2^8
inverse *= 2 - denominator * inverse; // inverse mod 2^16
inverse *= 2 - denominator * inverse; // inverse mod 2^32
inverse *= 2 - denominator * inverse; // inverse mod 2^64
inverse *= 2 - denominator * inverse; // inverse mod 2^128
inverse *= 2 - denominator * inverse; // inverse mod 2^256
// Because the division is now exact we can divide by multiplying with the modular inverse of denominator.
// This will give us the correct result modulo 2^256. Since the preconditions guarantee that the outcome is
// less than 2^256, this is the final result. We don't need to compute the high bits of the result and prod1
// is no longer required.
result = prod0 * inverse;
return result;
}
}
/**
* @notice Calculates x * y / denominator with full precision, following the selected rounding direction.
*/
function mulDiv(uint256 x, uint256 y, uint256 denominator, Rounding rounding) internal pure returns (uint256) {
uint256 result = mulDiv(x, y, denominator);
if (rounding == Rounding.Up && mulmod(x, y, denominator) > 0) {
result += 1;
}
return result;
}
/**
* @dev Returns the square root of a number. If the number is not a perfect square, the value is rounded down.
*
* Inspired by Henry S. Warren, Jr.'s "Hacker's Delight" (Chapter 11).
*/
function sqrt(uint256 a) internal pure returns (uint256) {
if (a == 0) {
return 0;
}
// For our first guess, we get the biggest power of 2 which is smaller than the square root of the target.
//
// We know that the "msb" (most significant bit) of our target number `a` is a power of 2 such that we have
// `msb(a) <= a < 2*msb(a)`. This value can be written `msb(a)=2**k` with `k=log2(a)`.
//
// This can be rewritten `2**log2(a) <= a < 2**(log2(a) + 1)`
// → `sqrt(2**k) <= sqrt(a) < sqrt(2**(k+1))`
// → `2**(k/2) <= sqrt(a) < 2**((k+1)/2) <= 2**(k/2 + 1)`
//
// Consequently, `2**(log2(a) / 2)` is a good first approximation of `sqrt(a)` with at least 1 correct bit.
uint256 result = 1 << (log2(a) >> 1);
// At this point `result` is an estimation with one bit of precision. We know the true value is a uint128,
// since it is the square root of a uint256. Newton's method converges quadratically (precision doubles at
// every iteration). We thus need at most 7 iteration to turn our partial result with one bit of precision
// into the expected uint128 result.
unchecked {
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
return min(result, a / result);
}
}
/**
* @notice Calculates sqrt(a), following the selected rounding direction.
*/
function sqrt(uint256 a, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = sqrt(a);
return result + (rounding == Rounding.Up && result * result < a ? 1 : 0);
}
}
/**
* @dev Return the log in base 2, rounded down, of a positive value.
* Returns 0 if given 0.
*/
function log2(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >> 128 > 0) {
value >>= 128;
result += 128;
}
if (value >> 64 > 0) {
value >>= 64;
result += 64;
}
if (value >> 32 > 0) {
value >>= 32;
result += 32;
}
if (value >> 16 > 0) {
value >>= 16;
result += 16;
}
if (value >> 8 > 0) {
value >>= 8;
result += 8;
}
if (value >> 4 > 0) {
value >>= 4;
result += 4;
}
if (value >> 2 > 0) {
value >>= 2;
result += 2;
}
if (value >> 1 > 0) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 2, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log2(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log2(value);
return result + (rounding == Rounding.Up && 1 << result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 10, rounded down, of a positive value.
* Returns 0 if given 0.
*/
function log10(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >= 10 ** 64) {
value /= 10 ** 64;
result += 64;
}
if (value >= 10 ** 32) {
value /= 10 ** 32;
result += 32;
}
if (value >= 10 ** 16) {
value /= 10 ** 16;
result += 16;
}
if (value >= 10 ** 8) {
value /= 10 ** 8;
result += 8;
}
if (value >= 10 ** 4) {
value /= 10 ** 4;
result += 4;
}
if (value >= 10 ** 2) {
value /= 10 ** 2;
result += 2;
}
if (value >= 10 ** 1) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 10, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log10(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log10(value);
return result + (rounding == Rounding.Up && 10 ** result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 256, rounded down, of a positive value.
* Returns 0 if given 0.
*
* Adding one to the result gives the number of pairs of hex symbols needed to represent `value` as a hex string.
*/
function log256(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >> 128 > 0) {
value >>= 128;
result += 16;
}
if (value >> 64 > 0) {
value >>= 64;
result += 8;
}
if (value >> 32 > 0) {
value >>= 32;
result += 4;
}
if (value >> 16 > 0) {
value >>= 16;
result += 2;
}
if (value >> 8 > 0) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 256, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log256(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log256(value);
return result + (rounding == Rounding.Up && 1 << (result << 3) < value ? 1 : 0);
}
}
}// SPDX-License-Identifier: MIT
pragma solidity >=0.8.4;
import "./SupportsInterface.sol";
abstract contract ResolverBase is SupportsInterface {
function isAuthorised(bytes32 node) internal virtual view returns(bool);
modifier authorised(bytes32 node) {
require(isAuthorised(node));
_;
}
}// SPDX-License-Identifier: MIT
pragma solidity ^0.8.4;
import "./ISupportsInterface.sol";
abstract contract SupportsInterface is ISupportsInterface {
function supportsInterface(bytes4 interfaceID) virtual override public pure returns(bool) {
return interfaceID == type(ISupportsInterface).interfaceId;
}
}{
"remappings": [
"@openzeppelin/contracts/=lib/openzeppelin-contracts/contracts/",
"@openzeppelin/contracts-upgradeable/=lib/openzeppelin-contracts-upgradeable/contracts/",
"@aragon/osx/=lib/osx/packages/contracts/src/",
"@aragon/osx-commons-contracts/=lib/osx-commons/contracts/",
"@aragon/admin-plugin/=lib/admin-plugin/packages/contracts/src/",
"@aragon/multisig-plugin/=lib/multisig-plugin/packages/contracts/src/",
"@aragon/token-voting-plugin/=lib/token-voting-plugin/src/",
"@aragon/staged-proposal-processor-plugin/=lib/staged-proposal-processor-plugin/src/",
"@ensdomains/ens-contracts/=lib/ens-contracts/",
"@ensdomains/buffer/=lib/buffer/",
"forge-std/=lib/forge-std/src/",
"@openzeppelin/openzeppelin-foundry-upgrades/=lib/staged-proposal-processor-plugin/node_modules/@openzeppelin/openzeppelin-foundry-upgrades/src/",
"admin-plugin/=lib/admin-plugin/",
"buffer/=lib/buffer/contracts/",
"ds-test/=lib/openzeppelin-contracts-upgradeable/lib/forge-std/lib/ds-test/src/",
"ens-contracts/=lib/ens-contracts/contracts/",
"erc4626-tests/=lib/openzeppelin-contracts-upgradeable/lib/erc4626-tests/",
"multisig-plugin/=lib/multisig-plugin/",
"openzeppelin-contracts-upgradeable/=lib/openzeppelin-contracts-upgradeable/",
"openzeppelin-contracts/=lib/openzeppelin-contracts/",
"openzeppelin/=lib/openzeppelin-contracts-upgradeable/contracts/",
"osx-commons/=lib/osx-commons/",
"osx/=lib/osx/",
"plugin-version-1.3/=lib/token-voting-plugin/lib/plugin-version-1.3/packages/contracts/src/",
"solidity-stringutils/=lib/staged-proposal-processor-plugin/node_modules/solidity-stringutils/",
"staged-proposal-processor-plugin/=lib/staged-proposal-processor-plugin/src/",
"token-voting-plugin/=lib/token-voting-plugin/src/"
],
"optimizer": {
"enabled": true,
"runs": 200
},
"metadata": {
"useLiteralContent": false,
"bytecodeHash": "ipfs",
"appendCBOR": true
},
"outputSelection": {
"*": {
"*": [
"evm.bytecode",
"evm.deployedBytecode",
"devdoc",
"userdoc",
"metadata",
"abi"
]
}
},
"evmVersion": "cancun",
"viaIR": true
}Contract Security Audit
- No Contract Security Audit Submitted- Submit Audit Here
Contract ABI
API[{"inputs":[{"components":[{"components":[{"internalType":"address","name":"daoBase","type":"address"},{"internalType":"address","name":"daoRegistryBase","type":"address"},{"internalType":"address","name":"pluginRepoRegistryBase","type":"address"},{"internalType":"address","name":"placeholderSetup","type":"address"},{"internalType":"address","name":"ensSubdomainRegistrarBase","type":"address"},{"internalType":"address","name":"globalExecutor","type":"address"}],"internalType":"struct ProtocolFactory.OSxImplementations","name":"osxImplementations","type":"tuple"},{"components":[{"internalType":"contract IDAOHelper","name":"daoHelper","type":"address"},{"internalType":"contract IPluginRepoHelper","name":"pluginRepoHelper","type":"address"},{"internalType":"contract IPSPHelper","name":"pspHelper","type":"address"},{"internalType":"contract IENSHelper","name":"ensHelper","type":"address"}],"internalType":"struct ProtocolFactory.HelperFactories","name":"helperFactories","type":"tuple"},{"components":[{"internalType":"string","name":"daoRootDomain","type":"string"},{"internalType":"string","name":"managementDaoSubdomain","type":"string"},{"internalType":"string","name":"pluginSubdomain","type":"string"}],"internalType":"struct ProtocolFactory.EnsParameters","name":"ensParameters","type":"tuple"},{"components":[{"components":[{"internalType":"contract IPluginSetup","name":"pluginSetup","type":"address"},{"internalType":"uint8","name":"release","type":"uint8"},{"internalType":"uint8","name":"build","type":"uint8"},{"internalType":"string","name":"releaseMetadataUri","type":"string"},{"internalType":"string","name":"buildMetadataUri","type":"string"},{"internalType":"string","name":"subdomain","type":"string"}],"internalType":"struct ProtocolFactory.CorePlugin","name":"adminPlugin","type":"tuple"},{"components":[{"internalType":"contract IPluginSetup","name":"pluginSetup","type":"address"},{"internalType":"uint8","name":"release","type":"uint8"},{"internalType":"uint8","name":"build","type":"uint8"},{"internalType":"string","name":"releaseMetadataUri","type":"string"},{"internalType":"string","name":"buildMetadataUri","type":"string"},{"internalType":"string","name":"subdomain","type":"string"}],"internalType":"struct ProtocolFactory.CorePlugin","name":"multisigPlugin","type":"tuple"},{"components":[{"internalType":"contract IPluginSetup","name":"pluginSetup","type":"address"},{"internalType":"uint8","name":"release","type":"uint8"},{"internalType":"uint8","name":"build","type":"uint8"},{"internalType":"string","name":"releaseMetadataUri","type":"string"},{"internalType":"string","name":"buildMetadataUri","type":"string"},{"internalType":"string","name":"subdomain","type":"string"}],"internalType":"struct ProtocolFactory.CorePlugin","name":"tokenVotingPlugin","type":"tuple"},{"components":[{"internalType":"contract IPluginSetup","name":"pluginSetup","type":"address"},{"internalType":"uint8","name":"release","type":"uint8"},{"internalType":"uint8","name":"build","type":"uint8"},{"internalType":"string","name":"releaseMetadataUri","type":"string"},{"internalType":"string","name":"buildMetadataUri","type":"string"},{"internalType":"string","name":"subdomain","type":"string"}],"internalType":"struct ProtocolFactory.CorePlugin","name":"stagedProposalProcessorPlugin","type":"tuple"}],"internalType":"struct ProtocolFactory.CorePlugins","name":"corePlugins","type":"tuple"},{"components":[{"internalType":"string","name":"metadataUri","type":"string"},{"internalType":"address[]","name":"members","type":"address[]"},{"internalType":"uint8","name":"minApprovals","type":"uint8"}],"internalType":"struct ProtocolFactory.ManagementDaoParameters","name":"managementDao","type":"tuple"}],"internalType":"struct ProtocolFactory.DeploymentParameters","name":"_parameters","type":"tuple"}],"stateMutability":"nonpayable","type":"constructor"},{"inputs":[],"name":"AlreadyDeployed","type":"error"},{"inputs":[],"name":"MemberListIsTooSmall","type":"error"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"contract ProtocolFactory","name":"factory","type":"address"}],"name":"ProtocolDeployed","type":"event"},{"inputs":[],"name":"deployOnce","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"getDeployment","outputs":[{"components":[{"internalType":"address","name":"daoFactory","type":"address"},{"internalType":"address","name":"pluginRepoFactory","type":"address"},{"internalType":"address","name":"pluginSetupProcessor","type":"address"},{"internalType":"address","name":"globalExecutor","type":"address"},{"internalType":"address","name":"placeholderSetup","type":"address"},{"internalType":"address","name":"daoRegistry","type":"address"},{"internalType":"address","name":"pluginRepoRegistry","type":"address"},{"internalType":"address","name":"managementDao","type":"address"},{"internalType":"address","name":"managementDaoMultisig","type":"address"},{"internalType":"address","name":"ensRegistry","type":"address"},{"internalType":"address","name":"daoSubdomainRegistrar","type":"address"},{"internalType":"address","name":"pluginSubdomainRegistrar","type":"address"},{"internalType":"address","name":"publicResolver","type":"address"},{"internalType":"address","name":"adminPluginRepo","type":"address"},{"internalType":"address","name":"multisigPluginRepo","type":"address"},{"internalType":"address","name":"tokenVotingPluginRepo","type":"address"},{"internalType":"address","name":"stagedProposalProcessorPluginRepo","type":"address"}],"internalType":"struct ProtocolFactory.Deployment","name":"","type":"tuple"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"getParameters","outputs":[{"components":[{"components":[{"internalType":"address","name":"daoBase","type":"address"},{"internalType":"address","name":"daoRegistryBase","type":"address"},{"internalType":"address","name":"pluginRepoRegistryBase","type":"address"},{"internalType":"address","name":"placeholderSetup","type":"address"},{"internalType":"address","name":"ensSubdomainRegistrarBase","type":"address"},{"internalType":"address","name":"globalExecutor","type":"address"}],"internalType":"struct ProtocolFactory.OSxImplementations","name":"osxImplementations","type":"tuple"},{"components":[{"internalType":"contract IDAOHelper","name":"daoHelper","type":"address"},{"internalType":"contract IPluginRepoHelper","name":"pluginRepoHelper","type":"address"},{"internalType":"contract IPSPHelper","name":"pspHelper","type":"address"},{"internalType":"contract IENSHelper","name":"ensHelper","type":"address"}],"internalType":"struct ProtocolFactory.HelperFactories","name":"helperFactories","type":"tuple"},{"components":[{"internalType":"string","name":"daoRootDomain","type":"string"},{"internalType":"string","name":"managementDaoSubdomain","type":"string"},{"internalType":"string","name":"pluginSubdomain","type":"string"}],"internalType":"struct ProtocolFactory.EnsParameters","name":"ensParameters","type":"tuple"},{"components":[{"components":[{"internalType":"contract IPluginSetup","name":"pluginSetup","type":"address"},{"internalType":"uint8","name":"release","type":"uint8"},{"internalType":"uint8","name":"build","type":"uint8"},{"internalType":"string","name":"releaseMetadataUri","type":"string"},{"internalType":"string","name":"buildMetadataUri","type":"string"},{"internalType":"string","name":"subdomain","type":"string"}],"internalType":"struct ProtocolFactory.CorePlugin","name":"adminPlugin","type":"tuple"},{"components":[{"internalType":"contract IPluginSetup","name":"pluginSetup","type":"address"},{"internalType":"uint8","name":"release","type":"uint8"},{"internalType":"uint8","name":"build","type":"uint8"},{"internalType":"string","name":"releaseMetadataUri","type":"string"},{"internalType":"string","name":"buildMetadataUri","type":"string"},{"internalType":"string","name":"subdomain","type":"string"}],"internalType":"struct ProtocolFactory.CorePlugin","name":"multisigPlugin","type":"tuple"},{"components":[{"internalType":"contract IPluginSetup","name":"pluginSetup","type":"address"},{"internalType":"uint8","name":"release","type":"uint8"},{"internalType":"uint8","name":"build","type":"uint8"},{"internalType":"string","name":"releaseMetadataUri","type":"string"},{"internalType":"string","name":"buildMetadataUri","type":"string"},{"internalType":"string","name":"subdomain","type":"string"}],"internalType":"struct ProtocolFactory.CorePlugin","name":"tokenVotingPlugin","type":"tuple"},{"components":[{"internalType":"contract IPluginSetup","name":"pluginSetup","type":"address"},{"internalType":"uint8","name":"release","type":"uint8"},{"internalType":"uint8","name":"build","type":"uint8"},{"internalType":"string","name":"releaseMetadataUri","type":"string"},{"internalType":"string","name":"buildMetadataUri","type":"string"},{"internalType":"string","name":"subdomain","type":"string"}],"internalType":"struct ProtocolFactory.CorePlugin","name":"stagedProposalProcessorPlugin","type":"tuple"}],"internalType":"struct ProtocolFactory.CorePlugins","name":"corePlugins","type":"tuple"},{"components":[{"internalType":"string","name":"metadataUri","type":"string"},{"internalType":"address[]","name":"members","type":"address[]"},{"internalType":"uint8","name":"minApprovals","type":"uint8"}],"internalType":"struct ProtocolFactory.ManagementDaoParameters","name":"managementDao","type":"tuple"}],"internalType":"struct ProtocolFactory.DeploymentParameters","name":"","type":"tuple"}],"stateMutability":"view","type":"function"}]Contract Creation Code
6080604052346119a757614f198038038061001981611a08565b9283398101906020818303126119a7578051906001600160401b0382116119a757018082036101a081126119a7576040519060a082016001600160401b03811183821017610ce25760405260c081126119a7576080906100776119ab565b61008085611a2d565b815261008e60208601611a2d565b602082015261009f60408601611a2d565b60408201526100b060608601611a2d565b60608201526100c0838601611a2d565b838201526100d060a08601611a2d565b60a0820152835260bf1901126119a7576100e86119ca565b60c08301516001600160a01b03811681036119a757815260e08301516001600160a01b03811681036119a75760208201526101008301516001600160a01b03811681036119a75760408201526101208301516001600160a01b03811681036119a7576060820152602082019081526101408301516001600160401b0381116119a7578301916060838603126119a75761017f6119e9565b83519093906001600160401b0381116119a7578661019e918301611a41565b845260208101516001600160401b0381116119a757866101bf918301611a41565b60208501526040810151906001600160401b0382116119a7576101e491879101611a41565b60408481019190915281019283526101608401516001600160401b0381116119a7578401936080858703126119a75761021b6119ca565b85519095906001600160401b0381116119a7578761023a918301611aa0565b865260208101516001600160401b0381116119a7578761025b918301611aa0565b602087015260408101516001600160401b0381116119a7578761027f918301611aa0565b60408701526060810151906001600160401b0382116119a7576102a491889101611aa0565b6060868101919091528201948552610180810151906001600160401b0382116119a757016060818703126119a7576102da6119e9565b81519096906001600160401b0381116119a757816102f9918401611a41565b875260208201516001600160401b0381116119a75782019080601f830112156119a7578151916001600160401b038311610ce2578260051b90602080610340818501611a08565b8096815201928201019283116119a757602001905b82821061198f57505050602087015261037090604001611a92565b6040868101919091526080828101968752915180515f80546001600160a01b03199081166001600160a01b0393841617909155602080840151600180548416918516919091179055838501516002805484169185169190911790556060808501516003805485169186169190911790559584015160048054841691851691909117905560a0909301516005805483169184169190911790559451805160068054881691841691909117905591820151600780548716918316919091179055918101516008805486169184169190911790559091015160098054909316911617905551805180519093919291906001600160401b038111610ce257600a54600181811c91168015611985575b6020821014610dbb57601f8111611937575b50602094601f82116001146118d4579481929394955f926118c9575b50508160011b915f199060031b1c191617600a555b602083015180519093906001600160401b038111610ce257600b54600181811c911680156118bf575b6020821014610dbb57601f8111611871575b506020601f821160011461180957819060409495965f926117fe575b50508160011b915f199060031b1c191617600b555b015180519092906001600160401b038111610ce257600c54600181811c911680156117f4575b6020821014610dbb57601f81116117a6575b506020601f821160011461174357819293945f92611738575b50508160011b915f199060031b1c191617600c555b5180518051600d8054602084015160408501516001600160b01b03199092166001600160a01b03949094169390931760a09390931b60ff60a01b169290921760a89290921b60ff60a81b169190911790556060810151805190939192906001600160401b038111610ce257600e54600181811c9116801561172e575b6020821014610dbb57601f81116116e0575b50602094601f821160011461167d579481929394955f92611672575b50508160011b915f199060031b1c191617600e555b608083015180519093906001600160401b038111610ce257600f54600181811c91168015611668575b6020821014610dbb57601f811161161a575b506020601f82116001146115b257819060a09495965f926115a7575b50508160011b915f199060031b1c191617600f555b015180519092906001600160401b038111610ce257601054600181811c9116801561159d575b6020821014610dbb57601f811161154f575b506020601f82116001146114ec57819293945f926114e1575b50508160011b915f199060031b1c1916176010555b6020828101518051601180549383015160408401516001600160b01b03199095166001600160a01b03939093169290921760a09290921b60ff60a01b169190911760a89390931b60ff60a81b1692909217909155606081015180519093919291906001600160401b038111610ce257601254600181811c911680156114d7575b6020821014610dbb57601f8111611489575b50602094601f8211600114611426579481929394955f9261141b575b50508160011b915f199060031b1c1916176012555b608083015180519093906001600160401b038111610ce257601354600181811c91168015611411575b6020821014610dbb57601f81116113c3575b506020601f821160011461135b57819060a09495965f92611350575b50508160011b915f199060031b1c1916176013555b015180519092906001600160401b038111610ce257601454600181811c91168015611346575b6020821014610dbb57601f81116112f8575b506020601f821160011461129557819293945f9261128a575b50508160011b915f199060031b1c1916176014555b6040828101518051601580546020840151948401516001600160b01b03199091166001600160a01b03939093169290921760a09490941b60ff60a01b169390931760a89190911b60ff60a81b1617909155606081015180519093919291906001600160401b038111610ce257601654600181811c91168015611280575b6020821014610dbb57601f8111611232575b50602094601f82116001146111cf579481929394955f926111c4575b50508160011b915f199060031b1c1916176016555b608083015180519093906001600160401b038111610ce257601754600181811c911680156111ba575b6020821014610dbb57601f811161116c575b506020601f821160011461110457819060a09495965f926110f9575b50508160011b915f199060031b1c1916176017555b01518051906001600160401b038211610ce257601854600181811c911680156110ef575b6020821014610dbb57601f81116110a1575b50602090601f83116001146110395760609392915f918361102e575b50508160011b915f199060031b1c1916176018555b0151805160198054602084015160408501516001600160b01b03199092166001600160a01b03949094169390931760a09390931b60ff60a01b169290921760a89290921b60ff60a81b1691909117905560608101518051909291906001600160401b038111610ce257601a54600181811c91168015611024575b6020821014610dbb57601f8111610fd6575b506020601f8211600114610f7357819293945f92610f68575b50508160011b915f199060031b1c191617601a555b60808101518051906001600160401b038211610ce257601b54600181811c91168015610f5e575b6020821014610dbb57601f8111610f10575b50602090601f8311600114610ea85760a09392915f9183610e9d575b50508160011b915f199060031b1c191617601b555b015180519091906001600160401b038111610ce257601c54600181811c91168015610e93575b6020821014610dbb57601f8111610e45575b50602092601f8211600114610de457928192935f92610dd9575b50508160011b915f199060031b1c191617601c555b51805180519091906001600160401b038111610ce257601d54600181811c91168015610dcf575b6020821014610dbb57601f8111610d62575b50602092601f8211600114610d0157928192935f92610cf6575b50508160011b915f199060031b1c191617601d555b60208101518051906001600160401b038211610ce257680100000000000000008211610ce257602090601e5483601e55808410610cc6575b5001601e5f5260205f205f5b838110610ca95760ff60408601511660ff19601f541617601f556040516133a89081611b718239f35b82516001600160a01b031681830155602090920191600101610c80565b610cdc90601e5f5284845f209182019101611b5a565b5f610c74565b634e487b7160e01b5f52604160045260245ffd5b015190505f80610c27565b601f19821693601d5f52805f20915f5b868110610d4a5750836001959610610d32575b505050811b01601d55610c3c565b01515f1960f88460031b161c191690555f8080610d24565b91926020600181928685015181550194019201610d11565b601d5f52610dab907f6d4407e7be21f808e6509aa9fa9143369579dd7d760fe20a2c09680fc146134f601f840160051c81019160208510610db1575b601f0160051c0190611b5a565b5f610c0d565b9091508190610d9e565b634e487b7160e01b5f52602260045260245ffd5b90607f1690610bfb565b015190505f80610bbf565b601f19821693601c5f52805f20915f5b868110610e2d5750836001959610610e15575b505050811b01601c55610bd4565b01515f1960f88460031b161c191690555f8080610e07565b91926020600181928685015181550194019201610df4565b601c5f52610e8d907f0e4562a10381dec21b205ed72637e6b1b523bdd0e4d4d50af5cd23dd4500a211601f840160051c81019160208510610db157601f0160051c0190611b5a565b5f610ba5565b90607f1690610b93565b015190505f80610b58565b90601f19831691601b5f52815f20925f5b818110610ef8575091600193918560a097969410610ee0575b505050811b01601b55610b6d565b01515f1960f88460031b161c191690555f8080610ed2565b92936020600181928786015181550195019301610eb9565b601b5f52610f58907f3ad8aa4f87544323a9d1e5dd902f40c356527a7955687113db5f9a85ad579dc1601f850160051c81019160208610610db157601f0160051c0190611b5a565b5f610b3c565b90607f1690610b2a565b015190505f80610aee565b601f19821690601a5f52805f20915f5b818110610fbe57509583600195969710610fa6575b505050811b01601a55610b03565b01515f1960f88460031b161c191690555f8080610f98565b9192602060018192868b015181550194019201610f83565b601a5f5261101e907f057c384a7d1c54f3a1b2e5e67b2617b8224fdfd1ea7234eea573a6ff665ff63e601f840160051c81019160208510610db157601f0160051c0190611b5a565b5f610ad5565b90607f1690610ac3565b015190505f80610a34565b90601f1983169160185f52815f20925f5b8181106110895750916001939185606097969410611071575b505050811b01601855610a49565b01515f1960f88460031b161c191690555f8080611063565b9293602060018192878601518155019501930161104a565b60185f526110e9907fb13d2d76d1f4b7be834882e410b3e3a8afaf69f83600ae24db354391d2378d2e601f850160051c81019160208610610db157601f0160051c0190611b5a565b5f610a18565b90607f1690610a06565b015190505f806109cd565b601f1982169560175f52815f20965f5b81811061115457509160a09596979184600195941061113c575b505050811b016017556109e2565b01515f1960f88460031b161c191690555f808061112e565b83830151895560019098019760209384019301611114565b60175f526111b4907fc624b66cc0138b8fabc209247f72d758e1cf3343756d543badbf24212bed8c15601f840160051c81019160208510610db157601f0160051c0190611b5a565b5f6109b1565b90607f169061099f565b015190505f80610961565b601f1982169560165f52805f20915f5b88811061121a57508360019596979810611202575b505050811b01601655610976565b01515f1960f88460031b161c191690555f80806111f4565b919260206001819286850151815501940192016111df565b60165f5261127a907fd833147d7dc355ba459fc788f669e58cfaf9dc25ddcd0702e87d69c7b5124289601f840160051c81019160208510610db157601f0160051c0190611b5a565b5f610945565b90607f1690610933565b015190505f806108a1565b601f1982169060145f52805f20915f5b8181106112e0575095836001959697106112c8575b505050811b016014556108b6565b01515f1960f88460031b161c191690555f80806112ba565b9192602060018192868b0151815501940192016112a5565b60145f52611340907fce6d7b5282bd9a3661ae061feed1dbda4e52ab073b1f9285be6e155d9c38d4ec601f840160051c81019160208510610db157601f0160051c0190611b5a565b5f610888565b90607f1690610876565b015190505f8061083b565b601f1982169560135f52815f20965f5b8181106113ab57509160a095969791846001959410611393575b505050811b01601355610850565b01515f1960f88460031b161c191690555f8080611385565b8383015189556001909801976020938401930161136b565b60135f5261140b907f66de8ffda797e3de9c05e8fc57b3bf0ec28a930d40b0d285d93c06501cf6a090601f840160051c81019160208510610db157601f0160051c0190611b5a565b5f61081f565b90607f169061080d565b015190505f806107cf565b601f1982169560125f52805f20915f5b88811061147157508360019596979810611459575b505050811b016012556107e4565b01515f1960f88460031b161c191690555f808061144b565b91926020600181928685015181550194019201611436565b60125f526114d1907fbb8a6a4669ba250d26cd7a459eca9d215f8307e33aebe50379bc5a3617ec3444601f840160051c81019160208510610db157601f0160051c0190611b5a565b5f6107b3565b90607f16906107a1565b015190505f8061070c565b601f1982169060105f52805f20915f5b8181106115375750958360019596971061151f575b505050811b01601055610721565b01515f1960f88460031b161c191690555f8080611511565b9192602060018192868b0151815501940192016114fc565b60105f52611597907f1b6847dc741a1b0cd08d278845f9d819d87b734759afb55fe2de5cb82a9ae672601f840160051c81019160208510610db157601f0160051c0190611b5a565b5f6106f3565b90607f16906106e1565b015190505f806106a6565b601f19821695600f5f52815f20965f5b81811061160257509160a0959697918460019594106115ea575b505050811b01600f556106bb565b01515f1960f88460031b161c191690555f80806115dc565b838301518955600190980197602093840193016115c2565b600f5f52611662907f8d1108e10bcb7c27dddfc02ed9d693a074039d026cf4ea4240b40f7d581ac802601f840160051c81019160208510610db157601f0160051c0190611b5a565b5f61068a565b90607f1690610678565b015190505f8061063a565b601f19821695600e5f52805f20915f5b8881106116c8575083600195969798106116b0575b505050811b01600e5561064f565b01515f1960f88460031b161c191690555f80806116a2565b9192602060018192868501518155019401920161168d565b600e5f52611728907fbb7b4a454dc3493923482f07822329ed19e8244eff582cc204f8554c3620c3fd601f840160051c81019160208510610db157601f0160051c0190611b5a565b5f61061e565b90607f169061060c565b015190505f8061057b565b601f19821690600c5f52805f20915f5b81811061178e57509583600195969710611776575b505050811b01600c55610590565b01515f1960f88460031b161c191690555f8080611768565b9192602060018192868b015181550194019201611753565b600c5f526117ee907fdf6966c971051c3d54ec59162606531493a51404a002842f56009d7e5cf4a8c7601f840160051c81019160208510610db157601f0160051c0190611b5a565b5f610562565b90607f1690610550565b015190505f80610515565b601f19821695600b5f52815f20965f5b818110611859575091604095969791846001959410611841575b505050811b01600b5561052a565b01515f1960f88460031b161c191690555f8080611833565b83830151895560019098019760209384019301611819565b600b5f526118b9907f0175b7a638427703f0dbe7bb9bbf987a2551717b34e79f33b5b1008d1fa01db9601f840160051c81019160208510610db157601f0160051c0190611b5a565b5f6104f9565b90607f16906104e7565b015190505f806104a9565b601f19821695600a5f52805f20915f5b88811061191f57508360019596979810611907575b505050811b01600a556104be565b01515f1960f88460031b161c191690555f80806118f9565b919260206001819286850151815501940192016118e4565b600a5f5261197f907fc65a7bb8d6351c1cf70c95a316cc6a92839c986682d98bc35f958f4883f9d2a8601f840160051c81019160208510610db157601f0160051c0190611b5a565b5f61048d565b90607f169061047b565b6020809161199c84611a2d565b815201910190610355565b5f80fd5b6040519060c082016001600160401b03811183821017610ce257604052565b60405190608082016001600160401b03811183821017610ce257604052565b60405190606082016001600160401b03811183821017610ce257604052565b6040519190601f01601f191682016001600160401b03811183821017610ce257604052565b51906001600160a01b03821682036119a757565b81601f820112156119a7578051906001600160401b038211610ce257611a70601f8301601f1916602001611a08565b92828452602083830101116119a757815f9260208093018386015e8301015290565b519060ff821682036119a757565b91909160c0818403126119a757611ab56119ab565b81519093906001600160a01b03811681036119a7578452611ad860208301611a92565b6020850152611ae960408301611a92565b604085015260608201516001600160401b0381116119a75781611b0d918401611a41565b606085015260808201516001600160401b0381116119a75781611b31918401611a41565b608085015260a08201516001600160401b0381116119a757611b539201611a41565b60a0830152565b818110611b65575050565b5f8155600101611b5a56fe6080806040526004361015610012575f80fd5b5f905f3560e01c9081630a2af15c14610770575080638011e1fd146104885763a5ea11da1461003f575f80fd5b3461048557806003193601126104855760405161005b816124b8565b6040516100678161250a565b8281528260208201528260408201528260608201528260808201528260a08201528152604051610096816124d3565b82815282602082015282604082015282606082015260208201526040516100bc81612482565b60608152606060208201526060604082015260408201526040516100df816124d3565b6100e7612546565b81526100f1612546565b60208201526100fe612546565b604082015261010b612546565b6060820152606082015260806040519161012483612482565b60608352606060208401528360408401520152604051610143816124b8565b60405161014f8161250a565b82546001600160a01b039081168252600154811660208301526002548116604080840191909152600354821660608401526004548216608084015260055490911660a083015290825251916101a3836124d3565b6006546001600160a01b03908116845260075481166020808601919091526008548216604080870191909152600954909216606086015283019384525161040b906101ed81612482565b604051610204816101fd8161264d565b0382612525565b8152604051610216816101fd81612753565b602082015260405161022b816101fd816126d0565b6040820152604084019081526103ab60405191610247836124d3565b61024f612857565b83526102596128d7565b602084015261026661294c565b60408401526102736129c1565b6060840152606086019283526040519661028c88612482565b60405161029c816101fd816125ae565b88526040516102ae816101fd81612a36565b602089810191909152601f5460ff166040808b019190915260808981019a8b528151838152995180516001600160a01b039081168c8601528185015181168c8501528184015181166060808e01919091528083015182168d85015292820151811660a0808e019190915290910151811660c08c015293518051851660e08c01529283015184166101008b01528282015184166101208b01529182015190921661014089015291516101a061016089015280516101c0890193909352916103959061037d906102208a01906123f0565b60208401518982036101bf19016101e08b01526123f0565b9101518682036101bf19016102008801526123f0565b905190601f198582030161018086015260606103fa6103e86103d68551608086526080860190612414565b60208601518582036020870152612414565b60408501518482036040860152612414565b920151906060818403910152612414565b925192601f19838203016101a084015261042e84516060835260608301906123f0565b916020850151928281036020840152602080855192838152019401915b81811061046657505050604060ff8185960151169101520390f35b82516001600160a01b031685526020948501949092019160010161044b565b80fd5b50346104855780600319360112610485576102006040516104a8816124ee565b8281528260208201528260408201528260608201528260808201528260a08201528260c08201528260e08201528261010082015282610120820152826101408201528261016082015282610180820152826101a0820152826101c0820152826101e0820152015261022060405161051e816124ee565b60018060a01b03602054169081815260018060a01b0360215416602082015260018060a01b0360225416604082015260018060a01b0360235416606082015260018060a01b0360245416608082015260018060a01b036025541660a082015260018060a01b036026541660c082015260018060a01b036027541660e082015260018060a01b036028541661010082015260018060a01b036029541661012082015260018060a01b03602a541661014082015260018060a01b03602b541661016082015260018060a01b03602c541661018082015260018060a01b03602d54166101a082015260018060a01b03602e54166101c082015260018060a01b03602f54166101e082015260018060a01b036030541661020082015260405191825260018060a01b03602082015116602083015260018060a01b03604082015116604083015260018060a01b03606082015116606083015260018060a01b03608082015116608083015260018060a01b0360a08201511660a083015260018060a01b0360c08201511660c083015260018060a01b0360e08201511660e083015260018060a01b036101008201511661010083015260018060a01b036101208201511661012083015260018060a01b036101408201511661014083015260018060a01b036101608201511661016083015260018060a01b036101808201511661018083015260018060a01b036101a0820151166101a083015260018060a01b036101c0820151166101c083015260018060a01b036101e0820151166101e083015261020060018060a01b0391015116610200820152f35b905034611a16575f366003190112611a16576020546001600160a01b03166123e1576107f960018060a01b035f54169163757dc58360e11b6020820152608060248201526107eb60206107c560a484016125ae565b3060448501525f60648501525f8482039160231983016084870152528084520182612525565b6001600160a01b0392612c9e565b1690816001600160601b0360a01b602754161760275560809160405161081f8482612525565b60038152601f1984015f5b8181106123b85750506040516302795ac560e21b8152602081600481865afa9081156122d9575f91612386575b506040519061086582612482565b5f8252836020830152604082015261087c82612a8f565b5261088681612a8f565b506040516324b4d73f60e01b8152602081600481865afa9081156122d9575f91612354575b50604051906108b982612482565b5f825283602083015260408201526108d082612ab0565b526108da81612ab0565b506040516326875b1f60e01b8152602081600481865afa9081156122d9575f91612322575b506040519061090d82612482565b5f8252836020830152604082015261092482612ac0565b5261092e81612ac0565b50813b15611a165760405180916308a1134160e21b8252604482018460048401526040602484015281518091526020606484019201905f5b8181106122e45750505090805f92038183865af180156122d9576122c4575b506027546040516301ca741560e21b815291906001600160a01b0316602083600481855afa928315611abd578493612290575b50813b15611a88579183916109e693836040518096819582946335a2eb4b60e21b8452309060048501612af1565b03925af180156119dc5790829161227b575b5050600954602754604051630f3fbeb560e41b81526001600160a01b03918216600482015260606024820152918491839116818581610a4d610a3c6064830161264d565b8281036003190160448401526126d0565b03925af19081156119dc57828384928594612227575b50602c80546001600160a01b03199081166001600160a01b0393841617909155602980549091169282169283179055600454602754604051636133f98560e01b602082015291831694610ad59492936107eb938593610ac793921660248501612af1565b03601f198101835282612525565b602a8054919092166001600160a01b0319909116179055600454602754602954604051636133f98560e01b60208201526001600160a01b0393841694610b309491936107eb938593610ac79392918116911660248501612af1565b602b80546001600160a01b031916929091169182179055604051906060610b578184612525565b60028352839190601f1901825b8181106121e257505060295491928392610c4892906001600160a01b031680610b8c84612a8f565b5152602a5460405163a22cb46560e01b60208201526001600160a01b03909116602482015260016044808301919091528152610bc9606482612525565b6040610bd485612a8f565b510152610be083612ab0565b51526040519063a22cb46560e01b602083015260248201526001604482015260448152610c0e606482612525565b6040610c1983612ab0565b5101526027546040516331c6fcc960e21b81529485936001600160a01b03909216928492839160048301612c12565b03925af180156119dc576121c1575b50600154602754602a5460405163485cc95560e01b60208201526001600160a01b0392831660248201529082166044820152911690610c9d906107eb8160648101610ac7565b60258054919092166001600160a01b0319909116179055600254602754602b5460405163485cc95560e01b6020808301919091526001600160a01b03938416602483015291831660448201528493919290911690610d02906107eb8160648101610ac7565b16806001600160601b0360a01b6026541617602655602460018060a01b0360085416916040519485938492637b62806f60e01b845260048401525af19081156119dc578291612187575b50602280546001600160a01b0319166001600160a01b03928316908117909155600654602554604051631abdd5cd60e21b8152908416600482015260248101929092529091602091839160449183918791165af19081156119dc57829161214d575b50602080546001600160a01b0319166001600160a01b039283161781556007546026546040516362d3a1ad60e01b8152908416600482015292839160249183918791165af19081156119dc578291612113575b50602180546001600160a01b03199081166001600160a01b039384161790915560055460238054831691841691909117905560035460248054909216908316179055602754602a54602554604051639848ba5160e01b8152928416939081169116602083600481845afa928315611df65785936120df575b50833b15611bb157908491610ea260405194859384936335a2eb4b60e21b855260048501612af1565b038183865af18015611a21579083916120ca575b5050602b54602654604051639848ba5160e01b8152916001600160a01b039182169116602083600481845afa928315611df6578593612096575b50833b15611bb157908491610f1960405194859384936335a2eb4b60e21b855260048501612af1565b038183865af18015611a2157908391612081575b5050602a5460275460405163af7b2fed60e01b8152916001600160a01b039182169116602083600481845afa928315611df657859361204d575b50833b15611bb157908491610f9060405194859384936335a2eb4b60e21b855260048501612af1565b038183865af18015611a2157908391612038575b5050602b5460275460405163af7b2fed60e01b8152916001600160a01b039182169116602083600481845afa928315611df6578593612004575b50833b15611bb15790849161100760405194859384936335a2eb4b60e21b855260048501612af1565b038183865af18015611a2157908391611fef575b50506025546020805460405163a2298b4b60e01b8152926001600160a01b039182169291169083600481845afa928315611df6578593611fbb575b50833b15611bb15790849161107f60405194859384936335a2eb4b60e21b855260048501612af1565b038183865af18015611a2157908391611fa6575b50506025546027546040516374574eb760e01b8152916001600160a01b039182169116602083600481845afa928315611df6578593611f72575b50833b15611bb1579084916110f660405194859384936335a2eb4b60e21b855260048501612af1565b038183865af18015611a2157908391611f5d575b50506026546021546040516367048e4360e11b8152916001600160a01b039182169116602083600481845afa928315611df6578593611f29575b50833b15611bb15790849161116d60405194859384936335a2eb4b60e21b855260048501612af1565b038183865af18015611a2157908391611f14575b50506026546027546040516374574eb760e01b815292916001600160a01b039182169116602084600481845afa938415611df6578594611ee0575b50823b15611bb157916111ea9391858094604051968795869485936335a2eb4b60e21b855260048501612af1565b03925af180156119dc57908291611ecb575b506001600160a01b039050611217611212612857565b612d35565b166001600160601b0360a01b602d541617602d5560018060a01b0361123d6112126128d7565b166001600160601b0360a01b602e541617602e5560018060a01b0361126361121261294c565b166001600160601b0360a01b602f541617602f5560018060a01b036112896112126129c1565b60308054919092166001600160a01b031990911617905560275460255460405163a2298b4b60e01b81526001600160a01b039283169492909116602082600481845afa918215611abd578492611e97575b50843b15611a88576040516335a2eb4b60e21b8152918491839182916113069190309060048501612af1565b038183885af18015611a2157908391611e82575b50506025546001600160a01b0316803b156119e75782604051809263ede4973960e01b82528660048301523060248301526060604483015281838161136160648201612753565b03925af18015611a2157908391611e6d575b505060255460405163a2298b4b60e01b8152906001600160a01b0316602082600481845afa918215611abd578492611e39575b50843b15611a8857604051633658153160e21b8152918491839182916113d29190309060048501612af1565b038183885af18015611a2157908391611e24575b5050601e549260ff601f5416809410611e1557604051916114068361249d565b600183526020830194855260018060a01b0360275416906040519361142a8561249d565b828552602080860187815260405191966114448884612525565b88835261ffff6040519a60c08a8d015261146060e08d01612a36565b9551151560408d0152511660608b0152516001600160a01b0316848a0152516002811015611e01576114b69289926114a89260a0850152601f198483030160c08501526123f0565b03601f198101885287612525565b8461158d6011549360ff604051956114cd8761249d565b818160a01c16875260a81c168786015260018060a01b03602e5416604051956114f58761249d565b86528786015260608760405161150a8161249d565b82815201526022546040516001600160a01b0390911691849061152c8361249d565b8783528983019b8c5260408051633c8c01d160e01b81526004810192909252602482015291518051805160ff16604485015260209081015161ffff16606485015201516001600160a01b0316608483015290998a93849291839161159e9190565b518860a484015260c48301906123f0565b03925af1958615611df65785908697611c42575b50602880546001600160a01b0319166001600160a01b039283161790556022546040516302795ac560e21b815291168582600481885afa918215611bf3578792611c13575b50843b15611bc0576040516335a2eb4b60e21b81529187918391829161162291908960048501612af1565b038183885af18015611bb557908691611bfe575b505060225460405163747e5ec160e01b8152906001600160a01b03168582600481845afa918215611bf3578792611bc4575b50843b15611bc0576040516335a2eb4b60e21b8152918791839182916116949190309060048501612af1565b038183885af18015611bb557908691611b9c575b505060018060a01b03602254169560018060a01b036028541692858201519151604051878101918160408101918a855280518093528a606083019101928c5b8c828210611b7c57505050611705925003601f198101835282612525565b5190209160405191611716836124d3565b82528682019485526040820190815260608201928352883b15611b785760408051633f9b0d1d60e21b815260048101889052602481019190915291518051805160ff16604485015260209081015161ffff16606485015201516001600160a01b039081166084840152945190941660a4820152925160c060c4850152805161010485018190526101248501939187019188905b828210611b24575050505085968387818198999581955160e483015203925af1908115611a21578391611b0f575b50506022546040516302795ac560e21b8152906001600160a01b03168482600481865afa918215611abd578492611add575b50823b15611a8857604051633658153160e21b81529184918391829161183491908760048501612af1565b038183865af1908115611a21578391611ac8575b505060225460405163747e5ec160e01b81526001600160a01b03909116908481600481855afa908115611abd578491611a8c575b50823b15611a88576118a992849283604051809681958294633658153160e21b8452309060048501612af1565b03925af180156119dc57611a73575b506027546040516301ca741560e21b8152906001600160a01b03168382600481845afa918215611a21578392611a41575b50803b156119e757604051633658153160e21b8152918391839182908490829061191890308660048501612af1565b03925af180156119dc57611a2c575b506027546040516302795ac560e21b8152906001600160a01b03168382600481845afa918215611a215783926119eb575b50803b156119e757604051633658153160e21b8152918391839182908490829061198790308660048501612af1565b03925af180156119dc576119c3575b507fb18c541e1f693062df734a2b967dd922cbffbeccae682e29a49798080251a94382604051308152a180f35b816119cd91612525565b6119d857815f611996565b5080fd5b6040513d84823e3d90fd5b8280fd5b925090508282813d8111611a1a575b611a048183612525565b81010312611a1657839151905f611958565b5f80fd5b503d6119fa565b6040513d85823e3d90fd5b81611a3691612525565b6119d857815f611927565b925090508282813d8111611a6c575b611a5a8183612525565b81010312611a1657839151905f6118e9565b503d611a50565b81611a7d91612525565b6119d857815f6118b8565b8380fd5b809450858092503d8311611ab6575b611aa58183612525565b81010312611a16578492515f61187c565b503d611a9b565b6040513d86823e3d90fd5b81611ad291612525565b6119d857815f611848565b935090508383813d8111611b08575b611af68183612525565b81010312611a1657849251905f611809565b503d611aec565b81611b1991612525565b6119d857815f6117d7565b909192948860a0600192848951611b3c838251612ad0565b8085015186851b8790039081168487015260408083015182169085015260608083015190911690840152015185820152019601939201906117a9565b8780fd5b85516001600160a01b0316845294850194869450909201916001016116e7565b81611ba691612525565b611bb157845f6116a8565b8480fd5b6040513d88823e3d90fd5b8680fd5b9091508581813d8311611bec575b611bdc8183612525565b81010312611a165751905f611668565b503d611bd2565b6040513d89823e3d90fd5b81611c0891612525565b611bb157845f611636565b9091508581813d8311611c3b575b611c2b8183612525565b81010312611a165751905f6115f7565b503d611c21565b9650503d8086883e611c548188612525565b860195604081880312611df257611c6a81612b13565b9085810151906001600160401b038211611b78570196604088820312611bc05760405197611c978961249d565b80516001600160401b038111611dd257810182601f82011215611dd257805190611cc082612a78565b91611cce6040519384612525565b808352898084019160051b83010191858311611dee578a809101915b838310611dd65750505050895286810151906001600160401b038211611dd2570181601f82011215611b78578051611d2181612a78565b92611d2f6040519485612525565b8184528860a0818601930284010192818411611dce578901915b838310611d5e5750505050858801525f6115b2565b60a083830312611dce57604051611d74816124b8565b83516003811015611dca57815260a0918b91611d91868401612b13565b83820152611da160408701612b13565b6040820152611db260608701612b13565b6060820152898601518a820152815201920191611d49565b8c80fd5b8a80fd5b8880fd5b8190611de184612b13565b8152019101908a90611cea565b8b80fd5b8580fd5b6040513d87823e3d90fd5b634e487b7160e01b88526021600452602488fd5b63255ab42f60e11b8352600483fd5b81611e2e91612525565b6119d857815f6113e6565b9091506020813d602011611e65575b81611e5560209383612525565b81010312611a165751905f6113a6565b3d9150611e48565b81611e7791612525565b6119d857815f611373565b81611e8c91612525565b6119d857815f61131a565b9091506020813d602011611ec3575b81611eb360209383612525565b81010312611a165751905f6112da565b3d9150611ea6565b81611ed591612525565b61048557805f6111fc565b9093506020813d602011611f0c575b81611efc60209383612525565b81010312611a165751925f6111bc565b3d9150611eef565b81611f1e91612525565b6119d857815f611181565b9092506020813d602011611f55575b81611f4560209383612525565b81010312611a165751915f611144565b3d9150611f38565b81611f6791612525565b6119d857815f61110a565b9092506020813d602011611f9e575b81611f8e60209383612525565b81010312611a165751915f6110cd565b3d9150611f81565b81611fb091612525565b6119d857815f611093565b9092506020813d602011611fe7575b81611fd760209383612525565b81010312611a165751915f611056565b3d9150611fca565b81611ff991612525565b6119d857815f61101b565b9092506020813d602011612030575b8161202060209383612525565b81010312611a165751915f610fde565b3d9150612013565b8161204291612525565b6119d857815f610fa4565b9092506020813d602011612079575b8161206960209383612525565b81010312611a165751915f610f67565b3d915061205c565b8161208b91612525565b6119d857815f610f2d565b9092506020813d6020116120c2575b816120b260209383612525565b81010312611a165751915f610ef0565b3d91506120a5565b816120d491612525565b6119d857815f610eb6565b9092506020813d60201161210b575b816120fb60209383612525565b81010312611a165751915f610e79565b3d91506120ee565b90506020813d602011612145575b8161212e60209383612525565b810103126119d85761213f90612b13565b5f610e01565b3d9150612121565b90506020813d60201161217f575b8161216860209383612525565b810103126119d85761217990612b13565b5f610dae565b3d915061215b565b90506020813d6020116121b9575b816121a260209383612525565b810103126119d8576121b390612b13565b5f610d4c565b3d9150612195565b6121dc903d8084833e6121d48183612525565b810190612b27565b50610c57565b6020919293506040516121f481612482565b8681528683820152606060408201528282870101520190849291610b64565b634e487b7160e01b5f52604160045260245ffd5b93505050508281813d8311612274575b6122418183612525565b810103126119d85761225281612b13565b610ad561226160208401612b13565b6040840151606090940151939291610a63565b503d612237565b8161228591612525565b61048557805f6109f8565b9092506020813d6020116122bc575b816122ac60209383612525565b81010312611a165751915f6109b8565b3d915061229f565b6122d19192505f90612525565b5f905f610985565b6040513d5f823e3d90fd5b9193509160206060600192604087516122fe838251612ad0565b858060a01b0385820151168584015201516040820152019401910191849392610966565b90506020813d60201161234c575b8161233d60209383612525565b81010312611a1657515f6108ff565b3d9150612330565b90506020813d60201161237e575b8161236f60209383612525565b81010312611a1657515f6108ab565b3d9150612362565b90506020813d6020116123b0575b816123a160209383612525565b81010312611a1657515f610857565b3d9150612394565b6020906040516123c781612482565b5f81525f838201525f60408201528282860101520161082a565b63a6ef0ba160e01b5f5260045ffd5b805180835260209291819084018484015e5f828201840152601f01601f1916010190565b61247f9160018060a01b03825116815260ff602083015116602082015260ff604083015116604082015260a061246e61245c606085015160c0606086015260c08501906123f0565b608085015184820360808601526123f0565b9201519060a08184039101526123f0565b90565b606081019081106001600160401b0382111761221357604052565b604081019081106001600160401b0382111761221357604052565b60a081019081106001600160401b0382111761221357604052565b608081019081106001600160401b0382111761221357604052565b61022081019081106001600160401b0382111761221357604052565b60c081019081106001600160401b0382111761221357604052565b90601f801991011681019081106001600160401b0382111761221357604052565b604051906125538261250a565b606060a0835f81525f60208201525f604082015282808201528260808201520152565b90600182811c921680156125a4575b602083101461259057565b634e487b7160e01b5f52602260045260245ffd5b91607f1691612585565b601d545f92916125bd82612576565b808252916001811690811561263157506001146125d8575050565b601d5f9081529293509091907f6d4407e7be21f808e6509aa9fa9143369579dd7d760fe20a2c09680fc146134f5b838310612617575060209250010190565b600181602092949394548385870101520191019190612606565b9050602093945060ff929192191683830152151560051b010190565b600a545f929161265c82612576565b80825291600181169081156126315750600114612677575050565b600a5f9081529293509091907fc65a7bb8d6351c1cf70c95a316cc6a92839c986682d98bc35f958f4883f9d2a85b8383106126b6575060209250010190565b6001816020929493945483858701015201910191906126a5565b600c545f92916126df82612576565b808252916001811690811561263157506001146126fa575050565b600c5f9081529293509091907fdf6966c971051c3d54ec59162606531493a51404a002842f56009d7e5cf4a8c75b838310612739575060209250010190565b600181602092949394548385870101520191019190612728565b600b545f929161276282612576565b8082529160018116908115612631575060011461277d575050565b600b5f9081529293509091907f0175b7a638427703f0dbe7bb9bbf987a2551717b34e79f33b5b1008d1fa01db95b8383106127bc575060209250010190565b6001816020929493945483858701015201910191906127ab565b5f92918154916127e583612576565b808352926001811690811561283a575060011461280157505050565b5f9081526020812093945091925b838310612820575060209250010190565b60018160209294939454838587010152019101919061280f565b915050602093945060ff929192191683830152151560051b010190565b604051906128648261250a565b8160ff600d5460018060a01b0381168352818160a01c16602084015260a81c16604082015260405161289b816101fd81600e6127d6565b60608201526040516128b2816101fd81600f6127d6565b608082015260a0604051916128d3836128cc8160106127d6565b0384612525565b0152565b604051906128e48261250a565b8160ff60115460018060a01b0381168352818160a01c16602084015260a81c16604082015260405161291b816101fd8160126127d6565b6060820152604051612932816101fd8160136127d6565b608082015260a0604051916128d3836128cc8160146127d6565b604051906129598261250a565b8160ff60155460018060a01b0381168352818160a01c16602084015260a81c166040820152604051612990816101fd8160166127d6565b60608201526040516129a7816101fd8160176127d6565b608082015260a0604051916128d3836128cc8160186127d6565b604051906129ce8261250a565b8160ff60195460018060a01b0381168352818160a01c16602084015260a81c166040820152604051612a05816101fd81601a6127d6565b6060820152604051612a1c816101fd81601b6127d6565b608082015260a0604051916128d3836128cc81601c6127d6565b6020601e54918281520190601e5f5260205f20905f5b818110612a595750505090565b82546001600160a01b0316845260209093019260019283019201612a4c565b6001600160401b0381116122135760051b60200190565b805115612a9c5760200190565b634e487b7160e01b5f52603260045260245ffd5b805160011015612a9c5760400190565b805160021015612a9c5760600190565b906003821015612add5752565b634e487b7160e01b5f52602160045260245ffd5b6001600160a01b03918216815291166020820152604081019190915260600190565b51906001600160a01b0382168203611a1657565b9190604083820312611a165782516001600160401b038111611a165783019080601f83011215611a1657815191612b5d83612a78565b92612b6b6040519485612525565b80845260208085019160051b83010191838311611a165760208101915b838310612b9d57505050505060209092015190565b82516001600160401b038111611a1657820185603f82011215611a16576020810151916001600160401b03831161221357604051612be5601f8501601f191660200182612525565b8381526040838501018810611a16575f602085819660408397018386015e83010152815201920191612b88565b9190606083015f84526060602085015281518091526080840190602060808260051b8701019301915f905b828210612c51575050505060405f91930152565b90919293602080612c90600193607f198b8203018652606060408a51878060a01b038151168452858101518685015201519181604082015201906123f0565b960192019201909291612c3d565b90604051916103c691828401928484106001600160401b03851117612213578493612ce493604092612fad87396001600160a01b031681526020810182905201906123f0565b03905ff080156122d9576001600160a01b031690565b9261247f949260ff612d279316855260018060a01b031660208501526080604085015260808401906123f0565b9160608184039101526123f0565b9060018060a01b03602154166020612d7d60a08501519260018060a01b0360275416935f60405180968195829463093633a160e31b84526040600485015260448401906123f0565b90602483015203925af19081156122d9575f91612f6a575b506001600160a01b031691604080519190612db08184612525565b60018352601f19015f5b818110612f4057505083612dcd83612a8f565b515260408101600160ff82511611612e5b575b50612e335f9282612e2860ff60208796015116610ac760018060a01b0384511693606060808201519101519060405195869463fc05442760e01b602087015260248601612cfa565b6040610c1983612a8f565b03925af180156122d957612e445750565b612e57903d805f833e6121d48183612525565b5050565b929060ff602082969496015116612ead60018060a01b036003541691610ac7604051612e88602082612525565b5f815260608601519060405195869463fc05442760e01b602087015260248601612cfa565b6040612eb887612a8f565b51015260015b60ff855116811015612f31576027546040516331c6fcc960e21b815291905f9083906001600160a01b0316818381612ef98d60048301612c12565b03925af19081156122d95760ff92600192612f18575b50019050612ebe565b612f2b903d805f833e6121d48183612525565b50612f0f565b50919390925090612e33612de0565b602090604051612f4f81612482565b5f81525f838201526060604082015282828701015201612dba565b90506020813d602011612fa4575b81612f8560209383612525565b81010312611a1657516001600160a01b0381168103611a16575f612d95565b3d9150612f7856fe60806040526103c680380380610014816101f2565b9283398101906040818303126101ee5780516001600160a01b038116918282036101ee576020810151906001600160401b0382116101ee57019183601f840112156101ee57825161006c6100678261022b565b6101f2565b938185526020850195602083830101116101ee57815f926020809301885e85010152813b15610193577f360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc80546001600160a01b031916821790557fbc7cd75a20ee27fd9adebab32041f755214dbc6bffa90cc0225b39da2e5c2d3b5f80a281511580159061018c575b610108575b60405160cb90816102fb8239f35b5f8061017b9461011860606101f2565b94602786527f416464726573733a206c6f772d6c6576656c2064656c65676174652063616c6c6020870152660819985a5b195960ca1b60408701525190845af43d15610184573d9161016c6100678461022b565b9283523d5f602085013e610246565b505f80806100fa565b606091610246565b505f6100f5565b60405162461bcd60e51b815260206004820152602d60248201527f455243313936373a206e657720696d706c656d656e746174696f6e206973206e60448201526c1bdd08184818dbdb9d1c9858dd609a1b6064820152608490fd5b5f80fd5b6040519190601f01601f191682016001600160401b0381118382101761021757604052565b634e487b7160e01b5f52604160045260245ffd5b6001600160401b03811161021757601f01601f191660200190565b919290156102a8575081511561025a575090565b3b156102635790565b60405162461bcd60e51b815260206004820152601d60248201527f416464726573733a2063616c6c20746f206e6f6e2d636f6e74726163740000006044820152606490fd5b8251909150156102bb5750805190602001fd5b604460209160405192839162461bcd60e51b83528160048401528051918291826024860152018484015e5f828201840152601f01601f19168101030190fdfe608060405236156051577f360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc545f9081906001600160a01b0316368280378136915af43d5f803e15604d573d5ff35b3d5ffd5b7f360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc545f9081906001600160a01b0316368280378136915af43d5f803e15604d573d5ff3fea26469706673582212203bf93d98380d30a31ff94676bcd53f6cf4fd06145a15d34fda5d76afee117ce864736f6c634300081c0033a264697066735822122002f3f8cc9289561227a095ec05f45fe0a0fde35ded2225120ba379ee2a379c0c64736f6c634300081c0033000000000000000000000000000000000000000000000000000000000000002000000000000000000000000024f068e91148c3e5678320e6558d66cee768c7ae00000000000000000000000075545db19fb79a3dc9caef0294bd3484be8dee8a00000000000000000000000016433cc0af2f820f5719be3d84b3a927b2e31c40000000000000000000000000610cbbe9c9cdd5c9b03afbab19300c4656238f08000000000000000000000000877ab2033f7e982ed747b14ab9c8842a3dc4d4d20000000000000000000000007b73f551167abfe2585a6bae6def948489c1855c0000000000000000000000006ac7c7252b78ae22fcf2fe6a010e3a73199dbe09000000000000000000000000a8c1981525e835495fed717d96be82ef14b1f6df000000000000000000000000fe4826752adada150dc2eee49823ef46123b7603000000000000000000000000f0e64e20d51641181e6cc4a9211f42fb03b3397f00000000000000000000000000000000000000000000000000000000000001a000000000000000000000000000000000000000000000000000000000000002c00000000000000000000000000000000000000000000000000000000000000b00000000000000000000000000000000000000000000000000000000000000006000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000e0000000000000000000000000000000000000000000000000000000000000000364616f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a6d616e6167656d656e74000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006706c7567696e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000028000000000000000000000000000000000000000000000000000000000000004800000000000000000000000000000000000000000000000000000000000000640000000000000000000000000fc12e57f9f74de60251405f348d82724984c098b0000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000c0000000000000000000000000000000000000000000000000000000000000014000000000000000000000000000000000000000000000000000000000000001c00000000000000000000000000000000000000000000000000000000000000042697066733a2f2f6261666b7265696662776f6f6f3368333668747a73636674776d336b6f756f6b7463766b71796861786c756f646f36786b7970726e6f6e337235340000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000042697066733a2f2f6261666b72656966696a7368667466343771356d746f69626676776b7a763432726571663475646469343669376b63626c74366270737667696934000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000561646d696e00000000000000000000000000000000000000000000000000000000000000000000000000000099e8cea1050d19fa5b35baf9b5524f68839fb6850000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000000000000000000000000000000000000c0000000000000000000000000000000000000000000000000000000000000014000000000000000000000000000000000000000000000000000000000000001c00000000000000000000000000000000000000000000000000000000000000042697066733a2f2f6261666b72656965737866767766377170686270773265706d616272727a32616c776f363666736f37746a783363627436336b34787a6563336d610000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000042697066733a2f2f6261666b7265696169706a6a3272797932756937376372776d6762616d6a6b6d723678626476727669796c68347a346b663534737132657476677500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000086d756c74697369670000000000000000000000000000000000000000000000000000000000000000000000005256e2ffe1e43fe228dd33eeae29b07543bb4f680000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000000000000000000000000000000000000c0000000000000000000000000000000000000000000000000000000000000012000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000035697066733a2f2f516d576a5a41727665506e4d506762664b414d57335469646271484579363855563653765242686961796747746100000000000000000000000000000000000000000000000000000000000000000000000000000000000035697066733a2f2f516d66585579354c6334697167384476675764535344325a68436d43477645325754645759464539736f734352630000000000000000000000000000000000000000000000000000000000000000000000000000000000000c746f6b656e2d766f74696e670000000000000000000000000000000000000000000000000000000000000000089cc95fe03be5d6451af638a71cf24a48877a5c0000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000c0000000000000000000000000000000000000000000000000000000000000014000000000000000000000000000000000000000000000000000000000000001c00000000000000000000000000000000000000000000000000000000000000042697066733a2f2f6261666b72656966323370367977333235726b77776c68676b7564696173767136346c6f6e716d666e74376c73356b7366616d356865646362346d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000042697066733a2f2f6261666b7265696669613668687a376b6c66626171617764347663706c6b6f6965737963626d72663563327832347a66756976796e33356d66737500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000037370700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006000000000000000000000000000000000000000000000000000000000000000e000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000042697066733a2f2f6261666b72656962656d66727865757766616f6e6f366b33377662693636666374637774696f69796374726c3466767174716d696f6474326d6c650000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005000000000000000000000000df62645a2c714febbf6060d1fb607e7eccef0659000000000000000000000000af2c536f9af22548829b20e9afc567259c820c620000000000000000000000003ffe3f16d47a54b1c6a3f47c9e6ff5c2c1b32859000000000000000000000000d953216d672218db55cab06c2406d5f8af89d72000000000000000000000000087d9ddffb87ea907d41a2193baed00896d3661a2
Deployed Bytecode
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
Constructor Arguments (ABI-Encoded and is the last bytes of the Contract Creation Code above)
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
-----Decoded View---------------
Arg [0] : _parameters (tuple):
Arg [1] : osxImplementations (tuple):
Arg [1] : daoBase (address): 0x24f068e91148c3e5678320e6558d66ceE768c7ae
Arg [2] : daoRegistryBase (address): 0x75545DB19fb79A3DC9caeF0294Bd3484bE8dee8a
Arg [3] : pluginRepoRegistryBase (address): 0x16433Cc0Af2F820F5719Be3d84b3a927B2E31C40
Arg [4] : placeholderSetup (address): 0x610CbBE9c9CDd5C9B03aFBab19300c4656238F08
Arg [5] : ensSubdomainRegistrarBase (address): 0x877AB2033F7E982eD747b14Ab9c8842A3dc4D4d2
Arg [6] : globalExecutor (address): 0x7b73F551167AbFE2585a6baE6def948489c1855C
Arg [2] : helperFactories (tuple):
Arg [1] : daoHelper (address): 0x6AC7C7252b78aE22FcF2fE6a010e3a73199Dbe09
Arg [2] : pluginRepoHelper (address): 0xA8C1981525e835495Fed717d96be82eF14b1f6df
Arg [3] : pspHelper (address): 0xfE4826752aDadA150Dc2EEE49823ef46123B7603
Arg [4] : ensHelper (address): 0xF0e64E20d51641181E6cc4A9211f42fB03B3397f
Arg [3] : ensParameters (tuple):
Arg [1] : daoRootDomain (string): dao
Arg [2] : managementDaoSubdomain (string): management
Arg [3] : pluginSubdomain (string): plugin
Arg [4] : corePlugins (tuple):
Arg [1] : adminPlugin (tuple):
Arg [1] : pluginSetup (address): 0xfc12E57F9f74dE60251405F348D82724984c098b
Arg [2] : release (uint8): 1
Arg [3] : build (uint8): 2
Arg [4] : releaseMetadataUri (string): ipfs://bafkreifbwooo3h36htzscftwm3kouoktcvkqyhaxluodo6xkyprnon3r54
Arg [5] : buildMetadataUri (string): ipfs://bafkreifijshftf47q5mtoibfvwkzv42reqf4uddi46i7kcblt6bpsvgii4
Arg [6] : subdomain (string): admin
Arg [2] : multisigPlugin (tuple):
Arg [1] : pluginSetup (address): 0x99e8ceA1050d19FA5b35bAf9B5524f68839fB685
Arg [2] : release (uint8): 1
Arg [3] : build (uint8): 3
Arg [4] : releaseMetadataUri (string): ipfs://bafkreiesxfvwf7qphbpw2epmabrrz2alwo66fso7tjx3cbt63k4xzec3ma
Arg [5] : buildMetadataUri (string): ipfs://bafkreiaipjj2ryy2ui77crwmgbamjkmr6xbdvrviylh4z4kf54sq2etvgu
Arg [6] : subdomain (string): multisig
Arg [3] : tokenVotingPlugin (tuple):
Arg [1] : pluginSetup (address): 0x5256e2FfE1E43Fe228DD33eeae29B07543bB4F68
Arg [2] : release (uint8): 1
Arg [3] : build (uint8): 3
Arg [4] : releaseMetadataUri (string): ipfs://QmWjZArvePnMPgbfKAMW3TidbqHEy68UV6SvRBhiaygGta
Arg [5] : buildMetadataUri (string): ipfs://QmfXUy5Lc4iqg8DvgWdSSD2ZhCmCGvE2WTdWYFE9sosCRc
Arg [6] : subdomain (string): token-voting
Arg [4] : stagedProposalProcessorPlugin (tuple):
Arg [1] : pluginSetup (address): 0x089cc95fe03BE5D6451af638A71cF24a48877a5c
Arg [2] : release (uint8): 1
Arg [3] : build (uint8): 1
Arg [4] : releaseMetadataUri (string): ipfs://bafkreif23p6yw325rkwwlhgkudiasvq64lonqmfnt7ls5ksfam5hedcb4m
Arg [5] : buildMetadataUri (string): ipfs://bafkreifia6hhz7klfbaqawd4vcplkoiesycbmrf5c2x24zfuivyn35mfsu
Arg [6] : subdomain (string): spp
Arg [5] : managementDao (tuple):
Arg [1] : metadataUri (string): ipfs://bafkreibemfrxeuwfaono6k37vbi66fctcwtioiyctrl4fvqtqmiodt2mle
Arg [2] : members (address[]): 0xDF62645A2C714FebBF6060d1FB607E7EcceF0659,0xaf2C536F9aF22548829B20e9AFC567259C820c62,0x3ffe3F16d47A54b1C6A3f47c9E6Ff5C2C1B32859,0xd953216D672218db55cAb06c2406D5f8af89D720,0x87D9dDfFB87eA907D41a2193bAEd00896d3661A2
Arg [3] : minApprovals (uint8): 3
-----Encoded View---------------
102 Constructor Arguments found :
Arg [0] : 0000000000000000000000000000000000000000000000000000000000000020
Arg [1] : 00000000000000000000000024f068e91148c3e5678320e6558d66cee768c7ae
Arg [2] : 00000000000000000000000075545db19fb79a3dc9caef0294bd3484be8dee8a
Arg [3] : 00000000000000000000000016433cc0af2f820f5719be3d84b3a927b2e31c40
Arg [4] : 000000000000000000000000610cbbe9c9cdd5c9b03afbab19300c4656238f08
Arg [5] : 000000000000000000000000877ab2033f7e982ed747b14ab9c8842a3dc4d4d2
Arg [6] : 0000000000000000000000007b73f551167abfe2585a6bae6def948489c1855c
Arg [7] : 0000000000000000000000006ac7c7252b78ae22fcf2fe6a010e3a73199dbe09
Arg [8] : 000000000000000000000000a8c1981525e835495fed717d96be82ef14b1f6df
Arg [9] : 000000000000000000000000fe4826752adada150dc2eee49823ef46123b7603
Arg [10] : 000000000000000000000000f0e64e20d51641181e6cc4a9211f42fb03b3397f
Arg [11] : 00000000000000000000000000000000000000000000000000000000000001a0
Arg [12] : 00000000000000000000000000000000000000000000000000000000000002c0
Arg [13] : 0000000000000000000000000000000000000000000000000000000000000b00
Arg [14] : 0000000000000000000000000000000000000000000000000000000000000060
Arg [15] : 00000000000000000000000000000000000000000000000000000000000000a0
Arg [16] : 00000000000000000000000000000000000000000000000000000000000000e0
Arg [17] : 0000000000000000000000000000000000000000000000000000000000000003
Arg [18] : 64616f0000000000000000000000000000000000000000000000000000000000
Arg [19] : 000000000000000000000000000000000000000000000000000000000000000a
Arg [20] : 6d616e6167656d656e7400000000000000000000000000000000000000000000
Arg [21] : 0000000000000000000000000000000000000000000000000000000000000006
Arg [22] : 706c7567696e0000000000000000000000000000000000000000000000000000
Arg [23] : 0000000000000000000000000000000000000000000000000000000000000080
Arg [24] : 0000000000000000000000000000000000000000000000000000000000000280
Arg [25] : 0000000000000000000000000000000000000000000000000000000000000480
Arg [26] : 0000000000000000000000000000000000000000000000000000000000000640
Arg [27] : 000000000000000000000000fc12e57f9f74de60251405f348d82724984c098b
Arg [28] : 0000000000000000000000000000000000000000000000000000000000000001
Arg [29] : 0000000000000000000000000000000000000000000000000000000000000002
Arg [30] : 00000000000000000000000000000000000000000000000000000000000000c0
Arg [31] : 0000000000000000000000000000000000000000000000000000000000000140
Arg [32] : 00000000000000000000000000000000000000000000000000000000000001c0
Arg [33] : 0000000000000000000000000000000000000000000000000000000000000042
Arg [34] : 697066733a2f2f6261666b7265696662776f6f6f3368333668747a7363667477
Arg [35] : 6d336b6f756f6b7463766b71796861786c756f646f36786b7970726e6f6e3372
Arg [36] : 3534000000000000000000000000000000000000000000000000000000000000
Arg [37] : 0000000000000000000000000000000000000000000000000000000000000042
Arg [38] : 697066733a2f2f6261666b72656966696a7368667466343771356d746f696266
Arg [39] : 76776b7a763432726571663475646469343669376b63626c7436627073766769
Arg [40] : 6934000000000000000000000000000000000000000000000000000000000000
Arg [41] : 0000000000000000000000000000000000000000000000000000000000000005
Arg [42] : 61646d696e000000000000000000000000000000000000000000000000000000
Arg [43] : 00000000000000000000000099e8cea1050d19fa5b35baf9b5524f68839fb685
Arg [44] : 0000000000000000000000000000000000000000000000000000000000000001
Arg [45] : 0000000000000000000000000000000000000000000000000000000000000003
Arg [46] : 00000000000000000000000000000000000000000000000000000000000000c0
Arg [47] : 0000000000000000000000000000000000000000000000000000000000000140
Arg [48] : 00000000000000000000000000000000000000000000000000000000000001c0
Arg [49] : 0000000000000000000000000000000000000000000000000000000000000042
Arg [50] : 697066733a2f2f6261666b72656965737866767766377170686270773265706d
Arg [51] : 616272727a32616c776f363666736f37746a783363627436336b34787a656333
Arg [52] : 6d61000000000000000000000000000000000000000000000000000000000000
Arg [53] : 0000000000000000000000000000000000000000000000000000000000000042
Arg [54] : 697066733a2f2f6261666b7265696169706a6a3272797932756937376372776d
Arg [55] : 6762616d6a6b6d723678626476727669796c68347a346b663534737132657476
Arg [56] : 6775000000000000000000000000000000000000000000000000000000000000
Arg [57] : 0000000000000000000000000000000000000000000000000000000000000008
Arg [58] : 6d756c7469736967000000000000000000000000000000000000000000000000
Arg [59] : 0000000000000000000000005256e2ffe1e43fe228dd33eeae29b07543bb4f68
Arg [60] : 0000000000000000000000000000000000000000000000000000000000000001
Arg [61] : 0000000000000000000000000000000000000000000000000000000000000003
Arg [62] : 00000000000000000000000000000000000000000000000000000000000000c0
Arg [63] : 0000000000000000000000000000000000000000000000000000000000000120
Arg [64] : 0000000000000000000000000000000000000000000000000000000000000180
Arg [65] : 0000000000000000000000000000000000000000000000000000000000000035
Arg [66] : 697066733a2f2f516d576a5a41727665506e4d506762664b414d573354696462
Arg [67] : 7148457936385556365376524268696179674774610000000000000000000000
Arg [68] : 0000000000000000000000000000000000000000000000000000000000000035
Arg [69] : 697066733a2f2f516d66585579354c6334697167384476675764535344325a68
Arg [70] : 436d43477645325754645759464539736f734352630000000000000000000000
Arg [71] : 000000000000000000000000000000000000000000000000000000000000000c
Arg [72] : 746f6b656e2d766f74696e670000000000000000000000000000000000000000
Arg [73] : 000000000000000000000000089cc95fe03be5d6451af638a71cf24a48877a5c
Arg [74] : 0000000000000000000000000000000000000000000000000000000000000001
Arg [75] : 0000000000000000000000000000000000000000000000000000000000000001
Arg [76] : 00000000000000000000000000000000000000000000000000000000000000c0
Arg [77] : 0000000000000000000000000000000000000000000000000000000000000140
Arg [78] : 00000000000000000000000000000000000000000000000000000000000001c0
Arg [79] : 0000000000000000000000000000000000000000000000000000000000000042
Arg [80] : 697066733a2f2f6261666b72656966323370367977333235726b77776c68676b
Arg [81] : 7564696173767136346c6f6e716d666e74376c73356b7366616d356865646362
Arg [82] : 346d000000000000000000000000000000000000000000000000000000000000
Arg [83] : 0000000000000000000000000000000000000000000000000000000000000042
Arg [84] : 697066733a2f2f6261666b7265696669613668687a376b6c6662617161776434
Arg [85] : 7663706c6b6f6965737963626d72663563327832347a66756976796e33356d66
Arg [86] : 7375000000000000000000000000000000000000000000000000000000000000
Arg [87] : 0000000000000000000000000000000000000000000000000000000000000003
Arg [88] : 7370700000000000000000000000000000000000000000000000000000000000
Arg [89] : 0000000000000000000000000000000000000000000000000000000000000060
Arg [90] : 00000000000000000000000000000000000000000000000000000000000000e0
Arg [91] : 0000000000000000000000000000000000000000000000000000000000000003
Arg [92] : 0000000000000000000000000000000000000000000000000000000000000042
Arg [93] : 697066733a2f2f6261666b72656962656d66727865757766616f6e6f366b3337
Arg [94] : 7662693636666374637774696f69796374726c3466767174716d696f6474326d
Arg [95] : 6c65000000000000000000000000000000000000000000000000000000000000
Arg [96] : 0000000000000000000000000000000000000000000000000000000000000005
Arg [97] : 000000000000000000000000df62645a2c714febbf6060d1fb607e7eccef0659
Arg [98] : 000000000000000000000000af2c536f9af22548829b20e9afc567259c820c62
Arg [99] : 0000000000000000000000003ffe3f16d47a54b1c6a3f47c9e6ff5c2c1b32859
Arg [100] : 000000000000000000000000d953216d672218db55cab06c2406d5f8af89d720
Arg [101] : 00000000000000000000000087d9ddffb87ea907d41a2193baed00896d3661a2
Loading...
Loading
Loading...
Loading
0xcC8B99Ac88ae68882783a915210E619a701ce1a1
Multichain Portfolio | 34 Chains
| Chain | Token | Portfolio % | Price | Amount | Value |
|---|
Loading...
Loading
Loading...
Loading
Loading...
Loading
[ Download: CSV Export ]
[ Download: CSV Export ]
A contract address hosts a smart contract, which is a set of code stored on the blockchain that runs when predetermined conditions are met. Learn more about addresses in our Knowledge Base.