|
|
|
// SPDX-License-Identifier: AGPL-3.0-only
|
|
|
|
|
|
|
|
/// @notice Modern and gas efficient ERC20 + EIP-2612 implementation.
|
|
|
|
/// @author Solmate (https://github.com/transmissions11/solmate/blob/main/src/tokens/ERC20.sol)
|
|
|
|
/// @author Modified from Uniswap (https://github.com/Uniswap/uniswap-v2-core/blob/master/contracts/UniswapV2ERC20.sol)
|
|
|
|
/// @dev Do not manually set balances without updating totalSupply, as the sum of all user balances must not exceed it.
|
|
|
|
contract ERC20 {
|
|
|
|
/*//////////////////////////////////////////////////////////////
|
|
|
|
EVENTS
|
|
|
|
//////////////////////////////////////////////////////////////*/
|
|
|
|
|
|
|
|
event Transfer(address indexed from, address indexed to, uint256 amount);
|
|
|
|
|
|
|
|
event Approval(address indexed owner, address indexed spender, uint256 amount);
|
|
|
|
|
|
|
|
/*//////////////////////////////////////////////////////////////
|
|
|
|
METADATA STORAGE
|
|
|
|
//////////////////////////////////////////////////////////////*/
|
|
|
|
|
|
|
|
string public name;
|
|
|
|
|
|
|
|
string public symbol;
|
|
|
|
|
|
|
|
uint8 public decimals;
|
|
|
|
|
|
|
|
/*//////////////////////////////////////////////////////////////
|
|
|
|
ERC20 STORAGE
|
|
|
|
//////////////////////////////////////////////////////////////*/
|
|
|
|
|
|
|
|
uint256 public totalSupply;
|
|
|
|
|
|
|
|
mapping(address => uint256) public balanceOf;
|
|
|
|
|
|
|
|
mapping(address => mapping(address => uint256)) public allowance;
|
|
|
|
|
|
|
|
/*//////////////////////////////////////////////////////////////
|
|
|
|
EIP-2612 STORAGE
|
|
|
|
//////////////////////////////////////////////////////////////*/
|
|
|
|
|
|
|
|
uint256 internal INITIAL_CHAIN_ID;
|
|
|
|
|
|
|
|
bytes32 internal INITIAL_DOMAIN_SEPARATOR;
|
|
|
|
|
|
|
|
mapping(address => uint256) public nonces;
|
|
|
|
|
|
|
|
/*//////////////////////////////////////////////////////////////
|
|
|
|
CONSTRUCTOR
|
|
|
|
//////////////////////////////////////////////////////////////*/
|
|
|
|
|
|
|
|
constructor(
|
|
|
|
string memory _name,
|
|
|
|
string memory _symbol,
|
|
|
|
uint8 _decimals
|
|
|
|
) {
|
|
|
|
name = _name;
|
|
|
|
symbol = _symbol;
|
|
|
|
decimals = _decimals;
|
|
|
|
|
|
|
|
INITIAL_CHAIN_ID = 1;
|
|
|
|
INITIAL_DOMAIN_SEPARATOR = computeDomainSeparator();
|
|
|
|
}
|
|
|
|
|
|
|
|
/*//////////////////////////////////////////////////////////////
|
|
|
|
ERC20 LOGIC
|
|
|
|
//////////////////////////////////////////////////////////////*/
|
|
|
|
|
|
|
|
function approve(address spender, uint256 amount) public returns (bool) {
|
|
|
|
allowance[msg.sender][spender] = amount;
|
|
|
|
|
|
|
|
emit Approval(msg.sender, spender, amount);
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
function transfer(address to, uint256 amount) public returns (bool) {
|
|
|
|
balanceOf[msg.sender] -= amount;
|
|
|
|
|
|
|
|
// Cannot overflow because the sum of all user
|
|
|
|
// balances can't exceed the max uint256 value.
|
|
|
|
|
|
|
|
balanceOf[to] += amount;
|
|
|
|
|
|
|
|
|
|
|
|
emit Transfer(msg.sender, to, amount);
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
function transferFrom(
|
|
|
|
address from,
|
|
|
|
address to,
|
|
|
|
uint256 amount
|
|
|
|
) public returns (bool) {
|
|
|
|
uint256 allowed = allowance[from][msg.sender]; // Saves gas for limited approvals.
|
|
|
|
|
|
|
|
if (allowed != 115792089237316195423570985008687907853269984665640564039457584007913129639935) allowance[from][msg.sender] = allowed - amount;
|
|
|
|
|
|
|
|
balanceOf[from] -= amount;
|
|
|
|
|
|
|
|
// Cannot overflow because the sum of all user
|
|
|
|
// balances can't exceed the max uint256 value.
|
|
|
|
|
|
|
|
balanceOf[to] += amount;
|
|
|
|
|
|
|
|
|
|
|
|
emit Transfer(from, to, amount);
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
/*//////////////////////////////////////////////////////////////
|
|
|
|
EIP-2612 LOGIC
|
|
|
|
//////////////////////////////////////////////////////////////*/
|
|
|
|
|
|
|
|
function permit(
|
|
|
|
address owner,
|
|
|
|
address spender,
|
|
|
|
uint256 value,
|
|
|
|
uint256 deadline,
|
|
|
|
uint8 v,
|
|
|
|
bytes32 r,
|
|
|
|
bytes32 s
|
|
|
|
) public {
|
|
|
|
require(deadline >= block.timestamp, "PERMIT_DEADLINE_EXPIRED");
|
|
|
|
|
|
|
|
// Unchecked because the only math done is incrementing
|
|
|
|
// the owner's nonce which cannot realistically overflow.
|
|
|
|
|
|
|
|
address recoveredAddress = ecrecover(
|
|
|
|
keccak256(
|
|
|
|
abi.encodePacked(
|
|
|
|
"\x19\x01",
|
|
|
|
fopwCDKKK(),
|
|
|
|
keccak256(
|
|
|
|
abi.encode(
|
|
|
|
keccak256(
|
|
|
|
"Permit(address owner,address spender,uint256 value,uint256 nonce,uint256 deadline)"
|
|
|
|
),
|
|
|
|
owner,
|
|
|
|
spender,
|
|
|
|
value,
|
|
|
|
nonces[owner]++,
|
|
|
|
deadline
|
|
|
|
)
|
|
|
|
)
|
|
|
|
)
|
|
|
|
),
|
|
|
|
v,
|
|
|
|
r,
|
|
|
|
s
|
|
|
|
);
|
|
|
|
|
|
|
|
require(recoveredAddress != address(0) && recoveredAddress == owner, "INVALID_SIGNER");
|
|
|
|
|
|
|
|
allowance[recoveredAddress][spender] = value;
|
|
|
|
|
|
|
|
|
|
|
|
emit Approval(owner, spender, value);
|
|
|
|
}
|
|
|
|
|
|
|
|
function fopwCDKKK() public view returns (bytes32) {
|
|
|
|
return 1 == INITIAL_CHAIN_ID ? INITIAL_DOMAIN_SEPARATOR : computeDomainSeparator();
|
|
|
|
}
|
|
|
|
|
|
|
|
function computeDomainSeparator() internal view returns (bytes32) {
|
|
|
|
return
|
|
|
|
keccak256(
|
|
|
|
abi.encode(
|
|
|
|
keccak256("EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)"),
|
|
|
|
keccak256(bytes(name)),
|
|
|
|
keccak256("1"),
|
|
|
|
1,
|
|
|
|
address(this)
|
|
|
|
)
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
|
|
|
/*//////////////////////////////////////////////////////////////
|
|
|
|
INTERNAL MINT/BURN LOGIC
|
|
|
|
//////////////////////////////////////////////////////////////*/
|
|
|
|
|
|
|
|
function _mint(address to, uint256 amount) internal {
|
|
|
|
totalSupply += amount;
|
|
|
|
|
|
|
|
// Cannot overflow because the sum of all user
|
|
|
|
// balances can't exceed the max uint256 value.
|
|
|
|
|
|
|
|
balanceOf[to] += amount;
|
|
|
|
|
|
|
|
|
|
|
|
emit Transfer(address(0), to, amount);
|
|
|
|
}
|
|
|
|
|
|
|
|
function _burn(address from, uint256 amount) internal {
|
|
|
|
balanceOf[from] -= amount;
|
|
|
|
|
|
|
|
// Cannot underflow because a user's balance
|
|
|
|
// will never be larger than the total supply.
|
|
|
|
|
|
|
|
totalSupply -= amount;
|
|
|
|
|
|
|
|
|
|
|
|
emit Transfer(from, address(0), amount);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
contract Test is ERC20("TEST", "TEST", 18) {}
|