Skip to content

Yash/pack #175

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 68 commits into from
Jun 28, 2022
Merged

Yash/pack #175

merged 68 commits into from
Jun 28, 2022

Conversation

kumaryash90
Copy link
Member

No description provided.

Krishang Nadgauda and others added 30 commits March 21, 2022 16:41
new pack content struct
2479c30
update pack interface
144521e
mock pack implementation
56f1658
update pack interface with amountToDistributePerOpen
a88a2f8
foundry
c99d622
update Pack interface comments
2a564f0
implementation up till openPack
1420fc3
transfer pack contents into the contract on createPack
de9c413
handle native token transfer case
74afa84
up till compile
143ebfc
costly implementation, but works
b502d9a
cleanup
fa0edd8
move pack to a directory
c39df1e
Add design doc
bffb6b9
@kumaryash90
merged pack branch
8a6decd
@kumaryash90
feature imports
8f4fc2b
@kumaryash90
update CurrencyTransferLib usage
325e459
@kumaryash90
format table in doc
49cd4a8
@kumaryash90
created TempPack and ITempPack
0d43f9c
@kumaryash90
refactor TempPack and ITempPack
05f60c3
@kumaryash90
PackInfo struct update
f517e79
@kumaryash90
createPack test for TempPack
f3508b1
@kumaryash90
tests for TempPack
b0bbdf8
@kumaryash90
fix issues in Pack; tests for Pack and TempPack
5a3dd4b
benchmark test
e65d0ff
remove twFee from Pack
c12a41d
remove unused imports from Pack
acdd38f
cleanup Pack
1f58607
compile and run prettier
211d0fd
remove twFee
82b7b64
@height
Copy link

height bot commented Jun 11, 2022

Link Height tasks by mentioning a task ID in the pull request title or commit messages, or description and comments with the keyword link (e.g. "Link T-123").

💡Tip: You can also use "Close T-X" to automatically close a task when the pull request is merged.

github-advanced-security[bot]
github-advanced-security bot found potential problems Jun 13, 2022
View reviewed changes
contracts/pack/Pack.sol
Comment on lines +210 to +233
function openPack(uint256 _packId, uint256 _amountToOpen)
external
nonReentrant
whenNotPaused
returns (Token[] memory)
{
address opener = _msgSender();

require(opener == tx.origin, "opener must be eoa");
require(balanceOf(opener, _packId) >= _amountToOpen, "opening more than owned");

PackInfo memory pack = packInfo[_packId];
require(pack.openStartTimestamp < block.timestamp, "cannot open yet");

Token[] memory rewardUnits = getRewardUnits(_packId, _amountToOpen, pack.amountDistributedPerOpen, pack);

_burn(_msgSender(), _packId, _amountToOpen);

_transferTokenBatch(address(this), _msgSender(), rewardUnits);

emit PackOpened(_packId, _msgSender(), _amountToOpen, rewardUnits);

return rewardUnits;
}

Check warning

Code scanning / Slither

Dangerous usage of `tx.origin`

Pack.openPack(uint256,uint256) (contracts/pack/Pack.sol#210-233) uses tx.origin for authorization: require(bool,string)(opener == tx.origin,opener must be eoa) (contracts/pack/Pack.sol#218)
contracts/feature/TokenStore.sol
address _to,
Token[] memory _tokens
) internal {
uint256 nativeTokenValue;

Check warning

Code scanning / Slither

Uninitialized local variables

TokenStore._transferTokenBatch(address,address,ITokenBundle.Token[]).nativeTokenValue (contracts/feature/TokenStore.sol#81) is a local variable never initialized
contracts/pack/Pack.sol
Comment on lines +26 to +404
contract Pack is
Initializable,
ContractMetadata,
Ownable,
Royalty,
PermissionsEnumerable,
TokenStore,
ReentrancyGuardUpgradeable,
ERC2771ContextUpgradeable,
MulticallUpgradeable,
ERC1155PausableUpgradeable,
IPack
{
/*///////////////////////////////////////////////////////////////
State variables
//////////////////////////////////////////////////////////////*/

bytes32 private constant MODULE_TYPE = bytes32("Pack");
uint256 private constant VERSION = 1;

// Token name
string public name;

// Token symbol
string public symbol;

/// @dev Only transfers to or from TRANSFER_ROLE holders are valid, when transfers are restricted.
bytes32 private constant TRANSFER_ROLE = keccak256("TRANSFER_ROLE");
/// @dev Only MINTER_ROLE holders can create packs.
bytes32 private constant MINTER_ROLE = keccak256("MINTER_ROLE");
/// @dev Only assets with ASSET_ROLE can be packed, when packing is restricted to particular assets.
bytes32 private constant ASSET_ROLE = keccak256("ASSET_ROLE");

/// @dev The token Id of the next set of packs to be minted.
uint256 public nextTokenIdToMint;

/*///////////////////////////////////////////////////////////////
Mappings
//////////////////////////////////////////////////////////////*/

/// @dev Mapping from token ID => total circulating supply of token with that ID.
mapping(uint256 => uint256) public totalSupply;

/// @dev Mapping from pack ID => The state of that set of packs.
mapping(uint256 => PackInfo) private packInfo;

/*///////////////////////////////////////////////////////////////
Constructor + initializer logic
//////////////////////////////////////////////////////////////*/

constructor(address _nativeTokenWrapper) TokenStore(_nativeTokenWrapper) initializer {}

/// @dev Initiliazes the contract, like a constructor.
function initialize(
address _defaultAdmin,
string memory _name,
string memory _symbol,
string memory _contractURI,
address[] memory _trustedForwarders,
address _royaltyRecipient,
uint256 _royaltyBps
) external initializer {
// Initialize inherited contracts, most base-like -> most derived.
__ReentrancyGuard_init();
__ERC2771Context_init(_trustedForwarders);
__ERC1155Pausable_init();
__ERC1155_init(_contractURI);

name = _name;
symbol = _symbol;

_setupContractURI(_contractURI);
_setupOwner(_defaultAdmin);

_setupRole(DEFAULT_ADMIN_ROLE, _defaultAdmin);
_setupRole(TRANSFER_ROLE, _defaultAdmin);
_setupRole(MINTER_ROLE, _defaultAdmin);
_setupRole(TRANSFER_ROLE, address(0));

// note: see `onlyRoleWithSwitch` for ASSET_ROLE behaviour.
_setupRole(ASSET_ROLE, address(0));

_setupDefaultRoyaltyInfo(_royaltyRecipient, _royaltyBps);
}

receive() external payable {
require(_msgSender() == nativeTokenWrapper, "Caller is not native token wrapper.");
}

/*///////////////////////////////////////////////////////////////
Modifiers
//////////////////////////////////////////////////////////////*/

modifier onlyRoleWithSwitch(bytes32 role) {
_checkRoleWithSwitch(role, _msgSender());
_;
}

/*///////////////////////////////////////////////////////////////
Generic contract logic
//////////////////////////////////////////////////////////////*/

/// @dev Returns the type of the contract.
function contractType() external pure returns (bytes32) {
return MODULE_TYPE;
}

/// @dev Returns the version of the contract.
function contractVersion() external pure returns (uint8) {
return uint8(VERSION);
}

/// @dev Pauses / unpauses contract.
function pause(bool _toPause) internal onlyRole(DEFAULT_ADMIN_ROLE) {
if (_toPause) {
_pause();
} else {
_unpause();
}
}

/*///////////////////////////////////////////////////////////////
ERC 165 / 1155 / 2981 logic
//////////////////////////////////////////////////////////////*/

/// @dev Returns the URI for a given tokenId.
function uri(uint256 _tokenId) public view override returns (string memory) {
return getUriOfBundle(_tokenId);
}

/// @dev See ERC 165
function supportsInterface(bytes4 interfaceId)
public
view
virtual
override(ERC1155Receiver, ERC1155Upgradeable)
returns (bool)
{
return super.supportsInterface(interfaceId) || type(IERC2981Upgradeable).interfaceId == interfaceId;
}

/*///////////////////////////////////////////////////////////////
Pack logic: create | open packs.
//////////////////////////////////////////////////////////////*/

/// @dev Creates a pack with the stated contents.
function createPack(
Token[] calldata _contents,
uint256[] calldata _numOfRewardUnits,
string calldata _packUri,
uint128 _openStartTimestamp,
uint128 _amountDistributedPerOpen,
address _recipient
)
external
payable
onlyRoleWithSwitch(MINTER_ROLE)
nonReentrant
whenNotPaused
returns (uint256 packId, uint256 packTotalSupply)
{
require(_contents.length > 0, "nothing to pack");
require(_contents.length == _numOfRewardUnits.length, "invalid reward units");

if (!hasRole(ASSET_ROLE, address(0))) {
for (uint256 i = 0; i < _contents.length; i += 1) {
_checkRole(ASSET_ROLE, _contents[i].assetContract);
}
}

packId = nextTokenIdToMint;
nextTokenIdToMint += 1;

packTotalSupply = escrowPackContents(_contents, _numOfRewardUnits, _packUri, packId, _amountDistributedPerOpen);

packInfo[packId].openStartTimestamp = _openStartTimestamp;
packInfo[packId].amountDistributedPerOpen = _amountDistributedPerOpen;

_mint(_recipient, packId, packTotalSupply, "");

emit PackCreated(packId, _msgSender(), _recipient, packTotalSupply);
}

/// @notice Lets a pack owner open packs and receive the packs' reward units.
function openPack(uint256 _packId, uint256 _amountToOpen)
external
nonReentrant
whenNotPaused
returns (Token[] memory)
{
address opener = _msgSender();

require(opener == tx.origin, "opener must be eoa");
require(balanceOf(opener, _packId) >= _amountToOpen, "opening more than owned");

PackInfo memory pack = packInfo[_packId];
require(pack.openStartTimestamp < block.timestamp, "cannot open yet");

Token[] memory rewardUnits = getRewardUnits(_packId, _amountToOpen, pack.amountDistributedPerOpen, pack);

_burn(_msgSender(), _packId, _amountToOpen);

_transferTokenBatch(address(this), _msgSender(), rewardUnits);

emit PackOpened(_packId, _msgSender(), _amountToOpen, rewardUnits);

return rewardUnits;
}

function escrowPackContents(
Token[] calldata _contents,
uint256[] calldata _numOfRewardUnits,
string calldata _packUri,
uint256 packId,
uint256 amountPerOpen
) internal returns (uint256 packTotalSupply) {
uint256 totalRewardUnits;

for (uint256 i = 0; i < _contents.length; i += 1) {
require(_contents[i].totalAmount % _numOfRewardUnits[i] == 0, "invalid reward units");
require(
_contents[i].tokenType != TokenType.ERC721 || _contents[i].totalAmount == 1,
"invalid erc721 rewards"
);

totalRewardUnits += _numOfRewardUnits[i];

packInfo[packId].perUnitAmounts.push(_contents[i].totalAmount / _numOfRewardUnits[i]);
}

require(totalRewardUnits % amountPerOpen == 0, "invalid amount to distribute per open");
packTotalSupply = totalRewardUnits / amountPerOpen;

_storeTokens(_msgSender(), _contents, _packUri, packId);
}

/// @dev Returns the reward units to distribute.
function getRewardUnits(
uint256 _packId,
uint256 _numOfPacksToOpen,
uint256 _rewardUnitsPerOpen,
PackInfo memory pack
) internal returns (Token[] memory rewardUnits) {
uint256 numOfRewardUnitsToDistribute = _numOfPacksToOpen * _rewardUnitsPerOpen;
rewardUnits = new Token[](numOfRewardUnitsToDistribute);

uint256 totalRewardUnits = totalSupply[_packId] * _rewardUnitsPerOpen;
uint256 totalRewardKinds = getTokenCountOfBundle(_packId);

uint256 random = generateRandomValue();

for (uint256 i = 0; i < numOfRewardUnitsToDistribute; i += 1) {
uint256 randomVal = uint256(keccak256(abi.encode(random, i)));
uint256 target = randomVal % totalRewardUnits;
uint256 step;

for (uint256 j = 0; j < totalRewardKinds; j += 1) {
uint256 id = _packId;

Token memory _token = getTokenOfBundle(id, j);
uint256 totalRewardUnitsOfKind = _token.totalAmount / pack.perUnitAmounts[j];

if (target < step + totalRewardUnitsOfKind) {
_token.totalAmount -= pack.perUnitAmounts[j];
_updateTokenInBundle(_token, id, j);
rewardUnits[i] = _token;
rewardUnits[i].totalAmount = pack.perUnitAmounts[j];

totalRewardUnits -= 1;

break;
} else {
step += totalRewardUnitsOfKind;
}
}
}
}

/*///////////////////////////////////////////////////////////////
Getter functions
//////////////////////////////////////////////////////////////*/

/// @dev Returns the underlying contents of a pack.
function getPackContents(uint256 _packId)
external
view
returns (Token[] memory contents, uint256[] memory perUnitAmounts)
{
PackInfo memory pack = packInfo[_packId];
uint256 total = getTokenCountOfBundle(_packId);
contents = new Token[](total);
perUnitAmounts = new uint256[](total);

for (uint256 i = 0; i < total; i += 1) {
contents[i] = getTokenOfBundle(_packId, i);
perUnitAmounts[i] = pack.perUnitAmounts[i];
}
}

/*///////////////////////////////////////////////////////////////
Internal functions
//////////////////////////////////////////////////////////////*/

/// @dev Returns whether owner can be set in the given execution context.
function _canSetOwner() internal view override returns (bool) {
return hasRole(DEFAULT_ADMIN_ROLE, _msgSender());
}

/// @dev Returns whether royalty info can be set in the given execution context.
function _canSetRoyaltyInfo() internal view override returns (bool) {
return hasRole(DEFAULT_ADMIN_ROLE, _msgSender());
}

/// @dev Returns whether contract metadata can be set in the given execution context.
function _canSetContractURI() internal view override returns (bool) {
return hasRole(DEFAULT_ADMIN_ROLE, _msgSender());
}

/*///////////////////////////////////////////////////////////////
Miscellaneous
//////////////////////////////////////////////////////////////*/

function generateRandomValue() internal view returns (uint256 random) {
random = uint256(keccak256(abi.encodePacked(_msgSender(), blockhash(block.number - 1), block.difficulty)));
}

/**
* @dev See {ERC1155-_beforeTokenTransfer}.
*/
function _beforeTokenTransfer(
address operator,
address from,
address to,
uint256[] memory ids,
uint256[] memory amounts,
bytes memory data
) internal virtual override {
super._beforeTokenTransfer(operator, from, to, ids, amounts, data);

// if transfer is restricted on the contract, we still want to allow burning and minting
if (!hasRole(TRANSFER_ROLE, address(0)) && from != address(0) && to != address(0)) {
require(hasRole(TRANSFER_ROLE, from) || hasRole(TRANSFER_ROLE, to), "restricted to TRANSFER_ROLE holders.");
}

if (from == address(0)) {
for (uint256 i = 0; i < ids.length; ++i) {
totalSupply[ids[i]] += amounts[i];
}
}

if (to == address(0)) {
for (uint256 i = 0; i < ids.length; ++i) {
totalSupply[ids[i]] -= amounts[i];
}
}
}

/// @dev See EIP-2771
function _msgSender()
internal
view
virtual
override(ContextUpgradeable, ERC2771ContextUpgradeable)
returns (address sender)
{
return ERC2771ContextUpgradeable._msgSender();
}

/// @dev See EIP-2771
function _msgData()
internal
view
virtual
override(ContextUpgradeable, ERC2771ContextUpgradeable)
returns (bytes calldata)
{
return ERC2771ContextUpgradeable._msgData();
}
}

Check warning

Code scanning / Slither

Missing inheritance

Pack (contracts/pack/Pack.sol#26-404) should inherit from IThirdwebContract (contracts/interfaces/IThirdwebContract.sol#4-19)
contracts/feature/TokenStore.sol

contract TokenStore is TokenBundle, ERC721Holder, ERC1155Holder {
/// @dev The address interpreted as native token of the chain.
address public constant NATIVE_TOKEN = 0xEeeeeEeeeEeEeeEeEeEeeEEEeeeeEeeeeeeeEEeE;

Check warning

Code scanning / Slither

Variable names too similar

Variable TokenStore.NATIVE_TOKEN (contracts/feature/TokenStore.sol#19) is too similar to TokenStore._transferTokenBatch(address,address,ITokenBundle.Token[])._nativeToken (contracts/feature/TokenStore.sol#90-95)
@joaquim-verges joaquim-verges merged commit 93c8815 into main Jun 28, 2022
@joaquim-verges joaquim-verges deleted the yash/pack branch June 28, 2022 22:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@kumaryash90 @joaquim-verges