Source Code
Overview
ETH Balance
0 ETH
More Info
ContractCreator
Multichain Info
N/A
| Transaction Hash |
Method
|
Block
|
From
|
To
|
Amount
|
||||
|---|---|---|---|---|---|---|---|---|---|
Latest 25 internal transactions (View All)
Advanced mode:
| Parent Transaction Hash | Method | Block |
From
|
To
|
Amount
|
||
|---|---|---|---|---|---|---|---|
| Grant Role | 1223084 | 86 days ago | 0 ETH | ||||
| Revoke Role | 1223084 | 86 days ago | 0 ETH | ||||
| Grant Role | 1216629 | 87 days ago | 0 ETH | ||||
| Revoke Role | 1216629 | 87 days ago | 0 ETH | ||||
| Submit Report Da... | 1196814 | 90 days ago | 0 ETH | ||||
| Submit Consensus... | 1196798 | 90 days ago | 0 ETH | ||||
| Get Last Process... | 1196798 | 90 days ago | 0 ETH | ||||
| Get Consensus Ve... | 1196798 | 90 days ago | 0 ETH | ||||
| Get Last Process... | 1196798 | 90 days ago | 0 ETH | ||||
| Get Consensus Ve... | 1196798 | 90 days ago | 0 ETH | ||||
| Get Last Process... | 1196797 | 90 days ago | 0 ETH | ||||
| Get Consensus Ve... | 1196797 | 90 days ago | 0 ETH | ||||
| Get Last Process... | 1196797 | 90 days ago | 0 ETH | ||||
| Get Consensus Ve... | 1196797 | 90 days ago | 0 ETH | ||||
| Get Last Process... | 1196797 | 90 days ago | 0 ETH | ||||
| Get Consensus Ve... | 1196797 | 90 days ago | 0 ETH | ||||
| Get Last Process... | 1196796 | 90 days ago | 0 ETH | ||||
| Get Consensus Ve... | 1196796 | 90 days ago | 0 ETH | ||||
| Get Last Process... | 1196796 | 90 days ago | 0 ETH | ||||
| Get Consensus Ve... | 1196796 | 90 days ago | 0 ETH | ||||
| Get Last Process... | 1196796 | 90 days ago | 0 ETH | ||||
| Get Consensus Ve... | 1196796 | 90 days ago | 0 ETH | ||||
| Get Last Process... | 1150072 | 97 days ago | 0 ETH | ||||
| Get Consensus Ve... | 1150072 | 97 days ago | 0 ETH | ||||
| Submit Report Da... | 1150072 | 97 days ago | 0 ETH |
Loading...
Loading
Loading...
Loading
This contract may be a proxy contract. Click on More Options and select Is this a proxy? to confirm and enable the "Read as Proxy" & "Write as Proxy" tabs.
Contract Source Code Verified (Exact Match)
Contract Name:
CSFeeOracle
Compiler Version
v0.8.24+commit.e11b9ed9
Optimization Enabled:
Yes with 160 runs
Other Settings:
cancun EvmVersion
Contract Source Code (Solidity Standard Json-Input format)
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { AssetRecoverer } from "./abstract/AssetRecoverer.sol"; import { PausableUntil } from "./lib/utils/PausableUntil.sol"; import { BaseOracle } from "./lib/base-oracle/BaseOracle.sol"; import { ICSFeeDistributor } from "./interfaces/ICSFeeDistributor.sol"; import { ICSStrikes } from "./interfaces/ICSStrikes.sol"; import { ICSFeeOracle } from "./interfaces/ICSFeeOracle.sol"; contract CSFeeOracle is ICSFeeOracle, BaseOracle, PausableUntil, AssetRecoverer { /// @notice No assets are stored in the contract /// @notice An ACL role granting the permission to submit the data for a committee report. bytes32 public constant SUBMIT_DATA_ROLE = keccak256("SUBMIT_DATA_ROLE"); /// @notice An ACL role granting the permission to pause accepting oracle reports bytes32 public constant PAUSE_ROLE = keccak256("PAUSE_ROLE"); /// @notice An ACL role granting the permission to resume accepting oracle reports bytes32 public constant RESUME_ROLE = keccak256("RESUME_ROLE"); /// @notice An ACL role granting the permission to recover assets bytes32 public constant RECOVERER_ROLE = keccak256("RECOVERER_ROLE"); ICSFeeDistributor public immutable FEE_DISTRIBUTOR; ICSStrikes public immutable STRIKES; /// @dev DEPRECATED /// @custom:oz-renamed-from feeDistributor ICSFeeDistributor internal _feeDistributor; /// @dev DEPRECATED /// @custom:oz-renamed-from avgPerfLeewayBP uint256 internal _avgPerfLeewayBP; constructor( address feeDistributor, address strikes, uint256 secondsPerSlot, uint256 genesisTime ) BaseOracle(secondsPerSlot, genesisTime) { if (feeDistributor == address(0)) { revert ZeroFeeDistributorAddress(); } if (strikes == address(0)) { revert ZeroStrikesAddress(); } FEE_DISTRIBUTOR = ICSFeeDistributor(feeDistributor); STRIKES = ICSStrikes(strikes); } /// @dev initialize contract from scratch function initialize( address admin, address consensusContract, uint256 consensusVersion ) external { if (admin == address(0)) { revert ZeroAdminAddress(); } _grantRole(DEFAULT_ADMIN_ROLE, admin); BaseOracle._initialize(consensusContract, consensusVersion, 0); _updateContractVersion(2); } /// @dev should be called after update on the proxy function finalizeUpgradeV2(uint256 consensusVersion) external { _setConsensusVersion(consensusVersion); // nullify storage slots assembly ("memory-safe") { sstore(_feeDistributor.slot, 0x00) sstore(_avgPerfLeewayBP.slot, 0x00) } _updateContractVersion(2); } /// @inheritdoc ICSFeeOracle function resume() external onlyRole(RESUME_ROLE) { _resume(); } /// @inheritdoc ICSFeeOracle function pauseFor(uint256 duration) external onlyRole(PAUSE_ROLE) { _pauseFor(duration); } /// @inheritdoc ICSFeeOracle function submitReportData( ReportData calldata data, uint256 contractVersion ) external whenResumed { _checkMsgSenderIsAllowedToSubmitData(); _checkContractVersion(contractVersion); _checkConsensusData( data.refSlot, data.consensusVersion, // it's a waste of gas to copy the whole calldata into mem but seems there's no way around keccak256(abi.encode(data)) ); _startProcessing(); _handleConsensusReportData(data); } /// @dev Called in `submitConsensusReport` after a consensus is reached. function _handleConsensusReport( ConsensusReport memory /* report */, uint256 /* prevSubmittedRefSlot */, uint256 /* prevProcessingRefSlot */ ) internal override { // solhint-disable-previous-line no-empty-blocks // We do not require any type of async processing so far, so no actions required. } function _handleConsensusReportData(ReportData calldata data) internal { FEE_DISTRIBUTOR.processOracleReport({ _treeRoot: data.treeRoot, _treeCid: data.treeCid, _logCid: data.logCid, distributed: data.distributed, rebate: data.rebate, refSlot: data.refSlot }); STRIKES.processOracleReport(data.strikesTreeRoot, data.strikesTreeCid); } function _checkMsgSenderIsAllowedToSubmitData() internal view { if ( _isConsensusMember(msg.sender) || hasRole(SUBMIT_DATA_ROLE, msg.sender) ) { return; } revert SenderNotAllowed(); } function _onlyRecoverer() internal view override { _checkRole(RECOVERER_ROLE); } }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { AssetRecovererLib } from "../lib/AssetRecovererLib.sol"; /// @title AssetRecoverer /// @dev Abstract contract providing mechanisms for recovering various asset types (ETH, ERC20, ERC721, ERC1155) from a contract. /// This contract is designed to allow asset recovery by an authorized address by implementing the onlyRecovererRole guardian /// @notice Assets can be sent only to the `msg.sender` abstract contract AssetRecoverer { /// @dev Allows sender to recover Ether held by the contract /// Emits an EtherRecovered event upon success function recoverEther() external { _onlyRecoverer(); AssetRecovererLib.recoverEther(); } /// @dev Allows sender to recover ERC20 tokens held by the contract /// @param token The address of the ERC20 token to recover /// @param amount The amount of the ERC20 token to recover /// Emits an ERC20Recovered event upon success /// Optionally, the inheriting contract can override this function to add additional restrictions function recoverERC20(address token, uint256 amount) external virtual { _onlyRecoverer(); AssetRecovererLib.recoverERC20(token, amount); } /// @dev Allows sender to recover ERC721 tokens held by the contract /// @param token The address of the ERC721 token to recover /// @param tokenId The token ID of the ERC721 token to recover /// Emits an ERC721Recovered event upon success function recoverERC721(address token, uint256 tokenId) external { _onlyRecoverer(); AssetRecovererLib.recoverERC721(token, tokenId); } /// @dev Allows sender to recover ERC1155 tokens held by the contract. /// @param token The address of the ERC1155 token to recover. /// @param tokenId The token ID of the ERC1155 token to recover. /// Emits an ERC1155Recovered event upon success. function recoverERC1155(address token, uint256 tokenId) external { _onlyRecoverer(); AssetRecovererLib.recoverERC1155(token, tokenId); } /// @dev Guardian to restrict access to the recover methods. /// Should be implemented by the inheriting contract function _onlyRecoverer() internal view virtual; }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { UnstructuredStorage } from "../UnstructuredStorage.sol"; contract PausableUntil { using UnstructuredStorage for bytes32; /// Contract resume/pause control storage slot bytes32 internal constant RESUME_SINCE_TIMESTAMP_POSITION = keccak256("lido.PausableUntil.resumeSinceTimestamp"); /// Special value for the infinite pause uint256 public constant PAUSE_INFINITELY = type(uint256).max; /// @notice Emitted when paused by the `pauseFor` or `pauseUntil` call event Paused(uint256 duration); /// @notice Emitted when resumed by the `resume` call event Resumed(); error ZeroPauseDuration(); error PausedExpected(); error ResumedExpected(); error PauseUntilMustBeInFuture(); /// @notice Reverts when resumed modifier whenPaused() { _checkPaused(); _; } /// @notice Reverts when paused modifier whenResumed() { _checkResumed(); _; } /// @notice Returns one of: /// - PAUSE_INFINITELY if paused infinitely returns /// - first second when get contract get resumed if paused for specific duration /// - some timestamp in past if not paused function getResumeSinceTimestamp() external view returns (uint256) { return RESUME_SINCE_TIMESTAMP_POSITION.getStorageUint256(); } /// @notice Returns whether the contract is paused function isPaused() public view returns (bool) { return block.timestamp < RESUME_SINCE_TIMESTAMP_POSITION.getStorageUint256(); } function _resume() internal { _checkPaused(); RESUME_SINCE_TIMESTAMP_POSITION.setStorageUint256(block.timestamp); emit Resumed(); } function _pauseFor(uint256 duration) internal { _checkResumed(); if (duration == 0) { revert ZeroPauseDuration(); } uint256 resumeSince; if (duration == PAUSE_INFINITELY) { resumeSince = PAUSE_INFINITELY; } else { resumeSince = block.timestamp + duration; } _setPausedState(resumeSince); } function _pauseUntil(uint256 pauseUntilInclusive) internal { _checkResumed(); if (pauseUntilInclusive < block.timestamp) { revert PauseUntilMustBeInFuture(); } uint256 resumeSince; if (pauseUntilInclusive != PAUSE_INFINITELY) { resumeSince = pauseUntilInclusive + 1; } else { resumeSince = PAUSE_INFINITELY; } _setPausedState(resumeSince); } function _setPausedState(uint256 resumeSince) internal { RESUME_SINCE_TIMESTAMP_POSITION.setStorageUint256(resumeSince); if (resumeSince == PAUSE_INFINITELY) { emit Paused(PAUSE_INFINITELY); } else { emit Paused(resumeSince - block.timestamp); } } function _checkPaused() internal view { if (!isPaused()) { revert PausedExpected(); } } function _checkResumed() internal view { if (isPaused()) { revert ResumedExpected(); } } }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { AccessControlEnumerableUpgradeable } from "@openzeppelin/contracts-upgradeable/access/extensions/AccessControlEnumerableUpgradeable.sol"; import { SafeCast } from "@openzeppelin/contracts/utils/math/SafeCast.sol"; import { UnstructuredStorage } from "../UnstructuredStorage.sol"; import { Versioned } from "../utils/Versioned.sol"; import { IReportAsyncProcessor } from "./interfaces/IReportAsyncProcessor.sol"; import { IConsensusContract } from "./interfaces/IConsensusContract.sol"; // solhint-disable ordering abstract contract BaseOracle is IReportAsyncProcessor, AccessControlEnumerableUpgradeable, Versioned { using UnstructuredStorage for bytes32; using SafeCast for uint256; struct ConsensusReport { bytes32 hash; uint64 refSlot; uint64 processingDeadlineTime; } /// @notice An ACL role granting the permission to set the consensus /// contract address by calling setConsensusContract. bytes32 public constant MANAGE_CONSENSUS_CONTRACT_ROLE = keccak256("MANAGE_CONSENSUS_CONTRACT_ROLE"); /// @notice An ACL role granting the permission to set the consensus /// version by calling setConsensusVersion. bytes32 public constant MANAGE_CONSENSUS_VERSION_ROLE = keccak256("MANAGE_CONSENSUS_VERSION_ROLE"); /// @dev Storage slot: address consensusContract bytes32 internal constant CONSENSUS_CONTRACT_POSITION = keccak256("lido.BaseOracle.consensusContract"); /// @dev Storage slot: uint256 consensusVersion bytes32 internal constant CONSENSUS_VERSION_POSITION = keccak256("lido.BaseOracle.consensusVersion"); /// @dev Storage slot: uint256 lastProcessingRefSlot bytes32 internal constant LAST_PROCESSING_REF_SLOT_POSITION = keccak256("lido.BaseOracle.lastProcessingRefSlot"); /// @dev Storage slot: ConsensusReport consensusReport bytes32 internal constant CONSENSUS_REPORT_POSITION = keccak256("lido.BaseOracle.consensusReport"); uint256 public immutable SECONDS_PER_SLOT; uint256 public immutable GENESIS_TIME; event ConsensusHashContractSet( address indexed addr, address indexed prevAddr ); event ConsensusVersionSet( uint256 indexed version, uint256 indexed prevVersion ); event ReportSubmitted( uint256 indexed refSlot, bytes32 hash, uint256 processingDeadlineTime ); event ReportDiscarded(uint256 indexed refSlot, bytes32 hash); event ProcessingStarted(uint256 indexed refSlot, bytes32 hash); event WarnProcessingMissed(uint256 indexed refSlot); error AddressCannotBeZero(); error AddressCannotBeSame(); error VersionCannotBeSame(); error VersionCannotBeZero(); error UnexpectedChainConfig(); error SenderIsNotTheConsensusContract(); error InitialRefSlotCannotBeLessThanProcessingOne( uint256 initialRefSlot, uint256 processingRefSlot ); error RefSlotMustBeGreaterThanProcessingOne( uint256 refSlot, uint256 processingRefSlot ); error RefSlotCannotDecrease(uint256 refSlot, uint256 prevRefSlot); error NoConsensusReportToProcess(); error ProcessingDeadlineMissed(uint256 deadline); error RefSlotAlreadyProcessing(); error UnexpectedRefSlot(uint256 consensusRefSlot, uint256 dataRefSlot); error UnexpectedConsensusVersion( uint256 expectedVersion, uint256 receivedVersion ); error HashCannotBeZero(); error UnexpectedDataHash(bytes32 consensusHash, bytes32 receivedHash); error SecondsPerSlotCannotBeZero(); /// /// Initialization & admin functions /// constructor(uint256 secondsPerSlot, uint256 genesisTime) { if (secondsPerSlot == 0) { revert SecondsPerSlotCannotBeZero(); } SECONDS_PER_SLOT = secondsPerSlot; GENESIS_TIME = genesisTime; } /// @notice Returns the address of the HashConsensus contract. /// function getConsensusContract() external view returns (address) { return CONSENSUS_CONTRACT_POSITION.getStorageAddress(); } /// @notice Sets the address of the HashConsensus contract. /// function setConsensusContract( address addr ) external onlyRole(MANAGE_CONSENSUS_CONTRACT_ROLE) { _setConsensusContract( addr, LAST_PROCESSING_REF_SLOT_POSITION.getStorageUint256() ); } /// @notice Returns the current consensus version expected by the oracle contract. /// /// Consensus version must change every time consensus rules change, meaning that /// an oracle looking at the same reference slot would calculate a different hash. /// function getConsensusVersion() external view returns (uint256) { return CONSENSUS_VERSION_POSITION.getStorageUint256(); } /// @notice Sets the consensus version expected by the oracle contract. /// function setConsensusVersion( uint256 version ) external onlyRole(MANAGE_CONSENSUS_VERSION_ROLE) { _setConsensusVersion(version); } /// /// Data provider interface /// /// @notice Returns the last consensus report hash and metadata. /// @dev Zero hash means that either there have been no reports yet, or the report for `refSlot` was discarded. function getConsensusReport() external view returns ( bytes32 hash, uint256 refSlot, uint256 processingDeadlineTime, bool processingStarted ) { ConsensusReport memory report = _storageConsensusReport().value; uint256 processingRefSlot = LAST_PROCESSING_REF_SLOT_POSITION .getStorageUint256(); return ( report.hash, report.refSlot, report.processingDeadlineTime, report.hash != bytes32(0) && report.refSlot == processingRefSlot ); } /// /// Consensus contract interface /// /// @notice Called by HashConsensus contract to push a consensus report for processing. /// /// Note that submitting the report doesn't require the processor to start processing it right /// away, this can happen later (see `getLastProcessingRefSlot`). Until processing is started, /// HashConsensus is free to reach consensus on another report for the same reporting frame an /// submit it using this same function, or to lose the consensus on the submitted report, /// notifying the processor via `discardConsensusReport`. /// function submitConsensusReport( bytes32 reportHash, uint256 refSlot, uint256 deadline ) external { _checkSenderIsConsensusContract(); uint256 prevSubmittedRefSlot = _storageConsensusReport().value.refSlot; if (refSlot < prevSubmittedRefSlot) { revert RefSlotCannotDecrease(refSlot, prevSubmittedRefSlot); } uint256 prevProcessingRefSlot = LAST_PROCESSING_REF_SLOT_POSITION .getStorageUint256(); if (refSlot <= prevProcessingRefSlot) { revert RefSlotMustBeGreaterThanProcessingOne( refSlot, prevProcessingRefSlot ); } if (_getTime() > deadline) { revert ProcessingDeadlineMissed(deadline); } if ( refSlot != prevSubmittedRefSlot && prevProcessingRefSlot != prevSubmittedRefSlot ) { emit WarnProcessingMissed(prevSubmittedRefSlot); } if (reportHash == bytes32(0)) { revert HashCannotBeZero(); } emit ReportSubmitted(refSlot, reportHash, deadline); ConsensusReport memory report = ConsensusReport({ hash: reportHash, refSlot: refSlot.toUint64(), processingDeadlineTime: deadline.toUint64() }); _storageConsensusReport().value = report; _handleConsensusReport( report, prevSubmittedRefSlot, prevProcessingRefSlot ); } /// @notice Called by HashConsensus contract to notify that the report for the given ref. slot /// is not a consensus report anymore and should be discarded. This can happen when a member /// changes their report, is removed from the set, or when the quorum value gets increased. /// /// Only called when, for the given reference slot: /// /// 1. there previously was a consensus report; AND /// 2. processing of the consensus report hasn't started yet; AND /// 3. report processing deadline is not expired yet (enforced by HashConsensus); AND /// 4. there's no consensus report now (otherwise, `submitConsensusReport` is called instead) (enforced by HashConsensus). /// /// Can be called even when there's no submitted non-discarded consensus report for the current /// reference slot, i.e. can be called multiple times in succession. /// function discardConsensusReport(uint256 refSlot) external { _checkSenderIsConsensusContract(); ConsensusReport memory submittedReport = _storageConsensusReport() .value; if (refSlot < submittedReport.refSlot) { revert RefSlotCannotDecrease(refSlot, submittedReport.refSlot); } else if (refSlot > submittedReport.refSlot) { return; } uint256 lastProcessingRefSlot = LAST_PROCESSING_REF_SLOT_POSITION .getStorageUint256(); if (refSlot <= lastProcessingRefSlot) { revert RefSlotAlreadyProcessing(); } _storageConsensusReport().value.hash = bytes32(0); _handleConsensusReportDiscarded(submittedReport); emit ReportDiscarded(submittedReport.refSlot, submittedReport.hash); } /// @notice Returns the last reference slot for which processing of the report was started. /// function getLastProcessingRefSlot() external view returns (uint256) { return LAST_PROCESSING_REF_SLOT_POSITION.getStorageUint256(); } /// /// Descendant contract interface /// /// @notice Initializes the contract storage. Must be called by a descendant /// contract as part of its initialization. /// function _initialize( address consensusContract, uint256 consensusVersion, uint256 lastProcessingRefSlot ) internal virtual { _initializeContractVersionTo(1); _setConsensusContract(consensusContract, lastProcessingRefSlot); _setConsensusVersion(consensusVersion); LAST_PROCESSING_REF_SLOT_POSITION.setStorageUint256( lastProcessingRefSlot ); _storageConsensusReport().value.refSlot = lastProcessingRefSlot .toUint64(); } /// @notice Returns whether the given address is a member of the oracle committee. /// function _isConsensusMember(address addr) internal view returns (bool) { address consensus = CONSENSUS_CONTRACT_POSITION.getStorageAddress(); return IConsensusContract(consensus).getIsMember(addr); } /// @notice Called when the oracle gets a new consensus report from the HashConsensus contract. /// /// Keep in mind that, until you call `_startProcessing`, the oracle committee is free to /// reach consensus on another report for the same reporting frame and re-submit it using /// this function, or lose consensus on the report and ask to discard it by calling the /// `_handleConsensusReportDiscarded` function. /// function _handleConsensusReport( ConsensusReport memory report, uint256 prevSubmittedRefSlot, uint256 prevProcessingRefSlot ) internal virtual; /// @notice Called when the HashConsensus contract loses consensus on a previously submitted /// report that is not processing yet and asks to discard this report. Only called if there is /// no new consensus report at the moment; otherwise, `_handleConsensusReport` is called instead. /// function _handleConsensusReportDiscarded( ConsensusReport memory report ) internal virtual {} // solhint-disable-line no-empty-blocks /// @notice May be called by a descendant contract to check if the received data matches /// the currently submitted consensus report. Reverts otherwise. /// function _checkConsensusData( uint256 refSlot, uint256 consensusVersion, bytes32 hash ) internal view { ConsensusReport memory report = _storageConsensusReport().value; if (refSlot != report.refSlot) { revert UnexpectedRefSlot(report.refSlot, refSlot); } uint256 expectedConsensusVersion = CONSENSUS_VERSION_POSITION .getStorageUint256(); if (consensusVersion != expectedConsensusVersion) { revert UnexpectedConsensusVersion( expectedConsensusVersion, consensusVersion ); } if (hash != report.hash) { revert UnexpectedDataHash(report.hash, hash); } } /// @notice Called by a descendant contract to mark the current consensus report /// as being processed. Returns the last ref. slot which processing was started /// before the call. /// /// Before this function is called, the oracle committee is free to reach consensus /// on another report for the same reporting frame. After this function is called, /// the consensus report for the current frame is guaranteed to remain the same. /// function _startProcessing() internal returns (uint256) { ConsensusReport memory report = _storageConsensusReport().value; if (report.hash == bytes32(0)) { revert NoConsensusReportToProcess(); } _checkProcessingDeadline(report.processingDeadlineTime); uint256 prevProcessingRefSlot = LAST_PROCESSING_REF_SLOT_POSITION .getStorageUint256(); if (prevProcessingRefSlot == report.refSlot) { revert RefSlotAlreadyProcessing(); } LAST_PROCESSING_REF_SLOT_POSITION.setStorageUint256(report.refSlot); emit ProcessingStarted(report.refSlot, report.hash); return prevProcessingRefSlot; } function _checkProcessingDeadline(uint256 deadlineTime) internal view { if (_getTime() > deadlineTime) { revert ProcessingDeadlineMissed(deadlineTime); } } /// /// Implementation & helpers /// function _setConsensusVersion(uint256 version) internal { uint256 prevVersion = CONSENSUS_VERSION_POSITION.getStorageUint256(); if (version == prevVersion) { revert VersionCannotBeSame(); } if (version == 0) { revert VersionCannotBeZero(); } CONSENSUS_VERSION_POSITION.setStorageUint256(version); emit ConsensusVersionSet(version, prevVersion); } function _setConsensusContract( address addr, uint256 lastProcessingRefSlot ) internal { if (addr == address(0)) { revert AddressCannotBeZero(); } address prevAddr = CONSENSUS_CONTRACT_POSITION.getStorageAddress(); if (addr == prevAddr) { revert AddressCannotBeSame(); } (, uint256 secondsPerSlot, uint256 genesisTime) = IConsensusContract( addr ).getChainConfig(); if (secondsPerSlot != SECONDS_PER_SLOT || genesisTime != GENESIS_TIME) { revert UnexpectedChainConfig(); } uint256 initialRefSlot = IConsensusContract(addr).getInitialRefSlot(); if (initialRefSlot < lastProcessingRefSlot) { revert InitialRefSlotCannotBeLessThanProcessingOne( initialRefSlot, lastProcessingRefSlot ); } CONSENSUS_CONTRACT_POSITION.setStorageAddress(addr); emit ConsensusHashContractSet(addr, prevAddr); } function _checkSenderIsConsensusContract() internal view { if (_msgSender() != CONSENSUS_CONTRACT_POSITION.getStorageAddress()) { revert SenderIsNotTheConsensusContract(); } } function _getTime() internal view virtual returns (uint256) { return block.timestamp; // solhint-disable-line not-rely-on-time } /// /// Storage helpers /// struct StorageConsensusReport { ConsensusReport value; } function _storageConsensusReport() internal pure returns (StorageConsensusReport storage r) { bytes32 position = CONSENSUS_REPORT_POSITION; assembly { r.slot := position } } }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 import { IAssetRecovererLib } from "../lib/AssetRecovererLib.sol"; import { IStETH } from "./IStETH.sol"; pragma solidity 0.8.24; interface ICSFeeDistributor is IAssetRecovererLib { struct DistributionData { /// @dev Reference slot for which the report was calculated. If the slot /// contains a block, the state being reported should include all state /// changes resulting from that block. The epoch containing the slot /// should be finalized prior to calculating the report. uint256 refSlot; /// @notice Merkle Tree root. bytes32 treeRoot; /// @notice CID of the published Merkle tree. string treeCid; /// @notice CID of the file with log of the frame reported. string logCid; /// @notice Total amount of fees distributed in the report. uint256 distributed; /// @notice Amount of the rebate shares in the report uint256 rebate; } /// @dev Emitted when fees are distributed event OperatorFeeDistributed( uint256 indexed nodeOperatorId, uint256 shares ); /// @dev Emitted when distribution data is updated event DistributionDataUpdated( uint256 totalClaimableShares, bytes32 treeRoot, string treeCid ); /// @dev Emitted when distribution log is updated event DistributionLogUpdated(string logCid); /// @dev It logs how many shares were distributed in the latest report event ModuleFeeDistributed(uint256 shares); /// @dev Emitted when rebate is transferred event RebateTransferred(uint256 shares); /// @dev Emitted when rebate recipient is set event RebateRecipientSet(address recipient); error ZeroAccountingAddress(); error ZeroStEthAddress(); error ZeroAdminAddress(); error ZeroOracleAddress(); error ZeroRebateRecipientAddress(); error SenderIsNotAccounting(); error SenderIsNotOracle(); error InvalidReportData(); error InvalidTreeRoot(); error InvalidTreeCid(); error InvalidLogCID(); error InvalidShares(); error InvalidProof(); error FeeSharesDecrease(); error NotEnoughShares(); function RECOVERER_ROLE() external view returns (bytes32); function STETH() external view returns (IStETH); function ACCOUNTING() external view returns (address); function ORACLE() external view returns (address); function treeRoot() external view returns (bytes32); function treeCid() external view returns (string calldata); function logCid() external view returns (string calldata); function distributedShares(uint256) external view returns (uint256); function totalClaimableShares() external view returns (uint256); function distributionDataHistoryCount() external view returns (uint256); function rebateRecipient() external view returns (address); /// @notice Get the initialized version of the contract function getInitializedVersion() external view returns (uint64); /// @notice Set address to send rebate to /// @param _rebateRecipient Address to send rebate to function setRebateRecipient(address _rebateRecipient) external; /// @notice Get the Amount of stETH shares that can be distributed in favor of the Node Operator /// @param nodeOperatorId ID of the Node Operator /// @param cumulativeFeeShares Total Amount of stETH shares earned as fees /// @param proof Merkle proof of the leaf /// @return sharesToDistribute Amount of stETH shares that can be distributed function getFeesToDistribute( uint256 nodeOperatorId, uint256 cumulativeFeeShares, bytes32[] calldata proof ) external view returns (uint256); /// @notice Distribute fees to the Accounting in favor of the Node Operator /// @param nodeOperatorId ID of the Node Operator /// @param cumulativeFeeShares Total Amount of stETH shares earned as fees /// @param proof Merkle proof of the leaf /// @return sharesToDistribute Amount of stETH shares distributed function distributeFees( uint256 nodeOperatorId, uint256 cumulativeFeeShares, bytes32[] calldata proof ) external returns (uint256); /// @notice Receive the data of the Merkle tree from the Oracle contract and process it /// @param _treeRoot Root of the Merkle tree /// @param _treeCid an IPFS CID of the tree /// @param _logCid an IPFS CID of the log /// @param distributed an amount of the distributed shares /// @param rebate an amount of the rebate shares /// @param refSlot refSlot of the report function processOracleReport( bytes32 _treeRoot, string calldata _treeCid, string calldata _logCid, uint256 distributed, uint256 rebate, uint256 refSlot ) external; /// @notice Get the Amount of stETH shares that are pending to be distributed /// @return pendingShares Amount shares that are pending to distribute function pendingSharesToDistribute() external view returns (uint256); /// @notice Get the historical record of distribution data /// @param index Historical entry index /// @return Historical distribution data function getHistoricalDistributionData( uint256 index ) external view returns (DistributionData memory); /// @notice Get a hash of a leaf /// @param nodeOperatorId ID of the Node Operator /// @param shares Amount of stETH shares /// @return Hash of the leaf /// @dev Double hash the leaf to prevent second preimage attacks function hashLeaf( uint256 nodeOperatorId, uint256 shares ) external pure returns (bytes32); }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { ICSModule } from "./ICSModule.sol"; import { ICSAccounting } from "./ICSAccounting.sol"; import { ICSParametersRegistry } from "./ICSParametersRegistry.sol"; import { ICSExitPenalties } from "./ICSExitPenalties.sol"; import { ICSEjector } from "./ICSEjector.sol"; interface ICSStrikes { /// @dev Emitted when strikes data is updated event StrikesDataUpdated(bytes32 treeRoot, string treeCid); /// @dev Emitted when strikes is updated from non-empty to empty event StrikesDataWiped(); event EjectorSet(address ejector); error ZeroEjectorAddress(); error ZeroModuleAddress(); error ZeroOracleAddress(); error ZeroExitPenaltiesAddress(); error ZeroParametersRegistryAddress(); error ZeroAdminAddress(); error SenderIsNotOracle(); error ValueNotEvenlyDivisible(); error EmptyKeyStrikesList(); error ZeroMsgValue(); error InvalidReportData(); error InvalidProof(); error NotEnoughStrikesToEject(); struct KeyStrikes { uint256 nodeOperatorId; uint256 keyIndex; uint256[] data; } function ORACLE() external view returns (address); function MODULE() external view returns (ICSModule); function ACCOUNTING() external view returns (ICSAccounting); function EXIT_PENALTIES() external view returns (ICSExitPenalties); function PARAMETERS_REGISTRY() external view returns (ICSParametersRegistry); function ejector() external view returns (ICSEjector); function treeRoot() external view returns (bytes32); function treeCid() external view returns (string calldata); /// @notice Set the address of the Ejector contract /// @param _ejector Address of the Ejector contract function setEjector(address _ejector) external; /// @notice Report multiple CSM keys as bad performing /// @param keyStrikesList List of KeyStrikes structs /// @param proof Multi-proof of the strikes /// @param proofFlags Flags to process the multi-proof, see OZ `processMultiProof` /// @param refundRecipient Address to send the refund to function processBadPerformanceProof( KeyStrikes[] calldata keyStrikesList, bytes32[] calldata proof, bool[] calldata proofFlags, address refundRecipient ) external payable; /// @notice Receive the data of the Merkle tree from the Oracle contract and process it /// @param _treeRoot Root of the Merkle tree /// @param _treeCid an IPFS CID of the tree /// @dev New tree might be empty and it is valid value because of `strikesLifetime` function processOracleReport( bytes32 _treeRoot, string calldata _treeCid ) external; /// @notice Check the contract accepts the provided multi-proof /// @param keyStrikesList List of KeyStrikes structs /// @param proof Multi-proof of the strikes /// @param proofFlags Flags to process the multi-proof, see OZ `processMultiProof` /// @return bool True if proof is accepted function verifyProof( KeyStrikes[] calldata keyStrikesList, bytes[] memory pubkeys, bytes32[] calldata proof, bool[] calldata proofFlags ) external view returns (bool); /// @notice Get a hash of a leaf a tree of strikes /// @param keyStrikes KeyStrikes struct /// @param pubkey Public key /// @return Hash of the leaf /// @dev Double hash the leaf to prevent second pre-image attacks function hashLeaf( KeyStrikes calldata keyStrikes, bytes calldata pubkey ) external pure returns (bytes32); /// @notice Returns the initialized version of the contract function getInitializedVersion() external view returns (uint64); }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { IAssetRecovererLib } from "../lib/AssetRecovererLib.sol"; import { ICSFeeDistributor } from "./ICSFeeDistributor.sol"; import { ICSStrikes } from "./ICSStrikes.sol"; interface ICSFeeOracle is IAssetRecovererLib { struct ReportData { /// @dev Version of the oracle consensus rules. Current version expected /// by the oracle can be obtained by calling getConsensusVersion(). uint256 consensusVersion; /// @dev Reference slot for which the report was calculated. If the slot /// contains a block, the state being reported should include all state /// changes resulting from that block. The epoch containing the slot /// should be finalized prior to calculating the report. uint256 refSlot; /// @notice Merkle Tree root. bytes32 treeRoot; /// @notice CID of the published Merkle tree. string treeCid; /// @notice CID of the file with log of the frame reported. string logCid; /// @notice Total amount of fees distributed in the report. uint256 distributed; /// @notice Amount of the rebate shares in the report uint256 rebate; /// @notice Merkle Tree root of the strikes. bytes32 strikesTreeRoot; /// @notice CID of the published Merkle tree of the strikes. string strikesTreeCid; } error ZeroAdminAddress(); error ZeroFeeDistributorAddress(); error ZeroStrikesAddress(); error SenderNotAllowed(); function SUBMIT_DATA_ROLE() external view returns (bytes32); function PAUSE_ROLE() external view returns (bytes32); function RESUME_ROLE() external view returns (bytes32); function RECOVERER_ROLE() external view returns (bytes32); function FEE_DISTRIBUTOR() external view returns (ICSFeeDistributor); function STRIKES() external view returns (ICSStrikes); /// @notice Submit the data for a committee report /// @param data Data for a committee report /// @param contractVersion Version of the oracle consensus rules function submitReportData( ReportData calldata data, uint256 contractVersion ) external; /// @notice Resume accepting oracle reports function resume() external; /// @notice Pause accepting oracle reports for a `duration` seconds /// @param duration Duration of the pause in seconds function pauseFor(uint256 duration) external; }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { IERC20 } from "@openzeppelin/contracts/token/ERC20/IERC20.sol"; import { IERC721 } from "@openzeppelin/contracts/token/ERC721/IERC721.sol"; import { IERC1155 } from "@openzeppelin/contracts/token/ERC1155/IERC1155.sol"; import { SafeERC20 } from "@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol"; import { ILido } from "../interfaces/ILido.sol"; interface IAssetRecovererLib { event EtherRecovered(address indexed recipient, uint256 amount); event ERC20Recovered( address indexed token, address indexed recipient, uint256 amount ); event StETHSharesRecovered(address indexed recipient, uint256 shares); event ERC721Recovered( address indexed token, uint256 tokenId, address indexed recipient ); event ERC1155Recovered( address indexed token, uint256 tokenId, address indexed recipient, uint256 amount ); error FailedToSendEther(); error NotAllowedToRecover(); } /* * @title AssetRecovererLib * @dev Library providing mechanisms for recovering various asset types (ETH, ERC20, ERC721, ERC1155). * This library is designed to be used by a contract that implements the AssetRecoverer interface. */ library AssetRecovererLib { using SafeERC20 for IERC20; /** * @dev Allows the sender to recover Ether held by the contract. * Emits an EtherRecovered event upon success. */ function recoverEther() external { uint256 amount = address(this).balance; (bool success, ) = msg.sender.call{ value: amount }(""); if (!success) { revert IAssetRecovererLib.FailedToSendEther(); } emit IAssetRecovererLib.EtherRecovered(msg.sender, amount); } /** * @dev Allows the sender to recover ERC20 tokens held by the contract. * @param token The address of the ERC20 token to recover. * @param amount The amount of the ERC20 token to recover. * Emits an ERC20Recovered event upon success. */ function recoverERC20(address token, uint256 amount) external { IERC20(token).safeTransfer(msg.sender, amount); emit IAssetRecovererLib.ERC20Recovered(token, msg.sender, amount); } /** * @dev Allows the sender to recover stETH shares held by the contract. * The use of a separate method for stETH is to avoid rounding problems when converting shares to stETH. * @param lido The address of the Lido contract. * @param shares The amount of stETH shares to recover. * Emits an StETHSharesRecovered event upon success. */ function recoverStETHShares(address lido, uint256 shares) external { ILido(lido).transferShares(msg.sender, shares); emit IAssetRecovererLib.StETHSharesRecovered(msg.sender, shares); } /** * @dev Allows the sender to recover ERC721 tokens held by the contract. * @param token The address of the ERC721 token to recover. * @param tokenId The token ID of the ERC721 token to recover. * Emits an ERC721Recovered event upon success. */ function recoverERC721(address token, uint256 tokenId) external { IERC721(token).safeTransferFrom(address(this), msg.sender, tokenId); emit IAssetRecovererLib.ERC721Recovered(token, tokenId, msg.sender); } /** * @dev Allows the sender to recover ERC1155 tokens held by the contract. * @param token The address of the ERC1155 token to recover. * @param tokenId The token ID of the ERC1155 token to recover. * Emits an ERC1155Recovered event upon success. */ function recoverERC1155(address token, uint256 tokenId) external { uint256 amount = IERC1155(token).balanceOf(address(this), tokenId); IERC1155(token).safeTransferFrom({ from: address(this), to: msg.sender, id: tokenId, value: amount, data: "" }); emit IAssetRecovererLib.ERC1155Recovered( token, tokenId, msg.sender, amount ); } }
/*
* SPDX-License-Identifier: MIT
*/
pragma solidity 0.8.24;
/**
* @notice Aragon Unstructured Storage library
*/
library UnstructuredStorage {
function setStorageAddress(bytes32 position, address data) internal {
assembly {
sstore(position, data)
}
}
function setStorageUint256(bytes32 position, uint256 data) internal {
assembly {
sstore(position, data)
}
}
function getStorageAddress(
bytes32 position
) internal view returns (address data) {
assembly {
data := sload(position)
}
}
function getStorageUint256(
bytes32 position
) internal view returns (uint256 data) {
assembly {
data := sload(position)
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (access/extensions/AccessControlEnumerable.sol)
pragma solidity ^0.8.20;
import {IAccessControlEnumerable} from "@openzeppelin/contracts/access/extensions/IAccessControlEnumerable.sol";
import {AccessControlUpgradeable} from "../AccessControlUpgradeable.sol";
import {EnumerableSet} from "@openzeppelin/contracts/utils/structs/EnumerableSet.sol";
import {Initializable} from "../../proxy/utils/Initializable.sol";
/**
* @dev Extension of {AccessControl} that allows enumerating the members of each role.
*/
abstract contract AccessControlEnumerableUpgradeable is Initializable, IAccessControlEnumerable, AccessControlUpgradeable {
using EnumerableSet for EnumerableSet.AddressSet;
/// @custom:storage-location erc7201:openzeppelin.storage.AccessControlEnumerable
struct AccessControlEnumerableStorage {
mapping(bytes32 role => EnumerableSet.AddressSet) _roleMembers;
}
// keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.AccessControlEnumerable")) - 1)) & ~bytes32(uint256(0xff))
bytes32 private constant AccessControlEnumerableStorageLocation = 0xc1f6fe24621ce81ec5827caf0253cadb74709b061630e6b55e82371705932000;
function _getAccessControlEnumerableStorage() private pure returns (AccessControlEnumerableStorage storage $) {
assembly {
$.slot := AccessControlEnumerableStorageLocation
}
}
function __AccessControlEnumerable_init() internal onlyInitializing {
}
function __AccessControlEnumerable_init_unchained() internal onlyInitializing {
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return interfaceId == type(IAccessControlEnumerable).interfaceId || super.supportsInterface(interfaceId);
}
/**
* @dev Returns one of the accounts that have `role`. `index` must be a
* value between 0 and {getRoleMemberCount}, non-inclusive.
*
* Role bearers are not sorted in any particular way, and their ordering may
* change at any point.
*
* WARNING: When using {getRoleMember} and {getRoleMemberCount}, make sure
* you perform all queries on the same block. See the following
* https://forum.openzeppelin.com/t/iterating-over-elements-on-enumerableset-in-openzeppelin-contracts/2296[forum post]
* for more information.
*/
function getRoleMember(bytes32 role, uint256 index) public view virtual returns (address) {
AccessControlEnumerableStorage storage $ = _getAccessControlEnumerableStorage();
return $._roleMembers[role].at(index);
}
/**
* @dev Returns the number of accounts that have `role`. Can be used
* together with {getRoleMember} to enumerate all bearers of a role.
*/
function getRoleMemberCount(bytes32 role) public view virtual returns (uint256) {
AccessControlEnumerableStorage storage $ = _getAccessControlEnumerableStorage();
return $._roleMembers[role].length();
}
/**
* @dev Overload {AccessControl-_grantRole} to track enumerable memberships
*/
function _grantRole(bytes32 role, address account) internal virtual override returns (bool) {
AccessControlEnumerableStorage storage $ = _getAccessControlEnumerableStorage();
bool granted = super._grantRole(role, account);
if (granted) {
$._roleMembers[role].add(account);
}
return granted;
}
/**
* @dev Overload {AccessControl-_revokeRole} to track enumerable memberships
*/
function _revokeRole(bytes32 role, address account) internal virtual override returns (bool) {
AccessControlEnumerableStorage storage $ = _getAccessControlEnumerableStorage();
bool revoked = super._revokeRole(role, account);
if (revoked) {
$._roleMembers[role].remove(account);
}
return revoked;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/math/SafeCast.sol)
// This file was procedurally generated from scripts/generate/templates/SafeCast.js.
pragma solidity ^0.8.20;
/**
* @dev Wrappers over Solidity's uintXX/intXX casting operators with added overflow
* checks.
*
* Downcasting from uint256/int256 in Solidity does not revert on overflow. This can
* easily result in undesired exploitation or bugs, since developers usually
* assume that overflows raise errors. `SafeCast` restores this intuition by
* reverting the transaction when such an operation overflows.
*
* Using this library instead of the unchecked operations eliminates an entire
* class of bugs, so it's recommended to use it always.
*/
library SafeCast {
/**
* @dev Value doesn't fit in an uint of `bits` size.
*/
error SafeCastOverflowedUintDowncast(uint8 bits, uint256 value);
/**
* @dev An int value doesn't fit in an uint of `bits` size.
*/
error SafeCastOverflowedIntToUint(int256 value);
/**
* @dev Value doesn't fit in an int of `bits` size.
*/
error SafeCastOverflowedIntDowncast(uint8 bits, int256 value);
/**
* @dev An uint value doesn't fit in an int of `bits` size.
*/
error SafeCastOverflowedUintToInt(uint256 value);
/**
* @dev Returns the downcasted uint248 from uint256, reverting on
* overflow (when the input is greater than largest uint248).
*
* Counterpart to Solidity's `uint248` operator.
*
* Requirements:
*
* - input must fit into 248 bits
*/
function toUint248(uint256 value) internal pure returns (uint248) {
if (value > type(uint248).max) {
revert SafeCastOverflowedUintDowncast(248, value);
}
return uint248(value);
}
/**
* @dev Returns the downcasted uint240 from uint256, reverting on
* overflow (when the input is greater than largest uint240).
*
* Counterpart to Solidity's `uint240` operator.
*
* Requirements:
*
* - input must fit into 240 bits
*/
function toUint240(uint256 value) internal pure returns (uint240) {
if (value > type(uint240).max) {
revert SafeCastOverflowedUintDowncast(240, value);
}
return uint240(value);
}
/**
* @dev Returns the downcasted uint232 from uint256, reverting on
* overflow (when the input is greater than largest uint232).
*
* Counterpart to Solidity's `uint232` operator.
*
* Requirements:
*
* - input must fit into 232 bits
*/
function toUint232(uint256 value) internal pure returns (uint232) {
if (value > type(uint232).max) {
revert SafeCastOverflowedUintDowncast(232, value);
}
return uint232(value);
}
/**
* @dev Returns the downcasted uint224 from uint256, reverting on
* overflow (when the input is greater than largest uint224).
*
* Counterpart to Solidity's `uint224` operator.
*
* Requirements:
*
* - input must fit into 224 bits
*/
function toUint224(uint256 value) internal pure returns (uint224) {
if (value > type(uint224).max) {
revert SafeCastOverflowedUintDowncast(224, value);
}
return uint224(value);
}
/**
* @dev Returns the downcasted uint216 from uint256, reverting on
* overflow (when the input is greater than largest uint216).
*
* Counterpart to Solidity's `uint216` operator.
*
* Requirements:
*
* - input must fit into 216 bits
*/
function toUint216(uint256 value) internal pure returns (uint216) {
if (value > type(uint216).max) {
revert SafeCastOverflowedUintDowncast(216, value);
}
return uint216(value);
}
/**
* @dev Returns the downcasted uint208 from uint256, reverting on
* overflow (when the input is greater than largest uint208).
*
* Counterpart to Solidity's `uint208` operator.
*
* Requirements:
*
* - input must fit into 208 bits
*/
function toUint208(uint256 value) internal pure returns (uint208) {
if (value > type(uint208).max) {
revert SafeCastOverflowedUintDowncast(208, value);
}
return uint208(value);
}
/**
* @dev Returns the downcasted uint200 from uint256, reverting on
* overflow (when the input is greater than largest uint200).
*
* Counterpart to Solidity's `uint200` operator.
*
* Requirements:
*
* - input must fit into 200 bits
*/
function toUint200(uint256 value) internal pure returns (uint200) {
if (value > type(uint200).max) {
revert SafeCastOverflowedUintDowncast(200, value);
}
return uint200(value);
}
/**
* @dev Returns the downcasted uint192 from uint256, reverting on
* overflow (when the input is greater than largest uint192).
*
* Counterpart to Solidity's `uint192` operator.
*
* Requirements:
*
* - input must fit into 192 bits
*/
function toUint192(uint256 value) internal pure returns (uint192) {
if (value > type(uint192).max) {
revert SafeCastOverflowedUintDowncast(192, value);
}
return uint192(value);
}
/**
* @dev Returns the downcasted uint184 from uint256, reverting on
* overflow (when the input is greater than largest uint184).
*
* Counterpart to Solidity's `uint184` operator.
*
* Requirements:
*
* - input must fit into 184 bits
*/
function toUint184(uint256 value) internal pure returns (uint184) {
if (value > type(uint184).max) {
revert SafeCastOverflowedUintDowncast(184, value);
}
return uint184(value);
}
/**
* @dev Returns the downcasted uint176 from uint256, reverting on
* overflow (when the input is greater than largest uint176).
*
* Counterpart to Solidity's `uint176` operator.
*
* Requirements:
*
* - input must fit into 176 bits
*/
function toUint176(uint256 value) internal pure returns (uint176) {
if (value > type(uint176).max) {
revert SafeCastOverflowedUintDowncast(176, value);
}
return uint176(value);
}
/**
* @dev Returns the downcasted uint168 from uint256, reverting on
* overflow (when the input is greater than largest uint168).
*
* Counterpart to Solidity's `uint168` operator.
*
* Requirements:
*
* - input must fit into 168 bits
*/
function toUint168(uint256 value) internal pure returns (uint168) {
if (value > type(uint168).max) {
revert SafeCastOverflowedUintDowncast(168, value);
}
return uint168(value);
}
/**
* @dev Returns the downcasted uint160 from uint256, reverting on
* overflow (when the input is greater than largest uint160).
*
* Counterpart to Solidity's `uint160` operator.
*
* Requirements:
*
* - input must fit into 160 bits
*/
function toUint160(uint256 value) internal pure returns (uint160) {
if (value > type(uint160).max) {
revert SafeCastOverflowedUintDowncast(160, value);
}
return uint160(value);
}
/**
* @dev Returns the downcasted uint152 from uint256, reverting on
* overflow (when the input is greater than largest uint152).
*
* Counterpart to Solidity's `uint152` operator.
*
* Requirements:
*
* - input must fit into 152 bits
*/
function toUint152(uint256 value) internal pure returns (uint152) {
if (value > type(uint152).max) {
revert SafeCastOverflowedUintDowncast(152, value);
}
return uint152(value);
}
/**
* @dev Returns the downcasted uint144 from uint256, reverting on
* overflow (when the input is greater than largest uint144).
*
* Counterpart to Solidity's `uint144` operator.
*
* Requirements:
*
* - input must fit into 144 bits
*/
function toUint144(uint256 value) internal pure returns (uint144) {
if (value > type(uint144).max) {
revert SafeCastOverflowedUintDowncast(144, value);
}
return uint144(value);
}
/**
* @dev Returns the downcasted uint136 from uint256, reverting on
* overflow (when the input is greater than largest uint136).
*
* Counterpart to Solidity's `uint136` operator.
*
* Requirements:
*
* - input must fit into 136 bits
*/
function toUint136(uint256 value) internal pure returns (uint136) {
if (value > type(uint136).max) {
revert SafeCastOverflowedUintDowncast(136, value);
}
return uint136(value);
}
/**
* @dev Returns the downcasted uint128 from uint256, reverting on
* overflow (when the input is greater than largest uint128).
*
* Counterpart to Solidity's `uint128` operator.
*
* Requirements:
*
* - input must fit into 128 bits
*/
function toUint128(uint256 value) internal pure returns (uint128) {
if (value > type(uint128).max) {
revert SafeCastOverflowedUintDowncast(128, value);
}
return uint128(value);
}
/**
* @dev Returns the downcasted uint120 from uint256, reverting on
* overflow (when the input is greater than largest uint120).
*
* Counterpart to Solidity's `uint120` operator.
*
* Requirements:
*
* - input must fit into 120 bits
*/
function toUint120(uint256 value) internal pure returns (uint120) {
if (value > type(uint120).max) {
revert SafeCastOverflowedUintDowncast(120, value);
}
return uint120(value);
}
/**
* @dev Returns the downcasted uint112 from uint256, reverting on
* overflow (when the input is greater than largest uint112).
*
* Counterpart to Solidity's `uint112` operator.
*
* Requirements:
*
* - input must fit into 112 bits
*/
function toUint112(uint256 value) internal pure returns (uint112) {
if (value > type(uint112).max) {
revert SafeCastOverflowedUintDowncast(112, value);
}
return uint112(value);
}
/**
* @dev Returns the downcasted uint104 from uint256, reverting on
* overflow (when the input is greater than largest uint104).
*
* Counterpart to Solidity's `uint104` operator.
*
* Requirements:
*
* - input must fit into 104 bits
*/
function toUint104(uint256 value) internal pure returns (uint104) {
if (value > type(uint104).max) {
revert SafeCastOverflowedUintDowncast(104, value);
}
return uint104(value);
}
/**
* @dev Returns the downcasted uint96 from uint256, reverting on
* overflow (when the input is greater than largest uint96).
*
* Counterpart to Solidity's `uint96` operator.
*
* Requirements:
*
* - input must fit into 96 bits
*/
function toUint96(uint256 value) internal pure returns (uint96) {
if (value > type(uint96).max) {
revert SafeCastOverflowedUintDowncast(96, value);
}
return uint96(value);
}
/**
* @dev Returns the downcasted uint88 from uint256, reverting on
* overflow (when the input is greater than largest uint88).
*
* Counterpart to Solidity's `uint88` operator.
*
* Requirements:
*
* - input must fit into 88 bits
*/
function toUint88(uint256 value) internal pure returns (uint88) {
if (value > type(uint88).max) {
revert SafeCastOverflowedUintDowncast(88, value);
}
return uint88(value);
}
/**
* @dev Returns the downcasted uint80 from uint256, reverting on
* overflow (when the input is greater than largest uint80).
*
* Counterpart to Solidity's `uint80` operator.
*
* Requirements:
*
* - input must fit into 80 bits
*/
function toUint80(uint256 value) internal pure returns (uint80) {
if (value > type(uint80).max) {
revert SafeCastOverflowedUintDowncast(80, value);
}
return uint80(value);
}
/**
* @dev Returns the downcasted uint72 from uint256, reverting on
* overflow (when the input is greater than largest uint72).
*
* Counterpart to Solidity's `uint72` operator.
*
* Requirements:
*
* - input must fit into 72 bits
*/
function toUint72(uint256 value) internal pure returns (uint72) {
if (value > type(uint72).max) {
revert SafeCastOverflowedUintDowncast(72, value);
}
return uint72(value);
}
/**
* @dev Returns the downcasted uint64 from uint256, reverting on
* overflow (when the input is greater than largest uint64).
*
* Counterpart to Solidity's `uint64` operator.
*
* Requirements:
*
* - input must fit into 64 bits
*/
function toUint64(uint256 value) internal pure returns (uint64) {
if (value > type(uint64).max) {
revert SafeCastOverflowedUintDowncast(64, value);
}
return uint64(value);
}
/**
* @dev Returns the downcasted uint56 from uint256, reverting on
* overflow (when the input is greater than largest uint56).
*
* Counterpart to Solidity's `uint56` operator.
*
* Requirements:
*
* - input must fit into 56 bits
*/
function toUint56(uint256 value) internal pure returns (uint56) {
if (value > type(uint56).max) {
revert SafeCastOverflowedUintDowncast(56, value);
}
return uint56(value);
}
/**
* @dev Returns the downcasted uint48 from uint256, reverting on
* overflow (when the input is greater than largest uint48).
*
* Counterpart to Solidity's `uint48` operator.
*
* Requirements:
*
* - input must fit into 48 bits
*/
function toUint48(uint256 value) internal pure returns (uint48) {
if (value > type(uint48).max) {
revert SafeCastOverflowedUintDowncast(48, value);
}
return uint48(value);
}
/**
* @dev Returns the downcasted uint40 from uint256, reverting on
* overflow (when the input is greater than largest uint40).
*
* Counterpart to Solidity's `uint40` operator.
*
* Requirements:
*
* - input must fit into 40 bits
*/
function toUint40(uint256 value) internal pure returns (uint40) {
if (value > type(uint40).max) {
revert SafeCastOverflowedUintDowncast(40, value);
}
return uint40(value);
}
/**
* @dev Returns the downcasted uint32 from uint256, reverting on
* overflow (when the input is greater than largest uint32).
*
* Counterpart to Solidity's `uint32` operator.
*
* Requirements:
*
* - input must fit into 32 bits
*/
function toUint32(uint256 value) internal pure returns (uint32) {
if (value > type(uint32).max) {
revert SafeCastOverflowedUintDowncast(32, value);
}
return uint32(value);
}
/**
* @dev Returns the downcasted uint24 from uint256, reverting on
* overflow (when the input is greater than largest uint24).
*
* Counterpart to Solidity's `uint24` operator.
*
* Requirements:
*
* - input must fit into 24 bits
*/
function toUint24(uint256 value) internal pure returns (uint24) {
if (value > type(uint24).max) {
revert SafeCastOverflowedUintDowncast(24, value);
}
return uint24(value);
}
/**
* @dev Returns the downcasted uint16 from uint256, reverting on
* overflow (when the input is greater than largest uint16).
*
* Counterpart to Solidity's `uint16` operator.
*
* Requirements:
*
* - input must fit into 16 bits
*/
function toUint16(uint256 value) internal pure returns (uint16) {
if (value > type(uint16).max) {
revert SafeCastOverflowedUintDowncast(16, value);
}
return uint16(value);
}
/**
* @dev Returns the downcasted uint8 from uint256, reverting on
* overflow (when the input is greater than largest uint8).
*
* Counterpart to Solidity's `uint8` operator.
*
* Requirements:
*
* - input must fit into 8 bits
*/
function toUint8(uint256 value) internal pure returns (uint8) {
if (value > type(uint8).max) {
revert SafeCastOverflowedUintDowncast(8, value);
}
return uint8(value);
}
/**
* @dev Converts a signed int256 into an unsigned uint256.
*
* Requirements:
*
* - input must be greater than or equal to 0.
*/
function toUint256(int256 value) internal pure returns (uint256) {
if (value < 0) {
revert SafeCastOverflowedIntToUint(value);
}
return uint256(value);
}
/**
* @dev Returns the downcasted int248 from int256, reverting on
* overflow (when the input is less than smallest int248 or
* greater than largest int248).
*
* Counterpart to Solidity's `int248` operator.
*
* Requirements:
*
* - input must fit into 248 bits
*/
function toInt248(int256 value) internal pure returns (int248 downcasted) {
downcasted = int248(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(248, value);
}
}
/**
* @dev Returns the downcasted int240 from int256, reverting on
* overflow (when the input is less than smallest int240 or
* greater than largest int240).
*
* Counterpart to Solidity's `int240` operator.
*
* Requirements:
*
* - input must fit into 240 bits
*/
function toInt240(int256 value) internal pure returns (int240 downcasted) {
downcasted = int240(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(240, value);
}
}
/**
* @dev Returns the downcasted int232 from int256, reverting on
* overflow (when the input is less than smallest int232 or
* greater than largest int232).
*
* Counterpart to Solidity's `int232` operator.
*
* Requirements:
*
* - input must fit into 232 bits
*/
function toInt232(int256 value) internal pure returns (int232 downcasted) {
downcasted = int232(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(232, value);
}
}
/**
* @dev Returns the downcasted int224 from int256, reverting on
* overflow (when the input is less than smallest int224 or
* greater than largest int224).
*
* Counterpart to Solidity's `int224` operator.
*
* Requirements:
*
* - input must fit into 224 bits
*/
function toInt224(int256 value) internal pure returns (int224 downcasted) {
downcasted = int224(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(224, value);
}
}
/**
* @dev Returns the downcasted int216 from int256, reverting on
* overflow (when the input is less than smallest int216 or
* greater than largest int216).
*
* Counterpart to Solidity's `int216` operator.
*
* Requirements:
*
* - input must fit into 216 bits
*/
function toInt216(int256 value) internal pure returns (int216 downcasted) {
downcasted = int216(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(216, value);
}
}
/**
* @dev Returns the downcasted int208 from int256, reverting on
* overflow (when the input is less than smallest int208 or
* greater than largest int208).
*
* Counterpart to Solidity's `int208` operator.
*
* Requirements:
*
* - input must fit into 208 bits
*/
function toInt208(int256 value) internal pure returns (int208 downcasted) {
downcasted = int208(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(208, value);
}
}
/**
* @dev Returns the downcasted int200 from int256, reverting on
* overflow (when the input is less than smallest int200 or
* greater than largest int200).
*
* Counterpart to Solidity's `int200` operator.
*
* Requirements:
*
* - input must fit into 200 bits
*/
function toInt200(int256 value) internal pure returns (int200 downcasted) {
downcasted = int200(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(200, value);
}
}
/**
* @dev Returns the downcasted int192 from int256, reverting on
* overflow (when the input is less than smallest int192 or
* greater than largest int192).
*
* Counterpart to Solidity's `int192` operator.
*
* Requirements:
*
* - input must fit into 192 bits
*/
function toInt192(int256 value) internal pure returns (int192 downcasted) {
downcasted = int192(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(192, value);
}
}
/**
* @dev Returns the downcasted int184 from int256, reverting on
* overflow (when the input is less than smallest int184 or
* greater than largest int184).
*
* Counterpart to Solidity's `int184` operator.
*
* Requirements:
*
* - input must fit into 184 bits
*/
function toInt184(int256 value) internal pure returns (int184 downcasted) {
downcasted = int184(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(184, value);
}
}
/**
* @dev Returns the downcasted int176 from int256, reverting on
* overflow (when the input is less than smallest int176 or
* greater than largest int176).
*
* Counterpart to Solidity's `int176` operator.
*
* Requirements:
*
* - input must fit into 176 bits
*/
function toInt176(int256 value) internal pure returns (int176 downcasted) {
downcasted = int176(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(176, value);
}
}
/**
* @dev Returns the downcasted int168 from int256, reverting on
* overflow (when the input is less than smallest int168 or
* greater than largest int168).
*
* Counterpart to Solidity's `int168` operator.
*
* Requirements:
*
* - input must fit into 168 bits
*/
function toInt168(int256 value) internal pure returns (int168 downcasted) {
downcasted = int168(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(168, value);
}
}
/**
* @dev Returns the downcasted int160 from int256, reverting on
* overflow (when the input is less than smallest int160 or
* greater than largest int160).
*
* Counterpart to Solidity's `int160` operator.
*
* Requirements:
*
* - input must fit into 160 bits
*/
function toInt160(int256 value) internal pure returns (int160 downcasted) {
downcasted = int160(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(160, value);
}
}
/**
* @dev Returns the downcasted int152 from int256, reverting on
* overflow (when the input is less than smallest int152 or
* greater than largest int152).
*
* Counterpart to Solidity's `int152` operator.
*
* Requirements:
*
* - input must fit into 152 bits
*/
function toInt152(int256 value) internal pure returns (int152 downcasted) {
downcasted = int152(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(152, value);
}
}
/**
* @dev Returns the downcasted int144 from int256, reverting on
* overflow (when the input is less than smallest int144 or
* greater than largest int144).
*
* Counterpart to Solidity's `int144` operator.
*
* Requirements:
*
* - input must fit into 144 bits
*/
function toInt144(int256 value) internal pure returns (int144 downcasted) {
downcasted = int144(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(144, value);
}
}
/**
* @dev Returns the downcasted int136 from int256, reverting on
* overflow (when the input is less than smallest int136 or
* greater than largest int136).
*
* Counterpart to Solidity's `int136` operator.
*
* Requirements:
*
* - input must fit into 136 bits
*/
function toInt136(int256 value) internal pure returns (int136 downcasted) {
downcasted = int136(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(136, value);
}
}
/**
* @dev Returns the downcasted int128 from int256, reverting on
* overflow (when the input is less than smallest int128 or
* greater than largest int128).
*
* Counterpart to Solidity's `int128` operator.
*
* Requirements:
*
* - input must fit into 128 bits
*/
function toInt128(int256 value) internal pure returns (int128 downcasted) {
downcasted = int128(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(128, value);
}
}
/**
* @dev Returns the downcasted int120 from int256, reverting on
* overflow (when the input is less than smallest int120 or
* greater than largest int120).
*
* Counterpart to Solidity's `int120` operator.
*
* Requirements:
*
* - input must fit into 120 bits
*/
function toInt120(int256 value) internal pure returns (int120 downcasted) {
downcasted = int120(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(120, value);
}
}
/**
* @dev Returns the downcasted int112 from int256, reverting on
* overflow (when the input is less than smallest int112 or
* greater than largest int112).
*
* Counterpart to Solidity's `int112` operator.
*
* Requirements:
*
* - input must fit into 112 bits
*/
function toInt112(int256 value) internal pure returns (int112 downcasted) {
downcasted = int112(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(112, value);
}
}
/**
* @dev Returns the downcasted int104 from int256, reverting on
* overflow (when the input is less than smallest int104 or
* greater than largest int104).
*
* Counterpart to Solidity's `int104` operator.
*
* Requirements:
*
* - input must fit into 104 bits
*/
function toInt104(int256 value) internal pure returns (int104 downcasted) {
downcasted = int104(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(104, value);
}
}
/**
* @dev Returns the downcasted int96 from int256, reverting on
* overflow (when the input is less than smallest int96 or
* greater than largest int96).
*
* Counterpart to Solidity's `int96` operator.
*
* Requirements:
*
* - input must fit into 96 bits
*/
function toInt96(int256 value) internal pure returns (int96 downcasted) {
downcasted = int96(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(96, value);
}
}
/**
* @dev Returns the downcasted int88 from int256, reverting on
* overflow (when the input is less than smallest int88 or
* greater than largest int88).
*
* Counterpart to Solidity's `int88` operator.
*
* Requirements:
*
* - input must fit into 88 bits
*/
function toInt88(int256 value) internal pure returns (int88 downcasted) {
downcasted = int88(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(88, value);
}
}
/**
* @dev Returns the downcasted int80 from int256, reverting on
* overflow (when the input is less than smallest int80 or
* greater than largest int80).
*
* Counterpart to Solidity's `int80` operator.
*
* Requirements:
*
* - input must fit into 80 bits
*/
function toInt80(int256 value) internal pure returns (int80 downcasted) {
downcasted = int80(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(80, value);
}
}
/**
* @dev Returns the downcasted int72 from int256, reverting on
* overflow (when the input is less than smallest int72 or
* greater than largest int72).
*
* Counterpart to Solidity's `int72` operator.
*
* Requirements:
*
* - input must fit into 72 bits
*/
function toInt72(int256 value) internal pure returns (int72 downcasted) {
downcasted = int72(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(72, value);
}
}
/**
* @dev Returns the downcasted int64 from int256, reverting on
* overflow (when the input is less than smallest int64 or
* greater than largest int64).
*
* Counterpart to Solidity's `int64` operator.
*
* Requirements:
*
* - input must fit into 64 bits
*/
function toInt64(int256 value) internal pure returns (int64 downcasted) {
downcasted = int64(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(64, value);
}
}
/**
* @dev Returns the downcasted int56 from int256, reverting on
* overflow (when the input is less than smallest int56 or
* greater than largest int56).
*
* Counterpart to Solidity's `int56` operator.
*
* Requirements:
*
* - input must fit into 56 bits
*/
function toInt56(int256 value) internal pure returns (int56 downcasted) {
downcasted = int56(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(56, value);
}
}
/**
* @dev Returns the downcasted int48 from int256, reverting on
* overflow (when the input is less than smallest int48 or
* greater than largest int48).
*
* Counterpart to Solidity's `int48` operator.
*
* Requirements:
*
* - input must fit into 48 bits
*/
function toInt48(int256 value) internal pure returns (int48 downcasted) {
downcasted = int48(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(48, value);
}
}
/**
* @dev Returns the downcasted int40 from int256, reverting on
* overflow (when the input is less than smallest int40 or
* greater than largest int40).
*
* Counterpart to Solidity's `int40` operator.
*
* Requirements:
*
* - input must fit into 40 bits
*/
function toInt40(int256 value) internal pure returns (int40 downcasted) {
downcasted = int40(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(40, value);
}
}
/**
* @dev Returns the downcasted int32 from int256, reverting on
* overflow (when the input is less than smallest int32 or
* greater than largest int32).
*
* Counterpart to Solidity's `int32` operator.
*
* Requirements:
*
* - input must fit into 32 bits
*/
function toInt32(int256 value) internal pure returns (int32 downcasted) {
downcasted = int32(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(32, value);
}
}
/**
* @dev Returns the downcasted int24 from int256, reverting on
* overflow (when the input is less than smallest int24 or
* greater than largest int24).
*
* Counterpart to Solidity's `int24` operator.
*
* Requirements:
*
* - input must fit into 24 bits
*/
function toInt24(int256 value) internal pure returns (int24 downcasted) {
downcasted = int24(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(24, value);
}
}
/**
* @dev Returns the downcasted int16 from int256, reverting on
* overflow (when the input is less than smallest int16 or
* greater than largest int16).
*
* Counterpart to Solidity's `int16` operator.
*
* Requirements:
*
* - input must fit into 16 bits
*/
function toInt16(int256 value) internal pure returns (int16 downcasted) {
downcasted = int16(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(16, value);
}
}
/**
* @dev Returns the downcasted int8 from int256, reverting on
* overflow (when the input is less than smallest int8 or
* greater than largest int8).
*
* Counterpart to Solidity's `int8` operator.
*
* Requirements:
*
* - input must fit into 8 bits
*/
function toInt8(int256 value) internal pure returns (int8 downcasted) {
downcasted = int8(value);
if (downcasted != value) {
revert SafeCastOverflowedIntDowncast(8, value);
}
}
/**
* @dev Converts an unsigned uint256 into a signed int256.
*
* Requirements:
*
* - input must be less than or equal to maxInt256.
*/
function toInt256(uint256 value) internal pure returns (int256) {
// Note: Unsafe cast below is okay because `type(int256).max` is guaranteed to be positive
if (value > uint256(type(int256).max)) {
revert SafeCastOverflowedUintToInt(value);
}
return int256(value);
}
}// SPDX-FileCopyrightText: 2022 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { UnstructuredStorage } from "../UnstructuredStorage.sol"; contract Versioned { using UnstructuredStorage for bytes32; /// @dev Storage slot: uint256 version /// Version of the initialized contract storage. /// The version stored in CONTRACT_VERSION_POSITION equals to: /// - 0 right after the deployment, before an initializer is invoked (and only at that moment); /// - N after calling initialize(), where N is the initially deployed contract version; /// - N after upgrading contract by calling finalizeUpgrade_vN(). bytes32 internal constant CONTRACT_VERSION_POSITION = keccak256("lido.Versioned.contractVersion"); uint256 internal constant PETRIFIED_VERSION_MARK = type(uint256).max; event ContractVersionSet(uint256 version); error NonZeroContractVersionOnInit(); error InvalidContractVersion(); error InvalidContractVersionIncrement(); error UnexpectedContractVersion(uint256 expected, uint256 received); constructor() { // lock version in the implementation's storage to prevent initialization CONTRACT_VERSION_POSITION.setStorageUint256(PETRIFIED_VERSION_MARK); } /// @notice Returns the current contract version. function getContractVersion() public view returns (uint256) { return CONTRACT_VERSION_POSITION.getStorageUint256(); } /// @dev Sets the contract version to N. Should be called from the initialize() function. function _initializeContractVersionTo(uint256 version) internal { if (version == 0) { revert InvalidContractVersion(); } if (getContractVersion() != 0) { revert NonZeroContractVersionOnInit(); } _setContractVersion(version); } /// @dev Updates the contract version. Should be called from a finalizeUpgrade_vN() function. function _updateContractVersion(uint256 newVersion) internal { if (newVersion != getContractVersion() + 1) { revert InvalidContractVersionIncrement(); } _setContractVersion(newVersion); } function _checkContractVersion(uint256 version) internal view { uint256 expectedVersion = getContractVersion(); if (version != expectedVersion) { revert UnexpectedContractVersion(expectedVersion, version); } } function _setContractVersion(uint256 version) private { CONTRACT_VERSION_POSITION.setStorageUint256(version); emit ContractVersionSet(version); } }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; /// @notice A contract that gets consensus reports (i.e. hashes) pushed to and processes them /// asynchronously. /// /// HashConsensus doesn't expect any specific behavior from a report processor, and guarantees /// the following: /// /// 1. HashConsensus won't submit reports via `IReportAsyncProcessor.submitConsensusReport` or ask /// to discard reports via `IReportAsyncProcessor.discardConsensusReport` for any slot up to (and /// including) the slot returned from `IReportAsyncProcessor.getLastProcessingRefSlot`. /// /// 2. HashConsensus won't accept member reports (and thus won't include such reports in calculating /// the consensus) that have `consensusVersion` argument of the `HashConsensus.submitReport` call /// holding a diff. value than the one returned from `IReportAsyncProcessor.getConsensusVersion()` /// at the moment of the `HashConsensus.submitReport` call. /// interface IReportAsyncProcessor { /// @notice Submits a consensus report for processing. /// /// Note that submitting the report doesn't require the processor to start processing it right /// away, this can happen later (see `getLastProcessingRefSlot`). Until processing is started, /// HashConsensus is free to reach consensus on another report for the same reporting frame an /// submit it using this same function, or to lose the consensus on the submitted report, /// notifying the processor via `discardConsensusReport`. /// function submitConsensusReport( bytes32 report, uint256 refSlot, uint256 deadline ) external; /// @notice Notifies that the report for the given ref. slot is not a consensus report anymore /// and should be discarded. This can happen when a member changes their report, is removed /// from the set, or when the quorum value gets increased. /// /// Only called when, for the given reference slot: /// /// 1. there previously was a consensus report; AND /// 2. processing of the consensus report hasn't started yet; AND /// 3. report processing deadline is not expired yet; AND /// 4. there's no consensus report now (otherwise, `submitConsensusReport` is called instead). /// /// Can be called even when there's no submitted non-discarded consensus report for the current /// reference slot, i.e. can be called multiple times in succession. /// function discardConsensusReport(uint256 refSlot) external; /// @notice Returns the last reference slot for which processing of the report was started. /// /// HashConsensus won't submit reports for any slot less than or equal to this slot. /// function getLastProcessingRefSlot() external view returns (uint256); /// @notice Returns the current consensus version. /// /// Consensus version must change every time consensus rules change, meaning that /// an oracle looking at the same reference slot would calculate a different hash. /// /// HashConsensus won't accept member reports any consensus version different form the /// one returned from this function. /// function getConsensusVersion() external view returns (uint256); }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; interface IConsensusContract { function getIsMember(address addr) external view returns (bool); function getCurrentFrame() external view returns (uint256 refSlot, uint256 reportProcessingDeadlineSlot); function getChainConfig() external view returns ( uint256 slotsPerEpoch, uint256 secondsPerSlot, uint256 genesisTime ); function getInitialRefSlot() external view returns (uint256); }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; /** * @title Interface defining ERC20-compatible StETH token */ interface IStETH { /** * @notice Get stETH amount by the provided shares amount * @param _sharesAmount shares amount * @dev dual to `getSharesByPooledEth`. */ function getPooledEthByShares( uint256 _sharesAmount ) external view returns (uint256); /** * @notice Get shares amount by the provided stETH amount * @param _pooledEthAmount stETH amount * @dev dual to `getPooledEthByShares`. */ function getSharesByPooledEth( uint256 _pooledEthAmount ) external view returns (uint256); /** * @notice Get shares amount of the provided account * @param _account provided account address. */ function sharesOf(address _account) external view returns (uint256); function balanceOf(address _account) external view returns (uint256); /** * @notice Transfer `_sharesAmount` stETH shares from `_sender` to `_recipient` using allowance. */ function transferSharesFrom( address _sender, address _recipient, uint256 _sharesAmount ) external returns (uint256); /** * @notice Moves `_sharesAmount` token shares from the caller's account to the `_recipient` account. */ function transferShares( address _recipient, uint256 _sharesAmount ) external returns (uint256); /** * @notice Moves `_amount` stETH from the caller's account to the `_recipient` account. */ function transfer( address _recipient, uint256 _amount ) external returns (bool); /** * @notice Moves `_amount` stETH from the `_sender` account to the `_recipient` account. */ function transferFrom( address _sender, address _recipient, uint256 _amount ) external returns (bool); function approve(address _spender, uint256 _amount) external returns (bool); function permit( address owner, address spender, uint256 value, uint256 deadline, uint8 v, bytes32 r, bytes32 s ) external; function allowance( address _owner, address _spender ) external view returns (uint256); }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { IStakingModule } from "./IStakingModule.sol"; import { ICSAccounting } from "./ICSAccounting.sol"; import { IQueueLib } from "../lib/QueueLib.sol"; import { INOAddresses } from "../lib/NOAddresses.sol"; import { IAssetRecovererLib } from "../lib/AssetRecovererLib.sol"; import { Batch } from "../lib/QueueLib.sol"; import { ILidoLocator } from "./ILidoLocator.sol"; import { IStETH } from "./IStETH.sol"; import { ICSParametersRegistry } from "./ICSParametersRegistry.sol"; import { ICSExitPenalties } from "./ICSExitPenalties.sol"; struct NodeOperator { // All the counters below are used together e.g. in the _updateDepositableValidatorsCount /* 1 */ uint32 totalAddedKeys; // @dev increased and decreased when removed /* 1 */ uint32 totalWithdrawnKeys; // @dev only increased /* 1 */ uint32 totalDepositedKeys; // @dev only increased /* 1 */ uint32 totalVettedKeys; // @dev both increased and decreased /* 1 */ uint32 stuckValidatorsCount; // @dev both increased and decreased /* 1 */ uint32 depositableValidatorsCount; // @dev any value /* 1 */ uint32 targetLimit; /* 1 */ uint8 targetLimitMode; /* 2 */ uint32 totalExitedKeys; // @dev only increased except for the unsafe updates /* 2 */ uint32 enqueuedCount; // Tracks how many places are occupied by the node operator's keys in the queue. /* 2 */ address managerAddress; /* 3 */ address proposedManagerAddress; /* 4 */ address rewardAddress; /* 5 */ address proposedRewardAddress; /* 5 */ bool extendedManagerPermissions; /* 5 */ bool usedPriorityQueue; } struct NodeOperatorManagementProperties { address managerAddress; address rewardAddress; bool extendedManagerPermissions; } struct ValidatorWithdrawalInfo { uint256 nodeOperatorId; // @dev ID of the Node Operator uint256 keyIndex; // @dev Index of the withdrawn key in the Node Operator's keys storage uint256 amount; // @dev Amount of withdrawn ETH in wei } /// @title Lido's Community Staking Module interface interface ICSModule is IQueueLib, INOAddresses, IAssetRecovererLib, IStakingModule { error CannotAddKeys(); error NodeOperatorDoesNotExist(); error SenderIsNotEligible(); error InvalidVetKeysPointer(); error ExitedKeysHigherThanTotalDeposited(); error ExitedKeysDecrease(); error InvalidInput(); error NotEnoughKeys(); error PriorityQueueAlreadyUsed(); error NotEligibleForPriorityQueue(); error PriorityQueueMaxDepositsUsed(); error NoQueuedKeysToMigrate(); error KeysLimitExceeded(); error SigningKeysInvalidOffset(); error InvalidAmount(); error ZeroLocatorAddress(); error ZeroAccountingAddress(); error ZeroExitPenaltiesAddress(); error ZeroAdminAddress(); error ZeroSenderAddress(); error ZeroParametersRegistryAddress(); event NodeOperatorAdded( uint256 indexed nodeOperatorId, address indexed managerAddress, address indexed rewardAddress, bool extendedManagerPermissions ); event ReferrerSet(uint256 indexed nodeOperatorId, address indexed referrer); event DepositableSigningKeysCountChanged( uint256 indexed nodeOperatorId, uint256 depositableKeysCount ); event VettedSigningKeysCountChanged( uint256 indexed nodeOperatorId, uint256 vettedKeysCount ); event VettedSigningKeysCountDecreased(uint256 indexed nodeOperatorId); event DepositedSigningKeysCountChanged( uint256 indexed nodeOperatorId, uint256 depositedKeysCount ); event ExitedSigningKeysCountChanged( uint256 indexed nodeOperatorId, uint256 exitedKeysCount ); event TotalSigningKeysCountChanged( uint256 indexed nodeOperatorId, uint256 totalKeysCount ); event TargetValidatorsCountChanged( uint256 indexed nodeOperatorId, uint256 targetLimitMode, uint256 targetValidatorsCount ); event WithdrawalSubmitted( uint256 indexed nodeOperatorId, uint256 keyIndex, uint256 amount, bytes pubkey ); event BatchEnqueued( uint256 indexed queuePriority, uint256 indexed nodeOperatorId, uint256 count ); event KeyRemovalChargeApplied(uint256 indexed nodeOperatorId); event ELRewardsStealingPenaltyReported( uint256 indexed nodeOperatorId, bytes32 proposedBlockHash, uint256 stolenAmount ); event ELRewardsStealingPenaltyCancelled( uint256 indexed nodeOperatorId, uint256 amount ); event ELRewardsStealingPenaltyCompensated( uint256 indexed nodeOperatorId, uint256 amount ); event ELRewardsStealingPenaltySettled(uint256 indexed nodeOperatorId); function PAUSE_ROLE() external view returns (bytes32); function RESUME_ROLE() external view returns (bytes32); function STAKING_ROUTER_ROLE() external view returns (bytes32); function REPORT_EL_REWARDS_STEALING_PENALTY_ROLE() external view returns (bytes32); function SETTLE_EL_REWARDS_STEALING_PENALTY_ROLE() external view returns (bytes32); function VERIFIER_ROLE() external view returns (bytes32); function RECOVERER_ROLE() external view returns (bytes32); function CREATE_NODE_OPERATOR_ROLE() external view returns (bytes32); function DEPOSIT_SIZE() external view returns (uint256); function LIDO_LOCATOR() external view returns (ILidoLocator); function STETH() external view returns (IStETH); function PARAMETERS_REGISTRY() external view returns (ICSParametersRegistry); function ACCOUNTING() external view returns (ICSAccounting); function EXIT_PENALTIES() external view returns (ICSExitPenalties); function FEE_DISTRIBUTOR() external view returns (address); function QUEUE_LOWEST_PRIORITY() external view returns (uint256); function QUEUE_LEGACY_PRIORITY() external view returns (uint256); /// @notice Returns the address of the accounting contract function accounting() external view returns (ICSAccounting); /// @notice Pause creation of the Node Operators and keys upload for `duration` seconds. /// Existing NO management and reward claims are still available. /// To pause reward claims use pause method on CSAccounting /// @param duration Duration of the pause in seconds function pauseFor(uint256 duration) external; /// @notice Resume creation of the Node Operators and keys upload function resume() external; /// @notice Returns the initialized version of the contract function getInitializedVersion() external view returns (uint64); /// @notice Permissioned method to add a new Node Operator /// Should be called by `*Gate.sol` contracts. See `PermissionlessGate.sol` and `VettedGate.sol` for examples /// @param from Sender address. Initial sender address to be used as a default manager and reward addresses. /// Gates must pass the correct address in order to specify which address should be the owner of the Node Operator /// @param managementProperties Optional. Management properties to be used for the Node Operator. /// managerAddress: Used as `managerAddress` for the Node Operator. If not passed `from` will be used. /// rewardAddress: Used as `rewardAddress` for the Node Operator. If not passed `from` will be used. /// extendedManagerPermissions: Flag indicating that `managerAddress` will be able to change `rewardAddress`. /// If set to true `resetNodeOperatorManagerAddress` method will be disabled /// @param referrer Optional. Referrer address. Should be passed when Node Operator is created using partners integration function createNodeOperator( address from, NodeOperatorManagementProperties memory managementProperties, address referrer ) external returns (uint256 nodeOperatorId); /// @notice Add new keys to the existing Node Operator using ETH as a bond /// @param from Sender address. Commonly equals to `msg.sender` except for the case of Node Operator creation by `*Gate.sol` contracts /// @param nodeOperatorId ID of the Node Operator /// @param keysCount Signing keys count /// @param publicKeys Public keys to submit /// @param signatures Signatures of `(deposit_message_root, domain)` tuples /// https://github.com/ethereum/consensus-specs/blob/v1.4.0/specs/phase0/beacon-chain.md#signingdata function addValidatorKeysETH( address from, uint256 nodeOperatorId, uint256 keysCount, bytes memory publicKeys, bytes memory signatures ) external payable; /// @notice Add new keys to the existing Node Operator using stETH as a bond /// @notice Due to the stETH rounding issue make sure to make approval or sign permit with extra 10 wei to avoid revert /// @param from Sender address. Commonly equals to `msg.sender` except for the case of Node Operator creation by `*Gate.sol` contracts /// @param nodeOperatorId ID of the Node Operator /// @param keysCount Signing keys count /// @param publicKeys Public keys to submit /// @param signatures Signatures of `(deposit_message_root, domain)` tuples /// https://github.com/ethereum/consensus-specs/blob/v1.4.0/specs/phase0/beacon-chain.md#signingdata /// @param permit Optional. Permit to use stETH as bond function addValidatorKeysStETH( address from, uint256 nodeOperatorId, uint256 keysCount, bytes memory publicKeys, bytes memory signatures, ICSAccounting.PermitInput memory permit ) external; /// @notice Add new keys to the existing Node Operator using wstETH as a bond /// @notice Due to the stETH rounding issue make sure to make approval or sign permit with extra 10 wei to avoid revert /// @param from Sender address. Commonly equals to `msg.sender` except for the case of Node Operator creation by `*Gate.sol` contracts /// @param nodeOperatorId ID of the Node Operator /// @param keysCount Signing keys count /// @param publicKeys Public keys to submit /// @param signatures Signatures of `(deposit_message_root, domain)` tuples /// https://github.com/ethereum/consensus-specs/blob/v1.4.0/specs/phase0/beacon-chain.md#signingdata /// @param permit Optional. Permit to use wstETH as bond function addValidatorKeysWstETH( address from, uint256 nodeOperatorId, uint256 keysCount, bytes memory publicKeys, bytes memory signatures, ICSAccounting.PermitInput memory permit ) external; /// @notice Report EL rewards stealing for the given Node Operator /// @notice The final locked amount will be equal to the stolen funds plus EL stealing additional fine /// @param nodeOperatorId ID of the Node Operator /// @param blockHash Execution layer block hash of the proposed block with EL rewards stealing /// @param amount Amount of stolen EL rewards in ETH function reportELRewardsStealingPenalty( uint256 nodeOperatorId, bytes32 blockHash, uint256 amount ) external; /// @notice Compensate EL rewards stealing penalty for the given Node Operator to prevent further validator exits /// @dev Can only be called by the Node Operator manager /// @param nodeOperatorId ID of the Node Operator function compensateELRewardsStealingPenalty( uint256 nodeOperatorId ) external payable; /// @notice Cancel previously reported and not settled EL rewards stealing penalty for the given Node Operator /// @notice The funds will be unlocked /// @param nodeOperatorId ID of the Node Operator /// @param amount Amount of penalty to cancel function cancelELRewardsStealingPenalty( uint256 nodeOperatorId, uint256 amount ) external; /// @notice Settle locked bond for the given Node Operators /// @dev SETTLE_EL_REWARDS_STEALING_PENALTY_ROLE role is expected to be assigned to Easy Track /// @param nodeOperatorIds IDs of the Node Operators function settleELRewardsStealingPenalty( uint256[] memory nodeOperatorIds ) external; /// @notice Propose a new manager address for the Node Operator /// @param nodeOperatorId ID of the Node Operator /// @param proposedAddress Proposed manager address function proposeNodeOperatorManagerAddressChange( uint256 nodeOperatorId, address proposedAddress ) external; /// @notice Confirm a new manager address for the Node Operator. /// Should be called from the currently proposed address /// @param nodeOperatorId ID of the Node Operator function confirmNodeOperatorManagerAddressChange( uint256 nodeOperatorId ) external; /// @notice Reset the manager address to the reward address. /// Should be called from the reward address /// @param nodeOperatorId ID of the Node Operator function resetNodeOperatorManagerAddress(uint256 nodeOperatorId) external; /// @notice Propose a new reward address for the Node Operator /// @param nodeOperatorId ID of the Node Operator /// @param proposedAddress Proposed reward address function proposeNodeOperatorRewardAddressChange( uint256 nodeOperatorId, address proposedAddress ) external; /// @notice Confirm a new reward address for the Node Operator. /// Should be called from the currently proposed address /// @param nodeOperatorId ID of the Node Operator function confirmNodeOperatorRewardAddressChange( uint256 nodeOperatorId ) external; /// @notice Change rewardAddress if extendedManagerPermissions is enabled for the Node Operator /// @param nodeOperatorId ID of the Node Operator /// @param newAddress Proposed reward address function changeNodeOperatorRewardAddress( uint256 nodeOperatorId, address newAddress ) external; /// @notice Get the pointers to the head and tail of queue with the given priority. /// @param queuePriority Priority of the queue to get the pointers. /// @return head Pointer to the head of the queue. /// @return tail Pointer to the tail of the queue. function depositQueuePointers( uint256 queuePriority ) external view returns (uint128 head, uint128 tail); /// @notice Get the deposit queue item by an index /// @param queuePriority Priority of the queue to get an item from /// @param index Index of a queue item /// @return Deposit queue item from the priority queue function depositQueueItem( uint256 queuePriority, uint128 index ) external view returns (Batch); /// @notice Clean the deposit queue from batches with no depositable keys /// @dev Use **eth_call** to check how many items will be removed /// @param maxItems How many queue items to review /// @return removed Count of batches to be removed by visiting `maxItems` batches /// @return lastRemovedAtDepth The value to use as `maxItems` to remove `removed` batches if the static call of the method was used function cleanDepositQueue( uint256 maxItems ) external returns (uint256 removed, uint256 lastRemovedAtDepth); /// @notice Update depositable validators data and enqueue all unqueued keys for the given Node Operator /// @notice Unqueued stands for vetted but not enqueued keys /// @param nodeOperatorId ID of the Node Operator function updateDepositableValidatorsCount(uint256 nodeOperatorId) external; /// Performs a one-time migration of allocated seats from the legacy queue to a priority queue /// for an eligible node operator. This is possible, e.g., in the following scenario: A node /// operator with EA curve added their keys before CSM v2 and has no deposits due to a very long /// queue. The EA curve gives the node operator the ability to get some count of deposits through /// the priority queue. So, by calling the migration method, the node operator can obtain seats /// in the priority queue even though they already have seats in the legacy queue. /// @param nodeOperatorId ID of the Node Operator function migrateToPriorityQueue(uint256 nodeOperatorId) external; /// @notice Get Node Operator info /// @param nodeOperatorId ID of the Node Operator /// @return Node Operator info function getNodeOperator( uint256 nodeOperatorId ) external view returns (NodeOperator memory); /// @notice Get Node Operator management properties /// @param nodeOperatorId ID of the Node Operator /// @return Node Operator management properties function getNodeOperatorManagementProperties( uint256 nodeOperatorId ) external view returns (NodeOperatorManagementProperties memory); /// @notice Get Node Operator owner. Owner is manager address if `extendedManagerPermissions` is enabled and reward address otherwise /// @param nodeOperatorId ID of the Node Operator /// @return Node Operator owner function getNodeOperatorOwner( uint256 nodeOperatorId ) external view returns (address); /// @notice Get Node Operator non-withdrawn keys /// @param nodeOperatorId ID of the Node Operator /// @return Non-withdrawn keys count function getNodeOperatorNonWithdrawnKeys( uint256 nodeOperatorId ) external view returns (uint256); /// @notice Get Node Operator total deposited keys /// @param nodeOperatorId ID of the Node Operator /// @return Total deposited keys count function getNodeOperatorTotalDepositedKeys( uint256 nodeOperatorId ) external view returns (uint256); /// @notice Get Node Operator signing keys /// @param nodeOperatorId ID of the Node Operator /// @param startIndex Index of the first key /// @param keysCount Count of keys to get /// @return Signing keys function getSigningKeys( uint256 nodeOperatorId, uint256 startIndex, uint256 keysCount ) external view returns (bytes memory); /// @notice Get Node Operator signing keys with signatures /// @param nodeOperatorId ID of the Node Operator /// @param startIndex Index of the first key /// @param keysCount Count of keys to get /// @return keys Signing keys /// @return signatures Signatures of `(deposit_message_root, domain)` tuples /// https://github.com/ethereum/consensus-specs/blob/v1.4.0/specs/phase0/beacon-chain.md#signingdata function getSigningKeysWithSignatures( uint256 nodeOperatorId, uint256 startIndex, uint256 keysCount ) external view returns (bytes memory keys, bytes memory signatures); /// @notice Report Node Operator's keys as withdrawn and settle withdrawn amount /// @notice Called by `CSVerifier` contract. /// See `CSVerifier.processWithdrawalProof` to use this method permissionless /// @param withdrawalsInfo An array for the validator withdrawals info structs function submitWithdrawals( ValidatorWithdrawalInfo[] calldata withdrawalsInfo ) external; /// @notice Check if the given Node Operator's key is reported as withdrawn /// @param nodeOperatorId ID of the Node Operator /// @param keyIndex index of the key to check /// @return Is validator reported as withdrawn or not function isValidatorWithdrawn( uint256 nodeOperatorId, uint256 keyIndex ) external view returns (bool); /// @notice Remove keys for the Node Operator and confiscate removal charge for each deleted key /// @param nodeOperatorId ID of the Node Operator /// @param startIndex Index of the first key /// @param keysCount Keys count to delete function removeKeys( uint256 nodeOperatorId, uint256 startIndex, uint256 keysCount ) external; }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { ICSBondCore } from "./ICSBondCore.sol"; import { ICSBondCurve } from "./ICSBondCurve.sol"; import { ICSBondLock } from "./ICSBondLock.sol"; import { ICSFeeDistributor } from "./ICSFeeDistributor.sol"; import { IAssetRecovererLib } from "../lib/AssetRecovererLib.sol"; import { ICSModule } from "./ICSModule.sol"; interface ICSAccounting is ICSBondCore, ICSBondCurve, ICSBondLock, IAssetRecovererLib { struct PermitInput { uint256 value; uint256 deadline; uint8 v; bytes32 r; bytes32 s; } event BondLockCompensated(uint256 indexed nodeOperatorId, uint256 amount); event ChargePenaltyRecipientSet(address chargePenaltyRecipient); error SenderIsNotModule(); error SenderIsNotEligible(); error ZeroModuleAddress(); error ZeroAdminAddress(); error ZeroFeeDistributorAddress(); error ZeroChargePenaltyRecipientAddress(); error NodeOperatorDoesNotExist(); error ElRewardsVaultReceiveFailed(); error InvalidBondCurvesLength(); function PAUSE_ROLE() external view returns (bytes32); function RESUME_ROLE() external view returns (bytes32); function MANAGE_BOND_CURVES_ROLE() external view returns (bytes32); function SET_BOND_CURVE_ROLE() external view returns (bytes32); function RECOVERER_ROLE() external view returns (bytes32); function MODULE() external view returns (ICSModule); function FEE_DISTRIBUTOR() external view returns (ICSFeeDistributor); function feeDistributor() external view returns (ICSFeeDistributor); function chargePenaltyRecipient() external view returns (address); /// @notice Get the initialized version of the contract function getInitializedVersion() external view returns (uint64); /// @notice Resume reward claims and deposits function resume() external; /// @notice Pause reward claims and deposits for `duration` seconds /// @dev Must be called together with `CSModule.pauseFor` /// @dev Passing MAX_UINT_256 as `duration` pauses indefinitely /// @param duration Duration of the pause in seconds function pauseFor(uint256 duration) external; /// @notice Set charge recipient address /// @param _chargePenaltyRecipient Charge recipient address function setChargePenaltyRecipient( address _chargePenaltyRecipient ) external; /// @notice Set bond lock period /// @param period Period in seconds to retain bond lock function setBondLockPeriod(uint256 period) external; /// @notice Add a new bond curve /// @param bondCurve Bond curve definition to add /// @return id Id of the added curve function addBondCurve( BondCurveIntervalInput[] calldata bondCurve ) external returns (uint256 id); /// @notice Update existing bond curve /// @dev If the curve is updated to a curve with higher values for any point, /// Extensive checks should be performed to avoid inconsistency in the keys accounting /// @param curveId Bond curve ID to update /// @param bondCurve Bond curve definition function updateBondCurve( uint256 curveId, BondCurveIntervalInput[] calldata bondCurve ) external; /// @notice Get the required bond in ETH (inc. missed and excess) for the given Node Operator to upload new deposit data /// @param nodeOperatorId ID of the Node Operator /// @param additionalKeys Number of new keys to add /// @return Required bond amount in ETH function getRequiredBondForNextKeys( uint256 nodeOperatorId, uint256 additionalKeys ) external view returns (uint256); /// @notice Get the bond amount in wstETH required for the `keysCount` keys using the default bond curve /// @param keysCount Keys count to calculate the required bond amount /// @param curveId Id of the curve to perform calculations against /// @return wstETH amount required for the `keysCount` function getBondAmountByKeysCountWstETH( uint256 keysCount, uint256 curveId ) external view returns (uint256); /// @notice Get the required bond in wstETH (inc. missed and excess) for the given Node Operator to upload new keys /// @param nodeOperatorId ID of the Node Operator /// @param additionalKeys Number of new keys to add /// @return Required bond in wstETH function getRequiredBondForNextKeysWstETH( uint256 nodeOperatorId, uint256 additionalKeys ) external view returns (uint256); /// @notice Get the number of the unbonded keys /// @param nodeOperatorId ID of the Node Operator /// @return Unbonded keys count function getUnbondedKeysCount( uint256 nodeOperatorId ) external view returns (uint256); /// @notice Get the number of the unbonded keys to be ejected using a forcedTargetLimit /// @param nodeOperatorId ID of the Node Operator /// @return Unbonded keys count function getUnbondedKeysCountToEject( uint256 nodeOperatorId ) external view returns (uint256); /// @notice Get current and required bond amounts in ETH (stETH) for the given Node Operator /// @dev To calculate excess bond amount subtract `required` from `current` value. /// To calculate missed bond amount subtract `current` from `required` value /// @param nodeOperatorId ID of the Node Operator /// @return current Current bond amount in ETH /// @return required Required bond amount in ETH function getBondSummary( uint256 nodeOperatorId ) external view returns (uint256 current, uint256 required); /// @notice Get current and required bond amounts in stETH shares for the given Node Operator /// @dev To calculate excess bond amount subtract `required` from `current` value. /// To calculate missed bond amount subtract `current` from `required` value /// @param nodeOperatorId ID of the Node Operator /// @return current Current bond amount in stETH shares /// @return required Required bond amount in stETH shares function getBondSummaryShares( uint256 nodeOperatorId ) external view returns (uint256 current, uint256 required); /// @notice Get current claimable bond in stETH shares for the given Node Operator /// @param nodeOperatorId ID of the Node Operator /// @return Current claimable bond in stETH shares function getClaimableBondShares( uint256 nodeOperatorId ) external view returns (uint256); /// @notice Get current claimable bond in stETH shares for the given Node Operator /// Includes potential rewards distributed by the Fee Distributor /// @param nodeOperatorId ID of the Node Operator /// @param cumulativeFeeShares Cumulative fee stETH shares for the Node Operator /// @param rewardsProof Merkle proof of the rewards /// @return Current claimable bond in stETH shares function getClaimableRewardsAndBondShares( uint256 nodeOperatorId, uint256 cumulativeFeeShares, bytes32[] calldata rewardsProof ) external view returns (uint256); /// @notice Unwrap the user's wstETH and deposit stETH to the bond for the given Node Operator /// @dev Called by CSM exclusively. CSM should check node operator existence and update depositable validators count /// @param from Address to unwrap wstETH from /// @param nodeOperatorId ID of the Node Operator /// @param wstETHAmount Amount of wstETH to deposit /// @param permit wstETH permit for the contract function depositWstETH( address from, uint256 nodeOperatorId, uint256 wstETHAmount, PermitInput calldata permit ) external; /// @notice Unwrap the user's wstETH and deposit stETH to the bond for the given Node Operator /// @dev Permissionless. Enqueues Node Operator's keys if needed /// @param nodeOperatorId ID of the Node Operator /// @param wstETHAmount Amount of wstETH to deposit /// @param permit wstETH permit for the contract function depositWstETH( uint256 nodeOperatorId, uint256 wstETHAmount, PermitInput calldata permit ) external; /// @notice Deposit user's stETH to the bond for the given Node Operator /// @dev Called by CSM exclusively. CSM should check node operator existence and update depositable validators count /// @param from Address to deposit stETH from. /// @param nodeOperatorId ID of the Node Operator /// @param stETHAmount Amount of stETH to deposit /// @param permit stETH permit for the contract function depositStETH( address from, uint256 nodeOperatorId, uint256 stETHAmount, PermitInput calldata permit ) external; /// @notice Deposit user's stETH to the bond for the given Node Operator /// @dev Permissionless. Enqueues Node Operator's keys if needed /// @param nodeOperatorId ID of the Node Operator /// @param stETHAmount Amount of stETH to deposit /// @param permit stETH permit for the contract function depositStETH( uint256 nodeOperatorId, uint256 stETHAmount, PermitInput calldata permit ) external; /// @notice Stake user's ETH with Lido and deposit stETH to the bond /// @dev Called by CSM exclusively. CSM should check node operator existence and update depositable validators count /// @param from Address to stake ETH and deposit stETH from /// @param nodeOperatorId ID of the Node Operator function depositETH(address from, uint256 nodeOperatorId) external payable; /// @notice Stake user's ETH with Lido and deposit stETH to the bond /// @dev Permissionless. Enqueues Node Operator's keys if needed /// @param nodeOperatorId ID of the Node Operator function depositETH(uint256 nodeOperatorId) external payable; /// @notice Claim full reward (fee + bond) in stETH for the given Node Operator with desirable value. /// `rewardsProof` and `cumulativeFeeShares` might be empty in order to claim only excess bond /// @param nodeOperatorId ID of the Node Operator /// @param stETHAmount Amount of stETH to claim /// @param cumulativeFeeShares Cumulative fee stETH shares for the Node Operator /// @param rewardsProof Merkle proof of the rewards /// @return shares Amount of stETH shares claimed /// @dev It's impossible to use single-leaf proof via this method, so this case should be treated carefully by /// off-chain tooling, e.g. to make sure a tree has at least 2 leafs. function claimRewardsStETH( uint256 nodeOperatorId, uint256 stETHAmount, uint256 cumulativeFeeShares, bytes32[] calldata rewardsProof ) external returns (uint256 shares); /// @notice Claim full reward (fee + bond) in wstETH for the given Node Operator available for this moment. /// `rewardsProof` and `cumulativeFeeShares` might be empty in order to claim only excess bond /// @param nodeOperatorId ID of the Node Operator /// @param wstETHAmount Amount of wstETH to claim /// @param cumulativeFeeShares Cumulative fee stETH shares for the Node Operator /// @param rewardsProof Merkle proof of the rewards /// @return claimedWstETHAmount Amount of wstETH claimed /// @dev It's impossible to use single-leaf proof via this method, so this case should be treated carefully by /// off-chain tooling, e.g. to make sure a tree has at least 2 leafs. function claimRewardsWstETH( uint256 nodeOperatorId, uint256 wstETHAmount, uint256 cumulativeFeeShares, bytes32[] calldata rewardsProof ) external returns (uint256 claimedWstETHAmount); /// @notice Request full reward (fee + bond) in Withdrawal NFT (unstETH) for the given Node Operator available for this moment. /// `rewardsProof` and `cumulativeFeeShares` might be empty in order to claim only excess bond /// @dev Reverts if amount isn't between `MIN_STETH_WITHDRAWAL_AMOUNT` and `MAX_STETH_WITHDRAWAL_AMOUNT` /// @param nodeOperatorId ID of the Node Operator /// @param stETHAmount Amount of ETH to request /// @param cumulativeFeeShares Cumulative fee stETH shares for the Node Operator /// @param rewardsProof Merkle proof of the rewards /// @return requestId Withdrawal NFT ID /// @dev It's impossible to use single-leaf proof via this method, so this case should be treated carefully by /// off-chain tooling, e.g. to make sure a tree has at least 2 leafs. function claimRewardsUnstETH( uint256 nodeOperatorId, uint256 stETHAmount, uint256 cumulativeFeeShares, bytes32[] calldata rewardsProof ) external returns (uint256 requestId); /// @notice Lock bond in ETH for the given Node Operator /// @dev Called by CSM exclusively /// @param nodeOperatorId ID of the Node Operator /// @param amount Amount to lock in ETH (stETH) function lockBondETH(uint256 nodeOperatorId, uint256 amount) external; /// @notice Release locked bond in ETH for the given Node Operator /// @dev Called by CSM exclusively /// @param nodeOperatorId ID of the Node Operator /// @param amount Amount to release in ETH (stETH) function releaseLockedBondETH( uint256 nodeOperatorId, uint256 amount ) external; /// @notice Settle locked bond ETH for the given Node Operator /// @dev Called by CSM exclusively /// @param nodeOperatorId ID of the Node Operator function settleLockedBondETH( uint256 nodeOperatorId ) external returns (bool); /// @notice Compensate locked bond ETH for the given Node Operator /// @dev Called by CSM exclusively /// @param nodeOperatorId ID of the Node Operator function compensateLockedBondETH(uint256 nodeOperatorId) external payable; /// @notice Set the bond curve for the given Node Operator /// @dev Updates depositable validators count in CSM to ensure key pointers consistency /// @param nodeOperatorId ID of the Node Operator /// @param curveId ID of the bond curve to set function setBondCurve(uint256 nodeOperatorId, uint256 curveId) external; /// @notice Penalize bond by burning stETH shares of the given Node Operator /// @param nodeOperatorId ID of the Node Operator /// @param amount Amount to penalize in ETH (stETH) function penalize(uint256 nodeOperatorId, uint256 amount) external; /// @notice Charge fee from bond by transferring stETH shares of the given Node Operator to the charge recipient /// @param nodeOperatorId ID of the Node Operator /// @param amount Amount to charge in ETH (stETH) function chargeFee(uint256 nodeOperatorId, uint256 amount) external; /// @notice Pull fees from CSFeeDistributor to the Node Operator's bond /// @dev Permissionless method. Can be called before penalty application to ensure that rewards are also penalized /// @param nodeOperatorId ID of the Node Operator /// @param cumulativeFeeShares Cumulative fee stETH shares for the Node Operator /// @param rewardsProof Merkle proof of the rewards function pullFeeRewards( uint256 nodeOperatorId, uint256 cumulativeFeeShares, bytes32[] calldata rewardsProof ) external; /// @notice Service method to update allowance to Burner in case it has changed function renewBurnerAllowance() external; }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; interface ICSParametersRegistry { struct MarkedUint248 { uint248 value; bool isValue; } struct QueueConfig { uint32 priority; uint32 maxDeposits; } struct StrikesParams { uint32 lifetime; uint32 threshold; } struct PerformanceCoefficients { uint32 attestationsWeight; uint32 blocksWeight; uint32 syncWeight; } struct InitializationData { uint256 keyRemovalCharge; uint256 elRewardsStealingAdditionalFine; uint256 keysLimit; uint256 rewardShare; uint256 performanceLeeway; uint256 strikesLifetime; uint256 strikesThreshold; uint256 defaultQueuePriority; uint256 defaultQueueMaxDeposits; uint256 badPerformancePenalty; uint256 attestationsWeight; uint256 blocksWeight; uint256 syncWeight; uint256 defaultAllowedExitDelay; uint256 defaultExitDelayPenalty; uint256 defaultMaxWithdrawalRequestFee; } /// @dev Defines a value interval starting from `minKeyNumber`. /// All keys with number >= `minKeyNumber` are assigned the corresponding `value` /// until the next interval begins. Intervals must be sorted by ascending `minKeyNumber` /// and must start from one (i.e., the first interval must have minKeyNumber == 1). /// Example: [{1, 10000}, {11, 8000}] means first 10 keys with 10000, other keys with 8000. struct KeyNumberValueInterval { uint256 minKeyNumber; uint256 value; } event DefaultKeyRemovalChargeSet(uint256 value); event DefaultElRewardsStealingAdditionalFineSet(uint256 value); event DefaultKeysLimitSet(uint256 value); event DefaultRewardShareSet(uint256 value); event DefaultPerformanceLeewaySet(uint256 value); event DefaultStrikesParamsSet(uint256 lifetime, uint256 threshold); event DefaultBadPerformancePenaltySet(uint256 value); event DefaultPerformanceCoefficientsSet( uint256 attestationsWeight, uint256 blocksWeight, uint256 syncWeight ); event DefaultQueueConfigSet(uint256 priority, uint256 maxDeposits); event DefaultAllowedExitDelaySet(uint256 delay); event DefaultExitDelayPenaltySet(uint256 penalty); event DefaultMaxWithdrawalRequestFeeSet(uint256 fee); event KeyRemovalChargeSet( uint256 indexed curveId, uint256 keyRemovalCharge ); event ElRewardsStealingAdditionalFineSet( uint256 indexed curveId, uint256 fine ); event KeysLimitSet(uint256 indexed curveId, uint256 limit); event RewardShareDataSet( uint256 indexed curveId, KeyNumberValueInterval[] data ); event PerformanceLeewayDataSet( uint256 indexed curveId, KeyNumberValueInterval[] data ); event StrikesParamsSet( uint256 indexed curveId, uint256 lifetime, uint256 threshold ); event BadPerformancePenaltySet(uint256 indexed curveId, uint256 penalty); event PerformanceCoefficientsSet( uint256 indexed curveId, uint256 attestationsWeight, uint256 blocksWeight, uint256 syncWeight ); event KeyRemovalChargeUnset(uint256 indexed curveId); event ElRewardsStealingAdditionalFineUnset(uint256 indexed curveId); event KeysLimitUnset(uint256 indexed curveId); event RewardShareDataUnset(uint256 indexed curveId); event PerformanceLeewayDataUnset(uint256 indexed curveId); event StrikesParamsUnset(uint256 indexed curveId); event BadPerformancePenaltyUnset(uint256 indexed curveId); event PerformanceCoefficientsUnset(uint256 indexed curveId); event QueueConfigSet( uint256 indexed curveId, uint256 priority, uint256 maxDeposits ); event QueueConfigUnset(uint256 indexed curveId); event AllowedExitDelaySet(uint256 indexed curveId, uint256 delay); event AllowedExitDelayUnset(uint256 indexed curveId); event ExitDelayPenaltySet(uint256 indexed curveId, uint256 penalty); event ExitDelayPenaltyUnset(uint256 indexed curveId); event MaxWithdrawalRequestFeeSet(uint256 indexed curveId, uint256 fee); event MaxWithdrawalRequestFeeUnset(uint256 indexed curveId); error InvalidRewardShareData(); error InvalidPerformanceLeewayData(); error InvalidKeyNumberValueIntervals(); error InvalidPerformanceCoefficients(); error InvalidStrikesParams(); error ZeroMaxDeposits(); error ZeroAdminAddress(); error QueueCannotBeUsed(); error InvalidAllowedExitDelay(); error ZeroQueueLowestPriority(); /// @notice The lowest priority a deposit queue can be assigned with. function QUEUE_LOWEST_PRIORITY() external view returns (uint256); /// @notice The priority reserved to be used for legacy queue only. function QUEUE_LEGACY_PRIORITY() external view returns (uint256); /// @notice Set default value for the key removal charge. Default value is used if a specific value is not set for the curveId /// @param keyRemovalCharge value to be set as default for the key removal charge function setDefaultKeyRemovalCharge(uint256 keyRemovalCharge) external; /// @notice Get default value for the key removal charge function defaultKeyRemovalCharge() external returns (uint256); /// @notice Set default value for the EL rewards stealing additional fine. Default value is used if a specific value is not set for the curveId /// @param fine value to be set as default for the EL rewards stealing additional fine function setDefaultElRewardsStealingAdditionalFine(uint256 fine) external; /// @notice Get default value for the EL rewards stealing additional fine function defaultElRewardsStealingAdditionalFine() external returns (uint256); /// @notice Set default value for the keys limit. Default value is used if a specific value is not set for the curveId /// @param limit value to be set as default for the keys limit function setDefaultKeysLimit(uint256 limit) external; /// @notice Get default value for the key removal charge function defaultKeysLimit() external returns (uint256); /// @notice Set default value for the reward share. Default value is used if a specific value is not set for the curveId /// @param share value to be set as default for the reward share function setDefaultRewardShare(uint256 share) external; /// @notice Get default value for the reward share function defaultRewardShare() external returns (uint256); /// @notice Set default value for the performance leeway. Default value is used if a specific value is not set for the curveId /// @param leeway value to be set as default for the performance leeway function setDefaultPerformanceLeeway(uint256 leeway) external; /// @notice Get default value for the performance leeway function defaultPerformanceLeeway() external returns (uint256); /// @notice Set default values for the strikes lifetime and threshold. Default values are used if specific values are not set for the curveId /// @param lifetime The default number of CSM Performance Oracle frames to store strikes values /// @param threshold The default strikes value leading to validator force ejection. function setDefaultStrikesParams( uint256 lifetime, uint256 threshold ) external; /// @notice Get default value for the strikes lifetime (frames count) and threshold (integer) /// @return lifetime The default number of CSM Performance Oracle frames to store strikes values /// @return threshold The default strikes value leading to validator force ejection. function defaultStrikesParams() external returns (uint32, uint32); /// @notice Set default value for the bad performance penalty. Default value is used if a specific value is not set for the curveId /// @param penalty value to be set as default for the bad performance penalty function setDefaultBadPerformancePenalty(uint256 penalty) external; /// @notice Get default value for the bad performance penalty function defaultBadPerformancePenalty() external returns (uint256); /// @notice Set default values for the performance coefficients. Default values are used if specific values are not set for the curveId /// @param attestationsWeight value to be set as default for the attestations effectiveness weight /// @param blocksWeight value to be set as default for block proposals effectiveness weight /// @param syncWeight value to be set as default for sync participation effectiveness weight function setDefaultPerformanceCoefficients( uint256 attestationsWeight, uint256 blocksWeight, uint256 syncWeight ) external; /// @notice Get default value for the performance coefficients function defaultPerformanceCoefficients() external returns (uint32, uint32, uint32); /// @notice set default value for allowed delay before the exit was initiated exit delay in seconds. Default value is used if a specific value is not set for the curveId /// @param delay value to be set as default for the allowed exit delay function setDefaultAllowedExitDelay(uint256 delay) external; /// @notice set default value for exit delay penalty. Default value is used if a specific value is not set for the curveId /// @param penalty value to be set as default for the exit delay penalty function setDefaultExitDelayPenalty(uint256 penalty) external; /// @notice set default value for max withdrawal request fee. Default value is used if a specific value is not set for the curveId /// @param fee value to be set as default for the max withdrawal request fee function setDefaultMaxWithdrawalRequestFee(uint256 fee) external; /// @notice Get default value for the allowed exit delay function defaultAllowedExitDelay() external returns (uint256); /// @notice Set key removal charge for the curveId. /// @param curveId Curve Id to associate key removal charge with /// @param keyRemovalCharge Key removal charge function setKeyRemovalCharge( uint256 curveId, uint256 keyRemovalCharge ) external; /// @notice Unset key removal charge for the curveId /// @param curveId Curve Id to unset custom key removal charge for function unsetKeyRemovalCharge(uint256 curveId) external; /// @notice Get key removal charge by the curveId. A charge is taken from the bond for each removed key from CSM /// @dev `defaultKeyRemovalCharge` is returned if the value is not set for the given curveId. /// @param curveId Curve Id to get key removal charge for /// @return keyRemovalCharge Key removal charge function getKeyRemovalCharge( uint256 curveId ) external view returns (uint256 keyRemovalCharge); /// @notice Set EL rewards stealing additional fine for the curveId. /// @param curveId Curve Id to associate EL rewards stealing additional fine limit with /// @param fine EL rewards stealing additional fine function setElRewardsStealingAdditionalFine( uint256 curveId, uint256 fine ) external; /// @notice Unset EL rewards stealing additional fine for the curveId /// @param curveId Curve Id to unset custom EL rewards stealing additional fine for function unsetElRewardsStealingAdditionalFine(uint256 curveId) external; /// @notice Get EL rewards stealing additional fine by the curveId. Additional fine is added to the EL rewards stealing penalty by CSM /// @dev `defaultElRewardsStealingAdditionalFine` is returned if the value is not set for the given curveId. /// @param curveId Curve Id to get EL rewards stealing additional fine for /// @return fine EL rewards stealing additional fine function getElRewardsStealingAdditionalFine( uint256 curveId ) external view returns (uint256 fine); /// @notice Set keys limit for the curveId. /// @param curveId Curve Id to associate keys limit with /// @param limit Keys limit function setKeysLimit(uint256 curveId, uint256 limit) external; /// @notice Unset key removal charge for the curveId /// @param curveId Curve Id to unset custom key removal charge for function unsetKeysLimit(uint256 curveId) external; /// @notice Get keys limit by the curveId. A limit indicates the maximal amount of the non-exited keys Node Operator can upload /// @dev `defaultKeysLimit` is returned if the value is not set for the given curveId. /// @param curveId Curve Id to get keys limit for /// @return limit Keys limit function getKeysLimit( uint256 curveId ) external view returns (uint256 limit); /// @notice Set reward share parameters for the curveId /// @dev KeyNumberValueInterval = [[1, 10000], [11, 8000], [51, 5000]] stands for /// 100% rewards for the first 10 keys, 80% rewards for the keys 11-50, and 50% rewards for the keys > 50 /// @param curveId Curve Id to associate reward share data with /// @param data Interval values for keys count and reward share percentages in BP (ex. [[1, 10000], [11, 8000], [51, 5000]]) function setRewardShareData( uint256 curveId, KeyNumberValueInterval[] calldata data ) external; /// @notice Unset reward share parameters for the curveId /// @param curveId Curve Id to unset custom reward share parameters for function unsetRewardShareData(uint256 curveId) external; /// @notice Get reward share parameters by the curveId. /// @dev Returns [[1, defaultRewardShare]] if no intervals are set for the given curveId. /// @dev KeyNumberValueInterval = [[1, 10000], [11, 8000], [51, 5000]] stands for /// 100% rewards for the first 10 keys, 80% rewards for the keys 11-50, and 50% rewards for the keys > 50 /// @param curveId Curve Id to get reward share data for /// @param data Interval values for keys count and reward share percentages in BP (ex. [[1, 10000], [11, 8000], [51, 5000]]) function getRewardShareData( uint256 curveId ) external view returns (KeyNumberValueInterval[] memory data); /// @notice Set default value for QueueConfig. Default value is used if a specific value is not set for the curveId. /// @param priority Queue priority. /// @param maxDeposits Maximum number of deposits a Node Operator can get via the priority queue. function setDefaultQueueConfig( uint256 priority, uint256 maxDeposits ) external; /// @notice Sets the provided config to the given curve. /// @param curveId Curve Id to set the config. /// @param priority Priority of the queue /// @param maxDeposits Max deposits in prioritized queue function setQueueConfig( uint256 curveId, uint256 priority, uint256 maxDeposits ) external; /// @notice Set the given curve's config to the default one. /// @param curveId Curve Id to unset custom config. function unsetQueueConfig(uint256 curveId) external; /// @notice Get the queue config for the given curve. /// @param curveId Curve Id to get the queue config for. /// @return priority Queue priority. /// @return maxDeposits Maximum number of deposits a Node Operator can get via the priority queue. function getQueueConfig( uint256 curveId ) external view returns (uint32 priority, uint32 maxDeposits); /// @notice Set performance leeway parameters for the curveId /// @dev Returns [[1, defaultPerformanceLeeway]] if no intervals are set for the given curveId. /// @dev KeyNumberValueInterval = [[1, 500], [101, 450], [501, 400]] stands for /// 5% performance leeway for the first 100 keys, 4.5% performance leeway for the keys 101-500, and 4% performance leeway for the keys > 500 /// @param curveId Curve Id to associate performance leeway data with /// @param data Interval values for keys count and performance leeway percentages in BP (ex. [[1, 500], [101, 450], [501, 400]]) function setPerformanceLeewayData( uint256 curveId, KeyNumberValueInterval[] calldata data ) external; /// @notice Unset performance leeway parameters for the curveId /// @param curveId Curve Id to unset custom performance leeway parameters for function unsetPerformanceLeewayData(uint256 curveId) external; /// @notice Get performance leeway parameters by the curveId /// @dev Returns [[1, defaultPerformanceLeeway]] if no intervals are set for the given curveId. /// @dev KeyNumberValueInterval = [[1, 500], [101, 450], [501, 400]] stands for /// 5% performance leeway for the first 100 keys, 4.5% performance leeway for the keys 101-500, and 4% performance leeway for the keys > 500 /// @param curveId Curve Id to get performance leeway data for /// @param data Interval values for keys count and performance leeway percentages in BP (ex. [[1, 500], [101, 450], [501, 400]]) function getPerformanceLeewayData( uint256 curveId ) external view returns (KeyNumberValueInterval[] memory data); /// @notice Set performance strikes lifetime and threshold for the curveId /// @param curveId Curve Id to associate performance strikes lifetime and threshold with /// @param lifetime Number of CSM Performance Oracle frames to store strikes values /// @param threshold The strikes value leading to validator force ejection function setStrikesParams( uint256 curveId, uint256 lifetime, uint256 threshold ) external; /// @notice Unset custom performance strikes lifetime and threshold for the curveId /// @param curveId Curve Id to unset custom performance strikes lifetime and threshold for function unsetStrikesParams(uint256 curveId) external; /// @notice Get performance strikes lifetime and threshold by the curveId /// @dev `defaultStrikesParams` are returned if the value is not set for the given curveId /// @param curveId Curve Id to get performance strikes lifetime and threshold for /// @return lifetime Number of CSM Performance Oracle frames to store strikes values /// @return threshold The strikes value leading to validator force ejection function getStrikesParams( uint256 curveId ) external view returns (uint256 lifetime, uint256 threshold); /// @notice Set bad performance penalty for the curveId /// @param curveId Curve Id to associate bad performance penalty with /// @param penalty Bad performance penalty function setBadPerformancePenalty( uint256 curveId, uint256 penalty ) external; /// @notice Unset bad performance penalty for the curveId /// @param curveId Curve Id to unset custom bad performance penalty for function unsetBadPerformancePenalty(uint256 curveId) external; /// @notice Get bad performance penalty by the curveId /// @dev `defaultBadPerformancePenalty` is returned if the value is not set for the given curveId. /// @param curveId Curve Id to get bad performance penalty for /// @return penalty Bad performance penalty function getBadPerformancePenalty( uint256 curveId ) external view returns (uint256 penalty); /// @notice Set performance coefficients for the curveId /// @param curveId Curve Id to associate performance coefficients with /// @param attestationsWeight Attestations effectiveness weight /// @param blocksWeight Block proposals effectiveness weight /// @param syncWeight Sync participation effectiveness weight function setPerformanceCoefficients( uint256 curveId, uint256 attestationsWeight, uint256 blocksWeight, uint256 syncWeight ) external; /// @notice Unset custom performance coefficients for the curveId /// @param curveId Curve Id to unset custom performance coefficients for function unsetPerformanceCoefficients(uint256 curveId) external; /// @notice Get performance coefficients by the curveId /// @dev `defaultPerformanceCoefficients` are returned if the value is not set for the given curveId. /// @param curveId Curve Id to get performance coefficients for /// @return attestationsWeight Attestations effectiveness weight /// @return blocksWeight Block proposals effectiveness weight /// @return syncWeight Sync participation effectiveness weight function getPerformanceCoefficients( uint256 curveId ) external view returns ( uint256 attestationsWeight, uint256 blocksWeight, uint256 syncWeight ); /// @notice Set allowed exit delay for the curveId in seconds /// @param curveId Curve Id to associate allowed exit delay with /// @param delay allowed exit delay function setAllowedExitDelay(uint256 curveId, uint256 delay) external; /// @notice Unset exit timeframe deadline delay for the curveId /// @param curveId Curve Id to unset allowed exit delay for function unsetAllowedExitDelay(uint256 curveId) external; /// @notice Get allowed exit delay by the curveId in seconds /// @dev `defaultAllowedExitDelay` is returned if the value is not set for the given curveId. /// @param curveId Curve Id to get allowed exit delay for function getAllowedExitDelay( uint256 curveId ) external view returns (uint256 delay); /// @notice Set exit delay penalty for the curveId /// @dev cannot be zero /// @param curveId Curve Id to associate exit delay penalty with /// @param penalty exit delay penalty function setExitDelayPenalty(uint256 curveId, uint256 penalty) external; /// @notice Unset exit delay penalty for the curveId /// @param curveId Curve Id to unset exit delay penalty for function unsetExitDelayPenalty(uint256 curveId) external; /// @notice Get exit delay penalty by the curveId /// @dev `defaultExitDelayPenalty` is returned if the value is not set for the given curveId. /// @param curveId Curve Id to get exit delay penalty for function getExitDelayPenalty( uint256 curveId ) external view returns (uint256 penalty); /// @notice Set max withdrawal request fee for the curveId /// @param curveId Curve Id to associate max withdrawal request fee with /// @param fee max withdrawal request fee function setMaxWithdrawalRequestFee(uint256 curveId, uint256 fee) external; /// @notice Unset max withdrawal request fee for the curveId /// @param curveId Curve Id to unset max withdrawal request fee for function unsetMaxWithdrawalRequestFee(uint256 curveId) external; /// @notice Get max withdrawal request fee by the curveId /// @dev `defaultMaxWithdrawalRequestFee` is returned if the value is not set for the given curveId. /// @param curveId Curve Id to get max withdrawal request fee for function getMaxWithdrawalRequestFee( uint256 curveId ) external view returns (uint256 fee); /// @notice Returns the initialized version of the contract function getInitializedVersion() external view returns (uint64); }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { ICSAccounting } from "./ICSAccounting.sol"; import { ICSParametersRegistry } from "./ICSParametersRegistry.sol"; import { ICSModule } from "./ICSModule.sol"; import { IExitTypes } from "./IExitTypes.sol"; struct MarkedUint248 { uint248 value; bool isValue; } struct ExitPenaltyInfo { MarkedUint248 delayPenalty; MarkedUint248 strikesPenalty; MarkedUint248 withdrawalRequestFee; } interface ICSExitPenalties is IExitTypes { error ZeroModuleAddress(); error ZeroParametersRegistryAddress(); error ZeroStrikesAddress(); error SenderIsNotModule(); error SenderIsNotStrikes(); error ValidatorExitDelayNotApplicable(); event ValidatorExitDelayProcessed( uint256 indexed nodeOperatorId, bytes pubkey, uint256 delayPenalty ); event TriggeredExitFeeRecorded( uint256 indexed nodeOperatorId, uint256 indexed exitType, bytes pubkey, uint256 withdrawalRequestPaidFee, uint256 withdrawalRequestRecordedFee ); event StrikesPenaltyProcessed( uint256 indexed nodeOperatorId, bytes pubkey, uint256 strikesPenalty ); function MODULE() external view returns (ICSModule); function ACCOUNTING() external view returns (ICSAccounting); function PARAMETERS_REGISTRY() external view returns (ICSParametersRegistry); function STRIKES() external view returns (address); /// @notice Handles tracking and penalization logic for a validator that remains active beyond its eligible exit window. /// @dev see IStakingModule.reportValidatorExitDelay for details /// @param nodeOperatorId The ID of the node operator whose validator's status is being delivered. /// @param publicKey The public key of the validator being reported. /// @param eligibleToExitInSec The duration (in seconds) indicating how long the validator has been eligible to exit but has not exited. function processExitDelayReport( uint256 nodeOperatorId, bytes calldata publicKey, uint256 eligibleToExitInSec ) external; /// @notice Process the triggered exit report /// @param nodeOperatorId ID of the Node Operator /// @param publicKey Public key of the validator /// @param withdrawalRequestPaidFee The fee paid for the withdrawal request /// @param exitType The type of the exit (0 - direct exit, 1 - forced exit) function processTriggeredExit( uint256 nodeOperatorId, bytes calldata publicKey, uint256 withdrawalRequestPaidFee, uint256 exitType ) external; /// @notice Process the strikes report /// @param nodeOperatorId ID of the Node Operator /// @param publicKey Public key of the validator function processStrikesReport( uint256 nodeOperatorId, bytes calldata publicKey ) external; /// @notice Determines whether a validator exit status should be updated and will have affect on Node Operator. /// @dev called only by CSM /// @param nodeOperatorId The ID of the node operator. /// @param publicKey Validator's public key. /// @param eligibleToExitInSec The number of seconds the validator was eligible to exit but did not. /// @return bool Returns true if contract should receive updated validator's status. function isValidatorExitDelayPenaltyApplicable( uint256 nodeOperatorId, bytes calldata publicKey, uint256 eligibleToExitInSec ) external view returns (bool); /// @notice get delayed exit penalty info for the given Node Operator /// @param nodeOperatorId ID of the Node Operator /// @param publicKey Public key of the validator /// @return penaltyInfo Delayed exit penalty info function getExitPenaltyInfo( uint256 nodeOperatorId, bytes calldata publicKey ) external view returns (ExitPenaltyInfo memory penaltyInfo); }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { ICSAccounting } from "./ICSAccounting.sol"; import { ICSModule } from "./ICSModule.sol"; import { ICSParametersRegistry } from "./ICSParametersRegistry.sol"; import { IExitTypes } from "./IExitTypes.sol"; import { ITriggerableWithdrawalsGateway } from "./ITriggerableWithdrawalsGateway.sol"; interface ICSEjector is IExitTypes { error SigningKeysInvalidOffset(); error AlreadyWithdrawn(); error ZeroAdminAddress(); error ZeroModuleAddress(); error ZeroStrikesAddress(); error NodeOperatorDoesNotExist(); error SenderIsNotEligible(); error SenderIsNotStrikes(); function PAUSE_ROLE() external view returns (bytes32); function RESUME_ROLE() external view returns (bytes32); function RECOVERER_ROLE() external view returns (bytes32); function STAKING_MODULE_ID() external view returns (uint256); function MODULE() external view returns (ICSModule); function STRIKES() external view returns (address); /// @notice Pause ejection methods calls /// @param duration Duration of the pause in seconds function pauseFor(uint256 duration) external; /// @notice Resume ejection methods calls function resume() external; /// @notice Withdraw the validator key from the Node Operator /// @notice Called by the node operator /// @param nodeOperatorId ID of the Node Operator /// @param startFrom Index of the first key to withdraw /// @param keysCount Number of keys to withdraw /// @param refundRecipient Address to send the refund to function voluntaryEject( uint256 nodeOperatorId, uint256 startFrom, uint256 keysCount, address refundRecipient ) external payable; /// @notice Withdraw the validator key from the Node Operator /// @notice Called by the node operator /// @param nodeOperatorId ID of the Node Operator /// @param keyIndices Array of indices of the keys to withdraw /// @param refundRecipient Address to send the refund to function voluntaryEjectByArray( uint256 nodeOperatorId, uint256[] calldata keyIndices, address refundRecipient ) external payable; /// @notice Eject Node Operator's key as a bad performer /// @notice Called by the `CSStrikes` contract. /// See `CSStrikes.processBadPerformanceProof` to use this method permissionless /// @param nodeOperatorId ID of the Node Operator /// @param keyIndex index of deposited key to eject /// @param refundRecipient Address to send the refund to function ejectBadPerformer( uint256 nodeOperatorId, uint256 keyIndex, address refundRecipient ) external payable; /// @notice TriggerableWithdrawalsGateway implementation used by the contract. function triggerableWithdrawalsGateway() external view returns (ITriggerableWithdrawalsGateway); }
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/IERC20.sol)
pragma solidity ^0.8.20;
/**
* @dev Interface of the ERC20 standard as defined in the EIP.
*/
interface IERC20 {
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/
event Transfer(address indexed from, address indexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/
event Approval(address indexed owner, address indexed spender, uint256 value);
/**
* @dev Returns the value of tokens in existence.
*/
function totalSupply() external view returns (uint256);
/**
* @dev Returns the value of tokens owned by `account`.
*/
function balanceOf(address account) external view returns (uint256);
/**
* @dev Moves a `value` amount of tokens from the caller's account to `to`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transfer(address to, uint256 value) external returns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/
function allowance(address owner, address spender) external view returns (uint256);
/**
* @dev Sets a `value` amount of tokens as the allowance of `spender` over the
* caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/
function approve(address spender, uint256 value) external returns (bool);
/**
* @dev Moves a `value` amount of tokens from `from` to `to` using the
* allowance mechanism. `value` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transferFrom(address from, address to, uint256 value) external returns (bool);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (token/ERC721/IERC721.sol)
pragma solidity ^0.8.20;
import {IERC165} from "../../utils/introspection/IERC165.sol";
/**
* @dev Required interface of an ERC721 compliant contract.
*/
interface IERC721 is IERC165 {
/**
* @dev Emitted when `tokenId` token is transferred from `from` to `to`.
*/
event Transfer(address indexed from, address indexed to, uint256 indexed tokenId);
/**
* @dev Emitted when `owner` enables `approved` to manage the `tokenId` token.
*/
event Approval(address indexed owner, address indexed approved, uint256 indexed tokenId);
/**
* @dev Emitted when `owner` enables or disables (`approved`) `operator` to manage all of its assets.
*/
event ApprovalForAll(address indexed owner, address indexed operator, bool approved);
/**
* @dev Returns the number of tokens in ``owner``'s account.
*/
function balanceOf(address owner) external view returns (uint256 balance);
/**
* @dev Returns the owner of the `tokenId` token.
*
* Requirements:
*
* - `tokenId` must exist.
*/
function ownerOf(uint256 tokenId) external view returns (address owner);
/**
* @dev Safely transfers `tokenId` token from `from` to `to`.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `tokenId` token must exist and be owned by `from`.
* - If the caller is not `from`, it must be approved to move this token by either {approve} or {setApprovalForAll}.
* - If `to` refers to a smart contract, it must implement {IERC721Receiver-onERC721Received}, which is called upon
* a safe transfer.
*
* Emits a {Transfer} event.
*/
function safeTransferFrom(address from, address to, uint256 tokenId, bytes calldata data) external;
/**
* @dev Safely transfers `tokenId` token from `from` to `to`, checking first that contract recipients
* are aware of the ERC721 protocol to prevent tokens from being forever locked.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `tokenId` token must exist and be owned by `from`.
* - If the caller is not `from`, it must have been allowed to move this token by either {approve} or
* {setApprovalForAll}.
* - If `to` refers to a smart contract, it must implement {IERC721Receiver-onERC721Received}, which is called upon
* a safe transfer.
*
* Emits a {Transfer} event.
*/
function safeTransferFrom(address from, address to, uint256 tokenId) external;
/**
* @dev Transfers `tokenId` token from `from` to `to`.
*
* WARNING: Note that the caller is responsible to confirm that the recipient is capable of receiving ERC721
* or else they may be permanently lost. Usage of {safeTransferFrom} prevents loss, though the caller must
* understand this adds an external call which potentially creates a reentrancy vulnerability.
*
* Requirements:
*
* - `from` cannot be the zero address.
* - `to` cannot be the zero address.
* - `tokenId` token must be owned by `from`.
* - If the caller is not `from`, it must be approved to move this token by either {approve} or {setApprovalForAll}.
*
* Emits a {Transfer} event.
*/
function transferFrom(address from, address to, uint256 tokenId) external;
/**
* @dev Gives permission to `to` to transfer `tokenId` token to another account.
* The approval is cleared when the token is transferred.
*
* Only a single account can be approved at a time, so approving the zero address clears previous approvals.
*
* Requirements:
*
* - The caller must own the token or be an approved operator.
* - `tokenId` must exist.
*
* Emits an {Approval} event.
*/
function approve(address to, uint256 tokenId) external;
/**
* @dev Approve or remove `operator` as an operator for the caller.
* Operators can call {transferFrom} or {safeTransferFrom} for any token owned by the caller.
*
* Requirements:
*
* - The `operator` cannot be the address zero.
*
* Emits an {ApprovalForAll} event.
*/
function setApprovalForAll(address operator, bool approved) external;
/**
* @dev Returns the account approved for `tokenId` token.
*
* Requirements:
*
* - `tokenId` must exist.
*/
function getApproved(uint256 tokenId) external view returns (address operator);
/**
* @dev Returns if the `operator` is allowed to manage all of the assets of `owner`.
*
* See {setApprovalForAll}
*/
function isApprovedForAll(address owner, address operator) external view returns (bool);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.1) (token/ERC1155/IERC1155.sol)
pragma solidity ^0.8.20;
import {IERC165} from "../../utils/introspection/IERC165.sol";
/**
* @dev Required interface of an ERC1155 compliant contract, as defined in the
* https://eips.ethereum.org/EIPS/eip-1155[EIP].
*/
interface IERC1155 is IERC165 {
/**
* @dev Emitted when `value` amount of tokens of type `id` are transferred from `from` to `to` by `operator`.
*/
event TransferSingle(address indexed operator, address indexed from, address indexed to, uint256 id, uint256 value);
/**
* @dev Equivalent to multiple {TransferSingle} events, where `operator`, `from` and `to` are the same for all
* transfers.
*/
event TransferBatch(
address indexed operator,
address indexed from,
address indexed to,
uint256[] ids,
uint256[] values
);
/**
* @dev Emitted when `account` grants or revokes permission to `operator` to transfer their tokens, according to
* `approved`.
*/
event ApprovalForAll(address indexed account, address indexed operator, bool approved);
/**
* @dev Emitted when the URI for token type `id` changes to `value`, if it is a non-programmatic URI.
*
* If an {URI} event was emitted for `id`, the standard
* https://eips.ethereum.org/EIPS/eip-1155#metadata-extensions[guarantees] that `value` will equal the value
* returned by {IERC1155MetadataURI-uri}.
*/
event URI(string value, uint256 indexed id);
/**
* @dev Returns the value of tokens of token type `id` owned by `account`.
*
* Requirements:
*
* - `account` cannot be the zero address.
*/
function balanceOf(address account, uint256 id) external view returns (uint256);
/**
* @dev xref:ROOT:erc1155.adoc#batch-operations[Batched] version of {balanceOf}.
*
* Requirements:
*
* - `accounts` and `ids` must have the same length.
*/
function balanceOfBatch(
address[] calldata accounts,
uint256[] calldata ids
) external view returns (uint256[] memory);
/**
* @dev Grants or revokes permission to `operator` to transfer the caller's tokens, according to `approved`,
*
* Emits an {ApprovalForAll} event.
*
* Requirements:
*
* - `operator` cannot be the caller.
*/
function setApprovalForAll(address operator, bool approved) external;
/**
* @dev Returns true if `operator` is approved to transfer ``account``'s tokens.
*
* See {setApprovalForAll}.
*/
function isApprovedForAll(address account, address operator) external view returns (bool);
/**
* @dev Transfers a `value` amount of tokens of type `id` from `from` to `to`.
*
* WARNING: This function can potentially allow a reentrancy attack when transferring tokens
* to an untrusted contract, when invoking {onERC1155Received} on the receiver.
* Ensure to follow the checks-effects-interactions pattern and consider employing
* reentrancy guards when interacting with untrusted contracts.
*
* Emits a {TransferSingle} event.
*
* Requirements:
*
* - `to` cannot be the zero address.
* - If the caller is not `from`, it must have been approved to spend ``from``'s tokens via {setApprovalForAll}.
* - `from` must have a balance of tokens of type `id` of at least `value` amount.
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155Received} and return the
* acceptance magic value.
*/
function safeTransferFrom(address from, address to, uint256 id, uint256 value, bytes calldata data) external;
/**
* @dev xref:ROOT:erc1155.adoc#batch-operations[Batched] version of {safeTransferFrom}.
*
* WARNING: This function can potentially allow a reentrancy attack when transferring tokens
* to an untrusted contract, when invoking {onERC1155BatchReceived} on the receiver.
* Ensure to follow the checks-effects-interactions pattern and consider employing
* reentrancy guards when interacting with untrusted contracts.
*
* Emits either a {TransferSingle} or a {TransferBatch} event, depending on the length of the array arguments.
*
* Requirements:
*
* - `ids` and `values` must have the same length.
* - If `to` refers to a smart contract, it must implement {IERC1155Receiver-onERC1155BatchReceived} and return the
* acceptance magic value.
*/
function safeBatchTransferFrom(
address from,
address to,
uint256[] calldata ids,
uint256[] calldata values,
bytes calldata data
) external;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/utils/SafeERC20.sol)
pragma solidity ^0.8.20;
import {IERC20} from "../IERC20.sol";
import {IERC20Permit} from "../extensions/IERC20Permit.sol";
import {Address} from "../../../utils/Address.sol";
/**
* @title SafeERC20
* @dev Wrappers around ERC20 operations that throw on failure (when the token
* contract returns false). Tokens that return no value (and instead revert or
* throw on failure) are also supported, non-reverting calls are assumed to be
* successful.
* To use this library you can add a `using SafeERC20 for IERC20;` statement to your contract,
* which allows you to call the safe operations as `token.safeTransfer(...)`, etc.
*/
library SafeERC20 {
using Address for address;
/**
* @dev An operation with an ERC20 token failed.
*/
error SafeERC20FailedOperation(address token);
/**
* @dev Indicates a failed `decreaseAllowance` request.
*/
error SafeERC20FailedDecreaseAllowance(address spender, uint256 currentAllowance, uint256 requestedDecrease);
/**
* @dev Transfer `value` amount of `token` from the calling contract to `to`. If `token` returns no value,
* non-reverting calls are assumed to be successful.
*/
function safeTransfer(IERC20 token, address to, uint256 value) internal {
_callOptionalReturn(token, abi.encodeCall(token.transfer, (to, value)));
}
/**
* @dev Transfer `value` amount of `token` from `from` to `to`, spending the approval given by `from` to the
* calling contract. If `token` returns no value, non-reverting calls are assumed to be successful.
*/
function safeTransferFrom(IERC20 token, address from, address to, uint256 value) internal {
_callOptionalReturn(token, abi.encodeCall(token.transferFrom, (from, to, value)));
}
/**
* @dev Increase the calling contract's allowance toward `spender` by `value`. If `token` returns no value,
* non-reverting calls are assumed to be successful.
*/
function safeIncreaseAllowance(IERC20 token, address spender, uint256 value) internal {
uint256 oldAllowance = token.allowance(address(this), spender);
forceApprove(token, spender, oldAllowance + value);
}
/**
* @dev Decrease the calling contract's allowance toward `spender` by `requestedDecrease`. If `token` returns no
* value, non-reverting calls are assumed to be successful.
*/
function safeDecreaseAllowance(IERC20 token, address spender, uint256 requestedDecrease) internal {
unchecked {
uint256 currentAllowance = token.allowance(address(this), spender);
if (currentAllowance < requestedDecrease) {
revert SafeERC20FailedDecreaseAllowance(spender, currentAllowance, requestedDecrease);
}
forceApprove(token, spender, currentAllowance - requestedDecrease);
}
}
/**
* @dev Set the calling contract's allowance toward `spender` to `value`. If `token` returns no value,
* non-reverting calls are assumed to be successful. Meant to be used with tokens that require the approval
* to be set to zero before setting it to a non-zero value, such as USDT.
*/
function forceApprove(IERC20 token, address spender, uint256 value) internal {
bytes memory approvalCall = abi.encodeCall(token.approve, (spender, value));
if (!_callOptionalReturnBool(token, approvalCall)) {
_callOptionalReturn(token, abi.encodeCall(token.approve, (spender, 0)));
_callOptionalReturn(token, approvalCall);
}
}
/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*/
function _callOptionalReturn(IERC20 token, bytes memory data) private {
// We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since
// we're implementing it ourselves. We use {Address-functionCall} to perform this call, which verifies that
// the target address contains contract code and also asserts for success in the low-level call.
bytes memory returndata = address(token).functionCall(data);
if (returndata.length != 0 && !abi.decode(returndata, (bool))) {
revert SafeERC20FailedOperation(address(token));
}
}
/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*
* This is a variant of {_callOptionalReturn} that silents catches all reverts and returns a bool instead.
*/
function _callOptionalReturnBool(IERC20 token, bytes memory data) private returns (bool) {
// We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since
// we're implementing it ourselves. We cannot use {Address-functionCall} here since this should return false
// and not revert is the subcall reverts.
(bool success, bytes memory returndata) = address(token).call(data);
return success && (returndata.length == 0 || abi.decode(returndata, (bool))) && address(token).code.length > 0;
}
}// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { IStETH } from "./IStETH.sol"; /** * @title Interface defining Lido contract */ interface ILido is IStETH { function STAKING_CONTROL_ROLE() external view returns (bytes32); function submit(address _referral) external payable returns (uint256); function deposit( uint256 _maxDepositsCount, uint256 _stakingModuleId, bytes calldata _depositCalldata ) external; function removeStakingLimit() external; function kernel() external returns (address); function sharesOf(address _account) external view returns (uint256); }
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (access/extensions/IAccessControlEnumerable.sol)
pragma solidity ^0.8.20;
import {IAccessControl} from "../IAccessControl.sol";
/**
* @dev External interface of AccessControlEnumerable declared to support ERC165 detection.
*/
interface IAccessControlEnumerable is IAccessControl {
/**
* @dev Returns one of the accounts that have `role`. `index` must be a
* value between 0 and {getRoleMemberCount}, non-inclusive.
*
* Role bearers are not sorted in any particular way, and their ordering may
* change at any point.
*
* WARNING: When using {getRoleMember} and {getRoleMemberCount}, make sure
* you perform all queries on the same block. See the following
* https://forum.openzeppelin.com/t/iterating-over-elements-on-enumerableset-in-openzeppelin-contracts/2296[forum post]
* for more information.
*/
function getRoleMember(bytes32 role, uint256 index) external view returns (address);
/**
* @dev Returns the number of accounts that have `role`. Can be used
* together with {getRoleMember} to enumerate all bearers of a role.
*/
function getRoleMemberCount(bytes32 role) external view returns (uint256);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (access/AccessControl.sol)
pragma solidity ^0.8.20;
import {IAccessControl} from "@openzeppelin/contracts/access/IAccessControl.sol";
import {ContextUpgradeable} from "../utils/ContextUpgradeable.sol";
import {ERC165Upgradeable} from "../utils/introspection/ERC165Upgradeable.sol";
import {Initializable} from "../proxy/utils/Initializable.sol";
/**
* @dev Contract module that allows children to implement role-based access
* control mechanisms. This is a lightweight version that doesn't allow enumerating role
* members except through off-chain means by accessing the contract event logs. Some
* applications may benefit from on-chain enumerability, for those cases see
* {AccessControlEnumerable}.
*
* Roles are referred to by their `bytes32` identifier. These should be exposed
* in the external API and be unique. The best way to achieve this is by
* using `public constant` hash digests:
*
* ```solidity
* bytes32 public constant MY_ROLE = keccak256("MY_ROLE");
* ```
*
* Roles can be used to represent a set of permissions. To restrict access to a
* function call, use {hasRole}:
*
* ```solidity
* function foo() public {
* require(hasRole(MY_ROLE, msg.sender));
* ...
* }
* ```
*
* Roles can be granted and revoked dynamically via the {grantRole} and
* {revokeRole} functions. Each role has an associated admin role, and only
* accounts that have a role's admin role can call {grantRole} and {revokeRole}.
*
* By default, the admin role for all roles is `DEFAULT_ADMIN_ROLE`, which means
* that only accounts with this role will be able to grant or revoke other
* roles. More complex role relationships can be created by using
* {_setRoleAdmin}.
*
* WARNING: The `DEFAULT_ADMIN_ROLE` is also its own admin: it has permission to
* grant and revoke this role. Extra precautions should be taken to secure
* accounts that have been granted it. We recommend using {AccessControlDefaultAdminRules}
* to enforce additional security measures for this role.
*/
abstract contract AccessControlUpgradeable is Initializable, ContextUpgradeable, IAccessControl, ERC165Upgradeable {
struct RoleData {
mapping(address account => bool) hasRole;
bytes32 adminRole;
}
bytes32 public constant DEFAULT_ADMIN_ROLE = 0x00;
/// @custom:storage-location erc7201:openzeppelin.storage.AccessControl
struct AccessControlStorage {
mapping(bytes32 role => RoleData) _roles;
}
// keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.AccessControl")) - 1)) & ~bytes32(uint256(0xff))
bytes32 private constant AccessControlStorageLocation = 0x02dd7bc7dec4dceedda775e58dd541e08a116c6c53815c0bd028192f7b626800;
function _getAccessControlStorage() private pure returns (AccessControlStorage storage $) {
assembly {
$.slot := AccessControlStorageLocation
}
}
/**
* @dev Modifier that checks that an account has a specific role. Reverts
* with an {AccessControlUnauthorizedAccount} error including the required role.
*/
modifier onlyRole(bytes32 role) {
_checkRole(role);
_;
}
function __AccessControl_init() internal onlyInitializing {
}
function __AccessControl_init_unchained() internal onlyInitializing {
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
return interfaceId == type(IAccessControl).interfaceId || super.supportsInterface(interfaceId);
}
/**
* @dev Returns `true` if `account` has been granted `role`.
*/
function hasRole(bytes32 role, address account) public view virtual returns (bool) {
AccessControlStorage storage $ = _getAccessControlStorage();
return $._roles[role].hasRole[account];
}
/**
* @dev Reverts with an {AccessControlUnauthorizedAccount} error if `_msgSender()`
* is missing `role`. Overriding this function changes the behavior of the {onlyRole} modifier.
*/
function _checkRole(bytes32 role) internal view virtual {
_checkRole(role, _msgSender());
}
/**
* @dev Reverts with an {AccessControlUnauthorizedAccount} error if `account`
* is missing `role`.
*/
function _checkRole(bytes32 role, address account) internal view virtual {
if (!hasRole(role, account)) {
revert AccessControlUnauthorizedAccount(account, role);
}
}
/**
* @dev Returns the admin role that controls `role`. See {grantRole} and
* {revokeRole}.
*
* To change a role's admin, use {_setRoleAdmin}.
*/
function getRoleAdmin(bytes32 role) public view virtual returns (bytes32) {
AccessControlStorage storage $ = _getAccessControlStorage();
return $._roles[role].adminRole;
}
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*
* May emit a {RoleGranted} event.
*/
function grantRole(bytes32 role, address account) public virtual onlyRole(getRoleAdmin(role)) {
_grantRole(role, account);
}
/**
* @dev Revokes `role` from `account`.
*
* If `account` had been granted `role`, emits a {RoleRevoked} event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*
* May emit a {RoleRevoked} event.
*/
function revokeRole(bytes32 role, address account) public virtual onlyRole(getRoleAdmin(role)) {
_revokeRole(role, account);
}
/**
* @dev Revokes `role` from the calling account.
*
* Roles are often managed via {grantRole} and {revokeRole}: this function's
* purpose is to provide a mechanism for accounts to lose their privileges
* if they are compromised (such as when a trusted device is misplaced).
*
* If the calling account had been revoked `role`, emits a {RoleRevoked}
* event.
*
* Requirements:
*
* - the caller must be `callerConfirmation`.
*
* May emit a {RoleRevoked} event.
*/
function renounceRole(bytes32 role, address callerConfirmation) public virtual {
if (callerConfirmation != _msgSender()) {
revert AccessControlBadConfirmation();
}
_revokeRole(role, callerConfirmation);
}
/**
* @dev Sets `adminRole` as ``role``'s admin role.
*
* Emits a {RoleAdminChanged} event.
*/
function _setRoleAdmin(bytes32 role, bytes32 adminRole) internal virtual {
AccessControlStorage storage $ = _getAccessControlStorage();
bytes32 previousAdminRole = getRoleAdmin(role);
$._roles[role].adminRole = adminRole;
emit RoleAdminChanged(role, previousAdminRole, adminRole);
}
/**
* @dev Attempts to grant `role` to `account` and returns a boolean indicating if `role` was granted.
*
* Internal function without access restriction.
*
* May emit a {RoleGranted} event.
*/
function _grantRole(bytes32 role, address account) internal virtual returns (bool) {
AccessControlStorage storage $ = _getAccessControlStorage();
if (!hasRole(role, account)) {
$._roles[role].hasRole[account] = true;
emit RoleGranted(role, account, _msgSender());
return true;
} else {
return false;
}
}
/**
* @dev Attempts to revoke `role` to `account` and returns a boolean indicating if `role` was revoked.
*
* Internal function without access restriction.
*
* May emit a {RoleRevoked} event.
*/
function _revokeRole(bytes32 role, address account) internal virtual returns (bool) {
AccessControlStorage storage $ = _getAccessControlStorage();
if (hasRole(role, account)) {
$._roles[role].hasRole[account] = false;
emit RoleRevoked(role, account, _msgSender());
return true;
} else {
return false;
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/structs/EnumerableSet.sol)
// This file was procedurally generated from scripts/generate/templates/EnumerableSet.js.
pragma solidity ^0.8.20;
/**
* @dev Library for managing
* https://en.wikipedia.org/wiki/Set_(abstract_data_type)[sets] of primitive
* types.
*
* Sets have the following properties:
*
* - Elements are added, removed, and checked for existence in constant time
* (O(1)).
* - Elements are enumerated in O(n). No guarantees are made on the ordering.
*
* ```solidity
* contract Example {
* // Add the library methods
* using EnumerableSet for EnumerableSet.AddressSet;
*
* // Declare a set state variable
* EnumerableSet.AddressSet private mySet;
* }
* ```
*
* As of v3.3.0, sets of type `bytes32` (`Bytes32Set`), `address` (`AddressSet`)
* and `uint256` (`UintSet`) are supported.
*
* [WARNING]
* ====
* Trying to delete such a structure from storage will likely result in data corruption, rendering the structure
* unusable.
* See https://github.com/ethereum/solidity/pull/11843[ethereum/solidity#11843] for more info.
*
* In order to clean an EnumerableSet, you can either remove all elements one by one or create a fresh instance using an
* array of EnumerableSet.
* ====
*/
library EnumerableSet {
// To implement this library for multiple types with as little code
// repetition as possible, we write it in terms of a generic Set type with
// bytes32 values.
// The Set implementation uses private functions, and user-facing
// implementations (such as AddressSet) are just wrappers around the
// underlying Set.
// This means that we can only create new EnumerableSets for types that fit
// in bytes32.
struct Set {
// Storage of set values
bytes32[] _values;
// Position is the index of the value in the `values` array plus 1.
// Position 0 is used to mean a value is not in the set.
mapping(bytes32 value => uint256) _positions;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/
function _add(Set storage set, bytes32 value) private returns (bool) {
if (!_contains(set, value)) {
set._values.push(value);
// The value is stored at length-1, but we add 1 to all indexes
// and use 0 as a sentinel value
set._positions[value] = set._values.length;
return true;
} else {
return false;
}
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/
function _remove(Set storage set, bytes32 value) private returns (bool) {
// We cache the value's position to prevent multiple reads from the same storage slot
uint256 position = set._positions[value];
if (position != 0) {
// Equivalent to contains(set, value)
// To delete an element from the _values array in O(1), we swap the element to delete with the last one in
// the array, and then remove the last element (sometimes called as 'swap and pop').
// This modifies the order of the array, as noted in {at}.
uint256 valueIndex = position - 1;
uint256 lastIndex = set._values.length - 1;
if (valueIndex != lastIndex) {
bytes32 lastValue = set._values[lastIndex];
// Move the lastValue to the index where the value to delete is
set._values[valueIndex] = lastValue;
// Update the tracked position of the lastValue (that was just moved)
set._positions[lastValue] = position;
}
// Delete the slot where the moved value was stored
set._values.pop();
// Delete the tracked position for the deleted slot
delete set._positions[value];
return true;
} else {
return false;
}
}
/**
* @dev Returns true if the value is in the set. O(1).
*/
function _contains(Set storage set, bytes32 value) private view returns (bool) {
return set._positions[value] != 0;
}
/**
* @dev Returns the number of values on the set. O(1).
*/
function _length(Set storage set) private view returns (uint256) {
return set._values.length;
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/
function _at(Set storage set, uint256 index) private view returns (bytes32) {
return set._values[index];
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/
function _values(Set storage set) private view returns (bytes32[] memory) {
return set._values;
}
// Bytes32Set
struct Bytes32Set {
Set _inner;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/
function add(Bytes32Set storage set, bytes32 value) internal returns (bool) {
return _add(set._inner, value);
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/
function remove(Bytes32Set storage set, bytes32 value) internal returns (bool) {
return _remove(set._inner, value);
}
/**
* @dev Returns true if the value is in the set. O(1).
*/
function contains(Bytes32Set storage set, bytes32 value) internal view returns (bool) {
return _contains(set._inner, value);
}
/**
* @dev Returns the number of values in the set. O(1).
*/
function length(Bytes32Set storage set) internal view returns (uint256) {
return _length(set._inner);
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/
function at(Bytes32Set storage set, uint256 index) internal view returns (bytes32) {
return _at(set._inner, index);
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/
function values(Bytes32Set storage set) internal view returns (bytes32[] memory) {
bytes32[] memory store = _values(set._inner);
bytes32[] memory result;
/// @solidity memory-safe-assembly
assembly {
result := store
}
return result;
}
// AddressSet
struct AddressSet {
Set _inner;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/
function add(AddressSet storage set, address value) internal returns (bool) {
return _add(set._inner, bytes32(uint256(uint160(value))));
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/
function remove(AddressSet storage set, address value) internal returns (bool) {
return _remove(set._inner, bytes32(uint256(uint160(value))));
}
/**
* @dev Returns true if the value is in the set. O(1).
*/
function contains(AddressSet storage set, address value) internal view returns (bool) {
return _contains(set._inner, bytes32(uint256(uint160(value))));
}
/**
* @dev Returns the number of values in the set. O(1).
*/
function length(AddressSet storage set) internal view returns (uint256) {
return _length(set._inner);
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/
function at(AddressSet storage set, uint256 index) internal view returns (address) {
return address(uint160(uint256(_at(set._inner, index))));
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/
function values(AddressSet storage set) internal view returns (address[] memory) {
bytes32[] memory store = _values(set._inner);
address[] memory result;
/// @solidity memory-safe-assembly
assembly {
result := store
}
return result;
}
// UintSet
struct UintSet {
Set _inner;
}
/**
* @dev Add a value to a set. O(1).
*
* Returns true if the value was added to the set, that is if it was not
* already present.
*/
function add(UintSet storage set, uint256 value) internal returns (bool) {
return _add(set._inner, bytes32(value));
}
/**
* @dev Removes a value from a set. O(1).
*
* Returns true if the value was removed from the set, that is if it was
* present.
*/
function remove(UintSet storage set, uint256 value) internal returns (bool) {
return _remove(set._inner, bytes32(value));
}
/**
* @dev Returns true if the value is in the set. O(1).
*/
function contains(UintSet storage set, uint256 value) internal view returns (bool) {
return _contains(set._inner, bytes32(value));
}
/**
* @dev Returns the number of values in the set. O(1).
*/
function length(UintSet storage set) internal view returns (uint256) {
return _length(set._inner);
}
/**
* @dev Returns the value stored at position `index` in the set. O(1).
*
* Note that there are no guarantees on the ordering of values inside the
* array, and it may change when more values are added or removed.
*
* Requirements:
*
* - `index` must be strictly less than {length}.
*/
function at(UintSet storage set, uint256 index) internal view returns (uint256) {
return uint256(_at(set._inner, index));
}
/**
* @dev Return the entire set in an array
*
* WARNING: This operation will copy the entire storage to memory, which can be quite expensive. This is designed
* to mostly be used by view accessors that are queried without any gas fees. Developers should keep in mind that
* this function has an unbounded cost, and using it as part of a state-changing function may render the function
* uncallable if the set grows to a point where copying to memory consumes too much gas to fit in a block.
*/
function values(UintSet storage set) internal view returns (uint256[] memory) {
bytes32[] memory store = _values(set._inner);
uint256[] memory result;
/// @solidity memory-safe-assembly
assembly {
result := store
}
return result;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (proxy/utils/Initializable.sol)
pragma solidity ^0.8.20;
/**
* @dev This is a base contract to aid in writing upgradeable contracts, or any kind of contract that will be deployed
* behind a proxy. Since proxied contracts do not make use of a constructor, it's common to move constructor logic to an
* external initializer function, usually called `initialize`. It then becomes necessary to protect this initializer
* function so it can only be called once. The {initializer} modifier provided by this contract will have this effect.
*
* The initialization functions use a version number. Once a version number is used, it is consumed and cannot be
* reused. This mechanism prevents re-execution of each "step" but allows the creation of new initialization steps in
* case an upgrade adds a module that needs to be initialized.
*
* For example:
*
* [.hljs-theme-light.nopadding]
* ```solidity
* contract MyToken is ERC20Upgradeable {
* function initialize() initializer public {
* __ERC20_init("MyToken", "MTK");
* }
* }
*
* contract MyTokenV2 is MyToken, ERC20PermitUpgradeable {
* function initializeV2() reinitializer(2) public {
* __ERC20Permit_init("MyToken");
* }
* }
* ```
*
* TIP: To avoid leaving the proxy in an uninitialized state, the initializer function should be called as early as
* possible by providing the encoded function call as the `_data` argument to {ERC1967Proxy-constructor}.
*
* CAUTION: When used with inheritance, manual care must be taken to not invoke a parent initializer twice, or to ensure
* that all initializers are idempotent. This is not verified automatically as constructors are by Solidity.
*
* [CAUTION]
* ====
* Avoid leaving a contract uninitialized.
*
* An uninitialized contract can be taken over by an attacker. This applies to both a proxy and its implementation
* contract, which may impact the proxy. To prevent the implementation contract from being used, you should invoke
* the {_disableInitializers} function in the constructor to automatically lock it when it is deployed:
*
* [.hljs-theme-light.nopadding]
* ```
* /// @custom:oz-upgrades-unsafe-allow constructor
* constructor() {
* _disableInitializers();
* }
* ```
* ====
*/
abstract contract Initializable {
/**
* @dev Storage of the initializable contract.
*
* It's implemented on a custom ERC-7201 namespace to reduce the risk of storage collisions
* when using with upgradeable contracts.
*
* @custom:storage-location erc7201:openzeppelin.storage.Initializable
*/
struct InitializableStorage {
/**
* @dev Indicates that the contract has been initialized.
*/
uint64 _initialized;
/**
* @dev Indicates that the contract is in the process of being initialized.
*/
bool _initializing;
}
// keccak256(abi.encode(uint256(keccak256("openzeppelin.storage.Initializable")) - 1)) & ~bytes32(uint256(0xff))
bytes32 private constant INITIALIZABLE_STORAGE = 0xf0c57e16840df040f15088dc2f81fe391c3923bec73e23a9662efc9c229c6a00;
/**
* @dev The contract is already initialized.
*/
error InvalidInitialization();
/**
* @dev The contract is not initializing.
*/
error NotInitializing();
/**
* @dev Triggered when the contract has been initialized or reinitialized.
*/
event Initialized(uint64 version);
/**
* @dev A modifier that defines a protected initializer function that can be invoked at most once. In its scope,
* `onlyInitializing` functions can be used to initialize parent contracts.
*
* Similar to `reinitializer(1)`, except that in the context of a constructor an `initializer` may be invoked any
* number of times. This behavior in the constructor can be useful during testing and is not expected to be used in
* production.
*
* Emits an {Initialized} event.
*/
modifier initializer() {
// solhint-disable-next-line var-name-mixedcase
InitializableStorage storage $ = _getInitializableStorage();
// Cache values to avoid duplicated sloads
bool isTopLevelCall = !$._initializing;
uint64 initialized = $._initialized;
// Allowed calls:
// - initialSetup: the contract is not in the initializing state and no previous version was
// initialized
// - construction: the contract is initialized at version 1 (no reininitialization) and the
// current contract is just being deployed
bool initialSetup = initialized == 0 && isTopLevelCall;
bool construction = initialized == 1 && address(this).code.length == 0;
if (!initialSetup && !construction) {
revert InvalidInitialization();
}
$._initialized = 1;
if (isTopLevelCall) {
$._initializing = true;
}
_;
if (isTopLevelCall) {
$._initializing = false;
emit Initialized(1);
}
}
/**
* @dev A modifier that defines a protected reinitializer function that can be invoked at most once, and only if the
* contract hasn't been initialized to a greater version before. In its scope, `onlyInitializing` functions can be
* used to initialize parent contracts.
*
* A reinitializer may be used after the original initialization step. This is essential to configure modules that
* are added through upgrades and that require initialization.
*
* When `version` is 1, this modifier is similar to `initializer`, except that functions marked with `reinitializer`
* cannot be nested. If one is invoked in the context of another, execution will revert.
*
* Note that versions can jump in increments greater than 1; this implies that if multiple reinitializers coexist in
* a contract, executing them in the right order is up to the developer or operator.
*
* WARNING: Setting the version to 2**64 - 1 will prevent any future reinitialization.
*
* Emits an {Initialized} event.
*/
modifier reinitializer(uint64 version) {
// solhint-disable-next-line var-name-mixedcase
InitializableStorage storage $ = _getInitializableStorage();
if ($._initializing || $._initialized >= version) {
revert InvalidInitialization();
}
$._initialized = version;
$._initializing = true;
_;
$._initializing = false;
emit Initialized(version);
}
/**
* @dev Modifier to protect an initialization function so that it can only be invoked by functions with the
* {initializer} and {reinitializer} modifiers, directly or indirectly.
*/
modifier onlyInitializing() {
_checkInitializing();
_;
}
/**
* @dev Reverts if the contract is not in an initializing state. See {onlyInitializing}.
*/
function _checkInitializing() internal view virtual {
if (!_isInitializing()) {
revert NotInitializing();
}
}
/**
* @dev Locks the contract, preventing any future reinitialization. This cannot be part of an initializer call.
* Calling this in the constructor of a contract will prevent that contract from being initialized or reinitialized
* to any version. It is recommended to use this to lock implementation contracts that are designed to be called
* through proxies.
*
* Emits an {Initialized} event the first time it is successfully executed.
*/
function _disableInitializers() internal virtual {
// solhint-disable-next-line var-name-mixedcase
InitializableStorage storage $ = _getInitializableStorage();
if ($._initializing) {
revert InvalidInitialization();
}
if ($._initialized != type(uint64).max) {
$._initialized = type(uint64).max;
emit Initialized(type(uint64).max);
}
}
/**
* @dev Returns the highest version that has been initialized. See {reinitializer}.
*/
function _getInitializedVersion() internal view returns (uint64) {
return _getInitializableStorage()._initialized;
}
/**
* @dev Returns `true` if the contract is currently initializing. See {onlyInitializing}.
*/
function _isInitializing() internal view returns (bool) {
return _getInitializableStorage()._initializing;
}
/**
* @dev Returns a pointer to the storage namespace.
*/
// solhint-disable-next-line var-name-mixedcase
function _getInitializableStorage() private pure returns (InitializableStorage storage $) {
assembly {
$.slot := INITIALIZABLE_STORAGE
}
}
}// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; /// @title Lido's Staking Module interface interface IStakingModule { /// @dev Event to be emitted on StakingModule's nonce change event NonceChanged(uint256 nonce); /// @dev Event to be emitted when a signing key is added to the StakingModule event SigningKeyAdded(uint256 indexed nodeOperatorId, bytes pubkey); /// @dev Event to be emitted when a signing key is removed from the StakingModule event SigningKeyRemoved(uint256 indexed nodeOperatorId, bytes pubkey); /// @notice Handles tracking and penalization logic for a validator that remains active beyond its eligible exit window. /// @dev This function is called by the StakingRouter to report the current exit-related status of a validator /// belonging to a specific node operator. It accepts a validator's public key, associated /// with the duration (in seconds) it was eligible to exit but has not exited. /// This data could be used to trigger penalties for the node operator if the validator has exceeded the allowed exit window. /// @param _nodeOperatorId The ID of the node operator whose validator's status is being delivered. /// @param _proofSlotTimestamp The timestamp (slot time) when the validator was last known to be in an active ongoing state. /// @param _publicKey The public key of the validator being reported. /// @param _eligibleToExitInSec The duration (in seconds) indicating how long the validator has been eligible to exit but has not exited. function reportValidatorExitDelay( uint256 _nodeOperatorId, uint256 _proofSlotTimestamp, bytes calldata _publicKey, uint256 _eligibleToExitInSec ) external; /// @notice Handles the triggerable exit event for a validator belonging to a specific node operator. /// @dev This function is called by the StakingRouter when a validator is exited using the triggerable /// exit request on the Execution Layer (EL). /// @param _nodeOperatorId The ID of the node operator. /// @param _publicKey The public key of the validator being reported. /// @param _withdrawalRequestPaidFee Fee amount paid to send a withdrawal request on the Execution Layer (EL). /// @param _exitType The type of exit being performed. /// This parameter may be interpreted differently across various staking modules, depending on their specific implementation. function onValidatorExitTriggered( uint256 _nodeOperatorId, bytes calldata _publicKey, uint256 _withdrawalRequestPaidFee, uint256 _exitType ) external; /// @notice Determines whether a validator's exit status should be updated and will have an effect on the Node Operator. /// @param _nodeOperatorId The ID of the node operator. /// @param _proofSlotTimestamp The timestamp (slot time) when the validator was last known to be in an active ongoing state. /// @param _publicKey The public key of the validator. /// @param _eligibleToExitInSec The number of seconds the validator was eligible to exit but did not. /// @return bool Returns true if the contract should receive the updated status of the validator. function isValidatorExitDelayPenaltyApplicable( uint256 _nodeOperatorId, uint256 _proofSlotTimestamp, bytes calldata _publicKey, uint256 _eligibleToExitInSec ) external view returns (bool); /// @notice Returns the number of seconds after which a validator is considered late. /// @param _nodeOperatorId The ID of the node operator. /// @return The exit deadline threshold in seconds. function exitDeadlineThreshold( uint256 _nodeOperatorId ) external view returns (uint256); /// @notice Returns the type of the staking module /// @return Module type function getType() external view returns (bytes32); /// @notice Returns all-validators summary in the staking module /// @return totalExitedValidators total number of validators in the EXITED state /// on the Consensus Layer. This value can't decrease in normal conditions /// @return totalDepositedValidators total number of validators deposited via the /// official Deposit Contract. This value is a cumulative counter: even when the validator /// goes into EXITED state this counter is not decreasing /// @return depositableValidatorsCount number of validators in the set available for deposit function getStakingModuleSummary() external view returns ( uint256 totalExitedValidators, uint256 totalDepositedValidators, uint256 depositableValidatorsCount ); /// @notice Returns all-validators summary belonging to the node operator with the given id /// @param nodeOperatorId id of the operator to return report for /// @return targetLimitMode shows whether the current target limit applied to the node operator (1 = soft mode, 2 = forced mode) /// @return targetValidatorsCount relative target active validators limit for operator /// @return stuckValidatorsCount number of validators with an expired request to exit time /// @return refundedValidatorsCount number of validators that can't be withdrawn, but deposit /// costs were compensated to the Lido by the node operator /// @return stuckPenaltyEndTimestamp time when the penalty for stuck validators stops applying /// to node operator rewards /// @return totalExitedValidators total number of validators in the EXITED state /// on the Consensus Layer. This value can't decrease in normal conditions /// @return totalDepositedValidators total number of validators deposited via the official /// Deposit Contract. This value is a cumulative counter: even when the validator goes into /// EXITED state this counter is not decreasing /// @return depositableValidatorsCount number of validators in the set available for deposit function getNodeOperatorSummary( uint256 nodeOperatorId ) external view returns ( uint256 targetLimitMode, uint256 targetValidatorsCount, uint256 stuckValidatorsCount, uint256 refundedValidatorsCount, uint256 stuckPenaltyEndTimestamp, uint256 totalExitedValidators, uint256 totalDepositedValidators, uint256 depositableValidatorsCount ); /// @notice Returns a counter that MUST change its value whenever the deposit data set changes. /// Below is the typical list of actions that requires an update of the nonce: /// 1. a node operator's deposit data is added /// 2. a node operator's deposit data is removed /// 3. a node operator's ready-to-deposit data size is changed /// 4. a node operator was activated/deactivated /// 5. a node operator's deposit data is used for the deposit /// Note: Depending on the StakingModule implementation above list might be extended /// @dev In some scenarios, it's allowed to update nonce without actual change of the deposit /// data subset, but it MUST NOT lead to the DOS of the staking module via continuous /// update of the nonce by the malicious actor function getNonce() external view returns (uint256); /// @notice Returns total number of node operators function getNodeOperatorsCount() external view returns (uint256); /// @notice Returns number of active node operators function getActiveNodeOperatorsCount() external view returns (uint256); /// @notice Returns if the node operator with given id is active /// @param nodeOperatorId Id of the node operator function getNodeOperatorIsActive( uint256 nodeOperatorId ) external view returns (bool); /// @notice Returns up to `limit` node operator ids starting from the `offset`. The order of /// the returned ids is not defined and might change between calls. /// @dev This view must not revert in case of invalid data passed. When `offset` exceeds the /// total node operators count or when `limit` is equal to 0 MUST be returned empty array. function getNodeOperatorIds( uint256 offset, uint256 limit ) external view returns (uint256[] memory nodeOperatorIds); /// @notice Called by StakingRouter to signal that stETH rewards were minted for this module. /// @param totalShares Amount of stETH shares that were minted to reward all node operators. /// @dev IMPORTANT: this method SHOULD revert with empty error data ONLY because of "out of gas". /// Details about error data: https://docs.soliditylang.org/en/v0.8.9/control-structures.html#error-handling-assert-require-revert-and-exceptions function onRewardsMinted(uint256 totalShares) external; /// @notice Called by StakingRouter to decrease the number of vetted keys for Node Operators with given ids /// @param nodeOperatorIds Bytes packed array of the Node Operator ids /// @param vettedSigningKeysCounts Bytes packed array of the new numbers of vetted keys for the Node Operators function decreaseVettedSigningKeysCount( bytes calldata nodeOperatorIds, bytes calldata vettedSigningKeysCounts ) external; /// @notice Updates the number of the validators in the EXITED state for node operator with given id /// @param nodeOperatorIds bytes packed array of the node operators id /// @param exitedValidatorsCounts bytes packed array of the new number of EXITED validators for the node operators function updateExitedValidatorsCount( bytes calldata nodeOperatorIds, bytes calldata exitedValidatorsCounts ) external; /// @notice Updates the limit of the validators that can be used for deposit /// @param nodeOperatorId ID of the Node Operator /// @param targetLimitMode Target limit mode for the Node Operator (see https://hackmd.io/@lido/BJXRTxMRp) /// 0 - disabled /// 1 - soft mode /// 2 - forced mode /// @param targetLimit Target limit of validators function updateTargetValidatorsLimits( uint256 nodeOperatorId, uint256 targetLimitMode, uint256 targetLimit ) external; /// @notice Unsafely updates the number of validators in the EXITED/STUCK states for node operator with given id /// 'unsafely' means that this method can both increase and decrease exited and stuck counters /// @param _nodeOperatorId Id of the node operator /// @param _exitedValidatorsCount New number of EXITED validators for the node operator function unsafeUpdateValidatorsCount( uint256 _nodeOperatorId, uint256 _exitedValidatorsCount ) external; /// @notice Obtains deposit data to be used by StakingRouter to deposit to the Ethereum Deposit /// contract /// @dev The method MUST revert when the staking module has not enough deposit data items /// @param depositsCount Number of deposits to be done /// @param depositCalldata Staking module defined data encoded as bytes. /// IMPORTANT: depositCalldata MUST NOT modify the deposit data set of the staking module /// @return publicKeys Batch of the concatenated public validators keys /// @return signatures Batch of the concatenated deposit signatures for returned public keys function obtainDepositData( uint256 depositsCount, bytes calldata depositCalldata ) external returns (bytes memory publicKeys, bytes memory signatures); /// @notice Called by StakingRouter after it finishes updating exited and stuck validators /// counts for this module's node operators. /// /// Guaranteed to be called after an oracle report is applied, regardless of whether any node /// operator in this module has actually received any updated counts as a result of the report /// but given that the total number of exited validators returned from getStakingModuleSummary /// is the same as StakingRouter expects based on the total count received from the oracle. /// /// @dev IMPORTANT: this method SHOULD revert with empty error data ONLY because of "out of gas". /// Details about error data: https://docs.soliditylang.org/en/v0.8.9/control-structures.html#error-handling-assert-require-revert-and-exceptions function onExitedAndStuckValidatorsCountsUpdated() external; /// @notice Called by StakingRouter when withdrawal credentials are changed. /// @dev This method MUST discard all StakingModule's unused deposit data cause they become /// invalid after the withdrawal credentials are changed /// /// @dev IMPORTANT: this method SHOULD revert with empty error data ONLY because of "out of gas". /// Details about error data: https://docs.soliditylang.org/en/v0.8.9/control-structures.html#error-handling-assert-require-revert-and-exceptions function onWithdrawalCredentialsChanged() external; }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { NodeOperator } from "../interfaces/ICSModule.sol"; import { TransientUintUintMap } from "./TransientUintUintMapLib.sol"; // Batch is an uint256 as it's the internal data type used by solidity. // Batch is a packed value, consisting of the following fields: // - uint64 nodeOperatorId // - uint64 keysCount -- count of keys enqueued by the batch // - uint128 next -- index of the next batch in the queue type Batch is uint256; /// @notice Batch of the operator with index 0, with no keys in it and the next Batch' index 0 is meaningless. function isNil(Batch self) pure returns (bool) { return Batch.unwrap(self) == 0; } /// @dev Syntactic sugar for the type. function unwrap(Batch self) pure returns (uint256) { return Batch.unwrap(self); } function noId(Batch self) pure returns (uint64 n) { assembly { n := shr(192, self) } } function keys(Batch self) pure returns (uint64 n) { assembly { n := shl(64, self) n := shr(192, n) } } function next(Batch self) pure returns (uint128 n) { assembly { n := shl(128, self) n := shr(128, n) } } /// @dev keys count cast is unsafe function setKeys(Batch self, uint256 keysCount) pure returns (Batch) { assembly { self := or( and( self, 0xffffffffffffffff0000000000000000ffffffffffffffffffffffffffffffff ), shl(128, and(keysCount, 0xffffffffffffffff)) ) // self.keys = keysCount } return self; } /// @dev can be unsafe if the From batch is previous to the self function setNext(Batch self, uint128 nextIndex) pure returns (Batch) { assembly { self := or( and( self, 0xffffffffffffffffffffffffffffffff00000000000000000000000000000000 ), nextIndex ) // self.next = next } return self; } /// @dev Instantiate a new Batch to be added to the queue. The `next` field will be determined upon the enqueue. /// @dev Parameters are uint256 to make usage easier. function createBatch( uint256 nodeOperatorId, uint256 keysCount ) pure returns (Batch item) { // NOTE: No need to safe cast due to internal logic. nodeOperatorId = uint64(nodeOperatorId); keysCount = uint64(keysCount); assembly { item := shl(128, keysCount) // `keysCount` in [64:127] item := or(item, shl(192, nodeOperatorId)) // `nodeOperatorId` in [0:63] } } using { noId, keys, setKeys, setNext, next, isNil, unwrap } for Batch global; using QueueLib for QueueLib.Queue; interface IQueueLib { error QueueIsEmpty(); error QueueLookupNoLimit(); } /// @author madlabman library QueueLib { struct Queue { // Pointer to the item to be dequeued. uint128 head; // Tracks the total number of batches ever enqueued. uint128 tail; // Mapping saves a little in costs and allows easily fallback to a zeroed batch on out-of-bounds access. mapping(uint128 => Batch) queue; } ////// /// External methods ////// function clean( Queue storage self, mapping(uint256 => NodeOperator) storage nodeOperators, uint256 maxItems, TransientUintUintMap queueLookup ) external returns ( uint256 removed, uint256 lastRemovedAtDepth, uint256 visited, bool reachedOutOfQueue ) { removed = 0; lastRemovedAtDepth = 0; visited = 0; reachedOutOfQueue = false; if (maxItems == 0) { revert IQueueLib.QueueLookupNoLimit(); } Batch prevItem; uint128 indexOfPrev; uint128 head = self.head; uint128 curr = head; while (visited < maxItems) { Batch item = self.queue[curr]; if (item.isNil()) { reachedOutOfQueue = true; break; } visited++; NodeOperator storage no = nodeOperators[item.noId()]; if (queueLookup.get(item.noId()) >= no.depositableValidatorsCount) { // NOTE: Since we reached that point there's no way for a Node Operator to have a depositable batch // later in the queue, and hence we don't update _queueLookup for the Node Operator. if (curr == head) { self.dequeue(); head = self.head; } else { // There's no `prev` item while we call `dequeue`, and removing an item will keep the `prev` intact // other than changing its `next` field. prevItem = prevItem.setNext(item.next()); self.queue[indexOfPrev] = prevItem; } // We assume that the invariant `enqueuedCount` >= `keys` is kept. // NOTE: No need to safe cast due to internal logic. no.enqueuedCount -= uint32(item.keys()); unchecked { lastRemovedAtDepth = visited; ++removed; } } else { queueLookup.add(item.noId(), item.keys()); indexOfPrev = curr; prevItem = item; } curr = item.next(); } } ///// /// Internal methods ///// function enqueue( Queue storage self, uint256 nodeOperatorId, uint256 keysCount ) internal returns (Batch item) { uint128 tail = self.tail; item = createBatch(nodeOperatorId, keysCount); assembly { item := or( and( item, 0xffffffffffffffffffffffffffffffff00000000000000000000000000000000 ), add(tail, 1) ) // item.next = self.tail + 1; } self.queue[tail] = item; unchecked { ++self.tail; } } function dequeue(Queue storage self) internal returns (Batch item) { item = peek(self); if (item.isNil()) { revert IQueueLib.QueueIsEmpty(); } self.head = item.next(); } function peek(Queue storage self) internal view returns (Batch) { return self.queue[self.head]; } function at( Queue storage self, uint128 index ) internal view returns (Batch) { return self.queue[index]; } }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { NodeOperator, ICSModule } from "../interfaces/ICSModule.sol"; /// Library for changing and reset node operator's manager and reward addresses /// @dev the only use of this to be a library is to save CSModule contract size via delegatecalls interface INOAddresses { event NodeOperatorManagerAddressChangeProposed( uint256 indexed nodeOperatorId, address indexed oldProposedAddress, address indexed newProposedAddress ); event NodeOperatorRewardAddressChangeProposed( uint256 indexed nodeOperatorId, address indexed oldProposedAddress, address indexed newProposedAddress ); // args order as in https://github.com/OpenZeppelin/openzeppelin-contracts/blob/11dc5e3809ebe07d5405fe524385cbe4f890a08b/contracts/access/Ownable.sol#L33 event NodeOperatorManagerAddressChanged( uint256 indexed nodeOperatorId, address indexed oldAddress, address indexed newAddress ); // args order as in https://github.com/OpenZeppelin/openzeppelin-contracts/blob/11dc5e3809ebe07d5405fe524385cbe4f890a08b/contracts/access/Ownable.sol#L33 event NodeOperatorRewardAddressChanged( uint256 indexed nodeOperatorId, address indexed oldAddress, address indexed newAddress ); error AlreadyProposed(); error SameAddress(); error SenderIsNotManagerAddress(); error SenderIsNotRewardAddress(); error SenderIsNotProposedAddress(); error MethodCallIsNotAllowed(); error ZeroRewardAddress(); } library NOAddresses { /// @notice Propose a new manager address for the Node Operator /// @param nodeOperatorId ID of the Node Operator /// @param proposedAddress Proposed manager address function proposeNodeOperatorManagerAddressChange( mapping(uint256 => NodeOperator) storage nodeOperators, uint256 nodeOperatorId, address proposedAddress ) external { NodeOperator storage no = nodeOperators[nodeOperatorId]; if (no.managerAddress == address(0)) { revert ICSModule.NodeOperatorDoesNotExist(); } if (no.managerAddress != msg.sender) { revert INOAddresses.SenderIsNotManagerAddress(); } if (no.managerAddress == proposedAddress) { revert INOAddresses.SameAddress(); } if (no.proposedManagerAddress == proposedAddress) { revert INOAddresses.AlreadyProposed(); } address oldProposedAddress = no.proposedManagerAddress; no.proposedManagerAddress = proposedAddress; emit INOAddresses.NodeOperatorManagerAddressChangeProposed( nodeOperatorId, oldProposedAddress, proposedAddress ); } /// @notice Confirm a new manager address for the Node Operator. /// Should be called from the currently proposed address /// @param nodeOperatorId ID of the Node Operator function confirmNodeOperatorManagerAddressChange( mapping(uint256 => NodeOperator) storage nodeOperators, uint256 nodeOperatorId ) external { NodeOperator storage no = nodeOperators[nodeOperatorId]; if (no.managerAddress == address(0)) { revert ICSModule.NodeOperatorDoesNotExist(); } if (no.proposedManagerAddress != msg.sender) { revert INOAddresses.SenderIsNotProposedAddress(); } address oldAddress = no.managerAddress; no.managerAddress = msg.sender; delete no.proposedManagerAddress; emit INOAddresses.NodeOperatorManagerAddressChanged( nodeOperatorId, oldAddress, msg.sender ); } /// @notice Propose a new reward address for the Node Operator /// @param nodeOperatorId ID of the Node Operator /// @param proposedAddress Proposed reward address function proposeNodeOperatorRewardAddressChange( mapping(uint256 => NodeOperator) storage nodeOperators, uint256 nodeOperatorId, address proposedAddress ) external { NodeOperator storage no = nodeOperators[nodeOperatorId]; if (no.rewardAddress == address(0)) { revert ICSModule.NodeOperatorDoesNotExist(); } if (no.rewardAddress != msg.sender) { revert INOAddresses.SenderIsNotRewardAddress(); } if (no.rewardAddress == proposedAddress) { revert INOAddresses.SameAddress(); } if (no.proposedRewardAddress == proposedAddress) { revert INOAddresses.AlreadyProposed(); } address oldProposedAddress = no.proposedRewardAddress; no.proposedRewardAddress = proposedAddress; emit INOAddresses.NodeOperatorRewardAddressChangeProposed( nodeOperatorId, oldProposedAddress, proposedAddress ); } /// @notice Confirm a new reward address for the Node Operator. /// Should be called from the currently proposed address /// @param nodeOperatorId ID of the Node Operator function confirmNodeOperatorRewardAddressChange( mapping(uint256 => NodeOperator) storage nodeOperators, uint256 nodeOperatorId ) external { NodeOperator storage no = nodeOperators[nodeOperatorId]; if (no.rewardAddress == address(0)) { revert ICSModule.NodeOperatorDoesNotExist(); } if (no.proposedRewardAddress != msg.sender) { revert INOAddresses.SenderIsNotProposedAddress(); } address oldAddress = no.rewardAddress; no.rewardAddress = msg.sender; delete no.proposedRewardAddress; emit INOAddresses.NodeOperatorRewardAddressChanged( nodeOperatorId, oldAddress, msg.sender ); } /// @notice Reset the manager address to the reward address. /// Should be called from the reward address /// @param nodeOperatorId ID of the Node Operator function resetNodeOperatorManagerAddress( mapping(uint256 => NodeOperator) storage nodeOperators, uint256 nodeOperatorId ) external { NodeOperator storage no = nodeOperators[nodeOperatorId]; if (no.rewardAddress == address(0)) { revert ICSModule.NodeOperatorDoesNotExist(); } if (no.extendedManagerPermissions) { revert INOAddresses.MethodCallIsNotAllowed(); } if (no.rewardAddress != msg.sender) { revert INOAddresses.SenderIsNotRewardAddress(); } if (no.managerAddress == no.rewardAddress) { revert INOAddresses.SameAddress(); } address previousManagerAddress = no.managerAddress; no.managerAddress = no.rewardAddress; // @dev Gas golfing if (no.proposedManagerAddress != address(0)) { delete no.proposedManagerAddress; } emit INOAddresses.NodeOperatorManagerAddressChanged( nodeOperatorId, previousManagerAddress, no.rewardAddress ); } /// @notice Change rewardAddress if extendedManagerPermissions is enabled for the Node Operator. /// Should be called from the current manager address /// @param nodeOperatorId ID of the Node Operator /// @param newAddress New reward address function changeNodeOperatorRewardAddress( mapping(uint256 => NodeOperator) storage nodeOperators, uint256 nodeOperatorId, address newAddress ) external { if (newAddress == address(0)) { revert INOAddresses.ZeroRewardAddress(); } NodeOperator storage no = nodeOperators[nodeOperatorId]; if (no.managerAddress == address(0)) { revert ICSModule.NodeOperatorDoesNotExist(); } if (!no.extendedManagerPermissions) { revert INOAddresses.MethodCallIsNotAllowed(); } if (no.managerAddress != msg.sender) { revert INOAddresses.SenderIsNotManagerAddress(); } address oldAddress = no.rewardAddress; no.rewardAddress = newAddress; // @dev Gas golfing if (no.proposedRewardAddress != address(0)) { delete no.proposedRewardAddress; } emit INOAddresses.NodeOperatorRewardAddressChanged( nodeOperatorId, oldAddress, newAddress ); } }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; interface ILidoLocator { error ZeroAddress(); function accountingOracle() external view returns (address); function burner() external view returns (address); function coreComponents() external view returns (address, address, address, address, address, address); function depositSecurityModule() external view returns (address); function elRewardsVault() external view returns (address); function legacyOracle() external view returns (address); function lido() external view returns (address); function oracleDaemonConfig() external view returns (address); function oracleReportComponentsForLido() external view returns (address, address, address, address, address, address, address); function oracleReportSanityChecker() external view returns (address); function postTokenRebaseReceiver() external view returns (address); function stakingRouter() external view returns (address payable); function treasury() external view returns (address); function validatorsExitBusOracle() external view returns (address); function withdrawalQueue() external view returns (address); function withdrawalVault() external view returns (address); function triggerableWithdrawalsGateway() external view returns (address); }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; import { ILidoLocator } from "./ILidoLocator.sol"; import { ILido } from "./ILido.sol"; import { IWithdrawalQueue } from "./IWithdrawalQueue.sol"; import { IWstETH } from "./IWstETH.sol"; interface ICSBondCore { event BondDepositedETH( uint256 indexed nodeOperatorId, address from, uint256 amount ); event BondDepositedStETH( uint256 indexed nodeOperatorId, address from, uint256 amount ); event BondDepositedWstETH( uint256 indexed nodeOperatorId, address from, uint256 amount ); event BondClaimedUnstETH( uint256 indexed nodeOperatorId, address to, uint256 amount, uint256 requestId ); event BondClaimedStETH( uint256 indexed nodeOperatorId, address to, uint256 amount ); event BondClaimedWstETH( uint256 indexed nodeOperatorId, address to, uint256 amount ); event BondBurned( uint256 indexed nodeOperatorId, uint256 amountToBurn, uint256 burnedAmount ); event BondCharged( uint256 indexed nodeOperatorId, uint256 toChargeAmount, uint256 chargedAmount ); error ZeroLocatorAddress(); error NothingToClaim(); function LIDO_LOCATOR() external view returns (ILidoLocator); function LIDO() external view returns (ILido); function WITHDRAWAL_QUEUE() external view returns (IWithdrawalQueue); function WSTETH() external view returns (IWstETH); /// @notice Get total bond shares (stETH) stored on the contract /// @return Total bond shares (stETH) function totalBondShares() external view returns (uint256); /// @notice Get bond shares (stETH) for the given Node Operator /// @param nodeOperatorId ID of the Node Operator /// @return Bond in stETH shares function getBondShares( uint256 nodeOperatorId ) external view returns (uint256); /// @notice Get bond amount in ETH (stETH) for the given Node Operator /// @param nodeOperatorId ID of the Node Operator /// @return Bond amount in ETH (stETH) function getBond(uint256 nodeOperatorId) external view returns (uint256); }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; interface ICSBondCurve { /// @dev Bond curve structure. /// /// It contains: /// - intervals |> intervals-based representation of the bond curve /// /// The interval is defined by: /// - minKeysCount |> minimum keys count (inclusive) of the interval /// - minBond |> minimum bond amount (inclusive) of the interval /// - trend |> trend of the bond amount in the interval /// /// For example, how the curve intervals look like: /// Interval 0: minKeysCount = 1, minBond = 2 ETH, trend = 2 ETH /// Interval 1: minKeysCount = 2, minBond = 3.9 ETH, trend = 1.9 ETH /// Interval 2: minKeysCount = 3, minBond = 5.7 ETH, trend = 1.8 ETH /// /// Bond Amount (ETH) /// ^ /// | /// 6 - /// | ------------------ 5.7 ETH --> . /// 5.5 - ..^ /// | . | /// 5 - . | /// | . | /// 4.5 - . | /// | . | /// 4 - .. | /// | ------- 3.9 ETH --> .. | /// 3.5 - .^ | /// | .. | | /// 3 - .. | | /// | . | | /// 2.5 - . | | /// | .. | | /// 2 - -------->.. | | /// | ^ | | /// |----------|----------|----------|----------|----> Keys Count /// | 1 2 3 i /// struct BondCurve { BondCurveInterval[] intervals; } struct BondCurveInterval { uint256 minKeysCount; uint256 minBond; uint256 trend; } struct BondCurveIntervalInput { uint256 minKeysCount; uint256 trend; } event BondCurveAdded( uint256 indexed curveId, BondCurveIntervalInput[] bondCurveIntervals ); event BondCurveUpdated( uint256 indexed curveId, BondCurveIntervalInput[] bondCurveIntervals ); event BondCurveSet(uint256 indexed nodeOperatorId, uint256 curveId); error InvalidBondCurveLength(); error InvalidBondCurveValues(); error InvalidBondCurveId(); error InvalidInitializationCurveId(); function MIN_CURVE_LENGTH() external view returns (uint256); function MAX_CURVE_LENGTH() external view returns (uint256); function DEFAULT_BOND_CURVE_ID() external view returns (uint256); /// @notice Get the number of available curves /// @return Number of available curves function getCurvesCount() external view returns (uint256); /// @notice Return bond curve for the given curve id /// @param curveId Curve id to get bond curve for /// @return Bond curve /// @dev Reverts if `curveId` is invalid function getCurveInfo( uint256 curveId ) external view returns (BondCurve memory); /// @notice Get bond curve for the given Node Operator /// @param nodeOperatorId ID of the Node Operator /// @return Bond curve function getBondCurve( uint256 nodeOperatorId ) external view returns (BondCurve memory); /// @notice Get bond curve ID for the given Node Operator /// @param nodeOperatorId ID of the Node Operator /// @return Bond curve ID function getBondCurveId( uint256 nodeOperatorId ) external view returns (uint256); /// @notice Get required bond in ETH for the given number of keys for default bond curve /// @dev To calculate the amount for the new keys 2 calls are required: /// getBondAmountByKeysCount(newTotal) - getBondAmountByKeysCount(currentTotal) /// @param keys Number of keys to get required bond for /// @param curveId Id of the curve to perform calculations against /// @return Amount for particular keys count function getBondAmountByKeysCount( uint256 keys, uint256 curveId ) external view returns (uint256); /// @notice Get keys count for the given bond amount with default bond curve /// @param amount Bond amount in ETH (stETH)to get keys count for /// @param curveId Id of the curve to perform calculations against /// @return Keys count function getKeysCountByBondAmount( uint256 amount, uint256 curveId ) external view returns (uint256); }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; interface ICSBondLock { /// @dev Bond lock structure. /// It contains: /// - amount |> amount of locked bond /// - until |> timestamp until locked bond is retained struct BondLock { uint128 amount; uint128 until; } event BondLockChanged( uint256 indexed nodeOperatorId, uint256 newAmount, uint256 until ); event BondLockRemoved(uint256 indexed nodeOperatorId); event BondLockPeriodChanged(uint256 period); error InvalidBondLockPeriod(); error InvalidBondLockAmount(); function MIN_BOND_LOCK_PERIOD() external view returns (uint256); function MAX_BOND_LOCK_PERIOD() external view returns (uint256); /// @notice Get default bond lock period /// @return period Default bond lock period function getBondLockPeriod() external view returns (uint256 period); /// @notice Get information about the locked bond for the given Node Operator /// @param nodeOperatorId ID of the Node Operator /// @return Locked bond info function getLockedBondInfo( uint256 nodeOperatorId ) external view returns (BondLock memory); /// @notice Get amount of the locked bond in ETH (stETH) by the given Node Operator /// @param nodeOperatorId ID of the Node Operator /// @return Amount of the actual locked bond function getActualLockedBond( uint256 nodeOperatorId ) external view returns (uint256); }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; interface IExitTypes { function VOLUNTARY_EXIT_TYPE_ID() external view returns (uint8); function STRIKES_EXIT_TYPE_ID() external view returns (uint8); }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; struct ValidatorData { uint256 stakingModuleId; uint256 nodeOperatorId; bytes pubkey; } interface ITriggerableWithdrawalsGateway { /** * @dev Submits Triggerable Withdrawal Requests to the Withdrawal Vault as full withdrawal requests * for the specified validator public keys. * * @param triggerableExitsData An array of `ValidatorData` structs, each representing a validator * for which a withdrawal request will be submitted. Each entry includes: * - `stakingModuleId`: ID of the staking module. * - `nodeOperatorId`: ID of the node operator. * - `pubkey`: Validator public key, 48 bytes length. * @param refundRecipient The address that will receive any excess ETH sent for fees. * @param exitType A parameter indicating the type of exit, passed to the Staking Module. * * Emits `TriggerableExitRequest` event for each validator in list. * * @notice Reverts if: * - The caller does not have the `ADD_FULL_WITHDRAWAL_REQUEST_ROLE` * - The total fee value sent is insufficient to cover all provided TW requests. * - There is not enough limit quota left in the current frame to process all requests. */ function triggerFullWithdrawals( ValidatorData[] calldata triggerableExitsData, address refundRecipient, uint256 exitType ) external payable; }
// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/introspection/IERC165.sol)
pragma solidity ^0.8.20;
/**
* @dev Interface of the ERC165 standard, as defined in the
* https://eips.ethereum.org/EIPS/eip-165[EIP].
*
* Implementers can declare support of contract interfaces, which can then be
* queried by others ({ERC165Checker}).
*
* For an implementation, see {ERC165}.
*/
interface IERC165 {
/**
* @dev Returns true if this contract implements the interface defined by
* `interfaceId`. See the corresponding
* https://eips.ethereum.org/EIPS/eip-165#how-interfaces-are-identified[EIP section]
* to learn more about how these ids are created.
*
* This function call must use less than 30 000 gas.
*/
function supportsInterface(bytes4 interfaceId) external view returns (bool);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (token/ERC20/extensions/IERC20Permit.sol)
pragma solidity ^0.8.20;
/**
* @dev Interface of the ERC20 Permit extension allowing approvals to be made via signatures, as defined in
* https://eips.ethereum.org/EIPS/eip-2612[EIP-2612].
*
* Adds the {permit} method, which can be used to change an account's ERC20 allowance (see {IERC20-allowance}) by
* presenting a message signed by the account. By not relying on {IERC20-approve}, the token holder account doesn't
* need to send a transaction, and thus is not required to hold Ether at all.
*
* ==== Security Considerations
*
* There are two important considerations concerning the use of `permit`. The first is that a valid permit signature
* expresses an allowance, and it should not be assumed to convey additional meaning. In particular, it should not be
* considered as an intention to spend the allowance in any specific way. The second is that because permits have
* built-in replay protection and can be submitted by anyone, they can be frontrun. A protocol that uses permits should
* take this into consideration and allow a `permit` call to fail. Combining these two aspects, a pattern that may be
* generally recommended is:
*
* ```solidity
* function doThingWithPermit(..., uint256 value, uint256 deadline, uint8 v, bytes32 r, bytes32 s) public {
* try token.permit(msg.sender, address(this), value, deadline, v, r, s) {} catch {}
* doThing(..., value);
* }
*
* function doThing(..., uint256 value) public {
* token.safeTransferFrom(msg.sender, address(this), value);
* ...
* }
* ```
*
* Observe that: 1) `msg.sender` is used as the owner, leaving no ambiguity as to the signer intent, and 2) the use of
* `try/catch` allows the permit to fail and makes the code tolerant to frontrunning. (See also
* {SafeERC20-safeTransferFrom}).
*
* Additionally, note that smart contract wallets (such as Argent or Safe) are not able to produce permit signatures, so
* contracts should have entry points that don't rely on permit.
*/
interface IERC20Permit {
/**
* @dev Sets `value` as the allowance of `spender` over ``owner``'s tokens,
* given ``owner``'s signed approval.
*
* IMPORTANT: The same issues {IERC20-approve} has related to transaction
* ordering also apply here.
*
* Emits an {Approval} event.
*
* Requirements:
*
* - `spender` cannot be the zero address.
* - `deadline` must be a timestamp in the future.
* - `v`, `r` and `s` must be a valid `secp256k1` signature from `owner`
* over the EIP712-formatted function arguments.
* - the signature must use ``owner``'s current nonce (see {nonces}).
*
* For more information on the signature format, see the
* https://eips.ethereum.org/EIPS/eip-2612#specification[relevant EIP
* section].
*
* CAUTION: See Security Considerations above.
*/
function permit(
address owner,
address spender,
uint256 value,
uint256 deadline,
uint8 v,
bytes32 r,
bytes32 s
) external;
/**
* @dev Returns the current nonce for `owner`. This value must be
* included whenever a signature is generated for {permit}.
*
* Every successful call to {permit} increases ``owner``'s nonce by one. This
* prevents a signature from being used multiple times.
*/
function nonces(address owner) external view returns (uint256);
/**
* @dev Returns the domain separator used in the encoding of the signature for {permit}, as defined by {EIP712}.
*/
// solhint-disable-next-line func-name-mixedcase
function DOMAIN_SEPARATOR() external view returns (bytes32);
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/Address.sol)
pragma solidity ^0.8.20;
/**
* @dev Collection of functions related to the address type
*/
library Address {
/**
* @dev The ETH balance of the account is not enough to perform the operation.
*/
error AddressInsufficientBalance(address account);
/**
* @dev There's no code at `target` (it is not a contract).
*/
error AddressEmptyCode(address target);
/**
* @dev A call to an address target failed. The target may have reverted.
*/
error FailedInnerCall();
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://consensys.net/diligence/blog/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.8.20/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/
function sendValue(address payable recipient, uint256 amount) internal {
if (address(this).balance < amount) {
revert AddressInsufficientBalance(address(this));
}
(bool success, ) = recipient.call{value: amount}("");
if (!success) {
revert FailedInnerCall();
}
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain `call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason or custom error, it is bubbled
* up by this function (like regular Solidity function calls). However, if
* the call reverted with no returned reason, this function reverts with a
* {FailedInnerCall} error.
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*/
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*/
function functionCallWithValue(address target, bytes memory data, uint256 value) internal returns (bytes memory) {
if (address(this).balance < value) {
revert AddressInsufficientBalance(address(this));
}
(bool success, bytes memory returndata) = target.call{value: value}(data);
return verifyCallResultFromTarget(target, success, returndata);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*/
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
(bool success, bytes memory returndata) = target.staticcall(data);
return verifyCallResultFromTarget(target, success, returndata);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*/
function functionDelegateCall(address target, bytes memory data) internal returns (bytes memory) {
(bool success, bytes memory returndata) = target.delegatecall(data);
return verifyCallResultFromTarget(target, success, returndata);
}
/**
* @dev Tool to verify that a low level call to smart-contract was successful, and reverts if the target
* was not a contract or bubbling up the revert reason (falling back to {FailedInnerCall}) in case of an
* unsuccessful call.
*/
function verifyCallResultFromTarget(
address target,
bool success,
bytes memory returndata
) internal view returns (bytes memory) {
if (!success) {
_revert(returndata);
} else {
// only check if target is a contract if the call was successful and the return data is empty
// otherwise we already know that it was a contract
if (returndata.length == 0 && target.code.length == 0) {
revert AddressEmptyCode(target);
}
return returndata;
}
}
/**
* @dev Tool to verify that a low level call was successful, and reverts if it wasn't, either by bubbling the
* revert reason or with a default {FailedInnerCall} error.
*/
function verifyCallResult(bool success, bytes memory returndata) internal pure returns (bytes memory) {
if (!success) {
_revert(returndata);
} else {
return returndata;
}
}
/**
* @dev Reverts with returndata if present. Otherwise reverts with {FailedInnerCall}.
*/
function _revert(bytes memory returndata) private pure {
// Look for revert reason and bubble it up if present
if (returndata.length > 0) {
// The easiest way to bubble the revert reason is using memory via assembly
/// @solidity memory-safe-assembly
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert FailedInnerCall();
}
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (access/IAccessControl.sol)
pragma solidity ^0.8.20;
/**
* @dev External interface of AccessControl declared to support ERC165 detection.
*/
interface IAccessControl {
/**
* @dev The `account` is missing a role.
*/
error AccessControlUnauthorizedAccount(address account, bytes32 neededRole);
/**
* @dev The caller of a function is not the expected one.
*
* NOTE: Don't confuse with {AccessControlUnauthorizedAccount}.
*/
error AccessControlBadConfirmation();
/**
* @dev Emitted when `newAdminRole` is set as ``role``'s admin role, replacing `previousAdminRole`
*
* `DEFAULT_ADMIN_ROLE` is the starting admin for all roles, despite
* {RoleAdminChanged} not being emitted signaling this.
*/
event RoleAdminChanged(bytes32 indexed role, bytes32 indexed previousAdminRole, bytes32 indexed newAdminRole);
/**
* @dev Emitted when `account` is granted `role`.
*
* `sender` is the account that originated the contract call, an admin role
* bearer except when using {AccessControl-_setupRole}.
*/
event RoleGranted(bytes32 indexed role, address indexed account, address indexed sender);
/**
* @dev Emitted when `account` is revoked `role`.
*
* `sender` is the account that originated the contract call:
* - if using `revokeRole`, it is the admin role bearer
* - if using `renounceRole`, it is the role bearer (i.e. `account`)
*/
event RoleRevoked(bytes32 indexed role, address indexed account, address indexed sender);
/**
* @dev Returns `true` if `account` has been granted `role`.
*/
function hasRole(bytes32 role, address account) external view returns (bool);
/**
* @dev Returns the admin role that controls `role`. See {grantRole} and
* {revokeRole}.
*
* To change a role's admin, use {AccessControl-_setRoleAdmin}.
*/
function getRoleAdmin(bytes32 role) external view returns (bytes32);
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function grantRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from `account`.
*
* If `account` had been granted `role`, emits a {RoleRevoked} event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/
function revokeRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from the calling account.
*
* Roles are often managed via {grantRole} and {revokeRole}: this function's
* purpose is to provide a mechanism for accounts to lose their privileges
* if they are compromised (such as when a trusted device is misplaced).
*
* If the calling account had been granted `role`, emits a {RoleRevoked}
* event.
*
* Requirements:
*
* - the caller must be `callerConfirmation`.
*/
function renounceRole(bytes32 role, address callerConfirmation) external;
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.1) (utils/Context.sol)
pragma solidity ^0.8.20;
import {Initializable} from "../proxy/utils/Initializable.sol";
/**
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/
abstract contract ContextUpgradeable is Initializable {
function __Context_init() internal onlyInitializing {
}
function __Context_init_unchained() internal onlyInitializing {
}
function _msgSender() internal view virtual returns (address) {
return msg.sender;
}
function _msgData() internal view virtual returns (bytes calldata) {
return msg.data;
}
function _contextSuffixLength() internal view virtual returns (uint256) {
return 0;
}
}// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/introspection/ERC165.sol)
pragma solidity ^0.8.20;
import {IERC165} from "@openzeppelin/contracts/utils/introspection/IERC165.sol";
import {Initializable} from "../../proxy/utils/Initializable.sol";
/**
* @dev Implementation of the {IERC165} interface.
*
* Contracts that want to implement ERC165 should inherit from this contract and override {supportsInterface} to check
* for the additional interface id that will be supported. For example:
*
* ```solidity
* function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
* return interfaceId == type(MyInterface).interfaceId || super.supportsInterface(interfaceId);
* }
* ```
*/
abstract contract ERC165Upgradeable is Initializable, IERC165 {
function __ERC165_init() internal onlyInitializing {
}
function __ERC165_init_unchained() internal onlyInitializing {
}
/**
* @dev See {IERC165-supportsInterface}.
*/
function supportsInterface(bytes4 interfaceId) public view virtual returns (bool) {
return interfaceId == type(IERC165).interfaceId;
}
}// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; type TransientUintUintMap is uint256; using TransientUintUintMapLib for TransientUintUintMap global; library TransientUintUintMapLib { function create() internal returns (TransientUintUintMap self) { // keccak256(abi.encode(uint256(keccak256("TransientUintUintMap")) - 1)) & ~bytes32(uint256(0xff)) uint256 anchor = 0x6e38e7eaa4307e6ee6c66720337876ca65012869fbef035f57219354c1728400; // `anchor` slot in the transient storage tracks the "address" of the last created object. // The next address is being computed as keccak256(`anchor` . `prev`). assembly ("memory-safe") { let prev := tload(anchor) mstore(0x00, anchor) mstore(0x20, prev) self := keccak256(0x00, 0x40) tstore(anchor, self) } } function add( TransientUintUintMap self, uint256 key, uint256 value ) internal { uint256 slot = _slot(self, key); assembly ("memory-safe") { let v := tload(slot) // NOTE: Here's no overflow check. v := add(v, value) tstore(slot, v) } } function set( TransientUintUintMap self, uint256 key, uint256 value ) internal { uint256 slot = _slot(self, key); assembly ("memory-safe") { tstore(slot, value) } } function get( TransientUintUintMap self, uint256 key ) internal view returns (uint256 v) { uint256 slot = _slot(self, key); assembly ("memory-safe") { v := tload(slot) } } function load( bytes32 tslot ) internal pure returns (TransientUintUintMap self) { assembly ("memory-safe") { self := tslot } } function _slot( TransientUintUintMap self, uint256 key ) internal pure returns (uint256 slot) { // Compute an address in the transient storage in the same manner it works for storage mappings. // `slot` = keccak256(`self` . `key`) assembly ("memory-safe") { mstore(0x00, self) mstore(0x20, key) slot := keccak256(0x00, 0x40) } } }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; interface IWithdrawalQueue { struct WithdrawalRequestStatus { /// @notice stETH token amount that was locked on withdrawal queue for this request uint256 amountOfStETH; /// @notice amount of stETH shares locked on withdrawal queue for this request uint256 amountOfShares; /// @notice address that can claim or transfer this request address owner; /// @notice timestamp of when the request was created, in seconds uint256 timestamp; /// @notice true, if request is finalized bool isFinalized; /// @notice true, if request is claimed. Request is claimable if (isFinalized && !isClaimed) bool isClaimed; } function ORACLE_ROLE() external view returns (bytes32); function getRoleMember( bytes32 role, uint256 index ) external view returns (address); function WSTETH() external view returns (address); /// @notice minimal amount of stETH that is possible to withdraw function MIN_STETH_WITHDRAWAL_AMOUNT() external view returns (uint256); /// @notice maximum amount of stETH that is possible to withdraw by a single request /// Prevents accumulating too much funds per single request fulfillment in the future. /// @dev To withdraw larger amounts, it's recommended to split it to several requests function MAX_STETH_WITHDRAWAL_AMOUNT() external view returns (uint256); function requestWithdrawals( uint256[] calldata _amounts, address _owner ) external returns (uint256[] memory requestIds); function getWithdrawalStatus( uint256[] calldata _requestIds ) external view returns (WithdrawalRequestStatus[] memory statuses); function getWithdrawalRequests( address _owner ) external view returns (uint256[] memory requestsIds); function isBunkerModeActive() external view returns (bool); function onOracleReport( bool _isBunkerModeNow, uint256 _bunkerStartTimestamp, uint256 _currentReportTimestamp ) external; }
// SPDX-FileCopyrightText: 2025 Lido <[email protected]> // SPDX-License-Identifier: GPL-3.0 pragma solidity 0.8.24; interface IWstETH { function balanceOf(address account) external view returns (uint256); function approve(address _spender, uint256 _amount) external returns (bool); function wrap(uint256 _stETHAmount) external returns (uint256); function unwrap(uint256 _wstETHAmount) external returns (uint256); function transferFrom( address sender, address recipient, uint256 amount ) external; function transfer(address recipient, uint256 amount) external; function getStETHByWstETH( uint256 _wstETHAmount ) external view returns (uint256); function getWstETHByStETH( uint256 _stETHAmount ) external view returns (uint256); function permit( address owner, address spender, uint256 value, uint256 deadline, uint8 v, bytes32 r, bytes32 s ) external; function allowance( address _owner, address _spender ) external view returns (uint256); }
{
"remappings": [
"@openzeppelin/contracts/=node_modules/@openzeppelin/contracts/",
"@openzeppelin/contracts-upgradeable/=node_modules/@openzeppelin/contracts-upgradeable/",
"forge-std/=node_modules/forge-std/src/",
"ds-test/=node_modules/ds-test/src/"
],
"optimizer": {
"enabled": true,
"runs": 160
},
"metadata": {
"useLiteralContent": false,
"bytecodeHash": "none",
"appendCBOR": true
},
"outputSelection": {
"*": {
"*": [
"evm.bytecode",
"evm.deployedBytecode",
"devdoc",
"userdoc",
"metadata",
"abi"
]
}
},
"evmVersion": "cancun",
"viaIR": false,
"libraries": {
"src/lib/AssetRecovererLib.sol": {
"AssetRecovererLib": "0xa74528edc289b1a597Faf83fCfF7eFf871Cc01D9"
},
"src/lib/NOAddresses.sol": {
"NOAddresses": "0x7aE73890a2FE240362161BA9E83Fc996D7Fe1496"
},
"src/lib/QueueLib.sol": {
"QueueLib": "0x6eFF460627b6798C2907409EA2Fdfb287Eaa2e55"
}
}
}Contract ABI
API[{"inputs":[{"internalType":"address","name":"feeDistributor","type":"address"},{"internalType":"address","name":"strikes","type":"address"},{"internalType":"uint256","name":"secondsPerSlot","type":"uint256"},{"internalType":"uint256","name":"genesisTime","type":"uint256"}],"stateMutability":"nonpayable","type":"constructor"},{"inputs":[],"name":"AccessControlBadConfirmation","type":"error"},{"inputs":[{"internalType":"address","name":"account","type":"address"},{"internalType":"bytes32","name":"neededRole","type":"bytes32"}],"name":"AccessControlUnauthorizedAccount","type":"error"},{"inputs":[],"name":"AddressCannotBeSame","type":"error"},{"inputs":[],"name":"AddressCannotBeZero","type":"error"},{"inputs":[],"name":"FailedToSendEther","type":"error"},{"inputs":[],"name":"HashCannotBeZero","type":"error"},{"inputs":[{"internalType":"uint256","name":"initialRefSlot","type":"uint256"},{"internalType":"uint256","name":"processingRefSlot","type":"uint256"}],"name":"InitialRefSlotCannotBeLessThanProcessingOne","type":"error"},{"inputs":[],"name":"InvalidContractVersion","type":"error"},{"inputs":[],"name":"InvalidContractVersionIncrement","type":"error"},{"inputs":[],"name":"InvalidInitialization","type":"error"},{"inputs":[],"name":"NoConsensusReportToProcess","type":"error"},{"inputs":[],"name":"NonZeroContractVersionOnInit","type":"error"},{"inputs":[],"name":"NotAllowedToRecover","type":"error"},{"inputs":[],"name":"NotInitializing","type":"error"},{"inputs":[],"name":"PauseUntilMustBeInFuture","type":"error"},{"inputs":[],"name":"PausedExpected","type":"error"},{"inputs":[{"internalType":"uint256","name":"deadline","type":"uint256"}],"name":"ProcessingDeadlineMissed","type":"error"},{"inputs":[],"name":"RefSlotAlreadyProcessing","type":"error"},{"inputs":[{"internalType":"uint256","name":"refSlot","type":"uint256"},{"internalType":"uint256","name":"prevRefSlot","type":"uint256"}],"name":"RefSlotCannotDecrease","type":"error"},{"inputs":[{"internalType":"uint256","name":"refSlot","type":"uint256"},{"internalType":"uint256","name":"processingRefSlot","type":"uint256"}],"name":"RefSlotMustBeGreaterThanProcessingOne","type":"error"},{"inputs":[],"name":"ResumedExpected","type":"error"},{"inputs":[{"internalType":"uint8","name":"bits","type":"uint8"},{"internalType":"uint256","name":"value","type":"uint256"}],"name":"SafeCastOverflowedUintDowncast","type":"error"},{"inputs":[],"name":"SecondsPerSlotCannotBeZero","type":"error"},{"inputs":[],"name":"SenderIsNotTheConsensusContract","type":"error"},{"inputs":[],"name":"SenderNotAllowed","type":"error"},{"inputs":[],"name":"UnexpectedChainConfig","type":"error"},{"inputs":[{"internalType":"uint256","name":"expectedVersion","type":"uint256"},{"internalType":"uint256","name":"receivedVersion","type":"uint256"}],"name":"UnexpectedConsensusVersion","type":"error"},{"inputs":[{"internalType":"uint256","name":"expected","type":"uint256"},{"internalType":"uint256","name":"received","type":"uint256"}],"name":"UnexpectedContractVersion","type":"error"},{"inputs":[{"internalType":"bytes32","name":"consensusHash","type":"bytes32"},{"internalType":"bytes32","name":"receivedHash","type":"bytes32"}],"name":"UnexpectedDataHash","type":"error"},{"inputs":[{"internalType":"uint256","name":"consensusRefSlot","type":"uint256"},{"internalType":"uint256","name":"dataRefSlot","type":"uint256"}],"name":"UnexpectedRefSlot","type":"error"},{"inputs":[],"name":"VersionCannotBeSame","type":"error"},{"inputs":[],"name":"VersionCannotBeZero","type":"error"},{"inputs":[],"name":"ZeroAdminAddress","type":"error"},{"inputs":[],"name":"ZeroFeeDistributorAddress","type":"error"},{"inputs":[],"name":"ZeroPauseDuration","type":"error"},{"inputs":[],"name":"ZeroStrikesAddress","type":"error"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"addr","type":"address"},{"indexed":true,"internalType":"address","name":"prevAddr","type":"address"}],"name":"ConsensusHashContractSet","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"uint256","name":"version","type":"uint256"},{"indexed":true,"internalType":"uint256","name":"prevVersion","type":"uint256"}],"name":"ConsensusVersionSet","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"uint256","name":"version","type":"uint256"}],"name":"ContractVersionSet","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"token","type":"address"},{"indexed":false,"internalType":"uint256","name":"tokenId","type":"uint256"},{"indexed":true,"internalType":"address","name":"recipient","type":"address"},{"indexed":false,"internalType":"uint256","name":"amount","type":"uint256"}],"name":"ERC1155Recovered","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"token","type":"address"},{"indexed":true,"internalType":"address","name":"recipient","type":"address"},{"indexed":false,"internalType":"uint256","name":"amount","type":"uint256"}],"name":"ERC20Recovered","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"token","type":"address"},{"indexed":false,"internalType":"uint256","name":"tokenId","type":"uint256"},{"indexed":true,"internalType":"address","name":"recipient","type":"address"}],"name":"ERC721Recovered","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"recipient","type":"address"},{"indexed":false,"internalType":"uint256","name":"amount","type":"uint256"}],"name":"EtherRecovered","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"uint64","name":"version","type":"uint64"}],"name":"Initialized","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"internalType":"uint256","name":"duration","type":"uint256"}],"name":"Paused","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"uint256","name":"refSlot","type":"uint256"},{"indexed":false,"internalType":"bytes32","name":"hash","type":"bytes32"}],"name":"ProcessingStarted","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"uint256","name":"refSlot","type":"uint256"},{"indexed":false,"internalType":"bytes32","name":"hash","type":"bytes32"}],"name":"ReportDiscarded","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"uint256","name":"refSlot","type":"uint256"},{"indexed":false,"internalType":"bytes32","name":"hash","type":"bytes32"},{"indexed":false,"internalType":"uint256","name":"processingDeadlineTime","type":"uint256"}],"name":"ReportSubmitted","type":"event"},{"anonymous":false,"inputs":[],"name":"Resumed","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"bytes32","name":"role","type":"bytes32"},{"indexed":true,"internalType":"bytes32","name":"previousAdminRole","type":"bytes32"},{"indexed":true,"internalType":"bytes32","name":"newAdminRole","type":"bytes32"}],"name":"RoleAdminChanged","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"bytes32","name":"role","type":"bytes32"},{"indexed":true,"internalType":"address","name":"account","type":"address"},{"indexed":true,"internalType":"address","name":"sender","type":"address"}],"name":"RoleGranted","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"bytes32","name":"role","type":"bytes32"},{"indexed":true,"internalType":"address","name":"account","type":"address"},{"indexed":true,"internalType":"address","name":"sender","type":"address"}],"name":"RoleRevoked","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"address","name":"recipient","type":"address"},{"indexed":false,"internalType":"uint256","name":"shares","type":"uint256"}],"name":"StETHSharesRecovered","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"internalType":"uint256","name":"refSlot","type":"uint256"}],"name":"WarnProcessingMissed","type":"event"},{"inputs":[],"name":"DEFAULT_ADMIN_ROLE","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"FEE_DISTRIBUTOR","outputs":[{"internalType":"contract ICSFeeDistributor","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"GENESIS_TIME","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"MANAGE_CONSENSUS_CONTRACT_ROLE","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"MANAGE_CONSENSUS_VERSION_ROLE","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"PAUSE_INFINITELY","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"PAUSE_ROLE","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"RECOVERER_ROLE","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"RESUME_ROLE","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"SECONDS_PER_SLOT","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"STRIKES","outputs":[{"internalType":"contract ICSStrikes","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"SUBMIT_DATA_ROLE","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"uint256","name":"refSlot","type":"uint256"}],"name":"discardConsensusReport","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"uint256","name":"consensusVersion","type":"uint256"}],"name":"finalizeUpgradeV2","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"getConsensusContract","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"getConsensusReport","outputs":[{"internalType":"bytes32","name":"hash","type":"bytes32"},{"internalType":"uint256","name":"refSlot","type":"uint256"},{"internalType":"uint256","name":"processingDeadlineTime","type":"uint256"},{"internalType":"bool","name":"processingStarted","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"getConsensusVersion","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"getContractVersion","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"getLastProcessingRefSlot","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[],"name":"getResumeSinceTimestamp","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"}],"name":"getRoleAdmin","outputs":[{"internalType":"bytes32","name":"","type":"bytes32"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"},{"internalType":"uint256","name":"index","type":"uint256"}],"name":"getRoleMember","outputs":[{"internalType":"address","name":"","type":"address"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"}],"name":"getRoleMemberCount","outputs":[{"internalType":"uint256","name":"","type":"uint256"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"},{"internalType":"address","name":"account","type":"address"}],"name":"grantRole","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"},{"internalType":"address","name":"account","type":"address"}],"name":"hasRole","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"address","name":"admin","type":"address"},{"internalType":"address","name":"consensusContract","type":"address"},{"internalType":"uint256","name":"consensusVersion","type":"uint256"}],"name":"initialize","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"isPaused","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"view","type":"function"},{"inputs":[{"internalType":"uint256","name":"duration","type":"uint256"}],"name":"pauseFor","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"token","type":"address"},{"internalType":"uint256","name":"tokenId","type":"uint256"}],"name":"recoverERC1155","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"token","type":"address"},{"internalType":"uint256","name":"amount","type":"uint256"}],"name":"recoverERC20","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"token","type":"address"},{"internalType":"uint256","name":"tokenId","type":"uint256"}],"name":"recoverERC721","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"recoverEther","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"},{"internalType":"address","name":"callerConfirmation","type":"address"}],"name":"renounceRole","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[],"name":"resume","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes32","name":"role","type":"bytes32"},{"internalType":"address","name":"account","type":"address"}],"name":"revokeRole","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"address","name":"addr","type":"address"}],"name":"setConsensusContract","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"uint256","name":"version","type":"uint256"}],"name":"setConsensusVersion","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes32","name":"reportHash","type":"bytes32"},{"internalType":"uint256","name":"refSlot","type":"uint256"},{"internalType":"uint256","name":"deadline","type":"uint256"}],"name":"submitConsensusReport","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"components":[{"internalType":"uint256","name":"consensusVersion","type":"uint256"},{"internalType":"uint256","name":"refSlot","type":"uint256"},{"internalType":"bytes32","name":"treeRoot","type":"bytes32"},{"internalType":"string","name":"treeCid","type":"string"},{"internalType":"string","name":"logCid","type":"string"},{"internalType":"uint256","name":"distributed","type":"uint256"},{"internalType":"uint256","name":"rebate","type":"uint256"},{"internalType":"bytes32","name":"strikesTreeRoot","type":"bytes32"},{"internalType":"string","name":"strikesTreeCid","type":"string"}],"internalType":"struct ICSFeeOracle.ReportData","name":"data","type":"tuple"},{"internalType":"uint256","name":"contractVersion","type":"uint256"}],"name":"submitReportData","outputs":[],"stateMutability":"nonpayable","type":"function"},{"inputs":[{"internalType":"bytes4","name":"interfaceId","type":"bytes4"}],"name":"supportsInterface","outputs":[{"internalType":"bool","name":"","type":"bool"}],"stateMutability":"view","type":"function"}]Contract Creation Code
61010060405234801562000011575f80fd5b506040516200237d3803806200237d83398101604081905262000034916200010a565b5f197f4dd0f6662ba1d6b081f08b350f5e9a6a7b15cf586926ba66f753594928fa64a6558181815f036200007b57604051636ed243a560e01b815260040160405180910390fd5b60809190915260a0526001600160a01b038416620000ac5760405163658b92ad60e11b815260040160405180910390fd5b6001600160a01b038316620000d457604051636e4fecd560e01b815260040160405180910390fd5b50506001600160a01b0391821660c0521660e0526200014f565b80516001600160a01b038116811462000105575f80fd5b919050565b5f805f80608085870312156200011e575f80fd5b6200012985620000ee565b93506200013960208601620000ee565b6040860151606090960151949790965092505050565b60805160a05160c05160e0516121de6200019f5f395f8181610460015261141501525f81816103f3015261136a01525f81816105b301526116a701525f818161030e015261167d01526121de5ff3fe608060405234801561000f575f80fd5b506004361061023f575f3560e01c80638980f11f11610135578063acf1c948116100b4578063d438121711610079578063d438121714610575578063d547741f14610588578063f01bf8fd1461059b578063f2882461146105ae578063f3f449c7146105d5575f80fd5b8063acf1c948146104f9578063ad5cac4e14610520578063b187bd2614610547578063c469c3071461054f578063ca15c87314610562575f80fd5b80639010d07c116100fa5780639010d07c1461049d57806391d14854146104b05780639cc23c79146104c3578063a217fddf146104ea578063a302ee38146104f1575f80fd5b80638980f11f146104405780638aa10435146104535780638af301421461045b5780638d591474146104825780638f55b57114610495575f80fd5b806336568abe116101c15780635be20425116101865780635be20425146103a95780635c654ad9146103b157806360d64d38146103c45780636910dcce146103ee578063819d4cc61461042d575f80fd5b806336568abe14610338578063389ed2671461034b57806346e1f5761461037257806352d8bfc214610399578063589ff76c146103a1575f80fd5b80632b6cf739116102075780632b6cf739146102bc5780632de03aa1146102cf5780632f2ff15d146102f6578063304b9071146103095780633584d59c14610330575f80fd5b806301ffc9a714610243578063046f7da21461026b578063063f36ad146102755780631794bb3c14610288578063248a9ca31461029b575b5f80fd5b610256610251366004611ced565b6105e8565b60405190151581526020015b60405180910390f35b610273610612565b005b610273610283366004611d14565b610647565b610273610296366004611d58565b61082f565b6102ae6102a9366004611d91565b61087b565b604051908152602001610262565b6102736102ca366004611da8565b61089b565b6102ae7f2fc10cc8ae19568712f7a176fb4978616a610650813c9d05326c34abb62749c781565b610273610304366004611dee565b610902565b6102ae7f000000000000000000000000000000000000000000000000000000000000000081565b6102ae610924565b610273610346366004611dee565b61093f565b6102ae7f139c2898040ef16910dc9f44dc697df79363da767d8bc92f2e310312b816e46d81565b6102ae7f65fa0c17458517c727737e4153dd477fa3e328cf706640b0f68b1a285c5990da81565b610273610972565b6102ae6109ce565b6102ae6109e4565b6102736103bf366004611e18565b6109fa565b6103cc610a6d565b6040805194855260208501939093529183015215156060820152608001610262565b6104157f000000000000000000000000000000000000000000000000000000000000000081565b6040516001600160a01b039091168152602001610262565b61027361043b366004611e18565b610b0b565b61027361044e366004611e18565b610b5a565b6102ae610ba9565b6104157f000000000000000000000000000000000000000000000000000000000000000081565b610273610490366004611d91565b610bd2565b610415610c05565b6104156104ab366004611e32565b610c1b565b6102566104be366004611dee565b610c48565b6102ae7fc31b1e4b732c5173dc51d519dfa432bad95550ecc4b0f9a61c2a558a2a8e434181565b6102ae5f81565b6102ae5f1981565b6102ae7fb3e25b5404b87e5a838579cb5d7481d61ad96ee284d38ec1e97c07ba64e7f6fc81565b6102ae7f04a0afbbd09d5ad397fc858789da4f8edd59f5ca5098d70faa490babee945c3b81565b610256610c7e565b61027361055d366004611e52565b610c9b565b6102ae610570366004611d91565b610ce3565b610273610583366004611d91565b610d0e565b610273610596366004611dee565b610e39565b6102736105a9366004611d91565b610e55565b6102ae7f000000000000000000000000000000000000000000000000000000000000000081565b6102736105e3366004611d91565b610e6f565b5f6001600160e01b03198216635a05180f60e01b148061060c575061060c82610ea2565b92915050565b7f2fc10cc8ae19568712f7a176fb4978616a610650813c9d05326c34abb62749c761063c81610ed6565b610644610ee0565b50565b61064f610f22565b5f610658610f64565b600101546001600160401b03169050808310156106975760405163431d301760e11b815260048101849052602481018290526044015b60405180910390fd5b5f6106ad5f805160206121728339815191525490565b90508084116106d9576040516360a41e4960e01b8152600481018590526024810182905260440161068e565b824211156106fd5760405163537bacdf60e11b81526004810184905260240161068e565b81841415801561070d5750818114155b1561073d5760405182907f800b849c8bf80718cf786c99d1091c079fe2c5e420a3ba7ba9b0ef8179ef2c38905f90a25b8461075b57604051635b18a69f60e11b815260040160405180910390fd5b604080518681526020810185905285917faed7d1a7a1831158dcda1e4214f5862f450bd3eb5721a5f322bf8c9fe1790b0a910160405180910390a25f60405180606001604052808781526020016107b187610f88565b6001600160401b031681526020016107c886610f88565b6001600160401b031690529050806107de610f64565b815181556020820151600190910180546040909301516001600160401b03908116600160401b026fffffffffffffffffffffffffffffffff199094169216919091179190911790555b505050505050565b6001600160a01b03831661085657604051633ef39b8160e01b815260040160405180910390fd5b6108605f84610fc1565b5061086c82825f611003565b610876600261106e565b505050565b5f9081525f80516020612152833981519152602052604090206001015490565b6108a36110a9565b6108ab6110cf565b6108b481611128565b6108ec8260200135835f0135846040516020016108d19190611edb565b6040516020818303038152906040528051906020012061115d565b6108f461124d565b506108fe82611360565b5050565b61090b8261087b565b61091481610ed6565b61091e8383610fc1565b50505050565b5f61093a5f805160206121728339815191525490565b905090565b6001600160a01b03811633146109685760405163334bd91960e11b815260040160405180910390fd5b6108768282611498565b61097a6114d1565b73a74528edc289b1a597faf83fcff7eff871cc01d96352d8bfc26040518163ffffffff1660e01b81526004015f6040518083038186803b1580156109bc575f80fd5b505af415801561091e573d5f803e3d5ffd5b5f61093a5f805160206121928339815191525490565b5f61093a5f805160206121b28339815191525490565b610a026114d1565b604051635c654ad960e01b81526001600160a01b03831660048201526024810182905273a74528edc289b1a597faf83fcff7eff871cc01d990635c654ad9906044015b5f6040518083038186803b158015610a5b575f80fd5b505af4158015610827573d5f803e3d5ffd5b5f805f805f610a7a610f64565b60408051606081018252825481526001909201546001600160401b038082166020850152600160401b909104169082015290505f610ac35f805160206121728339815191525490565b82516020840151604085015192935090918215801590610aef57508385602001516001600160401b0316145b92996001600160401b0392831699509116965090945092505050565b610b136114d1565b6040516340cea66360e11b81526001600160a01b03831660048201526024810182905273a74528edc289b1a597faf83fcff7eff871cc01d99063819d4cc690604401610a45565b610b626114d1565b604051638980f11f60e01b81526001600160a01b03831660048201526024810182905273a74528edc289b1a597faf83fcff7eff871cc01d990638980f11f90604401610a45565b5f61093a7f4dd0f6662ba1d6b081f08b350f5e9a6a7b15cf586926ba66f753594928fa64a65490565b7fc31b1e4b732c5173dc51d519dfa432bad95550ecc4b0f9a61c2a558a2a8e4341610bfc81610ed6565b6108fe826114fa565b5f61093a5f805160206121328339815191525490565b5f8281525f80516020612112833981519152602081905260408220610c409084611598565b949350505050565b5f9182525f80516020612152833981519152602090815260408084206001600160a01b0393909316845291905290205460ff1690565b5f610c945f805160206121928339815191525490565b4210905090565b7f04a0afbbd09d5ad397fc858789da4f8edd59f5ca5098d70faa490babee945c3b610cc581610ed6565b6108fe82610cde5f805160206121728339815191525490565b6115a3565b5f8181525f80516020612112833981519152602081905260408220610d07906117d4565b9392505050565b610d16610f22565b5f610d1f610f64565b60408051606081018252825481526001909201546001600160401b0380821660208501819052600160401b9092041691830191909152909150821015610d9057602081015160405163431d301760e11b8152600481018490526001600160401b03909116602482015260440161068e565b80602001516001600160401b0316821115610da9575050565b5f610dbf5f805160206121728339815191525490565b9050808311610de0576040516252e2c960e41b815260040160405180910390fd5b5f610de9610f64565b5581602001516001600160401b03167fe21266bc27ee721ac10034efaf7fd724656ef471c75b8402cd8f07850af6b676835f0151604051610e2c91815260200190565b60405180910390a2505050565b610e428261087b565b610e4b81610ed6565b61091e8383611498565b610e5e816114fa565b5f80555f600155610644600261106e565b7f139c2898040ef16910dc9f44dc697df79363da767d8bc92f2e310312b816e46d610e9981610ed6565b6108fe826117dd565b5f6001600160e01b03198216637965db0b60e01b148061060c57506301ffc9a760e01b6001600160e01b031983161461060c565b610644813361182c565b610ee8611865565b425f80516020612192833981519152556040517f62451d457bc659158be6e6247f56ec1df424a5c7597f71c20c2bc44e0965c8f9905f90a1565b5f80516020612132833981519152546001600160a01b0316336001600160a01b031614610f625760405163fef4d83160e01b815260040160405180910390fd5b565b7f9d565e483b8608dc09e04eff85533859683d2eeaa6ebc28af53a92d7dba3eea690565b5f6001600160401b03821115610fbd57604080516306dfcc6560e41b815260048101919091526024810183905260440161068e565b5090565b5f5f8051602061211283398151915281610fdb858561188a565b90508015610c40575f858152602083905260409020610ffa908561192b565b50949350505050565b61100d600161193f565b61101783826115a3565b611020826114fa565b6110365f80516020612172833981519152829055565b61103f81610f88565b611047610f64565b600101805467ffffffffffffffff19166001600160401b0392909216919091179055505050565b611076610ba9565b611081906001611fb1565b81146110a05760405163167679d560e01b815260040160405180910390fd5b61064481611985565b6110b1610c7e565b15610f6257604051630286f07360e31b815260040160405180910390fd5b6110d8336119e5565b8061110857506111087f65fa0c17458517c727737e4153dd477fa3e328cf706640b0f68b1a285c5990da33610c48565b1561110f57565b6040516323dada5360e01b815260040160405180910390fd5b5f611131610ba9565b90508082146108fe576040516303abe78360e21b8152600481018290526024810183905260440161068e565b5f611166610f64565b60408051606081018252825481526001909201546001600160401b0380821660208501819052600160401b909204169183019190915290915084146111d657602081015160405163490b8d4560e11b81526001600160401b0390911660048201526024810185905260440161068e565b5f6111ec5f805160206121b28339815191525490565b905080841461121857604051632a37dd3d60e11b8152600481018290526024810185905260440161068e565b8151831461124657815160405163642c75c760e11b815260048101919091526024810184905260440161068e565b5050505050565b5f80611257610f64565b6040805160608101825282548082526001909301546001600160401b038082166020840152600160401b909104169181019190915291506112ab576040516364dfc18f60e01b815260040160405180910390fd5b6112c181604001516001600160401b0316611a68565b5f6112d75f805160206121728339815191525490565b905081602001516001600160401b03168103611305576040516252e2c960e41b815260040160405180910390fd5b6020828101516001600160401b03165f80516020612172833981519152819055835160405190815290917ff73febded7d4502284718948a3e1d75406151c6326bde069424a584a4f6af87a910160405180910390a292915050565b6001600160a01b037f000000000000000000000000000000000000000000000000000000000000000016632ffa14e160408301356113a16060850185611fc4565b6113ae6080870187611fc4565b8760a001358860c0013589602001356040518963ffffffff1660e01b81526004016113e0989796959493929190612006565b5f604051808303815f87803b1580156113f7575f80fd5b505af1158015611409573d5f803e3d5ffd5b50506001600160a01b037f0000000000000000000000000000000000000000000000000000000000000000169150637982e6d4905060e0830135611451610100850185611fc4565b6040518463ffffffff1660e01b815260040161146f93929190612053565b5f604051808303815f87803b158015611486575f80fd5b505af1158015611246573d5f803e3d5ffd5b5f5f80516020612112833981519152816114b28585611a8c565b90508015610c40575f858152602083905260409020610ffa9085611b05565b610f627fb3e25b5404b87e5a838579cb5d7481d61ad96ee284d38ec1e97c07ba64e7f6fc610ed6565b5f6115105f805160206121b28339815191525490565b905080820361153257604051631d7c761b60e21b815260040160405180910390fd5b815f0361155257604051631b3dd42d60e21b815260040160405180910390fd5b6115685f805160206121b2833981519152839055565b604051819083907ffa5304972d4ec3e3207f0bbf91155a49d0dfa62488f9529403a2a49e4b29a895905f90a35050565b5f610d078383611b19565b6001600160a01b0382166115ca576040516303988b8160e61b815260040160405180910390fd5b5f6115e05f805160206121328339815191525490565b9050806001600160a01b0316836001600160a01b031603611614576040516321a55ce160e11b815260040160405180910390fd5b5f80846001600160a01b031663606c0c946040518163ffffffff1660e01b8152600401606060405180830381865afa158015611652573d5f803e3d5ffd5b505050506040513d601f19601f820116820180604052508101906116769190612075565b92509250507f0000000000000000000000000000000000000000000000000000000000000000821415806116ca57507f00000000000000000000000000000000000000000000000000000000000000008114155b156116e857604051635401d0a160e11b815260040160405180910390fd5b5f856001600160a01b0316636095012f6040518163ffffffff1660e01b8152600401602060405180830381865afa158015611725573d5f803e3d5ffd5b505050506040513d601f19601f8201168201806040525081019061174991906120a0565b90508481101561177657604051631e779ad160e11b8152600481018290526024810186905260440161068e565b61178c5f80516020612132833981519152879055565b836001600160a01b0316866001600160a01b03167f25421480fb7f52d18947876279a213696b58d7e0e5416ce5e2c9f9942661c34c60405160405180910390a3505050505050565b5f61060c825490565b6117e56110a9565b805f036118055760405163ad58bfc760e01b815260040160405180910390fd5b5f5f19820361181657505f19611823565b6118208242611fb1565b90505b6108fe81611b3f565b6118368282610c48565b6108fe5760405163e2517d3f60e01b81526001600160a01b03821660048201526024810183905260440161068e565b61186d610c7e565b610f625760405163b047186b60e01b815260040160405180910390fd5b5f5f805160206121528339815191526118a38484610c48565b611922575f848152602082815260408083206001600160a01b03871684529091529020805460ff191660011790556118d83390565b6001600160a01b0316836001600160a01b0316857f2f8788117e7eff1d82e926ec794901d17c78024a50270940304540a733656f0d60405160405180910390a4600191505061060c565b5f91505061060c565b5f610d07836001600160a01b038416611bc7565b805f0361195f576040516301a1f1c760e41b815260040160405180910390fd5b611967610ba9565b156110a05760405163184e52a160e21b815260040160405180910390fd5b6119ae7f4dd0f6662ba1d6b081f08b350f5e9a6a7b15cf586926ba66f753594928fa64a6829055565b6040518181527ffddcded6b4f4730c226821172046b48372d3cd963c159701ae1b7c3bcac541bb906020015b60405180910390a150565b5f806119fc5f805160206121328339815191525490565b604051631951c03760e01b81526001600160a01b03858116600483015291925090821690631951c03790602401602060405180830381865afa158015611a44573d5f803e3d5ffd5b505050506040513d601f19601f82011682018060405250810190610d0791906120b7565b804211156106445760405163537bacdf60e11b81526004810182905260240161068e565b5f5f80516020612152833981519152611aa58484610c48565b15611922575f848152602082815260408083206001600160a01b0387168085529252808320805460ff1916905551339287917ff6391f5c32d9c69d2a47ea670b442974b53935d1edc7fd64eb21e047a839171b9190a4600191505061060c565b5f610d07836001600160a01b038416611c13565b5f825f018281548110611b2e57611b2e6120d6565b905f5260205f200154905092915050565b611b555f80516020612192833981519152829055565b5f198103611b8e576040515f1981527f32fb7c9891bc4f963c7de9f1186d2a7755c7d6e9f4604dabe1d8bb3027c2f49e906020016119da565b7f32fb7c9891bc4f963c7de9f1186d2a7755c7d6e9f4604dabe1d8bb3027c2f49e611bb942836120ea565b6040519081526020016119da565b5f818152600183016020526040812054611c0c57508154600181810184555f84815260208082209093018490558454848252828601909352604090209190915561060c565b505f61060c565b5f8181526001830160205260408120548015611922575f611c356001836120ea565b85549091505f90611c48906001906120ea565b9050808214611ca7575f865f018281548110611c6657611c666120d6565b905f5260205f200154905080875f018481548110611c8657611c866120d6565b5f918252602080832090910192909255918252600188019052604090208390555b8554869080611cb857611cb86120fd565b600190038181905f5260205f20015f90559055856001015f8681526020019081526020015f205f90556001935050505061060c565b5f60208284031215611cfd575f80fd5b81356001600160e01b031981168114610d07575f80fd5b5f805f60608486031215611d26575f80fd5b505081359360208301359350604090920135919050565b80356001600160a01b0381168114611d53575f80fd5b919050565b5f805f60608486031215611d6a575f80fd5b611d7384611d3d565b9250611d8160208501611d3d565b9150604084013590509250925092565b5f60208284031215611da1575f80fd5b5035919050565b5f8060408385031215611db9575f80fd5b82356001600160401b03811115611dce575f80fd5b83016101208186031215611de0575f80fd5b946020939093013593505050565b5f8060408385031215611dff575f80fd5b82359150611e0f60208401611d3d565b90509250929050565b5f8060408385031215611e29575f80fd5b611de083611d3d565b5f8060408385031215611e43575f80fd5b50508035926020909101359150565b5f60208284031215611e62575f80fd5b610d0782611d3d565b5f808335601e19843603018112611e80575f80fd5b83016020810192503590506001600160401b03811115611e9e575f80fd5b803603821315611eac575f80fd5b9250929050565b81835281816020850137505f828201602090810191909152601f909101601f19169091010190565b602081528135602082015260208201356040820152604082013560608201525f611f086060840184611e6b565b610120806080860152611f2061014086018385611eb3565b9250611f2f6080870187611e6b565b9250601f19808786030160a0880152611f49858584611eb3565b945060a088013560c088015260c088013560e0880152610100935060e088013584880152611f7984890189611e6b565b9450915080878603018388015250611f92848483611eb3565b979650505050505050565b634e487b7160e01b5f52601160045260245ffd5b8082018082111561060c5761060c611f9d565b5f808335601e19843603018112611fd9575f80fd5b8301803591506001600160401b03821115611ff2575f80fd5b602001915036819003821315611eac575f80fd5b88815260c060208201525f61201f60c08301898b611eb3565b828103604084015261203281888a611eb3565b60608401969096525050608081019290925260a09091015295945050505050565b838152604060208201525f61206c604083018486611eb3565b95945050505050565b5f805f60608486031215612087575f80fd5b8351925060208401519150604084015190509250925092565b5f602082840312156120b0575f80fd5b5051919050565b5f602082840312156120c7575f80fd5b81518015158114610d07575f80fd5b634e487b7160e01b5f52603260045260245ffd5b8181038181111561060c5761060c611f9d565b634e487b7160e01b5f52603160045260245ffdfec1f6fe24621ce81ec5827caf0253cadb74709b061630e6b55e82371705932000b0e01b719c2c32a677822ce1584cb6a66e576ee3c2c506b9621dbe626355aa6502dd7bc7dec4dceedda775e58dd541e08a116c6c53815c0bd028192f7b626800c9bdcd6eb2e956ecf03d8d27bee4c163f9b5c078aa69020d618e76513b5d0a94e8b012900cb200ee5dfc3b895a32791b67d12891b09f117814f167a237783a022767d6892477f8d2750fb44e817c9aed93d34d3c6be4101ed58bcac692c99e9ca164736f6c6343000818000a000000000000000000000000acd9820b0a2229a82dc1a0770307ce5522ff35820000000000000000000000008fba385c3c334d251ee413e79d4d3890db98693c000000000000000000000000000000000000000000000000000000000000000c0000000000000000000000000000000000000000000000000000000067d81118
Deployed Bytecode
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
Constructor Arguments (ABI-Encoded and is the last bytes of the Contract Creation Code above)
000000000000000000000000acd9820b0a2229a82dc1a0770307ce5522ff35820000000000000000000000008fba385c3c334d251ee413e79d4d3890db98693c000000000000000000000000000000000000000000000000000000000000000c0000000000000000000000000000000000000000000000000000000067d81118
-----Decoded View---------------
Arg [0] : feeDistributor (address): 0xaCd9820b0A2229a82dc1A0770307ce5522FF3582
Arg [1] : strikes (address): 0x8fBA385C3c334D251eE413e79d4D3890db98693c
Arg [2] : secondsPerSlot (uint256): 12
Arg [3] : genesisTime (uint256): 1742213400
-----Encoded View---------------
4 Constructor Arguments found :
Arg [0] : 000000000000000000000000acd9820b0a2229a82dc1a0770307ce5522ff3582
Arg [1] : 0000000000000000000000008fba385c3c334d251ee413e79d4d3890db98693c
Arg [2] : 000000000000000000000000000000000000000000000000000000000000000c
Arg [3] : 0000000000000000000000000000000000000000000000000000000067d81118
Loading...
Loading
0x752fF00fcacdB66Bc512a067F15A5E0B0b50EADB
Loading...
Loading
Loading...
Loading
[ Download: CSV Export ]
A contract address hosts a smart contract, which is a set of code stored on the blockchain that runs when predetermined conditions are met. Learn more about addresses in our Knowledge Base.