Transactions
Internal Transactions
Coin Balance History
Logs
Code
Read Contract
Read Proxy
Write Contract
Write Proxy
- Contract name:
- ERC1967Proxy
- Optimization enabled
- true
- Compiler version
- v0.8.9+commit.e5eed63a
- Optimization runs
- 200
- EVM Version
- default
- Verified at
- 2023-10-20T15:06:29.940431Z
Constructor Arguments
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
Arg [0] (address) : 0x35a58beee77a2ad547fcded7e8cb1c6e19746b13
Arg [1] (bytes) : 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
@openzeppelin/contracts/proxy/ERC1967/ERC1967Proxy.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "../Proxy.sol";
import "./ERC1967Upgrade.sol";
/**
* @dev This contract implements an upgradeable proxy. It is upgradeable because calls are delegated to an
* implementation address that can be changed. This address is stored in storage in the location specified by
* https://eips.ethereum.org/EIPS/eip-1967[EIP1967], so that it doesn't conflict with the storage layout of the
* implementation behind the proxy.
*/
contract ERC1967Proxy is Proxy, ERC1967Upgrade {
/**
* @dev Initializes the upgradeable proxy with an initial implementation specified by `_logic`.
*
* If `_data` is nonempty, it's used as data in a delegate call to `_logic`. This will typically be an encoded
* function call, and allows initializating the storage of the proxy like a Solidity constructor.
*/
constructor(address _logic, bytes memory _data) payable {
assert(_IMPLEMENTATION_SLOT == bytes32(uint256(keccak256("eip1967.proxy.implementation")) - 1));
_upgradeToAndCall(_logic, _data, false);
}
/**
* @dev Returns the current implementation address.
*/
function _implementation() internal view virtual override returns (address impl) {
return ERC1967Upgrade._getImplementation();
}
}
@openzeppelin/contracts-upgradeable/proxy/ERC1967/ERC1967UpgradeUpgradeable.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.2;
import "../beacon/IBeaconUpgradeable.sol";
import "../../utils/AddressUpgradeable.sol";
import "../../utils/StorageSlotUpgradeable.sol";
import "../utils/Initializable.sol";
/**
* @dev This abstract contract provides getters and event emitting update functions for
* https://eips.ethereum.org/EIPS/eip-1967[EIP1967] slots.
*
* _Available since v4.1._
*
* @custom:oz-upgrades-unsafe-allow delegatecall
*/
abstract contract ERC1967UpgradeUpgradeable is Initializable {
function __ERC1967Upgrade_init() internal initializer {
__ERC1967Upgrade_init_unchained();
}
function __ERC1967Upgrade_init_unchained() internal initializer {
}
// This is the keccak-256 hash of "eip1967.proxy.rollback" subtracted by 1
bytes32 private constant _ROLLBACK_SLOT = 0x4910fdfa16fed3260ed0e7147f7cc6da11a60208b5b9406d12a635614ffd9143;
/**
* @dev Storage slot with the address of the current implementation.
* This is the keccak-256 hash of "eip1967.proxy.implementation" subtracted by 1, and is
* validated in the constructor.
*/
bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
/**
* @dev Emitted when the implementation is upgraded.
*/
event Upgraded(address indexed implementation);
/**
* @dev Returns the current implementation address.
*/
function _getImplementation() internal view returns (address) {
return StorageSlotUpgradeable.getAddressSlot(_IMPLEMENTATION_SLOT).value;
}
/**
* @dev Stores a new address in the EIP1967 implementation slot.
*/
function _setImplementation(address newImplementation) private {
require(AddressUpgradeable.isContract(newImplementation), "ERC1967: new implementation is not a contract");
StorageSlotUpgradeable.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
}
/**
* @dev Perform implementation upgrade
*
* Emits an {Upgraded} event.
*/
function _upgradeTo(address newImplementation) internal {
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
}
/**
* @dev Perform implementation upgrade with additional setup call.
*
* Emits an {Upgraded} event.
*/
function _upgradeToAndCall(address newImplementation, bytes memory data, bool forceCall) internal {
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
if (data.length > 0 || forceCall) {
_functionDelegateCall(newImplementation, data);
}
}
/**
* @dev Perform implementation upgrade with security checks for UUPS proxies, and additional setup call.
*
* Emits an {Upgraded} event.
*/
function _upgradeToAndCallSecure(address newImplementation, bytes memory data, bool forceCall) internal {
address oldImplementation = _getImplementation();
// Initial upgrade and setup call
_setImplementation(newImplementation);
if (data.length > 0 || forceCall) {
_functionDelegateCall(newImplementation, data);
}
// Perform rollback test if not already in progress
StorageSlotUpgradeable.BooleanSlot storage rollbackTesting = StorageSlotUpgradeable.getBooleanSlot(_ROLLBACK_SLOT);
if (!rollbackTesting.value) {
// Trigger rollback using upgradeTo from the new implementation
rollbackTesting.value = true;
_functionDelegateCall(
newImplementation,
abi.encodeWithSignature(
"upgradeTo(address)",
oldImplementation
)
);
rollbackTesting.value = false;
// Check rollback was effective
require(oldImplementation == _getImplementation(), "ERC1967Upgrade: upgrade breaks further upgrades");
// Finally reset to the new implementation and log the upgrade
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
}
}
/**
* @dev Perform beacon upgrade with additional setup call. Note: This upgrades the address of the beacon, it does
* not upgrade the implementation contained in the beacon (see {UpgradeableBeacon-_setImplementation} for that).
*
* Emits a {BeaconUpgraded} event.
*/
function _upgradeBeaconToAndCall(address newBeacon, bytes memory data, bool forceCall) internal {
_setBeacon(newBeacon);
emit BeaconUpgraded(newBeacon);
if (data.length > 0 || forceCall) {
_functionDelegateCall(IBeaconUpgradeable(newBeacon).implementation(), data);
}
}
/**
* @dev Storage slot with the admin of the contract.
* This is the keccak-256 hash of "eip1967.proxy.admin" subtracted by 1, and is
* validated in the constructor.
*/
bytes32 internal constant _ADMIN_SLOT = 0xb53127684a568b3173ae13b9f8a6016e243e63b6e8ee1178d6a717850b5d6103;
/**
* @dev Emitted when the admin account has changed.
*/
event AdminChanged(address previousAdmin, address newAdmin);
/**
* @dev Returns the current admin.
*/
function _getAdmin() internal view returns (address) {
return StorageSlotUpgradeable.getAddressSlot(_ADMIN_SLOT).value;
}
/**
* @dev Stores a new address in the EIP1967 admin slot.
*/
function _setAdmin(address newAdmin) private {
require(newAdmin != address(0), "ERC1967: new admin is the zero address");
StorageSlotUpgradeable.getAddressSlot(_ADMIN_SLOT).value = newAdmin;
}
/**
* @dev Changes the admin of the proxy.
*
* Emits an {AdminChanged} event.
*/
function _changeAdmin(address newAdmin) internal {
emit AdminChanged(_getAdmin(), newAdmin);
_setAdmin(newAdmin);
}
/**
* @dev The storage slot of the UpgradeableBeacon contract which defines the implementation for this proxy.
* This is bytes32(uint256(keccak256('eip1967.proxy.beacon')) - 1)) and is validated in the constructor.
*/
bytes32 internal constant _BEACON_SLOT = 0xa3f0ad74e5423aebfd80d3ef4346578335a9a72aeaee59ff6cb3582b35133d50;
/**
* @dev Emitted when the beacon is upgraded.
*/
event BeaconUpgraded(address indexed beacon);
/**
* @dev Returns the current beacon.
*/
function _getBeacon() internal view returns (address) {
return StorageSlotUpgradeable.getAddressSlot(_BEACON_SLOT).value;
}
/**
* @dev Stores a new beacon in the EIP1967 beacon slot.
*/
function _setBeacon(address newBeacon) private {
require(
AddressUpgradeable.isContract(newBeacon),
"ERC1967: new beacon is not a contract"
);
require(
AddressUpgradeable.isContract(IBeaconUpgradeable(newBeacon).implementation()),
"ERC1967: beacon implementation is not a contract"
);
StorageSlotUpgradeable.getAddressSlot(_BEACON_SLOT).value = newBeacon;
}
/*
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function _functionDelegateCall(address target, bytes memory data) private returns (bytes memory) {
require(AddressUpgradeable.isContract(target), "Address: delegate call to non-contract");
// solhint-disable-next-line avoid-low-level-calls
(bool success, bytes memory returndata) = target.delegatecall(data);
return _verifyCallResult(success, returndata, "Address: low-level delegate call failed");
}
function _verifyCallResult(bool success, bytes memory returndata, string memory errorMessage) private pure returns(bytes memory) {
if (success) {
return returndata;
} else {
// Look for revert reason and bubble it up if present
if (returndata.length > 0) {
// The easiest way to bubble the revert reason is using memory via assembly
// solhint-disable-next-line no-inline-assembly
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}
uint256[50] private __gap;
}
@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "../ERC1967/ERC1967UpgradeUpgradeable.sol";
import "./Initializable.sol";
/**
* @dev Base contract for building openzeppelin-upgrades compatible implementations for the {ERC1967Proxy}. It includes
* publicly available upgrade functions that are called by the plugin and by the secure upgrade mechanism to verify
* continuation of the upgradability.
*
* The {_authorizeUpgrade} function MUST be overridden to include access restriction to the upgrade mechanism.
*
* _Available since v4.1._
*/
abstract contract UUPSUpgradeable is Initializable, ERC1967UpgradeUpgradeable {
function __UUPSUpgradeable_init() internal initializer {
__ERC1967Upgrade_init_unchained();
__UUPSUpgradeable_init_unchained();
}
function __UUPSUpgradeable_init_unchained() internal initializer {
}
function upgradeTo(address newImplementation) external virtual {
_authorizeUpgrade(newImplementation);
_upgradeToAndCallSecure(newImplementation, bytes(""), false);
}
function upgradeToAndCall(address newImplementation, bytes memory data) external payable virtual {
_authorizeUpgrade(newImplementation);
_upgradeToAndCallSecure(newImplementation, data, true);
}
function _authorizeUpgrade(address newImplementation) internal virtual;
uint256[50] private __gap;
}
@openzeppelin/contracts/utils/Context.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/*
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/
abstract contract Context {
function _msgSender() internal view virtual returns (address) {
return msg.sender;
}
function _msgData() internal view virtual returns (bytes calldata) {
this; // silence state mutability warning without generating bytecode - see https://github.com/ethereum/solidity/issues/2691
return msg.data;
}
}
contracts/test/ignore-errors/UnsafeContractWithLibraryUsingFor.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./RiskyLibrary.sol";
contract UnsafeContractWithLibraryUsingFor {
using RiskyLibrary for address;
function unsafe(address target, bytes memory data) public {
target.internalDelegateCall(data);
}
}
@openzeppelin/contracts/proxy/Proxy.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @dev This abstract contract provides a fallback function that delegates all calls to another contract using the EVM
* instruction `delegatecall`. We refer to the second contract as the _implementation_ behind the proxy, and it has to
* be specified by overriding the virtual {_implementation} function.
*
* Additionally, delegation to the implementation can be triggered manually through the {_fallback} function, or to a
* different contract through the {_delegate} function.
*
* The success and return data of the delegated call will be returned back to the caller of the proxy.
*/
abstract contract Proxy {
/**
* @dev Delegates the current call to `implementation`.
*
* This function does not return to its internall call site, it will return directly to the external caller.
*/
function _delegate(address implementation) internal virtual {
// solhint-disable-next-line no-inline-assembly
assembly {
// Copy msg.data. We take full control of memory in this inline assembly
// block because it will not return to Solidity code. We overwrite the
// Solidity scratch pad at memory position 0.
calldatacopy(0, 0, calldatasize())
// Call the implementation.
// out and outsize are 0 because we don't know the size yet.
let result := delegatecall(gas(), implementation, 0, calldatasize(), 0, 0)
// Copy the returned data.
returndatacopy(0, 0, returndatasize())
switch result
// delegatecall returns 0 on error.
case 0 { revert(0, returndatasize()) }
default { return(0, returndatasize()) }
}
}
/**
* @dev This is a virtual function that should be overriden so it returns the address to which the fallback function
* and {_fallback} should delegate.
*/
function _implementation() internal view virtual returns (address);
/**
* @dev Delegates the current call to the address returned by `_implementation()`.
*
* This function does not return to its internall call site, it will return directly to the external caller.
*/
function _fallback() internal virtual {
_beforeFallback();
_delegate(_implementation());
}
/**
* @dev Fallback function that delegates calls to the address returned by `_implementation()`. Will run if no other
* function in the contract matches the call data.
*/
fallback () external payable virtual {
_fallback();
}
/**
* @dev Fallback function that delegates calls to the address returned by `_implementation()`. Will run if call data
* is empty.
*/
receive () external payable virtual {
_fallback();
}
/**
* @dev Hook that is called before falling back to the implementation. Can happen as part of a manual `_fallback`
* call, or as part of the Solidity `fallback` or `receive` functions.
*
* If overriden should call `super._beforeFallback()`.
*/
function _beforeFallback() internal virtual {
}
}
contracts/test/ignore-errors/SafeContractWithLibraryImport.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./RiskyLibrary.sol";
contract SafeContractWithLibraryImport {
}
contracts/test/ignore-errors/UnsafeContractWithTransitiveLibraryCall.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./TransitiveRiskyLibrary.sol";
contract UnsafeContractWithTransitiveLibraryCall {
function unsafe(address target, bytes memory data) public {
TransitiveRiskyLibrary.internalDelegateCall(target, data);
}
}
@openzeppelin/contracts/proxy/beacon/BeaconProxy.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "./IBeacon.sol";
import "../Proxy.sol";
import "../ERC1967/ERC1967Upgrade.sol";
/**
* @dev This contract implements a proxy that gets the implementation address for each call from a {UpgradeableBeacon}.
*
* The beacon address is stored in storage slot `uint256(keccak256('eip1967.proxy.beacon')) - 1`, so that it doesn't
* conflict with the storage layout of the implementation behind the proxy.
*
* _Available since v3.4._
*/
contract BeaconProxy is Proxy, ERC1967Upgrade {
/**
* @dev Initializes the proxy with `beacon`.
*
* If `data` is nonempty, it's used as data in a delegate call to the implementation returned by the beacon. This
* will typically be an encoded function call, and allows initializating the storage of the proxy like a Solidity
* constructor.
*
* Requirements:
*
* - `beacon` must be a contract with the interface {IBeacon}.
*/
constructor(address beacon, bytes memory data) payable {
assert(_BEACON_SLOT == bytes32(uint256(keccak256("eip1967.proxy.beacon")) - 1));
_upgradeBeaconToAndCall(beacon, data, false);
}
/**
* @dev Returns the current beacon address.
*/
function _beacon() internal view virtual returns (address) {
return _getBeacon();
}
/**
* @dev Returns the current implementation address of the associated beacon.
*/
function _implementation() internal view virtual override returns (address) {
return IBeacon(_getBeacon()).implementation();
}
/**
* @dev Changes the proxy to use a new beacon. Deprecated: see {_upgradeBeaconToAndCall}.
*
* If `data` is nonempty, it's used as data in a delegate call to the implementation returned by the beacon.
*
* Requirements:
*
* - `beacon` must be a contract.
* - The implementation returned by `beacon` must be a contract.
*/
function _setBeacon(address beacon, bytes memory data) internal virtual {
_upgradeBeaconToAndCall(beacon, data, false);
}
}
@openzeppelin/contracts-upgradeable/utils/AddressUpgradeable.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @dev Collection of functions related to the address type
*/
library AddressUpgradeable {
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]
* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* - an externally-owned account
* - a contract in construction
* - an address where a contract will be created
* - an address where a contract lived, but was destroyed
* ====
*/
function isContract(address account) internal view returns (bool) {
// This method relies on extcodesize, which returns 0 for contracts in
// construction, since the code is only stored at the end of the
// constructor execution.
uint256 size;
// solhint-disable-next-line no-inline-assembly
assembly { size := extcodesize(account) }
return size > 0;
}
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://diligence.consensys.net/posts/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.5.11/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/
function sendValue(address payable recipient, uint256 amount) internal {
require(address(this).balance >= amount, "Address: insufficient balance");
// solhint-disable-next-line avoid-low-level-calls, avoid-call-value
(bool success, ) = recipient.call{ value: amount }("");
require(success, "Address: unable to send value, recipient may have reverted");
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain`call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCall(target, data, "Address: low-level call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data, string memory errorMessage) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/
function functionCallWithValue(address target, bytes memory data, uint256 value) internal returns (bytes memory) {
return functionCallWithValue(target, data, value, "Address: low-level call with value failed");
}
/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCallWithValue(address target, bytes memory data, uint256 value, string memory errorMessage) internal returns (bytes memory) {
require(address(this).balance >= value, "Address: insufficient balance for call");
require(isContract(target), "Address: call to non-contract");
// solhint-disable-next-line avoid-low-level-calls
(bool success, bytes memory returndata) = target.call{ value: value }(data);
return _verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
return functionStaticCall(target, data, "Address: low-level static call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data, string memory errorMessage) internal view returns (bytes memory) {
require(isContract(target), "Address: static call to non-contract");
// solhint-disable-next-line avoid-low-level-calls
(bool success, bytes memory returndata) = target.staticcall(data);
return _verifyCallResult(success, returndata, errorMessage);
}
function _verifyCallResult(bool success, bytes memory returndata, string memory errorMessage) private pure returns(bytes memory) {
if (success) {
return returndata;
} else {
// Look for revert reason and bubble it up if present
if (returndata.length > 0) {
// The easiest way to bubble the revert reason is using memory via assembly
// solhint-disable-next-line no-inline-assembly
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}
}
@openzeppelin/contracts/proxy/transparent/TransparentUpgradeableProxy.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "../ERC1967/ERC1967Proxy.sol";
/**
* @dev This contract implements a proxy that is upgradeable by an admin.
*
* To avoid https://medium.com/nomic-labs-blog/malicious-backdoors-in-ethereum-proxies-62629adf3357[proxy selector
* clashing], which can potentially be used in an attack, this contract uses the
* https://blog.openzeppelin.com/the-transparent-proxy-pattern/[transparent proxy pattern]. This pattern implies two
* things that go hand in hand:
*
* 1. If any account other than the admin calls the proxy, the call will be forwarded to the implementation, even if
* that call matches one of the admin functions exposed by the proxy itself.
* 2. If the admin calls the proxy, it can access the admin functions, but its calls will never be forwarded to the
* implementation. If the admin tries to call a function on the implementation it will fail with an error that says
* "admin cannot fallback to proxy target".
*
* These properties mean that the admin account can only be used for admin actions like upgrading the proxy or changing
* the admin, so it's best if it's a dedicated account that is not used for anything else. This will avoid headaches due
* to sudden errors when trying to call a function from the proxy implementation.
*
* Our recommendation is for the dedicated account to be an instance of the {ProxyAdmin} contract. If set up this way,
* you should think of the `ProxyAdmin` instance as the real administrative interface of your proxy.
*/
contract TransparentUpgradeableProxy is ERC1967Proxy {
/**
* @dev Initializes an upgradeable proxy managed by `_admin`, backed by the implementation at `_logic`, and
* optionally initialized with `_data` as explained in {ERC1967Proxy-constructor}.
*/
constructor(address _logic, address admin_, bytes memory _data) payable ERC1967Proxy(_logic, _data) {
assert(_ADMIN_SLOT == bytes32(uint256(keccak256("eip1967.proxy.admin")) - 1));
_changeAdmin(admin_);
}
/**
* @dev Modifier used internally that will delegate the call to the implementation unless the sender is the admin.
*/
modifier ifAdmin() {
if (msg.sender == _getAdmin()) {
_;
} else {
_fallback();
}
}
/**
* @dev Returns the current admin.
*
* NOTE: Only the admin can call this function. See {ProxyAdmin-getProxyAdmin}.
*
* TIP: To get this value clients can read directly from the storage slot shown below (specified by EIP1967) using the
* https://eth.wiki/json-rpc/API#eth_getstorageat[`eth_getStorageAt`] RPC call.
* `0xb53127684a568b3173ae13b9f8a6016e243e63b6e8ee1178d6a717850b5d6103`
*/
function admin() external ifAdmin returns (address admin_) {
admin_ = _getAdmin();
}
/**
* @dev Returns the current implementation.
*
* NOTE: Only the admin can call this function. See {ProxyAdmin-getProxyImplementation}.
*
* TIP: To get this value clients can read directly from the storage slot shown below (specified by EIP1967) using the
* https://eth.wiki/json-rpc/API#eth_getstorageat[`eth_getStorageAt`] RPC call.
* `0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc`
*/
function implementation() external ifAdmin returns (address implementation_) {
implementation_ = _implementation();
}
/**
* @dev Changes the admin of the proxy.
*
* Emits an {AdminChanged} event.
*
* NOTE: Only the admin can call this function. See {ProxyAdmin-changeProxyAdmin}.
*/
function changeAdmin(address newAdmin) external virtual ifAdmin {
_changeAdmin(newAdmin);
}
/**
* @dev Upgrade the implementation of the proxy.
*
* NOTE: Only the admin can call this function. See {ProxyAdmin-upgrade}.
*/
function upgradeTo(address newImplementation) external ifAdmin {
_upgradeToAndCall(newImplementation, bytes(""), false);
}
/**
* @dev Upgrade the implementation of the proxy, and then call a function from the new implementation as specified
* by `data`, which should be an encoded function call. This is useful to initialize new storage variables in the
* proxied contract.
*
* NOTE: Only the admin can call this function. See {ProxyAdmin-upgradeAndCall}.
*/
function upgradeToAndCall(address newImplementation, bytes calldata data) external payable ifAdmin {
_upgradeToAndCall(newImplementation, data, true);
}
/**
* @dev Returns the current admin.
*/
function _admin() internal view virtual returns (address) {
return _getAdmin();
}
/**
* @dev Makes sure the admin cannot access the fallback function. See {Proxy-_beforeFallback}.
*/
function _beforeFallback() internal virtual override {
require(msg.sender != _getAdmin(), "TransparentUpgradeableProxy: admin cannot fallback to proxy target");
super._beforeFallback();
}
}
contracts/import.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "@openzeppelin/contracts/proxy/beacon/BeaconProxy.sol";
import "@openzeppelin/contracts/proxy/beacon/UpgradeableBeacon.sol";
import "@openzeppelin/contracts/proxy/ERC1967/ERC1967Proxy.sol";
import "@openzeppelin/contracts/proxy/transparent/TransparentUpgradeableProxy.sol";
import "@openzeppelin/contracts/proxy/transparent/ProxyAdmin.sol";
// Kept for backwards compatibility with older versions of Hardhat and Truffle plugins.
contract AdminUpgradeabilityProxy is TransparentUpgradeableProxy {
constructor(address logic, address admin, bytes memory data) payable TransparentUpgradeableProxy(logic, admin, data) {}
}
contracts/test/ignore-errors/SafeRecursion.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./RiskyParentContract.sol";
contract SafeRecursion is RiskyParentContract {
function safe(uint256 i) public view returns (bool) {
if (++i == 10) {
return isContract(address(this));
} else {
return safe(i);
}
}
}
contracts/test/ignore-errors/UnsafeParentContract.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
contract UnsafeParentContract {
function isContract(address account) internal view returns (bool) {
return account.code.length > 0;
}
function internalDelegateCall(
address target,
bytes memory data
) internal returns (bytes memory) {
(, bytes memory returndata) = target.delegatecall(data);
return returndata;
}
function privateDelegateCall(
address target,
bytes memory data
) private returns (bytes memory) {
(, bytes memory returndata) = target.delegatecall(data);
return returndata;
}
// unsafe!
function publicDelegateCall(
address target,
bytes memory data
) public returns (bytes memory) {
(, bytes memory returndata) = target.delegatecall(data);
return returndata;
}
// unsafe!
function externalDelegateCall(
address target,
bytes memory data
) external returns (bytes memory) {
(, bytes memory returndata) = target.delegatecall(data);
return returndata;
}
}
contracts/test/StorageRenamedRetyped.sol
// SPDX-License-Identifier: MIT
pragma solidity 0.8.9;
contract StorageRenamedRetyped {
/// @custom:oz-renamed-from b
uint a;
/// @custom:oz-retyped-from bool
uint8 b;
/// @custom:oz-renamed-from b
/// @custom:oz-retyped-from bool
uint8 c;
/// @custom:oz-retyped-from bool
/// @custom:oz-renamed-from b
uint8 d;
}
contracts/test/ignore-errors/UnsafeContractWithFreeFunctionCall.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./RiskyFreeFunctions.sol" as RiskyFreeFunctions;
contract UnsafeContractWithFreeFunctionCall {
function unsafe(address target, bytes memory data) public {
RiskyFreeFunctions.freeDelegateCall(target, data);
}
}
contracts/test/ignore-errors/TransitiveAllowReachable.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./RiskyLibrary.sol";
/**
* allow delegatecalls on all of this contract's functions and reachable code
*
* @custom:oz-upgrades-unsafe-allow-reachable delegatecall
*/
contract TransitiveAllowReachable {
function internalDelegateCall(
bytes memory data
) external returns (bytes memory) {
return RiskyLibrary.internalDelegateCall(address(this), data);
}
}
contracts/test/RenamedRetyped.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.2;
contract RenameV1 {
uint x;
}
contract RenameV2 {
/// @custom:oz-renamed-from x
uint y;
}
contract RetypeV1 {
bool x;
}
contract RetypeV2 {
/// @dev a retyped variable
/// @custom:oz-retyped-from bool
uint8 x;
}
contract WronglyReportedRetypeV3 {
/// @custom:oz-retyped-from address
uint8 x;
}
contract MissmatchingTypeRetypeV4 {
/// @custom:oz-retyped-from bool
bytes32 x;
}
contract ConfusingRetypeV1 {
address y;
bool x;
}
contract ConfusingRetypeV2 {
address y;
/// @custom:oz-retyped-from address
uint8 x;
}
contract NonHardcodedRetypeV1 {
address a;
}
contract NonHardcodedRetypeV2 {
/// @custom:oz-retyped-from address
bytes20 a;
}
contract LayoutChangeV1 {
bool a;
bool b;
}
contract LayoutChangeV2 {
/// @custom:oz-retyped-from bool
uint16 a;
/// @custom:oz-retyped-from bool
uint8 b;
}
@openzeppelin/contracts-upgradeable/proxy/beacon/IBeaconUpgradeable.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @dev This is the interface that {BeaconProxy} expects of its beacon.
*/
interface IBeaconUpgradeable {
/**
* @dev Must return an address that can be used as a delegate call target.
*
* {BeaconProxy} will check that this address is a contract.
*/
function implementation() external view returns (address);
}
contracts/test/ignore-errors/AllowChildInheritedTransitive.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./TransitiveAllowReachable.sol";
contract AllowChildInheritedTransitive is TransitiveAllowReachable {
}
contracts/test/ignore-errors/AllowParent.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
/**
* allow causes the delegatecall to be ignored for all functions in this contract
*
* @custom:oz-upgrades-unsafe-allow delegatecall
*/
contract AllowParent {
function internalDelegateCall(
bytes memory data
) internal returns (bytes memory) {
(, bytes memory returndata) = address(this).delegatecall(data);
return returndata;
}
}
contracts/test/ignore-errors/SafeContractWithParentCall.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./RiskyParentContract.sol";
contract SafeContractWithParentCall is RiskyParentContract {
function safe() public view returns (bool) {
return isContract(address(this));
}
}
@openzeppelin/contracts-upgradeable/utils/StorageSlotUpgradeable.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @dev Library for reading and writing primitive types to specific storage slots.
*
* Storage slots are often used to avoid storage conflict when dealing with upgradeable contracts.
* This library helps with reading and writing to such slots without the need for inline assembly.
*
* The functions in this library return Slot structs that contain a `value` member that can be used to read or write.
*
* Example usage to set ERC1967 implementation slot:
* ```
* contract ERC1967 {
* bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
*
* function _getImplementation() internal view returns (address) {
* return StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value;
* }
*
* function _setImplementation(address newImplementation) internal {
* require(Address.isContract(newImplementation), "ERC1967: new implementation is not a contract");
* StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
* }
* }
* ```
*
* _Available since v4.1 for `address`, `bool`, `bytes32`, and `uint256`._
*/
library StorageSlotUpgradeable {
struct AddressSlot {
address value;
}
struct BooleanSlot {
bool value;
}
struct Bytes32Slot {
bytes32 value;
}
struct Uint256Slot {
uint256 value;
}
/**
* @dev Returns an `AddressSlot` with member `value` located at `slot`.
*/
function getAddressSlot(bytes32 slot) internal pure returns (AddressSlot storage r) {
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `BooleanSlot` with member `value` located at `slot`.
*/
function getBooleanSlot(bytes32 slot) internal pure returns (BooleanSlot storage r) {
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Bytes32Slot` with member `value` located at `slot`.
*/
function getBytes32Slot(bytes32 slot) internal pure returns (Bytes32Slot storage r) {
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Uint256Slot` with member `value` located at `slot`.
*/
function getUint256Slot(bytes32 slot) internal pure returns (Uint256Slot storage r) {
assembly {
r.slot := slot
}
}
}
contracts/test/ignore-errors/UnsafeAllowParent.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./TransitiveUnsafeParent.sol";
/**
* allow has no effect because the delegatecall is in a parent function
*
* @custom:oz-upgrades-unsafe-allow delegatecall
*/
contract UnsafeAllowParent is TransitiveUnsafeParent {
}
contracts/test/ignore-errors/AllowReachableParent.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./TransitiveUnsafeParent.sol";
/**
* allow-reachable causes the delegatecall in a parent function to be ignored
*
* this is actually unsafe but only allowed here for testing purposes!
*
* @custom:oz-upgrades-unsafe-allow-reachable delegatecall
*/
contract AllowReachableParent is TransitiveUnsafeParent {
}
@openzeppelin/contracts-upgradeable/proxy/utils/Initializable.sol
// SPDX-License-Identifier: MIT
// solhint-disable-next-line compiler-version
pragma solidity ^0.8.0;
/**
* @dev This is a base contract to aid in writing upgradeable contracts, or any kind of contract that will be deployed
* behind a proxy. Since a proxied contract can't have a constructor, it's common to move constructor logic to an
* external initializer function, usually called `initialize`. It then becomes necessary to protect this initializer
* function so it can only be called once. The {initializer} modifier provided by this contract will have this effect.
*
* TIP: To avoid leaving the proxy in an uninitialized state, the initializer function should be called as early as
* possible by providing the encoded function call as the `_data` argument to {ERC1967Proxy-constructor}.
*
* CAUTION: When used with inheritance, manual care must be taken to not invoke a parent initializer twice, or to ensure
* that all initializers are idempotent. This is not verified automatically as constructors are by Solidity.
*/
abstract contract Initializable {
/**
* @dev Indicates that the contract has been initialized.
*/
bool private _initialized;
/**
* @dev Indicates that the contract is in the process of being initialized.
*/
bool private _initializing;
/**
* @dev Modifier to protect an initializer function from being invoked twice.
*/
modifier initializer() {
require(_initializing || !_initialized, "Initializable: contract is already initialized");
bool isTopLevelCall = !_initializing;
if (isTopLevelCall) {
_initializing = true;
_initialized = true;
}
_;
if (isTopLevelCall) {
_initializing = false;
}
}
}
contracts/test/ignore-errors/TransitiveRiskyLibrary.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./RiskyLibrary.sol";
library TransitiveRiskyLibrary {
function isContract(address account) internal view returns (bool) {
return RiskyLibrary.isContract(account);
}
function internalDelegateCall(
address target,
bytes memory data
) internal returns (bytes memory) {
return RiskyLibrary.internalDelegateCall(target, data);
}
}
contracts/test/ignore-errors/UnsafeAllow.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./TransitiveRiskyLibrary.sol";
// allow has no effect because the delegatecall is in a transitive function
contract UnsafeAllow {
/// @custom:oz-upgrades-unsafe-allow delegatecall
function unsafe(address target, bytes memory data) public {
TransitiveRiskyLibrary.internalDelegateCall(target, data);
}
}
@openzeppelin/contracts/proxy/transparent/ProxyAdmin.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "./TransparentUpgradeableProxy.sol";
import "../../access/Ownable.sol";
/**
* @dev This is an auxiliary contract meant to be assigned as the admin of a {TransparentUpgradeableProxy}. For an
* explanation of why you would want to use this see the documentation for {TransparentUpgradeableProxy}.
*/
contract ProxyAdmin is Ownable {
/**
* @dev Returns the current implementation of `proxy`.
*
* Requirements:
*
* - This contract must be the admin of `proxy`.
*/
function getProxyImplementation(TransparentUpgradeableProxy proxy) public view virtual returns (address) {
// We need to manually run the static call since the getter cannot be flagged as view
// bytes4(keccak256("implementation()")) == 0x5c60da1b
(bool success, bytes memory returndata) = address(proxy).staticcall(hex"5c60da1b");
require(success);
return abi.decode(returndata, (address));
}
/**
* @dev Returns the current admin of `proxy`.
*
* Requirements:
*
* - This contract must be the admin of `proxy`.
*/
function getProxyAdmin(TransparentUpgradeableProxy proxy) public view virtual returns (address) {
// We need to manually run the static call since the getter cannot be flagged as view
// bytes4(keccak256("admin()")) == 0xf851a440
(bool success, bytes memory returndata) = address(proxy).staticcall(hex"f851a440");
require(success);
return abi.decode(returndata, (address));
}
/**
* @dev Changes the admin of `proxy` to `newAdmin`.
*
* Requirements:
*
* - This contract must be the current admin of `proxy`.
*/
function changeProxyAdmin(TransparentUpgradeableProxy proxy, address newAdmin) public virtual onlyOwner {
proxy.changeAdmin(newAdmin);
}
/**
* @dev Upgrades `proxy` to `implementation`. See {TransparentUpgradeableProxy-upgradeTo}.
*
* Requirements:
*
* - This contract must be the admin of `proxy`.
*/
function upgrade(TransparentUpgradeableProxy proxy, address implementation) public virtual onlyOwner {
proxy.upgradeTo(implementation);
}
/**
* @dev Upgrades `proxy` to `implementation` and calls a function on the new implementation. See
* {TransparentUpgradeableProxy-upgradeToAndCall}.
*
* Requirements:
*
* - This contract must be the admin of `proxy`.
*/
function upgradeAndCall(TransparentUpgradeableProxy proxy, address implementation, bytes memory data) public payable virtual onlyOwner {
proxy.upgradeToAndCall{value: msg.value}(implementation, data);
}
}
contracts/test/ignore-errors/UnsafeContractWithParentCall.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./RiskyParentContract.sol";
contract UnsafeContractWithParentCall is RiskyParentContract {
function unsafe(address target, bytes memory data) public {
internalDelegateCall(target, data);
}
}
@openzeppelin/contracts/proxy/ERC1967/ERC1967Upgrade.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.2;
import "../beacon/IBeacon.sol";
import "../../utils/Address.sol";
import "../../utils/StorageSlot.sol";
/**
* @dev This abstract contract provides getters and event emitting update functions for
* https://eips.ethereum.org/EIPS/eip-1967[EIP1967] slots.
*
* _Available since v4.1._
*
* @custom:oz-upgrades-unsafe-allow delegatecall
*/
abstract contract ERC1967Upgrade {
// This is the keccak-256 hash of "eip1967.proxy.rollback" subtracted by 1
bytes32 private constant _ROLLBACK_SLOT = 0x4910fdfa16fed3260ed0e7147f7cc6da11a60208b5b9406d12a635614ffd9143;
/**
* @dev Storage slot with the address of the current implementation.
* This is the keccak-256 hash of "eip1967.proxy.implementation" subtracted by 1, and is
* validated in the constructor.
*/
bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
/**
* @dev Emitted when the implementation is upgraded.
*/
event Upgraded(address indexed implementation);
/**
* @dev Returns the current implementation address.
*/
function _getImplementation() internal view returns (address) {
return StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value;
}
/**
* @dev Stores a new address in the EIP1967 implementation slot.
*/
function _setImplementation(address newImplementation) private {
require(Address.isContract(newImplementation), "ERC1967: new implementation is not a contract");
StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
}
/**
* @dev Perform implementation upgrade
*
* Emits an {Upgraded} event.
*/
function _upgradeTo(address newImplementation) internal {
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
}
/**
* @dev Perform implementation upgrade with additional setup call.
*
* Emits an {Upgraded} event.
*/
function _upgradeToAndCall(address newImplementation, bytes memory data, bool forceCall) internal {
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
if (data.length > 0 || forceCall) {
Address.functionDelegateCall(newImplementation, data);
}
}
/**
* @dev Perform implementation upgrade with security checks for UUPS proxies, and additional setup call.
*
* Emits an {Upgraded} event.
*/
function _upgradeToAndCallSecure(address newImplementation, bytes memory data, bool forceCall) internal {
address oldImplementation = _getImplementation();
// Initial upgrade and setup call
_setImplementation(newImplementation);
if (data.length > 0 || forceCall) {
Address.functionDelegateCall(newImplementation, data);
}
// Perform rollback test if not already in progress
StorageSlot.BooleanSlot storage rollbackTesting = StorageSlot.getBooleanSlot(_ROLLBACK_SLOT);
if (!rollbackTesting.value) {
// Trigger rollback using upgradeTo from the new implementation
rollbackTesting.value = true;
Address.functionDelegateCall(
newImplementation,
abi.encodeWithSignature(
"upgradeTo(address)",
oldImplementation
)
);
rollbackTesting.value = false;
// Check rollback was effective
require(oldImplementation == _getImplementation(), "ERC1967Upgrade: upgrade breaks further upgrades");
// Finally reset to the new implementation and log the upgrade
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
}
}
/**
* @dev Perform beacon upgrade with additional setup call. Note: This upgrades the address of the beacon, it does
* not upgrade the implementation contained in the beacon (see {UpgradeableBeacon-_setImplementation} for that).
*
* Emits a {BeaconUpgraded} event.
*/
function _upgradeBeaconToAndCall(address newBeacon, bytes memory data, bool forceCall) internal {
_setBeacon(newBeacon);
emit BeaconUpgraded(newBeacon);
if (data.length > 0 || forceCall) {
Address.functionDelegateCall(IBeacon(newBeacon).implementation(), data);
}
}
/**
* @dev Storage slot with the admin of the contract.
* This is the keccak-256 hash of "eip1967.proxy.admin" subtracted by 1, and is
* validated in the constructor.
*/
bytes32 internal constant _ADMIN_SLOT = 0xb53127684a568b3173ae13b9f8a6016e243e63b6e8ee1178d6a717850b5d6103;
/**
* @dev Emitted when the admin account has changed.
*/
event AdminChanged(address previousAdmin, address newAdmin);
/**
* @dev Returns the current admin.
*/
function _getAdmin() internal view returns (address) {
return StorageSlot.getAddressSlot(_ADMIN_SLOT).value;
}
/**
* @dev Stores a new address in the EIP1967 admin slot.
*/
function _setAdmin(address newAdmin) private {
require(newAdmin != address(0), "ERC1967: new admin is the zero address");
StorageSlot.getAddressSlot(_ADMIN_SLOT).value = newAdmin;
}
/**
* @dev Changes the admin of the proxy.
*
* Emits an {AdminChanged} event.
*/
function _changeAdmin(address newAdmin) internal {
emit AdminChanged(_getAdmin(), newAdmin);
_setAdmin(newAdmin);
}
/**
* @dev The storage slot of the UpgradeableBeacon contract which defines the implementation for this proxy.
* This is bytes32(uint256(keccak256('eip1967.proxy.beacon')) - 1)) and is validated in the constructor.
*/
bytes32 internal constant _BEACON_SLOT = 0xa3f0ad74e5423aebfd80d3ef4346578335a9a72aeaee59ff6cb3582b35133d50;
/**
* @dev Emitted when the beacon is upgraded.
*/
event BeaconUpgraded(address indexed beacon);
/**
* @dev Returns the current beacon.
*/
function _getBeacon() internal view returns (address) {
return StorageSlot.getAddressSlot(_BEACON_SLOT).value;
}
/**
* @dev Stores a new beacon in the EIP1967 beacon slot.
*/
function _setBeacon(address newBeacon) private {
require(
Address.isContract(newBeacon),
"ERC1967: new beacon is not a contract"
);
require(
Address.isContract(IBeacon(newBeacon).implementation()),
"ERC1967: beacon implementation is not a contract"
);
StorageSlot.getAddressSlot(_BEACON_SLOT).value = newBeacon;
}
}
@openzeppelin/contracts/utils/StorageSlot.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @dev Library for reading and writing primitive types to specific storage slots.
*
* Storage slots are often used to avoid storage conflict when dealing with upgradeable contracts.
* This library helps with reading and writing to such slots without the need for inline assembly.
*
* The functions in this library return Slot structs that contain a `value` member that can be used to read or write.
*
* Example usage to set ERC1967 implementation slot:
* ```
* contract ERC1967 {
* bytes32 internal constant _IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
*
* function _getImplementation() internal view returns (address) {
* return StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value;
* }
*
* function _setImplementation(address newImplementation) internal {
* require(Address.isContract(newImplementation), "ERC1967: new implementation is not a contract");
* StorageSlot.getAddressSlot(_IMPLEMENTATION_SLOT).value = newImplementation;
* }
* }
* ```
*
* _Available since v4.1 for `address`, `bool`, `bytes32`, and `uint256`._
*/
library StorageSlot {
struct AddressSlot {
address value;
}
struct BooleanSlot {
bool value;
}
struct Bytes32Slot {
bytes32 value;
}
struct Uint256Slot {
uint256 value;
}
/**
* @dev Returns an `AddressSlot` with member `value` located at `slot`.
*/
function getAddressSlot(bytes32 slot) internal pure returns (AddressSlot storage r) {
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `BooleanSlot` with member `value` located at `slot`.
*/
function getBooleanSlot(bytes32 slot) internal pure returns (BooleanSlot storage r) {
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Bytes32Slot` with member `value` located at `slot`.
*/
function getBytes32Slot(bytes32 slot) internal pure returns (Bytes32Slot storage r) {
assembly {
r.slot := slot
}
}
/**
* @dev Returns an `Uint256Slot` with member `value` located at `slot`.
*/
function getUint256Slot(bytes32 slot) internal pure returns (Uint256Slot storage r) {
assembly {
r.slot := slot
}
}
}
contracts/test/ValidationsNatspecImport.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.2;
/// @custom:oz-upgrades-unsafe-allow state-variable-assignment
contract ImportedHasStateVariableAssignmentNatspec1 {
uint x = 1;
}
contract ImportedHasStateVariableAssignmentNatspec2 {
/// @custom:oz-upgrades-unsafe-allow state-variable-assignment
uint x = 1;
}
contracts/test/ignore-errors/UnsafeAllowReachableDifferentOpcode.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./TransitiveRiskyLibrary.sol";
// allow-reachable has no effect because the transitive function has a different opcode
contract UnsafeAllowReachableDifferentOpcode {
/// @custom:oz-upgrades-unsafe-allow-reachable selfdestruct
function unsafe(bytes memory data) public {
TransitiveRiskyLibrary.internalDelegateCall(address(this), data);
}
}
contracts/test/ignore-errors/AllowChild.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./AllowParent.sol";
contract AllowChild is AllowParent {
function shouldBeAllowed(bytes memory data) public {
internalDelegateCall(data);
}
}
contracts/test/ignore-errors/AllowChildCallTransitive.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./AllowReachableParentCall.sol";
contract AllowChildCallTransitive is AllowReachableParentCall {
function myfunction(bytes memory data) internal {
allowed(data);
}
}
contracts/test/ignore-errors/UnsafeRecursion.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./RiskyParentContract.sol";
contract UnsafeRecursion is RiskyParentContract {
function unsafe(uint256 i, address target, bytes memory data) public returns (bytes memory) {
if (++i == 10) {
return internalDelegateCall(target, data);
} else {
return unsafe(i, target, data);
}
}
}
@openzeppelin/contracts/proxy/beacon/UpgradeableBeacon.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "./IBeacon.sol";
import "../../access/Ownable.sol";
import "../../utils/Address.sol";
/**
* @dev This contract is used in conjunction with one or more instances of {BeaconProxy} to determine their
* implementation contract, which is where they will delegate all function calls.
*
* An owner is able to change the implementation the beacon points to, thus upgrading the proxies that use this beacon.
*/
contract UpgradeableBeacon is IBeacon, Ownable {
address private _implementation;
/**
* @dev Emitted when the implementation returned by the beacon is changed.
*/
event Upgraded(address indexed implementation);
/**
* @dev Sets the address of the initial implementation, and the deployer account as the owner who can upgrade the
* beacon.
*/
constructor(address implementation_) {
_setImplementation(implementation_);
}
/**
* @dev Returns the current implementation address.
*/
function implementation() public view virtual override returns (address) {
return _implementation;
}
/**
* @dev Upgrades the beacon to a new implementation.
*
* Emits an {Upgraded} event.
*
* Requirements:
*
* - msg.sender must be the owner of the contract.
* - `newImplementation` must be a contract.
*/
function upgradeTo(address newImplementation) public virtual onlyOwner {
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
}
/**
* @dev Sets the implementation contract address for this beacon
*
* Requirements:
*
* - `newImplementation` must be a contract.
*/
function _setImplementation(address newImplementation) private {
require(Address.isContract(newImplementation), "UpgradeableBeacon: implementation is not a contract");
_implementation = newImplementation;
}
}
contracts/test/Memory08.sol
// SPDX-License-Identifier: MIT
pragma solidity 0.8.9;
contract Memory08 {
mapping(string => address) a;
mapping(bytes => address) b;
}
contract Memory08Bad {
mapping(bytes => address) a;
mapping(string => address) b;
}
contracts/test/ValidationsNatspec.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.2;
/// @custom:oz-upgrades-unsafe-allow constructor
contract HasNonEmptyConstructorNatspec1 {
constructor() { msg.sender; }
}
contract HasNonEmptyConstructorNatspec2 {
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() { msg.sender; }
}
/**
* @custom:oz-upgrades-unsafe-allow constructor
*/
contract HasNonEmptyConstructorNatspec3 {
constructor() { msg.sender; }
}
/**
* @dev This confused the parser.
* @custom:oz-upgrades-unsafe-allow constructor
*/
contract HasNonEmptyConstructorNatspec4 {
constructor() { msg.sender; }
}
contract ParentHasNonEmptyConstructorNatspec1 is HasNonEmptyConstructorNatspec1 {}
contract ParentHasNonEmptyConstructorNatspec2 is HasNonEmptyConstructorNatspec2 {}
contract AncestorHasNonEmptyConstructorNatspec1 is ParentHasNonEmptyConstructorNatspec1 {}
contract AncestorHasNonEmptyConstructorNatspec2 is ParentHasNonEmptyConstructorNatspec2 {}
/// @custom:oz-upgrades-unsafe-allow state-variable-assignment
contract HasStateVariableAssignmentNatspec1 {
uint x = 1;
}
contract HasStateVariableAssignmentNatspec2 {
/// @custom:oz-upgrades-unsafe-allow state-variable-assignment
uint x = 1;
}
contract HasStateVariableAssignmentNatspec3 {
/// @custom:oz-upgrades-unsafe-allow state-variable-assignment
uint x = 1;
uint y = 2;
}
/// @custom:oz-upgrades-unsafe-allow state-variable-immutable state-variable-assignment
contract HasImmutableStateVariableNatspec1 {
uint immutable x = 1;
}
contract HasImmutableStateVariableNatspec2 {
/// @custom:oz-upgrades-unsafe-allow state-variable-immutable state-variable-assignment
uint immutable x = 1;
}
contract HasImmutableStateVariableNatspec3 {
/// @custom:oz-upgrades-unsafe-allow state-variable-immutable state-variable-assignment
uint immutable x = 1;
uint immutable y = 2;
}
/// @custom:oz-upgrades-unsafe-allow selfdestruct
contract HasSelfDestructNatspec1 {
function d() public {
selfdestruct(payable(msg.sender));
}
}
contract HasSelfDestructNatspec2 {
/// @custom:oz-upgrades-unsafe-allow selfdestruct
function d() public {
selfdestruct(payable(msg.sender));
}
}
contract HasSelfDestructNatspec3 {
function d() public {
/// @custom:oz-upgrades-unsafe-allow selfdestruct
selfdestruct(payable(msg.sender));
}
}
/// @custom:oz-upgrades-unsafe-allow delegatecall
contract HasDelegateCallNatspec1 {
function d() public {
(bool s, ) = msg.sender.delegatecall("");
s;
}
}
contract HasDelegateCallNatspec2 {
/// @custom:oz-upgrades-unsafe-allow delegatecall
function d() public {
(bool s, ) = msg.sender.delegatecall("");
s;
}
}
contract HasDelegateCallNatspec3 {
function d() public {
/// @custom:oz-upgrades-unsafe-allow delegatecall
(bool s, ) = msg.sender.delegatecall("");
s;
}
}
import './ValidationsNatspecImport.sol';
contract ImportedParentHasStateVariableAssignmentNatspec1 is ImportedHasStateVariableAssignmentNatspec1 {}
contract ImportedParentHasStateVariableAssignmentNatspec2 is ImportedHasStateVariableAssignmentNatspec2 {}
// For each of 3 dimensions, libraries usage can be
// 1. implicit or explicit (_use for_ directive or not)
// 2. upgrade safe or unsafe
// 3. internal or external (method's visibility)
// libs
library SafeInternalLibraryNatspec {
function add(uint x, uint y) internal pure returns (uint) {
return x + y;
}
}
library SafeExternalLibraryNatspec {
function add(uint x, uint y) public pure returns (uint) {
return x + y;
}
}
library UnsafeInternalLibraryNatspec {
function explode(uint x, uint y) internal {
x + y;
/// @custom:oz-upgrades-unsafe-allow selfdestruct
selfdestruct(payable(msg.sender));
}
}
library UnsafeExternalLibraryNatspec {
function explode(uint x, uint y) public {
x + y;
/// @custom:oz-upgrades-unsafe-allow selfdestruct
selfdestruct(payable(msg.sender));
}
}
// usage
contract UsesImplicitSafeInternalLibraryNatspec {
using SafeInternalLibraryNatspec for uint;
uint x;
function foo(uint y) public view {
x.add(y);
}
}
/// @custom:oz-upgrades-unsafe-allow external-library-linking
contract UsesImplicitSafeExternalLibraryNatspec {
using SafeExternalLibraryNatspec for uint;
uint x;
function foo(uint y) public view {
x.add(y);
}
}
contract UsesImplicitUnsafeInternalLibraryNatspec {
using UnsafeInternalLibraryNatspec for uint;
uint x;
function foo(uint y) public {
x.explode(y);
}
}
/// @custom:oz-upgrades-unsafe-allow external-library-linking
contract UsesImplicitUnsafeExternalLibraryNatspec {
using UnsafeExternalLibraryNatspec for uint;
uint x;
function foo(uint y) public {
x.explode(y);
}
}
contract UsesExplicitSafeInternalLibraryNatspec {
uint x;
function foo(uint y) public view {
SafeInternalLibraryNatspec.add(x, y);
}
}
/// @custom:oz-upgrades-unsafe-allow external-library-linking
contract UsesExplicitSafeExternalLibraryNatspec {
uint x;
function foo(uint y) public view {
SafeExternalLibraryNatspec.add(x, y);
}
}
contract UsesExplicitUnsafeInternalLibraryNatspec {
uint x;
function foo(uint y) public {
UnsafeInternalLibraryNatspec.explode(x, y);
}
}
/// @custom:oz-upgrades-unsafe-allow external-library-linking
contract UsesExplicitUnsafeExternalLibraryNatspec {
uint x;
function foo(uint y) public {
UnsafeExternalLibraryNatspec.explode(x, y);
}
}
contracts/test/RetypeFromContract.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.2;
interface CustomInterface {}
contract CustomContract {}
interface CustomInterface2 {}
contract CustomContract2 {}
contract RetypeContractToUint160V1 {
CustomInterface a;
CustomContract b;
}
contract RetypeContractToUint160V2 {
/// @custom:oz-retyped-from CustomInterface
uint160 a;
/// @custom:oz-retyped-from CustomContract
uint160 b;
}
contract RetypeUint160ToContractV1 {
uint160 a;
uint160 b;
}
contract RetypeUint160ToContractV2 {
/// @custom:oz-retyped-from uint160
CustomInterface private a;
/// @custom:oz-retyped-from uint160
CustomContract private b;
}
contract RetypeContractToUint160MappingV1 {
mapping(uint8 => CustomInterface) a;
mapping(uint8 => CustomContract) b;
mapping(CustomInterface => CustomInterface) c;
mapping(CustomContract => CustomContract) d;
}
contract RetypeContractToUint160MappingV2 {
/// @custom:oz-retyped-from mapping(uint8 => CustomInterface)
mapping(uint8 => uint160) a;
/// @custom:oz-retyped-from mapping(uint8 => CustomContract)
mapping(uint8 => uint160) b;
/// @custom:oz-retyped-from mapping(CustomInterface => CustomInterface)
mapping(uint160 => uint160) c;
/// @custom:oz-retyped-from mapping(CustomContract => CustomContract)
mapping(uint160 => uint160) d;
}
contract RetypeUint160ToContractMappingV1 {
mapping(uint8 => uint160) a;
mapping(uint8 => uint160) b;
mapping(uint160 => uint160) c;
mapping(uint160 => uint160) d;
}
contract RetypeUint160ToContractMappingV2 {
/// @custom:oz-retyped-from mapping(uint8 => uint160)
mapping(uint8 => CustomInterface) a;
/// @custom:oz-retyped-from mapping(uint8 => uint160)
mapping(uint8 => CustomContract) b;
/// @custom:oz-retyped-from mapping(uint160 => uint160)
mapping(CustomInterface => CustomInterface) c;
/// @custom:oz-retyped-from mapping(uint160 => uint160)
mapping(CustomContract => CustomContract) d;
}
contract ImplicitRetypeV1 {
CustomInterface a;
CustomContract b;
address c;
address d;
CustomInterface e;
CustomInterface f;
CustomContract g;
CustomContract h;
}
contract ImplicitRetypeV2 {
address a;
address b;
CustomInterface c;
CustomContract d;
CustomInterface2 e;
CustomContract f;
CustomContract2 g;
CustomInterface h;
}
contract ImplicitRetypeMappingV1 {
mapping(uint8 => CustomInterface) a;
mapping(uint8 => CustomContract) b;
mapping(uint8 => address) c;
mapping(uint8 => address) d;
mapping(uint8 => CustomInterface) e;
mapping(uint8 => CustomInterface) f;
mapping(uint8 => CustomContract) g;
mapping(uint8 => CustomContract) h;
}
contract ImplicitRetypeMappingV2 {
mapping(uint8 => address) a;
mapping(uint8 => address) b;
mapping(uint8 => CustomInterface) c;
mapping(uint8 => CustomContract) d;
mapping(uint8 => CustomInterface2) e;
mapping(uint8 => CustomContract) f;
mapping(uint8 => CustomContract2) g;
mapping(uint8 => CustomInterface) h;
}
struct StructUint256 {
uint256 a;
uint256 b;
}
contract RetypeStructV1 {
StructUint256 x;
}
contract RetypeStructV2 {
/// @custom:oz-retyped-from StructUint256
uint256[2] x;
}
contract RetypeStructV2Bad {
/// @custom:oz-retyped-from StructUint256
uint256[3] x;
}
enum MyEnums { ONE, TWO }
contract RetypeEnumV1 {
MyEnums x;
}
contract RetypeEnumV2 {
/// @custom:oz-retyped-from MyEnums
uint8 x;
}
contract RetypeEnumV2Bad {
/// @custom:oz-retyped-from MyEnums
uint16 x;
}
contracts/test/ValidationsUDVT.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
contract ValidationsUDVT {
type MyUserValueType is uint128;
MyUserValueType my_user_value;
function foo(MyUserValueType v) external {
my_user_value = v;
}
}
contracts/test/ignore-errors/SafeContractWithLibraryCall.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./RiskyLibrary.sol";
contract SafeContractWithLibraryCall {
function safe() public view returns (bool) {
return RiskyLibrary.isContract(address(this));
}
}
contracts/test/ignore-errors/SafeContractWithLibraryUsingFor.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./RiskyLibrary.sol";
contract SafeContractWithLibraryUsingFor {
using RiskyLibrary for address;
function safe() public view returns (bool) {
return address(this).isContract();
}
}
contracts/test/ignore-errors/UnsafeAllowReachableParentDifferentOpcode.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./TransitiveUnsafeParent.sol";
/**
* allow-reachable has no effect because the parent function has a different opcode
*
* @custom:oz-upgrades-unsafe-allow-reachable selfdestruct
*/
contract UnsafeAllowReachableParentDifferentOpcode is TransitiveUnsafeParent {
}
contracts/test/ignore-errors/TransitiveUnsafeParent.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./UnsafeParentContract.sol";
contract TransitiveUnsafeParent is UnsafeParentContract {
}
contracts/test/ignore-errors/SafeContractWithTransitiveLibraryCall.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./TransitiveRiskyLibrary.sol";
contract SafeContractWithTransitiveLibraryCall {
function safe() public view returns (bool) {
return TransitiveRiskyLibrary.isContract(address(this));
}
}
contracts/test/ignore-errors/UnsafeContractWithLibraryCall.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./RiskyLibrary.sol";
contract UnsafeContractWithLibraryCall {
function unsafe(address target, bytes memory data) public {
RiskyLibrary.internalDelegateCall(target, data);
}
}
contracts/test/ignore-errors/AllowParentSelfReachable.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
/**
* allow-reachable causes the delegatecall to be ignored for all functions in this contract, including its own lexical scope
*
* @custom:oz-upgrades-unsafe-allow-reachable delegatecall
*/
contract AllowParentSelfReachable {
function internalDelegateCall(
bytes memory data
) internal returns (bytes memory) {
(, bytes memory returndata) = address(this).delegatecall(data);
return returndata;
}
}
contracts/test/ignore-errors/AllowReachable.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./TransitiveRiskyLibrary.sol";
// allow-reachable causes the delegatecall in a transitive function to be ignored
contract AllowReachable {
/// @custom:oz-upgrades-unsafe-allow-reachable delegatecall
function unsafe(bytes memory data) public {
TransitiveRiskyLibrary.internalDelegateCall(address(this), data);
}
}
contracts/test/ignore-errors/RiskyFreeFunctions.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
function isContract(address account) view returns (bool) {
return account.code.length > 0;
}
function freeDelegateCall(
address target,
bytes memory data
) returns (bytes memory) {
(, bytes memory returndata) = target.delegatecall(data);
return returndata;
}
@openzeppelin/contracts/utils/Address.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @dev Collection of functions related to the address type
*/
library Address {
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]
* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* - an externally-owned account
* - a contract in construction
* - an address where a contract will be created
* - an address where a contract lived, but was destroyed
* ====
*/
function isContract(address account) internal view returns (bool) {
// This method relies on extcodesize, which returns 0 for contracts in
// construction, since the code is only stored at the end of the
// constructor execution.
uint256 size;
// solhint-disable-next-line no-inline-assembly
assembly { size := extcodesize(account) }
return size > 0;
}
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://diligence.consensys.net/posts/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.5.11/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/
function sendValue(address payable recipient, uint256 amount) internal {
require(address(this).balance >= amount, "Address: insufficient balance");
// solhint-disable-next-line avoid-low-level-calls, avoid-call-value
(bool success, ) = recipient.call{ value: amount }("");
require(success, "Address: unable to send value, recipient may have reverted");
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain`call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCall(target, data, "Address: low-level call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data, string memory errorMessage) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/
function functionCallWithValue(address target, bytes memory data, uint256 value) internal returns (bytes memory) {
return functionCallWithValue(target, data, value, "Address: low-level call with value failed");
}
/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCallWithValue(address target, bytes memory data, uint256 value, string memory errorMessage) internal returns (bytes memory) {
require(address(this).balance >= value, "Address: insufficient balance for call");
require(isContract(target), "Address: call to non-contract");
// solhint-disable-next-line avoid-low-level-calls
(bool success, bytes memory returndata) = target.call{ value: value }(data);
return _verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
return functionStaticCall(target, data, "Address: low-level static call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data, string memory errorMessage) internal view returns (bytes memory) {
require(isContract(target), "Address: static call to non-contract");
// solhint-disable-next-line avoid-low-level-calls
(bool success, bytes memory returndata) = target.staticcall(data);
return _verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(address target, bytes memory data) internal returns (bytes memory) {
return functionDelegateCall(target, data, "Address: low-level delegate call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(address target, bytes memory data, string memory errorMessage) internal returns (bytes memory) {
require(isContract(target), "Address: delegate call to non-contract");
// solhint-disable-next-line avoid-low-level-calls
(bool success, bytes memory returndata) = target.delegatecall(data);
return _verifyCallResult(success, returndata, errorMessage);
}
function _verifyCallResult(bool success, bytes memory returndata, string memory errorMessage) private pure returns(bytes memory) {
if (success) {
return returndata;
} else {
// Look for revert reason and bubble it up if present
if (returndata.length > 0) {
// The easiest way to bubble the revert reason is using memory via assembly
// solhint-disable-next-line no-inline-assembly
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}
}
contracts/test/ignore-errors/RiskyLibrary.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
library RiskyLibrary {
function isContract(address account) internal view returns (bool) {
return account.code.length > 0;
}
function internalDelegateCall(
address target,
bytes memory data
) internal returns (bytes memory) {
(, bytes memory returndata) = target.delegatecall(data);
return returndata;
}
function privateDelegateCall(
address target,
bytes memory data
) private returns (bytes memory) {
(, bytes memory returndata) = target.delegatecall(data);
return returndata;
}
function publicDelegateCall(
address target,
bytes memory data
) public returns (bytes memory) {
(, bytes memory returndata) = target.delegatecall(data);
return returndata;
}
function externalDelegateCall(
address target,
bytes memory data
) external returns (bytes memory) {
(, bytes memory returndata) = target.delegatecall(data);
return returndata;
}
}
contracts/test/ignore-errors/AllowReachableParentCall.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./RiskyParentContract.sol";
/**
* allow-reachable causes the delegatecall to be ignored for all reachable functions from this contract
*
* @custom:oz-upgrades-unsafe-allow-reachable delegatecall
*/
contract AllowReachableParentCall is RiskyParentContract {
function allowed(bytes memory data) internal {
internalDelegateCall(address(this), data);
}
}
contracts/test/Proxiable.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.2;
import "@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol";
abstract contract Proxiable is UUPSUpgradeable {
function _authorizeUpgrade(address newImplementation) internal override {
_beforeUpgrade(newImplementation);
}
function _beforeUpgrade(address newImplementation) internal virtual;
}
contract ChildOfProxiable is Proxiable {
function _beforeUpgrade(address newImplementation) internal virtual override {}
}
contracts/test/Standalone.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.2;
contract StandaloneV1 {
uint a;
string b;
function extremelyUnsafe(address target, bytes memory data) public {
(bool ok, ) = target.delegatecall(data);
require(ok);
}
}
contract StandaloneV2Good {
uint a;
string b;
uint c;
}
contract StandaloneV2Bad {
uint x;
uint a;
string b;
}
contract StandaloneRenameV1 {
uint x;
}
contract StandaloneRenameV2 {
/// @custom:oz-renamed-from x
uint y;
}
contract StandaloneRenameV3 is StandaloneRenameV2 {
uint z;
}
contracts/test/ignore-errors/RiskyParentContract.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
contract RiskyParentContract {
function isContract(address account) internal view returns (bool) {
return account.code.length > 0;
}
function internalDelegateCall(
address target,
bytes memory data
) internal returns (bytes memory) {
(, bytes memory returndata) = target.delegatecall(data);
return returndata;
}
function privateDelegateCall(
address target,
bytes memory data
) private returns (bytes memory) {
(, bytes memory returndata) = target.delegatecall(data);
return returndata;
}
}
contracts/test/ignore-errors/AllowChildSelfReachable.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./AllowParentSelfReachable.sol";
contract AllowChildSelfReachable is AllowParentSelfReachable {
function shouldBeAllowed(bytes memory data) public {
internalDelegateCall(data);
}
}
contracts/test/Storage089.sol
// SPDX-License-Identifier: MIT
pragma solidity 0.8.9;
contract Storage089 {
type MyUserValueType is uint128;
MyUserValueType my_user_value;
}
contract Storage089_V2 {
type MyUserValueType is uint128;
MyUserValueType my_user_value;
uint x;
}
contract Storage089_V3 {
type MyUserValueType is uint8;
MyUserValueType my_user_value;
uint x;
}
contracts/test/ignore-errors/Modifiers.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
abstract contract UnsafeParentModifier {
modifier unsafe(bytes memory data) {
_;
msg.sender.delegatecall(data);
}
}
// TODO: do not throw an error in this case
// contract ModifierNotUsed is UnsafeParentModifier {
// function foo() public {}
// }
contract ModifierUsed is UnsafeParentModifier {
function foo() public unsafe('') {}
}
contracts/test/ignore-errors/UnsafeContractWithInheritedParent.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./UnsafeParentContract.sol";
contract UnsafeContractWithInheritedParent is UnsafeParentContract {
}
@openzeppelin/contracts/access/Ownable.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
import "../utils/Context.sol";
/**
* @dev Contract module which provides a basic access control mechanism, where
* there is an account (an owner) that can be granted exclusive access to
* specific functions.
*
* By default, the owner account will be the one that deploys the contract. This
* can later be changed with {transferOwnership}.
*
* This module is used through inheritance. It will make available the modifier
* `onlyOwner`, which can be applied to your functions to restrict their use to
* the owner.
*/
abstract contract Ownable is Context {
address private _owner;
event OwnershipTransferred(address indexed previousOwner, address indexed newOwner);
/**
* @dev Initializes the contract setting the deployer as the initial owner.
*/
constructor () {
address msgSender = _msgSender();
_owner = msgSender;
emit OwnershipTransferred(address(0), msgSender);
}
/**
* @dev Returns the address of the current owner.
*/
function owner() public view virtual returns (address) {
return _owner;
}
/**
* @dev Throws if called by any account other than the owner.
*/
modifier onlyOwner() {
require(owner() == _msgSender(), "Ownable: caller is not the owner");
_;
}
/**
* @dev Leaves the contract without owner. It will not be possible to call
* `onlyOwner` functions anymore. Can only be called by the current owner.
*
* NOTE: Renouncing ownership will leave the contract without an owner,
* thereby removing any functionality that is only available to the owner.
*/
function renounceOwnership() public virtual onlyOwner {
emit OwnershipTransferred(_owner, address(0));
_owner = address(0);
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Can only be called by the current owner.
*/
function transferOwnership(address newOwner) public virtual onlyOwner {
require(newOwner != address(0), "Ownable: new owner is the zero address");
emit OwnershipTransferred(_owner, newOwner);
_owner = newOwner;
}
}
contracts/test/ignore-errors/Constructors.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
abstract contract UnsafeParent {
/// @custom:oz-upgrades-unsafe-allow constructor
constructor(bytes memory data) {
msg.sender.delegatecall(data);
}
}
contract UnsafeChild1 is UnsafeParent {
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() UnsafeParent('') {}
function foo1(uint x) public {}
}
contract UnsafeChild2 is UnsafeParent('') {
function foo2(uint x) public {}
}
abstract contract UnsafeParentNoArgs {
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() {
msg.sender.delegatecall('');
}
}
contract UnsafeChild3 is UnsafeParentNoArgs {
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() UnsafeParentNoArgs() {}
function foo3(uint x) public {}
}
contract UnsafeChild4 is UnsafeParentNoArgs {
function foo4(uint x) public {}
}
/**
* @custom:oz-upgrades-unsafe-allow delegatecall
*/
abstract contract AllowParentNoArgs {
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() {
msg.sender.delegatecall('');
}
}
contract AllowChild5 is AllowParentNoArgs {
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() AllowParentNoArgs() {}
function foo5(uint x) public {}
}
contract AllowChild6 is AllowParentNoArgs {
function foo6(uint x) public {}
}
/**
* allow has no effect because the delegatecall is in a parent function
*
* @custom:oz-upgrades-unsafe-allow delegatecall
*/
contract UnsafeAllowChild7 is UnsafeParentNoArgs {
function foo7(uint x) public {}
}
/**
* @custom:oz-upgrades-unsafe-allow-reachable delegatecall
*/
contract AllowReachableChild8 is UnsafeParentNoArgs {
function foo8(uint x) public {}
}
abstract contract UnsafeFunctions {
function unsafe() internal {
msg.sender.delegatecall('');
}
}
contract UnsafeChild9 is UnsafeFunctions {
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() {
unsafe();
}
function foo9(uint x) public {}
}
contracts/test/ignore-errors/SafeContractWithFreeFunctionCall.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./RiskyFreeFunctions.sol" as RiskyFreeFunctions;
contract SafeContractWithFreeFunctionCall {
function safe() public view returns (bool) {
return RiskyFreeFunctions.isContract(address(this));
}
}
contracts/test/ignore-errors/UnsafeContract.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
contract UnsafeContract {
function externalDelegateCall(
address target,
bytes memory data
) external returns (bytes memory) {
(, bytes memory returndata) = target.delegatecall(data);
return returndata;
}
}
contracts/test/ignore-errors/UnsafeContractWithInheritedTransitiveParent.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
import "./TransitiveUnsafeParent.sol";
contract UnsafeContractWithInheritedTransitiveParent is TransitiveUnsafeParent {
}
@openzeppelin/contracts/proxy/beacon/IBeacon.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.0;
/**
* @dev This is the interface that {BeaconProxy} expects of its beacon.
*/
interface IBeacon {
/**
* @dev Must return an address that can be used as a delegate call target.
*
* {BeaconProxy} will check that this address is a contract.
*/
function implementation() external view returns (address);
}
contracts/test/ignore-errors/SafeContract.sol
// SPDX-License-Identifier: MIT
pragma solidity ^0.8.9;
contract SafeContract {
}
Contract ABI
[{"type":"constructor","inputs":[{"type":"address","name":"_logic","internalType":"address"},{"type":"bytes","name":"_data","internalType":"bytes"}]},{"type":"event","name":"AdminChanged","inputs":[{"type":"address","name":"previousAdmin","indexed":false},{"type":"address","name":"newAdmin","indexed":false}],"anonymous":false},{"type":"event","name":"BeaconUpgraded","inputs":[{"type":"address","name":"beacon","indexed":true}],"anonymous":false},{"type":"event","name":"Upgraded","inputs":[{"type":"address","name":"implementation","indexed":true}],"anonymous":false},{"type":"receive"},{"type":"fallback"}]
Deployed ByteCode
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