Description:
Multi-signature wallet contract requiring multiple confirmations for transaction execution.
Blockchain: Ethereum
Source Code: View Code On The Blockchain
Solidity Source Code:
{{
"language": "Solidity",
"sources": {
"contracts/compliance/InvestorLockManager.sol": {
"content": "/**
* Copyright 2025 Securitize Inc. All rights reserved.
*
* SPDX-License-Identifier: Apache-2.0
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
pragma solidity 0.8.22;
import {IDSLockManager} from "./IDSLockManager.sol";
import {InvestorLockManagerBase} from "./InvestorLockManagerBase.sol";
import {InvestorLockManagerDataStore} from "../data-stores/InvestorLockManagerDataStore.sol";
import {Math} from "@openzeppelin/contracts/utils/math/Math.sol";
import {BaseDSContract} from "../utils/BaseDSContract.sol";
contract InvestorLockManager is InvestorLockManagerBase {
uint256 constant MAX_LOCKS_PER_INVESTOR = 30;
/// @custom:oz-upgrades-unsafe-allow constructor
constructor() {
_disableInitializers();
}
function initialize() public override onlyProxy initializer {
__BaseDSContract_init();
}
function setLockInfoImpl(string memory _investor, uint256 _lockIndex, uint256 _valueLocked, uint256 _reasonCode, string memory _reasonString, uint256 _releaseTime) internal {
investorsLocks[_investor][_lockIndex] = Lock(_valueLocked, _reasonCode, _reasonString, _releaseTime);
}
function createLockForInvestor(string memory _investor, uint256 _valueLocked, uint256 _reasonCode, string calldata _reasonString, uint256 _releaseTime)
public
override
validLock(_valueLocked, _releaseTime)
onlyTransferAgentOrAboveOrToken
{
//Get total count
uint256 totalLockCount = investorsLocksCounts[_investor];
//Only allow MAX_LOCKS_PER_INVESTOR locks per address, to prevent out-of-gas at transfer scenarios
require(totalLockCount < MAX_LOCKS_PER_INVESTOR, "Too many locks for this investor");
setLockInfoImpl(_investor, totalLockCount, _valueLocked, _reasonCode, _reasonString, _releaseTime);
totalLockCount += 1;
investorsLocksCounts[_investor] = totalLockCount;
emit HolderLocked(_investor, _valueLocked, _reasonCode, _reasonString, _releaseTime);
}
function createLock(address _to, uint256 _valueLocked, uint256 _reasonCode, string calldata _reasonString, uint256 _releaseTime) internal {
createLockForInvestor(getRegistryService().getInvestor(_to), _valueLocked, _reasonCode, _reasonString, _releaseTime);
emit Locked(_to, _valueLocked, _reasonCode, _reasonString, _releaseTime);
}
function addManualLockRecord(address _to, uint256 _valueLocked, string calldata _reason, uint256 _releaseTime) public override onlyTransferAgentOrAboveOrToken {
require(_to != address(0), "Invalid address");
createLock(_to, _valueLocked, 0, _reason, _releaseTime);
}
function removeLockRecordForInvestor(string memory _investorId, uint256 _lockIndex) public override onlyTransferAgentOrAbove returns (bool) {
emit HolderUnlocked(
_investorId,
investorsLocks[_investorId][_lockIndex].value,
investorsLocks[_investorId][_lockIndex].reason,
investorsLocks[_investorId][_lockIndex].reasonString,
investorsLocks[_investorId][_lockIndex].releaseTime
);
//Put the last lock instead of the lock to remove (this will work even with 1 lock in the list)
uint256 lastLockNumber = investorsLocksCounts[_investorId];
require(_lockIndex < lastLockNumber, "Index is greater than the number of locks");
lastLockNumber -= 1;
//Move the lock
uint256 reasonCode = investorsLocks[_investorId][lastLockNumber].reason;
setLockInfoImpl(
_investorId,
_lockIndex,
investorsLocks[_investorId][lastLockNumber].value,
reasonCode,
investorsLocks[_investorId][lastLockNumber].reasonString,
investorsLocks[_investorId][lastLockNumber].releaseTime
);
//delete the last _lock
//Remove from reverse index
delete investorsLocks[_investorId][lastLockNumber];
//decrease the lock counter for the user
investorsLocksCounts[_investorId] = lastLockNumber;
return true;
}
/**
* @dev Releases a specific lock record
* @param _to address to release the tokens for
* @param _lockIndex the index of the lock
*
* note - this may change the order of the locks on an address, so if iterating the iteration should be restarted.
* @return true on success
*/
function removeLockRecord(address _to, uint256 _lockIndex) public override onlyTransferAgentOrAbove returns (bool) {
require(_to != address(0), "Invalid address");
string memory investor = getRegistryService().getInvestor(_to);
//Emit must be done on start ,because we're going to overwrite this value
emit Unlocked(
_to,
investorsLocks[investor][_lockIndex].value,
investorsLocks[investor][_lockIndex].reason,
investorsLocks[investor][_lockIndex].reasonString,
investorsLocks[investor][_lockIndex].releaseTime
);
removeLockRecordForInvestor(investor, _lockIndex);
return true;
}
/**
* @dev Get number of locks currently associated with an address
* @param _who address to get token lock for
*
* @return number of locks
*
* Note - a lock can be inactive (due to its time expired) but still exists for a specific address
*/
function lockCount(address _who) public view override returns (uint256) {
require(_who != address(0), "Invalid address");
string memory investor = getRegistryService().getInvestor(_who);
return investorsLocksCounts[investor];
}
function lockCountForInvestor(string calldata _investorId) public view override returns (uint256) {
return investorsLocksCounts[_investorId];
}
/**
* @dev Get details of a specific lock associated with an address
* can be used to iterate through the locks of a user
* @return reasonCode the reason code for the lock
* @return reasonString the reason for the lock
* @return value the value of tokens locked
* @return autoReleaseTime the timestamp in which the lock will be inactive (or 0 if it's always active until removed)
*
* Note - a lock can be inactive (due to its time expired) but still exists for a specific address
*/
function lockInfo(address _who, uint256 _lockIndex) public view override returns (uint256 reasonCode, string memory reasonString, uint256 value, uint256 autoReleaseTime) {
require(_who != address(0), "Invalid address");
string memory investor = getRegistryService().getInvestor(_who);
return lockInfoForInvestor(investor, _lockIndex);
}
function lockInfoForInvestor(string memory _investorId, uint256 _lockIndex)
public
view
override
returns (uint256 reasonCode, string memory reasonString, uint256 value, uint256 autoReleaseTime)
{
uint256 lastLockNumber = investorsLocksCounts[_investorId];
require(_lockIndex < lastLockNumber, "Index is greater than the number of locks");
reasonCode = investorsLocks[_investorId][_lockIndex].reason;
reasonString = investorsLocks[_investorId][_lockIndex].reasonString;
value = investorsLocks[_investorId][_lockIndex].value;
autoReleaseTime = investorsLocks[_investorId][_lockIndex].releaseTime;
}
function getTransferableTokens(address _who, uint256 _time) public view override returns (uint256) {
string memory investor = getRegistryService().getInvestor(_who);
return getTransferableTokensForInvestor(investor, _time);
}
function getTransferableTokensForInvestor(string memory _investorId, uint256 _time) public view override returns (uint256) {
require(_time > 0, "Time must be greater than zero");
if (investorsLocked[_investorId]) {
return 0;
}
uint256 balanceOfInvestor = getToken().balanceOfInvestor(_investorId);
uint256 investorLockCount = investorsLocksCounts[_investorId];
//No locks, go to base class implementation
if (investorLockCount == 0) {
return balanceOfInvestor;
}
uint256 totalLockedTokens = 0;
for (uint256 i = 0; i < investorLockCount; i++) {
uint256 autoReleaseTime = investorsLocks[_investorId][i].releaseTime;
if (autoReleaseTime == 0 || autoReleaseTime > _time) {
totalLockedTokens = totalLockedTokens + investorsLocks[_investorId][i].value;
}
}
//there may be more locked tokens than actual tokens, so the minimum between the two
uint256 transferable = balanceOfInvestor - Math.min(totalLockedTokens, balanceOfInvestor);
return transferable;
}
}
"
},
"contracts/compliance/IDSLockManager.sol": {
"content": "/**
* Copyright 2025 Securitize Inc. All rights reserved.
*
* SPDX-License-Identifier: Apache-2.0
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
pragma solidity 0.8.22;
abstract contract IDSLockManager {
function initialize() public virtual;
modifier validLock(uint256 _valueLocked, uint256 _releaseTime) {
require(_valueLocked > 0, "Value is zero");
require(_releaseTime == 0 || _releaseTime > uint256(block.timestamp), "Release time is in the past");
_;
}
event Locked(address indexed who, uint256 value, uint256 indexed reason, string reasonString, uint256 releaseTime);
event Unlocked(address indexed who, uint256 value, uint256 indexed reason, string reasonString, uint256 releaseTime);
event HolderLocked(string holderId, uint256 value, uint256 indexed reason, string reasonString, uint256 releaseTime);
event HolderUnlocked(string holderId, uint256 value, uint256 indexed reason, string reasonString, uint256 releaseTime);
/**
* @dev creates a lock record for wallet address
* @param _to address to lock the tokens at
* @param _valueLocked value of tokens to lock
* @param _reason reason for lock
* @param _releaseTime timestamp to release the lock (or 0 for locks which can only released by an unlockTokens call)
* Note: The user MAY have at a certain time more locked tokens than actual tokens
*/
function addManualLockRecord(
address _to,
uint256 _valueLocked,
string calldata _reason,
uint256 _releaseTime /*issuerOrAboveOrToken*/
) public virtual;
/**
* @dev creates a lock record for investor Id
* @param _investor investor id to lock the tokens at
* @param _valueLocked value of tokens to lock
* @param _reasonCode reason code for lock
* @param _reasonString reason for lock
* @param _releaseTime timestamp to release the lock (or 0 for locks which can only released by an unlockTokens call)
* Note: The user MAY have at a certain time more locked tokens than actual tokens
*/
function createLockForInvestor(
string memory _investor,
uint256 _valueLocked,
uint256 _reasonCode,
string calldata _reasonString,
uint256 _releaseTime /*onlyIssuerOrAboveOrToken*/
) public virtual;
/**
* @dev Releases a specific lock record for a wallet
* @param _to address to release the tokens for
* @param _lockIndex the index of the lock to remove
*
* note - this may change the order of the locks on an address, so if iterating the iteration should be restarted.
* @return true on success
*/
function removeLockRecord(
address _to,
uint256 _lockIndex /*issuerOrAbove*/
) public virtual returns (bool);
/**
* @dev Releases a specific lock record for a investor
* @param _investorId investor id to release the tokens for
* @param _lockIndex the index of the lock to remove
*
* note - this may change the order of the locks on an address, so if iterating the iteration should be restarted.
* @return true on success
*/
function removeLockRecordForInvestor(
string memory _investorId,
uint256 _lockIndex /*onlyIssuerOrAbove*/
) public virtual returns (bool);
/**
* @dev Get number of locks currently associated with an address
* @param _who address to get count for
*
* @return number of locks
*
* Note - a lock can be inactive (due to its time expired) but still exists for a specific address
*/
function lockCount(address _who) public view virtual returns (uint256);
/**
* @dev Get number of locks currently associated with a investor
* @param _investorId investor id to get count for
*
* @return number of locks
*
* Note - a lock can be inactive (due to its time expired) but still exists for a specific address
*/
function lockCountForInvestor(string calldata _investorId) public view virtual returns (uint256);
/**
* @dev Get details of a specific lock associated with an address
* can be used to iterate through the locks of a user
* @param _who address to get token lock for
* @param _lockIndex the 0 based index of the lock.
* @return reasonCode the reason code
* @return reasonString the reason for the lock
* @return value the value of tokens locked
* @return autoReleaseTime the timestamp in which the lock will be inactive (or 0 if it's always active until removed)
*
* Note - a lock can be inactive (due to its time expired) but still exists for a specific address
*/
function lockInfo(address _who, uint256 _lockIndex) public view virtual returns (uint256 reasonCode, string memory reasonString, uint256 value, uint256 autoReleaseTime);
/**
* @dev Get details of a specific lock associated with a investor
* can be used to iterate through the locks of a user
* @param _investorId investorId to get token lock for
* @param _lockIndex the 0 based index of the lock.
* @return reasonCode the reason code
* @return reasonString the reason for the lock
* @return value the value of tokens locked
* @return autoReleaseTime the timestamp in which the lock will be inactive (or 0 if it's always active until removed)
*
* Note - a lock can be inactive (due to its time expired) but still exists for a specific address
*/
function lockInfoForInvestor(
string memory _investorId,
uint256 _lockIndex
) public view virtual returns (uint256 reasonCode, string memory reasonString, uint256 value, uint256 autoReleaseTime);
/**
* @dev get total number of transferable tokens for a wallet, at a certain time
* @param _who address to get number of transferable tokens for
* @param _time time to calculate for
*/
function getTransferableTokens(address _who, uint256 _time) public view virtual returns (uint256);
/**
* @dev get total number of transferable tokens for a investor, at a certain time
* @param _investorId investor id
* @param _time time to calculate for
*/
function getTransferableTokensForInvestor(string memory _investorId, uint256 _time) public view virtual returns (uint256);
/**
* @dev pause investor
* @param _investorId investor id
*/
function lockInvestor(
string calldata _investorId /*issuerOrAbove*/
) public virtual returns (bool);
/**
* @dev unpauses investor
* @param _investorId investor id
*/
function unlockInvestor(
string calldata _investorId /*issuerOrAbove*/
) public virtual returns (bool);
/**
* @dev Returns true if paused, otherwise false
* @param _investorId investor id
*/
function isInvestorLocked(string calldata _investorId) public view virtual returns (bool);
/**
* @dev set investor to liquidate only mode
* @param _investorId investor id
* @param _enabled true to enable, false to disable
*/
function setInvestorLiquidateOnly(string memory _investorId, bool _enabled) public virtual returns (bool);
/**
* @dev Returns true if the investor is in liquidate only mode
* @param _investorId investor id
*/
function isInvestorLiquidateOnly(string calldata _investorId) public view virtual returns (bool);
}
"
},
"contracts/compliance/InvestorLockManagerBase.sol": {
"content": "/**
* Copyright 2025 Securitize Inc. All rights reserved.
*
* SPDX-License-Identifier: Apache-2.0
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
pragma solidity 0.8.22;
import {InvestorLockManagerDataStore} from "../data-stores/InvestorLockManagerDataStore.sol";
import {BaseDSContract} from "../utils/BaseDSContract.sol";
import {IDSLockManager} from "./IDSLockManager.sol";
abstract contract InvestorLockManagerBase is IDSLockManager, InvestorLockManagerDataStore, BaseDSContract {
event InvestorFullyLocked(string investorId);
event InvestorFullyUnlocked(string investorId);
event InvestorLiquidateOnlySet(string investorId, bool enabled);
function initialize() public virtual override;
function lockInvestor(string calldata _investorId) public override onlyTransferAgentOrAbove returns (bool) {
require(!investorsLocked[_investorId], "Investor is already locked");
investorsLocked[_investorId] = true;
emit InvestorFullyLocked(_investorId);
return true;
}
function unlockInvestor(string calldata _investorId) public override onlyTransferAgentOrAbove returns (bool) {
require(investorsLocked[_investorId], "Investor is not locked");
delete investorsLocked[_investorId];
emit InvestorFullyUnlocked(_investorId);
return true;
}
function isInvestorLocked(string calldata _investorId) public override view returns (bool) {
return investorsLocked[_investorId];
}
function setInvestorLiquidateOnly(string memory _investorId, bool _enabled) public override onlyTransferAgentOrAbove returns (bool) {
require(investorsLiquidateOnly[_investorId] != _enabled, "already in this state");
investorsLiquidateOnly[_investorId] = _enabled;
emit InvestorLiquidateOnlySet(_investorId, _enabled);
return true;
}
function isInvestorLiquidateOnly(string calldata _investorId) public override view returns (bool) {
return investorsLiquidateOnly[_investorId];
}
}
"
},
"contracts/data-stores/InvestorLockManagerDataStore.sol": {
"content": "/**
* Copyright 2025 Securitize Inc. All rights reserved.
*
* SPDX-License-Identifier: Apache-2.0
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
pragma solidity 0.8.22;
import {BaseLockManagerDataStore} from "./BaseLockManagerDataStore.sol";
contract InvestorLockManagerDataStore is BaseLockManagerDataStore {
mapping(string investorId => mapping(uint256 lockId => Lock lock)) internal investorsLocks;
mapping(string investorId => uint256 count) internal investorsLocksCounts;
mapping(string investorId => bool locked) internal investorsLocked;
mapping(string investorId => mapping(bytes32 partitionHash => mapping(uint256 lockId => Lock lock))) internal investorsPartitionsLocks;
mapping(string investorId => mapping(bytes32 partitionHash => uint256 count)) internal investorsPartitionsLocksCounts;
mapping(string investorId => bool liquidateOnly) internal investorsLiquidateOnly;
/**
* @dev This empty reserved space is put in place to allow future versions to add new
* variables without shifting down storage in the inheritance chain.
* See https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps
*/
uint256[44] private __gap;
}
"
},
"node_modules/@openzeppelin/contracts/utils/math/Math.sol": {
"content": "// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (utils/math/Math.sol)
pragma solidity ^0.8.20;
/**
* @dev Standard math utilities missing in the Solidity language.
*/
library Math {
/**
* @dev Muldiv operation overflow.
*/
error MathOverflowedMulDiv();
enum Rounding {
Floor, // Toward negative infinity
Ceil, // Toward positive infinity
Trunc, // Toward zero
Expand // Away from zero
}
/**
* @dev Returns the addition of two unsigned integers, with an overflow flag.
*/
function tryAdd(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
uint256 c = a + b;
if (c < a) return (false, 0);
return (true, c);
}
}
/**
* @dev Returns the subtraction of two unsigned integers, with an overflow flag.
*/
function trySub(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
if (b > a) return (false, 0);
return (true, a - b);
}
}
/**
* @dev Returns the multiplication of two unsigned integers, with an overflow flag.
*/
function tryMul(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
// Gas optimization: this is cheaper than requiring 'a' not being zero, but the
// benefit is lost if 'b' is also tested.
// See: https://github.com/OpenZeppelin/openzeppelin-contracts/pull/522
if (a == 0) return (true, 0);
uint256 c = a * b;
if (c / a != b) return (false, 0);
return (true, c);
}
}
/**
* @dev Returns the division of two unsigned integers, with a division by zero flag.
*/
function tryDiv(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
if (b == 0) return (false, 0);
return (true, a / b);
}
}
/**
* @dev Returns the remainder of dividing two unsigned integers, with a division by zero flag.
*/
function tryMod(uint256 a, uint256 b) internal pure returns (bool, uint256) {
unchecked {
if (b == 0) return (false, 0);
return (true, a % b);
}
}
/**
* @dev Returns the largest of two numbers.
*/
function max(uint256 a, uint256 b) internal pure returns (uint256) {
return a > b ? a : b;
}
/**
* @dev Returns the smallest of two numbers.
*/
function min(uint256 a, uint256 b) internal pure returns (uint256) {
return a < b ? a : b;
}
/**
* @dev Returns the average of two numbers. The result is rounded towards
* zero.
*/
function average(uint256 a, uint256 b) internal pure returns (uint256) {
// (a + b) / 2 can overflow.
return (a & b) + (a ^ b) / 2;
}
/**
* @dev Returns the ceiling of the division of two numbers.
*
* This differs from standard division with `/` in that it rounds towards infinity instead
* of rounding towards zero.
*/
function ceilDiv(uint256 a, uint256 b) internal pure returns (uint256) {
if (b == 0) {
// Guarantee the same behavior as in a regular Solidity division.
return a / b;
}
// (a + b - 1) / b can overflow on addition, so we distribute.
return a == 0 ? 0 : (a - 1) / b + 1;
}
/**
* @notice Calculates floor(x * y / denominator) with full precision. Throws if result overflows a uint256 or
* denominator == 0.
* @dev Original credit to Remco Bloemen under MIT license (https://xn--2-umb.com/21/muldiv) with further edits by
* Uniswap Labs also under MIT license.
*/
function mulDiv(uint256 x, uint256 y, uint256 denominator) internal pure returns (uint256 result) {
unchecked {
// 512-bit multiply [prod1 prod0] = x * y. Compute the product mod 2^256 and mod 2^256 - 1, then use
// use the Chinese Remainder Theorem to reconstruct the 512 bit result. The result is stored in two 256
// variables such that product = prod1 * 2^256 + prod0.
uint256 prod0 = x * y; // Least significant 256 bits of the product
uint256 prod1; // Most significant 256 bits of the product
assembly {
let mm := mulmod(x, y, not(0))
prod1 := sub(sub(mm, prod0), lt(mm, prod0))
}
// Handle non-overflow cases, 256 by 256 division.
if (prod1 == 0) {
// Solidity will revert if denominator == 0, unlike the div opcode on its own.
// The surrounding unchecked block does not change this fact.
// See https://docs.soliditylang.org/en/latest/control-structures.html#checked-or-unchecked-arithmetic.
return prod0 / denominator;
}
// Make sure the result is less than 2^256. Also prevents denominator == 0.
if (denominator <= prod1) {
revert MathOverflowedMulDiv();
}
///////////////////////////////////////////////
// 512 by 256 division.
///////////////////////////////////////////////
// Make division exact by subtracting the remainder from [prod1 prod0].
uint256 remainder;
assembly {
// Compute remainder using mulmod.
remainder := mulmod(x, y, denominator)
// Subtract 256 bit number from 512 bit number.
prod1 := sub(prod1, gt(remainder, prod0))
prod0 := sub(prod0, remainder)
}
// Factor powers of two out of denominator and compute largest power of two divisor of denominator.
// Always >= 1. See https://cs.stackexchange.com/q/138556/92363.
uint256 twos = denominator & (0 - denominator);
assembly {
// Divide denominator by twos.
denominator := div(denominator, twos)
// Divide [prod1 prod0] by twos.
prod0 := div(prod0, twos)
// Flip twos such that it is 2^256 / twos. If twos is zero, then it becomes one.
twos := add(div(sub(0, twos), twos), 1)
}
// Shift in bits from prod1 into prod0.
prod0 |= prod1 * twos;
// Invert denominator mod 2^256. Now that denominator is an odd number, it has an inverse modulo 2^256 such
// that denominator * inv = 1 mod 2^256. Compute the inverse by starting with a seed that is correct for
// four bits. That is, denominator * inv = 1 mod 2^4.
uint256 inverse = (3 * denominator) ^ 2;
// Use the Newton-Raphson iteration to improve the precision. Thanks to Hensel's lifting lemma, this also
// works in modular arithmetic, doubling the correct bits in each step.
inverse *= 2 - denominator * inverse; // inverse mod 2^8
inverse *= 2 - denominator * inverse; // inverse mod 2^16
inverse *= 2 - denominator * inverse; // inverse mod 2^32
inverse *= 2 - denominator * inverse; // inverse mod 2^64
inverse *= 2 - denominator * inverse; // inverse mod 2^128
inverse *= 2 - denominator * inverse; // inverse mod 2^256
// Because the division is now exact we can divide by multiplying with the modular inverse of denominator.
// This will give us the correct result modulo 2^256. Since the preconditions guarantee that the outcome is
// less than 2^256, this is the final result. We don't need to compute the high bits of the result and prod1
// is no longer required.
result = prod0 * inverse;
return result;
}
}
/**
* @notice Calculates x * y / denominator with full precision, following the selected rounding direction.
*/
function mulDiv(uint256 x, uint256 y, uint256 denominator, Rounding rounding) internal pure returns (uint256) {
uint256 result = mulDiv(x, y, denominator);
if (unsignedRoundsUp(rounding) && mulmod(x, y, denominator) > 0) {
result += 1;
}
return result;
}
/**
* @dev Returns the square root of a number. If the number is not a perfect square, the value is rounded
* towards zero.
*
* Inspired by Henry S. Warren, Jr.'s "Hacker's Delight" (Chapter 11).
*/
function sqrt(uint256 a) internal pure returns (uint256) {
if (a == 0) {
return 0;
}
// For our first guess, we get the biggest power of 2 which is smaller than the square root of the target.
//
// We know that the "msb" (most significant bit) of our target number `a` is a power of 2 such that we have
// `msb(a) <= a < 2*msb(a)`. This value can be written `msb(a)=2**k` with `k=log2(a)`.
//
// This can be rewritten `2**log2(a) <= a < 2**(log2(a) + 1)`
// → `sqrt(2**k) <= sqrt(a) < sqrt(2**(k+1))`
// → `2**(k/2) <= sqrt(a) < 2**((k+1)/2) <= 2**(k/2 + 1)`
//
// Consequently, `2**(log2(a) / 2)` is a good first approximation of `sqrt(a)` with at least 1 correct bit.
uint256 result = 1 << (log2(a) >> 1);
// At this point `result` is an estimation with one bit of precision. We know the true value is a uint128,
// since it is the square root of a uint256. Newton's method converges quadratically (precision doubles at
// every iteration). We thus need at most 7 iteration to turn our partial result with one bit of precision
// into the expected uint128 result.
unchecked {
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
result = (result + a / result) >> 1;
return min(result, a / result);
}
}
/**
* @notice Calculates sqrt(a), following the selected rounding direction.
*/
function sqrt(uint256 a, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = sqrt(a);
return result + (unsignedRoundsUp(rounding) && result * result < a ? 1 : 0);
}
}
/**
* @dev Return the log in base 2 of a positive value rounded towards zero.
* Returns 0 if given 0.
*/
function log2(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >> 128 > 0) {
value >>= 128;
result += 128;
}
if (value >> 64 > 0) {
value >>= 64;
result += 64;
}
if (value >> 32 > 0) {
value >>= 32;
result += 32;
}
if (value >> 16 > 0) {
value >>= 16;
result += 16;
}
if (value >> 8 > 0) {
value >>= 8;
result += 8;
}
if (value >> 4 > 0) {
value >>= 4;
result += 4;
}
if (value >> 2 > 0) {
value >>= 2;
result += 2;
}
if (value >> 1 > 0) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 2, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log2(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log2(value);
return result + (unsignedRoundsUp(rounding) && 1 << result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 10 of a positive value rounded towards zero.
* Returns 0 if given 0.
*/
function log10(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >= 10 ** 64) {
value /= 10 ** 64;
result += 64;
}
if (value >= 10 ** 32) {
value /= 10 ** 32;
result += 32;
}
if (value >= 10 ** 16) {
value /= 10 ** 16;
result += 16;
}
if (value >= 10 ** 8) {
value /= 10 ** 8;
result += 8;
}
if (value >= 10 ** 4) {
value /= 10 ** 4;
result += 4;
}
if (value >= 10 ** 2) {
value /= 10 ** 2;
result += 2;
}
if (value >= 10 ** 1) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 10, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log10(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log10(value);
return result + (unsignedRoundsUp(rounding) && 10 ** result < value ? 1 : 0);
}
}
/**
* @dev Return the log in base 256 of a positive value rounded towards zero.
* Returns 0 if given 0.
*
* Adding one to the result gives the number of pairs of hex symbols needed to represent `value` as a hex string.
*/
function log256(uint256 value) internal pure returns (uint256) {
uint256 result = 0;
unchecked {
if (value >> 128 > 0) {
value >>= 128;
result += 16;
}
if (value >> 64 > 0) {
value >>= 64;
result += 8;
}
if (value >> 32 > 0) {
value >>= 32;
result += 4;
}
if (value >> 16 > 0) {
value >>= 16;
result += 2;
}
if (value >> 8 > 0) {
result += 1;
}
}
return result;
}
/**
* @dev Return the log in base 256, following the selected rounding direction, of a positive value.
* Returns 0 if given 0.
*/
function log256(uint256 value, Rounding rounding) internal pure returns (uint256) {
unchecked {
uint256 result = log256(value);
return result + (unsignedRoundsUp(rounding) && 1 << (result << 3) < value ? 1 : 0);
}
}
/**
* @dev Returns whether a provided rounding mode is considered rounding up for unsigned integers.
*/
function unsignedRoundsUp(Rounding rounding) internal pure returns (bool) {
return uint8(rounding) % 2 == 1;
}
}
"
},
"contracts/utils/BaseDSContract.sol": {
"content": "/**
* Copyright 2025 Securitize Inc. All rights reserved.
*
* SPDX-License-Identifier: Apache-2.0
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
pragma solidity 0.8.22;
import {ServiceConsumer} from "../service/ServiceConsumer.sol";
import {UUPSUpgradeable} from "@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol";
import {ERC1967Utils} from "@openzeppelin/contracts/proxy/ERC1967/ERC1967Utils.sol";
abstract contract BaseDSContract is UUPSUpgradeable, ServiceConsumer {
function __BaseDSContract_init() public onlyProxy onlyInitializing {
__UUPSUpgradeable_init();
__ServiceConsumer_init();
}
/**
* @dev required by the OZ UUPS module
*/
function _authorizeUpgrade(address) internal override onlyMaster {}
/**
* @dev returns proxy ERC1967 implementation address
*/
function getImplementationAddress() external view returns (address) {
return ERC1967Utils.getImplementation();
}
/**
* @dev Returns the highest version that has been initialized. See {reinitializer}.
*/
function getInitializedVersion() external view returns (uint64) {
return _getInitializedVersion();
}
}
"
},
"contracts/data-stores/BaseLockManagerDataStore.sol": {
"content": "/**
* Copyright 2025 Securitize Inc. All rights reserved.
*
* SPDX-License-Identifier: Apache-2.0
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
pragma solidity 0.8.22;
import {ServiceConsumerDataStore} from "./ServiceConsumerDataStore.sol";
contract BaseLockManagerDataStore is ServiceConsumerDataStore {
struct Lock {
uint256 value;
uint256 reason;
string reasonString;
uint256 releaseTime;
}
/**
* @dev This empty reserved space is put in place to allow future versions to add new
* variables without shifting down storage in the inheritance chain.
* See https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps
*/
uint256[50] private __gap;
}
"
},
"contracts/service/ServiceConsumer.sol": {
"content": "/**
* Copyright 2025 Securitize Inc. All rights reserved.
*
* SPDX-License-Identifier: Apache-2.0
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
pragma solidity 0.8.22;
import {IDSServiceConsumer} from "./IDSServiceConsumer.sol";
import {ServiceConsumerDataStore} from "../data-stores/ServiceConsumerDataStore.sol";
import {IDSToken} from "../token/IDSToken.sol";
import {IDSWalletManager} from "../compliance/IDSWalletManager.sol";
import {IDSLockManager} from "../compliance/IDSLockManager.sol";
import {IDSComplianceService} from "../compliance/IDSComplianceService.sol";
import {IDSComplianceConfigurationService} from "../compliance/IDSComplianceConfigurationService.sol";
import {IDSRegistryService} from "../registry/IDSRegistryService.sol";
import {IDSTrustService} from "../trust/IDSTrustService.sol";
import {ISecuritizeRebasingProvider} from "../rebasing/ISecuritizeRebasingProvider.sol";
import {OwnableUpgradeable} from "@openzeppelin/contracts-upgradeable/access/OwnableUpgradeable.sol";
abstract contract ServiceConsumer is IDSServiceConsumer, ServiceConsumerDataStore, OwnableUpgradeable {
// Bring role constants to save gas both in deployment (less bytecode) and usage
uint8 public constant ROLE_NONE = 0;
uint8 public constant ROLE_MASTER = 1;
uint8 public constant ROLE_ISSUER = 2;
uint8 public constant ROLE_EXCHANGE = 4;
uint8 public constant ROLE_TRANSFER_AGENT = 8;
function __ServiceConsumer_init() public virtual onlyInitializing {
__Ownable_init(msg.sender);
}
modifier onlyMaster {
if(owner() != msg.sender) require(getTrustService().getRole(msg.sender) == ROLE_MASTER, "Insufficient trust level");
_;
}
/**
* @dev Allow invoking functions only by the users who have the MASTER role or the ISSUER role or the TRANSFER AGENT role.
*/
modifier onlyIssuerOrTransferAgentOrAbove() {
IDSTrustService trustManager = getTrustService();
uint8 role = trustManager.getRole(msg.sender);
require(role == ROLE_TRANSFER_AGENT || role == ROLE_ISSUER || role == ROLE_MASTER, "Insufficient trust level");
_;
}
modifier onlyIssuerOrAbove {
IDSTrustService trustManager = getTrustService();
uint8 role = trustManager.getRole(msg.sender);
require(role == ROLE_ISSUER || role == ROLE_MASTER, "Insufficient trust level");
_;
}
modifier onlyTransferAgentOrAbove {
IDSTrustService trustManager = getTrustService();
uint8 role = trustManager.getRole(msg.sender);
require(role == ROLE_TRANSFER_AGENT || role == ROLE_MASTER, "Insufficient trust level");
_;
}
modifier onlyExchangeOrAbove {
IDSTrustService trustManager = getTrustService();
uint8 role = trustManager.getRole(msg.sender);
require(role == ROLE_EXCHANGE || role == ROLE_ISSUER || role == ROLE_TRANSFER_AGENT || role == ROLE_MASTER, "Insufficient trust level");
_;
}
modifier onlyToken {
require(msg.sender == getDSService(DS_TOKEN), "This function can only called by the associated token");
_;
}
modifier onlyRegistry {
require(msg.sender == getDSService(REGISTRY_SERVICE), "This function can only called by the registry service");
_;
}
modifier onlyIssuerOrAboveOrToken {
if (msg.sender != getDSService(DS_TOKEN)) {
IDSTrustService trustManager = IDSTrustService(getDSService(TRUST_SERVICE));
require(trustManager.getRole(msg.sender) == ROLE_ISSUER || trustManager.getRole(msg.sender) == ROLE_MASTER, "Insufficient trust level");
}
_;
}
modifier onlyTransferAgentOrAboveOrToken {
if (msg.sender != getDSService(DS_TOKEN)) {
IDSTrustService trustManager = IDSTrustService(getDSService(TRUST_SERVICE));
require(trustManager.getRole(msg.sender) == ROLE_TRANSFER_AGENT || trustManager.getRole(msg.sender) == ROLE_MASTER, "Insufficient trust level");
}
_;
}
modifier onlyOwnerOrIssuerOrAbove {
if(owner() != msg.sender) {
IDSTrustService trustManager = getTrustService();
require(trustManager.getRole(msg.sender) == ROLE_ISSUER || trustManager.getRole(msg.sender) == ROLE_MASTER, "Insufficient trust level");
}
_;
}
function getDSService(uint256 _serviceId) public view override returns (address) {
return services[_serviceId];
}
function setDSService(uint256 _serviceId, address _address) public override onlyMaster returns (bool) {
services[_serviceId] = _address;
emit DSServiceSet(_serviceId, _address);
return true;
}
function getToken() internal view returns (IDSToken) {
return IDSToken(getDSService(DS_TOKEN));
}
function getTrustService() internal view returns (IDSTrustService) {
return IDSTrustService(getDSService(TRUST_SERVICE));
}
function getWalletManager() internal view returns (IDSWalletManager) {
return IDSWalletManager(getDSService(WALLET_MANAGER));
}
function getLockManager() internal view returns (IDSLockManager) {
return IDSLockManager(getDSService(LOCK_MANAGER));
}
function getComplianceService() internal view returns (IDSComplianceService) {
return IDSComplianceService(getDSService(COMPLIANCE_SERVICE));
}
function getRegistryService() internal view returns (IDSRegistryService) {
return IDSRegistryService(getDSService(REGISTRY_SERVICE));
}
function getComplianceConfigurationService() internal view returns (IDSComplianceConfigurationService) {
return IDSComplianceConfigurationService(getDSService(COMPLIANCE_CONFIGURATION_SERVICE));
}
function getRebasingProvider() internal view returns (ISecuritizeRebasingProvider) {
return ISecuritizeRebasingProvider(getDSService(REBASING_PROVIDER));
}
}
"
},
"node_modules/@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol": {
"content": "// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (proxy/utils/UUPSUpgradeable.sol)
pragma solidity ^0.8.20;
import {IERC1822Proxiable} from "@openzeppelin/contracts/interfaces/draft-IERC1822.sol";
import {ERC1967Utils} from "@openzeppelin/contracts/proxy/ERC1967/ERC1967Utils.sol";
import {Initializable} from "./Initializable.sol";
/**
* @dev An upgradeability mechanism designed for UUPS proxies. The functions included here can perform an upgrade of an
* {ERC1967Proxy}, when this contract is set as the implementation behind such a proxy.
*
* A security mechanism ensures that an upgrade does not turn off upgradeability accidentally, although this risk is
* reinstated if the upgrade retains upgradeability but removes the security mechanism, e.g. by replacing
* `UUPSUpgradeable` with a custom implementation of upgrades.
*
* The {_authorizeUpgrade} function must be overridden to include access restriction to the upgrade mechanism.
*/
abstract contract UUPSUpgradeable is Initializable, IERC1822Proxiable {
/// @custom:oz-upgrades-unsafe-allow state-variable-immutable
address private immutable __self = address(this);
/**
* @dev The version of the upgrade interface of the contract. If this getter is missing, both `upgradeTo(address)`
* and `upgradeToAndCall(address,bytes)` are present, and `upgradeTo` must be used if no function should be called,
* while `upgradeToAndCall` will invoke the `receive` function if the second argument is the empty byte string.
* If the getter returns `"5.0.0"`, only `upgradeToAndCall(address,bytes)` is present, and the second argument must
* be the empty byte string if no function should be called, making it impossible to invoke the `receive` function
* during an upgrade.
*/
string public constant UPGRADE_INTERFACE_VERSION = "5.0.0";
/**
* @dev The call is from an unauthorized context.
*/
error UUPSUnauthorizedCallContext();
/**
* @dev The storage `slot` is unsupported as a UUID.
*/
error UUPSUnsupportedProxiableUUID(bytes32 slot);
/**
* @dev Check that the execution is being performed through a delegatecall call and that the execution context is
* a proxy contract with an implementation (as defined in ERC1967) pointing to self. This should only be the case
* for UUPS and transparent proxies that are using the current contract as their implementation. Execution of a
* function through ERC1167 minimal proxies (clones) would not normally pass this test, but is not guaranteed to
* fail.
*/
modifier onlyProxy() {
_checkProxy();
_;
}
/**
* @dev Check that the execution is not being performed through a delegate call. This allows a function to be
* callable on the implementing contract but not through proxies.
*/
modifier notDelegated() {
_checkNotDelegated();
_;
}
function __UUPSUpgradeable_init() internal onlyInitializing {
}
function __UUPSUpgradeable_init_unchained() internal onlyInitializing {
}
/**
* @dev Implementation of the ERC1822 {proxiableUUID} function. This returns the storage slot used by the
* implementation. It is used to validate the implementation's compatibility when performing an upgrade.
*
* IMPORTANT: A proxy pointing at a proxiable contract should not be considered proxiable itself, because this risks
* bricking a proxy that upgrades to it, by delegating to itself until out of gas. Thus it is critical that this
* function revert if invoked through a proxy. This is guaranteed by the `notDelegated` modifier.
*/
function proxiableUUID() external view virtual notDelegated returns (bytes32) {
return ERC1967Utils.IMPLEMENTATION_SLOT;
}
/**
* @dev Upgrade the implementation of the proxy to `newImplementation`, and subsequently execute the function call
* encoded in `data`.
*
* Calls {_authorizeUpgrade}.
*
* Emits an {Upgraded} event.
*
* @custom:oz-upgrades-unsafe-allow-reachable delegatecall
*/
function upgradeToAndCall(address newImplementation, bytes memory data) public payable virtual onlyProxy {
_authorizeUpgrade(newImplementation);
_upgradeToAndCallUUPS(newImplementation, data);
}
/**
* @dev Reverts if the execution is not performed via delegatecall or the execution
* context is not of a proxy with an ERC1967-compliant implementation pointing to self.
* See {_onlyProxy}.
*/
function _checkProxy() internal view virtual {
if (
address(this) == __self || // Must be called through delegatecall
ERC1967Utils.getImplementation() != __self // Must be called through an active proxy
) {
revert UUPSUnauthorizedCallContext();
}
}
/**
* @dev Reverts if the execution is performed via delegatecall.
* See {notDelegated}.
*/
function _checkNotDelegated() internal view virtual {
if (address(this) != __self) {
// Must not be called through delegatecall
revert UUPSUnauthorizedCallContext();
}
}
/**
* @dev Function that should revert when `msg.sender` is not authorized to upgrade the contract. Called by
* {upgradeToAndCall}.
*
* Normally, this function will use an xref:access.adoc[access control] modifier such as {Ownable-onlyOwner}.
*
* ```solidity
* function _authorizeUpgrade(address) internal onlyOwner {}
* ```
*/
function _authorizeUpgrade(address newImplementation) internal virtual;
/**
* @dev Performs an implementation upgrade with a security check for UUPS proxies, and additional setup call.
*
* As a security check, {proxiableUUID} is invoked in the new implementation, and the return value
* is expected to be the implementation slot in ERC1967.
*
* Emits an {IERC1967-Upgraded} event.
*/
function _upgradeToAndCallUUPS(address newImplementation, bytes memory data) private {
try IERC1822Proxiable(newImplementation).proxiableUUID() returns (bytes32 slot) {
if (slot != ERC1967Utils.IMPLEMENTATION_SLOT) {
revert UUPSUnsupportedProxiableUUID(slot);
}
ERC1967Utils.upgradeToAndCall(newImplementation, data);
} catch {
// The implementation is not UUPS
revert ERC1967Utils.ERC1967InvalidImplementation(newImplementation);
}
}
}
"
},
"node_modules/@openzeppelin/contracts/proxy/ERC1967/ERC1967Utils.sol": {
"content": "// SPDX-License-Identifier: MIT
// OpenZeppelin Contracts (last updated v5.0.0) (proxy/ERC1967/ERC1967Utils.sol)
pragma solidity ^0.8.20;
import {IBeacon} from "../beacon/IBeacon.sol";
import {Address} from "../../utils/Address.sol";
import {StorageSlot} from "../../utils/StorageSlot.sol";
/**
* @dev This abstract contract provides getters and event emitting update functions for
* https://eips.ethereum.org/EIPS/eip-1967[EIP1967] slots.
*/
library ERC1967Utils {
// We re-declare ERC-1967 events here because they can't be used directly from IERC1967.
// This will be fixed in Solidity 0.8.21. At that point we should remove these events.
/**
* @dev Emitted when the implementation is upgraded.
*/
event Upgraded(address indexed implementation);
/**
* @dev Emitted when the admin account has changed.
*/
event AdminChanged(address previousAdmin, address newAdmin);
/**
* @dev Emitted when the beacon is changed.
*/
event BeaconUpgraded(address indexed beacon);
/**
* @dev Storage slot with the address of the current implementation.
* This is the keccak-256 hash of "eip1967.proxy.implementation" subtracted by 1.
*/
// solhint-disable-next-line private-vars-leading-underscore
bytes32 internal constant IMPLEMENTATION_SLOT = 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc;
/**
* @dev The `implementation` of the proxy is invalid.
*/
error ERC1967InvalidImplementation(address implementation);
/**
* @dev The `admin` of the proxy is invalid.
*/
error ERC1967InvalidAdmin(address admin);
/**
* @dev The `beacon` of the proxy is invalid.
*/
error ERC1967InvalidBeacon(address beacon);
/**
* @dev An upgrade function sees `msg.value > 0` that may be lost.
*/
error ERC1967NonPayable();
/**
* @dev Returns the current implementation address.
*/
function getImplementation() internal view returns (address) {
return StorageSlot.getAddressSlot(IMPLEMENTATION_SLOT).value;
}
/**
* @dev Stores a new address in the EIP1967 implementation slot.
*/
function _setImplementation(address newImplementation) private {
if (newImplementation.code.length == 0) {
revert ERC1967InvalidImplementation(newImplementation);
}
StorageSlot.getAddressSlot(IMPLEMENTATION_SLOT).value = newImplementation;
}
/**
* @dev Performs implementation upgrade with additional setup call if data is nonempty.
* This function is payable only if the setup call is performed, otherwise `msg.value` is rejected
* to avoid stuck value in the contract.
*
* Emits an {IERC1967-Upgraded} event.
*/
function upgradeToAndCall(address newImplementation, bytes memory data) internal {
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
if (data.length > 0) {
Address.functionDelegateCall(newImplementation, data);
} else {
_checkNonPayable();
}
}
/**
* @dev Storage slot with the admin of the contract.
* This is the keccak-256 hash of "eip1967.proxy.admin" subtracted by 1.
*/
// solhint-disable-next-line private-vars-leading-underscore
bytes32 internal constant ADMIN_SLOT = 0xb53127684a568b3173ae13b9f8a6016e243e63b6e8ee1178d6a717850b5d6103;
/**
* @dev Returns the current admin.
*
* TIP: To get this value clients can read directly from the storage slot shown below (specified by EIP1967) using
* the https://eth.wiki/json-rpc/API#eth_getstorageat[`eth_getStorageAt`] RPC call.
* `0xb53127684a568b3173ae13b9f8a6016e243e63b6e8ee1178d6a717850b5d6103`
*/
function getAdmin() internal view returns (address) {
return StorageSlot.getAddressSlot(ADMIN_SLOT).value;
}
/**
* @dev Stores a new address in the EIP1967 admin slot.
*/
function _setAdmin(address newAdmin) private {
if (newAdmin == address(0)) {
revert ERC1967InvalidAdmin(address(0));
}
StorageSlot.getAddressSlot(ADMIN_SLOT).value = newAdmin;
}
/**
* @dev Changes the admin of the proxy.
*
* Emits an {IERC1967-AdminChanged} event.
*/
function changeAdmin(address newAdmin) internal {
emit AdminChanged(getAdmin(), newAdmin);
_setAdmin(newAdmin);
}
/**
* @dev The storage slot of the UpgradeableBeacon contract which defines the implementation for this proxy.
* This is the keccak-256 hash of "eip1967.proxy.beacon" subtracted by 1.
*/
// solhint-disable-next-line private-vars-leading-underscore
bytes32 internal constant BEACON_SLOT = 0xa3f0ad74e5423aebfd80d3ef4346578335a9a72aeaee59ff6cb3582b35133d50;
/**
* @dev Returns the current beacon.
*/
function getBeacon() internal view returns (address) {
return StorageSlot.getAddressSlot(BEACON_SLOT).value;
}
/**
* @dev Stores a new beacon in the EIP1967 beacon slot.
*/
function _setBeacon(address newBeacon) private {
if (newBeacon.code.length == 0) {
revert ERC1967InvalidBeacon(newBeacon);
}
StorageSlot.getAddressSlot(BEACON_SLOT).value = newBeacon;
address beaconImplementation = IBeacon(newBeacon).implementation();
if (beaconImplementation.code.length == 0) {
revert ERC1967InvalidImplementation(beaconImplementation);
}
}
/**
* @dev Change the beacon and trigger a setup call if data is nonempty.
* This function is payable only if the setup call is performed, otherwise `msg.value` is rejected
* to avoid stuck value in the contract.
*
* Emits an {IERC1967-BeaconUpgraded} event.
*
* CAUTION: Invoking this function has no effect on an instance of {BeaconProxy} since v5, since
* it uses an immutable beacon without looking at the value of the ERC-1967 beacon slot for
* efficiency.
*/
function upgradeBeaconToAndCall(address newBeacon, bytes memory data) internal {
_setBeacon(newBeacon);
emit BeaconUpgraded(newBeacon);
if (data.length > 0) {
Address.functionDelegateCall(IBeacon(newBeacon).implementation(), data);
} else {
_checkNonPayable();
}
}
/**
* @dev Reverts if `msg.value` is not zero. It can be used to avoid `msg.value` stuck in the contract
* if an upgrade doesn't perform an initialization call.
*/
function _checkNonPayable() private {
if (msg.value > 0) {
revert ERC1967NonPayable();
}
}
}
"
},
"contracts/data-stores/ServiceConsumerDataStore.sol": {
"content": "/**
* Copyright 2025 Securitize Inc. All rights reserved.
*
* SPDX-License-Identifier: Apache-2.0
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
pragma solidity 0.8.22;
contract ServiceConsumerDataStore {
mapping(uint256 serviceId => address service) internal services;
/**
* @dev This empty reserved space is put in place to allow future versions to add new
* variables without shifting down storage in the inheritance chain.
* See https://docs.openzeppelin.com/contracts/4.x/upgradeable#storage_gaps
*/
uint256[49] private __gap;
}
"
},
"contracts/service/IDSServiceConsumer.sol": {
"content": "/**
* Copyright 2025 Securitize Inc. All rights reserved.
*
* SPDX-License-Identifier: Apache-2.0
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
pragma solidity 0.8.22;
abstract contract IDSServiceConsumer {
uint256 public constant TRUST_SERVICE = 1;
uint256 public constant DS_TOKEN = 2;
uint256 public constant REGISTRY_SERVICE = 4;
uint256 public constant COMPLIANCE_SERVICE = 8;
uint256 public constant UNUSED_1 = 16;
uint256 public constant WALLET_MANAGER = 32;
uint256 public constant LOCK_MANAGER = 64;
uint256 public constant DEPRECATED_PARTITIONS_MANAGER = 128;
uint256 public constant COMPLIANCE_CONFIGURATION_SERVICE = 256;
uint256 public constant TOKEN_ISSUER = 512;
uint256 public constant WALLET_REGISTRAR = 1024;
uint256 public constant DEPRECATED_OMNIBUS_TBE_CONTROLLER = 2048; // Deprecated, keep for backward compatibility
uint256 public constant TRANSACTION_RELAYER = 4096;
uint256 public constant DEPRECATED_TOKEN_REALLOCATOR = 8192; // Deprecated, keep for backward compatibility
uint256 public constant DEPRECATED_ISSUER_MULTICALL = 0;
uint256 public constant DEPRECATED_TA_MULTICALL = 0;
uint256 public constant DEPRECATED_SECURITIZE_SWAP = 16384;
uint256 public constant REBASING_PROVIDER = 8196;
function getDSService(uint256 _serviceId) public view virtual returns (address);
function setDSService(
uint256 _serviceId,
address _address /*onlyMaster*/
) public virtual returns (bool);
event DSServiceSet(uint256 serviceId, address serviceAddress);
}
"
},
"contracts/token/IDSToken.sol": {
"content": Submitted on: 2025-10-10 09:04:06
Comments
Log in to comment.
No comments yet.