diff --git a/ERCS/erc-1066.md b/ERCS/erc-1066.md index 7f60fe566e..8b8c2a813a 100644 --- a/ERCS/erc-1066.md +++ b/ERCS/erc-1066.md @@ -236,7 +236,7 @@ Currently unspecified. (Full range reserved) #### `0x7*` TBD -Currently unspecifie. (Full range reserved) +Currently unspecified. (Full range reserved) #### `0x8*` TBD diff --git a/ERCS/erc-1077.md b/ERCS/erc-1077.md index 4ae82ddc2c..ca2a8a91f2 100644 --- a/ERCS/erc-1077.md +++ b/ERCS/erc-1077.md @@ -85,7 +85,7 @@ The fields **MUST** be constructed as this method: The first and second fields are to make it [EIP-191] compliant. Starting a transaction with `byte(0x19)` ensure the signed data from being a [valid ethereum transaction](https://github.com/ethereum/wiki/wiki/RLP). The second argument is a version control byte. The third being the validator address (the account contract address) according to version 0 of [EIP-191]. The remaining arguments being the application specific data for the gas relay: chainID as per [EIP-1344], execution nonce, execution data, agreed gas Price, gas limit of gas relayed call, gas token to pay back and gas relayer authorized to receive the reward. -The [EIP-191] message must be constructed as following: +The [EIP-191] message must be constructed as follows: ```solidity keccak256( abi.encodePacked( diff --git a/ERCS/erc-1081.md b/ERCS/erc-1081.md index f73b2c7011..bbb330361f 100644 --- a/ERCS/erc-1081.md +++ b/ERCS/erc-1081.md @@ -28,7 +28,7 @@ After studying bounties as they've existed for thousands of years (and after imp To implement these steps, a number of functions are needed: - `initializeBounty(address _issuer, address _arbiter, string _data, uint _deadline)`: This is used when deploying a new StandardBounty contract, and is particularly useful when applying the proxy design pattern, whereby bounties cannot be initialized in their constructors. Here, the data string should represent an IPFS hash, corresponding to a JSON object which conforms to the schema (described below). - `fulfillBounty(address[] _fulfillers, uint[] _numerators, uint _denomenator, string _data)`: This is called to submit a fulfillment, submitting a string representing an IPFS hash which contains the deliverable for the bounty. Initially fulfillments could only be submitted by one individual at a time, however users consistently told us they desired to be able to collaborate on fulfillments, thereby allowing the credit for submissions to be shared by several parties. The lines along which eventual payouts are split are determined by the fractions of the submission credited to each fulfiller (using the array of numerators and single denominator). Here, a bounty platform may also include themselves as a collaborator to collect a small fee for matching the bounty with fulfillers. -- `acceptFulfillment(uint _fulfillmentId, StandardToken[] _payoutTokens, uint[] _tokenAmounts)`: This is called by the `issuer` or the `arbiter` to pay out a given fulfillment, using an array of tokens, and an array of amounts of each token to be split among the contributors. This allows for the bounty payout amount to move as it needs to based on incoming contributions (which may be transferred directly to the contract address). It also allows for the easy splitting of a given bounty's balance among several fulfillments, if the need should arise. +- `acceptFulfillment(uint _fulfillmentId, StandardToken[] _payoutTokens, uint[] _tokenAmounts)`: This is called by the `issuer` or the `arbiter` to pay out a given fulfillment, using an array of tokens, and an array of amounts of each token to be split among the contributors. This allows for the bounty payout amount to move as it needs to be based on incoming contributions (which may be transferred directly to the contract address). It also allows for the easy splitting of a given bounty's balance among several fulfillments, if the need should arise. - `drainBounty(StandardToken[] _payoutTokens)`: This may be called by the `issuer` to drain a bounty of it's funds, if the need should arise. - `changeBounty(address _issuer, address _arbiter, string _data, uint _deadline)`: This may be called by the `issuer` to change the `issuer`, `arbiter`, `data`, and `deadline` fields of their bounty. - `changeIssuer(address _issuer)`: This may be called by the `issuer` to change to a new `issuer` if need be diff --git a/ERCS/erc-6734.md b/ERCS/erc-6734.md index bacfe8f19e..f22df1b8fe 100644 --- a/ERCS/erc-6734.md +++ b/ERCS/erc-6734.md @@ -4,11 +4,11 @@ title: L2 Token List description: Token List that ensures the correct identification of tokens from different Layer 1, Layer 2, or Sidechains. author: Kelvin Fichter (@smartcontracts), Andreas Freund (@Therecanbeonlyone1969), Pavel Sinelnikov (@psinelnikov) discussions-to: https://ethereum-magicians.org/t/canonical-token-list-standard-from-the-eea-oasis-community-projects-l2-standards-working-group/13091 -status: Draft +status: Review type: Standards Track category: ERC created: 2023-03-20 -requires: 155, 3220 +requires: 155 --- ## Abstract @@ -133,12 +133,7 @@ The chainId property utilized MUST allow for the requirements of the [EIP-155](. Namely, transaction replay protection on the network that is identified by the chainId property value. Note, that for replay protection to be guaranteed, the chainId should be unique. Ensuring a unique chainId is beyond the scope of this document. -[[R4]](#r4) testability: EIP-155 requires that a transaction hash is derived from the keccak256 hash of the following nine RLP encoded elements `(nonce, gasprice, startgas, to, value, data, chainid, 0, 0)` which can be tested easily with existing cryptographic libraries. EIP-155 further requires that the `v` value of the secp256k1 signature must be set to `{0,1} + CHAIN_ID * 2 + 35` where `{0,1}` is the parity of the `y` value of the curve point for which the signature `r`-value is the `x`-value in the secp256k1 signing process. This requirement is testable with available open-source secp256k1 digital signature suites. Therefore, [[R4]](#r4) is testable. - - **[D2]** -The `chainId` property SHOULD follow [EIP-3220](./eip-3220.md) draft standard. - -[[D2]](#d2) testability: The [EIP-3220](./eip-3220.md) draft standard can be tested because the crosschain id is specified as a concatenation of well-defined strings, and using open source tooling can be used to parse and split a crosschain id, the obtained string segments can be compared against expected string lengths, and context dependent, the values for the strings specified in the standard. Consequently, [[D2]](#d2) is testable. +[[R4]](#r4) testability: EIP-155 requires that a transaction hash is derived from the keccak256 hash of the following nine RLP encoded elements `(nonce, gasprice, startgas, to, value, data, chainid, 0, 0)` which can be tested easily with existing cryptographic libraries. EIP-155 further requires that the `v` value of the secp256k1 signature must be set to `{0,1} + CHAIN_ID * 2 + 35` where `{0,1}` is the parity of the `y` value of the curve point for which the signature `r`-value is the `x`-value in the secp256k1 signing process. This requirement is testable with available open-source secp256k1 digital signature suites. Therefore, [[R4]](#r4) is testable. **[O1]** The `humanReadableTokenSymbol` property MAY be used. @@ -491,10 +486,10 @@ This document defines the conformance levels of a canonical token list as follow * **Level 2:** All MUST and SHOULD requirements are fulfilled by a specific implementation as proven by a test report that proves in an easily understandable manner the implementation's conformance with each requirement based on implementation-specific test-fixtures with implementation-specific test-fixture inputs. * **Level 3:** All MUST, SHOULD, and MAY requirements with conditional MUST or SHOULD requirements are fulfilled by a specific implementation as proven by a test report that proves in an easily understandable manner the implementation's conformance with each requirement based on implementation-specific test-fixtures with implementation-specific test-fixture inputs. - **[D3]** + **[D2]** A claim that a canonical token list implementation conforms to this specification SHOULD describe a testing procedure carried out for each requirement to which conformance is claimed, that justifies the claim with respect to that requirement. -[[D3]](#d3) testability: Since each of the non-conformance-target requirements in this documents is testable, so must be the totality of the requirements in this document. Therefore, conformance tests for all requirements can exist, and can be described as required in [[D3]](#d3). +[[D2]](#d2) testability: Since each of the non-conformance-target requirements in this documents is testable, so must be the totality of the requirements in this document. Therefore, conformance tests for all requirements can exist, and can be described as required in [[D2]](#d2). **[R5]** A claim that a canonical token list implementation conforms to this specification at **Level 2** or higher MUST describe the testing procedure carried out for each requirement at **Level 2** or higher, that justifies the claim to that requirement. diff --git a/ERCS/erc-6909.md b/ERCS/erc-6909.md index ea343004ee..63d566397f 100644 --- a/ERCS/erc-6909.md +++ b/ERCS/erc-6909.md @@ -4,7 +4,7 @@ title: Minimal Multi-Token Interface description: A minimal specification for managing multiple tokens by their id in a single contract. author: JT Riley (@jtriley-eth), Dillon (@d1ll0n), Sara (@snreynolds), Vectorized (@Vectorized), Neodaoist (@neodaoist) discussions-to: https://ethereum-magicians.org/t/eip-6909-multi-token-standard/13891 -status: Draft +status: Review type: Standards Track category: ERC created: 2023-04-19 diff --git a/ERCS/erc-7007.md b/ERCS/erc-7007.md index caac5be17b..ddf6a83c22 100644 --- a/ERCS/erc-7007.md +++ b/ERCS/erc-7007.md @@ -4,8 +4,7 @@ title: Verifiable AI-Generated Content Token description: An ERC-721 extension for verifiable AI-generated content tokens using Zero-Knowledge and Optimistic Machine Learning techniques author: Cathie So (@socathie), Xiaohang Yu (@xhyumiracle), Conway (@0x1cc), Lee Ting Ting (@tina1998612), Kartin discussions-to: https://ethereum-magicians.org/t/eip-7007-zkml-aigc-nfts-an-erc-721-extension-interface-for-zkml-based-aigc-nfts/14216 -status: Last Call -last-call-deadline: 2024-09-30 +status: Final type: Standards Track category: ERC created: 2023-05-10 @@ -233,4 +232,4 @@ In the opML scenario, it is important to consider that the `aigcData` might chan ## Copyright -Copyright and related rights waived via [CC0](../LICENSE.md). \ No newline at end of file +Copyright and related rights waived via [CC0](../LICENSE.md). diff --git a/ERCS/erc-7417.md b/ERCS/erc-7417.md index 33b8b711af..5f2af30f98 100644 --- a/ERCS/erc-7417.md +++ b/ERCS/erc-7417.md @@ -15,11 +15,15 @@ requires: 20, 165, 223 There are multiple token standards on Ethereum chain currently. This EIP introduces a concept of cross-standard interoperability by creating a service that allows [ERC-20](./eip-20.md) tokens to be upgraded to [ERC-223](./eip-223.md) tokens anytime. [ERC-223](./eip-223.md) tokens can be converted back to [ERC-20](./eip-20.md) version without any restrictions to avoid any problems with backwards compatibility and allow different standards to co-exist and become interoperable and interchangeable. -To perform the conversion, the user must send tokens of one standard to the Converter contract and he will automatically receive tokens of another standard. +In order to perform the conversion, a user must deposit tokens of one standard to the Converter contract and it will automatically send tokens of another standard back. ## Motivation -When an ERC-20 contract is upgraded, finding the new address introduces risk. This proposal creates a service that performs token conversion and prevents potentially unsafe implementations from spreading. +This proposal introduces a concept of token standard upgrading procedure driven by a specialized smart-contract which can convert tokens of one standard to another at any time as well as create an alternative version of any existing token of the older standard. + +Currently some tokens are available on different chains in different standards, for example most exchanges support [ERC-20](./eip-20.md) USDT, TRX USDT, BEP-20 USDT and all this tokens are in fact the same USDT token. This proposal is intended to introduce a concept where there can be a [ERC-20](./eip-20.md) USDT and [ERC-223](./eip-223.md) USDT available on Ethereum mainnet at the same time and both can co-exist. + +The address of the deployed Token Converter must be described here as to solve the trust issues for the token developers and help them figure out a proper way of interacting with the Converter. ## Specification @@ -41,21 +45,54 @@ Converter contract MUST accept deposits of [ERC-223](./eip-223.md) tokens and se #### Conver contract methods -##### `getWrapperFor` +##### `getERC20WrapperFor` + +```solidity +function getERC20WrapperFor(address _token) public view returns (address) +``` + +Returns the address of the [ERC-20](./eip-20.md) wrapper for a given token address. Returns `0x0` if there is no [ERC-20](./eip-20.md) version for the provided token address. There can be exactly one wrapper for any given [ERC-223](./eip-223.md) token address created by the Token Converter contract. + +##### `getERC223WrapperFor` ```solidity -function getWrapperFor(address _erc20Token) public view returns (address) +function getERC223WrapperFor(address _token) public view returns (address) ``` -Returns the address of the [ERC-223](./eip-223.md) wrapper for a given [ERC-20](./eip-20.md) original token. Returns `0x0` if there is no [ERC-223](./eip-223.md) version for the provided [ERC-20](./eip-20.md) token address. There MUST be exactly one wrapper for any given [ERC-20](./eip-20.md) token address created by the Token Converter contract. +Returns the address of the [ERC-223](./eip-223.md) wrapper for a given token address. Returns `0x0` if there is no [ERC-223](./eip-223.md) version for the provided token address. There can be exactly one [ERC-223](./eip-223.md) wrapper for any given [ERC-20](./eip-20.md) token address created by the Token Converter contract. -##### `getOriginFor` +##### `getERC20OriginFor` ```solidity -function getOriginFor(address _erc223Token) public view returns (address) +function getERC20OriginFor(address _erc223Token) public view returns (address) ``` -Returns the address of the original [ERC-20](./eip-20.md) token for a given [ERC-223](./eip-223.md) wrapper. Returns `0x0` if the provided `_erc223Token` is not an address of any [ERC-223](./eip-223.md) wrapper created by the Token Converter contract. +Returns the address of the original [ERC-20](./eip-20.md) token for the provided [ERC-223](./eip-223.md) wrapper. Returns `0x0` if the provided `_erc223Token` is not an address of any [ERC-223](./eip-223.md) wrapper created by the Token Converter contract. + +##### `getERC223OriginFor` + +```solidity +function getERC223OriginFor(address _erc20Token) public view returns (address) +``` + +Returns the address of the original [ERC-223](./eip-223.md) token for the provided [ERC-20](./eip-20.md) wrapper. Returns `0x0` if the provided `_erc20Token` is not an address of any wrapper created by the Token Converter contract. + +##### `predictWrapperAddress` + +```solidity +function predictWrapperAddress(address _token, + bool _isERC20 // Is the provided _token a ERC-20 or not? + // If it is set as ERC-20 then we will predict the address of a + // ERC-223 wrapper for that token. + // Otherwise we will predict ERC-20 wrapper address. + ) view external returns (address) +``` + +Wrapper contracts are deployed via `CREATE2` opcode and it is possible to predict the address of a wrapper which is not yet deployed. The address of a wrapper contract depends on the bytecode therefore it is necessary to specify if the address of wrapper [ERC-20](./eip-20.md) or wrapper [ERC-223](./eip-223.md) must be predicted. + +Providing `_token` address and `_isERC20 = false` will result in [ERC-20](./eip-20.md) wrapper address being predicted. + +Providing `_token` address and `_isERC20 = true` will result in [ERC-223](./eip-223.md) wrapper address being predicted. ##### `createERC223Wrapper` @@ -63,19 +100,66 @@ Returns the address of the original [ERC-20](./eip-20.md) token for a given [ERC function createERC223Wrapper(address _erc20Token) public returns (address) ``` -Creates a new [ERC-223](./eip-223.md) wrapper for a given `_erc20Token` if it does not exist yet. Reverts the transaction if the wrapper already exist. Returns the address of the new wrapper token contract on success. +Creates a new [ERC-223](./eip-223.md) wrapper for a given `_erc20Token` if it does not exist yet. Reverts the transaction if the wrapper already exist. Returns the address of the new wrapper token contract on success. Reverts if `_erc223Token` is a wrapper created by the Converter. + +The deployed contract will be a standard [ERC-223](./eip-223.md) token with `approve` and `transferFrom` functions implemented for backwards compatibility. + +All [ERC-223](./eip-223.md) wrappers deployed by the Converter will have `standard() pure returns (bytes32)` function implemented which returns `223`. This serves further token standard introspection as [ERC-165](./eip-165.md) may not be reliable when dealing with identifying the internal logic implemented within `transfer` function of a token. -##### `convertERC20toERC223` +NOTE: This function does not verify the standard of `_erc20Token` because there is no reliable method of introspection available which could guarantee that the provided token implements a particular standard. As the result it is possible to create a [ERC-223](./eip-223.md) wrapper for an original [ERC-223](./eip-223.md) token. + +##### `createERC20Wrapper` ```solidity -function convertERC20toERC223(address _erc20token, uint256 _amount) public returns (bool) +function createERC20Wrapper(address _erc223Token) public returns (address) ``` -Withdraws `_amount` of [ERC-20](./eip-20.md) token from the transaction senders balance with `transferFrom` function. Sends the `_amount` of [ERC-223](./eip-223.md) wrapper tokens to the sender of the transaction. Stores the original tokens at the balance of the Token Converter contract for future claims. Returns `true` on success. The Token Converter must keep record of the amount of [ERC-20](./eip-20.md) tokens that were deposited with `convertERC20toERC223` function because it is possible to deposit [ERC-20](./eip-20.md) tokens to any contract by directly sending them with `transfer` function. +Creates a new [ERC-20](./eip-20.md) wrapper for a given `_erc223Token` if it does not exist yet. Reverts the transaction if the wrapper already exist. Returns the address of the new wrapper token contract on success. Reverts if `_erc223Token` is a wrapper created by the Converter. + +NOTE: This function does not verify the standard of `_erc223Token` because there is no reliable method of introspection available which could guarantee that the provided token implements a particular standard. As the result it is possible to create a [ERC-20](./eip-20.md) wrapper for an original [ERC-20](./eip-20.md) token. + +##### `wrapERC20toERC223` + +```solidity +function wrapERC20toERC223(address _ERC20token, uint256 _amount) public returns (bool) +``` + +Withdraws `_amount` of [ERC-20](./eip-20.md) tokens from the transaction sender with `transferFrom` function. Delivers the `_amount` of [ERC-223](./eip-223.md) wrapper tokens to the sender of the transaction. Stores the original tokens at the balance of the Token Converter contract for future claims. Returns `true` on success. The Token Converter must keep record of the amount of [ERC-20](./eip-20.md) tokens that were deposited with `wrapERC20toERC223` function because it is possible to deposit [ERC-20](./eip-20.md) tokens to any contract by directly sending them with `transfer` function. If there is no [ERC-223](./eip-223.md) wrapper for the `_ERC20token` then creates it by calling a `createERC223Wrapper(_erc20toke)` function. -If the provided `_erc20token` address is an address of a [ERC-223](./eip-223.md) wrapper reverts the transaction. +There is no special function to unwrap [ERC-223](./eip-223.md) wrappers to [ERC-20](./eip-20.md) origin as this logic is implemented in the `tokenReceived` function of the Converter. + +##### `unwrapERC20toERC223` + +```solidity +function unwrapERC20toERC223(address _ERC20token, uint256 _amount) public returns (bool) +``` + +Withdraws `_amount` of [ERC-20](./eip-20.md) tokens from the transaction sender with `transferFrom` function. Delivers the `_amount` of [ERC-223](./eip-223.md) wrapper tokens to the sender of the transaction. Stores the original tokens at the balance of the Token Converter contract for future claims. Returns `true` on success. The Token Converter must keep record of the amount of [ERC-20](./eip-20.md) tokens that were deposited with `wrapERC20toERC223` function because it is possible to deposit [ERC-20](./eip-20.md) tokens to any contract by directly sending them with `transfer` function. + +If there is no [ERC-223](./eip-223.md) wrapper for the `_ERC20token` then creates it by calling a `createERC223Wrapper(_erc20toke)` function. + + +##### `convertERC20` + +```solidity +function convertERC20(address _token, uint256 _amount) public returns (bool) +``` + +Automatically determines if the provided [ERC-20](./eip-20.md) token is a wrapper or not. If it is a wrapper then executes `unwrapERC20toERC223` function. If the provided token is an origin then executes `wrapERC20toERC223` function. + +This function is implemented to significantly simplify the workflow of services that integrate both versions of one token in the same contract and need to automatically convert tokens through the Converter. + +##### `isWrapper` + +```solidity +function isWrapper(address _token) public view returns (bool) +``` + +Returns `true` if the provided `_token` address is an address of a wrapper created by the Converter. + +NOTE: This function does not identify the standard of a `_token`. There can be exactly one origin for any wrapper created by the Converter. However an original token can have two wrappers, one of each standard. ##### `tokenReceived` @@ -83,23 +167,23 @@ If the provided `_erc20token` address is an address of a [ERC-223](./eip-223.md) function tokenReceived(address _from, uint _value, bytes memory _data) public override returns (bytes4) ``` -This is a standard [ERC-223](./eip-223.md) transaction handler function and it is called by the [ERC-223](./eip-223.md) token contract when `_from` is sending `_value` of [ERC-223](./eip-223.md) tokens to `address(this)` address. In the scope of this function `msg.sender` is the address of the [ERC-223](./eip-223.md) token contract and `_from` is the initiator of the transaction. +This is a standard [ERC-223](./eip-223.md) transaction handler function and it is called by the [ERC-223](./eip-223.md) token contract when `_from` is sending `_value` of [ERC-223](./eip-223.md) tokens to `address(this)` address. In the scope of this function `msg.sender` is the address of the [ERC-223](./eip-223.md) token contract and `_from` is the sender of the token transfer. -If `msg.sender` is an address of [ERC-223](./eip-223.md) wrapper created by the Token Converter then `_value` of [ERC-20](./eip-20.md) original token must be sent to the `_from` address. +Automatically determines -If `msg.sender` is not an address of any [ERC-223](./eip-223.md) wrapper known to the Token Converter then revert the transaction thus returning any `ERC-223` tokens back to the sender. +If `msg.sender` is an address of [ERC-223](./eip-223.md) wrapper created by the Token Converter then `_value` of [ERC-20](./eip-20.md) original token must be sent to the `_from` address. -This is the function that MUST be used to convert [ERC-223](./eip-223.md) wrapper tokens back to original [ERC-20](./eip-20.md) tokens. This function is automatically executed when [ERC-223](./eip-223.md) tokens are sent to the address of the Token Converter. If any arbitrary [ERC-223](./eip-223.md) token is sent to the Token Converter it will be rejected. +If `msg.sender` is not an address of any [ERC-223](./eip-223.md) wrapper known to the Token Converter then it is considered a [ERC-223](./eip-223.md) origin and `_value` amount of [ERC-20](./eip-20.md) wrapper tokens must be sent to the `_from` address. If the [ERC-20](./eip-20.md) wrapper for the `msg.sender` token does not exist then create it first. Returns `0x8943ec02`. -##### `rescueERC20` +##### `extractStuckERC20` ```solidity -function rescueERC20(address _token) external +function extractStuckERC20(address _token) ``` -This function allows to extract the [ERC-20](./eip-20.md) tokens that were directly deposited to the contract with `transfer` function to prevent users who may send tokens by mistake from permanently freezing their assets. Since the Token Converter calculates the amount of tokens that were deposited legitimately with `convertERC20toERC223` function it is always possible to calculate the amount of "accidentally deposited tokens" by subtracting the recorded amount from the returned value of the `balanceOf( address(this) )` function called on the [ERC-20](./eip-20.md) token contract. +This function allows to extract the [ERC-20](./eip-20.md) tokens that were directly deposited to the contract with `transfer` function to prevent users who may send tokens by mistake from permanently losing their tokens. Since the Token Converter calculates the amount of tokens that were deposited legitimately with `convertERC20toERC223` function it is always possible to calculate the amount of "accidentally deposited tokens" by subtracting the recorded amount from the returned value of the `balanceOf( address(this) )` function called on the [ERC-20](./eip-20.md) token contract. ### Converting [ERC-20](./eip-20.md) tokens to [ERC-223](./eip-223.md) @@ -117,15 +201,27 @@ In order to convert [ERC-20](./eip-20.md) tokens to [ERC-223](./eip-223.md) the ## Rationale - +For example it was a common case with [ERC-20](./eip-20.md) where developers could implement custom logic of the `transfer` function and mess the return values. The [ERC-20](./eip-20.md) specification declares that a `transfer` function MUST return a `bool` value, however in practice we have three different types of [ERC-20](./eip-20.md) tokens which are not compatible with each other: -TBD +1. [ERC-20](./eip-20.md) tokens that return `true` on success and revert on an error. +2. [ERC-20](./eip-20.md) tokens that return `true` on success and `false` on an error without reverting the transaction. +3. [ERC-20](./eip-20.md) tokens that don't have return values and revert on an error. + +Technically the third category of tokens is not compatible with [ERC-20](./eip-20.md) standard. However, USDT token deployed on Ethereum mainnet at `0xdac17f958d2ee523a2206206994597c13d831ec7` address does not implement return values and it is one of the most used tokens and it is not an option to deny supporting USDT due to it's improper implementation of the standard. + +The Token Converter eliminates the issue where different development teams may implement the standard with slight modifications and result in a situation where we would have different versions of the same standard on the mainnet. + +At the same time the Converter enables the concurrent token support in other smart-contracts, such as decentralized exchanges. The Converter can guarantee that a pair of two tokens one of which is a wrapper for another is in fact the same token that can be converted from one standard to another at any time. This enables the creation of liquidity pools where two different tokens are dealt with as if they were one token while in fact these are exactly one token available in different standards. ## Backwards Compatibility @@ -136,7 +232,389 @@ This service is the first of its kind and therefore does not have any backwards ## Reference Implementation ```solidity - address public ownerMultisig; + +// SPDX-License-Identifier: GPL-3.0 + +pragma solidity =0.8.19; + +library Address { + function isContract(address account) internal view returns (bool) { + // This method relies on extcodesize, which returns 0 for contracts in + // construction, since the code is only stored at the end of the + // constructor execution. + + uint256 size; + // solhint-disable-next-line no-inline-assembly + assembly { size := extcodesize(account) } + return size > 0; + } +} + +interface IERC20 { + function totalSupply() external view returns (uint256); + function balanceOf(address account) external view returns (uint256); + function transfer(address recipient, uint256 amount) external returns (bool); + function allowance(address owner, address spender) external view returns (uint256); + function approve(address spender, uint256 amount) external returns (bool); + function transferFrom(address sender, address recipient, uint256 amount) external returns (bool); + event Transfer(address indexed from, address indexed to, uint256 value); + event Approval(address indexed owner, address indexed spender, uint256 value); +} + +interface IERC20Metadata is IERC20 { + /// @return The name of the token + function name() external view returns (string memory); + + /// @return The symbol of the token + function symbol() external view returns (string memory); + + /// @return The number of decimal places the token has + function decimals() external view returns (uint8); +} + +abstract contract IERC223Recipient { + function tokenReceived(address _from, uint _value, bytes memory _data) public virtual returns (bytes4) + { + return 0x8943ec02; + } +} + +abstract contract ERC165 { + /* + * bytes4(keccak256('supportsInterface(bytes4)')) == 0x01ffc9a7 + */ + bytes4 private constant _INTERFACE_ID_ERC165 = 0x01ffc9a7; + mapping(bytes4 => bool) private _supportedInterfaces; + + constructor () { + // Derived contracts need only register support for their own interfaces, + // we register support for ERC165 itself here + _registerInterface(_INTERFACE_ID_ERC165); + } + function supportsInterface(bytes4 interfaceId) public view virtual returns (bool) { + return _supportedInterfaces[interfaceId]; + } + function _registerInterface(bytes4 interfaceId) internal virtual { + require(interfaceId != 0xffffffff, "ERC165: invalid interface id"); + _supportedInterfaces[interfaceId] = true; + } +} + +abstract contract IERC223 { + function name() public view virtual returns (string memory); + function symbol() public view virtual returns (string memory); + function decimals() public view virtual returns (uint8); + function totalSupply() public view virtual returns (uint256); + function balanceOf(address who) public virtual view returns (uint); + function transfer(address to, uint value) public virtual returns (bool success); + function transfer(address to, uint value, bytes calldata data) public payable virtual returns (bool success); + event Transfer(address indexed from, address indexed to, uint value, bytes data); +} + +interface standardERC20 +{ + event Transfer(address indexed from, address indexed to, uint256 value); + event Approval(address indexed owner, address indexed spender, uint256 value); + function totalSupply() external view returns (uint256); + function balanceOf(address account) external view returns (uint256); + function transfer(address to, uint256 value) external returns (bool); + function allowance(address owner, address spender) external view returns (uint256); + function approve(address spender, uint256 value) external returns (bool); + function transferFrom(address from, address to, uint256 value) external returns (bool); +} + +/** + * @dev Interface of the ERC20 standard as defined in the EIP. + */ +interface IERC223WrapperToken { + function name() external view returns (string memory); + function symbol() external view returns (string memory); + function decimals() external view returns (uint8); + function standard() external view returns (string memory); + function origin() external view returns (address); + + function totalSupply() external view returns (uint256); + function balanceOf(address account) external view returns (uint256); + function transfer(address to, uint256 value) external payable returns (bool); + function transfer(address to, uint256 value, bytes calldata data) external payable returns (bool); + function allowance(address owner, address spender) external view returns (uint256); + function approve(address spender, uint256 value) external returns (bool); + function transferFrom(address from, address to, uint256 value) external returns (bool); + + function mint(address _recipient, uint256 _quantity) external; + function burn(address _recipient, uint256 _quantity) external; +} + +interface IERC20WrapperToken { + function name() external view returns (string memory); + function symbol() external view returns (string memory); + function decimals() external view returns (uint8); + function standard() external view returns (string memory); + function origin() external view returns (address); + + function totalSupply() external view returns (uint256); + function balanceOf(address account) external view returns (uint256); + function transfer(address to, uint256 value) external returns (bool); + function allowance(address owner, address spender) external view returns (uint256); + function approve(address spender, uint256 value) external returns (bool); + function transferFrom(address from, address to, uint256 value) external returns (bool); + + function mint(address _recipient, uint256 _quantity) external; + function burn(address _recipient, uint256 _quantity) external; +} + +contract ERC20Rescue +{ + // ERC-20 tokens can get stuck on a contracts balance due to lack of error handling. + // + // The author of the ERC-7417 can extract ERC-20 tokens if they are mistakenly sent + // to the wrapper-contracts balance. + // Contact dexaran@ethereumclassic.org + address public extractor = 0x01000B5fE61411C466b70631d7fF070187179Bbf; + + function safeTransfer(address token, address to, uint value) internal { + // bytes4(keccak256(bytes('transfer(address,uint256)'))); + (bool success, bytes memory data) = token.call(abi.encodeWithSelector(0xa9059cbb, to, value)); + require(success && (data.length == 0 || abi.decode(data, (bool))), 'TransferHelper: TRANSFER_FAILED'); + } + + function rescueERC20(address _token, uint256 _amount) external + { + safeTransfer(_token, extractor, _amount); + } +} + +contract ERC223WrapperToken is IERC223, ERC165, ERC20Rescue +{ + address public creator = msg.sender; + address private wrapper_for; + + mapping(address account => mapping(address spender => uint256)) private allowances; + + event Transfer(address indexed from, address indexed to, uint256 amount); + event TransferData(bytes data); + event Approval(address indexed owner, address indexed spender, uint256 amount); + + function set(address _wrapper_for) external + { + require(msg.sender == creator); + wrapper_for = _wrapper_for; + } + + uint256 private _totalSupply; + + mapping(address => uint256) private balances; // List of user balances. + + function totalSupply() public view override returns (uint256) { return _totalSupply; } + function balanceOf(address _owner) public view override returns (uint256) { return balances[_owner]; } + + + /** + * @dev The ERC165 introspection function. + */ + function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) { + return + interfaceId == type(IERC20).interfaceId || + interfaceId == type(standardERC20).interfaceId || + interfaceId == type(IERC223WrapperToken).interfaceId || + interfaceId == type(IERC223).interfaceId || + super.supportsInterface(interfaceId); + } + + /** + * @dev Standard ERC-223 transfer function. + * Calls _to if it is a contract. Does not transfer tokens to contracts + * which do not explicitly declare the tokenReceived function. + * @param _to - transfer recipient. Can be contract or EOA. + * @param _value - the quantity of tokens to transfer. + * @param _data - metadata to send alongside the transaction. Can be used to encode subsequent calls in the recipient. + */ + function transfer(address _to, uint _value, bytes calldata _data) public payable override returns (bool success) + { + balances[msg.sender] = balances[msg.sender] - _value; + balances[_to] = balances[_to] + _value; + if(Address.isContract(_to)) { + IERC223Recipient(_to).tokenReceived(msg.sender, _value, _data); + } + if (msg.value > 0) payable(_to).transfer(msg.value); + emit Transfer(msg.sender, _to, _value, _data); + emit Transfer(msg.sender, _to, _value); // Old ERC-20 compatible event. Added for backwards compatibility reasons. + + return true; + } + + /** + * @dev Standard ERC-223 transfer function without _data parameter. It is supported for + * backwards compatibility with ERC-20 services. + * Calls _to if it is a contract. Does not transfer tokens to contracts + * which do not explicitly declare the tokenReceived function. + * @param _to - transfer recipient. Can be contract or EOA. + * @param _value - the quantity of tokens to transfer. + */ + function transfer(address _to, uint _value) public override returns (bool success) + { + bytes memory _empty = hex"00000000"; + balances[msg.sender] = balances[msg.sender] - _value; + balances[_to] = balances[_to] + _value; + if(Address.isContract(_to)) { + IERC223Recipient(_to).tokenReceived(msg.sender, _value, _empty); + } + emit Transfer(msg.sender, _to, _value, _empty); + emit Transfer(msg.sender, _to, _value); // Old ERC-20 compatible event. Added for backwards compatibility reasons. + + return true; + } + + function name() public view override returns (string memory) { return IERC20Metadata(wrapper_for).name(); } + function symbol() public view override returns (string memory) { return string.concat(IERC20Metadata(wrapper_for).name(), "223"); } + function decimals() public view override returns (uint8) { return IERC20Metadata(wrapper_for).decimals(); } + function standard() public pure returns (uint32) { return 223; } + function origin() public view returns (address) { return wrapper_for; } + + + /** + * @dev Minting function which will only be called by the converter contract. + * @param _recipient - the address which will receive tokens. + * @param _quantity - the number of tokens to create. + */ + function mint(address _recipient, uint256 _quantity) external + { + require(msg.sender == creator, "Wrapper Token: Only the creator contract can mint wrapper tokens."); + balances[_recipient] += _quantity; + _totalSupply += _quantity; + } + + /** + * @dev Burning function which will only be called by the converter contract. + * @param _quantity - the number of tokens to destroy. TokenConverter can only destroy tokens on it's own address. + * Only the token converter is allowed to burn wrapper-tokens. + */ + function burn(uint256 _quantity) external + { + require(msg.sender == creator, "Wrapper Token: Only the creator contract can destroy wrapper tokens."); + balances[msg.sender] -= _quantity; + _totalSupply -= _quantity; + } + + // ERC-20 functions for backwards compatibility. + + function allowance(address owner, address spender) public view virtual returns (uint256) { + return allowances[owner][spender]; + } + + function approve(address _spender, uint _value) public returns (bool) { + + // Safety checks. + require(_spender != address(0), "ERC-223: Spender error."); + + allowances[msg.sender][_spender] = _value; + emit Approval(msg.sender, _spender, _value); + + return true; + } + + function transferFrom(address _from, address _to, uint _value) public returns (bool) { + + require(allowances[_from][msg.sender] >= _value, "ERC-223: Insufficient allowance."); + + balances[_from] -= _value; + allowances[_from][msg.sender] -= _value; + balances[_to] += _value; + + emit Transfer(_from, _to, _value); + + return true; + } +} + +contract ERC20WrapperToken is IERC20, ERC165, ERC20Rescue +{ + address public creator = msg.sender; + address public wrapper_for; + + mapping(address account => mapping(address spender => uint256)) private allowances; + + function set(address _wrapper_for) external + { + require(msg.sender == creator); + wrapper_for = _wrapper_for; + } + + uint256 private _totalSupply; + mapping(address => uint256) private balances; // List of user balances. + + + function balanceOf(address _owner) public view override returns (uint256) { return balances[_owner]; } + + function name() public view returns (string memory) { return IERC20Metadata(wrapper_for).name(); } + function symbol() public view returns (string memory) { return string.concat(IERC223(wrapper_for).name(), "20"); } + function decimals() public view returns (uint8) { return IERC20Metadata(wrapper_for).decimals(); } + function totalSupply() public view override returns (uint256) { return _totalSupply; } + function origin() public view returns (address) { return wrapper_for; } + + function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) { + return + interfaceId == type(IERC20).interfaceId || + interfaceId == type(IERC20WrapperToken).interfaceId || + super.supportsInterface(interfaceId); + } + + function transfer(address _to, uint _value) public override returns (bool success) + { + balances[msg.sender] = balances[msg.sender] - _value; + balances[_to] = balances[_to] + _value; + emit Transfer(msg.sender, _to, _value); + return true; + } + + function mint(address _recipient, uint256 _quantity) external + { + require(msg.sender == creator, "Wrapper Token: Only the creator contract can mint wrapper tokens."); + balances[_recipient] += _quantity; + _totalSupply += _quantity; + } + + function burn(address _from, uint256 _quantity) external + { + require(msg.sender == creator, "Wrapper Token: Only the creator contract can destroy wrapper tokens."); + balances[_from] -= _quantity; + _totalSupply -= _quantity; + } + + function allowance(address owner, address spender) public view virtual returns (uint256) { + return allowances[owner][spender]; + } + + function approve(address _spender, uint _value) public returns (bool) { + + // Safety checks. + + require(_spender != address(0), "ERC-20: Spender error."); + + allowances[msg.sender][_spender] = _value; + emit Approval(msg.sender, _spender, _value); + + return true; + } + + function transferFrom(address _from, address _to, uint _value) public returns (bool) { + + require(allowances[_from][msg.sender] >= _value, "ERC-20: Insufficient allowance."); + + balances[_from] -= _value; + allowances[_from][msg.sender] -= _value; + balances[_to] += _value; + + emit Transfer(_from, _to, _value); + + return true; + } +} + +contract TokenStandardConverter is IERC223Recipient +{ + event ERC223WrapperCreated(address indexed _token, address indexed _ERC223Wrapper); + event ERC20WrapperCreated(address indexed _token, address indexed _ERC20Wrapper); mapping (address => ERC223WrapperToken) public erc223Wrappers; // A list of token wrappers. First one is ERC-20 origin, second one is ERC-223 version. mapping (address => ERC20WrapperToken) public erc20Wrappers; @@ -145,24 +623,14 @@ This service is the first of its kind and therefore does not have any backwards mapping (address => address) public erc20Origins; mapping (address => uint256) public erc20Supply; // Token => how much was deposited. - function getERC20WrapperFor(address _token) public view returns (address, string memory) + function getERC20WrapperFor(address _token) public view returns (address) { - if ( address(erc20Wrappers[_token]) != address(0) ) - { - return (address(erc20Wrappers[_token]), "ERC-20"); - } - - return (address(0), "Error"); + return address(erc20Wrappers[_token]); } - function getERC223WrapperFor(address _token) public view returns (address, string memory) + function getERC223WrapperFor(address _token) public view returns (address) { - if ( address(erc223Wrappers[_token]) != address(0) ) - { - return (address(erc223Wrappers[_token]), "ERC-223"); - } - - return (address(0), "Error"); + return address(erc223Wrappers[_token]); } function getERC20OriginFor(address _token) public view returns (address) @@ -175,7 +643,33 @@ This service is the first of its kind and therefore does not have any backwards return (address(erc223Origins[_token])); } - function tokenReceived(address _from, uint _value, bytes memory _data) public override returns (bytes4) + function predictWrapperAddress(address _token, + bool _isERC20 // Is the provided _token a ERC-20 or not? + // If it is set as ERC-20 then we will predict the address of a + // ERC-223 wrapper for that token. + // Otherwise we will predict ERC-20 wrapper address. + ) view external returns (address) + { + bytes memory _bytecode; + if(_isERC20) + { + _bytecode= type(ERC223WrapperToken).creationCode; + } + else + { + _bytecode= type(ERC20WrapperToken).creationCode; + } + + bytes32 hash = keccak256( + abi.encodePacked( + bytes1(0xff), address(this), keccak256(abi.encode(_token)), keccak256(_bytecode) + ) + ); + + return address(uint160(uint(hash))); + } + + function tokenReceived(address _from, uint _value, bytes memory /* _data */) public override returns (bytes4) { require(erc223Origins[msg.sender] == address(0), "Error: creating wrapper for a wrapper token."); // There are two possible cases: @@ -187,12 +681,11 @@ This service is the first of its kind and therefore does not have any backwards // Origin for deposited token exists. // Unwrap ERC-223 wrapper. + erc20Supply[erc20Origins[msg.sender]] -= _value; safeTransfer(erc20Origins[msg.sender], _from, _value); - erc20Supply[erc20Origins[msg.sender]] -= _value; - //erc223Wrappers[msg.sender].burn(_value); ERC223WrapperToken(msg.sender).burn(_value); - + return this.tokenReceived.selector; } // Otherwise origin for the sender token doesn't exist @@ -204,7 +697,7 @@ This service is the first of its kind and therefore does not have any backwards // Create ERC-20 wrapper if it doesn't exist. createERC20Wrapper(msg.sender); } - + // Mint ERC-20 wrapper tokens for the deposited ERC-223 token // if the ERC-20 wrapper didn't exist then it was just created in the above statement. erc20Wrappers[msg.sender].mint(_from, _value); @@ -214,38 +707,31 @@ This service is the first of its kind and therefore does not have any backwards function createERC223Wrapper(address _token) public returns (address) { require(address(erc223Wrappers[_token]) == address(0), "ERROR: Wrapper exists"); - require(getERC20OriginFor(_token) == address(0), "ERROR: 20 wrapper creation"); - require(getERC223OriginFor(_token) == address(0), "ERROR: 223 wrapper creation"); - - ERC223WrapperToken _newERC223Wrapper = new ERC223WrapperToken(_token); + require(!isWrapper(_token), "Error: Creating wrapper for a wrapper token"); + + ERC223WrapperToken _newERC223Wrapper = new ERC223WrapperToken{salt: keccak256(abi.encode(_token))}(); + _newERC223Wrapper.set(_token); erc223Wrappers[_token] = _newERC223Wrapper; erc20Origins[address(_newERC223Wrapper)] = _token; + emit ERC223WrapperCreated(_token, address(_newERC223Wrapper)); return address(_newERC223Wrapper); } function createERC20Wrapper(address _token) public returns (address) { require(address(erc20Wrappers[_token]) == address(0), "ERROR: Wrapper already exists."); - require(getERC20OriginFor(_token) == address(0), "ERROR: 20 wrapper creation"); - require(getERC223OriginFor(_token) == address(0), "ERROR: 223 wrapper creation"); + require(!isWrapper(_token), "Error: Creating wrapper for a wrapper token"); - ERC20WrapperToken _newERC20Wrapper = new ERC20WrapperToken(_token); + ERC20WrapperToken _newERC20Wrapper = new ERC20WrapperToken{salt: keccak256(abi.encode(_token))}(); + _newERC20Wrapper.set(_token); erc20Wrappers[_token] = _newERC20Wrapper; erc223Origins[address(_newERC20Wrapper)] = _token; + emit ERC20WrapperCreated(_token, address(_newERC20Wrapper)); return address(_newERC20Wrapper); } - function depositERC20(address _token, uint256 _amount) public returns (bool) - { - if(erc223Origins[_token] != address(0)) - { - return unwrapERC20toERC223(_token, _amount); - } - else return wrapERC20toERC223(_token, _amount); - } - function wrapERC20toERC223(address _ERC20token, uint256 _amount) public returns (bool) { // If there is no active wrapper for a token that user wants to wrap @@ -256,14 +742,12 @@ This service is the first of its kind and therefore does not have any backwards } uint256 _converterBalance = IERC20(_ERC20token).balanceOf(address(this)); // Safety variable. safeTransferFrom(_ERC20token, msg.sender, address(this), _amount); - - erc20Supply[_ERC20token] += _amount; - require( - IERC20(_ERC20token).balanceOf(address(this)) - _amount == _converterBalance, - "ERROR: The transfer have not subtracted tokens from callers balance."); + _amount = IERC20(_ERC20token).balanceOf(address(this)) - _converterBalance; + erc20Supply[_ERC20token] += _amount; erc223Wrappers[_ERC20token].mint(msg.sender, _amount); + return true; } @@ -273,48 +757,30 @@ This service is the first of its kind and therefore does not have any backwards require(erc223Origins[_ERC20token] != address(0), "Error: provided token is not a ERC-20 wrapper."); ERC20WrapperToken(_ERC20token).burn(msg.sender, _amount); - IERC223(erc223Origins[_ERC20token]).transfer(msg.sender, _amount); + + safeTransfer(erc223Origins[_ERC20token], msg.sender, _amount); return true; } - function isWrapper(address _token) public view returns (bool) - { - return erc20Origins[_token] != address(0) || erc223Origins[_token] != address(0); - } - -/* - function convertERC223toERC20(address _from, uint256 _amount) public returns (bool) + function convertERC20(address _token, uint256 _amount) public returns (bool) { - // If there is no active wrapper for a token that user wants to wrap - // then create it. - if(address(erc20Wrappers[msg.sender]) == address(0)) - { - createERC223Wrapper(msg.sender); - } - - erc20Wrappers[msg.sender].mint(_from, _amount); - return true; + if(isWrapper(_token)) return unwrapERC20toERC223(_token, _amount); + else return wrapERC20toERC223(_token, _amount); } -*/ - function rescueERC20(address _token) external { - require(msg.sender == ownerMultisig, "ERROR: Only owner can do this."); - uint256 _stuckTokens = IERC20(_token).balanceOf(address(this)) - erc20Supply[_token]; - safeTransfer(_token, msg.sender, IERC20(_token).balanceOf(address(this))); + function isWrapper(address _token) public view returns (bool) + { + return erc20Origins[_token] != address(0) || erc223Origins[_token] != address(0); } - function transferOwnership(address _newOwner) public + function extractStuckERC20(address _token) external { - require(msg.sender == ownerMultisig, "ERROR: Only owner can call this function."); - ownerMultisig = _newOwner; + require(msg.sender == address(0x01000B5fE61411C466b70631d7fF070187179Bbf)); + + safeTransfer(_token, address(0x01000B5fE61411C466b70631d7fF070187179Bbf), IERC20(_token).balanceOf(address(this)) - erc20Supply[_token]); } - // ************************************************************ - // Functions that address problems with tokens that pretend to be ERC-20 - // but in fact are not compatible with the ERC-20 standard transferring methods. - // EIP20 https://eips.ethereum.org/EIPS/eip-20 - // ************************************************************ function safeTransfer(address token, address to, uint value) internal { // bytes4(keccak256(bytes('transfer(address,uint256)'))); (bool success, bytes memory data) = token.call(abi.encodeWithSelector(0xa9059cbb, to, value)); @@ -326,16 +792,18 @@ This service is the first of its kind and therefore does not have any backwards (bool success, bytes memory data) = token.call(abi.encodeWithSelector(0x23b872dd, from, to, value)); require(success && (data.length == 0 || abi.decode(data, (bool))), 'TransferHelper: TRANSFER_FROM_FAILED'); } - +} ``` ## Security Considerations -1. While it is possible to implement a service that converts any token standard to any other standard - it is better to keep different standard convertors separate from one another as different standards may contain specific logic. Therefore this proposal focuses on [ERC-20](./eip-20.md) to [ERC-223](./eip-223.md) conversion methods. -2. [ERC-20](./eip-20.md) tokens can be deposited to any contract directly with `transfer` function. This may result in a permanent loss of tokens because it is not possible to recognize this transaction on the recipients side. `rescueERC20` function is implemented to address this problem. +1. While it is possible to implement a service that converts any token standard to any other standard - it is better to keep different standard convertors separate from one another as different standards may contain specific logic and therefore require different conversion approach. This proposal focuses on [ERC-20](./eip-20.md) and [ERC-223](./eip-223.md) upgradeability. +2. [ERC-20](./eip-20.md) tokens can be deposited to any contract directly with `transfer` function. This may result in a permanent loss of tokens because it is not possible to recognize this transaction on the recipients side. Therefore wrapper-ERC-20 tokens are prone to this problem as they are compatible with the [ERC-20](./eip-20.md) standard. `rescueERC20` function is implemented to address this problem. 3. Token Converter relies on [ERC-20](./eip-20.md) `approve` & `transferFrom` method of depositing assets. Any related issues must be taken into account. `approve` and `transferFrom` are two separate transactions so it is required to make sure `approval` was successful before relying on `transferFrom`. -4. This is a common practice for UI services to prompt a user to issue unlimited `approval` on any contract that may withdraw tokens from the user. This puts users funds at high risk and therefore not recommended. -5. It is possible to artificially construct a token that will pretend it is a [ERC-20](./eip-20.md) token that implements `approve & transferFrom` but at the same time implements [ERC-223](./eip-223.md) logic of transferring via `transfer` function in its internal logic. It can be possible to create a [ERC-223](./eip-223.md) wrapper for this [ERC-20](./eip-20.md)-[ERC-223](./eip-223.md) hybrid implementation in the Token Converter. This doesn't pose any threat for the workflow of the Token Converter but it must be taken into account that if a token has [ERC-223](./eip-223.md) wrapper in the Token Converter it does not automatically mean the origin is fully compatible with the [ERC-20](./eip-20.md) standard and methods of introspection must be used to determine the origins compatibility with any existing standard. +4. This is a common practice for UI services to prompt a user to issue unlimited `approval` on any contract that may withdraw tokens from the user. This puts users funds at risk and therefore is not recommended. +5. There is no reliable token standard introspection method available that could guarantee that a token implements a particular token standard. It is possible to artificially construct a token that will pretend it is a [ERC-20](./eip-20.md) token that implements `approve & transferFrom` but at the same time implements [ERC-223](./eip-223.md) logic of transferring via `transfer` function. It can be possible to create a [ERC-223](./eip-223.md) wrapper for this [ERC-20](./eip-20.md)-[ERC-223](./eip-223.md) hybrid implementation in the Token Converter. This doesn't pose any threat for the workflow of the Token Converter itself but it must be taken into account that if a token has [ERC-223](./eip-223.md) wrapper in the Token Converter it does not automatically mean the origin is fully compatible with the [ERC-20](./eip-20.md) standard and methods of introspection must be used to determine the origins compatibility with any existing standard. +6. Token Converter does not verify the standard of a provided token when it is asked to create a wrapper for it due to the lack of reliable standard introspection method. It is possible to call `createERC20Wrapper` function and provide an address of an existing [ERC-20](./eip-20.md) token. The Token Converter will successfully create a [ERC-20](./eip-20.md) wrapper for that [ERC-20](./eip-20.md) original token. It is also possible to create a [ERC-223](./eip-223.md) wrapper for that exact original [ERC-20](./eip-20.md) token. This doesn't pose any threat to the workflow of the Converter but it must be taken into account that any token regardless of it's original standard may have up to two wrappers created by the Converter, one for each standard. Any wrapper token must have exactly one origin. It is not possible to create a wrapper for a wrapper. +7. The Token Converter only holds the original tokens that were deposited during the conversion process and it assumes that tokens do not decay over time and the token balance of the Converter does not decrease on its own. If some token implements burning logic or decaying supply and it may impact the balance of the Converter then the Converter must not be used to deploy an alternative version of that token as it will not be able to guarantee that there is enough tokens for the conversion at any time. ## Copyright diff --git a/ERCS/erc-7741.md b/ERCS/erc-7741.md index 7c7c6f57d7..47ef38948c 100644 --- a/ERCS/erc-7741.md +++ b/ERCS/erc-7741.md @@ -77,10 +77,10 @@ MUST return `true`. type: address - name: approved type: bool - - name: deadline - type: uint256 - name: nonce type: bytes32 + - name: deadline + type: uint256 - name: signature type: bytes @@ -139,7 +139,7 @@ Returns the `DOMAIN_SEPARATOR` as defined according to EIP-712. The `DOMAIN_SEPA Smart contracts implementing this standard MUST implement the [ERC-165](./eip-165.md) `supportsInterface` function. -Contracts MUST return the constant value `true` if `0x7a7911eb` is passed through the `interfaceID` argument. +Contracts MUST return the constant value `true` if `0xa9e50872` is passed through the `interfaceID` argument. ## Rationale @@ -155,7 +155,7 @@ The main difference is using `bytes32` vs `uint256`, which enables unordered non // This code snippet is incomplete pseudocode used for example only and is no way intended to be used in production or guaranteed to be secure bytes32 public constant AUTHORIZE_OPERATOR_TYPEHASH = - keccak256("AuthorizeOperator(address controller,address operator,bool approved,uint256 deadline,bytes32 nonce)"); + keccak256("AuthorizeOperator(address controller,address operator,bool approved,bytes32 nonce,uint256 deadline)"); mapping(address owner => mapping(bytes32 nonce => bool used)) authorizations; @@ -171,8 +171,8 @@ The main difference is using `bytes32` vs `uint256`, which enables unordered non address controller, address operator, bool approved, - uint256 deadline, bytes32 nonce, + uint256 deadline, bytes memory signature ) external returns (bool success) { require(block.timestamp <= deadline, "ERC7540Vault/expired"); @@ -185,7 +185,7 @@ The main difference is using `bytes32` vs `uint256`, which enables unordered non abi.encodePacked( "\x19\x01", DOMAIN_SEPARATOR(), - keccak256(abi.encode(AUTHORIZE_OPERATOR_TYPEHASH, controller, operator, approved, deadline, nonce)) + keccak256(abi.encode(AUTHORIZE_OPERATOR_TYPEHASH, controller, operator, approved, nonce, deadline)) ) ); diff --git a/ERCS/erc-7751.md b/ERCS/erc-7751.md new file mode 100644 index 0000000000..ac91a16651 --- /dev/null +++ b/ERCS/erc-7751.md @@ -0,0 +1,143 @@ +--- +eip: 7751 +title: Wrapping of bubbled up reverts +description: Handling bubbled up reverts using custom errors with additional context +author: Daniel Gretzke (@gretzke), Sara Reynolds (@snreynolds), Alice Henshaw (@hensha256), Marko Veniger , Hadrien Croubois (@Amxx) +discussions-to: https://ethereum-magicians.org/t/erc-7751-wrapping-of-bubbled-up-reverts/20740 +status: Draft +type: Standards Track +category: ERC +created: 2024-08-06 +--- + +## Abstract + +This ERC proposes a standard for handling bubbled up reverts in Ethereum smart contracts using custom errors. This standard aims to improve the clarity and usability of revert reasons by allowing additional context to be passed alongside the raw bytes of the bubbled up revert. The custom errors should follow the naming structure `Wrap__` followed by a descriptive name and allow an arbitrary number of parameters, with the first being the address of the called contract and the second being the raw bytes of the bubbled up revert. + +## Motivation + +Currently, when a smart contract calls another and the called contract reverts, the revert reason is usually bubbled up and thrown as is. This can make it more difficult to tell which context the error came from. By standardizing the use of custom errors with additional context, more meaningful and informative revert reasons can be provided. This will improve the debugging experience and make it easier for developers and infrastructure providers like Etherscan to display accurate stack traces. + +## Specification + +The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in RFC 2119 and RFC 8174. + +1. **Custom Error Naming Convention:** + - Custom errors that bubble up reverts MUST be prefixed with `Wrap__`. + - Example: `Wrap__ERC20TransferFailed`. +2. **Parameters:** + - The first parameter MUST be the address of the called contract that reverted. + - The second parameter MUST be the raw bytes of the bubbled up revert. + - Additional parameters MAY be included to provide context. + - Example: `Wrap__ERC20TransferFailed(address token, bytes reason, address recipient)`. + +If no additional parameters are defined and a generic call reverts, the custom error `Wrap__SubcontextReverted(address, bytes)` SHOULD be thrown to ensure a consistent signature. + +## Rationale + +By including the called contract, raw revert bytes and additional context, developers can provide more detailed information about the failure. Additionally, by standardizing the way reverts are bubbled up, it also enables nested bubbled up reverts where multiple reverts thrown by different contracts can be followed recursively. The reverts can also be parsed and handled by tools like Etherscan and Foundry to further enhance the readability and debuggability of smart contract interactions, as well as facilitating better error handling practices in general. + +## Backwards Compatibility + +This ERC does not introduce any backwards incompatibilities. Existing contracts can adopt this standard incrementally. + +## Test Cases + +```solidity +// SPDX-License-Identifier: MIT +pragma solidity 0.8.26; + +contract Token { + mapping(address => uint256) public balanceOf; + + event Transfer(address indexed sender, address indexed recipient, uint amount); + + function transfer(address to, uint256 amount) external returns (bool) { + require(balanceOf[msg.sender] >= amount, "insufficient balance"); + balanceOf[msg.sender] -= amount; + balanceOf[to] += amount; + emit Transfer(msg.sender, to, amount); + return true; + } +} + +contract Vault { + Token token; + + error Wrap__ERC20TransferFailed(address token, bytes reason, address recipient); + + constructor(Token token_) { + token = token_; + } + + function withdraw(address to, uint256 amount) external { + // logic + try token.transfer(to, amount) {} catch (bytes memory error) { + revert Wrap__ERC20TransferFailed(address(token), error, to); + } + } +} + +contract Router { + Vault vault; + + error Wrap__SubcontextReverted(address target, bytes reason); + + constructor(Vault vault_) { + vault = vault_; + } + + function withdraw(uint256 amount) external { + // logic + try vault.withdraw(msg.sender, amount) {} catch (bytes memory error) { + revert Wrap__SubcontextReverted(address(vault), error); + } + } +} + +contract Test { + function test_BubbledNestedReverts(uint256 amount) external { + Token token = new Token(); + Vault vault = new Vault(token); + Router router = new Router(vault); + + try router.withdraw(amount) {} catch (bytes memory thrownError) { + bytes memory expectedError = abi.encodeWithSelector( + Router.Wrap__SubcontextReverted.selector, address(vault), abi.encodeWithSelector( + Vault.Wrap__ERC20TransferFailed.selector, + address(token), + abi.encodeWithSignature("Error(string)", "insufficient balance"), + address(this) + ) + ); + assert(keccak256(thrownError) == keccak256(expectedError)); + } + } +} +``` + +## Reference Implementation + +When catching a revert from a called contract, the calling contract should revert with a custom error following the above conventions. + +```solidity +contract Foo { + error Wrap__SubcontextReverted(address target, bytes reason); + + function foo(address to, bytes memory data) external { + // logic + (bool success, bytes memory returnData) = to.call(data); + if (!success) { + revert Wrap__SubcontextReverted(to, returnData); + } + } +} +``` + +## Security Considerations + +This EIP does not introduce new security risks. + +## Copyright + +Copyright and related rights waived via [CC0](../LICENSE.md).