openintentsframework · reednaa · Jul 10, 2025 · Jul 10, 2025 · Jul 11, 2025 · Jul 14, 2025
diff --git a/foundry.toml b/foundry.toml
@@ -7,7 +7,7 @@ evm_version = "cancun"
 via_ir = true
 optimizer = true
 optimizer_runs = 100_000_000
-fuzz.runs = 10_000
+fuzz.runs = 1000
 
 # See more config options https://github.com/foundry-rs/foundry/blob/master/crates/config/README.md#all-options
 

diff --git a/snapshots/inputSettler.json b/snapshots/inputSettler.json
@@ -1,11 +1,11 @@
 {
   "BasePurchaseOrder": "138330",
   "CompactFinaliseFor": "137653",
-  "CompactFinaliseSelf": "128815",
-  "CompactFinaliseTo": "128815",
-  "EscrowFinalise": "76395",
+  "CompactFinaliseSelf": "128820",
+  "CompactFinaliseTo": "128820",
+  "EscrowFinalise": "76400",
   "IntegrationCoinFill": "89913",
-  "IntegrationCompactFinaliseSelf": "125396",
+  "IntegrationCompactFinaliseSelf": "125401",
   "IntegrationWormholeReceiveMessage": "73509",
   "IntegrationWormholeSubmit": "42285",
   "escrowFinaliseWithSignature": "85128",

diff --git a/snapshots/outputSettler.json b/snapshots/outputSettler.json
@@ -1,9 +1,9 @@
 {
-  "outputSettlerCoinFill": "83343",
-  "outputSettlerCoinFillDutchAuction": "84573",
-  "outputSettlerCoinFillExclusive": "84739",
-  "outputSettlerCoinFillExclusiveDutchAuction": "85453",
-  "outputSettlerCoinFillNative": "89358",
-  "outputSettlerCoinFillOrderOutputsNative": "128860",
-  "outputSettlerCoinfillOrderOutputs": "119906"
+  "outputSettlerSimpleFill": "83343",
+  "outputSettlerSimpleFillDutchAuction": "84573",
+  "outputSettlerSimpleFillExclusive": "84739",
+  "outputSettlerSimpleFillExclusiveDutchAuction": "85453",
+  "outputSettlerSimpleFillNative": "89358",
+  "outputSettlerSimpleFillOrderOutputsNative": "128860",
+  "outputSettlerSimplefillOrderOutputs": "119906"
 }
diff --git a/src/input/InputSettlerBase.sol b/src/input/InputSettlerBase.sol
@@ -57,6 +57,10 @@ abstract contract InputSettlerBase is EIP712 {
      * @dev Fill deadline is after expiry deadline.
      */
     error FillDeadlineAfterExpiry(uint32 fillDeadline, uint32 expires);
+    /**
+     * @dev msg.sender was expected to be `expectedCaller`.
+     */
+    error UnexpectedCaller(bytes32 expectedCaller);
 
     /**
      * @notice Emitted when an order is finalised.
@@ -138,6 +142,17 @@ abstract contract InputSettlerBase is EIP712 {
         if (isZero) revert NoDestination();
     }
 
+    /**
+     * @notice Enforces a specific caller
+     * @dev Only reads the rightmost 20 bytes to allow providing additional destination context
+     * @param expectedCaller Expected caller. The leftmost 12 bytes are not read.
+     */
+    function _validateIsCaller(
+        bytes32 expectedCaller
+    ) internal view {
+        if (LibAddress.fromIdentifier(expectedCaller) != msg.sender) revert UnexpectedCaller(expectedCaller);
+    }
+
     // --- Timestamp Helpers --- //
 
     /**

diff --git a/src/input/InputSettlerPurchase.sol b/src/input/InputSettlerPurchase.sol
@@ -99,19 +99,6 @@ abstract contract InputSettlerPurchase is InputSettlerBase {
 
     // --- Order Purchase Helpers --- //
 
-    /**
-     * @notice Enforces that the caller is the order owner.
-     * @dev Only reads the rightmost 20 bytes to verify the owner/purchaser. This allows implementations to use the
-     * leftmost 12 bytes to encode further withdrawal logic.
-     * For TheCompact, 12 zero bytes indicates a withdrawals instead of a transfer.
-     * @param orderOwner The order owner. The leftmost 12 bytes are not read.
-     */
-    function _orderOwnerIsCaller(
-        bytes32 orderOwner
-    ) internal view {
-        if (orderOwner.fromIdentifier() != msg.sender) revert NotOrderOwner();
-    }
-
     /**
      * @notice Helper function to get the owner of order incase it may have been bought. In case an order has been
      * bought, and bought in time, the owner will be set to the purchaser. Otherwise it will be set to the solver.

diff --git a/src/input/compact/InputSettlerCompact.sol b/src/input/compact/InputSettlerCompact.sol
@@ -147,7 +147,7 @@ contract InputSettlerCompact is InputSettlerPurchase, IInputSettlerCompact {
 
         bytes32 orderId = _orderIdentifier(order);
         bytes32 orderOwner = _purchaseGetOrderOwner(orderId, solveParams);
-        _orderOwnerIsCaller(orderOwner);
+        _validateIsCaller(orderOwner);
 
         _validateFills(order.fillDeadline, order.inputOracle, order.outputs, orderId, solveParams);
 

diff --git a/src/input/compact/InputSettlerMultichainCompact.sol b/src/input/compact/InputSettlerMultichainCompact.sol
@@ -0,0 +1,226 @@
+// SPDX-License-Identifier: MIT
+pragma solidity ^0.8.26;
+
+import { IERC20 } from "openzeppelin/token/ERC20/IERC20.sol";
+import { SafeERC20 } from "openzeppelin/token/ERC20/utils/SafeERC20.sol";
+import { EIP712 } from "openzeppelin/utils/cryptography/EIP712.sol";
+
+import { TheCompact } from "the-compact/src/TheCompact.sol";
+import { EfficiencyLib } from "the-compact/src/lib/EfficiencyLib.sol";
+import { IdLib } from "the-compact/src/lib/IdLib.sol";
+import { BatchMultichainClaim, ExogenousBatchMultichainClaim } from "the-compact/src/types/BatchMultichainClaims.sol";
+import { BatchClaimComponent, Component } from "the-compact/src/types/Components.sol";
+
+import { IInputCallback } from "../../interfaces/IInputCallback.sol";
+import { IInputOracle } from "../../interfaces/IInputOracle.sol";
+
+import { BytesLib } from "../../libs/BytesLib.sol";
+import { LibAddress } from "../../libs/LibAddress.sol";
+import { MandateOutputEncodingLib } from "../../libs/MandateOutputEncodingLib.sol";
+
+import { InputSettlerBase } from "../InputSettlerBase.sol";
+import { MandateOutput } from "../types/MandateOutputType.sol";
+
+import { MultichainCompactOrderType, MultichainOrderComponent } from "../types/MultichainCompactOrderType.sol";
+import { OrderPurchase } from "../types/OrderPurchaseType.sol";
+
+/**
+ * @title Multichain Input Settler using `The Compact` as an escrow.
+ * @notice This Input Settler implementation uses The Compact as the deposit scheme. It is a Output first scheme that
+ * allows users with a deposit inside The Compact to execute transactions that will be paid **after** the outputs have
+ * been proven. This has the advantage that failed orders can be quickly retried. These orders are also entirely gasless
+ * since neither valid nor failed transactions does not require any transactions to redeem.
+ *
+ * Users are expected to have an existing deposit inside the Compact or purposefully deposit for the intent. Then either
+ * register or sign a supported claim with the intent outputs as the witness.
+ *
+ * A multichain intent is an intent that collects tokens on multiple chains in exchange for single set of outputs. Using
+ * TheCompact allows users to issue a multichain input intent using a single Multichain Compact signature.
+ *
+ * The contract is intended to be entirely ownerless, permissionlessly deployable, and unstoppable.
+ */
+contract InputSettlerMultichainCompact is InputSettlerBase {
+    using LibAddress for bytes32;
+    using LibAddress for uint256;
+    error UserCannotBeSettler();
+
+    TheCompact public immutable COMPACT;
+
+    constructor(
+        address compact
+    ) EIP712("OIFMultichainEscrow", "1") {
+        COMPACT = TheCompact(compact);
+    }
+
+    // --- Generic order identifier --- //
+
+    function _orderIdentifier(
+        MultichainOrderComponent calldata order
+    ) internal view returns (bytes32) {
+        return MultichainCompactOrderType.orderIdentifier(order);
+    }
+
+    function orderIdentifier(
+        MultichainOrderComponent calldata order
+    ) external view returns (bytes32) {
+        return _orderIdentifier(order);
+    }
+
+    // --- Finalise Orders --- //
+
+    /**
+     * @notice Finalise an order, paying the inputs to the solver.
+     * @param order that has been filled.
+     * @param signatures For the signed intent. Is packed: abi.encode(sponsorSignature, allocatorData).
+     * @param solver Solver of the outputs.
+     * @param destination Destination of the inputs funds signed for by the user.
+     * @return orderId Returns a unique global order identifier.
+     */
+    function _finalise(
+        MultichainOrderComponent calldata order,
+        bytes calldata signatures,
+        bytes32 solver,
+        bytes32 destination
+    ) internal virtual returns (bytes32 orderId) {
+        bytes calldata sponsorSignature = BytesLib.toBytes(signatures, 0x00);
+        bytes calldata allocatorData = BytesLib.toBytes(signatures, 0x20);
+        orderId = _resolveLock(order, sponsorSignature, allocatorData, destination);
+        emit Finalised(orderId, solver, destination);
+    }
+
+    /**
+     * @notice Finalises an order when called directly by the solver
+     * @dev The caller must be the address corresponding to the first solver in the solvers array.
+     * @param order MultichainOrderComponent signed in conjunction with a Compact to form an order
+     * @param signatures A signature for the sponsor and the allocator. abi.encode(bytes(sponsorSignature),
+     * bytes(allocatorData))
+     * @param solveParams List of solve parameters for when the outputs were filled
+     * @param destination Where to send the inputs. If the solver wants to send the inputs to themselves, they should
+     * pass their address to this parameter.
+     * @param call Optional callback data. If non-empty, will call orderFinalised on the destination
+     */
+    function finalise(
+        MultichainOrderComponent calldata order,
+        bytes calldata signatures,
+        SolveParams[] calldata solveParams,
+        bytes32 destination,
+        bytes calldata call
+    ) external virtual {
+        _validateDestination(destination);
+
+        _validateIsCaller(solveParams[0].solver);
+
+        bytes32 orderId = _finalise(order, signatures, solveParams[0].solver, destination);
+
+        _validateFills(order.fillDeadline, order.inputOracle, order.outputs, orderId, solveParams);
+
+        if (call.length > 0) {
+            IInputCallback(EfficiencyLib.asSanitizedAddress(uint256(destination))).orderFinalised(order.inputs, call);
+        }
+    }
+
+    /**
+     * @notice Finalises a cross-chain order on behalf of someone else using their signature
+     * @dev This function serves to finalise intents on the origin chain with proper authorization from the order owner.
+     * @param order MultichainOrderComponent signed in conjunction with a Compact to form an order
+     * @param signatures A signature for the sponsor and the allocator. abi.encode(bytes(sponsorSignature),
+     * bytes(allocatorData))
+     * @param solveParams List of solve parameters for when the outputs were filled
+     * @param destination Where to send the inputs
+     * @param call Optional callback data. If non-empty, will call orderFinalised on the destination
+     * @param orderOwnerSignature Signature from the order owner authorizing this external call
+     */
+    function finaliseWithSignature(
+        MultichainOrderComponent calldata order,
+        bytes calldata signatures,
+        SolveParams[] calldata solveParams,
+        bytes32 destination,
+        bytes calldata call,
+        bytes calldata orderOwnerSignature
+    ) external virtual {
+        if (destination == bytes32(0)) revert NoDestination();
+
+        bytes32 orderId = _finalise(order, signatures, solveParams[0].solver, destination);
+
+        // Validate the external claimant with signature
+        _allowExternalClaimant(orderId, solveParams[0].solver.fromIdentifier(), destination, call, orderOwnerSignature);
+
+        _validateFills(order.fillDeadline, order.inputOracle, order.outputs, orderId, solveParams);
+
+        if (call.length > 0) IInputCallback(destination.fromIdentifier()).orderFinalised(order.inputs, call);
+    }
+
+    //--- The Compact & Resource Locks ---//
+
+    /**
+     * @notice Resolves a Compact Claim for a Standard Order.
+     * @param order that should be converted into a Compact Claim.
+     * @param sponsorSignature The user's signature for the Compact Claim.
+     * @param allocatorData The allocator's signature for the Compact Claim.
+     * @param claimant Destination of the inputs funds signed for by the user.
+     * @return claimHash The compact claimhash is used as the order identifier, as it is identical for a specific order
+     * cross-chain.
+     */
+    function _resolveLock(
+        MultichainOrderComponent calldata order,
+        bytes calldata sponsorSignature,
+        bytes calldata allocatorData,
+        bytes32 claimant
+    ) internal virtual returns (bytes32 claimHash) {
+        BatchClaimComponent[] memory batchClaimComponents;
+        {
+            uint256 numInputs = order.inputs.length;
+            batchClaimComponents = new BatchClaimComponent[](numInputs);
+            uint256[2][] calldata maxInputs = order.inputs;
+            for (uint256 i; i < numInputs; ++i) {
+                uint256[2] calldata input = maxInputs[i];
+                uint256 tokenId = input[0];
+                uint256 allocatedAmount = input[1];
+
+                Component[] memory components = new Component[](1);
+                components[0] = Component({ claimant: uint256(claimant), amount: allocatedAmount });
+                batchClaimComponents[i] = BatchClaimComponent({
+                    id: tokenId, // The token ID of the ERC6909 token to allocate.
+                    allocatedAmount: allocatedAmount, // The original allocated amount of ERC6909 tokens.
+                    portions: components
+                });
+            }
+        }
+
+        address user = order.user;
+        // The Compact skips signature checks for msg.sender. Ensure no accidental intents are issued.
+        if (user == address(this)) revert UserCannotBeSettler();
+        if (order.chainIdField == block.chainid) {
+            claimHash = COMPACT.batchMultichainClaim(
+                BatchMultichainClaim({
+                    allocatorData: allocatorData,
+                    sponsorSignature: sponsorSignature,
+                    sponsor: user,
+                    nonce: order.nonce,
+                    expires: order.expires,
+                    witness: MultichainCompactOrderType.witnessHash(order),
+                    witnessTypestring: string(MultichainCompactOrderType.BATCH_COMPACT_SUB_TYPES),
+                    claims: batchClaimComponents,
+                    additionalChains: order.additionalChains
+                })
+            );
+        } else {
+            claimHash = COMPACT.exogenousBatchClaim(
+                ExogenousBatchMultichainClaim({
+                    allocatorData: allocatorData,
+                    sponsorSignature: sponsorSignature,
+                    sponsor: user,
+                    nonce: order.nonce,
+                    expires: order.expires,
+                    witness: MultichainCompactOrderType.witnessHash(order),
+                    witnessTypestring: string(MultichainCompactOrderType.BATCH_COMPACT_SUB_TYPES),
+                    claims: batchClaimComponents,
+                    additionalChains: order.additionalChains,
+                    chainIndex: order.chainIndex - 1, // We use chainIndex as the offset to elements array where compact
+                        // uses it as offset to the notarized.
+                    notarizedChainId: order.chainIdField
+                })
+            );
+        }
+    }
+}
diff --git a/src/input/escrow/InputSettlerEscrow.sol b/src/input/escrow/InputSettlerEscrow.sol
@@ -22,6 +22,7 @@ import { OrderPurchase } from "../types/OrderPurchaseType.sol";
 import { StandardOrder, StandardOrderType } from "../types/StandardOrderType.sol";
 
 import { InputSettlerPurchase } from "../InputSettlerPurchase.sol";
+
 import { Permit2WitnessType } from "./Permit2WitnessType.sol";
 
 /**
@@ -396,7 +397,7 @@ contract InputSettlerEscrow is InputSettlerPurchase, IInputSettlerEscrow {
 
         bytes32 orderId = order.orderIdentifier();
         bytes32 orderOwner = _purchaseGetOrderOwner(orderId, solveParams);
-        _orderOwnerIsCaller(orderOwner);
+        _validateIsCaller(orderOwner);
 
         _validateFills(order.fillDeadline, order.inputOracle, order.outputs, orderId, solveParams);