BaseVault

Inherits: IBaseVault, Pausable, CallbackHandler, ReentrancyGuardTransient, Auth2Step, IERC721Receiver

This contract embeds core Aera platform functionality: the ability to enlist off-chain guardians to take guarded actions on a vault. It is meant to either be extended with deposit/withdraw capabilities for users or used directly. When used directly, a depositor can simply transfer assets to the vault and a guardian can transfer them out when needed Registered guardians call the submit function and trigger vault operations. The vault may run before and after submit hooks and revert if a guardian is using an unauthorized operation. Authorized operations are configured in an off-chain merkle tree and guardians need to provide a merkle proof for each operation. In addition to validating operation targets (the contract and function being called), the merkle tree can maintain custom per-operation hooks that extract specific parts of the calldata for validation or even perform (possibly stateful) validation during the submit call

State Variables

HOOK_CALL_TYPE_SLOT

ERC7201-compliant transient storage slot for the current hook call type flag

Equal to keccak256(abi.encode(uint256(keccak256("aera.basevault.hookCallType")) - 1)) & ~bytes32(uint256(0xff));

bytes32 internal constant HOOK_CALL_TYPE_SLOT = 0xb8706f504833578f7e830b12e31c3cfba31669a85b02596177f00c6a7faf6e00;

WHITELIST

The whitelist contract that controls vault permissions

IWhitelist public immutable WHITELIST;

submitHooks

Address of the submit hooks contract for vault-level operations

ISubmitHooks public submitHooks;

guardianRoots

Enumerable map of each guardian address to their merkle root

Functions

onlyAuthOrGuardian

Ensures caller either has auth authorization requiresAuth (owner or authorized role) or is a guardian

constructor

receive

Receive function to allow the vault to receive native tokens

submit

Submit a series of operations to the vault

Parameters

setGuardianRoot

Set the merkle root for a guardian Used to add guardians and update their permissions

Parameters

removeGuardian

Removes a guardian from the vault

Parameters

checkGuardianWhitelist

Check if the guardian is whitelisted and set the root to zero if not Used to disable guardians who were removed from the whitelist after being selected as guardians

Parameters

Returns

setSubmitHooks

Set the submit hooks address

Parameters

pause

Pause the vault, halting the ability for guardians to submit

unpause

Unpause the vault, allowing guardians to submit operations

getActiveGuardians

Get all active guardians

Returns

getGuardianRoot

Get the guardian root for a guardian

Parameters

Returns

getCurrentHookCallType

Get the current hook call type

Returns

onERC721Received

Whenever an {IERC721} tokenId token is transferred to this contract via {IERC721-safeTransferFrom} by operator from from, this function is called. It must return its Solidity selector to confirm the token transfer. If any other value is returned or the interface is not implemented by the recipient, the transfer will be reverted. The selector can be obtained in Solidity with IERC721Receiver.onERC721Received.selector.

_handleCallbackOperations

Parameters

Returns

_processExpectedCallback

Prepare for a callback if the guardian expects one

Writes to transient storage to encode callback expectations

Parameters

Returns

_beforeSubmitHooks

Call the before submit hooks if defined

Submit hooks passed as an argument to reduce storage loading

Parameters

_afterSubmitHooks

Call the after submit hooks if defined

Submit hooks passed as an argument to reduce storage loading

Parameters

_beforeOperationHooks

Call the before operation hooks if defined

Parameters

Returns

_afterOperationHooks

Call the after operation hooks if defined

Parameters

_executeSubmit

Executes a series of operations

Approvals are tracked so we can verify if they have been zeroed out at the end of submit

Parameters

Returns

_processBeforeOperationHooks

Processes all hooks for operation

Returns extracted data if configurable or contract before operation hooks is defined

Custom hooks (with contracts) can run before and after each operation but a configurable hooks can only run before an operation. This function processes all of the possible configurations of hooks which doesn't allow using both a custom before hook and a configurable before hook

Parameters

Returns

_setSubmitHooks

Set the submit hooks address

Parameters

_setGuardianRoot

Set the guardian root

Parameters

_setHookCallType

Set the hook call type

Parameters

_noPendingApprovalsInvariant

Verify no pending approvals remain at the end of a submit

We iterate backwards to avoid extra i variable

While loop is preferred over for(;approvalsLength != 0;)

Iterator variable is not used because it's not needed and decrement needs to be unchecked

Parameters

_getReturnValue

Get the return value from the operations

Parameters

Returns

_verifyOperation

Verify an operation by validating the merkle proof

Parameters

_createMerkleLeaf

Create a merkle leaf

Parameters

Returns

_extractApprovalSpender

Extract spender address from approval data

Extract spender address from approval data

Parameters

Returns

_hasBeforeHooks

Check if hooks needs to be called before the submit/operation

Check if hooks needs to be called before the submit/operation

Parameters

Returns

_hasAfterHooks

least significant bit is 1 indicating it's a before hooks

Check if submit hooks needs to be called after the submit/operation

Check if submit hooks needs to be called after the submit/operation

Parameters

Returns

_isAllowanceSelector

second least significant bit is 1 indicating it's a after hooks

Check if the selector is an allowance handling selector

Check if the selector is an allowance handling selector

Parameters

Returns