Skip to content

Adds ERC1155TransferEnforcer #124

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 8 commits into
base: main
Choose a base branch
from
Open

Adds ERC1155TransferEnforcer #124

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
653845a
feat: adds ERC1155TransferEnforcer
hanzel98 Jun 10, 2025
4182bc5
fix: small issue decoding terms
hanzel98 Jun 10, 2025
58a3d71
chore: spent maps, length checks, selector
hanzel98 Jun 10, 2025
62316f4
feat: implement ERC1155 transfer enforcer
hanzel98 Jun 13, 2025
d13c78b
Merge branch 'main' into feat/erc1155-transfer-enforcer
hanzel98 Jun 13, 2025
e0b1da2
docs: improved natspec
hanzel98 Jun 17, 2025
14f0a9f
Merge branch 'main' into feat/erc1155-transfer-enforcer
hanzel98 Jun 19, 2025
32bfabe
Merge branch 'main' into feat/erc1155-transfer-enforcer
hanzel98 Jun 25, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 4 additions & 0 deletions script/DeployCaveatEnforcers.s.sol
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,7 @@ import { ERC20PeriodTransferEnforcer } from "../src/enforcers/ERC20PeriodTransfe
import { ERC721BalanceChangeEnforcer } from "../src/enforcers/ERC721BalanceChangeEnforcer.sol";
import { ERC721TransferEnforcer } from "../src/enforcers/ERC721TransferEnforcer.sol";
import { ERC1155BalanceChangeEnforcer } from "../src/enforcers/ERC1155BalanceChangeEnforcer.sol";
import { ERC1155TransferEnforcer } from "../src/enforcers/ERC1155TransferEnforcer.sol";
import { ExactCalldataBatchEnforcer } from "../src/enforcers/ExactCalldataBatchEnforcer.sol";
import { ExactCalldataEnforcer } from "../src/enforcers/ExactCalldataEnforcer.sol";
import { ExactExecutionBatchEnforcer } from "../src/enforcers/ExactExecutionBatchEnforcer.sol";
Expand Down Expand Up @@ -105,6 +106,9 @@ contract DeployCaveatEnforcers is Script {
deployedAddress = address(new ERC1155BalanceChangeEnforcer{ salt: salt }());
console2.log("ERC1155BalanceChangeEnforcer: %s", deployedAddress);

deployedAddress = address(new ERC1155TransferEnforcer{ salt: salt }());
console2.log("ERC1155TransferEnforcer: %s", deployedAddress);

deployedAddress = address(new ExactCalldataBatchEnforcer{ salt: salt }());
console2.log("ExactCalldataBatchEnforcer: %s", deployedAddress);

Expand Down
2 changes: 2 additions & 0 deletions script/verification/verify-enforcer-contracts.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -35,6 +35,7 @@ ENFORCERS=(
"ERC721BalanceChangeEnforcer"
"ERC721TransferEnforcer"
"ERC1155BalanceChangeEnforcer"
"ERC1155TransferEnforcer"
"ExactCalldataBatchEnforcer"
"ExactCalldataEnforcer"
"ExactExecutionBatchEnforcer"
Expand Down Expand Up @@ -68,6 +69,7 @@ ADDRESSES=(
"0x8aFdf96eDBbe7e1eD3f5Cd89C7E084841e12A09e"
"0x3790e6B7233f779b09DA74C72b6e94813925b9aF"
"0x63c322732695cAFbbD488Fc6937A0A7B66fC001A"
"0x0000000000000000000000000000000000000000"
"0x982FD5C86BBF425d7d1451f974192d4525113DfD"
"0x99F2e9bF15ce5eC84685604836F71aB835DBBdED"
"0x1e141e455d08721Dd5BCDA1BaA6Ea5633Afd5017"
Expand Down
212 changes: 212 additions & 0 deletions src/enforcers/ERC1155TransferEnforcer.sol
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,212 @@
// SPDX-License-Identifier: MIT
pragma solidity 0.8.23;

import { CaveatEnforcer } from "./CaveatEnforcer.sol";
import { ModeCode } from "../utils/Types.sol";
import { IERC1155 } from "@openzeppelin/contracts/token/ERC1155/IERC1155.sol";
import { ExecutionLib } from "@erc7579/lib/ExecutionLib.sol";

/**
* @title ERC1155TransferEnforcer
* @notice Enforces transfer restrictions for ERC1155 tokens within delegation contexts
* @dev This enforcer:
* - Operates exclusively in single execution call type with default execution mode
* - Supports both single and batch transfer operations (safeTransferFrom and safeBatchTransferFrom)
* - Automatically selects transfer function based on terms length
* - Maintains per-token ID transfer limits through spent amount tracking
* - Implements cumulative spending limits per delegation hash
* - Validates that only permitted contracts and token IDs can be transferred
*
* Terms Encoding Format:
* - Single transfer: abi.encode(address contract, uint256 tokenId, uint256 maxAmount) [96 bytes]
* - Batch transfer: abi.encode(address contract, uint256[] tokenIds, uint256[] maxAmounts) [≥224 bytes]
* @notice For nonfungible ERC1155 tokens, the transfer amount must be 1.
*/
contract ERC1155TransferEnforcer is CaveatEnforcer {
////////////////////////////// State //////////////////////////////

/// @notice Maps delegation manager address => delegation hash => token ID => spent amount
mapping(address delegationManager => mapping(bytes32 delegationHash => mapping(uint256 tokenId => uint256 amount))) public
spentMap;

////////////////////////////// Events //////////////////////////////
/// @notice Emitted when the spent amount for a token ID is increased
/// @param sender The address of the delegation manager
/// @param delegationHash The hash of the delegation
/// @param tokenId The ID of the token being transferred
/// @param limit The maximum amount allowed for this token ID
/// @param spent The new total amount spent for this token ID
event IncreasedSpentMap(address indexed sender, bytes32 indexed delegationHash, uint256 tokenId, uint256 limit, uint256 spent);

/**
* @notice Enforces that the contract and tokenIds are permitted for transfer
Copy link
Contributor

@MoMannn MoMannn Jul 8, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

contract, tokenIds and amounts

* @dev Validates that the transfer execution matches the permitted terms and updates spent amounts
* @param _terms encoded terms containing transfer type, contract address, token IDs and amounts
Copy link
Contributor

@MoMannn MoMannn Jul 8, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

terms don't include transfer type anymore since its extracted via bytes length

* @param _mode The execution mode. (Must be Single callType, Default execType)
* @param _executionCallData the call data of the transferFrom call
* @param _delegationHash the hash of the delegation being operated on
*/
function beforeHook(
bytes calldata _terms,
bytes calldata,
ModeCode _mode,
bytes calldata _executionCallData,
bytes32 _delegationHash,
address,
address
)
public
virtual
override
onlySingleCallTypeMode(_mode)
onlyDefaultExecutionMode(_mode)
{
_validateTransfer(_terms, _delegationHash, _executionCallData);
}

/**
* @notice Decodes the terms to get the transfer type, permitted contract and token IDs
* @dev Validates the terms length and structure
* @param _terms The encoded terms containing transfer type, contract address and token IDs
Copy link
Contributor

@MoMannn MoMannn Jul 8, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

no transfer type here as well

* @return _isBatch The transfer type flag
* @return _permittedContract The address of the permitted ERC1155 contract
* @return _permittedIds Array of token IDs
* @return _permittedAmounts Array of token amounts
*/
function getTermsInfo(bytes calldata _terms)
public
pure
returns (bool _isBatch, address _permittedContract, uint256[] memory _permittedIds, uint256[] memory _permittedAmounts)
{
if (_terms.length == 96) {
_permittedIds = new uint256[](1);
_permittedAmounts = new uint256[](1);
(_permittedContract, _permittedIds[0], _permittedAmounts[0]) = abi.decode(_terms, (address, uint256, uint256));
} else if (_terms.length >= 224) {
_isBatch = true;
(_permittedContract, _permittedIds, _permittedAmounts) = abi.decode(_terms, (address, uint256[], uint256[]));
} else {
revert("ERC1155TransferEnforcer:invalid-terms-length");
}

if (_permittedContract == address(0)) revert("ERC1155TransferEnforcer:invalid-contract-address");
if (_permittedIds.length != _permittedAmounts.length) revert("ERC1155TransferEnforcer:invalid-ids-values-length");
}

/**
* @notice Validates that the transfer execution matches the permitted terms
* @dev Checks that the contract, token IDs and amounts match what is permitted in the terms
* @param _terms The encoded terms containing transfer type, contract address, token IDs and amounts
* @param _delegationHash The hash of the delegation being operated on
* @param _executionCallData The encoded execution data containing the transfer details
*/
function _validateTransfer(bytes calldata _terms, bytes32 _delegationHash, bytes calldata _executionCallData) internal {
(bool isBatch_, address permittedContract_, uint256[] memory permittedTokenIds_, uint256[] memory permittedAmounts_) =
getTermsInfo(_terms);
(address target_, uint256 value_, bytes calldata callData_) = ExecutionLib.decodeSingle(_executionCallData);

if (value_ != 0) revert("ERC1155TransferEnforcer:invalid-value");
if (callData_.length != 196 && callData_.length < 324) revert("ERC1155TransferEnforcer:invalid-calldata-length");
if (target_ != permittedContract_) revert("ERC1155TransferEnforcer:unauthorized-contract-target");

bytes4 selector_ = bytes4(callData_[0:4]);
Copy link
Contributor

@MoMannn MoMannn Jul 8, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think writting this this way:

if (isBatch_) {
    if (selector_ != IERC1155.safeBatchTransferFrom.selector) {
        revert("ERC1155TransferEnforcer:unauthorized-selector-batch");
    }
    _validateBatchTransfer(_delegationHash, callData_, permittedTokenIds_, permittedAmounts_);
} else {    
    if (selector_ != IERC1155.safeTransferFrom.selector) {
        revert("ERC1155TransferEnforcer:unauthorized-selector-single");
    }
    _validateSingleTransfer(_delegationHash, callData_, permittedTokenIds_[0], permittedAmounts_[0]);
}

Should be slightly better gas wise.

if (isBatch_ && selector_ != IERC1155.safeBatchTransferFrom.selector) {
revert("ERC1155TransferEnforcer:unauthorized-selector-batch");
}
if (!isBatch_ && selector_ != IERC1155.safeTransferFrom.selector) {
revert("ERC1155TransferEnforcer:unauthorized-selector-single");
}

if (isBatch_) {
_validateBatchTransfer(_delegationHash, callData_, permittedTokenIds_, permittedAmounts_);
} else {
_validateSingleTransfer(_delegationHash, callData_, permittedTokenIds_[0], permittedAmounts_[0]);
}
}

/**
* @notice Validates a single ERC1155 token transfer against permitted parameters
* @dev Checks that the transfer addresses are valid and matches token ID and amount against permitted values
* @param _delegationHash The hash of the delegation being operated on
* @param _callData The encoded transfer function call data
* @param _permittedTokenId The token ID that is permitted to be transferred
* @param _permittedAmount The amount that is permitted to be transferred
*/
function _validateSingleTransfer(
bytes32 _delegationHash,
bytes calldata _callData,
uint256 _permittedTokenId,
uint256 _permittedAmount
)
internal
{
(address from_, address to_, uint256 id_, uint256 amount_,) =
abi.decode(_callData[4:], (address, address, uint256, uint256, bytes));

if (from_ == address(0) || to_ == address(0)) {
revert("ERC1155TransferEnforcer:invalid-address");
}
if (_permittedTokenId != id_) {
revert("ERC1155TransferEnforcer:unauthorized-token-id");
}
_increaseSpentMap(_delegationHash, id_, amount_, _permittedAmount);
}

/**
* @notice Validates a batch ERC1155 token transfer against permitted parameters
* @dev Checks that all token IDs in the batch are permitted and their amounts don't exceed limits
* @param _delegationHash The hash of the delegation being operated on
* @param _callData The encoded batch transfer function call data
* @param _permittedTokenIds Array of permitted token IDs
* @param _permittedAmounts Array of permitted amounts for each token ID
*/
function _validateBatchTransfer(
bytes32 _delegationHash,
bytes calldata _callData,
uint256[] memory _permittedTokenIds,
uint256[] memory _permittedAmounts
)
internal
{
(address from_, address to_, uint256[] memory ids_, uint256[] memory amounts_,) =
abi.decode(_callData[4:], (address, address, uint256[], uint256[], bytes));

if (from_ == address(0) || to_ == address(0)) {
revert("ERC1155TransferEnforcer:invalid-address");
}

uint256 idsLength_ = ids_.length;
uint256 permittedTokenIdsLength_ = _permittedTokenIds.length;

// Check if all token IDs in the batch are permitted
for (uint256 i = 0; i < idsLength_; i++) {
bool isPermitted_ = false;
for (uint256 j = 0; j < permittedTokenIdsLength_; j++) {
if (ids_[i] == _permittedTokenIds[j]) {
_increaseSpentMap(_delegationHash, ids_[i], amounts_[i], _permittedAmounts[j]);
isPermitted_ = true;
break;
}
}
if (!isPermitted_) {
revert("ERC1155TransferEnforcer:unauthorized-token-id");
}
}
}

/**
* @notice Updates and validates the spent amount for a token ID
* @dev Increments the spent amount and checks against permitted limit
* @param _delegationHash The hash of the delegation being operated on
* @param _id The token ID being tracked
* @param _amount The amount to increase the spent tracker by
* @param _permittedAmount The maximum amount allowed for this token ID
*/
function _increaseSpentMap(bytes32 _delegationHash, uint256 _id, uint256 _amount, uint256 _permittedAmount) private {
uint256 spent_ = spentMap[msg.sender][_delegationHash][_id] += _amount;
if (spent_ > _permittedAmount) {
revert("ERC1155TransferEnforcer:unauthorized-amount");
}
emit IncreasedSpentMap(msg.sender, _delegationHash, _id, _permittedAmount, spent_);
}
}
Loading
Loading