GitBross Etusivu Tutki Apua
Rekisteröidy Kirjaudu sisään
sol_Bo8des9o
/
openzeppelin-contracts
1
0
Haarauta 0
Tiedostot Esitykset 0 Vetopyynnöt 0 Wiki
Puu: 24a0bc23cf
Haarat Tunnisteet
openzeppelin-co...
/
contracts
/
security
/
PullPayment.sol

PullPayment.sol 2.6 KB
Historia Raaka

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869 
  1. // SPDX-License-Identifier: MIT
    2. 

  2. 

  3. pragma solidity ^0.8.0;
    4. 

  4. 

  5. import "../utils/escrow/Escrow.sol";
    6. 

  6. 

  7. /**
    8. 

  8.  * @dev Simple implementation of a
    9. 

  9.  * https://consensys.github.io/smart-contract-best-practices/recommendations/#favor-pull-over-push-for-external-calls[pull-payment]
    10. 

  10.  * strategy, where the paying contract doesn't interact directly with the
    11. 

  11.  * receiver account, which must withdraw its payments itself.
    12. 

  12.  *
    13. 

  13.  * Pull-payments are often considered the best practice when it comes to sending
    14. 

  14.  * Ether, security-wise. It prevents recipients from blocking execution, and
    15. 

  15.  * eliminates reentrancy concerns.
    16. 

  16.  *
    17. 

  17.  * TIP: If you would like to learn more about reentrancy and alternative ways
    18. 

  18.  * to protect against it, check out our blog post
    19. 

  19.  * https://blog.openzeppelin.com/reentrancy-after-istanbul/[Reentrancy After Istanbul].
    20. 

  20.  *
    21. 

  21.  * To use, derive from the `PullPayment` contract, and use {_asyncTransfer}
    22. 

  22.  * instead of Solidity's `transfer` function. Payees can query their due
    23. 

  23.  * payments with {payments}, and retrieve them with {withdrawPayments}.
    24. 

  24.  */
    25. 

  25. abstract contract PullPayment {
    26. 

  26.     Escrow immutable private _escrow;
    27. 

  27. 

  28.     constructor () {
    29. 

  29.         _escrow = new Escrow();
    30. 

  30.     }
    31. 

  31. 

  32.     /**
    33. 

  33.      * @dev Withdraw accumulated payments, forwarding all gas to the recipient.
    34. 

  34.      *
    35. 

  35.      * Note that _any_ account can call this function, not just the `payee`.
    36. 

  36.      * This means that contracts unaware of the `PullPayment` protocol can still
    37. 

  37.      * receive funds this way, by having a separate account call
    38. 

  38.      * {withdrawPayments}.
    39. 

  39.      *
    40. 

  40.      * WARNING: Forwarding all gas opens the door to reentrancy vulnerabilities.
    41. 

  41.      * Make sure you trust the recipient, or are either following the
    42. 

  42.      * checks-effects-interactions pattern or using {ReentrancyGuard}.
    43. 

  43.      *
    44. 

  44.      * @param payee Whose payments will be withdrawn.
    45. 

  45.      */
    46. 

  46.     function withdrawPayments(address payable payee) public virtual {
    47. 

  47.         _escrow.withdraw(payee);
    48. 

  48.     }
    49. 

  49. 

  50.     /**
    51. 

  51.      * @dev Returns the payments owed to an address.
    52. 

  52.      * @param dest The creditor's address.
    53. 

  53.      */
    54. 

  54.     function payments(address dest) public view returns (uint256) {
    55. 

  55.         return _escrow.depositsOf(dest);
    56. 

  56.     }
    57. 

  57. 

  58.     /**
    59. 

  59.      * @dev Called by the payer to store the sent amount as credit to be pulled.
    60. 

  60.      * Funds sent in this way are stored in an intermediate {Escrow} contract, so
    61. 

  61.      * there is no danger of them being spent before withdrawal.
    62. 

  62.      *
    63. 

  63.      * @param dest The destination address of the funds.
    64. 

  64.      * @param amount The amount to transfer.
    65. 

  65.      */
    66. 

  66.     function _asyncTransfer(address dest, uint256 amount) internal virtual {
    67. 

  67.         _escrow.deposit{ value: amount }(dest);
    68. 

  68.     }
    69. 

  69. }
    70.