feat: add master vault

contracts/tokenbridge/libraries/vault/IMasterVault.sol

@@ -0,0 +1,6 @@
+// SPDX-License-Identifier: Apache-2.0
+pragma solidity ^0.8.0;
+
+interface IMasterVault {
+    function setSubVault(address subVault, uint256 minSubVaultExchRateWad) external;
+}

contracts/tokenbridge/libraries/vault/IMasterVaultFactory.sol

@@ -0,0 +1,11 @@
+// SPDX-License-Identifier: Apache-2.0
+pragma solidity ^0.8.0;
+
+interface IMasterVaultFactory {
+    event VaultDeployed(address indexed token, address indexed vault);
+
+    function initialize(address _owner) external;
+    function deployVault(address token) external returns (address vault);
+    function calculateVaultAddress(address token) external view returns (address);
+    function getVault(address token) external returns (address);
+}

contracts/tokenbridge/libraries/vault/MasterVault.sol

@@ -0,0 +1,281 @@
+// SPDX-License-Identifier: Apache-2.0
+pragma solidity ^0.8.0;
+
+import {ERC4626Upgradeable} from "@openzeppelin/contracts-upgradeable/token/ERC20/extensions/ERC4626Upgradeable.sol";
+import {ERC20Upgradeable} from "@openzeppelin/contracts-upgradeable/token/ERC20/ERC20Upgradeable.sol";
+import {IERC20} from "@openzeppelin/contracts/token/ERC20/IERC20.sol";
+import {IERC20Upgradeable} from "@openzeppelin/contracts-upgradeable/token/ERC20/IERC20Upgradeable.sol";
+import {IERC4626} from "@openzeppelin/contracts/interfaces/IERC4626.sol";
+import {AccessControlUpgradeable} from "@openzeppelin/contracts-upgradeable/access/AccessControlUpgradeable.sol";
+import {PausableUpgradeable} from "@openzeppelin/contracts-upgradeable/security/PausableUpgradeable.sol";
+import {Initializable} from "@openzeppelin/contracts-upgradeable/proxy/utils/Initializable.sol";
+import {IERC20Metadata} from "@openzeppelin/contracts/token/ERC20/extensions/IERC20Metadata.sol";
+import {MathUpgradeable} from "@openzeppelin/contracts-upgradeable/utils/math/MathUpgradeable.sol";
+import {SafeERC20} from "@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
+
+contract MasterVault is Initializable, ERC4626Upgradeable, AccessControlUpgradeable, PausableUpgradeable {
+    using SafeERC20 for IERC20;
+    using MathUpgradeable for uint256;
+
+    bytes32 public constant VAULT_MANAGER_ROLE = keccak256("VAULT_MANAGER_ROLE");
+    bytes32 public constant FEE_MANAGER_ROLE = keccak256("FEE_MANAGER_ROLE");
+    bytes32 public constant PAUSER_ROLE = keccak256("PAUSER_ROLE");
+
+    error TooFewSharesReceived();
+    error TooManySharesBurned();
+    error TooManyAssetsDeposited();
+    error TooFewAssetsReceived();
+    error SubVaultAlreadySet();
+    error SubVaultAssetMismatch();
+    error SubVaultExchangeRateTooLow();
+    error NoExistingSubVault();
+    error NewSubVaultExchangeRateTooLow();
+    error BeneficiaryNotSet();
+    error PerformanceFeeDisabled();
+    error InvalidAsset();
+    error InvalidOwner();
+
+    // todo: avoid inflation, rounding, other common 4626 vulns
+    // we may need a minimum asset or master share amount when setting subvaults (bc of exchange rate calc)
+    IERC4626 public subVault;
+
+    // note: the performance fee can be avoided if the underlying strategy can be sandwiched (eg ETH to wstETH dex swap)
+    // maybe a simpler and more robust implementation would be for the owner to adjust the subVaultExchRateWad directly
+    // this would also avoid the need for totalPrincipal tracking
+    // however, this would require more trust in the owner
+    bool public enablePerformanceFee;
+    address public beneficiary;
+    uint256 totalPrincipal; // total assets deposited, used to calculate profit
+
+    event SubvaultChanged(address indexed oldSubvault, address indexed newSubvault);
+    event PerformanceFeeToggled(bool enabled);
+    event BeneficiaryUpdated(address indexed oldBeneficiary, address indexed newBeneficiary);
+
+    function initialize(IERC20 _asset, string memory _name, string memory _symbol, address _owner) external initializer {
+        if (address(_asset) == address(0)) revert InvalidAsset();
+        if (_owner == address(0)) revert InvalidOwner();
+
+        __ERC20_init(_name, _symbol);
+        __ERC4626_init(IERC20Upgradeable(address(_asset)));
+        __AccessControl_init();
+        __Pausable_init();
+
+        _setRoleAdmin(VAULT_MANAGER_ROLE, DEFAULT_ADMIN_ROLE);
+        _setRoleAdmin(FEE_MANAGER_ROLE, DEFAULT_ADMIN_ROLE);
+        _setRoleAdmin(PAUSER_ROLE, DEFAULT_ADMIN_ROLE);
+
+        _grantRole(DEFAULT_ADMIN_ROLE, _owner);
+        _grantRole(VAULT_MANAGER_ROLE, _owner);
+        _grantRole(FEE_MANAGER_ROLE, _owner); // todo: consider permissionless by default
+        _grantRole(PAUSER_ROLE, _owner);
+    }
+
+
+    function deposit(uint256 assets, address receiver, uint256 minSharesMinted) public returns (uint256) {
+        uint256 shares = deposit(assets, receiver);
+        if (shares < minSharesMinted) revert TooFewSharesReceived();
+        return shares;
+    }
+
+    function withdraw(uint256 assets, address receiver, address _owner, uint256 maxSharesBurned) public returns (uint256) {
+        uint256 shares = withdraw(assets, receiver, _owner);
+        if (shares > maxSharesBurned) revert TooManySharesBurned();
+        return shares;
+    }
+
+    function mint(uint256 shares, address receiver, uint256 maxAssetsDeposited) public returns (uint256) {
+        uint256 assets = super.mint(shares, receiver);
+        if (assets > maxAssetsDeposited) revert TooManyAssetsDeposited();
+        return assets;
+    }
+
+    function redeem(uint256 shares, address receiver, address _owner, uint256 minAssetsReceived) public returns (uint256) {
+        uint256 assets = super.redeem(shares, receiver, _owner);
+        if (assets < minAssetsReceived) revert TooFewAssetsReceived();
+        return assets;
+    }
+
+    /// @notice Set a subvault. Can only be called if there is not already a subvault set.
+    /// @param  _subVault The subvault to set. Must be an ERC4626 vault with the same asset as this MasterVault.
+    /// @param  minSubVaultExchRateWad Minimum acceptable ratio (times 1e18) of new subvault shares to outstanding MasterVault shares after deposit.
+    function setSubVault(IERC4626 _subVault, uint256 minSubVaultExchRateWad) external onlyRole(VAULT_MANAGER_ROLE) {
+        IERC20 underlyingAsset = IERC20(asset());
+        if (address(subVault) != address(0)) revert SubVaultAlreadySet();
+        if (address(_subVault.asset()) != address(underlyingAsset)) revert SubVaultAssetMismatch();
+
+        subVault = _subVault;
+
+        IERC20(asset()).safeApprove(address(_subVault), type(uint256).max);
+        _subVault.deposit(underlyingAsset.balanceOf(address(this)), address(this));
+
+        uint256 subVaultExchRateWad = _subVault.balanceOf(address(this)).mulDiv(1e18, totalSupply(), MathUpgradeable.Rounding.Down);
+        if (subVaultExchRateWad < minSubVaultExchRateWad) revert NewSubVaultExchangeRateTooLow();
+
+        emit SubvaultChanged(address(0), address(_subVault));
+    }
+
+    /// @notice Revokes the current subvault, moving all assets back to MasterVault
+    /// @param minAssetExchRateWad Minimum acceptable ratio (times 1e18) of assets received from subvault to outstanding MasterVault shares
+    function revokeSubVault(uint256 minAssetExchRateWad) external onlyRole(VAULT_MANAGER_ROLE) {
+        IERC4626 oldSubVault = subVault;
+        if (address(oldSubVault) == address(0)) revert NoExistingSubVault();
+
+        subVault = IERC4626(address(0));
+
+        oldSubVault.redeem(oldSubVault.balanceOf(address(this)), address(this), address(this));
+        IERC20(asset()).safeApprove(address(oldSubVault), 0);
+
+        uint256 assetExchRateWad = IERC20(asset()).balanceOf(address(this)).mulDiv(1e18, totalSupply(), MathUpgradeable.Rounding.Down);
+        if (assetExchRateWad < minAssetExchRateWad) revert SubVaultExchangeRateTooLow();
+
+        emit SubvaultChanged(address(oldSubVault), address(0));
+    }
+
+    function masterSharesToSubShares(uint256 masterShares, MathUpgradeable.Rounding rounding) public view returns (uint256) {
+        // masterShares * totalSubVaultShares / totalMasterShares
+        return masterShares.mulDiv(subVault.balanceOf(address(this)), totalSupply(), rounding);
+    }
+
+    function subSharesToMasterShares(uint256 subShares, MathUpgradeable.Rounding rounding) public view returns (uint256) {
+        // subShares * totalMasterShares / totalSubVaultShares
+        return subShares.mulDiv(totalSupply(), subVault.balanceOf(address(this)), rounding);
+    }
+
+    /// @notice Toggle performance fee collection on/off
+    /// @param enabled True to enable performance fees, false to disable
+    function setPerformanceFee(bool enabled) external onlyRole(VAULT_MANAGER_ROLE) {
+        enablePerformanceFee = enabled;
+        emit PerformanceFeeToggled(enabled);
+    }
+
+    /// @notice Set the beneficiary address for performance fees
+    /// @param newBeneficiary Address to receive performance fees, zero address defaults to owner
+    function setBeneficiary(address newBeneficiary) external onlyRole(FEE_MANAGER_ROLE) {
+        address oldBeneficiary = beneficiary;
+        beneficiary = newBeneficiary;
+        emit BeneficiaryUpdated(oldBeneficiary, newBeneficiary);
+    }
+
+    /// @notice Withdraw all accumulated performance fees to beneficiary
+    /// @dev Only callable by fee manager when performance fees are enabled
+    function withdrawPerformanceFees() external onlyRole(FEE_MANAGER_ROLE) {
+        if (!enablePerformanceFee) revert PerformanceFeeDisabled();
+        if (beneficiary == address(0)) revert BeneficiaryNotSet();
+
+        uint256 totalProfits = totalProfit();
+        if (totalProfits > 0) {
+            IERC4626 _subVault = subVault;
+            if (address(_subVault) != address(0)) {
+                _subVault.withdraw(totalProfits, address(this), address(this));
+            }
+            IERC20(asset()).safeTransfer(beneficiary, totalProfits);
+        }
+    }
+
+    function pause() external onlyRole(PAUSER_ROLE) {
+        _pause();
+    }
+
+    function unpause() external onlyRole(PAUSER_ROLE) {
+        _unpause();
+    }
+
+    /** @dev See {IERC4626-totalAssets}. */
+    function totalAssets() public view virtual override returns (uint256) {
+        IERC4626 _subVault = subVault;
+        if (address(_subVault) == address(0)) {
+            return super.totalAssets();
+        }
+        return _subVault.convertToAssets(_subVault.balanceOf(address(this)));
+    }
+
+    /** @dev See {IERC4626-maxDeposit}. */
+    function maxDeposit(address) public view virtual override returns (uint256) {
+        if (address(subVault) == address(0)) {
+            return type(uint256).max;
+        }
+        return subVault.maxDeposit(address(this));
+    }
+
+    /** @dev See {IERC4626-maxMint}. */
+    function maxMint(address) public view virtual override returns (uint256) {
+        if (address(subVault) == address(0)) {
+            return type(uint256).max;
+        }
+        uint256 subShares = subVault.maxMint(address(this));
+        if (subShares == type(uint256).max) {
+            return type(uint256).max;
+        }
+        return subSharesToMasterShares(subShares, MathUpgradeable.Rounding.Down);
+    }
+
+    /**
+     * @dev Internal conversion function (from assets to shares) with support for rounding direction.
+     *
+     * Will revert if assets > 0, totalSupply > 0 and totalAssets = 0. That corresponds to a case where any asset
+     * would represent an infinite amount of shares.
+     */
+    function _convertToShares(uint256 assets, MathUpgradeable.Rounding rounding) internal view virtual override returns (uint256 shares) {
+        IERC4626 _subVault = subVault;
+        if (address(_subVault) == address(0)) {
+            return super._convertToShares(assets, rounding);
+        }
+        uint256 subShares = rounding == MathUpgradeable.Rounding.Up ? _subVault.previewWithdraw(assets) : _subVault.previewDeposit(assets);
+        return subSharesToMasterShares(subShares, rounding);
+    }
+
+    /**
+     * @dev Internal conversion function (from shares to assets) with support for rounding direction.
+     */
+    function _convertToAssets(uint256 shares, MathUpgradeable.Rounding rounding) internal view virtual override returns (uint256 assets) {
+        IERC4626 _subVault = subVault;
+        if (address(_subVault) == address(0)) {
+            return super._convertToAssets(shares, rounding);
+        }
+        uint256 subShares = masterSharesToSubShares(shares, rounding);
+        return rounding == MathUpgradeable.Rounding.Up ? _subVault.previewMint(subShares) : _subVault.previewRedeem(subShares);
+    }
+
+    function totalProfit() public view returns (uint256) {
+        uint256 _totalAssets = totalAssets();
+        return _totalAssets > totalPrincipal ? _totalAssets - totalPrincipal : 0;
+    }
+
+    /**
+     * @dev Deposit/mint common workflow.
+     */
+    function _deposit(
+        address caller,
+        address receiver,
+        uint256 assets,
+        uint256 shares
+    ) internal virtual override whenNotPaused {
+        super._deposit(caller, receiver, assets, shares);
+
+        totalPrincipal += assets;
+        IERC4626 _subVault = subVault;
+        if (address(_subVault) != address(0)) {
+           _subVault.deposit(assets, address(this));
+        }
+    }
+
+    /**
+     * @dev Withdraw/redeem common workflow.
+     */
+    function _withdraw(
+        address caller,
+        address receiver,
+        address _owner,
+        uint256 assets,
+        uint256 shares
+    ) internal virtual override whenNotPaused {
+        totalPrincipal -= assets;
+
+        IERC4626 _subVault = subVault;
+        if (address(_subVault) != address(0)) {
+            _subVault.withdraw(assets, address(this), address(this));
+        }
+
+        super._withdraw(caller, receiver, _owner, assets, shares);
+    }
+}

contracts/tokenbridge/libraries/vault/MasterVaultFactory.sol

@@ -0,0 +1,67 @@
+// SPDX-License-Identifier: Apache-2.0
+
+pragma solidity ^0.8.0;
+
+import "@openzeppelin/contracts/utils/Create2.sol";
+import "@openzeppelin/contracts/token/ERC20/extensions/IERC20Metadata.sol";
+import "@openzeppelin/contracts/proxy/beacon/UpgradeableBeacon.sol";
+import "../ClonableBeaconProxy.sol";
+import "./IMasterVault.sol";
+import "./IMasterVaultFactory.sol";
+import "./MasterVault.sol";
+
+contract MasterVaultFactory is IMasterVaultFactory, Initializable {
+    error ZeroAddress();
+    error BeaconNotDeployed();
+
+    BeaconProxyFactory public beaconProxyFactory;
+    address public owner;
+
+    function initialize(address _owner) public initializer {
+        owner = _owner;
+        MasterVault masterVaultImplementation = new MasterVault();
+        UpgradeableBeacon beacon = new UpgradeableBeacon(address(masterVaultImplementation));
+        beaconProxyFactory = new BeaconProxyFactory();
+        beaconProxyFactory.initialize(address(beacon));
+        beacon.transferOwnership(_owner);
+    }
+
+    function deployVault(address token) public returns (address vault) {
+        if (token == address(0)) {
+            revert ZeroAddress();
+        }
+        if (
+            address(beaconProxyFactory) == address(0) && beaconProxyFactory.beacon() == address(0)
+        ) {
+            revert BeaconNotDeployed();
+        }
+
+        bytes32 userSalt = _getUserSalt(token);
+        vault = beaconProxyFactory.createProxy(userSalt);
+
+        IERC20Metadata tokenMetadata = IERC20Metadata(token);
+        string memory name = string(abi.encodePacked("Master ", tokenMetadata.name()));
+        string memory symbol = string(abi.encodePacked("m", tokenMetadata.symbol()));
+
+        MasterVault(vault).initialize(IERC20(token), name, symbol, owner);
+
+        emit VaultDeployed(token, vault);
+    }
+
+    function _getUserSalt(address token) internal pure returns (bytes32) {
+        return keccak256(abi.encode(token));
+    }
+
+    function calculateVaultAddress(address token) public view returns (address) {
+        bytes32 userSalt = _getUserSalt(token);
+        return beaconProxyFactory.calculateExpectedAddress(address(this), userSalt);
+    }
+
+    function getVault(address token) external returns (address) {
+        address vault = calculateVaultAddress(token);
+        if (vault.code.length == 0) {
+            return deployVault(token);
+        }
+        return vault;
+    }
+}

contracts/tokenbridge/test/MockSubVault.sol

@@ -0,0 +1,18 @@
+// SPDX-License-Identifier: Apache-2.0
+pragma solidity ^0.8.0;
+
+import {ERC4626} from "@openzeppelin/contracts/token/ERC20/extensions/ERC4626.sol";
+import {ERC20} from "@openzeppelin/contracts/token/ERC20/ERC20.sol";
+import {IERC20} from "@openzeppelin/contracts/token/ERC20/IERC20.sol";
+
+contract MockSubVault is ERC4626 {
+    constructor(
+        IERC20 _asset,
+        string memory _name,
+        string memory _symbol
+    ) ERC20(_name, _symbol) ERC4626(_asset) {}
+
+    function totalAssets() public view override returns (uint256) {
+        return IERC20(asset()).balanceOf(address(this));
+    }
+}