smartcontractkit · Alkhara · May 4, 2026 · May 4, 2026 · May 4, 2026 · May 4, 2026
@@ -0,0 +1,260 @@
+// SPDX-License-Identifier: BUSL-1.1
+pragma solidity ^0.8.24;
+
+import {ITokenMessenger} from "./interfaces/ITokenMessenger.sol";
+
+import {Pool} from "../../libraries/Pool.sol";
+import {TokenPool} from "../TokenPool.sol";
+import {CCTPMessageTransmitterProxy} from "../USDC/CCTPMessageTransmitterProxy.sol";
+import {USDCTokenPool} from "../USDC/USDCTokenPool.sol";
+import {USDCBridgeMigrator} from "./USDCBridgeMigrator.sol";
+
+import {IERC20} from "@openzeppelin/contracts@5.3.0/token/ERC20/IERC20.sol";
+import {SafeERC20} from "@openzeppelin/contracts@5.3.0/token/ERC20/utils/SafeERC20.sol";
+import {EnumerableSet} from "@openzeppelin/contracts@5.3.0/utils/structs/EnumerableSet.sol";
+
+// bytes4(keccak256("NO_CCTP_USE_LOCK_RELEASE"))
+bytes4 constant LOCK_RELEASE_FLAG = 0xfa7c07de;
+
+/// @notice A token pool for USDC which uses CCTP for supported chains and Lock/Release for all others
+/// @dev The functionality from LockReleaseTokenPool.sol has been duplicated due to lack of compiler support for shared
+/// constructors between parents
+/// @dev The primary token mechanism in this pool is Burn/Mint with CCTP, with Lock/Release as the
+/// secondary, opt in mechanism for chains not currently supporting CCTP.
+contract HybridLockReleaseUSDCTokenPool is USDCTokenPool, USDCBridgeMigrator {
+  using SafeERC20 for IERC20;
+  using EnumerableSet for EnumerableSet.UintSet;
+
+  event LiquidityTransferred(address indexed from, uint64 indexed remoteChainSelector, uint256 amount);
+  event LiquidityProviderSet(
+    address indexed oldProvider, address indexed newProvider, uint64 indexed remoteChainSelector
+  );
+  event LiquidityAdded(address indexed provider, uint256 indexed amount);
+  event LiquidityRemoved(address indexed provider, uint256 indexed amount);
+
+  event LockReleaseEnabled(uint64 indexed remoteChainSelector);
+  event LockReleaseDisabled(uint64 indexed remoteChainSelector);
+
+  error LanePausedForCCTPMigration(uint64 remoteChainSelector);
+  error TokenLockingNotAllowedAfterMigration(uint64 remoteChainSelector);
+
+  /// @notice The address of the liquidity provider for a specific chain.
+  /// External liquidity is not required when there is one canonical token deployed to a chain,
+  /// and CCIP is facilitating mint/burn on all the other chains, in which case the invariant
+  /// balanceOf(pool) on home chain >= sum(totalSupply(mint/burn "wrapped" token) on all remote chains) should always hold
+  mapping(uint64 remoteChainSelector => address liquidityProvider) internal s_liquidityProvider;
+
+  constructor(
+    ITokenMessenger tokenMessenger,
+    CCTPMessageTransmitterProxy cctpMessageTransmitterProxy,
+    IERC20 token,
+    address rmnProxy,
+    address router,
+    address previousPool
+  )
+    USDCTokenPool(tokenMessenger, cctpMessageTransmitterProxy, token, rmnProxy, router, previousPool)
+    USDCBridgeMigrator(address(token))
+  {}
+
+  // ================================================================
+  // │                   Incoming/Outgoing Mechanisms               |
+  // ================================================================
+
+  /// @notice Locks the token in the pool
+  /// @dev The _validateLockOrBurn check is an essential security check
+  function lockOrBurn(
+    Pool.LockOrBurnInV1 calldata lockOrBurnIn
+  ) public virtual override returns (Pool.LockOrBurnOutV1 memory) {
+    // // If the alternative mechanism (L/R) for chains which have it enabled
+    if (!shouldUseLockRelease(lockOrBurnIn.remoteChainSelector)) {
+      return super.lockOrBurn(lockOrBurnIn);
+    }
+
+    // Circle requires a supply-lock to prevent outgoing messages once the migration process begins.
+    // This prevents new outgoing messages once the migration has begun to ensure any the procedure runs as expected
+    if (s_proposedUSDCMigrationChain == lockOrBurnIn.remoteChainSelector) {
+      revert LanePausedForCCTPMigration(s_proposedUSDCMigrationChain);
+    }
+
+    return _lockReleaseOutgoingMessage(lockOrBurnIn);
+  }
+
+  /// @notice Contains the alternative mechanism, in this implementation is "Lock" on outgoing tokens
+  function _lockReleaseOutgoingMessage(
+    Pool.LockOrBurnInV1 calldata lockOrBurnIn
+  ) internal virtual returns (Pool.LockOrBurnOutV1 memory) {
+    _validateLockOrBurn(lockOrBurnIn, WAIT_FOR_FINALITY, "", 0);
+
+    // Increase internal accounting of locked tokens for burnLockedUSDC() migration
+    s_lockedTokensByChainSelector[lockOrBurnIn.remoteChainSelector] += lockOrBurnIn.amount;
+
+    emit LockedOrBurned({
+      remoteChainSelector: lockOrBurnIn.remoteChainSelector,
+      token: address(i_token),
+      sender: msg.sender,
+      amount: lockOrBurnIn.amount
+    });
+
+    return Pool.LockOrBurnOutV1({
+      destTokenAddress: getRemoteToken(lockOrBurnIn.remoteChainSelector),
+      destPoolData: abi.encode(LOCK_RELEASE_FLAG)
+    });
+  }
+
+  /// @notice Release tokens from the pool to the recipient
+  /// @dev The _validateReleaseOrMint check is an essential security check
+  function releaseOrMint(
+    Pool.ReleaseOrMintInV1 calldata releaseOrMintIn
+  ) public virtual override returns (Pool.ReleaseOrMintOutV1 memory) {
+    // Use CCTP Burn/Mint mechanism for chains which have it enabled. The LOCK_RELEASE_FLAG is used in sourcePoolData to
+    // discern this, since the source-chain will not be a hybrid-pool but a standard burn-mint. In the event of a
+    // stuck message after a migration has occurred, and the message was not executed properly before the migration
+    // began, and locked tokens were not released until now, the message will already have been committed to with this
+    // flag so it is safe to release the tokens. The source USDC pool is trusted to send messages with the correct
+    // flag as well.
+    if (bytes4(releaseOrMintIn.sourcePoolData) != LOCK_RELEASE_FLAG) {
+      return super.releaseOrMint(releaseOrMintIn);
+    }
+
+    return _lockReleaseIncomingMessage(releaseOrMintIn);
+  }
+
+  /// @notice Contains the alternative mechanism for incoming tokens, in this implementation is "Release" incoming tokens
+  function _lockReleaseIncomingMessage(
+    Pool.ReleaseOrMintInV1 calldata releaseOrMintIn
+  ) internal virtual returns (Pool.ReleaseOrMintOutV1 memory) {
+    _validateReleaseOrMint(releaseOrMintIn, releaseOrMintIn.sourceDenominatedAmount, WAIT_FOR_FINALITY);
+
+    // Circle requires a supply-lock to prevent incoming messages once the migration process begins.
+    // This prevents new incoming messages once the migration has begun to ensure any the procedure runs as expected
+    if (s_proposedUSDCMigrationChain == releaseOrMintIn.remoteChainSelector) {
+      revert LanePausedForCCTPMigration(s_proposedUSDCMigrationChain);
+    }
+
+    // Decrease internal tracking of locked tokens to ensure accurate accounting for burnLockedUSDC() migration
+    // If the chain has already been migrated, then this mapping would be zero, and the operation would underflow.
+    // This branch ensures that we're subtracting from the correct mapping. It is also safe to subtract from the
+    // excluded tokens mapping, as this function would only be invoked in the event of a stuck tx after a migration
+    if (s_lockedTokensByChainSelector[releaseOrMintIn.remoteChainSelector] == 0) {
+      s_tokensExcludedFromBurn[releaseOrMintIn.remoteChainSelector] -= releaseOrMintIn.sourceDenominatedAmount;
+    } else {
+      s_lockedTokensByChainSelector[releaseOrMintIn.remoteChainSelector] -= releaseOrMintIn.sourceDenominatedAmount;
+    }
+
+    i_token.safeTransfer(releaseOrMintIn.receiver, releaseOrMintIn.sourceDenominatedAmount);
+
+    emit ReleasedOrMinted({
+      remoteChainSelector: releaseOrMintIn.remoteChainSelector,
+      token: address(i_token),
+      sender: msg.sender,
+      recipient: releaseOrMintIn.receiver,
+      amount: releaseOrMintIn.sourceDenominatedAmount
+    });
+
+    return Pool.ReleaseOrMintOutV1({destinationAmount: releaseOrMintIn.sourceDenominatedAmount});
+  }
+
+  // ================================================================
+  // │                   Liquidity Management                       |
+  // ================================================================
+
+  /// @notice Gets LiquidityManager, can be address(0) if none is configured.
+  /// @return The current liquidity manager for the given chain selector
+  function getLiquidityProvider(
+    uint64 remoteChainSelector
+  ) external view returns (address) {
+    return s_liquidityProvider[remoteChainSelector];
+  }
+
+  /// @notice Sets the LiquidityManager address.
+  /// @dev Only callable by the owner.
+  function setLiquidityProvider(uint64 remoteChainSelector, address liquidityProvider) external onlyOwner {
+    address oldProvider = s_liquidityProvider[remoteChainSelector];
+
+    s_liquidityProvider[remoteChainSelector] = liquidityProvider;
+
+    emit LiquidityProviderSet(oldProvider, liquidityProvider, remoteChainSelector);
+  }
+
+  /// @notice Adds liquidity to the pool for a specific chain. The tokens should be approved first.
+  /// @dev Liquidity is expected to be added on a per chain basis. Parties are expected to provide liquidity for their
+  /// own chain which implements non canonical USDC and liquidity is not shared across lanes.
+  /// @dev Once liquidity is added, it is locked in the pool until it is removed by an incoming message on the
+  /// lock release mechanism. This is a hard requirement by Circle to ensure parity with the destination chain
+  /// supply is maintained.
+  /// @param amount The amount of tokens to provide as liquidity.
+  /// @param remoteChainSelector The chain for which liquidity is provided to. Necessary to ensure there's accurate
+  /// parity between locked USDC in this contract and the circulating supply on the remote chain
+  function provideLiquidity(uint64 remoteChainSelector, uint256 amount) external {
+    if (s_liquidityProvider[remoteChainSelector] != msg.sender) revert TokenPool.Unauthorized(msg.sender);
+
+    // Prevent adding liquidity to a chain which has already been migrated
+    if (s_migratedChains.contains(remoteChainSelector)) {
+      revert TokenLockingNotAllowedAfterMigration(remoteChainSelector);
+    }
+
+    // prevent adding liquidity to a chain which has been proposed for migration
+    if (remoteChainSelector == s_proposedUSDCMigrationChain) {
+      revert LanePausedForCCTPMigration(remoteChainSelector);
+    }
+
+    s_lockedTokensByChainSelector[remoteChainSelector] += amount;
+
+    i_token.safeTransferFrom(msg.sender, address(this), amount);
+
+    emit LiquidityAdded(msg.sender, amount);
+  }
+
+  /// @notice Removed liquidity to the pool. The tokens will be sent to msg.sender.
+  /// @param remoteChainSelector The chain where liquidity is being released.
+  /// @param amount The amount of liquidity to remove.
+  /// @dev The function should only be called if non canonical USDC on the remote chain has been burned and is not being
+  /// withdrawn on this chain, otherwise a mismatch may occur between locked token balance and remote circulating supply
+  /// which may block a potential future migration of the chain to CCTP.
+  function withdrawLiquidity(uint64 remoteChainSelector, uint256 amount) external onlyOwner {
+    // A supply-lock is required to prevent outgoing messages once the migration process begins.
+    // This prevents new outgoing messages once the migration has begun to ensure any the procedure runs as expected
+    if (remoteChainSelector == s_proposedUSDCMigrationChain) {
+      revert LanePausedForCCTPMigration(remoteChainSelector);
+    }
+
+    s_lockedTokensByChainSelector[remoteChainSelector] -= amount;
+
+    i_token.safeTransfer(msg.sender, amount);
+
+    emit LiquidityRemoved(msg.sender, amount);
+  }
+
+  // ================================================================
+  // │                   Alt Mechanism Logic                        |
+  // ================================================================
+
+  /// @notice Return whether a lane should use the alternative L/R mechanism in the token pool.
+  /// @param remoteChainSelector the remote chain the lane is interacting with
+  /// @return bool Return true if the alternative L/R mechanism should be used, and is decided by the Owner
+  function shouldUseLockRelease(
+    uint64 remoteChainSelector
+  ) public view virtual returns (bool) {
+    return s_shouldUseLockRelease[remoteChainSelector];
+  }
+
+  /// @notice Updates designations for chains on whether to use primary or alt mechanism on CCIP messages
+  /// @param removes A list of chain selectors to disable Lock-Release, and enforce BM
+  /// @param adds A list of chain selectors to enable LR instead of BM. These chains must not have been migrated
+  /// to CCTP yet or the transaction will revert
+  function updateChainSelectorMechanisms(uint64[] calldata removes, uint64[] calldata adds) external onlyOwner {
+    for (uint256 i = 0; i < removes.length; ++i) {
+      delete s_shouldUseLockRelease[removes[i]];
+      emit LockReleaseDisabled(removes[i]);
+    }
+
+    for (uint256 i = 0; i < adds.length; ++i) {
+      // Prevent enabling lock release on chains which have already been migrated
+      if (s_migratedChains.contains(adds[i])) {
+        revert TokenLockingNotAllowedAfterMigration(adds[i]);
+      }
+      s_shouldUseLockRelease[adds[i]] = true;
+      emit LockReleaseEnabled(adds[i]);
+    }
+  }
+}