Transaction Hash:
Block:
10102013 at May-20-2020 09:32:40 AM +UTC
Transaction Fee:
0.00069934 ETH
$1.32
Gas Used:
34,967 Gas / 20 Gwei
Emitted Events:
| 86 |
AdminUpgradeabilityProxy.0xddf252ad1be2c89b69c2b068fc378daa952ba7f163c4a11628f55a4df523b3ef( 0xddf252ad1be2c89b69c2b068fc378daa952ba7f163c4a11628f55a4df523b3ef, 0x000000000000000000000000ff8e926d0d92b5da930f5534a79e5b821f719f8a, 0x000000000000000000000000ec00c9a9a5b2477f59676e3cddfdf6ceff8f018c, 00000000000000000000000000000000000000000000000133bd6d0306498000 )
|
| 87 |
billionMoney.withdrawMyGainEv( timeNow=1589967160, caller=[Sender] 0xec00c9a9a5b2477f59676e3cddfdf6ceff8f018c, totalAmount=22175000000000000000 )
|
Account State Difference:
| Address | Before | After | State Difference | ||
|---|---|---|---|---|---|
|
0x5A0b54D5...D3E029c4c
Miner
| (Spark Pool) | 7.450118661657498168 Eth | 7.450818001657498168 Eth | 0.00069934 | |
| 0x8E870D67...d388289E1 | |||||
| 0xEc00c9A9...eff8f018c |
0.019985437631060356 Eth
Nonce: 36
|
0.019286097631060356 Eth
Nonce: 37
| 0.00069934 | ||
| 0xFf8E926D...21f719F8A | (BillionMoney.live) |
Execution Trace
billionMoney.[billionMoney (ln:245)]
regUser[billionMoney (ln:246)]findFreeReferrer[billionMoney (ln:259)]transferFrom[billionMoney (ln:264)]userInfo[billionMoney (ln:275)]push[billionMoney (ln:287)]startNextMonth[billionMoney (ln:292)]payForLevel[billionMoney (ln:308)]payForUniLevel[billionMoney (ln:369)]paidForUniLevelEv[billionMoney (ln:456)]
paidForLevelEv[billionMoney (ln:403)]lostForLevelEv[billionMoney (ln:408)]payForLevel[billionMoney (ln:409)]
regLevelEv[billionMoney (ln:309)]levelBuyEv[billionMoney (ln:310)]updateNPayAutoPool[billionMoney (ln:311)]push[billionMoney (ln:571)]autoPoolPayEv[billionMoney (ln:581)]updateAutoPoolEv[billionMoney (ln:601)]
File 1 of 3: billionMoney
File 2 of 3: AdminUpgradeabilityProxy
File 3 of 3: PAXImplementationV2
pragma solidity 0.5.16; /*
___________________________________________________________________
_ _ ______
| | / / /
--|-/|-/-----__---/----__----__---_--_----__-------/-------__------
|/ |/ /___) / / ' / ) / / ) /___) / / )
__/__|____(___ _/___(___ _(___/_/_/__/_(___ _____/______(___/__o_o_
██████╗ ██╗██╗ ██╗ ██╗ ██████╗ ███╗ ██╗ ███╗ ███╗ ██████╗ ███╗ ██╗███████╗██╗ ██╗
██╔══██╗██║██║ ██║ ██║██╔═══██╗████╗ ██║ ████╗ ████║██╔═══██╗████╗ ██║██╔════╝╚██╗ ██╔╝
██████╔╝██║██║ ██║ ██║██║ ██║██╔██╗ ██║ ██╔████╔██║██║ ██║██╔██╗ ██║█████╗ ╚████╔╝
██╔══██╗██║██║ ██║ ██║██║ ██║██║╚██╗██║ ██║╚██╔╝██║██║ ██║██║╚██╗██║██╔══╝ ╚██╔╝
██████╔╝██║███████╗███████╗██║╚██████╔╝██║ ╚████║ ██║ ╚═╝ ██║╚██████╔╝██║ ╚████║███████╗ ██║
╚═════╝ ╚═╝╚══════╝╚══════╝╚═╝ ╚═════╝ ╚═╝ ╚═══╝ ╚═╝ ╚═╝ ╚═════╝ ╚═╝ ╚═══╝╚══════╝ ╚═╝
-------------------------------------------------------------------
Copyright (c) 2020 onwards Billion Money Inc. ( https://billionmoney.live )
-------------------------------------------------------------------
*/
//*******************************************************************//
//------------------ Contract to Manage Ownership -------------------//
//*******************************************************************//
contract owned {
address payable public owner;
address payable internal newOwner;
event OwnershipTransferred(address indexed _from, address indexed _to);
constructor() public {
}
modifier onlyOwner {
require(msg.sender == owner);
_;
}
function transferOwnership(address payable _newOwner) public onlyOwner {
newOwner = _newOwner;
}
//this flow is to prevent transferring ownership to wrong wallet by mistake
function acceptOwnership() public {
require(msg.sender == newOwner);
emit OwnershipTransferred(owner, newOwner);
owner = newOwner;
newOwner = address(0);
}
}
//*******************************************************************//
//------------------ PAX interface -------------------//
//*******************************************************************//
interface paxInterface
{
function transfer(address _to, uint256 _amount) external returns (bool);
function transferFrom(address _from, address _to, uint256 _amount) external returns (bool);
}
//*******************************************************************//
//------------------ MAIN contract -------------------//
//*******************************************************************//
contract billionMoney is owned {
// Replace below address with main PAX token
address public paxTokenAddress;
uint public maxDownLimit = 2;
uint public levelLifeTime = 15552000; // =180 days;
uint public lastIDCount = 0;
uint public defaultRefID = 1; //this ref ID will be used if user joins without any ref ID
address public specialAddress1;
address public specialAddress2;
struct userInfo {
bool joined;
uint id;
uint referrerID;
address[] referral;
mapping(uint => uint) levelExpired;
}
mapping(uint => uint) public priceOfLevel;
mapping(uint => uint) public distForLevel;
mapping(uint => uint) public autoPoolDist;
mapping(uint => uint) public uniLevelDistPart;
uint256 public totalDivCollection;
uint public globalDivDistPart = 0.6 ether;
uint public systemDistPart = 1 ether;
uint public oneMonthDuration = 2592000; // = 30 days
uint public thisMonthEnd;
struct divPoolRecord
{
uint totalDividendCollection;
uint totalEligibleCount;
}
divPoolRecord[] public divPoolRecords;
mapping ( address => uint) public eligibleUser; // if val > 0 then user is eligible from this divPoolRecords;
mapping(uint => mapping ( address => bool)) public dividendReceived; // dividend index => user => true/false
struct autoPool
{
uint userID;
uint autoPoolParent;
}
mapping(uint => autoPool[]) public autoPoolLevel; // users lavel records under auto pool scheme
mapping(address => mapping(uint => uint)) public autoPoolIndex; //to find index of user inside auto pool
uint[10] public nextMemberFillIndex; // which auto pool index is in top of queue to fill in
uint[10] public nextMemberFillBox; // 3 downline to each, so which downline need to fill in
uint[10][10] public autoPoolSubDist;
mapping (address => userInfo) public userInfos;
mapping (uint => address payable) public userAddressByID;
mapping(address => uint256) public totalGainInMainNetwork; //Main lavel income system income will go here with owner mapping
mapping(address => uint256) public totalGainInUniLevel;
mapping(address => uint256) public totalGainInAutoPool;
mapping(address => uint256) public netTotalUserWithdrawable; //Dividend is not included in it
event regLevelEv(address indexed _userWallet, uint indexed _userID, uint indexed _referrerID, uint _time, address _refererWallet, uint _originalReferrer);
event levelBuyEv(address indexed _user, uint _level, uint _amount, uint _time);
event paidForLevelEv(address indexed _user, address indexed _referral, uint _level, uint _amount, uint _time);
event lostForLevelEv(address indexed _user, address indexed _referral, uint _level, uint _amount, uint _time);
event payDividendEv(uint timeNow,uint payAmount,address paitTo);
event updateAutoPoolEv(uint timeNow,uint autoPoolLevelIndex,uint userIndexInAutoPool, address user);
event autoPoolPayEv(uint timeNow,address paidTo,uint paidForLevel, uint paidAmount, address paidAgainst);
event paidForUniLevelEv(uint timeNow,address PaitTo,uint Amount);
constructor(address payable ownerAddress, address payable ID1address, address _specialAddress1, address _specialAddress2) public {
owner = ownerAddress;
specialAddress1 = _specialAddress1;
specialAddress2 = _specialAddress2;
emit OwnershipTransferred(address(0), owner);
address payable ownerWallet = ID1address;
priceOfLevel[1] = 20 ether;
priceOfLevel[2] = 20 ether;
priceOfLevel[3] = 40 ether;
priceOfLevel[4] = 140 ether;
priceOfLevel[5] = 600 ether;
priceOfLevel[6] = 5000 ether;
priceOfLevel[7] = 5500 ether;
priceOfLevel[8] = 10000 ether;
priceOfLevel[9] = 20000 ether;
priceOfLevel[10] = 40000 ether;
distForLevel[1] = 10 ether;
distForLevel[2] = 15 ether;
distForLevel[3] = 30 ether;
distForLevel[4] = 120 ether;
distForLevel[5] = 500 ether;
distForLevel[6] = 4700 ether;
distForLevel[7] = 5000 ether;
distForLevel[8] = 9000 ether;
distForLevel[9] = 18000 ether;
distForLevel[10] = 35000 ether;
autoPoolDist[1] = 4 ether;
autoPoolDist[2] = 5 ether;
autoPoolDist[3] = 10 ether;
autoPoolDist[4] = 20 ether;
autoPoolDist[5] = 100 ether;
autoPoolDist[6] = 300 ether;
autoPoolDist[7] = 500 ether;
autoPoolDist[8] = 1000 ether;
autoPoolDist[9] = 2000 ether;
autoPoolDist[10] = 5000 ether;
uniLevelDistPart[1] = 1 ether;
uniLevelDistPart[2] = 0.6 ether;
uniLevelDistPart[3] = 0.4 ether;
for (uint i = 4 ; i < 11; i++)
{
uniLevelDistPart[i] = 0.2 ether;
}
userInfo memory UserInfo;
lastIDCount++;
UserInfo = userInfo({
joined: true,
id: lastIDCount,
referrerID: 0,
referral: new address[](0)
});
userInfos[ownerWallet] = UserInfo;
userAddressByID[lastIDCount] = ownerWallet;
for(uint i = 1; i <= 10; i++) {
userInfos[ownerWallet].levelExpired[i] = 99999999999;
emit paidForLevelEv(address(0), ownerWallet, i, distForLevel[i], now);
}
autoPool memory temp;
for (uint i = 11 ; i < 21; i++)
{
uniLevelDistPart[i] = 0.1 ether;
uint a = i-11;
temp.userID = lastIDCount;
autoPoolLevel[a].push(temp);
autoPoolIndex[ownerWallet][a] = 0;
uint distPart = autoPoolDist[a+1];
autoPoolSubDist[a][0] = distPart * 1250 / 10000;
autoPoolSubDist[a][1] = distPart * 1250 / 10000;
autoPoolSubDist[a][2] = distPart * 1000 / 10000;
autoPoolSubDist[a][3] = distPart * 750 / 10000;
autoPoolSubDist[a][4] = distPart * 750 / 10000;
autoPoolSubDist[a][5] = distPart * 750 / 10000;
autoPoolSubDist[a][6] = distPart * 750 / 10000;
autoPoolSubDist[a][7] = distPart * 1000 / 10000;
autoPoolSubDist[a][8] = distPart * 1250 / 10000;
autoPoolSubDist[a][9] = distPart * 1250 / 10000;
}
startNextMonth();
eligibleUser[ownerWallet] = 1;
emit regLevelEv(ownerWallet, 1, 0, now, address(this), 0);
}
function () payable external {
regUser(defaultRefID);
}
function regUser(uint _referrerID) public returns(bool)
{
//this saves gas while using this multiple times
address msgSender = msg.sender;
uint originalReferrer = _referrerID;
//checking all conditions
require(!userInfos[msgSender].joined, 'User exist');
if(!(_referrerID > 0 && _referrerID <= lastIDCount)) _referrerID = defaultRefID;
uint fct = 1;
if(userInfos[userAddressByID[_referrerID]].referral.length >= maxDownLimit) _referrerID = userInfos[findFreeReferrer(userAddressByID[_referrerID])].id;
//transferring PAX tokens from smart user to smart contract for level 1
if(!(msgSender==specialAddress1 || msgSender == specialAddress2)){
require( paxInterface(paxTokenAddress).transferFrom(msgSender, address(this), priceOfLevel[1]),"token transfer failed");
}
else
{
fct = 0;
}
//update variables
userInfo memory UserInfo;
lastIDCount++;
UserInfo = userInfo({
joined: true,
id: lastIDCount,
referrerID: _referrerID,
referral: new address[](0)
});
userInfos[msgSender] = UserInfo;
userAddressByID[lastIDCount] = msg.sender;
userInfos[msgSender].levelExpired[1] = now + levelLifeTime;
userInfos[userAddressByID[_referrerID]].referral.push(msgSender);
totalGainInMainNetwork[owner] += systemDistPart * fct;
netTotalUserWithdrawable[owner] += systemDistPart * fct;
if(thisMonthEnd < now) startNextMonth();
uint lastDivPoolIndex = divPoolRecords.length -1;
divPoolRecords[lastDivPoolIndex].totalDividendCollection += globalDivDistPart * fct;
totalDivCollection += globalDivDistPart * fct;
address usr = userAddressByID[_referrerID];
if(eligibleUser[usr] == 0)
{
if(userInfos[usr].referral.length > 9)
{
eligibleUser[usr] = lastDivPoolIndex;
divPoolRecords[lastDivPoolIndex + 1].totalEligibleCount++;
}
}
require(payForLevel(1, msgSender,fct),"pay for level fail");
emit regLevelEv(msgSender, lastIDCount, _referrerID, now,userAddressByID[_referrerID], originalReferrer );
emit levelBuyEv(msgSender, 1, priceOfLevel[1] * fct, now);
require(updateNPayAutoPool(1,msgSender,fct),"auto pool update fail");
return true;
}
function viewCurrentMonthDividend() public view returns(uint256 amount, uint256 indexCount)
{
uint256 length = divPoolRecords.length;
return (divPoolRecords[length-1].totalDividendCollection,length);
}
function buyLevel(uint _level) public returns(bool){
//this saves gas while using this multiple times
address msgSender = msg.sender;
//checking conditions
require(userInfos[msgSender].joined, 'User not exist');
uint fct=1;
require(_level >= 1 && _level <= 10, 'Incorrect level');
//transfer tokens
if(!(msgSender==specialAddress1 || msgSender == specialAddress2)){
require( paxInterface(paxTokenAddress).transferFrom(msgSender, address(this), priceOfLevel[_level]),"token transfer failed");
}
else
{
fct = 0;
}
//updating variables
if(_level == 1) {
userInfos[msgSender].levelExpired[1] += levelLifeTime;
}
else {
for(uint l =_level - 1; l > 0; l--) require(userInfos[msgSender].levelExpired[l] >= now, 'Buy the previous level');
if(userInfos[msgSender].levelExpired[_level] == 0) userInfos[msgSender].levelExpired[_level] = now + levelLifeTime;
else userInfos[msgSender].levelExpired[_level] += levelLifeTime;
}
require(payForLevel(_level, msgSender,fct),"pay for level fail");
emit levelBuyEv(msgSender, _level, priceOfLevel[_level] * fct, now);
require(updateNPayAutoPool(_level,msgSender,fct),"auto pool update fail");
return true;
}
function payForLevel(uint _level, address _user,uint fct) internal returns (bool){
address referer;
address referer1;
address referer2;
address referer3;
address referer4;
if(_level == 1 || _level == 6) {
referer = userAddressByID[userInfos[_user].referrerID];
payForUniLevel(userInfos[_user].referrerID,fct);
totalGainInMainNetwork[owner] += systemDistPart * fct;
netTotalUserWithdrawable[owner] += systemDistPart * fct;
}
else if(_level == 2 || _level == 7) {
referer1 = userAddressByID[userInfos[_user].referrerID];
referer = userAddressByID[userInfos[referer1].referrerID];
}
else if(_level == 3 || _level == 8) {
referer1 = userAddressByID[userInfos[_user].referrerID];
referer2 = userAddressByID[userInfos[referer1].referrerID];
referer = userAddressByID[userInfos[referer2].referrerID];
}
else if(_level == 4 || _level == 9) {
referer1 = userAddressByID[userInfos[_user].referrerID];
referer2 = userAddressByID[userInfos[referer1].referrerID];
referer3 = userAddressByID[userInfos[referer2].referrerID];
referer = userAddressByID[userInfos[referer3].referrerID];
}
else if(_level == 5 || _level == 10) {
referer1 = userAddressByID[userInfos[_user].referrerID];
referer2 = userAddressByID[userInfos[referer1].referrerID];
referer3 = userAddressByID[userInfos[referer2].referrerID];
referer4 = userAddressByID[userInfos[referer3].referrerID];
referer = userAddressByID[userInfos[referer4].referrerID];
}
if(!userInfos[referer].joined) referer = userAddressByID[defaultRefID];
if(userInfos[referer].levelExpired[_level] >= now) {
totalGainInMainNetwork[referer] += distForLevel[_level] * fct;
netTotalUserWithdrawable[referer] += distForLevel[_level] * fct;
emit paidForLevelEv(referer, msg.sender, _level, distForLevel[_level] * fct, now);
}
else{
emit lostForLevelEv(referer, msg.sender, _level, distForLevel[_level] * fct, now);
payForLevel(_level, referer,fct);
}
return true;
}
function findFreeReferrer(address _user) public view returns(address) {
if(userInfos[_user].referral.length < maxDownLimit) return _user;
address[] memory referrals = new address[](126);
referrals[0] = userInfos[_user].referral[0];
referrals[1] = userInfos[_user].referral[1];
address freeReferrer;
bool noFreeReferrer = true;
for(uint i = 0; i < 126; i++) {
if(userInfos[referrals[i]].referral.length == maxDownLimit) {
if(i < 62) {
referrals[(i+1)*2] = userInfos[referrals[i]].referral[0];
referrals[(i+1)*2+1] = userInfos[referrals[i]].referral[1];
}
}
else {
noFreeReferrer = false;
freeReferrer = referrals[i];
break;
}
}
require(!noFreeReferrer, 'No Free Referrer');
return freeReferrer;
}
function payForUniLevel(uint _referrerID, uint fct) internal returns(bool)
{
uint256 endID = 21;
for (uint i = 0 ; i < endID; i++)
{
address usr = userAddressByID[_referrerID];
_referrerID = userInfos[usr].referrerID;
if(usr == address(0)) usr = userAddressByID[defaultRefID];
uint Amount = uniLevelDistPart[i + 1 ] * fct;
totalGainInUniLevel[usr] += Amount;
netTotalUserWithdrawable[usr] += Amount;
emit paidForUniLevelEv(now,usr, Amount);
}
return true;
}
event withdrawMyGainEv(uint timeNow,address caller,uint totalAmount);
function withdrawMyDividendNAll() public returns(uint)
{
address payable caller = msg.sender;
require(userInfos[caller].joined, 'User not exist');
uint from = eligibleUser[caller];
uint totalAmount;
if(from > 0)
{
from --;
uint lastDivPoolIndex = divPoolRecords.length;
if( lastDivPoolIndex > 1 )
{
lastDivPoolIndex = lastDivPoolIndex -2;
for(uint i=0;i<150;i++)
{
if(lastDivPoolIndex < i) break;
uint curIndex = lastDivPoolIndex - i;
if( curIndex >= from && !dividendReceived[curIndex][caller] )
{
totalAmount += ( divPoolRecords[curIndex].totalDividendCollection * 10000000000 / divPoolRecords[curIndex].totalEligibleCount ) / 10000000000;
dividendReceived[curIndex][caller] = true;
}
}
}
}
if(totalAmount > 0)
{
totalDivCollection -= totalAmount;
emit payDividendEv(now, totalAmount, caller);
}
totalAmount = totalAmount + netTotalUserWithdrawable[caller];
netTotalUserWithdrawable[caller] = 0;
totalGainInAutoPool[caller] = 0;
totalGainInMainNetwork[caller] = 0;
totalGainInUniLevel[caller] = 0;
require(paxInterface(paxTokenAddress).transfer(msg.sender, totalAmount),"token transfer failed");
emit withdrawMyGainEv(now, caller, totalAmount);
}
function viewMyDividendPotential(address user) public view returns(uint256 totalDivPotential, uint256 lastUnPaidIndex)
{
if (eligibleUser[user] > 0 )
{
uint256 i;
uint256 lastIndex = divPoolRecords.length -1;
for(i=1;i<50;i++)
{
lastUnPaidIndex = lastIndex - i;
if(dividendReceived[lastUnPaidIndex][user] == true) break;
totalDivPotential = totalDivPotential + ( divPoolRecords[lastUnPaidIndex].totalDividendCollection * 10000000000 / divPoolRecords[lastUnPaidIndex].totalEligibleCount);
}
return (totalDivPotential, lastUnPaidIndex + 1);
}
return (0,0);
}
function viewTimestampSinceJoined(address usr) public view returns(uint256[10] memory timeSinceJoined )
{
if(userInfos[usr].joined)
{
for(uint256 i=0;i<10;i++)
{
uint256 t = userInfos[usr].levelExpired[i+1];
if(t>now)
{
timeSinceJoined[i] = (t-now);
}
}
}
return timeSinceJoined;
}
function divPoolAllLevel() public view returns (uint256[10] memory divPoolArray)
{
for(uint256 i=0;i<10;i++)
{
divPoolArray[i] = divPoolRecords[i].totalDividendCollection;
}
return divPoolArray;
}
function startNextMonth() public returns(bool)
{
require(thisMonthEnd < now,"month end not reached");
thisMonthEnd = now + oneMonthDuration;
divPoolRecord memory temp;
temp.totalEligibleCount = 1;
divPoolRecords.push(temp);
uint lastDivPoolIndex = divPoolRecords.length -1;
if (lastDivPoolIndex > 0)
{
divPoolRecords[lastDivPoolIndex].totalEligibleCount = divPoolRecords[lastDivPoolIndex -1].totalEligibleCount;
}
return (true);
}
function updateNPayAutoPool(uint _level,address _user, uint fct) internal returns (bool)
{
uint a = _level -1;
uint len = autoPoolLevel[a].length;
autoPool memory temp;
temp.userID = userInfos[_user].id;
temp.autoPoolParent = nextMemberFillIndex[a];
autoPoolLevel[a].push(temp);
uint idx = nextMemberFillIndex[a];
address payable usr = userAddressByID[autoPoolLevel[a][idx].userID];
if(usr == address(0)) usr = userAddressByID[defaultRefID];
for(uint i=0;i<10;i++)
{
uint amount = autoPoolSubDist[a][i] * fct;
totalGainInAutoPool[usr] += amount;
netTotalUserWithdrawable[usr] += amount;
emit autoPoolPayEv(now, usr,a+1, amount, _user);
idx = autoPoolLevel[a][idx].autoPoolParent;
usr = userAddressByID[autoPoolLevel[a][idx].userID];
if(usr == address(0)) usr = userAddressByID[defaultRefID];
}
if(nextMemberFillBox[a] == 0)
{
nextMemberFillBox[a] = 1;
}
else if (nextMemberFillBox[a] == 1)
{
nextMemberFillBox[a] = 2;
}
else
{
nextMemberFillIndex[a]++;
nextMemberFillBox[a] = 0;
}
autoPoolIndex[_user][_level - 1] = len;
emit updateAutoPoolEv(now, _level, len, _user);
return true;
}
function viewUserReferral(address _user) public view returns(address[] memory) {
return userInfos[_user].referral;
}
function viewUserLevelExpired(address _user, uint _level) public view returns(uint) {
return userInfos[_user].levelExpired[_level];
}
function bytesToAddress(bytes memory bys) private pure returns (address addr) {
assembly {
addr := mload(add(bys, 20))
}
}
/*======================================
= ADMIN FUNCTIONS =
======================================*/
function changePAXaddress(address newPAXaddress) onlyOwner public returns(string memory){
//if owner makes this 0x0 address, then it will halt all the operation of the contract. This also serves as security feature.
//so owner can halt it in any problematic situation. Owner can then input correct address to make it all come back to normal.
paxTokenAddress = newPAXaddress;
return("PAX address updated successfully");
}
function changeDefaultRefID(uint newDefaultRefID) onlyOwner public returns(string memory){
//this ref ID will be assigned to user who joins without any referral ID.
defaultRefID = newDefaultRefID;
return("Default Ref ID updated successfully");
}
}File 2 of 3: AdminUpgradeabilityProxy
pragma solidity ^0.4.24;
// File: contracts/zeppelin/Proxy.sol
/**
* @title Proxy
* @dev Implements delegation of calls to other contracts, with proper
* forwarding of return values and bubbling of failures.
* It defines a fallback function that delegates all calls to the address
* returned by the abstract _implementation() internal function.
*/
contract Proxy {
/**
* @dev Fallback function.
* Implemented entirely in `_fallback`.
*/
function () payable external {
_fallback();
}
/**
* @return The Address of the implementation.
*/
function _implementation() internal view returns (address);
/**
* @dev Delegates execution to an implementation contract.
* This is a low level function that doesn't return to its internal call site.
* It will return to the external caller whatever the implementation returns.
* @param implementation Address to delegate.
*/
function _delegate(address implementation) internal {
assembly {
// Copy msg.data. We take full control of memory in this inline assembly
// block because it will not return to Solidity code. We overwrite the
// Solidity scratch pad at memory position 0.
calldatacopy(0, 0, calldatasize)
// Call the implementation.
// out and outsize are 0 because we don't know the size yet.
let result := delegatecall(gas, implementation, 0, calldatasize, 0, 0)
// Copy the returned data.
returndatacopy(0, 0, returndatasize)
switch result
// delegatecall returns 0 on error.
case 0 { revert(0, returndatasize) }
default { return(0, returndatasize) }
}
}
/**
* @dev Function that is run as the first thing in the fallback function.
* Can be redefined in derived contracts to add functionality.
* Redefinitions must call super._willFallback().
*/
function _willFallback() internal {
}
/**
* @dev fallback implementation.
* Extracted to enable manual triggering.
*/
function _fallback() internal {
_willFallback();
_delegate(_implementation());
}
}
// File: contracts/zeppelin/AddressUtils.sol
/**
* Utility library of inline functions on addresses
*/
library AddressUtils {
/**
* Returns whether the target address is a contract
* @dev This function will return false if invoked during the constructor of a contract,
* as the code is not actually created until after the constructor finishes.
* @param addr address to check
* @return whether the target address is a contract
*/
function isContract(address addr) internal view returns (bool) {
uint256 size;
// XXX Currently there is no better way to check if there is a contract in an address
// than to check the size of the code at that address.
// See https://ethereum.stackexchange.com/a/14016/36603
// for more details about how this works.
// TODO Check this again before the Serenity release, because all addresses will be
// contracts then.
// solium-disable-next-line security/no-inline-assembly
assembly { size := extcodesize(addr) }
return size > 0;
}
}
// File: contracts/zeppelin/UpgradeabilityProxy.sol
/**
* @title UpgradeabilityProxy
* @dev This contract implements a proxy that allows to change the
* implementation address to which it will delegate.
* Such a change is called an implementation upgrade.
*/
contract UpgradeabilityProxy is Proxy {
/**
* @dev Emitted when the implementation is upgraded.
* @param implementation Address of the new implementation.
*/
event Upgraded(address implementation);
/**
* @dev Storage slot with the address of the current implementation.
* This is the keccak-256 hash of "org.zeppelinos.proxy.implementation", and is
* validated in the constructor.
*/
bytes32 private constant IMPLEMENTATION_SLOT = 0x7050c9e0f4ca769c69bd3a8ef740bc37934f8e2c036e5a723fd8ee048ed3f8c3;
/**
* @dev Contract constructor.
* @param _implementation Address of the initial implementation.
*/
constructor(address _implementation) public {
assert(IMPLEMENTATION_SLOT == keccak256("org.zeppelinos.proxy.implementation"));
_setImplementation(_implementation);
}
/**
* @dev Returns the current implementation.
* @return Address of the current implementation
*/
function _implementation() internal view returns (address impl) {
bytes32 slot = IMPLEMENTATION_SLOT;
assembly {
impl := sload(slot)
}
}
/**
* @dev Upgrades the proxy to a new implementation.
* @param newImplementation Address of the new implementation.
*/
function _upgradeTo(address newImplementation) internal {
_setImplementation(newImplementation);
emit Upgraded(newImplementation);
}
/**
* @dev Sets the implementation address of the proxy.
* @param newImplementation Address of the new implementation.
*/
function _setImplementation(address newImplementation) private {
require(AddressUtils.isContract(newImplementation), "Cannot set a proxy implementation to a non-contract address");
bytes32 slot = IMPLEMENTATION_SLOT;
assembly {
sstore(slot, newImplementation)
}
}
}
// File: contracts/zeppelin/AdminUpgradeabilityProxy.sol
/**
* @title AdminUpgradeabilityProxy
* @dev This contract combines an upgradeability proxy with an authorization
* mechanism for administrative tasks.
* All external functions in this contract must be guarded by the
* `ifAdmin` modifier. See ethereum/solidity#3864 for a Solidity
* feature proposal that would enable this to be done automatically.
*/
contract AdminUpgradeabilityProxy is UpgradeabilityProxy {
/**
* @dev Emitted when the administration has been transferred.
* @param previousAdmin Address of the previous admin.
* @param newAdmin Address of the new admin.
*/
event AdminChanged(address previousAdmin, address newAdmin);
/**
* @dev Storage slot with the admin of the contract.
* This is the keccak-256 hash of "org.zeppelinos.proxy.admin", and is
* validated in the constructor.
*/
bytes32 private constant ADMIN_SLOT = 0x10d6a54a4754c8869d6886b5f5d7fbfa5b4522237ea5c60d11bc4e7a1ff9390b;
/**
* @dev Modifier to check whether the `msg.sender` is the admin.
* If it is, it will run the function. Otherwise, it will delegate the call
* to the implementation.
*/
modifier ifAdmin() {
if (msg.sender == _admin()) {
_;
} else {
_fallback();
}
}
/**
* Contract constructor.
* It sets the `msg.sender` as the proxy administrator.
* @param _implementation address of the initial implementation.
*/
constructor(address _implementation) UpgradeabilityProxy(_implementation) public {
assert(ADMIN_SLOT == keccak256("org.zeppelinos.proxy.admin"));
_setAdmin(msg.sender);
}
/**
* @return The address of the proxy admin.
*/
function admin() external view ifAdmin returns (address) {
return _admin();
}
/**
* @return The address of the implementation.
*/
function implementation() external view ifAdmin returns (address) {
return _implementation();
}
/**
* @dev Changes the admin of the proxy.
* Only the current admin can call this function.
* @param newAdmin Address to transfer proxy administration to.
*/
function changeAdmin(address newAdmin) external ifAdmin {
require(newAdmin != address(0), "Cannot change the admin of a proxy to the zero address");
emit AdminChanged(_admin(), newAdmin);
_setAdmin(newAdmin);
}
/**
* @dev Upgrade the backing implementation of the proxy.
* Only the admin can call this function.
* @param newImplementation Address of the new implementation.
*/
function upgradeTo(address newImplementation) external ifAdmin {
_upgradeTo(newImplementation);
}
/**
* @dev Upgrade the backing implementation of the proxy and call a function
* on the new implementation.
* This is useful to initialize the proxied contract.
* @param newImplementation Address of the new implementation.
* @param data Data to send as msg.data in the low level call.
* It should include the signature and the parameters of the function to be
* called, as described in
* https://solidity.readthedocs.io/en/develop/abi-spec.html#function-selector-and-argument-encoding.
*/
function upgradeToAndCall(address newImplementation, bytes data) payable external ifAdmin {
_upgradeTo(newImplementation);
require(address(this).call.value(msg.value)(data));
}
/**
* @return The admin slot.
*/
function _admin() internal view returns (address adm) {
bytes32 slot = ADMIN_SLOT;
assembly {
adm := sload(slot)
}
}
/**
* @dev Sets the address of the proxy admin.
* @param newAdmin Address of the new proxy admin.
*/
function _setAdmin(address newAdmin) internal {
bytes32 slot = ADMIN_SLOT;
assembly {
sstore(slot, newAdmin)
}
}
/**
* @dev Only fall back when the sender is not the admin.
*/
function _willFallback() internal {
require(msg.sender != _admin(), "Cannot call fallback function from the proxy admin");
super._willFallback();
}
}File 3 of 3: PAXImplementationV2
/**
*Submitted for verification at Etherscan.io on 2020-02-03
*/
// File: contracts/zeppelin/SafeMath.sol
pragma solidity ^0.4.24;
/**
* @title SafeMath
* @dev Math operations with safety checks that throw on error
*/
library SafeMath {
/**
* @dev Subtracts two numbers, reverts on overflow (i.e. if subtrahend is greater than minuend).
*/
function sub(uint256 a, uint256 b) internal pure returns (uint256) {
require(b <= a);
uint256 c = a - b;
return c;
}
/**
* @dev Adds two numbers, reverts on overflow.
*/
function add(uint256 a, uint256 b) internal pure returns (uint256) {
uint256 c = a + b;
require(c >= a);
return c;
}
}
// File: contracts/PAXImplementationV2.sol
pragma solidity ^0.4.24;
pragma experimental "v0.5.0";
/**
* @title PAXImplementationV2
* @dev this contract is a Pausable ERC20 token with Burn and Mint
* controlled by a central SupplyController. By implementing PaxosImplementation
* this contract also includes external methods for setting
* a new implementation contract for the Proxy.
* NOTE: The storage defined here will actually be held in the Proxy
* contract and all calls to this contract should be made through
* the proxy, including admin actions done as owner or supplyController.
* Any call to transfer against this contract should fail
* with insufficient funds since no tokens will be issued there.
*/
contract PAXImplementationV2 {
/**
* MATH
*/
using SafeMath for uint256;
/**
* DATA
*/
// INITIALIZATION DATA
bool private initialized = false;
// ERC20 BASIC DATA
mapping(address => uint256) internal balances;
uint256 internal totalSupply_;
string public constant name = "Paxos Standard"; // solium-disable-line
string public constant symbol = "PAX"; // solium-disable-line uppercase
uint8 public constant decimals = 18; // solium-disable-line uppercase
// ERC20 DATA
mapping(address => mapping(address => uint256)) internal allowed;
// OWNER DATA PART 1
address public owner;
// PAUSABILITY DATA
bool public paused = false;
// ASSET PROTECTION DATA
address public assetProtectionRole;
mapping(address => bool) internal frozen;
// SUPPLY CONTROL DATA
address public supplyController;
// OWNER DATA PART 2
address public proposedOwner;
// DELEGATED TRANSFER DATA
address public betaDelegateWhitelister;
mapping(address => bool) internal betaDelegateWhitelist;
mapping(address => uint256) internal nextSeqs;
// EIP191 header for EIP712 prefix
string constant internal EIP191_HEADER = "\x19\x01";
// Hash of the EIP712 Domain Separator Schema
bytes32 constant internal EIP712_DOMAIN_SEPARATOR_SCHEMA_HASH = keccak256(
"EIP712Domain(string name,address verifyingContract)"
);
bytes32 constant internal EIP712_DELEGATED_TRANSFER_SCHEMA_HASH = keccak256(
"BetaDelegatedTransfer(address to,uint256 value,uint256 fee,uint256 seq,uint256 deadline)"
);
// Hash of the EIP712 Domain Separator data
// solhint-disable-next-line var-name-mixedcase
bytes32 public EIP712_DOMAIN_HASH;
/**
* EVENTS
*/
// ERC20 BASIC EVENTS
event Transfer(address indexed from, address indexed to, uint256 value);
// ERC20 EVENTS
event Approval(
address indexed owner,
address indexed spender,
uint256 value
);
// OWNABLE EVENTS
event OwnershipTransferProposed(
address indexed currentOwner,
address indexed proposedOwner
);
event OwnershipTransferDisregarded(
address indexed oldProposedOwner
);
event OwnershipTransferred(
address indexed oldOwner,
address indexed newOwner
);
// PAUSABLE EVENTS
event Pause();
event Unpause();
// ASSET PROTECTION EVENTS
event AddressFrozen(address indexed addr);
event AddressUnfrozen(address indexed addr);
event FrozenAddressWiped(address indexed addr);
event AssetProtectionRoleSet (
address indexed oldAssetProtectionRole,
address indexed newAssetProtectionRole
);
// SUPPLY CONTROL EVENTS
event SupplyIncreased(address indexed to, uint256 value);
event SupplyDecreased(address indexed from, uint256 value);
event SupplyControllerSet(
address indexed oldSupplyController,
address indexed newSupplyController
);
// DELEGATED TRANSFER EVENTS
event BetaDelegatedTransfer(
address indexed from, address indexed to, uint256 value, uint256 seq, uint256 fee
);
event BetaDelegateWhitelisterSet(
address indexed oldWhitelister,
address indexed newWhitelister
);
event BetaDelegateWhitelisted(address indexed newDelegate);
event BetaDelegateUnwhitelisted(address indexed oldDelegate);
/**
* FUNCTIONALITY
*/
// INITIALIZATION FUNCTIONALITY
/**
* @dev sets 0 initials tokens, the owner, and the supplyController.
* this serves as the constructor for the proxy but compiles to the
* memory model of the Implementation contract.
*/
function initialize() public {
require(!initialized, "already initialized");
owner = msg.sender;
assetProtectionRole = address(0);
totalSupply_ = 0;
supplyController = msg.sender;
initialized = true;
}
/**
* The constructor is used here to ensure that the implementation
* contract is initialized. An uncontrolled implementation
* contract might lead to misleading state
* for users who accidentally interact with it.
*/
constructor() public {
initialize();
pause();
// Added in V2
initializeDomainSeparator();
}
/**
* @dev To be called when upgrading the contract using upgradeAndCall to add delegated transfers
*/
function initializeDomainSeparator() public {
// hash the name context with the contract address
EIP712_DOMAIN_HASH = keccak256(abi.encodePacked(// solium-disable-line
EIP712_DOMAIN_SEPARATOR_SCHEMA_HASH,
keccak256(bytes(name)),
bytes32(address(this))
));
proposedOwner = address(0);
}
// ERC20 BASIC FUNCTIONALITY
/**
* @dev Total number of tokens in existence
*/
function totalSupply() public view returns (uint256) {
return totalSupply_;
}
/**
* @dev Transfer token to a specified address from msg.sender
* Note: the use of Safemath ensures that _value is nonnegative.
* @param _to The address to transfer to.
* @param _value The amount to be transferred.
*/
function transfer(address _to, uint256 _value) public whenNotPaused returns (bool) {
require(_to != address(0), "cannot transfer to address zero");
require(!frozen[_to] && !frozen[msg.sender], "address frozen");
require(_value <= balances[msg.sender], "insufficient funds");
balances[msg.sender] = balances[msg.sender].sub(_value);
balances[_to] = balances[_to].add(_value);
emit Transfer(msg.sender, _to, _value);
return true;
}
/**
* @dev Gets the balance of the specified address.
* @param _addr The address to query the the balance of.
* @return An uint256 representing the amount owned by the passed address.
*/
function balanceOf(address _addr) public view returns (uint256) {
return balances[_addr];
}
// ERC20 FUNCTIONALITY
/**
* @dev Transfer tokens from one address to another
* @param _from address The address which you want to send tokens from
* @param _to address The address which you want to transfer to
* @param _value uint256 the amount of tokens to be transferred
*/
function transferFrom(
address _from,
address _to,
uint256 _value
)
public
whenNotPaused
returns (bool)
{
require(_to != address(0), "cannot transfer to address zero");
require(!frozen[_to] && !frozen[_from] && !frozen[msg.sender], "address frozen");
require(_value <= balances[_from], "insufficient funds");
require(_value <= allowed[_from][msg.sender], "insufficient allowance");
balances[_from] = balances[_from].sub(_value);
balances[_to] = balances[_to].add(_value);
allowed[_from][msg.sender] = allowed[_from][msg.sender].sub(_value);
emit Transfer(_from, _to, _value);
return true;
}
/**
* @dev Approve the passed address to spend the specified amount of tokens on behalf of msg.sender.
* Beware that changing an allowance with this method brings the risk that someone may use both the old
* and the new allowance by unfortunate transaction ordering. One possible solution to mitigate this
* race condition is to first reduce the spender's allowance to 0 and set the desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
* @param _spender The address which will spend the funds.
* @param _value The amount of tokens to be spent.
*/
function approve(address _spender, uint256 _value) public whenNotPaused returns (bool) {
require(!frozen[_spender] && !frozen[msg.sender], "address frozen");
allowed[msg.sender][_spender] = _value;
emit Approval(msg.sender, _spender, _value);
return true;
}
/**
* @dev Function to check the amount of tokens that an owner allowed to a spender.
* @param _owner address The address which owns the funds.
* @param _spender address The address which will spend the funds.
* @return A uint256 specifying the amount of tokens still available for the spender.
*/
function allowance(
address _owner,
address _spender
)
public
view
returns (uint256)
{
return allowed[_owner][_spender];
}
// OWNER FUNCTIONALITY
/**
* @dev Throws if called by any account other than the owner.
*/
modifier onlyOwner() {
require(msg.sender == owner, "onlyOwner");
_;
}
/**
* @dev Allows the current owner to begin transferring control of the contract to a proposedOwner
* @param _proposedOwner The address to transfer ownership to.
*/
function proposeOwner(address _proposedOwner) public onlyOwner {
require(_proposedOwner != address(0), "cannot transfer ownership to address zero");
require(msg.sender != _proposedOwner, "caller already is owner");
proposedOwner = _proposedOwner;
emit OwnershipTransferProposed(owner, proposedOwner);
}
/**
* @dev Allows the current owner or proposed owner to cancel transferring control of the contract to a proposedOwner
*/
function disregardProposeOwner() public {
require(msg.sender == proposedOwner || msg.sender == owner, "only proposedOwner or owner");
require(proposedOwner != address(0), "can only disregard a proposed owner that was previously set");
address _oldProposedOwner = proposedOwner;
proposedOwner = address(0);
emit OwnershipTransferDisregarded(_oldProposedOwner);
}
/**
* @dev Allows the proposed owner to complete transferring control of the contract to the proposedOwner.
*/
function claimOwnership() public {
require(msg.sender == proposedOwner, "onlyProposedOwner");
address _oldOwner = owner;
owner = proposedOwner;
proposedOwner = address(0);
emit OwnershipTransferred(_oldOwner, owner);
}
/**
* @dev Reclaim all PAX at the contract address.
* This sends the PAX tokens that this contract add holding to the owner.
* Note: this is not affected by freeze constraints.
*/
function reclaimPAX() external onlyOwner {
uint256 _balance = balances[this];
balances[this] = 0;
balances[owner] = balances[owner].add(_balance);
emit Transfer(this, owner, _balance);
}
// PAUSABILITY FUNCTIONALITY
/**
* @dev Modifier to make a function callable only when the contract is not paused.
*/
modifier whenNotPaused() {
require(!paused, "whenNotPaused");
_;
}
/**
* @dev called by the owner to pause, triggers stopped state
*/
function pause() public onlyOwner {
require(!paused, "already paused");
paused = true;
emit Pause();
}
/**
* @dev called by the owner to unpause, returns to normal state
*/
function unpause() public onlyOwner {
require(paused, "already unpaused");
paused = false;
emit Unpause();
}
// ASSET PROTECTION FUNCTIONALITY
/**
* @dev Sets a new asset protection role address.
* @param _newAssetProtectionRole The new address allowed to freeze/unfreeze addresses and seize their tokens.
*/
function setAssetProtectionRole(address _newAssetProtectionRole) public {
require(msg.sender == assetProtectionRole || msg.sender == owner, "only assetProtectionRole or Owner");
emit AssetProtectionRoleSet(assetProtectionRole, _newAssetProtectionRole);
assetProtectionRole = _newAssetProtectionRole;
}
modifier onlyAssetProtectionRole() {
require(msg.sender == assetProtectionRole, "onlyAssetProtectionRole");
_;
}
/**
* @dev Freezes an address balance from being transferred.
* @param _addr The new address to freeze.
*/
function freeze(address _addr) public onlyAssetProtectionRole {
require(!frozen[_addr], "address already frozen");
frozen[_addr] = true;
emit AddressFrozen(_addr);
}
/**
* @dev Unfreezes an address balance allowing transfer.
* @param _addr The new address to unfreeze.
*/
function unfreeze(address _addr) public onlyAssetProtectionRole {
require(frozen[_addr], "address already unfrozen");
frozen[_addr] = false;
emit AddressUnfrozen(_addr);
}
/**
* @dev Wipes the balance of a frozen address, burning the tokens
* and setting the approval to zero.
* @param _addr The new frozen address to wipe.
*/
function wipeFrozenAddress(address _addr) public onlyAssetProtectionRole {
require(frozen[_addr], "address is not frozen");
uint256 _balance = balances[_addr];
balances[_addr] = 0;
totalSupply_ = totalSupply_.sub(_balance);
emit FrozenAddressWiped(_addr);
emit SupplyDecreased(_addr, _balance);
emit Transfer(_addr, address(0), _balance);
}
/**
* @dev Gets whether the address is currently frozen.
* @param _addr The address to check if frozen.
* @return A bool representing whether the given address is frozen.
*/
function isFrozen(address _addr) public view returns (bool) {
return frozen[_addr];
}
// SUPPLY CONTROL FUNCTIONALITY
/**
* @dev Sets a new supply controller address.
* @param _newSupplyController The address allowed to burn/mint tokens to control supply.
*/
function setSupplyController(address _newSupplyController) public {
require(msg.sender == supplyController || msg.sender == owner, "only SupplyController or Owner");
require(_newSupplyController != address(0), "cannot set supply controller to address zero");
emit SupplyControllerSet(supplyController, _newSupplyController);
supplyController = _newSupplyController;
}
modifier onlySupplyController() {
require(msg.sender == supplyController, "onlySupplyController");
_;
}
/**
* @dev Increases the total supply by minting the specified number of tokens to the supply controller account.
* @param _value The number of tokens to add.
* @return A boolean that indicates if the operation was successful.
*/
function increaseSupply(uint256 _value) public onlySupplyController returns (bool success) {
totalSupply_ = totalSupply_.add(_value);
balances[supplyController] = balances[supplyController].add(_value);
emit SupplyIncreased(supplyController, _value);
emit Transfer(address(0), supplyController, _value);
return true;
}
/**
* @dev Decreases the total supply by burning the specified number of tokens from the supply controller account.
* @param _value The number of tokens to remove.
* @return A boolean that indicates if the operation was successful.
*/
function decreaseSupply(uint256 _value) public onlySupplyController returns (bool success) {
require(_value <= balances[supplyController], "not enough supply");
balances[supplyController] = balances[supplyController].sub(_value);
totalSupply_ = totalSupply_.sub(_value);
emit SupplyDecreased(supplyController, _value);
emit Transfer(supplyController, address(0), _value);
return true;
}
// DELEGATED TRANSFER FUNCTIONALITY
/**
* @dev returns the next seq for a target address.
* The transactor must submit nextSeqOf(transactor) in the next transaction for it to be valid.
* Note: that the seq context is specific to this smart contract.
* @param target The target address.
* @return the seq.
*/
//
function nextSeqOf(address target) public view returns (uint256) {
return nextSeqs[target];
}
/**
* @dev Performs a transfer on behalf of the from address, identified by its signature on the delegatedTransfer msg.
* Splits a signature byte array into r,s,v for convenience.
* @param sig the signature of the delgatedTransfer msg.
* @param to The address to transfer to.
* @param value The amount to be transferred.
* @param fee an optional ERC20 fee paid to the executor of betaDelegatedTransfer by the from address.
* @param seq a sequencing number included by the from address specific to this contract to protect from replays.
* @param deadline a block number after which the pre-signed transaction has expired.
* @return A boolean that indicates if the operation was successful.
*/
function betaDelegatedTransfer(
bytes sig, address to, uint256 value, uint256 fee, uint256 seq, uint256 deadline
) public returns (bool) {
require(sig.length == 65, "signature should have length 65");
bytes32 r;
bytes32 s;
uint8 v;
assembly {
r := mload(add(sig, 32))
s := mload(add(sig, 64))
v := byte(0, mload(add(sig, 96)))
}
require(_betaDelegatedTransfer(r, s, v, to, value, fee, seq, deadline), "failed transfer");
return true;
}
/**
* @dev Performs a transfer on behalf of the from address, identified by its signature on the betaDelegatedTransfer msg.
* Note: both the delegate and transactor sign in the fees. The transactor, however,
* has no control over the gas price, and therefore no control over the transaction time.
* Beta prefix chosen to avoid a name clash with an emerging standard in ERC865 or elsewhere.
* Internal to the contract - see betaDelegatedTransfer and betaDelegatedTransferBatch.
* @param r the r signature of the delgatedTransfer msg.
* @param s the s signature of the delgatedTransfer msg.
* @param v the v signature of the delgatedTransfer msg.
* @param to The address to transfer to.
* @param value The amount to be transferred.
* @param fee an optional ERC20 fee paid to the delegate of betaDelegatedTransfer by the from address.
* @param seq a sequencing number included by the from address specific to this contract to protect from replays.
* @param deadline a block number after which the pre-signed transaction has expired.
* @return A boolean that indicates if the operation was successful.
*/
function _betaDelegatedTransfer(
bytes32 r, bytes32 s, uint8 v, address to, uint256 value, uint256 fee, uint256 seq, uint256 deadline
) internal whenNotPaused returns (bool) {
require(betaDelegateWhitelist[msg.sender], "Beta feature only accepts whitelisted delegates");
require(value > 0 || fee > 0, "cannot transfer zero tokens with zero fee");
require(block.number <= deadline, "transaction expired");
// prevent sig malleability from ecrecover()
require(uint256(s) <= 0x7FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF5D576E7357A4501DDFE92F46681B20A0, "signature incorrect");
require(v == 27 || v == 28, "signature incorrect");
// EIP712 scheme: https://github.com/ethereum/EIPs/blob/master/EIPS/eip-712.md
bytes32 delegatedTransferHash = keccak256(abi.encodePacked(// solium-disable-line
EIP712_DELEGATED_TRANSFER_SCHEMA_HASH, bytes32(to), value, fee, seq, deadline
));
bytes32 hash = keccak256(abi.encodePacked(EIP191_HEADER, EIP712_DOMAIN_HASH, delegatedTransferHash));
address _from = ecrecover(hash, v, r, s);
require(_from != address(0), "error determining from address from signature");
require(to != address(0), "canno use address zero");
require(!frozen[to] && !frozen[_from] && !frozen[msg.sender], "address frozen");
require(value.add(fee) <= balances[_from], "insufficient fund");
require(nextSeqs[_from] == seq, "incorrect seq");
nextSeqs[_from] = nextSeqs[_from].add(1);
balances[_from] = balances[_from].sub(value.add(fee));
if (fee != 0) {
balances[msg.sender] = balances[msg.sender].add(fee);
emit Transfer(_from, msg.sender, fee);
}
balances[to] = balances[to].add(value);
emit Transfer(_from, to, value);
emit BetaDelegatedTransfer(_from, to, value, seq, fee);
return true;
}
/**
* @dev Performs an atomic batch of transfers on behalf of the from addresses, identified by their signatures.
* Lack of nested array support in arguments requires all arguments to be passed as equal size arrays where
* delegated transfer number i is the combination of all arguments at index i
* @param r the r signatures of the delgatedTransfer msg.
* @param s the s signatures of the delgatedTransfer msg.
* @param v the v signatures of the delgatedTransfer msg.
* @param to The addresses to transfer to.
* @param value The amounts to be transferred.
* @param fee optional ERC20 fees paid to the delegate of betaDelegatedTransfer by the from address.
* @param seq sequencing numbers included by the from address specific to this contract to protect from replays.
* @param deadline block numbers after which the pre-signed transactions have expired.
* @return A boolean that indicates if the operation was successful.
*/
function betaDelegatedTransferBatch(
bytes32[] r, bytes32[] s, uint8[] v, address[] to, uint256[] value, uint256[] fee, uint256[] seq, uint256[] deadline
) public returns (bool) {
require(r.length == s.length && r.length == v.length && r.length == to.length && r.length == value.length, "length mismatch");
require(r.length == fee.length && r.length == seq.length && r.length == deadline.length, "length mismatch");
for (uint i = 0; i < r.length; i++) {
require(
_betaDelegatedTransfer(r[i], s[i], v[i], to[i], value[i], fee[i], seq[i], deadline[i]),
"failed transfer"
);
}
return true;
}
/**
* @dev Gets whether the address is currently whitelisted for betaDelegateTransfer.
* @param _addr The address to check if whitelisted.
* @return A bool representing whether the given address is whitelisted.
*/
function isWhitelistedBetaDelegate(address _addr) public view returns (bool) {
return betaDelegateWhitelist[_addr];
}
/**
* @dev Sets a new betaDelegate whitelister.
* @param _newWhitelister The address allowed to whitelist betaDelegates.
*/
function setBetaDelegateWhitelister(address _newWhitelister) public {
require(msg.sender == betaDelegateWhitelister || msg.sender == owner, "only Whitelister or Owner");
betaDelegateWhitelister = _newWhitelister;
emit BetaDelegateWhitelisterSet(betaDelegateWhitelister, _newWhitelister);
}
modifier onlyBetaDelegateWhitelister() {
require(msg.sender == betaDelegateWhitelister, "onlyBetaDelegateWhitelister");
_;
}
/**
* @dev Whitelists an address to allow calling BetaDelegatedTransfer.
* @param _addr The new address to whitelist.
*/
function whitelistBetaDelegate(address _addr) public onlyBetaDelegateWhitelister {
require(!betaDelegateWhitelist[_addr], "delegate already whitelisted");
betaDelegateWhitelist[_addr] = true;
emit BetaDelegateWhitelisted(_addr);
}
/**
* @dev Unwhitelists an address to disallow calling BetaDelegatedTransfer.
* @param _addr The new address to whitelist.
*/
function unwhitelistBetaDelegate(address _addr) public onlyBetaDelegateWhitelister {
require(betaDelegateWhitelist[_addr], "delegate not whitelisted");
betaDelegateWhitelist[_addr] = false;
emit BetaDelegateUnwhitelisted(_addr);
}
}