SAFESWAP ONLINE – STAKING SMART CONTRACT AUDIT

A high-end qualified AI-backed based Smart Contract Auditing Service that uses advanced technology the measures thousands of smart contract functions and at the same time monitor the latest exploits reducing risk as much as possible.

safeswap.online Factory contract Token contract
Verified by Jaimy de Vries
BSC Smart Contract Audit Report
MD5:59fe53bd5254798c82bbc535dc9cc815
Runtime:2.4s

Scored higher than 100% of similar code

amongst 50k smart contracts audited by Anchain.AI .

Score
100
Threat Level
Low
Number of lines
1270

Overview

Code Class EVM Coverage
ERC20Token 58.8%
Context 0%
Ownable 0%
SafeBEP20 62.5%
SafeMath 50.0%
SwapBoxFactory 0.6%
SwapBoxInitializable 1.0%

0 Vulnerabilities Found

High RiskMedium RiskLow Risk

Recommendations

No information is available in this section


Vulnerability Checklist

ERC20Token
  • Integer Underflow
  • Integer Overflow
  • Parity Multisig Bug
Context
  • Integer Underflow
  • Integer Overflow
  • Parity Multisig Bug
  • Callstack Depth Attack
  • Transaction-Ordering Dependency
  • Timestamp Dependency
  • Re-Entrancy
Ownable
  • Integer Underflow
  • Integer Overflow
  • Parity Multisig Bug
  • Callstack Depth Attack
  • Transaction-Ordering Dependency
  • Timestamp Dependency
  • Re-Entrancy
SafeBEP20
  • Integer Underflow
  • Integer Overflow
  • Parity Multisig Bug
  • Callstack Depth Attack
  • Transaction-Ordering Dependency
  • Timestamp Dependency
  • Re-Entrancy
SafeMath
  • Integer Underflow
  • Integer Overflow
  • Parity Multisig Bug
  • Callstack Depth Attack
  • Transaction-Ordering Dependency
  • Timestamp Dependency
  • Re-Entrancy
SwapBoxFactory
  • Integer Underflow
  • Integer Overflow
  • Parity Multisig Bug
  • Callstack Depth Attack
  • Transaction-Ordering Dependency
  • Timestamp Dependency
  • Re-Entrancy
SwapBoxInitializable
  • Integer Underflow
  • Integer Overflow
  • Parity Multisig Bug
  • Callstack Depth Attack
  • Transaction-Ordering Dependency
  • Timestamp Dependency
  • Re-Entrancy

Contract Analysis

  • Verified contract source
  • Source does not contain a proxy contract
  • Source does not contain a pausable contract
  • Ownership renounced or source does not contain an owner contract
  • No prior similar token contracts
    There are highly similar contracts that were deployed prior to this one. Cloned contracts may indicate a low quality token (e.g., pump & dump) unless there exists an offering other than the token itself.

Holder Analysis

  • Creator wallet contains less than 5% of token supply (0.51%)

Liquidity Analysis

  • Adequate liquidity present (42.52 BNB)
  • A large portion of the LP is inside a staking pool (Click here for info)
  •  At least 95% of liquidity locked/burned (< 0.01%)
    Not enough liquidity is locked/burned which could allow for significant amounts to be removed. 
  • Creator wallet contains less than 5% of liquidity (14.75%)
    The creator wallet contains a substantial amount of liquidity which could allow for significant amounts to be removed (rug pull).

Disclaimer

Note: the BSCN Token Snif Report is based on the Token Sniffer Tests which are an experimental new feature and may not be 100% accurate or detect all possible vulnerabilities. The results are not to be interpreted as advice and should be considered in the context of the project as a whole along with external information. Always do your own research and consult multiple sources of information. Under no circumstances will BSCN be responsible for any misinformation that is stated in the Token Snif Extract Report.

/**
*Submitted for verification at BscScan.com on 2021-08-01
*/

pragma solidity >=0.6.2 <0.8.0;

/**
* @dev Collection of functions related to the address type
*/
library Address {
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* – an externally-owned account
* – a contract in construction
* – an address where a contract will be created
* – an address where a contract lived, but was destroyed
* ====
*/
function isContract(address account) internal view returns (bool) {
// This method relies on extcodesize, which returns 0 for contracts in
// construction, since the code is only stored at the end of the
// constructor execution.

uint256 size;
// solhint-disable-next-line no-inline-assembly
assembly { size := extcodesize(account) }
return size > 0;
}

/**
* @dev Replacement for Solidity’s `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* eips.ethereum.org/EIPS/eip-1884%5BEIP1884%5D increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* diligence.consensys.net/posts/2019/09/stop-using-soliditys-transfer-now/%5BLearn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* solidity.readthedocs.io/en/v0.5.11/security-considerations.html#use-the-checks-effects-interactions-pattern%5Bchecks-effects-interactions pattern].
*/
function sendValue(address payable recipient, uint256 amount) internal {
require(address(this).balance >= amount, “Address: insufficient balance”);

// solhint-disable-next-line avoid-low-level-calls, avoid-call-value
(bool success, ) = recipient.call{ value: amount }(“”);
require(success, “Address: unable to send value, recipient may have reverted”);
}

/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain`call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions%5B`abi.decode`].
*
* Requirements:
*
* – `target` must be a contract.
* – calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data) internal returns (bytes memory) {
return functionCall(target, data, “Address: low-level call failed”);
}

/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCall(address target, bytes memory data, string memory errorMessage) internal returns (bytes memory) {
return functionCallWithValue(target, data, 0, errorMessage);
}

/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* – the calling contract must have an ETH balance of at least `value`.
* – the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/
function functionCallWithValue(address target, bytes memory data, uint256 value) internal returns (bytes memory) {
return functionCallWithValue(target, data, value, “Address: low-level call with value failed”);
}

/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/
function functionCallWithValue(address target, bytes memory data, uint256 value, string memory errorMessage) internal returns (bytes memory) {
require(address(this).balance >= value, “Address: insufficient balance for call”);
require(isContract(target), “Address: call to non-contract”);

// solhint-disable-next-line avoid-low-level-calls
(bool success, bytes memory returndata) = target.call{ value: value }(data);
return _verifyCallResult(success, returndata, errorMessage);
}

/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data) internal view returns (bytes memory) {
return functionStaticCall(target, data, “Address: low-level static call failed”);
}

/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/
function functionStaticCall(address target, bytes memory data, string memory errorMessage) internal view returns (bytes memory) {
require(isContract(target), “Address: static call to non-contract”);

// solhint-disable-next-line avoid-low-level-calls
(bool success, bytes memory returndata) = target.staticcall(data);
return _verifyCallResult(success, returndata, errorMessage);
}

/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(address target, bytes memory data) internal returns (bytes memory) {
return functionDelegateCall(target, data, “Address: low-level delegate call failed”);
}

/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/
function functionDelegateCall(address target, bytes memory data, string memory errorMessage) internal returns (bytes memory) {
require(isContract(target), “Address: delegate call to non-contract”);

// solhint-disable-next-line avoid-low-level-calls
(bool success, bytes memory returndata) = target.delegatecall(data);
return _verifyCallResult(success, returndata, errorMessage);
}

function _verifyCallResult(bool success, bytes memory returndata, string memory errorMessage) private pure returns(bytes memory) {
if (success) {
return returndata;
} else {
// Look for revert reason and bubble it up if present
if (returndata.length > 0) {
// The easiest way to bubble the revert reason is using memory via assembly

// solhint-disable-next-line no-inline-assembly
assembly {
let returndata_size := mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}
}

// File: contracts/libs/IBEP20.sol

pragma solidity >=0.4.0;

interface IBEP20 {
/**
* @dev Returns the amount of tokens in existence.
*/
function totalSupply() external view returns (uint256);

/**
* @dev Returns the token decimals.
*/
function decimals() external view returns (uint8);

/**
* @dev Returns the token symbol.
*/
function symbol() external view returns (string memory);

/**
* @dev Returns the token name.
*/
function name() external view returns (string memory);

/**
* @dev Returns the bep token owner.
*/
function getOwner() external view returns (address);

/**
* @dev Returns the amount of tokens owned by `account`.
*/
function balanceOf(address account) external view returns (uint256);

/**
* @dev Moves `amount` tokens from the caller’s account to `recipient`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transfer(address recipient, uint256 amount) external returns (bool);

/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/
function allowance(address _owner, address spender) external view returns (uint256);

/**
* @dev Sets `amount` as the allowance of `spender` over the caller’s tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender’s allowance to 0 and set the
* desired value afterwards:
* github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/
function approve(address spender, uint256 amount) external returns (bool);

/**
* @dev Moves `amount` tokens from `sender` to `recipient` using the
* allowance mechanism. `amount` is then deducted from the caller’s
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/
function transferFrom(
address sender,
address recipient,
uint256 amount
) external returns (bool);

/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/
event Transfer(address indexed from, address indexed to, uint256 value);

/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/
event Approval(address indexed owner, address indexed spender, uint256 value);
}

// File: contracts/libs/SafeBEP20.sol

pragma solidity ^0.6.0;

 

/**
* @title SafeBEP20
* @dev Wrappers around BEP20 operations that throw on failure (when the token
* contract returns false). Tokens that return no value (and instead revert or
* throw on failure) are also supported, non-reverting calls are assumed to be
* successful.
* To use this library you can add a `using SafeBEP20 for IBEP20;` statement to your contract,
* which allows you to call the safe operations as `token.safeTransfer(…)`, etc.
*/
library SafeBEP20 {
using SafeMath for uint256;
using Address for address;

function safeTransfer(
IBEP20 token,
address to,
uint256 value
) internal {
_callOptionalReturn(token, abi.encodeWithSelector(token.transfer.selector, to, value));
}

function safeTransferFrom(
IBEP20 token,
address from,
address to,
uint256 value
) internal {
_callOptionalReturn(token, abi.encodeWithSelector(token.transferFrom.selector, from, to, value));
}

/**
* @dev Deprecated. This function has issues similar to the ones found in
* {IBEP20-approve}, and its usage is discouraged.
*
* Whenever possible, use {safeIncreaseAllowance} and
* {safeDecreaseAllowance} instead.
*/
function safeApprove(
IBEP20 token,
address spender,
uint256 value
) internal {
// safeApprove should only be called when setting an initial allowance,
// or when resetting it to zero. To increase and decrease it, use
// ‘safeIncreaseAllowance’ and ‘safeDecreaseAllowance’
// solhint-disable-next-line max-line-length
require(
(value == 0) || (token.allowance(address(this), spender) == 0),
“SafeBEP20: approve from non-zero to non-zero allowance”
);
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, value));
}

function safeIncreaseAllowance(
IBEP20 token,
address spender,
uint256 value
) internal {
uint256 newAllowance = token.allowance(address(this), spender).add(value);
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, newAllowance));
}

function safeDecreaseAllowance(
IBEP20 token,
address spender,
uint256 value
) internal {
uint256 newAllowance = token.allowance(address(this), spender).sub(
value,
“SafeBEP20: decreased allowance below zero”
);
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, newAllowance));
}

/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*/
function _callOptionalReturn(IBEP20 token, bytes memory data) private {
// We need to perform a low level call here, to bypass Solidity’s return data size checking mechanism, since
// we’re implementing it ourselves. We use {Address.functionCall} to perform this call, which verifies that
// the target address contains contract code and also asserts for success in the low-level call.

bytes memory returndata = address(token).functionCall(data, “SafeBEP20: low-level call failed”);
if (returndata.length > 0) {
// Return data is optional
// solhint-disable-next-line max-line-length
require(abi.decode(returndata, (bool)), “SafeBEP20: BEP20 operation did not succeed”);
}
}
}

// File: @openzeppelin/contracts/math/SafeMath.sol

pragma solidity >=0.6.0 <0.8.0;

/**
* @dev Wrappers over Solidity’s arithmetic operations with added overflow
* checks.
*
* Arithmetic operations in Solidity wrap on overflow. This can easily result
* in bugs, because programmers usually assume that an overflow raises an
* error, which is the standard behavior in high level programming languages.
* `SafeMath` restores this intuition by reverting the transaction when an
* operation overflows.
*
* Using this library instead of the unchecked operations eliminates an entire
* class of bugs, so it’s recommended to use it always.
*/
library SafeMath {
/**
* @dev Returns the addition of two unsigned integers, with an overflow flag.
*
* _Available since v3.4._
*/
function tryAdd(uint256 a, uint256 b) internal pure returns (bool, uint256) {
uint256 c = a + b;
if (c < a) return (false, 0);
return (true, c);
}

/**
* @dev Returns the substraction of two unsigned integers, with an overflow flag.
*
* _Available since v3.4._
*/
function trySub(uint256 a, uint256 b) internal pure returns (bool, uint256) {
if (b > a) return (false, 0);
return (true, a – b);
}

/**
* @dev Returns the multiplication of two unsigned integers, with an overflow flag.
*
* _Available since v3.4._
*/
function tryMul(uint256 a, uint256 b) internal pure returns (bool, uint256) {
// Gas optimization: this is cheaper than requiring ‘a’ not being zero, but the
// benefit is lost if ‘b’ is also tested.
// See: github.com/OpenZeppelin/openzeppelin-contracts/pull/522
if (a == 0) return (true, 0);
uint256 c = a * b;
if (c / a != b) return (false, 0);
return (true, c);
}

/**
* @dev Returns the division of two unsigned integers, with a division by zero flag.
*
* _Available since v3.4._
*/
function tryDiv(uint256 a, uint256 b) internal pure returns (bool, uint256) {
if (b == 0) return (false, 0);
return (true, a / b);
}

/**
* @dev Returns the remainder of dividing two unsigned integers, with a division by zero flag.
*
* _Available since v3.4._
*/
function tryMod(uint256 a, uint256 b) internal pure returns (bool, uint256) {
if (b == 0) return (false, 0);
return (true, a % b);
}

/**
* @dev Returns the addition of two unsigned integers, reverting on
* overflow.
*
* Counterpart to Solidity’s `+` operator.
*
* Requirements:
*
* – Addition cannot overflow.
*/
function add(uint256 a, uint256 b) internal pure returns (uint256) {
uint256 c = a + b;
require(c >= a, “SafeMath: addition overflow”);
return c;
}

/**
* @dev Returns the subtraction of two unsigned integers, reverting on
* overflow (when the result is negative).
*
* Counterpart to Solidity’s `-` operator.
*
* Requirements:
*
* – Subtraction cannot overflow.
*/
function sub(uint256 a, uint256 b) internal pure returns (uint256) {
require(b <= a, “SafeMath: subtraction overflow”);
return a – b;
}

/**
* @dev Returns the multiplication of two unsigned integers, reverting on
* overflow.
*
* Counterpart to Solidity’s `*` operator.
*
* Requirements:
*
* – Multiplication cannot overflow.
*/
function mul(uint256 a, uint256 b) internal pure returns (uint256) {
if (a == 0) return 0;
uint256 c = a * b;
require(c / a == b, “SafeMath: multiplication overflow”);
return c;
}

/**
* @dev Returns the integer division of two unsigned integers, reverting on
* division by zero. The result is rounded towards zero.
*
* Counterpart to Solidity’s `/` operator. Note: this function uses a
* `revert` opcode (which leaves remaining gas untouched) while Solidity
* uses an invalid opcode to revert (consuming all remaining gas).
*
* Requirements:
*
* – The divisor cannot be zero.
*/
function div(uint256 a, uint256 b) internal pure returns (uint256) {
require(b > 0, “SafeMath: division by zero”);
return a / b;
}

/**
* @dev Returns the remainder of dividing two unsigned integers. (unsigned integer modulo),
* reverting when dividing by zero.
*
* Counterpart to Solidity’s `%` operator. This function uses a `revert`
* opcode (which leaves remaining gas untouched) while Solidity uses an
* invalid opcode to revert (consuming all remaining gas).
*
* Requirements:
*
* – The divisor cannot be zero.
*/
function mod(uint256 a, uint256 b) internal pure returns (uint256) {
require(b > 0, “SafeMath: modulo by zero”);
return a % b;
}

/**
* @dev Returns the subtraction of two unsigned integers, reverting with custom message on
* overflow (when the result is negative).
*
* CAUTION: This function is deprecated because it requires allocating memory for the error
* message unnecessarily. For custom revert reasons use {trySub}.
*
* Counterpart to Solidity’s `-` operator.
*
* Requirements:
*
* – Subtraction cannot overflow.
*/
function sub(uint256 a, uint256 b, string memory errorMessage) internal pure returns (uint256) {
require(b <= a, errorMessage);
return a – b;
}

/**
* @dev Returns the integer division of two unsigned integers, reverting with custom message on
* division by zero. The result is rounded towards zero.
*
* CAUTION: This function is deprecated because it requires allocating memory for the error
* message unnecessarily. For custom revert reasons use {tryDiv}.
*
* Counterpart to Solidity’s `/` operator. Note: this function uses a
* `revert` opcode (which leaves remaining gas untouched) while Solidity
* uses an invalid opcode to revert (consuming all remaining gas).
*
* Requirements:
*
* – The divisor cannot be zero.
*/
function div(uint256 a, uint256 b, string memory errorMessage) internal pure returns (uint256) {
require(b > 0, errorMessage);
return a / b;
}

/**
* @dev Returns the remainder of dividing two unsigned integers. (unsigned integer modulo),
* reverting with custom message when dividing by zero.
*
* CAUTION: This function is deprecated because it requires allocating memory for the error
* message unnecessarily. For custom revert reasons use {tryMod}.
*
* Counterpart to Solidity’s `%` operator. This function uses a `revert`
* opcode (which leaves remaining gas untouched) while Solidity uses an
* invalid opcode to revert (consuming all remaining gas).
*
* Requirements:
*
* – The divisor cannot be zero.
*/
function mod(uint256 a, uint256 b, string memory errorMessage) internal pure returns (uint256) {
require(b > 0, errorMessage);
return a % b;
}
}

// File: @openzeppelin/contracts/utils/ReentrancyGuard.sol

pragma solidity >=0.6.0 <0.8.0;

/**
* @dev Contract module that helps prevent reentrant calls to a function.
*
* Inheriting from `ReentrancyGuard` will make the {nonReentrant} modifier
* available, which can be applied to functions to make sure there are no nested
* (reentrant) calls to them.
*
* Note that because there is a single `nonReentrant` guard, functions marked as
* `nonReentrant` may not call one another. This can be worked around by making
* those functions `private`, and then adding `external` `nonReentrant` entry
* points to them.
*
* TIP: If you would like to learn more about reentrancy and alternative ways
* to protect against it, check out our blog post
* blog.openzeppelin.com/reentrancy-after-istanbul/%5BReentrancy After Istanbul].
*/
abstract contract ReentrancyGuard {
// Booleans are more expensive than uint256 or any type that takes up a full
// word because each write operation emits an extra SLOAD to first read the
// slot’s contents, replace the bits taken up by the boolean, and then write
// back. This is the compiler’s defense against contract upgrades and
// pointer aliasing, and it cannot be disabled.

// The values being non-zero value makes deployment a bit more expensive,
// but in exchange the refund on every call to nonReentrant will be lower in
// amount. Since refunds are capped to a percentage of the total
// transaction’s gas, it is best to keep them low in cases like this one, to
// increase the likelihood of the full refund coming into effect.
uint256 private constant _NOT_ENTERED = 1;
uint256 private constant _ENTERED = 2;

uint256 private _status;

constructor () internal {
_status = _NOT_ENTERED;
}

/**
* @dev Prevents a contract from calling itself, directly or indirectly.
* Calling a `nonReentrant` function from another `nonReentrant`
* function is not supported. It is possible to prevent this from happening
* by making the `nonReentrant` function external, and make it call a
* `private` function that does the actual work.
*/
modifier nonReentrant() {
// On the first call to nonReentrant, _notEntered will be true
require(_status != _ENTERED, “ReentrancyGuard: reentrant call”);

// Any calls to nonReentrant after this point will fail
_status = _ENTERED;

_;

// By storing the original value once again, a refund is triggered (see
// eips.ethereum.org/EIPS/eip-2200)
_status = _NOT_ENTERED;
}
}

// File: @openzeppelin/contracts/utils/Context.sol

pragma solidity >=0.6.0 <0.8.0;

/*
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with GSN meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/
abstract contract Context {
function _msgSender() internal view virtual returns (address payable) {
return msg.sender;
}

function _msgData() internal view virtual returns (bytes memory) {
this; // silence state mutability warning without generating bytecode – see github.com/ethereum/solidity/issues/2691
return msg.data;
}
}

// File: @openzeppelin/contracts/access/Ownable.sol

pragma solidity >=0.6.0 <0.8.0;

/**
* @dev Contract module which provides a basic access control mechanism, where
* there is an account (an owner) that can be granted exclusive access to
* specific functions.
*
* By default, the owner account will be the one that deploys the contract. This
* can later be changed with {transferOwnership}.
*
* This module is used through inheritance. It will make available the modifier
* `onlyOwner`, which can be applied to your functions to restrict their use to
* the owner.
*/
abstract contract Ownable is Context {
address private _owner;

event OwnershipTransferred(address indexed previousOwner, address indexed newOwner);

/**
* @dev Initializes the contract setting the deployer as the initial owner.
*/
constructor () internal {
address msgSender = _msgSender();
_owner = msgSender;
emit OwnershipTransferred(address(0), msgSender);
}

/**
* @dev Returns the address of the current owner.
*/
function owner() public view virtual returns (address) {
return _owner;
}

/**
* @dev Throws if called by any account other than the owner.
*/
modifier onlyOwner() {
require(owner() == _msgSender(), “Ownable: caller is not the owner”);
_;
}

/**
* @dev Leaves the contract without owner. It will not be possible to call
* `onlyOwner` functions anymore. Can only be called by the current owner.
*
* NOTE: Renouncing ownership will leave the contract without an owner,
* thereby removing any functionality that is only available to the owner.
*/
function renounceOwnership() public virtual onlyOwner {
emit OwnershipTransferred(_owner, address(0));
_owner = address(0);
}

/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Can only be called by the current owner.
*/
function transferOwnership(address newOwner) public virtual onlyOwner {
require(newOwner != address(0), “Ownable: new owner is the zero address”);
emit OwnershipTransferred(_owner, newOwner);
_owner = newOwner;
}
}

// File: contracts/SwapBox.sol

pragma solidity 0.6.12;

 

 

contract SwapBoxInitializable is Ownable, ReentrancyGuard {
using SafeMath for uint256;
using SafeBEP20 for IBEP20;

// The address of the Swap Observatory factory
address public SWAP_BOX_FACTORY;

// Whether a limit is set for users
bool public hasUserLimit;

// Whether it is initialized
bool public isInitialized;

// Accrued token per share
uint256 public accTokenPerShare;

// The block number when SWAP mining ends.
uint256 public bonusEndBlock;

// The block number when SWAP mining starts.
uint256 public startBlock;

// The block number of the last pool update
uint256 public lastRewardBlock;

// Total Staked tokens
uint256 public totalStaked;

// The pool limit (0 if none)
uint256 public poolLimitPerUser;

// SWAP tokens created per block.
uint256 public rewardPerBlock;

// The precision factor
uint256 public PRECISION_FACTOR;

// The reward token
IBEP20 public rewardToken;

// The staked token
IBEP20 public stakedToken;

// The transfer fee (in basis points) of staked token
uint16 public stakedTokenTransferFee;

// The deposit fee
uint256 public depositFee;

// Collected fees
uint256 public fees;

// The withdrawal interval
uint256 public withdrawalInterval;

// Max withdrawal interval: 30 days.
uint256 public constant MAXIMUM_WITHDRAWAL_INTERVAL = 30 days;

// Info of each user that stakes tokens (stakedToken)
mapping(address => UserInfo) public userInfo;

struct UserInfo {
uint256 amount; // How many staked tokens the user has provided
uint256 rewardDebt; // Reward debt
uint256 nextWithdrawalUntil; // When can the user withdraw again.
}

event AdminTokenRecovery(address tokenRecovered, uint256 amount);
event Deposit(address indexed user, uint256 amount);
event EmergencyWithdraw(address indexed user, uint256 amount);
event NewStartAndEndBlocks(uint256 startBlock, uint256 endBlock);
event NewRewardPerBlock(uint256 rewardPerBlock);
event NewPoolLimit(uint256 poolLimitPerUser);
event RewardsStop(uint256 blockNumber);
event Withdraw(address indexed user, uint256 amount);
event NewStakedTokenTransferFee(uint16 transferFee);
event NewWithdrawalInterval(uint256 interval);
event NewDepositFee(uint256 depositFee);
event WithdrawFees(uint256 amount);

constructor() public {
SWAP_BOX_FACTORY = msg.sender;
}

/*
* @notice Initialize the contract
* @param _stakedToken: staked token address
* @param _rewardToken: reward token address
* @param _rewardPerBlock: reward per block (in rewardToken)
* @param _startBlock: start block
* @param _bonusEndBlock: end block
* @param _poolLimitPerUser: pool limit per user in stakedToken (if any, else 0)
* @param _stakedTokenTransferFee: the transfer fee of stakedToken (if any, else 0)
* @param _withdrawalInterval: the withdrawal interval for stakedToken (if any, else 0)
* @param _depositFee: deposit fee (if any, else 0)
* @param _admin: admin address with ownership
*/
function initialize(
IBEP20 _stakedToken,
IBEP20 _rewardToken,
uint256 _rewardPerBlock,
uint256 _startBlock,
uint256 _bonusEndBlock,
uint256 _poolLimitPerUser,
uint16 _stakedTokenTransferFee,
uint256 _depositFee,
uint256 _withdrawalInterval,
address _admin
) external {
require(!isInitialized, “Already initialized”);
require(msg.sender == SWAP_BOX_FACTORY, “Not factory”);
require(_withdrawalInterval <= MAXIMUM_WITHDRAWAL_INTERVAL, “Invalid withdrawal interval”);

// Make this contract initialized
isInitialized = true;
stakedToken = _stakedToken;
rewardToken = _rewardToken;
rewardPerBlock = _rewardPerBlock;
startBlock = _startBlock;
bonusEndBlock = _bonusEndBlock;
stakedTokenTransferFee = _stakedTokenTransferFee;
withdrawalInterval = _withdrawalInterval;
depositFee = _depositFee;
require(depositFee < 10000, “Invalid deposit fee”);

if (_poolLimitPerUser > 0) {
hasUserLimit = true;
poolLimitPerUser = _poolLimitPerUser;
}

uint256 decimalsRewardToken = uint256(rewardToken.decimals());
require(decimalsRewardToken < 30, “Must be inferior to 30”);

PRECISION_FACTOR = uint256(10 ** (uint256(30).sub(decimalsRewardToken)));

// Set the lastRewardBlock as the startBlock
lastRewardBlock = startBlock;
UserInfo storage user = userInfo[_admin];
user.amount = 0;
user.rewardDebt = 0;
user.nextWithdrawalUntil = 0;

// Transfer ownership to the admin address who becomes owner of the contract
transferOwnership(_admin);
}

/*
* @notice Deposit staked tokens and collect reward tokens (if any)
* @param _amount: amount to withdraw (in rewardToken)
*/
function deposit(uint256 _amount) external nonReentrant {
UserInfo storage user = userInfo[msg.sender];

if (hasUserLimit) {
require(_amount.add(user.amount) <= poolLimitPerUser, “User amount above limit”);
}

_updatePool();

if (user.amount > 0) {
uint256 pending = user.amount.mul(accTokenPerShare).div(PRECISION_FACTOR).sub(user.rewardDebt);
if (pending > 0) {
rewardToken.safeTransfer(address(msg.sender), pending);
user.nextWithdrawalUntil = block.timestamp.add(withdrawalInterval);
}
}

if (_amount > 0) {
stakedToken.safeTransferFrom(address(msg.sender), address(this), _amount);

if (stakedTokenTransferFee > 0) {
uint256 transferFee = _amount.mul(stakedTokenTransferFee).div(10000);
_amount = _amount.sub(transferFee);
}
if (depositFee > 0) {
uint256 fee = _amount.mul(depositFee).div(10000);
fees = fees.add(fee);
_amount = _amount.sub(fee);
}
user.amount = user.amount.add(_amount);
totalStaked = totalStaked.add(_amount);

if (user.nextWithdrawalUntil == 0) {
user.nextWithdrawalUntil = block.timestamp.add(withdrawalInterval);
}
}

user.rewardDebt = user.amount.mul(accTokenPerShare).div(PRECISION_FACTOR);

emit Deposit(msg.sender, _amount);
}

/*
* @notice Withdraw staked tokens and collect reward tokens
* @param _amount: amount to withdraw (in rewardToken)
*/
function withdraw(uint256 _amount) external nonReentrant {
UserInfo storage user = userInfo[msg.sender];
require(user.amount >= _amount, “Amount to withdraw too high”);
require(user.nextWithdrawalUntil <= block.timestamp, “Withdrawal locked”);

_updatePool();

uint256 pending = user.amount.mul(accTokenPerShare).div(PRECISION_FACTOR).sub(user.rewardDebt);

if (_amount > 0) {
user.amount = user.amount.sub(_amount);
stakedToken.safeTransfer(address(msg.sender), _amount);
totalStaked = totalStaked.sub(_amount);
}

if (pending > 0) {
rewardToken.safeTransfer(address(msg.sender), pending);
user.nextWithdrawalUntil = block.timestamp.add(withdrawalInterval);
}

user.rewardDebt = user.amount.mul(accTokenPerShare).div(PRECISION_FACTOR);

emit Withdraw(msg.sender, _amount);
}

/*
* @notice Withdraw staked tokens without caring about rewards rewards
* @dev Needs to be for emergency.
*/
function emergencyWithdraw() external nonReentrant {
UserInfo storage user = userInfo[msg.sender];
require(user.nextWithdrawalUntil <= block.timestamp, “Withdrawal locked”);

uint256 amountToTransfer = user.amount;
user.amount = 0;
user.rewardDebt = 0;
user.nextWithdrawalUntil = 0;

if (amountToTransfer > 0) {
stakedToken.safeTransfer(address(msg.sender), amountToTransfer);
totalStaked = totalStaked.sub(amountToTransfer);
}

emit EmergencyWithdraw(msg.sender, user.amount);
}

/*
* @notice Stop rewards
* @dev Only callable by owner. Needs to be for emergency.
*/
function emergencyRewardWithdraw(uint256 _amount) external onlyOwner {
rewardToken.safeTransfer(address(msg.sender), _amount);
}

/**
* @notice It allows the admin to recover wrong tokens sent to the contract
* @param _tokenAddress: the address of the token to withdraw
* @param _tokenAmount: the number of tokens to withdraw
* @dev This function is only callable by admin.
*/
function recoverWrongTokens(address _tokenAddress, uint256 _tokenAmount) external onlyOwner {
require(_tokenAddress != address(stakedToken), “Cannot be staked token”);
require(_tokenAddress != address(rewardToken), “Cannot be reward token”);

IBEP20(_tokenAddress).safeTransfer(address(msg.sender), _tokenAmount);

emit AdminTokenRecovery(_tokenAddress, _tokenAmount);
}

/*
* @notice Stop rewards
* @dev Only callable by owner
*/
function stopReward() external onlyOwner {
bonusEndBlock = block.number;
}

/*
* @notice Update pool limit per user
* @dev Only callable by owner.
* @param _hasUserLimit: whether the limit remains forced
* @param _poolLimitPerUser: new pool limit per user
*/
function updatePoolLimitPerUser(bool _hasUserLimit, uint256 _poolLimitPerUser) external onlyOwner {
require(hasUserLimit, “Must be set”);
if (_hasUserLimit) {
require(_poolLimitPerUser > poolLimitPerUser, “New limit must be higher”);
poolLimitPerUser = _poolLimitPerUser;
} else {
hasUserLimit = _hasUserLimit;
poolLimitPerUser = 0;
}
emit NewPoolLimit(poolLimitPerUser);
}

/*
* @notice Update reward per block
* @dev Only callable by owner.
* @param _rewardPerBlock: the reward per block
*/
function updateRewardPerBlock(uint256 _rewardPerBlock) external onlyOwner {
require(block.number < startBlock, “Pool has started”);
rewardPerBlock = _rewardPerBlock;
emit NewRewardPerBlock(_rewardPerBlock);
}

/*
* @notice Update deposit fee
* @dev Only callable by owner.
* @param _depositFee: the deposit fee
*/
function updateDepositFee(uint256 _depositFee) external onlyOwner {
require(_depositFee < 10000, “Invalid deposit fee”);
depositFee = _depositFee;
emit NewDepositFee(depositFee);
}

/*
* @notice Withdraw fees
* @dev Only callable by owner.
*/
function withdrawFees() external onlyOwner {
require(fees > 0, “No fees:(“);
uint256 feeAmount = fees;
fees = 0;
stakedToken.safeTransfer(address(msg.sender), feeAmount);
emit WithdrawFees(feeAmount);
}

/**
* @notice It allows the admin to update start and end blocks
* @dev This function is only callable by owner.
* @param _startBlock: the new start block
* @param _bonusEndBlock: the new end block
*/
function updateStartAndEndBlocks(uint256 _startBlock, uint256 _bonusEndBlock) external onlyOwner {
require(block.number < startBlock, “Pool has started”);
require(_startBlock < _bonusEndBlock, “New startBlock must be lower than new endBlock”);
require(block.number < _startBlock, “New startBlock must be higher than current block”);

startBlock = _startBlock;
bonusEndBlock = _bonusEndBlock;

// Set the lastRewardBlock as the startBlock
lastRewardBlock = startBlock;

emit NewStartAndEndBlocks(_startBlock, _bonusEndBlock);
}

/*
* @notice Update staked token transfer fee
* @dev Only callable by owner.
* @param _transferFee: the transfer fee of staked token
*/
function updateStakedTokenTransferFee(uint16 _transferFee) external onlyOwner {
require(_transferFee < 10000, “Invalid transfer fee of staked token”);
stakedTokenTransferFee = _transferFee;
emit NewStakedTokenTransferFee(_transferFee);
}

/*
* @notice Update the withdrawal interval
* @dev Only callable by owner.
* @param _interval: the withdrawal interval for staked token in seconds
*/
function updateWithdrawalInterval(uint256 _interval) external onlyOwner {
require(_interval <= MAXIMUM_WITHDRAWAL_INTERVAL, “Invalid withdrawal interval”);
withdrawalInterval = _interval;
emit NewWithdrawalInterval(_interval);
}

/*
* @notice View function to see pending reward on frontend.
* @param _user: user address
* @return Pending reward for a given user
*/
function pendingReward(address _user) external view returns (uint256) {
UserInfo storage user = userInfo[_user];
uint256 stakedTokenSupply = totalStaked;
if (block.number > lastRewardBlock && stakedTokenSupply != 0) {
uint256 multiplier = _getMultiplier(lastRewardBlock, block.number);
uint256 cakeReward = multiplier.mul(rewardPerBlock);
uint256 adjustedTokenPerShare =
accTokenPerShare.add(cakeReward.mul(PRECISION_FACTOR).div(stakedTokenSupply));
return user.amount.mul(adjustedTokenPerShare).div(PRECISION_FACTOR).sub(user.rewardDebt);
} else {
return user.amount.mul(accTokenPerShare).div(PRECISION_FACTOR).sub(user.rewardDebt);
}
}

// View function to see if user can withdraw staked token.
function canWithdraw(address _user) external view returns (bool) {
UserInfo storage user = userInfo[_user];
return block.timestamp >= user.nextWithdrawalUntil;
}

/*
* @notice Update reward variables of the given pool to be up-to-date.
*/
function _updatePool() internal {
if (block.number <= lastRewardBlock) {
return;
}

uint256 stakedTokenSupply = totalStaked;

if (stakedTokenSupply == 0) {
lastRewardBlock = block.number;
return;
}

uint256 multiplier = _getMultiplier(lastRewardBlock, block.number);
uint256 cakeReward = multiplier.mul(rewardPerBlock);
accTokenPerShare = accTokenPerShare.add(cakeReward.mul(PRECISION_FACTOR).div(stakedTokenSupply));
lastRewardBlock = block.number;
}

/*
* @notice Return reward multiplier over the given _from to _to block.
* @param _from: block to start
* @param _to: block to finish
*/
function _getMultiplier(uint256 _from, uint256 _to) internal view returns (uint256) {
if (_to <= bonusEndBlock) {
return _to.sub(_from);
} else if (_from >= bonusEndBlock) {
return 0;
} else {
return bonusEndBlock.sub(_from);
}
}
}

// File: contracts/SwapBoxFactory.sol

pragma solidity 0.6.12;

 

contract SwapBoxFactory is Ownable {
event NewSwapBoxContract(address indexed swapBox);

constructor() public {
//
}

/*
* @notice Deploy the pool
* @param _stakedToken: staked token address
* @param _rewardToken: reward token address
* @param _rewardPerBlock: reward per block (in rewardToken)
* @param _startBlock: start block
* @param _endBlock: end block
* @param _poolLimitPerUser: pool limit per user in stakedToken (if any, else 0)
* @param _stakedTokenTransferFee: the transfer fee of stakedToken (if any, else 0)
* @param _withdrawalInterval: the withdrawal interval for stakedToken (if any, else 0)
* @param _admin: admin address with ownership
* @return address of new Swap Observatory contract
*/
function deployPool(
IBEP20 _stakedToken,
IBEP20 _rewardToken,
uint256 _rewardPerBlock,
uint256 _startBlock,
uint256 _bonusEndBlock,
uint256 _poolLimitPerUser,
uint16 _stakedTokenTransferFee,
uint256 _depositFee,
uint256 _withdrawalInterval,
address _admin
) external onlyOwner {
require(_stakedToken.totalSupply() >= 0);
require(_rewardToken.totalSupply() >= 0);
require(_depositFee < 10000, “Invalid deposit fee value”);

bytes memory bytecode = type(SwapBoxInitializable).creationCode;
bytes32 salt = keccak256(abi.encodePacked(_stakedToken, _rewardToken, _startBlock));
address swapBoxAddress;

assembly {
swapBoxAddress := create2(0, add(bytecode, 32), mload(bytecode), salt)
}

SwapBoxInitializable(swapBoxAddress).initialize(
_stakedToken,
_rewardToken,
_rewardPerBlock,
_startBlock,
_bonusEndBlock,
_poolLimitPerUser,
_stakedTokenTransferFee,
_depositFee,
_withdrawalInterval,
_admin
);

emit NewSwapBoxContract(swapBoxAddress);
}
}

Contracts Scanned: SafeSwap Token, SafeswapToken, BEP20, Ownable, Context

Contact us for an smart contract audit

request an audit